chore: update template

skills/repo-lib-consumer/references/api.md

@@ -5,7 +5,6 @@
 Look for one of these patterns in the consuming repo:
 
 - `repo-lib.lib.mkRepo`
-- `repo-lib.lib.mkDevShell`
 - `repo-lib.lib.mkRelease`
 - `inputs.repo-lib`
 
@@ -27,6 +26,7 @@ repo-lib.lib.mkRepo {
       extraShellText = "";
       allowImpureBootstrap = false;
       bootstrap = "";
+      banner = { };
     };
 
     formatting = {
@@ -54,12 +54,35 @@ repo-lib.lib.mkRepo {
 Generated outputs:
 
 - `devShells.${system}.default`
+- `checks.${system}.formatting-check`
 - `checks.${system}.hook-check`
 - `checks.${system}.lefthook-check`
 - `formatter.${system}`
 - `packages.${system}.release` when `config.release != null`
 - merged `packages` and `apps` from `perSystem`
 
+Merge points:
+
+- `config.checks` merges with `perSystem.checks`
+- `config.lefthook` recursively merges with `perSystem.lefthook`
+- `config.shell` recursively merges with `perSystem.shell`
+- generated release packages merge with `perSystem.packages`
+
+Conflicts on `checks`, `packages`, and `apps` names throw.
+
+## `config.includeStandardPackages`
+
+Default: `true`
+
+When enabled, the shell includes:
+
+- `nixfmt`
+- `gitlint`
+- `gitleaks`
+- `shfmt`
+
+Use `false` only when the consumer explicitly wants to own the full shell package list.
+
 ## `config.shell`
 
 Fields:
@@ -71,13 +94,38 @@ Fields:
 - `bootstrap`
   Shell snippet that runs before the banner.
 - `allowImpureBootstrap`
-  Must be `true` if `bootstrap` is non-empty.
+  Must be `true` when `bootstrap` is non-empty.
+- `banner`
+  Shell banner configuration.
 
 Rules:
 
 - Default is pure-first.
-- Do not add bootstrap work unless the user actually wants imperative setup.
-- Use `bootstrap` for unavoidable local setup only.
+- Do not add bootstrap work unless the user actually wants imperative local setup.
+- The template uses bootstrap intentionally for Bun global install paths and Moon bootstrapping; do not generalize that into normal package setup unless the repo already wants that behavior.
+
+### `config.shell.banner`
+
+Defaults:
+
+```nix
+{
+  style = "simple";
+  icon = "🚀";
+  title = "Dev shell ready";
+  titleColor = "GREEN";
+  subtitle = "";
+  subtitleColor = "GRAY";
+  borderColor = "BLUE";
+}
+```
+
+Rules:
+
+- `style` must be `simple` or `pretty`.
+- `borderColor` matters only for `pretty`.
+- Tool rows can also set `banner.color`, `banner.icon`, and `banner.iconColor`.
+- Required tool probe failures abort shell startup.
 
 ## `config.formatting`
 
@@ -91,7 +139,7 @@ Fields:
 Rules:
 
 - `nixfmt` is always enabled.
-- Use formatter settings instead of ad hoc shell formatting logic.
+- Use formatter settings instead of shell hooks for formatting behavior.
 
 ## Checks
 
@@ -99,10 +147,10 @@ Rules:
 
 ```nix
 {
-  command = "go test ./...";
+  command = "bun test";
   stage = "pre-push"; # or "pre-commit"
   passFilenames = false;
-  runtimeInputs = [ pkgs.go ];
+  runtimeInputs = [ pkgs.bun ];
 }
 ```
 
@@ -114,37 +162,53 @@ Defaults:
 
 Rules:
 
-- Only `pre-commit` and `pre-push` are supported.
-- The command is wrapped as a script and connected into `lefthook.nix`.
-- `pre-commit` and `pre-push` commands are configured to run in parallel.
+- Only `pre-commit` and `pre-push` are supported here.
+- The command is wrapped with `writeShellApplication`.
+- `pre-commit` and `pre-push` stages are configured to run in parallel.
+- `passFilenames = true` maps to `{staged_files}` for `pre-commit` and `{push_files}` for `pre-push`.
 
 ## Raw Lefthook config
 
-Use `config.lefthook` or `perSystem.lefthook` for advanced Lefthook features that the built-in `checks` abstraction does not carry.
+Use `config.lefthook` or `perSystem.lefthook` when the task needs advanced Lefthook features or unsupported stages.
 
-Example:
+Pass-through attrset example:
 
 ```nix
 {
   checks.tests = {
-    command = "go test ./...";
+    command = "bun test";
     stage = "pre-push";
+    runtimeInputs = [ pkgs.bun ];
   };
 
   lefthook.pre-push.commands.tests.stage_fixed = true;
 
   lefthook.commit-msg.commands.commitlint = {
-    run = "pnpm commitlint --edit {1}";
+    run = "bun commitlint --edit {1}";
     stage_fixed = true;
   };
 }
 ```
 
+Structured hook-entry example in a raw hook list:
+
+```nix
+perSystem = { pkgs, ... }: {
+  lefthook.biome = {
+    entry = "${pkgs.biome}/bin/biome check";
+    pass_filenames = true;
+    stages = [ "pre-commit" "pre-push" ];
+  };
+};
+```
+
 Rules:
 
-- These attrsets are passed through to `lefthook.nix`.
-- They are merged after generated checks, so they can extend generated commands.
-- Prefer `checks` for the simple common case and `lefthook` for advanced fields such as `stage_fixed`, `files`, `glob`, `exclude`, `jobs`, or `scripts`.
+- `config.lefthook` and `perSystem.lefthook` are recursive attrset passthroughs merged after generated checks.
+- Structured hook entries support only:
+  `description`, `enable`, `entry`, `name`, `package`, `pass_filenames`, `stages`
+- `stages` may include `pre-commit`, `pre-push`, or `commit-msg`.
+- `pass_filenames = true` maps to `{1}` for `commit-msg`.
 
 ## Tools
 
@@ -152,17 +216,19 @@ Preferred shape in `perSystem.tools`:
 
 ```nix
 (repo-lib.lib.tools.fromPackage {
-  name = "Go";
-  package = pkgs.go;
-  exe = "go"; # optional
+  name = "Bun";
+  package = pkgs.bun;
   version = {
-    args = [ "version" ];
+    args = [ "--version" ];
+    match = null;
     regex = null;
     group = 0;
     line = 1;
   };
   banner = {
-    color = "CYAN";
+    color = "YELLOW";
+    icon = "";
+    iconColor = null;
   };
   required = true;
 })
@@ -174,7 +240,10 @@ For a tool that should come from the host `PATH` instead of `nixpkgs`:
 (repo-lib.lib.tools.fromCommand {
   name = "Nix";
   command = "nix";
-  version.args = [ "--version" ];
+  version = {
+    args = [ "--version" ];
+    group = 1;
+  };
 })
 ```
 
@@ -186,10 +255,11 @@ repo-lib.lib.tools.simple "Go" pkgs.go [ "version" ]
 
 Tool behavior:
 
-- Tool packages are added to the shell automatically.
+- Package-backed tools are added to the shell automatically.
 - Command-backed tools are probed from the existing `PATH` and are not added to the shell automatically.
-- Banner probing uses absolute executable paths.
+- Banner probing uses the resolved executable path.
 - `required = true` by default.
+- When `version.match` is set, the first matching output line is selected before `regex` extraction.
 - Required tool probe failure aborts shell startup.
 
 Use `shell.packages` instead of `tools` when:
@@ -246,73 +316,66 @@ Set `release = null` to disable the generated release package.
 }
 ```
 
-### `run`
+### `versionMetaSet`
 
 ```nix
 {
-  run = {
-    script = ''
-      curl -fsS https://example.invalid/hook \
-        -H 'content-type: application/json' \
-        -d '{"tag":"'"$FULL_TAG"'"}'
-    '';
-    runtimeInputs = [ pkgs.curl ];
+  versionMetaSet = {
+    key = "desktop_binary_version_max";
+    value = "$FULL_VERSION";
   };
 }
 ```
 
-Also accepted for compatibility:
+### `versionMetaUnset`
 
-- `{ run = ''...''; }`
-- legacy `mkRelease { release = [ { file = ...; content = ...; } ... ]; }`
+```nix
+{
+  versionMetaUnset = {
+    key = "desktop_unused";
+  };
+}
+```
+
+Rules:
+
+- Current supported step kinds are only `writeFile`, `replace`, `versionMetaSet`, and `versionMetaUnset`.
+- Do not document or implement a `run` step in consumer repos unless the library itself gains that feature.
 
 ## Release ordering
 
-The generated `release` command does this:
+The generated `release` command currently does this:
 
-1. Update `VERSION`
-2. Run `release.steps`
-3. Run `postVersion`
-4. Run `nix fmt`
-5. `git add -A`
-6. Commit
-7. Tag
-8. Push branch
-9. Push tags
+1. Require a clean git worktree
+2. Update `VERSION`
+3. Run `release.steps`
+4. Run `postVersion`
+5. Run `nix fmt`
+6. `git add -A`
+7. Commit with `chore(release): <tag>`
+8. Tag
+9. Push branch
+10. Push tags
 
-Important consequence:
+Important consequences:
 
-- `postVersion` is still before commit, tag, and push.
+- `postVersion` is before formatting, commit, tag, and push.
 - There is no true post-tag or post-push hook in current `repo-lib`.
+- The current release runner is opinionated and performs commit, tag, and push as part of the flow.
 
-## Post-tag webhook limitation
+## `mkRelease`
 
-If the user asks for a webhook after the tag exists remotely:
+`repo-lib.lib.mkRelease` remains available when a repo wants only the release package:
 
-- Prefer CI triggered by pushed tags in the consuming repo.
-- Do not claim `postVersion` is post-tag; it is not.
-- Only extend `repo-lib` itself if the user explicitly wants a new library capability.
+```nix
+repo-lib.lib.mkRelease {
+  system = system;
+  nixpkgsInput = nixpkgs; # optional
+  channels = [ "alpha" "beta" "rc" "internal" ];
+  steps = [ ];
+  postVersion = "";
+  runtimeInputs = [ ];
+}
+```
 
-## Legacy API summary
-
-`mkDevShell` still supports:
-
-- `extraPackages`
-- `preToolHook`
-- `extraShellHook`
-- `lefthook`
-- `additionalHooks`
-- old `tools = [ { name; bin; versionCmd; color; } ]`
-- `features.oxfmt`
-- `formatters`
-- `formatterSettings`
-
-`mkRelease` still supports:
-
-- `release = [ ... ]` as legacy alias for `steps`
-- `extraRuntimeInputs` as legacy alias merged into `runtimeInputs`
-
-When a repo already uses these APIs:
-
-- preserve them unless the user asked to migrate
-- do not mix old and new styles accidentally in the same call
+Use the same release-step rules as `config.release`.