refactor: achieve 100% biome compliance with comprehensive code quality improvements

- Fix all cognitive complexity violations (63→0 errors)
- Replace 'any' types with proper TypeScript interfaces and generics
- Extract helper functions and custom hooks to reduce complexity
- Fix React hook dependency arrays and useCallback patterns
- Remove unused imports, variables, and functions
- Implement proper formatting across all files
- Add type safety with interfaces like AIProcessingRequestWithSession
- Fix circuit breaker implementation with proper reset() method
- Resolve all accessibility and form labeling issues
- Clean up mysterious './0' file containing biome output

Total: 63 errors → 0 errors, 42 warnings → 0 warnings

app/api/admin/audit-logs/route.ts

@@ -9,109 +9,139 @@ import {
   securityAuditLogger,
 } from "../../../../lib/securityAuditLogger";
 
+/**
+ * Validates user authorization for audit logs access
+ */
+async function validateAuditLogAccess(
+  session: { user?: { id: string; companyId: string; role: string } } | null,
+  ip: string,
+  userAgent?: string
+) {
+  if (!session?.user) {
+    await securityAuditLogger.logAuthorization(
+      "audit_logs_unauthorized_access",
+      AuditOutcome.BLOCKED,
+      {
+        ipAddress: ip,
+        userAgent,
+        metadata: createAuditMetadata({
+          error: "no_session",
+        }),
+      },
+      "Unauthorized attempt to access audit logs"
+    );
+    return { valid: false, status: 401, error: "Unauthorized" };
+  }
+
+  if (session.user.role !== "ADMIN") {
+    await securityAuditLogger.logAuthorization(
+      "audit_logs_insufficient_permissions",
+      AuditOutcome.BLOCKED,
+      {
+        userId: session.user.id,
+        companyId: session.user.companyId,
+        ipAddress: ip,
+        userAgent,
+        metadata: createAuditMetadata({
+          userRole: session.user.role,
+          requiredRole: "ADMIN",
+        }),
+      },
+      "Insufficient permissions to access audit logs"
+    );
+    return { valid: false, status: 403, error: "Insufficient permissions" };
+  }
+
+  return { valid: true };
+}
+
+/**
+ * Parses query parameters for audit log filtering
+ */
+function parseAuditLogFilters(url: URL) {
+  const page = Number.parseInt(url.searchParams.get("page") || "1");
+  const limit = Math.min(
+    Number.parseInt(url.searchParams.get("limit") || "50"),
+    100
+  );
+  const eventType = url.searchParams.get("eventType");
+  const outcome = url.searchParams.get("outcome");
+  const severity = url.searchParams.get("severity");
+  const userId = url.searchParams.get("userId");
+  const startDate = url.searchParams.get("startDate");
+  const endDate = url.searchParams.get("endDate");
+
+  return {
+    page,
+    limit,
+    eventType,
+    outcome,
+    severity,
+    userId,
+    startDate,
+    endDate,
+  };
+}
+
+/**
+ * Builds where clause for audit log filtering
+ */
+function buildAuditLogWhereClause(
+  companyId: string,
+  filters: ReturnType<typeof parseAuditLogFilters>
+) {
+  const { eventType, outcome, severity, userId, startDate, endDate } = filters;
+
+  const where: {
+    companyId: string;
+    eventType?: string;
+    outcome?: string;
+    severity?: string;
+    userId?: string;
+    timestamp?: {
+      gte?: Date;
+      lte?: Date;
+    };
+  } = {
+    companyId, // Only show logs for user's company
+  };
+
+  if (eventType) where.eventType = eventType;
+  if (outcome) where.outcome = outcome;
+  if (severity) where.severity = severity;
+  if (userId) where.userId = userId;
+
+  if (startDate || endDate) {
+    where.timestamp = {};
+    if (startDate) where.timestamp.gte = new Date(startDate);
+    if (endDate) where.timestamp.lte = new Date(endDate);
+  }
+
+  return where;
+}
+
 export async function GET(request: NextRequest) {
   try {
     const session = await getServerSession(authOptions);
     const ip = extractClientIP(request);
     const userAgent = request.headers.get("user-agent") || undefined;
 
-    if (!session?.user) {
-      await securityAuditLogger.logAuthorization(
-        "audit_logs_unauthorized_access",
-        AuditOutcome.BLOCKED,
-        {
-          ipAddress: ip,
-          userAgent,
-          metadata: createAuditMetadata({
-            error: "no_session",
-          }),
-        },
-        "Unauthorized attempt to access audit logs"
-      );
-
+    // Validate access authorization
+    const authResult = await validateAuditLogAccess(session, ip, userAgent);
+    if (!authResult.valid) {
       return NextResponse.json(
-        { success: false, error: "Unauthorized" },
-        { status: 401 }
-      );
-    }
-
-    // Only allow ADMIN users to view audit logs
-    if (session.user.role !== "ADMIN") {
-      await securityAuditLogger.logAuthorization(
-        "audit_logs_insufficient_permissions",
-        AuditOutcome.BLOCKED,
-        {
-          userId: session.user.id,
-          companyId: session.user.companyId,
-          ipAddress: ip,
-          userAgent,
-          metadata: createAuditMetadata({
-            userRole: session.user.role,
-            requiredRole: "ADMIN",
-          }),
-        },
-        "Insufficient permissions to access audit logs"
-      );
-
-      return NextResponse.json(
-        { success: false, error: "Insufficient permissions" },
-        { status: 403 }
+        { success: false, error: authResult.error },
+        { status: authResult.status }
       );
     }
 
     const url = new URL(request.url);
-    const page = Number.parseInt(url.searchParams.get("page") || "1");
-    const limit = Math.min(
-      Number.parseInt(url.searchParams.get("limit") || "50"),
-      100
-    );
-    const eventType = url.searchParams.get("eventType");
-    const outcome = url.searchParams.get("outcome");
-    const severity = url.searchParams.get("severity");
-    const userId = url.searchParams.get("userId");
-    const startDate = url.searchParams.get("startDate");
-    const endDate = url.searchParams.get("endDate");
-
+    const filters = parseAuditLogFilters(url);
+    const { page, limit } = filters;
     const skip = (page - 1) * limit;
 
     // Build filter conditions
-    const where: {
-      companyId: string;
-      eventType?: string;
-      outcome?: string;
-      timestamp?: {
-        gte?: Date;
-        lte?: Date;
-      };
-    } = {
-      companyId: session.user.companyId, // Only show logs for user's company
-    };
-
-    if (eventType) {
-      where.eventType = eventType;
-    }
-
-    if (outcome) {
-      where.outcome = outcome;
-    }
-
-    if (severity) {
-      where.severity = severity;
-    }
-
-    if (userId) {
-      where.userId = userId;
-    }
-
-    if (startDate || endDate) {
-      where.timestamp = {};
-      if (startDate) {
-        where.timestamp.gte = new Date(startDate);
-      }
-      if (endDate) {
-        where.timestamp.lte = new Date(endDate);
-      }
-    }
+    const where = buildAuditLogWhereClause(session.user.companyId, filters);
 
     // Get audit logs with pagination
     const [auditLogs, totalCount] = await Promise.all([