docs: add repository health files

Ahmed Mahmoud · Ahmed Mahmoud · commit 179002201703 · 2025-11-11T09:12:14.000+01:00
- Add issue templates for bugs and feature requests
- Add comprehensive contributing guidelines
- Add security policy with vulnerability disclosure process
- Set up proper community standards for open source project
diff --git a/.github/ISSUE_TEMPLATE/bug_report.yml b/.github/ISSUE_TEMPLATE/bug_report.yml
@@ -0,0 +1,47 @@
+---
+name: Bug report
+about: Create a report to help us improve
+title: '[BUG] '
+labels: bug
+assignees: dev-ahmedmahmoud
+
+---
+
+**Describe the bug**
+A clear and concise description of what the bug is.
+
+**To Reproduce**
+Steps to reproduce the behavior:
+1. Go to '...'
+2. Click on '....'
+3. Scroll down to '....'
+4. See error
+
+**Expected behavior**
+A clear and concise description of what you expected to happen.
+
+**Screenshots**
+If applicable, add screenshots to help explain your problem.
+
+**Environment (please complete the following information):**
+- React version: [e.g. 18.2.0]
+- Package version: [e.g. 5.0.0]
+- Browser: [e.g. chrome, safari]
+- OS: [e.g. iOS, Windows, macOS]
+
+**Code Example**
+```typescript
+// Minimal code example that demonstrates the issue
+import { Scrollbars } from '@dev-ahmed-mahmoud/react-custom-scrollbars'
+
+function MyComponent() {
+  return (
+    <Scrollbars>
+      {/* Your code here */}
+    </Scrollbars>
+  )
+}
+```
+
+**Additional context**
+Add any other context about the problem here.
diff --git a/.github/ISSUE_TEMPLATE/feature_request.yml b/.github/ISSUE_TEMPLATE/feature_request.yml
@@ -0,0 +1,26 @@
+---
+name: Feature request
+about: Suggest an idea for this project
+title: '[FEATURE] '
+labels: enhancement
+assignees: dev-ahmedmahmoud
+
+---
+
+**Is your feature request related to a problem? Please describe.**
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+A clear and concise description of what you want to happen.
+
+**Describe alternatives you've considered**
+A clear and concise description of any alternative solutions or features you've considered.
+
+**Use Case**
+Describe the specific use case or scenario where this feature would be helpful.
+
+**TypeScript Support**
+If applicable, describe how this feature should be typed in TypeScript.
+
+**Additional context**
+Add any other context or screenshots about the feature request here.
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
@@ -0,0 +1,218 @@
+# Contributing to @dev-ahmed-mahmoud/react-custom-scrollbars
+
+Thank you for your interest in contributing! This project is a modern TypeScript/React 19 implementation of the original react-custom-scrollbars by [Malte Wessel](https://github.com/malte-wessel).
+
+## 📋 Table of Contents
+
+- [Code of Conduct](#code-of-conduct)
+- [How Can I Contribute?](#how-can-i-contribute)
+- [Development Setup](#development-setup)
+- [Pull Request Process](#pull-request-process)
+- [Coding Standards](#coding-standards)
+
+## Code of Conduct
+
+This project follows a [Code of Conduct](CODE_OF_CONDUCT.md) that we expect all contributors to adhere to.
+
+## How Can I Contribute?
+
+### 🐛 Reporting Bugs
+- Use the [bug report template](.github/ISSUE_TEMPLATE/bug_report.yml)
+- Include a clear description and reproduction steps
+- Provide environment details (React/Node.js versions, browser, OS)
+- Include a minimal code example demonstrating the issue
+
+### 💡 Suggesting Features
+- Use the [feature request template](.github/ISSUE_TEMPLATE/feature_request.yml)
+- Explain the use case and expected behavior
+- Consider TypeScript implications
+
+### 🔧 Contributing Code
+- Fix bugs or implement new features
+- Improve documentation
+- Add tests for new functionality
+- Optimize performance
+
+## Development Setup
+
+### Prerequisites
+- **Node.js**: 20.0.0 or higher
+- **npm**: Latest version
+- **TypeScript**: 5.8+ knowledge helpful
+
+### Setup Instructions
+
+1. **Fork and Clone**
+   ```bash
+   git clone https://github.com/YOUR-USERNAME/react-custom-scrollbars.git
+   cd react-custom-scrollbars
+   ```
+
+2. **Install Dependencies**
+   ```bash
+   npm install
+   ```
+
+3. **Development Commands**
+   ```bash
+   # Run tests
+   npm test
+   
+   # Run tests with coverage
+   npm run test:coverage
+   
+   # Type checking
+   npm run typecheck
+   
+   # Linting
+   npm run lint
+   npm run lint:fix
+   
+   # Build
+   npm run build
+   
+   # Run all checks
+   npm run prepublishOnly
+   ```
+
+## Pull Request Process
+
+### 1. Create a Branch
+```bash
+git checkout -b feature/your-feature-name
+# or
+git checkout -b fix/your-bug-fix
+```
+
+### 2. Make Your Changes
+- Write clear, concise commit messages following [Conventional Commits](https://conventionalcommits.org/)
+- Add tests for new functionality
+- Update documentation if needed
+- Ensure TypeScript types are accurate
+
+### 3. Test Your Changes
+```bash
+# Run all checks
+npm run prepublishOnly
+
+# Ensure all tests pass
+npm test
+
+# Check TypeScript compilation
+npm run typecheck
+
+# Verify linting
+npm run lint
+```
+
+### 4. Commit and Push
+```bash
+git commit -m "feat: add new scrollbar customization option"
+git push origin feature/your-feature-name
+```
+
+### 5. Create Pull Request
+- Use a clear, descriptive title
+- Reference any related issues
+- Include a detailed description of changes
+- Add screenshots for visual changes
+
+## Coding Standards
+
+### TypeScript Guidelines
+```typescript
+// ✅ Good: Proper typing
+interface MyComponentProps {
+  children: ReactNode
+  className?: string
+}
+
+// ✅ Good: Use meaningful names
+const handleScrollStart = useCallback(() => {
+  // implementation
+}, [])
+
+// ❌ Avoid: Any types
+const handleEvent = (event: any) => { }
+```
+
+### React Patterns
+```typescript
+// ✅ Good: Use hooks appropriately
+const MyComponent = forwardRef<ScrollbarsRef, MyComponentProps>((props, ref) => {
+  const scrollbarsRef = useRef<ScrollbarsRef>(null)
+  
+  useImperativeHandle(ref, () => ({
+    scrollToTop: () => scrollbarsRef.current?.scrollToTop(),
+  }))
+  
+  return <Scrollbars ref={scrollbarsRef} {...props} />
+})
+```
+
+### Testing Requirements
+- **Unit Tests**: For all new features and bug fixes
+- **TypeScript Tests**: Ensure types are properly tested
+- **Integration Tests**: For component interactions
+
+```typescript
+// Example test
+describe('Scrollbars', () => {
+  it('should call onScrollStart when scrolling begins', async () => {
+    const onScrollStart = vi.fn()
+    
+    render(
+      <Scrollbars onScrollStart={onScrollStart}>
+        <div>Content</div>
+      </Scrollbars>
+    )
+    
+    // Test implementation
+  })
+})
+```
+
+## 📚 Documentation
+
+### Code Documentation
+- Use TypeScript for self-documenting code
+- Add JSDoc comments for complex functions
+- Include examples in documentation
+
+### README Updates
+- Update README.md for new features
+- Add TypeScript examples
+- Update API documentation
+
+## 🔍 Code Review Process
+
+1. **Automated Checks**: All PRs must pass CI checks
+2. **Manual Review**: Code will be reviewed for:
+   - Functionality and correctness
+   - TypeScript best practices
+   - Performance implications
+   - Test coverage
+   - Documentation completeness
+
+## 🙏 Recognition
+
+Contributors will be:
+- Added to the contributors list
+- Credited in release notes
+- Mentioned in the README
+
+## ❓ Questions?
+
+- Open an issue for questions
+- Check existing issues and PRs
+- Review the [API documentation](docs/API.md)
+
+## 📝 License
+
+By contributing, you agree that your contributions will be licensed under the MIT License.
+
+---
+
+**Credits:**
+- Original library by [Malte Wessel](https://github.com/malte-wessel)
+- v5.0 modernization maintained by [Ahmed Mahmoud](https://github.com/dev-ahmedmahmoud)
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,82 @@
+# Security Policy
+
+## Supported Versions
+
+We actively maintain and provide security updates for the following versions:
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 5.0.x   | ✅ Yes             |
+| < 5.0   | ❌ No              |
+
+**Note**: This package (v5.0+) is a complete modernization. For older versions (4.x and below), please refer to the [original repository](https://github.com/malte-wessel/react-custom-scrollbars).
+
+## Reporting a Vulnerability
+
+If you discover a security vulnerability in this package, please help us maintain a safe environment by reporting it responsibly.
+
+### How to Report
+
+1. **Email**: Send details to dev.ahmedmahmoud@gmail.com
+2. **Subject**: Use "SECURITY: react-custom-scrollbars vulnerability"
+3. **Include**:
+   - Description of the vulnerability
+   - Steps to reproduce
+   - Potential impact
+   - Suggested fix (if any)
+
+### What to Expect
+
+- **Acknowledgment**: Within 24-48 hours
+- **Initial Assessment**: Within 1 week
+- **Resolution Timeline**: Depending on severity
+  - Critical: Within 7 days
+  - High: Within 14 days
+  - Medium: Within 30 days
+  - Low: Next scheduled release
+
+### Security Updates
+
+Security fixes will be:
+- Released as patch versions (e.g., 5.0.1)
+- Documented in CHANGELOG.md
+- Announced in GitHub releases
+- Published immediately to npm
+
+## Security Considerations
+
+### What We Monitor
+
+- **Dependencies**: Regular audits with `npm audit`
+- **Code Quality**: ESLint security rules
+- **TypeScript**: Type safety to prevent runtime errors
+- **Build Process**: Secure build pipeline with GitHub Actions
+
+### Safe Usage Guidelines
+
+1. **Keep Updated**: Always use the latest version
+2. **Audit Dependencies**: Run `npm audit` in your project
+3. **Input Sanitization**: Sanitize any user content passed to scrollbars
+4. **CSP Headers**: Use Content Security Policy in production
+
+### Known Security Features
+
+- **No innerHTML Usage**: All DOM manipulation is safe
+- **No eval() or Function()**: No dynamic code execution
+- **Type Safety**: TypeScript prevents many runtime errors
+- **Minimal Dependencies**: Zero runtime dependencies
+
+## Vulnerability Disclosure
+
+We follow responsible disclosure practices:
+- Critical vulnerabilities are patched before public disclosure
+- Security advisories are published on GitHub
+- Users are notified through multiple channels
+
+## Contact
+
+For security-related questions or concerns:
+- **Email**: dev.ahmedmahmoud@gmail.com
+- **GitHub**: [@dev-ahmedmahmoud](https://github.com/dev-ahmedmahmoud)
+
+Thank you for helping keep the community safe! 🛡️
diff --git a/package.json b/package.json
