Complete non-frontend Priority 4 modernization lanes

.github/workflows/netlify-api-test.yml

@@ -60,9 +60,6 @@ jobs:
     timeout-minutes: 25
     needs: build-gate
     env:
-      # @shelf/jest-mongodb's bundled mongodb-memory-server version in this repo
-      # does not support MONGOMS_DISTRO; pin a known-valid download URL instead.
-      MONGOMS_DOWNLOAD_URL: https://fastdl.mongodb.org/linux/mongodb-linux-x86_64-ubuntu2204-6.0.14.tgz
       TZ: UTC
 
     steps:

README.md

@@ -196,11 +196,15 @@ Assumes a unix-like environment, like Ubuntu.
 1. `yarn install`
 1. `yarn run build`
 1. Install and run [MongoDB Community Edition](https://www.mongodb.com/docs/manual/administration/install-community/)
+   - This is for local application runtime/development workflows such as `yarn run start`.
+   - Backend Jest tests use the repo's `@shelf/jest-mongodb` + `mongodb-memory-server` bootstrap and do not require a separately running local `mongod`.
 
 ### Test
 
 1. `yarn run test:backend`
    - Backend tests do not require `.env` on disk. Test env values are injected from `example.env` during Jest setup.
+   - Backend tests use the repo-managed Mongo test harness via `@shelf/jest-mongodb` and `jest-mongodb-config.js`; contributors do not need to export the old `MONGOMS_*` workaround variables.
+   - The repo is intentionally staying on the modernized memory-server path for now while the broader "should tests later move to an actual local replica set?" question remains open in [issue #167](https://github.com/rendall/simple-comment/issues/167).
 2. `yarn run test:frontend`
    - Frontend locale/date tests run under `TZ=UTC` for deterministic output while preserving full locale matrix coverage.
 3. `yarn run test`

cypress/plugins/index.js

@@ -15,7 +15,7 @@
 /**
  * @type {Cypress.PluginConfig}
  */
-module.exports = (on, config) => {
+module.exports = () => {
   // `on` is used to hook into various events Cypress emits
   // `config` is the resolved Cypress config
 }

docs/checklists/Priority3TestSuiteSignalQualityChecklist02.md → docs/archive/Priority3TestSuiteSignalQualityChecklist02.md

@@ -1,6 +1,6 @@
 # Priority 3 Checklist 02 — `userGET` Investigate Resolution
 
-Status: superseded by `docs/checklists/Priority3TestSuiteSignalQualityChecklist02A.md` and `docs/checklists/Priority3TestSuiteSignalQualityChecklist02B.md`
+Status: archived and superseded by `Priority3TestSuiteSignalQualityChecklist02A.md` and `Priority3TestSuiteSignalQualityChecklist02B.md`
 
 Source plan: `docs/plans/Priority3TestSuiteSignalQualityPlan.md`
 

docs/plans/Priority3TestSuiteSignalQualityPlan.md → docs/archive/Priority3TestSuiteSignalQualityPlan.md

@@ -1,6 +1,6 @@
 # Priority 3 Plan — Test Suite Signal Quality
 
-Status: completed
+Status: archived
 
 Source backlog: `docs/RepoHealthImprovementBacklog.md` (`Priority 3: Test Suite Signal Quality`)
 

docs/Priority3TestSurvey.md → docs/archive/Priority3TestSurvey.md

@@ -1,6 +1,6 @@
 # Priority 3 Test Survey
 
-Status: active planning artifact (non-executable)
+Status: archived
 
 This document is a first-pass survey for Priority 3: Test Suite Signal Quality.
 

docs/archive/Priority4DependencyModernizationChecklist01.md

@@ -0,0 +1,117 @@
+# Priority 4 Checklist 01 — Residual Dependency Declaration Fixes
+
+Status: completed
+
+Source plan: `docs/plans/Priority4DependencyModernizationPlan.md`
+
+Evidence input: `docs/checklists/Priority4KnipReliabilityChecklist01Validation.md`
+
+QC mode: Conformance QC
+
+## Scope Lock (from source plan)
+
+- In scope anchor: "Use `package.json`, `yarn outdated`, and `yarn knip` as the current planning baseline for dependency modernization." (In Scope)
+- In scope anchor: "Define the first implementation slice as actual low-risk dependency modernization work, not a generic research-only pass." (In Scope)
+- In scope anchor: "Use repo-aware triage rules so config-loaded, preset-loaded, and optional-tool packages are not removed solely because a tool flagged them." (In Scope)
+- Constraint anchor: "Treat each upgrade step as the smallest logical reviewable unit; some steps may be paired package updates when versions are obviously coupled." (Constraints)
+- Constraint anchor: "Run agreed validation after each upgrade step, not only after the entire sequence." (Constraints)
+- Constraint anchor: "Treat tool output as evidence, not authority." (Constraints)
+- Acceptance anchor: "`knip` findings are treated as triage inputs and require manual verification before any removal or replacement decision." (Acceptance Criteria)
+- Acceptance anchor: "The first implementation checklist is explicitly limited to low-risk refresh work and does not include unrelated major-version migrations." (Acceptance Criteria)
+
+## Additional Scope Control
+
+- This checklist intentionally handles only the highest-confidence residual dependency findings from the calibrated Knip run:
+  - explicit dependency declaration for `svelte-eslint-parser`
+  - explicit dependency declaration for `jsdom`
+  - removal of `@babel/preset-typescript` after local config verification
+- This checklist intentionally excludes:
+  - file removals from the residual Knip queue
+  - ambiguous dependency removals such as `mongodb-memory-server`, `@netlify/functions`, `@xstate/cli`, `@xstate/test`, `ts-node`, `webpack-bundle-analyzer`, `webpack-license-plugin`, and `yarn`
+  - any major Svelte, MongoDB, Jest, lint/tooling, or runtime/platform migration work
+
+## Atomic Checklist Items
+
+- [x] C01 `[docs]` Create `docs/checklists/Priority4DependencyModernizationChecklist01Validation.md` with sections for baseline residual findings, per-step dependency changes, command evidence, before/after Knip comparison, and deferred residual queue notes.
+  - Depends on: none.
+  - Validation: T01, T03.
+  - Trace:
+    - "Use `package.json`, `yarn outdated`, and `yarn knip` as the current planning baseline for dependency modernization." (In Scope)
+    - "The plan defines a current dependency inventory method based on `package.json`, `yarn outdated`, and `yarn knip`." (Acceptance Criteria)
+
+- [x] C02 `[deps]` Add `svelte-eslint-parser` to `package.json` and `yarn.lock` so the parser named directly in `src/.eslintrc.json` is an explicit repo dependency instead of an unresolved Knip/import gap.
+  - Depends on: C01.
+  - Validation: T01, T02 (`yarn knip`, `yarn lint`).
+  - Trace:
+    - "Use repo-aware triage rules so config-loaded, preset-loaded, and optional-tool packages are not removed solely because a tool flagged them." (In Scope)
+    - "`knip` findings are treated as triage inputs and require manual verification before any removal or replacement decision." (Acceptance Criteria)
+
+- [x] C03 `[deps]` Add `jsdom` to `package.json` and `yarn.lock` so the frontend Jest environment usage reported from `src/tests/frontend/frontend-utilities.test.ts` is explicitly declared rather than left as an unlisted dependency signal.
+  - Depends on: C01.
+  - Validation: T01, T02 (`yarn knip`, `yarn test:frontend`).
+  - Trace:
+    - "Define the first implementation slice as actual low-risk dependency modernization work, not a generic research-only pass." (In Scope)
+    - "Treat tool output as evidence, not authority." (Constraints)
+
+- [x] C04 `[deps]` Remove `@babel/preset-typescript` from `package.json` and `yarn.lock` after verifying `babel.config.cjs` does not reference it and the change stays within this checklist's low-risk dependency scope.
+  - Depends on: C01.
+  - Validation: T01, T02 (`yarn knip`, `yarn test:frontend`, `yarn build`).
+  - Trace:
+    - "Define the first implementation slice as actual low-risk dependency modernization work, not a generic research-only pass." (In Scope)
+    - "`knip` findings are treated as triage inputs and require manual verification before any removal or replacement decision." (Acceptance Criteria)
+
+- [x] C05 `[docs]` Finalize `docs/checklists/Priority4DependencyModernizationChecklist01Validation.md` with before/after Knip evidence, relevant command outcomes, and a clearly deferred residual queue for later Priority 4 checklists.
+  - Depends on: C02, C03, C04.
+  - Validation: T01, T03.
+  - Trace:
+    - "The first implementation checklist is explicitly limited to low-risk refresh work and does not include unrelated major-version migrations." (Acceptance Criteria)
+    - "Triage evidence: Pass: every candidate in the first checklist has recorded ecosystem grouping, risk class, and rationale for `refresh`, `replace`, `remove`, `defer`, or `plan separately`." (Validation Strategy)
+
+## Validation Items
+
+- [x] T01 `[validation]` Residual-signal validation: run `yarn knip` after C02-C04 and confirm the calibrated report no longer includes unresolved `svelte-eslint-parser`, unlisted `jsdom`, or unused `@babel/preset-typescript`, while preserving the intentionally deferred residual queue.
+  - Trace:
+    - "Triage evidence: Pass: every candidate in the first checklist has recorded ecosystem grouping, risk class, and rationale for `refresh`, `replace`, `remove`, `defer`, or `plan separately`." (Validation Strategy)
+    - "Treat tool output as evidence, not authority." (Constraints)
+
+- [x] T02 `[validation]` Step-level smoke validation: after each dependency change item, run the exact local validation commands for that step and record the outcomes in the validation notes:
+  - C02: `yarn knip`, `yarn lint`
+  - C03: `yarn knip`, `yarn test:frontend`
+  - C04: `yarn knip`, `yarn test:frontend`, `yarn build`
+  - Trace:
+    - "Run agreed validation after each upgrade step, not only after the entire sequence." (Constraints)
+    - "Step-level smoke/process evidence: Pass: every accepted upgrade step records the validation commands run immediately after that step, and the loop stops when a failure exceeds the step's approved local scope." (Validation Strategy)
+
+- [x] T03 `[validation]` Scope/process validation: confirm this checklist stayed within low-risk dependency declaration/removal work, did not cross into major migration scope, and did not remove any additional Knip-flagged items without separate manual verification.
+  - Trace:
+    - "The first implementation checklist is explicitly limited to low-risk refresh work and does not include unrelated major-version migrations." (Acceptance Criteria)
+    - "Do not allow the first implementation loop to cross the approved deferment boundary for major Svelte or MongoDB work." (Constraints)
+
+## Behavior Slices
+
+### Slice S1
+- Goal: Establish traceable validation notes and fix the two most credible missing dependency declarations from the calibrated Knip queue.
+- Items: C01, C02, C03, T01, T02.
+- Type: behavior.
+
+### Slice S2
+- Goal: Remove one high-confidence unused dependency after local config verification and record the resulting Knip delta.
+- Items: C04, C05, T03.
+- Type: behavior.
+
+## Conformance QC
+
+- Missing from plan:
+  - None.
+
+- Extra beyond plan:
+  - None; the checklist narrows the approved low-risk slice to the highest-confidence residual dependency items surfaced by calibrated `knip`.
+
+- Atomicity fixes needed:
+  - None identified; each item is scoped to one dependency declaration/removal or one documentation outcome.
+
+- Validation mapping gaps:
+  - None identified; each implementation item maps to explicit checklist validation and the plan's required step-level evidence model.
+
+- Pass/Fail: checklist achieves plan goals
+  - Pass.

docs/archive/Priority4DependencyModernizationChecklist01Validation.md

@@ -0,0 +1,136 @@
+# Priority 4 Checklist 01 Validation — Residual Dependency Declaration Fixes
+
+Status: complete
+
+Checklist: `docs/checklists/Priority4DependencyModernizationChecklist01.md`
+
+## Baseline Residual Findings
+
+Baseline captured on 2026-03-23 before checklist implementation:
+
+- `yarn knip` reported:
+  - unresolved import `svelte-eslint-parser`
+  - unlisted dependency `jsdom`
+  - unused dependency `@babel/preset-typescript`
+  - additional intentionally deferred residual findings outside this checklist's scope
+- `yarn lint` passed with two pre-existing warnings in `src/tests/frontend/frontend-utilities.test.ts`
+- `yarn test:frontend` passed: 6 suites, 139 tests
+- `yarn build` passed
+  - backend retained the known MongoDB webpack warning
+  - frontend build completed successfully
+
+## Per-Step Dependency Changes
+
+- C02:
+  - added `svelte-eslint-parser` to `package.json` so the parser named directly in `src/.eslintrc.json` is explicitly declared
+  - `yarn.lock` already contained a matching `svelte-eslint-parser@^0.32.2` entry from the existing dependency graph, so this step required no lockfile content change
+- C03:
+  - added `jsdom` to `package.json` so the frontend Jest environment usage reported from `src/tests/frontend/frontend-utilities.test.ts` is explicitly declared
+  - `yarn.lock` already contained a matching `jsdom@^20.0.0` entry from the existing Jest environment dependency graph, so this step required no lockfile content change
+- C04:
+  - removed `@babel/preset-typescript` from `package.json`
+  - removed the direct `@babel/preset-typescript@^7.28.5` stanza from `yarn.lock`
+  - verified beforehand that `babel.config.cjs` references only `@babel/preset-env`
+
+## Command Evidence
+
+- C02:
+  - `yarn knip`
+    - pass condition met for this step: unresolved `svelte-eslint-parser` is no longer reported
+    - intentionally deferred residual findings remain visible
+  - `yarn lint`
+    - passed with the same two pre-existing warnings in `src/tests/frontend/frontend-utilities.test.ts`
+- C03:
+  - `yarn knip`
+    - pass condition met for this step: unlisted `jsdom` is no longer reported
+    - intentionally deferred residual findings remain visible
+  - `yarn test:frontend`
+    - passed: 6 suites, 139 tests
+- C04:
+  - `yarn knip`
+    - pass condition met for this step: unused `@babel/preset-typescript` is no longer reported
+    - intentionally deferred residual findings remain visible
+  - `yarn test:frontend`
+    - passed: 6 suites, 139 tests
+  - `yarn build`
+    - passed
+    - backend retained the known MongoDB webpack warning
+    - frontend build completed successfully
+
+## Before/After Knip Comparison
+
+Before this checklist:
+
+- `yarn knip` reported:
+  - unresolved import `svelte-eslint-parser`
+  - unlisted dependency `jsdom`
+  - unused dependency `@babel/preset-typescript`
+  - additional intentionally deferred residual findings outside this checklist's scope
+
+After C02-C04:
+
+- `yarn knip` no longer reports:
+  - unresolved `svelte-eslint-parser`
+  - unlisted `jsdom`
+  - unused `@babel/preset-typescript`
+- the current calibrated residual report remains focused on intentionally deferred follow-up work rather than declaration gaps for the active frontend lint/test stack
+- the residual unused dependency list is now:
+  - `@netlify/functions`
+  - `@xstate/cli`
+  - `@xstate/test`
+  - `mongodb-memory-server`
+  - `ts-node`
+  - `webpack-bundle-analyzer`
+  - `webpack-license-plugin`
+  - `yarn`
+- the residual unused file list is now:
+  - `scripts/createTestEnv.mjs`
+  - `scripts/mockComment.mjs`
+  - `src/components/low-level/IconToggle.svelte`
+  - `src/lib/NoOpNotificationService.ts`
+
+## Deferred Residual Queue
+
+Deferred from this checklist for later Priority 4 work:
+
+- ambiguous dependency removals:
+  - `@netlify/functions`
+  - `@xstate/cli`
+  - `@xstate/test`
+  - `mongodb-memory-server`
+  - `ts-node`
+  - `webpack-bundle-analyzer`
+  - `webpack-license-plugin`
+  - `yarn`
+- file cleanup candidates:
+  - `scripts/createTestEnv.mjs`
+  - `scripts/mockComment.mjs`
+  - `src/components/low-level/IconToggle.svelte`
+  - `src/lib/NoOpNotificationService.ts`
+- residual Knip follow-up:
+  - redundant `src/entry/index.ts` entry hint from `knip.json`
+  - remaining unused exports and unused exported types report
+
+This checklist intentionally leaves those items visible for later manual verification rather than suppressing or removing them opportunistically.
+
+## PR-Readiness / Local CI Parity
+
+`yarn run ci:local` was executed on 2026-03-24.
+
+Result:
+
+- parity run failed with exit code `1`
+
+Observed path through the script:
+
+- install/link phase completed
+- an optional dependency (`unix-dgram`) failed to build under Node `22.22.0` during install, but Yarn explicitly reported it as safe to ignore and the parity script continued
+- lint step reproduced the same two pre-existing warnings in `src/tests/frontend/frontend-utilities.test.ts`
+- prettier parity step then failed on:
+  - `knip.json`
+
+Current recorded blocker:
+
+- `yarn run ci:local` is blocked by formatting drift in `knip.json` at the `prettier --list-different .` step
+
+This note records the blocker only. It does not apply a formatting fix, because the request for this step was to record the local parity outcome rather than to change code or formatting proactively.