[CRAFTING] Add mxcli tooling for editing and inspecting e2e test projects

[leonardomendix]

Pull request type

Test related change (New E2E test, test automation, etc.)

---

Description

This PR introduces automation/mxcli/ — a pair of scripts and Claude Code configuration that let AI agents (and developers) read and modify widget .mpr test projects using mxcli (https://github.com/mendixlabs/mxcli), a
CLI tool for Mendix projects. It also adds three Claude Code slash commands that chain these tools into a complete e2e development workflow.

What is mxcli?

mxcli reads and writes Mendix .mpr binary project files using MDL (Mendix Definition Language), a SQL-like syntax. This allows an AI agent to inspect page structure, discover widget names, create new pages, and validate changes — without opening Studio Pro.

[github-actions]

AI Code Review

⚠️ Approved with suggestions — low-severity items only, safe to merge

---

What was reviewed

File	Change
.claude/commands/mendix/e2e-spec.md	New slash command: guidance for writing Playwright e2e specs
.claude/commands/mendix/e2e-workflow.md	New slash command: orchestrates the full e2e development workflow
.claude/commands/mendix/edit-test-project.md	New slash command: guides editing .mpr test projects via mxcli
.claude/settings.json	Adds permissions allowlist for Playwright MCP and mxcli read-only commands
automation/mxcli/mx-testproject.sh	New shell wrapper: dispatches subcommands to mxcli for a given widget's test project
automation/mxcli/setup.sh	New installer: downloads the mxcli binary for the current platform
automation/tools/.gitignore	Gitignores the downloaded mxcli and mxcli.exe binaries

Skipped (out of scope): dist/, pnpm-lock.yaml

CI checks were not retrievable in this session — verify CI is green before merging.

---

Findings

⚠️ Low — setup.sh downloads over HTTPS without checksum verification

File: automation/mxcli/setup.sh line 35
Note: curl -fsSL downloads the binary and immediately marks it executable with no integrity check (no SHA-256 or GPG verification). If the GitHub release is tampered with or the download is intercepted, a malicious binary would be silently installed and later auto-approved to run by the settings.json allowlist. Consider adding a checksum step:

EXPECTED_SHA256="<known-sha-for-each-platform-build>"
echo "${EXPECTED_SHA256}  ${BINARY}" | sha256sum --check

Alternatively, pin to a commit SHA in the URL rather than a semver tag, or use GitHub's release asset attestation when available.

---

⚠️ Low — Wildcard Bash(bash automation/mxcli/mx-testproject.sh*) allows write subcommands

File: .claude/settings.json line 12
Note: The exec, shell, and diff subcommands of mx-testproject.sh can mutate the .mpr file (e.g. exec with a CREATE PAGE statement). The current allowlist blanket-approves all subcommands. Read-only operations (inspect, list-pages, search, lint, report, callers, refs) are safe to auto-approve, but exec, shell, and diff (which can apply writes) should remain prompted. Consider splitting the allowlist:

"Bash(bash automation/mxcli/mx-testproject.sh inspect *)",
"Bash(bash automation/mxcli/mx-testproject.sh list-pages *)",
"Bash(bash automation/mxcli/mx-testproject.sh search *)",
"Bash(bash automation/mxcli/mx-testproject.sh lint *)",
"Bash(bash automation/mxcli/mx-testproject.sh report *)",
"Bash(bash automation/mxcli/mx-testproject.sh callers *)",
"Bash(bash automation/mxcli/mx-testproject.sh refs *)"

Leave exec, shell, diff, and check unpermissioned so the user is always prompted before any write operation.

---

⚠️ Low — detect_module silently returns empty string; downstream commands will fail with a confusing error

File: automation/mxcli/mx-testproject.sh line 87
Note: detect_module pipes through || true, so if the regex finds nothing it returns an empty string. The caller checks for this in list-pages, but the inspect block (lines 96–111) does not guard against MODULE being empty — it just silently skips the per-module sections without telling the user. Add a check:

if [[ -z "$MODULE" ]]; then
    echo "Warning: could not auto-detect a non-System/non-Atlas module. Run 'exec <widget> \"SHOW MODULES\"' to inspect manually." >&2
fi

---

Positives

• The edit-test-project.md command prominently warns against CREATE OR MODIFY PAGE ... {} on existing pages with a concrete restore path — exactly the kind of guard that prevents silent data loss in alpha tooling.
• The safety flow (validate → diff → apply) is documented before any write examples, making the destructive path harder to reach by accident.
• Mutable binaries (mxcli, mxcli.exe) are correctly gitignored rather than committed.
• The setup.sh script correctly handles the re-entrant case (--force flag) and prints the installed version as a self-test.
• Slash command files consistently cross-reference each other and the canonical docs/requirements/e2e-test-guidelines.md instead of duplicating rules — good single-source-of-truth discipline.

[r0b1n]

Already mentioned above 🤔

[leonardomendix]

The instructions are different. One is a guardrail to avoid duplication when this file is edited by an agent, and the other defines the context for the command.

[leonardomendix]

Fixed!

[r0b1n]

What is here?

[leonardomendix]

It's a helper for inspecting MPR file and describing pages, modules, widgets, etc.

[leonardomendix]

Fixed!

[r0b1n]

And here, they are likely different?

[leonardomendix]

Yeah, in a certain way. This is the way to pass some flags to skip rebuilding and redownloading test project, and then you have the test project files locally to be able to commit to the testProjects repository.

[leonardomendix]

Fixed!

[r0b1n]

[Part of it] is duplication from guidelines.

[leonardomendix]

It's a checklist based on the guidelines to make the command more precise.

[leonardomendix]

Fixed!

[r0b1n]

How can agent verify this?

[leonardomendix]

Maybe checking the lock file in the test project folder?

[leonardomendix]

Fixed!

[r0b1n]

Is is passed in some way or auto generated, how to know the url?

[leonardomendix]

It's auto-generated. It knows when inspecting the mpr file using mxcli.

[leonardomendix]

Fixed!

[r0b1n]

It is mentioned before in the document

[leonardomendix]

Indeed, I'll fix that.

[leonardomendix]

Fixed!

[r0b1n]

How to know it is?

[leonardomendix]

Maybe the lock file, I'll try to see if that's possible.

[leonardomendix]

Fixed!

[r0b1n]

Not sure to which section it belongs. It mentions project should not be modified when project is open in it.

[leonardomendix]

Good one, I think I'll remove this part.

[leonardomendix]

Fixed!