deps: update dependencies and ESLint configuration (#3576)

* deps: update hono and @hono/node-server to fix security vulnerabilities

Update transitive dependencies:
- hono: 4.12.2 → 4.12.5 (fixes 3 high severity vulnerabilities)
- @hono/node-server: 1.19.9 → 1.19.11 (fixes 1 high severity vulnerability)

These packages are indirect dependencies via @heroku/mcp-server → @modelcontextprotocol/sdk.

Reduced total vulnerabilities from 24 to 22.

* deps: update express-rate-limit to fix security vulnerability

Update transitive dependency:
- express-rate-limit: 8.2.1 → 8.3.1 (fixes high severity IPv4-mapped IPv6 bypass)

This package is an indirect dependency via @heroku/mcp-server → @modelcontextprotocol/sdk.

Reduced total vulnerabilities from 22 to 21.

* update package.json

* deps: update npm to fix bundled dependency vulnerabilities

Update transitive dependency:
- npm: 10.9.4 → 10.9.5 (via @oclif/plugin-plugins)

This fixes vulnerabilities in npm's bundled dependencies:
- diff (low severity DoS)
- glob (high severity command injection)

Reduced total vulnerabilities from 21 to 20.

* deps: upgrade TypeScript ESLint to v8 and remove eslint-config-oclif-typescript

- Upgrade @typescript-eslint/eslint-plugin and @typescript-eslint/parser to 8.57.0
- Remove eslint-config-oclif-typescript dependency (no longer needed, causes minimatch vulnerabilities)
- Replace with direct ESLint configuration using plugin:@typescript-eslint/recommended
- Add eslint-plugin-perfectionist as direct dependency
- Ignore .d.ts files from linting (best practice)
- Disable strict TypeScript ESLint rules that don't apply to this codebase

This fixes 4 high severity minimatch vulnerabilities by removing the transitive dependency chain through eslint-config-oclif-typescript.

Reduced total vulnerabilities from 20 to 16 (14 high → 10 high).

* deps: update ESLint config and fix perfectionist plugin compatibility

* deps: update Node.js and dev dependencies

* npm install

* this check doesn't work correctly when switching channels, because
plugins are reinstalled after the hooks run in that event. removing this
check to avoid confusion

* delete test for removed hook

Author: eablack

.eslintrc.cjs

@@ -1,28 +1,17 @@
 module.exports = {
-  // Global settings
-  plugins: ['import', 'mocha'],
   extends: [
     'oclif',
-    'oclif-typescript',
+    'plugin:@typescript-eslint/eslint-recommended',
+    'plugin:@typescript-eslint/recommended',
+    'plugin:n/recommended',
+    'plugin:import/recommended',
+    'plugin:import/typescript',
+    'plugin:perfectionist/recommended-natural-legacy',
     'plugin:mocha/recommended',
   ],
-  ignorePatterns: ['**/test/**/*.js', '**/oldCommands/**/*', 'dist/**'],
-
+  ignorePatterns: ['**/test/**/*.js', 'dist/**', '**/*.d.ts'],
   // TypeScript settings
   overrides: [
-    {
-      files: ['**/*{.ts,tsx}'],
-      settings: {
-        'import/parsers': {
-          '@typescript-eslint/parser': ['.ts', '.tsx'],
-        },
-        'import/resolver': {
-          typescript: {
-            project: 'tsconfig.json',
-          },
-        },
-      },
-    },
     {
       files: ['**/test/**/*.ts', '**/test/**/*.js', 'test/**/*.ts', 'test/**/*.js'],
       rules: {
@@ -31,12 +20,21 @@ module.exports = {
       },
     },
   ],
+  parser: '@typescript-eslint/parser',
+
+  // Global settings
+  plugins: ['import', 'mocha', '@typescript-eslint'],
 
   rules: {
     '@typescript-eslint/explicit-module-boundary-types': 'off',
-    '@typescript-eslint/no-empty-function': 'off',
+    '@typescript-eslint/no-empty-function': 'warn',
+    '@typescript-eslint/no-empty-interface': 'warn',
     '@typescript-eslint/no-explicit-any': 'warn',
-    '@typescript-eslint/no-unused-vars': ['warn', {ignoreRestSiblings: true}], // TODO: fix issues and turn this back on
+    '@typescript-eslint/no-require-imports': 'warn',
+    '@typescript-eslint/no-unused-expressions': 'warn',
+    '@typescript-eslint/no-unused-vars': ['warn', {argsIgnorePattern: '^_', ignoreRestSiblings: true}], // TODO: fix issues and turn this back on
+    '@typescript-eslint/no-useless-constructor': 'error',
+    '@typescript-eslint/no-var-requires': 'off',
     camelcase: 'off',
     'func-names': 'warn', // TODO: fix issues and turn this back on
     'import/default': 'warn',
@@ -48,7 +46,9 @@ module.exports = {
     'mocha/no-mocha-arrows': 'warn',
     'mocha/no-setup-in-describe': 'warn',
     'n/no-deprecated-api': 'warn', // TODO: fix issues and turn this back on
+    'n/no-missing-import': 'off',
     'n/no-unsupported-features/es-builtins': 'warn', // TODO: fix issues and turn this back on
+    'n/no-unsupported-features/es-syntax': 'off',
     'n/no-unsupported-features/node-builtins': 'warn', // TODO: fix issues and turn this back on
     'no-await-in-loop': 'off', // Perfect legit to use await in loops, we should leave it off
     'no-constant-condition': ['error', {checkLoops: false}],
@@ -58,15 +58,38 @@ module.exports = {
     'no-promise-executor-return': 'warn', // TODO: fix issues and turn this back on
     'no-prototype-builtins': 'warn', // TODO: fix issues and turn this back on
     'no-return-await': 'warn', // TODO: fix issues and turn this back on
+    'no-unused-expressions': 'off',
+    'no-useless-constructor': 'off',
     'node/no-missing-import': 'off', // using import/no-unresolved instead
     'object-curly-newline': 'warn',
-    'perfectionist/sort-classes': 'warn',
+    'perfectionist/sort-classes': [
+      'warn',
+      {
+        groups: [
+          'index-signature',
+          'static-property',
+          'property',
+          'private-property',
+          'constructor',
+          'static-method',
+          'static-private-method',
+          ['get-method', 'set-method'],
+          'method',
+          'private-method',
+          'unknown',
+        ],
+        order: 'asc',
+        type: 'alphabetical',
+      },
+    ],
     'perfectionist/sort-imports': 'warn',
     'perfectionist/sort-interfaces': 'warn',
     'perfectionist/sort-intersection-types': 'warn',
+    'perfectionist/sort-modules': 'warn',
     'perfectionist/sort-named-imports': 'warn',
     'perfectionist/sort-object-types': 'warn',
     'perfectionist/sort-objects': 'warn',
+    'perfectionist/sort-switch-case': 'off',
     'perfectionist/sort-union-types': 'warn',
     'prefer-object-spread': 'warn',
     radix: 'warn', // TODO: fix issues and turn this back on
@@ -93,6 +116,18 @@ module.exports = {
     'unicorn/prefer-string-replace-all': 'warn',
     'unicorn/prefer-string-slice': 'warn', // TODO: fix issues and turn this back on
     'unicorn/prefer-ternary': 'off', // TODO: fix issues and turn this back on
+    'valid-jsdoc': ['warn', {requireParamType: false, requireReturnType: false}],
     'wrap-iife': 'warn', // TODO: fix issues and turn this back on
   },
+  settings: {
+    'import/parsers': {
+      '@typescript-eslint/parser': ['.ts', '.tsx'],
+    },
+    'import/resolver': {
+      typescript: {
+        alwaysTryTypes: true,
+        project: 'tsconfig.json',
+      },
+    },
+  },
 }

.tool-versions

@@ -1 +1 @@
-nodejs 22.22.0
+nodejs 22.22.1