Feature/stormlit lakehouse

[zherbz]

This addresses the 'Make Stormlit Truly Multi-Project' issue: #118

Edits are specific to the meteorology page.

• Tabular Data (storm catalog): loaded from postgres using iceberg metadata
• Raster Data (AORC): loaded using icechunk repo

Added iceberg etl scipts in etl/lakehouse

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 81
• 📊 Total Issues: 84

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[github-actions]

🔍 Vulnerabilities of ghcr.io/fema-ffrd/stormlit:pr-124

📦 Image Reference ghcr.io/fema-ffrd/stormlit:pr-124

digest	sha256:f5aaad735258b421cfca364564ad5f2fffe929f4f5d278f395ff82f1ddf70180
vulnerabilities
platform	linux/amd64
size	1.0 GB
packages	532

📦 Base Image ubuntu:24.04

also known as	latest noble noble-20260217
digest	sha256:67efaecc0031a612cf7bb3c863407018dbbef0a971f62032b77aa542ac8ac0d2
vulnerabilities

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 81
• 📊 Total Issues: 84

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 81
• 📊 Total Issues: 84

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 84
• 📊 Total Issues: 87

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 89
• 📊 Total Issues: 92

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 89
• 📊 Total Issues: 92

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 89
• 📊 Total Issues: 92

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[thwllms]

@zherbz looking good overall. Notes:

1. rioxarray needs to be added as as a dependency in env.yml and imported at the top of icechunk.py, probably with a # noqa comment to avoid getting flagged as an unused import.

import rioxarray  # noqa: F401 - needed to ensure rioxarray is registered with xarray

2. tornado dependency needs to be upgraded to address the Docker Scout vulnerability finding.
3. Other review comments are optional suggestions.

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 89
• 📊 Total Issues: 92

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[github-actions]

🔍 SonarQube Analysis Results

Summary:

• 🐛 Bugs: 1
• 🔒 Vulnerabilities: 2
• 🧹 Code Smells: 89
• 📊 Total Issues: 92

📋 Detailed Reports Available

📥 Download Full Report - Click "Artifacts" section

The detailed report includes:

• Complete breakdown by severity and type
• Specific file locations and line numbers
• Rule descriptions and fix suggestions
• CSV format for spreadsheet analysis
• Raw JSON data for custom processing

💡 Review the workflow summary for metrics and download the artifact for complete details.

[zherbz]

@zherbz looking good overall. Notes:

1. rioxarray needs to be added as as a dependency in env.yml and imported at the top of icechunk.py, probably with a # noqa comment to avoid getting flagged as an unused import.

import rioxarray  # noqa: F401 - needed to ensure rioxarray is registered with xarray

2. tornado dependency needs to be upgraded to address the Docker Scout vulnerability finding.
3. Other review comments are optional suggestions.

Thanks! All items are now addressed and ready for back-check.