COMPARE ACROSS FORKS AND PRs

.github/agents/Reviewer.agent.md

@@ -0,0 +1,20 @@
+---
+name: 'Reviewer'
+description: 'Review code for quality and adherence to best practices.'
+tools: ['vscode/askQuestions', 'vscode/vscodeAPI', 'read', 'agent', 'search', 'web']
+---
+# Code Reviewer agent
+
+You are an experienced senior developer conducting a thorough code review. Your role is to review the code for quality, best practices, and adherence to [project standards](../copilot-instructions.md) without making direct code changes.
+
+When reviewing code, structure your feedback with clear headings and specific examples from the code being reviewed.
+
+## Analysis Focus
+- Analyze code quality, structure, and best practices
+- Identify potential bugs, security issues, or performance problems
+- Evaluate accessibility and user experience considerations
+
+## Important Guidelines
+- Ask clarifying questions about design decisions when appropriate
+- Focus on explaining what should be changed and why
+- DO NOT write or suggest specific code changes directly

.github/copilot-instructions.md

@@ -0,0 +1,16 @@
+# Project general coding guidelines
+
+## Code Style
+- Use semantic HTML5 elements (header, main, section, article, etc.)
+- Prefer modern JavaScript (ES6+) features like const/let, arrow functions, and template literals
+
+## Naming Conventions
+- Use PascalCase for component names, interfaces, and type aliases
+- Use camelCase for variables, functions, and methods
+- Prefix private class members with underscore (_)
+- Use ALL_CAPS for constants
+
+## Code Quality
+- Use meaningful variable and function names that clearly describe their purpose
+- Include helpful comments for complex logic
+- Add error handling for user inputs and API calls

.github/workflows/codeql.yml

@@ -0,0 +1,101 @@
+# For most projects, this workflow file will not need changing; you simply need
+# to commit it to your repository.
+#
+# You may wish to alter this file to override the set of languages analyzed,
+# or to provide custom queries or build logic.
+#
+# ******** NOTE ********
+# We have attempted to detect the languages in your repository. Please check
+# the `language` matrix defined below to confirm you have the correct set of
+# supported CodeQL languages.
+#
+name: "CodeQL Advanced"
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+  schedule:
+    - cron: '35 14 * * 2'
+
+jobs:
+  analyze:
+    name: Analyze (${{ matrix.language }})
+    # Runner size impacts CodeQL analysis time. To learn more, please see:
+    #   - https://gh.io/recommended-hardware-resources-for-running-codeql
+    #   - https://gh.io/supported-runners-and-hardware-resources
+    #   - https://gh.io/using-larger-runners (GitHub.com only)
+    # Consider using larger runners or machines with greater resources for possible analysis time improvements.
+    runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
+    permissions:
+      # required for all workflows
+      security-events: write
+
+      # required to fetch internal or private CodeQL packs
+      packages: read
+
+      # only required for workflows in private repositories
+      actions: read
+      contents: read
+
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+        - language: actions
+          build-mode: none
+        - language: javascript-typescript
+          build-mode: none
+        # CodeQL supports the following values keywords for 'language': 'actions', 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'rust', 'swift'
+        # Use `c-cpp` to analyze code written in C, C++ or both
+        # Use 'java-kotlin' to analyze code written in Java, Kotlin or both
+        # Use 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both
+        # To learn more about changing the languages that are analyzed or customizing the build mode for your analysis,
+        # see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning.
+        # If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how
+        # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v4
+
+    # Add any setup steps before running the `github/codeql-action/init` action.
+    # This includes steps like installing compilers or runtimes (`actions/setup-node`
+    # or others). This is typically only required for manual builds.
+    # - name: Setup runtime (example)
+    #   uses: actions/setup-example@v1
+
+    # Initializes the CodeQL tools for scanning.
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v4
+      with:
+        languages: ${{ matrix.language }}
+        build-mode: ${{ matrix.build-mode }}
+        # If you wish to specify custom queries, you can do so here or in a config file.
+        # By default, queries listed here will override any specified in a config file.
+        # Prefix the list here with "+" to use these queries and those in the config file.
+
+        # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+        # queries: security-extended,security-and-quality
+
+    # If the analyze step fails for one of the languages you are analyzing with
+    # "We were unable to automatically build your code", modify the matrix above
+    # to set the build mode to "manual" for that language. Then modify this step
+    # to build your code.
+    # ℹ️ Command-line programs to run using the OS shell.
+    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
+    - name: Run manual build steps
+      if: matrix.build-mode == 'manual'
+      shell: bash
+      run: |
+        echo 'If you are using a "manual" build mode for one or more of the' \
+          'languages you are analyzing, replace this with the commands to build' \
+          'your code, for example:'
+        echo '  make bootstrap'
+        echo '  make release'
+        exit 1
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v4
+      with:
+        category: "/language:${{matrix.language}}"

.github/workflows/snyk-security.yml

@@ -0,0 +1,79 @@
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+# A sample workflow which sets up Snyk to analyze the full Snyk platform (Snyk Open Source, Snyk Code,
+# Snyk Container and Snyk Infrastructure as Code)
+# The setup installs the Snyk CLI - for more details on the possible commands
+# check https://docs.snyk.io/snyk-cli/cli-reference
+# The results of Snyk Code are then uploaded to GitHub Security Code Scanning
+#
+# In order to use the Snyk Action you will need to have a Snyk API token.
+# More details in https://github.com/snyk/actions#getting-your-snyk-token
+# or you can signup for free at https://snyk.io/login
+#
+# For more examples, including how to limit scans to only high-severity issues
+# and fail PR checks, see https://github.com/snyk/actions/
+
+name: Snyk Security
+
+on:
+  push:
+    branches: ["main" ]
+  pull_request:
+    branches: ["main"]
+
+permissions:
+  contents: read
+
+jobs:
+  snyk:
+    permissions:
+      contents: read # for actions/checkout to fetch code
+      security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
+      actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Set up Snyk CLI to check for security issues
+        # Snyk can be used to break the build when it detects security issues.
+        # In this case we want to upload the SAST issues to GitHub Code Scanning
+        uses: snyk/actions/setup@806182742461562b67788a64410098c9d9b96adb
+
+        # For Snyk Open Source you must first set up the development environment for your application's dependencies
+        # For example for Node
+        #- uses: actions/setup-node@v4
+        #  with:
+        #    node-version: 20
+
+        env:
+          # This is where you will need to introduce the Snyk API token created with your Snyk account
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+
+        # Runs Snyk Code (SAST) analysis and uploads result into GitHub.
+        # Use || true to not fail the pipeline
+      - name: Snyk Code test
+        run: snyk code test --sarif > snyk-code.sarif # || true
+
+        # Runs Snyk Open Source (SCA) analysis and uploads result to Snyk.
+      - name: Snyk Open Source monitor
+        run: snyk monitor --all-projects
+
+        # Runs Snyk Infrastructure as Code (IaC) analysis and uploads result to Snyk.
+        # Use || true to not fail the pipeline.
+      - name: Snyk IaC test and report
+        run: snyk iac test --report # || true
+
+        # Build the docker image for testing
+      - name: Build a Docker image
+        run: docker build -t your/image-to-test .
+        # Runs Snyk Container (Container and SCA) analysis and uploads result to Snyk.
+      - name: Snyk Container monitor
+        run: snyk container monitor your/image-to-test --file=Dockerfile
+
+        # Push the Snyk Code results into GitHub Code Scanning tab
+      - name: Upload result to GitHub Code Scanning
+        uses: github/codeql-action/upload-sarif@v3
+        with:
+          sarif_file: snyk-code.sarif

LICENSE

@@ -1,21 +1,15 @@
-MIT License
+# Licensing Architecture
 
-    Copyright (c) Microsoft Corporation.
+The project "MILEHIGH.WORLD: INTO THE VOID" is governed by a multi-layered licensing architecture. This repository does not use a single license.
 
-    Permission is hereby granted, free of charge, to any person obtaining a copy
-    of this software and associated documentation files (the "Software"), to deal
-    in the Software without restriction, including without limitation the rights
-    to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-    copies of the Software, and to permit persons to whom the Software is
-    furnished to do so, subject to the following conditions:
+Please refer to the following documents in the `legal/` directory for specific terms:
 
-    The above copyright notice and this permission notice shall be included in all
-    copies or substantial portions of the Software.
+1.  **[Proprietary EULA](legal/EULA.md)**: Governs the executable client and client-side architecture.
+2.  **[CC BY-NC-ND 4.0](legal/CC-BY-NC-ND-4.0.md)**: Governs narrative mythos, iconography, and lore.
+3.  **[Business Source License 1.1](legal/BSL-1.1.md)**: Governs technical infrastructure and source code.
+4.  **[Managed Sync License](legal/SYNC-LICENSE.md)**: Governs auditory scores and musical recordings.
 
-    THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-    IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-    FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-    AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-    LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-    OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-    SOFTWARE
+**Strict Proscription:** Any use of Project assets for the training of Artificial Intelligence (AI) or Machine Learning (ML) models is absolutely prohibited without express written consent from MILEHIGH-WORLD LLC.
+
+---
+MILEHIGH-WORLD LLC

README.md

@@ -1,2 +1,34 @@
-# .github
-Default Community Health Files for the Microsoft organization on GitHub
+# MILEHIGH.WORLD: INTO THE VOID
+
+MILEHIGH.WORLD: INTO THE VOID is a multi-disciplinary digital enterprise. This project serves as the task management component for the broader project designated as "INTO THE VOID".
+
+## Licensing Architecture
+
+The Project utilizes a multi-layered licensing architecture to govern its various constituent elements, categorized according to their specific application to software architecture, creative assets, and end-user interactions.
+
+### Summary of Licensing Instruments
+
+| Asset Classification | Prescribed Licensing Instrument | Rationale for Selection |
+| :--- | :--- | :--- |
+| **Executable Client** | [Custom Proprietary EULA](legal/EULA.md) | Absolute reservation of rights to prevent unauthorized distribution and code tampering. |
+| **Lore & Iconography** | [CC BY-NC-ND 4.0](legal/CC-BY-NC-ND-4.0.md) | Facilitates community growth while barring commercial theft and protecting lore integrity. |
+| **Source Architecture** | [Business Source License (BSL) 1.1](legal/BSL-1.1.md) | Protects R&D investment while offering transparency via source-available code. |
+| **Auditory Scores** | [Managed Sync License](legal/SYNC-LICENSE.md) | Preserves the premium sonic identity and ensures commercial/exclusory control. |
+| **AI/ML Training** | Strict Proscription | Absolute prevention of narrative and artistic cannibalization by AI. |
+
+For full licensing details, please refer to the `legal/` directory.
+
+## Development
+
+The project follows standard web development practices with a focus on accessibility and modern JavaScript features.
+
+### Features
+
+- Task CRUD operations
+- Persistence via localStorage
+- Dark mode support
+- Accessibility (ARIA labels, semantic HTML)
+
+---
+
+MILEHIGH-WORLD LLC

index.html

@@ -0,0 +1,32 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>MILEHIGH.WORLD: INTO THE VOID</title>
+    <link rel="stylesheet" href="styles.css">
+</head>
+<body>
+    <header>
+        <h1>MILEHIGH.WORLD: INTO THE VOID</h1>
+        <button id="theme-toggle" aria-label="Toggle dark mode">Dark Mode</button>
+    </header>
+    <main class="container">
+        <section class="task-input">
+            <form id="task-form">
+                <input type="text" id="task-input" placeholder="Enter a new task..." required aria-label="New task">
+                <button type="submit">Add Task</button>
+            </form>
+        </section>
+        <section class="task-filters">
+            <button id="filter-all" class="active">All</button>
+            <button id="filter-pending">Pending</button>
+            <button id="filter-completed">Completed</button>
+        </section>
+        <section class="task-list-section">
+            <ul id="task-list"></ul>
+        </section>
+    </main>
+    <script src="script.js"></script>
+</body>
+</html>

legal/BSL-1.1.md

@@ -0,0 +1,22 @@
+# Business Source License 1.1
+
+**Project:** MILEHIGH.WORLD: INTO THE VOID (Technical Infrastructure & Back-end)
+**Licensor:** MILEHIGH-WORLD LLC
+
+## 1. License Grant
+The Licensor hereby grants you the right to copy, modify, create derivative works, redistribute, and make non-production use of the Licensed Work.
+
+## 2. Commercial Use
+Any use of the Licensed Work for commercial purposes is strictly prohibited until the **Change Date**.
+
+## 3. Change Date
+The Change Date is set to **January 1, 2028**.
+
+## 4. Change License
+On the Change Date, or in the event of a total cessation of the Project by the Corporation, the Licensed Work shall be automatically converted to the **Apache License, Version 2.0**.
+
+## 5. Additional Use Grant
+The Corporation may provide specific "Additional Use Grants" for collaborative community bug-reporting or security auditing.
+
+---
+MILEHIGH-WORLD LLC

legal/CC-BY-NC-ND-4.0.md

@@ -0,0 +1,27 @@
+# Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International (CC BY-NC-ND 4.0)
+
+**Applicability:** Narrative Mythos, Conceptual Iconography, World-Building Lore, and Promotional Artistry of "MILEHIGH.WORLD: INTO THE VOID".
+
+## Summary of the License
+
+You are free to:
+- **Share** — copy and redistribute the material in any medium or format.
+
+Under the following terms:
+
+### Attribution (BY)
+You must give appropriate credit to **MILEHIGH-WORLD LLC**, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
+
+### Non-Commercial (NC)
+You may not use the material for commercial purposes. This includes, but is not limited to, gated paywalls, unauthorized merchandise, or any extraction of pecuniary gain.
+
+### NoDerivatives (ND)
+If you remix, transform, or build upon the material, you may not distribute the modified material. This is critical for maintaining "Lore Integrity" and preventing the fragmentation of the narrative universe.
+
+## Notice
+No additional restrictions — You may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.
+
+For the full legal code, please visit: [https://creativecommons.org/licenses/by-nc-nd/4.0/legalcode](https://creativecommons.org/licenses/by-nc-nd/4.0/legalcode)
+
+---
+MILEHIGH-WORLD LLC