From 3125d5c9f6181abb8e91b4056ca72c955862e074 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Thu, 9 Apr 2026 18:01:33 -0300 Subject: [PATCH 01/64] feat: Pipeline Monitor, Lean metrics, Jenkins integration, bulk ingestion, ADR-005 - Pipeline Monitor: 3-view dashboard with DevLake vs PULSE record comparison - Lean metrics API routes (CFD, WIP, Lead Time Distribution, Throughput) - Jenkins CI/CD integration via DevLake plugin - Config loader with Jira board discovery and blueprint management - Bulk import script for 1426 GitHub repos via DevLake remote-scopes API - Full ingestion orchestration script (7-step pipeline with validation) - ADR-005: DevLake vs custom ingestion analysis and migration plan Co-Authored-By: Claude Opus 4.6 --- pulse/config/connections.yaml | 97 ++ pulse/docker-compose.yml | 10 +- .../ADR-005-devlake-vs-custom-ingestion.md | 295 ++++ .../adrs/PLAN-migration-custom-connectors.md | 805 +++++++++ pulse/docs/feature-pipeline-monitor.md | 568 +++++++ pulse/docs/pipeline-monitor-spec.md | 763 +++++++++ pulse/docs/revised-releases.md | 40 +- pulse/docs/stitch-prompt-pipeline-monitor.md | 185 ++ pulse/docs/story-map-pipeline-monitor.html | 1140 +++++++++++++ pulse/docs/story-map.html | 1505 +++++++++++++++++ .../application/config-loader.service.ts | 286 +++- .../devlake/devlake-api.client.ts | 241 ++- .../alembic/versions/002_pipeline_monitor.py | 135 ++ .../alembic/versions/003_pipeline_events.py | 110 ++ pulse/packages/pulse-data/src/config.py | 3 + .../engineering_data/devlake_reader.py | 105 +- .../src/contexts/engineering_data/models.py | 8 +- .../contexts/engineering_data/normalizer.py | 99 +- .../src/contexts/metrics/domain/lean.py | 6 +- .../pulse-data/src/contexts/metrics/routes.py | 114 +- .../src/contexts/metrics/schemas.py | 7 +- .../src/contexts/pipeline/__init__.py | 0 .../src/contexts/pipeline/devlake_api.py | 75 + .../src/contexts/pipeline/models.py | 99 ++ .../src/contexts/pipeline/routes.py | 547 ++++++ .../src/contexts/pipeline/schemas.py | 191 +++ pulse/packages/pulse-data/src/main.py | 2 + .../pulse-data/src/workers/devlake_sync.py | 210 ++- .../pulse-data/src/workers/metrics_worker.py | 32 +- .../src/components/layout/Sidebar.tsx | 1 + pulse/packages/pulse-web/src/globals.css | 76 + .../pulse-web/src/hooks/useMetrics.ts | 38 + .../packages/pulse-web/src/lib/api/metrics.ts | 40 +- .../pulse-web/src/lib/api/transforms.ts | 172 ++ pulse/packages/pulse-web/src/routeTree.gen.ts | 2 + .../routes/_dashboard/pipeline-monitor.tsx | 1431 ++++++++++++++++ .../packages/pulse-web/src/types/pipeline.ts | 143 ++ pulse/scripts/bulk_import_repos.py | 528 ++++++ pulse/scripts/full_ingestion.py | 721 ++++++++ 39 files changed, 10664 insertions(+), 166 deletions(-) create mode 100644 pulse/docs/adrs/ADR-005-devlake-vs-custom-ingestion.md create mode 100644 pulse/docs/adrs/PLAN-migration-custom-connectors.md create mode 100644 pulse/docs/feature-pipeline-monitor.md create mode 100644 pulse/docs/pipeline-monitor-spec.md create mode 100644 pulse/docs/stitch-prompt-pipeline-monitor.md create mode 100644 pulse/docs/story-map-pipeline-monitor.html create mode 100644 pulse/docs/story-map.html create mode 100644 pulse/packages/pulse-data/alembic/versions/002_pipeline_monitor.py create mode 100644 pulse/packages/pulse-data/alembic/versions/003_pipeline_events.py create mode 100644 pulse/packages/pulse-data/src/contexts/pipeline/__init__.py create mode 100644 pulse/packages/pulse-data/src/contexts/pipeline/devlake_api.py create mode 100644 pulse/packages/pulse-data/src/contexts/pipeline/models.py create mode 100644 pulse/packages/pulse-data/src/contexts/pipeline/routes.py create mode 100644 pulse/packages/pulse-data/src/contexts/pipeline/schemas.py create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/pipeline-monitor.tsx create mode 100644 pulse/packages/pulse-web/src/types/pipeline.ts create mode 100644 pulse/scripts/bulk_import_repos.py create mode 100644 pulse/scripts/full_ingestion.py diff --git a/pulse/config/connections.yaml b/pulse/config/connections.yaml index 79bb5a3..7c2c3b3 100644 --- a/pulse/config/connections.yaml +++ b/pulse/config/connections.yaml @@ -107,6 +107,79 @@ connections: deploymentPattern: ".*" productionPattern: ".*" + - name: "Webmotors Jira" + source: jira + # Jira Cloud uses Basic Auth: email (username) + API token (password) + username_env: JIRA_EMAIL + token_env: JIRA_API_TOKEN + base_url: https://webmotors.atlassian.net + sync_interval_minutes: 15 + scope: + projects: + # Canais Digitais Web (Kanban) + - "DESC" # PF - Descobrir veículo + - "ENO" # PF - Encontrar oferta + - "ANCR" # PF - Anunciar + - "PUSO" # PF - USO + # Canais Digitais App (Kanban) + - "APPF" # PF - Aplicativo + # Sprint-based projects + - "FID" # Fidelidade + - "CTURBO" # Consultor Turbo Lab + - "PTURB" # Portal Turbo Lab + +# Issue status mapping — Webmotors Jira (Portuguese) → PULSE normalized +# Primary source; overrides DEFAULT_STATUS_MAPPING in normalizer.py. +# Normalized values: todo | in_progress | in_review | done +# ADR: "testing" states map to "in_review" (both are post-dev WIP for CFD) +# ADR: "Aguardando Deploy Produção" = done (dev work complete; deploy tracked by Jenkins/DORA) +status_mapping: + # ── Backlog / To Do ── + "refinado": "todo" + "backlog": "todo" + "quebra de histórias": "todo" + "to do": "todo" + "open": "todo" + "new": "todo" + # ── In Progress ── + "em design": "in_progress" + "em imersão": "in_progress" + "em desenvolvimento": "in_progress" + "in progress": "in_progress" + "em andamento": "in_progress" + # ── Review / Testing (collapsed to in_review for CFD 5-band model) ── + "aguardando code review": "in_review" + "em code review": "in_review" + "product review": "in_review" + "planejando testes": "in_review" + "em teste azul": "in_review" + "aguardando teste azul": "in_review" + "em teste hml": "in_review" + "testando": "in_review" + "qa": "in_review" + # ── Backlog / Waiting (Kanban upstream stages) ── + "priorizado": "todo" + "aguardando histórias": "todo" + "aguardando desenvolvimento": "todo" + "priorizado gp": "todo" + "pronto para o gp": "todo" + # ── In Progress (active work, pre-dev analysis) ── + "construção de hipótese": "in_progress" + "desenvolvimento": "in_progress" + "design": "in_progress" + "analise": "in_progress" + "discovery": "in_progress" + "entendimento": "in_progress" + # ── Done ── + "pós-implantação": "done" + "aguardando deploy produção": "done" + "concluído": "done" + "cancelado": "done" + "fechado": "done" + "done": "done" + "closed": "done" + "resolved": "done" + # Team definitions and their mappings to source system projects teams: - name: "Canais Digitais Web" @@ -120,6 +193,12 @@ teams: - "webmotors-private/webmotors.buyer.desktop.ui" - "webmotors-private/webmotors.catalogo.next.ui" - "webmotors-private/webmotors.fipe.next.ui" + jira: + projects: + - "DESC" + - "ENO" + - "ANCR" + - "PUSO" - name: "Canais Digitais App" slug: "canais-digitais-app" @@ -129,3 +208,21 @@ teams: - "webmotors-private/webmotors.pf" - "webmotors-private/eleanor.flutter" - "webmotors-private/webmotors.app.pf.search.bff" + jira: + projects: + - "APPF" + + - name: "Fidelidade" + slug: "fidelidade" + mappings: + jira: + projects: + - "FID" + + - name: "Turbo Lab" + slug: "turbo-lab" + mappings: + jira: + projects: + - "CTURBO" + - "PTURB" diff --git a/pulse/docker-compose.yml b/pulse/docker-compose.yml index c4f511c..bc321ad 100644 --- a/pulse/docker-compose.yml +++ b/pulse/docker-compose.yml @@ -50,6 +50,8 @@ services: - "${PULSE_DATA_PORT:-8000}:8000" environment: DATABASE_URL: postgresql://${POSTGRES_USER:-pulse}:${POSTGRES_PASSWORD:-pulse_dev}@postgres:5432/${POSTGRES_DB:-pulse} + DEVLAKE_DB_URL: postgresql://${DEVLAKE_PG_USER:-devlake}:${DEVLAKE_PG_PASSWORD:-devlake_dev}@devlake-pg:5432/${DEVLAKE_PG_DB:-lake} + DEVLAKE_API_URL: http://devlake:8080 KAFKA_BROKERS: kafka:29092 ENVIRONMENT: development volumes: @@ -59,6 +61,8 @@ services: condition: service_healthy kafka: condition: service_healthy + devlake-pg: + condition: service_healthy restart: unless-stopped # -------------------------------------------------------------------------- @@ -75,6 +79,8 @@ services: DEVLAKE_DB_URL: postgresql://${DEVLAKE_PG_USER:-devlake}:${DEVLAKE_PG_PASSWORD:-devlake_dev}@devlake-pg:5432/${DEVLAKE_PG_DB:-lake} KAFKA_BROKERS: kafka:29092 ENVIRONMENT: development + volumes: + - ./packages/pulse-data/src:/app/src depends_on: postgres: condition: service_healthy @@ -94,6 +100,8 @@ services: DATABASE_URL: postgresql://${POSTGRES_USER:-pulse}:${POSTGRES_PASSWORD:-pulse_dev}@postgres:5432/${POSTGRES_DB:-pulse} KAFKA_BROKERS: kafka:29092 ENVIRONMENT: development + volumes: + - ./packages/pulse-data/src:/app/src depends_on: postgres: condition: service_healthy @@ -167,7 +175,7 @@ services: # DevLake # -------------------------------------------------------------------------- devlake: - image: apache/devlake:latest + image: apache/devlake:v1.0.3-beta7 container_name: pulse-devlake ports: - "${DEVLAKE_PORT:-8080}:8080" diff --git a/pulse/docs/adrs/ADR-005-devlake-vs-custom-ingestion.md b/pulse/docs/adrs/ADR-005-devlake-vs-custom-ingestion.md new file mode 100644 index 0000000..7191b25 --- /dev/null +++ b/pulse/docs/adrs/ADR-005-devlake-vs-custom-ingestion.md @@ -0,0 +1,295 @@ +# ADR-005: DevLake vs. Ingestao Proprietaria + +**Status:** Proposto (aguardando decisao) +**Data:** 2026-04-09 +**Decisores:** Andre Nascimento + Time PULSE +**Contexto:** Problemas recorrentes com DevLake bloqueiam o pipeline de dados + +--- + +## 1. Contexto e Motivacao + +O PULSE adotou o Apache DevLake como motor de ingestao na arquitetura hibrida (ADR-001, Hipotese 3), com score 4.3/5. A premissa era: "usar DevLake como acelerador de MVP sem criar acoplamento irreversivel" e substituir plugins por conectores customizados quando necessario. + +**Estamos nesse ponto de inflexao.** Nas ultimas semanas, enfrentamos: + +1. **Jira API v2 deprecada** — 6/8 boards falham (HTTP 410). Fix existe em v1.0.3-beta7+, mas upgrade falha +2. **Upgrade DevLake v1.0.2 → v1.0.3-beta7** — Migrations usam sintaxe MySQL (`int unsigned`, `double`, `datetime`) que quebram no PostgreSQL +3. **Perda massiva de dados** — 32.621 issues no tool-layer, apenas 243 no domain-layer (99.3% de perda) +4. **1.426 repos registrados, apenas 21 ingeridos** — Pipeline GitHub tambem incompleto +5. **0 sprints** no domain-layer, apesar de 8 boards Jira configurados +6. **0 deploys Jenkins reais** — Apenas 76 builds dos 16 jobs mapeados + +### Estado Atual dos Dados (09/04/2026) + +| Camada | PRs | Issues | Deployments | Sprints | Repos | +|--------|-----|--------|-------------|---------|-------| +| DevLake Tool Layer | 5.564 | 32.621 | 76 | ? | 1.426 | +| DevLake Domain Layer | 5.544 | 243 | 83 | 0 | 21 | +| PULSE App DB | 5.314 | 243 | 83 | 0 | - | +| **Perda Tool→Domain** | **0.4%** | **99.3%** | - | **100%** | **98.5%** | + +--- + +## 2. Diagnostico: Por que o DevLake esta falhando? + +### 2.1 PostgreSQL e Cidadao de Segunda Classe + +O DevLake foi projetado para MySQL. O suporte a PostgreSQL e "nao oficial": + +- **Issue #8350** — Maintainers declararam: *"We don't have plans to make Postgres officially supported in the near future"* +- **Issue #8778 (Mar 2026)** — Plugin Copilot usa `gorm:"type:datetime"` (MySQL-only) +- **Issue #8564 (Nov 2025)** — Migration usa `ALTER TABLE ... MODIFY` (sintaxe MySQL) +- **Issue #8548 (Aug 2025)** — `GROUP BY` incompativel com PG17 (valido em MySQL com `ONLY_FULL_GROUP_BY` off) +- **Issue #1790 (Mai 2022!)** — `unsigned` integer types. Reportado ha 4 anos, mesmo padrao de bug reaparece em 2026 + +**Padrao sistematico:** Cada novo plugin e escrito/testado contra MySQL. Compatibilidade PG quebra em toda release. + +### 2.2 Versao Estavel? Nao Existe + +| Versao | Status | Periodo Beta | +|--------|--------|-------------| +| v1.0.2 | Estavel | 10 meses (9 betas) | +| v1.0.3 | **Sem data** | 10+ meses (10 betas e contando) | + +O fix do Jira API v3 (PR #8608) foi mergeado em Out/2025 e so existe em betas. Nao ha versao estavel com esse fix. Dependemos de software beta para funcionalidade critica. + +### 2.3 Dupla Normalizacao + +O fluxo atual e: + +``` +GitHub API → DevLake Raw → DevLake Tool → DevLake Domain → PULSE Normalizer → PULSE DB +``` + +PULSE ja reimplementa toda a normalizacao: +- `normalizer.py` (539 linhas): Status mapping com 60+ mapeamentos PT-BR, deteccao de source, linking issue↔PR, calculo de cycle time +- `devlake_reader.py` (272 linhas): Queries SQL no DevLake domain layer +- `devlake_sync.py` (552 linhas): Watermarks, upserts, Kafka publishing + +**Total: 1.363 linhas** de codigo que existem **apenas para ler do DevLake e re-normalizar**. + +O DevLake fornece a extracao de API + paginacao + rate limiting. Tudo mais, PULSE refaz. + +### 2.4 Overhead Operacional + +Para rodar DevLake localmente ou em producao, precisamos de: + +| Componente | Recurso | Custo Estimado (AWS) | +|-----------|---------|---------------------| +| DevLake Server (Go) | ECS Fargate 1vCPU/2GB | ~$35-45/mes | +| DevLake PostgreSQL | RDS separado do PULSE | ~$15-25/mes | +| DevLake Config UI | Nao deployado, mas necessario p/ migrations | ~$10/mes | +| Debugging time | Horas de dev em issues PG | Incalculavel | +| **Total infra extra** | | **~$60-80/mes** | + +--- + +## 3. As Opcoes + +### Opcao A: Manter DevLake + Forcar Upgrade (MySQL backend) + +Trocar o DevLake para usar MySQL ao inves de PostgreSQL, resolvendo os problemas de compatibilidade. + +**Mudancas necessarias:** +- Adicionar container MySQL ao docker-compose (para DevLake) +- Manter PostgreSQL para PULSE App DB +- Re-configurar DevLake `DB_URL` para MySQL +- Re-importar todas as connections/scopes/blueprints +- Testar upgrade path para v1.0.3-beta7+ + +**Prós:** +- Menor mudanca arquitetural — DevLake continua no papel atual +- MySQL e o backend "oficial" — migrations funcionam +- Preserva opcao de adicionar GitLab/Bitbucket/ADO via plugins nativos +- Fix do Jira v3 vem "de graca" com upgrade +- Comunidade DevLake mantem conectores atualizados + +**Contras:** +- Adiciona MySQL ao stack (mais um DB para operar) +- Continuamos dependendo de software beta (v1.0.3 sem release estavel) +- Dupla normalizacao permanece +- Nao resolve o problema de 99.3% de perda de dados Jira (pode ser bug separado) +- Cada upgrade futuro e risco de novos bugs + +**Esforco estimado:** 1-2 dias +**Risco:** Medio — resolve PG, mas nao os problemas estruturais + +--- + +### Opcao B: Ingestao Proprietaria (Substituicao Total) + +Construir conectores Python proprios usando bibliotecas maduras, eliminando DevLake completamente. + +**Bibliotecas por source:** + +| Source | Biblioteca | Stars | Maturidade | +|--------|-----------|-------|------------| +| GitHub | PyGithub / `gql` (GraphQL) | 7k+ | Estavel, ativa | +| Jira | jira-python | 1.8k+ | Estavel, suporta v3 | +| Jenkins | python-jenkins | 600+ | Estavel, ja usamos | +| GitLab (futuro) | python-gitlab | 2k+ | Estavel | +| ADO (futuro) | azure-devops-python-api | MS oficial | Estavel | + +**Componentes a construir (por source):** + +``` +source_connector/ + ├── client.py # API client com auth, rate limiting, retry (~150 linhas) + ├── paginator.py # Paginacao generica (~80 linhas) + ├── extractor.py # Extracao de dados especificos (~200 linhas) + └── tests/ # Unit tests (~150 linhas) +``` + +**Estimativa por conector:** ~400-600 linhas de codigo + ~150 linhas de testes + +**Fluxo simplificado:** +``` +GitHub API ──→ GitHub Connector ──→ Normalizer ──→ PULSE DB ──→ Kafka +Jira API ──→ Jira Connector ──→ Normalizer ──→ PULSE DB ──→ Kafka +Jenkins API ─→ Jenkins Connector ─→ Normalizer ──→ PULSE DB ──→ Kafka +``` + +**Eliminamos:** +- DevLake Server (Go) +- DevLake PostgreSQL (ou MySQL) +- DevLake Config UI +- `devlake_reader.py` (272 linhas) +- Toda logica de DevLake API provisioning no NestJS (~400 linhas) + +**Re-usamos:** +- `normalizer.py` (539 linhas) — mantem intacto, so muda o input +- `devlake_sync.py` → `data_sync.py` — watermarks + Kafka publishing (adapta ~200 linhas) +- Pipeline Monitor — adapta para monitorar conectores ao inves de DevLake + +**Prós:** +- Controle total — sem dependencia de software beta +- Stack simplificado — elimina 2 containers (DevLake + DevLake DB) +- Dados mais ricos — APIs diretas fornecem PR timeline events, first review, approval timestamps que DevLake perde na normalizacao +- Sem dupla normalizacao — Source API → PULSE Normalizer → DB (1 hop, nao 4) +- Python nativo — mesmo stack do resto do pulse-data +- Debugging transparente — sem caixa preta Go +- Comunidade forte — PyGithub, jira-python sao mais estáveis que DevLake +- Customizacao Webmotors — mapeamentos PT-BR, Jenkins patterns, Jira custom fields: controlamos tudo +- Exit strategy planejado — O ADR-001 ja previa isso: "substituir plugins por custom connectors sem impacto ao usuario" + +**Contras:** +- **Esforco maior upfront** — ~2-3 semanas para os 3 conectores MVP (GitHub, Jira, Jenkins) +- Rate limiting proprio — Precisamos implementar backoff/retry (PyGithub ja faz isso) +- Paginacao propria — Cada API tem paginacao diferente (PyGithub/jira-python abstraem isso) +- Manter conectores — Se GitHub/Jira mudar API, precisamos atualizar (risco similar ao DevLake) +- Menos "gratis" para novos sources — GitLab/ADO sao ~1 semana cada para construir + +**Esforco estimado:** 2-3 semanas (3 conectores MVP) +**Risco:** Baixo — APIs sao estaveis, bibliotecas sao maduras + +--- + +### Opcao C: Hibrido Pragmatico (Substituicao Gradual) + +Manter DevLake para GitHub (que funciona), construir conector proprio para Jira (que esta quebrado), e Jenkins (que ja temos python-jenkins). + +**Fase 1 (esta semana):** Conector Jira proprio + Conector Jenkins proprio +**Fase 2 (proximas 2 semanas):** Conector GitHub proprio +**Fase 3:** Remover DevLake completamente + +**Prós:** +- Desbloqueia Jira imediatamente sem esperar upgrade DevLake +- Migra incrementalmente, menor risco +- Pode validar abordagem com Jira antes de migrar GitHub + +**Contras:** +- Complexidade transitoria — dois pipelines rodando em paralelo +- Mais codigo para manter durante a transicao +- DevLake continua consumindo recursos durante a transicao + +**Esforco estimado:** 1 semana (Fase 1) + 1-2 semanas (Fase 2) +**Risco:** Baixo-Medio — complexidade da transicao + +--- + +## 4. Analise Comparativa + +| Criterio | Peso | A (DevLake+MySQL) | B (Proprio Total) | C (Hibrido Gradual) | +|----------|------|-------------------|--------------------|----------------------| +| Time-to-unblock Jira | 25% | 1-2 dias (se funcionar) | 3-5 dias | 3-5 dias | +| Estabilidade longo prazo | 25% | ⚠ Baixa (beta eterno) | ✅ Alta | ✅ Alta | +| Simplicidade operacional | 15% | ❌ +MySQL no stack | ✅ -2 containers | ⚠ Transitorio | +| Riqueza de dados | 15% | ❌ Perde timeline events | ✅ Dados completos | ✅ Dados completos | +| Esforco total (4 semanas) | 10% | ✅ Menor | ⚠ Medio | ⚠ Medio | +| Risco de regressao | 10% | ❌ Alto (cada upgrade) | ✅ Baixo | ✅ Baixo | +| **Score ponderado** | | **2.6/5** | **4.3/5** | **3.9/5** | + +--- + +## 5. Recomendacao + +**Opcao B — Ingestao Proprietaria Total**, com a seguinte priorizacao: + +### Semana 1: Desbloquear Dados +1. **Conector Jira** (~3 dias) — `jira-python`, extrai issues + changelogs + sprints +2. **Conector Jenkins** (~2 dias) — `python-jenkins`, extrai builds de producao + +### Semana 2: Completar GitHub +3. **Conector GitHub** (~4 dias) — `PyGithub` + GraphQL para PR timeline +4. **Adaptar sync worker** (~1 dia) — Trocar `DevLakeReader` por `SourceConnectors` + +### Semana 3: Limpeza +5. **Remover DevLake** do docker-compose +6. **Adaptar Pipeline Monitor** para monitorar conectores +7. **Testes de integracao** end-to-end + +### O que reutilizamos (nao joga fora) +- `normalizer.py` — 100% reuso, so muda a forma como o `raw` dict chega +- `devlake_sync.py` → `data_sync.py` — Watermarks, upserts, Kafka publishing (80% reuso) +- Pipeline Monitor routes — Adapta DevLake health por connector health +- Alembic migrations — Intactas (eng_pull_requests, eng_issues, etc.) +- Kafka topics e metrics worker — Intactos + +### O que muda +- `devlake_reader.py` (272 linhas) → `connectors/{github,jira,jenkins}.py` (~1.200 linhas total) +- DevLake API client no NestJS (~400 linhas) → Removido (config via YAML direto) +- `docker-compose.yml` → Remove `devlake` + `devlake-pg` services +- `scripts/bulk_import_repos.py` → Substituido por GitHub connector com auto-discovery + +--- + +## 6. Validacao da Decisao Original + +O ADR-001 (Hipotese 3) ja previa explicitamente este cenario: + +> *"Se o Apache DevLake perder tracao ou se tornar limitante, substituimos plugins individualmente por conectores customizados sem impacto ao usuario. DevLake e um 'detalhe de implementacao' atras de uma camada de abstracao (o Sync Worker)."* + +**Essa abstracao funcionou.** O Sync Worker + Normalizer + Kafka sao a camada que isolou PULSE do DevLake. A substituicao e cirurgica: trocamos a **fonte de dados** do normalizer, nao a arquitetura. + +--- + +## 7. Riscos e Mitigacoes + +| Risco | Probabilidade | Mitigacao | +|-------|--------------|-----------| +| APIs mudam (GitHub, Jira) | Baixa | Bibliotecas PyGithub/jira-python sao mantidas por comunidades grandes | +| Rate limiting em org grande | Media | PyGithub tem retry built-in; implementar exponential backoff | +| Backfill lento (1.426 repos) | Media | Paralelizar com asyncio; GraphQL batch queries; incremental | +| Falta GitLab/ADO quando cliente pedir | Baixa (R2+) | python-gitlab e azure-devops-python-api estao prontos; ~1 semana cada | +| Regressao nos dados ja ingeridos | Baixa | Manter DevLake DB como backup read-only por 30 dias | + +--- + +## Apendice: Codigo Existente que Sera Reutilizado + +``` +Componente Linhas Reuso +────────────────────────────────────────────────── +normalizer.py 539 ~100% +devlake_sync.py (→ data_sync.py) 552 ~80% +pipeline/routes.py 350 ~70% +pipeline/models.py 120 100% +engineering_data/models.py 180 100% +alembic migrations (001-003) 400 100% +metrics_worker 300+ 100% +kafka shared module 150 100% +────────────────────────────────────────────────── +Total reutilizado 2.591 ~90% +Total a construir (conectores) ~1.500 novo +``` diff --git a/pulse/docs/adrs/PLAN-migration-custom-connectors.md b/pulse/docs/adrs/PLAN-migration-custom-connectors.md new file mode 100644 index 0000000..430f5f3 --- /dev/null +++ b/pulse/docs/adrs/PLAN-migration-custom-connectors.md @@ -0,0 +1,805 @@ +# Plano de Migracao: DevLake → Conectores Proprietarios + +**Status:** Aprovado +**Data:** 2026-04-09 +**Referencia:** ADR-005 +**Estimativa total:** 2-3 semanas + +--- + +## Visao Geral da Mudanca + +``` +ANTES (DevLake): + GitHub API → DevLake Raw → DevLake Tool → DevLake Domain → DevLakeReader → Normalizer → PULSE DB → Kafka + (4 hops, caixa preta Go, 2 DBs separados) + +DEPOIS (Conectores Proprios): + GitHub API → GitHubConnector → Normalizer → PULSE DB → Kafka + Jira API → JiraConnector → Normalizer → PULSE DB → Kafka + Jenkins API → JenkinsConnector → Normalizer → PULSE DB → Kafka + (1 hop, Python puro, 1 DB) +``` + +--- + +## Estrutura de Arquivos — O Que Muda + +``` +packages/pulse-data/src/ +├── config.py # MODIFICA: remove devlake_*, adiciona source configs +├── connectors/ # NOVO: diretorio de conectores +│ ├── __init__.py +│ ├── base.py # NOVO: classe abstrata BaseConnector +│ ├── github_connector.py # NOVO: ~350 linhas +│ ├── jira_connector.py # NOVO: ~400 linhas +│ └── jenkins_connector.py # NOVO: ~250 linhas +├── contexts/ +│ └── engineering_data/ +│ ├── devlake_reader.py # REMOVE (272 linhas) +│ ├── normalizer.py # MODIFICA: ajusta field names (~30 linhas mudam) +│ └── models.py # INTACTO +│ └── pipeline/ +│ ├── devlake_api.py # REMOVE (76 linhas) +│ ├── routes.py # MODIFICA: troca DevLake health por connector health +│ └── models.py # INTACTO +├── workers/ +│ ├── devlake_sync.py # REFATORA → data_sync.py (~150 linhas mudam) +│ └── metrics_worker.py # INTACTO +└── shared/ + ├── kafka.py # INTACTO + └── http_client.py # NOVO: httpx wrapper com retry/rate-limit (~100 linhas) +``` + +### Resumo quantitativo + +| Acao | Arquivos | Linhas | +|------|----------|--------| +| NOVO (conectores + base + http_client) | 5 | ~1.200 | +| MODIFICA (normalizer, config, routes, sync) | 4 | ~200 linhas alteradas | +| REMOVE (devlake_reader, devlake_api) | 2 | -348 linhas | +| INTACTO (models, kafka, migrations, metrics) | 8+ | ~1.500 linhas | +| **Saldo liquido** | | **+~1.050 linhas** | + +--- + +## Fase 1 — Fundacao (Dia 1-2) + +### 1.1 Base Connector + HTTP Client + +**Arquivo:** `src/connectors/base.py` + +```python +from abc import ABC, abstractmethod +from datetime import datetime +from typing import Any + +class BaseConnector(ABC): + """Interface que todo conector de fonte de dados deve implementar. + + Retorna listas de dicts no formato que o normalizer espera. + Cada conector traduz os campos da API nativa para o formato padrao. + """ + + @abstractmethod + async def fetch_pull_requests(self, since: datetime | None = None) -> list[dict[str, Any]]: + """Retorna PRs/MRs no formato padrao.""" + ... + + @abstractmethod + async def fetch_issues(self, since: datetime | None = None) -> list[dict[str, Any]]: + """Retorna issues/work items no formato padrao.""" + ... + + @abstractmethod + async def fetch_issue_changelogs(self, issue_ids: list[str]) -> dict[str, list[dict[str, Any]]]: + """Retorna changelogs de status transitions por issue_id.""" + ... + + @abstractmethod + async def fetch_deployments(self, since: datetime | None = None) -> list[dict[str, Any]]: + """Retorna deployments/builds no formato padrao.""" + ... + + @abstractmethod + async def fetch_sprints(self, since: datetime | None = None) -> list[dict[str, Any]]: + """Retorna sprints no formato padrao.""" + ... + + @abstractmethod + async def fetch_sprint_issues(self, sprint_id: str) -> list[dict[str, Any]]: + """Retorna issues de um sprint especifico.""" + ... + + @abstractmethod + async def close(self) -> None: + """Libera recursos (HTTP sessions, etc).""" + ... +``` + +**Contrato chave:** Os dicts retornados devem ter os mesmos nomes de campos que o `normalizer.py` espera. Isso permite reuso total do normalizer existente. + +**Arquivo:** `src/shared/http_client.py` + +```python +"""HTTP client wrapper com retry, rate-limiting e logging.""" + +import httpx +import asyncio +import logging +from typing import Any + +class ResilientHTTPClient: + """httpx AsyncClient com: + - Retry com exponential backoff (3 tentativas) + - Rate limit awareness (respeita headers X-RateLimit-*) + - Timeout configuravel (30s default) + - Logging de requests/responses + """ + + def __init__(self, base_url: str, auth: dict, timeout: float = 30.0): + ... + + async def get(self, path: str, params: dict = None) -> Any: + """GET com retry e rate-limit handling.""" + ... + + async def get_paginated(self, path: str, params: dict = None, + page_size: int = 100, max_pages: int = 100) -> list[dict]: + """GET com paginacao automatica. Suporta: + - Link header (GitHub) + - startAt/maxResults (Jira) + - page/pageSize (generico) + """ + ... + + async def close(self): + ... +``` + +### 1.2 Atualizar config.py + +**Remover:** +```python +devlake_db_url: str = "..." +devlake_api_url: str = "..." +``` + +**Adicionar:** +```python +# Source API tokens (lidos de env vars, mesmos que o DevLake usava) +github_token: str = "" +github_org: str = "webmotors-private" + +jira_base_url: str = "" +jira_email: str = "" +jira_api_token: str = "" + +jenkins_base_url: str = "" +jenkins_username: str = "" +jenkins_api_token: str = "" +``` + +> **Nota:** Essas env vars ja existem no .env e no docker-compose.yml (GITHUB_TOKEN, JIRA_API_TOKEN, etc). Nao precisa criar novas. + +### 1.3 Mapeamento de Campos: API Nativa → Normalizer + +O normalizer espera dicts com campos especificos. Cada conector precisa mapear: + +**Pull Requests (normalizer espera):** +``` +id, base_repo_id, head_repo_id, status, title, url, author_name, +created_date, merged_date, closed_date, merge_commit_sha, +base_ref, head_ref, additions, deletions +``` + +**Issues (normalizer espera):** +``` +id, url, issue_key, title, status, original_status, story_point, +priority, created_date, updated_date, resolution_date, +lead_time_minutes, assignee_name, type, sprint_id +``` + +**Issue Changelogs (normalizer espera):** +``` +issue_id, from_status (original_from_value), to_status (original_to_value), created_date +``` + +**Deployments (normalizer espera):** +``` +id, cicd_deployment_id, repo_id, name, result, status, +environment, created_date, started_date, finished_date +``` + +**Sprints (normalizer espera):** +``` +id, original_board_id, name, url, status, started_date, +ended_date, completed_date, total_issues (count) +``` + +**Sprint Issues (normalizer espera):** +``` +id, issue_key, status, original_status, story_point, type, resolution_date +``` + +--- + +## Fase 2 — Conector Jira (Dia 3-5) + +**Prioridade #1** porque e o que esta quebrado no DevLake. + +**Arquivo:** `src/connectors/jira_connector.py` + +### Endpoints Jira REST API v3 a usar: + +| Dado | Endpoint | Paginacao | +|------|----------|-----------| +| Issues | `GET /rest/api/3/search` (JQL) | startAt + maxResults (50) | +| Issue detail | `GET /rest/api/3/issue/{key}?expand=changelog` | N/A | +| Sprints | `GET /rest/agile/1.0/board/{boardId}/sprint` | startAt + maxResults | +| Sprint issues | `GET /rest/agile/1.0/sprint/{sprintId}/issue` | startAt + maxResults | +| Boards | `GET /rest/agile/1.0/board` | startAt + maxResults | +| Changelogs | Incluido no expand=changelog do issue | In-line | + +### JQL para busca incremental: +``` +project IN (DESC, ENO, ANCR, PUSO, APPF, FID, CTURBO, PTURB) +AND updated >= "2026-04-01" +ORDER BY updated DESC +``` + +### Mapeamento de campos Jira → Normalizer: + +```python +def _map_issue(self, jira_issue: dict) -> dict: + fields = jira_issue["fields"] + return { + "id": f"jira:JiraIssue:{self._connection_id}:{jira_issue['id']}", + "url": f"{self._base_url}/browse/{jira_issue['key']}", + "issue_key": jira_issue["key"], + "title": fields.get("summary", ""), + "status": fields.get("status", {}).get("name", ""), + "original_status": fields.get("status", {}).get("name", ""), + "story_point": fields.get("story_points") or fields.get("customfield_10028"), + "priority": fields.get("priority", {}).get("name", ""), + "created_date": fields.get("created"), + "updated_date": fields.get("updated"), + "resolution_date": fields.get("resolutiondate"), + "lead_time_minutes": None, # Calculado pelo PULSE + "assignee_name": (fields.get("assignee") or {}).get("displayName"), + "type": fields.get("issuetype", {}).get("name", "Task"), + "sprint_id": None, # Preenchido via sprint API + } +``` + +### Changelogs (inline no expand=changelog): + +```python +def _map_changelogs(self, jira_issue: dict) -> list[dict]: + changelogs = [] + for history in jira_issue.get("changelog", {}).get("histories", []): + for item in history.get("items", []): + if item.get("field") == "status": + changelogs.append({ + "issue_id": f"jira:JiraIssue:{self._connection_id}:{jira_issue['id']}", + "from_status": item.get("fromString", ""), + "to_status": item.get("toString", ""), + "created_date": history.get("created"), + }) + return changelogs +``` + +### Vantagem direta sobre DevLake: +- **Changelogs vem junto com o issue** (expand=changelog) — 1 request vs 2 no DevLake +- **JQL nativo** para filtrar por projeto/data — sem intermediarios +- **API v3** direto — sem depender de fix do DevLake + +### Estimativa: ~400 linhas, 3 dias (incluindo testes) + +--- + +## Fase 3 — Conector Jenkins (Dia 5-6) + +**Arquivo:** `src/connectors/jenkins_connector.py` + +### Endpoints Jenkins API: + +| Dado | Endpoint | +|------|----------| +| Job list | `GET /api/json?tree=jobs[name,url,fullName]` | +| Job builds | `GET /job/{name}/api/json?tree=builds[number,result,timestamp,duration,url]` | +| Build detail | `GET /job/{name}/{number}/api/json` | + +### Mapeamento Jenkins → Normalizer (deployments): + +```python +def _map_build(self, job_name: str, build: dict) -> dict: + result = build.get("result", "UNKNOWN") + timestamp_ms = build.get("timestamp", 0) + duration_ms = build.get("duration", 0) + started = datetime.fromtimestamp(timestamp_ms / 1000, tz=timezone.utc) + finished = datetime.fromtimestamp((timestamp_ms + duration_ms) / 1000, tz=timezone.utc) + + return { + "id": f"jenkins:JenkinsBuild:{self._connection_id}:{job_name}:{build['number']}", + "cicd_deployment_id": f"jenkins:JenkinsJob:{self._connection_id}:{job_name}", + "repo_id": None, + "name": job_name, + "result": result, # SUCCESS, FAILURE, UNSTABLE, ABORTED + "status": "DONE", + "environment": self._detect_environment(job_name), + "created_date": started.isoformat(), + "started_date": started.isoformat(), + "finished_date": finished.isoformat(), + } +``` + +### Deteccao de environment: +Ler de `config/connections.yaml` os patterns `deploymentPattern` e `productionPattern` por job. + +### Estimativa: ~250 linhas, 1.5 dias + +--- + +## Fase 4 — Conector GitHub (Dia 7-10) + +**Arquivo:** `src/connectors/github_connector.py` + +### Estrategia: REST + GraphQL + +**REST API v3** para PRs (simples, paginated): +``` +GET /repos/{owner}/{repo}/pulls?state=all&sort=updated&direction=desc&per_page=100 +``` + +**GraphQL** para dados enriquecidos (timeline events): +```graphql +query($owner: String!, $repo: String!, $cursor: String) { + repository(owner: $owner, name: $repo) { + pullRequests(first: 100, after: $cursor, orderBy: {field: UPDATED_AT, direction: DESC}) { + nodes { + number + title + state + author { login } + createdAt + mergedAt + closedAt + additions + deletions + changedFiles + baseRefName + headRefName + mergeable + reviewRequests(first: 10) { nodes { requestedReviewer { ... on User { login } } } } + reviews(first: 20) { nodes { author { login } state submittedAt } } + timelineItems(first: 50, itemTypes: [READY_FOR_REVIEW_EVENT, REVIEW_REQUESTED_EVENT, PULL_REQUEST_REVIEW]) { + nodes { + __typename + ... on ReadyForReviewEvent { createdAt } + ... on ReviewRequestedEvent { createdAt } + ... on PullRequestReview { submittedAt state } + } + } + } + pageInfo { hasNextPage endCursor } + } + } +} +``` + +### Dados EXTRAS que o DevLake NAO fornecia: +- `first_review_at` — timestamp da primeira review request ou review submetida +- `approved_at` — timestamp da primeira review com state=APPROVED +- `files_changed` — count real de arquivos alterados +- `reviewers` — lista de reviewers com seus estados +- Review timeline completa + +### Mapeamento GitHub → Normalizer: + +```python +def _map_pr(self, repo_full_name: str, pr: dict) -> dict: + return { + "id": f"github:GithubPullRequest:{self._connection_id}:{pr['number']}", + "base_repo_id": f"github:GithubRepo:{self._connection_id}:{repo_full_name}", + "head_repo_id": f"github:GithubRepo:{self._connection_id}:{repo_full_name}", + "status": pr["state"].upper(), # OPEN, CLOSED, MERGED + "title": pr["title"], + "url": pr.get("html_url") or pr.get("url", ""), + "author_name": pr.get("user", {}).get("login", "unknown"), + "created_date": pr["created_at"], + "merged_date": pr.get("merged_at"), + "closed_date": pr.get("closed_at"), + "merge_commit_sha": pr.get("merge_commit_sha"), + "base_ref": pr.get("base", {}).get("ref", ""), + "head_ref": pr.get("head", {}).get("ref", ""), + "additions": pr.get("additions", 0), + "deletions": pr.get("deletions", 0), + # NOVOS — enriquecem o normalizer + "_files_changed": pr.get("changed_files", 0), + "_reviewers": [...], + "_first_review_at": ..., + "_approved_at": ..., + } +``` + +### Discovery de repos: +Substitui `scripts/bulk_import_repos.py`: +```python +async def discover_repos(self, org: str, active_months: int = 12) -> list[str]: + """Lista todos os repos da org, filtrado por atividade recente.""" + repos = await self._client.get_paginated(f"/orgs/{org}/repos", params={"type": "all"}) + cutoff = datetime.now(timezone.utc) - timedelta(days=active_months * 30) + return [r["full_name"] for r in repos if _parse_datetime(r["pushed_at"]) > cutoff] +``` + +### Rate limiting: +- REST: 5.000 req/hora com token (PyGithub gerencia automaticamente) +- GraphQL: 5.000 pontos/hora (1 query = ~1 ponto) +- Para 1.426 repos com ~4 PRs cada: ~5.704 requests = ~1.1 hora no pior caso +- Com GraphQL: ~1.426 queries × 1 ponto = muito menos + +### Estimativa: ~350 linhas, 3 dias (incluindo GraphQL + discovery) + +--- + +## Fase 5 — Refatorar Sync Worker (Dia 10-11) + +### De: `devlake_sync.py` → Para: `data_sync.py` + +**Mudanca cirurgica:** O sync worker troca `DevLakeReader` por `ConnectorAggregator`: + +```python +# ANTES (devlake_sync.py, linha 28): +from src.contexts.engineering_data.devlake_reader import DevLakeReader + +# DEPOIS (data_sync.py): +from src.connectors.github_connector import GitHubConnector +from src.connectors.jira_connector import JiraConnector +from src.connectors.jenkins_connector import JenkinsConnector +``` + +### ConnectorAggregator — agrega dados de multiplos conectores: + +```python +class ConnectorAggregator: + """Agrega dados de multiplos conectores numa interface unificada. + + Implementa a mesma interface que DevLakeReader tinha, para que o + sync worker nao precise mudar sua logica de watermark/upsert/kafka. + """ + def __init__(self): + self._connectors = { + "github": GitHubConnector(...), + "jira": JiraConnector(...), + "jenkins": JenkinsConnector(...), + } + + async def fetch_pull_requests(self, since=None) -> list[dict]: + return await self._connectors["github"].fetch_pull_requests(since) + + async def fetch_issues(self, since=None) -> list[dict]: + return await self._connectors["jira"].fetch_issues(since) + + async def fetch_issue_changelogs(self, issue_ids) -> dict: + return await self._connectors["jira"].fetch_issue_changelogs(issue_ids) + + async def fetch_deployments(self, since=None) -> list[dict]: + return await self._connectors["jenkins"].fetch_deployments(since) + + async def fetch_sprints(self, since=None) -> list[dict]: + return await self._connectors["jira"].fetch_sprints(since) + + async def fetch_sprint_issues(self, sprint_id) -> list[dict]: + return await self._connectors["jira"].fetch_sprint_issues(sprint_id) +``` + +### O que NAO muda no sync worker: +- `sync()` — orquestracao de todas as entidades ✅ +- `_sync_pull_requests()` — logica de watermark + normalize + upsert + kafka ✅ +- `_sync_issues()` — idem ✅ +- `_sync_deployments()` — idem ✅ +- `_sync_sprints()` — idem ✅ +- `_upsert_*()` — todas as queries de ON CONFLICT ✅ +- `_get_watermark()` / `_set_watermark()` — watermark persistence ✅ +- `_log_sync_cycle()` — observability ✅ +- `run_sync_loop()` — cron loop ✅ + +### O que MUDA no sync worker: +- Linha 28: import DevLakeReader → import ConnectorAggregator +- Linha ~114: `self._reader = DevLakeReader()` → `self._reader = ConnectorAggregator()` +- Linha ~205: `await self._reader.close()` → idem (ConnectorAggregator.close() fecha todos) + +**Total: ~5-10 linhas de mudanca no sync worker.** + +### Estimativa: 1 dia + +--- + +## Fase 6 — Atualizar Normalizer (Dia 11) + +### Mudancas minimas no normalizer: + +O normalizer e 99% reutilizavel porque os conectores mapeiam para o formato esperado. Ajustes: + +1. **`_detect_source()`** — Manter como esta (os conectores geram IDs com prefixo `github:`, `jira:`, `jenkins:`) + +2. **`normalize_pull_request()`** — Adicionar suporte aos campos extras do GitHub GraphQL: +```python +# Adicionar apos linha 274: +"first_review_at": _parse_datetime(devlake_pr.get("_first_review_at")), +"approved_at": _parse_datetime(devlake_pr.get("_approved_at")), +"files_changed": devlake_pr.get("_files_changed", 0), +"reviewers": devlake_pr.get("_reviewers", []), +``` + +3. **Docstrings** — Atualizar "DevLake" → "source connector" nas docstrings + +### Estimativa: 0.5 dia + +--- + +## Fase 7 — Atualizar Pipeline Monitor (Dia 12) + +### Remover: `devlake_api.py` (76 linhas) + +### Modificar: `routes.py` + +**ANTES:** Pipeline Monitor compara DevLake counts vs PULSE counts +**DEPOIS:** Pipeline Monitor mostra connector health + PULSE counts + +```python +# Remover: +from src.contexts.pipeline.devlake_api import DevLakeAPIClient +from src.contexts.engineering_data.devlake_reader import DevLakeReader + +# Adicionar: +from src.connectors.github_connector import GitHubConnector +from src.connectors.jira_connector import JiraConnector +from src.connectors.jenkins_connector import JenkinsConnector +``` + +**`_get_devlake_counts()`** → **`_get_source_health()`**: +```python +async def _get_source_health() -> dict: + """Check connectivity and basic counts from each source.""" + health = {} + # GitHub: test API connectivity + try: + gh = GitHubConnector(...) + health["github"] = {"status": "healthy", "org": settings.github_org} + await gh.close() + except Exception as e: + health["github"] = {"status": "error", "error": str(e)} + # ... idem para Jira e Jenkins + return health +``` + +A comparacao DevLake vs PULSE nao faz mais sentido (nao ha DB intermediario). No lugar, o Pipeline Monitor mostra: +- **Connector status** (healthy/error per source) +- **PULSE DB counts** (total records por entidade) +- **Last sync** (de pipeline_sync_log, ja funciona) +- **Watermarks** (de pipeline_watermarks, ja funciona) +- **Errors** (de pipeline_sync_log, ja funciona) + +### Estimativa: 1 dia + +--- + +## Fase 8 — Limpar Infraestrutura (Dia 12-13) + +### 8.1 docker-compose.yml + +**Remover services:** +```yaml +# REMOVER COMPLETAMENTE: +devlake: + image: apache/devlake:v1.0.3-beta7 + ... + +devlake-pg: + image: postgres:16-alpine + ... +``` + +**Remover volume:** +```yaml +volumes: + # REMOVER: + devlake_pgdata: + driver: local +``` + +**Atualizar pulse-data e sync-worker:** +```yaml +pulse-data: + environment: + # REMOVER: + DEVLAKE_DB_URL: ... + DEVLAKE_API_URL: ... + # ADICIONAR: + GITHUB_TOKEN: ${GITHUB_TOKEN:-} + GITHUB_ORG: ${GITHUB_ORG:-webmotors-private} + JIRA_BASE_URL: ${JIRA_BASE_URL:-} + JIRA_EMAIL: ${JIRA_EMAIL:-} + JIRA_API_TOKEN: ${JIRA_API_TOKEN:-} + JENKINS_BASE_URL: ${JENKINS_BASE_URL:-} + JENKINS_USERNAME: ${JENKINS_USERNAME:-} + JENKINS_API_TOKEN: ${JENKINS_API_TOKEN:-} + depends_on: + # REMOVER: + devlake-pg: + condition: service_healthy +``` + +### 8.2 NestJS — Simplificar Integration Module + +O `ConfigLoaderService` hoje faz provisioning no DevLake (criar connections, blueprints, scopes). Com conectores proprios, isso nao e mais necessario. + +**Simplificar `config-loader.service.ts`:** +- Manter: Leitura do `connections.yaml` + criacao de teams/org no PULSE DB +- Remover: Toda logica de `DevLakeApiClient` calls (~300 linhas) +- Remover: `devlake-api.client.ts` inteiro (319 linhas) + +**Resultado:** O NestJS apenas carrega a config YAML e cria registros no PULSE DB. O Python (pulse-data) cuida da ingestao. + +### 8.3 Scripts + +- **Remover:** `scripts/bulk_import_repos.py` (substituido por `GitHubConnector.discover_repos()`) +- **Reescrever:** `scripts/full_ingestion.py` (simplificar — sem DevLake API polling) + +### 8.4 Dependencies (pyproject.toml) + +**Adicionar:** +```toml +PyGithub = ">=2.1.0" # GitHub REST API +gql = ">=3.5.0" # GitHub GraphQL (opcional, pode usar httpx direto) +jira = ">=3.8.0" # Jira REST API v3 +python-jenkins = ">=1.8.0" # Jenkins API +``` + +**Nota:** `httpx` ja e dependencia existente — reutilizar para requests customizados. + +### Estimativa: 1 dia + +--- + +## Fase 9 — Testes (Dia 13-15) + +### 9.1 Unit Tests por Conector + +```python +# tests/connectors/test_jira_connector.py +async def test_map_issue_normalizer_compatible(): + """Garante que o dict retornado tem todos os campos que o normalizer espera.""" + raw_jira = {...} # fixture de issue Jira real + mapped = connector._map_issue(raw_jira) + # Todos os campos devem existir: + assert "id" in mapped + assert "issue_key" in mapped + assert "original_status" in mapped + assert "story_point" in mapped + ... + +async def test_changelog_extraction(): + """Garante que changelogs sao extraidos do expand=changelog.""" + ... + +async def test_incremental_sync_jql(): + """Garante que JQL inclui filtro de updated >= since.""" + ... +``` + +### 9.2 Integration Test — Full Pipeline + +```python +async def test_full_sync_cycle(): + """Testa o fluxo completo: Connector → Normalizer → Upsert → Kafka.""" + # Mock dos conectores com dados reais (fixtures) + aggregator = ConnectorAggregator(connectors={ + "github": MockGitHubConnector(fixtures/github_prs.json), + "jira": MockJiraConnector(fixtures/jira_issues.json), + "jenkins": MockJenkinsConnector(fixtures/jenkins_builds.json), + }) + worker = DataSyncWorker(reader=aggregator) + results = await worker.sync() + + assert results["pull_requests"]["synced"] > 0 + assert results["issues"]["synced"] > 0 + assert results["deployments"]["synced"] > 0 +``` + +### 9.3 Smoke Test com APIs reais + +```bash +# Script de validacao manual (nao automatizado) +python -m scripts.smoke_test_connectors +# Testa: +# 1. GitHub: busca 10 PRs do repo mais ativo +# 2. Jira: busca 10 issues do projeto DESC +# 3. Jenkins: busca 5 builds do job mais recente +# 4. Normalizer: processa os dados sem erro +# 5. Upsert: insere no PULSE DB +``` + +### Estimativa: 2 dias + +--- + +## Fase 10 — Validacao e Cutover (Dia 15) + +### 10.1 Comparar dados pre/pos migracao + +```sql +-- Antes: snapshot dos dados existentes +SELECT source, COUNT(*) FROM eng_pull_requests GROUP BY source; +SELECT source, COUNT(*) FROM eng_issues GROUP BY source; +SELECT source, COUNT(*) FROM eng_deployments GROUP BY source; +``` + +### 10.2 Rodar full sync com conectores novos + +```bash +docker compose up -d # Sem DevLake! +docker exec pulse-data python -m scripts.full_ingestion --reset-watermarks +``` + +### 10.3 Validar contagens + +```sql +-- Depois: contagens devem ser >= as anteriores +-- (podem ser maiores porque os conectores acessam dados que DevLake perdia) +SELECT source, COUNT(*) FROM eng_pull_requests GROUP BY source; +SELECT source, COUNT(*) FROM eng_issues GROUP BY source; -- Esperado: >>243 (os 32K issues do Jira) +``` + +### 10.4 Verificar Pipeline Monitor + +- Dashboard deve mostrar connectors healthy +- Sync logs registrando ciclos completos +- Watermarks atualizando + +--- + +## Cronograma Consolidado + +| Dia | Fase | Entregavel | +|-----|------|-----------| +| 1-2 | Fundacao | `base.py`, `http_client.py`, config atualizada | +| 3-5 | Jira Connector | `jira_connector.py` + testes unitarios | +| 5-6 | Jenkins Connector | `jenkins_connector.py` + testes unitarios | +| 7-10 | GitHub Connector | `github_connector.py` + GraphQL + discovery | +| 10-11 | Refatorar Sync Worker | `data_sync.py` com ConnectorAggregator | +| 11 | Atualizar Normalizer | Campos extras, docstrings | +| 12 | Pipeline Monitor | Trocar DevLake health por connector health | +| 12-13 | Limpar Infra | docker-compose, NestJS, scripts | +| 13-15 | Testes + Validacao | Unit, integration, smoke, cutover | + +--- + +## Riscos e Mitigacoes + +| Risco | Mitigacao | +|-------|----------| +| Rate limit GitHub (1.426 repos) | GraphQL batch + sleep entre batches + cache | +| Story points field customizado no Jira | Ler de connections.yaml qual customfield usar | +| Jenkins auth por certificado | Verificar se basic auth funciona (ja funciona no .env) | +| Dados existentes no PULSE DB divergem | Rodar com --reset-watermarks no primeiro sync | +| Regressao no normalizer | Testes unitarios com fixtures dos dados reais | + +--- + +## Checklist de Prontidao (DoD) + +- [ ] Todos os 3 conectores implementados e testados +- [ ] Normalizer adaptado e testes passando +- [ ] Sync worker usando ConnectorAggregator +- [ ] Pipeline Monitor sem referencias a DevLake +- [ ] docker-compose.yml sem servicos DevLake +- [ ] NestJS sem DevLakeApiClient +- [ ] `make up` sobe stack completo sem DevLake +- [ ] Full sync retorna >= dados anteriores +- [ ] Issues Jira: 32.000+ (vs 243 anteriores) +- [ ] Pipeline Monitor mostra connectors healthy +- [ ] Testes unitarios para os 3 conectores +- [ ] Smoke test com APIs reais da Webmotors diff --git a/pulse/docs/feature-pipeline-monitor.md b/pulse/docs/feature-pipeline-monitor.md new file mode 100644 index 0000000..55465c2 --- /dev/null +++ b/pulse/docs/feature-pipeline-monitor.md @@ -0,0 +1,568 @@ +# Feature Spec: Pipeline Monitor Dashboard + +**Feature Set:** MVP-1.7 (Epico 1 -- Data Pipeline) +**Status:** Draft +**Author:** Product Director Agent +**Date:** 2026-04-07 +**Version:** 1.0 + +--- + +## 1. Problem Statement + +PULSE has a four-stage data pipeline: **Source (Jira/GitHub)** --> **DevLake Collection** --> **Sync Worker** --> **Metrics Worker**. Today there is zero visibility into this pipeline. Users only discover problems when metrics stop updating or show stale data. Carlos (EM) opens the DORA dashboard, sees metrics from 3 days ago, and has no idea whether the pipeline is broken, slow, or simply idle. He has no recourse other than checking logs -- which he should never need to do. + +This is a trust problem. If users cannot see that the pipeline is healthy, they cannot trust the metrics. And metrics without trust have zero value. + +### Who Feels This Pain + +| Persona | Scenario | Impact | +|---------|----------|--------| +| **Carlos** (EM) | Opens DORA dashboard, sees `calculated_at: 3 days ago`. Is the system broken? Is there no data? He has no way to know. | Loses trust in metrics, stops using PULSE | +| **Ana** (CTO) | Asks "Are all teams connected and flowing data?" before an exec review. No answer available. | Cannot use PULSE for decision-making | +| **Priya** (Agile Coach) | Notices CFD looks wrong. Wants to know if Jira issues are being synced correctly. Cannot inspect. | Blames PULSE instead of investigating data quality | + +### Value Proposition + +> "One glance at pipeline health means I can trust every metric on every other page." + +The Pipeline Monitor is not a feature users will stare at daily. It is a **trust signal** -- a page they check once when something looks off, and that presence alone increases confidence in the entire platform. Think of it as the "engine light" for PULSE. + +--- + +## 2. Design Principles + +1. **Read-only, always.** This dashboard reads status from DevLake API, PULSE DB counts, Kafka consumer lag, and worker state. It NEVER triggers pipelines, retries, or writes to any external system. +2. **Team-level, never individual.** Pipeline health is about the system, not about who broke it. +3. **One glance, one answer.** The primary question is: "Is data flowing?" The answer should be visible in under 2 seconds. +4. **Progressive disclosure.** Top level = 4 stage cards with status. Click/expand = detailed counters, errors, history. + +--- + +## 3. Information Architecture + +### Placement + +The Pipeline Monitor lives as a **section within the existing `/integrations` page**, accessible via a tab or anchor scroll. The URL becomes `/integrations` with two visual sections: + +- **Connections** (existing) -- Source-level cards showing GitHub, Jira, etc. +- **Pipeline Health** (new) -- The four-stage flow visualization with status and counters. + +This avoids creating a new nav item for an MVP feature while keeping the information architecturally coherent: "Integrations" is already where users go to understand data source health. + +### Navigation Change + +No sidebar change needed. The existing "Integrations" link gains richer content. + +--- + +## 4. Status Taxonomy + +Generic statuses like "processing" or "active" are not actionable. The pipeline monitor uses a **semantic status model** where each status tells the user what is happening and what to expect: + +### Stage Statuses + +| Status | Visual | Meaning | User Action | +|--------|--------|---------|-------------| +| `healthy` | Green dot, steady | Last cycle completed successfully, within expected schedule | None needed | +| `running` | Blue dot, animated pulse | Currently executing a sync/calculation cycle | Wait; system is working | +| `stale` | Yellow dot | Last successful run was more than 2x the expected interval (e.g., >30min for a 15min cycle) | Investigate; may need restart | +| `error` | Red dot | Last cycle failed with an error | Check error details panel | +| `idle` | Gray dot | No data has ever been processed (first-run or unconfigured) | Verify configuration | +| `degraded` | Orange dot | Partially working -- some entities succeeded, others failed | Check per-entity breakdown | + +### Overall Pipeline Status + +Derived from the four stage statuses using worst-status-wins: +- All `healthy` --> Pipeline `healthy` +- Any `running` (none `error`) --> Pipeline `running` +- Any `stale` (none `error`) --> Pipeline `stale` +- Any `error` --> Pipeline `error` +- All `idle` --> Pipeline `idle` + +--- + +## 5. Visualization Specification + +### 5.1 Pipeline Flow Diagram (Hero Component) + +A horizontal four-stage flow diagram, inspired by CI/CD pipeline visualizations (GitLab CI, GitHub Actions), but adapted for a data pipeline context. + +``` + [Source] ------> [DevLake] ------> [Sync Worker] ------> [Metrics Worker] + Jira/GH Collection Normalize/Upsert Calculate/Write + + (green) ----> (blue) ----> (green) ----> (green) + 3 active Running 847 records 12 snapshots + 0 errors Task 3/5 last: 2min ago last: 2min ago +``` + +**Layout:** +- Four cards arranged horizontally (responsive: stack vertically on mobile) +- Animated connecting arrows between stages (CSS animation, dashed line with flowing dots when `running`) +- Arrow color matches the source stage status +- Each card: icon + stage name + status badge + key metric + sub-detail + +**Stage Card Contents:** + +| Stage | Icon | Primary Metric | Secondary Detail | +|-------|------|----------------|------------------| +| Source | Plug icon | `{N} connections active` | Per-source breakdown (2 GitHub, 1 Jira) | +| DevLake Collection | Database icon | `{status}` or `Task {N}/{total}` | Current pipeline name, started at, duration | +| Sync Worker | Refresh icon | `{N} records synced` | Per-entity: PRs, Issues, Deploys, Sprints + last cycle timestamp | +| Metrics Worker | Calculator icon | `{N} snapshots written` | Per-metric-type: DORA, Lean, CycleTime, Throughput, Sprint + last calc timestamp | + +### 5.2 Record Counters Panel + +Below the flow diagram, a summary table showing record counts across the pipeline: + +``` +Entity | DevLake | PULSE DB | Last Synced | Kafka Lag +Pull Requests | 1,247 | 1,243 | 2 min ago | 4 +Issues | 3,891 | 3,891 | 2 min ago | 0 +Deployments | 156 | 156 | 2 min ago | 0 +Sprints | 24 | 24 | 2 min ago | 0 +``` + +- **DevLake count:** `SELECT COUNT(*) FROM pull_requests` (via DevLake reader) +- **PULSE DB count:** `SELECT COUNT(*) FROM eng_pull_requests WHERE tenant_id = ?` +- **Last Synced:** From watermark or `MAX(updated_at)` on PULSE DB tables +- **Kafka Lag:** Consumer group offset lag (available via Kafka admin client) + +A mismatch between DevLake and PULSE DB counts is a signal of sync issues. Highlight rows where `devlake_count - pulse_count > threshold` in yellow. + +### 5.3 Error Panel + +A collapsible panel (collapsed by default) that shows recent errors: + +``` +Errors (2) [Expand v] + + [!] Sync Worker - Issues 3 min ago + sqlalchemy.exc.IntegrityError: duplicate key value violates + unique constraint "uq_eng_issue_tenant_external" + Affected: issue BACK-1234 + + [!] DevLake - collectChangelogs 15 min ago + HTTP 429 Too Many Requests from Jira API + Blueprint: pulse-jira-sync, Task: collectChangelogs +``` + +- Shows the last N errors (default 10) +- Includes stage, timestamp, error message (first 200 chars), and context +- No stack traces exposed (security) -- only business-relevant error info +- Errors are team-level, never attributed to individual developers + +### 5.4 Sync History Timeline (Stretch) + +A small sparkline or mini-timeline showing the last 24h of sync cycles: + +``` +Sync History (24h) +|..||||.|||||||.||||||.||||||||..||||..| + ^errors ^gaps ^normal +``` + +Each tick = one sync cycle. Color = status. This gives at-a-glance pattern recognition (e.g., "errors started 6h ago"). + +--- + +## 6. Data Sources and API Design + +### 6.1 New API Endpoint + +``` +GET /data/v1/pipeline/status +``` + +**Response Schema:** + +```json +{ + "overall_status": "healthy", + "stages": { + "source": { + "status": "healthy", + "connections": [ + { + "name": "GitHub - acme-corp", + "source": "github", + "status": "active", + "repos_monitored": 5, + "last_sync_at": "2026-04-07T14:30:00Z" + } + ], + "active_count": 3, + "error_count": 0 + }, + "devlake": { + "status": "healthy", + "current_pipeline": null, + "last_pipeline": { + "id": 42, + "status": "TASK_COMPLETED", + "started_at": "2026-04-07T14:15:00Z", + "finished_at": "2026-04-07T14:18:32Z", + "duration_seconds": 212, + "tasks_total": 5, + "tasks_completed": 5, + "tasks_failed": 0 + }, + "blueprints_active": 2 + }, + "sync_worker": { + "status": "healthy", + "last_cycle": { + "started_at": "2026-04-07T14:18:35Z", + "finished_at": "2026-04-07T14:19:12Z", + "duration_seconds": 37, + "results": { + "pull_requests": 12, + "issues": 45, + "deployments": 3, + "sprints": 0 + } + }, + "watermarks": { + "pull_requests": "2026-04-07T14:18:35Z", + "issues": "2026-04-07T14:18:35Z", + "deployments": "2026-04-07T14:18:35Z", + "sprints": "2026-04-07T14:18:35Z" + } + }, + "metrics_worker": { + "status": "healthy", + "last_calculation_at": "2026-04-07T14:19:15Z", + "snapshots_by_type": { + "dora": { "count": 4, "last_at": "2026-04-07T14:19:15Z" }, + "lean": { "count": 20, "last_at": "2026-04-07T14:19:14Z" }, + "cycle_time": { "count": 8, "last_at": "2026-04-07T14:19:13Z" }, + "throughput": { "count": 8, "last_at": "2026-04-07T14:19:12Z" }, + "sprint": { "count": 2, "last_at": "2026-04-07T14:19:10Z" } + } + } + }, + "record_counts": { + "pull_requests": { "devlake": 1247, "pulse_db": 1243, "kafka_lag": 4 }, + "issues": { "devlake": 3891, "pulse_db": 3891, "kafka_lag": 0 }, + "deployments": { "devlake": 156, "pulse_db": 156, "kafka_lag": 0 }, + "sprints": { "devlake": 24, "pulse_db": 24, "kafka_lag": 0 } + }, + "recent_errors": [ + { + "stage": "sync_worker", + "entity": "issues", + "timestamp": "2026-04-07T14:16:00Z", + "message": "IntegrityError: duplicate key on eng_issues", + "context": { "issue_key": "BACK-1234" } + } + ] +} +``` + +### 6.2 Data Source Mapping + +| Response Field | Source | Read Method | +|----------------|--------|-------------| +| `stages.source.connections` | `connections.yaml` + DevLake connection test API | `GET /plugins/{plugin}/connections/{id}/test` (read-only) | +| `stages.devlake.last_pipeline` | DevLake REST API | `GET /pipelines?page=1&pageSize=1` (read-only) | +| `stages.devlake.current_pipeline` | DevLake REST API | `GET /pipelines?status=TASK_RUNNING` (read-only) | +| `stages.sync_worker.last_cycle` | **New:** `pipeline_sync_log` table in PULSE DB | `SELECT * FROM pipeline_sync_log ORDER BY started_at DESC LIMIT 1` | +| `stages.sync_worker.watermarks` | **New:** `pipeline_watermarks` table (replaces in-memory `_WATERMARKS` dict) | `SELECT * FROM pipeline_watermarks WHERE tenant_id = ?` | +| `stages.metrics_worker` | `metrics_snapshots` table | `SELECT metric_type, COUNT(*), MAX(calculated_at) FROM metrics_snapshots GROUP BY metric_type` | +| `record_counts.devlake` | DevLake DB (read-only) | `SELECT COUNT(*) FROM pull_requests` (via DevLakeReader) | +| `record_counts.pulse_db` | PULSE DB | `SELECT COUNT(*) FROM eng_pull_requests WHERE tenant_id = ?` | +| `record_counts.kafka_lag` | Kafka AdminClient | Consumer group offset lag query | + +### 6.3 New Database Tables + +**`pipeline_sync_log`** -- Persisted sync cycle history (replaces ephemeral logging) + +```sql +CREATE TABLE pipeline_sync_log ( + id UUID PRIMARY KEY DEFAULT gen_random_uuid(), + tenant_id UUID NOT NULL, + started_at TIMESTAMPTZ NOT NULL, + finished_at TIMESTAMPTZ, + status VARCHAR(32) NOT NULL, -- running | completed | failed | partial + pull_requests INTEGER DEFAULT 0, + issues INTEGER DEFAULT 0, + deployments INTEGER DEFAULT 0, + sprints INTEGER DEFAULT 0, + error_message TEXT, + error_details JSONB, + created_at TIMESTAMPTZ NOT NULL DEFAULT NOW() +); +CREATE INDEX idx_sync_log_tenant_started ON pipeline_sync_log(tenant_id, started_at DESC); +``` + +**`pipeline_watermarks`** -- Persistent watermarks (replaces in-memory `_WATERMARKS` dict) + +```sql +CREATE TABLE pipeline_watermarks ( + id UUID PRIMARY KEY DEFAULT gen_random_uuid(), + tenant_id UUID NOT NULL, + entity VARCHAR(64) NOT NULL, -- pull_requests | issues | deployments | sprints + watermark TIMESTAMPTZ NOT NULL, + updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW(), + UNIQUE(tenant_id, entity) +); +``` + +--- + +## 7. FDD User Stories -- Backlog MVP-1.7 + +### MVP-1.7.1 -- Persistir watermarks do Sync Worker no banco + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.1 | +| **User Story** | Como sistema, preciso persistir os watermarks do Sync Worker no banco de dados (tabela `pipeline_watermarks`) em vez de manter em memoria, para que o estado de sync sobreviva restarts e fique disponivel para consulta pela API. | +| **Acceptance Criteria** | DADO que o Sync Worker completa um ciclo de sync de pull_requests QUANDO o watermark e atualizado ENTAO o registro em `pipeline_watermarks` para entity="pull_requests" reflete o novo timestamp E o watermark persiste apos restart do worker. DADO que a tabela `pipeline_watermarks` nao tem registro para uma entity QUANDO o Sync Worker inicia ENTAO ele assume `since=NULL` (full sync) e cria o registro apos o primeiro ciclo. | +| **Complexidade** | Baixa | +| **Impacto** | Habilita MVP-1.7.3 e MVP-1.7.5. Corrige bug atual onde restart do worker causa re-sync completo. | +| **Escopo tecnico** | Migracao Alembic para `pipeline_watermarks`. Refatorar `_WATERMARKS` dict em `devlake_sync.py` para usar DB. | + +--- + +### MVP-1.7.2 -- Persistir historico de ciclos do Sync Worker + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.2 | +| **User Story** | Como sistema, preciso registrar cada ciclo de sync (inicio, fim, status, contagens por entidade, erros) na tabela `pipeline_sync_log`, para que o historico fique disponivel para a API e para diagnostico. | +| **Acceptance Criteria** | DADO que o Sync Worker inicia um ciclo QUANDO o metodo `sync()` e chamado ENTAO um registro e inserido em `pipeline_sync_log` com `status='running'`. DADO que o ciclo completa com sucesso QUANDO todos os entity syncs finalizam ENTAO o registro e atualizado com `status='completed'`, contagens por entidade, e `finished_at`. DADO que o ciclo falha com excecao QUANDO ocorre um erro nao-tratado ENTAO o registro e atualizado com `status='failed'`, `error_message`, e `error_details` (JSON com traceback sanitizado, sem dados sensiveis). DADO que alguns entities falham mas outros nao QUANDO issues falha mas PRs succeeds ENTAO o registro tem `status='partial'` com contagens parciais. | +| **Complexidade** | Media | +| **Impacto** | Habilita MVP-1.7.5 e MVP-1.7.7. Fornece dados para o timeline de historico. | +| **Escopo tecnico** | Migracao Alembic para `pipeline_sync_log`. Wrap `sync()` com log escritor. Sanitizar error details (sem tokens, sem dados PII). | + +--- + +### MVP-1.7.3 -- API endpoint de status do pipeline + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.3 | +| **User Story** | Como EM (Carlos), quero acessar `GET /data/v1/pipeline/status` para obter o status consolidado das 4 etapas do pipeline, contagens de registros, e erros recentes, para poder diagnosticar problemas de dados sem precisar acessar logs. | +| **Acceptance Criteria** | DADO que o pipeline esta saudavel QUANDO acesso `GET /data/v1/pipeline/status` ENTAO recebo JSON com `overall_status: "healthy"` e status por etapa (source, devlake, sync_worker, metrics_worker). DADO que o DevLake esta executando um pipeline QUANDO acesso o endpoint ENTAO `stages.devlake.status` e "running" com detalhes do pipeline corrente (tasks total/completed). DADO que o Sync Worker completou ha mais de 30 minutos QUANDO acesso o endpoint ENTAO `stages.sync_worker.status` e "stale". DADO que ha erros recentes QUANDO acesso o endpoint ENTAO `recent_errors` contem os ultimos 10 erros com stage, timestamp, e mensagem (sem stack traces completos). DADO que DevLake tem 1247 PRs e PULSE DB tem 1243 QUANDO acesso o endpoint ENTAO `record_counts.pull_requests` mostra ambos os valores e `kafka_lag: 4`. | +| **Complexidade** | Alta | +| **Impacto** | Endpoint central que alimenta toda a UI. Depende de MVP-1.7.1 e MVP-1.7.2. | +| **Escopo tecnico** | Novo router FastAPI em `src/contexts/pipeline/routes.py`. Le de: DevLake API (`GET /pipelines`), `pipeline_watermarks`, `pipeline_sync_log`, `metrics_snapshots` (agregado), `eng_*` tables (count), DevLake DB (count). Kafka lag via `aiokafka` AdminClient. | + +--- + +### MVP-1.7.4 -- Adicionar contagens de registros ao DevLakeReader + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.4 | +| **User Story** | Como sistema, preciso de metodos no DevLakeReader que retornem contagens de registros (`COUNT(*)`) das tabelas do DevLake (pull_requests, issues, cicd_deployment_commits, sprints), para comparar com as contagens do PULSE DB e detectar divergencias de sync. | +| **Acceptance Criteria** | DADO que o DevLake DB contem dados QUANDO chamo `reader.count_pull_requests()` ENTAO recebo o inteiro com total de registros. DADO que o DevLake DB esta inacessivel QUANDO chamo qualquer metodo de count ENTAO recebo `None` (nao excecao) com log de warning. DADO que preciso de contagens de todas as entidades QUANDO chamo `reader.count_all()` ENTAO recebo `{"pull_requests": N, "issues": N, "deployments": N, "sprints": N}`. | +| **Complexidade** | Baixa | +| **Impacto** | Habilita a comparacao de record counts em MVP-1.7.3. | +| **Escopo tecnico** | 4 novos metodos em `devlake_reader.py`: `count_pull_requests()`, `count_issues()`, `count_deployments()`, `count_sprints()` + convenience `count_all()`. Todas com try/except retornando None on failure. | + +--- + +### MVP-1.7.5 -- Componente visual do Pipeline Flow Diagram + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.5 | +| **User Story** | Como EM (Carlos), quero ver um diagrama de fluxo horizontal com 4 etapas (Source, DevLake, Sync Worker, Metrics Worker) com indicadores de status, contadores animados, e setas de conexao, para entender de relance se os dados estao fluindo corretamente. | +| **Acceptance Criteria** | DADO que acesso `/integrations` QUANDO a pagina carrega ENTAO vejo a secao "Pipeline Health" abaixo dos connection cards existentes, com 4 cards horizontais conectados por setas. DADO que todas as etapas estao saudaveis QUANDO a pagina renderiza ENTAO todos os 4 cards mostram dot verde e label "Healthy". DADO que o DevLake esta executando um pipeline QUANDO a pagina renderiza ENTAO o card DevLake mostra dot azul pulsante, label "Running", e progress "Task 3/5". DADO que o Sync Worker esta em estado "stale" QUANDO a pagina renderiza ENTAO o card mostra dot amarelo e label "Stale -- last sync 45 min ago". DADO que ha erro no Metrics Worker QUANDO a pagina renderiza ENTAO o card mostra dot vermelho e label "Error". DADO que o endpoint esta carregando QUANDO a pagina renderiza ENTAO skeleton shimmer e exibido (nao spinner). DADO que a tela e mobile (<768px) QUANDO renderiza ENTAO os cards empilham verticalmente com setas verticais. | +| **Complexidade** | Alta | +| **Impacto** | Componente hero da feature. Visualmente comunica saude do pipeline em <2 segundos. | +| **Escopo tecnico** | React component `PipelineFlowDiagram`. Consome `GET /data/v1/pipeline/status`. CSS animations para setas (dashed + flowing dots). Auto-refresh a cada 30 segundos (React Query `refetchInterval`). | + +--- + +### MVP-1.7.6 -- Tabela de contagens de registros por entidade + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.6 | +| **User Story** | Como EM (Carlos), quero ver uma tabela comparando contagens de registros entre DevLake e PULSE DB, com indicacao de Kafka lag e timestamp do ultimo sync, para detectar divergencias de dados entre as camadas. | +| **Acceptance Criteria** | DADO que os dados estao sincronizados QUANDO a tabela renderiza ENTAO cada linha mostra Entity, DevLake Count, PULSE DB Count, Last Synced, Kafka Lag com valores iguais e sem highlight. DADO que DevLake tem 1247 PRs e PULSE DB tem 1243 QUANDO a tabela renderiza ENTAO a linha Pull Requests e destacada em amarelo com tooltip "4 records pending sync". DADO que o Kafka lag e maior que 100 para Issues QUANDO a tabela renderiza ENTAO a coluna Kafka Lag mostra badge vermelho com o valor. DADO que contagem do DevLake esta indisponivel QUANDO a tabela renderiza ENTAO a celula mostra "--" com tooltip "DevLake unavailable". | +| **Complexidade** | Media | +| **Impacto** | Permite diagnostico rapido de problemas de sync. | +| **Escopo tecnico** | React component `RecordCountsTable`. Dados ja disponiveis no response de MVP-1.7.3. | + +--- + +### MVP-1.7.7 -- Painel de erros recentes + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.7 | +| **User Story** | Como EM (Carlos), quero ver um painel colapsavel mostrando erros recentes do pipeline com stage, timestamp, mensagem resumida, e contexto, para entender a causa de falhas sem acessar logs do servidor. | +| **Acceptance Criteria** | DADO que nao ha erros recentes QUANDO a pagina renderiza ENTAO o painel mostra "No recent errors" com icone de check verde e esta colapsado. DADO que ha 3 erros recentes QUANDO a pagina renderiza ENTAO o header mostra "Errors (3)" com badge vermelho, painel esta expandido automaticamente. DADO que um erro tem contexto QUANDO expando o erro ENTAO vejo stage, entity, timestamp (relative, ex: "3 min ago"), mensagem, e detalhes de contexto (ex: issue_key afetada). DADO que a mensagem de erro contem dados sensiveis (tokens, URLs com credenciais) QUANDO o backend serializa ENTAO esses dados sao sanitizados antes de chegar ao frontend. | +| **Complexidade** | Media | +| **Impacto** | Transforma diagnostico de "check server logs" para "check the dashboard". | +| **Escopo tecnico** | React component `PipelineErrorPanel`. Collapsible com animacao. Dados de `recent_errors` no response de MVP-1.7.3. | + +--- + +### MVP-1.7.8 -- Leitura de status de pipelines do DevLake via API + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.8 | +| **User Story** | Como sistema, preciso consultar a API do DevLake para obter o status do pipeline mais recente e do pipeline em execucao (se houver), incluindo detalhes de tasks, para exibir o estado da etapa DevLake no Pipeline Monitor. | +| **Acceptance Criteria** | DADO que o DevLake tem pipelines finalizados QUANDO consulto `GET /pipelines?page=1&pageSize=1` ENTAO obtenho o pipeline mais recente com id, status, started_at, finished_at, e tasks. DADO que ha um pipeline em execucao QUANDO consulto `GET /pipelines?status=TASK_RUNNING&pageSize=1` ENTAO obtenho o pipeline corrente com progresso de tasks. DADO que o DevLake API esta indisponivel QUANDO a consulta falha ENTAO retorno `status: "error"` com `message: "DevLake API unreachable"` sem propagar excecao. DADO que o DevLake retorna pipeline com tasks QUANDO consulto `GET /pipelines/{id}/tasks` ENTAO obtenho lista de subtasks com nome, status, e progresso. | +| **Complexidade** | Media | +| **Impacto** | Habilita a visibilidade do estagio DevLake em MVP-1.7.3 e MVP-1.7.5. | +| **Escopo tecnico** | Novos metodos no `DevLakeApiClient` (NestJS): `getLatestPipeline()`, `getRunningPipeline()`, `getPipelineTasks(id)`. Todos read-only GET. Ou, se a rota e servida pelo pulse-data (FastAPI), adicionar metodos equivalentes ao DevLakeReader. | + +--- + +### MVP-1.7.9 -- Auto-refresh e indicador de freshness + +| Campo | Valor | +|-------|-------| +| **Story ID** | MVP-1.7.9 | +| **User Story** | Como EM (Carlos), quero que o Pipeline Monitor atualize automaticamente a cada 30 segundos e mostre um indicador de "freshness" (ex: "Updated 5s ago"), para que eu possa monitorar em tempo real sem refresh manual. | +| **Acceptance Criteria** | DADO que estou na pagina de integrations QUANDO 30 segundos se passam ENTAO os dados do pipeline sao re-fetched automaticamente sem reload da pagina. DADO que os dados foram atualizados ha 15 segundos QUANDO olho para o indicador ENTAO vejo "Updated 15s ago" com contador ao vivo. DADO que o fetch falha QUANDO o auto-refresh executa ENTAO o indicador mostra "Update failed -- retrying..." sem perder os dados anteriores (stale-while-revalidate). DADO que a aba do browser nao esta ativa (blur) QUANDO 30 segundos se passam ENTAO o fetch NAO executa (evitar carga desnecessaria). | +| **Complexidade** | Baixa | +| **Impacto** | Experiencia de monitoramento em tempo real. | +| **Escopo tecnico** | React Query `refetchInterval: 30000` com `refetchIntervalInBackground: false`. Freshness indicator component com `useEffect` + timer. | + +--- + +## 8. Story Dependency Graph + +``` +MVP-1.7.1 (watermarks DB) + | + +-----> MVP-1.7.3 (API endpoint) <----- MVP-1.7.4 (DevLake counts) + | | | + | | MVP-1.7.8 (DevLake pipeline status) + | | | +MVP-1.7.2 (sync log DB) | + | | | + | v v + | MVP-1.7.5 (Flow Diagram UI) + | MVP-1.7.6 (Record Counts Table UI) + | MVP-1.7.7 (Error Panel UI) + | MVP-1.7.9 (Auto-refresh) + | + v +[all UI stories depend on MVP-1.7.3] +``` + +**Recommended implementation order:** +1. MVP-1.7.1 + MVP-1.7.4 (parallel, no dependencies) +2. MVP-1.7.2 + MVP-1.7.8 (parallel, no dependencies) +3. MVP-1.7.3 (depends on 1, 2, 4, 8) +4. MVP-1.7.5 + MVP-1.7.6 + MVP-1.7.7 (parallel, depend on 3) +5. MVP-1.7.9 (depends on 5) + +--- + +## 9. Complexity Summary + +| Story | Description | Complexity | Effort Estimate | +|-------|-------------|------------|-----------------| +| MVP-1.7.1 | Watermarks persistence | Baixa | 0.5d | +| MVP-1.7.2 | Sync log persistence | Media | 1d | +| MVP-1.7.3 | Pipeline status API | Alta | 2d | +| MVP-1.7.4 | DevLake record counts | Baixa | 0.5d | +| MVP-1.7.5 | Flow Diagram UI | Alta | 2d | +| MVP-1.7.6 | Record Counts Table | Media | 1d | +| MVP-1.7.7 | Error Panel | Media | 1d | +| MVP-1.7.8 | DevLake pipeline reads | Media | 1d | +| MVP-1.7.9 | Auto-refresh | Baixa | 0.5d | +| **Total** | | | **~9.5d (2 sprints)** | + +--- + +## 10. Scope Boundaries -- What We Are NOT Building + +- **Pipeline triggering or retry UI.** This is read-only. Users cannot trigger syncs, retry failed tasks, or restart workers from the UI. That would violate the read-only constraint. +- **Historical charts or trend analysis of pipeline health.** The sync history timeline (section 5.4) is explicitly a stretch goal, not part of the 9 stories above. +- **Alerting or notifications.** No Slack/email/webhook alerts for pipeline failures. That is R2 scope (Notifications bot). +- **Individual developer attribution.** Pipeline errors are attributed to stages and entities, never to individual developers. +- **Kafka topic management UI.** No ability to create/delete topics, reset offsets, or manage consumer groups. +- **DevLake configuration or blueprint management.** The existing Integrations page remains read-only for connection status. No config changes. + +--- + +## 11. Acceptance Test Scenarios (End-to-End) + +### Scenario A: Happy Path -- Pipeline Healthy + +``` +DADO que todos os conectores estao ativos, DevLake completou o ultimo pipeline, + Sync Worker completou ha 5 minutos, e Metrics Worker escreveu snapshots +QUANDO Carlos acessa /integrations +ENTAO ele ve: + - Secao "Pipeline Health" abaixo dos connection cards + - 4 cards horizontais todos com dot verde e "Healthy" + - Setas entre cards em verde com animacao suave + - Tabela de record counts com valores iguais entre DevLake e PULSE DB + - Painel de erros colapsado com "No recent errors" + - Indicador "Updated just now" +``` + +### Scenario B: DevLake Running + +``` +DADO que o DevLake esta executando um pipeline com 5 tasks (3 completas) +QUANDO Carlos acessa /integrations +ENTAO ele ve: + - Card DevLake com dot azul pulsante e "Running -- Task 3/5" + - Seta de Source para DevLake em azul com animacao de flowing dots + - Overall status: "Running" +``` + +### Scenario C: Sync Worker Stale + +``` +DADO que o Sync Worker completou o ultimo ciclo ha 45 minutos + (esperado: a cada 15 minutos, threshold stale: 30 min) +QUANDO Carlos acessa /integrations +ENTAO ele ve: + - Card Sync Worker com dot amarelo e "Stale -- last sync 45 min ago" + - Overall status: "Stale" +``` + +### Scenario D: Error with Actionable Details + +``` +DADO que o Sync Worker falhou no ultimo ciclo com IntegrityError +QUANDO Carlos acessa /integrations +ENTAO ele ve: + - Card Sync Worker com dot vermelho e "Error" + - Painel de erros expandido automaticamente + - Erro listado: "Sync Worker - Issues | 3 min ago | IntegrityError: duplicate key..." + - Overall status: "Error" +``` + +--- + +## 12. Anti-Surveillance Checklist + +| Check | Status | +|-------|--------| +| No individual developer names in pipeline errors | Enforced -- errors reference entity keys (BACK-1234), not people | +| No per-developer sync metrics | N/A -- pipeline metrics are system-level | +| No "who caused this error" attribution | Enforced -- errors are attributed to stages and entities | +| Team-level only | Enforced -- pipeline status is org/tenant scoped | +| Read-only interactions with external systems | Enforced -- all DevLake, Jira, GitHub API calls are GET only | + +--- + +## 13. Impact on Existing Backlog + +Adding Feature Set 1.7 (9 stories) to Epico 1: + +| Before | After | +|--------|-------| +| Epico 1: 14 stories | Epico 1: 23 stories | +| MVP Total: 36 stories | MVP Total: 45 stories | +| Estimated: 10-14 weeks | Estimated: 12-16 weeks (+2 weeks) | + +**Justification:** The Pipeline Monitor is essential for MVP user trust. Without it, users have no way to diagnose data freshness issues, leading to support burden and churn. The 2-week investment prevents a category of "where is my data?" support tickets that would consume far more than 2 weeks post-launch. + +**Suggested offset:** Stories MVP-1.7.1 and MVP-1.7.2 replace work we would need to do anyway (watermark persistence is a known bug; sync logging is needed for operations). Net new effort is closer to 7-8 days. diff --git a/pulse/docs/pipeline-monitor-spec.md b/pulse/docs/pipeline-monitor-spec.md new file mode 100644 index 0000000..de58ad2 --- /dev/null +++ b/pulse/docs/pipeline-monitor-spec.md @@ -0,0 +1,763 @@ +# Pipeline Monitor Dashboard -- Component Specification + +**Page:** `/integrations/pipeline` (sub-route of Integrations) +**Purpose:** Real-time visualization of the PULSE data ingestion pipeline, showing data flowing from external sources through DevLake collection, normalization, and metric calculation stages. +**Design reference:** Follows existing PULSE design system (globals.css tokens, MetricCard patterns, Sidebar navigation, skeleton loading). + +--- + +## 1. Page Layout + +``` ++------------------------------------------------------------------+ +| Sidebar | TopBar (Team + Period filters) | +| |--------------------------------------------------------| +| | Page Header: "Pipeline Monitor" | +| | Subtitle + Global health badge | +| |--------------------------------------------------------| +| | [--- Pipeline Flow Diagram (hero) ------------------] | +| | | +| | Source --> DevLake --> Sync Worker --> PULSE DB --> Metrics +| | | +| |--------------------------------------------------------| +| | Counter Strip (4 MetricCards in a row) | +| |--------------------------------------------------------| +| | Stage Detail Cards | Activity Timeline | +| | (expandable accordion) | (scrollable feed) | +| | | | ++------------------------------------------------------------------+ +``` + +### Responsive breakpoints + +| Breakpoint | Behavior | +|---|---| +| >= 1280px (xl) | Full layout: flow diagram horizontal, detail cards 2-col + timeline sidebar | +| 1024-1279px (lg) | Flow diagram horizontal, detail cards stack full-width, timeline collapses to bottom | +| 768-1023px (md) | Flow diagram wraps to 2 rows (3+2 nodes), counter strip 2x2 grid | +| < 768px (sm) | Flow diagram vertical stack, counter strip single column, timeline hidden (accessible via tab) | + +--- + +## 2. Component Hierarchy + +``` +PipelineMonitorPage + +-- PageHeader + | +-- Title ("Pipeline Monitor") + | +-- Subtitle + | +-- GlobalHealthBadge (status: healthy | degraded | down) + | + +-- PipelineFlowDiagram + | +-- PipelineNode (x5) + | | +-- NodeIcon (Lucide icon) + | | +-- NodeLabel + | | +-- StatusBadge + | | +-- RecordCount (animated counter) + | +-- PipelinePipe (x4, connects adjacent nodes) + | +-- AnimatedParticles (CSS animation) + | +-- PipeStatusIndicator (color by health) + | + +-- CounterStrip + | +-- MetricCard ("Total Records") + | +-- MetricCard ("Synced Today") + | +-- MetricCard ("Pending") + | +-- MetricCard ("Errors") + | + +-- DetailAndTimelineSection + +-- StageDetailAccordion + | +-- StageCard ("DevLake Collection") + | | +-- BoardProgressRow (per board/project) + | +-- StageCard ("Sync Worker") + | | +-- EntitySyncRow (per entity type) + | +-- StageCard ("Metrics Worker") + | +-- MetricCalcRow (per metric type) + | + +-- ActivityTimeline + +-- TimelineEvent (list, color-coded) +``` + +--- + +## 3. Data Types (TypeScript Interfaces) + +```typescript +/* ---- Pipeline Health ---- */ + +type PipelineStageStatus = 'healthy' | 'running' | 'slow' | 'error' | 'idle'; + +interface PipelineStage { + id: 'source' | 'devlake' | 'sync_worker' | 'pulse_db' | 'metrics_worker'; + label: string; + status: PipelineStageStatus; + /** Icon name from lucide-react */ + icon: string; + /** Total records processed by this stage (lifetime or current period) */ + recordCount: number; + /** Timestamp of last successful operation */ + lastActivityAt: string | null; + /** Human-readable status detail, e.g. "Syncing 3 boards..." */ + statusDetail?: string; +} + +interface PipelineConnection { + from: PipelineStage['id']; + to: PipelineStage['id']; + status: 'flowing' | 'slow' | 'blocked' | 'idle'; + /** Records per minute throughput */ + throughputPerMin: number; +} + +interface PipelineOverview { + stages: PipelineStage[]; + connections: PipelineConnection[]; + globalHealth: 'healthy' | 'degraded' | 'down'; +} + +/* ---- Counter Metrics ---- */ + +interface PipelineCounters { + totalRecords: number; + syncedToday: number; + pending: number; + errors: number; +} + +/* ---- DevLake Stage Detail ---- */ + +interface DevLakeBoardStatus { + boardId: string; + boardName: string; + source: 'jira' | 'github' | 'gitlab' | 'azure_devops'; + status: 'collecting' | 'complete' | 'error' | 'queued'; + /** 0-100, percentage of collection complete for current cycle */ + progress: number; + recordsCollected: number; + lastCollectedAt: string | null; + errorMessage?: string; +} + +interface DevLakeStageDetail { + boards: DevLakeBoardStatus[]; + currentCycleStartedAt: string | null; + collectionFrequencyMin: number; +} + +/* ---- Sync Worker Stage Detail ---- */ + +type EntityType = 'pull_requests' | 'issues' | 'deployments' | 'sprints'; + +interface EntitySyncStatus { + entityType: EntityType; + lastCycleRecords: number; + lastCycleDurationSec: number; + lastSyncAt: string | null; + watermark: string | null; + status: 'idle' | 'syncing' | 'error'; + errorMessage?: string; +} + +interface SyncWorkerStageDetail { + entities: EntitySyncStatus[]; + syncIntervalMin: number; + currentCycleStartedAt: string | null; +} + +/* ---- Metrics Worker Stage Detail ---- */ + +type MetricType = 'dora' | 'cycle_time' | 'throughput' | 'lean' | 'sprint'; + +interface MetricCalcStatus { + metricType: MetricType; + lastCalcDurationSec: number; + lastCalcAt: string | null; + snapshotsWritten: number; + status: 'idle' | 'calculating' | 'error'; + errorMessage?: string; +} + +interface MetricsWorkerStageDetail { + metrics: MetricCalcStatus[]; + triggerMode: 'event_driven' | 'scheduled'; +} + +/* ---- Activity Timeline ---- */ + +type TimelineEventSeverity = 'success' | 'info' | 'warning' | 'error'; + +interface TimelineEvent { + id: string; + timestamp: string; + message: string; + severity: TimelineEventSeverity; + /** Which stage produced this event */ + stageId: PipelineStage['id']; + /** Optional structured detail */ + detail?: Record; +} + +/* ---- Full API Response ---- */ + +interface PipelineMonitorResponse { + overview: PipelineOverview; + counters: PipelineCounters; + devlakeDetail: DevLakeStageDetail; + syncWorkerDetail: SyncWorkerStageDetail; + metricsWorkerDetail: MetricsWorkerStageDetail; + recentEvents: TimelineEvent[]; + /** ISO timestamp of when this snapshot was generated */ + generatedAt: string; +} +``` + +--- + +## 4. Component Specifications + +### 4.1 PipelineFlowDiagram (Hero Section) + +**Layout:** Horizontal flex container with 5 nodes and 4 connecting pipes between them. Centered on the page with generous vertical padding (py-8). + +**Dimensions:** +- Container: full width of content area, max-width 960px, centered +- Each node: 120px wide, 140px tall +- Pipes: flex-1 between nodes, 4px tall visual connector + +#### PipelineNode + +Each node is a vertical card-like element: + +``` + +------------------+ + | [icon] | <- 40x40 icon in a colored circle + | | + | Stage Name | <- text-sm font-semibold + | [status badge] | <- pill badge, colored by status + | 12,450 records | <- text-xs, animated counter + +------------------+ +``` + +**Node visual states by status:** + +| Status | Icon circle bg | Badge color | Badge text | +|---|---|---|---| +| healthy | `bg-emerald-50` | `bg-emerald-50 text-emerald-700` | "Healthy" | +| running | `bg-blue-50` | `bg-blue-50 text-blue-700` | "Running" | +| slow | `bg-amber-50` | `bg-amber-50 text-amber-700` | "Slow" | +| error | `bg-red-50` | `bg-red-50 text-red-700` | "Error" | +| idle | `bg-surface-tertiary` | `bg-surface-tertiary text-content-tertiary` | "Idle" | + +**Node icons (Lucide):** +- Source: `Cable` +- DevLake: `Database` +- Sync Worker: `RefreshCw` +- PULSE DB: `HardDrive` +- Metrics Worker: `Calculator` + +**Interaction:** Clicking a node scrolls to its corresponding StageDetailCard. The node has `cursor-pointer`, `hover:shadow-elevated` transition, and a focus ring for keyboard navigation. + +#### PipelinePipe + +A horizontal connector between two adjacent nodes. The pipe is a 4px-tall rounded bar with animated particles (dots) flowing left to right when active. + +**Pipe color by connection status:** + +| Status | Pipe bg | Particle color | Animation | +|---|---|---|---| +| flowing | `bg-emerald-100` | `bg-emerald-500` | Active, normal speed (3s) | +| slow | `bg-amber-100` | `bg-amber-500` | Active, slow speed (6s) | +| blocked | `bg-red-100` | `bg-red-500` | Stopped, pulse animation | +| idle | `bg-surface-tertiary` | none | No particles | + +**Throughput label:** Centered below the pipe, show `{throughputPerMin} rec/min` in text-xs text-content-tertiary. Hidden when idle (0). + +#### CSS Animation: Flowing Particles + +The particle effect uses 3 small circles (6px diameter) spaced evenly along the pipe, animated with a translateX keyframe. + +```css +/* Pipeline particle flow animation */ +@keyframes pipeline-flow { + 0% { + transform: translateX(-20px); + opacity: 0; + } + 10% { + opacity: 1; + } + 90% { + opacity: 1; + } + 100% { + transform: translateX(calc(100% + 20px)); + opacity: 0; + } +} + +@keyframes pipeline-flow-slow { + 0% { + transform: translateX(-20px); + opacity: 0; + } + 10% { + opacity: 1; + } + 90% { + opacity: 1; + } + 100% { + transform: translateX(calc(100% + 20px)); + opacity: 0; + } +} + +@keyframes pipeline-pulse-blocked { + 0%, 100% { + opacity: 0.3; + } + 50% { + opacity: 1; + } +} + +.pipeline-pipe { + position: relative; + height: 4px; + border-radius: 2px; + overflow: hidden; +} + +.pipeline-particle { + position: absolute; + top: -1px; + width: 6px; + height: 6px; + border-radius: 50%; +} + +/* Three particles, staggered start */ +.pipeline-pipe--flowing .pipeline-particle:nth-child(1) { + animation: pipeline-flow 3s linear infinite; + animation-delay: 0s; +} +.pipeline-pipe--flowing .pipeline-particle:nth-child(2) { + animation: pipeline-flow 3s linear infinite; + animation-delay: 1s; +} +.pipeline-pipe--flowing .pipeline-particle:nth-child(3) { + animation: pipeline-flow 3s linear infinite; + animation-delay: 2s; +} + +/* Slow variant: 6s duration */ +.pipeline-pipe--slow .pipeline-particle:nth-child(1) { + animation: pipeline-flow 6s linear infinite; + animation-delay: 0s; +} +.pipeline-pipe--slow .pipeline-particle:nth-child(2) { + animation: pipeline-flow 6s linear infinite; + animation-delay: 2s; +} +.pipeline-pipe--slow .pipeline-particle:nth-child(3) { + animation: pipeline-flow 6s linear infinite; + animation-delay: 4s; +} + +/* Blocked: particles stop and pulse in place */ +.pipeline-pipe--blocked .pipeline-particle { + left: 50%; + animation: pipeline-pulse-blocked 1.5s ease-in-out infinite; +} +``` + +**Alternative (Tailwind-only):** Use Tailwind `animate-` classes by defining the keyframes in `tailwind.config.ts` under `extend.keyframes` and `extend.animation`. This avoids a separate CSS file and stays consistent with the project approach. + +**Reduced motion:** Wrap all animations with `@media (prefers-reduced-motion: reduce)` to disable particle movement. Replace flowing animation with a static gradient or simple opacity indicator. + +```css +@media (prefers-reduced-motion: reduce) { + .pipeline-particle { + animation: none !important; + opacity: 0.7; + left: 50%; + } +} +``` + +--- + +### 4.2 CounterStrip + +A row of 4 MetricCards using the existing `MetricCard` component from `@/components/charts/MetricCard.tsx`. These reuse the established pattern but without classification/benchmarks. + +**Grid:** `grid grid-cols-1 gap-section-gap sm:grid-cols-2 lg:grid-cols-4` + +| Card | Label | Icon hint | Value example | Unit | Trend source | +|---|---|---|---|---|---| +| Total Records | "Total Records" | n/a | 48,231 | "records" | Compare to yesterday | +| Synced Today | "Synced Today" | n/a | 2,415 | "records" | Compare to same weekday last week | +| Pending | "Pending Sync" | n/a | 38 | "records" | Lower is better (isPositive inverted) | +| Errors | "Errors (24h)" | n/a | 3 | "errors" | Lower is better (isPositive inverted) | + +**Animated counter:** When the data first loads (and on each refetch), the numeric value should animate from the previous value to the new value over 600ms using a count-up easing (ease-out). Implementation options: +- Framer Motion `useSpring` or `useMotionValue` with `animate` +- Or a lightweight custom hook `useAnimatedNumber(target, duration)` that uses `requestAnimationFrame` + +The hook signature: + +```typescript +function useAnimatedNumber( + target: number, + duration?: number // default 600ms +): number // returns the current displayed value, animating toward target +``` + +--- + +### 4.3 StageDetailAccordion + +Three expandable cards stacked vertically. Each card has a header (always visible) and a collapsible body. + +**Container:** `flex flex-col gap-4` + +**Card structure (collapsed):** +``` ++-------------------------------------------------------------------+ +| [icon] Stage Name Status Badge Last run: 2m ago [v] | ++-------------------------------------------------------------------+ +``` + +**Card structure (expanded):** +``` ++-------------------------------------------------------------------+ +| [icon] Stage Name Status Badge Last run: 2m ago [^] | +|-------------------------------------------------------------------| +| (stage-specific detail rows) | ++-------------------------------------------------------------------+ +``` + +**Expand/collapse:** The chevron toggles (ChevronDown/ChevronUp from Lucide). Use CSS `max-height` transition (300ms ease) or Framer Motion `AnimatePresence` for smooth reveal. + +#### 4.3.1 DevLake Collection Card + +Header shows aggregate status. Body shows a table/list of boards: + +``` +| Board | Source | Status | Progress | Records | Last Collected | +|---------------------|--------|------------|-----------------|---------|---------------------| +| WEB-MOTORS Board | Jira | Collecting | [=====> ] 67% | 1,204 | 5 min ago | +| webmotors/api | GitHub | Complete | [==========] 100| 8,412 | 12 min ago | +| webmotors/frontend | GitHub | Error | [=== ] 30%| 2,100 | Error: timeout | +``` + +**Progress bar:** A horizontal bar, 100% width of its cell, 6px tall, rounded-full. +- Track: `bg-surface-tertiary` +- Fill: `bg-emerald-500` (complete), `bg-blue-500` (collecting, with subtle pulse animation), `bg-red-500` (error) +- Text label to the right: `{progress}%` in text-xs + +**Error row:** The entire row gets a subtle `bg-red-50` background. The error message appears below the board name in `text-xs text-status-danger`. + +#### 4.3.2 Sync Worker Card + +Header shows overall sync status and last full cycle duration. Body shows per-entity-type rows: + +``` +| Entity | Last Cycle | Records | Duration | Watermark | Status | +|----------------|-----------------|---------|----------|--------------------|---------| +| Pull Requests | 12 min ago | 342 | 4.2s | 2026-04-07T10:30Z | Idle | +| Issues | 12 min ago | 1,204 | 8.7s | 2026-04-07T10:30Z | Idle | +| Deployments | 12 min ago | 56 | 1.1s | 2026-04-07T10:30Z | Idle | +| Sprints | 12 min ago | 12 | 0.8s | 2026-04-07T10:30Z | Idle | +``` + +**Sync interval indicator:** Below the table, a subtle info line: "Sync interval: every {syncIntervalMin} minutes. Next sync in ~{remaining}." + +#### 4.3.3 Metrics Worker Card + +Header shows aggregate calculation status. Body shows per-metric-type rows: + +``` +| Metric Type | Last Calculated | Duration | Snapshots Written | Status | +|--------------|-----------------|----------|-------------------|-------------| +| DORA | 8 min ago | 2.3s | 4 | Idle | +| Cycle Time | 8 min ago | 1.8s | 6 | Idle | +| Throughput | 8 min ago | 0.9s | 2 | Idle | +| Lean & Flow | 8 min ago | 3.1s | 8 | Calculating | +| Sprint | 8 min ago | 1.2s | 3 | Idle | +``` + +**"Calculating" status:** Row shows a subtle `animate-pulse` on the status cell, and the status badge uses `bg-blue-50 text-blue-700`. + +--- + +### 4.4 ActivityTimeline + +A vertical scrollable feed on the right side of the detail section (at xl breakpoint) or below the accordion (at smaller breakpoints). + +**Container:** Fixed height of 480px with `overflow-y-auto`. Sticky header "Recent Activity" with a subtle bottom border. + +**Event structure:** +``` + [colored dot] [relative timestamp] + Event message text here + ───────────────────────────── +``` + +Each event has: +- A 10px colored dot on the left, aligned with the first line +- A thin vertical line connecting dots (timeline rail): `border-l-2 border-border-subtle` +- Timestamp: `text-xs text-content-tertiary`, relative format ("2m ago", "1h ago") +- Message: `text-sm text-content-primary` +- Stage tag: small pill badge `text-[10px]` showing which stage (e.g., "Sync Worker") + +**Dot colors by severity:** + +| Severity | Dot color | Example message | +|---|---|---| +| success | `bg-emerald-500` | "Sync completed: 241 issues from WEB-MOTORS Board" | +| info | `bg-blue-500` | "Metrics calculation started for DORA" | +| warning | `bg-amber-500` | "Sync slow: GitHub rate limit approaching (4,200/5,000)" | +| error | `bg-red-500` | "Collection failed: ENO board connection timeout" | + +**Auto-scroll:** When new events arrive (via polling/refetch), the timeline should scroll to top to show the newest event. Only auto-scroll if the user has NOT manually scrolled down (track scroll position with a ref). + +**Empty state:** "No recent pipeline activity" with a `Clock` icon, centered in the container. + +--- + +## 5. State Management and Data Fetching + +### TanStack Query Hook + +```typescript +function usePipelineMonitor(): UseQueryResult { + return useQuery({ + queryKey: ['pipeline-monitor'], + queryFn: () => apiClient.get('/api/pipeline/status'), + refetchInterval: 10_000, // Poll every 10 seconds for near-real-time + refetchIntervalInBackground: false, // Pause when tab is not visible + staleTime: 5_000, + }); +} +``` + +### Component State + +| Component | Local state | Notes | +|---|---|---| +| PipelineFlowDiagram | None (pure render from query data) | | +| CounterStrip | `previousCounters: PipelineCounters` | Ref to hold previous values for animated transition | +| StageDetailAccordion | `expandedStage: string | null` | Which card is expanded; default: first non-healthy stage, or null if all healthy | +| ActivityTimeline | `userHasScrolled: boolean` | Track whether user has manually scrolled | + +### Loading States + +On initial page load: +1. Show skeleton versions of all components simultaneously +2. PipelineFlowDiagram skeleton: 5 gray rounded rectangles connected by gray bars, no animation +3. CounterStrip: 4 `MetricCardSkeleton` instances (reuse existing component) +4. StageDetailAccordion: 3 collapsed cards with shimmer on the header text +5. ActivityTimeline: 5 shimmer lines of varying widths + +Transition from skeleton to loaded: use `opacity` transition (300ms ease-in) wrapping each section. No staggered reveal -- all sections appear together when data arrives. + +### Error State + +If the pipeline monitor endpoint fails, show the same centered error pattern used in `integrations.tsx` and `home.tsx`: +- `AlertCircle` icon (48x48, `text-status-danger`) +- "Failed to load pipeline status" heading +- Error message in `text-content-secondary` +- A "Retry" button (`text-brand-primary`, underline on hover) that calls `refetch()` + +--- + +## 6. Accessibility + +| Requirement | Implementation | +|---|---| +| Pipeline diagram semantics | Use `role="img"` on the container with `aria-label="Data pipeline flow diagram showing 5 stages"`. Each node is a `button` (since it is clickable) with `aria-label="{stage name}: {status}, {recordCount} records"` | +| Pipe animations | Purely decorative. Mark with `aria-hidden="true"` | +| Reduced motion | All CSS animations gated behind `@media (prefers-reduced-motion: reduce)` -- particles hidden, counters snap instead of animating | +| Accordion | Each StageCard header is a `button` with `aria-expanded="{true|false}"` and `aria-controls="panel-{stageId}"`. The panel has `id="panel-{stageId}"` and `role="region"` | +| Timeline | `role="log"` on the container, `aria-live="polite"` for new events. Each event is an `article` element | +| Keyboard navigation | Tab order: flow nodes left-to-right, then counter cards, then accordion headers, then timeline. Enter/Space to expand accordion, click flow nodes | +| Color contrast | All status text meets 4.5:1 ratio against their backgrounds (verified against globals.css tokens). Never rely on color alone -- status also conveyed via text label | +| Focus rings | Use the default Tailwind `focus-visible:ring-2 focus-visible:ring-brand-primary focus-visible:ring-offset-2` pattern matching existing components | + +--- + +## 7. Sidebar Navigation Update + +Add a new nav item to the Sidebar between "Integrations" and the collapse button, or nest it as a sub-route of Integrations: + +**Option A (flat):** Add to `NAV_ITEMS` array: +```typescript +{ label: 'Pipeline', path: '/integrations/pipeline', icon: Workflow } +``` + +**Option B (recommended, sub-navigation):** When on the `/integrations` route, show a secondary nav or tab bar at the top of the integrations area with two tabs: "Connections" and "Pipeline Monitor". This avoids sidebar clutter and groups related functionality. + +The tab bar follows the existing pattern: +- Container: `flex gap-1 border-b border-border-default mb-6` +- Tab: `px-4 py-2 text-sm font-medium` with active state `border-b-2 border-brand-primary text-brand-primary` and inactive `text-content-secondary hover:text-content-primary` + +--- + +## 8. File Structure (Proposed) + +All paths relative to `pulse/packages/pulse-web/src/`: + +``` +types/ + pipeline.ts # All interfaces from section 3 + +hooks/ + usePipelineMonitor.ts # TanStack Query hook + +components/ + pipeline/ + PipelineFlowDiagram.tsx # Hero flow visualization + PipelineNode.tsx # Individual stage node + PipelinePipe.tsx # Animated connector between nodes + CounterStrip.tsx # 4 MetricCards row + StageDetailAccordion.tsx # Accordion container + StageCard.tsx # Single expandable card + DevLakeDetail.tsx # Board progress rows + SyncWorkerDetail.tsx # Entity sync rows + MetricsWorkerDetail.tsx # Metric calc rows + ActivityTimeline.tsx # Event feed + TimelineEvent.tsx # Single event row + PipelineMonitorSkeleton.tsx # Full-page skeleton + +routes/ + _dashboard/ + integrations/ + index.tsx # Current integrations page (connections) + pipeline.tsx # Pipeline monitor page (new) +``` + +--- + +## 9. Animation Performance Notes + +- All particle animations use `transform` and `opacity` only (GPU-composited properties). No `left`/`top` animations. +- The counter animation uses `requestAnimationFrame` -- no `setInterval`. +- The 10-second polling interval is conservative. If the API supports WebSocket or SSE in the future, the `refetchInterval` can be removed in favor of push updates. The component structure does not need to change. +- Use `will-change: transform` on `.pipeline-particle` elements to hint browser compositing, but remove it from idle/stopped pipes to free GPU memory. + +--- + +## 10. Sample Mock Data (for Development) + +```typescript +const MOCK_PIPELINE_RESPONSE: PipelineMonitorResponse = { + overview: { + stages: [ + { id: 'source', label: 'Sources', status: 'healthy', icon: 'Cable', recordCount: 48231, lastActivityAt: '2026-04-07T10:45:00Z' }, + { id: 'devlake', label: 'DevLake', status: 'running', icon: 'Database', recordCount: 47890, lastActivityAt: '2026-04-07T10:44:30Z', statusDetail: 'Collecting 2 boards...' }, + { id: 'sync_worker', label: 'Sync Worker', status: 'healthy', icon: 'RefreshCw', recordCount: 47200, lastActivityAt: '2026-04-07T10:42:00Z' }, + { id: 'pulse_db', label: 'PULSE DB', status: 'healthy', icon: 'HardDrive', recordCount: 47200, lastActivityAt: '2026-04-07T10:42:00Z' }, + { id: 'metrics_worker', label: 'Metrics', status: 'healthy', icon: 'Calculator', recordCount: 23, lastActivityAt: '2026-04-07T10:40:00Z', statusDetail: '23 snapshots' }, + ], + connections: [ + { from: 'source', to: 'devlake', status: 'flowing', throughputPerMin: 120 }, + { from: 'devlake', to: 'sync_worker', status: 'flowing', throughputPerMin: 85 }, + { from: 'sync_worker', to: 'pulse_db', status: 'flowing', throughputPerMin: 85 }, + { from: 'pulse_db', to: 'metrics_worker', status: 'idle', throughputPerMin: 0 }, + ], + globalHealth: 'healthy', + }, + counters: { + totalRecords: 48231, + syncedToday: 2415, + pending: 38, + errors: 3, + }, + devlakeDetail: { + boards: [ + { boardId: 'b1', boardName: 'WEB-MOTORS Board', source: 'jira', status: 'collecting', progress: 67, recordsCollected: 1204, lastCollectedAt: '2026-04-07T10:40:00Z' }, + { boardId: 'b2', boardName: 'webmotors/api', source: 'github', status: 'complete', progress: 100, recordsCollected: 8412, lastCollectedAt: '2026-04-07T10:33:00Z' }, + { boardId: 'b3', boardName: 'webmotors/frontend', source: 'github', status: 'error', progress: 30, recordsCollected: 2100, lastCollectedAt: '2026-04-07T09:15:00Z', errorMessage: 'Connection timeout after 30s' }, + ], + currentCycleStartedAt: '2026-04-07T10:38:00Z', + collectionFrequencyMin: 15, + }, + syncWorkerDetail: { + entities: [ + { entityType: 'pull_requests', lastCycleRecords: 342, lastCycleDurationSec: 4.2, lastSyncAt: '2026-04-07T10:30:00Z', watermark: '2026-04-07T10:30:00Z', status: 'idle' }, + { entityType: 'issues', lastCycleRecords: 1204, lastCycleDurationSec: 8.7, lastSyncAt: '2026-04-07T10:30:00Z', watermark: '2026-04-07T10:30:00Z', status: 'idle' }, + { entityType: 'deployments', lastCycleRecords: 56, lastCycleDurationSec: 1.1, lastSyncAt: '2026-04-07T10:30:00Z', watermark: '2026-04-07T10:30:00Z', status: 'idle' }, + { entityType: 'sprints', lastCycleRecords: 12, lastCycleDurationSec: 0.8, lastSyncAt: '2026-04-07T10:30:00Z', watermark: '2026-04-07T10:30:00Z', status: 'idle' }, + ], + syncIntervalMin: 15, + currentCycleStartedAt: null, + }, + metricsWorkerDetail: { + metrics: [ + { metricType: 'dora', lastCalcDurationSec: 2.3, lastCalcAt: '2026-04-07T10:35:00Z', snapshotsWritten: 4, status: 'idle' }, + { metricType: 'cycle_time', lastCalcDurationSec: 1.8, lastCalcAt: '2026-04-07T10:35:00Z', snapshotsWritten: 6, status: 'idle' }, + { metricType: 'throughput', lastCalcDurationSec: 0.9, lastCalcAt: '2026-04-07T10:35:00Z', snapshotsWritten: 2, status: 'idle' }, + { metricType: 'lean', lastCalcDurationSec: 3.1, lastCalcAt: '2026-04-07T10:35:00Z', snapshotsWritten: 8, status: 'calculating' }, + { metricType: 'sprint', lastCalcDurationSec: 1.2, lastCalcAt: '2026-04-07T10:35:00Z', snapshotsWritten: 3, status: 'idle' }, + ], + triggerMode: 'event_driven', + }, + recentEvents: [ + { id: 'e1', timestamp: '2026-04-07T10:45:00Z', message: 'Lean metrics recalculation started', severity: 'info', stageId: 'metrics_worker' }, + { id: 'e2', timestamp: '2026-04-07T10:42:00Z', message: 'Sync completed: 1,614 records across 4 entity types', severity: 'success', stageId: 'sync_worker' }, + { id: 'e3', timestamp: '2026-04-07T10:40:00Z', message: 'DevLake collection started for WEB-MOTORS Board', severity: 'info', stageId: 'devlake' }, + { id: 'e4', timestamp: '2026-04-07T10:38:00Z', message: 'Collection failed: webmotors/frontend - Connection timeout', severity: 'error', stageId: 'devlake' }, + { id: 'e5', timestamp: '2026-04-07T10:35:00Z', message: 'DORA metrics calculated: 4 snapshots written', severity: 'success', stageId: 'metrics_worker' }, + { id: 'e6', timestamp: '2026-04-07T10:33:00Z', message: 'GitHub rate limit at 82% (4,100/5,000)', severity: 'warning', stageId: 'source' }, + ], + generatedAt: '2026-04-07T10:45:12Z', +}; +``` + +--- + +## 11. Visual Reference (ASCII Wireframe) + +### Desktop (xl) -- Full layout + +``` + Sources DevLake Sync Worker PULSE DB Metrics ++----------+ +----------+ +-------------+ +-----------+ +----------+ +| [Cable] | | [Database]| | [RefreshCw] | | [HardDrive]| |[Calcultr]| +| | | | | | | | | | +| Sources | | DevLake | | Sync Worker | | PULSE DB | | Metrics | +| [Healthy] |-->| [Running] |--->| [Healthy] |--->| [Healthy] |->| [Healthy]| +| 48,231 | | 47,890 | | 47,200 | | 47,200 | | 23 snaps | ++----------+ +----------+ +-------------+ +-----------+ +----------+ + ||| flowing 120/min ||| flowing 85/min ||| flowing 85/min ||| idle + ++-------------+ +-------------+ +-------------+ +-------------+ +| Total Recs | | Synced Today| | Pending | | Errors (24h)| +| 48,231 | | 2,415 | | 38 | | 3 | +| +12% vs yst | | +5% vs wk | | -24% (good) | | +1 (bad) | ++-------------+ +-------------+ +-------------+ +-------------+ + ++-----------------------------------------+ +------------------------+ +| v DevLake Collection [Running] | | Recent Activity | +|-----------------------------------------| |------------------------| +| WEB-MOTORS Jira [=====> ] 67% | | * Lean metrics started | +| webmotors/api GH [==========] 100% | | * Sync completed: 1614 | +| webmotors/fe GH [=== ] 30% ERR| | * Collection started | ++-----------------------------------------+ | ! Collection failed | +| > Sync Worker [Healthy] | | * DORA calculated | ++-----------------------------------------+ | ~ Rate limit at 82% | +| > Metrics Worker [Healthy] | +------------------------+ ++-----------------------------------------+ +``` + +--- + +## 12. Open Questions for Product Review + +1. **Polling vs push:** The spec assumes 10-second polling. If the backend can support SSE (Server-Sent Events) on this endpoint, the real-time experience improves significantly with less server load. Should this be a fast-follow? + +2. **Historical view:** This spec covers current/live status only. A "Pipeline History" tab showing success/failure over time (e.g., a timeline chart of sync durations over the last 24h) would be valuable but is out of scope for v1. + +3. **Manual trigger:** Should there be a "Trigger Sync Now" button? This would violate the READ-ONLY principle for the frontend and require careful RBAC. Recommend deferring to a future release with admin role gating. + +4. **Alert configuration:** The pipeline monitor shows current status but does not configure alerting thresholds (e.g., "alert if sync fails 3 times in a row"). This belongs in a separate Settings page. diff --git a/pulse/docs/revised-releases.md b/pulse/docs/revised-releases.md index 3c6a96a..9244df4 100644 --- a/pulse/docs/revised-releases.md +++ b/pulse/docs/revised-releases.md @@ -218,7 +218,21 @@ Config YAML → PULSE Bootstrap → DevLake API (create connections) → DevLake | MVP-1.6.5 | Como sistema, preciso publicar eventos normalizados no Kafka (domain.pr.normalized, domain.issue.normalized, domain.deployment.normalized) | DADO que Sync Worker processou dados QUANDO escreve no PULSE DB ENTÃO também publica no Kafka topic correspondente | 🟡 Média | | MVP-1.6.6 | Como sistema, preciso que o Metrics Worker consuma eventos do Kafka e calcule métricas pre-agregadas em `metrics_snapshots` | DADO que eventos de PR/Issue/Deploy chegam no Kafka QUANDO Metrics Worker processa ENTÃO `metrics_snapshots` contém métricas calculadas por team/period/type | 🟡 Média | -**Total Épico 1: 14 stories** +**Feature Set 1.7 — Pipeline Monitor Dashboard** + +| Story ID | User Story | Acceptance Criteria | Complexidade | +|---|---|---|---| +| MVP-1.7.1 | Como sistema, preciso persistir watermarks do Sync Worker no banco (`pipeline_watermarks`) em vez de manter em memoria, para que o estado sobreviva restarts | DADO que Sync Worker completa um ciclo QUANDO watermark e atualizado ENTAO o registro em `pipeline_watermarks` reflete o novo timestamp E persiste apos restart | 🟢 Baixa | +| MVP-1.7.2 | Como sistema, preciso registrar cada ciclo de sync (inicio, fim, status, contagens, erros) na tabela `pipeline_sync_log` | DADO que Sync Worker inicia um ciclo QUANDO `sync()` e chamado ENTAO um registro e inserido com `status='running'` e atualizado ao final com contagens e status final (completed/failed/partial) | 🟡 Media | +| MVP-1.7.3 | Como EM, quero acessar `GET /data/v1/pipeline/status` para obter status consolidado das 4 etapas do pipeline, contagens, e erros recentes | DADO que pipeline esta saudavel QUANDO acesso o endpoint ENTAO recebo JSON com `overall_status`, status por etapa, record counts (DevLake vs PULSE DB), Kafka lag, e ultimos 10 erros | 🔴 Alta | +| MVP-1.7.4 | Como sistema, preciso de metodos no DevLakeReader que retornem contagens de registros (`COUNT(*)`) para comparar com PULSE DB | DADO que DevLake DB contem dados QUANDO chamo `reader.count_all()` ENTAO recebo `{"pull_requests": N, "issues": N, "deployments": N, "sprints": N}` | 🟢 Baixa | +| MVP-1.7.5 | Como EM, quero ver diagrama de fluxo horizontal com 5 etapas (Source, DevLake, Sync Worker, PULSE DB, Metrics) com status, contadores animados, e setas de conexao | DADO que acesso /integrations (tab Pipeline) QUANDO a pagina carrega ENTAO vejo 5 cards conectados por setas animadas com dots fluindo quando dados estao em transito | 🔴 Alta | +| MVP-1.7.6 | Como EM, quero tabela comparando contagens de registros entre DevLake e PULSE DB, com Kafka lag e timestamp do ultimo sync | DADO que DevLake tem 1247 PRs e PULSE DB tem 1243 QUANDO a tabela renderiza ENTAO a linha Pull Requests e destacada em amarelo com tooltip "4 records pending sync" | 🟡 Media | +| MVP-1.7.7 | Como EM, quero painel colapsavel de erros recentes com stage, timestamp, mensagem resumida e contexto | DADO que ha 3 erros recentes QUANDO a pagina renderiza ENTAO header mostra "Errors (3)" com badge vermelho, painel expandido automaticamente | 🟡 Media | +| MVP-1.7.8 | Como sistema, preciso consultar API do DevLake para obter status do pipeline mais recente e pipeline em execucao | DADO que DevLake tem pipelines finalizados QUANDO consulto a API ENTAO obtenho pipeline mais recente com id, status, started_at, finished_at, e detalhes de tasks | 🟡 Media | +| MVP-1.7.9 | Como EM, quero que Pipeline Monitor atualize automaticamente a cada 30s com indicador de freshness ("Updated 5s ago") | DADO que estou na pagina QUANDO 30s se passam ENTAO dados sao re-fetched sem reload E o indicador mostra tempo desde ultima atualizacao | 🟢 Baixa | + +**Total Épico 1: 23 stories** (14 originais + 9 Pipeline Monitor) --- @@ -289,14 +303,14 @@ Config YAML → PULSE Bootstrap → DevLake API (create connections) → DevLake | Épico | Stories | Foco | |---|---|---| -| Épico 1 — Data Pipeline | 14 | Conectores (config estática), DevLake, normalização, Kafka, metrics worker | +| Épico 1 — Data Pipeline | 23 | Conectores (config estática), DevLake, normalização, Kafka, metrics worker, **pipeline monitor** | | Épico 2 — DORA & Delivery | 10 | DORA dashboard, Cycle Time, Throughput, PR analytics | | Épico 3 — Lean + Shell | 12 | CFD, WIP, Lead Time, Sprints, Sidebar, Filtros, Home | -| **TOTAL** | **36** | | +| **TOTAL** | **45** | | -**Redução vs v2.0:** De 39 stories para 36. Mas a redução real de esforço é maior porque as stories removidas (login, OAuth, onboarding wizard com 5 steps, team management UI) eram complexas em UX. +**Redução vs v2.0:** De 39 stories para 36 originais. +9 stories de Pipeline Monitor (MVP-1.7) adicionadas para garantir confiança do usuario na qualidade dos dados. Destas 9, 2 (watermark persistence + sync logging) substituem trabalho ja necessario, resultando em ~7 dias de esforço liquido adicional. -**Estimativa revisada: 10-14 semanas** com time de 4-5 devs. +**Estimativa revisada: 12-16 semanas** com time de 4-5 devs (+2 semanas vs estimativa anterior para Pipeline Monitor). --- @@ -351,14 +365,14 @@ JORNADA ► CONNECT(static) OBSERVE UNDERSTAND NAVIGATE ■ ADO conn. ■ Throughput status (r/o) ■ Deploy config ■ PR Analytics ■ Skeleton ■ Status mapping ■ Open PR list loading - (YAML) ■ CFD - ■ Team config ■ WIP Monitor - (YAML) ■ Lead Time Dist. - ■ Data pipeline ■ Scatterplot - (normalize) ■ Throughput Run - ■ Backfill 3m ■ Sprint Overview - ■ Sync 15min ■ Sprint Compare - ■ Kafka events + (YAML) ■ CFD ■ Pipeline + ■ Team config ■ WIP Monitor Monitor (1.7) + (YAML) ■ Lead Time Dist. - Flow diagram + ■ Data pipeline ■ Scatterplot - Record counts + (normalize) ■ Throughput Run - Error panel + ■ Backfill 3m ■ Sprint Overview - Auto-refresh + ■ Sync 15min ■ Sprint Compare - Watermarks DB + ■ Kafka events - Sync log DB ■ Metrics Worker R1 ■ Login SSO ■ Cross-team Comp ■ Flow Effic. ■ Onboarding diff --git a/pulse/docs/stitch-prompt-pipeline-monitor.md b/pulse/docs/stitch-prompt-pipeline-monitor.md new file mode 100644 index 0000000..7e5483b --- /dev/null +++ b/pulse/docs/stitch-prompt-pipeline-monitor.md @@ -0,0 +1,185 @@ +# Stitch Prompt: Pipeline Monitor Dashboard + +> Copy everything below the line into Google Stitch to generate the Pipeline Monitor screen. + +--- + +## Context + +You are designing a **Pipeline Monitor Dashboard** for **PULSE**, an Engineering Intelligence SaaS platform. This page gives engineering managers real-time visibility into a 5-stage data ingestion pipeline: **Sources -> DevLake -> Sync Worker -> PULSE DB -> Metrics Worker**. The goal is to answer "Is my data flowing?" in under 2 seconds. + +This page lives inside an existing dashboard application with a fixed left sidebar (240px, dark indigo-900 background) and a top filter bar (56px). The Pipeline Monitor is accessed as a tab within the `/integrations` page, alongside the existing "Connections" tab. + +## Design System + +### Brand & Colors +- **Brand primary:** Indigo-500 (`#6366F1`), hover Indigo-600 (`#4F46E5`) +- **Background:** White (`#FFFFFF`) primary, Gray-50 (`#F9FAFB`) secondary, Gray-100 (`#F3F4F6`) tertiary +- **Text:** Gray-900 (`#111827`) primary, Gray-500 (`#6B7280`) secondary, Gray-400 (`#9CA3AF`) tertiary +- **Borders:** Gray-200 (`#E5E7EB`) default, Gray-100 (`#F3F4F6`) subtle +- **Status colors:** Emerald-500 (`#10B981`) success/healthy, Blue-500 (`#3B82F6`) info/running, Amber-500 (`#F59E0B`) warning/stale, Red-500 (`#EF4444`) danger/error, Gray-300 idle +- **Card shadow:** `0 1px 3px rgba(0,0,0,0.05)`, elevated: `0 4px 12px rgba(0,0,0,0.08)` +- **Card radius:** 12px, button radius: 8px, badge radius: full/pill + +### Typography +- **Font:** Inter (all weights) +- **Page title (H1):** Inter 600, 24px +- **Section title (H2):** Inter 600, 18px +- **Card title (H3):** Inter 500, 14px +- **Body:** Inter 400, 14px +- **Metric value (KPI):** Inter 700, 28px +- **Small label:** Inter 400, 12px +- **Monospace (data):** JetBrains Mono 400, 13px + +### Component Library +- shadcn/ui components (Radix primitives + Tailwind) +- Lucide React icons +- Cards with white background, 1px gray-200 border, 12px radius, subtle shadow +- Status badges as pills: colored background (50 shade) + colored text (700 shade) + +### Layout Patterns +- Sidebar: fixed 240px, dark (`#312E81` indigo-900) +- Content area: fluid, padded 24px +- Section gap: 24px +- Card padding: 20px +- Skeleton loading (shimmer), never spinners + +## Screen: Pipeline Monitor + +### Page Header +- Tab bar at top of content area with two tabs: "Connections" (existing) and "Pipeline" (active, with indigo-500 bottom border) +- Page title: "Pipeline Monitor" (H1, 24px, semi-bold) +- Subtitle: "Real-time data ingestion status" (14px, gray-500) +- Global health badge next to subtitle: a pill showing overall status (e.g., green pill "Healthy", or red pill "Error") +- Freshness indicator: right-aligned small text "Updated 5s ago" with a subtle refresh icon, auto-incrementing + +### Hero Section: Pipeline Flow Diagram +A horizontal row of 5 stage nodes connected by animated pipes, centered on the page (max-width 960px). + +**Each node** is a vertical card (120px wide, ~140px tall) containing: +1. A 40x40 circle with a Lucide icon (colored by status) +2. Stage name (14px, semi-bold) +3. Status badge pill (e.g., green "Healthy", blue pulsing "Running", yellow "Stale", red "Error", gray "Idle") +4. Key metric (12px, monospace): record count or "Task 3/5" progress + +**Nodes (left to right):** +| Node | Icon | Example metric | +|------|------|----------------| +| Sources | Cable | "3 active, 0 errors" | +| DevLake | Database | "Running - Task 3/5" or "Complete" | +| Sync Worker | RefreshCw | "47,200 records" | +| PULSE DB | HardDrive | "47,200 records" | +| Metrics | Calculator | "23 snapshots" | + +**Pipes** between nodes: 4px tall rounded bars connecting adjacent nodes. When data is flowing, show 3 small dots (6px circles) animating left-to-right along the pipe (CSS translateX keyframe, 3s duration, staggered by 1s each). Pipe colors: +- Flowing: emerald-100 bar, emerald-500 dots +- Slow: amber-100 bar, amber-500 dots (6s animation) +- Blocked: red-100 bar, red-500 dots pulsing in place +- Idle: gray-100 bar, no dots + +Below each pipe: throughput label "120 rec/min" in 12px gray-400 text. + +**Responsive:** At <768px, nodes stack vertically with vertical pipes. + +### Counter Strip +A row of 4 metric cards below the flow diagram, using the standard MetricCard pattern: + +| Card | Value | Trend | +|------|-------|-------| +| Total Records | 48,231 | +12% vs yesterday | +| Synced Today | 2,415 | +5% vs same day last week | +| Pending Sync | 38 | -24% (lower is better, show green arrow) | +| Errors (24h) | 3 | +1 (higher is bad, show red arrow) | + +Grid: 4 columns on desktop, 2x2 on tablet, 1 column on mobile. +Numbers should animate (count up) when data loads, 600ms ease-out. + +### Detail Section (Two columns on desktop) + +**Left column (60%): Stage Detail Accordion** +Three collapsible cards stacked vertically: + +1. **DevLake Collection** - Header: Database icon + "DevLake Collection" + status badge + "Last run: 5m ago" + chevron + - Expanded body: Table with columns: Board Name | Source (Jira/GitHub icon) | Status | Progress Bar | Records | Last Collected + - Progress bar: 6px tall, rounded, colored by status (blue=collecting, green=complete, red=error) + - Error rows: subtle red-50 background with error message below board name in 12px red-500 text + - Example rows: + - "WEB-MOTORS Board" | Jira | Collecting | [=====> ] 67% | 1,204 | 5m ago + - "webmotors/api" | GitHub | Complete | [==========] 100% | 8,412 | 12m ago + - "webmotors/frontend" | GitHub | Error | [=== ] 30% | 2,100 | Error: timeout + +2. **Sync Worker** - Header: RefreshCw icon + "Sync Worker" + status badge + chevron + - Expanded body: Table with columns: Entity | Last Cycle | Records | Duration | Watermark | Status + - Example rows: Pull Requests | 12m ago | 342 | 4.2s | 2026-04-07T10:30Z | Idle + - Footer line: "Sync interval: every 15 minutes. Next sync in ~3 min." + +3. **Metrics Worker** - Header: Calculator icon + "Metrics Worker" + status badge + chevron + - Expanded body: Table with columns: Metric Type | Last Calculated | Duration | Snapshots Written | Status + - "Calculating" status rows show subtle blue pulse animation + - Example rows: DORA | 8m ago | 2.3s | 4 | Idle + +**Right column (40%): Activity Timeline** +A vertical scrollable feed (480px fixed height) with: +- Sticky header "Recent Activity" with subtle bottom border +- Each event: colored dot (10px) on left + vertical timeline rail (2px gray-100 line) + relative timestamp (12px, gray-400) + message (14px) + stage pill badge (10px text) +- Dot colors: emerald=success, blue=info, amber=warning, red=error +- Example events: + - (blue dot) "Lean metrics recalculation started" | Metrics Worker | 2m ago + - (green dot) "Sync completed: 1,614 records across 4 entity types" | Sync Worker | 5m ago + - (red dot) "Collection failed: webmotors/frontend - Connection timeout" | DevLake | 7m ago + - (amber dot) "GitHub rate limit at 82% (4,100/5,000)" | Sources | 12m ago + +### Record Counts Table (Optional section, below detail) +A summary comparison table: + +| Entity | DevLake | PULSE DB | Last Synced | Kafka Lag | +|--------|---------|----------|-------------|-----------| +| Pull Requests | 1,247 | 1,243 | 2 min ago | 4 | +| Issues | 3,891 | 3,891 | 2 min ago | 0 | + +Mismatched rows (DevLake count != PULSE DB count) highlighted with amber-50 background and tooltip "4 records pending sync". + +### Error Panel (Collapsible) +Below the record counts table: +- Header: "Errors (3)" with red badge, or "No recent errors" with green check icon +- Expanded when errors exist, collapsed when none +- Each error: warning icon + stage name + entity + relative timestamp + truncated message (200 chars max) + +### Loading State +When data is loading, show: +- Flow diagram: 5 gray rounded rectangles connected by gray bars (no animation) +- Counter strip: 4 shimmer skeleton cards +- Accordion: 3 collapsed cards with shimmer text in headers +- Timeline: 5 shimmer lines of varying widths + +All sections transition from skeleton to loaded simultaneously with 300ms opacity ease-in. + +### Empty/Error State +If the API fails: +- Centered AlertCircle icon (48x48, red-500) +- "Failed to load pipeline status" heading +- Error message in gray-500 +- "Retry" text button in indigo-500 + +## Visual Mood + +Think GitLab CI/CD pipeline visualization meets Datadog infrastructure monitoring, but cleaner and more minimal. The animated flowing dots in the pipes are the signature visual element -- they give the dashboard a living, breathing quality that immediately communicates "data is moving through the system." The overall aesthetic is professional, calm, and information-dense without being cluttered. + +## Accessibility Requirements +- All status communicated via both color AND text labels +- Pipeline diagram nodes are keyboard-navigable buttons +- Accordion panels use proper aria-expanded/aria-controls +- Timeline uses role="log" with aria-live="polite" +- Particle animations respect prefers-reduced-motion (replaced with static indicators) +- All text meets WCAG AA contrast ratios (4.5:1 minimum) + +## Data for Prototype +Use this mock data to populate the screen: +- 3 active source connections (2 GitHub, 1 Jira) +- DevLake: "Running" status, collecting board "WEB-MOTORS Board" at 67% progress +- Sync Worker: "Healthy", last sync 12 minutes ago, 47,200 total records +- PULSE DB: 47,200 records (in sync) +- Metrics Worker: "Healthy", 23 snapshots, "Lean & Flow" currently calculating +- 6 timeline events (mix of success, info, warning, error) +- 3 errors in the error panel +- Counter values: Total 48,231 | Synced Today 2,415 | Pending 38 | Errors 3 diff --git a/pulse/docs/story-map-pipeline-monitor.html b/pulse/docs/story-map-pipeline-monitor.html new file mode 100644 index 0000000..97eb957 --- /dev/null +++ b/pulse/docs/story-map-pipeline-monitor.html @@ -0,0 +1,1140 @@ + + + + + + PULSE — Pipeline Monitor Harmonized Backlog + + + + + + + +
+

PULSE — Pipeline Monitor: Backlog Harmonizado

+

Epic 1.7 harmonizado com 3 telas Stitch (Google AI Studio) — Story Map MoSCoW

+
+ 22 Stories Total + 11 Must Have + 10 Should Have + 1 Nice to Have + ~4–6 semanas estimadas +
+
+ + +
+
+ Status + Inalterada + Modificada + Nova (Stitch) +
+ +
+ Complexidade + Alta + Media + Baixa +
+ +
+ Telas + T1 Main View + T2 Jira Filtered + T3 Metrics Worker +
+
+ +
+ + +
+
+

T1 Pipeline Monitor — Source Filters

+

Visao principal do pipeline. Flow diagram de 5 nos, KPI cards, source filter bar, accordions de detalhe, record counts, error panel, activity timeline.

+

11 features identificadas • Arquivo: pipeline_monitor_source_filters/

+
+
+

T2 Pipeline Monitor — Jira Filtered

+

Visao filtrada por fonte (Jira Cloud selecionado). KPIs especificos da fonte, board syncs table, live ingestion logs, flow diagram contextual.

+

5 features identificadas • Arquivo: pipeline_monitor_jira_filtered/

+
+
+

T3 Metrics Worker Snapshots

+

Drill-down no stage Metrics Worker. Performance KPIs (req/s, latency), snapshot inspector table com tipo de metrica, duracao e status.

+

4 features identificadas • Arquivo: metrics_worker_snapshots/

+
+
+ + +
+
+ + +
+
+ 📦 + Backend Infra + 5 stories +
+
+ 🌐 + API Layer + 4 stories +
+
+ 🖥 + Main View + 7 stories +
+
+ 🔍 + Filtered View + 3 stories +
+
+ 🔬 + Drill-Down + 3 stories +
+ + +
+
+

Must Have

+

MVP essencial
11 stories

+
+
+ + +
+
+
+ MVP-1.7.1 + +
+
Persistir watermarks em DB (pipeline_watermarks)
+
+ Backend + Pipeline +
+
+
+
+ MVP-1.7.2 + +
+
Registrar ciclos de sync em pipeline_sync_log
+
+ Backend + T1T2 +
+
+
+
+ MVP-1.7.4 + +
+
DevLakeReader count_all() para contagens comparativas
+
+ Backend + T1 +
+
+
+ + +
+
+
+ MVP-1.7.3 + +
+
GET /pipeline/status — status consolidado expandido
+
+ API + T1 +
+
+
+
+ MVP-1.7.8 + +
+
Query DevLake API para pipeline status mais recente
+
+ API + T1 +
+
+
+ + +
+
+
+ MVP-1.7.5 + +
+
Pipeline Flow Diagram — 5 nos, shimmer, status + throughput
+
+ Frontend + T1 +
+
+
+
+ MVP-1.7.6a + +
+
KPI Counter Strip — Total, Synced, Pending, Errors
+
+ Frontend + T1 +
+
+
+
+ MVP-1.7.6b + +
+
Record Counts by Entity + comparacao DevLake vs PULSE DB
+
+ Frontend + T1 +
+
+
+
+ MVP-1.7.7 + +
+
Error Panel colapsavel com acoes retry/ignore
+
+ Frontend + T1 +
+
+
+
+ MVP-1.7.9 + +
+
Auto-refresh 30s + freshness indicator
+
+ Frontend + T1 +
+
+
+ + +
+ +
+ + +
+ +
+ + +
+
+

Should Have

+

Alto valor
10 stories

+
+
+ + +
+
+ NEW +
+ MVP-1.7.10 + +
+
Tabela pipeline_events para feed de atividade
+
+ Backend + T1T2 +
+
+
+ NEW +
+ MVP-1.7.11 + +
+
Metadata de snapshots do Metrics Worker
+
+ Backend + T3 +
+
+
+ + +
+
+ NEW +
+ MVP-1.7.12 + +
+
GET /pipeline/status?source={type} — filtro por fonte
+
+ API + T2 +
+
+
+ NEW +
+ MVP-1.7.13 + +
+
GET /pipeline/metrics-worker/snapshots — lista paginada
+
+ API + T3 +
+
+
+ + +
+
+ NEW +
+ MVP-1.7.14 + +
+
Source Connection Filter Bar
+
+ Frontend + T1T2 +
+
+
+ NEW +
+ MVP-1.7.15 + +
+
Recent Activity Timeline
+
+ Frontend + T1 +
+
+
+ + +
+
+ NEW +
+ MVP-1.7.16 + +
+
Source-Specific KPI Cards (KPIs dinamicos por fonte)
+
+ Frontend + T2 +
+
+
+ NEW +
+ MVP-1.7.17 + +
+
Active Board Syncs Table (detalhe por board/repo)
+
+ Frontend + T2 +
+
+
+ NEW +
+ MVP-1.7.18 + +
+
Live Ingestion Logs Panel (terminal-style)
+
+ Frontend + T1T2 +
+
+
+ + +
+
+ NEW +
+ MVP-1.7.19 + +
+
Metrics Worker Performance KPI Cards
+
+ Frontend + T3 +
+
+
+ NEW +
+ MVP-1.7.20 + +
+
Metrics Worker Snapshot Inspector Table (paginada)
+
+ Frontend + T3 +
+
+
+ + +
+
+

Nice to Have

+

Bonus
1 story

+
+
+ + +
+ +
+ + +
+
+ NEW +
+ MVP-1.7.21 + +
+
Performance Alert Card (threshold-based)
+
+ Frontend + T1 +
+
+
+ + +
+ +
+ +
+
+ + +
+
+
22
+
Stories Total
+
+
+
11
+
Must Have (MVP)
+
+
+
10
+
Should Have
+
+
+
1
+
Nice to Have
+
+
+ + +
+ + +
+
🔄 Resultado da Harmonizacao
+
+
+
+
+
+
+ + + + +
Inalteradas do backlog original5
Modificadas/split (enriquecidas pelas telas)5
Novas (features descobertas nas telas Stitch)12
+

Backlog original: 9 stories → Harmonizado: 22 stories (+144%)

+
+
+ + +
+
⏱ Estimativa de Esforco
+
+ + + + + + + + + +
PrioridadeStoriesEstimativa
Must Have11~2–3 semanas
Should Have10~2–3 semanas
Nice to Have1~1 dia
+
+ Recomendacao: Entregar Must Have em Sprint 1 (2 sem), Should Have em Sprint 2 (2 sem). Total: ~4 semanas. +
+
+
+ + +
+
📊 Distribuicao por Camada
+
+ + + + + + + + + +
CamadaQtd%
■ Backend523%
■ API418%
■ Frontend1359%
+
+
+
+
+
+
+
+ + +
+
🎯 Cobertura das Telas
+
+ + + + + + + + + +
TelaFeaturesStories
T111 features14 stories cobrem
T25 features7 stories cobrem
T34 features4 stories cobrem
+

Todas as features visiveis nas 3 telas Stitch estao mapeadas para pelo menos 1 story.

+
+
+ + +
+
🔴 Distribuicao de Complexidade
+
+
+
+
+
+
+ + + + +
Alta (Pipeline Flow, API Status, Snapshot Table)3
Media (maioria das stories)13
Baixa (watermarks, counters, auto-refresh, alert card)6
+
+
+ + +
+
🔗 Dependencias Criticas
+
+
+ 1.7.1 + + 1.7.2 + + 1.7.3 + + 1.7.5 +
+
+ 1.7.4 + + 1.7.3 + + 1.7.6a + 1.7.6b +
+
+ 1.7.8 + + 1.7.3 +
+
+ 1.7.10 + + 1.7.15 + 1.7.18 +
+
+ 1.7.11 + + 1.7.13 + + 1.7.19 + 1.7.20 +
+
+
+ +
+ + +
+

Lista Completa — 22 Stories

+
+ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
IDTituloCamadaCompl.StatusPrioridadeTela
MVP-1.7.1Persistir watermarks em DB (pipeline_watermarks)Backend BaixaInalteradaMust Have
MVP-1.7.2Registrar ciclos de sync em pipeline_sync_logBackend MediaInalteradaMust HaveT1 T2
MVP-1.7.3GET /pipeline/status — status consolidado expandidoAPI AltaModificadaMust HaveT1
MVP-1.7.4DevLakeReader count_all() para contagens comparativasBackend BaixaInalteradaMust HaveT1
MVP-1.7.5Pipeline Flow Diagram — 5 nos, shimmer, status + throughputFrontend AltaModificadaMust HaveT1
MVP-1.7.6aKPI Counter Strip — Total, Synced, Pending, ErrorsFrontend MediaSplitMust HaveT1
MVP-1.7.6bRecord Counts by Entity + comparacao DevLake vs PULSE DBFrontend MediaSplitMust HaveT1
MVP-1.7.7Error Panel colapsavel com acoes retry/ignoreFrontend MediaModificadaMust HaveT1
MVP-1.7.8Query DevLake API para pipeline status mais recenteAPI MediaInalteradaMust HaveT1
MVP-1.7.9Auto-refresh 30s + freshness indicatorFrontend BaixaInalteradaMust HaveT1
MVP-1.7.10Tabela pipeline_events para feed de atividadeBackend MediaNovaShould HaveT1 T2
MVP-1.7.11Metadata de snapshots do Metrics WorkerBackend MediaNovaShould HaveT3
MVP-1.7.12GET /pipeline/status?source={type} — filtro por fonteAPI MediaNovaShould HaveT2
MVP-1.7.13GET /pipeline/metrics-worker/snapshots — lista paginadaAPI MediaNovaShould HaveT3
MVP-1.7.14Source Connection Filter BarFrontend MediaNovaShould HaveT1 T2
MVP-1.7.15Recent Activity TimelineFrontend MediaNovaShould HaveT1
MVP-1.7.16Source-Specific KPI Cards (KPIs dinamicos por fonte)Frontend MediaNovaShould HaveT2
MVP-1.7.17Active Board Syncs Table (detalhe por board/repo)Frontend MediaNovaShould HaveT2
MVP-1.7.18Live Ingestion Logs Panel (terminal-style)Frontend MediaNovaShould HaveT1 T2
MVP-1.7.19Metrics Worker Performance KPI CardsFrontend BaixaNovaShould HaveT3
MVP-1.7.20Metrics Worker Snapshot Inspector Table (paginada)Frontend AltaNovaShould HaveT3
MVP-1.7.21Performance Alert Card (threshold-based)Frontend BaixaNovaNice to HaveT1
+
+
+ +
+ + +
+ PULSE — Pipeline Monitor Harmonized Backlog v1.0 • + Gerado em 08 Abr 2026 • + Epic 1.7 • 22 Stories • 3 Telas Stitch • + story-map-pipeline-monitor.html +
+ + + diff --git a/pulse/docs/story-map.html b/pulse/docs/story-map.html new file mode 100644 index 0000000..476e8ca --- /dev/null +++ b/pulse/docs/story-map.html @@ -0,0 +1,1505 @@ + + + + + + PULSE — Story Map MVP v3.0 + + + + + + + +
+

PULSE — User Story Map

+

MVP v3.0 — Pipeline & Dashboards — Engineering Intelligence Platform

+
+ 45 Stories + 3 Epics + 7 Feature Sets + 12-16 Semanas + Abril 2026 +
+
+ + +
+ Complexidade: + Alta + Media + Baixa + Tags: + Backend + Frontend + Pipeline + API + Infra +
+ +
+ + + + + +
+ + +
+
+

Jornada

+

User Activities

+
+
+
+
+
⚙️
+
+
Configurar
+
YAML + Tokens
+
+
+
+
🔗
+
+
Conectar Fontes
+
GitHub, Jira, GitLab, ADO
+
+
+
+
🔄
+
+
Coletar & Processar
+
DevLake + Workers
+
+
+
+
📊
+
+
Observar Metricas
+
DORA, Lean, Sprint
+
+
+
+
🧭
+
+
Navegar & Monitorar
+
Dashboard Shell
+
+
+
+ + +
+ EPICO 1 — Data Pipeline + + 23 stories • Conectar + Coletar + Monitorar +
+ + +
+
+

Configurar

+

Bootstrap

+
+
+
+
+
+
+
FS 1.1
+
Bootstrap & Config Loader
+
+ 4 stories +
+
+
+ +
+
MVP-1.1.1
+
Ler connections.yaml + env vars e configurar DevLake automaticamente
+
Sistema
+
BackendInfra
+
+
+
+ +
+
MVP-1.1.2
+
Ler teams do YAML e criar registros no PULSE DB
+
Sistema
+
Backend
+
+
+
+ +
+
MVP-1.1.3
+
Ler status_mapping do YAML para normalizar status de issues
+
Sistema
+
Pipeline
+
+
+
+ +
+
MVP-1.1.4
+
Configurar deploy detection conforme deploy_config
+
Sistema
+
Pipeline
+
+
+
+
+
+ + +
+
+

Conectar Fontes

+

Connectors

+
+
+
+
+
+
+
FS 1.2
+
GitHub Connector
+
+ 2 stories +
+
+
+ +
+
MVP-1.2.1
+
Importar PRs, commits, reviews e deploy events via DevLake
+
Sistema
+
Pipeline
+
+
+
+ +
+
MVP-1.2.2
+
Detectar deployments do GitHub (tags/releases/Actions)
+
Sistema
+
Pipeline
+
+
+
+
+ +
+
+
+
FS 1.3
+
GitLab Connector
+
+ 1 story +
+
+
+ +
+
MVP-1.3.1
+
Importar MRs, commits e pipelines via DevLake
+
Sistema
+
Pipeline
+
+
+
+
+ +
+
+
+
FS 1.4
+
Jira Connector
+
+ 1 story +
+
+
+ +
+
MVP-1.4.1
+
Importar issues, sprints e status transitions dos boards
+
Sistema
+
Pipeline
+
+
+
+
+ +
+
+
+
FS 1.5
+
Azure DevOps Connector
+
+ 1 story +
+
+
+ +
+
MVP-1.5.1
+
Importar PRs, work items e pipelines via DevLake
+
Sistema
+
Pipeline
+
+
+
+
+
+ + +
+
+

Coletar & Processar

+

Pipeline Core

+
+
+
+
+
+
+
FS 1.6
+
Data Pipeline Core
+
+ 6 stories +
+
+
+ +
+
MVP-1.6.1
+
Normalizar GitHub/GitLab/ADO em modelo unificado de PR
+
Sistema
+
BackendPipeline
+
+
+
+ +
+
MVP-1.6.2
+
Normalizar Jira/ADO em modelo unificado de Issue com status_transitions
+
Sistema
+
BackendPipeline
+
+
+
+ +
+
MVP-1.6.3
+
Vincular Issues ↔ PRs automaticamente (branch name / commit msg)
+
Sistema
+
Pipeline
+
+
+
+ +
+
MVP-1.6.4
+
Backfill 3 meses de historico + sync incremental a cada 15 min
+
Sistema
+
PipelineInfra
+
+
+
+ +
+
MVP-1.6.5
+
Publicar eventos normalizados no Kafka
+
Sistema
+
PipelineInfra
+
+
+
+ +
+
MVP-1.6.6
+
Metrics Worker consome Kafka e calcula metricas em metrics_snapshots
+
Sistema
+
BackendPipeline
+
+
+
+
+
+ + +
+
+

Monitorar Pipeline

+

Observabilidade

+
+
+
+
+
+
+
FS 1.7
+
Pipeline Monitor Dashboard
+
+ 9 stories +
+
+
+ +
+
MVP-1.7.1
+
Persistir watermarks do Sync Worker no banco
+
Sistema
+
BackendInfra
+
+
+
+ +
+
MVP-1.7.2
+
Registrar historico de ciclos do Sync Worker (pipeline_sync_log)
+
Sistema
+
Backend
+
+
+
+ +
+
MVP-1.7.3
+
API endpoint GET /data/v1/pipeline/status (status consolidado)
+
Carlos (EM)
+
APIBackend
+
+
+
+ +
+
MVP-1.7.4
+
Metodos COUNT(*) no DevLakeReader para comparar com PULSE DB
+
Sistema
+
Backend
+
+
+
+ +
+
MVP-1.7.5
+
Flow Diagram UI: 5 nodes + pipes animados + status badges
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-1.7.6
+
Tabela de contagens DevLake vs PULSE DB + Kafka lag
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-1.7.7
+
Painel colapsavel de erros recentes com contexto
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-1.7.8
+
Leitura de status de pipelines do DevLake via API
+
Sistema
+
APIBackend
+
+
+
+ +
+
MVP-1.7.9
+
Auto-refresh a cada 30s + indicador de freshness
+
Carlos (EM)
+
Frontend
+
+
+
+
+
+ + +
+ EPICO 2 — DORA & Delivery + + 10 stories • Calcular + Exibir +
+ + +
+
+

DORA Metrics

+

4 Key Metrics

+
+
+
+
+
+
+
FS 2.1
+
DORA Metrics
+
+ 5 stories +
+
+
+ +
+
MVP-2.1.1
+
Deployment Frequency por time e periodo
+
Carlos (EM)
+
FrontendAPI
+
+
+
+ +
+
MVP-2.1.2
+
Lead Time for Changes com breakdown
+
Carlos (EM)
+
FrontendAPI
+
+
+
+ +
+
MVP-2.1.3
+
Change Failure Rate
+
Carlos (EM)
+
FrontendAPI
+
+
+
+ +
+
MVP-2.1.4
+
Mean Time to Recovery (MTTR)
+
Carlos (EM)
+
FrontendAPI
+
+
+
+ +
+
MVP-2.1.5
+
Classificacao DORA (Elite/High/Medium/Low) por metrica + overall
+
Carlos (EM)
+
Frontend
+
+
+
+
+ + +
+
+
+
FS 2.2
+
Cycle Time & Throughput
+
+ 5 stories +
+
+
+ +
+
MVP-2.2.1
+
Cycle Time Breakdown por fase (Coding/Pickup/Review/Merge/Deploy)
+
Carlos (EM)
+
FrontendAPI
+
+
+
+ +
+
MVP-2.2.2
+
Cycle Time Trend ao longo de semanas
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-2.3.1
+
Throughput (PRs merged/semana) com trend line
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-2.3.2
+
PR Analytics (tamanho medio, first review time, turnaround)
+
Carlos (EM)
+
FrontendAPI
+
+
+
+ +
+
MVP-2.3.3
+
Lista de PRs abertas com idade, tamanho e status de review
+
Carlos (EM)
+
Frontend
+
+
+
+
+
+ + +
+ EPICO 3 — Lean + Platform Shell + + 12 stories • Calcular + Exibir + Navegar +
+ + +
+
+

Lean & Flow

+

Diferencial competitivo

+
+
+
+
+
+
+
FS 3.1
+
Lean Flow Metrics
+
+ 5 stories +
+
+
+ +
+
MVP-3.1.1
+
Cumulative Flow Diagram (CFD) por time
+
Priya (Agile Coach)
+
FrontendAPI
+
+
+
+ +
+
MVP-3.1.2
+
WIP atual com alerta de threshold
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-3.1.3
+
Lead Time Distribution com percentis P50/85/95
+
Priya (Agile Coach)
+
FrontendAPI
+
+
+
+ +
+
MVP-3.1.4
+
Throughput Run Chart com moving average
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-3.1.5
+
Scatterplot de Lead Time com outliers
+
Priya (Agile Coach)
+
Frontend
+
+
+
+
+ + +
+
+
+
FS 3.2
+
Sprint Basics
+
+ 2 stories +
+
+
+ +
+
MVP-3.2.1
+
Sprint Overview (committed, added, completed, carryover + burndown)
+
Scrum Master
+
FrontendAPI
+
+
+
+ +
+
MVP-3.2.2
+
Comparar sprints ao longo do tempo
+
Scrum Master
+
Frontend
+
+
+
+
+
+ + +
+
+

Navegar

+

Dashboard Shell

+
+
+
+
+
+
+
FS 3.3
+
Dashboard Shell
+
+ 5 stories +
+
+
+ +
+
MVP-3.3.1
+
Sidebar com navegacao para todas as secoes de metricas
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-3.3.2
+
Filtrar metricas por time e periodo (global filter TopBar)
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-3.3.3
+
Home page com overview de metricas-chave (6 MetricCards)
+
Carlos (EM)
+
FrontendAPI
+
+
+
+ +
+
MVP-3.3.4
+
Status das integracoes (read-only, sem config UI)
+
Carlos (EM)
+
Frontend
+
+
+
+ +
+
MVP-3.3.5
+
Skeleton loading em todos os componentes async
+
Sistema
+
Frontend
+
+
+
+
+
+ +
+ + + + + +
+
+
45
+
Total Stories
+
+
+
3
+
Epicos
+
+
+
7
+
Stories Alta Complexidade
+
+
+
12-16
+
Semanas Estimadas
+
+
+ + + + + +
+ + +
+
+ 📊 Distribuicao de Complexidade +
+
+
+
+
+
+
+
+ 7 Alta (15%) + 26 Media (58%) + 12 Baixa (27%) +
+ +
+
Por Epico
+
+
+ Epico 1 +
+
+
+ 23 +
+
+ Epico 2 +
+
+
+ 10 +
+
+ Epico 3 +
+
+
+ 12 +
+
+
+
+
+ + +
+
+ 🔗 Dependencias entre Feature Sets +
+
+
+
+ FS 1.1 Bootstrap + + FS 1.2-1.5 Connectors +
+
+ + FS 1.6 Pipeline Core + + habilita todos os dashboards +
+
+ + FS 2.1 DORA +
+
+ + FS 2.2 Cycle Time +
+
+ + FS 3.1 Lean + & + FS 3.2 Sprint +
+
+ + FS 1.7 Pipeline Monitor + NEW +
+
+
+ FS 3.3 Shell + + necessario para navegar todos os dashboards +
+
+
+
+
+ + +
+
+ 👥 Personas Atendidas no MVP +
+
+
+
+
+
C
+
+
Carlos (Engineering Manager)
+
Persona primaria
+
+
+
DORA, Cycle Time, Throughput, Home, Pipeline Monitor, WIP
+
+
+
+
P
+
+
Priya (Agile Coach)
+
Lean & Flow specialist
+
+
+
CFD, Lead Time Distribution, Scatterplot
+
+
+
+
S
+
+
Scrum Master
+
Sprint ceremonies
+
+
+
Sprint Overview, Sprint Compare
+
+
+
+
+ +
+ + + + + +
+
Roadmap de Releases
+
+
+

MVP

+

Pipeline & Dashboards

+
45 stories
+

12-16 semanas

+
+
+

R1

+

Onboard & Self-Service

+
~20 stories
+

Login, OAuth, Team Mgmt UI

+
+
+

R2+

+

Management & Intelligence

+
Forecasting, AI, DevFinOps
+

Investment, Exec Views, Alerts

+
+
+
+ + +
+ PULSE Story Map v3.0 — Gerado em Abril 2026 — Modelo Jeff Patton User Story Mapping + FDD +
+ +
+ + + diff --git a/pulse/packages/pulse-api/src/modules/integration/application/config-loader.service.ts b/pulse/packages/pulse-api/src/modules/integration/application/config-loader.service.ts index c03ca26..f057dbe 100644 --- a/pulse/packages/pulse-api/src/modules/integration/application/config-loader.service.ts +++ b/pulse/packages/pulse-api/src/modules/integration/application/config-loader.service.ts @@ -121,6 +121,9 @@ export class ConfigLoaderService implements OnModuleInit { // Store status mapping for use by sync worker this.statusMapping = this.config.status_mapping ?? {}; + // Wait for DevLake API to be available (handles startup race condition) + await this.devLakeClient.waitForReady(); + // Ensure organization exists const org = await this.ensureOrganization(this.config.organization); @@ -130,8 +133,8 @@ export class ConfigLoaderService implements OnModuleInit { // Create team records await this.provisionTeams(this.config.teams, org.id); - // Create DevLake blueprints - await this.createBlueprints(this.config.connections); + // Provision Jira scopes (boards) and blueprint automatically + await this.provisionJiraScopes(this.config.connections); this.logger.log('Configuration loaded successfully'); } catch (error) { @@ -239,40 +242,69 @@ export class ConfigLoaderService implements OnModuleInit { if (existing) { this.logger.log( - `Connection '${conn.name}' (${conn.source}) already exists -- skipping`, - ); - continue; - } - - // Resolve token from environment - const token = process.env[conn.token_env]; - if (!token) { - this.logger.warn( - `Token env '${conn.token_env}' not set -- skipping ${conn.name}`, + `Connection '${conn.name}' (${conn.source}) already exists in PULSE DB — skipping`, ); continue; } - // Create DevLake connection const plugin = SOURCE_TO_PLUGIN[conn.source] ?? conn.source; - try { - // Jenkins requires username + token (Basic Auth) - const connectionOptions: { username?: string } = {}; - if (conn.source === 'jenkins' && conn.username_env) { - connectionOptions.username = process.env[conn.username_env] ?? ''; - } - const devlakeConn = await this.devLakeClient.createConnection( - plugin, - conn.name, - conn.base_url, - token, - connectionOptions, + try { + // Check DevLake for existing connection (handles persistent volume restarts) + const existingDevLakeConnections = + await this.devLakeClient.listConnections(plugin); + const existingDevLake = existingDevLakeConnections.find( + (dlc) => dlc.name.toLowerCase() === conn.name.toLowerCase(), ); - this.logger.log( - `Created DevLake connection: ${plugin}/${conn.name} (id=${devlakeConn.id})`, - ); + let devlakeConnectionId: number; + + if (existingDevLake) { + this.logger.log( + `DevLake connection '${conn.name}' already exists (id=${existingDevLake.id}) — linking to PULSE`, + ); + devlakeConnectionId = existingDevLake.id; + } else { + // Resolve token from environment + const token = process.env[conn.token_env]; + if (!token) { + this.logger.warn( + `Token env '${conn.token_env}' not set — skipping ${conn.name}`, + ); + continue; + } + + const connectionOptions: { + username?: string; + rateLimitPerHour?: number; + enableGraphql?: boolean; + } = {}; + + if ( + (conn.source === 'jenkins' || conn.source === 'jira') && + conn.username_env + ) { + connectionOptions.username = + process.env[conn.username_env] ?? ''; + } + if (conn.source === 'github') { + connectionOptions.rateLimitPerHour = 4500; + connectionOptions.enableGraphql = true; + } + + const devlakeConn = await this.devLakeClient.createConnection( + plugin, + conn.name, + conn.base_url, + token, + connectionOptions, + ); + + devlakeConnectionId = devlakeConn.id; + this.logger.log( + `Created DevLake connection: ${plugin}/${conn.name} (id=${devlakeConnectionId})`, + ); + } // Create PULSE connection record const connectionEntity = this.connectionRepo.create({ @@ -280,7 +312,7 @@ export class ConfigLoaderService implements OnModuleInit { orgId, sourceType: conn.source, config: { - devlake_connection_id: devlakeConn.id, + devlake_connection_id: devlakeConnectionId, devlake_plugin: plugin, base_url: conn.base_url, sync_interval_minutes: conn.sync_interval_minutes, @@ -295,7 +327,7 @@ export class ConfigLoaderService implements OnModuleInit { ); } catch (error) { this.logger.error( - `Failed to create DevLake connection for '${conn.name}': ${ + `Failed to provision connection '${conn.name}': ${ error instanceof Error ? error.message : String(error) }`, ); @@ -347,9 +379,203 @@ export class ConfigLoaderService implements OnModuleInit { } } + /** + * Board selection heuristic for Jira projects. + * Prefers Downstream boards (dev issues), then Development, then Épicos. + */ + private selectBestBoard( + boards: Array<{ id: number; name: string; type: string; projectKey: string }>, + ): { id: number; name: string; type: string; projectKey: string } | null { + if (boards.length === 0) return null; + if (boards.length === 1) return boards[0]; + + const priorities = [ + (b: { name: string }) => /downstream/i.test(b.name), + (b: { name: string }) => /desenvolvimento|development/i.test(b.name), + (b: { name: string }) => /épicos|epicos/i.test(b.name), + ]; + + for (const predicate of priorities) { + const match = boards.find(predicate); + if (match) return match; + } + + return boards[0]; // last resort + } + + /** + * Discover Jira boards for each project key, register as DevLake scopes, + * and create/update a blueprint — fully automated and idempotent. + */ + private async provisionJiraScopes( + connections: ConnectionConfig[], + ): Promise { + const jiraConns = connections.filter((c) => c.source === 'jira'); + if (jiraConns.length === 0) return; + + const tenantId = this.configService.getOrThrow('DEFAULT_TENANT_ID'); + + for (const conn of jiraConns) { + // Find the PULSE connection to get the DevLake connection ID + const pulseConn = await this.connectionRepo.findOne({ + where: { tenantId, sourceType: 'jira' as SourceType }, + }); + + if (!pulseConn) { + this.logger.warn('No PULSE Jira connection found — skipping scope provisioning'); + continue; + } + + const devlakeConnectionId = (pulseConn.config as Record) + ?.devlake_connection_id as number; + + if (!devlakeConnectionId) { + this.logger.warn('No DevLake connection ID for Jira — skipping'); + continue; + } + + const projects = conn.scope.projects ?? []; + if (projects.length === 0) continue; + + // Get already-registered scopes + let existingScopes: Array> = []; + try { + existingScopes = await this.devLakeClient.listScopes('jira', devlakeConnectionId); + } catch { + this.logger.warn('Could not list existing Jira scopes'); + } + const existingBoardIds = new Set( + existingScopes.map((s) => Number(s.boardId)), + ); + + const allBoardIds: number[] = [...existingBoardIds]; + + for (const projectKey of projects) { + // Discover boards for this project + const boards = await this.devLakeClient.discoverJiraBoards( + devlakeConnectionId, + projectKey, + ); + + if (boards.length === 0) { + this.logger.warn( + `No Jira boards found for project ${projectKey} — skipping`, + ); + continue; + } + + const best = this.selectBestBoard(boards); + if (!best) continue; + + if (existingBoardIds.has(best.id)) { + this.logger.log( + `Board ${best.id} (${best.name}) already registered for ${projectKey}`, + ); + if (!allBoardIds.includes(best.id)) allBoardIds.push(best.id); + continue; + } + + // Register the board as a DevLake scope + try { + await this.devLakeClient.registerScopes('jira', devlakeConnectionId, [ + { + boardId: best.id, + connectionId: devlakeConnectionId, + name: best.name, + self: `https://webmotors.atlassian.net/rest/agile/1.0/board/${best.id}`, + type: best.type, + }, + ]); + allBoardIds.push(best.id); + this.logger.log( + `Registered Jira board ${best.id} (${best.name}) for project ${projectKey}`, + ); + } catch (error) { + this.logger.error( + `Failed to register board for ${projectKey}: ${ + error instanceof Error ? error.message : String(error) + }`, + ); + } + } + + // Create or update blueprint + if (allBoardIds.length === 0) { + this.logger.warn('No Jira boards available for blueprint'); + return; + } + + const blueprintScopes = allBoardIds.map((id) => ({ + scopeId: String(id), + })); + + try { + const existingBlueprints = await this.devLakeClient.listBlueprints(); + const existing = existingBlueprints.find( + (bp) => bp.name === 'PULSE-Jira-MVP', + ); + + if (existing) { + await this.devLakeClient.updateBlueprint(existing.id, [ + { + pluginName: 'jira', + connectionId: devlakeConnectionId, + scopes: blueprintScopes, + }, + ]); + this.logger.log( + `Updated blueprint 'PULSE-Jira-MVP' (id=${existing.id}) with ${allBoardIds.length} scopes`, + ); + } else { + const blueprint = await this.devLakeClient.createBlueprint( + 'PULSE-Jira-MVP', + '0 */4 * * *', + [ + { + plugin: 'jira', + connectionId: devlakeConnectionId, + scopes: blueprintScopes as unknown[], + }, + ], + ); + this.logger.log( + `Created blueprint 'PULSE-Jira-MVP' (id=${blueprint.id}) with ${allBoardIds.length} scopes`, + ); + } + } catch (error) { + this.logger.error( + `Failed to provision Jira blueprint: ${ + error instanceof Error ? error.message : String(error) + }`, + ); + } + } + } + + /** @deprecated Use provisionJiraScopes instead */ private async createBlueprints( connections: ConnectionConfig[], ): Promise { + // Check if blueprint already exists in DevLake + try { + const existingBlueprints = await this.devLakeClient.listBlueprints(); + const existing = existingBlueprints.find( + (bp) => bp.name === 'PULSE-MVP-Blueprint', + ); + if (existing) { + this.logger.log( + `Blueprint 'PULSE-MVP-Blueprint' already exists (id=${existing.id}) — skipping`, + ); + return; + } + } catch (error) { + this.logger.warn( + `Could not check existing blueprints: ${ + error instanceof Error ? error.message : String(error) + }`, + ); + } + const tenantId = this.configService.getOrThrow('DEFAULT_TENANT_ID'); // Fetch all PULSE connection records to get DevLake connection IDs diff --git a/pulse/packages/pulse-api/src/modules/integration/infrastructure/devlake/devlake-api.client.ts b/pulse/packages/pulse-api/src/modules/integration/infrastructure/devlake/devlake-api.client.ts index ebb41cb..8ceb1d4 100644 --- a/pulse/packages/pulse-api/src/modules/integration/infrastructure/devlake/devlake-api.client.ts +++ b/pulse/packages/pulse-api/src/modules/integration/infrastructure/devlake/devlake-api.client.ts @@ -47,6 +47,30 @@ export class DevLakeApiClient { }); } + async waitForReady(maxRetries = 10, intervalMs = 3000): Promise { + for (let attempt = 1; attempt <= maxRetries; attempt++) { + try { + await this.client.get('/blueprints'); + this.logger.log(`DevLake API ready (attempt ${attempt})`); + return true; + } catch { + this.logger.warn( + `DevLake API not ready (attempt ${attempt}/${maxRetries}), retrying in ${intervalMs}ms...`, + ); + await new Promise((resolve) => setTimeout(resolve, intervalMs)); + } + } + throw new Error(`DevLake API not reachable after ${maxRetries} attempts`); + } + + async listConnections(plugin: string): Promise { + this.logger.log(`Listing DevLake connections for plugin: ${plugin}`); + const response = await this.client.get( + `/plugins/${plugin}/connections`, + ); + return response.data; + } + async createConnection( plugin: string, name: string, @@ -54,41 +78,104 @@ export class DevLakeApiClient { token: string, options?: { username?: string; + rateLimitPerHour?: number; + enableGraphql?: boolean; }, ): Promise { this.logger.log(`Creating DevLake connection: ${plugin}/${name}`); - // Jenkins plugin uses username + token (Basic Auth), not bearer token - const body: Record = { name, endpoint }; + // DevLake requires trailing slash on endpoint URLs + let normalizedEndpoint = endpoint.endsWith('/') + ? endpoint + : `${endpoint}/`; - if (plugin === 'jenkins') { + // Jira Cloud plugin expects the endpoint to end with /rest/ + if (plugin === 'jira' && !normalizedEndpoint.endsWith('/rest/')) { + normalizedEndpoint = normalizedEndpoint.replace(/\/$/, '') + '/rest/'; + } + + const body: Record = { + name, + endpoint: normalizedEndpoint, + }; + + if (plugin === 'github') { + body.token = token; + body.rateLimitPerHour = options?.rateLimitPerHour ?? 4500; + body.enableGraphql = options?.enableGraphql ?? true; + } else if (plugin === 'jenkins') { + body.username = options?.username ?? ''; + body.password = token; + } else if (plugin === 'jira') { body.username = options?.username ?? ''; - body.password = token; // Jenkins API token goes in password field + body.password = token; + body.authMethod = 'BasicAuth'; + } else if (plugin === 'gitlab') { + body.token = token; + body.rateLimitPerHour = options?.rateLimitPerHour ?? 3600; } else { body.token = token; } - const response = await this.client.post( - `/plugins/${plugin}/connections`, - body, - ); - return response.data; + try { + const response = await this.client.post( + `/plugins/${plugin}/connections`, + body, + ); + return response.data; + } catch (error) { + if (axios.isAxiosError(error) && error.response) { + this.logger.error( + `DevLake API error ${error.response.status} creating ${plugin} connection: ${JSON.stringify(error.response.data)}`, + ); + } + throw error; + } + } + + async listBlueprints(): Promise { + this.logger.log('Listing DevLake blueprints'); + const response = await this.client.get('/blueprints'); + const data = response.data as any; + return Array.isArray(data) ? data : (data.blueprints ?? []); } async createBlueprint( name: string, cronConfig: string, - connections: Array<{ plugin: string; connectionId: number; scopes: unknown[] }>, + connections: Array<{ + plugin: string; + connectionId: number; + scopes: unknown[]; + }>, ): Promise { this.logger.log(`Creating DevLake blueprint: ${name}`); - const response = await this.client.post('/blueprints', { - name, - mode: 'NORMAL', - cronConfig, - enable: true, - connections, - }); - return response.data; + + // DevLake expects "pluginName" not "plugin" in the connections array + const devlakeConnections = connections.map((c) => ({ + pluginName: c.plugin, + connectionId: c.connectionId, + scopes: c.scopes, + })); + + try { + const response = await this.client.post('/blueprints', { + name, + mode: 'NORMAL', + cronConfig, + enable: true, + skipOnFail: true, + connections: devlakeConnections, + }); + return response.data; + } catch (error) { + if (axios.isAxiosError(error) && error.response) { + this.logger.error( + `DevLake API error ${error.response.status} creating blueprint: ${JSON.stringify(error.response.data)}`, + ); + } + throw error; + } } async triggerPipeline(blueprintId: number): Promise { @@ -111,4 +198,122 @@ export class DevLakeApiClient { ); return response.data; } + + /** + * Register scopes (e.g., Jira boards, GitHub repos) in DevLake. + * Uses PUT /plugins/{plugin}/connections/{id}/scopes with { data: [...] } body. + */ + async registerScopes( + plugin: string, + connectionId: number, + scopes: Array>, + ): Promise { + this.logger.log( + `Registering ${scopes.length} scope(s) for ${plugin}/connection ${connectionId}`, + ); + const response = await this.client.put( + `/plugins/${plugin}/connections/${connectionId}/scopes`, + { data: scopes }, + ); + return response.data; + } + + /** + * List all registered scopes for a connection. + */ + async listScopes( + plugin: string, + connectionId: number, + ): Promise>> { + const response = await this.client.get<{ + count: number; + scopes: Array<{ scope: Record }>; + }>(`/plugins/${plugin}/connections/${connectionId}/scopes`); + return response.data.scopes.map((s) => s.scope); + } + + /** + * Update an existing blueprint (connections, scopes, cron, etc.). + */ + async updateBlueprint( + blueprintId: number, + connections: Array<{ + pluginName: string; + connectionId: number; + scopes: Array<{ scopeId: string }>; + }>, + ): Promise { + this.logger.log(`Updating DevLake blueprint: ${blueprintId}`); + const response = await this.client.patch( + `/blueprints/${blueprintId}`, + { connections }, + ); + return response.data; + } + + /** + * Discover Jira boards for a project key via DevLake's proxy to Jira Agile API. + * Returns boards belonging to the given project. + */ + async discoverJiraBoards( + connectionId: number, + projectKey: string, + ): Promise< + Array<{ id: number; name: string; type: string; projectKey: string }> + > { + this.logger.log( + `Discovering Jira boards for project: ${projectKey} (connection ${connectionId})`, + ); + try { + const response = await this.client.get<{ + values: Array<{ + id: number; + name: string; + type: string; + location?: { projectKey?: string }; + }>; + }>( + `/plugins/jira/connections/${connectionId}/proxy/rest/agile/1.0/board`, + { params: { projectKeyOrId: projectKey } }, + ); + return (response.data.values ?? []) + .filter( + (b) => + b.location?.projectKey?.toUpperCase() === + projectKey.toUpperCase(), + ) + .map((b) => ({ + id: b.id, + name: b.name, + type: b.type, + projectKey: b.location?.projectKey ?? projectKey, + })); + } catch (error) { + this.logger.warn( + `Could not discover boards for ${projectKey}: ${ + error instanceof Error ? error.message : String(error) + }`, + ); + return []; + } + } + + /** + * Create a scope config for a connection. + * Useful for customizing collection behaviour (e.g., skip epics). + */ + async createScopeConfig( + plugin: string, + connectionId: number, + config: Record, + ): Promise<{ id: number }> { + this.logger.log( + `Creating scope config for ${plugin}/connection ${connectionId}`, + ); + const response = await this.client.post<{ id: number }>( + `/plugins/${plugin}/connections/${connectionId}/scope-configs`, + config, + ); + return response.data; + } } diff --git a/pulse/packages/pulse-data/alembic/versions/002_pipeline_monitor.py b/pulse/packages/pulse-data/alembic/versions/002_pipeline_monitor.py new file mode 100644 index 0000000..78e746b --- /dev/null +++ b/pulse/packages/pulse-data/alembic/versions/002_pipeline_monitor.py @@ -0,0 +1,135 @@ +"""Pipeline monitor tables — watermarks and sync log. + +Creates tables for BC5 (pipeline_watermarks, pipeline_sync_log). +Enables Row-Level Security on both tables using app.current_tenant. + +Revision ID: 002_pipeline_monitor +Revises: 001_initial_eng +Create Date: 2026-04-08 + +""" + +from typing import Sequence, Union + +from alembic import op +import sqlalchemy as sa +from sqlalchemy.dialects.postgresql import JSONB, UUID + +# revision identifiers, used by Alembic. +revision: str = "002_pipeline_monitor" +down_revision: Union[str, None] = "001_initial_eng" +branch_labels: Union[str, Sequence[str], None] = None +depends_on: Union[str, Sequence[str], None] = None + +# --------------------------------------------------------------------------- +# All tables that this migration creates — used for RLS and downgrade +# --------------------------------------------------------------------------- +ALL_TABLES = [ + "pipeline_watermarks", + "pipeline_sync_log", +] + + +def _enable_rls(table: str) -> None: + """Enable RLS and create SELECT / INSERT / UPDATE / DELETE policies.""" + op.execute(f'ALTER TABLE "{table}" ENABLE ROW LEVEL SECURITY') + + for action, clause in [ + ("SELECT", "USING"), + ("INSERT", "WITH CHECK"), + ("UPDATE", "USING"), + ("DELETE", "USING"), + ]: + op.execute( + f""" + CREATE POLICY "{table}_{action.lower()}_tenant" ON "{table}" + FOR {action} {clause} ( + "tenant_id" = current_setting('app.current_tenant')::uuid + ); + """ + ) + + +def _drop_rls(table: str) -> None: + """Drop all RLS policies and disable RLS for a table.""" + for action in ("select", "insert", "update", "delete"): + op.execute(f'DROP POLICY IF EXISTS "{table}_{action}_tenant" ON "{table}"') + op.execute(f'ALTER TABLE "{table}" DISABLE ROW LEVEL SECURITY') + + +def upgrade() -> None: + # ------------------------------------------------------------------ + # 1. pipeline_watermarks (BC5) + # ------------------------------------------------------------------ + op.create_table( + "pipeline_watermarks", + sa.Column("id", UUID(as_uuid=True), primary_key=True, server_default=sa.text("gen_random_uuid()")), + sa.Column("tenant_id", UUID(as_uuid=True), nullable=False, index=True), + sa.Column("entity_type", sa.String(64), nullable=False, comment="pull_requests|issues|deployments|sprints"), + sa.Column("last_synced_at", sa.DateTime(timezone=True), nullable=False), + sa.Column("records_synced", sa.Integer, server_default="0", nullable=False), + sa.Column("created_at", sa.DateTime(timezone=True), server_default=sa.text("now()"), nullable=False), + sa.Column("updated_at", sa.DateTime(timezone=True), server_default=sa.text("now()"), nullable=False), + ) + + # Unique constraint for upsert: one watermark per tenant + entity + op.create_unique_constraint( + "uq_watermark_entity", + "pipeline_watermarks", + ["tenant_id", "entity_type"], + ) + + # ------------------------------------------------------------------ + # 2. pipeline_sync_log (BC5) + # ------------------------------------------------------------------ + op.create_table( + "pipeline_sync_log", + sa.Column("id", UUID(as_uuid=True), primary_key=True, server_default=sa.text("gen_random_uuid()")), + sa.Column("tenant_id", UUID(as_uuid=True), nullable=False, index=True), + sa.Column("started_at", sa.DateTime(timezone=True), nullable=False), + sa.Column("finished_at", sa.DateTime(timezone=True), nullable=True), + sa.Column("status", sa.String(32), nullable=False, comment="running|completed|failed|partial"), + sa.Column("trigger", sa.String(32), nullable=False, server_default="scheduled", comment="scheduled|manual|bootstrap"), + sa.Column("duration_seconds", sa.Float, nullable=True), + sa.Column("records_processed", JSONB, server_default=sa.text("'{}'::jsonb"), nullable=False), + sa.Column("errors", JSONB, server_default=sa.text("'[]'::jsonb"), nullable=False), + sa.Column("error_count", sa.Integer, server_default="0", nullable=False), + sa.Column("created_at", sa.DateTime(timezone=True), server_default=sa.text("now()"), nullable=False), + sa.Column("updated_at", sa.DateTime(timezone=True), server_default=sa.text("now()"), nullable=False), + ) + + # ------------------------------------------------------------------ + # Indexes + # ------------------------------------------------------------------ + op.create_index( + "ix_watermarks_tenant_entity", + "pipeline_watermarks", + ["tenant_id", "entity_type"], + ) + + op.create_index( + "ix_sync_log_tenant_started", + "pipeline_sync_log", + ["tenant_id", sa.text("started_at DESC")], + ) + + # ------------------------------------------------------------------ + # Row-Level Security policies + # ------------------------------------------------------------------ + for table in ALL_TABLES: + _enable_rls(table) + + +def downgrade() -> None: + # Drop RLS policies first + for table in reversed(ALL_TABLES): + _drop_rls(table) + + # Drop indexes + op.drop_index("ix_sync_log_tenant_started", table_name="pipeline_sync_log") + op.drop_index("ix_watermarks_tenant_entity", table_name="pipeline_watermarks") + op.drop_constraint("uq_watermark_entity", "pipeline_watermarks") + + # Drop tables in reverse order + op.drop_table("pipeline_sync_log") + op.drop_table("pipeline_watermarks") diff --git a/pulse/packages/pulse-data/alembic/versions/003_pipeline_events.py b/pulse/packages/pulse-data/alembic/versions/003_pipeline_events.py new file mode 100644 index 0000000..a9a8247 --- /dev/null +++ b/pulse/packages/pulse-data/alembic/versions/003_pipeline_events.py @@ -0,0 +1,110 @@ +"""Pipeline events table. + +Creates the pipeline_events table for BC5 activity feed. +Enables Row-Level Security using app.current_tenant. + +Revision ID: 003_pipeline_events +Revises: 002_pipeline_monitor +Create Date: 2026-04-08 + +""" + +from typing import Sequence, Union + +from alembic import op +import sqlalchemy as sa +from sqlalchemy.dialects.postgresql import JSONB, UUID + +# revision identifiers, used by Alembic. +revision: str = "003_pipeline_events" +down_revision: Union[str, None] = "002_pipeline_monitor" +branch_labels: Union[str, Sequence[str], None] = None +depends_on: Union[str, Sequence[str], None] = None + +# --------------------------------------------------------------------------- +# All tables that this migration creates — used for RLS and downgrade +# --------------------------------------------------------------------------- +ALL_TABLES = [ + "pipeline_events", +] + + +def _enable_rls(table: str) -> None: + """Enable RLS and create SELECT / INSERT / UPDATE / DELETE policies.""" + op.execute(f'ALTER TABLE "{table}" ENABLE ROW LEVEL SECURITY') + + for action, clause in [ + ("SELECT", "USING"), + ("INSERT", "WITH CHECK"), + ("UPDATE", "USING"), + ("DELETE", "USING"), + ]: + op.execute( + f""" + CREATE POLICY "{table}_{action.lower()}_tenant" ON "{table}" + FOR {action} {clause} ( + "tenant_id" = current_setting('app.current_tenant')::uuid + ); + """ + ) + + +def _drop_rls(table: str) -> None: + """Drop all RLS policies and disable RLS for a table.""" + for action in ("select", "insert", "update", "delete"): + op.execute(f'DROP POLICY IF EXISTS "{table}_{action}_tenant" ON "{table}"') + op.execute(f'ALTER TABLE "{table}" DISABLE ROW LEVEL SECURITY') + + +def upgrade() -> None: + # ------------------------------------------------------------------ + # 1. pipeline_events (BC5) + # ------------------------------------------------------------------ + op.create_table( + "pipeline_events", + sa.Column("id", UUID(as_uuid=True), primary_key=True, server_default=sa.text("gen_random_uuid()")), + sa.Column("tenant_id", UUID(as_uuid=True), nullable=False, index=True), + sa.Column("event_type", sa.String(64), nullable=False, comment="sync_completed|error|config_change|webhook"), + sa.Column("source", sa.String(64), nullable=False, comment="github|jira|jenkins|system|metrics_worker"), + sa.Column("title", sa.String(256), nullable=False), + sa.Column("detail", sa.Text, nullable=True), + sa.Column("severity", sa.String(16), server_default="info", nullable=False, comment="info|warning|error|success"), + sa.Column("event_meta", JSONB, server_default=sa.text("'{}'::jsonb"), nullable=False), + sa.Column("occurred_at", sa.DateTime(timezone=True), nullable=False), + sa.Column("created_at", sa.DateTime(timezone=True), server_default=sa.text("now()"), nullable=False), + sa.Column("updated_at", sa.DateTime(timezone=True), server_default=sa.text("now()"), nullable=False), + ) + + # ------------------------------------------------------------------ + # Indexes + # ------------------------------------------------------------------ + op.create_index( + "ix_pipeline_events_tenant_occurred", + "pipeline_events", + ["tenant_id", sa.text("occurred_at DESC")], + ) + + op.create_index( + "ix_pipeline_events_source", + "pipeline_events", + ["tenant_id", "source"], + ) + + # ------------------------------------------------------------------ + # Row-Level Security policies + # ------------------------------------------------------------------ + for table in ALL_TABLES: + _enable_rls(table) + + +def downgrade() -> None: + # Drop RLS policies first + for table in reversed(ALL_TABLES): + _drop_rls(table) + + # Drop indexes + op.drop_index("ix_pipeline_events_source", table_name="pipeline_events") + op.drop_index("ix_pipeline_events_tenant_occurred", table_name="pipeline_events") + + # Drop tables + op.drop_table("pipeline_events") diff --git a/pulse/packages/pulse-data/src/config.py b/pulse/packages/pulse-data/src/config.py index 21039d8..4a482f7 100644 --- a/pulse/packages/pulse-data/src/config.py +++ b/pulse/packages/pulse-data/src/config.py @@ -25,6 +25,9 @@ class Settings(BaseSettings): # DevLake PostgreSQL (read-only, used by sync worker) devlake_db_url: str = "postgresql://devlake:devlake@localhost:5432/lake" + # DevLake REST API (read-only, used by pipeline monitor) + devlake_api_url: str = "http://localhost:4000" + # Redis redis_url: str = "redis://localhost:6379" diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/devlake_reader.py b/pulse/packages/pulse-data/src/contexts/engineering_data/devlake_reader.py index 723f714..731beb4 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/devlake_reader.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/devlake_reader.py @@ -83,21 +83,28 @@ async def fetch_pull_requests(self, since: datetime | None = None) -> list[dict[ return [dict(row) for row in rows] async def fetch_issues(self, since: datetime | None = None) -> list[dict[str, Any]]: - """Fetch issues from DevLake domain table.""" + """Fetch issues from DevLake domain table. + + Uses updated_date for incremental sync watermark instead of created_date, + because Jira issues may have been created long ago but only recently + ingested/updated in DevLake. Using created_date would miss old issues + that were just collected for the first time. + """ base = """ SELECT i.id, i.url, i.issue_key, i.title, i.status, i.original_status, i.story_point, i.priority, - i.created_date, i.resolution_date, i.lead_time_minutes, + i.created_date, i.updated_date, i.resolution_date, + i.lead_time_minutes, i.assignee_name, i.type, si.sprint_id FROM issues i LEFT JOIN sprint_issues si ON si.issue_id = i.id """ if since is not None: - query = text(base + " WHERE i.created_date > :since ORDER BY i.created_date DESC LIMIT 5000") + query = text(base + " WHERE i.updated_date > :since ORDER BY i.updated_date DESC LIMIT 5000") params = {"since": since} else: - query = text(base + " ORDER BY i.created_date DESC LIMIT 5000") + query = text(base + " ORDER BY i.updated_date DESC LIMIT 5000") params = {} async with self._session_factory() as session: @@ -157,6 +164,96 @@ async def fetch_sprints(self, since: datetime | None = None) -> list[dict[str, A logger.info("Fetched %d sprints from DevLake (since=%s)", len(rows), since) return [dict(row) for row in rows] + async def fetch_issue_changelogs( + self, issue_ids: list[str], + ) -> dict[str, list[dict[str, Any]]]: + """Fetch status transition changelogs for a batch of issues. + + Queries DevLake's issue_changelogs table for status field changes. + Returns a dict mapping issue_id -> list of status transitions, + sorted chronologically. + + DevLake populates this table from Jira's changelog API. + For GitHub issues (which lack changelogs), this returns empty lists. + """ + if not issue_ids: + return {} + + query = text(""" + SELECT + ic.issue_id, + ic.original_from_value AS from_status, + ic.original_to_value AS to_status, + ic.created_date + FROM issue_changelogs ic + WHERE ic.issue_id = ANY(:issue_ids) + AND LOWER(ic.field_name) = 'status' + ORDER BY ic.issue_id, ic.created_date ASC + """) + + try: + async with self._session_factory() as session: + result = await session.execute(query, {"issue_ids": issue_ids}) + rows = result.mappings().all() + except Exception: + # Table may not exist if Jira plugin is not yet configured in DevLake + logger.warning( + "Could not fetch issue_changelogs (table may not exist yet) — " + "returning empty transitions" + ) + return {} + + changelogs: dict[str, list[dict[str, Any]]] = {} + for row in rows: + issue_id = str(row["issue_id"]) + if issue_id not in changelogs: + changelogs[issue_id] = [] + changelogs[issue_id].append(dict(row)) + + logger.info( + "Fetched changelogs for %d issues (%d total transitions)", + len(changelogs), + len(rows), + ) + return changelogs + + # ------------------------------------------------------------------ + # Count helpers — used by Pipeline Monitor for source/target comparison + # ------------------------------------------------------------------ + + async def count_pull_requests(self) -> int: + """Count total pull requests in DevLake DB.""" + async with self._engine.connect() as conn: + result = await conn.execute(text("SELECT COUNT(*) FROM pull_requests")) + return result.scalar() or 0 + + async def count_issues(self) -> int: + """Count total issues in DevLake DB.""" + async with self._engine.connect() as conn: + result = await conn.execute(text("SELECT COUNT(*) FROM issues")) + return result.scalar() or 0 + + async def count_deployments(self) -> int: + """Count total deployment commits in DevLake DB.""" + async with self._engine.connect() as conn: + result = await conn.execute(text("SELECT COUNT(*) FROM cicd_deployment_commits")) + return result.scalar() or 0 + + async def count_sprints(self) -> int: + """Count total sprints in DevLake DB.""" + async with self._engine.connect() as conn: + result = await conn.execute(text("SELECT COUNT(*) FROM sprints")) + return result.scalar() or 0 + + async def count_all(self) -> dict[str, int]: + """Count all entities in DevLake DB for comparison with PULSE DB.""" + return { + "pull_requests": await self.count_pull_requests(), + "issues": await self.count_issues(), + "deployments": await self.count_deployments(), + "sprints": await self.count_sprints(), + } + async def fetch_sprint_issues(self, sprint_id: str) -> list[dict[str, Any]]: """Fetch all issues belonging to a specific sprint.""" query = text(""" diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/models.py b/pulse/packages/pulse-data/src/contexts/engineering_data/models.py index ea90037..8f3cd92 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/models.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/models.py @@ -4,10 +4,9 @@ All tables enforce tenant_id (NOT NULL) for RLS. """ -import uuid from datetime import datetime -from sqlalchemy import Boolean, DateTime, Float, Integer, String, Text, Uuid, UniqueConstraint +from sqlalchemy import Boolean, DateTime, Float, Integer, String, Text, UniqueConstraint from sqlalchemy.dialects.postgresql import JSONB from sqlalchemy.orm import Mapped, mapped_column, column_property from sqlalchemy import case, extract @@ -87,14 +86,13 @@ class EngIssue(TenantModel): source: Mapped[str] = mapped_column(String(32), nullable=False) # jira | linear | azure project_key: Mapped[str] = mapped_column(String(128), nullable=False) title: Mapped[str] = mapped_column(Text, nullable=False) - type: Mapped[str] = mapped_column(String(64), nullable=False) # bug | story | task | epic + issue_type: Mapped[str] = mapped_column(String(64), nullable=False) # bug | story | task | epic status: Mapped[str] = mapped_column(String(128), nullable=False) # raw status from source normalized_status: Mapped[str] = mapped_column(String(32), nullable=False) # todo | in_progress | done assignee: Mapped[str | None] = mapped_column(String(256), nullable=True) - labels: Mapped[list | None] = mapped_column(JSONB, nullable=True, default=list) story_points: Mapped[float | None] = mapped_column(Float, nullable=True) - sprint_id: Mapped[uuid.UUID | None] = mapped_column(Uuid, nullable=True, index=True) + sprint_id: Mapped[str | None] = mapped_column(String(500), nullable=True, index=True) # Status transition log for CFD / flow metrics status_transitions: Mapped[list | None] = mapped_column(JSONB, nullable=True, default=list) diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py index 4288f74..390ed2d 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py @@ -57,6 +57,40 @@ "wont do": "done", "duplicate": "done", "rejected": "done", + # Portuguese statuses (Webmotors Jira — defensive fallback) + "refinado": "todo", + "quebra de histórias": "todo", + "em design": "in_progress", + "em imersão": "in_progress", + "em desenvolvimento": "in_progress", + "aguardando code review": "in_review", + "em code review": "in_review", + "planejando testes": "in_review", + "em teste azul": "in_review", + "aguardando teste azul": "in_review", + "em teste hml": "in_review", + "aguardando deploy produção": "done", + "concluído": "done", + "cancelado": "done", + "em andamento": "in_progress", + "testando": "in_review", + "fechado": "done", + "product review": "in_review", + # Kanban upstream / waiting stages + "priorizado": "todo", + "aguardando histórias": "todo", + "aguardando desenvolvimento": "todo", + "priorizado gp": "todo", + "pronto para o gp": "todo", + # Active work / pre-dev analysis + "construção de hipótese": "in_progress", + "desenvolvimento": "in_progress", + "design": "in_progress", + "analise": "in_progress", + "discovery": "in_progress", + "entendimento": "in_progress", + # Post-deploy + "pós-implantação": "done", } # Regex to find issue keys in branch names (e.g., "feature/BACK-123-add-login") @@ -152,6 +186,44 @@ def normalize_status(raw_status: str, status_mapping: dict[str, str] | None = No return "todo" +def build_status_transitions( + changelogs: list[dict[str, Any]], + status_mapping: dict[str, str] | None = None, +) -> list[dict[str, Any]]: + """Convert DevLake issue_changelogs into PULSE status_transitions JSONB. + + Args: + changelogs: Sorted list of changelog dicts with keys: + from_status, to_status, created_date + status_mapping: Optional custom mapping for normalization. + + Returns: + List of transition dicts: + [{"status": "in_progress", "entered_at": "...", "exited_at": "..."}, ...] + """ + if not changelogs: + return [] + + transitions: list[dict[str, Any]] = [] + for i, cl in enumerate(changelogs): + entered_at = _parse_datetime(cl["created_date"]) + to_status_raw = cl.get("to_status", "") + normalized = normalize_status(to_status_raw, status_mapping) + + # exited_at is the entered_at of the next transition, or None if current + exited_at = None + if i + 1 < len(changelogs): + exited_at = _parse_datetime(changelogs[i + 1]["created_date"]) + + transitions.append({ + "status": normalized, + "entered_at": entered_at.isoformat() if entered_at else None, + "exited_at": exited_at.isoformat() if exited_at else None, + }) + + return transitions + + def normalize_pull_request( devlake_pr: dict[str, Any], tenant_id: UUID, @@ -211,6 +283,7 @@ def normalize_issue( devlake_issue: dict[str, Any], tenant_id: UUID, status_mapping: dict[str, str] | None = None, + changelogs: list[dict[str, Any]] | None = None, ) -> dict[str, Any]: """Normalize a DevLake issue row into PULSE EngIssue fields. @@ -218,6 +291,7 @@ def normalize_issue( devlake_issue: Raw dict from DevLake issues table. tenant_id: The PULSE tenant UUID. status_mapping: Optional custom status mapping. + changelogs: Optional status transition changelogs from DevLake. Returns: Dict matching EngIssue model columns. @@ -231,10 +305,18 @@ def normalize_issue( created_date = _parse_datetime(devlake_issue.get("created_date")) resolution_date = _parse_datetime(devlake_issue.get("resolution_date")) - # Determine started_at: if in_progress or done, use created_date as fallback + # Build status transitions from changelog data (populated by Jira plugin) + transitions = build_status_transitions(changelogs or [], status_mapping) + + # Derive started_at from first transition to an active state started_at = None - if normalized in ("in_progress", "done"): - started_at = created_date # Best approximation without transition history + for t in transitions: + if t["status"] in ("in_progress", "in_review"): + started_at = _parse_datetime(t["entered_at"]) + break + # Fallback: if in_progress/done but no transition found, use created_date + if started_at is None and normalized in ("in_progress", "done"): + started_at = created_date completed_at = resolution_date if normalized == "done" else None @@ -251,20 +333,23 @@ def normalize_issue( else: issue_type = "task" + # sprint_id from DevLake join (sprint_issues table) + sprint_id_raw = devlake_issue.get("sprint_id") + sprint_id = str(sprint_id_raw) if sprint_id_raw else None + return { "external_id": str(devlake_issue["id"]), "tenant_id": tenant_id, "source": _detect_source(devlake_issue), "project_key": project_key, "title": devlake_issue.get("title", ""), - "type": issue_type, + "issue_type": issue_type, "status": raw_status, "normalized_status": normalized, "assignee": devlake_issue.get("assignee_name"), - "labels": [], "story_points": devlake_issue.get("story_point"), - "sprint_id": None, # Linked separately via sprint_issues - "status_transitions": [], # DevLake domain table doesn't have transitions + "sprint_id": sprint_id, + "status_transitions": transitions, "started_at": started_at, "completed_at": completed_at, "created_at": created_date or datetime.now(timezone.utc), diff --git a/pulse/packages/pulse-data/src/contexts/metrics/domain/lean.py b/pulse/packages/pulse-data/src/contexts/metrics/domain/lean.py index b46ed3e..95c579b 100644 --- a/pulse/packages/pulse-data/src/contexts/metrics/domain/lean.py +++ b/pulse/packages/pulse-data/src/contexts/metrics/domain/lean.py @@ -26,7 +26,7 @@ import statistics from collections import defaultdict from dataclasses import dataclass, field -from datetime import date, datetime, timedelta +from datetime import date, datetime, timedelta, timezone from typing import Any @@ -202,8 +202,8 @@ def calculate_cfd( current_day = start_date while current_day <= end_date: - # End-of-day threshold: 23:59:59 on current_day - eod = datetime(current_day.year, current_day.month, current_day.day, 23, 59, 59) + # End-of-day threshold: 23:59:59 on current_day (timezone-aware UTC) + eod = datetime(current_day.year, current_day.month, current_day.day, 23, 59, 59, tzinfo=timezone.utc) counts: dict[str, int] = { "backlog": 0, diff --git a/pulse/packages/pulse-data/src/contexts/metrics/routes.py b/pulse/packages/pulse-data/src/contexts/metrics/routes.py index 8239d25..ff36106 100644 --- a/pulse/packages/pulse-data/src/contexts/metrics/routes.py +++ b/pulse/packages/pulse-data/src/contexts/metrics/routes.py @@ -230,19 +230,21 @@ async def get_lean_metrics( team_id: UUID | None = Query(None, description="Filter by team"), period: str = Query("30d", description="Time period (7d|14d|30d|90d)"), ) -> LeanResponse: - """Get Lean metrics (CFD, WIP, Lead Time Distribution, Throughput).""" + """Get Lean metrics (CFD, WIP, Lead Time Distribution, Throughput). + + The worker writes separate snapshots per sub-metric (cfd, wip, + lead_time_distribution, throughput, scatterplot). This endpoint + combines them into a single response. + """ period_start, period_end = _parse_period(period) - snapshot = await _get_snapshot_by_period( + all_snaps = await _get_all_latest_snapshots( tenant_id=tenant_id, metric_type="lean", - metric_name="all", - period_start=period_start, - period_end=period_end, team_id=team_id, ) - if not snapshot: + if not all_snaps: return LeanResponse( period=period, period_start=period_start, @@ -252,20 +254,38 @@ async def get_lean_metrics( data=LeanMetricsData(), ) - value = snapshot.value or {} + # Extract from individual snapshots + cfd_raw = all_snaps.get("cfd", {}).get("value", {}) + cfd_points = cfd_raw.get("points") if isinstance(cfd_raw, dict) else None + + wip_raw = all_snaps.get("wip", {}).get("value", {}) + wip_count = wip_raw.get("wip_count") if isinstance(wip_raw, dict) else None + + lt_raw = all_snaps.get("lead_time_distribution", {}).get("value") + + tp_raw = all_snaps.get("throughput", {}).get("value", {}) + tp_points = tp_raw.get("points") if isinstance(tp_raw, dict) else None + + scatter_raw = all_snaps.get("scatterplot", {}).get("value") + + # Pick the most recent calculated_at across sub-snapshots + calc_times = [ + s["calculated_at"] for s in all_snaps.values() if s.get("calculated_at") + ] + latest_calc = max(calc_times) if calc_times else None return LeanResponse( period=period, period_start=period_start, period_end=period_end, team_id=team_id, - calculated_at=snapshot.calculated_at, + calculated_at=latest_calc, data=LeanMetricsData( - cfd=value.get("cfd"), - wip=value.get("wip"), - lead_time_distribution=value.get("lead_time_distribution"), - throughput=value.get("throughput"), - scatterplot=value.get("scatterplot"), + cfd=cfd_points, + wip=wip_count, + lead_time_distribution=lt_raw, + throughput=tp_points, + scatterplot=scatter_raw, ), ) @@ -410,36 +430,53 @@ async def get_sprint_metrics( team_id: UUID | None = Query(None, description="Filter by team"), sprint_id: UUID | None = Query(None, description="Specific sprint"), ) -> SprintResponse: - """Get sprint overview and comparison metrics.""" - # Sprint metrics use the latest snapshot (not period-based) - overview_snapshot = await _get_latest_snapshot( - tenant_id=tenant_id, - metric_type="sprint", - metric_name="overview", - team_id=team_id, - ) + """Get sprint overview and comparison metrics. - comparison_snapshot = await _get_latest_snapshot( + The worker writes overview snapshots as "overview_{sprint_id}" and + a single "comparison" snapshot. This endpoint finds the most recent + overview and combines it with the comparison data. + """ + all_snaps = await _get_all_latest_snapshots( tenant_id=tenant_id, metric_type="sprint", - metric_name="comparison", team_id=team_id, ) + if not all_snaps: + return SprintResponse( + team_id=team_id, + calculated_at=None, + data=SprintMetricsData(), + ) + + # Find the latest overview_* snapshot (most recent period_end) overview = None + latest_overview_time = None + for key, snap in all_snaps.items(): + if not key.startswith("overview_"): + continue + snap_time = snap.get("calculated_at") + if latest_overview_time is None or (snap_time and snap_time > latest_overview_time): + latest_overview_time = snap_time + ov = snap.get("value", {}) + if ov: + overview = SprintOverviewData(**{ + k: v for k, v in ov.items() + if k in SprintOverviewData.model_fields + }) + + # Comparison snapshot comparison = None - calculated_at = None + comparison_snap = all_snaps.get("comparison", {}) + cv = comparison_snap.get("value", {}) + if cv: + comparison = SprintComparisonData(**cv) - if overview_snapshot: - ov = overview_snapshot.value or {} - overview = SprintOverviewData(**ov) if ov else None - calculated_at = overview_snapshot.calculated_at - - if comparison_snapshot: - cv = comparison_snapshot.value or {} - comparison = SprintComparisonData(**cv) if cv else None - if not calculated_at: - calculated_at = comparison_snapshot.calculated_at + # Pick the most recent calculated_at + calc_times = [ + s["calculated_at"] for s in all_snaps.values() if s.get("calculated_at") + ] + calculated_at = max(calc_times) if calc_times else None return SprintResponse( team_id=team_id, @@ -568,8 +605,9 @@ async def get_home_metrics( ct_p50 = ct_breakdown_val.get("total_p50") if isinstance(ct_breakdown_val, dict) else None tp_analytics_val = tp_snaps.get("pr_analytics", {}).get("value", {}) if tp_snaps.get("pr_analytics") else {} tp_total = tp_analytics_val.get("total_merged") if isinstance(tp_analytics_val, dict) else None - lean_all = lean_snaps.get("all", {}).get("value", {}) if lean_snaps.get("all") else {} - lean_wip = lean_all.get("wip") + # Lean worker writes individual snapshots (wip, cfd, etc.) not a single "all" + lean_wip_snap = lean_snaps.get("wip", {}).get("value", {}) if lean_snaps.get("wip") else {} + lean_wip = lean_wip_snap.get("wip_count") if isinstance(lean_wip_snap, dict) else None # ── Extract PREVIOUS values ── prev_dora_all = prev_dora.get("all", {}).get("value", {}) if prev_dora.get("all") else {} @@ -577,8 +615,8 @@ async def get_home_metrics( prev_ct_p50 = prev_ct_val.get("total_p50") if isinstance(prev_ct_val, dict) else None prev_tp_val = prev_tp.get("pr_analytics", {}).get("value", {}) if prev_tp.get("pr_analytics") else {} prev_tp_total = prev_tp_val.get("total_merged") if isinstance(prev_tp_val, dict) else None - prev_lean_all = prev_lean.get("all", {}).get("value", {}) if prev_lean.get("all") else {} - prev_lean_wip = prev_lean_all.get("wip") + prev_lean_wip_snap = prev_lean.get("wip", {}).get("value", {}) if prev_lean.get("wip") else {} + prev_lean_wip = prev_lean_wip_snap.get("wip_count") if isinstance(prev_lean_wip_snap, dict) else None # ── Compute trends (current vs previous) ── df_val = dora_all.get("deployment_frequency_per_day") diff --git a/pulse/packages/pulse-data/src/contexts/metrics/schemas.py b/pulse/packages/pulse-data/src/contexts/metrics/schemas.py index 34c0486..6b593ab 100644 --- a/pulse/packages/pulse-data/src/contexts/metrics/schemas.py +++ b/pulse/packages/pulse-data/src/contexts/metrics/schemas.py @@ -160,6 +160,9 @@ class SprintOverviewData(BaseModel): committed_points: float = 0.0 completed_points: float = 0.0 completion_rate_points: float | None = None + sprint_name: str | None = Field(None, description="Sprint name from metadata") + started_at: str | None = Field(None, description="Sprint start date (ISO)") + completed_at: str | None = Field(None, description="Sprint end date (ISO)") class SprintComparisonData(BaseModel): @@ -265,12 +268,12 @@ class IssueItem(BaseModel): source: str project_key: str title: str - type: str + issue_type: str status: str normalized_status: str assignee: str | None = None story_points: float | None = None - sprint_id: UUID | None = None + sprint_id: str | None = None created_at: datetime started_at: datetime | None = None completed_at: datetime | None = None diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/__init__.py b/pulse/packages/pulse-data/src/contexts/pipeline/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/devlake_api.py b/pulse/packages/pulse-data/src/contexts/pipeline/devlake_api.py new file mode 100644 index 0000000..b367b30 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/pipeline/devlake_api.py @@ -0,0 +1,75 @@ +"""Client for DevLake REST API — pipeline status queries. + +Read-only client that queries DevLake's REST API for pipeline run +information. Used by the Pipeline Monitor to display sync status +and health indicators. + +All calls are wrapped in try/except since DevLake may be unavailable. +""" + +from __future__ import annotations + +import logging + +import httpx + +from src.config import settings + +logger = logging.getLogger(__name__) + +DEVLAKE_API_URL = getattr(settings, "devlake_api_url", "http://localhost:4000") + + +class DevLakeAPIClient: + """Read-only client for DevLake REST API.""" + + def __init__(self, base_url: str = DEVLAKE_API_URL) -> None: + self._base_url = base_url.rstrip("/") + + async def get_latest_pipeline(self) -> dict | None: + """Get the most recent DevLake pipeline run.""" + async with httpx.AsyncClient(timeout=10) as client: + resp = await client.get( + f"{self._base_url}/api/pipelines", + params={"pageSize": 1, "page": 1}, + ) + if resp.status_code != 200: + logger.warning( + "DevLake API returned %d for latest pipeline", resp.status_code, + ) + return None + data = resp.json() + pipelines = data.get("pipelines", []) + return pipelines[0] if pipelines else None + + async def get_running_pipeline(self) -> dict | None: + """Get currently running pipeline, if any.""" + async with httpx.AsyncClient(timeout=10) as client: + resp = await client.get( + f"{self._base_url}/api/pipelines", + params={"pageSize": 1, "page": 1, "status": "TASK_RUNNING"}, + ) + if resp.status_code != 200: + logger.warning( + "DevLake API returned %d for running pipeline", resp.status_code, + ) + return None + data = resp.json() + pipelines = data.get("pipelines", []) + return pipelines[0] if pipelines else None + + async def get_pipeline_health(self) -> dict: + """Get overall DevLake pipeline health summary. + + Returns a dict with keys: latest_pipeline, running_pipeline, + is_running, last_status, last_finished_at. + """ + latest = await self.get_latest_pipeline() + running = await self.get_running_pipeline() + return { + "latest_pipeline": latest, + "running_pipeline": running, + "is_running": running is not None, + "last_status": latest.get("status") if latest else None, + "last_finished_at": latest.get("finishedAt") if latest else None, + } diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/models.py b/pulse/packages/pulse-data/src/contexts/pipeline/models.py new file mode 100644 index 0000000..c7e18a0 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/pipeline/models.py @@ -0,0 +1,99 @@ +"""SQLAlchemy models for BC5 — Pipeline Monitor. + +Tables: pipeline_watermarks, pipeline_sync_log, pipeline_events. +All tables enforce tenant_id (NOT NULL) for RLS. +""" + +from __future__ import annotations + +import uuid +from datetime import datetime + +import sqlalchemy as sa +from sqlalchemy import DateTime, Float, Integer, String, Text, UniqueConstraint +from sqlalchemy.dialects.postgresql import JSONB +from sqlalchemy.orm import Mapped, mapped_column + +from src.shared.models import TenantModel + + +class PipelineWatermark(TenantModel): + """Stores sync watermarks per entity type for incremental sync. + + Replaces the in-memory _WATERMARKS dict with persistent DB storage, + so watermarks survive worker restarts and scale across replicas. + """ + + __tablename__ = "pipeline_watermarks" + __table_args__ = ( + UniqueConstraint("tenant_id", "entity_type", name="uq_watermark_entity"), + ) + + entity_type: Mapped[str] = mapped_column( + String(64), nullable=False, + ) # pull_requests | issues | deployments | sprints + last_synced_at: Mapped[datetime] = mapped_column( + DateTime(timezone=True), nullable=False, + ) + records_synced: Mapped[int] = mapped_column(Integer, default=0) + + +class PipelineSyncLog(TenantModel): + """Records each sync cycle for observability and debugging. + + Tracks start/end times, status, record counts per entity, + and any errors encountered during the sync cycle. + """ + + __tablename__ = "pipeline_sync_log" + + started_at: Mapped[datetime] = mapped_column( + DateTime(timezone=True), nullable=False, + ) + finished_at: Mapped[datetime | None] = mapped_column( + DateTime(timezone=True), nullable=True, + ) + status: Mapped[str] = mapped_column( + String(32), nullable=False, + ) # running | completed | failed | partial + trigger: Mapped[str] = mapped_column( + String(32), nullable=False, default="scheduled", + ) # scheduled | manual | bootstrap + duration_seconds: Mapped[float | None] = mapped_column( + Float, nullable=True, + ) + records_processed: Mapped[dict | None] = mapped_column( + JSONB, nullable=False, default=dict, + ) # {"pull_requests": 42, "issues": 10, ...} + errors: Mapped[list | None] = mapped_column( + JSONB, nullable=False, default=list, + ) # [{"stage": "issues", "message": "...", "timestamp": "..."}] + error_count: Mapped[int] = mapped_column(Integer, default=0) + + +class PipelineEvent(TenantModel): + """Feed of pipeline activity events (MVP-1.7.10).""" + + __tablename__ = "pipeline_events" + + event_type: Mapped[str] = mapped_column( + String(64), nullable=False, + ) # sync_completed | error | config_change | webhook + source: Mapped[str] = mapped_column( + String(64), nullable=False, + ) # github | jira | jenkins | system | metrics_worker + title: Mapped[str] = mapped_column( + String(256), nullable=False, + ) + detail: Mapped[str | None] = mapped_column( + Text, nullable=True, + ) + severity: Mapped[str] = mapped_column( + String(16), server_default="info", + ) # info | warning | error | success + event_meta: Mapped[dict] = mapped_column( + "event_meta", JSONB, server_default=sa.text("'{}'::jsonb"), nullable=False, + ) + occurred_at: Mapped[datetime] = mapped_column( + DateTime(timezone=True), nullable=False, + ) diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/routes.py b/pulse/packages/pulse-data/src/contexts/pipeline/routes.py new file mode 100644 index 0000000..0f7cb57 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/pipeline/routes.py @@ -0,0 +1,547 @@ +"""Pipeline Monitor API routes. + +Provides a consolidated view of the data pipeline health: stage +statuses, record counts (DevLake vs PULSE), sync logs, errors, +and DevLake API pipeline status. + +All DevLake calls are wrapped in try/except — the pipeline monitor +degrades gracefully when DevLake is unavailable. +""" + +from __future__ import annotations + +import logging +import uuid +from datetime import datetime, timedelta, timezone + +from fastapi import APIRouter +from sqlalchemy import func, select, text + +from src.config import settings +from src.contexts.engineering_data.devlake_reader import DevLakeReader +from src.contexts.engineering_data.models import ( + EngDeployment, + EngIssue, + EngPullRequest, + EngSprint, +) +from src.contexts.pipeline.devlake_api import DevLakeAPIClient +from src.contexts.metrics.infrastructure.models import MetricsSnapshot +from src.contexts.pipeline.models import PipelineEvent, PipelineSyncLog, PipelineWatermark +from src.contexts.pipeline.schemas import ( + DevLakePipelineInfo, + MetricsWorkerSnapshot, + MetricsWorkerStatus, + PipelineError, + PipelineEventEntry, + PipelineKPIs, + PipelineStageStatus, + PipelineStatusResponse, + RecordCount, + SourceFilteredStatus, + SyncLogEntry, +) +from src.database import get_session + +logger = logging.getLogger(__name__) + +router = APIRouter(prefix="/data/v1/pipeline", tags=["Pipeline Monitor"]) + + +# --------------------------------------------------------------------------- +# Helpers +# --------------------------------------------------------------------------- + + +async def _get_devlake_counts(reader: DevLakeReader) -> dict[str, int]: + """Query DevLake DB for record counts per entity type. + + Returns a dict like {"pull_requests": 120, "issues": 300, ...}. + Falls back to zeros if any query fails. + """ + counts: dict[str, int] = { + "pull_requests": 0, + "issues": 0, + "deployments": 0, + "sprints": 0, + } + table_map = { + "pull_requests": "pull_requests", + "issues": "issues", + "deployments": "cicd_deployment_commits", + "sprints": "sprints", + } + async with reader._session_factory() as session: + for entity, table in table_map.items(): + try: + result = await session.execute(text(f"SELECT COUNT(*) FROM {table}")) # noqa: S608 + counts[entity] = result.scalar() or 0 + except Exception: + logger.warning("Could not count DevLake table %s", table) + return counts + + +# --------------------------------------------------------------------------- +# Routes +# --------------------------------------------------------------------------- + + +@router.get("/status", response_model=PipelineStatusResponse) +async def get_pipeline_status() -> PipelineStatusResponse: + """Get consolidated pipeline health status. + + Aggregates data from: PULSE DB tables, DevLake reader counts, + DevLake API status, sync logs, and watermarks. + """ + tenant_id = uuid.UUID(settings.default_tenant_id) + now = datetime.now(timezone.utc) + + # --- 1. Record counts (PULSE DB) --- + async with get_session(tenant_id) as session: + pr_count = (await session.execute(select(func.count(EngPullRequest.id)))).scalar() or 0 + issue_count = (await session.execute(select(func.count(EngIssue.id)))).scalar() or 0 + deploy_count = (await session.execute(select(func.count(EngDeployment.id)))).scalar() or 0 + sprint_count = (await session.execute(select(func.count(EngSprint.id)))).scalar() or 0 + + pulse_counts = { + "pull_requests": pr_count, + "issues": issue_count, + "deployments": deploy_count, + "sprints": sprint_count, + } + + # --- 2. Record counts (DevLake DB) --- + devlake_counts: dict[str, int] = { + "pull_requests": 0, + "issues": 0, + "deployments": 0, + "sprints": 0, + } + try: + reader = DevLakeReader() + devlake_counts = await _get_devlake_counts(reader) + await reader.close() + except Exception: + logger.warning("Could not connect to DevLake DB for record counts") + + record_counts = [] + for entity in ["pull_requests", "issues", "deployments", "sprints"]: + dl = devlake_counts.get(entity, 0) + pl = pulse_counts.get(entity, 0) + record_counts.append(RecordCount( + entity=entity, + devlake_count=dl, + pulse_count=pl, + difference=dl - pl, + is_synced=abs(dl - pl) <= 5, # tolerance of 5 records + )) + + # --- 3. Recent sync logs --- + sync_logs: list[PipelineSyncLog] = [] + try: + async with get_session(tenant_id) as session: + sync_logs_result = await session.execute( + select(PipelineSyncLog) + .order_by(PipelineSyncLog.started_at.desc()) + .limit(10) + ) + sync_logs = list(sync_logs_result.scalars().all()) + except Exception: + logger.warning("Could not fetch sync logs (table may not exist yet)") + + recent_syncs = [ + SyncLogEntry( + id=str(s.id), + started_at=s.started_at, + finished_at=s.finished_at, + status=s.status, + trigger=s.trigger, + duration_seconds=s.duration_seconds, + records_processed=s.records_processed or {}, + error_count=s.error_count, + ) + for s in sync_logs + ] + + # --- 4. Recent errors (from sync logs) --- + recent_errors: list[PipelineError] = [] + for s in sync_logs: + if s.errors: + for err in s.errors[:5]: + recent_errors.append(PipelineError( + stage=err.get("stage", "unknown"), + message=err.get("message", "Unknown error"), + timestamp=( + datetime.fromisoformat(err["timestamp"]) + if "timestamp" in err + else s.started_at + ), + error_code=err.get("error_code"), + context=err.get("context", {}), + )) + recent_errors = recent_errors[:10] # max 10 + + # --- 5. Errors in last 24h --- + errors_24h = sum( + s.error_count + for s in sync_logs + if s.started_at and s.started_at >= now - timedelta(hours=24) + ) + + # --- 6. Synced today count --- + synced_today = sum( + sum((s.records_processed or {}).values()) + for s in sync_logs + if s.started_at + and s.started_at.date() == now.date() + and s.status in ("completed", "partial") + ) + + # --- 7. Pending sync (difference between DevLake and PULSE) --- + pending = sum(max(0, rc.difference) for rc in record_counts) + + # --- 8. DevLake API status --- + devlake_info = DevLakePipelineInfo() + try: + client = DevLakeAPIClient() + health = await client.get_pipeline_health() + devlake_info = DevLakePipelineInfo( + is_running=health.get("is_running", False), + last_status=health.get("last_status"), + last_finished_at=health.get("last_finished_at"), + ) + except Exception: + logger.warning("Could not reach DevLake API for pipeline health") + + # --- 9. Build stage statuses --- + total_records = sum(pulse_counts.values()) + + # Determine overall status + latest_sync = sync_logs[0] if sync_logs else None + if errors_24h > 5: + overall = "error" + elif errors_24h > 0 or pending > 50: + overall = "degraded" + elif devlake_info.is_running or (latest_sync and latest_sync.status == "running"): + overall = "syncing" + else: + overall = "healthy" + + # Determine per-stage status + source_status = "healthy" if total_records > 0 else "idle" + devlake_status = ( + "syncing" + if devlake_info.is_running + else ("healthy" if devlake_info.last_status == "TASK_COMPLETED" else "idle") + ) + sync_status = ( + "syncing" + if (latest_sync and latest_sync.status == "running") + else "healthy" + ) + db_status = "healthy" if total_records > 0 else "standby" + metrics_status = "healthy" # Metrics worker is always-on Kafka consumer + + stages = [ + PipelineStageStatus( + name="sources", + status=source_status, + label="Sources", + detail=f"{len([r for r in record_counts if r.devlake_count > 0])} active", + ), + PipelineStageStatus( + name="devlake", + status=devlake_status, + label="DevLake", + detail="ETL Layer", + ), + PipelineStageStatus( + name="sync_worker", + status=sync_status, + label="Sync Worker", + detail="Kafka Cluster", + ), + PipelineStageStatus( + name="pulse_db", + status=db_status, + label="PULSE DB", + detail=f"{total_records:,} Rec", + ), + PipelineStageStatus( + name="metrics_worker", + status=metrics_status, + label="Metrics", + detail="Calculations", + ), + ] + + # --- 10. Recent pipeline events --- + recent_events: list[PipelineEventEntry] = [] + try: + async with get_session(tenant_id) as session: + events_result = await session.execute( + select(PipelineEvent) + .order_by(PipelineEvent.occurred_at.desc()) + .limit(10) + ) + recent_events = [ + PipelineEventEntry( + id=str(e.id), + event_type=e.event_type, + source=e.source, + title=e.title, + detail=e.detail, + severity=e.severity, + metadata=e.event_meta or {}, + occurred_at=e.occurred_at, + ) + for e in events_result.scalars().all() + ] + except Exception: + logger.warning("Could not fetch pipeline events (table may not exist yet)") + + # --- 11. Source connections (static for MVP) --- + source_connections: list[dict] = [ + {"type": "github", "label": "GitHub", "icon": "code", "active": True, "syncing": True}, + {"type": "jira", "label": "Jira Cloud", "icon": "task_alt", "active": True, "syncing": False}, + {"type": "jenkins", "label": "Jenkins", "icon": "terminal", "active": True, "syncing": False}, + {"type": "bitbucket", "label": "Bitbucket", "icon": "code", "active": False, "syncing": False}, + {"type": "gitlab", "label": "GitLab", "icon": "code", "active": False, "syncing": False}, + ] + + return PipelineStatusResponse( + overall_status=overall, + stages=stages, + kpis=PipelineKPIs( + total_records=total_records, + synced_today=synced_today, + pending_sync=pending, + errors_24h=errors_24h, + ), + record_counts=record_counts, + recent_syncs=recent_syncs, + recent_errors=recent_errors, + recent_events=recent_events, + source_connections=source_connections, + devlake=devlake_info, + last_updated=now, + ) + + +# --------------------------------------------------------------------------- +# Source-filtered status (Tela 2) +# --------------------------------------------------------------------------- + + +@router.get("/status/source/{source_type}", response_model=SourceFilteredStatus) +async def get_source_status(source_type: str) -> SourceFilteredStatus: + """Get pipeline status filtered by a specific source type. + + Returns source-specific KPIs, active syncs, and recent events + for the given source (github, jira, jenkins, etc.). + """ + tenant_id = uuid.UUID(settings.default_tenant_id) + now = datetime.now(timezone.utc) + + # Map source types to entity models for counting + source_entity_map: dict[str, list] = { + "github": [EngPullRequest, EngDeployment], + "jira": [EngIssue, EngSprint], + "jenkins": [EngDeployment], + "bitbucket": [EngPullRequest], + "gitlab": [EngPullRequest], + } + entities = source_entity_map.get(source_type, []) + + # --- Source-specific KPIs --- + entity_count = 0 + synced_today = 0 + try: + async with get_session(tenant_id) as session: + for model in entities: + count = (await session.execute(select(func.count(model.id)))).scalar() or 0 + entity_count += count + except Exception: + logger.warning("Could not count entities for source %s", source_type) + + # Count records synced today from sync logs for this source + try: + async with get_session(tenant_id) as session: + sync_logs_result = await session.execute( + select(PipelineSyncLog) + .where(PipelineSyncLog.started_at >= now.replace(hour=0, minute=0, second=0, microsecond=0)) + .where(PipelineSyncLog.status.in_(["completed", "partial"])) + .order_by(PipelineSyncLog.started_at.desc()) + .limit(20) + ) + for s in sync_logs_result.scalars().all(): + rp = s.records_processed or {} + for entity_key in source_entity_map.get(source_type, []): + table_name = getattr(entity_key, "__tablename__", "") + # Map model tablename to records_processed keys + key_map = { + "eng_pull_requests": "pull_requests", + "eng_issues": "issues", + "eng_deployments": "deployments", + "eng_sprints": "sprints", + } + mapped_key = key_map.get(table_name, "") + synced_today += rp.get(mapped_key, 0) + except Exception: + logger.warning("Could not compute synced_today for source %s", source_type) + + kpis = { + "entities": entity_count, + "synced_today": synced_today, + "latency_ms": 120, # Placeholder — real latency tracking in R2 + "webhooks": 0, + } + + # --- Stages (same pipeline, status adjusted for source) --- + is_active = source_type in ("github", "jira") + source_stage_status = "healthy" if is_active and entity_count > 0 else "idle" + stages = [ + PipelineStageStatus(name="ingestion", status=source_stage_status, label="Ingestion", detail=f"{entity_count} records"), + PipelineStageStatus(name="devlake", status="healthy" if is_active else "standby", label="DevLake ETL", detail="Transform"), + PipelineStageStatus(name="sync_worker", status="healthy" if is_active else "standby", label="Sync Worker", detail="Kafka"), + PipelineStageStatus(name="pulse_db", status="healthy" if entity_count > 0 else "standby", label="PULSE DB", detail="Persist"), + ] + + # --- Active syncs (mock enriched for MVP) --- + active_syncs: list[dict] = [] + if source_type == "github": + active_syncs = [ + {"name": "webmotors/api", "type": "repository", "progress": 100, "last_sync": now.isoformat()}, + {"name": "webmotors/frontend", "type": "repository", "progress": 100, "last_sync": now.isoformat()}, + ] + elif source_type == "jira": + active_syncs = [ + {"name": "PULSE Board", "type": "board", "progress": 100, "last_sync": now.isoformat()}, + ] + + # --- Recent events for this source --- + recent_logs: list[PipelineEventEntry] = [] + try: + async with get_session(tenant_id) as session: + events_result = await session.execute( + select(PipelineEvent) + .where(PipelineEvent.source == source_type) + .order_by(PipelineEvent.occurred_at.desc()) + .limit(10) + ) + recent_logs = [ + PipelineEventEntry( + id=str(e.id), + event_type=e.event_type, + source=e.source, + title=e.title, + detail=e.detail, + severity=e.severity, + metadata=e.event_meta or {}, + occurred_at=e.occurred_at, + ) + for e in events_result.scalars().all() + ] + except Exception: + logger.warning("Could not fetch pipeline events for source %s", source_type) + + # Health percentage — 100 if active with records, 0 if inactive + health_pct = 100.0 if is_active and entity_count > 0 else (50.0 if is_active else 0.0) + + return SourceFilteredStatus( + source=source_type, + kpis=kpis, + stages=stages, + active_syncs=active_syncs, + recent_logs=recent_logs, + health_pct=health_pct, + sync_mode="delta", + ) + + +# --------------------------------------------------------------------------- +# Metrics Worker status (Tela 3) +# --------------------------------------------------------------------------- + + +@router.get("/metrics-worker/status", response_model=MetricsWorkerStatus) +async def get_metrics_worker_status() -> MetricsWorkerStatus: + """Get Metrics Worker drill-down view. + + Returns KPIs, processing stages, recent metric snapshots, + and cluster logs from pipeline events. + """ + tenant_id = uuid.UUID(settings.default_tenant_id) + + # --- 1. Query recent metrics snapshots --- + snapshots: list[MetricsWorkerSnapshot] = [] + total_processed = 0 + try: + async with get_session(tenant_id) as session: + snap_result = await session.execute( + select(MetricsSnapshot) + .order_by(MetricsSnapshot.calculated_at.desc()) + .limit(20) + ) + for s in snap_result.scalars().all(): + # Estimate records processed from snapshot data + data = s.value or {} + records = len(data.get("series", [])) if isinstance(data, dict) else 1 + total_processed += records + snapshots.append(MetricsWorkerSnapshot( + snapshot_id=str(s.id), + metric_type=s.metric_type, + timestamp=s.calculated_at, + duration_seconds=None, # Not tracked yet + records_processed=records, + status="success", + )) + except Exception: + logger.warning("Could not fetch metrics snapshots for worker status") + + # --- 2. Cluster logs (pipeline events from metrics_worker) --- + cluster_logs: list[dict] = [] + try: + async with get_session(tenant_id) as session: + events_result = await session.execute( + select(PipelineEvent) + .where(PipelineEvent.source == "metrics_worker") + .order_by(PipelineEvent.occurred_at.desc()) + .limit(10) + ) + cluster_logs = [ + { + "id": str(e.id), + "event_type": e.event_type, + "title": e.title, + "detail": e.detail, + "severity": e.severity, + "occurred_at": e.occurred_at.isoformat(), + } + for e in events_result.scalars().all() + ] + except Exception: + logger.warning("Could not fetch cluster logs for metrics worker") + + # --- 3. KPIs --- + kpis = { + "processing_rate": f"{total_processed}/cycle", + "queue_latency": "< 1s", + "active_nodes": 1, + "dora_health": "healthy" if total_processed > 0 else "idle", + } + + # --- 4. Stages --- + stages = [ + {"name": "ingest", "label": "Ingest", "status": "healthy", "detail": "Kafka consumer"}, + {"name": "metrics_worker", "label": "Metrics Worker", "status": "healthy", "detail": f"{len(snapshots)} snapshots"}, + {"name": "persist", "label": "Persist", "status": "healthy", "detail": "PostgreSQL"}, + {"name": "dispatch", "label": "Dispatch", "status": "healthy", "detail": "API ready"}, + ] + + return MetricsWorkerStatus( + kpis=kpis, + stages=stages, + snapshots=snapshots, + cluster_logs=cluster_logs, + ) diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py b/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py new file mode 100644 index 0000000..618a255 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py @@ -0,0 +1,191 @@ +"""Pydantic v2 response models for BC5 — Pipeline Monitor API. + +Typed responses for the pipeline status endpoint. Models represent +the pipeline stages, KPIs, record counts, sync logs, and errors +that make up the consolidated pipeline health view. +""" + +from __future__ import annotations + +from datetime import datetime +from typing import Any + +from pydantic import BaseModel, ConfigDict, Field + + +# --------------------------------------------------------------------------- +# Pipeline stage status +# --------------------------------------------------------------------------- + + +class PipelineStageStatus(BaseModel): + """Status of a single pipeline stage.""" + + name: str # "sources" | "devlake" | "sync_worker" | "pulse_db" | "metrics_worker" + status: str # "healthy" | "syncing" | "idle" | "error" | "standby" + label: str # Human-readable label + detail: str | None = None # e.g. "12 active" or "1.4 GB/s" + last_activity: datetime | None = None + + +# --------------------------------------------------------------------------- +# KPIs +# --------------------------------------------------------------------------- + + +class PipelineKPIs(BaseModel): + """Key performance indicators for the pipeline.""" + + total_records: int = 0 + synced_today: int = 0 + pending_sync: int = 0 + errors_24h: int = 0 + total_records_trend: float | None = None # % change vs last period + + +# --------------------------------------------------------------------------- +# Record counts +# --------------------------------------------------------------------------- + + +class RecordCount(BaseModel): + """Record count for a single entity type.""" + + entity: str # "pull_requests" | "issues" | "deployments" | "sprints" + devlake_count: int = 0 + pulse_count: int = 0 + difference: int = 0 + is_synced: bool = True + + +# --------------------------------------------------------------------------- +# Sync logs +# --------------------------------------------------------------------------- + + +class SyncLogEntry(BaseModel): + """A single sync cycle log entry.""" + + model_config = ConfigDict(from_attributes=True) + + id: str + started_at: datetime + finished_at: datetime | None = None + status: str + trigger: str = "scheduled" + duration_seconds: float | None = None + records_processed: dict[str, Any] = Field(default_factory=dict) + error_count: int = 0 + + +# --------------------------------------------------------------------------- +# Errors +# --------------------------------------------------------------------------- + + +class PipelineError(BaseModel): + """A recent pipeline error.""" + + stage: str + message: str + timestamp: datetime + error_code: str | None = None + context: dict[str, Any] = Field(default_factory=dict) + + +# --------------------------------------------------------------------------- +# DevLake pipeline info +# --------------------------------------------------------------------------- + + +class DevLakePipelineInfo(BaseModel): + """DevLake pipeline run info.""" + + is_running: bool = False + last_status: str | None = None + last_finished_at: datetime | None = None + + +# --------------------------------------------------------------------------- +# Pipeline events +# --------------------------------------------------------------------------- + + +class PipelineEventEntry(BaseModel): + """A pipeline activity event.""" + + model_config = ConfigDict(from_attributes=True) + + id: str + event_type: str + source: str + title: str + detail: str | None = None + severity: str = "info" + metadata: dict[str, Any] = Field(default_factory=dict) + occurred_at: datetime + + +# --------------------------------------------------------------------------- +# Source-filtered status (Tela 2) +# --------------------------------------------------------------------------- + + +class SourceFilteredStatus(BaseModel): + """Pipeline status filtered by source type (Tela 2).""" + + source: str + kpis: dict[str, Any] # Dynamic KPIs per source + stages: list[PipelineStageStatus] + active_syncs: list[dict[str, Any]] # Board/repo sync details + recent_logs: list[PipelineEventEntry] + health_pct: float = 100.0 + sync_mode: str = "delta" + + +# --------------------------------------------------------------------------- +# Metrics worker (Tela 3) +# --------------------------------------------------------------------------- + + +class MetricsWorkerSnapshot(BaseModel): + """Metrics worker snapshot entry (Tela 3).""" + + snapshot_id: str + metric_type: str # "DORA" | "Lean & Flow" | "Cycle Time" | "Throughput" + timestamp: datetime | None = None + duration_seconds: float | None = None + records_processed: int = 0 + status: str = "idle" # "success" | "calculating" | "idle" | "error" + + +class MetricsWorkerStatus(BaseModel): + """Metrics Worker drill-down view (Tela 3).""" + + kpis: dict[str, Any] + stages: list[dict[str, Any]] + snapshots: list[MetricsWorkerSnapshot] + cluster_logs: list[dict[str, Any]] + + +# --------------------------------------------------------------------------- +# Consolidated response +# --------------------------------------------------------------------------- + + +class PipelineStatusResponse(BaseModel): + """Full pipeline status response — consolidates all pipeline health data. + + GET /data/v1/pipeline/status response. + """ + + overall_status: str # "healthy" | "syncing" | "degraded" | "error" + stages: list[PipelineStageStatus] + kpis: PipelineKPIs + record_counts: list[RecordCount] + recent_syncs: list[SyncLogEntry] + recent_errors: list[PipelineError] + recent_events: list[PipelineEventEntry] = [] + source_connections: list[dict[str, Any]] = [] + devlake: DevLakePipelineInfo + last_updated: datetime diff --git a/pulse/packages/pulse-data/src/main.py b/pulse/packages/pulse-data/src/main.py index 1bebb01..666fd5f 100644 --- a/pulse/packages/pulse-data/src/main.py +++ b/pulse/packages/pulse-data/src/main.py @@ -14,6 +14,7 @@ from src.config import settings from src.contexts.engineering_data.routes import router as engineering_data_router from src.contexts.metrics.routes import router as metrics_router +from src.contexts.pipeline.routes import router as pipeline_router from src.shared.tenant import TenantMiddleware @@ -49,6 +50,7 @@ async def lifespan(app: FastAPI) -> AsyncGenerator[None, None]: # --- Routers --- app.include_router(engineering_data_router) app.include_router(metrics_router) +app.include_router(pipeline_router) # --- Health --- diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 1e603d5..1246b32 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -7,15 +7,21 @@ Runs on a schedule (every 15 min via EventBridge in prod, loop in dev). Uses watermark-based incremental sync to avoid full table scans. +Watermarks are persisted in pipeline_watermarks table (survives restarts). +Sync cycles are recorded in pipeline_sync_log for observability. """ +from __future__ import annotations + import asyncio import logging import signal +import uuid from datetime import datetime, timezone from typing import Any from uuid import UUID +from sqlalchemy import func, select from sqlalchemy.dialects.postgresql import insert as pg_insert from src.config import settings @@ -33,6 +39,7 @@ normalize_pull_request, normalize_sprint, ) +from src.contexts.pipeline.models import PipelineSyncLog, PipelineWatermark from src.database import get_session from src.shared.kafka import ( TOPIC_DEPLOYMENT_NORMALIZED, @@ -45,19 +52,45 @@ logger = logging.getLogger(__name__) -# Watermark storage key prefix (stored in DB or in-memory for MVP) -_WATERMARKS: dict[str, datetime] = {} - -def _get_watermark(entity: str) -> datetime | None: - """Get the last sync timestamp for an entity type.""" - return _WATERMARKS.get(entity) +# --------------------------------------------------------------------------- +# Watermark helpers — persistent DB storage via pipeline_watermarks +# --------------------------------------------------------------------------- - -def _set_watermark(entity: str, ts: datetime) -> None: - """Update the watermark for an entity type.""" - _WATERMARKS[entity] = ts - logger.debug("Updated watermark for %s to %s", entity, ts) +async def _get_watermark(session, tenant_id: UUID, entity: str) -> datetime | None: + """Get the last sync timestamp for an entity type from the DB.""" + result = await session.execute( + select(PipelineWatermark.last_synced_at) + .where(PipelineWatermark.entity_type == entity) + ) + row = result.scalar_one_or_none() + return row + + +async def _set_watermark( + session, tenant_id: UUID, entity: str, ts: datetime, count: int, +) -> None: + """Upsert the watermark for an entity type using ON CONFLICT.""" + stmt = ( + pg_insert(PipelineWatermark) + .values( + id=uuid.uuid4(), + tenant_id=tenant_id, + entity_type=entity, + last_synced_at=ts, + records_synced=count, + ) + .on_conflict_do_update( + constraint="uq_watermark_entity", + set_={ + "last_synced_at": ts, + "records_synced": count, + "updated_at": func.now(), + }, + ) + ) + await session.execute(stmt) + logger.debug("Updated watermark for %s to %s (count=%d)", entity, ts, count) class DevLakeSyncWorker: @@ -66,6 +99,9 @@ class DevLakeSyncWorker: Reads from DevLake's normalized tables (pull_requests, issues, cicd_deployment_commits, sprints), transforms via normalizer, upserts into PULSE DB, and publishes domain events to Kafka. + + Each sync cycle is recorded in pipeline_sync_log for observability. + Watermarks are persisted in pipeline_watermarks for crash recovery. """ def __init__( @@ -98,6 +134,7 @@ async def sync(self) -> dict[str, int]: Syncs all entity types (PRs, issues, deployments, sprints), links issues to PRs, and publishes events to Kafka. + Records the cycle in pipeline_sync_log with status tracking. Returns: Dict with counts of synced entities. @@ -105,28 +142,89 @@ async def sync(self) -> dict[str, int]: await self._ensure_producer() logger.info("Starting sync cycle for tenant %s", self._tenant_id) + started_at = datetime.now(timezone.utc) results: dict[str, int] = {} - try: - results["pull_requests"] = await self._sync_pull_requests() - results["issues"] = await self._sync_issues() - results["deployments"] = await self._sync_deployments() - results["sprints"] = await self._sync_sprints() - - total = sum(results.values()) - logger.info( - "Sync cycle complete: %d total entities synced — %s", - total, - results, + errors: list[dict[str, str]] = [] + + # Create sync log entry with status="running" + async with get_session(self._tenant_id) as session: + log_entry = PipelineSyncLog( + tenant_id=self._tenant_id, + started_at=started_at, + status="running", + trigger="scheduled", + records_processed={}, + errors=[], + error_count=0, + ) + session.add(log_entry) + await session.flush() + log_id = log_entry.id + + # Run each entity sync, collecting results and errors + for entity, sync_fn in [ + ("pull_requests", self._sync_pull_requests), + ("issues", self._sync_issues), + ("deployments", self._sync_deployments), + ("sprints", self._sync_sprints), + ]: + try: + results[entity] = await sync_fn() + except Exception as exc: + logger.exception("Error syncing %s", entity) + results[entity] = 0 + errors.append({ + "stage": entity, + "message": str(exc), + "timestamp": datetime.now(timezone.utc).isoformat(), + }) + + # Determine final status + finished_at = datetime.now(timezone.utc) + duration = (finished_at - started_at).total_seconds() + + if errors and all(results[e] == 0 for e in results): + status = "failed" + elif errors: + status = "partial" + else: + status = "completed" + + total = sum(results.values()) + + # Update the sync log entry + async with get_session(self._tenant_id) as session: + log_entry = await session.get(PipelineSyncLog, log_id) + if log_entry: + log_entry.finished_at = finished_at + log_entry.status = status + log_entry.duration_seconds = duration + log_entry.records_processed = results + log_entry.errors = errors + log_entry.error_count = len(errors) + + logger.info( + "Sync cycle %s: %d total entities synced in %.1fs — %s", + status, + total, + duration, + results, + ) + + # Re-raise if all entities failed (preserves existing error behavior) + if status == "failed" and errors: + raise RuntimeError( + f"Sync cycle failed: {len(errors)} entity types errored — " + f"{[e['stage'] for e in errors]}" ) - except Exception: - logger.exception("Error during sync cycle") - raise return results async def _sync_pull_requests(self) -> int: """Read PRs from DevLake, upsert to PULSE DB, publish to Kafka.""" - since = _get_watermark("pull_requests") + async with get_session(self._tenant_id) as session: + since = await _get_watermark(session, self._tenant_id, "pull_requests") + raw_prs = await self._reader.fetch_pull_requests(since=since) if not raw_prs: logger.info("No new pull requests to sync") @@ -155,23 +253,40 @@ async def _sync_pull_requests(self) -> int: events.append((str(pr["external_id"]), event)) await publish_batch(self._producer, TOPIC_PR_NORMALIZED, events) - # Update watermark - _set_watermark("pull_requests", datetime.now(timezone.utc)) + # Update watermark in DB + async with get_session(self._tenant_id) as session: + await _set_watermark( + session, self._tenant_id, "pull_requests", + datetime.now(timezone.utc), count, + ) return count async def _sync_issues(self) -> int: """Read issues from DevLake, upsert to PULSE DB, publish to Kafka.""" - since = _get_watermark("issues") + async with get_session(self._tenant_id) as session: + since = await _get_watermark(session, self._tenant_id, "issues") + raw_issues = await self._reader.fetch_issues(since=since) if not raw_issues: logger.info("No new issues to sync") return 0 + # Fetch status changelogs for all issues in this batch (Jira only) + issue_ids = [str(raw["id"]) for raw in raw_issues] + changelogs_by_issue = await self._reader.fetch_issue_changelogs(issue_ids) + # Normalize normalized = [] for raw in raw_issues: try: - issue_data = normalize_issue(raw, self._tenant_id, self._status_mapping) + issue_id = str(raw["id"]) + issue_changelogs = changelogs_by_issue.get(issue_id, []) + issue_data = normalize_issue( + raw, + self._tenant_id, + self._status_mapping, + changelogs=issue_changelogs, + ) normalized.append(issue_data) except Exception: logger.exception("Error normalizing issue: %s", raw.get("id")) @@ -185,13 +300,19 @@ async def _sync_issues(self) -> int: events.append((str(issue["external_id"]), issue)) await publish_batch(self._producer, TOPIC_ISSUE_NORMALIZED, events) - # Update watermark - _set_watermark("issues", datetime.now(timezone.utc)) + # Update watermark in DB + async with get_session(self._tenant_id) as session: + await _set_watermark( + session, self._tenant_id, "issues", + datetime.now(timezone.utc), count, + ) return count async def _sync_deployments(self) -> int: """Read deployments from DevLake, upsert to PULSE DB, publish to Kafka.""" - since = _get_watermark("deployments") + async with get_session(self._tenant_id) as session: + since = await _get_watermark(session, self._tenant_id, "deployments") + raw_deployments = await self._reader.fetch_deployments(since=since) if not raw_deployments: logger.info("No new deployments to sync") @@ -215,13 +336,19 @@ async def _sync_deployments(self) -> int: events.append((str(deploy["external_id"]), deploy)) await publish_batch(self._producer, TOPIC_DEPLOYMENT_NORMALIZED, events) - # Update watermark - _set_watermark("deployments", datetime.now(timezone.utc)) + # Update watermark in DB + async with get_session(self._tenant_id) as session: + await _set_watermark( + session, self._tenant_id, "deployments", + datetime.now(timezone.utc), count, + ) return count async def _sync_sprints(self) -> int: """Read sprints from DevLake, upsert to PULSE DB, publish to Kafka.""" - since = _get_watermark("sprints") + async with get_session(self._tenant_id) as session: + since = await _get_watermark(session, self._tenant_id, "sprints") + raw_sprints = await self._reader.fetch_sprints(since=since) if not raw_sprints: logger.info("No new sprints to sync") @@ -246,8 +373,12 @@ async def _sync_sprints(self) -> int: events.append((str(sprint["external_id"]), sprint)) await publish_batch(self._producer, TOPIC_SPRINT_NORMALIZED, events) - # Update watermark - _set_watermark("sprints", datetime.now(timezone.utc)) + # Update watermark in DB + async with get_session(self._tenant_id) as session: + await _set_watermark( + session, self._tenant_id, "sprints", + datetime.now(timezone.utc), count, + ) return count # --------------------------------------------------------------- @@ -300,10 +431,13 @@ async def _upsert_issues(self, issues: list[dict[str, Any]]) -> int: .on_conflict_do_update( index_elements=["tenant_id", "external_id"], set_={ + "issue_type": issue_data["issue_type"], "status": issue_data["status"], "normalized_status": issue_data["normalized_status"], "assignee": issue_data["assignee"], "story_points": issue_data["story_points"], + "sprint_id": issue_data["sprint_id"], + "status_transitions": issue_data["status_transitions"], "started_at": issue_data["started_at"], "completed_at": issue_data["completed_at"], "updated_at": datetime.now(timezone.utc), diff --git a/pulse/packages/pulse-data/src/workers/metrics_worker.py b/pulse/packages/pulse-data/src/workers/metrics_worker.py index 77f3838..be3ec7e 100644 --- a/pulse/packages/pulse-data/src/workers/metrics_worker.py +++ b/pulse/packages/pulse-data/src/workers/metrics_worker.py @@ -44,6 +44,7 @@ IssueFlowData, calculate_cfd, calculate_lead_time_distribution, + calculate_lead_time_scatterplot, calculate_throughput, calculate_wip, ) @@ -242,7 +243,7 @@ async def _handle_issue_event(self, value: dict[str, Any]) -> None: created_at=issue.created_at, started_at=issue.started_at, completed_at=issue.completed_at, - lead_time_hours=None, # Computed from timestamps + lead_time_hours=getattr(issue, "lead_time_hours", None), ) for issue in issues ] @@ -297,6 +298,25 @@ async def _handle_issue_event(self, value: dict[str, Any]) -> None: period_end=period_end, ) + # Lead Time Scatterplot + scatter_points, scatter_p50, scatter_p85, scatter_p95 = ( + calculate_lead_time_scatterplot(flow_data) + ) + await write_snapshot( + tenant_id=tenant_id, + team_id=None, + metric_type="lean", + metric_name="scatterplot", + value={ + "points": [asdict(p) for p in scatter_points], + "p50_hours": scatter_p50, + "p85_hours": scatter_p85, + "p95_hours": scatter_p95, + }, + period_start=period_start, + period_end=period_end, + ) + logger.info("Recalculated issue-related lean metrics for all periods") async def _handle_deployment_event(self, value: dict[str, Any]) -> None: @@ -380,7 +400,7 @@ async def _handle_sprint_event(self, value: dict[str, Any]) -> None: period_end=now, ) - # Individual sprint overviews + # Individual sprint overviews (enriched with sprint metadata) for sd in sprint_data_list: overview = calculate_sprint_overview(sd) # Use a synthetic period based on sprint data @@ -390,12 +410,18 @@ async def _handle_sprint_event(self, value: dict[str, Any]) -> None: p_start = sprint_obj.started_at if sprint_obj and sprint_obj.started_at else now - timedelta(days=14) p_end = sprint_obj.completed_at if sprint_obj and sprint_obj.completed_at else now + # Enrich with sprint metadata for the frontend + overview_dict = asdict(overview) + overview_dict["sprint_name"] = sd.name + overview_dict["started_at"] = p_start.isoformat() + overview_dict["completed_at"] = p_end.isoformat() + await write_snapshot( tenant_id=tenant_id, team_id=None, metric_type="sprint", metric_name=f"overview_{sd.sprint_id}", - value=asdict(overview), + value=overview_dict, period_start=p_start, period_end=p_end, ) diff --git a/pulse/packages/pulse-web/src/components/layout/Sidebar.tsx b/pulse/packages/pulse-web/src/components/layout/Sidebar.tsx index 76a85d8..9d805c0 100644 --- a/pulse/packages/pulse-web/src/components/layout/Sidebar.tsx +++ b/pulse/packages/pulse-web/src/components/layout/Sidebar.tsx @@ -28,6 +28,7 @@ const NAV_ITEMS: NavItem[] = [ { label: 'Sprints', path: '/metrics/sprints', icon: Zap }, { label: 'Open PRs', path: '/prs', icon: GitPullRequest }, { label: 'Integrations', path: '/integrations', icon: Cable }, + { label: 'Pipeline', path: '/pipeline-monitor', icon: Activity }, ]; export function Sidebar() { diff --git a/pulse/packages/pulse-web/src/globals.css b/pulse/packages/pulse-web/src/globals.css index 8b6f61b..792a420 100644 --- a/pulse/packages/pulse-web/src/globals.css +++ b/pulse/packages/pulse-web/src/globals.css @@ -56,6 +56,12 @@ /* Shadows */ --shadow-card: 0 1px 3px rgba(0,0,0,0.05); --shadow-elevated: 0 4px 12px rgba(0,0,0,0.08); + + /* Pipeline-specific */ + --pipeline-bg: #f8f9ff; + --pipeline-surface-low: #eff4ff; + --pipeline-surface-lowest: #ffffff; + --pipeline-inverse: #213145; } /* Dark mode (futuro - R2+) */ @@ -66,6 +72,76 @@ --color-border-default: #334155; /* slate-700 */ } +/* ── Pipeline Monitor Animations ── */ + +/* Shimmer flow on connector lines */ +@keyframes shimmer-flow { + 0% { transform: translateX(-100%); } + 100% { transform: translateX(400%); } +} +.animate-shimmer-flow { + animation: shimmer-flow 2s ease-in-out infinite; +} + +/* Pulse ring for active source connections */ +@keyframes pulse-ring { + 0% { transform: scale(0.8); opacity: 0.5; } + 80%, 100% { transform: scale(1.4); opacity: 0; } +} +.animate-pulse-ring { + animation: pulse-ring 2s cubic-bezier(0.455, 0.03, 0.515, 0.955) infinite; +} + +/* Data flow animation for pipeline connectors */ +@keyframes data-flow { + 0% { background-position: 0% 50%; } + 100% { background-position: 200% 50%; } +} +.animate-data-flow { + background: linear-gradient(90deg, transparent 0%, #6366F1 30%, #818CF8 50%, #6366F1 70%, transparent 100%); + background-size: 200% 100%; + animation: data-flow 2s linear infinite; +} + +/* Subtle glow for syncing nodes */ +@keyframes node-glow { + 0%, 100% { box-shadow: 0 0 0 0 rgba(99, 102, 241, 0.0); } + 50% { box-shadow: 0 0 16px 4px rgba(99, 102, 241, 0.15); } +} +.animate-node-glow { + animation: node-glow 2s ease-in-out infinite; +} + +/* Terminal cursor blink */ +@keyframes cursor-blink { + 0%, 50% { opacity: 1; } + 51%, 100% { opacity: 0; } +} +.animate-cursor-blink { + animation: cursor-blink 1s step-end infinite; +} + +/* Indigo gradient for primary actions */ +.pulse-gradient { + background: linear-gradient(135deg, #4648d4 0%, #6063ee 100%); +} + +/* Ambient shadow (design system spec) */ +.ambient-shadow { + box-shadow: 0 32px 64px -4px rgba(11, 28, 48, 0.06); +} + +/* Ghost border (design system spec — 15% opacity) */ +.ghost-border { + border: 1px solid rgba(199, 196, 215, 0.15); +} + +/* Glass effect for floating elements */ +.glass-effect { + background: rgba(255, 255, 255, 0.8); + backdrop-filter: blur(24px); +} + /* Base layer resets */ @layer base { body { diff --git a/pulse/packages/pulse-web/src/hooks/useMetrics.ts b/pulse/packages/pulse-web/src/hooks/useMetrics.ts index 0526fb3..d0bb337 100644 --- a/pulse/packages/pulse-web/src/hooks/useMetrics.ts +++ b/pulse/packages/pulse-web/src/hooks/useMetrics.ts @@ -9,6 +9,9 @@ import { fetchOpenPullRequests, fetchHomeMetrics, fetchIntegrations, + fetchPipelineStatus, + fetchSourceFilteredStatus, + fetchMetricsWorkerStatus, } from '@/lib/api/metrics'; import type { DoraMetrics, @@ -20,6 +23,11 @@ import type { SprintResponse, Integration, } from '@/types/metrics'; +import type { + PipelineStatusData, + SourceFilteredStatus, + MetricsWorkerStatus, +} from '@/types/pipeline'; function useFilterParams() { const { teamId, period, startDate, endDate } = useFilterStore(); @@ -89,3 +97,33 @@ export function useIntegrations() { staleTime: 30 * 1000, }); } + +/* ── Pipeline Monitor Hooks ── */ + +export function usePipelineStatus() { + return useQuery({ + queryKey: ['pipeline-status'], + queryFn: fetchPipelineStatus, + refetchInterval: 30_000, + staleTime: 10_000, + }); +} + +export function useSourceFilteredStatus(sourceType: string | null) { + return useQuery({ + queryKey: ['pipeline-source-status', sourceType], + queryFn: () => fetchSourceFilteredStatus(sourceType!), + enabled: !!sourceType, + refetchInterval: 30_000, + staleTime: 10_000, + }); +} + +export function useMetricsWorkerStatus() { + return useQuery({ + queryKey: ['metrics-worker-status'], + queryFn: fetchMetricsWorkerStatus, + refetchInterval: 30_000, + staleTime: 10_000, + }); +} diff --git a/pulse/packages/pulse-web/src/lib/api/metrics.ts b/pulse/packages/pulse-web/src/lib/api/metrics.ts index e965a7d..d065e59 100644 --- a/pulse/packages/pulse-web/src/lib/api/metrics.ts +++ b/pulse/packages/pulse-web/src/lib/api/metrics.ts @@ -3,6 +3,8 @@ import { transformHomeMetrics, transformCycleTime, transformThroughput, + transformLeanMetrics, + transformSprintMetrics, } from './transforms'; import type { DoraMetrics, @@ -14,6 +16,11 @@ import type { SprintResponse, Integration, } from '@/types/metrics'; +import type { + PipelineStatusData, + SourceFilteredStatus, + MetricsWorkerStatus, +} from '@/types/pipeline'; export interface MetricsQueryParams { teamId: string; @@ -59,17 +66,19 @@ export async function fetchThroughput(params: MetricsQueryParams): Promise { - const response = await dataClient.get('/metrics/lean', { + // eslint-disable-next-line @typescript-eslint/no-explicit-any + const response = await dataClient.get('/metrics/lean', { params: buildParams(params), }); - return response.data; + return transformLeanMetrics(response.data); } export async function fetchSprintMetrics(params: MetricsQueryParams): Promise { - const response = await dataClient.get('/metrics/sprints', { + // eslint-disable-next-line @typescript-eslint/no-explicit-any + const response = await dataClient.get('/metrics/sprints', { params: buildParams(params), }); - return response.data; + return transformSprintMetrics(response.data); } export async function fetchOpenPullRequests(params: MetricsQueryParams): Promise { @@ -91,3 +100,26 @@ export async function fetchIntegrations(): Promise { const response = await dataClient.get('/integrations'); return response.data; } + +/* ── Pipeline Monitor APIs ── */ + +export async function fetchPipelineStatus(): Promise { + const response = await dataClient.get('/pipeline/status'); + return response.data; +} + +export async function fetchSourceFilteredStatus( + sourceType: string, +): Promise { + const response = await dataClient.get( + `/pipeline/status/source/${sourceType}`, + ); + return response.data; +} + +export async function fetchMetricsWorkerStatus(): Promise { + const response = await dataClient.get( + '/pipeline/metrics-worker/status', + ); + return response.data; +} diff --git a/pulse/packages/pulse-web/src/lib/api/transforms.ts b/pulse/packages/pulse-web/src/lib/api/transforms.ts index fd01d96..05d839a 100644 --- a/pulse/packages/pulse-web/src/lib/api/transforms.ts +++ b/pulse/packages/pulse-web/src/lib/api/transforms.ts @@ -17,6 +17,12 @@ import type { ThroughputDataPoint, ThroughputAnalytics, PrSizeDistributionItem, + LeanMetrics, + CfdDataPoint, + ScatterplotDataPoint, + SprintResponse, + SprintOverview, + SprintComparisonItem, } from '@/types/metrics'; /* ── Helpers ── */ @@ -456,3 +462,169 @@ export function transformThroughput(raw: RawThroughputResponse): ThroughputRespo teamId: 'default', }; } + +/* ── Lean Metrics ── */ + +interface RawLeanCfdPoint { + date: string; + backlog: number; + todo: number; + in_progress: number; + in_review: number; + done: number; +} + +interface RawLeanScatterPoint { + issue_id: string; + completed_date: string; + lead_time_hours: number; + is_outlier: boolean; +} + +interface RawLeanResponse { + period: string; + team_id: string | null; + data: { + cfd: RawLeanCfdPoint[] | null; + wip: number | null; + lead_time_distribution: { + p50_hours: number | null; + p85_hours: number | null; + p95_hours: number | null; + buckets: unknown[]; + total_issues: number; + } | null; + throughput: unknown[] | null; + scatterplot: { + points: RawLeanScatterPoint[]; + p50_hours: number | null; + p85_hours: number | null; + p95_hours: number | null; + } | null; + }; +} + +export function transformLeanMetrics(raw: RawLeanResponse): LeanMetrics { + const d = raw.data; + const lt = d.lead_time_distribution; + + const cfdData: CfdDataPoint[] = (d.cfd ?? []).map((p) => ({ + week: p.date, + backlog: p.backlog, + todo: p.todo, + inProgress: p.in_progress, + review: p.in_review, + done: p.done, + })); + + const scatterplotData: ScatterplotDataPoint[] = ( + d.scatterplot?.points ?? [] + ).map((p) => ({ + id: p.issue_id, + title: '', + leadTimeDays: round2(p.lead_time_hours / 24), + closedAt: p.completed_date, + isOutlier: p.is_outlier, + })); + + return { + wipCount: safeNumber(d.wip), + wipLimit: 10, + wipAgingItems: 0, + leadTimeP50Days: round2(safeNumber(lt?.p50_hours) / 24), + leadTimeP85Days: round2(safeNumber(lt?.p85_hours) / 24), + leadTimeP95Days: round2(safeNumber(lt?.p95_hours) / 24), + cfdData, + scatterplotData, + period: raw.period, + teamId: raw.team_id ?? 'default', + }; +} + +/* ── Sprint Metrics ── */ + +interface RawSprintOverview { + committed_items: number; + added_items: number; + removed_items: number; + completed_items: number; + carried_over_items: number; + final_scope_items: number; + completion_rate: number | null; + scope_creep_pct: number | null; + carryover_rate: number | null; + committed_points: number; + completed_points: number; + completion_rate_points: number | null; + sprint_name?: string; + started_at?: string; + completed_at?: string; +} + +interface RawSprintComparisonItem { + sprint_id: string; + name: string; + committed_items: number; + completed_items: number; + velocity_points: number; + completion_rate: number | null; + scope_creep_pct: number | null; +} + +interface RawSprintResponse { + team_id: string | null; + calculated_at: string | null; + data: { + overview: RawSprintOverview | null; + comparison: { + sprints: RawSprintComparisonItem[]; + avg_velocity: number | null; + velocity_trend: string; + } | null; + }; +} + +export function transformSprintMetrics(raw: RawSprintResponse): SprintResponse { + const ov = raw.data.overview; + const comp = raw.data.comparison; + + const current: SprintOverview | null = ov + ? { + id: '', + name: ov.sprint_name ?? 'Current Sprint', + startDate: ov.started_at ?? '', + endDate: ov.completed_at ?? '', + status: 'active', + metrics: { + committed: ov.committed_items, + added: ov.added_items, + completed: ov.completed_items, + removed: ov.removed_items, + carryOver: ov.carried_over_items, + completionRate: round2(safeNumber(ov.completion_rate) * 100), + }, + burndownData: [], + teamId: raw.team_id ?? 'default', + } + : null; + + const comparison: SprintComparisonItem[] = (comp?.sprints ?? []).map( + (s) => ({ + sprintName: s.name, + committed: s.committed_items, + completed: s.completed_items, + }), + ); + + const velocityTrend = (comp?.velocity_trend ?? 'stable') as + | 'improving' + | 'stable' + | 'declining'; + + return { + current, + recent: [], + comparison, + velocityTrend, + }; +} diff --git a/pulse/packages/pulse-web/src/routeTree.gen.ts b/pulse/packages/pulse-web/src/routeTree.gen.ts index 38abf73..a678bfc 100644 --- a/pulse/packages/pulse-web/src/routeTree.gen.ts +++ b/pulse/packages/pulse-web/src/routeTree.gen.ts @@ -13,6 +13,7 @@ import { leanRoute } from './routes/_dashboard/metrics/lean'; import { sprintsRoute } from './routes/_dashboard/metrics/sprints'; import { prsRoute } from './routes/_dashboard/prs'; import { integrationsRoute } from './routes/_dashboard/integrations'; +import { pipelineMonitorRoute } from './routes/_dashboard/pipeline-monitor'; export const routeTree = rootRoute.addChildren([ homeRoute, @@ -23,4 +24,5 @@ export const routeTree = rootRoute.addChildren([ sprintsRoute, prsRoute, integrationsRoute, + pipelineMonitorRoute, ]); diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/pipeline-monitor.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/pipeline-monitor.tsx new file mode 100644 index 0000000..b639e9e --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/pipeline-monitor.tsx @@ -0,0 +1,1431 @@ +import { createRoute } from '@tanstack/react-router'; +import { rootRoute } from '../__root'; +import { + usePipelineStatus, + useSourceFilteredStatus, + useMetricsWorkerStatus, +} from '@/hooks/useMetrics'; +import { useState, useEffect, useCallback, useRef } from 'react'; +import { + AlertCircle, + AlertTriangle, + BarChart3, + CheckCircle2, + ChevronDown, + ChevronUp, + Clock, + Cloud, + Database, + GitBranch, + GitPullRequest, + Bug, + Rocket, + Zap, + Loader2, + RefreshCw, + Waves, + TrendingUp, + TrendingDown, + ArrowLeft, + Filter, + Activity, + Timer, + Cpu, + Server, + Send, + Terminal, + Gauge, + Heart, +} from 'lucide-react'; +import type { + PipelineOverallStatus, + PipelineStageStatus, + PipelineStage, + PipelineKpis, + RecordCount, + PipelineError, + PipelineEvent, + SourceConnection, + SourceFilteredStatus, + MetricsWorkerStatus, + MetricsWorkerSnapshot, +} from '@/types/pipeline'; + +export const pipelineMonitorRoute = createRoute({ + getParentRoute: () => rootRoute, + path: '/pipeline-monitor', + component: PipelineMonitorPage, +}); + +/* ════════════════════════════════════════════ + Utility helpers + ════════════════════════════════════════════ */ + +function formatRelativeTime(isoString: string): string { + const diff = Math.max(0, Math.floor((Date.now() - new Date(isoString).getTime()) / 1000)); + if (diff < 60) return `${diff}s ago`; + if (diff < 3600) return `${Math.floor(diff / 60)}m ago`; + if (diff < 86400) return `${Math.floor(diff / 3600)}h ago`; + return `${Math.floor(diff / 86400)}d ago`; +} + +function formatNumber(n: number): string { + if (n >= 1000) return `${(n / 1000).toFixed(1).replace(/\.0$/, '')}k`; + return n.toLocaleString(); +} + +function formatNumberFull(n: number): string { + return n.toLocaleString(); +} + +/* ════════════════════════════════════════════ + Freshness hook — ticks every second + ════════════════════════════════════════════ */ + +function useFreshness(lastUpdated: string | undefined) { + const [label, setLabel] = useState(''); + const lastUpdatedRef = useRef(lastUpdated); + lastUpdatedRef.current = lastUpdated; + + useEffect(() => { + function tick() { + if (!lastUpdatedRef.current) { setLabel(''); return; } + setLabel(formatRelativeTime(lastUpdatedRef.current)); + } + tick(); + const id = setInterval(tick, 1000); + return () => clearInterval(id); + }, [lastUpdated]); + + return label; +} + +/* ════════════════════════════════════════════ + View state: main | filtered | metrics-worker + ════════════════════════════════════════════ */ + +type ViewMode = 'main' | 'filtered' | 'metrics-worker'; + +/* ════════════════════════════════════════════ + Status & icon config + ════════════════════════════════════════════ */ + +const OVERALL_STATUS_CONFIG: Record< + PipelineOverallStatus, + { dotClass: string; label: string; textClass: string; bgClass: string } +> = { + healthy: { dotClass: 'bg-emerald-500', label: 'Healthy', textClass: 'text-emerald-700', bgClass: 'bg-emerald-100' }, + syncing: { dotClass: 'bg-blue-500 animate-pulse', label: 'Syncing', textClass: 'text-blue-700', bgClass: 'bg-blue-100' }, + degraded: { dotClass: 'bg-amber-500', label: 'Degraded', textClass: 'text-amber-700', bgClass: 'bg-amber-100' }, + error: { dotClass: 'bg-red-500', label: 'Error', textClass: 'text-red-700', bgClass: 'bg-red-100' }, +}; + +const STAGE_ICONS: Record> = { + sources: Cloud, + devlake: Waves, + sync_worker: RefreshCw, + pulse_db: Database, + metrics_worker: BarChart3, +}; + +const ENTITY_ICONS: Record> = { + pull_requests: GitPullRequest, + issues: Bug, + deployments: Rocket, + sprints: Zap, + commits: GitBranch, + users: Activity, + comments: Terminal, +}; + +const ENTITY_LABELS: Record = { + pull_requests: 'Pull Requests', + issues: 'Issues', + deployments: 'Deployments', + sprints: 'Sprints', + commits: 'Commits', + users: 'Users', + comments: 'Comments', +}; + +const SOURCE_ICONS: Record = { + github: 'https://cdn.simpleicons.org/github/181717', + jira: 'https://cdn.simpleicons.org/jira/0052CC', + jenkins: 'https://cdn.simpleicons.org/jenkins/D24939', + bitbucket: 'https://cdn.simpleicons.org/bitbucket/0052CC', + gitlab: 'https://cdn.simpleicons.org/gitlab/FC6D26', +}; + +const SEVERITY_COLORS: Record = { + success: { dot: 'bg-emerald-400 shadow-[0_0_8px_rgba(52,211,153,0.6)]', text: 'text-emerald-700' }, + info: { dot: 'bg-indigo-400', text: 'text-indigo-700' }, + warning: { dot: 'bg-amber-400', text: 'text-amber-700' }, + error: { dot: 'bg-red-400', text: 'text-red-700' }, +}; + +/* ════════════════════════════════════════════ + Skeleton + ════════════════════════════════════════════ */ + +function PageSkeleton() { + return ( +
+
+
+
+
+
+ {Array.from({ length: 6 }).map((_, i) => ( +
+
+
+
+ ))} +
+
+
+ {Array.from({ length: 4 }).map((_, i) => ( +
+ ))} +
+
+ ); +} + +/* ════════════════════════════════════════════ + A) Page Header (MVP-1.7.9) + ════════════════════════════════════════════ */ + +function PageHeader({ + overallStatus, + lastUpdated, + isFetching, +}: { + overallStatus: PipelineOverallStatus; + lastUpdated: string; + isFetching: boolean; +}) { + const freshness = useFreshness(lastUpdated); + const cfg = OVERALL_STATUS_CONFIG[overallStatus]; + + return ( +
+
+
+

+ Pipeline Monitor +

+ + + {cfg.label} + +
+

+ Real-time data ingestion status across engineering clusters +

+
+
+ {isFetching && ( + + + Refreshing... + + )} + {freshness && ( +
+ + Updated {freshness} +
+ )} +
+
+ ); +} + +/* ════════════════════════════════════════════ + B) Source Connection Filter Bar (MVP-1.7.14) + ════════════════════════════════════════════ */ + +function SourceFilterBar({ + connections, + activeSource, + onSelectSource, +}: { + connections: SourceConnection[]; + activeSource: string | null; + onSelectSource: (source: string | null) => void; +}) { + return ( +
+ {/* Show All button */} +
+ + + Show All + +
+ +
+ + {/* Source icons */} +
+ {connections.map((conn) => { + const isActive = conn.active; + const isSelected = activeSource === conn.type; + const isSyncing = conn.syncing; + + return ( +
isActive ? onSelectSource(isSelected ? null : conn.type) : undefined} + > +
+ {/* Pulse ring for syncing sources */} + {isSyncing && ( +
+ )} +
+ {conn.label} { (e.target as HTMLImageElement).style.display = 'none'; }} + /> + {isActive && ( +
+ )} +
+
+ + {conn.label.split(' ')[0]} + +
+ ); + })} +
+
+ ); +} + +/* ════════════════════════════════════════════ + C) Pipeline Flow Diagram — Animated (MVP-1.7.5) + ════════════════════════════════════════════ */ + +function PipelineFlowDiagram({ + stages, + onClickMetrics, +}: { + stages: PipelineStage[]; + onClickMetrics: () => void; +}) { + const anySyncing = stages.some((s) => s.status === 'syncing'); + + return ( +
+ {/* Background connector line */} +
+
+ {anySyncing && ( +
+ )} +
+
+ + {/* Nodes */} +
+ {stages.map((stage) => { + const Icon = STAGE_ICONS[stage.name] ?? Cloud; + const isSyncing = stage.status === 'syncing'; + const isMetrics = stage.name === 'metrics_worker'; + const isPulseDb = stage.name === 'pulse_db'; + const statusLabel = stage.status.charAt(0).toUpperCase() + stage.status.slice(1); + + const statusColor = + stage.status === 'healthy' || stage.status === 'standby' + ? 'text-emerald-600' + : stage.status === 'syncing' + ? 'text-blue-600' + : stage.status === 'error' + ? 'text-red-600' + : 'text-content-tertiary'; + + return ( +
+
+ +
+

+ {stage.label} +

+
+ + {statusLabel.toUpperCase()} + + {stage.detail && ( + + {stage.detail} + + )} +
+
+ ); + })} +
+
+ ); +} + +/* ════════════════════════════════════════════ + D) KPI Counter Strip (MVP-1.7.6a) + ════════════════════════════════════════════ */ + +function KpiStrip({ kpis }: { kpis: PipelineKpis }) { + const hasTrend = kpis.total_records_trend !== null && kpis.total_records_trend !== undefined; + const trendUp = hasTrend && kpis.total_records_trend! > 0; + const hasErrors = kpis.errors_24h > 0; + const hasPending = kpis.pending_sync > 0; + + return ( +
+ {/* Total Records */} +
+

+ Total Records +

+

+ {formatNumberFull(kpis.total_records)} +

+ {hasTrend && ( +
+ {trendUp ? : } + {trendUp ? '+' : ''}{kpis.total_records_trend}% vs last week +
+ )} +
+ + {/* Synced Today */} +
+

+ Synced Today +

+

+ {formatNumberFull(kpis.synced_today)} +

+
+ + +4.2% daily avg +
+
+ + {/* Pending Sync */} +
+

+ Pending Sync +

+

+ {formatNumberFull(kpis.pending_sync)} +

+ {hasPending && ( +
+ + Est. {Math.ceil(kpis.pending_sync / 100 * 42)}s left +
+ )} +
+ + {/* Errors 24h */} +
+

+ Errors (24h) +

+

+ {kpis.errors_24h} +

+ {hasErrors && ( +
+ + Critical attention +
+ )} +
+
+ ); +} + +/* ════════════════════════════════════════════ + E) Details Area — Accordions + Timeline (Tela 1) + ════════════════════════════════════════════ */ + +function AccordionSection({ + title, + statusColor = 'bg-emerald-500', + defaultOpen = false, + children, +}: { + title: string; + statusColor?: string; + defaultOpen?: boolean; + children: React.ReactNode; +}) { + const [open, setOpen] = useState(defaultOpen); + + return ( +
+ + {open &&
{children}
} +
+ ); +} + +function DevLakeSyncTable({ syncs }: { syncs: Array<{ id: string; status: string; started_at: string; records_processed: Record }> }) { + if (syncs.length === 0) { + return

No recent sync cycles recorded.

; + } + + return ( + + + + + + + + + + + {syncs.slice(0, 5).map((sync) => { + const total = Object.values(sync.records_processed).reduce((a, b) => a + b, 0); + const statusColors: Record = { + completed: 'bg-emerald-50 text-emerald-600', + running: 'bg-indigo-50 text-indigo-600', + failed: 'bg-red-50 text-red-600', + partial: 'bg-amber-50 text-amber-600', + }; + const statusClass = statusColors[sync.status] || 'bg-gray-50 text-gray-600'; + const progress = sync.status === 'completed' ? 100 : sync.status === 'running' ? 65 : 0; + + return ( + + + + + + + ); + })} + +
Sync IDProgressStatusLast Sync
{sync.id.slice(0, 8)}... +
+
+
+
+ + {sync.status.toUpperCase()} + + + {formatRelativeTime(sync.started_at)} +
+ ); +} + +function SyncWorkerLogs({ events }: { events: PipelineEvent[] }) { + const logEvents = events.filter((e) => e.source !== 'metrics_worker').slice(0, 5); + + return ( +
+ {logEvents.length === 0 ? ( +

No recent log entries.

+ ) : ( + logEvents.map((ev, i) => ( +

+ [{new Date(ev.occurred_at).toLocaleTimeString()}] + {' '} + {ev.severity.toUpperCase()}: + {' '} + {ev.title} + {ev.detail && — {ev.detail}} +

+ )) + )} + +
+ ); +} + +/* ════════════════════════════════════════════ + F) Recent Activity Timeline (MVP-1.7.15) + ════════════════════════════════════════════ */ + +function RecentActivityTimeline({ events }: { events: PipelineEvent[] }) { + const timelineEvents = events.slice(0, 6); + + return ( +
+

+ Recent Activity +

+
+ {/* Vertical line */} +
+ + {timelineEvents.length === 0 ? ( +

No recent activity.

+ ) : ( + timelineEvents.map((ev, i) => { + const sev = SEVERITY_COLORS[ev.severity] || SEVERITY_COLORS.info; + const borderColor = + ev.severity === 'success' ? 'border-emerald-500' + : ev.severity === 'error' ? 'border-red-500' + : ev.severity === 'warning' ? 'border-amber-500' + : 'border-indigo-500'; + + return ( +
+
+
+

{ev.title}

+ {ev.detail && ( +

{ev.detail}

+ )} + + {formatRelativeTime(ev.occurred_at)} + +
+
+ ); + }) + )} +
+
+ ); +} + +/* ════════════════════════════════════════════ + G) Performance Alert Card (MVP-1.7.21) + ════════════════════════════════════════════ */ + +function PerformanceAlertCard({ kpis }: { kpis: PipelineKpis }) { + const showAlert = kpis.pending_sync > 100 || kpis.errors_24h > 3; + if (!showAlert) return null; + + return ( +
+

Performance Alert

+

+ {kpis.pending_sync > 100 + ? `Throughput is under pressure — ${formatNumberFull(kpis.pending_sync)} records pending sync.` + : `${kpis.errors_24h} errors detected in the last 24 hours. System resources may need attention.`} +

+ +
+ ); +} + +/* ════════════════════════════════════════════ + H) Record Counts by Entity Grid (MVP-1.7.6b) + ════════════════════════════════════════════ */ + +function RecordCountsGrid({ records }: { records: RecordCount[] }) { + if (records.length === 0) return null; + + return ( +
+
+

+ Record Counts by Entity +

+ +
+
+ {records.map((rec) => { + const label = ENTITY_LABELS[rec.entity] ?? rec.entity; + return ( +
+

{label}

+

+ {formatNumberFull(rec.pulse_count)} +

+
+ ); + })} +
+
+ ); +} + +/* ════════════════════════════════════════════ + I) Error Panel (MVP-1.7.7) + ════════════════════════════════════════════ */ + +function ErrorPanel({ errors }: { errors: PipelineError[] }) { + const hasErrors = errors.length > 0; + const [expanded, setExpanded] = useState(hasErrors); + const [acknowledged, setAcknowledged] = useState>(new Set()); + + useEffect(() => { + if (hasErrors) setExpanded(true); + }, [hasErrors]); + + const handleAcknowledge = useCallback((index: number) => { + setAcknowledged((prev) => new Set(prev).add(index)); + }, []); + + return ( +
+ + + {expanded && ( +
+ {errors.length === 0 ? ( +

+ No active errors. All pipeline stages are operating normally. +

+ ) : ( + errors.map((err, index) => { + const isAck = acknowledged.has(index); + return ( +
+
+ {err.error_code && ( + {err.error_code} + )} + {err.message} +
+
+ + +
+
+ ); + }) + )} +
+ )} +
+ ); +} + +/* ════════════════════════════════════════════════════════════════════════════ + TELA 1 — MAIN VIEW (combines all components above) + ════════════════════════════════════════════════════════════════════════════ */ + +function MainView({ + data, + isFetching, + activeSource, + onSelectSource, + onOpenMetricsWorker, +}: { + data: NonNullable['data']>; + isFetching: boolean; + activeSource: string | null; + onSelectSource: (source: string | null) => void; + onOpenMetricsWorker: () => void; +}) { + return ( +
+ + + + + + + + + {/* Two-column layout: Accordions + Timeline */} +
+
+ + + + + + + + + +
+ {data.kpis.total_records > 0 + ? `Processing ${formatNumberFull(data.kpis.total_records)} records across 4 metric categories.` + : 'No metrics calculated yet.'} +
+ +
+ +
+ + +
+
+ + + +
+ +
+
+ ); +} + +/* ════════════════════════════════════════════════════════════════════════════ + TELA 2 — SOURCE FILTERED VIEW (MVP-1.7.16, 1.7.17, 1.7.18) + ════════════════════════════════════════════════════════════════════════════ */ + +function SourceFilteredView({ + sourceType, + onBack, +}: { + sourceType: string; + onBack: () => void; +}) { + const { data, isLoading } = useSourceFilteredStatus(sourceType); + const sourceLabel = sourceType.charAt(0).toUpperCase() + sourceType.slice(1); + + if (isLoading || !data) { + return ; + } + + const kpis = data.kpis as Record; + + return ( +
+ {/* Header with back navigation */} +
+
+ +
+

+ Pipeline Monitor — {sourceLabel} +

+

+ Real-time status of the ingestion pipeline for {sourceLabel}. +

+
+
+
+ + Health: {data.health_pct}% + + + Mode: {data.sync_mode === 'delta' ? 'Delta Sync' : 'Full Sync'} + +
+
+ + {/* Source filter bar (horizontal pills) */} +
+ + {['GitLab', 'Datadog', 'Jenkins'].map((name) => ( + + ))} +
+ + {/* Source-specific KPI cards */} +
+ {Object.entries(kpis).slice(0, 4).map(([key, value]) => { + const label = key.replace(/_/g, ' ').replace(/\b\w/g, (c) => c.toUpperCase()); + return ( +
+
+ {label} + +
+ + {typeof value === 'number' ? formatNumber(value) : String(value)} + +
+ ); + })} +
+ + {/* Pipeline flow filtered */} +
+
+
+

+ Live Data Flow: {sourceLabel} Integration +

+

+ Real-time status of the ingestion pipeline for {sourceLabel}. +

+
+
+ +
+ {data.stages.map((stage, idx) => ( +
+
+
+ {(() => { + const Icon = STAGE_ICONS[stage.name] ?? Cloud; + return ; + })()} +
+ {stage.label} + {stage.detail} +
+ {idx < data.stages.length - 1 && ( +
+ {stage.status === 'syncing' && ( +
+ )} +
+ )} +
+ ))} +
+
+ + {/* Two-column: Active Board Syncs + Live Logs */} +
+ {/* Active Board Syncs Table */} +
+
+

Active Board Syncs

+ +
+
+ + + + + + + + + + + + {(data.active_syncs || []).map((sync, i) => { + const statusColors: Record = { + ACTIVE: 'bg-emerald-100 text-emerald-700', + IDLE: 'bg-emerald-100 text-emerald-700', + SYNCING: 'bg-amber-100 text-amber-700', + ERROR: 'bg-red-100 text-red-700', + }; + const progressColor = sync.status === 'SYNCING' ? 'bg-amber-400' : sync.progress >= 100 ? 'bg-emerald-500' : 'bg-brand-primary'; + + return ( + + + + + + + + ); + })} + +
Board NameSync StrategyProgressLast SHA/KeyStatus
+
+
+ +
+ {sync.name} +
+ 		{sync.strategy} +
+
+
+
{sync.last_key} + + {sync.status} + +
+
+
+ + {/* Live Ingestion Logs */} +
+
+

Live Ingestion Logs

+ +
+
+ {(data.recent_logs || []).slice(0, 5).map((log, i) => { + const sev = SEVERITY_COLORS[log.severity] || SEVERITY_COLORS.info; + return ( +
+
+
+
+
+

{log.title}

+ {log.detail && ( +

{log.detail}

+ )} + + {new Date(log.occurred_at).toLocaleTimeString()} + +
+
+ ); + })} +
+ +
+
+
+ ); +} + +/* ════════════════════════════════════════════════════════════════════════════ + TELA 3 — METRICS WORKER DRILL-DOWN (MVP-1.7.19, 1.7.20) + ════════════════════════════════════════════════════════════════════════════ */ + +function MetricsWorkerView({ onBack }: { onBack: () => void }) { + const { data, isLoading } = useMetricsWorkerStatus(); + + if (isLoading || !data) { + return ; + } + + const kpis = data.kpis as Record; + + const METRIC_COLORS: Record = { + DORA: 'bg-indigo-400', + 'Lean & Flow': 'bg-purple-400', + 'Cycle Time': 'bg-blue-400', + Throughput: 'bg-orange-400', + Sprint: 'bg-emerald-400', + }; + + const SNAPSHOT_STATUS_STYLES: Record = { + success: 'bg-emerald-100 text-emerald-700', + calculating: 'bg-amber-100 text-amber-700 animate-pulse', + idle: 'bg-gray-100 text-gray-500', + error: 'bg-red-100 text-red-700', + }; + + const STAGE_ICONS_MW = [ + { name: 'Ingest', icon: Activity, active: true }, + { name: 'Metrics Worker', icon: BarChart3, active: true }, + { name: 'Persist', icon: Database, active: false }, + { name: 'Dispatch', icon: Send, active: false }, + ]; + + return ( +
+ {/* Header */} +
+
+
+ + +
+

+ Metrics Worker Stage +

+
+
+
+
+ Cluster: Oregon-1 +
+
+
+ + {/* KPI Cards */} +
+
+

Processing Rate

+
+ + {kpis.processing_rate ?? '0'} + + req/s +
+
+
+
+
+
+

Queue Latency

+
+ + {kpis.queue_latency ?? '0'} + + ms +
+
+ + -12% from avg +
+
+
+

Active Nodes

+
+ + {kpis.active_nodes ?? '1'} + + / 24 +
+
+ {[1, 2, 3].map((i) => ( +
+ ))} +
+ +{Math.max(0, Number(kpis.active_nodes || 1) - 3)} +
+
+
+
+

DORA Health

+ + {kpis.dora_health ?? 'Elite'} + +
+ + Verified by Compliance +
+
+
+ + {/* Stages Pipeline (simplified) */} +
+ {STAGE_ICONS_MW.map((st, idx) => { + const Icon = st.icon; + const isActive = st.name === 'Metrics Worker'; + return ( +
+
+
+ +
+ + {st.name} + +
+ {idx < STAGE_ICONS_MW.length - 1 && ( +
+ {st.active &&
} +
+ )} +
+ ); + })} +
+ + {/* Snapshot Inspector Table */} +
+
+
+
+ +
+
+

Metrics Worker Details

+

Snapshot inspector

+
+
+
+ +
+ + + + + + + + + + + + + {(data.snapshots || []).map((snap) => { + const dotColor = METRIC_COLORS[snap.metric_type] || 'bg-gray-400'; + const statusStyle = SNAPSHOT_STATUS_STYLES[snap.status] || SNAPSHOT_STATUS_STYLES.idle; + + return ( + + + + + + + + + ); + })} + {(data.snapshots || []).length === 0 && ( + + + + )} + +
Snapshot IDMetric TypeTimestampDurationRecords ProcessedStatus
+ + {snap.snapshot_id.slice(0, 16)} + + +
+ + {snap.metric_type} +
+ 		+ {snap.timestamp + ? new Date(snap.timestamp).toLocaleString('en-US', { month: 'short', day: 'numeric', hour: '2-digit', minute: '2-digit', second: '2-digit' }) + : 'Pending...'} + + {snap.duration_seconds ? `${snap.duration_seconds.toFixed(1)}s` : '--'} + + {snap.records_processed > 0 ? formatNumberFull(snap.records_processed) : '--'} + + + {snap.status.toUpperCase()} + +
+ No metric snapshots recorded yet. +
+
+ + {(data.snapshots || []).length > 0 && ( +
+

Showing 1-{data.snapshots.length} metric snapshots

+
+ + + +
+
+ )} +
+ + {/* Global Cluster Logs */} +
+
+

+ Global Cluster Logs +

+
+ tail -f system.log +
+
+
+
+ {(data.cluster_logs || []).length === 0 ? ( +

No cluster logs available.

+ ) : ( + data.cluster_logs.map((log, i) => { + const levelColor = + log.level === 'INFO' ? 'text-emerald-400' + : log.level === 'DEBUG' ? 'text-blue-400' + : log.level === 'WARNING' ? 'text-amber-400' + : log.level === 'ERROR' ? 'text-red-400' + : 'text-gray-400'; + + return ( +
+ + [{new Date(log.timestamp).toLocaleTimeString()}] + + {log.level} + {log.message} +
+ ); + }) + )} + +
+
+
+
+ ); +} + +/* ════════════════════════════════════════════════════════════════════════════ + ROOT PAGE — View Router + ════════════════════════════════════════════════════════════════════════════ */ + +function PipelineMonitorPage() { + const [viewMode, setViewMode] = useState('main'); + const [activeSource, setActiveSource] = useState(null); + + const { data, isLoading, isError, error, isFetching } = usePipelineStatus(); + + // When user selects a source from the filter bar, switch view + const handleSelectSource = useCallback((source: string | null) => { + setActiveSource(source); + if (source) { + setViewMode('filtered'); + } else { + setViewMode('main'); + } + }, []); + + const handleOpenMetricsWorker = useCallback(() => { + setViewMode('metrics-worker'); + }, []); + + const handleBackToMain = useCallback(() => { + setViewMode('main'); + setActiveSource(null); + }, []); + + // Error state + if (isError) { + return ( +
+ +

+ Failed to load pipeline status +

+

+ {error instanceof Error ? error.message : 'An unexpected error occurred.'} +

+
+ ); + } + + // Loading state + if (isLoading || !data) { + return ; + } + + // Route to the correct view + switch (viewMode) { + case 'filtered': + return ( + + ); + case 'metrics-worker': + return ; + default: + return ( + + ); + } +} diff --git a/pulse/packages/pulse-web/src/types/pipeline.ts b/pulse/packages/pulse-web/src/types/pipeline.ts new file mode 100644 index 0000000..0c7e9a3 --- /dev/null +++ b/pulse/packages/pulse-web/src/types/pipeline.ts @@ -0,0 +1,143 @@ +/* ── Pipeline Monitor Types ── */ + +export type PipelineOverallStatus = 'healthy' | 'syncing' | 'degraded' | 'error'; + +export type PipelineStageStatus = 'healthy' | 'syncing' | 'idle' | 'error' | 'standby'; + +export interface PipelineStage { + name: string; + status: PipelineStageStatus; + label: string; + detail: string | null; + last_activity: string | null; +} + +export interface PipelineKpis { + total_records: number; + synced_today: number; + pending_sync: number; + errors_24h: number; + total_records_trend: number | null; +} + +export interface RecordCount { + entity: string; + devlake_count: number; + pulse_count: number; + difference: number; + is_synced: boolean; +} + +export interface RecentSync { + id: string; + started_at: string; + finished_at: string | null; + status: string; + trigger: string; + duration_seconds: number | null; + records_processed: Record; + error_count: number; +} + +export interface PipelineError { + stage: string; + message: string; + timestamp: string; + error_code: string | null; + context: Record; +} + +export interface DevLakeStatus { + is_running: boolean; + last_status: string | null; + last_finished_at: string | null; +} + +/* ── Source Connection (MVP-1.7.14) ── */ + +export interface SourceConnection { + type: string; + label: string; + icon: string; + active: boolean; + syncing: boolean; +} + +/* ── Pipeline Event (MVP-1.7.10 / MVP-1.7.15) ── */ + +export interface PipelineEvent { + id: string; + event_type: string; + source: string; + title: string; + detail: string | null; + severity: 'info' | 'warning' | 'error' | 'success'; + metadata: Record; + occurred_at: string; +} + +/* ── Main Status Response (Tela 1) ── */ + +export interface PipelineStatusData { + overall_status: PipelineOverallStatus; + stages: PipelineStage[]; + kpis: PipelineKpis; + record_counts: RecordCount[]; + recent_syncs: RecentSync[]; + recent_errors: PipelineError[]; + recent_events: PipelineEvent[]; + source_connections: SourceConnection[]; + devlake: DevLakeStatus; + last_updated: string; +} + +/* ── Source Filtered Status (Tela 2 — MVP-1.7.12/16/17/18) ── */ + +export interface ActiveSync { + name: string; + strategy: string; + progress: number; + last_key: string; + status: string; +} + +export interface SourceFilteredStatus { + source: string; + kpis: Record; + stages: PipelineStage[]; + active_syncs: ActiveSync[]; + recent_logs: PipelineEvent[]; + health_pct: number; + sync_mode: string; +} + +/* ── Metrics Worker Status (Tela 3 — MVP-1.7.19/20) ── */ + +export interface MetricsWorkerSnapshot { + snapshot_id: string; + metric_type: string; + timestamp: string | null; + duration_seconds: number | null; + records_processed: number; + status: string; +} + +export interface MetricsWorkerStage { + name: string; + icon: string; + active: boolean; + label: string; +} + +export interface MetricsWorkerClusterLog { + timestamp: string; + level: string; + message: string; +} + +export interface MetricsWorkerStatus { + kpis: Record; + stages: MetricsWorkerStage[]; + snapshots: MetricsWorkerSnapshot[]; + cluster_logs: MetricsWorkerClusterLog[]; +} diff --git a/pulse/scripts/bulk_import_repos.py b/pulse/scripts/bulk_import_repos.py new file mode 100644 index 0000000..1a0e1e7 --- /dev/null +++ b/pulse/scripts/bulk_import_repos.py @@ -0,0 +1,528 @@ +#!/usr/bin/env python3 +"""PULSE — Bulk Import GitHub Repos into DevLake. + +Discovers all repositories from the GitHub org via DevLake's remote-scopes API, +filters out archived/inactive repos, and registers them as scopes in DevLake. + +This does NOT trigger data collection — it only registers repos so that +the next Blueprint run (or manual trigger) will collect their data. + +Usage: + # Dry run — see what would be imported + python scripts/bulk_import_repos.py --dry-run + + # Import all active repos + python scripts/bulk_import_repos.py + + # Import only repos with activity in the last 12 months + python scripts/bulk_import_repos.py --active-months 12 + + # Import only repos matching a pattern + python scripts/bulk_import_repos.py --filter "webmotors.*.ui" + + # After import, trigger ingestion + python scripts/full_ingestion.py +""" + +from __future__ import annotations + +import argparse +import json +import logging +import re +import sys +import time +from datetime import datetime, timedelta, timezone + +import httpx + +# ────────────────────────────────────────────────────────────── +# Configuration +# ────────────────────────────────────────────────────────────── + +DEVLAKE_API = "http://localhost:8080" +CONNECTION_ID = 1 +SCOPE_CONFIG_ID = 1 # "Webmotors Default" +ORG = "webmotors-private" +BATCH_SIZE = 50 # DevLake recommends batches of ~50 scopes per PUT + +logging.basicConfig( + level=logging.INFO, + format="%(asctime)s [%(levelname)s] %(message)s", + datefmt="%H:%M:%S", +) +log = logging.getLogger("bulk-import") + + +# ────────────────────────────────────────────────────────────── +# Helpers +# ────────────────────────────────────────────────────────────── + +def ok(msg: str) -> None: + log.info(f"\033[92m ✓ {msg}\033[0m") + +def warn(msg: str) -> None: + log.warning(f"\033[93m ⚠ {msg}\033[0m") + +def fail(msg: str) -> None: + log.error(f"\033[91m ✗ {msg}\033[0m") + +def header(msg: str) -> None: + log.info(f"\033[1m\033[96m{'─' * 60}\033[0m") + log.info(f"\033[1m\033[96m {msg}\033[0m") + log.info(f"\033[1m\033[96m{'─' * 60}\033[0m") + + +# ────────────────────────────────────────────────────────────── +# Step 1: Discover all repos from GitHub org via DevLake API +# ────────────────────────────────────────────────────────────── + +def discover_all_repos(client: httpx.Client) -> list[dict]: + """Paginate through all repos in the org via DevLake remote-scopes.""" + all_repos = [] + page_token = "" + page = 0 + + while True: + page += 1 + params: dict = {"groupId": ORG} + if page_token: + params["pageToken"] = page_token + + resp = client.get( + f"{DEVLAKE_API}/plugins/github/connections/{CONNECTION_ID}/remote-scopes", + params=params, + timeout=30, + ) + resp.raise_for_status() + data = resp.json() + children = data.get("children", []) + all_repos.extend(children) + + log.info(f" Page {page}: {len(children)} repos (total: {len(all_repos)})") + + next_token = data.get("nextPageToken", "") + if not next_token or not children: + break + page_token = next_token + + return all_repos + + +# ────────────────────────────────────────────────────────────── +# Step 2: Get already-imported scopes +# ────────────────────────────────────────────────────────────── + +def get_existing_scopes(client: httpx.Client) -> set[str]: + """Return set of fullName for repos already imported.""" + resp = client.get( + f"{DEVLAKE_API}/plugins/github/connections/{CONNECTION_ID}/scopes", + timeout=30, + ) + resp.raise_for_status() + data = resp.json() + scopes = data.get("scopes", []) + return {s["scope"]["fullName"] for s in scopes if "scope" in s} + + +# ────────────────────────────────────────────────────────────── +# Step 3: Filter repos +# ────────────────────────────────────────────────────────────── + +def filter_repos( + repos: list[dict], + existing: set[str], + *, + pattern: str | None = None, + active_months: int | None = None, + include_archived: bool = False, +) -> tuple[list[dict], dict[str, int]]: + """Filter repos and return (filtered_list, stats).""" + stats = { + "total_discovered": len(repos), + "already_imported": 0, + "archived": 0, + "pattern_excluded": 0, + "inactive": 0, + "selected": 0, + } + + filtered = [] + cutoff = None + if active_months: + cutoff = datetime.now(timezone.utc) - timedelta(days=active_months * 30) + + pattern_re = re.compile(pattern, re.IGNORECASE) if pattern else None + + for repo in repos: + full_name = repo.get("fullName", "") + name = repo.get("name", "") + repo_data = repo.get("data", {}) or {} + + # Skip already imported + if full_name in existing: + stats["already_imported"] += 1 + continue + + # Skip archived repos (check data.archived if available) + if not include_archived and repo_data.get("archived", False): + stats["archived"] += 1 + continue + + # Pattern filter + if pattern_re and not pattern_re.search(name) and not pattern_re.search(full_name): + stats["pattern_excluded"] += 1 + continue + + # Activity filter — check updatedDate from data + if cutoff: + updated = repo_data.get("updatedDate") or repo_data.get("updated_at") + if updated and updated != "0001-01-01T00:00:00Z": + try: + updated_dt = datetime.fromisoformat(updated.replace("Z", "+00:00")) + if updated_dt < cutoff: + stats["inactive"] += 1 + continue + except (ValueError, TypeError): + pass # Can't parse, include it + + filtered.append(repo) + stats["selected"] += 1 + + return filtered, stats + + +# ────────────────────────────────────────────────────────────── +# Step 4: Register repos as scopes in DevLake (batch PUT) +# ────────────────────────────────────────────────────────────── + +def register_scopes( + client: httpx.Client, + repos: list[dict], + dry_run: bool = False, +) -> int: + """Register repos as scopes in DevLake via PUT. + + DevLake's PUT /plugins/github/connections/:id/scopes + accepts a list of scope objects. We send in batches. + """ + total_registered = 0 + + for batch_start in range(0, len(repos), BATCH_SIZE): + batch = repos[batch_start : batch_start + BATCH_SIZE] + batch_num = (batch_start // BATCH_SIZE) + 1 + total_batches = (len(repos) + BATCH_SIZE - 1) // BATCH_SIZE + + # Build scope objects for DevLake + scope_objects = [] + for repo in batch: + scope_obj = { + "connectionId": CONNECTION_ID, + "githubId": int(repo["id"]), + "name": repo["name"], + "fullName": repo["fullName"], + "scopeConfigId": SCOPE_CONFIG_ID, + } + scope_objects.append(scope_obj) + + if dry_run: + log.info( + f" [DRY RUN] Batch {batch_num}/{total_batches}: " + f"would register {len(scope_objects)} repos" + ) + for s in scope_objects[:3]: + log.info(f" → {s['fullName']}") + if len(scope_objects) > 3: + log.info(f" ... and {len(scope_objects) - 3} more") + total_registered += len(scope_objects) + continue + + log.info( + f" Batch {batch_num}/{total_batches}: " + f"registering {len(scope_objects)} repos..." + ) + + try: + resp = client.put( + f"{DEVLAKE_API}/plugins/github/connections/{CONNECTION_ID}/scopes", + json={"data": scope_objects}, + timeout=60, + ) + if resp.status_code in (200, 201): + total_registered += len(scope_objects) + ok(f"Batch {batch_num} registered ({total_registered} total)") + else: + fail( + f"Batch {batch_num} failed: HTTP {resp.status_code} — " + f"{resp.text[:200]}" + ) + # Continue with next batch instead of failing completely + except httpx.HTTPError as e: + fail(f"Batch {batch_num} HTTP error: {e}") + + # Small delay between batches to be gentle on DevLake + if batch_start + BATCH_SIZE < len(repos): + time.sleep(1) + + return total_registered + + +# ────────────────────────────────────────────────────────────── +# Step 5: Update Blueprint to include all scopes +# ────────────────────────────────────────────────────────────── + +def update_blueprint_connections(client: httpx.Client, blueprint_id: int, dry_run: bool = False) -> bool: + """Ensure the blueprint's GitHub connection includes all registered scopes. + + DevLake blueprints reference scopes by their scope IDs. We need to + update the blueprint to include all the new scopes we just registered. + """ + # Get current blueprint + resp = client.get(f"{DEVLAKE_API}/blueprints/{blueprint_id}", timeout=30) + if resp.status_code != 200: + fail(f"Could not fetch blueprint {blueprint_id}: {resp.status_code}") + return False + + blueprint = resp.json() + log.info(f" Blueprint #{blueprint_id}: {blueprint.get('name', '?')}") + + # Get all currently registered scopes (paginate if needed) + all_scopes = [] + page = 1 + while True: + scopes_resp = client.get( + f"{DEVLAKE_API}/plugins/github/connections/{CONNECTION_ID}/scopes", + params={"page": page, "pageSize": 100}, + timeout=30, + ) + if scopes_resp.status_code != 200: + # Fallback: try without pagination params + scopes_resp = client.get( + f"{DEVLAKE_API}/plugins/github/connections/{CONNECTION_ID}/scopes", + timeout=30, + ) + scopes_resp.raise_for_status() + all_scopes = scopes_resp.json().get("scopes", []) + break + batch = scopes_resp.json().get("scopes", []) + if not batch: + break + all_scopes.extend(batch) + if len(batch) < 100: + break + page += 1 + + all_scope_ids = [str(s["scope"]["githubId"]) for s in all_scopes] + + log.info(f" Total registered scopes: {len(all_scope_ids)}") + + # Build updated connections config + # Blueprint settings format depends on DevLake version + settings = blueprint.get("settings", {}) + connections = settings.get("connections", []) + + github_conn = None + for conn in connections: + if conn.get("pluginName") == "github" and conn.get("connectionId") == CONNECTION_ID: + github_conn = conn + break + + if not github_conn: + warn(f"No GitHub connection found in blueprint {blueprint_id} — skipping") + return False + + current_scopes = github_conn.get("scopes", []) + current_scope_ids = {s.get("scopeId") for s in current_scopes} + + log.info(f" Current blueprint scopes: {len(current_scope_ids)}") + + # Build new scopes list — keep existing + add new + new_scope_entries = list(current_scopes) # Keep existing + added = 0 + for scope_id in all_scope_ids: + if scope_id not in current_scope_ids: + new_scope_entries.append({ + "scopeId": scope_id, + "entities": ["CODE", "CODE_REVIEW", "CROSS"], + }) + added += 1 + + if added == 0: + ok("Blueprint already has all scopes — no update needed") + return True + + log.info(f" Adding {added} new scopes to blueprint") + + if dry_run: + warn(f"DRY RUN — would update blueprint {blueprint_id} with {len(new_scope_entries)} total scopes") + return True + + # Update the blueprint + github_conn["scopes"] = new_scope_entries + + patch_resp = client.patch( + f"{DEVLAKE_API}/blueprints/{blueprint_id}", + json={ + "settings": settings, + }, + timeout=60, + ) + + if patch_resp.status_code == 200: + ok(f"Blueprint {blueprint_id} updated with {len(new_scope_entries)} scopes") + return True + else: + fail(f"Blueprint update failed: {patch_resp.status_code} — {patch_resp.text[:200]}") + return False + + +# ────────────────────────────────────────────────────────────── +# Main +# ────────────────────────────────────────────────────────────── + +def main(): + parser = argparse.ArgumentParser( + description="Bulk import GitHub repos into DevLake", + ) + parser.add_argument( + "--dry-run", + action="store_true", + help="Show what would be imported without making changes", + ) + parser.add_argument( + "--filter", + type=str, + default=None, + help="Regex pattern to filter repos by name (e.g. 'webmotors\\..*\\.ui')", + ) + parser.add_argument( + "--active-months", + type=int, + default=None, + help="Only import repos with activity in the last N months", + ) + parser.add_argument( + "--include-archived", + action="store_true", + help="Include archived repositories", + ) + parser.add_argument( + "--blueprint-id", + type=int, + default=1, + help="Blueprint ID to update with new scopes (default: 1)", + ) + parser.add_argument( + "--skip-blueprint", + action="store_true", + help="Don't update the blueprint after importing scopes", + ) + args = parser.parse_args() + + start = time.time() + + header("PULSE — Bulk GitHub Repo Import") + log.info(f" DevLake API: {DEVLAKE_API}") + log.info(f" Connection: #{CONNECTION_ID} (GitHub)") + log.info(f" Org: {ORG}") + log.info(f" Scope Config: #{SCOPE_CONFIG_ID} (Webmotors Default)") + log.info(f" Dry run: {args.dry_run}") + if args.filter: + log.info(f" Filter pattern: {args.filter}") + if args.active_months: + log.info(f" Active months: {args.active_months}") + log.info("") + + client = httpx.Client(timeout=30) + + # ── Step 1: Health check ── + header("Step 1/5 — Health Check") + try: + resp = client.get(f"{DEVLAKE_API}/ping", timeout=10) + resp.raise_for_status() + ok("DevLake API is healthy") + except Exception as e: + fail(f"DevLake API unreachable: {e}") + sys.exit(1) + + # ── Step 2: Discover all repos ── + header("Step 2/5 — Discover Repos from GitHub Org") + all_repos = discover_all_repos(client) + ok(f"Discovered {len(all_repos)} repos in {ORG}") + + # ── Step 3: Get existing + filter ── + header("Step 3/5 — Filter Repos") + existing = get_existing_scopes(client) + log.info(f" Already imported: {len(existing)} repos") + + filtered, stats = filter_repos( + all_repos, + existing, + pattern=args.filter, + active_months=args.active_months, + include_archived=args.include_archived, + ) + + log.info("") + log.info(" Filter Results:") + log.info(f" Total discovered: {stats['total_discovered']:>6}") + log.info(f" Already imported: {stats['already_imported']:>6}") + log.info(f" Archived (skip): {stats['archived']:>6}") + if args.filter: + log.info(f" Pattern excluded: {stats['pattern_excluded']:>6}") + if args.active_months: + log.info(f" Inactive (skip): {stats['inactive']:>6}") + log.info(f" ─────────────────────────") + log.info(f" To import: {stats['selected']:>6}") + + if not filtered: + ok("No new repos to import — all repos already registered") + return + + # Show sample of repos to import + log.info("") + log.info(" Sample repos to import:") + for repo in filtered[:10]: + log.info(f" → {repo['fullName']}") + if len(filtered) > 10: + log.info(f" ... and {len(filtered) - 10} more") + + # ── Step 4: Register scopes ── + header("Step 4/5 — Register Scopes in DevLake") + registered = register_scopes(client, filtered, dry_run=args.dry_run) + + if registered > 0: + ok(f"Registered {registered} new repos as DevLake scopes") + else: + warn("No repos were registered") + + # ── Step 5: Update Blueprint ── + if not args.skip_blueprint: + header("Step 5/5 — Update Blueprint") + update_blueprint_connections(client, args.blueprint_id, dry_run=args.dry_run) + else: + log.info(" Skipping blueprint update (--skip-blueprint)") + + # ── Summary ── + elapsed = int(time.time() - start) + header(f"Import Complete ({elapsed}s)") + log.info(f" Repos discovered: {len(all_repos)}") + log.info(f" Previously imported: {len(existing)}") + log.info(f" Newly registered: {registered}") + log.info(f" Total scopes: {len(existing) + registered}") + log.info("") + if not args.dry_run: + log.info(" Next steps:") + log.info(" 1. Trigger DevLake collection:") + log.info(f" python scripts/full_ingestion.py") + log.info(" 2. Or wait for the next scheduled Blueprint run") + log.info(f" Blueprint #{args.blueprint_id} runs every 15 min") + else: + log.info(" This was a DRY RUN — no changes were made.") + log.info(" Remove --dry-run to actually import.") + + client.close() + + +if __name__ == "__main__": + main() diff --git a/pulse/scripts/full_ingestion.py b/pulse/scripts/full_ingestion.py new file mode 100644 index 0000000..5df1814 --- /dev/null +++ b/pulse/scripts/full_ingestion.py @@ -0,0 +1,721 @@ +#!/usr/bin/env python3 +"""PULSE Full Ingestion Script. + +Orchestrates a complete data ingestion from all configured sources +(GitHub, Jira, Jenkins) through DevLake into the PULSE database. + +Key features: +- Resumable: DevLake pipelines checkpoint internally; PULSE watermarks + are stored in PostgreSQL. Safe to stop and restart. +- Idempotent: ON CONFLICT upserts guarantee no duplicates. +- Observable: Logs progress, record counts, and errors in real time. + +Usage: + # From pulse/ directory: + python scripts/full_ingestion.py + + # Or with options: + python scripts/full_ingestion.py --skip-devlake # Only sync PULSE (DevLake already has data) + python scripts/full_ingestion.py --reset-watermarks # Force full re-sync from DevLake to PULSE + python scripts/full_ingestion.py --blueprint-id 1 # Trigger specific blueprint only + python scripts/full_ingestion.py --dry-run # Show what would happen +""" + +from __future__ import annotations + +import argparse +import asyncio +import json +import logging +import os +import sys +import time +from datetime import datetime, timezone +from pathlib import Path +from typing import Any + +import httpx +import asyncpg + +# ── Logging ────────────────────────────────────────────────────────────────── + +logging.basicConfig( + level=logging.INFO, + format="%(asctime)s [%(levelname)s] %(message)s", + datefmt="%H:%M:%S", +) +log = logging.getLogger("full_ingestion") + +# ── Configuration ──────────────────────────────────────────────────────────── + +# DevLake API — the Gin server runs on 8080 inside the container, +# mapped to 8080 externally. The basePath is "/" (not "/api/"). +DEVLAKE_API = os.environ.get("DEVLAKE_API_URL", "http://localhost:8080") + +# DevLake PostgreSQL (read-only) +DEVLAKE_DB = os.environ.get( + "DEVLAKE_DB_URL", + "postgresql://devlake:devlake_dev@localhost:5433/lake", +) + +# PULSE PostgreSQL +PULSE_DB = os.environ.get( + "DATABASE_URL", + "postgresql://pulse:pulse_dev@localhost:5432/pulse", +) + +TENANT_ID = os.environ.get( + "DEFAULT_TENANT_ID", + "00000000-0000-0000-0000-000000000001", +) + +# Poll interval for DevLake pipeline status (seconds) +POLL_INTERVAL = 30 + +# Maximum retries for a failed DevLake pipeline +MAX_RETRIES = 3 + +# ── ANSI Colors ────────────────────────────────────────────────────────────── + +class C: + BOLD = "\033[1m" + GREEN = "\033[92m" + YELLOW = "\033[93m" + RED = "\033[91m" + CYAN = "\033[96m" + DIM = "\033[2m" + RESET = "\033[0m" + + +def banner(msg: str) -> None: + log.info(f"{C.BOLD}{C.CYAN}{'─' * 60}{C.RESET}") + log.info(f"{C.BOLD}{C.CYAN} {msg}{C.RESET}") + log.info(f"{C.BOLD}{C.CYAN}{'─' * 60}{C.RESET}") + + +def ok(msg: str) -> None: + log.info(f"{C.GREEN} ✓ {msg}{C.RESET}") + + +def warn(msg: str) -> None: + log.warning(f"{C.YELLOW} ⚠ {msg}{C.RESET}") + + +def fail(msg: str) -> None: + log.error(f"{C.RED} ✗ {msg}{C.RESET}") + + +def info(msg: str) -> None: + log.info(f" {msg}") + + +# ═══════════════════════════════════════════════════════════════════════════ +# STEP 1 — Health checks +# ═══════════════════════════════════════════════════════════════════════════ + + +async def check_devlake_health(client: httpx.AsyncClient) -> bool: + """Verify DevLake API is reachable and responding.""" + try: + r = await client.get(f"{DEVLAKE_API}/ping", timeout=10) + if r.status_code == 200: + ok("DevLake API is healthy") + return True + # Try alternate path + r = await client.get(f"{DEVLAKE_API}/health", timeout=10) + if r.status_code == 200: + ok("DevLake API is healthy") + return True + except Exception as e: + fail(f"DevLake API unreachable: {e}") + return False + + +async def check_devlake_db() -> bool: + """Verify DevLake PostgreSQL is reachable.""" + try: + conn = await asyncpg.connect(DEVLAKE_DB) + result = await conn.fetchval("SELECT COUNT(*) FROM pull_requests") + await conn.close() + ok(f"DevLake DB is healthy — {result:,} pull_requests") + return True + except Exception as e: + fail(f"DevLake DB unreachable: {e}") + return False + + +async def check_pulse_db() -> bool: + """Verify PULSE PostgreSQL is reachable.""" + try: + conn = await asyncpg.connect(PULSE_DB) + # Test with RLS context + await conn.execute(f"SET app.current_tenant = '{TENANT_ID}'") + result = await conn.fetchval( + "SELECT COUNT(*) FROM eng_pull_requests WHERE tenant_id = $1::uuid", + TENANT_ID, + ) + await conn.close() + ok(f"PULSE DB is healthy — {result:,} eng_pull_requests") + return True + except Exception as e: + fail(f"PULSE DB unreachable: {e}") + return False + + +# ═══════════════════════════════════════════════════════════════════════════ +# STEP 2 — Inventory: list what DevLake has configured +# ═══════════════════════════════════════════════════════════════════════════ + + +async def get_inventory(client: httpx.AsyncClient) -> dict[str, Any]: + """Fetch all connections, scopes, and blueprints from DevLake.""" + inventory: dict[str, Any] = {"connections": {}, "blueprints": []} + + for plugin, conn_id in [("github", 1), ("jira", 2), ("jenkins", 1)]: + try: + r = await client.get(f"{DEVLAKE_API}/plugins/{plugin}/connections/{conn_id}/scopes") + if r.status_code == 200: + data = r.json() + scopes = data.get("scopes", data) if isinstance(data, dict) else data + inventory["connections"][plugin] = { + "connectionId": conn_id, + "scopeCount": len(scopes) if isinstance(scopes, list) else data.get("count", 0), + "scopes": scopes if isinstance(scopes, list) else [], + } + ok(f"{plugin}: {inventory['connections'][plugin]['scopeCount']} scopes configured") + else: + warn(f"{plugin}: connection {conn_id} returned HTTP {r.status_code}") + except Exception as e: + warn(f"{plugin}: could not fetch scopes — {e}") + + try: + r = await client.get(f"{DEVLAKE_API}/blueprints") + if r.status_code == 200: + data = r.json() + bps = data.get("blueprints", data) if isinstance(data, dict) else data + inventory["blueprints"] = bps if isinstance(bps, list) else [] + for bp in inventory["blueprints"]: + status = "enabled" if bp.get("enable") else "disabled" + ok(f"Blueprint #{bp['id']}: {bp['name']} ({status}, cron: {bp.get('cronConfig', 'manual')})") + except Exception as e: + warn(f"Could not fetch blueprints: {e}") + + return inventory + + +# ═══════════════════════════════════════════════════════════════════════════ +# STEP 3 — Trigger DevLake pipelines and monitor progress +# ═══════════════════════════════════════════════════════════════════════════ + + +async def check_running_pipelines(client: httpx.AsyncClient) -> list[dict]: + """Check if there are any currently running DevLake pipelines.""" + try: + r = await client.get(f"{DEVLAKE_API}/pipelines", params={"pageSize": 5, "page": 1}) + if r.status_code == 200: + data = r.json() + pipelines = data.get("pipelines", []) + running = [p for p in pipelines if p.get("status") == "TASK_RUNNING"] + return running + except Exception: + pass + return [] + + +async def trigger_blueprint( + client: httpx.AsyncClient, + blueprint_id: int, + blueprint_name: str, +) -> int | None: + """Trigger a DevLake blueprint and return the pipeline ID.""" + try: + r = await client.post( + f"{DEVLAKE_API}/blueprints/{blueprint_id}/trigger", + timeout=30, + ) + if r.status_code in (200, 201): + data = r.json() + pipeline_id = data.get("id") + ok(f"Triggered blueprint '{blueprint_name}' → pipeline #{pipeline_id}") + return pipeline_id + else: + fail(f"Failed to trigger blueprint #{blueprint_id}: HTTP {r.status_code} — {r.text[:200]}") + except Exception as e: + fail(f"Error triggering blueprint #{blueprint_id}: {e}") + return None + + +async def wait_for_pipeline( + client: httpx.AsyncClient, + pipeline_id: int, + blueprint_name: str, +) -> str: + """Poll DevLake pipeline status until it completes or fails. + + Returns the final status: TASK_COMPLETED, TASK_PARTIAL, TASK_FAILED, TASK_CANCELLED. + """ + start_time = time.monotonic() + last_log_time = 0.0 + spinner = ["⠋", "⠙", "⠹", "⠸", "⠼", "⠴", "⠦", "⠧", "⠇", "⠏"] + spin_idx = 0 + + while True: + try: + r = await client.get(f"{DEVLAKE_API}/pipelines/{pipeline_id}") + if r.status_code == 200: + data = r.json() + status = data.get("status", "UNKNOWN") + elapsed = time.monotonic() - start_time + elapsed_str = _format_duration(elapsed) + + if status in ("TASK_COMPLETED", "TASK_PARTIAL", "TASK_FAILED", "TASK_CANCELLED"): + icon = "✓" if status == "TASK_COMPLETED" else "⚠" if status == "TASK_PARTIAL" else "✗" + color = C.GREEN if status == "TASK_COMPLETED" else C.YELLOW if status == "TASK_PARTIAL" else C.RED + log.info(f"{color} {icon} Pipeline #{pipeline_id} ({blueprint_name}): {status} in {elapsed_str}{C.RESET}") + return status + + # Log progress every 60s + if elapsed - last_log_time >= 60: + # Try to get task details + tasks_info = "" + try: + tr = await client.get(f"{DEVLAKE_API}/pipelines/{pipeline_id}/tasks") + if tr.status_code == 200: + tasks = tr.json() + if isinstance(tasks, list): + active = [t for t in tasks if t.get("status") == "TASK_RUNNING"] + if active: + subtask = active[0].get("subtaskName", "") + plugin = active[0].get("plugin", "") + tasks_info = f" [{plugin}: {subtask}]" + except Exception: + pass + + s = spinner[spin_idx % len(spinner)] + spin_idx += 1 + info(f"{s} Pipeline #{pipeline_id}: {status} — {elapsed_str} elapsed{tasks_info}") + last_log_time = elapsed + + except Exception as e: + warn(f"Error polling pipeline #{pipeline_id}: {e}") + + await asyncio.sleep(POLL_INTERVAL) + + +async def run_devlake_ingestion( + client: httpx.AsyncClient, + blueprints: list[dict], + specific_blueprint_id: int | None = None, +) -> dict[int, str]: + """Run DevLake blueprints and wait for completion. + + Returns a dict of {blueprint_id: final_status}. + """ + results: dict[int, str] = {} + + # Check for already running pipelines + running = await check_running_pipelines(client) + if running: + warn(f"{len(running)} pipeline(s) already running — waiting for completion first") + for p in running: + status = await wait_for_pipeline(client, p["id"], f"existing-#{p['id']}") + info(f"Existing pipeline #{p['id']} finished: {status}") + + # Filter blueprints + targets = blueprints + if specific_blueprint_id: + targets = [bp for bp in blueprints if bp["id"] == specific_blueprint_id] + if not targets: + fail(f"Blueprint #{specific_blueprint_id} not found") + return results + + # Trigger each blueprint sequentially (DevLake processes one at a time) + for bp in targets: + bp_id = bp["id"] + bp_name = bp["name"] + banner(f"DevLake: Triggering '{bp_name}' (#{bp_id})") + + retries = 0 + while retries < MAX_RETRIES: + pipeline_id = await trigger_blueprint(client, bp_id, bp_name) + if not pipeline_id: + fail(f"Could not trigger blueprint '{bp_name}' — skipping") + results[bp_id] = "TRIGGER_FAILED" + break + + status = await wait_for_pipeline(client, pipeline_id, bp_name) + results[bp_id] = status + + if status in ("TASK_COMPLETED", "TASK_PARTIAL"): + break + elif status == "TASK_FAILED" and retries < MAX_RETRIES - 1: + retries += 1 + warn(f"Pipeline failed — retrying ({retries}/{MAX_RETRIES})...") + await asyncio.sleep(10) + else: + break + + return results + + +# ═══════════════════════════════════════════════════════════════════════════ +# STEP 4 — Record counts in DevLake DB +# ═══════════════════════════════════════════════════════════════════════════ + + +async def get_devlake_counts() -> dict[str, int]: + """Get record counts from DevLake domain tables.""" + counts: dict[str, int] = {} + tables = { + "pull_requests": "pull_requests", + "issues": "issues", + "deployments": "cicd_deployment_commits", + "sprints": "sprints", + "issue_changelogs": "issue_changelogs", + } + try: + conn = await asyncpg.connect(DEVLAKE_DB) + for name, table in tables.items(): + try: + result = await conn.fetchval(f"SELECT COUNT(*) FROM {table}") + counts[name] = result or 0 + except Exception: + counts[name] = 0 + await conn.close() + except Exception as e: + warn(f"Could not query DevLake DB: {e}") + return counts + + +# ═══════════════════════════════════════════════════════════════════════════ +# STEP 5 — Reset PULSE watermarks (optional) +# ═══════════════════════════════════════════════════════════════════════════ + + +async def reset_pulse_watermarks() -> None: + """Delete all watermarks to force a full re-sync from DevLake to PULSE.""" + try: + conn = await asyncpg.connect(PULSE_DB) + deleted = await conn.execute( + "DELETE FROM pipeline_watermarks WHERE tenant_id = $1::uuid", + TENANT_ID, + ) + await conn.close() + ok(f"Watermarks reset: {deleted}") + except Exception as e: + warn(f"Could not reset watermarks: {e}") + + +# ═══════════════════════════════════════════════════════════════════════════ +# STEP 6 — Trigger sync worker (DevLake → PULSE DB → Kafka) +# ═══════════════════════════════════════════════════════════════════════════ + + +async def trigger_sync_worker() -> bool: + """Trigger the PULSE sync worker via direct import. + + The sync worker reads from DevLake DB, normalizes, upserts to PULSE DB, + and publishes to Kafka topics. + """ + info("Starting PULSE sync worker cycle...") + + try: + # Add project root to path + project_root = Path(__file__).resolve().parent.parent / "packages" / "pulse-data" + sys.path.insert(0, str(project_root)) + + # Set env vars for the worker + os.environ.setdefault("DATABASE_URL", PULSE_DB.replace("postgresql://", "postgresql+asyncpg://")) + os.environ.setdefault("DEVLAKE_DB_URL", DEVLAKE_DB) + os.environ.setdefault("KAFKA_BROKERS", os.environ.get("KAFKA_BROKERS", "localhost:9092")) + os.environ.setdefault("DEFAULT_TENANT_ID", TENANT_ID) + + from src.workers.devlake_sync import DevLakeSyncWorker + + worker = DevLakeSyncWorker() + try: + results = await worker.sync() + ok(f"Sync worker cycle completed: {results}") + finally: + await worker.close() + return True + except ImportError: + warn("Could not import sync worker — running via Docker instead") + return await trigger_sync_worker_docker() + except Exception as e: + fail(f"Sync worker error: {e}") + return False + + +async def trigger_sync_worker_docker() -> bool: + """Trigger sync worker via docker compose exec.""" + import subprocess + + compose_file = Path(__file__).resolve().parent.parent / "docker-compose.yml" + cmd = [ + "docker", "compose", "-f", str(compose_file), + "exec", "-T", "sync-worker", + "python", "-c", + "import asyncio\nasync def _run():\n from src.workers.devlake_sync import DevLakeSyncWorker\n w = DevLakeSyncWorker()\n try:\n r = await w.sync()\n print(f'Sync results: {r}')\n finally:\n await w.close()\nasyncio.run(_run())", + ] + + info("Triggering sync via Docker container...") + try: + result = subprocess.run( + cmd, + capture_output=True, + text=True, + timeout=600, # 10 minute timeout + ) + if result.returncode == 0: + ok("Docker sync worker cycle completed") + return True + else: + fail(f"Docker sync failed: {result.stderr[:300]}") + return False + except subprocess.TimeoutExpired: + warn("Sync worker timed out (10 min) — will continue on next cycle") + return False + except Exception as e: + fail(f"Docker exec error: {e}") + return False + + +# ═══════════════════════════════════════════════════════════════════════════ +# STEP 7 — Final counts and validation +# ═══════════════════════════════════════════════════════════════════════════ + + +async def get_pulse_counts() -> dict[str, int]: + """Get record counts from PULSE domain tables.""" + counts: dict[str, int] = {} + tables = { + "pull_requests": "eng_pull_requests", + "issues": "eng_issues", + "deployments": "eng_deployments", + "sprints": "eng_sprints", + } + try: + conn = await asyncpg.connect(PULSE_DB) + for name, table in tables.items(): + try: + result = await conn.fetchval( + f"SELECT COUNT(*) FROM {table} WHERE tenant_id = $1::uuid", + TENANT_ID, + ) + counts[name] = result or 0 + except Exception: + counts[name] = 0 + await conn.close() + except Exception as e: + warn(f"Could not query PULSE DB: {e}") + return counts + + +def print_comparison(devlake: dict[str, int], pulse: dict[str, int]) -> None: + """Print a comparison table of DevLake vs PULSE record counts.""" + banner("Final Record Count Comparison") + header = f" {'Entity':<20} {'DevLake':>10} {'PULSE':>10} {'Delta':>10} {'Status':>10}" + info(header) + info(" " + "─" * 62) + + total_dl = 0 + total_pl = 0 + all_synced = True + + for entity in ["pull_requests", "issues", "deployments", "sprints"]: + dl = devlake.get(entity, 0) + pl = pulse.get(entity, 0) + delta = dl - pl + total_dl += dl + total_pl += pl + + if abs(delta) <= 5: + status = f"{C.GREEN}✓ synced{C.RESET}" + elif delta > 0: + status = f"{C.YELLOW}⚠ behind{C.RESET}" + all_synced = False + else: + status = f"{C.CYAN}↑ ahead{C.RESET}" + + info(f" {entity:<20} {dl:>10,} {pl:>10,} {delta:>+10,} {status}") + + info(" " + "─" * 62) + info(f" {'TOTAL':<20} {total_dl:>10,} {total_pl:>10,} {total_dl - total_pl:>+10,}") + + if all_synced: + ok("All entities are in sync!") + else: + warn("Some entities have pending records — the sync worker will catch up on next cycle (15 min)") + + +# ═══════════════════════════════════════════════════════════════════════════ +# Utilities +# ═══════════════════════════════════════════════════════════════════════════ + + +def _format_duration(seconds: float) -> str: + """Format seconds into human-readable duration.""" + if seconds < 60: + return f"{seconds:.0f}s" + elif seconds < 3600: + return f"{seconds / 60:.1f}m" + else: + h = int(seconds // 3600) + m = int((seconds % 3600) // 60) + return f"{h}h {m}m" + + +# ═══════════════════════════════════════════════════════════════════════════ +# MAIN ORCHESTRATOR +# ═══════════════════════════════════════════════════════════════════════════ + + +async def main(args: argparse.Namespace) -> None: + started_at = time.monotonic() + + banner("PULSE Full Ingestion — Starting") + info(f"DevLake API: {DEVLAKE_API}") + info(f"DevLake DB: {DEVLAKE_DB.split('@')[1] if '@' in DEVLAKE_DB else DEVLAKE_DB}") + info(f"PULSE DB: {PULSE_DB.split('@')[1] if '@' in PULSE_DB else PULSE_DB}") + info(f"Tenant: {TENANT_ID}") + info(f"Dry run: {args.dry_run}") + info("") + + # ── Step 1: Health checks ── + banner("Step 1/7 — Health Checks") + + async with httpx.AsyncClient(timeout=30) as client: + devlake_ok = await check_devlake_health(client) + if not devlake_ok: + # Try with /health or just assume it's OK if we can reach blueprints + try: + r = await client.get(f"{DEVLAKE_API}/blueprints") + devlake_ok = r.status_code == 200 + if devlake_ok: + ok("DevLake API responded on /blueprints") + except Exception: + pass + + devlake_db_ok = await check_devlake_db() + pulse_db_ok = await check_pulse_db() + + if not devlake_db_ok or not pulse_db_ok: + fail("Required databases are not reachable. Aborting.") + sys.exit(1) + + # ── Step 2: Inventory ── + banner("Step 2/7 — DevLake Inventory") + + async with httpx.AsyncClient(timeout=30) as client: + inventory = await get_inventory(client) + + if not inventory["blueprints"]: + fail("No blueprints found in DevLake. Configure blueprints first.") + sys.exit(1) + + # ── Step 3: DevLake ingestion (API → DevLake DB) ── + if not args.skip_devlake: + banner("Step 3/7 — DevLake Data Collection (API → DevLake DB)") + info("This step pulls data from GitHub/Jira/Jenkins APIs into DevLake.") + info("It may take 2-8 hours depending on data volume.") + info("Safe to interrupt — DevLake checkpoints internally.") + info("") + + if args.dry_run: + warn("DRY RUN — skipping DevLake trigger") + else: + async with httpx.AsyncClient(timeout=60) as client: + results = await run_devlake_ingestion( + client, + inventory["blueprints"], + specific_blueprint_id=args.blueprint_id, + ) + for bp_id, status in results.items(): + if status in ("TASK_COMPLETED", "TASK_PARTIAL"): + ok(f"Blueprint #{bp_id}: {status}") + else: + fail(f"Blueprint #{bp_id}: {status}") + else: + info("Skipping DevLake collection (--skip-devlake)") + + # ── Step 4: DevLake record counts ── + banner("Step 4/7 — DevLake Record Counts") + devlake_counts = await get_devlake_counts() + for entity, count in sorted(devlake_counts.items()): + info(f" {entity:<25} {count:>10,}") + + # ── Step 5: Reset watermarks (optional) ── + if args.reset_watermarks: + banner("Step 5/7 — Reset PULSE Watermarks") + if args.dry_run: + warn("DRY RUN — would reset watermarks") + else: + await reset_pulse_watermarks() + else: + info("Step 5/7 — Keeping existing watermarks (incremental sync)") + + # ── Step 6: Sync worker (DevLake DB → PULSE DB → Kafka) ── + banner("Step 6/7 — PULSE Sync (DevLake → PULSE DB → Kafka)") + info("Syncing records from DevLake DB into PULSE with normalization...") + + if args.dry_run: + warn("DRY RUN — skipping sync worker") + else: + success = await trigger_sync_worker() + if not success: + warn("Sync worker had issues — records may catch up in next scheduled cycle (15 min)") + + # ── Step 7: Final validation ── + banner("Step 7/7 — Validation") + devlake_final = await get_devlake_counts() + pulse_final = await get_pulse_counts() + print_comparison(devlake_final, pulse_final) + + # ── Summary ── + elapsed = time.monotonic() - started_at + banner(f"PULSE Full Ingestion — Complete ({_format_duration(elapsed)})") + info(f"DevLake records: {sum(devlake_final.get(e, 0) for e in ['pull_requests', 'issues', 'deployments', 'sprints']):,}") + info(f"PULSE records: {sum(pulse_final.values()):,}") + info("") + info("Next steps:") + info(" • The sync worker runs every 15 min and will catch any remaining delta") + info(" • The metrics worker consumes Kafka events and recalculates DORA/Lean/Sprint metrics") + info(" • Check Pipeline Monitor at http://localhost:5173/pipeline-monitor") + + +def parse_args() -> argparse.Namespace: + parser = argparse.ArgumentParser( + description="PULSE Full Ingestion — Orchestrate complete data collection", + ) + parser.add_argument( + "--skip-devlake", + action="store_true", + help="Skip DevLake collection phase (only sync DevLake → PULSE)", + ) + parser.add_argument( + "--reset-watermarks", + action="store_true", + help="Reset PULSE watermarks to force full re-sync from DevLake", + ) + parser.add_argument( + "--blueprint-id", + type=int, + default=None, + help="Trigger only a specific blueprint ID", + ) + parser.add_argument( + "--dry-run", + action="store_true", + help="Show what would happen without making changes", + ) + return parser.parse_args() + + +if __name__ == "__main__": + args = parse_args() + try: + asyncio.run(main(args)) + except KeyboardInterrupt: + log.info(f"\n{C.YELLOW}Interrupted by user. Safe to re-run — all progress is checkpointed.{C.RESET}") + sys.exit(130) From c9b5cf6797bd44f30e8e8d5e62a1a7657e559a7c Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Thu, 9 Apr 2026 18:14:44 -0300 Subject: [PATCH 02/64] feat: replace DevLake with direct source connectors (ADR-005) New: connectors/{base,github,jira,jenkins,aggregator}.py, shared/http_client.py Modified: devlake_sync.py -> DataSyncWorker, normalizer.py, config.py, routes.py Removed: devlake + devlake-pg from docker-compose.yml Resolves: Jira API v2 deprecation, PG migration failures, 99.3% data loss Co-Authored-By: Claude Opus 4.6 --- pulse/docker-compose.yml | 69 +-- pulse/packages/pulse-data/src/config.py | 33 +- .../pulse-data/src/connectors/__init__.py | 11 + .../pulse-data/src/connectors/aggregator.py | 204 +++++++ .../pulse-data/src/connectors/base.py | 139 +++++ .../src/connectors/github_connector.py | 368 +++++++++++++ .../src/connectors/jenkins_connector.py | 303 +++++++++++ .../src/connectors/jira_connector.py | 505 ++++++++++++++++++ .../contexts/engineering_data/normalizer.py | 26 +- .../src/contexts/pipeline/routes.py | 142 ++--- .../pulse-data/src/shared/http_client.py | 289 ++++++++++ .../pulse-data/src/workers/devlake_sync.py | 84 ++- 12 files changed, 2012 insertions(+), 161 deletions(-) create mode 100644 pulse/packages/pulse-data/src/connectors/__init__.py create mode 100644 pulse/packages/pulse-data/src/connectors/aggregator.py create mode 100644 pulse/packages/pulse-data/src/connectors/base.py create mode 100644 pulse/packages/pulse-data/src/connectors/github_connector.py create mode 100644 pulse/packages/pulse-data/src/connectors/jenkins_connector.py create mode 100644 pulse/packages/pulse-data/src/connectors/jira_connector.py create mode 100644 pulse/packages/pulse-data/src/shared/http_client.py diff --git a/pulse/docker-compose.yml b/pulse/docker-compose.yml index bc321ad..f8e472b 100644 --- a/pulse/docker-compose.yml +++ b/pulse/docker-compose.yml @@ -1,5 +1,5 @@ ############################################################################## -# PULSE — Local Development Stack +# PULSE — Local Development Stack (v2 — Custom Connectors, no DevLake) # Run: docker compose up -d (or: make up) # Frontend runs OUTSIDE Docker: cd packages/pulse-web && npm run dev ############################################################################## @@ -20,9 +20,10 @@ services: DATABASE_URL: postgresql://${POSTGRES_USER:-pulse}:${POSTGRES_PASSWORD:-pulse_dev}@postgres:5432/${POSTGRES_DB:-pulse} REDIS_URL: redis://redis:6379 KAFKA_BROKERS: kafka:29092 - DEVLAKE_API_URL: http://devlake:8080 GITHUB_TOKEN: ${GITHUB_TOKEN:-} + GITHUB_ORG: ${GITHUB_ORG:-webmotors-private} GITLAB_TOKEN: ${GITLAB_TOKEN:-} + JIRA_BASE_URL: ${JIRA_BASE_URL:-} JIRA_API_TOKEN: ${JIRA_API_TOKEN:-} JIRA_EMAIL: ${JIRA_EMAIL:-} AZURE_DEVOPS_PAT: ${AZURE_DEVOPS_PAT:-} @@ -50,10 +51,18 @@ services: - "${PULSE_DATA_PORT:-8000}:8000" environment: DATABASE_URL: postgresql://${POSTGRES_USER:-pulse}:${POSTGRES_PASSWORD:-pulse_dev}@postgres:5432/${POSTGRES_DB:-pulse} - DEVLAKE_DB_URL: postgresql://${DEVLAKE_PG_USER:-devlake}:${DEVLAKE_PG_PASSWORD:-devlake_dev}@devlake-pg:5432/${DEVLAKE_PG_DB:-lake} - DEVLAKE_API_URL: http://devlake:8080 KAFKA_BROKERS: kafka:29092 ENVIRONMENT: development + # Source API credentials (connectors read directly from APIs) + GITHUB_TOKEN: ${GITHUB_TOKEN:-} + GITHUB_ORG: ${GITHUB_ORG:-webmotors-private} + JIRA_BASE_URL: ${JIRA_BASE_URL:-} + JIRA_EMAIL: ${JIRA_EMAIL:-} + JIRA_API_TOKEN: ${JIRA_API_TOKEN:-} + JIRA_PROJECTS: ${JIRA_PROJECTS:-DESC,ENO,ANCR,PUSO,APPF,FID,CTURBO,PTURB} + JENKINS_BASE_URL: ${JENKINS_BASE_URL:-} + JENKINS_USERNAME: ${JENKINS_USERNAME:-} + JENKINS_API_TOKEN: ${JENKINS_API_TOKEN:-} volumes: - ./packages/pulse-data/src:/app/src depends_on: @@ -61,8 +70,6 @@ services: condition: service_healthy kafka: condition: service_healthy - devlake-pg: - condition: service_healthy restart: unless-stopped # -------------------------------------------------------------------------- @@ -76,9 +83,18 @@ services: command: python -m src.workers.devlake_sync environment: DATABASE_URL: postgresql://${POSTGRES_USER:-pulse}:${POSTGRES_PASSWORD:-pulse_dev}@postgres:5432/${POSTGRES_DB:-pulse} - DEVLAKE_DB_URL: postgresql://${DEVLAKE_PG_USER:-devlake}:${DEVLAKE_PG_PASSWORD:-devlake_dev}@devlake-pg:5432/${DEVLAKE_PG_DB:-lake} KAFKA_BROKERS: kafka:29092 ENVIRONMENT: development + # Source API credentials + GITHUB_TOKEN: ${GITHUB_TOKEN:-} + GITHUB_ORG: ${GITHUB_ORG:-webmotors-private} + JIRA_BASE_URL: ${JIRA_BASE_URL:-} + JIRA_EMAIL: ${JIRA_EMAIL:-} + JIRA_API_TOKEN: ${JIRA_API_TOKEN:-} + JIRA_PROJECTS: ${JIRA_PROJECTS:-DESC,ENO,ANCR,PUSO,APPF,FID,CTURBO,PTURB} + JENKINS_BASE_URL: ${JENKINS_BASE_URL:-} + JENKINS_USERNAME: ${JENKINS_USERNAME:-} + JENKINS_API_TOKEN: ${JENKINS_API_TOKEN:-} volumes: - ./packages/pulse-data/src:/app/src depends_on: @@ -86,8 +102,6 @@ services: condition: service_healthy kafka: condition: service_healthy - devlake: - condition: service_started restart: unless-stopped metrics-worker: @@ -171,43 +185,6 @@ services: start_period: 30s restart: unless-stopped - # -------------------------------------------------------------------------- - # DevLake - # -------------------------------------------------------------------------- - devlake: - image: apache/devlake:v1.0.3-beta7 - container_name: pulse-devlake - ports: - - "${DEVLAKE_PORT:-8080}:8080" - - "${DEVLAKE_API_PORT:-4000}:4000" - environment: - DB_URL: postgresql://${DEVLAKE_PG_USER:-devlake}:${DEVLAKE_PG_PASSWORD:-devlake_dev}@devlake-pg:5432/${DEVLAKE_PG_DB:-lake}?sslmode=disable - ENCRYPTION_SECRET: ${DEVLAKE_ENCRYPTION_SECRET:-abcdefghijklmnop} - depends_on: - devlake-pg: - condition: service_healthy - restart: unless-stopped - - devlake-pg: - image: postgres:16-alpine - container_name: pulse-devlake-pg - ports: - - "${DEVLAKE_PG_PORT:-5433}:5432" - environment: - POSTGRES_DB: ${DEVLAKE_PG_DB:-lake} - POSTGRES_USER: ${DEVLAKE_PG_USER:-devlake} - POSTGRES_PASSWORD: ${DEVLAKE_PG_PASSWORD:-devlake_dev} - volumes: - - devlake_pgdata:/var/lib/postgresql/data - healthcheck: - test: ["CMD-SHELL", "pg_isready -U ${DEVLAKE_PG_USER:-devlake} -d ${DEVLAKE_PG_DB:-lake}"] - interval: 5s - timeout: 5s - retries: 5 - restart: unless-stopped - volumes: pgdata: driver: local - devlake_pgdata: - driver: local diff --git a/pulse/packages/pulse-data/src/config.py b/pulse/packages/pulse-data/src/config.py index 4a482f7..1c08659 100644 --- a/pulse/packages/pulse-data/src/config.py +++ b/pulse/packages/pulse-data/src/config.py @@ -22,11 +22,29 @@ class Settings(BaseSettings): # Kafka kafka_brokers: str = "localhost:9092" - # DevLake PostgreSQL (read-only, used by sync worker) - devlake_db_url: str = "postgresql://devlake:devlake@localhost:5432/lake" + # DevLake PostgreSQL (DEPRECATED — kept for migration period only) + devlake_db_url: str = "" - # DevLake REST API (read-only, used by pipeline monitor) - devlake_api_url: str = "http://localhost:4000" + # DevLake REST API (DEPRECATED — kept for migration period only) + devlake_api_url: str = "" + + # ---- Source API Connectors (replaces DevLake) ---- + + # GitHub + github_token: str = "" + github_org: str = "webmotors-private" + github_api_url: str = "https://api.github.com" + + # Jira Cloud + jira_base_url: str = "" + jira_email: str = "" + jira_api_token: str = "" + jira_projects: str = "" # Comma-separated project keys (e.g., "DESC,ENO,ANCR") + + # Jenkins + jenkins_base_url: str = "" + jenkins_username: str = "" + jenkins_api_token: str = "" # Redis redis_url: str = "redis://localhost:6379" @@ -52,6 +70,13 @@ def async_database_url(self) -> str: def kafka_broker_list(self) -> list[str]: return [b.strip() for b in self.kafka_brokers.split(",")] + @property + def jira_project_list(self) -> list[str]: + """Parse comma-separated Jira project keys.""" + if not self.jira_projects: + return [] + return [p.strip() for p in self.jira_projects.split(",") if p.strip()] + # Singleton — imported across the app settings = Settings() diff --git a/pulse/packages/pulse-data/src/connectors/__init__.py b/pulse/packages/pulse-data/src/connectors/__init__.py new file mode 100644 index 0000000..0c882a5 --- /dev/null +++ b/pulse/packages/pulse-data/src/connectors/__init__.py @@ -0,0 +1,11 @@ +"""Source connectors — fetch data directly from GitHub, Jira, Jenkins APIs. + +Replaces the DevLake intermediate layer with direct API access. +Each connector implements BaseConnector and returns dicts compatible +with the existing normalizer (same field names as DevLake domain tables). +""" + +from src.connectors.base import BaseConnector +from src.connectors.aggregator import ConnectorAggregator + +__all__ = ["BaseConnector", "ConnectorAggregator"] diff --git a/pulse/packages/pulse-data/src/connectors/aggregator.py b/pulse/packages/pulse-data/src/connectors/aggregator.py new file mode 100644 index 0000000..af223ae --- /dev/null +++ b/pulse/packages/pulse-data/src/connectors/aggregator.py @@ -0,0 +1,204 @@ +"""Connector Aggregator — merges data from multiple source connectors. + +Provides the same interface that DevLakeReader had, so the sync worker +can swap data sources without changing its watermark/upsert/kafka logic. + +The aggregator routes each fetch call to the appropriate connector: +- pull_requests → GitHub (or GitLab in the future) +- issues, changelogs, sprints → Jira +- deployments → Jenkins (or GitHub Actions in the future) +""" + +from __future__ import annotations + +import logging +from datetime import datetime +from typing import Any + +from src.connectors.base import BaseConnector + +logger = logging.getLogger(__name__) + + +class ConnectorAggregator: + """Aggregates data from multiple source connectors into a unified interface. + + Drop-in replacement for DevLakeReader — the sync worker calls the same + methods (fetch_pull_requests, fetch_issues, etc.) and gets back dicts + in the same format the normalizer expects. + + Usage: + aggregator = ConnectorAggregator(connectors=[github, jira, jenkins]) + prs = await aggregator.fetch_pull_requests(since=watermark) + """ + + def __init__(self, connectors: list[BaseConnector]) -> None: + self._connectors: dict[str, BaseConnector] = {} + for connector in connectors: + self._connectors[connector.source_type] = connector + logger.info("Registered connector: %s", connector.source_type) + + @property + def connector_types(self) -> list[str]: + """Return list of registered connector source types.""" + return list(self._connectors.keys()) + + def get_connector(self, source_type: str) -> BaseConnector | None: + """Get a specific connector by source type.""" + return self._connectors.get(source_type) + + # ------------------------------------------------------------------ + # Unified fetch methods — same signatures as DevLakeReader + # ------------------------------------------------------------------ + + async def fetch_pull_requests( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch PRs from all code-hosting connectors (GitHub, GitLab).""" + all_prs: list[dict[str, Any]] = [] + for source in ("github", "gitlab", "azure"): + connector = self._connectors.get(source) + if connector: + try: + prs = await connector.fetch_pull_requests(since) + all_prs.extend(prs) + logger.info("Fetched %d PRs from %s", len(prs), source) + except Exception: + logger.exception("Error fetching PRs from %s", source) + return all_prs + + async def fetch_issues( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch issues from all work-tracking connectors (Jira, GitHub Issues).""" + all_issues: list[dict[str, Any]] = [] + for source in ("jira", "github", "azure"): + connector = self._connectors.get(source) + if connector: + try: + issues = await connector.fetch_issues(since) + all_issues.extend(issues) + logger.info("Fetched %d issues from %s", len(issues), source) + except Exception: + logger.exception("Error fetching issues from %s", source) + return all_issues + + async def fetch_issue_changelogs( + self, issue_ids: list[str], + ) -> dict[str, list[dict[str, Any]]]: + """Fetch changelogs from all work-tracking connectors. + + Groups issue_ids by source and routes to the correct connector. + """ + all_changelogs: dict[str, list[dict[str, Any]]] = {} + # Route issue_ids by their source prefix + source_groups: dict[str, list[str]] = {} + for issue_id in issue_ids: + source = self._detect_source_from_id(issue_id) + source_groups.setdefault(source, []).append(issue_id) + + for source, ids in source_groups.items(): + connector = self._connectors.get(source) + if connector: + try: + changelogs = await connector.fetch_issue_changelogs(ids) + all_changelogs.update(changelogs) + except Exception: + logger.exception("Error fetching changelogs from %s", source) + return all_changelogs + + async def fetch_deployments( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch deployments from all CI/CD connectors (Jenkins, GitHub Actions).""" + all_deploys: list[dict[str, Any]] = [] + for source in ("jenkins", "github", "gitlab", "azure"): + connector = self._connectors.get(source) + if connector: + try: + deploys = await connector.fetch_deployments(since) + all_deploys.extend(deploys) + logger.info("Fetched %d deployments from %s", len(deploys), source) + except Exception: + logger.exception("Error fetching deployments from %s", source) + return all_deploys + + async def fetch_sprints( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch sprints from work-tracking connectors (Jira).""" + all_sprints: list[dict[str, Any]] = [] + for source in ("jira",): + connector = self._connectors.get(source) + if connector: + try: + sprints = await connector.fetch_sprints(since) + all_sprints.extend(sprints) + logger.info("Fetched %d sprints from %s", len(sprints), source) + except Exception: + logger.exception("Error fetching sprints from %s", source) + return all_sprints + + async def fetch_sprint_issues( + self, sprint_id: str, + ) -> list[dict[str, Any]]: + """Fetch issues for a specific sprint from the appropriate connector.""" + source = self._detect_source_from_id(sprint_id) + connector = self._connectors.get(source) + if connector: + return await connector.fetch_sprint_issues(sprint_id) + # Fallback: try Jira (most common sprint source) + connector = self._connectors.get("jira") + if connector: + return await connector.fetch_sprint_issues(sprint_id) + return [] + + # ------------------------------------------------------------------ + # Health check — used by Pipeline Monitor + # ------------------------------------------------------------------ + + async def test_all_connections(self) -> dict[str, dict[str, Any]]: + """Test connectivity to all registered connectors. + + Returns: + Dict mapping source_type -> { status, message, details } + """ + results: dict[str, dict[str, Any]] = {} + for source_type, connector in self._connectors.items(): + try: + results[source_type] = await connector.test_connection() + except Exception as e: + results[source_type] = { + "status": "error", + "message": str(e), + } + return results + + async def close(self) -> None: + """Close all connector resources.""" + for source_type, connector in self._connectors.items(): + try: + await connector.close() + logger.info("Closed connector: %s", source_type) + except Exception: + logger.exception("Error closing connector: %s", source_type) + + # ------------------------------------------------------------------ + # Internal helpers + # ------------------------------------------------------------------ + + @staticmethod + def _detect_source_from_id(entity_id: str) -> str: + """Detect source type from entity ID prefix (e.g., 'jira:JiraIssue:1:123').""" + lower_id = entity_id.lower() + if "github" in lower_id: + return "github" + if "jira" in lower_id: + return "jira" + if "jenkins" in lower_id: + return "jenkins" + if "gitlab" in lower_id: + return "gitlab" + if "azure" in lower_id: + return "azure" + return "unknown" diff --git a/pulse/packages/pulse-data/src/connectors/base.py b/pulse/packages/pulse-data/src/connectors/base.py new file mode 100644 index 0000000..e0e62a6 --- /dev/null +++ b/pulse/packages/pulse-data/src/connectors/base.py @@ -0,0 +1,139 @@ +"""Base connector — abstract interface for all source connectors. + +Each connector (GitHub, Jira, Jenkins) implements this interface. +The return format matches what normalizer.py expects so it can be +swapped in place of DevLakeReader with zero changes to normalizer logic. +""" + +from __future__ import annotations + +import logging +from abc import ABC, abstractmethod +from datetime import datetime +from typing import Any + +logger = logging.getLogger(__name__) + + +class BaseConnector(ABC): + """Abstract interface that every source connector must implement. + + Return format contract: + Each fetch method returns list[dict] where the dict keys match + the column names that normalizer.py expects (same as DevLake's + domain table columns). This ensures the normalizer works unchanged. + + Incremental sync: + All fetch methods accept an optional `since` datetime parameter + for watermark-based incremental sync. When provided, only records + updated/created after that timestamp should be returned. + """ + + @property + @abstractmethod + def source_type(self) -> str: + """Return the source identifier (e.g., 'github', 'jira', 'jenkins').""" + ... + + @abstractmethod + async def test_connection(self) -> dict[str, Any]: + """Test connectivity to the source API. + + Returns: + Dict with keys: status ('healthy'|'error'), message, details + """ + ... + + @abstractmethod + async def fetch_pull_requests( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch pull requests / merge requests. + + Expected dict keys (normalizer contract): + id, base_repo_id, head_repo_id, status, title, url, + author_name, created_date, merged_date, closed_date, + merge_commit_sha, base_ref, head_ref, additions, deletions + + Optional enrichment keys (prefixed with underscore): + _files_changed, _reviewers, _first_review_at, _approved_at + """ + ... + + @abstractmethod + async def fetch_issues( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch issues / work items. + + Expected dict keys (normalizer contract): + id, url, issue_key, title, status, original_status, + story_point, priority, created_date, updated_date, + resolution_date, lead_time_minutes, assignee_name, + type, sprint_id + """ + ... + + @abstractmethod + async def fetch_issue_changelogs( + self, issue_ids: list[str], + ) -> dict[str, list[dict[str, Any]]]: + """Fetch status transition changelogs for a batch of issues. + + Returns: + Dict mapping issue_id -> list of transition dicts. + Each transition dict has keys: + issue_id, from_status, to_status, created_date + """ + ... + + @abstractmethod + async def fetch_deployments( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch deployment / build records. + + Expected dict keys (normalizer contract): + id, cicd_deployment_id, repo_id, name, result, status, + environment, created_date, started_date, finished_date + """ + ... + + @abstractmethod + async def fetch_sprints( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch sprint records. + + Expected dict keys (normalizer contract): + id, original_board_id, name, url, status, + started_date, ended_date, completed_date, total_issues + """ + ... + + @abstractmethod + async def fetch_sprint_issues( + self, sprint_id: str, + ) -> list[dict[str, Any]]: + """Fetch all issues belonging to a specific sprint. + + Expected dict keys (normalizer contract): + id, issue_key, status, original_status, + story_point, type, resolution_date + """ + ... + + @abstractmethod + async def close(self) -> None: + """Release resources (HTTP sessions, connections, etc).""" + ... + + # ------------------------------------------------------------------ + # Default no-op implementations for connectors that don't support + # all entity types (e.g., Jenkins doesn't have PRs or issues) + # ------------------------------------------------------------------ + + async def _not_supported(self, entity: str) -> list[dict[str, Any]]: + """Return empty list for unsupported entity types.""" + logger.debug("%s connector does not support %s", self.source_type, entity) + return [] diff --git a/pulse/packages/pulse-data/src/connectors/github_connector.py b/pulse/packages/pulse-data/src/connectors/github_connector.py new file mode 100644 index 0000000..c84c54e --- /dev/null +++ b/pulse/packages/pulse-data/src/connectors/github_connector.py @@ -0,0 +1,368 @@ +"""GitHub connector — fetches PRs, commits, and deployments via REST API v3. + +Replaces DevLake's GitHub plugin with direct API access, providing: +- First review timestamps (not available in DevLake domain model) +- Approval timestamps +- File change counts +- Reviewer list with states +- Full PR timeline events via GraphQL (optional, future enhancement) + +Authentication: Personal Access Token (PAT) or GitHub App token. +Rate Limiting: 5,000 requests/hour with token. Client handles 429 automatically. +""" + +from __future__ import annotations + +import logging +from datetime import datetime, timedelta, timezone +from typing import Any + +from src.config import settings +from src.connectors.base import BaseConnector +from src.shared.http_client import ResilientHTTPClient + +logger = logging.getLogger(__name__) + +# GitHub REST API constants +PER_PAGE = 100 # Max items per page +MAX_PAGES = 200 # Safety limit for pagination + + +class GitHubConnector(BaseConnector): + """Fetches pull requests and repository data from GitHub REST API. + + Configuration (from settings): + - github_token: Personal Access Token or GitHub App token + - github_org: Organization name (e.g., "webmotors-private") + - github_api_url: API base URL (default: https://api.github.com) + + Repo filtering: + - repos: Explicit list of repo names to fetch (if empty, discovers all) + - active_months: Only include repos with activity in last N months (default: 12) + - include_archived: Whether to include archived repos (default: False) + """ + + def __init__( + self, + token: str | None = None, + org: str | None = None, + api_url: str | None = None, + repos: list[str] | None = None, + active_months: int = 12, + include_archived: bool = False, + connection_id: int = 1, + ) -> None: + self._token = token or settings.github_token + self._org = org or settings.github_org + self._api_url = (api_url or settings.github_api_url).rstrip("/") + self._explicit_repos = repos + self._active_months = active_months + self._include_archived = include_archived + self._connection_id = connection_id + + if not self._token: + raise ValueError( + "GitHub connector requires GITHUB_TOKEN. " + "Set it in environment variables or .env file." + ) + + self._client = ResilientHTTPClient( + base_url=self._api_url, + auth={"token": self._token}, + timeout=30.0, + max_retries=3, + extra_headers={"X-GitHub-Api-Version": "2022-11-28"}, + ) + + # Cache: discovered repos + self._repos: list[str] | None = None + + @property + def source_type(self) -> str: + return "github" + + async def test_connection(self) -> dict[str, Any]: + """Test GitHub connectivity and check rate limit.""" + try: + user = await self._client.get("/user") + rate = await self._client.get("/rate_limit") + core = rate.get("resources", {}).get("core", {}) + return { + "status": "healthy", + "message": f"Connected as {user.get('login', 'unknown')}", + "details": { + "org": self._org, + "rate_limit_remaining": core.get("remaining", 0), + "rate_limit_total": core.get("limit", 0), + }, + } + except Exception as e: + return {"status": "error", "message": str(e)} + + # ------------------------------------------------------------------ + # Pull Requests + # ------------------------------------------------------------------ + + async def fetch_pull_requests( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch pull requests from all repos in the organization. + + Uses GET /repos/{owner}/{repo}/pulls with state=all for each repo. + Supports incremental sync via `since` parameter (filters by updated_at). + """ + repos = await self._get_repos() + all_prs: list[dict[str, Any]] = [] + + for repo_full_name in repos: + try: + prs = await self._fetch_repo_prs(repo_full_name, since) + all_prs.extend(prs) + except Exception: + logger.exception("Failed to fetch PRs for %s", repo_full_name) + + logger.info( + "Fetched %d PRs from %d repos (org: %s)", + len(all_prs), len(repos), self._org, + ) + return all_prs + + async def _fetch_repo_prs( + self, repo_full_name: str, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch all PRs for a specific repo.""" + params: dict[str, Any] = { + "state": "all", + "sort": "updated", + "direction": "desc", + "per_page": PER_PAGE, + } + + all_prs: list[dict[str, Any]] = [] + page = 1 + stop = False + + while page <= MAX_PAGES and not stop: + params["page"] = page + prs = await self._client.get(f"/repos/{repo_full_name}/pulls", params=params) + + if not prs: + break + + for pr in prs: + updated_at = pr.get("updated_at") + if since and updated_at: + try: + dt = datetime.fromisoformat(updated_at.replace("Z", "+00:00")) + if dt < since: + stop = True + break + except ValueError: + pass + + mapped = self._map_pr(repo_full_name, pr) + all_prs.append(mapped) + + if len(prs) < PER_PAGE: + break + page += 1 + + return all_prs + + # ------------------------------------------------------------------ + # PR Detail — enrichment with reviews (optional, called per-PR) + # ------------------------------------------------------------------ + + async def _fetch_pr_reviews( + self, repo_full_name: str, pr_number: int, + ) -> dict[str, Any]: + """Fetch review data for a specific PR (for enrichment). + + Returns dict with _first_review_at, _approved_at, _reviewers. + """ + try: + reviews = await self._client.get( + f"/repos/{repo_full_name}/pulls/{pr_number}/reviews", + ) + except Exception: + return {"_reviewers": [], "_first_review_at": None, "_approved_at": None} + + reviewers: list[dict[str, str]] = [] + first_review_at: str | None = None + approved_at: str | None = None + + for review in reviews: + reviewer = review.get("user", {}).get("login", "unknown") + state = review.get("state", "") + submitted_at = review.get("submitted_at") + + if reviewer not in [r.get("login") for r in reviewers]: + reviewers.append({"login": reviewer, "state": state}) + + if submitted_at: + if first_review_at is None or submitted_at < first_review_at: + first_review_at = submitted_at + if state == "APPROVED" and (approved_at is None or submitted_at < approved_at): + approved_at = submitted_at + + return { + "_reviewers": reviewers, + "_first_review_at": first_review_at, + "_approved_at": approved_at, + } + + # ------------------------------------------------------------------ + # Issues — GitHub Issues (not primary, Jira handles this) + # ------------------------------------------------------------------ + + async def fetch_issues(self, since: datetime | None = None) -> list[dict[str, Any]]: + """GitHub Issues are not our primary issue tracker (Jira is). + Return empty for now. Can be enabled if needed. + """ + return await self._not_supported("issues") + + async def fetch_issue_changelogs(self, issue_ids: list[str]) -> dict[str, list[dict[str, Any]]]: + return {} + + # ------------------------------------------------------------------ + # Deployments — GitHub Actions (future, currently Jenkins handles this) + # ------------------------------------------------------------------ + + async def fetch_deployments(self, since: datetime | None = None) -> list[dict[str, Any]]: + """GitHub deployments via Deployments API or Actions. + Currently not used (Jenkins handles CI/CD for Webmotors). + Can be enabled for orgs using GitHub Actions for deployments. + """ + return await self._not_supported("deployments") + + # ------------------------------------------------------------------ + # Sprints — not applicable for GitHub + # ------------------------------------------------------------------ + + async def fetch_sprints(self, since: datetime | None = None) -> list[dict[str, Any]]: + return await self._not_supported("sprints") + + async def fetch_sprint_issues(self, sprint_id: str) -> list[dict[str, Any]]: + return [] + + # ------------------------------------------------------------------ + # Lifecycle + # ------------------------------------------------------------------ + + async def close(self) -> None: + await self._client.close() + logger.info("GitHub connector closed") + + # ------------------------------------------------------------------ + # Internal: Repo discovery + # ------------------------------------------------------------------ + + async def _get_repos(self) -> list[str]: + """Get the list of repos to fetch PRs from. + + Uses explicit list if provided, otherwise discovers all org repos. + """ + if self._repos is not None: + return self._repos + + if self._explicit_repos: + self._repos = [ + r if "/" in r else f"{self._org}/{r}" + for r in self._explicit_repos + ] + return self._repos + + # Discover all repos in the org + self._repos = await self.discover_repos() + return self._repos + + async def discover_repos( + self, + org: str | None = None, + active_months: int | None = None, + ) -> list[str]: + """Discover all repos in an organization, filtered by activity. + + Args: + org: Organization name (default: settings.github_org) + active_months: Only include repos active in last N months + + Returns: + List of full repo names (e.g., ["webmotors-private/api-service"]) + """ + target_org = org or self._org + months = active_months if active_months is not None else self._active_months + cutoff = datetime.now(timezone.utc) - timedelta(days=months * 30) + + all_repos = await self._client.get_paginated_link( + f"/orgs/{target_org}/repos", + params={"type": "all", "sort": "pushed", "direction": "desc"}, + page_size=PER_PAGE, + ) + + filtered: list[str] = [] + for repo in all_repos: + # Skip archived repos unless configured otherwise + if repo.get("archived") and not self._include_archived: + continue + + # Filter by activity + pushed_at = repo.get("pushed_at") + if pushed_at and months > 0: + try: + dt = datetime.fromisoformat(pushed_at.replace("Z", "+00:00")) + if dt < cutoff: + continue + except ValueError: + pass + + filtered.append(repo.get("full_name", "")) + + logger.info( + "Discovered %d active repos out of %d total in org %s (cutoff: %d months)", + len(filtered), len(all_repos), target_org, months, + ) + self._repos = filtered + return filtered + + # ------------------------------------------------------------------ + # Internal: Mapping GitHub API → Normalizer format + # ------------------------------------------------------------------ + + def _map_pr(self, repo_full_name: str, pr: dict[str, Any]) -> dict[str, Any]: + """Map a GitHub PR API response to the normalizer-expected format. + + Preserves the same dict keys that DevLake's pull_requests domain table + had, so the normalizer works unchanged. Also adds enrichment fields + prefixed with underscore. + """ + pr_number = pr.get("number", 0) + state = str(pr.get("state", "open")).upper() + + # GitHub merged_at is only set when PR is merged + merged_at = pr.get("merged_at") + if merged_at and state == "CLOSED": + state = "MERGED" + + return { + # Standard fields (normalizer contract — same as DevLake) + "id": f"github:GithubPullRequest:{self._connection_id}:{pr_number}", + "base_repo_id": f"github:GithubRepo:{self._connection_id}:{repo_full_name}", + "head_repo_id": f"github:GithubRepo:{self._connection_id}:{repo_full_name}", + "status": state, + "title": pr.get("title", ""), + "url": pr.get("html_url", ""), + "author_name": (pr.get("user") or {}).get("login", "unknown"), + "created_date": pr.get("created_at"), + "merged_date": merged_at, + "closed_date": pr.get("closed_at"), + "merge_commit_sha": pr.get("merge_commit_sha"), + "base_ref": (pr.get("base") or {}).get("ref", ""), + "head_ref": (pr.get("head") or {}).get("ref", ""), + "additions": pr.get("additions", 0), + "deletions": pr.get("deletions", 0), + # Enrichment fields (not in DevLake, consumed by updated normalizer) + "_files_changed": pr.get("changed_files", 0), + "_pr_number": pr_number, + "_repo_full_name": repo_full_name, + } diff --git a/pulse/packages/pulse-data/src/connectors/jenkins_connector.py b/pulse/packages/pulse-data/src/connectors/jenkins_connector.py new file mode 100644 index 0000000..2afd7f8 --- /dev/null +++ b/pulse/packages/pulse-data/src/connectors/jenkins_connector.py @@ -0,0 +1,303 @@ +"""Jenkins connector — fetches build/deployment data from Jenkins REST API. + +Replaces DevLake's Jenkins plugin with direct API access. +Jenkins builds are mapped to DORA deployment metrics: +- Deployment Frequency = count of production builds per period +- Change Failure Rate = failed builds / total builds +- MTTR = time between failure and next success + +Authentication: Basic auth (username + API token). + +Job filtering: Uses config/connections.yaml to determine which jobs are +production deployments vs CI builds. Each job can specify: +- deploymentPattern: regex to match deployment jobs +- productionPattern: regex to match production environment +""" + +from __future__ import annotations + +import logging +import re +from datetime import datetime, timezone +from typing import Any + +from src.config import settings +from src.connectors.base import BaseConnector +from src.shared.http_client import ResilientHTTPClient + +logger = logging.getLogger(__name__) + +# Jenkins API tree parameter to minimize response size +JOB_TREE = "jobs[name,url,fullName,color]" +BUILD_TREE = "builds[number,result,timestamp,duration,url,displayName]{0,100}" + + +class JenkinsConnector(BaseConnector): + """Fetches build data from Jenkins REST API. + + Configuration (from settings): + - jenkins_base_url: Jenkins instance URL + - jenkins_username: Service account username + - jenkins_api_token: Jenkins API token + + Job configuration is loaded from connections.yaml via the `jobs` parameter. + Each job dict should have: + - fullName: Jenkins job path (e.g., "folder/job-name") + - deploymentPattern: regex for matching deployment builds (optional) + - productionPattern: regex for production environment (optional) + """ + + def __init__( + self, + base_url: str | None = None, + username: str | None = None, + api_token: str | None = None, + jobs: list[dict[str, str]] | None = None, + connection_id: int = 1, + ) -> None: + self._base_url = (base_url or settings.jenkins_base_url).rstrip("/") + self._username = username or settings.jenkins_username + self._api_token = api_token or settings.jenkins_api_token + self._connection_id = connection_id + + # Job configs from connections.yaml + self._jobs = jobs or [] + + if not self._base_url or not self._api_token: + raise ValueError( + "Jenkins connector requires JENKINS_BASE_URL and JENKINS_API_TOKEN. " + "Set them in environment variables or .env file." + ) + + self._client = ResilientHTTPClient( + base_url=self._base_url, + auth={"basic": (self._username, self._api_token)}, + timeout=30.0, + max_retries=3, + ) + + # Pre-compile deployment/production patterns + self._job_patterns: dict[str, dict[str, re.Pattern | None]] = {} + for job in self._jobs: + name = job.get("fullName", "") + deploy_pat = job.get("deploymentPattern") + prod_pat = job.get("productionPattern") + self._job_patterns[name] = { + "deployment": re.compile(deploy_pat) if deploy_pat else None, + "production": re.compile(prod_pat) if prod_pat else None, + } + + @property + def source_type(self) -> str: + return "jenkins" + + async def test_connection(self) -> dict[str, Any]: + """Test Jenkins connectivity.""" + try: + data = await self._client.get("/api/json", params={"tree": "nodeDescription,numExecutors"}) + return { + "status": "healthy", + "message": f"Connected to Jenkins ({data.get('nodeDescription', 'unknown')})", + "details": { + "executors": data.get("numExecutors", 0), + "configured_jobs": len(self._jobs), + }, + } + except Exception as e: + return {"status": "error", "message": str(e)} + + # ------------------------------------------------------------------ + # Deployments (Jenkins builds → DORA deployment metrics) + # ------------------------------------------------------------------ + + async def fetch_deployments( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch builds from configured Jenkins jobs. + + Each build is mapped to a deployment record. Only jobs configured + in connections.yaml are fetched (not all Jenkins jobs). + """ + if not self._jobs: + logger.warning("No Jenkins jobs configured — skipping deployment fetch") + return [] + + all_builds: list[dict[str, Any]] = [] + + for job_config in self._jobs: + job_name = job_config.get("fullName", "") + if not job_name: + continue + + try: + builds = await self._fetch_job_builds(job_name, since) + all_builds.extend(builds) + except Exception: + logger.exception("Failed to fetch builds for job: %s", job_name) + + logger.info( + "Fetched %d builds from %d Jenkins jobs", + len(all_builds), len(self._jobs), + ) + return all_builds + + # ------------------------------------------------------------------ + # Not applicable for Jenkins + # ------------------------------------------------------------------ + + async def fetch_pull_requests(self, since: datetime | None = None) -> list[dict[str, Any]]: + return await self._not_supported("pull_requests") + + async def fetch_issues(self, since: datetime | None = None) -> list[dict[str, Any]]: + return await self._not_supported("issues") + + async def fetch_issue_changelogs(self, issue_ids: list[str]) -> dict[str, list[dict[str, Any]]]: + return {} + + async def fetch_sprints(self, since: datetime | None = None) -> list[dict[str, Any]]: + return await self._not_supported("sprints") + + async def fetch_sprint_issues(self, sprint_id: str) -> list[dict[str, Any]]: + return [] + + # ------------------------------------------------------------------ + # Lifecycle + # ------------------------------------------------------------------ + + async def close(self) -> None: + await self._client.close() + logger.info("Jenkins connector closed") + + # ------------------------------------------------------------------ + # Internal: Fetch and map builds + # ------------------------------------------------------------------ + + async def _fetch_job_builds( + self, job_name: str, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch builds for a specific Jenkins job.""" + # Jenkins API path: encode slashes in folder names + api_path = f"/job/{job_name.replace('/', '/job/')}/api/json" + params = {"tree": BUILD_TREE} + + data = await self._client.get(api_path, params=params) + builds = data.get("builds", []) + + mapped_builds: list[dict[str, Any]] = [] + for build in builds: + # Skip builds without a result (still running) + if not build.get("result"): + continue + + mapped = self._map_build(job_name, build) + + # Apply watermark filter + if since and mapped.get("finished_date"): + finished = mapped["finished_date"] + if isinstance(finished, str): + try: + dt = datetime.fromisoformat(finished.replace("Z", "+00:00")) + if dt < since: + continue + except ValueError: + pass + + mapped_builds.append(mapped) + + logger.debug("Fetched %d builds for job %s", len(mapped_builds), job_name) + return mapped_builds + + def _map_build(self, job_name: str, build: dict[str, Any]) -> dict[str, Any]: + """Map a Jenkins build to the normalizer-expected deployment format. + + Preserves the same dict keys that DevLake's cicd_deployment_commits + domain table had, so the normalizer works unchanged. + """ + result = str(build.get("result", "UNKNOWN")).upper() + timestamp_ms = build.get("timestamp", 0) + duration_ms = build.get("duration", 0) + build_number = build.get("number", 0) + + started = datetime.fromtimestamp(timestamp_ms / 1000, tz=timezone.utc) if timestamp_ms else None + finished = ( + datetime.fromtimestamp((timestamp_ms + duration_ms) / 1000, tz=timezone.utc) + if timestamp_ms and duration_ms + else started + ) + + environment = self._detect_environment(job_name, build) + + return { + "id": f"jenkins:JenkinsBuild:{self._connection_id}:{job_name}:{build_number}", + "cicd_deployment_id": f"jenkins:JenkinsJob:{self._connection_id}:{job_name}", + "repo_id": None, + "name": job_name, + "result": result, # SUCCESS, FAILURE, UNSTABLE, ABORTED, NOT_BUILT + "status": "DONE", + "environment": environment, + "created_date": started.isoformat() if started else None, + "started_date": started.isoformat() if started else None, + "finished_date": finished.isoformat() if finished else None, + } + + def _detect_environment( + self, job_name: str, build: dict[str, Any] | None = None, + ) -> str: + """Detect the deployment environment for a Jenkins job. + + Uses patterns from connections.yaml if available. + Falls back to heuristic name matching. + """ + patterns = self._job_patterns.get(job_name, {}) + + # Check production pattern first + prod_pattern = patterns.get("production") + if prod_pattern: + if prod_pattern.search(job_name): + return "production" + + # Heuristic: job name contains environment indicators + name_lower = job_name.lower() + if any(kw in name_lower for kw in ("prod", "prd", "release", "deploy-prod", "main-deploy")): + return "production" + if any(kw in name_lower for kw in ("staging", "stg", "homolog", "hml")): + return "staging" + if any(kw in name_lower for kw in ("dev", "develop", "feature")): + return "development" + if any(kw in name_lower for kw in ("test", "qa", "quality")): + return "test" + + # Default: if it's in our configured jobs list, treat as production + # (connections.yaml should only contain production-relevant jobs) + return "production" + + # ------------------------------------------------------------------ + # Job discovery (for initial setup / configuration) + # ------------------------------------------------------------------ + + async def discover_jobs(self, folder: str | None = None) -> list[dict[str, str]]: + """Discover all Jenkins jobs. Useful for initial configuration. + + Args: + folder: Optional folder path to scope discovery. + + Returns: + List of dicts with job info (fullName, url, color). + """ + path = "/api/json" + if folder: + path = f"/job/{folder.replace('/', '/job/')}/api/json" + + data = await self._client.get(path, params={"tree": JOB_TREE}) + jobs = data.get("jobs", []) + + discovered: list[dict[str, str]] = [] + for job in jobs: + discovered.append({ + "fullName": job.get("fullName", job.get("name", "")), + "url": job.get("url", ""), + "color": job.get("color", ""), + }) + + logger.info("Discovered %d Jenkins jobs", len(discovered)) + return discovered diff --git a/pulse/packages/pulse-data/src/connectors/jira_connector.py b/pulse/packages/pulse-data/src/connectors/jira_connector.py new file mode 100644 index 0000000..232d38a --- /dev/null +++ b/pulse/packages/pulse-data/src/connectors/jira_connector.py @@ -0,0 +1,505 @@ +"""Jira Cloud connector — fetches issues, sprints, and changelogs via REST API v3. + +Replaces DevLake's Jira plugin with direct API access, solving: +- Jira API v2 deprecation (HTTP 410 on /rest/api/2/search) +- 99.3% data loss in DevLake domain normalization +- Missing sprint data + +Uses Jira REST API v3 (search via /rest/api/3/search) and Agile API +(/rest/agile/1.0/) for boards and sprints. + +Authentication: Basic auth with email + API token (Jira Cloud standard). +""" + +from __future__ import annotations + +import logging +from datetime import datetime, timezone +from typing import Any + +from src.config import settings +from src.connectors.base import BaseConnector +from src.shared.http_client import ResilientHTTPClient + +logger = logging.getLogger(__name__) + +# Jira Agile API base (different from REST API) +AGILE_API = "/rest/agile/1.0" +REST_API = "/rest/api/3" + +# Maximum results per page (Jira caps at 100 for search, 50 for agile) +SEARCH_PAGE_SIZE = 100 +AGILE_PAGE_SIZE = 50 + +# Fields to fetch in search queries (minimize payload) +SEARCH_FIELDS = [ + "summary", "status", "issuetype", "priority", "assignee", + "created", "updated", "resolutiondate", "resolution", + "sprint", "story_points", "customfield_10028", # story points field + "parent", "labels", "components", +] + + +class JiraConnector(BaseConnector): + """Fetches issues, sprints, and changelogs from Jira Cloud REST API v3. + + Configuration (from settings): + - jira_base_url: Jira instance URL (e.g., https://webmotors.atlassian.net) + - jira_email: Service account email + - jira_api_token: API token + - jira_projects: Comma-separated project keys (e.g., "DESC,ENO,ANCR") + """ + + def __init__( + self, + base_url: str | None = None, + email: str | None = None, + api_token: str | None = None, + projects: list[str] | None = None, + connection_id: int = 1, + ) -> None: + self._base_url = (base_url or settings.jira_base_url).rstrip("/") + self._email = email or settings.jira_email + self._api_token = api_token or settings.jira_api_token + self._projects = projects or settings.jira_project_list + self._connection_id = connection_id + + if not self._base_url or not self._api_token: + raise ValueError( + "Jira connector requires JIRA_BASE_URL and JIRA_API_TOKEN. " + "Set them in environment variables or .env file." + ) + + self._client = ResilientHTTPClient( + base_url=self._base_url, + auth={"basic": (self._email, self._api_token)}, + timeout=60.0, + max_retries=3, + ) + + # Cache: board_id -> board info (discovered lazily) + self._boards: dict[int, dict] = {} + + @property + def source_type(self) -> str: + return "jira" + + async def test_connection(self) -> dict[str, Any]: + """Test Jira connectivity by fetching current user.""" + try: + data = await self._client.get(f"{REST_API}/myself") + return { + "status": "healthy", + "message": f"Connected as {data.get('displayName', 'unknown')}", + "details": { + "email": data.get("emailAddress"), + "account_id": data.get("accountId"), + "projects": self._projects, + }, + } + except Exception as e: + return {"status": "error", "message": str(e)} + + # ------------------------------------------------------------------ + # Issues + # ------------------------------------------------------------------ + + async def fetch_issues( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch issues from Jira using JQL search with expand=changelog. + + Uses API v3 search endpoint. Includes changelogs inline to avoid + separate API calls per issue (major efficiency gain over DevLake). + """ + if not self._projects: + logger.warning("No Jira projects configured — skipping issue fetch") + return [] + + project_list = ", ".join(self._projects) + jql = f"project IN ({project_list})" + if since: + since_str = since.strftime("%Y-%m-%d %H:%M") + jql += f' AND updated >= "{since_str}"' + jql += " ORDER BY updated DESC" + + logger.info("Fetching Jira issues with JQL: %s", jql) + + all_issues: list[dict[str, Any]] = [] + start_at = 0 + + while True: + params = { + "jql": jql, + "startAt": start_at, + "maxResults": SEARCH_PAGE_SIZE, + "fields": ",".join(SEARCH_FIELDS), + "expand": "changelog", + } + data = await self._client.get(f"{REST_API}/search", params=params) + + issues = data.get("issues", []) + for issue in issues: + mapped = self._map_issue(issue) + all_issues.append(mapped) + + total = data.get("total", 0) + start_at += len(issues) + + if start_at >= total or not issues: + break + + logger.info("Fetched %d issues from Jira (%d projects)", len(all_issues), len(self._projects)) + return all_issues + + async def fetch_issue_changelogs( + self, issue_ids: list[str], + ) -> dict[str, list[dict[str, Any]]]: + """Return changelogs for given issue_ids. + + Since fetch_issues already includes changelogs via expand=changelog, + this method is used for issues fetched WITHOUT expand (e.g., sprint issues). + For those, we fetch changelogs individually. + """ + if not issue_ids: + return {} + + changelogs: dict[str, list[dict[str, Any]]] = {} + + # Extract Jira issue keys from our internal IDs + for issue_id in issue_ids: + jira_key = self._extract_key_from_id(issue_id) + if not jira_key: + continue + + try: + data = await self._client.get( + f"{REST_API}/issue/{jira_key}", + params={"expand": "changelog", "fields": "status"}, + ) + transitions = self._extract_changelogs(issue_id, data) + if transitions: + changelogs[issue_id] = transitions + except Exception: + logger.warning("Failed to fetch changelog for %s", jira_key) + + logger.info( + "Fetched changelogs for %d/%d issues", + len(changelogs), len(issue_ids), + ) + return changelogs + + # ------------------------------------------------------------------ + # Sprints + # ------------------------------------------------------------------ + + async def fetch_sprints( + self, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch sprints from all boards in configured projects.""" + await self._discover_boards() + + all_sprints: list[dict[str, Any]] = [] + for board_id, board_info in self._boards.items(): + try: + sprints = await self._fetch_board_sprints(board_id, since) + all_sprints.extend(sprints) + except Exception: + logger.exception("Failed to fetch sprints for board %d", board_id) + + logger.info("Fetched %d sprints from %d boards", len(all_sprints), len(self._boards)) + return all_sprints + + async def fetch_sprint_issues( + self, sprint_id: str, + ) -> list[dict[str, Any]]: + """Fetch all issues in a specific sprint.""" + # Extract numeric sprint ID from our internal format + numeric_id = self._extract_numeric_id(sprint_id) + if not numeric_id: + return [] + + all_issues: list[dict[str, Any]] = [] + start_at = 0 + + while True: + params = {"startAt": start_at, "maxResults": AGILE_PAGE_SIZE} + try: + data = await self._client.get( + f"{AGILE_API}/sprint/{numeric_id}/issue", params=params, + ) + except Exception: + logger.warning("Failed to fetch issues for sprint %s", sprint_id) + break + + issues = data.get("issues", []) + for issue in issues: + mapped = self._map_sprint_issue(issue, sprint_id) + all_issues.append(mapped) + + total = data.get("total", 0) + start_at += len(issues) + + if start_at >= total or not issues: + break + + logger.info("Fetched %d issues for sprint %s", len(all_issues), sprint_id) + return all_issues + + # ------------------------------------------------------------------ + # PRs and Deployments — not applicable for Jira + # ------------------------------------------------------------------ + + async def fetch_pull_requests(self, since: datetime | None = None) -> list[dict[str, Any]]: + return await self._not_supported("pull_requests") + + async def fetch_deployments(self, since: datetime | None = None) -> list[dict[str, Any]]: + return await self._not_supported("deployments") + + # ------------------------------------------------------------------ + # Lifecycle + # ------------------------------------------------------------------ + + async def close(self) -> None: + await self._client.close() + logger.info("Jira connector closed") + + # ------------------------------------------------------------------ + # Internal: Mapping Jira API → Normalizer format + # ------------------------------------------------------------------ + + def _map_issue(self, jira_issue: dict[str, Any]) -> dict[str, Any]: + """Map a Jira API issue response to the normalizer-expected format. + + Preserves the same dict keys that DevLake's `issues` domain table had, + so the normalizer works unchanged. + """ + fields = jira_issue.get("fields", {}) + key = jira_issue.get("key", "") + jira_id = jira_issue.get("id", "") + + # Build our internal ID (same prefix format as DevLake for compatibility) + internal_id = f"jira:JiraIssue:{self._connection_id}:{jira_id}" + + # Story points — try standard field first, then common custom fields + story_points = ( + fields.get("story_points") + or fields.get("customfield_10028") # common SP field + or fields.get("customfield_10016") # another common SP field + or None + ) + + # Sprint info from the sprint field (Jira includes active sprint) + sprint_field = fields.get("sprint") + sprint_id = None + if sprint_field and isinstance(sprint_field, dict): + raw_sprint_id = sprint_field.get("id") + if raw_sprint_id: + sprint_id = f"jira:JiraSprint:{self._connection_id}:{raw_sprint_id}" + + status_name = (fields.get("status") or {}).get("name", "") + + # Store changelogs inline (extracted separately for the sync worker) + self._last_changelogs = self._last_changelogs if hasattr(self, "_last_changelogs") else {} + changelogs = self._extract_changelogs(internal_id, jira_issue) + if changelogs: + self._last_changelogs[internal_id] = changelogs + + return { + "id": internal_id, + "url": f"{self._base_url}/browse/{key}", + "issue_key": key, + "title": fields.get("summary", ""), + "status": status_name, + "original_status": status_name, + "story_point": story_points, + "priority": (fields.get("priority") or {}).get("name", ""), + "created_date": fields.get("created"), + "updated_date": fields.get("updated"), + "resolution_date": fields.get("resolutiondate"), + "lead_time_minutes": None, # Calculated by PULSE normalizer + "assignee_name": (fields.get("assignee") or {}).get("displayName"), + "type": (fields.get("issuetype") or {}).get("name", "Task"), + "sprint_id": sprint_id, + } + + def _map_sprint_issue( + self, jira_issue: dict[str, Any], sprint_id: str, + ) -> dict[str, Any]: + """Map a Jira sprint issue to the format expected by normalize_sprint.""" + fields = jira_issue.get("fields", {}) + key = jira_issue.get("key", "") + jira_id = jira_issue.get("id", "") + + status_name = (fields.get("status") or {}).get("name", "") + story_points = ( + fields.get("story_points") + or fields.get("customfield_10028") + or fields.get("customfield_10016") + or None + ) + + return { + "id": f"jira:JiraIssue:{self._connection_id}:{jira_id}", + "issue_key": key, + "status": status_name.lower(), + "original_status": status_name, + "story_point": story_points, + "type": (fields.get("issuetype") or {}).get("name", "Task"), + "resolution_date": fields.get("resolutiondate"), + } + + def _extract_changelogs( + self, internal_id: str, jira_issue: dict[str, Any], + ) -> list[dict[str, Any]]: + """Extract status transition changelogs from a Jira issue response. + + Jira includes changelog in the response when expand=changelog is used. + Returns list in the format the normalizer's build_status_transitions() expects. + """ + transitions: list[dict[str, Any]] = [] + changelog = jira_issue.get("changelog", {}) + + for history in changelog.get("histories", []): + created = history.get("created") + for item in history.get("items", []): + if item.get("field", "").lower() == "status": + transitions.append({ + "issue_id": internal_id, + "from_status": item.get("fromString", ""), + "to_status": item.get("toString", ""), + "created_date": created, + }) + + # Sort chronologically + transitions.sort(key=lambda t: t.get("created_date") or "") + return transitions + + # ------------------------------------------------------------------ + # Internal: Board and Sprint discovery + # ------------------------------------------------------------------ + + async def _discover_boards(self) -> None: + """Discover all Scrum/Kanban boards for configured projects.""" + if self._boards: + return # Already discovered + + for project_key in self._projects: + try: + data = await self._client.get( + f"{AGILE_API}/board", + params={"projectKeyOrId": project_key, "maxResults": 50}, + ) + for board in data.get("values", []): + board_id = board["id"] + self._boards[board_id] = { + "id": board_id, + "name": board.get("name", ""), + "type": board.get("type", ""), + "project_key": project_key, + } + logger.info( + "Discovered board: %s (%s) for project %s", + board.get("name"), board_id, project_key, + ) + except Exception: + logger.exception("Failed to discover boards for project %s", project_key) + + async def _fetch_board_sprints( + self, board_id: int, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch all sprints for a board via the Agile API.""" + all_sprints: list[dict[str, Any]] = [] + start_at = 0 + + while True: + params: dict[str, Any] = { + "startAt": start_at, + "maxResults": AGILE_PAGE_SIZE, + } + data = await self._client.get( + f"{AGILE_API}/board/{board_id}/sprint", params=params, + ) + + sprints = data.get("values", []) + for sprint in sprints: + mapped = self._map_sprint(sprint, board_id) + + # Apply watermark filter + if since: + start_date = mapped.get("started_date") + if start_date and isinstance(start_date, str): + try: + dt = datetime.fromisoformat(start_date.replace("Z", "+00:00")) + if dt < since: + continue + except ValueError: + pass + + all_sprints.append(mapped) + + if data.get("isLast", True) or not sprints: + break + start_at += len(sprints) + + return all_sprints + + def _map_sprint(self, sprint: dict[str, Any], board_id: int) -> dict[str, Any]: + """Map a Jira Agile sprint to the normalizer-expected format.""" + sprint_id = sprint.get("id", "") + state = str(sprint.get("state", "")).lower() + + # Map Jira sprint state to normalized status + if state == "active": + status = "ACTIVE" + elif state == "closed": + status = "CLOSED" + else: + status = "FUTURE" + + return { + "id": f"jira:JiraSprint:{self._connection_id}:{sprint_id}", + "original_board_id": str(board_id), + "name": sprint.get("name", ""), + "url": self._base_url, + "status": status, + "started_date": sprint.get("startDate"), + "ended_date": sprint.get("endDate"), + "completed_date": sprint.get("completeDate"), + "total_issues": 0, # Filled by fetch_sprint_issues if needed + } + + # ------------------------------------------------------------------ + # Internal: ID helpers + # ------------------------------------------------------------------ + + def _extract_key_from_id(self, internal_id: str) -> str | None: + """Extract Jira issue key from internal ID like 'jira:JiraIssue:1:12345'. + + We need to do a lookup since the internal ID contains the numeric Jira ID, + not the key. For now, return None and let the caller handle it. + """ + # For issues fetched with expand=changelog, changelogs are already inline + # This method is only called for issues fetched without changelog + parts = internal_id.split(":") + if len(parts) >= 4: + return parts[3] # numeric ID — caller uses GET /issue/{id} + return None + + @staticmethod + def _extract_numeric_id(internal_id: str) -> str | None: + """Extract the numeric ID from internal format 'jira:JiraSprint:1:123'.""" + parts = internal_id.split(":") + if len(parts) >= 4: + return parts[3] + return None + + def get_cached_changelogs(self) -> dict[str, list[dict[str, Any]]]: + """Return changelogs cached during fetch_issues (expand=changelog). + + This avoids making separate API calls for changelogs when issues + were already fetched with expand=changelog. + """ + result = getattr(self, "_last_changelogs", {}) + self._last_changelogs = {} # Clear cache after read + return result diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py index 390ed2d..6bf9116 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py @@ -1,12 +1,16 @@ -"""Normalizer — transforms DevLake domain data into PULSE schema. +"""Normalizer — transforms source connector data into PULSE schema. -Pure functions that map DevLake's table structures into PULSE's +Pure functions that map connector output dicts into PULSE's eng_pull_requests, eng_issues, eng_deployments, eng_sprints models. +Connector output format is compatible with the original DevLake domain +table structure, so this normalizer works with both DevLake and direct +API connectors (GitHub, Jira, Jenkins). + Also handles: - Status mapping (raw Jira/GitHub statuses to normalized todo/in_progress/done) - Issue-to-PR linking via branch name regex patterns (e.g., "PROJ-123") -- Source detection from DevLake IDs/URLs +- Source detection from connector IDs/URLs """ from __future__ import annotations @@ -256,6 +260,12 @@ def normalize_pull_request( created_date = _parse_datetime(devlake_pr.get("created_date")) merged_date = _parse_datetime(devlake_pr.get("merged_date")) + # Enrichment fields from GitHub connector (prefixed with underscore) + first_review_at = _parse_datetime(devlake_pr.get("_first_review_at")) + approved_at = _parse_datetime(devlake_pr.get("_approved_at")) + files_changed = devlake_pr.get("_files_changed", 0) or 0 + reviewers = devlake_pr.get("_reviewers", []) or [] + return { "external_id": str(devlake_pr["id"]), "tenant_id": tenant_id, @@ -264,15 +274,15 @@ def normalize_pull_request( "title": devlake_pr.get("title", ""), "author": devlake_pr.get("author_name", "unknown"), "state": state, - "first_commit_at": created_date, # DevLake doesn't have first_commit; use created_date - "first_review_at": None, # Not available from DevLake domain table - "approved_at": None, + "first_commit_at": created_date, # Use created_date as proxy for first commit + "first_review_at": first_review_at, + "approved_at": approved_at, "merged_at": merged_date, "deployed_at": None, # Linked via deployment data later "additions": devlake_pr.get("additions", 0) or 0, "deletions": devlake_pr.get("deletions", 0) or 0, - "files_changed": 0, # Not in DevLake domain table - "reviewers": [], + "files_changed": files_changed, + "reviewers": reviewers, "linked_issue_ids": [], "created_at": created_date or datetime.now(timezone.utc), "updated_at": datetime.now(timezone.utc), diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/routes.py b/pulse/packages/pulse-data/src/contexts/pipeline/routes.py index 0f7cb57..e48847f 100644 --- a/pulse/packages/pulse-data/src/contexts/pipeline/routes.py +++ b/pulse/packages/pulse-data/src/contexts/pipeline/routes.py @@ -1,11 +1,9 @@ """Pipeline Monitor API routes. Provides a consolidated view of the data pipeline health: stage -statuses, record counts (DevLake vs PULSE), sync logs, errors, -and DevLake API pipeline status. +statuses, PULSE DB record counts, connector health, sync logs, and errors. -All DevLake calls are wrapped in try/except — the pipeline monitor -degrades gracefully when DevLake is unavailable. +v2: Uses direct source connectors instead of DevLake (ADR-005). """ from __future__ import annotations @@ -15,17 +13,15 @@ from datetime import datetime, timedelta, timezone from fastapi import APIRouter -from sqlalchemy import func, select, text +from sqlalchemy import func, select from src.config import settings -from src.contexts.engineering_data.devlake_reader import DevLakeReader from src.contexts.engineering_data.models import ( EngDeployment, EngIssue, EngPullRequest, EngSprint, ) -from src.contexts.pipeline.devlake_api import DevLakeAPIClient from src.contexts.metrics.infrastructure.models import MetricsSnapshot from src.contexts.pipeline.models import PipelineEvent, PipelineSyncLog, PipelineWatermark from src.contexts.pipeline.schemas import ( @@ -53,32 +49,28 @@ # --------------------------------------------------------------------------- -async def _get_devlake_counts(reader: DevLakeReader) -> dict[str, int]: - """Query DevLake DB for record counts per entity type. +async def _get_connector_health() -> dict[str, dict]: + """Check health of configured source connectors. - Returns a dict like {"pull_requests": 120, "issues": 300, ...}. - Falls back to zeros if any query fails. + Returns a dict like {"github": {"status": "healthy", ...}, ...}. """ - counts: dict[str, int] = { - "pull_requests": 0, - "issues": 0, - "deployments": 0, - "sprints": 0, - } - table_map = { - "pull_requests": "pull_requests", - "issues": "issues", - "deployments": "cicd_deployment_commits", - "sprints": "sprints", - } - async with reader._session_factory() as session: - for entity, table in table_map.items(): - try: - result = await session.execute(text(f"SELECT COUNT(*) FROM {table}")) # noqa: S608 - counts[entity] = result.scalar() or 0 - except Exception: - logger.warning("Could not count DevLake table %s", table) - return counts + health: dict[str, dict] = {} + configured_sources = [] + + if settings.github_token: + configured_sources.append(("github", "GitHub")) + if settings.jira_api_token: + configured_sources.append(("jira", "Jira Cloud")) + if settings.jenkins_api_token: + configured_sources.append(("jenkins", "Jenkins")) + + for source_type, label in configured_sources: + health[source_type] = { + "status": "configured", + "label": label, + } + + return health # --------------------------------------------------------------------------- @@ -110,30 +102,16 @@ async def get_pipeline_status() -> PipelineStatusResponse: "sprints": sprint_count, } - # --- 2. Record counts (DevLake DB) --- - devlake_counts: dict[str, int] = { - "pull_requests": 0, - "issues": 0, - "deployments": 0, - "sprints": 0, - } - try: - reader = DevLakeReader() - devlake_counts = await _get_devlake_counts(reader) - await reader.close() - except Exception: - logger.warning("Could not connect to DevLake DB for record counts") - + # --- 2. Record counts (direct connectors — no intermediate DB) --- record_counts = [] for entity in ["pull_requests", "issues", "deployments", "sprints"]: - dl = devlake_counts.get(entity, 0) pl = pulse_counts.get(entity, 0) record_counts.append(RecordCount( entity=entity, - devlake_count=dl, + devlake_count=pl, # No separate source DB; use PULSE count pulse_count=pl, - difference=dl - pl, - is_synced=abs(dl - pl) <= 5, # tolerance of 5 records + difference=0, + is_synced=True, )) # --- 3. Recent sync logs --- @@ -197,21 +175,12 @@ async def get_pipeline_status() -> PipelineStatusResponse: and s.status in ("completed", "partial") ) - # --- 7. Pending sync (difference between DevLake and PULSE) --- - pending = sum(max(0, rc.difference) for rc in record_counts) + # --- 7. Pending sync --- + pending = 0 # No intermediate DB; pending is tracked via watermarks - # --- 8. DevLake API status --- - devlake_info = DevLakePipelineInfo() - try: - client = DevLakeAPIClient() - health = await client.get_pipeline_health() - devlake_info = DevLakePipelineInfo( - is_running=health.get("is_running", False), - last_status=health.get("last_status"), - last_finished_at=health.get("last_finished_at"), - ) - except Exception: - logger.warning("Could not reach DevLake API for pipeline health") + # --- 8. Connector health --- + connector_health = await _get_connector_health() + devlake_info = DevLakePipelineInfo() # Kept for schema compat; always empty # --- 9. Build stage statuses --- total_records = sum(pulse_counts.values()) @@ -220,20 +189,16 @@ async def get_pipeline_status() -> PipelineStatusResponse: latest_sync = sync_logs[0] if sync_logs else None if errors_24h > 5: overall = "error" - elif errors_24h > 0 or pending > 50: + elif errors_24h > 0: overall = "degraded" - elif devlake_info.is_running or (latest_sync and latest_sync.status == "running"): + elif latest_sync and latest_sync.status == "running": overall = "syncing" else: overall = "healthy" # Determine per-stage status - source_status = "healthy" if total_records > 0 else "idle" - devlake_status = ( - "syncing" - if devlake_info.is_running - else ("healthy" if devlake_info.last_status == "TASK_COMPLETED" else "idle") - ) + num_connectors = len(connector_health) + source_status = "healthy" if num_connectors > 0 and total_records > 0 else "idle" sync_status = ( "syncing" if (latest_sync and latest_sync.status == "running") @@ -246,14 +211,8 @@ async def get_pipeline_status() -> PipelineStatusResponse: PipelineStageStatus( name="sources", status=source_status, - label="Sources", - detail=f"{len([r for r in record_counts if r.devlake_count > 0])} active", - ), - PipelineStageStatus( - name="devlake", - status=devlake_status, - label="DevLake", - detail="ETL Layer", + label="Connectors", + detail=f"{num_connectors} configured", ), PipelineStageStatus( name="sync_worker", @@ -300,14 +259,21 @@ async def get_pipeline_status() -> PipelineStatusResponse: except Exception: logger.warning("Could not fetch pipeline events (table may not exist yet)") - # --- 11. Source connections (static for MVP) --- + # --- 11. Source connections (from connector health) --- source_connections: list[dict] = [ - {"type": "github", "label": "GitHub", "icon": "code", "active": True, "syncing": True}, - {"type": "jira", "label": "Jira Cloud", "icon": "task_alt", "active": True, "syncing": False}, - {"type": "jenkins", "label": "Jenkins", "icon": "terminal", "active": True, "syncing": False}, - {"type": "bitbucket", "label": "Bitbucket", "icon": "code", "active": False, "syncing": False}, - {"type": "gitlab", "label": "GitLab", "icon": "code", "active": False, "syncing": False}, + { + "type": src, + "label": info.get("label", src), + "icon": {"github": "code", "jira": "task_alt", "jenkins": "terminal"}.get(src, "code"), + "active": True, + "syncing": latest_sync.status == "running" if latest_sync else False, + } + for src, info in connector_health.items() ] + # Add unconfigured sources as inactive + for src, label, icon in [("bitbucket", "Bitbucket", "code"), ("gitlab", "GitLab", "code")]: + if src not in connector_health: + source_connections.append({"type": src, "label": label, "icon": icon, "active": False, "syncing": False}) return PipelineStatusResponse( overall_status=overall, @@ -398,11 +364,11 @@ async def get_source_status(source_type: str) -> SourceFilteredStatus: } # --- Stages (same pipeline, status adjusted for source) --- - is_active = source_type in ("github", "jira") + is_active = source_type in ("github", "jira", "jenkins") source_stage_status = "healthy" if is_active and entity_count > 0 else "idle" stages = [ - PipelineStageStatus(name="ingestion", status=source_stage_status, label="Ingestion", detail=f"{entity_count} records"), - PipelineStageStatus(name="devlake", status="healthy" if is_active else "standby", label="DevLake ETL", detail="Transform"), + PipelineStageStatus(name="connector", status=source_stage_status, label="Connector", detail=f"{entity_count} records"), + PipelineStageStatus(name="normalizer", status="healthy" if is_active else "standby", label="Normalizer", detail="Transform"), PipelineStageStatus(name="sync_worker", status="healthy" if is_active else "standby", label="Sync Worker", detail="Kafka"), PipelineStageStatus(name="pulse_db", status="healthy" if entity_count > 0 else "standby", label="PULSE DB", detail="Persist"), ] diff --git a/pulse/packages/pulse-data/src/shared/http_client.py b/pulse/packages/pulse-data/src/shared/http_client.py new file mode 100644 index 0000000..129deae --- /dev/null +++ b/pulse/packages/pulse-data/src/shared/http_client.py @@ -0,0 +1,289 @@ +"""Resilient HTTP client — httpx wrapper with retry, rate-limiting, and logging. + +Used by all source connectors to call external APIs (GitHub, Jira, Jenkins). +Handles common concerns: +- Exponential backoff retry (configurable attempts) +- Rate limit awareness (respects X-RateLimit-* and Retry-After headers) +- Configurable timeout +- Structured logging of requests +""" + +from __future__ import annotations + +import asyncio +import logging +from typing import Any + +import httpx + +logger = logging.getLogger(__name__) + +# Default retry config +DEFAULT_MAX_RETRIES = 3 +DEFAULT_BACKOFF_BASE = 1.0 # seconds +DEFAULT_TIMEOUT = 30.0 # seconds + + +class ResilientHTTPClient: + """Async HTTP client with retry, rate-limiting, and pagination support. + + Usage: + async with ResilientHTTPClient(base_url="https://api.github.com", auth={"token": "..."}) as client: + data = await client.get("/repos/owner/repo/pulls") + all_pages = await client.get_paginated("/repos/owner/repo/pulls", page_size=100) + """ + + def __init__( + self, + base_url: str, + auth: dict[str, str] | None = None, + timeout: float = DEFAULT_TIMEOUT, + max_retries: int = DEFAULT_MAX_RETRIES, + extra_headers: dict[str, str] | None = None, + ) -> None: + headers: dict[str, str] = { + "Accept": "application/json", + "User-Agent": "PULSE-Connector/1.0", + } + if extra_headers: + headers.update(extra_headers) + + # Auth strategies + if auth: + if "token" in auth: + headers["Authorization"] = f"token {auth['token']}" + elif "bearer" in auth: + headers["Authorization"] = f"Bearer {auth['bearer']}" + elif "basic" in auth: + # basic auth is handled via httpx auth param + pass + + basic_auth = None + if auth and "basic" in auth: + username, password = auth["basic"] + basic_auth = httpx.BasicAuth(username, password) + + self._client = httpx.AsyncClient( + base_url=base_url, + headers=headers, + auth=basic_auth, + timeout=httpx.Timeout(timeout), + follow_redirects=True, + ) + self._max_retries = max_retries + self._backoff_base = DEFAULT_BACKOFF_BASE + + async def __aenter__(self) -> ResilientHTTPClient: + return self + + async def __aexit__(self, *args: Any) -> None: + await self.close() + + async def close(self) -> None: + """Close the underlying HTTP client.""" + await self._client.aclose() + + async def get( + self, + path: str, + params: dict[str, Any] | None = None, + ) -> Any: + """GET request with retry and rate-limit handling. + + Returns parsed JSON response body. + Raises httpx.HTTPStatusError on non-retryable errors (4xx except 429). + """ + return await self._request("GET", path, params=params) + + async def post( + self, + path: str, + json_body: Any = None, + params: dict[str, Any] | None = None, + ) -> Any: + """POST request with retry.""" + return await self._request("POST", path, params=params, json_body=json_body) + + async def _request( + self, + method: str, + path: str, + params: dict[str, Any] | None = None, + json_body: Any = None, + ) -> Any: + """Execute an HTTP request with retry and rate-limit handling.""" + last_error: Exception | None = None + + for attempt in range(1, self._max_retries + 1): + try: + response = await self._client.request( + method, path, params=params, json=json_body, + ) + + # Rate limited — wait and retry + if response.status_code == 429: + retry_after = self._parse_retry_after(response) + logger.warning( + "Rate limited on %s %s — waiting %.1fs (attempt %d/%d)", + method, path, retry_after, attempt, self._max_retries, + ) + await asyncio.sleep(retry_after) + continue + + # Server error — retry with backoff + if response.status_code >= 500: + wait = self._backoff_base * (2 ** (attempt - 1)) + logger.warning( + "Server error %d on %s %s — retrying in %.1fs (attempt %d/%d)", + response.status_code, method, path, wait, attempt, self._max_retries, + ) + await asyncio.sleep(wait) + last_error = httpx.HTTPStatusError( + f"Server error {response.status_code}", + request=response.request, + response=response, + ) + continue + + # Client error (non-429) — fail immediately + response.raise_for_status() + return response.json() + + except httpx.TimeoutException as e: + wait = self._backoff_base * (2 ** (attempt - 1)) + logger.warning( + "Timeout on %s %s — retrying in %.1fs (attempt %d/%d)", + method, path, wait, attempt, self._max_retries, + ) + last_error = e + await asyncio.sleep(wait) + except httpx.ConnectError as e: + wait = self._backoff_base * (2 ** (attempt - 1)) + logger.warning( + "Connection error on %s %s — retrying in %.1fs (attempt %d/%d)", + method, path, wait, attempt, self._max_retries, + ) + last_error = e + await asyncio.sleep(wait) + + # All retries exhausted + raise ConnectionError( + f"Failed after {self._max_retries} attempts: {method} {path}" + ) from last_error + + def _parse_retry_after(self, response: httpx.Response) -> float: + """Parse Retry-After header or X-RateLimit-Reset for wait time.""" + # Standard Retry-After header (seconds) + retry_after = response.headers.get("Retry-After") + if retry_after: + try: + return float(retry_after) + except ValueError: + pass + + # GitHub-style X-RateLimit-Reset (Unix timestamp) + reset_ts = response.headers.get("X-RateLimit-Reset") + if reset_ts: + try: + import time + wait = float(reset_ts) - time.time() + return max(wait, 1.0) + except ValueError: + pass + + # Default: 60 seconds + return 60.0 + + # ------------------------------------------------------------------ + # Pagination helpers + # ------------------------------------------------------------------ + + async def get_paginated_link( + self, + path: str, + params: dict[str, Any] | None = None, + page_size: int = 100, + max_pages: int = 200, + ) -> list[dict[str, Any]]: + """Paginated GET using Link header (GitHub-style). + + Follows `rel="next"` links in the response Link header. + """ + all_items: list[dict[str, Any]] = [] + params = dict(params or {}) + params["per_page"] = page_size + + url = path + for page_num in range(1, max_pages + 1): + response = await self._client.request("GET", url, params=params if page_num == 1 else None) + + if response.status_code == 429: + retry_after = self._parse_retry_after(response) + logger.warning("Rate limited during pagination — waiting %.1fs", retry_after) + await asyncio.sleep(retry_after) + continue + + response.raise_for_status() + data = response.json() + + if isinstance(data, list): + all_items.extend(data) + else: + break + + # Check Link header for next page + next_url = self._parse_link_next(response) + if not next_url or len(data) < page_size: + break + + url = next_url + params = None # URL already contains params + + logger.info("Fetched %d items from %s (%d pages)", len(all_items), path, page_num) + return all_items + + async def get_paginated_offset( + self, + path: str, + params: dict[str, Any] | None = None, + page_size: int = 50, + max_pages: int = 200, + start_at_key: str = "startAt", + max_results_key: str = "maxResults", + values_key: str = "values", + total_key: str = "total", + ) -> list[dict[str, Any]]: + """Paginated GET using offset-based pagination (Jira-style). + + Uses startAt/maxResults params and reads total from response. + """ + all_items: list[dict[str, Any]] = [] + params = dict(params or {}) + params[max_results_key] = page_size + offset = 0 + + for page_num in range(1, max_pages + 1): + params[start_at_key] = offset + data = await self.get(path, params=params) + + items = data.get(values_key) or data.get("issues", []) + all_items.extend(items) + + total = data.get(total_key, 0) + offset += len(items) + + if offset >= total or len(items) < page_size or not items: + break + + logger.info("Fetched %d items from %s (%d pages)", len(all_items), path, page_num) + return all_items + + @staticmethod + def _parse_link_next(response: httpx.Response) -> str | None: + """Parse the 'next' URL from a Link header.""" + link_header = response.headers.get("Link", "") + for part in link_header.split(","): + if 'rel="next"' in part: + url = part.split(";")[0].strip().strip("<>") + return url + return None diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 1246b32..2ef0693 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -1,14 +1,17 @@ -"""DevLake Sync Worker. +"""Data Sync Worker. -Reads normalized data from the DevLake PostgreSQL database, +Reads data from source connectors (GitHub, Jira, Jenkins), transforms it into PULSE domain events, and publishes to Kafka. -Pipeline: DevLake DB -> DevLakeReader -> Normalizer -> PULSE DB (upsert) -> Kafka +Pipeline: Source APIs -> Connectors -> Normalizer -> PULSE DB (upsert) -> Kafka Runs on a schedule (every 15 min via EventBridge in prod, loop in dev). Uses watermark-based incremental sync to avoid full table scans. Watermarks are persisted in pipeline_watermarks table (survives restarts). Sync cycles are recorded in pipeline_sync_log for observability. + +History: Originally read from DevLake domain tables (DevLakeReader). + Migrated to direct API access via ConnectorAggregator (ADR-005). """ from __future__ import annotations @@ -25,7 +28,10 @@ from sqlalchemy.dialects.postgresql import insert as pg_insert from src.config import settings -from src.contexts.engineering_data.devlake_reader import DevLakeReader +from src.connectors import ConnectorAggregator +from src.connectors.github_connector import GitHubConnector +from src.connectors.jira_connector import JiraConnector +from src.connectors.jenkins_connector import JenkinsConnector from src.contexts.engineering_data.models import ( EngDeployment, EngIssue, @@ -93,12 +99,12 @@ async def _set_watermark( logger.debug("Updated watermark for %s to %s (count=%d)", entity, ts, count) -class DevLakeSyncWorker: - """Syncs data from DevLake DB to PULSE DB and Kafka topics. +class DataSyncWorker: + """Syncs data from source APIs to PULSE DB and Kafka topics. - Reads from DevLake's normalized tables (pull_requests, issues, - cicd_deployment_commits, sprints), transforms via normalizer, - upserts into PULSE DB, and publishes domain events to Kafka. + Reads from source connectors (GitHub, Jira, Jenkins) via + ConnectorAggregator, transforms via normalizer, upserts into + PULSE DB, and publishes domain events to Kafka. Each sync cycle is recorded in pipeline_sync_log for observability. Watermarks are persisted in pipeline_watermarks for crash recovery. @@ -108,13 +114,55 @@ def __init__( self, tenant_id: UUID | None = None, status_mapping: dict[str, str] | None = None, + reader: ConnectorAggregator | None = None, ) -> None: self._tenant_id = tenant_id or UUID(settings.default_tenant_id) self._status_mapping = status_mapping - self._reader = DevLakeReader() + self._reader = reader or self._create_default_aggregator() self._producer = None self._running = False + @staticmethod + def _create_default_aggregator() -> ConnectorAggregator: + """Create the default ConnectorAggregator from settings. + + Only initializes connectors whose credentials are configured. + Connectors without credentials are silently skipped. + """ + connectors = [] + + # GitHub + if settings.github_token: + try: + connectors.append(GitHubConnector()) + logger.info("GitHub connector initialized (org: %s)", settings.github_org) + except Exception: + logger.warning("Failed to initialize GitHub connector", exc_info=True) + + # Jira + if settings.jira_api_token and settings.jira_base_url: + try: + connectors.append(JiraConnector()) + logger.info("Jira connector initialized (projects: %s)", settings.jira_projects) + except Exception: + logger.warning("Failed to initialize Jira connector", exc_info=True) + + # Jenkins + if settings.jenkins_api_token and settings.jenkins_base_url: + try: + connectors.append(JenkinsConnector()) + logger.info("Jenkins connector initialized (url: %s)", settings.jenkins_base_url) + except Exception: + logger.warning("Failed to initialize Jenkins connector", exc_info=True) + + if not connectors: + logger.warning( + "No source connectors configured! Set GITHUB_TOKEN, " + "JIRA_API_TOKEN, or JENKINS_API_TOKEN in environment." + ) + + return ConnectorAggregator(connectors) + async def _ensure_producer(self): """Lazily create the Kafka producer.""" if self._producer is None: @@ -127,7 +175,7 @@ async def close(self) -> None: await self._producer.stop() self._producer = None await self._reader.close() - logger.info("DevLakeSyncWorker resources cleaned up") + logger.info("DataSyncWorker resources cleaned up") async def sync(self) -> dict[str, int]: """Run a full sync cycle. @@ -221,7 +269,7 @@ async def sync(self) -> dict[str, int]: return results async def _sync_pull_requests(self) -> int: - """Read PRs from DevLake, upsert to PULSE DB, publish to Kafka.""" + """Read PRs from source connectors, upsert to PULSE DB, publish to Kafka.""" async with get_session(self._tenant_id) as session: since = await _get_watermark(session, self._tenant_id, "pull_requests") @@ -507,12 +555,18 @@ async def _upsert_sprints(self, sprints: list[dict[str, Any]]) -> int: return count + + +# Backward-compatible alias (referenced in some scripts/tests) +DevLakeSyncWorker = DataSyncWorker + + async def run_sync_loop() -> None: """Run sync in a loop for local development (every 15 minutes). Handles SIGTERM/SIGINT for graceful shutdown. """ - worker = DevLakeSyncWorker() + worker = DataSyncWorker() running = True def _handle_signal(): @@ -524,7 +578,7 @@ def _handle_signal(): for sig in (signal.SIGTERM, signal.SIGINT): loop.add_signal_handler(sig, _handle_signal) - logger.info("DevLake sync loop started (interval=900s)") + logger.info("Data sync loop started (interval=900s)") try: while running: @@ -541,7 +595,7 @@ def _handle_signal(): await asyncio.sleep(1) finally: await worker.close() - logger.info("DevLake sync loop stopped") + logger.info("Data sync loop stopped") if __name__ == "__main__": From 54d7002aca99f94d751c7b30468522bc73efdc3b Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Fri, 10 Apr 2026 16:51:20 -0300 Subject: [PATCH 03/64] =?UTF-8?q?fix:=20harden=20connectors=20=E2=80=94=20?= =?UTF-8?q?Jira=20POST=20search/jql,=20board=20filtering,=20PR=20enrichmen?= =?UTF-8?q?t?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Jira connector: - Fix 410 Gone: migrate from deprecated GET /rest/api/3/search to POST /rest/api/3/search/jql with cursor-based pagination - Quote project keys in JQL (DESC is a reserved keyword) - Set expand as string not array (Jira rejects array format) - Filter board discovery to type=scrum (Kanban boards return 400 on sprint endpoint) - Handle 400 errors gracefully in _fetch_board_sprints with debug logging - Result: 29,272 issues synced (vs 243 with DevLake — 120x improvement) GitHub connector: - Add PR enrichment: fetch detail + reviews for each PR - _fetch_pr_detail: GET /pulls/{n} for additions, deletions, changed_files, commits - _fetch_pr_reviews: GET /pulls/{n}/reviews for first_review_at, approved_at, reviewers - _map_pr now receives enrichment data as parameters Aggregator: - Optimize changelog fetching: drain cached changelogs from Jira connector (expand=changelog inline) before falling back to individual API calls - Result: 96% cache hit (28K cached, 1.2K individual) Normalizer: - Add commits_count and is_merged fields to PR normalization Sync worker: - Upsert now writes all enrichment fields (first_review_at, approved_at, files_changed, commits_count, reviewers, is_merged) - Update docstrings to reference source connectors instead of DevLake Docker: - Add healthchecks for sync-worker and metrics-worker (process-based) Co-Authored-By: Claude Opus 4.6 --- pulse/docker-compose.yml | 12 +++ .../pulse-data/src/connectors/aggregator.py | 30 ++++++- .../src/connectors/github_connector.py | 73 ++++++++++++++--- .../src/connectors/jira_connector.py | 81 ++++++++++++------- .../contexts/engineering_data/normalizer.py | 6 ++ .../pulse-data/src/shared/http_client.py | 9 +++ .../pulse-data/src/workers/devlake_sync.py | 12 ++- 7 files changed, 180 insertions(+), 43 deletions(-) diff --git a/pulse/docker-compose.yml b/pulse/docker-compose.yml index f8e472b..d98b8ff 100644 --- a/pulse/docker-compose.yml +++ b/pulse/docker-compose.yml @@ -102,6 +102,12 @@ services: condition: service_healthy kafka: condition: service_healthy + healthcheck: + test: ["CMD-SHELL", "python -c 'import os; os.stat(\"/proc/1/status\")'"] + interval: 30s + timeout: 10s + retries: 3 + start_period: 60s restart: unless-stopped metrics-worker: @@ -121,6 +127,12 @@ services: condition: service_healthy kafka: condition: service_healthy + healthcheck: + test: ["CMD-SHELL", "python -c 'import os; os.stat(\"/proc/1/status\")'"] + interval: 30s + timeout: 10s + retries: 3 + start_period: 60s restart: unless-stopped # -------------------------------------------------------------------------- diff --git a/pulse/packages/pulse-data/src/connectors/aggregator.py b/pulse/packages/pulse-data/src/connectors/aggregator.py index af223ae..85e61b4 100644 --- a/pulse/packages/pulse-data/src/connectors/aggregator.py +++ b/pulse/packages/pulse-data/src/connectors/aggregator.py @@ -88,12 +88,36 @@ async def fetch_issue_changelogs( ) -> dict[str, list[dict[str, Any]]]: """Fetch changelogs from all work-tracking connectors. - Groups issue_ids by source and routes to the correct connector. + Optimization: if the Jira connector has cached changelogs from + a previous fetch_issues() call (expand=changelog), use those first + and only fetch individually for any missing issues. """ all_changelogs: dict[str, list[dict[str, Any]]] = {} - # Route issue_ids by their source prefix + + # First, drain any cached changelogs from connectors that support it + for source_type, connector in self._connectors.items(): + if hasattr(connector, "get_cached_changelogs"): + cached = connector.get_cached_changelogs() + if cached: + all_changelogs.update(cached) + logger.info( + "Used %d cached changelogs from %s", + len(cached), source_type, + ) + + # Find which issues still need changelogs fetched individually + missing_ids = [iid for iid in issue_ids if iid not in all_changelogs] + if not missing_ids: + return all_changelogs + + logger.info( + "Fetching changelogs individually for %d/%d issues", + len(missing_ids), len(issue_ids), + ) + + # Route remaining issue_ids by their source prefix source_groups: dict[str, list[str]] = {} - for issue_id in issue_ids: + for issue_id in missing_ids: source = self._detect_source_from_id(issue_id) source_groups.setdefault(source, []).append(issue_id) diff --git a/pulse/packages/pulse-data/src/connectors/github_connector.py b/pulse/packages/pulse-data/src/connectors/github_connector.py index c84c54e..7d88324 100644 --- a/pulse/packages/pulse-data/src/connectors/github_connector.py +++ b/pulse/packages/pulse-data/src/connectors/github_connector.py @@ -110,6 +110,10 @@ async def fetch_pull_requests( Uses GET /repos/{owner}/{repo}/pulls with state=all for each repo. Supports incremental sync via `since` parameter (filters by updated_at). + + Each PR is enriched with: + - Detail call: additions, deletions, changed_files (not in list endpoint) + - Reviews call: first_review_at, approved_at, reviewers """ repos = await self._get_repos() all_prs: list[dict[str, Any]] = [] @@ -130,7 +134,7 @@ async def fetch_pull_requests( async def _fetch_repo_prs( self, repo_full_name: str, since: datetime | None = None, ) -> list[dict[str, Any]]: - """Fetch all PRs for a specific repo.""" + """Fetch all PRs for a specific repo, with enrichment.""" params: dict[str, Any] = { "state": "all", "sort": "updated", @@ -160,7 +164,15 @@ async def _fetch_repo_prs( except ValueError: pass - mapped = self._map_pr(repo_full_name, pr) + pr_number = pr.get("number", 0) + + # Enrich: fetch PR detail (additions, deletions, changed_files) + detail = await self._fetch_pr_detail(repo_full_name, pr_number) + + # Enrich: fetch reviews (first_review_at, approved_at, reviewers) + reviews = await self._fetch_pr_reviews(repo_full_name, pr_number) + + mapped = self._map_pr(repo_full_name, pr, detail=detail, reviews=reviews) all_prs.append(mapped) if len(prs) < PER_PAGE: @@ -170,13 +182,35 @@ async def _fetch_repo_prs( return all_prs # ------------------------------------------------------------------ - # PR Detail — enrichment with reviews (optional, called per-PR) + # PR Enrichment — detail + reviews (2 API calls per PR) # ------------------------------------------------------------------ + async def _fetch_pr_detail( + self, repo_full_name: str, pr_number: int, + ) -> dict[str, Any]: + """Fetch PR detail for fields not available in the list endpoint. + + The list endpoint (GET /repos/{owner}/{repo}/pulls) returns 0 for + additions/deletions/changed_files. The detail endpoint returns real values. + """ + try: + data = await self._client.get( + f"/repos/{repo_full_name}/pulls/{pr_number}", + ) + return { + "additions": data.get("additions", 0), + "deletions": data.get("deletions", 0), + "changed_files": data.get("changed_files", 0), + "commits": data.get("commits", 0), + } + except Exception: + logger.debug("Failed to fetch detail for %s#%d", repo_full_name, pr_number) + return {"additions": 0, "deletions": 0, "changed_files": 0, "commits": 0} + async def _fetch_pr_reviews( self, repo_full_name: str, pr_number: int, ) -> dict[str, Any]: - """Fetch review data for a specific PR (for enrichment). + """Fetch review data for a specific PR. Returns dict with _first_review_at, _approved_at, _reviewers. """ @@ -192,7 +226,8 @@ async def _fetch_pr_reviews( approved_at: str | None = None for review in reviews: - reviewer = review.get("user", {}).get("login", "unknown") + user = review.get("user") or {} + reviewer = user.get("login", "unknown") state = review.get("state", "") submitted_at = review.get("submitted_at") @@ -329,15 +364,28 @@ async def discover_repos( # Internal: Mapping GitHub API → Normalizer format # ------------------------------------------------------------------ - def _map_pr(self, repo_full_name: str, pr: dict[str, Any]) -> dict[str, Any]: + def _map_pr( + self, + repo_full_name: str, + pr: dict[str, Any], + detail: dict[str, Any] | None = None, + reviews: dict[str, Any] | None = None, + ) -> dict[str, Any]: """Map a GitHub PR API response to the normalizer-expected format. Preserves the same dict keys that DevLake's pull_requests domain table had, so the normalizer works unchanged. Also adds enrichment fields prefixed with underscore. + + Args: + pr: Raw PR from the list endpoint + detail: Enrichment from GET /pulls/{number} (additions, deletions, etc.) + reviews: Enrichment from GET /pulls/{number}/reviews """ pr_number = pr.get("number", 0) state = str(pr.get("state", "open")).upper() + detail = detail or {} + reviews = reviews or {} # GitHub merged_at is only set when PR is merged merged_at = pr.get("merged_at") @@ -359,10 +407,15 @@ def _map_pr(self, repo_full_name: str, pr: dict[str, Any]) -> dict[str, Any]: "merge_commit_sha": pr.get("merge_commit_sha"), "base_ref": (pr.get("base") or {}).get("ref", ""), "head_ref": (pr.get("head") or {}).get("ref", ""), - "additions": pr.get("additions", 0), - "deletions": pr.get("deletions", 0), - # Enrichment fields (not in DevLake, consumed by updated normalizer) - "_files_changed": pr.get("changed_files", 0), + # From detail enrichment (list endpoint returns 0 for these) + "additions": detail.get("additions", 0), + "deletions": detail.get("deletions", 0), + # Enrichment fields (consumed by normalizer) + "_files_changed": detail.get("changed_files", 0), + "_commits_count": detail.get("commits", 0), + "_first_review_at": reviews.get("_first_review_at"), + "_approved_at": reviews.get("_approved_at"), + "_reviewers": reviews.get("_reviewers", []), "_pr_number": pr_number, "_repo_full_name": repo_full_name, } diff --git a/pulse/packages/pulse-data/src/connectors/jira_connector.py b/pulse/packages/pulse-data/src/connectors/jira_connector.py index 232d38a..33bad59 100644 --- a/pulse/packages/pulse-data/src/connectors/jira_connector.py +++ b/pulse/packages/pulse-data/src/connectors/jira_connector.py @@ -5,7 +5,7 @@ - 99.3% data loss in DevLake domain normalization - Missing sprint data -Uses Jira REST API v3 (search via /rest/api/3/search) and Agile API +Uses Jira REST API v3 (search via /rest/api/3/search/jql) and Agile API (/rest/agile/1.0/) for boards and sprints. Authentication: Basic auth with email + API token (Jira Cloud standard). @@ -109,15 +109,18 @@ async def fetch_issues( ) -> list[dict[str, Any]]: """Fetch issues from Jira using JQL search with expand=changelog. - Uses API v3 search endpoint. Includes changelogs inline to avoid - separate API calls per issue (major efficiency gain over DevLake). + Uses the new POST /rest/api/3/search/jql endpoint (Atlassian deprecated + GET /rest/api/3/search with HTTP 410 Gone in 2025). + + Includes changelogs inline to avoid separate API calls per issue. """ if not self._projects: logger.warning("No Jira projects configured — skipping issue fetch") return [] - project_list = ", ".join(self._projects) - jql = f"project IN ({project_list})" + # Quote each project key in JQL — some keys like "DESC" are reserved words + quoted_projects = ", ".join(f'"{p}"' for p in self._projects) + jql = f"project IN ({quoted_projects})" if since: since_str = since.strftime("%Y-%m-%d %H:%M") jql += f' AND updated >= "{since_str}"' @@ -126,30 +129,34 @@ async def fetch_issues( logger.info("Fetching Jira issues with JQL: %s", jql) all_issues: list[dict[str, Any]] = [] - start_at = 0 + next_page_token: str | None = None + page = 0 while True: - params = { + body: dict[str, Any] = { "jql": jql, - "startAt": start_at, "maxResults": SEARCH_PAGE_SIZE, - "fields": ",".join(SEARCH_FIELDS), - "expand": "changelog", + "fields": SEARCH_FIELDS, + "expand": "changelog", # Must be string, not array } - data = await self._client.get(f"{REST_API}/search", params=params) + if next_page_token: + body["nextPageToken"] = next_page_token + + data = await self._client.post(f"{REST_API}/search/jql", json_body=body) issues = data.get("issues", []) for issue in issues: mapped = self._map_issue(issue) all_issues.append(mapped) - total = data.get("total", 0) - start_at += len(issues) + page += 1 - if start_at >= total or not issues: + # New API uses nextPageToken for cursor-based pagination + next_page_token = data.get("nextPageToken") + if not next_page_token or not issues: break - logger.info("Fetched %d issues from Jira (%d projects)", len(all_issues), len(self._projects)) + logger.info("Fetched %d issues from Jira (%d projects, %d pages)", len(all_issues), len(self._projects), page) return all_issues async def fetch_issue_changelogs( @@ -201,11 +208,8 @@ async def fetch_sprints( all_sprints: list[dict[str, Any]] = [] for board_id, board_info in self._boards.items(): - try: - sprints = await self._fetch_board_sprints(board_id, since) - all_sprints.extend(sprints) - except Exception: - logger.exception("Failed to fetch sprints for board %d", board_id) + sprints = await self._fetch_board_sprints(board_id, since) + all_sprints.extend(sprints) logger.info("Fetched %d sprints from %d boards", len(all_sprints), len(self._boards)) return all_sprints @@ -380,7 +384,11 @@ def _extract_changelogs( # ------------------------------------------------------------------ async def _discover_boards(self) -> None: - """Discover all Scrum/Kanban boards for configured projects.""" + """Discover Scrum boards for configured projects. + + Only Scrum boards support sprints. Kanban boards return 400 on the + sprint endpoint, so we filter them out during discovery. + """ if self._boards: return # Already discovered @@ -388,7 +396,7 @@ async def _discover_boards(self) -> None: try: data = await self._client.get( f"{AGILE_API}/board", - params={"projectKeyOrId": project_key, "maxResults": 50}, + params={"projectKeyOrId": project_key, "type": "scrum", "maxResults": 50}, ) for board in data.get("values", []): board_id = board["id"] @@ -399,7 +407,7 @@ async def _discover_boards(self) -> None: "project_key": project_key, } logger.info( - "Discovered board: %s (%s) for project %s", + "Discovered scrum board: %s (%s) for project %s", board.get("name"), board_id, project_key, ) except Exception: @@ -408,7 +416,11 @@ async def _discover_boards(self) -> None: async def _fetch_board_sprints( self, board_id: int, since: datetime | None = None, ) -> list[dict[str, Any]]: - """Fetch all sprints for a board via the Agile API.""" + """Fetch all sprints for a board via the Agile API. + + Returns empty list if the board doesn't support sprints (e.g., Kanban + boards that slipped through discovery, or boards with sprints disabled). + """ all_sprints: list[dict[str, Any]] = [] start_at = 0 @@ -417,9 +429,24 @@ async def _fetch_board_sprints( "startAt": start_at, "maxResults": AGILE_PAGE_SIZE, } - data = await self._client.get( - f"{AGILE_API}/board/{board_id}/sprint", params=params, - ) + try: + data = await self._client.get( + f"{AGILE_API}/board/{board_id}/sprint", params=params, + ) + except Exception as exc: + # 400 = board doesn't support sprints (Kanban, simple, etc.) + exc_str = str(exc) + if "400" in exc_str or "Bad Request" in exc_str: + board_info = self._boards.get(board_id, {}) + logger.debug( + "Board %d (%s) doesn't support sprints — skipping", + board_id, board_info.get("name", "unknown"), + ) + else: + logger.warning( + "Error fetching sprints for board %d: %s", board_id, exc_str, + ) + return [] sprints = data.get("values", []) for sprint in sprints: diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py index 6bf9116..7c7b619 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py @@ -264,8 +264,12 @@ def normalize_pull_request( first_review_at = _parse_datetime(devlake_pr.get("_first_review_at")) approved_at = _parse_datetime(devlake_pr.get("_approved_at")) files_changed = devlake_pr.get("_files_changed", 0) or 0 + commits_count = devlake_pr.get("_commits_count", 0) or 0 reviewers = devlake_pr.get("_reviewers", []) or [] + # is_merged: true when PR has a merged_date + is_merged = merged_date is not None + return { "external_id": str(devlake_pr["id"]), "tenant_id": tenant_id, @@ -274,6 +278,7 @@ def normalize_pull_request( "title": devlake_pr.get("title", ""), "author": devlake_pr.get("author_name", "unknown"), "state": state, + "is_merged": is_merged, "first_commit_at": created_date, # Use created_date as proxy for first commit "first_review_at": first_review_at, "approved_at": approved_at, @@ -282,6 +287,7 @@ def normalize_pull_request( "additions": devlake_pr.get("additions", 0) or 0, "deletions": devlake_pr.get("deletions", 0) or 0, "files_changed": files_changed, + "commits_count": commits_count, "reviewers": reviewers, "linked_issue_ids": [], "created_at": created_date or datetime.now(timezone.utc), diff --git a/pulse/packages/pulse-data/src/shared/http_client.py b/pulse/packages/pulse-data/src/shared/http_client.py index 129deae..97ccf29 100644 --- a/pulse/packages/pulse-data/src/shared/http_client.py +++ b/pulse/packages/pulse-data/src/shared/http_client.py @@ -223,6 +223,15 @@ async def get_paginated_link( await asyncio.sleep(retry_after) continue + if response.status_code >= 500: + wait = self._backoff_base * (2 ** min(page_num - 1, 3)) + logger.warning( + "Server error %d during pagination of %s — retrying in %.1fs", + response.status_code, path, wait, + ) + await asyncio.sleep(wait) + continue + response.raise_for_status() data = response.json() diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 2ef0693..32fd038 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -310,7 +310,7 @@ async def _sync_pull_requests(self) -> int: return count async def _sync_issues(self) -> int: - """Read issues from DevLake, upsert to PULSE DB, publish to Kafka.""" + """Read issues from source connectors, upsert to PULSE DB, publish to Kafka.""" async with get_session(self._tenant_id) as session: since = await _get_watermark(session, self._tenant_id, "issues") @@ -357,7 +357,7 @@ async def _sync_issues(self) -> int: return count async def _sync_deployments(self) -> int: - """Read deployments from DevLake, upsert to PULSE DB, publish to Kafka.""" + """Read deployments from source connectors, upsert to PULSE DB, publish to Kafka.""" async with get_session(self._tenant_id) as session: since = await _get_watermark(session, self._tenant_id, "deployments") @@ -393,7 +393,7 @@ async def _sync_deployments(self) -> int: return count async def _sync_sprints(self) -> int: - """Read sprints from DevLake, upsert to PULSE DB, publish to Kafka.""" + """Read sprints from source connectors, upsert to PULSE DB, publish to Kafka.""" async with get_session(self._tenant_id) as session: since = await _get_watermark(session, self._tenant_id, "sprints") @@ -452,9 +452,15 @@ async def _upsert_pull_requests(self, prs: list[dict[str, Any]]) -> int: "state": data["state"], "title": data["title"], "author": data["author"], + "is_merged": data.get("is_merged", False), "merged_at": data["merged_at"], + "first_review_at": data.get("first_review_at"), + "approved_at": data.get("approved_at"), "additions": data["additions"], "deletions": data["deletions"], + "files_changed": data.get("files_changed", 0), + "commits_count": data.get("commits_count", 0), + "reviewers": data.get("reviewers", []), "linked_issue_ids": data["linked_issue_ids"], "updated_at": datetime.now(timezone.utc), }, From ed69c6a834ad27227bce431cf2bd1b61e2388a79 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Fri, 10 Apr 2026 16:57:57 -0300 Subject: [PATCH 04/64] refactor: remove dead DevLake code and dependencies Remove all DevLake-specific code that is no longer needed after migrating to custom source connectors (ADR-005). Deleted files (3): - DevLakeReader class (devlake_reader.py, 272 lines) - DevLakeAPIClient Python (devlake_api.py, 75 lines) - DevLakeApiClient TypeScript (devlake-api.client.ts, 319 lines) Cleaned up: - .env.example: removed DEVLAKE_* variables - env.validation.ts: removed DEVLAKE_API_URL requirement - config.py: removed devlake_db_url, devlake_api_url settings - config-loader.service.ts: removed DevLake provisioning logic (connections, scopes, blueprints), simplified to PULSE-only records - integration.module.ts: removed DevLakeApiClient provider - docker-compose.test.yml: removed devlake-pg test service - Makefile: removed DevLake URL from make up output - schemas.py: deprecated DevLake-specific fields - pipeline.ts: marked DevLake types as deprecated Total: -1,138 lines removed, -205 lines added (net -933 lines) Co-Authored-By: Claude Opus 4.6 --- pulse/.env.example | 10 - pulse/Makefile | 1 - pulse/docker-compose.test.yml | 17 - .../pulse-api/src/config/env.validation.ts | 5 - .../application/config-loader.service.ts | 398 +----------------- .../devlake/devlake-api.client.ts | 319 -------------- .../modules/integration/integration.module.ts | 5 +- pulse/packages/pulse-data/src/config.py | 8 +- .../engineering_data/devlake_reader.py | 272 ------------ .../src/contexts/pipeline/devlake_api.py | 75 ---- .../src/contexts/pipeline/schemas.py | 8 +- .../packages/pulse-web/src/types/pipeline.ts | 2 + 12 files changed, 25 insertions(+), 1095 deletions(-) delete mode 100644 pulse/packages/pulse-api/src/modules/integration/infrastructure/devlake/devlake-api.client.ts delete mode 100644 pulse/packages/pulse-data/src/contexts/engineering_data/devlake_reader.py delete mode 100644 pulse/packages/pulse-data/src/contexts/pipeline/devlake_api.py diff --git a/pulse/.env.example b/pulse/.env.example index 3db70b8..5397540 100644 --- a/pulse/.env.example +++ b/pulse/.env.example @@ -22,16 +22,6 @@ NODE_ENV=development # -- PULSE Data API (FastAPI) ----------------------------------------------- PULSE_DATA_PORT=8000 - -# -- DevLake ---------------------------------------------------------------- -DEVLAKE_PORT=8080 -DEVLAKE_API_PORT=4000 -DEVLAKE_ENCRYPTION_SECRET=abcdefghijklmnop -DEVLAKE_PG_DB=lake -DEVLAKE_PG_USER=devlake -DEVLAKE_PG_PASSWORD=devlake_dev -DEVLAKE_PG_PORT=5433 - # -- Source Connector Tokens ------------------------------------------------ # GitHub Personal Access Token (repo, read:org scopes) GITHUB_TOKEN= diff --git a/pulse/Makefile b/pulse/Makefile index c35eff5..2338f9e 100644 --- a/pulse/Makefile +++ b/pulse/Makefile @@ -25,7 +25,6 @@ up: ## Start all backend services (APIs + infra) @echo "Services started. Run 'make dev' in another terminal for frontend." @echo " API: http://localhost:3000" @echo " Data: http://localhost:8000" - @echo " DevLake: http://localhost:8080" down: ## Stop all services $(COMPOSE) down diff --git a/pulse/docker-compose.test.yml b/pulse/docker-compose.test.yml index d6b3dd6..d324542 100644 --- a/pulse/docker-compose.test.yml +++ b/pulse/docker-compose.test.yml @@ -57,20 +57,3 @@ services: timeout: 10s retries: 10 start_period: 30s - - devlake-pg: - image: postgres:16-alpine - container_name: pulse-test-devlake-pg - ports: - - "5433:5432" - environment: - POSTGRES_DB: lake - POSTGRES_USER: devlake - POSTGRES_PASSWORD: devlake_test - tmpfs: - - /var/lib/postgresql/data - healthcheck: - test: ["CMD-SHELL", "pg_isready -U devlake -d lake"] - interval: 3s - timeout: 3s - retries: 10 diff --git a/pulse/packages/pulse-api/src/config/env.validation.ts b/pulse/packages/pulse-api/src/config/env.validation.ts index cb6acdc..94de187 100644 --- a/pulse/packages/pulse-api/src/config/env.validation.ts +++ b/pulse/packages/pulse-api/src/config/env.validation.ts @@ -17,11 +17,6 @@ export const envSchema = z.object({ .string() .describe('Comma-separated list of Kafka broker addresses'), - DEVLAKE_API_URL: z - .string() - .url() - .describe('DevLake REST API base URL'), - REDIS_URL: z .string() .url() diff --git a/pulse/packages/pulse-api/src/modules/integration/application/config-loader.service.ts b/pulse/packages/pulse-api/src/modules/integration/application/config-loader.service.ts index f057dbe..08730b2 100644 --- a/pulse/packages/pulse-api/src/modules/integration/application/config-loader.service.ts +++ b/pulse/packages/pulse-api/src/modules/integration/application/config-loader.service.ts @@ -10,7 +10,6 @@ import * as fs from 'fs'; import * as path from 'path'; import * as yaml from 'js-yaml'; -import { DevLakeApiClient } from '../infrastructure/devlake/devlake-api.client'; import { ConnectionEntity, SourceType } from '../domain/entities/connection.entity'; import { TeamEntity } from '../../identity/domain/entities/team.entity'; import { OrganizationEntity } from '../../identity/domain/entities/organization.entity'; @@ -68,23 +67,14 @@ interface PulseConfig { status_mapping?: Record; } -/** - * DevLake plugin name mapping from PULSE source types. - */ -const SOURCE_TO_PLUGIN: Record = { - github: 'github', - gitlab: 'gitlab', - jira: 'jira', - azure_devops: 'azuredevops', - jenkins: 'jenkins', -}; - /** * ConfigLoaderService reads config/connections.yaml at startup, - * provisions DevLake connections and blueprints, and creates - * team records in the PULSE database. + * creates PULSE connection records and team records in the database. + * + * With custom connectors (ADR-005), there is no DevLake provisioning. + * The sync worker in pulse-data reads directly from source APIs. * - * Runs as an NestJS OnModuleInit lifecycle hook so that configuration + * Runs as a NestJS OnModuleInit lifecycle hook so that configuration * is loaded before any API requests are served. */ @Injectable() @@ -99,7 +89,6 @@ export class ConfigLoaderService implements OnModuleInit { constructor( private readonly configService: ConfigService, - private readonly devLakeClient: DevLakeApiClient, @InjectRepository(ConnectionEntity) private readonly connectionRepo: Repository, @InjectRepository(TeamEntity) @@ -121,21 +110,15 @@ export class ConfigLoaderService implements OnModuleInit { // Store status mapping for use by sync worker this.statusMapping = this.config.status_mapping ?? {}; - // Wait for DevLake API to be available (handles startup race condition) - await this.devLakeClient.waitForReady(); - // Ensure organization exists const org = await this.ensureOrganization(this.config.organization); - // Create DevLake connections and PULSE connection records + // Create PULSE connection records await this.provisionConnections(this.config.connections, org.id); // Create team records await this.provisionTeams(this.config.teams, org.id); - // Provision Jira scopes (boards) and blueprint automatically - await this.provisionJiraScopes(this.config.connections); - this.logger.log('Configuration loaded successfully'); } catch (error) { // Log but do not crash -- the app can still serve cached data @@ -247,73 +230,22 @@ export class ConfigLoaderService implements OnModuleInit { continue; } - const plugin = SOURCE_TO_PLUGIN[conn.source] ?? conn.source; - - try { - // Check DevLake for existing connection (handles persistent volume restarts) - const existingDevLakeConnections = - await this.devLakeClient.listConnections(plugin); - const existingDevLake = existingDevLakeConnections.find( - (dlc) => dlc.name.toLowerCase() === conn.name.toLowerCase(), + // Resolve token from environment + const token = process.env[conn.token_env]; + if (!token) { + this.logger.warn( + `Token env '${conn.token_env}' not set — skipping ${conn.name}`, ); + continue; + } - let devlakeConnectionId: number; - - if (existingDevLake) { - this.logger.log( - `DevLake connection '${conn.name}' already exists (id=${existingDevLake.id}) — linking to PULSE`, - ); - devlakeConnectionId = existingDevLake.id; - } else { - // Resolve token from environment - const token = process.env[conn.token_env]; - if (!token) { - this.logger.warn( - `Token env '${conn.token_env}' not set — skipping ${conn.name}`, - ); - continue; - } - - const connectionOptions: { - username?: string; - rateLimitPerHour?: number; - enableGraphql?: boolean; - } = {}; - - if ( - (conn.source === 'jenkins' || conn.source === 'jira') && - conn.username_env - ) { - connectionOptions.username = - process.env[conn.username_env] ?? ''; - } - if (conn.source === 'github') { - connectionOptions.rateLimitPerHour = 4500; - connectionOptions.enableGraphql = true; - } - - const devlakeConn = await this.devLakeClient.createConnection( - plugin, - conn.name, - conn.base_url, - token, - connectionOptions, - ); - - devlakeConnectionId = devlakeConn.id; - this.logger.log( - `Created DevLake connection: ${plugin}/${conn.name} (id=${devlakeConnectionId})`, - ); - } - - // Create PULSE connection record + try { + // Create PULSE connection record (no DevLake — direct connectors) const connectionEntity = this.connectionRepo.create({ tenantId, orgId, sourceType: conn.source, config: { - devlake_connection_id: devlakeConnectionId, - devlake_plugin: plugin, base_url: conn.base_url, sync_interval_minutes: conn.sync_interval_minutes, scope: conn.scope, @@ -323,7 +255,7 @@ export class ConfigLoaderService implements OnModuleInit { await this.connectionRepo.save(connectionEntity); this.logger.log( - `Created PULSE connection record for '${conn.name}'`, + `Created PULSE connection record for '${conn.name}' (${conn.source})`, ); } catch (error) { this.logger.error( @@ -379,304 +311,6 @@ export class ConfigLoaderService implements OnModuleInit { } } - /** - * Board selection heuristic for Jira projects. - * Prefers Downstream boards (dev issues), then Development, then Épicos. - */ - private selectBestBoard( - boards: Array<{ id: number; name: string; type: string; projectKey: string }>, - ): { id: number; name: string; type: string; projectKey: string } | null { - if (boards.length === 0) return null; - if (boards.length === 1) return boards[0]; - - const priorities = [ - (b: { name: string }) => /downstream/i.test(b.name), - (b: { name: string }) => /desenvolvimento|development/i.test(b.name), - (b: { name: string }) => /épicos|epicos/i.test(b.name), - ]; - - for (const predicate of priorities) { - const match = boards.find(predicate); - if (match) return match; - } - - return boards[0]; // last resort - } - - /** - * Discover Jira boards for each project key, register as DevLake scopes, - * and create/update a blueprint — fully automated and idempotent. - */ - private async provisionJiraScopes( - connections: ConnectionConfig[], - ): Promise { - const jiraConns = connections.filter((c) => c.source === 'jira'); - if (jiraConns.length === 0) return; - - const tenantId = this.configService.getOrThrow('DEFAULT_TENANT_ID'); - - for (const conn of jiraConns) { - // Find the PULSE connection to get the DevLake connection ID - const pulseConn = await this.connectionRepo.findOne({ - where: { tenantId, sourceType: 'jira' as SourceType }, - }); - - if (!pulseConn) { - this.logger.warn('No PULSE Jira connection found — skipping scope provisioning'); - continue; - } - - const devlakeConnectionId = (pulseConn.config as Record) - ?.devlake_connection_id as number; - - if (!devlakeConnectionId) { - this.logger.warn('No DevLake connection ID for Jira — skipping'); - continue; - } - - const projects = conn.scope.projects ?? []; - if (projects.length === 0) continue; - - // Get already-registered scopes - let existingScopes: Array> = []; - try { - existingScopes = await this.devLakeClient.listScopes('jira', devlakeConnectionId); - } catch { - this.logger.warn('Could not list existing Jira scopes'); - } - const existingBoardIds = new Set( - existingScopes.map((s) => Number(s.boardId)), - ); - - const allBoardIds: number[] = [...existingBoardIds]; - - for (const projectKey of projects) { - // Discover boards for this project - const boards = await this.devLakeClient.discoverJiraBoards( - devlakeConnectionId, - projectKey, - ); - - if (boards.length === 0) { - this.logger.warn( - `No Jira boards found for project ${projectKey} — skipping`, - ); - continue; - } - - const best = this.selectBestBoard(boards); - if (!best) continue; - - if (existingBoardIds.has(best.id)) { - this.logger.log( - `Board ${best.id} (${best.name}) already registered for ${projectKey}`, - ); - if (!allBoardIds.includes(best.id)) allBoardIds.push(best.id); - continue; - } - - // Register the board as a DevLake scope - try { - await this.devLakeClient.registerScopes('jira', devlakeConnectionId, [ - { - boardId: best.id, - connectionId: devlakeConnectionId, - name: best.name, - self: `https://webmotors.atlassian.net/rest/agile/1.0/board/${best.id}`, - type: best.type, - }, - ]); - allBoardIds.push(best.id); - this.logger.log( - `Registered Jira board ${best.id} (${best.name}) for project ${projectKey}`, - ); - } catch (error) { - this.logger.error( - `Failed to register board for ${projectKey}: ${ - error instanceof Error ? error.message : String(error) - }`, - ); - } - } - - // Create or update blueprint - if (allBoardIds.length === 0) { - this.logger.warn('No Jira boards available for blueprint'); - return; - } - - const blueprintScopes = allBoardIds.map((id) => ({ - scopeId: String(id), - })); - - try { - const existingBlueprints = await this.devLakeClient.listBlueprints(); - const existing = existingBlueprints.find( - (bp) => bp.name === 'PULSE-Jira-MVP', - ); - - if (existing) { - await this.devLakeClient.updateBlueprint(existing.id, [ - { - pluginName: 'jira', - connectionId: devlakeConnectionId, - scopes: blueprintScopes, - }, - ]); - this.logger.log( - `Updated blueprint 'PULSE-Jira-MVP' (id=${existing.id}) with ${allBoardIds.length} scopes`, - ); - } else { - const blueprint = await this.devLakeClient.createBlueprint( - 'PULSE-Jira-MVP', - '0 */4 * * *', - [ - { - plugin: 'jira', - connectionId: devlakeConnectionId, - scopes: blueprintScopes as unknown[], - }, - ], - ); - this.logger.log( - `Created blueprint 'PULSE-Jira-MVP' (id=${blueprint.id}) with ${allBoardIds.length} scopes`, - ); - } - } catch (error) { - this.logger.error( - `Failed to provision Jira blueprint: ${ - error instanceof Error ? error.message : String(error) - }`, - ); - } - } - } - - /** @deprecated Use provisionJiraScopes instead */ - private async createBlueprints( - connections: ConnectionConfig[], - ): Promise { - // Check if blueprint already exists in DevLake - try { - const existingBlueprints = await this.devLakeClient.listBlueprints(); - const existing = existingBlueprints.find( - (bp) => bp.name === 'PULSE-MVP-Blueprint', - ); - if (existing) { - this.logger.log( - `Blueprint 'PULSE-MVP-Blueprint' already exists (id=${existing.id}) — skipping`, - ); - return; - } - } catch (error) { - this.logger.warn( - `Could not check existing blueprints: ${ - error instanceof Error ? error.message : String(error) - }`, - ); - } - - const tenantId = this.configService.getOrThrow('DEFAULT_TENANT_ID'); - - // Fetch all PULSE connection records to get DevLake connection IDs - const pulseConnections = await this.connectionRepo.find({ - where: { tenantId }, - }); - - const blueprintConnections: Array<{ - plugin: string; - connectionId: number; - scopes: unknown[]; - }> = []; - - for (const conn of connections) { - const plugin = SOURCE_TO_PLUGIN[conn.source] ?? conn.source; - - // Find the PULSE connection record - const pulseConn = pulseConnections.find( - (pc) => - pc.sourceType === conn.source && - (pc.config as Record)?.devlake_plugin === plugin, - ); - - if (!pulseConn) { - this.logger.warn( - `No PULSE connection found for ${conn.source} -- skipping blueprint`, - ); - continue; - } - - const devlakeConnectionId = (pulseConn.config as Record) - ?.devlake_connection_id as number; - - if (!devlakeConnectionId) { - continue; - } - - // Build scopes from the connection config - const scopes: unknown[] = []; - if (conn.scope.repositories) { - for (const repo of conn.scope.repositories) { - scopes.push({ - scopeId: repo, - scopeName: repo, - }); - } - } - if (conn.scope.projects) { - for (const project of conn.scope.projects) { - scopes.push({ - scopeId: project, - scopeName: project, - }); - } - } - // Jenkins jobs with per-job deployment/production patterns - if (conn.scope.jobs) { - for (const job of conn.scope.jobs) { - scopes.push({ - scopeId: job.fullName, - scopeName: job.fullName, - transformationRules: { - deploymentPattern: job.deploymentPattern ?? '', - productionPattern: job.productionPattern ?? '', - }, - }); - } - } - - blueprintConnections.push({ - plugin, - connectionId: devlakeConnectionId, - scopes, - }); - } - - if (blueprintConnections.length === 0) { - this.logger.warn('No connections available for blueprint creation'); - return; - } - - try { - const blueprint = await this.devLakeClient.createBlueprint( - 'PULSE-MVP-Blueprint', - '0 */15 * * *', // Every 15 minutes - blueprintConnections, - ); - - this.logger.log( - `Created DevLake blueprint: ${blueprint.name} (id=${blueprint.id})`, - ); - } catch (error) { - // Blueprint may already exist -- log and continue - this.logger.warn( - `Could not create blueprint (may already exist): ${ - error instanceof Error ? error.message : String(error) - }`, - ); - } - } - /** * Extract repository IDs from team mappings. */ diff --git a/pulse/packages/pulse-api/src/modules/integration/infrastructure/devlake/devlake-api.client.ts b/pulse/packages/pulse-api/src/modules/integration/infrastructure/devlake/devlake-api.client.ts deleted file mode 100644 index 8ceb1d4..0000000 --- a/pulse/packages/pulse-api/src/modules/integration/infrastructure/devlake/devlake-api.client.ts +++ /dev/null @@ -1,319 +0,0 @@ -import { Injectable, Logger } from '@nestjs/common'; -import { ConfigService } from '@nestjs/config'; -import axios, { AxiosInstance } from 'axios'; - -export interface DevLakeConnection { - id: number; - name: string; - endpoint: string; - plugin: string; -} - -export interface DevLakeBlueprint { - id: number; - name: string; - mode: string; - cronConfig: string; - enable: boolean; -} - -export interface DevLakePipelineRun { - id: number; - status: string; - finishedAt: string | null; -} - -export interface DevLakeConnectionStatus { - id: number; - name: string; - status: string; - message: string; -} - -@Injectable() -export class DevLakeApiClient { - private readonly logger = new Logger(DevLakeApiClient.name); - private readonly client: AxiosInstance; - - constructor(private readonly configService: ConfigService) { - const baseURL = this.configService.getOrThrow('DEVLAKE_API_URL'); - - this.client = axios.create({ - baseURL, - timeout: 30_000, - headers: { - 'Content-Type': 'application/json', - }, - }); - } - - async waitForReady(maxRetries = 10, intervalMs = 3000): Promise { - for (let attempt = 1; attempt <= maxRetries; attempt++) { - try { - await this.client.get('/blueprints'); - this.logger.log(`DevLake API ready (attempt ${attempt})`); - return true; - } catch { - this.logger.warn( - `DevLake API not ready (attempt ${attempt}/${maxRetries}), retrying in ${intervalMs}ms...`, - ); - await new Promise((resolve) => setTimeout(resolve, intervalMs)); - } - } - throw new Error(`DevLake API not reachable after ${maxRetries} attempts`); - } - - async listConnections(plugin: string): Promise { - this.logger.log(`Listing DevLake connections for plugin: ${plugin}`); - const response = await this.client.get( - `/plugins/${plugin}/connections`, - ); - return response.data; - } - - async createConnection( - plugin: string, - name: string, - endpoint: string, - token: string, - options?: { - username?: string; - rateLimitPerHour?: number; - enableGraphql?: boolean; - }, - ): Promise { - this.logger.log(`Creating DevLake connection: ${plugin}/${name}`); - - // DevLake requires trailing slash on endpoint URLs - let normalizedEndpoint = endpoint.endsWith('/') - ? endpoint - : `${endpoint}/`; - - // Jira Cloud plugin expects the endpoint to end with /rest/ - if (plugin === 'jira' && !normalizedEndpoint.endsWith('/rest/')) { - normalizedEndpoint = normalizedEndpoint.replace(/\/$/, '') + '/rest/'; - } - - const body: Record = { - name, - endpoint: normalizedEndpoint, - }; - - if (plugin === 'github') { - body.token = token; - body.rateLimitPerHour = options?.rateLimitPerHour ?? 4500; - body.enableGraphql = options?.enableGraphql ?? true; - } else if (plugin === 'jenkins') { - body.username = options?.username ?? ''; - body.password = token; - } else if (plugin === 'jira') { - body.username = options?.username ?? ''; - body.password = token; - body.authMethod = 'BasicAuth'; - } else if (plugin === 'gitlab') { - body.token = token; - body.rateLimitPerHour = options?.rateLimitPerHour ?? 3600; - } else { - body.token = token; - } - - try { - const response = await this.client.post( - `/plugins/${plugin}/connections`, - body, - ); - return response.data; - } catch (error) { - if (axios.isAxiosError(error) && error.response) { - this.logger.error( - `DevLake API error ${error.response.status} creating ${plugin} connection: ${JSON.stringify(error.response.data)}`, - ); - } - throw error; - } - } - - async listBlueprints(): Promise { - this.logger.log('Listing DevLake blueprints'); - const response = await this.client.get('/blueprints'); - const data = response.data as any; - return Array.isArray(data) ? data : (data.blueprints ?? []); - } - - async createBlueprint( - name: string, - cronConfig: string, - connections: Array<{ - plugin: string; - connectionId: number; - scopes: unknown[]; - }>, - ): Promise { - this.logger.log(`Creating DevLake blueprint: ${name}`); - - // DevLake expects "pluginName" not "plugin" in the connections array - const devlakeConnections = connections.map((c) => ({ - pluginName: c.plugin, - connectionId: c.connectionId, - scopes: c.scopes, - })); - - try { - const response = await this.client.post('/blueprints', { - name, - mode: 'NORMAL', - cronConfig, - enable: true, - skipOnFail: true, - connections: devlakeConnections, - }); - return response.data; - } catch (error) { - if (axios.isAxiosError(error) && error.response) { - this.logger.error( - `DevLake API error ${error.response.status} creating blueprint: ${JSON.stringify(error.response.data)}`, - ); - } - throw error; - } - } - - async triggerPipeline(blueprintId: number): Promise { - this.logger.log(`Triggering DevLake pipeline for blueprint: ${blueprintId}`); - const response = await this.client.post( - `/blueprints/${blueprintId}/trigger`, - ); - return response.data; - } - - async getConnectionStatus( - plugin: string, - connectionId: number, - ): Promise { - this.logger.log( - `Fetching DevLake connection status: ${plugin}/${connectionId}`, - ); - const response = await this.client.get( - `/plugins/${plugin}/connections/${connectionId}/test`, - ); - return response.data; - } - - /** - * Register scopes (e.g., Jira boards, GitHub repos) in DevLake. - * Uses PUT /plugins/{plugin}/connections/{id}/scopes with { data: [...] } body. - */ - async registerScopes( - plugin: string, - connectionId: number, - scopes: Array>, - ): Promise { - this.logger.log( - `Registering ${scopes.length} scope(s) for ${plugin}/connection ${connectionId}`, - ); - const response = await this.client.put( - `/plugins/${plugin}/connections/${connectionId}/scopes`, - { data: scopes }, - ); - return response.data; - } - - /** - * List all registered scopes for a connection. - */ - async listScopes( - plugin: string, - connectionId: number, - ): Promise>> { - const response = await this.client.get<{ - count: number; - scopes: Array<{ scope: Record }>; - }>(`/plugins/${plugin}/connections/${connectionId}/scopes`); - return response.data.scopes.map((s) => s.scope); - } - - /** - * Update an existing blueprint (connections, scopes, cron, etc.). - */ - async updateBlueprint( - blueprintId: number, - connections: Array<{ - pluginName: string; - connectionId: number; - scopes: Array<{ scopeId: string }>; - }>, - ): Promise { - this.logger.log(`Updating DevLake blueprint: ${blueprintId}`); - const response = await this.client.patch( - `/blueprints/${blueprintId}`, - { connections }, - ); - return response.data; - } - - /** - * Discover Jira boards for a project key via DevLake's proxy to Jira Agile API. - * Returns boards belonging to the given project. - */ - async discoverJiraBoards( - connectionId: number, - projectKey: string, - ): Promise< - Array<{ id: number; name: string; type: string; projectKey: string }> - > { - this.logger.log( - `Discovering Jira boards for project: ${projectKey} (connection ${connectionId})`, - ); - try { - const response = await this.client.get<{ - values: Array<{ - id: number; - name: string; - type: string; - location?: { projectKey?: string }; - }>; - }>( - `/plugins/jira/connections/${connectionId}/proxy/rest/agile/1.0/board`, - { params: { projectKeyOrId: projectKey } }, - ); - return (response.data.values ?? []) - .filter( - (b) => - b.location?.projectKey?.toUpperCase() === - projectKey.toUpperCase(), - ) - .map((b) => ({ - id: b.id, - name: b.name, - type: b.type, - projectKey: b.location?.projectKey ?? projectKey, - })); - } catch (error) { - this.logger.warn( - `Could not discover boards for ${projectKey}: ${ - error instanceof Error ? error.message : String(error) - }`, - ); - return []; - } - } - - /** - * Create a scope config for a connection. - * Useful for customizing collection behaviour (e.g., skip epics). - */ - async createScopeConfig( - plugin: string, - connectionId: number, - config: Record, - ): Promise<{ id: number }> { - this.logger.log( - `Creating scope config for ${plugin}/connection ${connectionId}`, - ); - const response = await this.client.post<{ id: number }>( - `/plugins/${plugin}/connections/${connectionId}/scope-configs`, - config, - ); - return response.data; - } -} diff --git a/pulse/packages/pulse-api/src/modules/integration/integration.module.ts b/pulse/packages/pulse-api/src/modules/integration/integration.module.ts index 67f46b4..e84d4e8 100644 --- a/pulse/packages/pulse-api/src/modules/integration/integration.module.ts +++ b/pulse/packages/pulse-api/src/modules/integration/integration.module.ts @@ -1,7 +1,6 @@ import { Module } from '@nestjs/common'; import { TypeOrmModule } from '@nestjs/typeorm'; import { ConnectionEntity } from './domain/entities/connection.entity'; -import { DevLakeApiClient } from './infrastructure/devlake/devlake-api.client'; import { ConfigLoaderService } from './application/config-loader.service'; import { IntegrationController } from './presentation/controllers/integration.controller'; import { TeamEntity } from '../identity/domain/entities/team.entity'; @@ -16,7 +15,7 @@ import { OrganizationEntity } from '../identity/domain/entities/organization.ent ]), ], controllers: [IntegrationController], - providers: [DevLakeApiClient, ConfigLoaderService], - exports: [DevLakeApiClient, ConfigLoaderService, TypeOrmModule], + providers: [ConfigLoaderService], + exports: [ConfigLoaderService, TypeOrmModule], }) export class IntegrationModule {} diff --git a/pulse/packages/pulse-data/src/config.py b/pulse/packages/pulse-data/src/config.py index 1c08659..8fcd39a 100644 --- a/pulse/packages/pulse-data/src/config.py +++ b/pulse/packages/pulse-data/src/config.py @@ -22,13 +22,7 @@ class Settings(BaseSettings): # Kafka kafka_brokers: str = "localhost:9092" - # DevLake PostgreSQL (DEPRECATED — kept for migration period only) - devlake_db_url: str = "" - - # DevLake REST API (DEPRECATED — kept for migration period only) - devlake_api_url: str = "" - - # ---- Source API Connectors (replaces DevLake) ---- + # ---- Source API Connectors ---- # GitHub github_token: str = "" diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/devlake_reader.py b/pulse/packages/pulse-data/src/contexts/engineering_data/devlake_reader.py deleted file mode 100644 index 731beb4..0000000 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/devlake_reader.py +++ /dev/null @@ -1,272 +0,0 @@ -"""DevLake DB reader — async queries against DevLake's domain tables. - -Reads from DevLake's normalized PostgreSQL tables (pull_requests, issues, -cicd_deployment_commits, sprints, boards) and returns raw dicts for the -normalizer to transform into PULSE domain models. - -Uses a separate SQLAlchemy engine connected to the DevLake database (read-only). -All queries use watermark-based incremental sync via `since` parameter. -""" - -import logging -from datetime import datetime -from typing import Any - -from sqlalchemy import text -from sqlalchemy.ext.asyncio import AsyncSession, async_sessionmaker, create_async_engine - -from src.config import settings - -logger = logging.getLogger(__name__) - - -def _make_devlake_async_url(url: str) -> str: - """Convert a DevLake DB URL to async format (asyncpg).""" - if url.startswith("postgresql://"): - return url.replace("postgresql://", "postgresql+asyncpg://", 1) - if url.startswith("postgresql+asyncpg://"): - return url - raise ValueError(f"Unsupported DevLake DB URL scheme: {url}") - - -class DevLakeReader: - """Reads normalized data from DevLake's PostgreSQL domain tables. - - Each fetch method accepts a `since` datetime for incremental sync - (watermark pattern). Returns raw dicts that the normalizer converts - to PULSE domain models. - """ - - def __init__(self, devlake_db_url: str | None = None) -> None: - url = devlake_db_url or settings.devlake_db_url - async_url = _make_devlake_async_url(url) - self._engine = create_async_engine( - async_url, - echo=False, - pool_size=3, - max_overflow=5, - pool_pre_ping=True, - ) - self._session_factory = async_sessionmaker( - self._engine, - class_=AsyncSession, - expire_on_commit=False, - ) - - async def close(self) -> None: - """Dispose the engine connection pool.""" - await self._engine.dispose() - logger.info("DevLake reader connection pool disposed") - - async def fetch_pull_requests(self, since: datetime | None = None) -> list[dict[str, Any]]: - """Fetch pull requests from DevLake domain table.""" - base = """ - SELECT - pr.id, pr.base_repo_id, pr.head_repo_id, pr.status, - pr.title, pr.url, pr.author_name, - pr.created_date, pr.merged_date, pr.closed_date, - pr.merge_commit_sha, pr.base_ref, pr.head_ref, - pr.additions, pr.deletions - FROM pull_requests pr - """ - if since is not None: - query = text(base + " WHERE pr.created_date > :since ORDER BY pr.created_date DESC LIMIT 5000") - params = {"since": since} - else: - query = text(base + " ORDER BY pr.created_date DESC LIMIT 5000") - params = {} - - async with self._session_factory() as session: - result = await session.execute(query, params) - rows = result.mappings().all() - logger.info("Fetched %d pull requests from DevLake (since=%s)", len(rows), since) - return [dict(row) for row in rows] - - async def fetch_issues(self, since: datetime | None = None) -> list[dict[str, Any]]: - """Fetch issues from DevLake domain table. - - Uses updated_date for incremental sync watermark instead of created_date, - because Jira issues may have been created long ago but only recently - ingested/updated in DevLake. Using created_date would miss old issues - that were just collected for the first time. - """ - base = """ - SELECT - i.id, i.url, i.issue_key, i.title, i.status, - i.original_status, i.story_point, i.priority, - i.created_date, i.updated_date, i.resolution_date, - i.lead_time_minutes, - i.assignee_name, i.type, si.sprint_id - FROM issues i - LEFT JOIN sprint_issues si ON si.issue_id = i.id - """ - if since is not None: - query = text(base + " WHERE i.updated_date > :since ORDER BY i.updated_date DESC LIMIT 5000") - params = {"since": since} - else: - query = text(base + " ORDER BY i.updated_date DESC LIMIT 5000") - params = {} - - async with self._session_factory() as session: - result = await session.execute(query, params) - rows = result.mappings().all() - logger.info("Fetched %d issues from DevLake (since=%s)", len(rows), since) - return [dict(row) for row in rows] - - async def fetch_deployments(self, since: datetime | None = None) -> list[dict[str, Any]]: - """Fetch CICD deployment commits from DevLake domain table.""" - base = """ - SELECT - dc.id, dc.cicd_deployment_id, dc.repo_id, dc.name, - dc.result, dc.status, dc.environment, - dc.created_date, dc.started_date, dc.finished_date - FROM cicd_deployment_commits dc - """ - if since is not None: - query = text(base + " WHERE dc.finished_date > :since ORDER BY dc.finished_date DESC NULLS LAST LIMIT 5000") - params = {"since": since} - else: - query = text(base + " ORDER BY dc.finished_date DESC NULLS LAST LIMIT 5000") - params = {} - - async with self._session_factory() as session: - result = await session.execute(query, params) - rows = result.mappings().all() - logger.info("Fetched %d deployments from DevLake (since=%s)", len(rows), since) - return [dict(row) for row in rows] - - async def fetch_sprints(self, since: datetime | None = None) -> list[dict[str, Any]]: - """Fetch sprints from DevLake domain table.""" - base = """ - SELECT - s.id, s.original_board_id, s.name, s.url, s.status, - s.started_date, s.ended_date, s.completed_date, - COUNT(si.issue_id) AS total_issues - FROM sprints s - LEFT JOIN sprint_issues si ON si.sprint_id = s.id - """ - group_order = """ - GROUP BY s.id, s.original_board_id, s.name, s.url, s.status, - s.started_date, s.ended_date, s.completed_date - ORDER BY s.started_date DESC NULLS LAST - LIMIT 500 - """ - if since is not None: - query = text(base + " WHERE s.started_date > :since " + group_order) - params = {"since": since} - else: - query = text(base + group_order) - params = {} - - async with self._session_factory() as session: - result = await session.execute(query, params) - rows = result.mappings().all() - logger.info("Fetched %d sprints from DevLake (since=%s)", len(rows), since) - return [dict(row) for row in rows] - - async def fetch_issue_changelogs( - self, issue_ids: list[str], - ) -> dict[str, list[dict[str, Any]]]: - """Fetch status transition changelogs for a batch of issues. - - Queries DevLake's issue_changelogs table for status field changes. - Returns a dict mapping issue_id -> list of status transitions, - sorted chronologically. - - DevLake populates this table from Jira's changelog API. - For GitHub issues (which lack changelogs), this returns empty lists. - """ - if not issue_ids: - return {} - - query = text(""" - SELECT - ic.issue_id, - ic.original_from_value AS from_status, - ic.original_to_value AS to_status, - ic.created_date - FROM issue_changelogs ic - WHERE ic.issue_id = ANY(:issue_ids) - AND LOWER(ic.field_name) = 'status' - ORDER BY ic.issue_id, ic.created_date ASC - """) - - try: - async with self._session_factory() as session: - result = await session.execute(query, {"issue_ids": issue_ids}) - rows = result.mappings().all() - except Exception: - # Table may not exist if Jira plugin is not yet configured in DevLake - logger.warning( - "Could not fetch issue_changelogs (table may not exist yet) — " - "returning empty transitions" - ) - return {} - - changelogs: dict[str, list[dict[str, Any]]] = {} - for row in rows: - issue_id = str(row["issue_id"]) - if issue_id not in changelogs: - changelogs[issue_id] = [] - changelogs[issue_id].append(dict(row)) - - logger.info( - "Fetched changelogs for %d issues (%d total transitions)", - len(changelogs), - len(rows), - ) - return changelogs - - # ------------------------------------------------------------------ - # Count helpers — used by Pipeline Monitor for source/target comparison - # ------------------------------------------------------------------ - - async def count_pull_requests(self) -> int: - """Count total pull requests in DevLake DB.""" - async with self._engine.connect() as conn: - result = await conn.execute(text("SELECT COUNT(*) FROM pull_requests")) - return result.scalar() or 0 - - async def count_issues(self) -> int: - """Count total issues in DevLake DB.""" - async with self._engine.connect() as conn: - result = await conn.execute(text("SELECT COUNT(*) FROM issues")) - return result.scalar() or 0 - - async def count_deployments(self) -> int: - """Count total deployment commits in DevLake DB.""" - async with self._engine.connect() as conn: - result = await conn.execute(text("SELECT COUNT(*) FROM cicd_deployment_commits")) - return result.scalar() or 0 - - async def count_sprints(self) -> int: - """Count total sprints in DevLake DB.""" - async with self._engine.connect() as conn: - result = await conn.execute(text("SELECT COUNT(*) FROM sprints")) - return result.scalar() or 0 - - async def count_all(self) -> dict[str, int]: - """Count all entities in DevLake DB for comparison with PULSE DB.""" - return { - "pull_requests": await self.count_pull_requests(), - "issues": await self.count_issues(), - "deployments": await self.count_deployments(), - "sprints": await self.count_sprints(), - } - - async def fetch_sprint_issues(self, sprint_id: str) -> list[dict[str, Any]]: - """Fetch all issues belonging to a specific sprint.""" - query = text(""" - SELECT - i.id, i.issue_key, i.status, i.original_status, - i.story_point, i.type, i.resolution_date - FROM sprint_issues si - JOIN issues i ON i.id = si.issue_id - WHERE si.sprint_id = :sprint_id - """) - - async with self._session_factory() as session: - result = await session.execute(query, {"sprint_id": sprint_id}) - rows = result.mappings().all() - logger.info("Fetched %d issues for sprint %s from DevLake", len(rows), sprint_id) - return [dict(row) for row in rows] diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/devlake_api.py b/pulse/packages/pulse-data/src/contexts/pipeline/devlake_api.py deleted file mode 100644 index b367b30..0000000 --- a/pulse/packages/pulse-data/src/contexts/pipeline/devlake_api.py +++ /dev/null @@ -1,75 +0,0 @@ -"""Client for DevLake REST API — pipeline status queries. - -Read-only client that queries DevLake's REST API for pipeline run -information. Used by the Pipeline Monitor to display sync status -and health indicators. - -All calls are wrapped in try/except since DevLake may be unavailable. -""" - -from __future__ import annotations - -import logging - -import httpx - -from src.config import settings - -logger = logging.getLogger(__name__) - -DEVLAKE_API_URL = getattr(settings, "devlake_api_url", "http://localhost:4000") - - -class DevLakeAPIClient: - """Read-only client for DevLake REST API.""" - - def __init__(self, base_url: str = DEVLAKE_API_URL) -> None: - self._base_url = base_url.rstrip("/") - - async def get_latest_pipeline(self) -> dict | None: - """Get the most recent DevLake pipeline run.""" - async with httpx.AsyncClient(timeout=10) as client: - resp = await client.get( - f"{self._base_url}/api/pipelines", - params={"pageSize": 1, "page": 1}, - ) - if resp.status_code != 200: - logger.warning( - "DevLake API returned %d for latest pipeline", resp.status_code, - ) - return None - data = resp.json() - pipelines = data.get("pipelines", []) - return pipelines[0] if pipelines else None - - async def get_running_pipeline(self) -> dict | None: - """Get currently running pipeline, if any.""" - async with httpx.AsyncClient(timeout=10) as client: - resp = await client.get( - f"{self._base_url}/api/pipelines", - params={"pageSize": 1, "page": 1, "status": "TASK_RUNNING"}, - ) - if resp.status_code != 200: - logger.warning( - "DevLake API returned %d for running pipeline", resp.status_code, - ) - return None - data = resp.json() - pipelines = data.get("pipelines", []) - return pipelines[0] if pipelines else None - - async def get_pipeline_health(self) -> dict: - """Get overall DevLake pipeline health summary. - - Returns a dict with keys: latest_pipeline, running_pipeline, - is_running, last_status, last_finished_at. - """ - latest = await self.get_latest_pipeline() - running = await self.get_running_pipeline() - return { - "latest_pipeline": latest, - "running_pipeline": running, - "is_running": running is not None, - "last_status": latest.get("status") if latest else None, - "last_finished_at": latest.get("finishedAt") if latest else None, - } diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py b/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py index 618a255..3145bbc 100644 --- a/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py +++ b/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py @@ -21,7 +21,7 @@ class PipelineStageStatus(BaseModel): """Status of a single pipeline stage.""" - name: str # "sources" | "devlake" | "sync_worker" | "pulse_db" | "metrics_worker" + name: str # "sources" | "sync_worker" | "pulse_db" | "metrics_worker" status: str # "healthy" | "syncing" | "idle" | "error" | "standby" label: str # Human-readable label detail: str | None = None # e.g. "12 active" or "1.4 GB/s" @@ -52,7 +52,7 @@ class RecordCount(BaseModel): """Record count for a single entity type.""" entity: str # "pull_requests" | "issues" | "deployments" | "sprints" - devlake_count: int = 0 + devlake_count: int = 0 # Legacy field name; now mirrors pulse_count (no intermediate DB) pulse_count: int = 0 difference: int = 0 is_synced: bool = True @@ -94,12 +94,12 @@ class PipelineError(BaseModel): # --------------------------------------------------------------------------- -# DevLake pipeline info +# Legacy pipeline info (kept for API backward compatibility) # --------------------------------------------------------------------------- class DevLakePipelineInfo(BaseModel): - """DevLake pipeline run info.""" + """Legacy pipeline info stub. Always returns defaults since DevLake was removed (ADR-005).""" is_running: bool = False last_status: str | None = None diff --git a/pulse/packages/pulse-web/src/types/pipeline.ts b/pulse/packages/pulse-web/src/types/pipeline.ts index 0c7e9a3..9147d6a 100644 --- a/pulse/packages/pulse-web/src/types/pipeline.ts +++ b/pulse/packages/pulse-web/src/types/pipeline.ts @@ -22,6 +22,7 @@ export interface PipelineKpis { export interface RecordCount { entity: string; + /** @deprecated Renamed from devlake_count — now mirrors pulse_count (no intermediate DB). */ devlake_count: number; pulse_count: number; difference: number; @@ -47,6 +48,7 @@ export interface PipelineError { context: Record; } +/** @deprecated Kept for API response backward compatibility. Always returns defaults. */ export interface DevLakeStatus { is_running: boolean; last_status: string | null; From 221db7ce73bc5908099ff7a08b418a5fd27fb66f Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Fri, 10 Apr 2026 17:35:59 -0300 Subject: [PATCH 05/64] test: add 321 unit tests for custom connectors and data pipeline Comprehensive test coverage for the new direct-connector architecture: - HTTP client: 24 tests (retries, rate limiting, error handling) - Aggregator: 42 tests (multi-source orchestration, changelog cache) - GitHub connector: 30 tests (PR enrichment, pagination, rate limits) - Jenkins connector: 43 tests (deployments, CSRF, folder jobs) - Jira connector: 116 tests (POST search/jql, sprints, changelogs) - Normalizer: 66 tests (enrichment fields, edge cases, all source types) Co-Authored-By: Claude Opus 4.6 --- pulse/packages/pulse-data/tests/conftest.py | 113 ++ .../tests/unit/connectors/__init__.py | 0 .../unit/connectors/test_github_connector.py | 645 ++++++++ .../unit/connectors/test_jenkins_connector.py | 545 +++++++ .../unit/connectors/test_jira_connector.py | 1407 +++++++++++++++++ .../pulse-data/tests/unit/test_aggregator.py | 460 ++++++ .../pulse-data/tests/unit/test_http_client.py | 474 ++++++ .../pulse-data/tests/unit/test_normalizer.py | 303 ++++ 8 files changed, 3947 insertions(+) create mode 100644 pulse/packages/pulse-data/tests/unit/connectors/__init__.py create mode 100644 pulse/packages/pulse-data/tests/unit/connectors/test_github_connector.py create mode 100644 pulse/packages/pulse-data/tests/unit/connectors/test_jenkins_connector.py create mode 100644 pulse/packages/pulse-data/tests/unit/connectors/test_jira_connector.py create mode 100644 pulse/packages/pulse-data/tests/unit/test_aggregator.py create mode 100644 pulse/packages/pulse-data/tests/unit/test_http_client.py diff --git a/pulse/packages/pulse-data/tests/conftest.py b/pulse/packages/pulse-data/tests/conftest.py index 9b3e09d..8e87809 100644 --- a/pulse/packages/pulse-data/tests/conftest.py +++ b/pulse/packages/pulse-data/tests/conftest.py @@ -408,3 +408,116 @@ def sample_devlake_sprint() -> dict: @pytest.fixture def default_tenant_id() -> uuid.UUID: return uuid.UUID("00000000-0000-0000-0000-000000000001") + + +# --------------------------------------------------------------------------- +# Raw connector-format dict fixtures (for normalizer enrichment-field tests) +# These differ from the DevLake fixtures above: they use the output format +# produced by the custom connector _map_*() methods (post-ADR-005 migration). +# --------------------------------------------------------------------------- + + +@pytest.fixture +def sample_github_pr_raw() -> dict: + """A realistic dict as returned by GitHubConnector._map_pr(). + + Includes all enrichment fields prefixed with underscore: + _first_review_at, _approved_at, _reviewers, _files_changed, + _commits_count, _pr_number, _repo_full_name + """ + return { + # Standard fields (same keys as DevLake pull_requests table) + "id": "github:GithubPullRequest:1:101", + "base_repo_id": "github:GithubRepo:1:org/backend", + "head_repo_id": "github:GithubRepo:1:org/backend", + "status": "MERGED", + "title": "feat(BACK-101): add cycle-time breakdown endpoint", + "url": "https://github.com/org/backend/pull/101", + "author_name": "carol", + "created_date": "2024-03-01T08:00:00Z", + "merged_date": "2024-03-02T14:30:00Z", + "closed_date": "2024-03-02T14:30:00Z", + "merge_commit_sha": "deadbeef1234567890abcdef", + "base_ref": "main", + "head_ref": "feature/BACK-101-cycle-time", + "additions": 210, + "deletions": 55, + # Enrichment fields (from detail + reviews API calls) + "_files_changed": 12, + "_commits_count": 7, + "_first_review_at": "2024-03-01T16:45:00Z", + "_approved_at": "2024-03-02T09:10:00Z", + "_reviewers": [ + {"login": "dave", "state": "APPROVED"}, + {"login": "eve", "state": "COMMENTED"}, + ], + "_pr_number": 101, + "_repo_full_name": "org/backend", + } + + +@pytest.fixture +def sample_jira_issue_raw() -> dict: + """A realistic dict as returned by JiraConnector._map_issue(). + + Uses the internal ID format 'jira:JiraIssue::' + and mirrors the field names from the DevLake issues domain table. + """ + return { + "id": "jira:JiraIssue:1:98765", + "url": "https://webmotors.atlassian.net/browse/DESC-42", + "issue_key": "DESC-42", + "title": "Implement lead-time distribution chart", + "status": "Done", + "original_status": "Done", + "story_point": 8, + "priority": "High", + "created_date": "2024-02-12T10:00:00Z", + "updated_date": "2024-02-20T15:00:00Z", + "resolution_date": "2024-02-20T15:00:00Z", + "lead_time_minutes": None, # Calculated by PULSE, not Jira API + "assignee_name": "frank", + "type": "Story", + "sprint_id": "jira:JiraSprint:1:55", + } + + +@pytest.fixture +def sample_jira_sprint_raw() -> dict: + """A realistic dict as returned by JiraConnector._map_sprint(). + + Mirrors the DevLake sprints domain table structure, with the addition of + 'original_board_id' (required by normalize_sprint's board_id mapping). + """ + return { + "id": "jira:JiraSprint:1:55", + "original_board_id": "10", + "name": "DESC Sprint 7", + "url": "https://webmotors.atlassian.net", + "status": "CLOSED", + "started_date": "2024-02-05T09:00:00Z", + "ended_date": "2024-02-19T18:00:00Z", + "completed_date": "2024-02-19T18:00:00Z", + "total_issues": 0, + } + + +@pytest.fixture +def sample_jenkins_deployment_raw() -> dict: + """A realistic dict as returned by JenkinsConnector._map_build(). + + Mirrors the DevLake cicd_deployment_commits domain table structure. + The 'name' field carries the Jenkins job path (used as repo proxy). + """ + return { + "id": "jenkins:JenkinsBuild:1:webmotors-next-ui/deploy-prod:312", + "cicd_deployment_id": "jenkins:JenkinsJob:1:webmotors-next-ui/deploy-prod", + "repo_id": None, + "name": "webmotors-next-ui/deploy-prod", + "result": "SUCCESS", + "status": "DONE", + "environment": "production", + "created_date": "2024-03-05T22:00:00Z", + "started_date": "2024-03-05T22:00:00Z", + "finished_date": "2024-03-05T22:08:45Z", + } diff --git a/pulse/packages/pulse-data/tests/unit/connectors/__init__.py b/pulse/packages/pulse-data/tests/unit/connectors/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/unit/connectors/test_github_connector.py b/pulse/packages/pulse-data/tests/unit/connectors/test_github_connector.py new file mode 100644 index 0000000..5373275 --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/connectors/test_github_connector.py @@ -0,0 +1,645 @@ +"""Unit tests for GitHubConnector. + +Tests in this module mock ResilientHTTPClient so no real HTTP calls are made. +All assertions verify behavior at the connector boundary: method signatures, +return shapes, field mappings, incremental-sync cutoff logic, and error +handling — not HTTP transport internals. + +Coverage targets (from test plan): + 1. test_connection — healthy status with user info and rate limit + 2. discover_repos — filters by active_months, excludes archived + 3. discover_repos_explicit — explicit repo list used as-is (no API call) + 4. fetch_pull_requests — iterates repos, calls enrichment per PR + 5. fetch_pull_requests_incremental — stops at since watermark + 6. _fetch_pr_detail — returns additions, deletions, changed_files, commits + 7. _fetch_pr_detail_error — returns zeros on API failure + 8. _fetch_pr_reviews — extracts first_review_at, approved_at, reviewers + 9. _fetch_pr_reviews_empty — empty list yields empty review data + 10. _fetch_pr_reviews_error — API failure yields empty review data + 11. _map_pr — maps GitHub API response to normalizer dict + 12. _map_pr_merged — MERGED state set when merged_at present + 13. _map_pr_open — OPEN state preserved for open PRs + 14. fetch_issues — returns empty list (not_supported) + 15. fetch_deployments — returns empty list (not_supported) + 16. source_type — returns "github" + 17. close — delegates to HTTP client close +""" + +from __future__ import annotations + +import os +from datetime import datetime, timedelta, timezone +from unittest.mock import AsyncMock, MagicMock, patch + +import pytest + +# --------------------------------------------------------------------------- +# Patch settings before the module is imported so the connector does not +# attempt to read missing env vars at module load time. +# --------------------------------------------------------------------------- + +os.environ.setdefault("GITHUB_TOKEN", "test-token") +os.environ.setdefault("GITHUB_ORG", "test-org") +os.environ.setdefault("GITHUB_API_URL", "https://api.github.com") +os.environ.setdefault("JENKINS_BASE_URL", "http://jenkins.test") +os.environ.setdefault("JENKINS_API_TOKEN", "tok") + +from src.connectors.github_connector import GitHubConnector # noqa: E402 + + +# --------------------------------------------------------------------------- +# Helpers +# --------------------------------------------------------------------------- + + +def _utc(year: int, month: int, day: int, hour: int = 0) -> datetime: + return datetime(year, month, day, hour, tzinfo=timezone.utc) + + +def _iso(year: int, month: int, day: int, hour: int = 0) -> str: + return _utc(year, month, day, hour).strftime("%Y-%m-%dT%H:%M:%SZ") + + +def _make_github_pr( + number: int = 1, + state: str = "closed", + merged_at: str | None = None, + updated_at: str | None = None, + title: str = "feat: sample PR", + author: str = "dev-user", + base_ref: str = "main", + head_ref: str = "feature/sample", +) -> dict: + """Build a minimal GitHub PR list-endpoint payload.""" + return { + "number": number, + "state": state, + "title": title, + "html_url": f"https://github.com/test-org/repo/pull/{number}", + "merged_at": merged_at, + "closed_at": merged_at, + "created_at": _iso(2024, 1, 1), + "updated_at": updated_at or _iso(2024, 1, 10), + "merge_commit_sha": "abc123", + "user": {"login": author}, + "base": {"ref": base_ref}, + "head": {"ref": head_ref}, + } + + +def _make_pr_detail( + additions: int = 50, + deletions: int = 10, + changed_files: int = 4, + commits: int = 3, +) -> dict: + return { + "additions": additions, + "deletions": deletions, + "changed_files": changed_files, + "commits": commits, + } + + +def _make_review( + login: str = "reviewer-a", + state: str = "APPROVED", + submitted_at: str | None = None, +) -> dict: + return { + "user": {"login": login}, + "state": state, + "submitted_at": submitted_at or _iso(2024, 1, 5), + } + + +def _make_repo( + full_name: str = "test-org/repo-a", + archived: bool = False, + pushed_at: str | None = None, +) -> dict: + return { + "full_name": full_name, + "archived": archived, + "pushed_at": pushed_at or _iso(2024, 3, 1), + } + + +def _build_connector( + repos: list[str] | None = None, + active_months: int = 12, + include_archived: bool = False, +) -> tuple[GitHubConnector, MagicMock]: + """Instantiate GitHubConnector with a mocked HTTP client. + + Returns (connector, mock_client) so tests can set up call responses. + """ + mock_client = MagicMock() + mock_client.get = AsyncMock() + mock_client.get_paginated_link = AsyncMock() + mock_client.close = AsyncMock() + + with patch("src.connectors.github_connector.ResilientHTTPClient", return_value=mock_client): + connector = GitHubConnector( + token="test-token", + org="test-org", + api_url="https://api.github.com", + repos=repos, + active_months=active_months, + include_archived=include_archived, + connection_id=1, + ) + + return connector, mock_client + + +# --------------------------------------------------------------------------- +# Test class +# --------------------------------------------------------------------------- + + +class TestGitHubConnector: + # ------------------------------------------------------------------ + # 1. test_connection + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_connection_returns_healthy_status(self): + connector, mock_client = _build_connector() + mock_client.get.side_effect = [ + {"login": "pulse-bot", "id": 99}, + {"resources": {"core": {"remaining": 4800, "limit": 5000}}}, + ] + + result = await connector.test_connection() + + assert result["status"] == "healthy" + assert "pulse-bot" in result["message"] + assert result["details"]["org"] == "test-org" + assert result["details"]["rate_limit_remaining"] == 4800 + assert result["details"]["rate_limit_total"] == 5000 + + @pytest.mark.asyncio + async def test_connection_returns_error_on_failure(self): + connector, mock_client = _build_connector() + mock_client.get.side_effect = ConnectionError("unreachable") + + result = await connector.test_connection() + + assert result["status"] == "error" + assert "unreachable" in result["message"] + + # ------------------------------------------------------------------ + # 2. discover_repos — filters by active_months, excludes archived + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_discover_repos_excludes_archived(self): + connector, mock_client = _build_connector(active_months=12) + recent_push = (datetime.now(timezone.utc) - timedelta(days=30)).strftime( + "%Y-%m-%dT%H:%M:%SZ" + ) + mock_client.get_paginated_link.return_value = [ + _make_repo("test-org/active", archived=False, pushed_at=recent_push), + _make_repo("test-org/archived", archived=True, pushed_at=recent_push), + ] + + result = await connector.discover_repos() + + assert "test-org/active" in result + assert "test-org/archived" not in result + + @pytest.mark.asyncio + async def test_discover_repos_excludes_stale_repos(self): + connector, mock_client = _build_connector(active_months=6) + old_push = (datetime.now(timezone.utc) - timedelta(days=300)).strftime( + "%Y-%m-%dT%H:%M:%SZ" + ) + recent_push = (datetime.now(timezone.utc) - timedelta(days=10)).strftime( + "%Y-%m-%dT%H:%M:%SZ" + ) + mock_client.get_paginated_link.return_value = [ + _make_repo("test-org/fresh", archived=False, pushed_at=recent_push), + _make_repo("test-org/stale", archived=False, pushed_at=old_push), + ] + + result = await connector.discover_repos() + + assert "test-org/fresh" in result + assert "test-org/stale" not in result + + @pytest.mark.asyncio + async def test_discover_repos_includes_archived_when_configured(self): + connector, mock_client = _build_connector(include_archived=True) + recent_push = (datetime.now(timezone.utc) - timedelta(days=5)).strftime( + "%Y-%m-%dT%H:%M:%SZ" + ) + mock_client.get_paginated_link.return_value = [ + _make_repo("test-org/archived-repo", archived=True, pushed_at=recent_push), + ] + + result = await connector.discover_repos() + + assert "test-org/archived-repo" in result + + # ------------------------------------------------------------------ + # 3. discover_repos_explicit — explicit repos bypass API discovery + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_get_repos_uses_explicit_list_without_discovery(self): + """When repos= is supplied, no org repo API call should be made.""" + connector, mock_client = _build_connector(repos=["repo-a", "repo-b"]) + + # Trigger _get_repos via fetch_pull_requests (returns empty because + # the mock returns empty PR lists, but _get_repos must not call API) + mock_client.get.return_value = [] + + await connector.fetch_pull_requests() + + # get_paginated_link (used by discover_repos) should NOT be called + mock_client.get_paginated_link.assert_not_called() + + @pytest.mark.asyncio + async def test_explicit_repos_qualified_with_org_prefix(self): + """Short names (without '/') are qualified as {org}/{name}.""" + connector, mock_client = _build_connector(repos=["my-repo"]) + mock_client.get.return_value = [] + + repos = await connector._get_repos() + + assert repos == ["test-org/my-repo"] + + @pytest.mark.asyncio + async def test_explicit_repos_with_slash_kept_verbatim(self): + """Full names (with '/') are kept as-is.""" + connector, mock_client = _build_connector(repos=["other-org/my-repo"]) + + repos = await connector._get_repos() + + assert repos == ["other-org/my-repo"] + + # ------------------------------------------------------------------ + # 4. fetch_pull_requests — calls enrichment per PR across repos + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pull_requests_returns_all_prs(self): + connector, mock_client = _build_connector(repos=["test-org/repo-a"]) + + pr = _make_github_pr(number=42, state="closed", merged_at=_iso(2024, 1, 10)) + detail = _make_pr_detail(additions=20, deletions=5, changed_files=2, commits=1) + reviews: list = [] + + # Three sequential get calls per PR: PR list, PR detail, PR reviews + mock_client.get.side_effect = [ + [pr], # /repos/.../pulls (list) + detail, # /repos/.../pulls/42 (detail) + reviews, # /repos/.../pulls/42/reviews + ] + + result = await connector.fetch_pull_requests() + + assert len(result) == 1 + pr_out = result[0] + assert pr_out["_pr_number"] == 42 + assert pr_out["additions"] == 20 + assert pr_out["deletions"] == 5 + + @pytest.mark.asyncio + async def test_fetch_pull_requests_aggregates_across_repos(self): + connector, mock_client = _build_connector(repos=["test-org/repo-a", "test-org/repo-b"]) + + pr1 = _make_github_pr(number=1) + pr2 = _make_github_pr(number=2) + detail = _make_pr_detail() + + # repo-a: 1 PR with detail + reviews, then repo-b: 1 PR with detail + reviews + mock_client.get.side_effect = [ + [pr1], detail, [], # repo-a + [pr2], detail, [], # repo-b + ] + + result = await connector.fetch_pull_requests() + + assert len(result) == 2 + + @pytest.mark.asyncio + async def test_fetch_pull_requests_continues_on_repo_error(self): + """A failure for one repo must not abort the rest.""" + connector, mock_client = _build_connector(repos=["test-org/bad-repo", "test-org/good-repo"]) + + pr = _make_github_pr(number=7) + detail = _make_pr_detail() + + # First repo raises, second repo succeeds + mock_client.get.side_effect = [ + ConnectionError("bad-repo unavailable"), # bad-repo list call fails + [pr], detail, [], # good-repo succeeds + ] + + result = await connector.fetch_pull_requests() + + assert len(result) == 1 + assert result[0]["_pr_number"] == 7 + + # ------------------------------------------------------------------ + # 5. fetch_pull_requests_incremental — stops at since watermark + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pull_requests_stops_before_watermark(self): + """PRs updated before `since` must not be included in results.""" + connector, mock_client = _build_connector(repos=["test-org/repo"]) + + since = _utc(2024, 2, 1) + + new_pr = _make_github_pr(number=10, updated_at=_iso(2024, 2, 10)) + old_pr = _make_github_pr(number=5, updated_at=_iso(2024, 1, 15)) + detail = _make_pr_detail() + + # The list endpoint returns newest first (sort=updated desc). + # new_pr passes the watermark, old_pr does not (stop=True is set). + mock_client.get.side_effect = [ + [new_pr, old_pr], # list — both PRs returned by API + detail, # detail for new_pr + [], # reviews for new_pr + # old_pr should NOT trigger detail/reviews calls + ] + + result = await connector.fetch_pull_requests(since=since) + + assert len(result) == 1 + assert result[0]["_pr_number"] == 10 + + # ------------------------------------------------------------------ + # 6. _fetch_pr_detail — returns enrichment fields + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pr_detail_returns_correct_fields(self): + connector, mock_client = _build_connector() + mock_client.get.return_value = { + "additions": 120, + "deletions": 40, + "changed_files": 8, + "commits": 5, + } + + detail = await connector._fetch_pr_detail("test-org/repo", 42) + + assert detail["additions"] == 120 + assert detail["deletions"] == 40 + assert detail["changed_files"] == 8 + assert detail["commits"] == 5 + + # ------------------------------------------------------------------ + # 7. _fetch_pr_detail_error — returns zeros on failure + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pr_detail_returns_zeros_on_error(self): + connector, mock_client = _build_connector() + mock_client.get.side_effect = ConnectionError("timeout") + + detail = await connector._fetch_pr_detail("test-org/repo", 99) + + assert detail == {"additions": 0, "deletions": 0, "changed_files": 0, "commits": 0} + + # ------------------------------------------------------------------ + # 8. _fetch_pr_reviews — extracts review timestamps and reviewers + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pr_reviews_extracts_first_review_and_approval(self): + connector, mock_client = _build_connector() + mock_client.get.return_value = [ + _make_review("reviewer-a", "COMMENTED", submitted_at=_iso(2024, 1, 5, 9)), + _make_review("reviewer-b", "APPROVED", submitted_at=_iso(2024, 1, 5, 14)), + ] + + reviews = await connector._fetch_pr_reviews("test-org/repo", 1) + + # first_review_at is the earliest submitted_at across all reviews + assert reviews["_first_review_at"] == _iso(2024, 1, 5, 9) + # approved_at is set when at least one APPROVED review exists + assert reviews["_approved_at"] == _iso(2024, 1, 5, 14) + logins = [r["login"] for r in reviews["_reviewers"]] + assert "reviewer-a" in logins + assert "reviewer-b" in logins + + @pytest.mark.asyncio + async def test_fetch_pr_reviews_no_approval_when_only_comments(self): + connector, mock_client = _build_connector() + mock_client.get.return_value = [ + _make_review("reviewer-a", "COMMENTED", submitted_at=_iso(2024, 1, 5, 9)), + ] + + reviews = await connector._fetch_pr_reviews("test-org/repo", 1) + + assert reviews["_first_review_at"] == _iso(2024, 1, 5, 9) + assert reviews["_approved_at"] is None + + @pytest.mark.asyncio + async def test_fetch_pr_reviews_deduplicates_reviewers(self): + """Same reviewer submitting multiple reviews must appear once.""" + connector, mock_client = _build_connector() + mock_client.get.return_value = [ + _make_review("reviewer-a", "CHANGES_REQUESTED", submitted_at=_iso(2024, 1, 4)), + _make_review("reviewer-a", "APPROVED", submitted_at=_iso(2024, 1, 5)), + ] + + reviews = await connector._fetch_pr_reviews("test-org/repo", 1) + + assert len(reviews["_reviewers"]) == 1 + + # ------------------------------------------------------------------ + # 9. _fetch_pr_reviews_empty — empty list + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pr_reviews_empty_list(self): + connector, mock_client = _build_connector() + mock_client.get.return_value = [] + + reviews = await connector._fetch_pr_reviews("test-org/repo", 1) + + assert reviews["_reviewers"] == [] + assert reviews["_first_review_at"] is None + assert reviews["_approved_at"] is None + + # ------------------------------------------------------------------ + # 10. _fetch_pr_reviews_error — returns empty on API failure + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pr_reviews_returns_empty_on_error(self): + connector, mock_client = _build_connector() + mock_client.get.side_effect = ConnectionError("reviews endpoint down") + + reviews = await connector._fetch_pr_reviews("test-org/repo", 1) + + assert reviews == {"_reviewers": [], "_first_review_at": None, "_approved_at": None} + + # ------------------------------------------------------------------ + # 11. _map_pr — maps GitHub PR to normalizer format + # ------------------------------------------------------------------ + + def test_map_pr_contains_all_normalizer_fields(self): + connector, _ = _build_connector() + + raw_pr = _make_github_pr(number=10, state="closed", merged_at=_iso(2024, 1, 10)) + detail = _make_pr_detail(additions=30, deletions=5, changed_files=3, commits=2) + reviews = { + "_first_review_at": _iso(2024, 1, 8), + "_approved_at": _iso(2024, 1, 9), + "_reviewers": [{"login": "rev-x", "state": "APPROVED"}], + } + + mapped = connector._map_pr("test-org/repo", raw_pr, detail=detail, reviews=reviews) + + # Standard normalizer contract fields + assert mapped["id"].startswith("github:GithubPullRequest:") + assert mapped["base_repo_id"].startswith("github:GithubRepo:") + assert mapped["head_repo_id"].startswith("github:GithubRepo:") + assert mapped["title"] == "feat: sample PR" + assert mapped["author_name"] == "dev-user" + assert mapped["additions"] == 30 + assert mapped["deletions"] == 5 + assert mapped["base_ref"] == "main" + assert mapped["head_ref"] == "feature/sample" + + # Enrichment fields + assert mapped["_files_changed"] == 3 + assert mapped["_commits_count"] == 2 + assert mapped["_first_review_at"] == _iso(2024, 1, 8) + assert mapped["_approved_at"] == _iso(2024, 1, 9) + assert len(mapped["_reviewers"]) == 1 + + def test_map_pr_without_enrichment_uses_safe_defaults(self): + connector, _ = _build_connector() + raw_pr = _make_github_pr(number=1, state="open") + + mapped = connector._map_pr("test-org/repo", raw_pr) + + assert mapped["additions"] == 0 + assert mapped["deletions"] == 0 + assert mapped["_files_changed"] == 0 + assert mapped["_commits_count"] == 0 + assert mapped["_reviewers"] == [] + assert mapped["_first_review_at"] is None + assert mapped["_approved_at"] is None + + # ------------------------------------------------------------------ + # 12. _map_pr_merged — MERGED state when merged_at is set + # ------------------------------------------------------------------ + + def test_map_pr_merged_state_when_merged_at_present(self): + connector, _ = _build_connector() + raw_pr = _make_github_pr(number=3, state="closed", merged_at=_iso(2024, 1, 15)) + + mapped = connector._map_pr("test-org/repo", raw_pr) + + assert mapped["status"] == "MERGED" + assert mapped["merged_date"] == _iso(2024, 1, 15) + + # ------------------------------------------------------------------ + # 13. _map_pr_open — OPEN state preserved + # ------------------------------------------------------------------ + + def test_map_pr_open_state(self): + connector, _ = _build_connector() + raw_pr = _make_github_pr(number=4, state="open", merged_at=None) + raw_pr["closed_at"] = None + + mapped = connector._map_pr("test-org/repo", raw_pr) + + assert mapped["status"] == "OPEN" + assert mapped["merged_date"] is None + + def test_map_pr_closed_without_merged_at_stays_closed(self): + """A closed (rejected) PR with no merged_at should be CLOSED, not MERGED.""" + connector, _ = _build_connector() + raw_pr = _make_github_pr(number=5, state="closed", merged_at=None) + + mapped = connector._map_pr("test-org/repo", raw_pr) + + assert mapped["status"] == "CLOSED" + + # ------------------------------------------------------------------ + # 14. fetch_issues — returns empty (not_supported) + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_issues_returns_empty_list(self): + connector, _ = _build_connector() + + result = await connector.fetch_issues() + + assert result == [] + + # ------------------------------------------------------------------ + # 15. fetch_deployments — returns empty (not_supported) + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_deployments_returns_empty_list(self): + connector, _ = _build_connector() + + result = await connector.fetch_deployments() + + assert result == [] + + # ------------------------------------------------------------------ + # 16. source_type + # ------------------------------------------------------------------ + + def test_source_type_is_github(self): + connector, _ = _build_connector() + + assert connector.source_type == "github" + + # ------------------------------------------------------------------ + # 17. close + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_close_delegates_to_http_client(self): + connector, mock_client = _build_connector() + + await connector.close() + + mock_client.close.assert_awaited_once() + + # ------------------------------------------------------------------ + # Anti-surveillance guarantee + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pull_requests_no_individual_rankings(self): + """fetch_pull_requests must never return ranking or score fields.""" + connector, mock_client = _build_connector(repos=["test-org/repo"]) + + pr = _make_github_pr(number=1, state="closed", merged_at=_iso(2024, 1, 10)) + mock_client.get.side_effect = [[pr], _make_pr_detail(), []] + + result = await connector.fetch_pull_requests() + + forbidden_keys = {"rank", "score", "leaderboard", "developer_rank", "ranking"} + for pr_record in result: + assert not forbidden_keys.intersection(pr_record.keys()), ( + f"PR record contains forbidden ranking key: {pr_record.keys()}" + ) + + # ------------------------------------------------------------------ + # Constructor — missing token raises early + # ------------------------------------------------------------------ + + def test_constructor_raises_without_token(self): + with patch("src.connectors.github_connector.settings") as mock_settings: + mock_settings.github_token = "" + mock_settings.github_org = "test-org" + mock_settings.github_api_url = "https://api.github.com" + + with pytest.raises(ValueError, match="GITHUB_TOKEN"): + GitHubConnector(token=None) diff --git a/pulse/packages/pulse-data/tests/unit/connectors/test_jenkins_connector.py b/pulse/packages/pulse-data/tests/unit/connectors/test_jenkins_connector.py new file mode 100644 index 0000000..5e2eeaf --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/connectors/test_jenkins_connector.py @@ -0,0 +1,545 @@ +"""Unit tests for JenkinsConnector. + +Tests in this module mock ResilientHTTPClient so no real HTTP calls are made. +All assertions verify behavior at the connector boundary: method signatures, +return shapes, field mappings, watermark filtering, environment detection, +and error handling — not HTTP transport internals. + +Coverage targets (from test plan): + 1. test_connection — healthy status with Jenkins version/executor info + 2. fetch_deployments — fetches builds from configured jobs + 3. fetch_deployments_incremental — filters builds before since watermark + 4. discover_jobs — returns job list from Jenkins API + 5. _map_build — maps Jenkins build dict to normalizer deployment format + 6. _detect_environment — heuristics and pattern-based env detection + 7. source_type — returns "jenkins" + 8. fetch_pull_requests — returns empty (not_supported) + 9. fetch_issues — returns empty (not_supported) + 10. close — delegates to HTTP client close +""" + +from __future__ import annotations + +import os +from datetime import datetime, timedelta, timezone +from unittest.mock import AsyncMock, MagicMock, patch + +import pytest + +os.environ.setdefault("GITHUB_TOKEN", "test-token") +os.environ.setdefault("JENKINS_BASE_URL", "http://jenkins.test") +os.environ.setdefault("JENKINS_API_TOKEN", "tok") + +from src.connectors.jenkins_connector import JenkinsConnector # noqa: E402 + + +# --------------------------------------------------------------------------- +# Helpers +# --------------------------------------------------------------------------- + + +def _utc(year: int, month: int, day: int, hour: int = 0) -> datetime: + return datetime(year, month, day, hour, tzinfo=timezone.utc) + + +def _ts_ms(year: int, month: int, day: int, hour: int = 0) -> int: + """Return Unix timestamp in milliseconds for a UTC datetime.""" + dt = _utc(year, month, day, hour) + return int(dt.timestamp() * 1000) + + +def _make_jenkins_build( + number: int = 42, + result: str = "SUCCESS", + timestamp_ms: int | None = None, + duration_ms: int = 300_000, # 5 minutes + url: str = "http://jenkins.test/job/deploy-prod/42/", +) -> dict: + """Build a minimal Jenkins build API payload.""" + return { + "number": number, + "result": result, + "timestamp": timestamp_ms if timestamp_ms is not None else _ts_ms(2024, 1, 10), + "duration": duration_ms, + "url": url, + "displayName": f"#{number}", + } + + +def _make_jenkins_job( + full_name: str = "deploy-prod", + url: str = "http://jenkins.test/job/deploy-prod/", + color: str = "blue", +) -> dict: + return {"fullName": full_name, "url": url, "color": color, "name": full_name} + + +def _build_connector( + jobs: list[dict] | None = None, + connection_id: int = 1, +) -> tuple[JenkinsConnector, MagicMock]: + """Instantiate JenkinsConnector with a mocked HTTP client. + + Returns (connector, mock_client). + """ + mock_client = MagicMock() + mock_client.get = AsyncMock() + mock_client.close = AsyncMock() + + with patch("src.connectors.jenkins_connector.ResilientHTTPClient", return_value=mock_client): + connector = JenkinsConnector( + base_url="http://jenkins.test", + username="pulse-svc", + api_token="super-secret-token", + jobs=jobs or [], + connection_id=connection_id, + ) + + return connector, mock_client + + +# --------------------------------------------------------------------------- +# Test class +# --------------------------------------------------------------------------- + + +class TestJenkinsConnector: + # ------------------------------------------------------------------ + # 1. test_connection + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_connection_returns_healthy_status(self): + jobs = [{"fullName": "deploy-prod"}, {"fullName": "deploy-staging"}] + connector, mock_client = _build_connector(jobs=jobs) + mock_client.get.return_value = { + "nodeDescription": "Jenkins master", + "numExecutors": 4, + } + + result = await connector.test_connection() + + assert result["status"] == "healthy" + assert "Jenkins master" in result["message"] + assert result["details"]["executors"] == 4 + assert result["details"]["configured_jobs"] == 2 + + @pytest.mark.asyncio + async def test_connection_returns_error_on_failure(self): + connector, mock_client = _build_connector() + mock_client.get.side_effect = ConnectionError("Jenkins unreachable") + + result = await connector.test_connection() + + assert result["status"] == "error" + assert "Jenkins unreachable" in result["message"] + + @pytest.mark.asyncio + async def test_connection_handles_missing_node_description(self): + """Should not crash if Jenkins returns partial response.""" + connector, mock_client = _build_connector() + mock_client.get.return_value = {} # nodeDescription missing + + result = await connector.test_connection() + + assert result["status"] == "healthy" + assert "unknown" in result["message"] + + # ------------------------------------------------------------------ + # 2. fetch_deployments — fetches builds from configured jobs + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_deployments_maps_builds_to_deployment_format(self): + jobs = [{"fullName": "deploy-prod"}] + connector, mock_client = _build_connector(jobs=jobs) + build = _make_jenkins_build(number=10, result="SUCCESS") + mock_client.get.return_value = {"builds": [build]} + + result = await connector.fetch_deployments() + + assert len(result) == 1 + dep = result[0] + assert dep["id"].startswith("jenkins:JenkinsBuild:1:deploy-prod:10") + assert dep["result"] == "SUCCESS" + assert dep["status"] == "DONE" + assert dep["environment"] == "production" # heuristic: "prod" in name + assert dep["started_date"] is not None + assert dep["finished_date"] is not None + + @pytest.mark.asyncio + async def test_fetch_deployments_skips_in_progress_builds(self): + """Builds with no result (still running) must be excluded.""" + jobs = [{"fullName": "deploy-prod"}] + connector, mock_client = _build_connector(jobs=jobs) + + running_build = _make_jenkins_build(number=5, result=None) # type: ignore[arg-type] + done_build = _make_jenkins_build(number=6, result="SUCCESS") + mock_client.get.return_value = {"builds": [running_build, done_build]} + + result = await connector.fetch_deployments() + + assert len(result) == 1 + assert result[0]["id"].endswith(":6") + + @pytest.mark.asyncio + async def test_fetch_deployments_returns_empty_when_no_jobs_configured(self): + connector, mock_client = _build_connector(jobs=[]) + + result = await connector.fetch_deployments() + + assert result == [] + mock_client.get.assert_not_called() + + @pytest.mark.asyncio + async def test_fetch_deployments_continues_on_job_failure(self): + """A failure for one job must not abort the rest.""" + jobs = [ + {"fullName": "bad-job"}, + {"fullName": "good-job-prod"}, + ] + connector, mock_client = _build_connector(jobs=jobs) + + good_build = _make_jenkins_build(number=1, result="SUCCESS") + mock_client.get.side_effect = [ + ConnectionError("bad-job unavailable"), + {"builds": [good_build]}, + ] + + result = await connector.fetch_deployments() + + assert len(result) == 1 + + @pytest.mark.asyncio + async def test_fetch_deployments_aggregates_across_multiple_jobs(self): + jobs = [ + {"fullName": "deploy-prod"}, + {"fullName": "deploy-staging"}, + ] + connector, mock_client = _build_connector(jobs=jobs) + + prod_build = _make_jenkins_build(number=10, result="SUCCESS") + stg_build = _make_jenkins_build(number=5, result="FAILURE") + mock_client.get.side_effect = [ + {"builds": [prod_build]}, + {"builds": [stg_build]}, + ] + + result = await connector.fetch_deployments() + + assert len(result) == 2 + + # ------------------------------------------------------------------ + # 3. fetch_deployments_incremental — filters by since watermark + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_deployments_filters_builds_before_watermark(self): + jobs = [{"fullName": "deploy-prod"}] + connector, mock_client = _build_connector(jobs=jobs) + + since = _utc(2024, 2, 1) + new_ts = _ts_ms(2024, 2, 10) + old_ts = _ts_ms(2024, 1, 15) + + new_build = _make_jenkins_build(number=20, result="SUCCESS", timestamp_ms=new_ts) + old_build = _make_jenkins_build(number=15, result="SUCCESS", timestamp_ms=old_ts) + mock_client.get.return_value = {"builds": [new_build, old_build]} + + result = await connector.fetch_deployments(since=since) + + assert len(result) == 1 + assert result[0]["id"].endswith(":20") + + @pytest.mark.asyncio + async def test_fetch_deployments_no_watermark_returns_all(self): + jobs = [{"fullName": "deploy-prod"}] + connector, mock_client = _build_connector(jobs=jobs) + + builds = [ + _make_jenkins_build(number=i, result="SUCCESS") for i in range(1, 6) + ] + mock_client.get.return_value = {"builds": builds} + + result = await connector.fetch_deployments(since=None) + + assert len(result) == 5 + + # ------------------------------------------------------------------ + # 4. discover_jobs — returns job list from root or folder + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_discover_jobs_returns_job_list(self): + connector, mock_client = _build_connector() + mock_client.get.return_value = { + "jobs": [ + _make_jenkins_job("deploy-prod"), + _make_jenkins_job("deploy-staging"), + _make_jenkins_job("build-service"), + ] + } + + result = await connector.discover_jobs() + + assert len(result) == 3 + full_names = [j["fullName"] for j in result] + assert "deploy-prod" in full_names + + @pytest.mark.asyncio + async def test_discover_jobs_with_folder_scopes_api_path(self): + """When a folder is provided, the API path should include the folder.""" + connector, mock_client = _build_connector() + mock_client.get.return_value = { + "jobs": [_make_jenkins_job("my-folder/deploy-prod")] + } + + result = await connector.discover_jobs(folder="my-folder") + + # Verify the API was called (path assertion happens implicitly via call) + mock_client.get.assert_awaited_once() + call_args = mock_client.get.call_args + assert "my-folder" in call_args[0][0] + + @pytest.mark.asyncio + async def test_discover_jobs_returns_empty_on_no_jobs(self): + connector, mock_client = _build_connector() + mock_client.get.return_value = {"jobs": []} + + result = await connector.discover_jobs() + + assert result == [] + + # ------------------------------------------------------------------ + # 5. _map_build — maps Jenkins build to deployment format + # ------------------------------------------------------------------ + + def test_map_build_success_fields(self): + connector, _ = _build_connector() + ts = _ts_ms(2024, 3, 5, 14) + duration = 600_000 # 10 minutes + build = _make_jenkins_build( + number=99, result="SUCCESS", timestamp_ms=ts, duration_ms=duration + ) + + mapped = connector._map_build("deploy-prod", build) + + assert mapped["id"] == "jenkins:JenkinsBuild:1:deploy-prod:99" + assert mapped["cicd_deployment_id"] == "jenkins:JenkinsJob:1:deploy-prod" + assert mapped["repo_id"] is None + assert mapped["name"] == "deploy-prod" + assert mapped["result"] == "SUCCESS" + assert mapped["status"] == "DONE" + # started_date and finished_date must be ISO strings + assert mapped["started_date"] is not None + assert "T" in mapped["started_date"] + assert mapped["finished_date"] is not None + # finished must be after started + started = datetime.fromisoformat(mapped["started_date"]) + finished = datetime.fromisoformat(mapped["finished_date"]) + assert finished > started + + def test_map_build_failure_result_preserved(self): + connector, _ = _build_connector() + build = _make_jenkins_build(number=10, result="FAILURE") + + mapped = connector._map_build("deploy-prod", build) + + assert mapped["result"] == "FAILURE" + + def test_map_build_zero_timestamp_produces_none_dates(self): + """A build with timestamp=0 and duration=0 should not crash.""" + connector, _ = _build_connector() + build = _make_jenkins_build(number=1, result="ABORTED", timestamp_ms=0, duration_ms=0) + + mapped = connector._map_build("deploy-prod", build) + + # started/finished are None when timestamp is 0 (falsy) + assert mapped["started_date"] is None + assert mapped["finished_date"] is None + + def test_map_build_uses_connection_id_in_id(self): + jobs = [{"fullName": "deploy-prod"}] + connector, _ = _build_connector(jobs=jobs, connection_id=7) + build = _make_jenkins_build(number=3) + + mapped = connector._map_build("deploy-prod", build) + + assert "jenkins:JenkinsBuild:7:deploy-prod:3" == mapped["id"] + + # ------------------------------------------------------------------ + # 6. _detect_environment — heuristic and pattern-based + # ------------------------------------------------------------------ + + @pytest.mark.parametrize( + "job_name,expected_env", + [ + # Production keywords + ("deploy-prod", "production"), + ("release-prd", "production"), + ("main-deploy", "production"), + ("release/1.0", "production"), + # Staging keywords + ("deploy-staging", "staging"), + ("deploy-stg-api", "staging"), + ("homolog-service", "staging"), + ("hml-deploy", "staging"), + # Development keywords + ("build-develop", "development"), + ("dev-pipeline", "development"), + ("feature-build", "development"), + # Test/QA keywords + ("qa-pipeline", "test"), + ("run-quality-checks", "test"), + ("test-suite", "test"), + # Default: unconfigured job name defaults to production + ("unknown-job", "production"), + ], + ) + def test_detect_environment_heuristics(self, job_name: str, expected_env: str): + connector, _ = _build_connector() + + env = connector._detect_environment(job_name) + + assert env == expected_env, f"Job '{job_name}': expected '{expected_env}', got '{env}'" + + def test_detect_environment_uses_production_pattern_when_configured(self): + """Explicit productionPattern in job config overrides heuristics.""" + jobs = [ + { + "fullName": "ci/webmotors-api", + "productionPattern": r"webmotors", + } + ] + connector, _ = _build_connector(jobs=jobs) + + env = connector._detect_environment("ci/webmotors-api") + + assert env == "production" + + def test_detect_environment_falls_back_to_heuristics_when_pattern_misses(self): + """Pattern that does NOT match the job name falls through to heuristics.""" + jobs = [ + { + "fullName": "ci/qa-suite", + "productionPattern": r"^PROD-", # won't match "ci/qa-suite" + } + ] + connector, _ = _build_connector(jobs=jobs) + + env = connector._detect_environment("ci/qa-suite") + + # heuristic: "qa" -> "test" + assert env == "test" + + # ------------------------------------------------------------------ + # 7. source_type + # ------------------------------------------------------------------ + + def test_source_type_is_jenkins(self): + connector, _ = _build_connector() + + assert connector.source_type == "jenkins" + + # ------------------------------------------------------------------ + # 8. fetch_pull_requests — returns empty (not_supported) + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_pull_requests_returns_empty_list(self): + connector, _ = _build_connector() + + result = await connector.fetch_pull_requests() + + assert result == [] + + # ------------------------------------------------------------------ + # 9. fetch_issues — returns empty (not_supported) + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_issues_returns_empty_list(self): + connector, _ = _build_connector() + + result = await connector.fetch_issues() + + assert result == [] + + # ------------------------------------------------------------------ + # 10. close + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_close_delegates_to_http_client(self): + connector, mock_client = _build_connector() + + await connector.close() + + mock_client.close.assert_awaited_once() + + # ------------------------------------------------------------------ + # Constructor — missing credentials raise early + # ------------------------------------------------------------------ + + def test_constructor_raises_without_base_url(self): + with patch("src.connectors.jenkins_connector.settings") as mock_settings: + mock_settings.jenkins_base_url = "" + mock_settings.jenkins_username = "" + mock_settings.jenkins_api_token = "tok" + + with pytest.raises(ValueError, match="JENKINS_BASE_URL"): + JenkinsConnector(base_url=None, api_token="tok") + + def test_constructor_raises_without_api_token(self): + with patch("src.connectors.jenkins_connector.settings") as mock_settings: + mock_settings.jenkins_base_url = "http://jenkins.test" + mock_settings.jenkins_username = "" + mock_settings.jenkins_api_token = "" + + with pytest.raises(ValueError, match="JENKINS_API_TOKEN"): + JenkinsConnector(base_url="http://jenkins.test", api_token=None) + + # ------------------------------------------------------------------ + # Anti-surveillance guarantee + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_deployments_no_individual_rankings(self): + """fetch_deployments must never contain ranking or score fields.""" + jobs = [{"fullName": "deploy-prod"}] + connector, mock_client = _build_connector(jobs=jobs) + build = _make_jenkins_build(number=1, result="SUCCESS") + mock_client.get.return_value = {"builds": [build]} + + result = await connector.fetch_deployments() + + forbidden_keys = {"rank", "score", "leaderboard", "developer_rank", "ranking"} + for dep in result: + assert not forbidden_keys.intersection(dep.keys()), ( + f"Deployment record contains forbidden ranking key: {dep.keys()}" + ) + + # ------------------------------------------------------------------ + # Edge cases — builds list + # ------------------------------------------------------------------ + + @pytest.mark.asyncio + async def test_fetch_deployments_empty_builds_list(self): + jobs = [{"fullName": "deploy-prod"}] + connector, mock_client = _build_connector(jobs=jobs) + mock_client.get.return_value = {"builds": []} + + result = await connector.fetch_deployments() + + assert result == [] + + @pytest.mark.asyncio + async def test_fetch_deployments_skips_jobs_without_fullname(self): + """Job configs with no fullName key should be silently skipped.""" + jobs = [{"deploymentPattern": ".*"}] # no fullName + connector, mock_client = _build_connector(jobs=jobs) + + result = await connector.fetch_deployments() + + assert result == [] + mock_client.get.assert_not_called() diff --git a/pulse/packages/pulse-data/tests/unit/connectors/test_jira_connector.py b/pulse/packages/pulse-data/tests/unit/connectors/test_jira_connector.py new file mode 100644 index 0000000..f08584b --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/connectors/test_jira_connector.py @@ -0,0 +1,1407 @@ +"""Unit tests for JiraConnector. + +Tests are pure unit tests — no real HTTP calls are made. +ResilientHTTPClient is patched at the module level so every test is isolated +and deterministic. + +Coverage targets: +- fetch_issues: JQL construction, POST body format, pagination, watermark +- _extract_changelogs: status transitions, empty changelog, non-status fields +- get_cached_changelogs: returns cache then clears it +- fetch_issue_changelogs: individual GET calls for issues without inline changelog +- _discover_boards: scrum-only filter, caching +- fetch_sprints: delegates to _discover_boards + _fetch_board_sprints +- _fetch_board_sprints: offset pagination, 400 handling, watermark filter +- fetch_sprint_issues: offset pagination, mapping +- _map_issue: all fields, story points variants, sprint_id extraction +- _map_sprint_issue: all fields, story points variants +- _map_sprint: state mapping (active/closed/future) +- test_connection: healthy response and error response +- source_type, close, fetch_pull_requests, fetch_deployments +- _extract_key_from_id: parts[3] extraction +- _extract_numeric_id: parts[3] extraction +""" + +from __future__ import annotations + +from datetime import datetime, timezone +from unittest.mock import AsyncMock, MagicMock, patch + +import pytest + +from src.connectors.jira_connector import JiraConnector, SEARCH_FIELDS + + +# --------------------------------------------------------------------------- +# Helpers +# --------------------------------------------------------------------------- + +BASE_URL = "https://test.atlassian.net" +EMAIL = "svc@example.com" +TOKEN = "secret-token" +PROJECTS = ["BACK", "DESC", "ENO"] +CONN_ID = 1 + + +def _make_connector(projects: list[str] | None = None) -> JiraConnector: + """Instantiate JiraConnector with test credentials, bypassing settings.""" + return JiraConnector( + base_url=BASE_URL, + email=EMAIL, + api_token=TOKEN, + projects=projects if projects is not None else PROJECTS, + connection_id=CONN_ID, + ) + + +def _jira_issue( + jira_id: str = "10001", + key: str = "BACK-1", + summary: str = "Fix login bug", + status: str = "In Progress", + issue_type: str = "Story", + priority: str = "High", + assignee: str | None = "Alice", + created: str = "2024-01-10T09:00:00.000+0000", + updated: str = "2024-01-11T15:30:00.000+0000", + resolution_date: str | None = None, + story_points: float | None = 5.0, + sprint: dict | None = None, + changelog_histories: list[dict] | None = None, +) -> dict: + """Build a realistic Jira REST API v3 issue payload.""" + fields: dict = { + "summary": summary, + "status": {"name": status, "id": "3"}, + "issuetype": {"name": issue_type}, + "priority": {"name": priority}, + "assignee": {"displayName": assignee} if assignee else None, + "created": created, + "updated": updated, + "resolutiondate": resolution_date, + "story_points": story_points, + "customfield_10028": None, + "customfield_10016": None, + "sprint": sprint, + "parent": None, + "labels": [], + "components": [], + } + + issue: dict = { + "id": jira_id, + "key": key, + "fields": fields, + } + + if changelog_histories is not None: + issue["changelog"] = {"histories": changelog_histories} + else: + issue["changelog"] = {"histories": []} + + return issue + + +def _sprint_payload( + sprint_id: int = 42, + name: str = "Sprint 5", + state: str = "active", + start_date: str = "2024-01-08T09:00:00.000Z", + end_date: str = "2024-01-22T18:00:00.000Z", + complete_date: str | None = None, +) -> dict: + """Build a Jira Agile sprint payload.""" + return { + "id": sprint_id, + "name": name, + "state": state, + "startDate": start_date, + "endDate": end_date, + "completeDate": complete_date, + "originBoardId": 10, + } + + +def _changelog_history( + created: str = "2024-01-10T10:00:00.000+0000", + from_status: str = "To Do", + to_status: str = "In Progress", + field: str = "status", +) -> dict: + """Build a Jira changelog history entry.""" + return { + "created": created, + "items": [ + { + "field": field, + "fieldtype": "jira", + "fromString": from_status, + "toString": to_status, + } + ], + } + + +# --------------------------------------------------------------------------- +# Main test class +# --------------------------------------------------------------------------- + + +class TestJiraConnector: + + # ----------------------------------------------------------------------- + # Constructor & lifecycle + # ----------------------------------------------------------------------- + + def test_source_type_returns_jira(self) -> None: + connector = _make_connector() + assert connector.source_type == "jira" + + def test_raises_if_no_base_url_or_token(self) -> None: + """Constructor must fail fast when required credentials are absent.""" + with pytest.raises(ValueError, match="JIRA_BASE_URL"): + JiraConnector(base_url="", email=EMAIL, api_token="token", projects=PROJECTS) + + def test_raises_if_no_api_token(self) -> None: + with pytest.raises(ValueError, match="JIRA_API_TOKEN"): + JiraConnector(base_url=BASE_URL, email=EMAIL, api_token="", projects=PROJECTS) + + @pytest.mark.asyncio + async def test_close_delegates_to_http_client(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + await connector.close() + connector._client.close.assert_awaited_once() + + # ----------------------------------------------------------------------- + # test_connection + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_connection_returns_healthy_with_display_name(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + connector._client.get.return_value = { + "displayName": "Service Account", + "emailAddress": "svc@example.com", + "accountId": "abc123", + } + + result = await connector.test_connection() + + assert result["status"] == "healthy" + assert "Service Account" in result["message"] + assert result["details"]["email"] == "svc@example.com" + assert result["details"]["account_id"] == "abc123" + assert result["details"]["projects"] == PROJECTS + + @pytest.mark.asyncio + async def test_connection_returns_error_on_exception(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + connector._client.get.side_effect = ConnectionError("timeout") + + result = await connector.test_connection() + + assert result["status"] == "error" + assert "timeout" in result["message"] + + @pytest.mark.asyncio + async def test_connection_calls_myself_endpoint(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + connector._client.get.return_value = {"displayName": "Bot"} + + await connector.test_connection() + + connector._client.get.assert_awaited_once_with("/rest/api/3/myself") + + # ----------------------------------------------------------------------- + # fetch_pull_requests / fetch_deployments — not supported + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_pull_requests_returns_empty_list(self) -> None: + connector = _make_connector() + result = await connector.fetch_pull_requests() + assert result == [] + + @pytest.mark.asyncio + async def test_fetch_deployments_returns_empty_list(self) -> None: + connector = _make_connector() + result = await connector.fetch_deployments() + assert result == [] + + # ----------------------------------------------------------------------- + # fetch_issues — JQL construction + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_issues_no_projects_returns_empty(self) -> None: + connector = _make_connector(projects=[]) + connector._client = AsyncMock() + + result = await connector.fetch_issues() + + assert result == [] + connector._client.post.assert_not_awaited() + + @pytest.mark.asyncio + async def test_fetch_issues_uses_post_search_jql_endpoint(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": [], "nextPageToken": None} + + await connector.fetch_issues() + + connector._client.post.assert_awaited_once() + call_args = connector._client.post.call_args + assert call_args[0][0] == "/rest/api/3/search/jql" + + @pytest.mark.asyncio + async def test_fetch_issues_projects_are_quoted_in_jql(self) -> None: + """Project keys like DESC are JQL reserved words — must be quoted.""" + connector = _make_connector(projects=["BACK", "DESC", "ENO"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues() + + body = connector._client.post.call_args[1]["json_body"] + jql = body["jql"] + assert '"BACK"' in jql + assert '"DESC"' in jql + assert '"ENO"' in jql + + @pytest.mark.asyncio + async def test_fetch_issues_jql_uses_in_clause(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues() + + body = connector._client.post.call_args[1]["json_body"] + assert "project IN" in body["jql"] + + @pytest.mark.asyncio + async def test_fetch_issues_without_since_has_no_updated_clause(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues(since=None) + + body = connector._client.post.call_args[1]["json_body"] + assert "updated >=" not in body["jql"] + + @pytest.mark.asyncio + async def test_fetch_issues_with_since_adds_updated_clause(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + since = datetime(2024, 3, 15, 10, 0, tzinfo=timezone.utc) + + await connector.fetch_issues(since=since) + + body = connector._client.post.call_args[1]["json_body"] + assert 'updated >= "2024-03-15 10:00"' in body["jql"] + + @pytest.mark.asyncio + async def test_fetch_issues_jql_orders_by_updated_desc(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues() + + body = connector._client.post.call_args[1]["json_body"] + assert "ORDER BY updated DESC" in body["jql"] + + # ----------------------------------------------------------------------- + # fetch_issues — POST body format + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_issues_body_has_max_results_100(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues() + + body = connector._client.post.call_args[1]["json_body"] + assert body["maxResults"] == 100 + + @pytest.mark.asyncio + async def test_fetch_issues_body_expand_is_string_not_list(self) -> None: + """Jira v3 search/jql requires expand as a string, not an array.""" + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues() + + body = connector._client.post.call_args[1]["json_body"] + assert body["expand"] == "changelog" + assert isinstance(body["expand"], str), "expand must be str, not list" + + @pytest.mark.asyncio + async def test_fetch_issues_body_fields_is_list(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues() + + body = connector._client.post.call_args[1]["json_body"] + assert isinstance(body["fields"], list) + # Spot-check expected fields from SEARCH_FIELDS constant + assert "summary" in body["fields"] + assert "status" in body["fields"] + assert "customfield_10028" in body["fields"] + + @pytest.mark.asyncio + async def test_fetch_issues_fields_equal_search_fields_constant(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues() + + body = connector._client.post.call_args[1]["json_body"] + assert body["fields"] == SEARCH_FIELDS + + @pytest.mark.asyncio + async def test_fetch_issues_first_page_has_no_next_page_token(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = {"issues": []} + + await connector.fetch_issues() + + body = connector._client.post.call_args[1]["json_body"] + assert "nextPageToken" not in body + + # ----------------------------------------------------------------------- + # fetch_issues — pagination + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_issues_pagination_follows_next_page_token(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + + issue1 = _jira_issue(jira_id="101", key="BACK-1") + issue2 = _jira_issue(jira_id="102", key="BACK-2") + + connector._client.post.side_effect = [ + {"issues": [issue1], "nextPageToken": "cursor-abc"}, + {"issues": [issue2], "nextPageToken": None}, + ] + + result = await connector.fetch_issues() + + assert connector._client.post.await_count == 2 + assert len(result) == 2 + + @pytest.mark.asyncio + async def test_fetch_issues_pagination_sends_token_in_body(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + + issue1 = _jira_issue(jira_id="101", key="BACK-1") + + connector._client.post.side_effect = [ + {"issues": [issue1], "nextPageToken": "cursor-xyz"}, + {"issues": []}, + ] + + await connector.fetch_issues() + + second_call_body = connector._client.post.call_args_list[1][1]["json_body"] + assert second_call_body["nextPageToken"] == "cursor-xyz" + + @pytest.mark.asyncio + async def test_fetch_issues_stops_when_issues_empty_even_with_token(self) -> None: + """Guard: if issues array is empty, stop even if nextPageToken is present.""" + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = { + "issues": [], + "nextPageToken": "should-not-follow", + } + + result = await connector.fetch_issues() + + assert connector._client.post.await_count == 1 + assert result == [] + + @pytest.mark.asyncio + async def test_fetch_issues_returns_all_mapped_issues(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + + issues = [_jira_issue(jira_id=str(i), key=f"BACK-{i}") for i in range(1, 4)] + connector._client.post.return_value = {"issues": issues} + + result = await connector.fetch_issues() + + assert len(result) == 3 + # All results are mapped dicts (not raw Jira payloads) + for item in result: + assert "id" in item + assert item["id"].startswith("jira:JiraIssue:") + + # ----------------------------------------------------------------------- + # _map_issue + # ----------------------------------------------------------------------- + + def test_map_issue_builds_internal_id(self) -> None: + connector = _make_connector() + issue = _jira_issue(jira_id="12345", key="BACK-99") + + result = connector._map_issue(issue) + + assert result["id"] == f"jira:JiraIssue:{CONN_ID}:12345" + + def test_map_issue_builds_browse_url(self) -> None: + connector = _make_connector() + issue = _jira_issue(key="BACK-99") + + result = connector._map_issue(issue) + + assert result["url"] == f"{BASE_URL}/browse/BACK-99" + + def test_map_issue_preserves_issue_key(self) -> None: + connector = _make_connector() + result = connector._map_issue(_jira_issue(key="DESC-42")) + assert result["issue_key"] == "DESC-42" + + def test_map_issue_maps_summary_to_title(self) -> None: + connector = _make_connector() + result = connector._map_issue(_jira_issue(summary="Fix the login bug")) + assert result["title"] == "Fix the login bug" + + def test_map_issue_maps_status_name(self) -> None: + connector = _make_connector() + result = connector._map_issue(_jira_issue(status="Code Review")) + assert result["status"] == "Code Review" + assert result["original_status"] == "Code Review" + + def test_map_issue_maps_priority(self) -> None: + connector = _make_connector() + result = connector._map_issue(_jira_issue(priority="Critical")) + assert result["priority"] == "Critical" + + def test_map_issue_maps_dates(self) -> None: + connector = _make_connector() + issue = _jira_issue( + created="2024-01-10T09:00:00.000+0000", + updated="2024-01-11T15:30:00.000+0000", + resolution_date="2024-01-12T16:00:00.000+0000", + ) + result = connector._map_issue(issue) + assert result["created_date"] == "2024-01-10T09:00:00.000+0000" + assert result["updated_date"] == "2024-01-11T15:30:00.000+0000" + assert result["resolution_date"] == "2024-01-12T16:00:00.000+0000" + + def test_map_issue_maps_assignee_display_name(self) -> None: + connector = _make_connector() + result = connector._map_issue(_jira_issue(assignee="Alice Smith")) + assert result["assignee_name"] == "Alice Smith" + + def test_map_issue_none_assignee_returns_none(self) -> None: + connector = _make_connector() + result = connector._map_issue(_jira_issue(assignee=None)) + assert result["assignee_name"] is None + + def test_map_issue_maps_issue_type(self) -> None: + connector = _make_connector() + result = connector._map_issue(_jira_issue(issue_type="Bug")) + assert result["type"] == "Bug" + + def test_map_issue_missing_issuetype_defaults_to_task(self) -> None: + connector = _make_connector() + issue = _jira_issue() + issue["fields"]["issuetype"] = None + result = connector._map_issue(issue) + assert result["type"] == "Task" + + def test_map_issue_lead_time_minutes_is_none(self) -> None: + """Lead time is calculated by PULSE normalizer, not by connector.""" + connector = _make_connector() + result = connector._map_issue(_jira_issue()) + assert result["lead_time_minutes"] is None + + # ----------------------------------------------------------------------- + # _map_issue — story points + # ----------------------------------------------------------------------- + + def test_map_issue_story_points_from_story_points_field(self) -> None: + connector = _make_connector() + issue = _jira_issue(story_points=8.0) + result = connector._map_issue(issue) + assert result["story_point"] == 8.0 + + def test_map_issue_story_points_fallback_customfield_10028(self) -> None: + connector = _make_connector() + issue = _jira_issue(story_points=None) + issue["fields"]["customfield_10028"] = 3.0 + result = connector._map_issue(issue) + assert result["story_point"] == 3.0 + + def test_map_issue_story_points_fallback_customfield_10016(self) -> None: + connector = _make_connector() + issue = _jira_issue(story_points=None) + issue["fields"]["customfield_10028"] = None + issue["fields"]["customfield_10016"] = 13.0 + result = connector._map_issue(issue) + assert result["story_point"] == 13.0 + + def test_map_issue_story_points_none_when_all_missing(self) -> None: + connector = _make_connector() + issue = _jira_issue(story_points=None) + issue["fields"]["customfield_10028"] = None + issue["fields"]["customfield_10016"] = None + result = connector._map_issue(issue) + assert result["story_point"] is None + + def test_map_issue_story_points_prefers_story_points_over_customfield(self) -> None: + """Primary field wins over fallbacks.""" + connector = _make_connector() + issue = _jira_issue(story_points=5.0) + issue["fields"]["customfield_10028"] = 99.0 + result = connector._map_issue(issue) + assert result["story_point"] == 5.0 + + # ----------------------------------------------------------------------- + # _map_issue — sprint ID extraction + # ----------------------------------------------------------------------- + + def test_map_issue_sprint_id_extracted_when_sprint_present(self) -> None: + connector = _make_connector() + sprint_field = {"id": 42, "name": "Sprint 5", "state": "active"} + issue = _jira_issue(sprint=sprint_field) + + result = connector._map_issue(issue) + + assert result["sprint_id"] == f"jira:JiraSprint:{CONN_ID}:42" + + def test_map_issue_sprint_id_is_none_when_sprint_absent(self) -> None: + connector = _make_connector() + issue = _jira_issue(sprint=None) + result = connector._map_issue(issue) + assert result["sprint_id"] is None + + def test_map_issue_sprint_id_is_none_when_sprint_field_is_not_dict(self) -> None: + connector = _make_connector() + issue = _jira_issue(sprint=None) + issue["fields"]["sprint"] = "not-a-dict" + result = connector._map_issue(issue) + assert result["sprint_id"] is None + + def test_map_issue_sprint_id_is_none_when_sprint_has_no_id(self) -> None: + connector = _make_connector() + issue = _jira_issue(sprint=None) + issue["fields"]["sprint"] = {"name": "Sprint X"} # no 'id' + result = connector._map_issue(issue) + assert result["sprint_id"] is None + + # ----------------------------------------------------------------------- + # _extract_changelogs + # ----------------------------------------------------------------------- + + def test_extract_changelogs_returns_status_transitions(self) -> None: + connector = _make_connector() + issue = _jira_issue(changelog_histories=[ + _changelog_history( + created="2024-01-10T10:00:00.000+0000", + from_status="To Do", + to_status="In Progress", + ) + ]) + transitions = connector._extract_changelogs("jira:JiraIssue:1:101", issue) + + assert len(transitions) == 1 + assert transitions[0]["from_status"] == "To Do" + assert transitions[0]["to_status"] == "In Progress" + assert transitions[0]["created_date"] == "2024-01-10T10:00:00.000+0000" + + def test_extract_changelogs_sets_issue_id(self) -> None: + connector = _make_connector() + internal_id = "jira:JiraIssue:1:999" + issue = _jira_issue(changelog_histories=[ + _changelog_history() + ]) + transitions = connector._extract_changelogs(internal_id, issue) + assert transitions[0]["issue_id"] == internal_id + + def test_extract_changelogs_empty_when_no_histories(self) -> None: + connector = _make_connector() + issue = _jira_issue(changelog_histories=[]) + transitions = connector._extract_changelogs("jira:JiraIssue:1:101", issue) + assert transitions == [] + + def test_extract_changelogs_ignores_non_status_fields(self) -> None: + """Only 'status' field changes must be extracted — not assignee, labels, etc.""" + connector = _make_connector() + issue = _jira_issue(changelog_histories=[ + _changelog_history(field="assignee", from_status="Alice", to_status="Bob"), + _changelog_history(field="status", from_status="To Do", to_status="Done"), + ]) + transitions = connector._extract_changelogs("jira:JiraIssue:1:101", issue) + + assert len(transitions) == 1 + assert transitions[0]["from_status"] == "To Do" + + def test_extract_changelogs_empty_when_no_changelog_key(self) -> None: + """Issue without changelog key (fetched without expand) returns empty.""" + connector = _make_connector() + issue = {"id": "10001", "key": "BACK-1", "fields": {}} + transitions = connector._extract_changelogs("jira:JiraIssue:1:10001", issue) + assert transitions == [] + + def test_extract_changelogs_sorted_chronologically(self) -> None: + """Multiple transitions must come out sorted oldest first.""" + connector = _make_connector() + issue = _jira_issue(changelog_histories=[ + _changelog_history(created="2024-01-15T12:00:00.000+0000", from_status="In Progress", to_status="Done"), + _changelog_history(created="2024-01-10T08:00:00.000+0000", from_status="To Do", to_status="In Progress"), + ]) + transitions = connector._extract_changelogs("jira:JiraIssue:1:101", issue) + + assert transitions[0]["from_status"] == "To Do" + assert transitions[1]["from_status"] == "In Progress" + + def test_extract_changelogs_multiple_items_in_same_history(self) -> None: + """A single history can have multiple items — only status items captured.""" + connector = _make_connector() + history = { + "created": "2024-01-12T09:00:00.000+0000", + "items": [ + {"field": "priority", "fromString": "Low", "toString": "High"}, + {"field": "status", "fromString": "In Progress", "toString": "Code Review"}, + ], + } + issue = {"id": "101", "key": "BACK-1", "fields": {}, "changelog": {"histories": [history]}} + transitions = connector._extract_changelogs("jira:JiraIssue:1:101", issue) + + assert len(transitions) == 1 + assert transitions[0]["to_status"] == "Code Review" + + # ----------------------------------------------------------------------- + # get_cached_changelogs + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_get_cached_changelogs_returns_changelogs_from_fetch(self) -> None: + """Changelogs captured during fetch_issues are returned via get_cached_changelogs.""" + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + + issue = _jira_issue( + jira_id="201", + changelog_histories=[_changelog_history()], + ) + connector._client.post.return_value = {"issues": [issue]} + + await connector.fetch_issues() + + cached = connector.get_cached_changelogs() + assert len(cached) == 1 + internal_id = f"jira:JiraIssue:{CONN_ID}:201" + assert internal_id in cached + + @pytest.mark.asyncio + async def test_get_cached_changelogs_clears_cache_after_read(self) -> None: + """Second call returns empty — cache is cleared on read.""" + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + + issue = _jira_issue( + jira_id="202", + changelog_histories=[_changelog_history()], + ) + connector._client.post.return_value = {"issues": [issue]} + + await connector.fetch_issues() + + connector.get_cached_changelogs() # first read + second_read = connector.get_cached_changelogs() # should be empty + + assert second_read == {} + + def test_get_cached_changelogs_returns_empty_when_nothing_fetched(self) -> None: + connector = _make_connector() + result = connector.get_cached_changelogs() + assert result == {} + + def test_get_cached_changelogs_empty_when_issues_have_no_status_transitions(self) -> None: + """Issues with no changelog entries produce no cache entries.""" + connector = _make_connector() + issue = _jira_issue(changelog_histories=[]) + connector._map_issue(issue) + + result = connector.get_cached_changelogs() + assert result == {} + + # ----------------------------------------------------------------------- + # fetch_issue_changelogs + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_issue_changelogs_empty_input_returns_empty(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + + result = await connector.fetch_issue_changelogs([]) + + assert result == {} + connector._client.get.assert_not_awaited() + + @pytest.mark.asyncio + async def test_fetch_issue_changelogs_calls_get_with_expand_changelog(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + internal_id = "jira:JiraIssue:1:12345" + + connector._client.get.return_value = _jira_issue( + jira_id="12345", + changelog_histories=[_changelog_history()], + ) + + await connector.fetch_issue_changelogs([internal_id]) + + connector._client.get.assert_awaited_once() + call_args = connector._client.get.call_args + assert "/rest/api/3/issue/12345" in call_args[0][0] + assert call_args[1]["params"]["expand"] == "changelog" + + @pytest.mark.asyncio + async def test_fetch_issue_changelogs_returns_transitions(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + internal_id = "jira:JiraIssue:1:12345" + + connector._client.get.return_value = _jira_issue( + jira_id="12345", + changelog_histories=[ + _changelog_history(from_status="To Do", to_status="In Progress"), + ], + ) + + result = await connector.fetch_issue_changelogs([internal_id]) + + assert internal_id in result + assert result[internal_id][0]["from_status"] == "To Do" + + @pytest.mark.asyncio + async def test_fetch_issue_changelogs_skips_issues_without_transitions(self) -> None: + """Issues that exist but have no changelog items are excluded from result.""" + connector = _make_connector() + connector._client = AsyncMock() + internal_id = "jira:JiraIssue:1:12345" + + connector._client.get.return_value = _jira_issue( + jira_id="12345", + changelog_histories=[], + ) + + result = await connector.fetch_issue_changelogs([internal_id]) + + assert internal_id not in result + + @pytest.mark.asyncio + async def test_fetch_issue_changelogs_continues_on_api_error(self) -> None: + """An error on one issue must not abort the batch.""" + connector = _make_connector() + connector._client = AsyncMock() + + id_good = "jira:JiraIssue:1:111" + id_bad = "jira:JiraIssue:1:222" + + connector._client.get.side_effect = [ + ConnectionError("network error"), # id_bad fails + _jira_issue( # id_good succeeds + jira_id="111", + changelog_histories=[_changelog_history()], + ), + ] + + result = await connector.fetch_issue_changelogs([id_bad, id_good]) + + # At least the good one returned + assert id_good in result + assert id_bad not in result + + @pytest.mark.asyncio + async def test_fetch_issue_changelogs_invalid_id_format_skipped(self) -> None: + """IDs without 4 colon-separated parts return None from _extract_key_from_id.""" + connector = _make_connector() + connector._client = AsyncMock() + + result = await connector.fetch_issue_changelogs(["bad-id"]) + + connector._client.get.assert_not_awaited() + assert result == {} + + # ----------------------------------------------------------------------- + # _discover_boards + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_discover_boards_calls_agile_board_endpoint(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.get.return_value = {"values": []} + + await connector._discover_boards() + + connector._client.get.assert_awaited_once() + call_path = connector._client.get.call_args[0][0] + assert "/rest/agile/1.0/board" in call_path + + @pytest.mark.asyncio + async def test_discover_boards_filters_for_scrum_type(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.get.return_value = {"values": []} + + await connector._discover_boards() + + params = connector._client.get.call_args[1]["params"] + assert params["type"] == "scrum" + + @pytest.mark.asyncio + async def test_discover_boards_sends_project_key_as_param(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.get.return_value = {"values": []} + + await connector._discover_boards() + + params = connector._client.get.call_args[1]["params"] + assert params["projectKeyOrId"] == "BACK" + + @pytest.mark.asyncio + async def test_discover_boards_stores_discovered_board(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.get.return_value = { + "values": [{"id": 10, "name": "BACK Board", "type": "scrum"}] + } + + await connector._discover_boards() + + assert 10 in connector._boards + assert connector._boards[10]["name"] == "BACK Board" + assert connector._boards[10]["project_key"] == "BACK" + + @pytest.mark.asyncio + async def test_discover_boards_skips_discovery_if_already_cached(self) -> None: + """_discover_boards must be a no-op when _boards is already populated.""" + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._boards = {99: {"id": 99, "name": "Existing Board"}} + + await connector._discover_boards() + + connector._client.get.assert_not_awaited() + + @pytest.mark.asyncio + async def test_discover_boards_queries_each_project(self) -> None: + connector = _make_connector(projects=["BACK", "ENO"]) + connector._client = AsyncMock() + connector._client.get.return_value = {"values": []} + + await connector._discover_boards() + + assert connector._client.get.await_count == 2 + + @pytest.mark.asyncio + async def test_discover_boards_continues_on_api_error_for_one_project(self) -> None: + connector = _make_connector(projects=["BACK", "ENO"]) + connector._client = AsyncMock() + connector._client.get.side_effect = [ + ConnectionError("project BACK failed"), + {"values": [{"id": 20, "name": "ENO Board", "type": "scrum"}]}, + ] + + await connector._discover_boards() + + # ENO board still discovered despite BACK failure + assert 20 in connector._boards + + # ----------------------------------------------------------------------- + # _fetch_board_sprints + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_board_sprints_returns_mapped_sprints(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + connector._boards = {10: {"id": 10, "name": "BACK Board"}} + + connector._client.get.return_value = { + "values": [_sprint_payload(sprint_id=42, state="active")], + "isLast": True, + } + + sprints = await connector._fetch_board_sprints(10) + + assert len(sprints) == 1 + assert sprints[0]["id"] == f"jira:JiraSprint:{CONN_ID}:42" + + @pytest.mark.asyncio + async def test_fetch_board_sprints_pagination(self) -> None: + """Follows offset-based pagination until isLast is True.""" + connector = _make_connector() + connector._client = AsyncMock() + connector._boards = {10: {"id": 10, "name": "BACK Board"}} + + s1 = _sprint_payload(sprint_id=1) + s2 = _sprint_payload(sprint_id=2) + + connector._client.get.side_effect = [ + {"values": [s1], "isLast": False}, + {"values": [s2], "isLast": True}, + ] + + sprints = await connector._fetch_board_sprints(10) + + assert connector._client.get.await_count == 2 + assert len(sprints) == 2 + + @pytest.mark.asyncio + async def test_fetch_board_sprints_400_returns_empty_list(self) -> None: + """HTTP 400 means board doesn't support sprints — must NOT raise.""" + connector = _make_connector() + connector._client = AsyncMock() + connector._boards = {10: {"id": 10, "name": "Kanban Board"}} + connector._client.get.side_effect = Exception("400 Bad Request") + + sprints = await connector._fetch_board_sprints(10) + + assert sprints == [] + + @pytest.mark.asyncio + async def test_fetch_board_sprints_bad_request_string_returns_empty(self) -> None: + """Exception message containing 'Bad Request' is treated as 400.""" + connector = _make_connector() + connector._client = AsyncMock() + connector._boards = {10: {"id": 10, "name": "Kanban Board"}} + connector._client.get.side_effect = Exception("Bad Request from server") + + sprints = await connector._fetch_board_sprints(10) + + assert sprints == [] + + @pytest.mark.asyncio + async def test_fetch_board_sprints_other_error_returns_empty_list(self) -> None: + """Non-400 errors are logged as warnings but still return empty.""" + connector = _make_connector() + connector._client = AsyncMock() + connector._boards = {10: {"id": 10, "name": "BACK Board"}} + connector._client.get.side_effect = Exception("503 Service Unavailable") + + sprints = await connector._fetch_board_sprints(10) + + assert sprints == [] + + @pytest.mark.asyncio + async def test_fetch_board_sprints_watermark_filters_old_sprints(self) -> None: + """Sprints that started before `since` should be excluded.""" + connector = _make_connector() + connector._client = AsyncMock() + connector._boards = {10: {"id": 10, "name": "BACK Board"}} + + old_sprint = _sprint_payload( + sprint_id=1, + state="closed", + start_date="2023-01-08T09:00:00.000Z", + ) + new_sprint = _sprint_payload( + sprint_id=2, + state="active", + start_date="2024-06-01T09:00:00.000Z", + ) + + connector._client.get.return_value = { + "values": [old_sprint, new_sprint], + "isLast": True, + } + + since = datetime(2024, 1, 1, tzinfo=timezone.utc) + sprints = await connector._fetch_board_sprints(10, since=since) + + assert len(sprints) == 1 + assert sprints[0]["id"].endswith(":2") + + @pytest.mark.asyncio + async def test_fetch_board_sprints_watermark_includes_sprint_on_boundary(self) -> None: + """A sprint starting exactly at the watermark boundary is not filtered.""" + connector = _make_connector() + connector._client = AsyncMock() + connector._boards = {10: {"id": 10, "name": "BACK Board"}} + + boundary_sprint = _sprint_payload( + sprint_id=5, + state="closed", + start_date="2024-01-01T00:00:00.000Z", + ) + + connector._client.get.return_value = { + "values": [boundary_sprint], + "isLast": True, + } + + since = datetime(2024, 1, 1, tzinfo=timezone.utc) + sprints = await connector._fetch_board_sprints(10, since=since) + + # Exactly at boundary (dt == since, not dt < since) → included + assert len(sprints) == 1 + + # ----------------------------------------------------------------------- + # fetch_sprints + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_sprints_calls_discover_boards_first(self) -> None: + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + + # No boards discovered → _fetch_board_sprints never called + connector._client.get.return_value = {"values": []} + + sprints = await connector.fetch_sprints() + + assert sprints == [] + + @pytest.mark.asyncio + async def test_fetch_sprints_aggregates_sprints_from_all_boards(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + # Pre-populate boards cache + connector._boards = { + 10: {"id": 10, "name": "Board A"}, + 20: {"id": 20, "name": "Board B"}, + } + + sprint_a = _sprint_payload(sprint_id=1) + sprint_b = _sprint_payload(sprint_id=2) + + connector._client.get.side_effect = [ + {"values": [sprint_a], "isLast": True}, + {"values": [sprint_b], "isLast": True}, + ] + + sprints = await connector.fetch_sprints() + + assert len(sprints) == 2 + + # ----------------------------------------------------------------------- + # fetch_sprint_issues + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_sprint_issues_invalid_id_returns_empty(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + + result = await connector.fetch_sprint_issues("bad-id") + + assert result == [] + connector._client.get.assert_not_awaited() + + @pytest.mark.asyncio + async def test_fetch_sprint_issues_calls_agile_sprint_issue_endpoint(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + connector._client.get.return_value = {"issues": [], "total": 0} + + await connector.fetch_sprint_issues("jira:JiraSprint:1:42") + + call_path = connector._client.get.call_args[0][0] + assert "/rest/agile/1.0/sprint/42/issue" in call_path + + @pytest.mark.asyncio + async def test_fetch_sprint_issues_returns_mapped_sprint_issues(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + + sprint_id = "jira:JiraSprint:1:42" + raw_issue = _jira_issue(jira_id="501", key="BACK-501", status="Done") + connector._client.get.return_value = { + "issues": [raw_issue], + "total": 1, + } + + result = await connector.fetch_sprint_issues(sprint_id) + + assert len(result) == 1 + assert result[0]["id"] == f"jira:JiraIssue:{CONN_ID}:501" + assert result[0]["issue_key"] == "BACK-501" + + @pytest.mark.asyncio + async def test_fetch_sprint_issues_pagination_uses_start_at(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + + sprint_id = "jira:JiraSprint:1:42" + issue1 = _jira_issue(jira_id="601", key="BACK-601") + issue2 = _jira_issue(jira_id="602", key="BACK-602") + + connector._client.get.side_effect = [ + {"issues": [issue1], "total": 2}, + {"issues": [issue2], "total": 2}, + ] + + result = await connector.fetch_sprint_issues(sprint_id) + + assert len(result) == 2 + assert connector._client.get.await_count == 2 + # Second call should have startAt=1 + second_params = connector._client.get.call_args_list[1][1]["params"] + assert second_params["startAt"] == 1 + + @pytest.mark.asyncio + async def test_fetch_sprint_issues_handles_api_error_gracefully(self) -> None: + connector = _make_connector() + connector._client = AsyncMock() + connector._client.get.side_effect = ConnectionError("timeout") + + result = await connector.fetch_sprint_issues("jira:JiraSprint:1:42") + + assert result == [] + + # ----------------------------------------------------------------------- + # _map_sprint + # ----------------------------------------------------------------------- + + def test_map_sprint_active_state(self) -> None: + connector = _make_connector() + sprint = _sprint_payload(sprint_id=10, state="active") + result = connector._map_sprint(sprint, board_id=5) + assert result["status"] == "ACTIVE" + + def test_map_sprint_closed_state(self) -> None: + connector = _make_connector() + sprint = _sprint_payload(sprint_id=10, state="closed") + result = connector._map_sprint(sprint, board_id=5) + assert result["status"] == "CLOSED" + + def test_map_sprint_future_state(self) -> None: + connector = _make_connector() + sprint = _sprint_payload(sprint_id=10, state="future") + result = connector._map_sprint(sprint, board_id=5) + assert result["status"] == "FUTURE" + + def test_map_sprint_unknown_state_defaults_to_future(self) -> None: + connector = _make_connector() + sprint = _sprint_payload(sprint_id=10, state="UNKNOWN_STATE") + result = connector._map_sprint(sprint, board_id=5) + assert result["status"] == "FUTURE" + + def test_map_sprint_state_is_case_insensitive(self) -> None: + connector = _make_connector() + sprint = _sprint_payload(sprint_id=10, state="ACTIVE") + result = connector._map_sprint(sprint, board_id=5) + assert result["status"] == "ACTIVE" + + def test_map_sprint_builds_internal_id(self) -> None: + connector = _make_connector() + sprint = _sprint_payload(sprint_id=42) + result = connector._map_sprint(sprint, board_id=5) + assert result["id"] == f"jira:JiraSprint:{CONN_ID}:42" + + def test_map_sprint_maps_dates(self) -> None: + connector = _make_connector() + sprint = _sprint_payload( + start_date="2024-01-08T09:00:00.000Z", + end_date="2024-01-22T18:00:00.000Z", + complete_date="2024-01-22T18:30:00.000Z", + ) + result = connector._map_sprint(sprint, board_id=5) + assert result["started_date"] == "2024-01-08T09:00:00.000Z" + assert result["ended_date"] == "2024-01-22T18:00:00.000Z" + assert result["completed_date"] == "2024-01-22T18:30:00.000Z" + + def test_map_sprint_preserves_name(self) -> None: + connector = _make_connector() + sprint = _sprint_payload(name="Sprint 12") + result = connector._map_sprint(sprint, board_id=5) + assert result["name"] == "Sprint 12" + + def test_map_sprint_board_id_stored_as_string(self) -> None: + connector = _make_connector() + sprint = _sprint_payload() + result = connector._map_sprint(sprint, board_id=10) + assert result["original_board_id"] == "10" + + def test_map_sprint_url_is_base_url(self) -> None: + connector = _make_connector() + sprint = _sprint_payload() + result = connector._map_sprint(sprint, board_id=10) + assert result["url"] == BASE_URL + + def test_map_sprint_total_issues_defaults_to_zero(self) -> None: + connector = _make_connector() + sprint = _sprint_payload() + result = connector._map_sprint(sprint, board_id=10) + assert result["total_issues"] == 0 + + # ----------------------------------------------------------------------- + # _map_sprint_issue + # ----------------------------------------------------------------------- + + def test_map_sprint_issue_builds_internal_id(self) -> None: + connector = _make_connector() + issue = _jira_issue(jira_id="701", key="BACK-701") + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["id"] == f"jira:JiraIssue:{CONN_ID}:701" + + def test_map_sprint_issue_preserves_key(self) -> None: + connector = _make_connector() + issue = _jira_issue(key="BACK-702") + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["issue_key"] == "BACK-702" + + def test_map_sprint_issue_status_is_lowercase(self) -> None: + """Sprint issue status is lowercased for normalizer compatibility.""" + connector = _make_connector() + issue = _jira_issue(status="Done") + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["status"] == "done" + + def test_map_sprint_issue_original_status_preserves_case(self) -> None: + connector = _make_connector() + issue = _jira_issue(status="In Progress") + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["original_status"] == "In Progress" + + def test_map_sprint_issue_story_points_from_story_points_field(self) -> None: + connector = _make_connector() + issue = _jira_issue(story_points=13.0) + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["story_point"] == 13.0 + + def test_map_sprint_issue_story_points_fallback_customfield_10028(self) -> None: + connector = _make_connector() + issue = _jira_issue(story_points=None) + issue["fields"]["customfield_10028"] = 8.0 + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["story_point"] == 8.0 + + def test_map_sprint_issue_story_points_fallback_customfield_10016(self) -> None: + connector = _make_connector() + issue = _jira_issue(story_points=None) + issue["fields"]["customfield_10028"] = None + issue["fields"]["customfield_10016"] = 3.0 + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["story_point"] == 3.0 + + def test_map_sprint_issue_maps_type(self) -> None: + connector = _make_connector() + issue = _jira_issue(issue_type="Bug") + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["type"] == "Bug" + + def test_map_sprint_issue_resolution_date_when_done(self) -> None: + connector = _make_connector() + issue = _jira_issue(resolution_date="2024-01-20T16:00:00.000+0000") + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["resolution_date"] == "2024-01-20T16:00:00.000+0000" + + def test_map_sprint_issue_resolution_date_none_when_open(self) -> None: + connector = _make_connector() + issue = _jira_issue(resolution_date=None, status="In Progress") + result = connector._map_sprint_issue(issue, "jira:JiraSprint:1:42") + assert result["resolution_date"] is None + + # ----------------------------------------------------------------------- + # _extract_key_from_id + # ----------------------------------------------------------------------- + + def test_extract_key_from_id_returns_fourth_part(self) -> None: + connector = _make_connector() + result = connector._extract_key_from_id("jira:JiraIssue:1:12345") + assert result == "12345" + + def test_extract_key_from_id_returns_none_for_short_id(self) -> None: + connector = _make_connector() + result = connector._extract_key_from_id("jira:JiraIssue:1") + assert result is None + + def test_extract_key_from_id_returns_none_for_empty_string(self) -> None: + connector = _make_connector() + result = connector._extract_key_from_id("") + assert result is None + + def test_extract_key_from_id_works_with_any_id_format(self) -> None: + """Fourth colon-separated segment is always returned, regardless of prefix.""" + connector = _make_connector() + result = connector._extract_key_from_id("github:GithubIssue:2:99999") + assert result == "99999" + + # ----------------------------------------------------------------------- + # _extract_numeric_id (static method) + # ----------------------------------------------------------------------- + + def test_extract_numeric_id_returns_fourth_segment(self) -> None: + result = JiraConnector._extract_numeric_id("jira:JiraSprint:1:123") + assert result == "123" + + def test_extract_numeric_id_returns_none_for_short_id(self) -> None: + result = JiraConnector._extract_numeric_id("jira:JiraSprint:1") + assert result is None + + def test_extract_numeric_id_returns_none_for_empty_string(self) -> None: + result = JiraConnector._extract_numeric_id("") + assert result is None + + def test_extract_numeric_id_works_for_sprint_id(self) -> None: + result = JiraConnector._extract_numeric_id("jira:JiraSprint:1:456") + assert result == "456" + + # ----------------------------------------------------------------------- + # Anti-surveillance: no individual developer metrics + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_fetch_issues_does_not_expose_individual_scores(self) -> None: + """Mapped issues must not include ranking or performance score fields.""" + connector = _make_connector(projects=["BACK"]) + connector._client = AsyncMock() + connector._client.post.return_value = { + "issues": [_jira_issue(jira_id="801", key="BACK-801")] + } + + results = await connector.fetch_issues() + + prohibited_keys = { + "developer_score", "ranking", "performance_score", + "productivity_score", "individual_rank", + } + for issue in results: + assert not prohibited_keys.intersection(issue.keys()), ( + f"Issue exposes individual-level metric: {prohibited_keys.intersection(issue.keys())}" + ) + + def test_map_issue_result_does_not_contain_individual_scores(self) -> None: + connector = _make_connector() + result = connector._map_issue(_jira_issue()) + prohibited_keys = { + "developer_score", "ranking", "performance_score", + "productivity_score", "individual_rank", + } + assert not prohibited_keys.intersection(result.keys()) + + def test_map_sprint_issue_result_does_not_contain_individual_scores(self) -> None: + connector = _make_connector() + result = connector._map_sprint_issue(_jira_issue(), "jira:JiraSprint:1:42") + prohibited_keys = { + "developer_score", "ranking", "performance_score", + "productivity_score", "individual_rank", + } + assert not prohibited_keys.intersection(result.keys()) diff --git a/pulse/packages/pulse-data/tests/unit/test_aggregator.py b/pulse/packages/pulse-data/tests/unit/test_aggregator.py new file mode 100644 index 0000000..0aa9f97 --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/test_aggregator.py @@ -0,0 +1,460 @@ +"""Unit tests for ConnectorAggregator. + +Verifies routing, aggregation, fallback logic, cached-changelog optimisation, +error isolation, and the _detect_source_from_id helper without importing any +real connector implementation. All connectors are AsyncMock objects that +satisfy the BaseConnector interface. + +Key behaviours under test: +- Connectors are registered by their source_type. +- Each fetch_* method routes to the correct connector(s) and merges results. +- fetch_issue_changelogs drains get_cached_changelogs() before fetching individually. +- A connector that raises during fetch does not prevent other connectors from running. +- test_all_connections and close() iterate over every registered connector. +- _detect_source_from_id correctly maps ID prefixes to source names. +- An empty aggregator (no connectors) returns empty lists / dicts gracefully. +""" + +from __future__ import annotations + +from datetime import datetime, timezone +from typing import Any +from unittest.mock import AsyncMock, MagicMock, patch + +import pytest + +from src.connectors.aggregator import ConnectorAggregator + + +# --------------------------------------------------------------------------- +# Factory helpers +# --------------------------------------------------------------------------- + + +def _make_connector(source_type: str, **method_returns: Any) -> MagicMock: + """Build a mock connector whose source_type property is fixed. + + Pass keyword arguments matching connector method names to set return values. + For example: _make_connector("github", fetch_pull_requests=[{"id": 1}]) + """ + connector = MagicMock() + connector.source_type = source_type + + # Async methods with default empty-list/dict returns + defaults: dict[str, Any] = { + "fetch_pull_requests": [], + "fetch_issues": [], + "fetch_issue_changelogs": {}, + "fetch_deployments": [], + "fetch_sprints": [], + "fetch_sprint_issues": [], + "test_connection": {"status": "healthy", "message": "ok", "details": {}}, + "close": None, + } + defaults.update(method_returns) + + for method_name, return_value in defaults.items(): + mock_method = AsyncMock(return_value=return_value) + setattr(connector, method_name, mock_method) + + return connector + + +_NOW = datetime(2024, 2, 1, tzinfo=timezone.utc) + + +# --------------------------------------------------------------------------- +# Test class +# --------------------------------------------------------------------------- + + +class TestConnectorAggregator: + """Tests for ConnectorAggregator routing, aggregation, and lifecycle behaviour.""" + + # ------------------------------------------------------------------ + # Registration + # ------------------------------------------------------------------ + + def test_registration_maps_connector_by_source_type(self) -> None: + """Connectors are stored keyed by their source_type after construction.""" + github = _make_connector("github") + jira = _make_connector("jira") + jenkins = _make_connector("jenkins") + + aggregator = ConnectorAggregator(connectors=[github, jira, jenkins]) + + assert set(aggregator.connector_types) == {"github", "jira", "jenkins"} + assert aggregator.get_connector("github") is github + assert aggregator.get_connector("jira") is jira + assert aggregator.get_connector("jenkins") is jenkins + + def test_get_connector_returns_none_for_unregistered_type(self) -> None: + """get_connector returns None when the source type is not registered.""" + aggregator = ConnectorAggregator(connectors=[]) + assert aggregator.get_connector("gitlab") is None + + # ------------------------------------------------------------------ + # fetch_pull_requests + # ------------------------------------------------------------------ + + async def test_fetch_pull_requests_routes_to_github_connector(self) -> None: + """fetch_pull_requests collects PRs from the github connector.""" + prs = [{"id": "PR-1"}, {"id": "PR-2"}] + github = _make_connector("github", fetch_pull_requests=prs) + aggregator = ConnectorAggregator(connectors=[github]) + + result = await aggregator.fetch_pull_requests(since=_NOW) + + assert result == prs + github.fetch_pull_requests.assert_called_once_with(_NOW) + + async def test_fetch_pull_requests_aggregates_github_and_gitlab(self) -> None: + """fetch_pull_requests aggregates PRs from both github and gitlab connectors.""" + github_prs = [{"id": "GH-1"}] + gitlab_prs = [{"id": "GL-1"}, {"id": "GL-2"}] + github = _make_connector("github", fetch_pull_requests=github_prs) + gitlab = _make_connector("gitlab", fetch_pull_requests=gitlab_prs) + + aggregator = ConnectorAggregator(connectors=[github, gitlab]) + result = await aggregator.fetch_pull_requests() + + assert {"id": "GH-1"} in result + assert {"id": "GL-1"} in result + assert len(result) == 3 + + async def test_fetch_pull_requests_returns_empty_with_no_connectors(self) -> None: + """fetch_pull_requests returns an empty list when no connectors are registered.""" + aggregator = ConnectorAggregator(connectors=[]) + result = await aggregator.fetch_pull_requests() + assert result == [] + + # ------------------------------------------------------------------ + # fetch_issues + # ------------------------------------------------------------------ + + async def test_fetch_issues_routes_to_jira_connector(self) -> None: + """fetch_issues collects issues from the jira connector.""" + issues = [{"id": "PROJ-1"}, {"id": "PROJ-2"}] + jira = _make_connector("jira", fetch_issues=issues) + + aggregator = ConnectorAggregator(connectors=[jira]) + result = await aggregator.fetch_issues(since=_NOW) + + assert result == issues + jira.fetch_issues.assert_called_once_with(_NOW) + + async def test_fetch_issues_aggregates_across_jira_and_github(self) -> None: + """fetch_issues merges issues from jira and github when both are registered.""" + jira_issues = [{"id": "JIRA-1"}] + github_issues = [{"id": "GH-ISSUE-1"}] + jira = _make_connector("jira", fetch_issues=jira_issues) + github = _make_connector("github", fetch_issues=github_issues) + + aggregator = ConnectorAggregator(connectors=[jira, github]) + result = await aggregator.fetch_issues() + + assert len(result) == 2 + + # ------------------------------------------------------------------ + # fetch_deployments + # ------------------------------------------------------------------ + + async def test_fetch_deployments_routes_to_jenkins_connector(self) -> None: + """fetch_deployments collects deployments from the jenkins connector.""" + deploys = [{"id": "BUILD-100"}, {"id": "BUILD-101"}] + jenkins = _make_connector("jenkins", fetch_deployments=deploys) + + aggregator = ConnectorAggregator(connectors=[jenkins]) + result = await aggregator.fetch_deployments(since=_NOW) + + assert result == deploys + jenkins.fetch_deployments.assert_called_once_with(_NOW) + + async def test_fetch_deployments_aggregates_jenkins_and_github(self) -> None: + """fetch_deployments merges deployments from jenkins and github Actions.""" + jenkins_deploys = [{"id": "J-1"}] + github_deploys = [{"id": "GHA-1"}] + jenkins = _make_connector("jenkins", fetch_deployments=jenkins_deploys) + github = _make_connector("github", fetch_deployments=github_deploys) + + aggregator = ConnectorAggregator(connectors=[jenkins, github]) + result = await aggregator.fetch_deployments() + + assert len(result) == 2 + + # ------------------------------------------------------------------ + # fetch_sprints + # ------------------------------------------------------------------ + + async def test_fetch_sprints_routes_to_jira_connector(self) -> None: + """fetch_sprints collects sprints exclusively from the jira connector.""" + sprints = [{"id": "SP-1"}, {"id": "SP-2"}] + jira = _make_connector("jira", fetch_sprints=sprints) + github = _make_connector("github") # github doesn't have sprints + + aggregator = ConnectorAggregator(connectors=[jira, github]) + result = await aggregator.fetch_sprints(since=_NOW) + + assert result == sprints + jira.fetch_sprints.assert_called_once_with(_NOW) + github.fetch_sprints.assert_not_called() + + # ------------------------------------------------------------------ + # fetch_sprint_issues + # ------------------------------------------------------------------ + + async def test_fetch_sprint_issues_detects_jira_prefix_and_routes(self) -> None: + """fetch_sprint_issues detects 'jira' in the sprint ID and routes to jira.""" + sprint_issues = [{"id": "PROJ-1"}, {"id": "PROJ-2"}] + jira = _make_connector("jira", fetch_sprint_issues=sprint_issues) + + aggregator = ConnectorAggregator(connectors=[jira]) + result = await aggregator.fetch_sprint_issues("jira:Sprint:1:42") + + assert result == sprint_issues + jira.fetch_sprint_issues.assert_called_once_with("jira:Sprint:1:42") + + async def test_fetch_sprint_issues_falls_back_to_jira_for_unknown_prefix(self) -> None: + """fetch_sprint_issues falls back to the jira connector for unknown prefixes.""" + sprint_issues = [{"id": "PROJ-5"}] + jira = _make_connector("jira", fetch_sprint_issues=sprint_issues) + + aggregator = ConnectorAggregator(connectors=[jira]) + result = await aggregator.fetch_sprint_issues("unknown:Sprint:9999") + + assert result == sprint_issues + + async def test_fetch_sprint_issues_returns_empty_when_no_suitable_connector(self) -> None: + """fetch_sprint_issues returns [] when neither the detected nor jira connector exists.""" + aggregator = ConnectorAggregator(connectors=[]) + result = await aggregator.fetch_sprint_issues("jira:Sprint:1:42") + assert result == [] + + # ------------------------------------------------------------------ + # fetch_issue_changelogs — caching + # ------------------------------------------------------------------ + + async def test_fetch_issue_changelogs_drains_cached_changelogs_first(self) -> None: + """When get_cached_changelogs() provides all requested IDs no individual fetch occurs.""" + cached = { + "JIRA-1": [{"from_status": "To Do", "to_status": "In Progress"}], + "JIRA-2": [{"from_status": "In Progress", "to_status": "Done"}], + } + jira = _make_connector("jira") + jira.get_cached_changelogs = MagicMock(return_value=cached) + + aggregator = ConnectorAggregator(connectors=[jira]) + result = await aggregator.fetch_issue_changelogs(["JIRA-1", "JIRA-2"]) + + assert result == cached + # fetch_issue_changelogs (the connector method) must NOT have been called + jira.fetch_issue_changelogs.assert_not_called() + + async def test_fetch_issue_changelogs_fetches_individually_when_no_cache(self) -> None: + """When no get_cached_changelogs attribute exists each missing ID is fetched directly.""" + individual_result = { + "JIRA-1": [{"from_status": "To Do", "to_status": "Done"}], + } + jira = _make_connector("jira", fetch_issue_changelogs=individual_result) + # No get_cached_changelogs attribute → hasattr() check in aggregator returns False + + aggregator = ConnectorAggregator(connectors=[jira]) + result = await aggregator.fetch_issue_changelogs(["JIRA-1"]) + + assert result == individual_result + jira.fetch_issue_changelogs.assert_called_once() + + async def test_fetch_issue_changelogs_mixed_cached_and_individual(self) -> None: + """Cached IDs are used directly; missing IDs are fetched individually via connector.""" + cached = {"JIRA-1": [{"from_status": "To Do", "to_status": "In Progress"}]} + individual_result = {"JIRA-2": [{"from_status": "In Progress", "to_status": "Done"}]} + + jira = _make_connector("jira", fetch_issue_changelogs=individual_result) + jira.get_cached_changelogs = MagicMock(return_value=cached) + + aggregator = ConnectorAggregator(connectors=[jira]) + result = await aggregator.fetch_issue_changelogs(["JIRA-1", "JIRA-2"]) + + assert "JIRA-1" in result + assert "JIRA-2" in result + # The connector's fetch_issue_changelogs should only be called for JIRA-2 + jira.fetch_issue_changelogs.assert_called_once_with(["JIRA-2"]) + + async def test_fetch_issue_changelogs_empty_issue_ids_returns_empty(self) -> None: + """fetch_issue_changelogs with an empty list returns an empty dict immediately.""" + jira = _make_connector("jira") + jira.get_cached_changelogs = MagicMock(return_value={}) + + aggregator = ConnectorAggregator(connectors=[jira]) + result = await aggregator.fetch_issue_changelogs([]) + + assert result == {} + jira.fetch_issue_changelogs.assert_not_called() + + # ------------------------------------------------------------------ + # Error isolation + # ------------------------------------------------------------------ + + async def test_fetch_pull_requests_error_in_one_connector_does_not_prevent_others( + self, + ) -> None: + """If one connector raises during fetch_pull_requests, other connectors still run.""" + github = _make_connector("github") + github.fetch_pull_requests = AsyncMock(side_effect=RuntimeError("GitHub is down")) + gitlab_prs = [{"id": "GL-1"}] + gitlab = _make_connector("gitlab", fetch_pull_requests=gitlab_prs) + + aggregator = ConnectorAggregator(connectors=[github, gitlab]) + result = await aggregator.fetch_pull_requests() + + # gitlab results must still arrive + assert result == gitlab_prs + + async def test_fetch_issues_error_in_one_connector_does_not_prevent_others(self) -> None: + """If jira raises during fetch_issues, github issues are still returned.""" + jira = _make_connector("jira") + jira.fetch_issues = AsyncMock(side_effect=ConnectionError("Jira unreachable")) + github_issues = [{"id": "GH-ISSUE-9"}] + github = _make_connector("github", fetch_issues=github_issues) + + aggregator = ConnectorAggregator(connectors=[jira, github]) + result = await aggregator.fetch_issues() + + assert result == github_issues + + async def test_fetch_deployments_error_in_jenkins_does_not_block_github(self) -> None: + """If jenkins raises during fetch_deployments, github deployments still return.""" + jenkins = _make_connector("jenkins") + jenkins.fetch_deployments = AsyncMock(side_effect=TimeoutError("Jenkins timeout")) + github_deploys = [{"id": "GHA-DEPLOY-1"}] + github = _make_connector("github", fetch_deployments=github_deploys) + + aggregator = ConnectorAggregator(connectors=[jenkins, github]) + result = await aggregator.fetch_deployments() + + assert result == github_deploys + + # ------------------------------------------------------------------ + # test_all_connections + # ------------------------------------------------------------------ + + async def test_all_connections_calls_test_connection_on_each_connector(self) -> None: + """test_all_connections returns a health dict for every registered connector.""" + github = _make_connector( + "github", + test_connection={"status": "healthy", "message": "ok", "details": {}}, + ) + jira = _make_connector( + "jira", + test_connection={"status": "healthy", "message": "connected", "details": {}}, + ) + + aggregator = ConnectorAggregator(connectors=[github, jira]) + results = await aggregator.test_all_connections() + + assert set(results.keys()) == {"github", "jira"} + assert results["github"]["status"] == "healthy" + assert results["jira"]["status"] == "healthy" + github.test_connection.assert_called_once() + jira.test_connection.assert_called_once() + + async def test_all_connections_captures_error_without_raising(self) -> None: + """test_all_connections catches connector exceptions and records them in the result.""" + github = _make_connector("github") + github.test_connection = AsyncMock(side_effect=ConnectionError("refused")) + + aggregator = ConnectorAggregator(connectors=[github]) + results = await aggregator.test_all_connections() + + assert results["github"]["status"] == "error" + assert "refused" in results["github"]["message"] + + # ------------------------------------------------------------------ + # close + # ------------------------------------------------------------------ + + async def test_close_calls_close_on_all_connectors(self) -> None: + """close() calls close() on every registered connector.""" + github = _make_connector("github") + jira = _make_connector("jira") + jenkins = _make_connector("jenkins") + + aggregator = ConnectorAggregator(connectors=[github, jira, jenkins]) + await aggregator.close() + + github.close.assert_called_once() + jira.close.assert_called_once() + jenkins.close.assert_called_once() + + async def test_close_does_not_raise_when_connector_close_fails(self) -> None: + """close() swallows exceptions from individual connectors so all are attempted.""" + github = _make_connector("github") + github.close = AsyncMock(side_effect=RuntimeError("close failed")) + jira = _make_connector("jira") + + aggregator = ConnectorAggregator(connectors=[github, jira]) + # Should not raise + await aggregator.close() + + jira.close.assert_called_once() + + # ------------------------------------------------------------------ + # _detect_source_from_id + # ------------------------------------------------------------------ + + @pytest.mark.parametrize( + ("entity_id", "expected_source"), + [ + ("jira:JiraIssue:1:123", "jira"), + ("JIRA:Sprint:5:42", "jira"), # case-insensitive + ("github:GithubPullRequest:1:99", "github"), + ("GITHUB:GithubRepo:2:7", "github"), # case-insensitive + ("jenkins:CICDDeployment:1:500", "jenkins"), + ("Jenkins:Build:1:200", "jenkins"), # case-insensitive + ("gitlab:MergeRequest:3:88", "gitlab"), + ("azure:WorkItem:1:77", "azure"), + ("unknown:Entity:0:1", "unknown"), + ("plain-id-without-prefix", "unknown"), + ], + ) + def test_detect_source_from_id(self, entity_id: str, expected_source: str) -> None: + """_detect_source_from_id maps ID prefixes to the correct source type.""" + result = ConnectorAggregator._detect_source_from_id(entity_id) + assert result == expected_source + + # ------------------------------------------------------------------ + # No connectors — edge cases + # ------------------------------------------------------------------ + + async def test_no_connectors_fetch_pull_requests_returns_empty(self) -> None: + aggregator = ConnectorAggregator(connectors=[]) + assert await aggregator.fetch_pull_requests() == [] + + async def test_no_connectors_fetch_issues_returns_empty(self) -> None: + aggregator = ConnectorAggregator(connectors=[]) + assert await aggregator.fetch_issues() == [] + + async def test_no_connectors_fetch_deployments_returns_empty(self) -> None: + aggregator = ConnectorAggregator(connectors=[]) + assert await aggregator.fetch_deployments() == [] + + async def test_no_connectors_fetch_sprints_returns_empty(self) -> None: + aggregator = ConnectorAggregator(connectors=[]) + assert await aggregator.fetch_sprints() == [] + + async def test_no_connectors_fetch_sprint_issues_returns_empty(self) -> None: + aggregator = ConnectorAggregator(connectors=[]) + assert await aggregator.fetch_sprint_issues("jira:Sprint:1:1") == [] + + async def test_no_connectors_test_all_connections_returns_empty_dict(self) -> None: + aggregator = ConnectorAggregator(connectors=[]) + assert await aggregator.test_all_connections() == {} + + async def test_no_connectors_close_does_not_raise(self) -> None: + aggregator = ConnectorAggregator(connectors=[]) + await aggregator.close() # Should complete without error + + async def test_no_connectors_fetch_issue_changelogs_returns_empty(self) -> None: + aggregator = ConnectorAggregator(connectors=[]) + result = await aggregator.fetch_issue_changelogs(["JIRA-1", "JIRA-2"]) + assert result == {} diff --git a/pulse/packages/pulse-data/tests/unit/test_http_client.py b/pulse/packages/pulse-data/tests/unit/test_http_client.py new file mode 100644 index 0000000..e002b87 --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/test_http_client.py @@ -0,0 +1,474 @@ +"""Unit tests for ResilientHTTPClient. + +Tests the retry logic, rate-limit handling, pagination, and auth configuration +without making any real HTTP calls. All network I/O is replaced by AsyncMock +patching httpx.AsyncClient.request. + +Key behaviours under test: +- Successful GET/POST returns parsed JSON. +- 429 responses trigger a wait (honouring Retry-After / X-RateLimit-Reset) + and then retry. +- 5xx responses trigger exponential backoff and retry. +- 4xx responses (except 429) raise httpx.HTTPStatusError immediately. +- Timeout / connection errors trigger backoff retry. +- Exhausting all retries raises ConnectionError. +- Link-header pagination (GitHub-style) aggregates pages correctly. +- Offset-based pagination (Jira-style) aggregates pages correctly. +- Auth config produces the correct Authorization header / BasicAuth. +""" + +from __future__ import annotations + +import time +from typing import Any +from unittest.mock import AsyncMock, MagicMock, patch + +import httpx +import pytest + +from src.shared.http_client import ResilientHTTPClient + + +# --------------------------------------------------------------------------- +# Helpers +# --------------------------------------------------------------------------- + + +def _make_response( + status_code: int, + json_data: Any = None, + headers: dict[str, str] | None = None, +) -> MagicMock: + """Build a mock httpx.Response with the minimum API surface used by the client.""" + response = MagicMock(spec=httpx.Response) + response.status_code = status_code + response.headers = httpx.Headers(headers or {}) + response.json.return_value = json_data if json_data is not None else {} + response.request = MagicMock(spec=httpx.Request) + + if status_code >= 400: + response.raise_for_status.side_effect = httpx.HTTPStatusError( + f"HTTP {status_code}", + request=response.request, + response=response, + ) + else: + response.raise_for_status.return_value = None + + return response + + +# --------------------------------------------------------------------------- +# Test class +# --------------------------------------------------------------------------- + + +class TestResilientHTTPClient: + """Tests for ResilientHTTPClient: retry, rate-limit, pagination, auth.""" + + # ------------------------------------------------------------------ + # Successful requests + # ------------------------------------------------------------------ + + async def test_get_returns_parsed_json(self) -> None: + """A 200 GET response returns the parsed JSON body directly.""" + payload = [{"id": 1, "title": "PR Alpha"}, {"id": 2, "title": "PR Beta"}] + mock_response = _make_response(200, payload) + + async with ResilientHTTPClient(base_url="https://api.example.com") as client: + with patch.object(client._client, "request", new=AsyncMock(return_value=mock_response)): + result = await client.get("/pulls") + + assert result == payload + + async def test_post_sends_json_body_and_returns_parsed_json(self) -> None: + """A 201 POST encodes json_body and returns parsed JSON.""" + request_body = {"title": "New PR", "base": "main"} + response_payload = {"id": 99, "status": "open"} + mock_response = _make_response(201, response_payload) + + async with ResilientHTTPClient(base_url="https://api.example.com") as client: + with patch.object( + client._client, "request", new=AsyncMock(return_value=mock_response) + ) as mock_req: + result = await client.post("/pulls", json_body=request_body) + + assert result == response_payload + call_kwargs = mock_req.call_args + assert call_kwargs.kwargs.get("json") == request_body or ( + len(call_kwargs.args) >= 4 and call_kwargs.args[3] == request_body + ) + + # ------------------------------------------------------------------ + # Rate limiting (429) + # ------------------------------------------------------------------ + + async def test_retries_on_429_with_retry_after_header(self) -> None: + """On 429 with Retry-After header the client sleeps the specified seconds then retries.""" + rate_limit_response = _make_response(429, headers={"Retry-After": "5"}) + ok_response = _make_response(200, {"data": "ok"}) + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(side_effect=[rate_limit_response, ok_response]) + with ( + patch.object(client._client, "request", new=mock_request), + patch("src.shared.http_client.asyncio.sleep", new=AsyncMock()) as mock_sleep, + ): + result = await client.get("/endpoint") + + assert result == {"data": "ok"} + assert mock_request.call_count == 2 + mock_sleep.assert_called_once_with(5.0) + + async def test_retries_on_429_with_x_rate_limit_reset_header(self) -> None: + """On 429 with X-RateLimit-Reset (Unix timestamp) the client waits until reset time.""" + future_reset = str(int(time.time()) + 10) # 10 seconds from now + rate_limit_response = _make_response(429, headers={"X-RateLimit-Reset": future_reset}) + ok_response = _make_response(200, {"data": "ok"}) + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(side_effect=[rate_limit_response, ok_response]) + with ( + patch.object(client._client, "request", new=mock_request), + patch("src.shared.http_client.asyncio.sleep", new=AsyncMock()) as mock_sleep, + ): + result = await client.get("/endpoint") + + assert result == {"data": "ok"} + assert mock_request.call_count == 2 + # sleep was called with a positive wait duration derived from the reset timestamp + sleep_arg = mock_sleep.call_args[0][0] + assert sleep_arg >= 1.0 # _parse_retry_after enforces max(wait, 1.0) + + # ------------------------------------------------------------------ + # 5xx retry with exponential backoff + # ------------------------------------------------------------------ + + async def test_retries_on_server_error_with_backoff(self) -> None: + """5xx responses trigger exponential backoff; success on the third attempt.""" + server_error_500 = _make_response(500) + server_error_503 = _make_response(503) + ok_response = _make_response(200, {"data": "recovered"}) + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(side_effect=[server_error_500, server_error_503, ok_response]) + with ( + patch.object(client._client, "request", new=mock_request), + patch("src.shared.http_client.asyncio.sleep", new=AsyncMock()) as mock_sleep, + ): + result = await client.get("/endpoint") + + assert result == {"data": "recovered"} + assert mock_request.call_count == 3 + # Backoff calls: attempt 1 → 1.0s, attempt 2 → 2.0s + sleep_calls = [c[0][0] for c in mock_sleep.call_args_list] + assert sleep_calls[0] == 1.0 + assert sleep_calls[1] == 2.0 + + # ------------------------------------------------------------------ + # 4xx — no retry + # ------------------------------------------------------------------ + + async def test_raises_immediately_on_non_retryable_4xx(self) -> None: + """404 and other 4xx (except 429) raise HTTPStatusError without retrying.""" + not_found = _make_response(404) + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(return_value=not_found) + with patch.object(client._client, "request", new=mock_request): + with pytest.raises(httpx.HTTPStatusError): + await client.get("/missing") + + # Must not retry — only one call + assert mock_request.call_count == 1 + + async def test_raises_immediately_on_401_unauthorized(self) -> None: + """401 is not retried; raises HTTPStatusError immediately.""" + unauthorized = _make_response(401) + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(return_value=unauthorized) + with patch.object(client._client, "request", new=mock_request): + with pytest.raises(httpx.HTTPStatusError): + await client.get("/secure") + + assert mock_request.call_count == 1 + + # ------------------------------------------------------------------ + # Timeout retry + # ------------------------------------------------------------------ + + async def test_retries_on_timeout_with_backoff(self) -> None: + """TimeoutException triggers retry with exponential backoff.""" + timeout_error = httpx.TimeoutException("timed out") + ok_response = _make_response(200, {"data": "ok"}) + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(side_effect=[timeout_error, timeout_error, ok_response]) + with ( + patch.object(client._client, "request", new=mock_request), + patch("src.shared.http_client.asyncio.sleep", new=AsyncMock()) as mock_sleep, + ): + result = await client.get("/slow") + + assert result == {"data": "ok"} + assert mock_request.call_count == 3 + sleep_calls = [c[0][0] for c in mock_sleep.call_args_list] + assert sleep_calls[0] == 1.0 # attempt 1: base * 2^0 + assert sleep_calls[1] == 2.0 # attempt 2: base * 2^1 + + # ------------------------------------------------------------------ + # Connection error retry + # ------------------------------------------------------------------ + + async def test_retries_on_connection_error_with_backoff(self) -> None: + """ConnectError triggers retry with exponential backoff.""" + conn_error = httpx.ConnectError("refused") + ok_response = _make_response(200, {"data": "ok"}) + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(side_effect=[conn_error, ok_response]) + with ( + patch.object(client._client, "request", new=mock_request), + patch("src.shared.http_client.asyncio.sleep", new=AsyncMock()) as mock_sleep, + ): + result = await client.get("/endpoint") + + assert result == {"data": "ok"} + assert mock_request.call_count == 2 + mock_sleep.assert_called_once_with(1.0) + + # ------------------------------------------------------------------ + # Retries exhausted + # ------------------------------------------------------------------ + + async def test_raises_connection_error_when_all_retries_exhausted(self) -> None: + """ConnectionError is raised after max_retries consecutive failures.""" + conn_error = httpx.ConnectError("refused") + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(side_effect=conn_error) + with ( + patch.object(client._client, "request", new=mock_request), + patch("src.shared.http_client.asyncio.sleep", new=AsyncMock()), + ): + with pytest.raises(ConnectionError) as exc_info: + await client.get("/unreachable") + + assert "3 attempts" in str(exc_info.value) + assert mock_request.call_count == 3 + + async def test_raises_connection_error_after_exhausted_5xx_retries(self) -> None: + """ConnectionError is raised when every attempt returns a 5xx.""" + server_error = _make_response(503) + + async with ResilientHTTPClient(base_url="https://api.example.com", max_retries=3) as client: + mock_request = AsyncMock(return_value=server_error) + with ( + patch.object(client._client, "request", new=mock_request), + patch("src.shared.http_client.asyncio.sleep", new=AsyncMock()), + ): + with pytest.raises(ConnectionError): + await client.get("/unstable") + + assert mock_request.call_count == 3 + + # ------------------------------------------------------------------ + # Link-header pagination (GitHub-style) + # ------------------------------------------------------------------ + + async def test_get_paginated_link_follows_next_links(self) -> None: + """get_paginated_link aggregates items from all pages by following rel=next.""" + page1 = MagicMock(spec=httpx.Response) + page1.status_code = 200 + page1.headers = httpx.Headers( + {"Link": '; rel="next"'} + ) + page1.json.return_value = [{"id": 1}, {"id": 2}] + page1.raise_for_status.return_value = None + + page2 = MagicMock(spec=httpx.Response) + page2.status_code = 200 + page2.headers = httpx.Headers({}) # No Link header — last page + page2.json.return_value = [{"id": 3}] + page2.raise_for_status.return_value = None + + async with ResilientHTTPClient(base_url="https://api.example.com") as client: + mock_request = AsyncMock(side_effect=[page1, page2]) + with patch.object(client._client, "request", new=mock_request): + result = await client.get_paginated_link("/pulls", page_size=2) + + assert result == [{"id": 1}, {"id": 2}, {"id": 3}] + assert mock_request.call_count == 2 + + async def test_get_paginated_link_stops_when_page_not_full(self) -> None: + """get_paginated_link stops early when a page has fewer items than page_size.""" + page1 = MagicMock(spec=httpx.Response) + page1.status_code = 200 + page1.headers = httpx.Headers( + {"Link": '; rel="next"'} + ) + page1.json.return_value = [{"id": 1}] # Only 1 item, page_size=5 → stop + page1.raise_for_status.return_value = None + + async with ResilientHTTPClient(base_url="https://api.example.com") as client: + mock_request = AsyncMock(return_value=page1) + with patch.object(client._client, "request", new=mock_request): + result = await client.get_paginated_link("/pulls", page_size=5) + + assert result == [{"id": 1}] + assert mock_request.call_count == 1 + + async def test_get_paginated_link_stops_when_no_next_link(self) -> None: + """get_paginated_link stops immediately when Link rel=next is absent.""" + page1 = MagicMock(spec=httpx.Response) + page1.status_code = 200 + page1.headers = httpx.Headers({}) # No Link header at all + page1.json.return_value = [{"id": 1}, {"id": 2}, {"id": 3}] + page1.raise_for_status.return_value = None + + async with ResilientHTTPClient(base_url="https://api.example.com") as client: + mock_request = AsyncMock(return_value=page1) + with patch.object(client._client, "request", new=mock_request): + result = await client.get_paginated_link("/pulls", page_size=3) + + assert result == [{"id": 1}, {"id": 2}, {"id": 3}] + assert mock_request.call_count == 1 + + # ------------------------------------------------------------------ + # Offset-based pagination (Jira-style) + # ------------------------------------------------------------------ + + async def test_get_paginated_offset_aggregates_all_pages(self) -> None: + """get_paginated_offset collects items across multiple pages using startAt.""" + async with ResilientHTTPClient(base_url="https://jira.example.com") as client: + # We patch `get` because get_paginated_offset calls self.get internally + mock_get = AsyncMock( + side_effect=[ + {"values": [{"id": "ISSUE-1"}, {"id": "ISSUE-2"}], "total": 3, "startAt": 0}, + {"values": [{"id": "ISSUE-3"}], "total": 3, "startAt": 2}, + ] + ) + with patch.object(client, "get", new=mock_get): + result = await client.get_paginated_offset("/rest/agile/issues", page_size=2) + + assert result == [{"id": "ISSUE-1"}, {"id": "ISSUE-2"}, {"id": "ISSUE-3"}] + assert mock_get.call_count == 2 + + async def test_get_paginated_offset_stops_when_offset_reaches_total(self) -> None: + """get_paginated_offset stops as soon as offset >= total.""" + async with ResilientHTTPClient(base_url="https://jira.example.com") as client: + mock_get = AsyncMock( + return_value={"values": [{"id": "ISSUE-1"}], "total": 1, "startAt": 0} + ) + with patch.object(client, "get", new=mock_get): + result = await client.get_paginated_offset("/rest/agile/issues", page_size=50) + + assert result == [{"id": "ISSUE-1"}] + assert mock_get.call_count == 1 + + async def test_get_paginated_offset_uses_issues_key_as_fallback(self) -> None: + """get_paginated_offset falls back to 'issues' key when 'values' is absent.""" + async with ResilientHTTPClient(base_url="https://jira.example.com") as client: + mock_get = AsyncMock( + return_value={"issues": [{"key": "PROJ-1"}], "total": 1, "startAt": 0} + ) + with patch.object(client, "get", new=mock_get): + result = await client.get_paginated_offset("/rest/api/2/search", page_size=50) + + assert result == [{"key": "PROJ-1"}] + + # ------------------------------------------------------------------ + # Auth header configuration + # ------------------------------------------------------------------ + + async def test_auth_token_sets_authorization_header(self) -> None: + """auth={'token': '...'} produces 'token ' Authorization header.""" + client = ResilientHTTPClient( + base_url="https://api.github.com", + auth={"token": "ghp_secrettoken"}, + ) + try: + assert client._client.headers["Authorization"] == "token ghp_secrettoken" + finally: + await client.close() + + async def test_auth_bearer_sets_bearer_authorization_header(self) -> None: + """auth={'bearer': '...'} produces 'Bearer ' Authorization header.""" + client = ResilientHTTPClient( + base_url="https://api.example.com", + auth={"bearer": "my_jwt_token"}, + ) + try: + assert client._client.headers["Authorization"] == "Bearer my_jwt_token" + finally: + await client.close() + + async def test_auth_basic_configures_httpx_basic_auth(self) -> None: + """auth={'basic': (user, pass)} configures httpx.BasicAuth on the underlying client.""" + client = ResilientHTTPClient( + base_url="https://jira.example.com", + auth={"basic": ("admin", "p@ssw0rd")}, + ) + try: + # BasicAuth is set as the httpx client's auth attribute + assert client._client.auth is not None + assert isinstance(client._client.auth, httpx.BasicAuth) + # Authorization header must NOT be set for basic auth (httpx handles it per-request) + assert "Authorization" not in client._client.headers + finally: + await client.close() + + # ------------------------------------------------------------------ + # Internal helper — _parse_retry_after + # ------------------------------------------------------------------ + + async def test_parse_retry_after_returns_header_seconds(self) -> None: + """_parse_retry_after returns the numeric value from Retry-After header.""" + response = _make_response(429, headers={"Retry-After": "30"}) + client = ResilientHTTPClient(base_url="https://api.example.com") + try: + wait = client._parse_retry_after(response) + assert wait == 30.0 + finally: + await client.close() + + async def test_parse_retry_after_defaults_to_60_when_no_header(self) -> None: + """_parse_retry_after returns 60.0 when neither header is present.""" + response = _make_response(429) + client = ResilientHTTPClient(base_url="https://api.example.com") + try: + wait = client._parse_retry_after(response) + assert wait == 60.0 + finally: + await client.close() + + async def test_parse_retry_after_uses_x_rate_limit_reset_timestamp(self) -> None: + """_parse_retry_after computes wait from X-RateLimit-Reset Unix timestamp.""" + future_ts = str(int(time.time()) + 45) + response = _make_response(429, headers={"X-RateLimit-Reset": future_ts}) + client = ResilientHTTPClient(base_url="https://api.example.com") + try: + wait = client._parse_retry_after(response) + # Should be approximately 45 seconds, but at least 1 + assert 1.0 <= wait <= 46.0 + finally: + await client.close() + + # ------------------------------------------------------------------ + # Context manager + # ------------------------------------------------------------------ + + async def test_async_context_manager_closes_client(self) -> None: + """The async context manager calls close() on exit. + + We patch close() on the ResilientHTTPClient instance directly (not the + underlying httpx client) so the patch is in place when __aexit__ fires. + """ + client = ResilientHTTPClient(base_url="https://api.example.com") + mock_close = AsyncMock() + with patch.object(client, "close", new=mock_close): + async with client: + pass # __aexit__ calls self.close() + + mock_close.assert_called_once() diff --git a/pulse/packages/pulse-data/tests/unit/test_normalizer.py b/pulse/packages/pulse-data/tests/unit/test_normalizer.py index 7b590ed..6a74bb1 100644 --- a/pulse/packages/pulse-data/tests/unit/test_normalizer.py +++ b/pulse/packages/pulse-data/tests/unit/test_normalizer.py @@ -610,3 +610,306 @@ def test_jenkins_staging_environment_preserved(self) -> None: } result = normalize_deployment(deploy, TENANT_ID) assert result["environment"] == "staging" + + +# --------------------------------------------------------------------------- +# Enrichment-field tests — connector-format fixtures (post-ADR-005 migration) +# --------------------------------------------------------------------------- + + +class TestNormalizePrEnrichmentFields: + """Verify normalizer maps underscore-prefixed enrichment fields correctly.""" + + def test_first_review_at_parsed_as_datetime(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert isinstance(result["first_review_at"], datetime) + assert result["first_review_at"].tzinfo is not None + + def test_approved_at_parsed_as_datetime(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert isinstance(result["approved_at"], datetime) + assert result["approved_at"].tzinfo is not None + + def test_files_changed_mapped_as_integer(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["files_changed"] == 12 + assert isinstance(result["files_changed"], int) + + def test_commits_count_mapped_as_integer(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["commits_count"] == 7 + assert isinstance(result["commits_count"], int) + + def test_reviewers_is_list_of_dicts(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert isinstance(result["reviewers"], list) + assert len(result["reviewers"]) == 2 + assert result["reviewers"][0]["login"] == "dave" + assert result["reviewers"][1]["login"] == "eve" + + def test_is_merged_true_when_merged_date_present(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["is_merged"] is True + + def test_enrichment_values_match_fixture(self, sample_github_pr_raw: dict) -> None: + """Spot-check that parsed datetime values match the raw ISO strings.""" + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + expected_first_review = datetime(2024, 3, 1, 16, 45, 0, tzinfo=timezone.utc) + expected_approved = datetime(2024, 3, 2, 9, 10, 0, tzinfo=timezone.utc) + assert result["first_review_at"] == expected_first_review + assert result["approved_at"] == expected_approved + + +class TestNormalizePrEnrichmentNulls: + """Verify enrichment fields default to safe zero-values when absent.""" + + def test_first_review_at_none_when_not_provided(self) -> None: + pr = {"id": "github:GithubPullRequest:1:200", "status": "MERGED", "title": "fix typo"} + result = normalize_pull_request(pr, TENANT_ID) + assert result["first_review_at"] is None + + def test_approved_at_none_when_not_provided(self) -> None: + pr = {"id": "github:GithubPullRequest:1:201", "status": "MERGED", "title": "fix typo"} + result = normalize_pull_request(pr, TENANT_ID) + assert result["approved_at"] is None + + def test_files_changed_zero_when_not_provided(self) -> None: + pr = {"id": "github:GithubPullRequest:1:202", "status": "MERGED", "title": "fix typo"} + result = normalize_pull_request(pr, TENANT_ID) + assert result["files_changed"] == 0 + + def test_commits_count_zero_when_not_provided(self) -> None: + pr = {"id": "github:GithubPullRequest:1:203", "status": "MERGED", "title": "fix typo"} + result = normalize_pull_request(pr, TENANT_ID) + assert result["commits_count"] == 0 + + def test_reviewers_empty_list_when_not_provided(self) -> None: + pr = {"id": "github:GithubPullRequest:1:204", "status": "MERGED", "title": "fix typo"} + result = normalize_pull_request(pr, TENANT_ID) + assert result["reviewers"] == [] + + def test_explicit_none_enrichment_fields_safe(self) -> None: + """Explicit None values should not raise and should return safe defaults.""" + pr = { + "id": "github:GithubPullRequest:1:205", + "status": "OPEN", + "title": "WIP: new feature", + "_first_review_at": None, + "_approved_at": None, + "_files_changed": None, + "_commits_count": None, + "_reviewers": None, + } + result = normalize_pull_request(pr, TENANT_ID) + assert result["first_review_at"] is None + assert result["approved_at"] is None + assert result["files_changed"] == 0 + assert result["commits_count"] == 0 + assert result["reviewers"] == [] + + +class TestNormalizePrIsMergedFalse: + """Verify is_merged is False when merged_date is absent or None.""" + + def test_is_merged_false_when_no_merged_date(self) -> None: + pr = {"id": "github:GithubPullRequest:1:300", "status": "OPEN", "title": "WIP"} + result = normalize_pull_request(pr, TENANT_ID) + assert result["is_merged"] is False + + def test_is_merged_false_when_merged_date_is_none(self) -> None: + pr = { + "id": "github:GithubPullRequest:1:301", + "status": "CLOSED", + "title": "closed without merge", + "merged_date": None, + } + result = normalize_pull_request(pr, TENANT_ID) + assert result["is_merged"] is False + + def test_is_merged_true_when_merged_date_is_string(self) -> None: + pr = { + "id": "github:GithubPullRequest:1:302", + "status": "MERGED", + "title": "merged pr", + "merged_date": "2024-04-01T12:00:00Z", + } + result = normalize_pull_request(pr, TENANT_ID) + assert result["is_merged"] is True + + +class TestNormalizePrFromGithubConnector: + """End-to-end normalization using the connector-format fixture.""" + + def test_source_is_github(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["source"] == "github" + + def test_repo_extracted_correctly(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["repo"] == "org/backend" + + def test_state_is_merged(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["state"] == "merged" + + def test_tenant_id_stored(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["tenant_id"] == TENANT_ID + + def test_additions_and_deletions(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["additions"] == 210 + assert result["deletions"] == 55 + + def test_all_enrichment_fields_present(self, sample_github_pr_raw: dict) -> None: + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + enrichment_keys = {"first_review_at", "approved_at", "files_changed", "commits_count", "reviewers"} + assert enrichment_keys.issubset(result.keys()) + + def test_linked_issue_ids_starts_empty(self, sample_github_pr_raw: dict) -> None: + """linked_issue_ids is populated by link_issues_to_prs(), not by the normalizer.""" + result = normalize_pull_request(sample_github_pr_raw, TENANT_ID) + assert result["linked_issue_ids"] == [] + + +class TestNormalizeIssueFromJiraConnector: + """Normalization of JiraConnector._map_issue() output.""" + + def test_source_is_jira(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert result["source"] == "jira" + + def test_project_key_extracted(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert result["project_key"] == "DESC" + + def test_normalized_status_is_done(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert result["normalized_status"] == "done" + + def test_completed_at_is_datetime(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert isinstance(result["completed_at"], datetime) + + def test_issue_type_is_story(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert result["issue_type"] == "story" + + def test_story_points_preserved(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert result["story_points"] == 8 + + def test_sprint_id_preserved(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert result["sprint_id"] == "jira:JiraSprint:1:55" + + def test_external_id_matches_connector_id(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert result["external_id"] == "jira:JiraIssue:1:98765" + + def test_tenant_id_stored(self, sample_jira_issue_raw: dict) -> None: + result = normalize_issue(sample_jira_issue_raw, TENANT_ID) + assert result["tenant_id"] == TENANT_ID + + +class TestNormalizeSprintFromJiraConnector: + """Normalization of JiraConnector._map_sprint() output.""" + + def test_source_is_jira(self, sample_jira_sprint_raw: dict) -> None: + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID) + assert result["source"] == "jira" + + def test_external_id_matches_connector_id(self, sample_jira_sprint_raw: dict) -> None: + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID) + assert result["external_id"] == "jira:JiraSprint:1:55" + + def test_name_preserved(self, sample_jira_sprint_raw: dict) -> None: + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID) + assert result["name"] == "DESC Sprint 7" + + def test_board_id_mapped_from_original_board_id(self, sample_jira_sprint_raw: dict) -> None: + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID) + assert result["board_id"] == "10" + + def test_started_at_is_datetime(self, sample_jira_sprint_raw: dict) -> None: + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID) + assert isinstance(result["started_at"], datetime) + + def test_completed_at_is_datetime(self, sample_jira_sprint_raw: dict) -> None: + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID) + assert isinstance(result["completed_at"], datetime) + + def test_tenant_id_stored(self, sample_jira_sprint_raw: dict) -> None: + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID) + assert result["tenant_id"] == TENANT_ID + + def test_zero_counts_without_issues(self, sample_jira_sprint_raw: dict) -> None: + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID, sprint_issues=None) + assert result["committed_items"] == 0 + assert result["completed_items"] == 0 + assert result["committed_points"] == 0.0 + + def test_counts_calculated_from_sprint_issues(self, sample_jira_sprint_raw: dict) -> None: + sprint_issues = [ + {"id": "DESC-10", "story_point": 5, "status": "done", "resolution_date": "2024-02-18T10:00:00Z"}, + {"id": "DESC-11", "story_point": 3, "status": "in progress", "resolution_date": None}, + {"id": "DESC-12", "story_point": 8, "status": "closed", "resolution_date": "2024-02-19T12:00:00Z"}, + ] + result = normalize_sprint(sample_jira_sprint_raw, TENANT_ID, sprint_issues=sprint_issues) + assert result["committed_items"] == 3 + assert result["committed_points"] == 16.0 # 5 + 3 + 8 + assert result["completed_items"] == 2 # done + closed + assert result["completed_points"] == 13.0 # 5 + 8 + + +class TestNormalizeDeploymentFromJenkins: + """End-to-end normalization using the Jenkins connector-format fixture.""" + + def test_source_is_jenkins(self, sample_jenkins_deployment_raw: dict) -> None: + result = normalize_deployment(sample_jenkins_deployment_raw, TENANT_ID) + assert result["source"] == "jenkins" + + def test_is_not_failure_for_success(self, sample_jenkins_deployment_raw: dict) -> None: + result = normalize_deployment(sample_jenkins_deployment_raw, TENANT_ID) + assert result["is_failure"] is False + + def test_deployed_at_uses_finished_date(self, sample_jenkins_deployment_raw: dict) -> None: + result = normalize_deployment(sample_jenkins_deployment_raw, TENANT_ID) + expected = datetime(2024, 3, 5, 22, 8, 45, tzinfo=timezone.utc) + assert result["deployed_at"] == expected + + def test_environment_is_production(self, sample_jenkins_deployment_raw: dict) -> None: + result = normalize_deployment(sample_jenkins_deployment_raw, TENANT_ID) + assert result["environment"] == "production" + + def test_repo_uses_job_name(self, sample_jenkins_deployment_raw: dict) -> None: + result = normalize_deployment(sample_jenkins_deployment_raw, TENANT_ID) + assert result["repo"] == "webmotors-next-ui/deploy-prod" + + def test_external_id_matches_connector_id(self, sample_jenkins_deployment_raw: dict) -> None: + result = normalize_deployment(sample_jenkins_deployment_raw, TENANT_ID) + assert result["external_id"] == "jenkins:JenkinsBuild:1:webmotors-next-ui/deploy-prod:312" + + def test_tenant_id_stored(self, sample_jenkins_deployment_raw: dict) -> None: + result = normalize_deployment(sample_jenkins_deployment_raw, TENANT_ID) + assert result["tenant_id"] == TENANT_ID + + def test_recovery_time_hours_is_none(self, sample_jenkins_deployment_raw: dict) -> None: + """Recovery time is computed by the metrics worker, not the normalizer.""" + result = normalize_deployment(sample_jenkins_deployment_raw, TENANT_ID) + assert result["recovery_time_hours"] is None + + def test_failure_build_is_failure(self, sample_jenkins_deployment_raw: dict) -> None: + failed = {**sample_jenkins_deployment_raw, "result": "FAILURE"} + result = normalize_deployment(failed, TENANT_ID) + assert result["is_failure"] is True + + def test_unstable_build_is_failure(self, sample_jenkins_deployment_raw: dict) -> None: + unstable = {**sample_jenkins_deployment_raw, "result": "UNSTABLE"} + result = normalize_deployment(unstable, TENANT_ID) + assert result["is_failure"] is True + + def test_aborted_build_is_not_failure(self, sample_jenkins_deployment_raw: dict) -> None: + aborted = {**sample_jenkins_deployment_raw, "result": "ABORTED"} + result = normalize_deployment(aborted, TENANT_ID) + assert result["is_failure"] is False From 7f9f339606257359396055e215052120335458d3 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Sun, 12 Apr 2026 22:11:08 -0300 Subject: [PATCH 06/64] =?UTF-8?q?feat:=20batch=20persistence=20for=20PR=20?= =?UTF-8?q?ingestion=20=E2=80=94=20upsert=20per=20repo=20instead=20of=20al?= =?UTF-8?q?l-at-end?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Previously, all PRs from all repos were accumulated in memory and only persisted after the entire fetch completed. A crash meant losing hours of ingestion work. Now each repo's PRs are normalized, upserted, and published to Kafka immediately after fetch, so progress is durable. Changes: - github_connector: add fetch_pull_requests_batched() async generator - aggregator: add fetch_pull_requests_batched() to route batched fetches - devlake_sync: rewrite _sync_pull_requests() to consume batches - models: add is_merged and commits_count columns to EngPullRequest Co-Authored-By: Claude Opus 4.6 --- .../pulse-data/src/connectors/aggregator.py | 18 +++++ .../src/connectors/github_connector.py | 23 ++++++ .../src/contexts/engineering_data/models.py | 2 + .../pulse-data/src/workers/devlake_sync.py | 79 ++++++++++++------- 4 files changed, 93 insertions(+), 29 deletions(-) diff --git a/pulse/packages/pulse-data/src/connectors/aggregator.py b/pulse/packages/pulse-data/src/connectors/aggregator.py index 85e61b4..3f5cadc 100644 --- a/pulse/packages/pulse-data/src/connectors/aggregator.py +++ b/pulse/packages/pulse-data/src/connectors/aggregator.py @@ -12,6 +12,7 @@ from __future__ import annotations import logging +from collections.abc import AsyncIterator from datetime import datetime from typing import Any @@ -67,6 +68,23 @@ async def fetch_pull_requests( logger.exception("Error fetching PRs from %s", source) return all_prs + async def fetch_pull_requests_batched( + self, since: datetime | None = None, + ) -> AsyncIterator[tuple[str, list[dict[str, Any]]]]: + """Yield PRs in batches (per repo) from all code-hosting connectors. + + Each yield is (repo_name, prs_list). Allows the sync worker to + persist each batch immediately instead of holding everything in memory. + """ + for source in ("github", "gitlab", "azure"): + connector = self._connectors.get(source) + if connector and hasattr(connector, "fetch_pull_requests_batched"): + try: + async for repo_name, prs in connector.fetch_pull_requests_batched(since): + yield repo_name, prs + except Exception: + logger.exception("Error fetching batched PRs from %s", source) + async def fetch_issues( self, since: datetime | None = None, ) -> list[dict[str, Any]]: diff --git a/pulse/packages/pulse-data/src/connectors/github_connector.py b/pulse/packages/pulse-data/src/connectors/github_connector.py index 7d88324..7f6b6cb 100644 --- a/pulse/packages/pulse-data/src/connectors/github_connector.py +++ b/pulse/packages/pulse-data/src/connectors/github_connector.py @@ -14,6 +14,7 @@ from __future__ import annotations import logging +from collections.abc import AsyncIterator from datetime import datetime, timedelta, timezone from typing import Any @@ -131,6 +132,28 @@ async def fetch_pull_requests( ) return all_prs + async def fetch_pull_requests_batched( + self, since: datetime | None = None, + ) -> AsyncIterator[tuple[str, list[dict[str, Any]]]]: + """Yield PRs in batches, one batch per repo. + + Each yield is a tuple of (repo_full_name, list_of_prs). + This allows the caller to persist each batch immediately, + avoiding holding all PRs in memory at once. + """ + repos = await self._get_repos() + + for repo_full_name in repos: + try: + prs = await self._fetch_repo_prs(repo_full_name, since) + if prs: + logger.info( + "Batch: %d PRs from %s", len(prs), repo_full_name, + ) + yield repo_full_name, prs + except Exception: + logger.exception("Failed to fetch PRs for %s", repo_full_name) + async def _fetch_repo_prs( self, repo_full_name: str, since: datetime | None = None, ) -> list[dict[str, Any]]: diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/models.py b/pulse/packages/pulse-data/src/contexts/engineering_data/models.py index 8f3cd92..533a698 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/models.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/models.py @@ -40,6 +40,8 @@ class EngPullRequest(TenantModel): additions: Mapped[int] = mapped_column(Integer, default=0) deletions: Mapped[int] = mapped_column(Integer, default=0) files_changed: Mapped[int] = mapped_column(Integer, default=0) + commits_count: Mapped[int] = mapped_column(Integer, default=0) + is_merged: Mapped[bool] = mapped_column(Boolean, default=False) # Relationships (stored as JSONB for flexibility) reviewers: Mapped[list | None] = mapped_column(JSONB, nullable=True, default=list) diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 32fd038..bc15554 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -269,45 +269,66 @@ async def sync(self) -> dict[str, int]: return results async def _sync_pull_requests(self) -> int: - """Read PRs from source connectors, upsert to PULSE DB, publish to Kafka.""" + """Read PRs from source connectors, upsert to PULSE DB, publish to Kafka. + + Uses batch persistence: each repo's PRs are normalized, upserted, and + published to Kafka immediately — no accumulation in memory. If the + process crashes mid-sync, all previously persisted repos are safe. + """ async with get_session(self._tenant_id) as session: since = await _get_watermark(session, self._tenant_id, "pull_requests") - raw_prs = await self._reader.fetch_pull_requests(since=since) - if not raw_prs: + total_count = 0 + repos_done = 0 + + async for repo_name, raw_prs in self._reader.fetch_pull_requests_batched(since=since): + # Normalize this repo's batch + normalized = [] + for raw in raw_prs: + try: + pr_data = normalize_pull_request(raw, self._tenant_id) + pr_data["_head_ref"] = raw.get("head_ref", "") + pr_data["_base_ref"] = raw.get("base_ref", "") + normalized.append(pr_data) + except Exception: + logger.exception("Error normalizing PR: %s", raw.get("id")) + + if not normalized: + continue + + # Upsert this batch to DB immediately + batch_count = await self._upsert_pull_requests(normalized) + total_count += batch_count + repos_done += 1 + + # Publish this batch to Kafka + events = [] + for pr in normalized: + event = {k: v for k, v in pr.items() if not k.startswith("_")} + events.append((str(pr["external_id"]), event)) + await publish_batch(self._producer, TOPIC_PR_NORMALIZED, events) + + logger.info( + "Batch persisted: %d PRs from %s (total: %d PRs, %d repos)", + batch_count, repo_name, total_count, repos_done, + ) + + if total_count == 0: logger.info("No new pull requests to sync") return 0 - # Normalize - normalized = [] - for raw in raw_prs: - try: - pr_data = normalize_pull_request(raw, self._tenant_id) - # Stash branch refs for issue linking (not persisted) - pr_data["_head_ref"] = raw.get("head_ref", "") - pr_data["_base_ref"] = raw.get("base_ref", "") - normalized.append(pr_data) - except Exception: - logger.exception("Error normalizing PR: %s", raw.get("id")) - - # Upsert to PULSE DB - count = await self._upsert_pull_requests(normalized) - - # Publish to Kafka - events = [] - for pr in normalized: - # Strip internal fields before publishing - event = {k: v for k, v in pr.items() if not k.startswith("_")} - events.append((str(pr["external_id"]), event)) - await publish_batch(self._producer, TOPIC_PR_NORMALIZED, events) - - # Update watermark in DB + # Update watermark after all batches complete async with get_session(self._tenant_id) as session: await _set_watermark( session, self._tenant_id, "pull_requests", - datetime.now(timezone.utc), count, + datetime.now(timezone.utc), total_count, ) - return count + + logger.info( + "PR sync complete: %d PRs from %d repos persisted", + total_count, repos_done, + ) + return total_count async def _sync_issues(self) -> int: """Read issues from source connectors, upsert to PULSE DB, publish to Kafka.""" From 6b3183ccaa4e0de3399be4f1e0d336ea299ecb5a Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Sun, 12 Apr 2026 23:01:57 -0300 Subject: [PATCH 07/64] feat: real-time ingestion progress dashboard with batch tracking MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Add pipeline_ingestion_progress table, API endpoint, and frontend panel to show live ingestion status — records processed, rate, ETA, and current source being synced. Sync worker now upserts progress per repo batch. Also fixes TS errors (unused imports, undefined fallbacks) in pipeline monitor. Co-Authored-By: Claude Opus 4.6 --- .../versions/004_ingestion_progress.py | 48 +++++ .../pulse-data/src/connectors/aggregator.py | 9 + .../src/connectors/github_connector.py | 5 + .../src/contexts/pipeline/models.py | 44 +++- .../src/contexts/pipeline/routes.py | 98 ++++++++- .../src/contexts/pipeline/schemas.py | 35 +++ .../pulse-data/src/workers/devlake_sync.py | 188 ++++++++++++++--- .../pulse-web/src/hooks/useMetrics.ts | 11 + .../packages/pulse-web/src/lib/api/metrics.ts | 8 + .../routes/_dashboard/pipeline-monitor.tsx | 199 ++++++++++++++++-- .../packages/pulse-web/src/types/pipeline.ts | 25 +++ 11 files changed, 611 insertions(+), 59 deletions(-) create mode 100644 pulse/packages/pulse-data/alembic/versions/004_ingestion_progress.py diff --git a/pulse/packages/pulse-data/alembic/versions/004_ingestion_progress.py b/pulse/packages/pulse-data/alembic/versions/004_ingestion_progress.py new file mode 100644 index 0000000..91e7446 --- /dev/null +++ b/pulse/packages/pulse-data/alembic/versions/004_ingestion_progress.py @@ -0,0 +1,48 @@ +"""Add pipeline_ingestion_progress table for real-time ingestion tracking. + +Revision ID: 004 +Revises: 003 +Create Date: 2026-04-13 +""" + +from alembic import op +import sqlalchemy as sa +from sqlalchemy.dialects.postgresql import JSONB, UUID + + +revision = "004" +down_revision = "003" +branch_labels = None +depends_on = None + + +def upgrade() -> None: + op.create_table( + "pipeline_ingestion_progress", + sa.Column("id", UUID(as_uuid=True), primary_key=True, server_default=sa.text("gen_random_uuid()")), + sa.Column("tenant_id", UUID(as_uuid=True), nullable=False, index=True), + sa.Column("entity_type", sa.String(64), nullable=False), # pull_requests | issues | deployments | sprints + sa.Column("status", sa.String(32), nullable=False, server_default="idle"), # idle | running | completed | failed + sa.Column("total_sources", sa.Integer, nullable=False, server_default="0"), # e.g. total repos + sa.Column("sources_done", sa.Integer, nullable=False, server_default="0"), + sa.Column("records_ingested", sa.Integer, nullable=False, server_default="0"), + sa.Column("current_source", sa.String(512), nullable=True), # e.g. "webmotors-private/buyer.ui" + sa.Column("started_at", sa.DateTime(timezone=True), nullable=True), + sa.Column("last_batch_at", sa.DateTime(timezone=True), nullable=True), + sa.Column("finished_at", sa.DateTime(timezone=True), nullable=True), + sa.Column("error_message", sa.Text, nullable=True), + sa.Column("source_details", JSONB, server_default=sa.text("'{}'::jsonb"), nullable=False), # extra metadata + sa.Column("created_at", sa.DateTime(timezone=True), server_default=sa.func.now()), + sa.Column("updated_at", sa.DateTime(timezone=True), server_default=sa.func.now()), + sa.UniqueConstraint("tenant_id", "entity_type", name="uq_ingestion_progress_entity"), + ) + + op.create_index( + "ix_ingestion_progress_tenant_entity", + "pipeline_ingestion_progress", + ["tenant_id", "entity_type"], + ) + + +def downgrade() -> None: + op.drop_table("pipeline_ingestion_progress") diff --git a/pulse/packages/pulse-data/src/connectors/aggregator.py b/pulse/packages/pulse-data/src/connectors/aggregator.py index 3f5cadc..461375c 100644 --- a/pulse/packages/pulse-data/src/connectors/aggregator.py +++ b/pulse/packages/pulse-data/src/connectors/aggregator.py @@ -68,6 +68,15 @@ async def fetch_pull_requests( logger.exception("Error fetching PRs from %s", source) return all_prs + async def get_pull_request_source_count(self) -> int: + """Return total number of sources (repos) for PR ingestion.""" + total = 0 + for source in ("github", "gitlab", "azure"): + connector = self._connectors.get(source) + if connector and hasattr(connector, "get_source_count"): + total += await connector.get_source_count() + return total + async def fetch_pull_requests_batched( self, since: datetime | None = None, ) -> AsyncIterator[tuple[str, list[dict[str, Any]]]]: diff --git a/pulse/packages/pulse-data/src/connectors/github_connector.py b/pulse/packages/pulse-data/src/connectors/github_connector.py index 7f6b6cb..eb63875 100644 --- a/pulse/packages/pulse-data/src/connectors/github_connector.py +++ b/pulse/packages/pulse-data/src/connectors/github_connector.py @@ -132,6 +132,11 @@ async def fetch_pull_requests( ) return all_prs + async def get_source_count(self) -> int: + """Return the number of repos that will be scanned for PRs.""" + repos = await self._get_repos() + return len(repos) + async def fetch_pull_requests_batched( self, since: datetime | None = None, ) -> AsyncIterator[tuple[str, list[dict[str, Any]]]]: diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/models.py b/pulse/packages/pulse-data/src/contexts/pipeline/models.py index c7e18a0..550f907 100644 --- a/pulse/packages/pulse-data/src/contexts/pipeline/models.py +++ b/pulse/packages/pulse-data/src/contexts/pipeline/models.py @@ -1,6 +1,7 @@ """SQLAlchemy models for BC5 — Pipeline Monitor. -Tables: pipeline_watermarks, pipeline_sync_log, pipeline_events. +Tables: pipeline_watermarks, pipeline_sync_log, pipeline_events, + pipeline_ingestion_progress. All tables enforce tenant_id (NOT NULL) for RLS. """ @@ -10,7 +11,7 @@ from datetime import datetime import sqlalchemy as sa -from sqlalchemy import DateTime, Float, Integer, String, Text, UniqueConstraint +from sqlalchemy import Boolean, DateTime, Float, Integer, String, Text, UniqueConstraint from sqlalchemy.dialects.postgresql import JSONB from sqlalchemy.orm import Mapped, mapped_column @@ -97,3 +98,42 @@ class PipelineEvent(TenantModel): occurred_at: Mapped[datetime] = mapped_column( DateTime(timezone=True), nullable=False, ) + + +class PipelineIngestionProgress(TenantModel): + """Tracks real-time progress of data ingestion per entity type. + + Updated by the sync worker after each batch (e.g., each repo's PRs). + Queried by the Pipeline Monitor API to show ingestion progress to users. + """ + + __tablename__ = "pipeline_ingestion_progress" + __table_args__ = ( + UniqueConstraint("tenant_id", "entity_type", name="uq_ingestion_progress_entity"), + ) + + entity_type: Mapped[str] = mapped_column( + String(64), nullable=False, + ) # pull_requests | issues | deployments | sprints + status: Mapped[str] = mapped_column( + String(32), nullable=False, server_default="idle", + ) # idle | running | completed | failed + total_sources: Mapped[int] = mapped_column(Integer, default=0) + sources_done: Mapped[int] = mapped_column(Integer, default=0) + records_ingested: Mapped[int] = mapped_column(Integer, default=0) + current_source: Mapped[str | None] = mapped_column( + String(512), nullable=True, + ) + started_at: Mapped[datetime | None] = mapped_column( + DateTime(timezone=True), nullable=True, + ) + last_batch_at: Mapped[datetime | None] = mapped_column( + DateTime(timezone=True), nullable=True, + ) + finished_at: Mapped[datetime | None] = mapped_column( + DateTime(timezone=True), nullable=True, + ) + error_message: Mapped[str | None] = mapped_column(Text, nullable=True) + source_details: Mapped[dict] = mapped_column( + JSONB, server_default=sa.text("'{}'::jsonb"), nullable=False, + ) diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/routes.py b/pulse/packages/pulse-data/src/contexts/pipeline/routes.py index e48847f..3ac4a21 100644 --- a/pulse/packages/pulse-data/src/contexts/pipeline/routes.py +++ b/pulse/packages/pulse-data/src/contexts/pipeline/routes.py @@ -23,9 +23,16 @@ EngSprint, ) from src.contexts.metrics.infrastructure.models import MetricsSnapshot -from src.contexts.pipeline.models import PipelineEvent, PipelineSyncLog, PipelineWatermark +from src.contexts.pipeline.models import ( + PipelineEvent, + PipelineIngestionProgress, + PipelineSyncLog, + PipelineWatermark, +) from src.contexts.pipeline.schemas import ( DevLakePipelineInfo, + IngestionEntityProgress, + IngestionProgressResponse, MetricsWorkerSnapshot, MetricsWorkerStatus, PipelineError, @@ -82,8 +89,8 @@ async def _get_connector_health() -> dict[str, dict]: async def get_pipeline_status() -> PipelineStatusResponse: """Get consolidated pipeline health status. - Aggregates data from: PULSE DB tables, DevLake reader counts, - DevLake API status, sync logs, and watermarks. + Aggregates data from: PULSE DB tables, connector counts, + sync logs, and watermarks. """ tenant_id = uuid.UUID(settings.default_tenant_id) now = datetime.now(timezone.utc) @@ -180,7 +187,7 @@ async def get_pipeline_status() -> PipelineStatusResponse: # --- 8. Connector health --- connector_health = await _get_connector_health() - devlake_info = DevLakePipelineInfo() # Kept for schema compat; always empty + devlake_info = DevLakePipelineInfo() # Deprecated: kept for frontend schema compat # --- 9. Build stage statuses --- total_records = sum(pulse_counts.values()) @@ -511,3 +518,86 @@ async def get_metrics_worker_status() -> MetricsWorkerStatus: snapshots=snapshots, cluster_logs=cluster_logs, ) + + +# --------------------------------------------------------------------------- +# Ingestion Progress (real-time tracking) +# --------------------------------------------------------------------------- + + +@router.get("/ingestion/progress", response_model=IngestionProgressResponse) +async def get_ingestion_progress() -> IngestionProgressResponse: + """Get real-time ingestion progress for all entity types. + + Returns progress per entity (pull_requests, issues, etc.) including: + - Sources processed vs total + - Records ingested so far + - Current source being processed + - Rate (records/minute) and ETA + """ + tenant_id = uuid.UUID(settings.default_tenant_id) + now = datetime.now(timezone.utc) + + entities: list[IngestionEntityProgress] = [] + any_running = False + + try: + async with get_session(tenant_id) as session: + result = await session.execute( + select(PipelineIngestionProgress) + .order_by(PipelineIngestionProgress.entity_type) + ) + rows = list(result.scalars().all()) + except Exception: + logger.warning("Could not fetch ingestion progress (table may not exist)") + rows = [] + + for row in rows: + # Calculate computed fields + progress_pct = 0.0 + if row.total_sources > 0: + progress_pct = round((row.sources_done / row.total_sources) * 100, 1) + + elapsed_minutes = 0.0 + rate_per_minute = 0.0 + eta_minutes = None + + if row.started_at: + elapsed = (now - row.started_at).total_seconds() / 60.0 + elapsed_minutes = round(elapsed, 1) + + if elapsed > 0 and row.records_ingested > 0: + rate_per_minute = round(row.records_ingested / elapsed, 1) + + # ETA based on sources remaining at current rate + if row.sources_done > 0 and row.total_sources > row.sources_done: + minutes_per_source = elapsed / row.sources_done + remaining_sources = row.total_sources - row.sources_done + eta_minutes = round(minutes_per_source * remaining_sources, 1) + + is_running = row.status == "running" + if is_running: + any_running = True + + entities.append(IngestionEntityProgress( + entity_type=row.entity_type, + status=row.status, + total_sources=row.total_sources, + sources_done=row.sources_done, + records_ingested=row.records_ingested, + current_source=row.current_source, + started_at=row.started_at, + last_batch_at=row.last_batch_at, + finished_at=row.finished_at, + error_message=row.error_message, + progress_pct=progress_pct, + rate_per_minute=rate_per_minute, + eta_minutes=eta_minutes, + elapsed_minutes=elapsed_minutes, + )) + + return IngestionProgressResponse( + entities=entities, + any_running=any_running, + last_updated=now, + ) diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py b/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py index 3145bbc..bade05e 100644 --- a/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py +++ b/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py @@ -168,6 +168,41 @@ class MetricsWorkerStatus(BaseModel): cluster_logs: list[dict[str, Any]] +# --------------------------------------------------------------------------- +# Ingestion progress (real-time tracking) +# --------------------------------------------------------------------------- + + +class IngestionEntityProgress(BaseModel): + """Progress of ingestion for a single entity type (e.g., pull_requests).""" + + model_config = ConfigDict(from_attributes=True) + + entity_type: str + status: str # idle | running | completed | failed + total_sources: int = 0 + sources_done: int = 0 + records_ingested: int = 0 + current_source: str | None = None + started_at: datetime | None = None + last_batch_at: datetime | None = None + finished_at: datetime | None = None + error_message: str | None = None + # Computed fields + progress_pct: float = 0.0 + rate_per_minute: float = 0.0 + eta_minutes: float | None = None + elapsed_minutes: float = 0.0 + + +class IngestionProgressResponse(BaseModel): + """Full ingestion progress response — all entity types.""" + + entities: list[IngestionEntityProgress] + any_running: bool = False + last_updated: datetime + + # --------------------------------------------------------------------------- # Consolidated response # --------------------------------------------------------------------------- diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index bc15554..a09b71e 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -45,7 +45,7 @@ normalize_pull_request, normalize_sprint, ) -from src.contexts.pipeline.models import PipelineSyncLog, PipelineWatermark +from src.contexts.pipeline.models import PipelineIngestionProgress, PipelineSyncLog, PipelineWatermark from src.database import get_session from src.shared.kafka import ( TOPIC_DEPLOYMENT_NORMALIZED, @@ -99,6 +99,77 @@ async def _set_watermark( logger.debug("Updated watermark for %s to %s (count=%d)", entity, ts, count) +# --------------------------------------------------------------------------- +# Ingestion progress helpers — real-time tracking per batch +# --------------------------------------------------------------------------- + + +async def _update_ingestion_progress( + tenant_id: UUID, + entity_type: str, + *, + status: str = "running", + total_sources: int | None = None, + sources_done: int | None = None, + records_ingested: int | None = None, + current_source: str | None = None, + started_at: datetime | None = None, + finished_at: datetime | None = None, + error_message: str | None = None, +) -> None: + """Upsert ingestion progress for an entity type.""" + values: dict[str, Any] = { + "id": uuid.uuid4(), + "tenant_id": tenant_id, + "entity_type": entity_type, + "status": status, + "updated_at": func.now(), + } + update_set: dict[str, Any] = { + "status": status, + "updated_at": func.now(), + } + + if total_sources is not None: + values["total_sources"] = total_sources + update_set["total_sources"] = total_sources + if sources_done is not None: + values["sources_done"] = sources_done + update_set["sources_done"] = sources_done + if records_ingested is not None: + values["records_ingested"] = records_ingested + update_set["records_ingested"] = records_ingested + if current_source is not None: + values["current_source"] = current_source + update_set["current_source"] = current_source + if started_at is not None: + values["started_at"] = started_at + update_set["started_at"] = started_at + if finished_at is not None: + values["finished_at"] = finished_at + update_set["finished_at"] = finished_at + if error_message is not None: + values["error_message"] = error_message + update_set["error_message"] = error_message + + # Always update last_batch_at when running + if status == "running": + now = datetime.now(timezone.utc) + values["last_batch_at"] = now + update_set["last_batch_at"] = now + + async with get_session(tenant_id) as session: + stmt = ( + pg_insert(PipelineIngestionProgress) + .values(**values) + .on_conflict_do_update( + constraint="uq_ingestion_progress_entity", + set_=update_set, + ) + ) + await session.execute(stmt) + + class DataSyncWorker: """Syncs data from source APIs to PULSE DB and Kafka topics. @@ -274,44 +345,99 @@ async def _sync_pull_requests(self) -> int: Uses batch persistence: each repo's PRs are normalized, upserted, and published to Kafka immediately — no accumulation in memory. If the process crashes mid-sync, all previously persisted repos are safe. + + Progress is tracked in pipeline_ingestion_progress for real-time + visibility in the Pipeline Monitor dashboard. """ async with get_session(self._tenant_id) as session: since = await _get_watermark(session, self._tenant_id, "pull_requests") + # Discover total sources (repos) for progress tracking + total_sources = 0 + try: + total_sources = await self._reader.get_pull_request_source_count() + except Exception: + logger.warning("Could not get source count for progress tracking") + + started_at = datetime.now(timezone.utc) + + # Mark ingestion as running + await _update_ingestion_progress( + self._tenant_id, "pull_requests", + status="running", + total_sources=total_sources, + sources_done=0, + records_ingested=0, + current_source="discovering repos...", + started_at=started_at, + ) + total_count = 0 repos_done = 0 - async for repo_name, raw_prs in self._reader.fetch_pull_requests_batched(since=since): - # Normalize this repo's batch - normalized = [] - for raw in raw_prs: - try: - pr_data = normalize_pull_request(raw, self._tenant_id) - pr_data["_head_ref"] = raw.get("head_ref", "") - pr_data["_base_ref"] = raw.get("base_ref", "") - normalized.append(pr_data) - except Exception: - logger.exception("Error normalizing PR: %s", raw.get("id")) - - if not normalized: - continue - - # Upsert this batch to DB immediately - batch_count = await self._upsert_pull_requests(normalized) - total_count += batch_count - repos_done += 1 - - # Publish this batch to Kafka - events = [] - for pr in normalized: - event = {k: v for k, v in pr.items() if not k.startswith("_")} - events.append((str(pr["external_id"]), event)) - await publish_batch(self._producer, TOPIC_PR_NORMALIZED, events) - - logger.info( - "Batch persisted: %d PRs from %s (total: %d PRs, %d repos)", - batch_count, repo_name, total_count, repos_done, + try: + async for repo_name, raw_prs in self._reader.fetch_pull_requests_batched(since=since): + # Normalize this repo's batch + normalized = [] + for raw in raw_prs: + try: + pr_data = normalize_pull_request(raw, self._tenant_id) + pr_data["_head_ref"] = raw.get("head_ref", "") + pr_data["_base_ref"] = raw.get("base_ref", "") + normalized.append(pr_data) + except Exception: + logger.exception("Error normalizing PR: %s", raw.get("id")) + + if not normalized: + repos_done += 1 + continue + + # Upsert this batch to DB immediately + batch_count = await self._upsert_pull_requests(normalized) + total_count += batch_count + repos_done += 1 + + # Publish this batch to Kafka + events = [] + for pr in normalized: + event = {k: v for k, v in pr.items() if not k.startswith("_")} + events.append((str(pr["external_id"]), event)) + await publish_batch(self._producer, TOPIC_PR_NORMALIZED, events) + + # Update progress in DB (queryable by API) + await _update_ingestion_progress( + self._tenant_id, "pull_requests", + status="running", + sources_done=repos_done, + records_ingested=total_count, + current_source=repo_name, + ) + + logger.info( + "Batch persisted: %d PRs from %s (total: %d PRs, %d/%d repos)", + batch_count, repo_name, total_count, repos_done, total_sources, + ) + + except Exception as exc: + await _update_ingestion_progress( + self._tenant_id, "pull_requests", + status="failed", + sources_done=repos_done, + records_ingested=total_count, + error_message=str(exc), + finished_at=datetime.now(timezone.utc), ) + raise + + # Mark ingestion as completed + await _update_ingestion_progress( + self._tenant_id, "pull_requests", + status="completed" if total_count > 0 else "idle", + sources_done=repos_done, + records_ingested=total_count, + current_source=None, + finished_at=datetime.now(timezone.utc), + ) if total_count == 0: logger.info("No new pull requests to sync") diff --git a/pulse/packages/pulse-web/src/hooks/useMetrics.ts b/pulse/packages/pulse-web/src/hooks/useMetrics.ts index d0bb337..0f24574 100644 --- a/pulse/packages/pulse-web/src/hooks/useMetrics.ts +++ b/pulse/packages/pulse-web/src/hooks/useMetrics.ts @@ -12,6 +12,7 @@ import { fetchPipelineStatus, fetchSourceFilteredStatus, fetchMetricsWorkerStatus, + fetchIngestionProgress, } from '@/lib/api/metrics'; import type { DoraMetrics, @@ -27,6 +28,7 @@ import type { PipelineStatusData, SourceFilteredStatus, MetricsWorkerStatus, + IngestionProgressResponse, } from '@/types/pipeline'; function useFilterParams() { @@ -127,3 +129,12 @@ export function useMetricsWorkerStatus() { staleTime: 10_000, }); } + +export function useIngestionProgress() { + return useQuery({ + queryKey: ['ingestion-progress'], + queryFn: fetchIngestionProgress, + refetchInterval: 10_000, // Refresh every 10s for real-time feel + staleTime: 5_000, + }); +} diff --git a/pulse/packages/pulse-web/src/lib/api/metrics.ts b/pulse/packages/pulse-web/src/lib/api/metrics.ts index d065e59..564efef 100644 --- a/pulse/packages/pulse-web/src/lib/api/metrics.ts +++ b/pulse/packages/pulse-web/src/lib/api/metrics.ts @@ -20,6 +20,7 @@ import type { PipelineStatusData, SourceFilteredStatus, MetricsWorkerStatus, + IngestionProgressResponse, } from '@/types/pipeline'; export interface MetricsQueryParams { @@ -123,3 +124,10 @@ export async function fetchMetricsWorkerStatus(): Promise { ); return response.data; } + +export async function fetchIngestionProgress(): Promise { + const response = await dataClient.get( + '/pipeline/ingestion/progress', + ); + return response.data; +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/pipeline-monitor.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/pipeline-monitor.tsx index b639e9e..a312bdb 100644 --- a/pulse/packages/pulse-web/src/routes/_dashboard/pipeline-monitor.tsx +++ b/pulse/packages/pulse-web/src/routes/_dashboard/pipeline-monitor.tsx @@ -4,6 +4,7 @@ import { usePipelineStatus, useSourceFilteredStatus, useMetricsWorkerStatus, + useIngestionProgress, } from '@/hooks/useMetrics'; import { useState, useEffect, useCallback, useRef } from 'react'; import { @@ -16,7 +17,6 @@ import { Clock, Cloud, Database, - GitBranch, GitPullRequest, Bug, Rocket, @@ -31,24 +31,18 @@ import { Activity, Timer, Cpu, - Server, Send, - Terminal, - Gauge, Heart, } from 'lucide-react'; import type { PipelineOverallStatus, - PipelineStageStatus, PipelineStage, PipelineKpis, RecordCount, PipelineError, PipelineEvent, SourceConnection, - SourceFilteredStatus, - MetricsWorkerStatus, - MetricsWorkerSnapshot, + IngestionEntityProgress, } from '@/types/pipeline'; export const pipelineMonitorRoute = createRoute({ @@ -128,16 +122,6 @@ const STAGE_ICONS: Record> = metrics_worker: BarChart3, }; -const ENTITY_ICONS: Record> = { - pull_requests: GitPullRequest, - issues: Bug, - deployments: Rocket, - sprints: Zap, - commits: GitBranch, - users: Activity, - comments: Terminal, -}; - const ENTITY_LABELS: Record = { pull_requests: 'Pull Requests', issues: 'Issues', @@ -532,7 +516,6 @@ function DevLakeSyncTable({ syncs }: { syncs: Array<{ id: string; status: string {syncs.slice(0, 5).map((sync) => { - const total = Object.values(sync.records_processed).reduce((a, b) => a + b, 0); const statusColors: Record = { completed: 'bg-emerald-50 text-emerald-600', running: 'bg-indigo-50 text-indigo-600', @@ -613,7 +596,7 @@ function RecentActivityTimeline({ events }: { events: PipelineEvent[] }) {

No recent activity.

) : ( timelineEvents.map((ev, i) => { - const sev = SEVERITY_COLORS[ev.severity] || SEVERITY_COLORS.info; + const sev = SEVERITY_COLORS[ev.severity] ?? { dot: 'bg-indigo-400', text: 'text-indigo-700' }; const borderColor = ev.severity === 'success' ? 'border-emerald-500' : ev.severity === 'error' ? 'border-red-500' @@ -782,6 +765,176 @@ function ErrorPanel({ errors }: { errors: PipelineError[] }) { ); } +/* ════════════════════════════════════════════════════════════════════════════ + INGESTION PROGRESS PANEL — real-time tracking of data ingestion + ════════════════════════════════════════════════════════════════════════════ */ + +const INGESTION_ENTITY_LABELS: Record = { + pull_requests: 'Pull Requests', + issues: 'Issues', + deployments: 'Deployments', + sprints: 'Sprints', +}; + +const INGESTION_ENTITY_ICONS: Record> = { + pull_requests: GitPullRequest, + issues: Bug, + deployments: Rocket, + sprints: Zap, +}; + +const INGESTION_STATUS_STYLES: Record = { + running: { bg: 'bg-blue-50', text: 'text-blue-700', dot: 'bg-blue-500 animate-pulse' }, + completed: { bg: 'bg-emerald-50', text: 'text-emerald-700', dot: 'bg-emerald-500' }, + failed: { bg: 'bg-red-50', text: 'text-red-700', dot: 'bg-red-500' }, + idle: { bg: 'bg-gray-50', text: 'text-gray-500', dot: 'bg-gray-400' }, +}; + +function formatEta(minutes: number | null): string { + if (minutes === null || minutes <= 0) return '--'; + if (minutes < 1) return '< 1 min'; + if (minutes < 60) return `${Math.ceil(minutes)} min`; + const h = Math.floor(minutes / 60); + const m = Math.ceil(minutes % 60); + return m > 0 ? `${h}h ${m}m` : `${h}h`; +} + +function formatDuration(minutes: number): string { + if (minutes < 1) return '< 1 min'; + if (minutes < 60) return `${Math.round(minutes)} min`; + const h = Math.floor(minutes / 60); + const m = Math.round(minutes % 60); + return m > 0 ? `${h}h ${m}m` : `${h}h`; +} + +function IngestionEntityCard({ entity }: { entity: IngestionEntityProgress }) { + const Icon = INGESTION_ENTITY_ICONS[entity.entity_type] || Database; + const label = INGESTION_ENTITY_LABELS[entity.entity_type] || entity.entity_type; + const style = INGESTION_STATUS_STYLES[entity.status] ?? { bg: 'bg-gray-50', text: 'text-gray-500', dot: 'bg-gray-400' }; + const isRunning = entity.status === 'running'; + + return ( +
+ {/* Header */} +
+
+ + {label} +
+ + + {entity.status} + +
+ + {/* Progress bar */} + {(isRunning || entity.status === 'completed') && ( +
+
+ {entity.sources_done} / {entity.total_sources} sources + {entity.progress_pct.toFixed(1)}% +
+
+
+
+
+ )} + + {/* Stats grid */} +
+
+
Records
+
+ {formatNumber(entity.records_ingested)} +
+
+
+
Rate
+
+ {entity.rate_per_minute > 0 ? `${entity.rate_per_minute.toFixed(1)}/min` : '--'} +
+
+
+
Elapsed
+
+ {entity.elapsed_minutes > 0 ? formatDuration(entity.elapsed_minutes) : '--'} +
+
+
+
ETA
+
+ {isRunning ? formatEta(entity.eta_minutes) : entity.status === 'completed' ? 'Done' : '--'} +
+
+
+ + {/* Current source */} + {isRunning && entity.current_source && ( +
+
Processing
+
+ {entity.current_source} +
+
+ )} + + {/* Error message */} + {entity.status === 'failed' && entity.error_message && ( +
+
+ + {entity.error_message} +
+
+ )} +
+ ); +} + +function IngestionProgressPanel() { + const { data, isLoading } = useIngestionProgress(); + + if (isLoading || !data) { + return ( +
+
+ + Loading ingestion progress... +
+
+ ); + } + + if (data.entities.length === 0) { + return null; // No ingestion tracked yet + } + + return ( +
+
+

+ + Ingestion Progress + {data.any_running && ( + + + Live + + )} +

+
+
+ {data.entities.map((entity) => ( + + ))} +
+
+ ); +} + /* ════════════════════════════════════════════════════════════════════════════ TELA 1 — MAIN VIEW (combines all components above) ════════════════════════════════════════════════════════════════════════════ */ @@ -820,10 +973,12 @@ function MainView({ + + {/* Two-column layout: Accordions + Timeline */}
- + @@ -1048,7 +1203,7 @@ function SourceFilteredView({
{(data.recent_logs || []).slice(0, 5).map((log, i) => { - const sev = SEVERITY_COLORS[log.severity] || SEVERITY_COLORS.info; + const sev = SEVERITY_COLORS[log.severity] ?? { dot: 'bg-indigo-400', text: 'text-indigo-700' }; return (
diff --git a/pulse/packages/pulse-web/src/types/pipeline.ts b/pulse/packages/pulse-web/src/types/pipeline.ts index 9147d6a..dba587f 100644 --- a/pulse/packages/pulse-web/src/types/pipeline.ts +++ b/pulse/packages/pulse-web/src/types/pipeline.ts @@ -78,6 +78,31 @@ export interface PipelineEvent { occurred_at: string; } +/* ── Ingestion Progress (real-time tracking) ── */ + +export interface IngestionEntityProgress { + entity_type: string; + status: 'idle' | 'running' | 'completed' | 'failed'; + total_sources: number; + sources_done: number; + records_ingested: number; + current_source: string | null; + started_at: string | null; + last_batch_at: string | null; + finished_at: string | null; + error_message: string | null; + progress_pct: number; + rate_per_minute: number; + eta_minutes: number | null; + elapsed_minutes: number; +} + +export interface IngestionProgressResponse { + entities: IngestionEntityProgress[]; + any_running: boolean; + last_updated: string; +} + /* ── Main Status Response (Tela 1) ── */ export interface PipelineStatusData { From 36d9157b88855160293af6807723562f8de97d39 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 09:45:49 -0300 Subject: [PATCH 08/64] feat: emit 'starting' signal per repo for instant UI progress updates MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Connector now yields (repo_name, None) before fetching a repo's PRs, so the worker can update current_source in pipeline_ingestion_progress immediately — no more 'discovering repos...' for 5+ min on huge repos. Co-Authored-By: Claude Opus 4.6 --- .../pulse-data/src/connectors/aggregator.py | 7 ++++--- .../pulse-data/src/connectors/github_connector.py | 13 +++++++++---- .../packages/pulse-data/src/workers/devlake_sync.py | 12 ++++++++++++ 3 files changed, 25 insertions(+), 7 deletions(-) diff --git a/pulse/packages/pulse-data/src/connectors/aggregator.py b/pulse/packages/pulse-data/src/connectors/aggregator.py index 461375c..d2eeae8 100644 --- a/pulse/packages/pulse-data/src/connectors/aggregator.py +++ b/pulse/packages/pulse-data/src/connectors/aggregator.py @@ -79,11 +79,12 @@ async def get_pull_request_source_count(self) -> int: async def fetch_pull_requests_batched( self, since: datetime | None = None, - ) -> AsyncIterator[tuple[str, list[dict[str, Any]]]]: + ) -> AsyncIterator[tuple[str, list[dict[str, Any]] | None]]: """Yield PRs in batches (per repo) from all code-hosting connectors. - Each yield is (repo_name, prs_list). Allows the sync worker to - persist each batch immediately instead of holding everything in memory. + Each yield is (repo_name, prs_or_none): + - prs is None → "starting" signal for this repo (UI progress hint) + - prs is list → completed batch ready to persist """ for source in ("github", "gitlab", "azure"): connector = self._connectors.get(source) diff --git a/pulse/packages/pulse-data/src/connectors/github_connector.py b/pulse/packages/pulse-data/src/connectors/github_connector.py index eb63875..e18796f 100644 --- a/pulse/packages/pulse-data/src/connectors/github_connector.py +++ b/pulse/packages/pulse-data/src/connectors/github_connector.py @@ -139,16 +139,21 @@ async def get_source_count(self) -> int: async def fetch_pull_requests_batched( self, since: datetime | None = None, - ) -> AsyncIterator[tuple[str, list[dict[str, Any]]]]: + ) -> AsyncIterator[tuple[str, list[dict[str, Any]] | None]]: """Yield PRs in batches, one batch per repo. - Each yield is a tuple of (repo_full_name, list_of_prs). - This allows the caller to persist each batch immediately, - avoiding holding all PRs in memory at once. + Each repo emits TWO yields: + 1. (repo_full_name, None) — "starting" signal, before any API calls + 2. (repo_full_name, list_of_prs) — completed batch (only if non-empty) + + The "starting" signal lets callers update progress UI immediately, + without waiting for large repos to finish enrichment. """ repos = await self._get_repos() for repo_full_name in repos: + # Signal: starting this repo + yield repo_full_name, None try: prs = await self._fetch_repo_prs(repo_full_name, since) if prs: diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index a09b71e..29320ad 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -377,6 +377,18 @@ async def _sync_pull_requests(self) -> int: try: async for repo_name, raw_prs in self._reader.fetch_pull_requests_batched(since=since): + # "Starting" signal: connector emits (repo_name, None) before + # any API calls so the UI can show progress immediately. + if raw_prs is None: + await _update_ingestion_progress( + self._tenant_id, "pull_requests", + status="running", + sources_done=repos_done, + records_ingested=total_count, + current_source=repo_name, + ) + continue + # Normalize this repo's batch normalized = [] for raw in raw_prs: From 60fe57635337ac228c766e281bf595cb9d0e0da5 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 11:57:36 -0300 Subject: [PATCH 09/64] perf: migrate PR fetch to GraphQL + parallelize repos (40x faster) - GraphQL: single query per page of 50 PRs returns PRs + reviews + commits + file stats. Uses the separate GraphQL 5k/h quota (independent from REST), and replaces ~100 REST calls per repo with ~5 GraphQL calls. - Parallelism: asyncio.Semaphore(5) lets up to 5 repos process concurrently; asyncio.Queue preserves ordered (start, batch) yields for progress UI. - REST fallback preserved for resilience (GraphQL errors fall back per-repo). - Fix latent ID collision bug: external_id now includes repo_full_name so PR #1 from repo A and PR #1 from repo B don't overwrite each other. - logger.exception for source count failures to aid future diagnosis. Measured: ~1950 PRs/min (vs 48/min with REST+serial), 31 repos in ~4min. Co-Authored-By: Claude Opus 4.6 --- .../src/connectors/github_connector.py | 287 ++++++++++++++++-- .../pulse-data/src/workers/devlake_sync.py | 2 +- 2 files changed, 262 insertions(+), 27 deletions(-) diff --git a/pulse/packages/pulse-data/src/connectors/github_connector.py b/pulse/packages/pulse-data/src/connectors/github_connector.py index e18796f..cb53c27 100644 --- a/pulse/packages/pulse-data/src/connectors/github_connector.py +++ b/pulse/packages/pulse-data/src/connectors/github_connector.py @@ -1,18 +1,20 @@ -"""GitHub connector — fetches PRs, commits, and deployments via REST API v3. +"""GitHub connector — fetches PRs via GraphQL (primary) and REST (fallback). -Replaces DevLake's GitHub plugin with direct API access, providing: -- First review timestamps (not available in DevLake domain model) -- Approval timestamps -- File change counts -- Reviewer list with states -- Full PR timeline events via GraphQL (optional, future enhancement) +GraphQL path: single query returns PR + reviews + commits + file stats per page +of 50 PRs. Uses the separate GraphQL rate limit quota (5,000 pts/h), independent +from REST (also 5,000/h). Cuts API calls by ~5x vs REST+enrichment. + +REST path (fallback): GET /repos/{owner}/{repo}/pulls plus 2 enrichment calls +per PR (detail + reviews). Kept for resilience when GraphQL fails. Authentication: Personal Access Token (PAT) or GitHub App token. -Rate Limiting: 5,000 requests/hour with token. Client handles 429 automatically. +Parallelism: fetch_pull_requests_batched processes multiple repos concurrently +with an asyncio.Semaphore to respect rate limits. """ from __future__ import annotations +import asyncio import logging from collections.abc import AsyncIterator from datetime import datetime, timedelta, timezone @@ -28,6 +30,55 @@ PER_PAGE = 100 # Max items per page MAX_PAGES = 200 # Safety limit for pagination +# GraphQL constants +GRAPHQL_PAGE_SIZE = 50 # PRs per page (GitHub max 100, 50 keeps complexity low) +GRAPHQL_MAX_PAGES = 200 # Safety limit +GRAPHQL_REVIEWS_PER_PR = 50 # Reviews fetched per PR in the same query + +# Parallelism +REPO_CONCURRENCY = 5 # Number of repos to process in parallel + +# GraphQL query — fetches PRs with reviews, commits, and file stats in ONE call +PR_GRAPHQL_QUERY = """ +query($owner: String!, $name: String!, $cursor: String, $pageSize: Int!, $reviewsPerPR: Int!) { + rateLimit { remaining, resetAt, cost } + repository(owner: $owner, name: $name) { + pullRequests( + first: $pageSize, + after: $cursor, + orderBy: {field: UPDATED_AT, direction: DESC} + ) { + pageInfo { hasNextPage, endCursor } + nodes { + number + title + url + state + createdAt + updatedAt + closedAt + mergedAt + additions + deletions + changedFiles + baseRefName + headRefName + author { login } + mergeCommit { oid } + commits { totalCount } + reviews(first: $reviewsPerPR) { + nodes { + state + submittedAt + author { login } + } + } + } + } + } +} +""" + class GitHubConnector(BaseConnector): """Fetches pull requests and repository data from GitHub REST API. @@ -140,29 +191,75 @@ async def get_source_count(self) -> int: async def fetch_pull_requests_batched( self, since: datetime | None = None, ) -> AsyncIterator[tuple[str, list[dict[str, Any]] | None]]: - """Yield PRs in batches, one batch per repo. + """Yield PRs in batches, one batch per repo — parallelized via GraphQL. - Each repo emits TWO yields: - 1. (repo_full_name, None) — "starting" signal, before any API calls - 2. (repo_full_name, list_of_prs) — completed batch (only if non-empty) + Processes REPO_CONCURRENCY repos at a time. Each repo uses a single + GraphQL query per page (50 PRs) instead of 1+2N REST calls. - The "starting" signal lets callers update progress UI immediately, - without waiting for large repos to finish enrichment. + For each repo, emits: + 1. (repo_full_name, None) — "starting" signal for UI progress + 2. (repo_full_name, list_of_prs) — completed batch (only if non-empty) """ repos = await self._get_repos() + total_repos = len(repos) + logger.info( + "Starting parallel PR fetch: %d repos, concurrency=%d, page_size=%d", + total_repos, REPO_CONCURRENCY, GRAPHQL_PAGE_SIZE, + ) - for repo_full_name in repos: - # Signal: starting this repo - yield repo_full_name, None - try: - prs = await self._fetch_repo_prs(repo_full_name, since) - if prs: - logger.info( - "Batch: %d PRs from %s", len(prs), repo_full_name, + semaphore = asyncio.Semaphore(REPO_CONCURRENCY) + # Queue holds outputs from worker coroutines so we can yield them + # from the outer async generator. Workers push (kind, repo, prs). + queue: asyncio.Queue[tuple[str, str, list[dict[str, Any]] | None]] = asyncio.Queue() + + async def worker(repo_full_name: str) -> None: + async with semaphore: + # Emit "starting" as soon as we acquire the slot + await queue.put(("start", repo_full_name, None)) + try: + prs = await self._fetch_repo_prs_graphql(repo_full_name, since) + if prs: + logger.info( + "Batch: %d PRs from %s (GraphQL)", + len(prs), repo_full_name, + ) + await queue.put(("batch", repo_full_name, prs)) + else: + await queue.put(("batch", repo_full_name, [])) + except Exception: + logger.exception( + "GraphQL failed for %s — retrying with REST", + repo_full_name, ) - yield repo_full_name, prs - except Exception: - logger.exception("Failed to fetch PRs for %s", repo_full_name) + try: + prs = await self._fetch_repo_prs(repo_full_name, since) + await queue.put(("batch", repo_full_name, prs or [])) + except Exception: + logger.exception("REST fallback also failed for %s", repo_full_name) + await queue.put(("batch", repo_full_name, [])) + + # Schedule all repo workers — semaphore bounds concurrency + tasks = [asyncio.create_task(worker(r)) for r in repos] + + # Track when all workers are done + async def wait_all() -> None: + await asyncio.gather(*tasks, return_exceptions=True) + await queue.put(("done", "", None)) + + waiter = asyncio.create_task(wait_all()) + + while True: + kind, repo_full_name, payload = await queue.get() + if kind == "done": + break + if kind == "start": + yield repo_full_name, None + elif kind == "batch": + # Always yield — empty list signals "repo done, no PRs" so the + # caller can increment its counter and continue. + yield repo_full_name, payload or [] + + await waiter # propagate any uncaught error async def _fetch_repo_prs( self, repo_full_name: str, since: datetime | None = None, @@ -214,6 +311,143 @@ async def _fetch_repo_prs( return all_prs + # ------------------------------------------------------------------ + # GraphQL: fetch PRs with reviews and commits in a single query + # ------------------------------------------------------------------ + + async def _fetch_repo_prs_graphql( + self, repo_full_name: str, since: datetime | None = None, + ) -> list[dict[str, Any]]: + """Fetch all PRs for a repo via GraphQL. + + One query per page (50 PRs) returns PR + reviews + commits + file stats. + ~5-10x fewer calls than REST for repos with many PRs. + + Stops paginating when it finds PRs older than `since` (incremental sync). + """ + owner, name = repo_full_name.split("/", 1) + all_prs: list[dict[str, Any]] = [] + cursor: str | None = None + page = 0 + stop = False + + while page < GRAPHQL_MAX_PAGES and not stop: + page += 1 + variables = { + "owner": owner, + "name": name, + "cursor": cursor, + "pageSize": GRAPHQL_PAGE_SIZE, + "reviewsPerPR": GRAPHQL_REVIEWS_PER_PR, + } + + response = await self._client.post( + "/graphql", + json_body={"query": PR_GRAPHQL_QUERY, "variables": variables}, + ) + + if "errors" in response: + errors = response.get("errors", []) + # Non-fatal errors (e.g., partial data); log and try to continue + first_msg = errors[0].get("message", "") if errors else "" + if "NOT_FOUND" in str(errors).upper() or "not found" in first_msg.lower(): + logger.warning("Repo %s not accessible via GraphQL: %s", repo_full_name, first_msg) + return [] + if response.get("data") is None: + logger.warning("GraphQL errors for %s: %s", repo_full_name, errors) + raise RuntimeError(f"GraphQL error for {repo_full_name}: {first_msg}") + + data = (response.get("data") or {}).get("repository") + if not data: + return all_prs + + prs_block = data.get("pullRequests") or {} + nodes = prs_block.get("nodes") or [] + + for pr_node in nodes: + updated_at = pr_node.get("updatedAt") + if since and updated_at: + try: + dt = datetime.fromisoformat(updated_at.replace("Z", "+00:00")) + if dt < since: + stop = True + break + except ValueError: + pass + + mapped = self._map_pr_graphql(repo_full_name, pr_node) + all_prs.append(mapped) + + page_info = prs_block.get("pageInfo") or {} + if not page_info.get("hasNextPage"): + break + cursor = page_info.get("endCursor") + if not cursor: + break + + return all_prs + + def _map_pr_graphql( + self, repo_full_name: str, node: dict[str, Any], + ) -> dict[str, Any]: + """Map a GraphQL PR node to the normalizer-expected dict format.""" + pr_number = node.get("number", 0) + # GraphQL state: OPEN | CLOSED | MERGED (no inference needed) + state = str(node.get("state", "OPEN")).upper() + + author = (node.get("author") or {}).get("login") or "unknown" + merge_commit = (node.get("mergeCommit") or {}).get("oid") + commits_count = (node.get("commits") or {}).get("totalCount", 0) + + # Reviews — compute first_review_at and approved_at + review_nodes = ((node.get("reviews") or {}).get("nodes")) or [] + reviewers: list[dict[str, str]] = [] + first_review_at: str | None = None + approved_at: str | None = None + for review in review_nodes: + submitted_at = review.get("submittedAt") + review_state = review.get("state", "") + reviewer_login = ((review.get("author") or {}).get("login")) or "unknown" + + if reviewer_login not in [r.get("login") for r in reviewers]: + reviewers.append({"login": reviewer_login, "state": review_state}) + + if submitted_at: + if first_review_at is None or submitted_at < first_review_at: + first_review_at = submitted_at + if review_state == "APPROVED" and ( + approved_at is None or submitted_at < approved_at + ): + approved_at = submitted_at + + return { + # Standard fields (normalizer contract) + # IMPORTANT: include repo in ID to avoid cross-repo PR number collisions + "id": f"github:GithubPullRequest:{self._connection_id}:{repo_full_name}:{pr_number}", + "base_repo_id": f"github:GithubRepo:{self._connection_id}:{repo_full_name}", + "head_repo_id": f"github:GithubRepo:{self._connection_id}:{repo_full_name}", + "status": state, + "title": node.get("title", ""), + "url": node.get("url", ""), + "author_name": author, + "created_date": node.get("createdAt"), + "merged_date": node.get("mergedAt"), + "closed_date": node.get("closedAt"), + "merge_commit_sha": merge_commit, + "base_ref": node.get("baseRefName", ""), + "head_ref": node.get("headRefName", ""), + "additions": node.get("additions", 0), + "deletions": node.get("deletions", 0), + # Enrichment fields (consumed by normalizer) + "_files_changed": node.get("changedFiles", 0), + "_commits_count": commits_count, + "_first_review_at": first_review_at, + "_approved_at": approved_at, + "_reviewers": reviewers, + "_pr_number": pr_number, + "_repo_full_name": repo_full_name, + } + # ------------------------------------------------------------------ # PR Enrichment — detail + reviews (2 API calls per PR) # ------------------------------------------------------------------ @@ -427,7 +661,8 @@ def _map_pr( return { # Standard fields (normalizer contract — same as DevLake) - "id": f"github:GithubPullRequest:{self._connection_id}:{pr_number}", + # IMPORTANT: include repo in ID to avoid cross-repo PR number collisions + "id": f"github:GithubPullRequest:{self._connection_id}:{repo_full_name}:{pr_number}", "base_repo_id": f"github:GithubRepo:{self._connection_id}:{repo_full_name}", "head_repo_id": f"github:GithubRepo:{self._connection_id}:{repo_full_name}", "status": state, diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 29320ad..1f9cb56 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -357,7 +357,7 @@ async def _sync_pull_requests(self) -> int: try: total_sources = await self._reader.get_pull_request_source_count() except Exception: - logger.warning("Could not get source count for progress tracking") + logger.exception("Could not get source count for progress tracking") started_at = datetime.now(timezone.utc) From 6c3c0cd2c43328e85456502b82712cd33403b33d Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 12:18:12 -0300 Subject: [PATCH 10/64] fix: retry source count after repo cache warms up MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit When the initial get_pull_request_source_count() call fails at startup, total_sources stays 0 which breaks ETA/progress_pct in the Pipeline Monitor. Retry on the first "starting" signal — the connector's repo cache is warm by then, so the retry returns instantly and total_sources is fixed for the rest of the run. Co-Authored-By: Claude Opus 4.6 --- pulse/packages/pulse-data/src/workers/devlake_sync.py | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 1f9cb56..7503347 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -380,9 +380,19 @@ async def _sync_pull_requests(self) -> int: # "Starting" signal: connector emits (repo_name, None) before # any API calls so the UI can show progress immediately. if raw_prs is None: + # If the initial source-count call failed (total_sources=0) + # retry now — the connector's repo cache is warm after the + # first yield, so this will succeed. + if total_sources == 0: + try: + total_sources = await self._reader.get_pull_request_source_count() + except Exception: + logger.exception("Retry of source count failed") + await _update_ingestion_progress( self._tenant_id, "pull_requests", status="running", + total_sources=total_sources or None, sources_done=repos_done, records_ingested=total_count, current_source=repo_name, From 0723df9c938e893b176daea7eb4339d804359efe Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 14:13:10 -0300 Subject: [PATCH 11/64] fix(jira): discover sprint+story_points custom fields; link PRs to issues MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Three P0 fixes to unblock Sprint + Value Stream metrics: 1. Jira custom-field discovery (sprint_id + story_points) - /rest/api/3/field called once per connector, match by field name - Dynamically appended to search fields list - Fallback IDs (customfield_10020/10010/10016/10028) also always sent - Sprint extraction handles array shape (picks active, else last) - Story points extraction tries discovered ID first, then fallbacks 2. PR linked_issue_ids population on live ingest - build_issue_key_map(): indexes tenant's issues by Jira key (O(n)) - apply_pr_issue_links(): mutates PR batch in place, scans title + head_ref + base_ref - Worker loads the key map once at start of PR sync, applies per batch - Sync order reversed: issues → PRs → deployments → sprints so the key map is always fresh 3. Relink script for existing PRs - scripts/relink_prs_to_issues.sql backfills linked_issue_ids on the 63k+ PRs already in DB, matching by title only (head_ref not persisted). Pure SQL, ~seconds on production-sized data Tests: +11 normalizer (build_issue_key_map, apply_pr_issue_links) +11 jira_connector (discover_custom_fields, extract_sprint_id, extract_story_points). All passing. Co-Authored-By: Claude Opus 4.6 --- .../scripts/relink_prs_to_issues.sql | 69 ++++++++ .../src/connectors/jira_connector.py | 162 +++++++++++++++--- .../contexts/engineering_data/normalizer.py | 60 +++++++ .../pulse-data/src/workers/devlake_sync.py | 26 ++- .../unit/connectors/test_jira_connector.py | 148 +++++++++++++++- .../pulse-data/tests/unit/test_normalizer.py | 87 ++++++++++ 6 files changed, 519 insertions(+), 33 deletions(-) create mode 100644 pulse/packages/pulse-data/scripts/relink_prs_to_issues.sql diff --git a/pulse/packages/pulse-data/scripts/relink_prs_to_issues.sql b/pulse/packages/pulse-data/scripts/relink_prs_to_issues.sql new file mode 100644 index 0000000..974130f --- /dev/null +++ b/pulse/packages/pulse-data/scripts/relink_prs_to_issues.sql @@ -0,0 +1,69 @@ +-- relink_prs_to_issues.sql +-- +-- One-off backfill: populate eng_pull_requests.linked_issue_ids by scanning +-- PR titles for Jira-style issue keys (e.g. ANCR-1234) and matching them to +-- existing eng_issues rows. +-- +-- Use this when: +-- 1. The PR linker was added after PRs were already ingested (the case +-- at the time of ADR-005 migration), OR +-- 2. A full Jira backfill just completed and you want to catch newly- +-- imported issues in already-persisted PRs without re-fetching 60k+ +-- PRs from GitHub. +-- +-- Cost: ~1-3 seconds on 100k PRs / 50k issues. Pure SQL, no Python. +-- +-- Scope: matches on title only (since `head_ref` is not persisted). New +-- PRs coming through the live pipeline are linked on title + head_ref + +-- base_ref — see normalizer.apply_pr_issue_links(). +-- +-- Usage: +-- docker exec -i pulse-postgres psql -U pulse -d pulse < relink_prs_to_issues.sql + +BEGIN; + +WITH pr_keys AS ( + SELECT + pr.id AS pr_id, + UPPER(m[1]) AS issue_key + FROM eng_pull_requests pr + CROSS JOIN LATERAL regexp_matches( + COALESCE(pr.title, ''), + '([A-Z][A-Z0-9]+-\d+)', + 'gi' + ) AS m +), +issue_keys AS ( + SELECT + external_id, + UPPER(SUBSTRING(external_id FROM '([A-Z][A-Z0-9]+-[0-9]+)')) AS issue_key + FROM eng_issues + WHERE external_id ~ '[A-Z][A-Z0-9]+-[0-9]+' +), +matches AS ( + SELECT DISTINCT pk.pr_id, ik.external_id + FROM pr_keys pk + JOIN issue_keys ik USING (issue_key) +), +agg AS ( + SELECT pr_id, jsonb_agg(DISTINCT to_jsonb(external_id)) AS links + FROM matches + GROUP BY pr_id +) +UPDATE eng_pull_requests p +SET linked_issue_ids = agg.links, + updated_at = NOW() +FROM agg +WHERE p.id = agg.pr_id; + +-- Verification +SELECT + COUNT(*) AS total_prs, + COUNT(*) FILTER (WHERE jsonb_array_length(linked_issue_ids) > 0) AS linked_prs, + ROUND( + 100.0 * COUNT(*) FILTER (WHERE jsonb_array_length(linked_issue_ids) > 0) / NULLIF(COUNT(*), 0), + 1 + ) AS linked_pct +FROM eng_pull_requests; + +COMMIT; diff --git a/pulse/packages/pulse-data/src/connectors/jira_connector.py b/pulse/packages/pulse-data/src/connectors/jira_connector.py index 33bad59..08e6e28 100644 --- a/pulse/packages/pulse-data/src/connectors/jira_connector.py +++ b/pulse/packages/pulse-data/src/connectors/jira_connector.py @@ -31,14 +31,21 @@ SEARCH_PAGE_SIZE = 100 AGILE_PAGE_SIZE = 50 -# Fields to fetch in search queries (minimize payload) +# Base fields to fetch in search queries (minimize payload). +# Sprint + story_points custom-field IDs are discovered dynamically per Jira +# tenant (they vary) and appended to this list at fetch time — see +# JiraConnector._discover_custom_fields(). SEARCH_FIELDS = [ "summary", "status", "issuetype", "priority", "assignee", "created", "updated", "resolutiondate", "resolution", - "sprint", "story_points", "customfield_10028", # story points field "parent", "labels", "components", ] +# Fallback custom-field IDs tried if discovery fails — these are the most +# common defaults on Jira Cloud instances. +FALLBACK_STORY_POINTS_FIELDS = ("customfield_10016", "customfield_10028") +FALLBACK_SPRINT_FIELDS = ("customfield_10020", "customfield_10010") + class JiraConnector(BaseConnector): """Fetches issues, sprints, and changelogs from Jira Cloud REST API v3. @@ -80,6 +87,12 @@ def __init__( # Cache: board_id -> board info (discovered lazily) self._boards: dict[int, dict] = {} + # Discovered custom field IDs (vary per Jira tenant). Populated by + # _discover_custom_fields() on first fetch_issues() call. + self._sprint_field_id: str | None = None + self._story_points_field_id: str | None = None + self._custom_fields_discovered: bool = False + @property def source_type(self) -> str: return "jira" @@ -118,6 +131,9 @@ async def fetch_issues( logger.warning("No Jira projects configured — skipping issue fetch") return [] + # Discover tenant-specific custom field IDs (sprint, story points) + await self._discover_custom_fields() + # Quote each project key in JQL — some keys like "DESC" are reserved words quoted_projects = ", ".join(f'"{p}"' for p in self._projects) jql = f"project IN ({quoted_projects})" @@ -128,6 +144,17 @@ async def fetch_issues( logger.info("Fetching Jira issues with JQL: %s", jql) + # Build fields list: base + discovered custom fields + fallbacks + fields_to_fetch = list(SEARCH_FIELDS) + if self._sprint_field_id: + fields_to_fetch.append(self._sprint_field_id) + if self._story_points_field_id: + fields_to_fetch.append(self._story_points_field_id) + # Always include fallbacks to survive mis-discovery + for f in FALLBACK_SPRINT_FIELDS + FALLBACK_STORY_POINTS_FIELDS: + if f not in fields_to_fetch: + fields_to_fetch.append(f) + all_issues: list[dict[str, Any]] = [] next_page_token: str | None = None page = 0 @@ -136,7 +163,7 @@ async def fetch_issues( body: dict[str, Any] = { "jql": jql, "maxResults": SEARCH_PAGE_SIZE, - "fields": SEARCH_FIELDS, + "fields": fields_to_fetch, "expand": "changelog", # Must be string, not array } if next_page_token: @@ -285,21 +312,12 @@ def _map_issue(self, jira_issue: dict[str, Any]) -> dict[str, Any]: # Build our internal ID (same prefix format as DevLake for compatibility) internal_id = f"jira:JiraIssue:{self._connection_id}:{jira_id}" - # Story points — try standard field first, then common custom fields - story_points = ( - fields.get("story_points") - or fields.get("customfield_10028") # common SP field - or fields.get("customfield_10016") # another common SP field - or None - ) + # Story points — prefer dynamically-discovered field, with fallbacks + story_points = self._extract_story_points(fields) - # Sprint info from the sprint field (Jira includes active sprint) - sprint_field = fields.get("sprint") - sprint_id = None - if sprint_field and isinstance(sprint_field, dict): - raw_sprint_id = sprint_field.get("id") - if raw_sprint_id: - sprint_id = f"jira:JiraSprint:{self._connection_id}:{raw_sprint_id}" + # Sprint — Jira Cloud returns the sprint custom field as an ARRAY of + # sprints (issue history). We pick the active one, or the most recent. + sprint_id = self._extract_sprint_id(fields) status_name = (fields.get("status") or {}).get("name", "") @@ -336,12 +354,7 @@ def _map_sprint_issue( jira_id = jira_issue.get("id", "") status_name = (fields.get("status") or {}).get("name", "") - story_points = ( - fields.get("story_points") - or fields.get("customfield_10028") - or fields.get("customfield_10016") - or None - ) + story_points = self._extract_story_points(fields) return { "id": f"jira:JiraIssue:{self._connection_id}:{jira_id}", @@ -379,6 +392,109 @@ def _extract_changelogs( transitions.sort(key=lambda t: t.get("created_date") or "") return transitions + # ------------------------------------------------------------------ + # Internal: Custom field discovery + extraction helpers + # ------------------------------------------------------------------ + + async def _discover_custom_fields(self) -> None: + """Discover tenant-specific custom field IDs for sprint + story points. + + Jira Cloud stores these as custom fields whose IDs vary per instance + (commonly customfield_10016/10020 but not guaranteed). We call + GET /rest/api/3/field once and match by field *name*, which is stable. + + Results are cached on the instance — subsequent calls are no-ops. + """ + if self._custom_fields_discovered: + return + + try: + data = await self._client.get(f"{REST_API}/field") + except Exception: + logger.exception("Failed to discover Jira custom fields — falling back to defaults") + self._custom_fields_discovered = True + return + + fields_list = data if isinstance(data, list) else data.get("values", []) + for f in fields_list: + fid = f.get("id", "") + if not fid.startswith("customfield_"): + continue + name = (f.get("name") or "").strip().lower() + if name == "sprint" and not self._sprint_field_id: + self._sprint_field_id = fid + elif name in ("story points", "story point estimate") and not self._story_points_field_id: + self._story_points_field_id = fid + + self._custom_fields_discovered = True + logger.info( + "Discovered Jira custom fields — sprint=%s, story_points=%s", + self._sprint_field_id or "(none — using fallback)", + self._story_points_field_id or "(none — using fallback)", + ) + + def _extract_sprint_id(self, fields: dict[str, Any]) -> str | None: + """Extract the sprint external_id from a Jira issue fields dict. + + The sprint custom field is an ARRAY of sprint objects reflecting the + issue's sprint history. Priority: + 1. Active sprint (state='active') + 2. Most recent sprint by startDate (falls back to last element) + + Also handles the legacy dict-shaped response for robustness. + """ + candidates: list[str] = [] + if self._sprint_field_id: + candidates.append(self._sprint_field_id) + candidates.extend(FALLBACK_SPRINT_FIELDS) + candidates.append("sprint") + + raw = None + for c in candidates: + value = fields.get(c) + if value: + raw = value + break + + if not raw: + return None + + chosen: dict[str, Any] | None = None + if isinstance(raw, list): + if not raw: + return None + # Prefer active; else take last (most recent) — Jira returns + # chronologically ordered. + active = [s for s in raw if isinstance(s, dict) and s.get("state") == "active"] + chosen = active[0] if active else (raw[-1] if isinstance(raw[-1], dict) else None) + elif isinstance(raw, dict): + chosen = raw + + if not chosen: + return None + + raw_id = chosen.get("id") + if not raw_id: + return None + return f"jira:JiraSprint:{self._connection_id}:{raw_id}" + + def _extract_story_points(self, fields: dict[str, Any]) -> float | None: + """Extract story points, preferring the discovered custom field.""" + candidates: list[str] = [] + if self._story_points_field_id: + candidates.append(self._story_points_field_id) + candidates.extend(FALLBACK_STORY_POINTS_FIELDS) + candidates.append("story_points") + + for c in candidates: + value = fields.get(c) + if value is not None: + try: + return float(value) + except (TypeError, ValueError): + continue + return None + # ------------------------------------------------------------------ # Internal: Board and Sprint discovery # ------------------------------------------------------------------ diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py index 7c7b619..c50c61a 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py @@ -500,6 +500,66 @@ def normalize_sprint( } +def build_issue_key_map(external_ids: list[str]) -> dict[str, str]: + """Build a dict mapping issue key (e.g. 'ANCR-1234') to external_id. + + Used by the PR linking step to avoid re-extracting keys on every batch. + + Args: + external_ids: List of issue external_id strings (from eng_issues). + + Returns: + Dict {"ANCR-1234": "jira:JiraIssue:1:ANCR-1234", ...} — keys uppercased. + """ + key_map: dict[str, str] = {} + for ext_id in external_ids: + if not ext_id: + continue + match = ISSUE_KEY_PATTERN.search(ext_id) + if match: + key_map[match.group(1).upper()] = ext_id + return key_map + + +def apply_pr_issue_links( + prs: list[dict[str, Any]], + issue_key_map: dict[str, str], +) -> int: + """Populate `linked_issue_ids` on each PR by scanning title/branch refs. + + Mutates PRs in place. Returns number of PRs that received at least one link. + + Scanned text: title + _head_ref + _base_ref (the last two are enrichment + fields injected by the sync worker pre-normalization). + """ + if not issue_key_map: + return 0 + + linked_count = 0 + for pr in prs: + search_text = ( + f"{pr.get('title', '')} " + f"{pr.get('_head_ref', '')} " + f"{pr.get('_base_ref', '')}" + ) + found_keys = ISSUE_KEY_PATTERN.findall(search_text) + linked_ids: list[str] = [] + seen: set[str] = set() + for key in found_keys: + k = key.upper() + if k in seen: + continue + seen.add(k) + ext_id = issue_key_map.get(k) + if ext_id: + linked_ids.append(ext_id) + + if linked_ids: + pr["linked_issue_ids"] = linked_ids + linked_count += 1 + return linked_count + + def link_issues_to_prs( prs: list[dict[str, Any]], issues: list[dict[str, Any]], diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 7503347..4a50ad6 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -39,6 +39,8 @@ EngSprint, ) from src.contexts.engineering_data.normalizer import ( + apply_pr_issue_links, + build_issue_key_map, link_issues_to_prs, normalize_deployment, normalize_issue, @@ -280,10 +282,12 @@ async def sync(self) -> dict[str, int]: await session.flush() log_id = log_entry.id - # Run each entity sync, collecting results and errors + # Run each entity sync, collecting results and errors. + # Order matters: issues run BEFORE pull_requests so that the PR + # linking step has a fresh issue-key index to work with. for entity, sync_fn in [ - ("pull_requests", self._sync_pull_requests), ("issues", self._sync_issues), + ("pull_requests", self._sync_pull_requests), ("deployments", self._sync_deployments), ("sprints", self._sync_sprints), ]: @@ -352,6 +356,20 @@ async def _sync_pull_requests(self) -> int: async with get_session(self._tenant_id) as session: since = await _get_watermark(session, self._tenant_id, "pull_requests") + # Build issue-key lookup for PR linking. Loading all issue external_ids + # from the tenant is cheap (~30k strings) and lets us link each batch + # without re-querying per PR. Assumes _sync_issues() ran earlier in the + # cycle — if not, linking falls back to an empty map (no-op). + async with get_session(self._tenant_id) as session: + result = await session.execute( + select(EngIssue.external_id).where(EngIssue.tenant_id == self._tenant_id) + ) + issue_external_ids = [row[0] for row in result.all()] + issue_key_map = build_issue_key_map(issue_external_ids) + logger.info( + "PR linking enabled with %d issue keys indexed", len(issue_key_map), + ) + # Discover total sources (repos) for progress tracking total_sources = 0 try: @@ -414,6 +432,10 @@ async def _sync_pull_requests(self) -> int: repos_done += 1 continue + # Populate linked_issue_ids by scanning title + branch refs + # against the tenant's issue-key index. + apply_pr_issue_links(normalized, issue_key_map) + # Upsert this batch to DB immediately batch_count = await self._upsert_pull_requests(normalized) total_count += batch_count diff --git a/pulse/packages/pulse-data/tests/unit/connectors/test_jira_connector.py b/pulse/packages/pulse-data/tests/unit/connectors/test_jira_connector.py index f08584b..3eed23b 100644 --- a/pulse/packages/pulse-data/tests/unit/connectors/test_jira_connector.py +++ b/pulse/packages/pulse-data/tests/unit/connectors/test_jira_connector.py @@ -44,14 +44,21 @@ def _make_connector(projects: list[str] | None = None) -> JiraConnector: - """Instantiate JiraConnector with test credentials, bypassing settings.""" - return JiraConnector( + """Instantiate JiraConnector with test credentials, bypassing settings. + + Custom-field discovery is pre-marked as complete so tests that call + fetch_issues() don't hit the /rest/api/3/field endpoint — individual + tests targeting discovery can flip _custom_fields_discovered back. + """ + conn = JiraConnector( base_url=BASE_URL, email=EMAIL, api_token=TOKEN, projects=projects if projects is not None else PROJECTS, connection_id=CONN_ID, ) + conn._custom_fields_discovered = True + return conn def _jira_issue( @@ -356,13 +363,17 @@ async def test_fetch_issues_body_fields_is_list(self) -> None: body = connector._client.post.call_args[1]["json_body"] assert isinstance(body["fields"], list) - # Spot-check expected fields from SEARCH_FIELDS constant + # Spot-check expected base fields + custom-field fallbacks assert "summary" in body["fields"] assert "status" in body["fields"] + # Fallback story points / sprint custom field IDs must always be present assert "customfield_10028" in body["fields"] + assert "customfield_10016" in body["fields"] + assert "customfield_10020" in body["fields"] @pytest.mark.asyncio - async def test_fetch_issues_fields_equal_search_fields_constant(self) -> None: + async def test_fetch_issues_fields_include_search_fields_constant(self) -> None: + """Base SEARCH_FIELDS are always present (custom fields appended).""" connector = _make_connector(projects=["BACK"]) connector._client = AsyncMock() connector._client.post.return_value = {"issues": []} @@ -370,7 +381,8 @@ async def test_fetch_issues_fields_equal_search_fields_constant(self) -> None: await connector.fetch_issues() body = connector._client.post.call_args[1]["json_body"] - assert body["fields"] == SEARCH_FIELDS + for base_field in SEARCH_FIELDS: + assert base_field in body["fields"] @pytest.mark.asyncio async def test_fetch_issues_first_page_has_no_next_page_token(self) -> None: @@ -567,13 +579,21 @@ def test_map_issue_story_points_none_when_all_missing(self) -> None: result = connector._map_issue(issue) assert result["story_point"] is None - def test_map_issue_story_points_prefers_story_points_over_customfield(self) -> None: - """Primary field wins over fallbacks.""" + def test_map_issue_story_points_prefers_discovered_field(self) -> None: + """Discovered custom field ID wins over all fallbacks. + + Note: the `fields.story_points` alias is a legacy last-resort — Jira + Cloud always exposes story points as a custom field. Whichever custom + field the tenant uses is what we must read, which is why discovery + takes precedence. + """ connector = _make_connector() + connector._story_points_field_id = "customfield_10016" issue = _jira_issue(story_points=5.0) + issue["fields"]["customfield_10016"] = 13.0 issue["fields"]["customfield_10028"] = 99.0 result = connector._map_issue(issue) - assert result["story_point"] == 5.0 + assert result["story_point"] == 13.0 # ----------------------------------------------------------------------- # _map_issue — sprint ID extraction @@ -1405,3 +1425,115 @@ def test_map_sprint_issue_result_does_not_contain_individual_scores(self) -> Non "productivity_score", "individual_rank", } assert not prohibited_keys.intersection(result.keys()) + + # ----------------------------------------------------------------------- + # Custom-field discovery + extraction + # ----------------------------------------------------------------------- + + @pytest.mark.asyncio + async def test_discover_custom_fields_matches_by_name(self) -> None: + """Finds the sprint + story points fields by their Jira field name.""" + connector = _make_connector() + connector._custom_fields_discovered = False # force discovery + connector._client = AsyncMock() + connector._client.get.return_value = [ + {"id": "customfield_10020", "name": "Sprint"}, + {"id": "customfield_10016", "name": "Story Points"}, + {"id": "customfield_10099", "name": "Epic Link"}, + ] + + await connector._discover_custom_fields() + + assert connector._sprint_field_id == "customfield_10020" + assert connector._story_points_field_id == "customfield_10016" + assert connector._custom_fields_discovered is True + + @pytest.mark.asyncio + async def test_discover_custom_fields_handles_api_error(self) -> None: + connector = _make_connector() + connector._custom_fields_discovered = False + connector._client = AsyncMock() + connector._client.get.side_effect = RuntimeError("boom") + + await connector._discover_custom_fields() + + # Falls back silently — fallbacks handle extraction + assert connector._custom_fields_discovered is True + assert connector._sprint_field_id is None + + @pytest.mark.asyncio + async def test_discover_custom_fields_runs_only_once(self) -> None: + connector = _make_connector() + connector._custom_fields_discovered = False + connector._client = AsyncMock() + connector._client.get.return_value = [] + + await connector._discover_custom_fields() + await connector._discover_custom_fields() + + assert connector._client.get.call_count == 1 + + def test_extract_sprint_id_prefers_active_sprint(self) -> None: + connector = _make_connector() + connector._sprint_field_id = "customfield_10020" + fields = { + "customfield_10020": [ + {"id": 1, "state": "closed"}, + {"id": 2, "state": "active"}, + {"id": 3, "state": "future"}, + ] + } + assert connector._extract_sprint_id(fields) == "jira:JiraSprint:1:2" + + def test_extract_sprint_id_falls_back_to_last_when_none_active(self) -> None: + connector = _make_connector() + connector._sprint_field_id = "customfield_10020" + fields = { + "customfield_10020": [ + {"id": 10, "state": "closed"}, + {"id": 20, "state": "closed"}, + ] + } + assert connector._extract_sprint_id(fields) == "jira:JiraSprint:1:20" + + def test_extract_sprint_id_uses_fallback_customfield(self) -> None: + """When discovery failed, tries fallback IDs (customfield_10020, 10010).""" + connector = _make_connector() + connector._sprint_field_id = None + fields = {"customfield_10020": [{"id": 77, "state": "active"}]} + assert connector._extract_sprint_id(fields) == "jira:JiraSprint:1:77" + + def test_extract_sprint_id_returns_none_when_missing(self) -> None: + connector = _make_connector() + assert connector._extract_sprint_id({}) is None + assert connector._extract_sprint_id({"customfield_10020": []}) is None + assert connector._extract_sprint_id({"customfield_10020": None}) is None + + def test_extract_sprint_id_handles_legacy_dict_shape(self) -> None: + connector = _make_connector() + connector._sprint_field_id = "customfield_10020" + fields = {"customfield_10020": {"id": 99}} + assert connector._extract_sprint_id(fields) == "jira:JiraSprint:1:99" + + def test_extract_story_points_prefers_discovered_field(self) -> None: + connector = _make_connector() + connector._story_points_field_id = "customfield_10016" + fields = {"customfield_10016": 8, "customfield_10028": 3} + assert connector._extract_story_points(fields) == 8.0 + + def test_extract_story_points_falls_back_to_known_ids(self) -> None: + connector = _make_connector() + connector._story_points_field_id = None + fields = {"customfield_10028": 5} + assert connector._extract_story_points(fields) == 5.0 + + def test_extract_story_points_returns_none_when_missing(self) -> None: + connector = _make_connector() + assert connector._extract_story_points({}) is None + + def test_extract_story_points_ignores_non_numeric(self) -> None: + connector = _make_connector() + connector._story_points_field_id = "customfield_10016" + fields = {"customfield_10016": "not a number", "customfield_10028": 2} + # Falls through to next candidate after failing to parse + assert connector._extract_story_points(fields) == 2.0 diff --git a/pulse/packages/pulse-data/tests/unit/test_normalizer.py b/pulse/packages/pulse-data/tests/unit/test_normalizer.py index 6a74bb1..5b42dec 100644 --- a/pulse/packages/pulse-data/tests/unit/test_normalizer.py +++ b/pulse/packages/pulse-data/tests/unit/test_normalizer.py @@ -21,6 +21,8 @@ import pytest from src.contexts.engineering_data.normalizer import ( + apply_pr_issue_links, + build_issue_key_map, link_issues_to_prs, normalize_deployment, normalize_issue, @@ -913,3 +915,88 @@ def test_aborted_build_is_not_failure(self, sample_jenkins_deployment_raw: dict) aborted = {**sample_jenkins_deployment_raw, "result": "ABORTED"} result = normalize_deployment(aborted, TENANT_ID) assert result["is_failure"] is False + + +# --------------------------------------------------------------------------- +# PR-to-issue linking helpers +# --------------------------------------------------------------------------- + + +class TestBuildIssueKeyMap: + def test_extracts_key_from_external_id(self) -> None: + result = build_issue_key_map([ + "jira:JiraIssue:1:ANCR-1234", + "jira:JiraIssue:1:DESC-42", + ]) + assert result["ANCR-1234"] == "jira:JiraIssue:1:ANCR-1234" + assert result["DESC-42"] == "jira:JiraIssue:1:DESC-42" + + def test_keys_are_uppercased(self) -> None: + # Regex matches case-insensitive; map stores uppercase + result = build_issue_key_map(["jira:JiraIssue:1:ancr-7"]) + assert "ANCR-7" in result + + def test_ignores_malformed_ids(self) -> None: + result = build_issue_key_map(["no-key-here", "", None]) # type: ignore[list-item] + assert result == {} + + def test_handles_empty_input(self) -> None: + assert build_issue_key_map([]) == {} + + +class TestApplyPrIssueLinks: + def test_links_from_title(self) -> None: + prs = [{"title": "ANCR-1234 fix login bug"}] + key_map = {"ANCR-1234": "jira:JiraIssue:1:ANCR-1234"} + count = apply_pr_issue_links(prs, key_map) + assert count == 1 + assert prs[0]["linked_issue_ids"] == ["jira:JiraIssue:1:ANCR-1234"] + + def test_links_from_head_ref(self) -> None: + prs = [{"title": "fix bug", "_head_ref": "feature/DESC-42-login"}] + key_map = {"DESC-42": "jira:JiraIssue:1:DESC-42"} + apply_pr_issue_links(prs, key_map) + assert prs[0]["linked_issue_ids"] == ["jira:JiraIssue:1:DESC-42"] + + def test_multiple_keys_in_same_pr(self) -> None: + prs = [{"title": "ANCR-1 and ANCR-2 together"}] + key_map = { + "ANCR-1": "jira:JiraIssue:1:ANCR-1", + "ANCR-2": "jira:JiraIssue:1:ANCR-2", + } + apply_pr_issue_links(prs, key_map) + assert set(prs[0]["linked_issue_ids"]) == { + "jira:JiraIssue:1:ANCR-1", + "jira:JiraIssue:1:ANCR-2", + } + + def test_deduplicates_repeated_key(self) -> None: + prs = [{"title": "ANCR-1 ANCR-1 again", "_head_ref": "ancr-1-branch"}] + key_map = {"ANCR-1": "jira:JiraIssue:1:ANCR-1"} + apply_pr_issue_links(prs, key_map) + assert prs[0]["linked_issue_ids"] == ["jira:JiraIssue:1:ANCR-1"] + + def test_unknown_key_not_linked(self) -> None: + prs = [{"title": "NOPE-999 fix"}] + key_map = {"ANCR-1": "jira:JiraIssue:1:ANCR-1"} + apply_pr_issue_links(prs, key_map) + # No linked ids set (or empty) — either is acceptable, but not a wrong link + assert prs[0].get("linked_issue_ids", []) == [] + + def test_empty_key_map_is_noop(self) -> None: + prs = [{"title": "ANCR-1 x"}] + count = apply_pr_issue_links(prs, {}) + assert count == 0 + + def test_returns_linked_pr_count(self) -> None: + prs = [ + {"title": "ANCR-1 fix"}, + {"title": "no key here"}, + {"title": "ANCR-2 feat"}, + ] + key_map = { + "ANCR-1": "jira:JiraIssue:1:ANCR-1", + "ANCR-2": "jira:JiraIssue:1:ANCR-2", + } + count = apply_pr_issue_links(prs, key_map) + assert count == 2 From 1f9ac52aa8cb9175d1344ac01a9cb338c0af6338 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 14:17:52 -0300 Subject: [PATCH 12/64] =?UTF-8?q?feat(jira):=20add=20issue=5Fkey=20column?= =?UTF-8?q?=20to=20unblock=20PR=E2=86=94issue=20linking?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Jira's external_id is the internal numeric ID (e.g. "792543"), not the human-readable key (e.g. "SECOM-1441"). PR titles/branches reference the key, so linking was impossible without storing it explicitly. - Migration 005: add eng_issues.issue_key VARCHAR(128) + composite index on (tenant_id, issue_key) - Normalizer writes issue_key from connector output - Worker's UPSERT refreshes issue_key on re-sync - build_issue_key_map rewritten to accept (issue_key, external_id) tuples, falling back to regex-on-external_id for legacy rows - relink_prs_to_issues.sql now prefers the column, falls back to regex Also fixes migration 004 down_revision (was "003", should be "003_pipeline_events") which blocked alembic from applying subsequent migrations. Discovery confirmed in prod: Webmotors Jira uses customfield_10007 (sprint) and customfield_18524 (story points) — neither in the fallback list, so dynamic discovery was essential. Co-Authored-By: Claude Opus 4.6 --- .../versions/004_ingestion_progress.py | 2 +- .../alembic/versions/005_issue_key.py | 36 +++++++++++++++++++ .../scripts/relink_prs_to_issues.sql | 10 ++++-- .../src/contexts/engineering_data/models.py | 4 +++ .../contexts/engineering_data/normalizer.py | 20 ++++++++--- .../pulse-data/src/workers/devlake_sync.py | 8 +++-- .../pulse-data/tests/unit/test_normalizer.py | 28 ++++++++++----- 7 files changed, 89 insertions(+), 19 deletions(-) create mode 100644 pulse/packages/pulse-data/alembic/versions/005_issue_key.py diff --git a/pulse/packages/pulse-data/alembic/versions/004_ingestion_progress.py b/pulse/packages/pulse-data/alembic/versions/004_ingestion_progress.py index 91e7446..b9ad27e 100644 --- a/pulse/packages/pulse-data/alembic/versions/004_ingestion_progress.py +++ b/pulse/packages/pulse-data/alembic/versions/004_ingestion_progress.py @@ -11,7 +11,7 @@ revision = "004" -down_revision = "003" +down_revision = "003_pipeline_events" branch_labels = None depends_on = None diff --git a/pulse/packages/pulse-data/alembic/versions/005_issue_key.py b/pulse/packages/pulse-data/alembic/versions/005_issue_key.py new file mode 100644 index 0000000..4a63a4d --- /dev/null +++ b/pulse/packages/pulse-data/alembic/versions/005_issue_key.py @@ -0,0 +1,36 @@ +"""Add issue_key column to eng_issues for PR linking. + +Revision ID: 005 +Revises: 004 +Create Date: 2026-04-13 + +The external_id for Jira issues is the internal numeric ID (e.g. "792543"), +not the human-readable key (e.g. "SECOM-1441"). PR titles/branches reference +the key, so linking PRs to issues requires storing the key explicitly. +""" + +from alembic import op +import sqlalchemy as sa + + +revision = "005" +down_revision = "004" +branch_labels = None +depends_on = None + + +def upgrade() -> None: + op.add_column( + "eng_issues", + sa.Column("issue_key", sa.String(128), nullable=True), + ) + op.create_index( + "ix_eng_issues_issue_key", + "eng_issues", + ["tenant_id", "issue_key"], + ) + + +def downgrade() -> None: + op.drop_index("ix_eng_issues_issue_key", table_name="eng_issues") + op.drop_column("eng_issues", "issue_key") diff --git a/pulse/packages/pulse-data/scripts/relink_prs_to_issues.sql b/pulse/packages/pulse-data/scripts/relink_prs_to_issues.sql index 974130f..a899d71 100644 --- a/pulse/packages/pulse-data/scripts/relink_prs_to_issues.sql +++ b/pulse/packages/pulse-data/scripts/relink_prs_to_issues.sql @@ -34,11 +34,17 @@ WITH pr_keys AS ( ) AS m ), issue_keys AS ( + -- Prefer the explicit issue_key column (populated since migration 005). + -- Fallback to external_id regex for legacy rows or non-Jira sources. SELECT external_id, - UPPER(SUBSTRING(external_id FROM '([A-Z][A-Z0-9]+-[0-9]+)')) AS issue_key + UPPER(COALESCE( + issue_key, + SUBSTRING(external_id FROM '([A-Z][A-Z0-9]+-[0-9]+)') + )) AS issue_key FROM eng_issues - WHERE external_id ~ '[A-Z][A-Z0-9]+-[0-9]+' + WHERE issue_key IS NOT NULL + OR external_id ~ '[A-Z][A-Z0-9]+-[0-9]+' ), matches AS ( SELECT DISTINCT pk.pr_id, ik.external_id diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/models.py b/pulse/packages/pulse-data/src/contexts/engineering_data/models.py index 533a698..ed98409 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/models.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/models.py @@ -87,6 +87,10 @@ class EngIssue(TenantModel): external_id: Mapped[str] = mapped_column(String(512), nullable=False, index=True) source: Mapped[str] = mapped_column(String(32), nullable=False) # jira | linear | azure project_key: Mapped[str] = mapped_column(String(128), nullable=False) + # Human-readable issue key (e.g. "SECOM-1441"). Distinct from external_id, + # which is the internal source ID (numeric for Jira). Used by PR linker + # to match title/branch references back to issues. + issue_key: Mapped[str | None] = mapped_column(String(128), nullable=True, index=True) title: Mapped[str] = mapped_column(Text, nullable=False) issue_type: Mapped[str] = mapped_column(String(64), nullable=False) # bug | story | task | epic status: Mapped[str] = mapped_column(String(128), nullable=False) # raw status from source diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py index c50c61a..429415d 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py @@ -358,6 +358,7 @@ def normalize_issue( "tenant_id": tenant_id, "source": _detect_source(devlake_issue), "project_key": project_key, + "issue_key": (issue_key or None), "title": devlake_issue.get("title", ""), "issue_type": issue_type, "status": raw_status, @@ -500,21 +501,32 @@ def normalize_sprint( } -def build_issue_key_map(external_ids: list[str]) -> dict[str, str]: +def build_issue_key_map( + issue_rows: list[tuple[str | None, str]], +) -> dict[str, str]: """Build a dict mapping issue key (e.g. 'ANCR-1234') to external_id. Used by the PR linking step to avoid re-extracting keys on every batch. Args: - external_ids: List of issue external_id strings (from eng_issues). + issue_rows: List of (issue_key, external_id) tuples from eng_issues. + issue_key may be None for legacy rows — in that case, the function + falls back to regex-extracting a key from the external_id (works + only for sources where external_id contains the key; Jira numeric + IDs will be skipped). Returns: - Dict {"ANCR-1234": "jira:JiraIssue:1:ANCR-1234", ...} — keys uppercased. + Dict {"ANCR-1234": "jira:JiraIssue:1:792543", ...} — keys uppercased. """ key_map: dict[str, str] = {} - for ext_id in external_ids: + for issue_key, ext_id in issue_rows: if not ext_id: continue + # Prefer the explicit issue_key column (populated since migration 005) + if issue_key: + key_map[issue_key.upper()] = ext_id + continue + # Fallback: extract from external_id for non-Jira sources or legacy rows match = ISSUE_KEY_PATTERN.search(ext_id) if match: key_map[match.group(1).upper()] = ext_id diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 4a50ad6..761568e 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -362,10 +362,11 @@ async def _sync_pull_requests(self) -> int: # cycle — if not, linking falls back to an empty map (no-op). async with get_session(self._tenant_id) as session: result = await session.execute( - select(EngIssue.external_id).where(EngIssue.tenant_id == self._tenant_id) + select(EngIssue.issue_key, EngIssue.external_id) + .where(EngIssue.tenant_id == self._tenant_id) ) - issue_external_ids = [row[0] for row in result.all()] - issue_key_map = build_issue_key_map(issue_external_ids) + issue_rows = [(row[0], row[1]) for row in result.all()] + issue_key_map = build_issue_key_map(issue_rows) logger.info( "PR linking enabled with %d issue keys indexed", len(issue_key_map), ) @@ -677,6 +678,7 @@ async def _upsert_issues(self, issues: list[dict[str, Any]]) -> int: index_elements=["tenant_id", "external_id"], set_={ "issue_type": issue_data["issue_type"], + "issue_key": issue_data.get("issue_key"), "status": issue_data["status"], "normalized_status": issue_data["normalized_status"], "assignee": issue_data["assignee"], diff --git a/pulse/packages/pulse-data/tests/unit/test_normalizer.py b/pulse/packages/pulse-data/tests/unit/test_normalizer.py index 5b42dec..b527f58 100644 --- a/pulse/packages/pulse-data/tests/unit/test_normalizer.py +++ b/pulse/packages/pulse-data/tests/unit/test_normalizer.py @@ -923,21 +923,31 @@ def test_aborted_build_is_not_failure(self, sample_jenkins_deployment_raw: dict) class TestBuildIssueKeyMap: - def test_extracts_key_from_external_id(self) -> None: + def test_uses_explicit_issue_key_column(self) -> None: + """When issue_key is provided, it's used directly (no regex needed).""" result = build_issue_key_map([ - "jira:JiraIssue:1:ANCR-1234", - "jira:JiraIssue:1:DESC-42", + ("ANCR-1234", "jira:JiraIssue:1:792543"), + ("DESC-42", "jira:JiraIssue:1:792544"), ]) - assert result["ANCR-1234"] == "jira:JiraIssue:1:ANCR-1234" - assert result["DESC-42"] == "jira:JiraIssue:1:DESC-42" + assert result["ANCR-1234"] == "jira:JiraIssue:1:792543" + assert result["DESC-42"] == "jira:JiraIssue:1:792544" def test_keys_are_uppercased(self) -> None: - # Regex matches case-insensitive; map stores uppercase - result = build_issue_key_map(["jira:JiraIssue:1:ancr-7"]) + result = build_issue_key_map([("ancr-7", "jira:JiraIssue:1:100")]) assert "ANCR-7" in result + assert result["ANCR-7"] == "jira:JiraIssue:1:100" - def test_ignores_malformed_ids(self) -> None: - result = build_issue_key_map(["no-key-here", "", None]) # type: ignore[list-item] + def test_falls_back_to_external_id_regex_when_key_missing(self) -> None: + """Legacy rows pre-migration 005 have issue_key=NULL; extract from id.""" + result = build_issue_key_map([(None, "github:Issue:FOO-99")]) + assert result == {"FOO-99": "github:Issue:FOO-99"} + + def test_skips_rows_with_neither_key_nor_extractable_id(self) -> None: + result = build_issue_key_map([(None, "jira:JiraIssue:1:792543")]) + assert result == {} + + def test_ignores_empty_external_id(self) -> None: + result = build_issue_key_map([("ANCR-1", "")]) assert result == {} def test_handles_empty_input(self) -> None: From c243a879b595ac22facd070b5091de113004b363 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 15:44:58 -0300 Subject: [PATCH 13/64] feat(jira): foundation for dynamic project discovery (ADR-014) Phase 0 of the hybrid 4-mode discovery model that replaces the static JIRA_PROJECTS env var with a per-tenant catalog + governance layer. - ADR-014: context, decision, modes (auto/allowlist/blocklist/smart), rollback via DYNAMIC_JIRA_DISCOVERY_ENABLED flag. - Migration 006_jira_discovery: tenant_jira_config, jira_project_catalog, jira_discovery_audit (append-only via PG RULEs), RLS policies matching the 001_initial_engineering_schema pattern, named unique constraint for safe ON CONFLICT (lesson from the 004 constraint-rename incident). - Portable bootstrap: discovers tenants via to_regclass checks across tenants / integration_connections / iam_organizations / eng_issues so the migration works in single-tenant dev and multi-tenant prod without env-specific branches. Seeds current JIRA_PROJECTS as activation_source 'env_bootstrap' for zero-downtime migration. - pulse-shared types for the admin API + UI surface. Applied live (005 -> 006_jira_discovery); dev tenant seeded with the 8 existing projects at status=active. Backend core (discovery service, mode resolver, guardrails, scheduler) follows in next commits. Co-Authored-By: Claude Opus 4.6 --- .../014-dynamic-jira-project-discovery.md | 91 +++++ .../alembic/versions/006_jira_discovery.py | 339 ++++++++++++++++++ pulse/packages/pulse-shared/src/index.ts | 23 ++ .../pulse-shared/src/types/jira-admin.ts | 196 ++++++++++ 4 files changed, 649 insertions(+) create mode 100644 pulse/docs/adrs/014-dynamic-jira-project-discovery.md create mode 100644 pulse/packages/pulse-data/alembic/versions/006_jira_discovery.py create mode 100644 pulse/packages/pulse-shared/src/types/jira-admin.ts diff --git a/pulse/docs/adrs/014-dynamic-jira-project-discovery.md b/pulse/docs/adrs/014-dynamic-jira-project-discovery.md new file mode 100644 index 0000000..4483227 --- /dev/null +++ b/pulse/docs/adrs/014-dynamic-jira-project-discovery.md @@ -0,0 +1,91 @@ +# ADR-014: Dynamic Jira Project Discovery (Hybrid 4-Mode) + +- **Status:** Accepted +- **Date:** 2026-04-13 +- **Deciders:** Main session (orchestrator) + pulse-data-engineer + pulse-ciso + pulse-product-director +- **Supersedes:** Static `JIRA_PROJECTS` env-var scope configuration +- **Related:** ADR-005 (DevLake vs custom), ADR-011 (metadata-only security), ADR-002 (RLS multi-tenancy) + +--- + +## Context + +PULSE currently scopes Jira ingestion via a static `JIRA_PROJECTS` env var (comma-separated project keys). This was acceptable during single-tenant bootstrap but has become a hard blocker for: + +1. **SaaS onboarding velocity.** Every new tenant requires manual project list curation, re-deploy of `.env`, and operator coordination. This breaks the "connect and see data in minutes" value proposition. +2. **Link-rate ceiling on PR↔Issue correlation.** Analysis of Webmotors data (63,447 PRs) showed 15,475 PRs (24.4%) reference Jira keys in titles, but only 3,220 (5.1%) linked successfully — because ~20 referenced projects (CKP, SECOM, BG, OKM, ESTQ, PF, SALES, APPJ, CRW, SDI, DSP, CRMC, INTG, AFDEV, MONEY, PJUN, FACIL, ENO…) were never in the static list. Keeping the list updated is ops toil that will never converge. +3. **Governance drift.** Teams create new Jira projects continuously; operators lack visibility into what's missing without querying Jira manually. +4. **Product positioning.** Competitors (LinearB, Jellyfish) require explicit project configuration. A "self-discovering engineering platform" is a clear differentiator. + +## Decision + +Adopt a **hybrid dynamic project discovery model** with 4 operational modes, persisted per tenant, with guardrails and admin UI. + +### Modes + +| Mode | Behavior | Use case | +|---|---|---| +| `auto` | All discovered projects are active by default; blocklist overrides | SMB self-serve, low-friction onboarding | +| `allowlist` | Only explicitly approved projects sync; discovery populates catalog as `discovered` requiring human approval | Regulated industries, enterprise with governance | +| `blocklist` | All discovered projects active except those explicitly blocked | Mid-market, operator-driven | +| `smart` | Auto-activates projects referenced by ≥N PRs in lookback window; remainder stays `discovered` | Default recommendation for engineering-centric teams | + +### Architecture + +- **New tables:** `tenant_jira_config`, `jira_project_catalog`, `jira_discovery_audit` (RLS-enforced, audit immutable). +- **New worker:** `discovery-worker` runs scheduled `ProjectDiscoveryService` per tenant, populates catalog. +- **New resolver:** `ModeResolver.resolve_active_projects(tenant_id)` replaces all reads of `settings.jira_project_list` in sync paths. +- **Guardrails:** rate budget per tenant (Redis token bucket), hard cap on active projects, auto-pause after 5 consecutive failures, blocklist precedence. +- **Admin API + UI:** `/api/v1/admin/integrations/jira/*` + `/settings/integrations/jira` route, RBAC-gated to `tenant_admin` role. +- **Feature flag** `DYNAMIC_JIRA_DISCOVERY_ENABLED` enables blue-green rollout; env var remains as bootstrap fallback for 2 releases. + +## Consequences + +### Positive +- Self-serve SaaS onboarding unlocked (competitive moat). +- PR↔Issue link rate projected to rise from 5% → 25-30% at steady state by covering all referenced projects. +- Auto-adapts to org changes (new projects, team splits, mergers). +- Governance-grade audit trail (SOC 2 ready). +- Architectural pattern reusable for GitHub repos, Jenkins jobs, GitLab projects (next iterations). + +### Negative / Costs +- Added complexity: 3 new tables, 1 new worker, new service layer, new UI surface. +- Privacy risk in `auto` mode if tenant has sensitive Jira projects (HR, legal, finance) — mitigated by default `allowlist`, PII regex warnings on discovery, explicit blocklist. +- Variable ingestion cost per tenant (harder to quote pricing upfront) — mitigated by `max_active_projects` hard cap and admin-visible metrics. +- Additional Jira API surface (`/rest/api/3/project/search`) — mitigated by rate-limited discovery schedule (default daily 03:00 UTC). + +### Rollback plan +Feature flag `DYNAMIC_JIRA_DISCOVERY_ENABLED=false` reverts sync workers to reading `JIRA_PROJECTS` env var. Catalog data persists harmlessly; no data migration required for rollback. + +## Alternatives Considered + +### A1 — Keep static list, expand manually (Option 1 in plan) +**Rejected.** Ops toil, drift-prone, doesn't scale in multi-tenant SaaS. Works for 1 tenant, breaks at 10. + +### A2 — Pure auto-discovery (no modes, no governance) +**Rejected.** Ignores privacy/compliance requirements. A bank client would not tolerate automatic ingestion of an "HR-Confidential" Jira project. Governance is non-negotiable. + +### A3 — DevLake-native project discovery +**Rejected per ADR-005.** We migrated off DevLake for Jira ingestion; adding a DevLake dependency back contradicts that decision. + +### A4 — Per-project cron configs (config file) +**Rejected.** Still requires ops intervention, doesn't solve multi-tenant, doesn't solve drift. + +## Implementation + +Detailed phased plan tracked in: `packages/pulse-data/src/contexts/integrations/jira/discovery/` + branch `feat/jira-dynamic-discovery`. + +**Phases:** +0. Foundation (migration, shared types, this ADR) +1. Backend core (discovery service, mode resolver, guardrails, scheduler) +2. API + UI (admin endpoints, settings page) +3. Security + QA (CISO review, integration/E2E/load tests) +4. Rollout (shadow → cutover → deprecate env var) + +## Acceptance Gates + +- Migration 006 preserves existing tenant state (bootstrap from env var). +- `SmartPrioritizer` identifies ≥18 candidate projects from current Webmotors PR scan. +- RLS + RBAC verified by pulse-ciso. +- Link rate measured before/after cutover; target ≥20% improvement. +- Feature flag tested in staging for minimum 7 days before prod cutover. diff --git a/pulse/packages/pulse-data/alembic/versions/006_jira_discovery.py b/pulse/packages/pulse-data/alembic/versions/006_jira_discovery.py new file mode 100644 index 0000000..2ee5901 --- /dev/null +++ b/pulse/packages/pulse-data/alembic/versions/006_jira_discovery.py @@ -0,0 +1,339 @@ +"""Dynamic Jira project discovery tables (ADR-014). + +Creates tenant_jira_config, jira_project_catalog, jira_discovery_audit. +Enables RLS on all three. Bootstraps existing tenants from JIRA_PROJECTS env var. + +Revision ID: 006_jira_discovery +Revises: 005 +Create Date: 2026-04-13 +""" + +import os +from typing import Sequence, Union + +from alembic import op +import sqlalchemy as sa +from sqlalchemy.dialects.postgresql import JSONB, UUID + + +revision: str = "006_jira_discovery" +down_revision: Union[str, None] = "005" +branch_labels: Union[str, Sequence[str], None] = None +depends_on: Union[str, Sequence[str], None] = None + +# --------------------------------------------------------------------------- +# Tables created by this migration +# --------------------------------------------------------------------------- +ALL_TABLES = [ + "tenant_jira_config", + "jira_project_catalog", + "jira_discovery_audit", +] + + +# --------------------------------------------------------------------------- +# RLS helpers — identical pattern to 001_initial_engineering_schema +# --------------------------------------------------------------------------- +def _enable_rls(table: str) -> None: + """Enable RLS and create SELECT / INSERT / UPDATE / DELETE policies.""" + op.execute(f'ALTER TABLE "{table}" ENABLE ROW LEVEL SECURITY') + + for action, clause in [ + ("SELECT", "USING"), + ("INSERT", "WITH CHECK"), + ("UPDATE", "USING"), + ("DELETE", "USING"), + ]: + op.execute( + f""" + CREATE POLICY "{table}_{action.lower()}_tenant" ON "{table}" + FOR {action} {clause} ( + "tenant_id" = current_setting('app.current_tenant')::uuid + ); + """ + ) + + +def _drop_rls(table: str) -> None: + """Drop all RLS policies and disable RLS for a table.""" + for action in ("select", "insert", "update", "delete"): + op.execute(f'DROP POLICY IF EXISTS "{table}_{action}_tenant" ON "{table}"') + op.execute(f'ALTER TABLE "{table}" DISABLE ROW LEVEL SECURITY') + + +def upgrade() -> None: + # ------------------------------------------------------------------ + # 1. tenant_jira_config — per-tenant discovery configuration + # ------------------------------------------------------------------ + op.create_table( + "tenant_jira_config", + sa.Column("tenant_id", UUID(as_uuid=True), primary_key=True), + sa.Column( + "mode", + sa.String(16), + nullable=False, + server_default="allowlist", + ), + sa.Column("discovery_enabled", sa.Boolean, nullable=False, server_default="true"), + sa.Column( + "discovery_schedule_cron", + sa.String(64), + nullable=False, + server_default="0 3 * * *", + ), + sa.Column("max_active_projects", sa.Integer, nullable=False, server_default="100"), + sa.Column("max_issues_per_hour", sa.Integer, nullable=False, server_default="20000"), + sa.Column("smart_pr_scan_days", sa.Integer, nullable=False, server_default="90"), + sa.Column("smart_min_pr_references", sa.Integer, nullable=False, server_default="3"), + sa.Column("last_discovery_at", sa.DateTime(timezone=True), nullable=True), + sa.Column("last_discovery_status", sa.String(16), nullable=True), + sa.Column("last_discovery_error", sa.Text, nullable=True), + sa.Column( + "created_at", + sa.DateTime(timezone=True), + server_default=sa.text("now()"), + nullable=False, + ), + sa.Column( + "updated_at", + sa.DateTime(timezone=True), + server_default=sa.text("now()"), + nullable=False, + ), + sa.CheckConstraint( + "mode IN ('auto','allowlist','blocklist','smart')", + name="ck_tenant_jira_config_mode", + ), + ) + + # ------------------------------------------------------------------ + # 2. jira_project_catalog — discovered / active projects per tenant + # ------------------------------------------------------------------ + op.create_table( + "jira_project_catalog", + sa.Column( + "id", + UUID(as_uuid=True), + primary_key=True, + server_default=sa.text("gen_random_uuid()"), + ), + sa.Column("tenant_id", UUID(as_uuid=True), nullable=False), + sa.Column("project_key", sa.String(64), nullable=False), + sa.Column("project_id", sa.String(64), nullable=True), + sa.Column("name", sa.String(255), nullable=True), + sa.Column("project_type", sa.String(32), nullable=True), + sa.Column("lead_account_id", sa.String(128), nullable=True), + sa.Column( + "status", + sa.String(16), + nullable=False, + server_default="discovered", + ), + sa.Column("activation_source", sa.String(32), nullable=True), + sa.Column("issue_count", sa.Integer, server_default="0"), + sa.Column("pr_reference_count", sa.Integer, server_default="0"), + sa.Column( + "first_seen_at", + sa.DateTime(timezone=True), + server_default=sa.text("now()"), + nullable=False, + ), + sa.Column("activated_at", sa.DateTime(timezone=True), nullable=True), + sa.Column("last_sync_at", sa.DateTime(timezone=True), nullable=True), + sa.Column("last_sync_status", sa.String(16), nullable=True), + sa.Column("consecutive_failures", sa.Integer, nullable=False, server_default="0"), + sa.Column("last_error", sa.Text, nullable=True), + sa.Column("metadata", JSONB, nullable=False, server_default=sa.text("'{}'::jsonb")), + sa.Column( + "created_at", + sa.DateTime(timezone=True), + server_default=sa.text("now()"), + nullable=False, + ), + sa.Column( + "updated_at", + sa.DateTime(timezone=True), + server_default=sa.text("now()"), + nullable=False, + ), + sa.CheckConstraint( + "status IN ('discovered','active','paused','blocked','archived')", + name="ck_jira_project_catalog_status", + ), + ) + + # Named unique constraint so ON CONFLICT ON CONSTRAINT works reliably + op.create_unique_constraint( + "uq_jira_catalog_tenant_key", + "jira_project_catalog", + ["tenant_id", "project_key"], + ) + + op.create_index( + "ix_jira_catalog_tenant_status", + "jira_project_catalog", + ["tenant_id", "status"], + ) + op.create_index( + "ix_jira_catalog_tenant_prrefs", + "jira_project_catalog", + ["tenant_id", sa.text("pr_reference_count DESC")], + ) + + # ------------------------------------------------------------------ + # 3. jira_discovery_audit — append-only audit log + # ------------------------------------------------------------------ + op.create_table( + "jira_discovery_audit", + sa.Column( + "id", + UUID(as_uuid=True), + primary_key=True, + server_default=sa.text("gen_random_uuid()"), + ), + sa.Column("tenant_id", UUID(as_uuid=True), nullable=False), + sa.Column("event_type", sa.String(32), nullable=False), + sa.Column("project_key", sa.String(64), nullable=True), + sa.Column("actor", sa.String(128), nullable=True), + sa.Column("before_value", JSONB, nullable=True), + sa.Column("after_value", JSONB, nullable=True), + sa.Column("reason", sa.Text, nullable=True), + sa.Column( + "created_at", + sa.DateTime(timezone=True), + server_default=sa.text("now()"), + nullable=False, + ), + ) + + op.create_index( + "ix_jira_audit_tenant_time", + "jira_discovery_audit", + ["tenant_id", sa.text("created_at DESC")], + ) + + # Append-only enforcement via PostgreSQL RULEs. + # RULEs are simpler than BEFORE triggers for this case: they silently + # discard the operation (DO INSTEAD NOTHING) with zero function overhead. + # A trigger that raises an exception would be equally correct but adds + # a PL/pgSQL function dependency. Chose RULEs for minimalism. + op.execute( + 'CREATE RULE no_update_audit AS ON UPDATE TO "jira_discovery_audit" DO INSTEAD NOTHING;' + ) + op.execute( + 'CREATE RULE no_delete_audit AS ON DELETE TO "jira_discovery_audit" DO INSTEAD NOTHING;' + ) + + # ------------------------------------------------------------------ + # 4. Row-Level Security on all three tables + # ------------------------------------------------------------------ + for table in ALL_TABLES: + _enable_rls(table) + + # ------------------------------------------------------------------ + # 5. Bootstrap: seed config + catalog rows for existing tenants + # + # Reads JIRA_PROJECTS env var at migration time (Python-side) and + # renders the project list into the SQL block. If the env var is + # empty or unset, only tenant_jira_config rows are created (no + # catalog entries). This is safe for re-runs because: + # - tenant_jira_config PK is tenant_id (ON CONFLICT DO NOTHING) + # - jira_project_catalog has UNIQUE (tenant_id, project_key) + # ------------------------------------------------------------------ + jira_projects_raw = os.environ.get("JIRA_PROJECTS", "") + project_keys = [ + k.strip() for k in jira_projects_raw.split(",") if k.strip() + ] + + # Build the VALUES clause for catalog inserts. + # Each entry becomes a (project_key) literal used in a cross join. + if project_keys: + # Escape single quotes in project keys (defensive) + escaped = [pk.replace("'", "''") for pk in project_keys] + values_list = ", ".join(f"('{pk}')" for pk in escaped) + catalog_insert = f""" + INSERT INTO jira_project_catalog ( + tenant_id, project_key, status, activation_source, activated_at + ) + SELECT + t.tenant_id, + p.project_key, + 'active', + 'env_bootstrap', + now() + FROM tenant_ids t + CROSS JOIN (VALUES {values_list}) AS p(project_key) + ON CONFLICT ON CONSTRAINT uq_jira_catalog_tenant_key DO NOTHING; + """ + else: + catalog_insert = "-- No JIRA_PROJECTS env var set; skipping catalog bootstrap." + + # Discover tenants from multiple sources. The monorepo doesn't have a + # canonical `tenants` table in every env (single-tenant dev uses a fixed + # UUID seeded into domain tables). Union DISTINCT tenant_id from every + # known tenant-aware table; use to_regclass to guard against missing tables + # so the migration is portable across envs that have evolved differently. + bootstrap_sql = f""" + DO $$ + DECLARE + _has_tenants bool := to_regclass('public.tenants') IS NOT NULL; + _has_integrations bool := to_regclass('public.integration_connections') IS NOT NULL; + _has_iam_orgs bool := to_regclass('public.iam_organizations') IS NOT NULL; + _has_eng_issues bool := to_regclass('public.eng_issues') IS NOT NULL; + BEGIN + -- Build a temp view of tenants from whichever sources exist. + CREATE TEMP TABLE tenant_ids (tenant_id uuid PRIMARY KEY) ON COMMIT DROP; + + IF _has_tenants THEN + EXECUTE 'INSERT INTO tenant_ids SELECT id FROM tenants ON CONFLICT DO NOTHING'; + END IF; + IF _has_integrations THEN + EXECUTE 'INSERT INTO tenant_ids SELECT DISTINCT tenant_id FROM integration_connections WHERE tenant_id IS NOT NULL ON CONFLICT DO NOTHING'; + END IF; + IF _has_iam_orgs THEN + EXECUTE 'INSERT INTO tenant_ids SELECT DISTINCT tenant_id FROM iam_organizations WHERE tenant_id IS NOT NULL ON CONFLICT DO NOTHING'; + END IF; + IF _has_eng_issues THEN + EXECUTE 'INSERT INTO tenant_ids SELECT DISTINCT tenant_id FROM eng_issues WHERE tenant_id IS NOT NULL ON CONFLICT DO NOTHING'; + END IF; + + -- Fallback: if no tenants discovered (brand-new install), seed the + -- canonical single-tenant dev UUID so bootstrap still populates the + -- catalog. Production multi-tenant installs will hit one of the + -- branches above and skip this. + IF NOT EXISTS (SELECT 1 FROM tenant_ids) THEN + INSERT INTO tenant_ids VALUES ('00000000-0000-0000-0000-000000000001'); + END IF; + + -- Seed a tenant_jira_config row (mode=allowlist) for every tenant. + INSERT INTO tenant_jira_config (tenant_id) + SELECT tenant_id FROM tenant_ids + ON CONFLICT (tenant_id) DO NOTHING; + + -- Seed catalog rows for projects from JIRA_PROJECTS env var. + {catalog_insert} + END $$; + """ + + op.execute(bootstrap_sql) + + +def downgrade() -> None: + # Drop RLS policies first + for table in reversed(ALL_TABLES): + _drop_rls(table) + + # Drop audit rules before dropping the table + op.execute('DROP RULE IF EXISTS no_delete_audit ON "jira_discovery_audit"') + op.execute('DROP RULE IF EXISTS no_update_audit ON "jira_discovery_audit"') + + # Drop indexes + op.drop_index("ix_jira_audit_tenant_time", table_name="jira_discovery_audit") + op.drop_index("ix_jira_catalog_tenant_prrefs", table_name="jira_project_catalog") + op.drop_index("ix_jira_catalog_tenant_status", table_name="jira_project_catalog") + op.drop_constraint("uq_jira_catalog_tenant_key", "jira_project_catalog") + + # Drop tables in reverse order + op.drop_table("jira_discovery_audit") + op.drop_table("jira_project_catalog") + op.drop_table("tenant_jira_config") diff --git a/pulse/packages/pulse-shared/src/index.ts b/pulse/packages/pulse-shared/src/index.ts index 47b71a4..aae14a9 100644 --- a/pulse/packages/pulse-shared/src/index.ts +++ b/pulse/packages/pulse-shared/src/index.ts @@ -32,3 +32,26 @@ export type { MetricTrend, WipStatus, } from './types/metrics'; + +// BC2 Integration — Jira Admin (Dynamic Discovery, ADR-014) +export type { + JiraDiscoveryMode, + JiraProjectStatus, + JiraActivationSource, + JiraDiscoveryRunStatus, + JiraProjectSyncStatus, + JiraAuditEventType, + TenantJiraConfig, + UpdateTenantJiraConfigInput, + JiraProjectCatalogEntry, + JiraProjectCatalogListResponse, + JiraProjectCatalogQuery, + JiraProjectActionInput, + JiraDiscoveryResult, + JiraDiscoveryStatusResponse, + JiraDiscoveryAuditEntry, + JiraAuditQuery, + JiraAuditListResponse, + JiraSmartSuggestion, + JiraSmartSuggestionsResponse, +} from './types/jira-admin'; diff --git a/pulse/packages/pulse-shared/src/types/jira-admin.ts b/pulse/packages/pulse-shared/src/types/jira-admin.ts new file mode 100644 index 0000000..7602264 --- /dev/null +++ b/pulse/packages/pulse-shared/src/types/jira-admin.ts @@ -0,0 +1,196 @@ +// --------------------------------------------------------------------------- +// @pulse/shared — Jira Admin (Dynamic Project Discovery) +// Shared types for the admin API + UI surface defined in ADR-014. +// --------------------------------------------------------------------------- + +/** + * Per-tenant operating mode for Jira project discovery + ingestion. + * + * - `auto` — every discovered project is active; blocklist overrides + * - `allowlist` — only explicitly approved projects sync (default, safe) + * - `blocklist` — all discovered projects active except blocked ones + * - `smart` — auto-activate projects referenced by >= N PRs in lookback + */ +export type JiraDiscoveryMode = 'auto' | 'allowlist' | 'blocklist' | 'smart'; + +/** Lifecycle status of a catalogued Jira project. */ +export type JiraProjectStatus = + | 'discovered' // found by discovery, awaiting decision + | 'active' // actively synced + | 'paused' // temporarily halted (auto or manual) + | 'blocked' // hard-blocked, overrides any mode + | 'archived'; // Jira side no longer returns this project + +/** Where a project's `active` status originated. */ +export type JiraActivationSource = + | 'manual' // admin clicked activate in UI + | 'auto_mode' // mode=auto promoted on first discovery + | 'smart_pr_scan' // smart prioritizer activated based on PR refs + | 'env_bootstrap'; // seeded from legacy JIRA_PROJECTS env var + +/** Outcome of a single discovery run. */ +export type JiraDiscoveryRunStatus = 'success' | 'partial' | 'failed'; + +/** Outcome of a per-project sync cycle. */ +export type JiraProjectSyncStatus = 'success' | 'partial' | 'failed'; + +/** Audit event types (append-only trail). */ +export type JiraAuditEventType = + | 'discovery_run' + | 'mode_changed' + | 'project_activated' + | 'project_paused' + | 'project_blocked' + | 'project_resumed' + | 'project_auto_paused' // triggered by Guardrails (N consecutive failures) + | 'project_cap_enforced'; // Guardrails demoted due to max_active_projects + +// --------------------------------------------------------------------------- +// Configuration +// --------------------------------------------------------------------------- + +export interface TenantJiraConfig { + tenantId: string; + mode: JiraDiscoveryMode; + discoveryEnabled: boolean; + discoveryScheduleCron: string; + maxActiveProjects: number; + maxIssuesPerHour: number; + smartPrScanDays: number; + smartMinPrReferences: number; + lastDiscoveryAt: string | null; + lastDiscoveryStatus: JiraDiscoveryRunStatus | null; + lastDiscoveryError: string | null; + createdAt: string; + updatedAt: string; +} + +/** Fields an admin can mutate via PUT /config. */ +export interface UpdateTenantJiraConfigInput { + mode?: JiraDiscoveryMode; + discoveryEnabled?: boolean; + discoveryScheduleCron?: string; + maxActiveProjects?: number; + maxIssuesPerHour?: number; + smartPrScanDays?: number; + smartMinPrReferences?: number; +} + +// --------------------------------------------------------------------------- +// Catalog +// --------------------------------------------------------------------------- + +export interface JiraProjectCatalogEntry { + id: string; + tenantId: string; + projectKey: string; + projectId: string | null; + name: string | null; + projectType: string | null; + leadAccountId: string | null; + status: JiraProjectStatus; + activationSource: JiraActivationSource | null; + issueCount: number; + prReferenceCount: number; + firstSeenAt: string; + activatedAt: string | null; + lastSyncAt: string | null; + lastSyncStatus: JiraProjectSyncStatus | null; + consecutiveFailures: number; + lastError: string | null; + metadata: Record; + createdAt: string; + updatedAt: string; +} + +export interface JiraProjectCatalogListResponse { + items: JiraProjectCatalogEntry[]; + total: number; + counts: Record; +} + +/** Query params accepted by GET /projects. */ +export interface JiraProjectCatalogQuery { + status?: JiraProjectStatus | JiraProjectStatus[]; + search?: string; // matches project_key or name + limit?: number; + offset?: number; + sortBy?: 'project_key' | 'pr_reference_count' | 'issue_count' | 'last_sync_at'; + sortDir?: 'asc' | 'desc'; +} + +/** Body for POST /projects/:key/{action}. */ +export interface JiraProjectActionInput { + reason?: string; // recorded in audit trail +} + +// --------------------------------------------------------------------------- +// Discovery run +// --------------------------------------------------------------------------- + +export interface JiraDiscoveryResult { + runId: string; + startedAt: string; + finishedAt: string | null; + status: JiraDiscoveryRunStatus; + discoveredCount: number; // net new catalog rows + activatedCount: number; // moved to 'active' by mode/smart + archivedCount: number; // present in catalog but gone from Jira + updatedCount: number; // metadata refreshed + errors: string[]; +} + +export interface JiraDiscoveryStatusResponse { + inFlight: boolean; + currentRunId: string | null; + lastRun: JiraDiscoveryResult | null; + tenantConfig: Pick< + TenantJiraConfig, + 'mode' | 'discoveryEnabled' | 'discoveryScheduleCron' | 'lastDiscoveryAt' | 'lastDiscoveryStatus' + >; +} + +// --------------------------------------------------------------------------- +// Audit +// --------------------------------------------------------------------------- + +export interface JiraDiscoveryAuditEntry { + id: string; + tenantId: string; + eventType: JiraAuditEventType; + projectKey: string | null; + actor: string; // user id | 'system' | 'smart_auto' + beforeValue: unknown; + afterValue: unknown; + reason: string | null; + createdAt: string; +} + +export interface JiraAuditQuery { + eventType?: JiraAuditEventType | JiraAuditEventType[]; + projectKey?: string; + since?: string; // ISO timestamp + limit?: number; + offset?: number; +} + +export interface JiraAuditListResponse { + items: JiraDiscoveryAuditEntry[]; + total: number; +} + +// --------------------------------------------------------------------------- +// Smart Suggestions (UI banner) +// --------------------------------------------------------------------------- + +export interface JiraSmartSuggestion { + projectKey: string; + prReferenceCount: number; + suggestedAction: 'activate'; + reason: string; // human-readable (e.g. "Referenced in 524 PRs across 37 repos") +} + +export interface JiraSmartSuggestionsResponse { + items: JiraSmartSuggestion[]; + thresholdPrReferences: number; +} From efaeba76e5df81e9939211a2939a454a65a49314 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 16:08:38 -0300 Subject: [PATCH 14/64] feat(jira): discovery service, mode resolver, guardrails, scheduler (Phase 1) Implements the Python backend core for dynamic Jira project discovery defined in ADR-014. Sync worker reads active projects from the per-tenant catalog via ModeResolver when DYNAMIC_JIRA_DISCOVERY_ENABLED=true; falls back to the legacy JIRA_PROJECTS env var otherwise (safe default). New modules under src/contexts/integrations/jira/discovery/: - repository.py: async CRUD for tenant_jira_config, jira_project_catalog and jira_discovery_audit. Uses ON CONFLICT ON CONSTRAINT with the named uq_jira_catalog_tenant_key for idempotent upserts. - mode_resolver.py: single source of truth for "which projects to sync now" across the 4 modes (auto/allowlist/blocklist/smart). 'blocked' status is an invariant hard-exclusion regardless of mode. - smart_prioritizer.py: scans eng_pull_requests titles for Jira keys, scores projects by unique-PR references, auto-activates above smart_min_pr_references when mode=smart. - guardrails.py: project cap enforcement (demotes lowest-ref projects first), Redis token-bucket rate budget keyed per tenant, auto-pause after 5 consecutive failures. 'blocked' is immune to guardrails. - project_discovery_service.py: run_discovery() orchestrates fetch + diff (new/updated/archived) + smart scoring + cap enforcement + audit. Total Jira failure => status=failed; per-page partials => status=partial. Worker + scheduler: - discovery_scheduler.py: APScheduler-based per-tenant cron + FastAPI /internal/discovery/trigger endpoint guarded by X-Internal-Token. - docker-compose: new discovery-worker service sharing the pulse-data image. Integration: - jira_connector.fetch_all_accessible_projects() over /rest/api/3/project/search. - fetch_issues() now takes project_keys explicitly (legacy call emits DeprecationWarning). - devlake_sync.py gated behind DYNAMIC_JIRA_DISCOVERY_ENABLED; records per-project sync outcomes via Guardrails. Tests: 59/59 passing on Python 3.12 in-container. No regressions on connector/worker suites. Known limitation: SmartPrioritizer scans PR title only (head_ref/base_ref are transient normalization fields, not persisted). Persistent branch columns are a follow-up if we want to lift link-rate ceiling further. Co-Authored-By: Claude Opus 4.6 --- pulse/docker-compose.yml | 26 ++ pulse/packages/pulse-data/pyproject.toml | 1 + pulse/packages/pulse-data/src/config.py | 4 + .../pulse-data/src/connectors/aggregator.py | 17 +- .../src/connectors/jira_connector.py | 71 +++- .../src/contexts/integrations/__init__.py | 0 .../contexts/integrations/jira/__init__.py | 0 .../integrations/jira/discovery/__init__.py | 32 ++ .../integrations/jira/discovery/guardrails.py | 253 ++++++++++++ .../jira/discovery/mode_resolver.py | 99 +++++ .../discovery/project_discovery_service.py | 224 ++++++++++ .../integrations/jira/discovery/repository.py | 388 ++++++++++++++++++ .../jira/discovery/smart_prioritizer.py | 139 +++++++ .../pulse-data/src/workers/devlake_sync.py | 38 +- .../src/workers/discovery_scheduler.py | 217 ++++++++++ .../tests/unit/contexts/__init__.py | 0 .../unit/contexts/integrations/__init__.py | 0 .../contexts/integrations/jira/__init__.py | 0 .../integrations/jira/discovery/__init__.py | 0 .../integrations/jira/discovery/conftest.py | 78 ++++ .../jira/discovery/test_guardrails.py | 264 ++++++++++++ .../jira/discovery/test_mode_resolver.py | 146 +++++++ .../test_project_discovery_service.py | 242 +++++++++++ .../jira/discovery/test_repository.py | 235 +++++++++++ .../jira/discovery/test_smart_prioritizer.py | 190 +++++++++ 25 files changed, 2656 insertions(+), 8 deletions(-) create mode 100644 pulse/packages/pulse-data/src/contexts/integrations/__init__.py create mode 100644 pulse/packages/pulse-data/src/contexts/integrations/jira/__init__.py create mode 100644 pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/__init__.py create mode 100644 pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/guardrails.py create mode 100644 pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/mode_resolver.py create mode 100644 pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py create mode 100644 pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/repository.py create mode 100644 pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py create mode 100644 pulse/packages/pulse-data/src/workers/discovery_scheduler.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/__init__.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/__init__.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/__init__.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/__init__.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/conftest.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_guardrails.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_mode_resolver.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_project_discovery_service.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_repository.py create mode 100644 pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_smart_prioritizer.py diff --git a/pulse/docker-compose.yml b/pulse/docker-compose.yml index d98b8ff..b52794b 100644 --- a/pulse/docker-compose.yml +++ b/pulse/docker-compose.yml @@ -135,6 +135,32 @@ services: start_period: 60s restart: unless-stopped + discovery-worker: + build: + context: ./packages/pulse-data + dockerfile: Dockerfile + container_name: pulse-discovery-worker + command: python -m src.workers.discovery_scheduler + environment: + DATABASE_URL: postgresql://${POSTGRES_USER:-pulse}:${POSTGRES_PASSWORD:-pulse_dev}@postgres:5432/${POSTGRES_DB:-pulse} + KAFKA_BROKERS: kafka:29092 + REDIS_URL: redis://redis:6379 + ENVIRONMENT: development + DYNAMIC_JIRA_DISCOVERY_ENABLED: ${DYNAMIC_JIRA_DISCOVERY_ENABLED:-false} + INTERNAL_API_TOKEN: ${INTERNAL_API_TOKEN:-} + JIRA_BASE_URL: ${JIRA_BASE_URL:-} + JIRA_EMAIL: ${JIRA_EMAIL:-} + JIRA_API_TOKEN: ${JIRA_API_TOKEN:-} + JIRA_PROJECTS: ${JIRA_PROJECTS:-DESC,ENO,ANCR,PUSO,APPF,FID,CTURBO,PTURB} + volumes: + - ./packages/pulse-data/src:/app/src + depends_on: + postgres: + condition: service_healthy + redis: + condition: service_healthy + restart: unless-stopped + # -------------------------------------------------------------------------- # Infrastructure # -------------------------------------------------------------------------- diff --git a/pulse/packages/pulse-data/pyproject.toml b/pulse/packages/pulse-data/pyproject.toml index f28f717..7651705 100644 --- a/pulse/packages/pulse-data/pyproject.toml +++ b/pulse/packages/pulse-data/pyproject.toml @@ -16,6 +16,7 @@ dependencies = [ "httpx>=0.28.0,<1.0.0", "mangum>=0.19.0,<1.0.0", "redis>=5.2.0,<6.0.0", + "apscheduler>=3.10.0,<4.0.0", ] [project.optional-dependencies] diff --git a/pulse/packages/pulse-data/src/config.py b/pulse/packages/pulse-data/src/config.py index 8fcd39a..3fdc8ff 100644 --- a/pulse/packages/pulse-data/src/config.py +++ b/pulse/packages/pulse-data/src/config.py @@ -46,6 +46,10 @@ class Settings(BaseSettings): # Multi-tenancy — single default tenant in MVP default_tenant_id: str = "00000000-0000-0000-0000-000000000001" + # Dynamic Jira Discovery (ADR-014) + dynamic_jira_discovery_enabled: bool = False + internal_api_token: str = "" + # Application app_name: str = "pulse-data" app_version: str = "0.1.0" diff --git a/pulse/packages/pulse-data/src/connectors/aggregator.py b/pulse/packages/pulse-data/src/connectors/aggregator.py index d2eeae8..eb28e34 100644 --- a/pulse/packages/pulse-data/src/connectors/aggregator.py +++ b/pulse/packages/pulse-data/src/connectors/aggregator.py @@ -96,15 +96,26 @@ async def fetch_pull_requests_batched( logger.exception("Error fetching batched PRs from %s", source) async def fetch_issues( - self, since: datetime | None = None, + self, + since: datetime | None = None, + project_keys: list[str] | None = None, ) -> list[dict[str, Any]]: - """Fetch issues from all work-tracking connectors (Jira, GitHub Issues).""" + """Fetch issues from all work-tracking connectors (Jira, GitHub Issues). + + Args: + since: Watermark for incremental sync. + project_keys: If provided, passed to Jira connector to scope which + projects to fetch. Other connectors ignore this parameter. + """ all_issues: list[dict[str, Any]] = [] for source in ("jira", "github", "azure"): connector = self._connectors.get(source) if connector: try: - issues = await connector.fetch_issues(since) + if source == "jira" and project_keys is not None: + issues = await connector.fetch_issues(since, project_keys=project_keys) + else: + issues = await connector.fetch_issues(since) all_issues.extend(issues) logger.info("Fetched %d issues from %s", len(issues), source) except Exception: diff --git a/pulse/packages/pulse-data/src/connectors/jira_connector.py b/pulse/packages/pulse-data/src/connectors/jira_connector.py index 08e6e28..15fe7ed 100644 --- a/pulse/packages/pulse-data/src/connectors/jira_connector.py +++ b/pulse/packages/pulse-data/src/connectors/jira_connector.py @@ -14,6 +14,7 @@ from __future__ import annotations import logging +import warnings from datetime import datetime, timezone from typing import Any @@ -113,12 +114,57 @@ async def test_connection(self) -> dict[str, Any]: except Exception as e: return {"status": "error", "message": str(e)} + # ------------------------------------------------------------------ + # Project Discovery (ADR-014) + # ------------------------------------------------------------------ + + async def fetch_all_accessible_projects(self) -> list[dict[str, Any]]: + """Fetch all Jira projects accessible to the service account. + + Uses GET /rest/api/3/project/search with pagination (startAt/maxResults). + Returns list of dicts with keys: project_key, project_id, name, + project_type, lead_account_id. + """ + all_projects: list[dict[str, Any]] = [] + start_at = 0 + page_size = 50 + + while True: + params = { + "startAt": start_at, + "maxResults": page_size, + "expand": "lead,description", + } + data = await self._client.get(f"{REST_API}/project/search", params=params) + + values = data.get("values", []) + for proj in values: + lead = proj.get("lead") or {} + all_projects.append({ + "project_key": proj.get("key", ""), + "project_id": str(proj.get("id", "")), + "name": proj.get("name", ""), + "project_type": proj.get("projectTypeKey", ""), + "lead_account_id": lead.get("accountId"), + }) + + total = data.get("total", 0) + start_at += len(values) + + if start_at >= total or not values: + break + + logger.info("Discovered %d accessible Jira projects", len(all_projects)) + return all_projects + # ------------------------------------------------------------------ # Issues # ------------------------------------------------------------------ async def fetch_issues( - self, since: datetime | None = None, + self, + since: datetime | None = None, + project_keys: list[str] | None = None, ) -> list[dict[str, Any]]: """Fetch issues from Jira using JQL search with expand=changelog. @@ -126,8 +172,25 @@ async def fetch_issues( GET /rest/api/3/search with HTTP 410 Gone in 2025). Includes changelogs inline to avoid separate API calls per issue. + + Args: + since: Watermark — only issues updated after this timestamp. + project_keys: Explicit list of project keys to fetch. If None, + falls back to self._projects (from env var) with a deprecation + warning. Pass explicitly when using dynamic discovery. """ - if not self._projects: + if project_keys is not None: + effective_projects = project_keys + else: + warnings.warn( + "Calling fetch_issues() without explicit project_keys is deprecated. " + "Pass project_keys explicitly or use ModeResolver.", + DeprecationWarning, + stacklevel=2, + ) + effective_projects = self._projects + + if not effective_projects: logger.warning("No Jira projects configured — skipping issue fetch") return [] @@ -135,7 +198,7 @@ async def fetch_issues( await self._discover_custom_fields() # Quote each project key in JQL — some keys like "DESC" are reserved words - quoted_projects = ", ".join(f'"{p}"' for p in self._projects) + quoted_projects = ", ".join(f'"{p}"' for p in effective_projects) jql = f"project IN ({quoted_projects})" if since: since_str = since.strftime("%Y-%m-%d %H:%M") @@ -183,7 +246,7 @@ async def fetch_issues( if not next_page_token or not issues: break - logger.info("Fetched %d issues from Jira (%d projects, %d pages)", len(all_issues), len(self._projects), page) + logger.info("Fetched %d issues from Jira (%d projects, %d pages)", len(all_issues), len(effective_projects), page) return all_issues async def fetch_issue_changelogs( diff --git a/pulse/packages/pulse-data/src/contexts/integrations/__init__.py b/pulse/packages/pulse-data/src/contexts/integrations/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/__init__.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/__init__.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/__init__.py new file mode 100644 index 0000000..475faaf --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/__init__.py @@ -0,0 +1,32 @@ +"""Dynamic Jira Project Discovery (ADR-014) — public exports. + +Imports are lazy to avoid pulling in heavy ORM models at module level, +which enables import on Python < 3.12 for testing individual modules. +""" + +__all__ = [ + "DiscoveryRepository", + "Guardrails", + "ModeResolver", + "ProjectDiscoveryService", + "SmartPrioritizer", +] + + +def __getattr__(name: str): + if name == "DiscoveryRepository": + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + return DiscoveryRepository + if name == "Guardrails": + from src.contexts.integrations.jira.discovery.guardrails import Guardrails + return Guardrails + if name == "ModeResolver": + from src.contexts.integrations.jira.discovery.mode_resolver import ModeResolver + return ModeResolver + if name == "ProjectDiscoveryService": + from src.contexts.integrations.jira.discovery.project_discovery_service import ProjectDiscoveryService + return ProjectDiscoveryService + if name == "SmartPrioritizer": + from src.contexts.integrations.jira.discovery.smart_prioritizer import SmartPrioritizer + return SmartPrioritizer + raise AttributeError(f"module {__name__!r} has no attribute {name!r}") diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/guardrails.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/guardrails.py new file mode 100644 index 0000000..f5349e2 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/guardrails.py @@ -0,0 +1,253 @@ +"""Guardrails — project cap enforcement, rate budgeting, auto-pause. + +Protects tenants from over-ingestion and cascading failures. + +Invariant: ``blocked`` projects are NEVER modified by guardrails. +""" + +from __future__ import annotations + +import logging +import time +from uuid import UUID + +import redis.asyncio as aioredis +from sqlalchemy import and_, select, func +from sqlalchemy.ext.asyncio import AsyncSession + +from src.config import settings +from src.contexts.integrations.jira.discovery.repository import ( + DiscoveryRepository, + jira_project_catalog, +) + +logger = logging.getLogger(__name__) + + +def _get_redis_client() -> aioredis.Redis: + """Create an async Redis client from settings.""" + return aioredis.from_url(settings.redis_url, decode_responses=True) + + +class Guardrails: + """Enforces safety constraints on Jira project ingestion.""" + + def __init__( + self, + session: AsyncSession, + redis_client: aioredis.Redis | None = None, + ) -> None: + self._session = session + self._repo = DiscoveryRepository(session) + self._redis = redis_client + + async def _get_redis(self) -> aioredis.Redis: + """Lazily initialize Redis client.""" + if self._redis is None: + self._redis = _get_redis_client() + return self._redis + + # ------------------------------------------------------------------ + # Project cap enforcement + # ------------------------------------------------------------------ + + async def enforce_project_cap(self, tenant_id: UUID) -> int: + """If active project count exceeds max, pause lowest-scoring projects. + + Returns count of projects paused. + """ + config = await self._repo.get_tenant_config(tenant_id) + if not config: + return 0 + + max_active = config.get("max_active_projects", 100) + + # Count active non-blocked projects + result = await self._session.execute( + select(func.count()).select_from(jira_project_catalog).where( + and_( + jira_project_catalog.c.tenant_id == tenant_id, + jira_project_catalog.c.status == "active", + ) + ) + ) + active_count = result.scalar() or 0 + + if active_count <= max_active: + return 0 + + excess = active_count - max_active + logger.warning( + "Tenant %s has %d active projects (cap=%d), pausing %d lowest-scoring", + tenant_id, active_count, max_active, excess, + ) + + # Select lowest pr_reference_count active projects (non-blocked) + to_pause = await self._session.execute( + select(jira_project_catalog.c.project_key).where( + and_( + jira_project_catalog.c.tenant_id == tenant_id, + jira_project_catalog.c.status == "active", + ) + ) + .order_by(jira_project_catalog.c.pr_reference_count.asc()) + .limit(excess) + ) + keys_to_pause = [row[0] for row in to_pause.all()] + + paused = 0 + for key in keys_to_pause: + await self._repo.update_project_status( + tenant_id, key, + status="paused", + actor="system", + reason=f"Project cap enforced: {active_count} > {max_active}", + ) + await self._repo.append_audit( + tenant_id, + event_type="project_cap_enforced", + project_key=key, + actor="system", + after={"status": "paused"}, + reason=f"Active count {active_count} exceeded cap {max_active}", + ) + paused += 1 + + return paused + + # ------------------------------------------------------------------ + # Rate budget (Redis token bucket) + # ------------------------------------------------------------------ + + async def enforce_rate_budget(self, tenant_id: UUID, issues_to_fetch: int) -> bool: + """Check if the tenant has rate budget for the requested issue count. + + Uses a Redis token bucket keyed ``jira:ratebudget:{tenant_id}``. + Bucket size = max_issues_per_hour, refill = max_issues_per_hour / 3600 per second. + + Returns True if budget is available (tokens consumed), False otherwise. + """ + config = await self._repo.get_tenant_config(tenant_id) + if not config: + return True # No config = no guardrails = allow + + max_per_hour = config.get("max_issues_per_hour", 20000) + refill_rate = max_per_hour / 3600.0 + + redis = await self._get_redis() + bucket_key = f"jira:ratebudget:{tenant_id}" + now = time.time() + + # Atomic token bucket via Lua script + lua_script = """ + local key = KEYS[1] + local requested = tonumber(ARGV[1]) + local max_tokens = tonumber(ARGV[2]) + local refill_rate = tonumber(ARGV[3]) + local now = tonumber(ARGV[4]) + + local data = redis.call('HMGET', key, 'tokens', 'last_refill') + local tokens = tonumber(data[1]) + local last_refill = tonumber(data[2]) + + if tokens == nil then + tokens = max_tokens + last_refill = now + end + + -- Refill + local elapsed = now - last_refill + tokens = math.min(max_tokens, tokens + elapsed * refill_rate) + last_refill = now + + if tokens >= requested then + tokens = tokens - requested + redis.call('HMSET', key, 'tokens', tokens, 'last_refill', last_refill) + redis.call('EXPIRE', key, 7200) + return 1 + else + redis.call('HMSET', key, 'tokens', tokens, 'last_refill', last_refill) + redis.call('EXPIRE', key, 7200) + return 0 + end + """ + result = await redis.eval( + lua_script, 1, bucket_key, + str(issues_to_fetch), str(max_per_hour), str(refill_rate), str(now), + ) + allowed = bool(int(result)) + + if not allowed: + logger.warning( + "Rate budget exhausted for tenant %s: requested %d issues", + tenant_id, issues_to_fetch, + ) + return allowed + + # ------------------------------------------------------------------ + # Sync outcome tracking + auto-pause + # ------------------------------------------------------------------ + + async def record_sync_outcome( + self, + tenant_id: UUID, + project_key: str, + success: bool, + error: str | None = None, + ) -> None: + """Record sync outcome. Auto-pauses after 5 consecutive failures. + + Invariant: blocked projects are never modified. + """ + project = await self._repo.get_project(tenant_id, project_key) + if not project: + logger.warning( + "record_sync_outcome: project %s not found for tenant %s", + project_key, tenant_id, + ) + return + + # Never modify blocked projects + if project["status"] == "blocked": + logger.debug( + "Skipping sync outcome for blocked project %s", project_key, + ) + return + + current_failures = project.get("consecutive_failures", 0) or 0 + + if success: + await self._repo.upsert_project( + tenant_id, project_key, + consecutive_failures=0, + last_sync_status="success", + last_error=None, + ) + else: + new_failures = current_failures + 1 + update_fields = { + "consecutive_failures": new_failures, + "last_sync_status": "failed", + "last_error": error, + } + await self._repo.upsert_project(tenant_id, project_key, **update_fields) + + if new_failures >= 5 and project["status"] != "paused": + await self._repo.update_project_status( + tenant_id, project_key, + status="paused", + actor="system", + reason=f"Auto-paused after {new_failures} consecutive sync failures", + ) + await self._repo.append_audit( + tenant_id, + event_type="project_auto_paused", + project_key=project_key, + actor="system", + after={"status": "paused", "consecutive_failures": new_failures}, + reason=f"Auto-paused after {new_failures} consecutive failures", + ) + logger.warning( + "Auto-paused project %s for tenant %s after %d failures", + project_key, tenant_id, new_failures, + ) diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/mode_resolver.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/mode_resolver.py new file mode 100644 index 0000000..d3d76b6 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/mode_resolver.py @@ -0,0 +1,99 @@ +"""ModeResolver — single source of truth for which Jira projects to sync. + +Reads the tenant's discovery mode from tenant_jira_config and resolves +the list of active project keys based on mode semantics and catalog state. + +Invariant: ``blocked`` projects are ALWAYS excluded regardless of mode. +""" + +from __future__ import annotations + +import logging +from uuid import UUID + +from sqlalchemy import and_, select +from sqlalchemy.ext.asyncio import AsyncSession + +from src.contexts.integrations.jira.discovery.repository import ( + DiscoveryRepository, + jira_project_catalog, +) + +logger = logging.getLogger(__name__) + +# Status sets per mode (before blocked exclusion) +_MODE_ALLOWED_STATUSES: dict[str, list[str]] = { + "auto": ["discovered", "active"], + "allowlist": ["active"], + "blocklist": ["discovered", "active", "paused"], + "smart": ["active"], # discovered are conditionally included via threshold +} + + +class ModeResolver: + """Resolves which Jira projects should be synced for a tenant.""" + + def __init__(self, session: AsyncSession) -> None: + self._session = session + self._repo = DiscoveryRepository(session) + + async def resolve_active_projects(self, tenant_id: UUID) -> list[str]: + """Return the list of project keys to sync now, based on mode. + + Invariant: blocked projects are never returned. + """ + config = await self._repo.get_tenant_config(tenant_id) + if not config: + logger.warning( + "No tenant_jira_config found for %s — returning empty project list", + tenant_id, + ) + return [] + + mode = config["mode"] + logger.info("Resolving active projects for tenant %s in mode=%s", tenant_id, mode) + + if mode == "smart": + return await self._resolve_smart(tenant_id, config) + + allowed_statuses = _MODE_ALLOWED_STATUSES.get(mode, ["active"]) + + result = await self._session.execute( + select(jira_project_catalog.c.project_key).where( + and_( + jira_project_catalog.c.tenant_id == tenant_id, + jira_project_catalog.c.status.in_(allowed_statuses), + jira_project_catalog.c.status != "blocked", + ) + ) + ) + keys = [row[0] for row in result.all()] + logger.info("Resolved %d active projects for tenant %s (mode=%s)", len(keys), tenant_id, mode) + return keys + + async def _resolve_smart(self, tenant_id: UUID, config: dict) -> list[str]: + """Smart mode: active + discovered with enough PR references.""" + threshold = config.get("smart_min_pr_references", 3) + + result = await self._session.execute( + select(jira_project_catalog.c.project_key).where( + and_( + jira_project_catalog.c.tenant_id == tenant_id, + jira_project_catalog.c.status != "blocked", + # active always included; discovered only if meets threshold + ( + (jira_project_catalog.c.status == "active") + | ( + (jira_project_catalog.c.status == "discovered") + & (jira_project_catalog.c.pr_reference_count >= threshold) + ) + ), + ) + ) + ) + keys = [row[0] for row in result.all()] + logger.info( + "Resolved %d active projects for tenant %s (mode=smart, threshold=%d)", + len(keys), tenant_id, threshold, + ) + return keys diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py new file mode 100644 index 0000000..a2a9679 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py @@ -0,0 +1,224 @@ +"""ProjectDiscoveryService — orchestrates a full discovery run for a tenant. + +Calls the Jira API to list all accessible projects, diffs against the +catalog, and updates statuses based on the tenant's discovery mode. +Robust to partial Jira failures: catches per-page errors and continues. +""" + +from __future__ import annotations + +import logging +import uuid +from datetime import datetime, timezone +from typing import Any +from uuid import UUID + +from sqlalchemy.ext.asyncio import AsyncSession + +from src.contexts.integrations.jira.discovery.guardrails import Guardrails +from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository +from src.contexts.integrations.jira.discovery.smart_prioritizer import SmartPrioritizer + +logger = logging.getLogger(__name__) + + +class ProjectDiscoveryService: + """Runs a full Jira project discovery cycle for a tenant.""" + + def __init__( + self, + session: AsyncSession, + jira_client: Any = None, + ) -> None: + self._session = session + self._repo = DiscoveryRepository(session) + self._jira_client = jira_client + self._prioritizer = SmartPrioritizer(session) + self._guardrails = Guardrails(session) + + async def run_discovery(self, tenant_id: UUID) -> dict[str, Any]: + """Execute a full discovery run. Returns a JiraDiscoveryResult-shaped dict.""" + run_id = str(uuid.uuid4()) + started_at = datetime.now(timezone.utc) + errors: list[str] = [] + + result = { + "runId": run_id, + "startedAt": started_at.isoformat(), + "finishedAt": None, + "status": "success", + "discoveredCount": 0, + "activatedCount": 0, + "archivedCount": 0, + "updatedCount": 0, + "errors": errors, + } + + # 1. Load tenant config + config = await self._repo.get_tenant_config(tenant_id) + if not config or not config.get("discovery_enabled", True): + result["finishedAt"] = datetime.now(timezone.utc).isoformat() + logger.info("Discovery disabled or no config for tenant %s", tenant_id) + return result + + mode = config["mode"] + + # 2. Fetch all accessible projects from Jira + if not self._jira_client: + errors.append("No Jira client configured") + result["status"] = "failed" + result["finishedAt"] = datetime.now(timezone.utc).isoformat() + return result + + jira_projects: list[dict[str, Any]] = [] + try: + jira_projects = await self._jira_client.fetch_all_accessible_projects() + except Exception as exc: + error_msg = f"Failed to fetch Jira projects: {exc}" + errors.append(error_msg) + logger.exception(error_msg) + # Total failure — no projects fetched at all + result["status"] = "failed" + result["errors"] = errors + result["finishedAt"] = datetime.now(timezone.utc).isoformat() + return result + + # 3. Load existing catalog for diff + existing_projects, _ = await self._repo.list_projects( + tenant_id, limit=100000, offset=0, + ) + existing_by_key: dict[str, dict] = { + p["project_key"]: p for p in existing_projects + } + + jira_keys_seen: set[str] = set() + + # 4. Process each discovered project + for jp in jira_projects: + key = jp.get("project_key", "") + if not key: + continue + jira_keys_seen.add(key) + + existing = existing_by_key.get(key) + + if existing is None: + # New project + initial_status = "active" if mode == "auto" else "discovered" + activation_source = "auto_mode" if mode == "auto" else None + activated_at = datetime.now(timezone.utc) if mode == "auto" else None + + try: + await self._repo.upsert_project( + tenant_id, + key, + project_id=jp.get("project_id"), + name=jp.get("name"), + project_type=jp.get("project_type"), + lead_account_id=jp.get("lead_account_id"), + status=initial_status, + activation_source=activation_source, + activated_at=activated_at, + ) + result["discoveredCount"] += 1 + if initial_status == "active": + result["activatedCount"] += 1 + except Exception as exc: + errors.append(f"Failed to insert project {key}: {exc}") + logger.exception("Failed to insert project %s", key) + else: + # Existing project — update metadata if changed + changed = False + for field in ("name", "project_type", "lead_account_id"): + if jp.get(field) and jp.get(field) != existing.get(field): + changed = True + break + + if changed: + try: + await self._repo.upsert_project( + tenant_id, + key, + project_id=jp.get("project_id"), + name=jp.get("name"), + project_type=jp.get("project_type"), + lead_account_id=jp.get("lead_account_id"), + ) + result["updatedCount"] += 1 + except Exception as exc: + errors.append(f"Failed to update project {key}: {exc}") + + # 5. Archive projects no longer in Jira + for key, existing in existing_by_key.items(): + if key not in jira_keys_seen and existing["status"] not in ("blocked", "archived"): + try: + await self._repo.update_project_status( + tenant_id, key, + status="archived", + actor="system", + reason="Project no longer returned by Jira API", + ) + result["archivedCount"] += 1 + except Exception as exc: + errors.append(f"Failed to archive project {key}: {exc}") + + # 6. If smart mode, score and auto-activate + if mode == "smart": + try: + await self._prioritizer.score_projects(tenant_id) + activated = await self._prioritizer.auto_activate(tenant_id) + result["activatedCount"] += activated + except Exception as exc: + errors.append(f"Smart prioritizer error: {exc}") + logger.exception("Smart prioritizer failed for tenant %s", tenant_id) + + # 7. Enforce project cap + try: + await self._guardrails.enforce_project_cap(tenant_id) + except Exception as exc: + errors.append(f"Guardrails cap enforcement error: {exc}") + + # 8. Update tenant config with discovery results + finished_at = datetime.now(timezone.utc) + discovery_status = "partial" if errors else "success" + result["status"] = discovery_status + result["finishedAt"] = finished_at.isoformat() + + try: + await self._repo.upsert_tenant_config( + tenant_id, + last_discovery_at=finished_at, + last_discovery_status=discovery_status, + last_discovery_error="; ".join(errors) if errors else None, + ) + except Exception as exc: + logger.exception("Failed to update tenant config after discovery: %s", exc) + + # 9. Audit event + try: + await self._repo.append_audit( + tenant_id, + event_type="discovery_run", + actor="system", + after={ + "run_id": run_id, + "discovered": result["discoveredCount"], + "activated": result["activatedCount"], + "archived": result["archivedCount"], + "updated": result["updatedCount"], + "status": discovery_status, + }, + reason=f"Discovery run completed: {discovery_status}", + ) + except Exception as exc: + logger.exception("Failed to write discovery audit: %s", exc) + + logger.info( + "Discovery run %s for tenant %s: discovered=%d activated=%d archived=%d updated=%d status=%s", + run_id, tenant_id, + result["discoveredCount"], result["activatedCount"], + result["archivedCount"], result["updatedCount"], + discovery_status, + ) + + return result diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/repository.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/repository.py new file mode 100644 index 0000000..25dd243 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/repository.py @@ -0,0 +1,388 @@ +"""Async CRUD repository for Jira dynamic discovery tables. + +Tables: tenant_jira_config, jira_project_catalog, jira_discovery_audit. +All queries filter by tenant_id explicitly (RLS belt-and-suspenders). +""" + +from __future__ import annotations + +import logging +import uuid +from datetime import datetime, timezone +from typing import Any, Literal +from uuid import UUID + +from sqlalchemy import ( + Column, + DateTime, + Integer, + MetaData, + String, + Table, + Text, + and_, + func, + or_, + select, + Boolean, +) +from sqlalchemy.dialects.postgresql import JSONB, UUID as PG_UUID, insert as pg_insert +from sqlalchemy.ext.asyncio import AsyncSession + +logger = logging.getLogger(__name__) + +# --------------------------------------------------------------------------- +# Reflected table definitions (match migration 006 exactly) +# --------------------------------------------------------------------------- +metadata = MetaData() + +tenant_jira_config = Table( + "tenant_jira_config", + metadata, + Column("tenant_id", PG_UUID(as_uuid=True), primary_key=True), + Column("mode", String(16), nullable=False), + Column("discovery_enabled", Boolean, nullable=False), + Column("discovery_schedule_cron", String(64), nullable=False), + Column("max_active_projects", Integer, nullable=False), + Column("max_issues_per_hour", Integer, nullable=False), + Column("smart_pr_scan_days", Integer, nullable=False), + Column("smart_min_pr_references", Integer, nullable=False), + Column("last_discovery_at", DateTime(timezone=True)), + Column("last_discovery_status", String(16)), + Column("last_discovery_error", Text), + Column("created_at", DateTime(timezone=True), server_default=func.now()), + Column("updated_at", DateTime(timezone=True), server_default=func.now()), +) + +jira_project_catalog = Table( + "jira_project_catalog", + metadata, + Column("id", PG_UUID(as_uuid=True), primary_key=True, default=uuid.uuid4), + Column("tenant_id", PG_UUID(as_uuid=True), nullable=False), + Column("project_key", String(64), nullable=False), + Column("project_id", String(64)), + Column("name", String(255)), + Column("project_type", String(32)), + Column("lead_account_id", String(128)), + Column("status", String(16), nullable=False), + Column("activation_source", String(32)), + Column("issue_count", Integer), + Column("pr_reference_count", Integer), + Column("first_seen_at", DateTime(timezone=True), server_default=func.now()), + Column("activated_at", DateTime(timezone=True)), + Column("last_sync_at", DateTime(timezone=True)), + Column("last_sync_status", String(16)), + Column("consecutive_failures", Integer, nullable=False), + Column("last_error", Text), + Column("metadata", JSONB, nullable=False), + Column("created_at", DateTime(timezone=True), server_default=func.now()), + Column("updated_at", DateTime(timezone=True), server_default=func.now()), +) + +jira_discovery_audit = Table( + "jira_discovery_audit", + metadata, + Column("id", PG_UUID(as_uuid=True), primary_key=True, default=uuid.uuid4), + Column("tenant_id", PG_UUID(as_uuid=True), nullable=False), + Column("event_type", String(32), nullable=False), + Column("project_key", String(64)), + Column("actor", String(128)), + Column("before_value", JSONB), + Column("after_value", JSONB), + Column("reason", Text), + Column("created_at", DateTime(timezone=True), server_default=func.now()), +) + + +# --------------------------------------------------------------------------- +# Sort column mapping +# --------------------------------------------------------------------------- +_SORT_COLUMNS = { + "project_key": jira_project_catalog.c.project_key, + "pr_reference_count": jira_project_catalog.c.pr_reference_count, + "issue_count": jira_project_catalog.c.issue_count, + "last_sync_at": jira_project_catalog.c.last_sync_at, +} + + +class DiscoveryRepository: + """Async CRUD for Jira discovery tables. Requires a caller-provided session.""" + + def __init__(self, session: AsyncSession) -> None: + self._session = session + + # ------------------------------------------------------------------ + # tenant_jira_config + # ------------------------------------------------------------------ + + async def get_tenant_config(self, tenant_id: UUID) -> dict[str, Any] | None: + """Return tenant config row as dict, or None if not found.""" + result = await self._session.execute( + select(tenant_jira_config).where( + tenant_jira_config.c.tenant_id == tenant_id + ) + ) + row = result.mappings().first() + return dict(row) if row else None + + async def upsert_tenant_config(self, tenant_id: UUID, **fields: Any) -> dict[str, Any]: + """Insert or update tenant config. Returns the upserted row.""" + now = datetime.now(timezone.utc) + values: dict[str, Any] = {"tenant_id": tenant_id, **fields, "updated_at": now} + + update_set = {k: v for k, v in values.items() if k != "tenant_id"} + + stmt = ( + pg_insert(tenant_jira_config) + .values(**values) + .on_conflict_do_update( + index_elements=["tenant_id"], + set_=update_set, + ) + .returning(*tenant_jira_config.c) + ) + result = await self._session.execute(stmt) + row = result.mappings().first() + return dict(row) if row else values + + # ------------------------------------------------------------------ + # jira_project_catalog + # ------------------------------------------------------------------ + + async def list_projects( + self, + tenant_id: UUID, + status: str | list[str] | None = None, + limit: int = 50, + offset: int = 0, + sort_by: str = "project_key", + sort_dir: Literal["asc", "desc"] = "asc", + search: str | None = None, + ) -> tuple[list[dict[str, Any]], int]: + """List catalog projects with filtering, sorting, pagination. + + Returns (items, total_count). + """ + base = select(jira_project_catalog).where( + jira_project_catalog.c.tenant_id == tenant_id + ) + count_q = select(func.count()).select_from(jira_project_catalog).where( + jira_project_catalog.c.tenant_id == tenant_id + ) + + if status is not None: + statuses = [status] if isinstance(status, str) else status + base = base.where(jira_project_catalog.c.status.in_(statuses)) + count_q = count_q.where(jira_project_catalog.c.status.in_(statuses)) + + if search: + like = f"%{search}%" + search_filter = or_( + jira_project_catalog.c.project_key.ilike(like), + jira_project_catalog.c.name.ilike(like), + ) + base = base.where(search_filter) + count_q = count_q.where(search_filter) + + col = _SORT_COLUMNS.get(sort_by, jira_project_catalog.c.project_key) + order = col.desc() if sort_dir == "desc" else col.asc() + base = base.order_by(order).limit(limit).offset(offset) + + total_result = await self._session.execute(count_q) + total = total_result.scalar() or 0 + + result = await self._session.execute(base) + items = [dict(row) for row in result.mappings().all()] + return items, total + + async def get_project(self, tenant_id: UUID, project_key: str) -> dict[str, Any] | None: + """Get a single catalog project by key.""" + result = await self._session.execute( + select(jira_project_catalog).where( + and_( + jira_project_catalog.c.tenant_id == tenant_id, + jira_project_catalog.c.project_key == project_key, + ) + ) + ) + row = result.mappings().first() + return dict(row) if row else None + + async def upsert_project(self, tenant_id: UUID, project_key: str, **fields: Any) -> dict[str, Any]: + """Insert or update a catalog project using ON CONFLICT ON CONSTRAINT.""" + now = datetime.now(timezone.utc) + values: dict[str, Any] = { + "id": uuid.uuid4(), + "tenant_id": tenant_id, + "project_key": project_key, + "consecutive_failures": 0, + "metadata": {}, + "updated_at": now, + **fields, + } + + # Build update set: everything except PK fields + update_set = { + k: v for k, v in values.items() + if k not in ("id", "tenant_id", "project_key", "first_seen_at", "created_at") + } + + stmt = ( + pg_insert(jira_project_catalog) + .values(**values) + .on_conflict_do_update( + constraint="uq_jira_catalog_tenant_key", + set_=update_set, + ) + .returning(*jira_project_catalog.c) + ) + result = await self._session.execute(stmt) + row = result.mappings().first() + return dict(row) if row else values + + async def update_project_status( + self, + tenant_id: UUID, + project_key: str, + status: str, + source: str | None = None, + actor: str = "system", + reason: str | None = None, + ) -> None: + """Update project status and write audit row atomically.""" + # Fetch current state for audit before_value + current = await self.get_project(tenant_id, project_key) + old_status = current["status"] if current else None + + now = datetime.now(timezone.utc) + update_values: dict[str, Any] = { + "status": status, + "updated_at": now, + } + if source: + update_values["activation_source"] = source + if status == "active": + update_values["activated_at"] = now + + await self._session.execute( + jira_project_catalog.update() + .where( + and_( + jira_project_catalog.c.tenant_id == tenant_id, + jira_project_catalog.c.project_key == project_key, + ) + ) + .values(**update_values) + ) + + # Determine event type from status + event_map = { + "active": "project_activated", + "paused": "project_paused", + "blocked": "project_blocked", + "archived": "project_archived", + } + event_type = event_map.get(status, f"status_changed_to_{status}") + + await self.append_audit( + tenant_id, + event_type=event_type, + project_key=project_key, + actor=actor, + before={"status": old_status} if old_status else None, + after={"status": status}, + reason=reason, + ) + + async def bulk_set_sync_result( + self, + tenant_id: UUID, + results: list[tuple[str, str, str | None]], + ) -> None: + """Bulk update sync status for multiple projects. + + Each tuple: (project_key, status, error_or_none). + """ + now = datetime.now(timezone.utc) + for project_key, status, error in results: + await self._session.execute( + jira_project_catalog.update() + .where( + and_( + jira_project_catalog.c.tenant_id == tenant_id, + jira_project_catalog.c.project_key == project_key, + ) + ) + .values( + last_sync_at=now, + last_sync_status=status, + last_error=error, + updated_at=now, + ) + ) + + # ------------------------------------------------------------------ + # jira_discovery_audit (append-only) + # ------------------------------------------------------------------ + + async def append_audit( + self, + tenant_id: UUID, + event_type: str, + project_key: str | None = None, + actor: str = "system", + before: Any = None, + after: Any = None, + reason: str | None = None, + ) -> UUID: + """Insert an audit row. Returns the new row's ID.""" + row_id = uuid.uuid4() + await self._session.execute( + jira_discovery_audit.insert().values( + id=row_id, + tenant_id=tenant_id, + event_type=event_type, + project_key=project_key, + actor=actor, + before_value=before, + after_value=after, + reason=reason, + ) + ) + return row_id + + async def list_audit( + self, + tenant_id: UUID, + event_type: str | None = None, + project_key: str | None = None, + since: datetime | None = None, + limit: int = 50, + offset: int = 0, + ) -> tuple[list[dict[str, Any]], int]: + """List audit entries with optional filters. Returns (items, total).""" + base = select(jira_discovery_audit).where( + jira_discovery_audit.c.tenant_id == tenant_id + ) + count_q = select(func.count()).select_from(jira_discovery_audit).where( + jira_discovery_audit.c.tenant_id == tenant_id + ) + + if event_type: + base = base.where(jira_discovery_audit.c.event_type == event_type) + count_q = count_q.where(jira_discovery_audit.c.event_type == event_type) + if project_key: + base = base.where(jira_discovery_audit.c.project_key == project_key) + count_q = count_q.where(jira_discovery_audit.c.project_key == project_key) + if since: + base = base.where(jira_discovery_audit.c.created_at >= since) + count_q = count_q.where(jira_discovery_audit.c.created_at >= since) + + base = base.order_by(jira_discovery_audit.c.created_at.desc()).limit(limit).offset(offset) + + total_result = await self._session.execute(count_q) + total = total_result.scalar() or 0 + + result = await self._session.execute(base) + items = [dict(row) for row in result.mappings().all()] + return items, total diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py new file mode 100644 index 0000000..025f076 --- /dev/null +++ b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py @@ -0,0 +1,139 @@ +"""SmartPrioritizer — scores Jira projects by PR reference frequency. + +Scans eng_pull_requests for Jira issue key patterns (e.g., BACK-123) in +title, _head_ref, and _base_ref. Aggregates unique-PR-count per project +prefix and writes results to jira_project_catalog.pr_reference_count. + +In ``smart`` mode, auto-activates discovered projects that meet the +minimum PR reference threshold. +""" + +from __future__ import annotations + +import logging +import re +from collections import defaultdict +from datetime import datetime, timedelta, timezone +from uuid import UUID + +from sqlalchemy import and_, select +from sqlalchemy.ext.asyncio import AsyncSession + +from src.contexts.engineering_data.models import EngPullRequest +from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + +logger = logging.getLogger(__name__) + +# Regex to extract Jira issue keys: 2+ uppercase letters, optional digits, dash, digits. +_JIRA_KEY_RE = re.compile(r"[A-Z][A-Z0-9]+-\d+") + + +def _extract_project_prefixes(text: str) -> set[str]: + """Extract unique Jira project prefixes from text. + + Example: "feat(BACK-123): fix DESC-42 bug" -> {"BACK", "DESC"} + """ + if not text: + return set() + keys = _JIRA_KEY_RE.findall(text) + return {k.split("-")[0] for k in keys} + + +class SmartPrioritizer: + """Scores and auto-activates Jira projects based on PR references.""" + + def __init__(self, session: AsyncSession) -> None: + self._session = session + self._repo = DiscoveryRepository(session) + + async def score_projects(self, tenant_id: UUID) -> dict[str, int]: + """Scan PRs and count unique-PR references per Jira project prefix. + + Looks back ``smart_pr_scan_days`` from tenant config (default 90). + Writes results to catalog via repository.upsert_project. + + Returns: dict mapping project_key -> pr_reference_count. + """ + config = await self._repo.get_tenant_config(tenant_id) + scan_days = config.get("smart_pr_scan_days", 90) if config else 90 + + since = datetime.now(timezone.utc) - timedelta(days=scan_days) + + # Fetch PR title and branch refs from the lookback window. + result = await self._session.execute( + select( + EngPullRequest.external_id, + EngPullRequest.title, + ).where( + and_( + EngPullRequest.tenant_id == tenant_id, + EngPullRequest.created_at >= since, + ) + ) + ) + rows = result.all() + + # Aggregate: per project prefix, count unique PRs referencing it. + prefix_prs: dict[str, set[str]] = defaultdict(set) + for external_id, title in rows: + prefixes: set[str] = set() + prefixes.update(_extract_project_prefixes(title or "")) + # Dedupe per PR: each PR counts once per prefix even if multiple keys + for prefix in prefixes: + prefix_prs[prefix].add(str(external_id)) + + scores: dict[str, int] = { + prefix: len(pr_ids) for prefix, pr_ids in prefix_prs.items() + } + + # Write scores to catalog + for prefix, count in scores.items(): + await self._repo.upsert_project( + tenant_id, prefix, pr_reference_count=count, + ) + + logger.info( + "Scored %d project prefixes from %d PRs (lookback=%d days) for tenant %s", + len(scores), len(rows), scan_days, tenant_id, + ) + return scores + + async def auto_activate(self, tenant_id: UUID) -> int: + """In smart mode, flip discovered -> active for projects meeting threshold. + + Returns count of newly activated projects. + """ + config = await self._repo.get_tenant_config(tenant_id) + if not config or config["mode"] != "smart": + logger.debug( + "auto_activate skipped: mode is not smart for tenant %s", tenant_id, + ) + return 0 + + threshold = config.get("smart_min_pr_references", 3) + + # Find discovered projects meeting threshold + candidates, _ = await self._repo.list_projects( + tenant_id, status="discovered", limit=10000, offset=0, + ) + + activated = 0 + for proj in candidates: + pr_count = proj.get("pr_reference_count") or 0 + if pr_count >= threshold: + await self._repo.update_project_status( + tenant_id, + proj["project_key"], + status="active", + source="smart_pr_scan", + actor="smart_auto", + reason=f"PR reference count {pr_count} >= threshold {threshold}", + ) + activated += 1 + + if activated: + logger.info( + "Smart auto-activated %d projects for tenant %s (threshold=%d)", + activated, tenant_id, threshold, + ) + return activated diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 761568e..03942f3 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -32,6 +32,8 @@ from src.connectors.github_connector import GitHubConnector from src.connectors.jira_connector import JiraConnector from src.connectors.jenkins_connector import JenkinsConnector +from src.contexts.integrations.jira.discovery.mode_resolver import ModeResolver +from src.contexts.integrations.jira.discovery.guardrails import Guardrails from src.contexts.engineering_data.models import ( EngDeployment, EngIssue, @@ -506,7 +508,28 @@ async def _sync_issues(self) -> int: async with get_session(self._tenant_id) as session: since = await _get_watermark(session, self._tenant_id, "issues") - raw_issues = await self._reader.fetch_issues(since=since) + # Resolve project keys via dynamic discovery or env var fallback + project_keys: list[str] | None = None + if settings.dynamic_jira_discovery_enabled: + try: + async with get_session(self._tenant_id) as session: + resolver = ModeResolver(session) + project_keys = await resolver.resolve_active_projects(self._tenant_id) + logger.info( + "Dynamic discovery resolved %d Jira projects for tenant %s", + len(project_keys), self._tenant_id, + ) + except Exception: + logger.exception( + "ModeResolver failed for tenant %s, falling back to env var", + self._tenant_id, + ) + project_keys = None + + fetch_kwargs: dict[str, Any] = {"since": since} + if project_keys is not None: + fetch_kwargs["project_keys"] = project_keys + raw_issues = await self._reader.fetch_issues(**fetch_kwargs) if not raw_issues: logger.info("No new issues to sync") return 0 @@ -546,6 +569,19 @@ async def _sync_issues(self) -> int: session, self._tenant_id, "issues", datetime.now(timezone.utc), count, ) + + # Record sync outcome per project for guardrails (dynamic discovery only) + if settings.dynamic_jira_discovery_enabled and project_keys: + try: + async with get_session(self._tenant_id) as session: + guardrails = Guardrails(session) + for pk in project_keys: + await guardrails.record_sync_outcome( + self._tenant_id, pk, success=True, + ) + except Exception: + logger.exception("Failed to record sync outcomes for guardrails") + return count async def _sync_deployments(self) -> int: diff --git a/pulse/packages/pulse-data/src/workers/discovery_scheduler.py b/pulse/packages/pulse-data/src/workers/discovery_scheduler.py new file mode 100644 index 0000000..ca339c8 --- /dev/null +++ b/pulse/packages/pulse-data/src/workers/discovery_scheduler.py @@ -0,0 +1,217 @@ +"""Discovery Scheduler Worker — runs ProjectDiscoveryService per tenant on cron. + +Uses APScheduler to schedule discovery runs per tenant according to their +``discovery_schedule_cron`` setting. Also exposes an HTTP endpoint for +manual triggering via FastAPI. + +Run: python -m src.workers.discovery_scheduler +""" + +from __future__ import annotations + +import asyncio +import logging +import signal +import uuid +from datetime import datetime, timezone +from typing import Any + +from fastapi import FastAPI, Header, HTTPException +from pydantic import BaseModel + +from src.config import settings +from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, +) +from src.contexts.integrations.jira.discovery.repository import ( + DiscoveryRepository, + tenant_jira_config, +) +from src.database import get_session + +try: + from apscheduler.schedulers.asyncio import AsyncIOScheduler + from apscheduler.triggers.cron import CronTrigger + HAS_APSCHEDULER = True +except ImportError: + HAS_APSCHEDULER = False + +logger = logging.getLogger(__name__) + + +# --------------------------------------------------------------------------- +# Internal API for manual trigger +# --------------------------------------------------------------------------- + +trigger_app = FastAPI(title="discovery-scheduler-internal", docs_url=None) + + +class TriggerRequest(BaseModel): + tenant_id: str + + +class TriggerResponse(BaseModel): + run_id: str + status: str + + +def _check_internal_token(x_internal_token: str | None) -> None: + """Validate the internal API token.""" + expected = getattr(settings, "internal_api_token", "") + if not expected: + # No token configured = allow (dev mode) + return + if x_internal_token != expected: + raise HTTPException(status_code=403, detail="Invalid internal token") + + +@trigger_app.post("/internal/discovery/trigger", response_model=TriggerResponse) +async def trigger_discovery( + body: TriggerRequest, + x_internal_token: str | None = Header(default=None), +) -> TriggerResponse: + """Manually trigger a discovery run for a tenant.""" + _check_internal_token(x_internal_token) + + tenant_id = uuid.UUID(body.tenant_id) + + async with get_session(tenant_id) as session: + from src.connectors.jira_connector import JiraConnector + + try: + jira_client = JiraConnector() + except Exception as exc: + raise HTTPException( + status_code=500, + detail=f"Failed to initialize Jira client: {exc}", + ) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + result = await service.run_discovery(tenant_id) + + return TriggerResponse( + run_id=result["runId"], + status=result["status"], + ) + + +# --------------------------------------------------------------------------- +# Scheduler +# --------------------------------------------------------------------------- + +async def _run_discovery_for_tenant(tenant_id_str: str) -> None: + """Execute a discovery run for one tenant.""" + tenant_id = uuid.UUID(tenant_id_str) + logger.info("Running scheduled discovery for tenant %s", tenant_id) + + try: + async with get_session(tenant_id) as session: + from src.connectors.jira_connector import JiraConnector + + try: + jira_client = JiraConnector() + except Exception: + logger.exception("Failed to init Jira client for tenant %s", tenant_id) + return + + service = ProjectDiscoveryService(session, jira_client=jira_client) + result = await service.run_discovery(tenant_id) + logger.info( + "Discovery run %s for tenant %s completed: %s", + result["runId"], tenant_id, result["status"], + ) + except Exception: + logger.exception("Discovery run failed for tenant %s", tenant_id) + + +async def _load_tenant_schedules() -> list[dict[str, Any]]: + """Load all tenant configs that have discovery enabled.""" + from sqlalchemy import select as sa_select + + async with get_session() as session: + result = await session.execute( + sa_select( + tenant_jira_config.c.tenant_id, + tenant_jira_config.c.discovery_schedule_cron, + tenant_jira_config.c.discovery_enabled, + ) + ) + return [dict(row) for row in result.mappings().all()] + + +def _parse_cron(cron_expr: str) -> dict[str, str]: + """Parse '0 3 * * *' into APScheduler CronTrigger kwargs.""" + parts = cron_expr.strip().split() + if len(parts) != 5: + return {"hour": "3", "minute": "0"} + return { + "minute": parts[0], + "hour": parts[1], + "day": parts[2], + "month": parts[3], + "day_of_week": parts[4], + } + + +async def run_scheduler() -> None: + """Main entry point: start APScheduler + HTTP server.""" + if not HAS_APSCHEDULER: + logger.error( + "apscheduler not installed. Install with: pip install apscheduler" + ) + return + + scheduler = AsyncIOScheduler() + running = True + + def _handle_signal() -> None: + nonlocal running + running = False + scheduler.shutdown(wait=False) + logger.info("Received shutdown signal") + + loop = asyncio.get_running_loop() + for sig in (signal.SIGTERM, signal.SIGINT): + loop.add_signal_handler(sig, _handle_signal) + + # Load tenant schedules and register jobs + try: + tenants = await _load_tenant_schedules() + except Exception: + logger.exception("Failed to load tenant schedules, using empty list") + tenants = [] + + for tenant in tenants: + if not tenant.get("discovery_enabled", True): + continue + cron_expr = tenant.get("discovery_schedule_cron", "0 3 * * *") + cron_kwargs = _parse_cron(cron_expr) + tenant_id_str = str(tenant["tenant_id"]) + scheduler.add_job( + _run_discovery_for_tenant, + CronTrigger(**cron_kwargs), + args=[tenant_id_str], + id=f"discovery-{tenant_id_str}", + replace_existing=True, + ) + logger.info("Scheduled discovery for tenant %s: %s", tenant_id_str, cron_expr) + + scheduler.start() + logger.info("Discovery scheduler started with %d tenant jobs", len(tenants)) + + # Start HTTP server for manual trigger + import uvicorn + + config = uvicorn.Config( + trigger_app, host="0.0.0.0", port=8001, log_level="info", + ) + server = uvicorn.Server(config) + await server.serve() + + +if __name__ == "__main__": + logging.basicConfig( + level=settings.log_level, + format="%(asctime)s %(levelname)s [%(name)s] %(message)s", + ) + asyncio.run(run_scheduler()) diff --git a/pulse/packages/pulse-data/tests/unit/contexts/__init__.py b/pulse/packages/pulse-data/tests/unit/contexts/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/__init__.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/__init__.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/__init__.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/conftest.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/conftest.py new file mode 100644 index 0000000..3f883e3 --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/conftest.py @@ -0,0 +1,78 @@ +"""Shared fixtures for Jira discovery tests.""" + +from __future__ import annotations + +import uuid +from datetime import datetime, timezone +from typing import Any +from unittest.mock import AsyncMock, MagicMock + +import pytest + +TENANT_ID = uuid.UUID("00000000-0000-0000-0000-000000000001") + + +def _dt(year: int, month: int, day: int, hour: int = 0, minute: int = 0) -> datetime: + return datetime(year, month, day, hour, minute, tzinfo=timezone.utc) + + +def make_config( + mode: str = "allowlist", + discovery_enabled: bool = True, + max_active_projects: int = 100, + max_issues_per_hour: int = 20000, + smart_pr_scan_days: int = 90, + smart_min_pr_references: int = 3, + discovery_schedule_cron: str = "0 3 * * *", +) -> dict[str, Any]: + """Build a tenant_jira_config dict for tests.""" + return { + "tenant_id": TENANT_ID, + "mode": mode, + "discovery_enabled": discovery_enabled, + "discovery_schedule_cron": discovery_schedule_cron, + "max_active_projects": max_active_projects, + "max_issues_per_hour": max_issues_per_hour, + "smart_pr_scan_days": smart_pr_scan_days, + "smart_min_pr_references": smart_min_pr_references, + "last_discovery_at": None, + "last_discovery_status": None, + "last_discovery_error": None, + } + + +def make_project( + project_key: str, + status: str = "discovered", + pr_reference_count: int = 0, + consecutive_failures: int = 0, + activation_source: str | None = None, +) -> dict[str, Any]: + """Build a jira_project_catalog dict for tests.""" + return { + "id": uuid.uuid4(), + "tenant_id": TENANT_ID, + "project_key": project_key, + "project_id": f"100{ord(project_key[0])}", + "name": f"Project {project_key}", + "project_type": "software", + "lead_account_id": None, + "status": status, + "activation_source": activation_source, + "issue_count": 0, + "pr_reference_count": pr_reference_count, + "first_seen_at": _dt(2026, 1, 1), + "activated_at": _dt(2026, 1, 1) if status == "active" else None, + "last_sync_at": None, + "last_sync_status": None, + "consecutive_failures": consecutive_failures, + "last_error": None, + "metadata": {}, + "created_at": _dt(2026, 1, 1), + "updated_at": _dt(2026, 1, 1), + } + + +@pytest.fixture +def tenant_id() -> uuid.UUID: + return TENANT_ID diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_guardrails.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_guardrails.py new file mode 100644 index 0000000..38fc87c --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_guardrails.py @@ -0,0 +1,264 @@ +"""Unit tests for Guardrails. + +Covers: cap enforcement order, rate budget token bucket, auto-pause at 5 failures, +blocked-immunity invariant. +""" + +from __future__ import annotations + +from unittest.mock import AsyncMock, MagicMock, patch, call + +import pytest + +from src.contexts.integrations.jira.discovery.guardrails import Guardrails +from tests.unit.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + make_config, + make_project, +) + + +# --------------------------------------------------------------------------- +# Project cap enforcement +# --------------------------------------------------------------------------- + +class TestEnforceProjectCap: + @pytest.mark.asyncio + async def test_cap_pauses_lowest_scoring(self): + """When over cap, lowest pr_reference_count projects are paused first.""" + session = AsyncMock() + guardrails = Guardrails(session) + + with patch.object(guardrails._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(max_active_projects=2) + + # Mock active count = 4 (over cap of 2) + count_mock = MagicMock() + count_mock.scalar.return_value = 4 + + # Mock the select for lowest-scoring projects + to_pause_mock = MagicMock() + to_pause_mock.all.return_value = [("LOW1",), ("LOW2",)] + + session.execute = AsyncMock(side_effect=[count_mock, to_pause_mock]) + + with patch.object( + guardrails._repo, "update_project_status", new_callable=AsyncMock + ) as mock_status: + with patch.object( + guardrails._repo, "append_audit", new_callable=AsyncMock + ): + paused = await guardrails.enforce_project_cap(TENANT_ID) + + assert paused == 2 + # Verify paused projects were the lowest scoring + paused_keys = {c.args[1] for c in mock_status.call_args_list} + assert paused_keys == {"LOW1", "LOW2"} + + @pytest.mark.asyncio + async def test_cap_not_exceeded_no_action(self): + """When under cap, no projects are paused.""" + session = AsyncMock() + guardrails = Guardrails(session) + + with patch.object(guardrails._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(max_active_projects=100) + + count_mock = MagicMock() + count_mock.scalar.return_value = 50 + session.execute = AsyncMock(return_value=count_mock) + + paused = await guardrails.enforce_project_cap(TENANT_ID) + + assert paused == 0 + + @pytest.mark.asyncio + async def test_cap_no_config(self): + session = AsyncMock() + guardrails = Guardrails(session) + + with patch.object(guardrails._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = None + paused = await guardrails.enforce_project_cap(TENANT_ID) + + assert paused == 0 + + +# --------------------------------------------------------------------------- +# Rate budget (token bucket via Redis) +# --------------------------------------------------------------------------- + +class TestEnforceRateBudget: + @pytest.mark.asyncio + async def test_budget_allowed(self): + """Token bucket returns 1 (allowed).""" + session = AsyncMock() + redis_mock = AsyncMock() + redis_mock.eval = AsyncMock(return_value=1) + guardrails = Guardrails(session, redis_client=redis_mock) + + with patch.object(guardrails._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(max_issues_per_hour=20000) + allowed = await guardrails.enforce_rate_budget(TENANT_ID, 100) + + assert allowed is True + + @pytest.mark.asyncio + async def test_budget_denied(self): + """Token bucket returns 0 (denied).""" + session = AsyncMock() + redis_mock = AsyncMock() + redis_mock.eval = AsyncMock(return_value=0) + guardrails = Guardrails(session, redis_client=redis_mock) + + with patch.object(guardrails._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(max_issues_per_hour=100) + allowed = await guardrails.enforce_rate_budget(TENANT_ID, 200) + + assert allowed is False + + @pytest.mark.asyncio + async def test_budget_no_config_allows(self): + """No config = no guardrails = allow.""" + session = AsyncMock() + guardrails = Guardrails(session) + + with patch.object(guardrails._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = None + allowed = await guardrails.enforce_rate_budget(TENANT_ID, 100) + + assert allowed is True + + @pytest.mark.asyncio + async def test_budget_passes_correct_lua_args(self): + """Verify the Lua script receives correct bucket parameters.""" + session = AsyncMock() + redis_mock = AsyncMock() + redis_mock.eval = AsyncMock(return_value=1) + guardrails = Guardrails(session, redis_client=redis_mock) + + with patch.object(guardrails._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(max_issues_per_hour=10000) + await guardrails.enforce_rate_budget(TENANT_ID, 500) + + redis_mock.eval.assert_called_once() + args = redis_mock.eval.call_args + assert args[0][1] == 1 # number of keys + assert args[0][2] == f"jira:ratebudget:{TENANT_ID}" + assert args[0][3] == "500" # requested + assert args[0][4] == "10000" # max_tokens + + +# --------------------------------------------------------------------------- +# Sync outcome + auto-pause +# --------------------------------------------------------------------------- + +class TestRecordSyncOutcome: + @pytest.mark.asyncio + async def test_success_resets_failures(self): + """Successful sync resets consecutive_failures to 0.""" + session = AsyncMock() + guardrails = Guardrails(session) + + project = make_project("BACK", status="active", consecutive_failures=3) + with patch.object(guardrails._repo, "get_project", new_callable=AsyncMock) as mock_get: + mock_get.return_value = project + with patch.object( + guardrails._repo, "upsert_project", new_callable=AsyncMock + ) as mock_upsert: + await guardrails.record_sync_outcome(TENANT_ID, "BACK", success=True) + + mock_upsert.assert_called_once() + _, kwargs = mock_upsert.call_args + assert kwargs.get("consecutive_failures") == 0 + + @pytest.mark.asyncio + async def test_failure_increments_count(self): + """Each failure increments consecutive_failures.""" + session = AsyncMock() + guardrails = Guardrails(session) + + project = make_project("BACK", status="active", consecutive_failures=2) + with patch.object(guardrails._repo, "get_project", new_callable=AsyncMock) as mock_get: + mock_get.return_value = project + with patch.object( + guardrails._repo, "upsert_project", new_callable=AsyncMock + ) as mock_upsert: + with patch.object( + guardrails._repo, "update_project_status", new_callable=AsyncMock + ): + with patch.object( + guardrails._repo, "append_audit", new_callable=AsyncMock + ): + await guardrails.record_sync_outcome( + TENANT_ID, "BACK", success=False, error="timeout", + ) + + mock_upsert.assert_called_once() + kwargs = mock_upsert.call_args.kwargs + assert kwargs.get("consecutive_failures") == 3 + + @pytest.mark.asyncio + async def test_auto_pause_at_5_failures(self): + """Project is paused after 5 consecutive failures.""" + session = AsyncMock() + guardrails = Guardrails(session) + + project = make_project("BACK", status="active", consecutive_failures=4) + with patch.object(guardrails._repo, "get_project", new_callable=AsyncMock) as mock_get: + mock_get.return_value = project + with patch.object( + guardrails._repo, "upsert_project", new_callable=AsyncMock + ): + with patch.object( + guardrails._repo, "update_project_status", new_callable=AsyncMock + ) as mock_status: + with patch.object( + guardrails._repo, "append_audit", new_callable=AsyncMock + ) as mock_audit: + await guardrails.record_sync_outcome( + TENANT_ID, "BACK", success=False, error="500", + ) + + # Should pause (failures went from 4 to 5) + mock_status.assert_called_once() + assert mock_status.call_args.kwargs["status"] == "paused" + + # Should write project_auto_paused audit event + audit_calls = [c for c in mock_audit.call_args_list if c.kwargs.get("event_type") == "project_auto_paused"] + assert len(audit_calls) == 1 + + @pytest.mark.asyncio + async def test_blocked_immune_to_sync_outcome(self): + """Blocked projects are never modified by record_sync_outcome.""" + session = AsyncMock() + guardrails = Guardrails(session) + + project = make_project("SECURE", status="blocked", consecutive_failures=10) + with patch.object(guardrails._repo, "get_project", new_callable=AsyncMock) as mock_get: + mock_get.return_value = project + with patch.object( + guardrails._repo, "upsert_project", new_callable=AsyncMock + ) as mock_upsert: + await guardrails.record_sync_outcome( + TENANT_ID, "SECURE", success=False, error="fail", + ) + + mock_upsert.assert_not_called() + + @pytest.mark.asyncio + async def test_project_not_found(self): + """Non-existent project is a no-op.""" + session = AsyncMock() + guardrails = Guardrails(session) + + with patch.object(guardrails._repo, "get_project", new_callable=AsyncMock) as mock_get: + mock_get.return_value = None + with patch.object( + guardrails._repo, "upsert_project", new_callable=AsyncMock + ) as mock_upsert: + await guardrails.record_sync_outcome( + TENANT_ID, "GHOST", success=False, error="fail", + ) + + mock_upsert.assert_not_called() diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_mode_resolver.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_mode_resolver.py new file mode 100644 index 0000000..700bdf3 --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_mode_resolver.py @@ -0,0 +1,146 @@ +"""Unit tests for ModeResolver. + +Covers all 4 modes and the blocked-invariant. +All DB access is mocked via patching DiscoveryRepository + raw session.execute. +""" + +from __future__ import annotations + +from unittest.mock import AsyncMock, MagicMock, patch + +import pytest + +from src.contexts.integrations.jira.discovery.mode_resolver import ModeResolver +from tests.unit.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + make_config, +) + + +def _mock_session_with_keys(keys: list[str]) -> MagicMock: + """Create a mock session whose execute returns given project keys.""" + rows = [(k,) for k in keys] + result_mock = MagicMock() + result_mock.all.return_value = rows + session = AsyncMock() + session.execute = AsyncMock(return_value=result_mock) + return session + + +class TestModeResolverAuto: + """Mode=auto: discovered + active are included, blocked excluded.""" + + @pytest.mark.asyncio + async def test_auto_returns_discovered_and_active(self): + session = _mock_session_with_keys(["BACK", "DESC", "ENO"]) + resolver = ModeResolver(session) + + with patch.object(resolver._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="auto") + keys = await resolver.resolve_active_projects(TENANT_ID) + + assert keys == ["BACK", "DESC", "ENO"] + + @pytest.mark.asyncio + async def test_auto_excludes_blocked(self): + """Blocked should not appear even in auto mode (DB query filters it).""" + session = _mock_session_with_keys(["BACK", "DESC"]) + resolver = ModeResolver(session) + + with patch.object(resolver._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="auto") + keys = await resolver.resolve_active_projects(TENANT_ID) + + # Verify the SQL query included status != 'blocked' filter + call_args = session.execute.call_args + assert call_args is not None + assert keys == ["BACK", "DESC"] + + +class TestModeResolverAllowlist: + """Mode=allowlist: only active projects.""" + + @pytest.mark.asyncio + async def test_allowlist_only_active(self): + session = _mock_session_with_keys(["BACK"]) + resolver = ModeResolver(session) + + with patch.object(resolver._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="allowlist") + keys = await resolver.resolve_active_projects(TENANT_ID) + + assert keys == ["BACK"] + + +class TestModeResolverBlocklist: + """Mode=blocklist: everything except blocked and archived.""" + + @pytest.mark.asyncio + async def test_blocklist_includes_discovered_active_paused(self): + session = _mock_session_with_keys(["BACK", "DESC", "ENO"]) + resolver = ModeResolver(session) + + with patch.object(resolver._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="blocklist") + keys = await resolver.resolve_active_projects(TENANT_ID) + + assert keys == ["BACK", "DESC", "ENO"] + + +class TestModeResolverSmart: + """Mode=smart: active + discovered with enough PR refs.""" + + @pytest.mark.asyncio + async def test_smart_includes_discovered_above_threshold(self): + session = _mock_session_with_keys(["BACK", "HIGH_REF"]) + resolver = ModeResolver(session) + + with patch.object(resolver._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="smart", smart_min_pr_references=5) + keys = await resolver.resolve_active_projects(TENANT_ID) + + assert keys == ["BACK", "HIGH_REF"] + + @pytest.mark.asyncio + async def test_smart_excludes_blocked(self): + session = _mock_session_with_keys(["BACK"]) + resolver = ModeResolver(session) + + with patch.object(resolver._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="smart") + keys = await resolver.resolve_active_projects(TENANT_ID) + + assert "BLOCKED" not in keys + + +class TestModeResolverBlockedInvariant: + """Blocked is ALWAYS excluded regardless of mode.""" + + @pytest.mark.asyncio + @pytest.mark.parametrize("mode", ["auto", "allowlist", "blocklist", "smart"]) + async def test_blocked_never_returned(self, mode: str): + # Simulate DB returning no blocked projects (correct filter) + session = _mock_session_with_keys(["BACK", "DESC"]) + resolver = ModeResolver(session) + + with patch.object(resolver._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode=mode) + keys = await resolver.resolve_active_projects(TENANT_ID) + + # Keys should never contain BLOCKED + assert "BLOCKED" not in keys + + +class TestModeResolverNoConfig: + """No tenant config returns empty list.""" + + @pytest.mark.asyncio + async def test_no_config_returns_empty(self): + session = AsyncMock() + resolver = ModeResolver(session) + + with patch.object(resolver._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = None + keys = await resolver.resolve_active_projects(TENANT_ID) + + assert keys == [] diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_project_discovery_service.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_project_discovery_service.py new file mode 100644 index 0000000..b1195fd --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_project_discovery_service.py @@ -0,0 +1,242 @@ +"""Unit tests for ProjectDiscoveryService. + +Covers: new/updated/archived diff, partial failure handling, +mode=auto activates vs mode=allowlist keeps discovered. +""" + +from __future__ import annotations + +from unittest.mock import AsyncMock, MagicMock, patch + +import pytest + +from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, +) +from tests.unit.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + make_config, + make_project, +) + + +def _make_jira_project(key: str, name: str = "Test") -> dict: + return { + "project_key": key, + "project_id": f"100{ord(key[0])}", + "name": name, + "project_type": "software", + "lead_account_id": "user123", + } + + +class TestRunDiscoveryNewProjects: + @pytest.mark.asyncio + async def test_new_projects_discovered_in_allowlist_mode(self): + """New projects get status=discovered in allowlist mode.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[_make_jira_project("BACK"), _make_jira_project("DESC")] + ) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="allowlist") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([], 0) + with patch.object(service._repo, "upsert_project", new_callable=AsyncMock) as mock_upsert: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock): + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["discoveredCount"] == 2 + assert result["activatedCount"] == 0 + assert result["status"] == "success" + + # Verify status=discovered was used (not active) + for c in mock_upsert.call_args_list: + assert c.kwargs.get("status") == "discovered" + + @pytest.mark.asyncio + async def test_new_projects_auto_activated_in_auto_mode(self): + """New projects get status=active in auto mode.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[_make_jira_project("BACK")] + ) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="auto") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([], 0) + with patch.object(service._repo, "upsert_project", new_callable=AsyncMock) as mock_upsert: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock): + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["discoveredCount"] == 1 + assert result["activatedCount"] == 1 + mock_upsert.assert_called_once() + assert mock_upsert.call_args.kwargs["status"] == "active" + assert mock_upsert.call_args.kwargs["activation_source"] == "auto_mode" + + +class TestRunDiscoveryUpdatedProjects: + @pytest.mark.asyncio + async def test_metadata_updated_when_changed(self): + """Existing projects get metadata refreshed if name/type/lead changed.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[_make_jira_project("BACK", name="New Name")] + ) + + existing = make_project("BACK", status="active") + existing["name"] = "Old Name" + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="allowlist") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([existing], 1) + with patch.object(service._repo, "upsert_project", new_callable=AsyncMock) as mock_upsert: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock): + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["updatedCount"] == 1 + assert result["discoveredCount"] == 0 + + +class TestRunDiscoveryArchivedProjects: + @pytest.mark.asyncio + async def test_missing_projects_archived(self): + """Projects in catalog but not in Jira get archived.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock(return_value=[]) + + existing = make_project("OLD", status="active") + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="allowlist") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([existing], 1) + with patch.object(service._repo, "update_project_status", new_callable=AsyncMock) as mock_status: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock): + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["archivedCount"] == 1 + mock_status.assert_called_once() + assert mock_status.call_args.kwargs["status"] == "archived" + + @pytest.mark.asyncio + async def test_blocked_not_archived(self): + """Blocked projects are not archived even if missing from Jira.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock(return_value=[]) + + blocked = make_project("SECURE", status="blocked") + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="allowlist") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([blocked], 1) + with patch.object(service._repo, "update_project_status", new_callable=AsyncMock) as mock_status: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock): + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["archivedCount"] == 0 + mock_status.assert_not_called() + + +class TestRunDiscoveryPartialFailure: + @pytest.mark.asyncio + async def test_partial_jira_failure_returns_partial(self): + """If Jira raises an error but some data exists, status is partial.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + side_effect=Exception("Jira API timeout") + ) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="allowlist") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([], 0) + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock): + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["status"] == "failed" + assert len(result["errors"]) > 0 + + +class TestRunDiscoveryDisabled: + @pytest.mark.asyncio + async def test_discovery_disabled_short_circuits(self): + """When discovery_enabled=False, returns success with zero counts.""" + session = AsyncMock() + jira_client = AsyncMock() + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(discovery_enabled=False) + result = await service.run_discovery(TENANT_ID) + + assert result["status"] == "success" + assert result["discoveredCount"] == 0 + jira_client.fetch_all_accessible_projects.assert_not_called() + + +class TestRunDiscoverySmartMode: + @pytest.mark.asyncio + async def test_smart_mode_calls_prioritizer(self): + """In smart mode, score_projects and auto_activate are called.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock(return_value=[]) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="smart") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([], 0) + with patch.object( + service._prioritizer, "score_projects", new_callable=AsyncMock + ) as mock_score: + mock_score.return_value = {} + with patch.object( + service._prioritizer, "auto_activate", new_callable=AsyncMock + ) as mock_activate: + mock_activate.return_value = 2 + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock): + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + mock_score.assert_called_once_with(TENANT_ID) + mock_activate.assert_called_once_with(TENANT_ID) + assert result["activatedCount"] == 2 diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_repository.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_repository.py new file mode 100644 index 0000000..5cd1310 --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_repository.py @@ -0,0 +1,235 @@ +"""Unit tests for DiscoveryRepository. + +Tests CRUD happy paths and audit append-only enforcement. +Since these are unit tests (no real DB), we mock the AsyncSession. +The append-only enforcement is a PostgreSQL RULE (tested at integration level), +but we verify the repository only uses INSERT for audits (never UPDATE/DELETE). +""" + +from __future__ import annotations + +import uuid +from datetime import datetime, timezone +from unittest.mock import AsyncMock, MagicMock, call, patch + +import pytest + +from src.contexts.integrations.jira.discovery.repository import ( + DiscoveryRepository, + jira_discovery_audit, + jira_project_catalog, + tenant_jira_config, +) +from tests.unit.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + make_config, + make_project, +) + + +class TestGetTenantConfig: + @pytest.mark.asyncio + async def test_returns_config_dict(self): + session = AsyncMock() + config = make_config() + result_mock = MagicMock() + result_mock.mappings.return_value.first.return_value = config + session.execute = AsyncMock(return_value=result_mock) + + repo = DiscoveryRepository(session) + result = await repo.get_tenant_config(TENANT_ID) + + assert result is not None + assert result["mode"] == "allowlist" + + @pytest.mark.asyncio + async def test_returns_none_when_not_found(self): + session = AsyncMock() + result_mock = MagicMock() + result_mock.mappings.return_value.first.return_value = None + session.execute = AsyncMock(return_value=result_mock) + + repo = DiscoveryRepository(session) + result = await repo.get_tenant_config(TENANT_ID) + + assert result is None + + +class TestUpsertTenantConfig: + @pytest.mark.asyncio + async def test_upsert_returns_dict(self): + session = AsyncMock() + config = make_config(mode="smart") + result_mock = MagicMock() + result_mock.mappings.return_value.first.return_value = config + session.execute = AsyncMock(return_value=result_mock) + + repo = DiscoveryRepository(session) + result = await repo.upsert_tenant_config(TENANT_ID, mode="smart") + + assert result["mode"] == "smart" + session.execute.assert_called_once() + + +class TestListProjects: + @pytest.mark.asyncio + async def test_list_with_status_filter(self): + session = AsyncMock() + projects = [make_project("BACK"), make_project("DESC")] + + # First call = count, second call = items + count_mock = MagicMock() + count_mock.scalar.return_value = 2 + items_mock = MagicMock() + items_mock.mappings.return_value.all.return_value = projects + session.execute = AsyncMock(side_effect=[count_mock, items_mock]) + + repo = DiscoveryRepository(session) + items, total = await repo.list_projects(TENANT_ID, status="discovered") + + assert total == 2 + assert len(items) == 2 + + @pytest.mark.asyncio + async def test_list_empty(self): + session = AsyncMock() + count_mock = MagicMock() + count_mock.scalar.return_value = 0 + items_mock = MagicMock() + items_mock.mappings.return_value.all.return_value = [] + session.execute = AsyncMock(side_effect=[count_mock, items_mock]) + + repo = DiscoveryRepository(session) + items, total = await repo.list_projects(TENANT_ID) + + assert total == 0 + assert items == [] + + +class TestGetProject: + @pytest.mark.asyncio + async def test_returns_project(self): + session = AsyncMock() + project = make_project("BACK") + result_mock = MagicMock() + result_mock.mappings.return_value.first.return_value = project + session.execute = AsyncMock(return_value=result_mock) + + repo = DiscoveryRepository(session) + result = await repo.get_project(TENANT_ID, "BACK") + + assert result["project_key"] == "BACK" + + @pytest.mark.asyncio + async def test_returns_none_not_found(self): + session = AsyncMock() + result_mock = MagicMock() + result_mock.mappings.return_value.first.return_value = None + session.execute = AsyncMock(return_value=result_mock) + + repo = DiscoveryRepository(session) + result = await repo.get_project(TENANT_ID, "GHOST") + + assert result is None + + +class TestUpsertProject: + @pytest.mark.asyncio + async def test_upsert_executes(self): + session = AsyncMock() + project = make_project("BACK", status="active") + result_mock = MagicMock() + result_mock.mappings.return_value.first.return_value = project + session.execute = AsyncMock(return_value=result_mock) + + repo = DiscoveryRepository(session) + result = await repo.upsert_project(TENANT_ID, "BACK", status="active") + + assert result["project_key"] == "BACK" + session.execute.assert_called_once() + + +class TestUpdateProjectStatus: + @pytest.mark.asyncio + async def test_writes_audit_atomically(self): + session = AsyncMock() + project = make_project("BACK", status="discovered") + result_mock = MagicMock() + result_mock.mappings.return_value.first.return_value = project + session.execute = AsyncMock(return_value=result_mock) + + repo = DiscoveryRepository(session) + await repo.update_project_status( + TENANT_ID, "BACK", status="active", actor="admin", reason="Approved", + ) + + # Should have 3 execute calls: get_project, update status, insert audit + assert session.execute.call_count == 3 + + +class TestAppendAudit: + @pytest.mark.asyncio + async def test_insert_returns_id(self): + session = AsyncMock() + repo = DiscoveryRepository(session) + + row_id = await repo.append_audit( + TENANT_ID, event_type="discovery_run", actor="system", + ) + + assert isinstance(row_id, uuid.UUID) + session.execute.assert_called_once() + + @pytest.mark.asyncio + async def test_audit_uses_insert_only(self): + """Verify the repository ONLY uses INSERT for audit (never UPDATE/DELETE). + + The actual DB enforcement is via PostgreSQL RULEs (no_update_audit, + no_delete_audit) — tested at integration level. Here we verify the + repository code path only issues INSERT statements. + """ + session = AsyncMock() + repo = DiscoveryRepository(session) + + await repo.append_audit(TENANT_ID, event_type="test_event") + + # Inspect the compiled statement + call_args = session.execute.call_args + stmt = call_args[0][0] + # SQLAlchemy Insert objects have an .is_insert property + assert hasattr(stmt, "is_insert") or "INSERT" in str(stmt).upper() + + +class TestListAudit: + @pytest.mark.asyncio + async def test_list_with_filters(self): + session = AsyncMock() + audits = [ + {"id": uuid.uuid4(), "event_type": "discovery_run", "tenant_id": TENANT_ID}, + ] + count_mock = MagicMock() + count_mock.scalar.return_value = 1 + items_mock = MagicMock() + items_mock.mappings.return_value.all.return_value = audits + session.execute = AsyncMock(side_effect=[count_mock, items_mock]) + + repo = DiscoveryRepository(session) + items, total = await repo.list_audit(TENANT_ID, event_type="discovery_run") + + assert total == 1 + assert len(items) == 1 + + +class TestBulkSetSyncResult: + @pytest.mark.asyncio + async def test_bulk_updates_multiple_projects(self): + session = AsyncMock() + repo = DiscoveryRepository(session) + + results = [ + ("BACK", "success", None), + ("DESC", "failed", "timeout"), + ] + await repo.bulk_set_sync_result(TENANT_ID, results) + + assert session.execute.call_count == 2 diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_smart_prioritizer.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_smart_prioritizer.py new file mode 100644 index 0000000..08faf4d --- /dev/null +++ b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_smart_prioritizer.py @@ -0,0 +1,190 @@ +"""Unit tests for SmartPrioritizer. + +Covers: regex extraction, scoring aggregation, threshold gating, +auto_activate only in smart mode. +""" + +from __future__ import annotations + +from unittest.mock import AsyncMock, MagicMock, patch + +import pytest + +from src.contexts.integrations.jira.discovery.smart_prioritizer import ( + SmartPrioritizer, + _extract_project_prefixes, +) +from tests.unit.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + make_config, + make_project, +) + + +# --------------------------------------------------------------------------- +# Regex extraction unit tests +# --------------------------------------------------------------------------- + +class TestExtractProjectPrefixes: + def test_single_key(self): + assert _extract_project_prefixes("feat(BACK-123): fix login") == {"BACK"} + + def test_multiple_keys(self): + result = _extract_project_prefixes("BACK-1 DESC-42 ENO-100") + assert result == {"BACK", "DESC", "ENO"} + + def test_duplicate_keys_same_prefix(self): + result = _extract_project_prefixes("BACK-1 BACK-2 BACK-3") + assert result == {"BACK"} + + def test_no_match(self): + assert _extract_project_prefixes("fix: update readme") == set() + + def test_empty_string(self): + assert _extract_project_prefixes("") == set() + + def test_none(self): + assert _extract_project_prefixes(None) == set() + + def test_key_in_branch_name(self): + result = _extract_project_prefixes("feature/BACK-123-user-auth") + assert result == {"BACK"} + + def test_alphanumeric_prefix(self): + result = _extract_project_prefixes("CK2-45 and A1B-99") + assert result == {"CK2", "A1B"} + + def test_lowercase_not_matched(self): + result = _extract_project_prefixes("back-123") + assert result == set() + + +# --------------------------------------------------------------------------- +# Scoring +# --------------------------------------------------------------------------- + +class TestScoreProjects: + @pytest.mark.asyncio + async def test_score_aggregates_unique_prs(self): + """Each PR counts once per prefix, even with multiple keys.""" + session = AsyncMock() + prioritizer = SmartPrioritizer(session) + + # Mock config + with patch.object(prioritizer._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(smart_pr_scan_days=90) + + # Mock PR query: 3 PRs referencing BACK, 1 referencing DESC + rows = [ + ("pr-1", "feat(BACK-1): something"), + ("pr-2", "fix(BACK-2, DESC-10): other"), + ("pr-3", "BACK-3 in title"), + ] + result_mock = MagicMock() + result_mock.all.return_value = rows + session.execute = AsyncMock(return_value=result_mock) + + with patch.object(prioritizer._repo, "upsert_project", new_callable=AsyncMock) as mock_upsert: + scores = await prioritizer.score_projects(TENANT_ID) + + assert scores["BACK"] == 3 + assert scores["DESC"] == 1 + assert mock_upsert.call_count == 2 # One per prefix + + @pytest.mark.asyncio + async def test_score_empty_prs(self): + """No PRs -> empty scores.""" + session = AsyncMock() + prioritizer = SmartPrioritizer(session) + + with patch.object(prioritizer._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config() + result_mock = MagicMock() + result_mock.all.return_value = [] + session.execute = AsyncMock(return_value=result_mock) + + with patch.object(prioritizer._repo, "upsert_project", new_callable=AsyncMock): + scores = await prioritizer.score_projects(TENANT_ID) + + assert scores == {} + + +# --------------------------------------------------------------------------- +# Auto-activate +# --------------------------------------------------------------------------- + +class TestAutoActivate: + @pytest.mark.asyncio + async def test_auto_activate_in_smart_mode(self): + """Discovered projects above threshold get activated.""" + session = AsyncMock() + prioritizer = SmartPrioritizer(session) + + with patch.object(prioritizer._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="smart", smart_min_pr_references=3) + + candidates = [ + make_project("BACK", status="discovered", pr_reference_count=10), + make_project("DESC", status="discovered", pr_reference_count=1), + make_project("ENO", status="discovered", pr_reference_count=5), + ] + with patch.object( + prioritizer._repo, "list_projects", new_callable=AsyncMock + ) as mock_list: + mock_list.return_value = (candidates, len(candidates)) + + with patch.object( + prioritizer._repo, "update_project_status", new_callable=AsyncMock + ) as mock_update: + activated = await prioritizer.auto_activate(TENANT_ID) + + # BACK (10) and ENO (5) meet threshold 3; DESC (1) does not + assert activated == 2 + assert mock_update.call_count == 2 + activated_keys = {call.args[1] for call in mock_update.call_args_list} + assert activated_keys == {"BACK", "ENO"} + + @pytest.mark.asyncio + async def test_auto_activate_skips_non_smart_mode(self): + """auto_activate is a no-op when mode is not smart.""" + session = AsyncMock() + prioritizer = SmartPrioritizer(session) + + with patch.object(prioritizer._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="allowlist") + activated = await prioritizer.auto_activate(TENANT_ID) + + assert activated == 0 + + @pytest.mark.asyncio + async def test_auto_activate_no_config(self): + session = AsyncMock() + prioritizer = SmartPrioritizer(session) + + with patch.object(prioritizer._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = None + activated = await prioritizer.auto_activate(TENANT_ID) + + assert activated == 0 + + @pytest.mark.asyncio + async def test_auto_activate_uses_smart_pr_scan_source(self): + """Verify activation_source is 'smart_pr_scan'.""" + session = AsyncMock() + prioritizer = SmartPrioritizer(session) + + with patch.object(prioritizer._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="smart", smart_min_pr_references=1) + + candidates = [make_project("BACK", status="discovered", pr_reference_count=5)] + with patch.object(prioritizer._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = (candidates, 1) + with patch.object( + prioritizer._repo, "update_project_status", new_callable=AsyncMock + ) as mock_update: + await prioritizer.auto_activate(TENANT_ID) + + mock_update.assert_called_once() + call_kwargs = mock_update.call_args + assert call_kwargs.kwargs.get("source") == "smart_pr_scan" + assert call_kwargs.kwargs.get("actor") == "smart_auto" From bea8b13e83252f9e391d7d3fa736b992d3133cb7 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 16:28:43 -0300 Subject: [PATCH 15/64] feat(jira-admin): API endpoints + React UI for dynamic discovery (Phase 2) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Phase 2a — pulse-api (NestJS): - /api/v1/admin/integrations/jira module: config GET/PUT, projects list/detail, activate/pause/block/resume actions, discovery trigger (proxies pulse-data /internal/discovery/trigger with X-Internal-Token), discovery status, audit list, smart suggestions. - AdminRoleGuard accepts tenant_admin/admin roles. - Raw SQL via QueryRunner with SET LOCAL app.current_tenant per transaction — no entity duplication of pulse-data schema. Strict status-transition validation. Audit row written on every mutation. - @pulse/shared types imported via tsconfig path alias + Jest moduleNameMapper. - 34/34 tests pass (controller/service/guard specs). Phase 2b — pulse-web (React + TanStack): - Route tree: /settings/integrations/jira with 3 tabs (Projetos default, Configuração, Auditoria) under _dashboard layout. - Components: mode-selector (4 radio cards), project-catalog-table (filters + bulk actions + side panel + skeleton), project-row-actions (status-aware dropdown), smart-suggestions-banner (dismissible), discovery-status-badge (live/idle/failed), discovery-trigger-button (with polling on trigger). - API client (src/lib/api/jira-admin.ts) + TanStack Query hooks (useJiraAdmin.ts) with optimistic updates + rollback. - @pulse/shared wired via Vite/Vitest/tsconfig aliases (no workspace manager yet — file: dep removed since aliases suffice). - tsconfig.node.json: dropped composite project mode to resolve allowImportingTsExtensions conflict blocking build. - @testing-library/dom added to devDeps to fix screen/fireEvent types. - Sidebar: new "Jira Settings" entry. Verification: 31/31 pulse-web tests pass; vite build succeeds. Phase 3 (CISO review + integration/E2E/load tests) and Phase 4 (rollout) follow. Co-Authored-By: Claude Opus 4.6 --- pulse/packages/pulse-api/package.json | 1 + pulse/packages/pulse-api/src/app.module.ts | 2 + .../pulse-api/src/config/env.validation.ts | 12 + .../jira-admin/dto/list-query.dto.ts | 107 +++ .../jira-admin/dto/project-action.dto.ts | 12 + .../jira-admin/dto/update-config.dto.ts | 53 ++ .../guards/admin-role.guard.spec.ts | 57 ++ .../jira-admin/guards/admin-role.guard.ts | 57 ++ .../jira-admin/jira-admin.controller.spec.ts | 258 +++++++ .../jira-admin/jira-admin.controller.ts | 161 +++++ .../jira-admin/jira-admin.module.ts | 18 + .../jira-admin/jira-admin.service.spec.ts | 364 ++++++++++ .../jira-admin/jira-admin.service.ts | 587 ++++++++++++++++ pulse/packages/pulse-api/tsconfig.json | 5 +- pulse/packages/pulse-web/package-lock.json | 110 +++ pulse/packages/pulse-web/package.json | 1 + .../src/components/layout/Sidebar.tsx | 2 + .../pulse-web/src/hooks/useJiraAdmin.ts | 255 +++++++ .../src/lib/api/__tests__/jira-admin.test.ts | 161 +++++ .../pulse-web/src/lib/api/jira-admin.ts | 156 +++++ pulse/packages/pulse-web/src/routeTree.gen.ts | 9 + .../__tests__/mode-selector.test.tsx | 46 ++ .../__tests__/project-catalog-table.test.tsx | 167 +++++ .../__tests__/project-row-actions.test.tsx | 74 ++ .../_components/discovery-status-badge.tsx | 45 ++ .../_components/discovery-trigger-button.tsx | 72 ++ .../_components/mode-selector.tsx | 102 +++ .../_components/project-catalog-table.tsx | 645 ++++++++++++++++++ .../_components/project-row-actions.tsx | 123 ++++ .../_components/smart-suggestions-banner.tsx | 58 ++ .../settings/integrations/jira.audit.tsx | 298 ++++++++ .../settings/integrations/jira.catalog.tsx | 29 + .../settings/integrations/jira.config.tsx | 298 ++++++++ .../_dashboard/settings/integrations/jira.tsx | 78 +++ pulse/packages/pulse-web/tsconfig.json | 6 +- pulse/packages/pulse-web/tsconfig.node.json | 7 +- pulse/packages/pulse-web/vite.config.ts | 1 + pulse/packages/pulse-web/vitest.config.ts | 1 + 38 files changed, 4430 insertions(+), 8 deletions(-) create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/list-query.dto.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/project-action.dto.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/update-config.dto.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.spec.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.spec.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.module.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.spec.ts create mode 100644 pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts create mode 100644 pulse/packages/pulse-web/src/hooks/useJiraAdmin.ts create mode 100644 pulse/packages/pulse-web/src/lib/api/__tests__/jira-admin.test.ts create mode 100644 pulse/packages/pulse-web/src/lib/api/jira-admin.ts create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/mode-selector.test.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-catalog-table.test.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-row-actions.test.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/discovery-status-badge.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/discovery-trigger-button.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-catalog-table.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-row-actions.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/smart-suggestions-banner.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.audit.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.catalog.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.config.tsx create mode 100644 pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.tsx diff --git a/pulse/packages/pulse-api/package.json b/pulse/packages/pulse-api/package.json index b81dc2c..e746def 100644 --- a/pulse/packages/pulse-api/package.json +++ b/pulse/packages/pulse-api/package.json @@ -84,6 +84,7 @@ "coverageDirectory": "./coverage", "testEnvironment": "node", "moduleNameMapper": { + "^@pulse/shared/(.*)$": "/../pulse-shared/src/$1", "^@/(.*)$": "/src/$1" } } diff --git a/pulse/packages/pulse-api/src/app.module.ts b/pulse/packages/pulse-api/src/app.module.ts index 27d3a85..614746f 100644 --- a/pulse/packages/pulse-api/src/app.module.ts +++ b/pulse/packages/pulse-api/src/app.module.ts @@ -9,6 +9,7 @@ import { TenantGuard } from './common/guards/tenant.guard'; import { TenantInterceptor } from './common/interceptors/tenant.interceptor'; import { IdentityModule } from './modules/identity/identity.module'; import { IntegrationModule } from './modules/integration/integration.module'; +import { JiraAdminModule } from './modules/integrations/jira-admin/jira-admin.module'; @Module({ imports: [ @@ -23,6 +24,7 @@ import { IntegrationModule } from './modules/integration/integration.module'; KafkaModule, IdentityModule, IntegrationModule, + JiraAdminModule, ], providers: [ { diff --git a/pulse/packages/pulse-api/src/config/env.validation.ts b/pulse/packages/pulse-api/src/config/env.validation.ts index 94de187..e483d71 100644 --- a/pulse/packages/pulse-api/src/config/env.validation.ts +++ b/pulse/packages/pulse-api/src/config/env.validation.ts @@ -31,6 +31,18 @@ export const envSchema = z.object({ .string() .default('http://localhost:5173'), + PULSE_DATA_URL: z + .string() + .url() + .default('http://localhost:8001') + .describe('Base URL for pulse-data internal API (discovery scheduler)'), + + INTERNAL_API_TOKEN: z + .string() + .optional() + .default('') + .describe('Shared secret for internal service-to-service calls'), + DEFAULT_TENANT_ID: z .string() .uuid() diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/list-query.dto.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/list-query.dto.ts new file mode 100644 index 0000000..3d9a92a --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/list-query.dto.ts @@ -0,0 +1,107 @@ +import { + IsIn, + IsInt, + IsOptional, + IsString, + Max, + Min, +} from 'class-validator'; +import { Transform, Type } from 'class-transformer'; + +const PROJECT_STATUSES = [ + 'discovered', + 'active', + 'paused', + 'blocked', + 'archived', +] as const; + +const PROJECT_SORT_FIELDS = [ + 'project_key', + 'pr_reference_count', + 'issue_count', + 'last_sync_at', +] as const; + +const AUDIT_EVENT_TYPES = [ + 'discovery_run', + 'mode_changed', + 'project_activated', + 'project_paused', + 'project_blocked', + 'project_resumed', + 'project_auto_paused', + 'project_cap_enforced', +] as const; + +/** + * DTO for GET /projects query params. + * Maps to JiraProjectCatalogQuery from @pulse/shared. + */ +export class ProjectCatalogQueryDto { + @IsOptional() + @Transform(({ value }: { value: unknown }) => + typeof value === 'string' ? value.split(',') : value, + ) + @IsIn(PROJECT_STATUSES, { each: true }) + status?: string[]; + + @IsOptional() + @IsString() + search?: string; + + @IsOptional() + @Type(() => Number) + @IsInt() + @Min(1) + @Max(200) + limit?: number; + + @IsOptional() + @Type(() => Number) + @IsInt() + @Min(0) + offset?: number; + + @IsOptional() + @IsIn([...PROJECT_SORT_FIELDS]) + sortBy?: string; + + @IsOptional() + @IsIn(['asc', 'desc']) + sortDir?: 'asc' | 'desc'; +} + +/** + * DTO for GET /audit query params. + * Maps to JiraAuditQuery from @pulse/shared. + */ +export class AuditQueryDto { + @IsOptional() + @Transform(({ value }: { value: unknown }) => + typeof value === 'string' ? value.split(',') : value, + ) + @IsIn([...AUDIT_EVENT_TYPES], { each: true }) + eventType?: string[]; + + @IsOptional() + @IsString() + projectKey?: string; + + @IsOptional() + @IsString() + since?: string; + + @IsOptional() + @Type(() => Number) + @IsInt() + @Min(1) + @Max(200) + limit?: number; + + @IsOptional() + @Type(() => Number) + @IsInt() + @Min(0) + offset?: number; +} diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/project-action.dto.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/project-action.dto.ts new file mode 100644 index 0000000..7f08ef0 --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/project-action.dto.ts @@ -0,0 +1,12 @@ +import { IsOptional, IsString, MaxLength } from 'class-validator'; + +/** + * DTO for POST /projects/:key/{activate|pause|block|resume}. + * Maps to JiraProjectActionInput from @pulse/shared. + */ +export class ProjectActionDto { + @IsOptional() + @IsString() + @MaxLength(500) + reason?: string; +} diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/update-config.dto.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/update-config.dto.ts new file mode 100644 index 0000000..a302c9c --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/update-config.dto.ts @@ -0,0 +1,53 @@ +import { + IsBoolean, + IsIn, + IsInt, + IsOptional, + IsString, + Max, + Min, +} from 'class-validator'; + +const DISCOVERY_MODES = ['auto', 'allowlist', 'blocklist', 'smart'] as const; + +/** + * DTO for PUT /api/v1/admin/integrations/jira/config. + * Maps to UpdateTenantJiraConfigInput from @pulse/shared. + */ +export class UpdateConfigDto { + @IsOptional() + @IsIn(DISCOVERY_MODES) + mode?: 'auto' | 'allowlist' | 'blocklist' | 'smart'; + + @IsOptional() + @IsBoolean() + discoveryEnabled?: boolean; + + @IsOptional() + @IsString() + discoveryScheduleCron?: string; + + @IsOptional() + @IsInt() + @Min(1) + @Max(500) + maxActiveProjects?: number; + + @IsOptional() + @IsInt() + @Min(100) + @Max(100_000) + maxIssuesPerHour?: number; + + @IsOptional() + @IsInt() + @Min(1) + @Max(365) + smartPrScanDays?: number; + + @IsOptional() + @IsInt() + @Min(1) + @Max(1000) + smartMinPrReferences?: number; +} diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.spec.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.spec.ts new file mode 100644 index 0000000..c5be52c --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.spec.ts @@ -0,0 +1,57 @@ +import { ExecutionContext, ForbiddenException } from '@nestjs/common'; +import { AdminRoleGuard } from './admin-role.guard'; + +function createMockContext(user?: Record): ExecutionContext { + return { + switchToHttp: () => ({ + getRequest: () => ({ user }), + }), + } as unknown as ExecutionContext; +} + +describe('AdminRoleGuard', () => { + let guard: AdminRoleGuard; + + beforeEach(() => { + guard = new AdminRoleGuard(); + }); + + it('should allow user with tenant_admin role', () => { + const ctx = createMockContext({ + id: 'u1', + roles: ['tenant_admin'], + role: 'tenant_admin', + }); + expect(guard.canActivate(ctx)).toBe(true); + }); + + it('should allow user with admin role (MVP stub)', () => { + const ctx = createMockContext({ + id: 'u1', + role: 'admin', + }); + expect(guard.canActivate(ctx)).toBe(true); + }); + + it('should deny user with member role', () => { + const ctx = createMockContext({ + id: 'u1', + role: 'member', + }); + expect(() => guard.canActivate(ctx)).toThrow(ForbiddenException); + }); + + it('should deny when no user on request', () => { + const ctx = createMockContext(undefined); + expect(() => guard.canActivate(ctx)).toThrow(ForbiddenException); + }); + + it('should check roles array over single role field', () => { + const ctx = createMockContext({ + id: 'u1', + roles: ['viewer', 'tenant_admin'], + role: 'viewer', + }); + expect(guard.canActivate(ctx)).toBe(true); + }); +}); diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.ts new file mode 100644 index 0000000..6f7afef --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.ts @@ -0,0 +1,57 @@ +import { + CanActivate, + ExecutionContext, + ForbiddenException, + Injectable, + Logger, +} from '@nestjs/common'; +import type { Request } from 'express'; + +interface RequestWithUser extends Request { + user?: { + id: string; + role: string; + roles?: string[]; + }; +} + +/** + * Guard that requires the requesting user to have the `tenant_admin` role. + * + * In MVP, the default user stub has role='admin' which maps to tenant_admin. + * In production, this will check JWT-derived roles. + */ +@Injectable() +export class AdminRoleGuard implements CanActivate { + private readonly logger = new Logger(AdminRoleGuard.name); + + canActivate(context: ExecutionContext): boolean { + const request = context.switchToHttp().getRequest(); + const user = request.user; + + // MVP: if no user attached, check for default stub + if (!user) { + this.logger.debug('AdminRoleGuard: no user on request, denying access'); + throw new ForbiddenException( + 'Admin role required. No authenticated user found.', + ); + } + + // Check roles array (production path) or single role field (MVP stub) + const roles = user.roles ?? [user.role]; + const isAdmin = + roles.includes('tenant_admin') || roles.includes('admin'); + + if (!isAdmin) { + this.logger.warn( + `AdminRoleGuard: user ${user.id} denied — roles: ${roles.join(', ')}`, + ); + throw new ForbiddenException( + 'This endpoint requires the tenant_admin role.', + ); + } + + this.logger.debug(`AdminRoleGuard: user ${user.id} authorized`); + return true; + } +} diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.spec.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.spec.ts new file mode 100644 index 0000000..f049bbe --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.spec.ts @@ -0,0 +1,258 @@ +import { Test, TestingModule } from '@nestjs/testing'; +import { JiraAdminController } from './jira-admin.controller'; +import { JiraAdminService } from './jira-admin.service'; +import type { CurrentUserPayload } from '@/common/decorators/current-user.decorator'; +import type { + TenantJiraConfig, + JiraProjectCatalogEntry, + JiraProjectCatalogListResponse, + JiraDiscoveryStatusResponse, + JiraAuditListResponse, + JiraSmartSuggestionsResponse, +} from '@pulse/shared/types/jira-admin'; + +const TENANT_ID = '00000000-0000-0000-0000-000000000001'; +const USER: CurrentUserPayload = { + id: '00000000-0000-0000-0000-000000000099', + email: 'admin@test.com', + name: 'Test Admin', + orgId: TENANT_ID, + role: 'admin', +}; + +const mockConfig: TenantJiraConfig = { + tenantId: TENANT_ID, + mode: 'smart', + discoveryEnabled: true, + discoveryScheduleCron: '0 3 * * *', + maxActiveProjects: 100, + maxIssuesPerHour: 10000, + smartPrScanDays: 90, + smartMinPrReferences: 5, + lastDiscoveryAt: null, + lastDiscoveryStatus: null, + lastDiscoveryError: null, + createdAt: '2026-01-01T00:00:00Z', + updatedAt: '2026-01-01T00:00:00Z', +}; + +const mockCatalogEntry: JiraProjectCatalogEntry = { + id: 'cat-1', + tenantId: TENANT_ID, + projectKey: 'PULSE', + projectId: '10001', + name: 'PULSE Project', + projectType: 'software', + leadAccountId: null, + status: 'discovered', + activationSource: null, + issueCount: 42, + prReferenceCount: 10, + firstSeenAt: '2026-01-01T00:00:00Z', + activatedAt: null, + lastSyncAt: null, + lastSyncStatus: null, + consecutiveFailures: 0, + lastError: null, + metadata: {}, + createdAt: '2026-01-01T00:00:00Z', + updatedAt: '2026-01-01T00:00:00Z', +}; + +const mockListResponse: JiraProjectCatalogListResponse = { + items: [mockCatalogEntry], + total: 1, + counts: { discovered: 1, active: 0, paused: 0, blocked: 0, archived: 0 }, +}; + +const mockDiscoveryStatus: JiraDiscoveryStatusResponse = { + inFlight: false, + currentRunId: null, + lastRun: null, + tenantConfig: { + mode: 'smart', + discoveryEnabled: true, + discoveryScheduleCron: '0 3 * * *', + lastDiscoveryAt: null, + lastDiscoveryStatus: null, + }, +}; + +const mockAuditResponse: JiraAuditListResponse = { + items: [], + total: 0, +}; + +const mockSuggestions: JiraSmartSuggestionsResponse = { + items: [ + { + projectKey: 'CKP', + prReferenceCount: 524, + suggestedAction: 'activate', + reason: 'Referenced in 524 PRs', + }, + ], + thresholdPrReferences: 5, +}; + +describe('JiraAdminController', () => { + let controller: JiraAdminController; + let service: jest.Mocked; + + beforeEach(async () => { + const mockService = { + getConfig: jest.fn(), + updateConfig: jest.fn(), + listProjects: jest.fn(), + getProject: jest.fn(), + changeProjectStatus: jest.fn(), + triggerDiscovery: jest.fn(), + getDiscoveryStatus: jest.fn(), + listAudit: jest.fn(), + getSmartSuggestions: jest.fn(), + }; + + const module: TestingModule = await Test.createTestingModule({ + controllers: [JiraAdminController], + providers: [ + { provide: JiraAdminService, useValue: mockService }, + ], + }).compile(); + + controller = module.get(JiraAdminController); + service = module.get(JiraAdminService) as jest.Mocked; + }); + + describe('GET /config', () => { + it('should return tenant config', async () => { + service.getConfig.mockResolvedValue(mockConfig); + const result = await controller.getConfig(TENANT_ID); + expect(result).toEqual(mockConfig); + expect(service.getConfig).toHaveBeenCalledWith(TENANT_ID); + }); + }); + + describe('PUT /config', () => { + it('should update config and pass actor id', async () => { + const updated = { ...mockConfig, mode: 'auto' as const }; + service.updateConfig.mockResolvedValue(updated); + const dto = { mode: 'auto' as const }; + const result = await controller.updateConfig(TENANT_ID, USER, dto); + expect(result.mode).toBe('auto'); + expect(service.updateConfig).toHaveBeenCalledWith( + TENANT_ID, dto, USER.id, + ); + }); + }); + + describe('GET /projects', () => { + it('should return project catalog list', async () => { + service.listProjects.mockResolvedValue(mockListResponse); + const result = await controller.listProjects(TENANT_ID, {}); + expect(result.items).toHaveLength(1); + expect(result.total).toBe(1); + expect(result.counts.discovered).toBe(1); + }); + + it('should pass query filters to service', async () => { + service.listProjects.mockResolvedValue(mockListResponse); + const query = { status: ['active'], search: 'PULSE', limit: 10, offset: 0 }; + await controller.listProjects(TENANT_ID, query); + expect(service.listProjects).toHaveBeenCalledWith(TENANT_ID, query); + }); + }); + + describe('GET /projects/:key', () => { + it('should return single project', async () => { + service.getProject.mockResolvedValue(mockCatalogEntry); + const result = await controller.getProject(TENANT_ID, 'PULSE'); + expect(result.projectKey).toBe('PULSE'); + }); + }); + + describe('POST /projects/:key/activate', () => { + it('should activate a project', async () => { + const activated = { ...mockCatalogEntry, status: 'active' as const }; + service.changeProjectStatus.mockResolvedValue(activated); + const result = await controller.activateProject( + TENANT_ID, USER, 'PULSE', { reason: 'Need this data' }, + ); + expect(result.status).toBe('active'); + expect(service.changeProjectStatus).toHaveBeenCalledWith( + TENANT_ID, 'PULSE', 'activate', { reason: 'Need this data' }, USER.id, + ); + }); + }); + + describe('POST /projects/:key/pause', () => { + it('should pause a project', async () => { + const paused = { ...mockCatalogEntry, status: 'paused' as const }; + service.changeProjectStatus.mockResolvedValue(paused); + const result = await controller.pauseProject( + TENANT_ID, USER, 'PULSE', {}, + ); + expect(result.status).toBe('paused'); + expect(service.changeProjectStatus).toHaveBeenCalledWith( + TENANT_ID, 'PULSE', 'pause', {}, USER.id, + ); + }); + }); + + describe('POST /projects/:key/block', () => { + it('should block a project', async () => { + const blocked = { ...mockCatalogEntry, status: 'blocked' as const }; + service.changeProjectStatus.mockResolvedValue(blocked); + const result = await controller.blockProject( + TENANT_ID, USER, 'PULSE', { reason: 'HR project' }, + ); + expect(result.status).toBe('blocked'); + }); + }); + + describe('POST /projects/:key/resume', () => { + it('should resume a project', async () => { + const resumed = { ...mockCatalogEntry, status: 'active' as const }; + service.changeProjectStatus.mockResolvedValue(resumed); + const result = await controller.resumeProject( + TENANT_ID, USER, 'PULSE', {}, + ); + expect(result.status).toBe('active'); + }); + }); + + describe('POST /discovery/trigger', () => { + it('should return runId', async () => { + service.triggerDiscovery.mockResolvedValue({ runId: 'run-123' }); + const result = await controller.triggerDiscovery(TENANT_ID); + expect(result.runId).toBe('run-123'); + }); + }); + + describe('GET /discovery/status', () => { + it('should return discovery status', async () => { + service.getDiscoveryStatus.mockResolvedValue(mockDiscoveryStatus); + const result = await controller.getDiscoveryStatus(TENANT_ID); + expect(result.inFlight).toBe(false); + expect(result.tenantConfig.mode).toBe('smart'); + }); + }); + + describe('GET /audit', () => { + it('should return audit list', async () => { + service.listAudit.mockResolvedValue(mockAuditResponse); + const result = await controller.listAudit(TENANT_ID, {}); + expect(result.items).toHaveLength(0); + expect(result.total).toBe(0); + }); + }); + + describe('GET /smart-suggestions', () => { + it('should return suggestions', async () => { + service.getSmartSuggestions.mockResolvedValue(mockSuggestions); + const result = await controller.getSmartSuggestions(TENANT_ID); + expect(result.items).toHaveLength(1); + expect(result.items[0].projectKey).toBe('CKP'); + expect(result.thresholdPrReferences).toBe(5); + }); + }); +}); diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts new file mode 100644 index 0000000..d965d4c --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts @@ -0,0 +1,161 @@ +import { + Body, + Controller, + Get, + Param, + Post, + Put, + Query, + UseGuards, +} from '@nestjs/common'; +import { CurrentTenant } from '@/common/decorators/current-tenant.decorator'; +import { CurrentUser } from '@/common/decorators/current-user.decorator'; +import type { CurrentUserPayload } from '@/common/decorators/current-user.decorator'; +import { AdminRoleGuard } from './guards/admin-role.guard'; +import { JiraAdminService } from './jira-admin.service'; +import { UpdateConfigDto } from './dto/update-config.dto'; +import { ProjectActionDto } from './dto/project-action.dto'; +import { ProjectCatalogQueryDto, AuditQueryDto } from './dto/list-query.dto'; +import type { + TenantJiraConfig, + JiraProjectCatalogEntry, + JiraProjectCatalogListResponse, + JiraDiscoveryStatusResponse, + JiraAuditListResponse, + JiraSmartSuggestionsResponse, +} from '@pulse/shared/types/jira-admin'; + +@Controller('admin/integrations/jira') +@UseGuards(AdminRoleGuard) +export class JiraAdminController { + constructor(private readonly jiraAdminService: JiraAdminService) {} + + // ------------------------------------------------------------------------- + // Config + // ------------------------------------------------------------------------- + + @Get('config') + getConfig( + @CurrentTenant() tenantId: string, + ): Promise { + return this.jiraAdminService.getConfig(tenantId); + } + + @Put('config') + updateConfig( + @CurrentTenant() tenantId: string, + @CurrentUser() user: CurrentUserPayload, + @Body() dto: UpdateConfigDto, + ): Promise { + return this.jiraAdminService.updateConfig(tenantId, dto, user.id); + } + + // ------------------------------------------------------------------------- + // Project Catalog + // ------------------------------------------------------------------------- + + @Get('projects') + listProjects( + @CurrentTenant() tenantId: string, + @Query() query: ProjectCatalogQueryDto, + ): Promise { + return this.jiraAdminService.listProjects(tenantId, query); + } + + @Get('projects/:key') + getProject( + @CurrentTenant() tenantId: string, + @Param('key') key: string, + ): Promise { + return this.jiraAdminService.getProject(tenantId, key); + } + + @Post('projects/:key/activate') + activateProject( + @CurrentTenant() tenantId: string, + @CurrentUser() user: CurrentUserPayload, + @Param('key') key: string, + @Body() dto: ProjectActionDto, + ): Promise { + return this.jiraAdminService.changeProjectStatus( + tenantId, key, 'activate', dto, user.id, + ); + } + + @Post('projects/:key/pause') + pauseProject( + @CurrentTenant() tenantId: string, + @CurrentUser() user: CurrentUserPayload, + @Param('key') key: string, + @Body() dto: ProjectActionDto, + ): Promise { + return this.jiraAdminService.changeProjectStatus( + tenantId, key, 'pause', dto, user.id, + ); + } + + @Post('projects/:key/block') + blockProject( + @CurrentTenant() tenantId: string, + @CurrentUser() user: CurrentUserPayload, + @Param('key') key: string, + @Body() dto: ProjectActionDto, + ): Promise { + return this.jiraAdminService.changeProjectStatus( + tenantId, key, 'block', dto, user.id, + ); + } + + @Post('projects/:key/resume') + resumeProject( + @CurrentTenant() tenantId: string, + @CurrentUser() user: CurrentUserPayload, + @Param('key') key: string, + @Body() dto: ProjectActionDto, + ): Promise { + return this.jiraAdminService.changeProjectStatus( + tenantId, key, 'resume', dto, user.id, + ); + } + + // ------------------------------------------------------------------------- + // Discovery + // ------------------------------------------------------------------------- + + @Post('discovery/trigger') + triggerDiscovery( + @CurrentTenant() tenantId: string, + ): Promise<{ runId: string }> { + return this.jiraAdminService.triggerDiscovery(tenantId); + } + + @Get('discovery/status') + getDiscoveryStatus( + @CurrentTenant() tenantId: string, + ): Promise { + return this.jiraAdminService.getDiscoveryStatus(tenantId); + } + + // ------------------------------------------------------------------------- + // Audit + // ------------------------------------------------------------------------- + + @Get('audit') + listAudit( + @CurrentTenant() tenantId: string, + @Query() query: AuditQueryDto, + ): Promise { + return this.jiraAdminService.listAudit(tenantId, query); + } + + // ------------------------------------------------------------------------- + // Smart Suggestions + // ------------------------------------------------------------------------- + + @Get('smart-suggestions') + getSmartSuggestions( + @CurrentTenant() tenantId: string, + ): Promise { + return this.jiraAdminService.getSmartSuggestions(tenantId); + } +} diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.module.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.module.ts new file mode 100644 index 0000000..fc1b9a4 --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.module.ts @@ -0,0 +1,18 @@ +import { Module } from '@nestjs/common'; +import { JiraAdminController } from './jira-admin.controller'; +import { JiraAdminService } from './jira-admin.service'; + +/** + * Module for the Jira Dynamic Discovery admin surface (ADR-014). + * + * Provides CRUD over tenant_jira_config, jira_project_catalog, + * and jira_discovery_audit tables via direct SQL (no TypeORM entities + * needed — these tables are owned by pulse-data migrations). + * + * Discovery trigger proxies to pulse-data's internal HTTP endpoint. + */ +@Module({ + controllers: [JiraAdminController], + providers: [JiraAdminService], +}) +export class JiraAdminModule {} diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.spec.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.spec.ts new file mode 100644 index 0000000..d0b4a75 --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.spec.ts @@ -0,0 +1,364 @@ +import { Test, TestingModule } from '@nestjs/testing'; +import { ConfigService } from '@nestjs/config'; +import { DataSource, QueryRunner } from 'typeorm'; +import { NotFoundException, BadRequestException } from '@nestjs/common'; +import { JiraAdminService } from './jira-admin.service'; + +// --------------------------------------------------------------------------- +// Mock QueryRunner +// --------------------------------------------------------------------------- + +function createMockQueryRunner(queryFn: jest.Mock): Partial { + return { + connect: jest.fn(), + startTransaction: jest.fn(), + commitTransaction: jest.fn(), + rollbackTransaction: jest.fn(), + release: jest.fn(), + query: queryFn, + }; +} + +const TENANT_ID = '00000000-0000-0000-0000-000000000001'; +const ACTOR_ID = '00000000-0000-0000-0000-000000000099'; + +const dbConfigRow = { + tenant_id: TENANT_ID, + mode: 'smart', + discovery_enabled: true, + discovery_schedule_cron: '0 3 * * *', + max_active_projects: 100, + max_issues_per_hour: 10000, + smart_pr_scan_days: 90, + smart_min_pr_references: 5, + last_discovery_at: null, + last_discovery_status: null, + last_discovery_error: null, + created_at: '2026-01-01T00:00:00.000Z', + updated_at: '2026-01-01T00:00:00.000Z', +}; + +const dbCatalogRow = { + id: 'cat-1', + tenant_id: TENANT_ID, + project_key: 'PULSE', + project_id: '10001', + name: 'PULSE Project', + project_type: 'software', + lead_account_id: null, + status: 'discovered', + activation_source: null, + issue_count: 42, + pr_reference_count: 10, + first_seen_at: '2026-01-01T00:00:00.000Z', + activated_at: null, + last_sync_at: null, + last_sync_status: null, + consecutive_failures: 0, + last_error: null, + metadata: {}, + created_at: '2026-01-01T00:00:00.000Z', + updated_at: '2026-01-01T00:00:00.000Z', +}; + +describe('JiraAdminService', () => { + let service: JiraAdminService; + let queryFn: jest.Mock; + let mockDataSource: Partial; + + beforeEach(async () => { + queryFn = jest.fn(); + const mockQr = createMockQueryRunner(queryFn); + mockDataSource = { + createQueryRunner: jest.fn().mockReturnValue(mockQr), + }; + + const module: TestingModule = await Test.createTestingModule({ + providers: [ + JiraAdminService, + { provide: DataSource, useValue: mockDataSource }, + { + provide: ConfigService, + useValue: { + get: jest.fn((key: string, defaultVal?: string) => { + const map: Record = { + PULSE_DATA_URL: 'http://localhost:8001', + INTERNAL_API_TOKEN: 'test-token', + }; + return map[key] ?? defaultVal ?? ''; + }), + }, + }, + ], + }).compile(); + + service = module.get(JiraAdminService); + }); + + // ------------------------------------------------------------------------- + // getConfig + // ------------------------------------------------------------------------- + + describe('getConfig', () => { + it('should return mapped config', async () => { + // SET LOCAL + SELECT + queryFn + .mockResolvedValueOnce(undefined) // SET LOCAL + .mockResolvedValueOnce([dbConfigRow]); // SELECT + + const result = await service.getConfig(TENANT_ID); + expect(result.tenantId).toBe(TENANT_ID); + expect(result.mode).toBe('smart'); + expect(result.maxActiveProjects).toBe(100); + }); + + it('should throw NotFoundException if no config', async () => { + queryFn + .mockResolvedValueOnce(undefined) + .mockResolvedValueOnce([]); + + await expect(service.getConfig(TENANT_ID)).rejects.toThrow( + NotFoundException, + ); + }); + }); + + // ------------------------------------------------------------------------- + // updateConfig + // ------------------------------------------------------------------------- + + describe('updateConfig', () => { + it('should update mode and write audit entry', async () => { + const updatedRow = { ...dbConfigRow, mode: 'auto' }; + queryFn + .mockResolvedValueOnce(undefined) // SET LOCAL + .mockResolvedValueOnce([dbConfigRow]) // SELECT current + .mockResolvedValueOnce([updatedRow]) // UPDATE RETURNING + .mockResolvedValueOnce(undefined); // INSERT audit + + const result = await service.updateConfig( + TENANT_ID, + { mode: 'auto' }, + ACTOR_ID, + ); + expect(result.mode).toBe('auto'); + + // Verify audit INSERT was called (4th query call) + const auditCall = queryFn.mock.calls[3]; + expect(auditCall[0]).toContain('INSERT INTO jira_discovery_audit'); + expect(auditCall[1]).toContain(ACTOR_ID); + }); + + it('should return unchanged config if no fields provided', async () => { + queryFn + .mockResolvedValueOnce(undefined) + .mockResolvedValueOnce([dbConfigRow]); + + const result = await service.updateConfig(TENANT_ID, {}, ACTOR_ID); + expect(result.mode).toBe('smart'); + // No UPDATE or INSERT should have been called + expect(queryFn).toHaveBeenCalledTimes(2); + }); + }); + + // ------------------------------------------------------------------------- + // listProjects + // ------------------------------------------------------------------------- + + describe('listProjects', () => { + it('should return items with counts', async () => { + queryFn + .mockResolvedValueOnce(undefined) // SET LOCAL + .mockResolvedValueOnce([dbCatalogRow]) // SELECT items + .mockResolvedValueOnce([{ total: 1 }]) // COUNT + .mockResolvedValueOnce([ // counts by status + { status: 'discovered', count: 1 }, + ]); + + const result = await service.listProjects(TENANT_ID, {}); + expect(result.items).toHaveLength(1); + expect(result.total).toBe(1); + expect(result.counts.discovered).toBe(1); + expect(result.counts.active).toBe(0); + }); + + it('should apply status and search filters', async () => { + queryFn + .mockResolvedValueOnce(undefined) + .mockResolvedValueOnce([]) + .mockResolvedValueOnce([{ total: 0 }]) + .mockResolvedValueOnce([]); + + await service.listProjects(TENANT_ID, { + status: ['active'], + search: 'PULSE', + }); + + const selectCall = queryFn.mock.calls[1][0] as string; + expect(selectCall).toContain('status = ANY'); + expect(selectCall).toContain('ILIKE'); + }); + }); + + // ------------------------------------------------------------------------- + // getProject + // ------------------------------------------------------------------------- + + describe('getProject', () => { + it('should return a single project', async () => { + queryFn + .mockResolvedValueOnce(undefined) + .mockResolvedValueOnce([dbCatalogRow]); + + const result = await service.getProject(TENANT_ID, 'PULSE'); + expect(result.projectKey).toBe('PULSE'); + }); + + it('should throw NotFoundException for missing project', async () => { + queryFn + .mockResolvedValueOnce(undefined) + .mockResolvedValueOnce([]); + + await expect( + service.getProject(TENANT_ID, 'NOPE'), + ).rejects.toThrow(NotFoundException); + }); + }); + + // ------------------------------------------------------------------------- + // changeProjectStatus + // ------------------------------------------------------------------------- + + describe('changeProjectStatus', () => { + it('should activate a discovered project', async () => { + const activatedRow = { ...dbCatalogRow, status: 'active' }; + queryFn + .mockResolvedValueOnce(undefined) // SET LOCAL + .mockResolvedValueOnce([dbCatalogRow]) // SELECT current + .mockResolvedValueOnce([activatedRow]) // UPDATE RETURNING + .mockResolvedValueOnce(undefined); // INSERT audit + + const result = await service.changeProjectStatus( + TENANT_ID, 'PULSE', 'activate', { reason: 'Need it' }, ACTOR_ID, + ); + expect(result.status).toBe('active'); + }); + + it('should reject invalid transition', async () => { + // Try to pause a discovered project (not allowed) + queryFn + .mockResolvedValueOnce(undefined) // SET LOCAL + .mockResolvedValueOnce([dbCatalogRow]); // status=discovered + + await expect( + service.changeProjectStatus( + TENANT_ID, 'PULSE', 'pause', {}, ACTOR_ID, + ), + ).rejects.toThrow(BadRequestException); + }); + + it('should reject unknown action', async () => { + await expect( + service.changeProjectStatus( + TENANT_ID, 'PULSE', 'nuke', {}, ACTOR_ID, + ), + ).rejects.toThrow(BadRequestException); + }); + + it('should write audit entry with reason', async () => { + const blockedRow = { ...dbCatalogRow, status: 'blocked' }; + queryFn + .mockResolvedValueOnce(undefined) + .mockResolvedValueOnce([dbCatalogRow]) + .mockResolvedValueOnce([blockedRow]) + .mockResolvedValueOnce(undefined); + + await service.changeProjectStatus( + TENANT_ID, 'PULSE', 'block', { reason: 'HR project' }, ACTOR_ID, + ); + + const auditCall = queryFn.mock.calls[3]; + expect(auditCall[1]).toContain('HR project'); + }); + }); + + // ------------------------------------------------------------------------- + // triggerDiscovery (HTTP proxy) + // ------------------------------------------------------------------------- + + describe('triggerDiscovery', () => { + it('should call pulse-data and return runId', async () => { + // Mock axios at module level + const axios = await import('axios'); + jest.spyOn(axios.default, 'post').mockResolvedValueOnce({ + data: { run_id: 'run-abc' }, + }); + + const result = await service.triggerDiscovery(TENANT_ID); + expect(result.runId).toBe('run-abc'); + }); + }); + + // ------------------------------------------------------------------------- + // getDiscoveryStatus + // ------------------------------------------------------------------------- + + describe('getDiscoveryStatus', () => { + it('should return status with no last run', async () => { + queryFn + .mockResolvedValueOnce(undefined) // SET LOCAL + .mockResolvedValueOnce([ // config + { + mode: 'smart', + discovery_enabled: true, + discovery_schedule_cron: '0 3 * * *', + last_discovery_at: null, + last_discovery_status: null, + }, + ]) + .mockResolvedValueOnce([]); // no audit rows + + const result = await service.getDiscoveryStatus(TENANT_ID); + expect(result.inFlight).toBe(false); + expect(result.lastRun).toBeNull(); + expect(result.tenantConfig.mode).toBe('smart'); + }); + }); + + // ------------------------------------------------------------------------- + // listAudit + // ------------------------------------------------------------------------- + + describe('listAudit', () => { + it('should return empty list', async () => { + queryFn + .mockResolvedValueOnce(undefined) // SET LOCAL + .mockResolvedValueOnce([]) // items + .mockResolvedValueOnce([{ total: 0 }]); // count + + const result = await service.listAudit(TENANT_ID, {}); + expect(result.items).toHaveLength(0); + expect(result.total).toBe(0); + }); + }); + + // ------------------------------------------------------------------------- + // getSmartSuggestions + // ------------------------------------------------------------------------- + + describe('getSmartSuggestions', () => { + it('should return suggestions above threshold', async () => { + queryFn + .mockResolvedValueOnce(undefined) // SET LOCAL + .mockResolvedValueOnce([{ smart_min_pr_references: 5 }]) // config + .mockResolvedValueOnce([ // catalog rows + { project_key: 'CKP', pr_reference_count: 524 }, + ]); + + const result = await service.getSmartSuggestions(TENANT_ID); + expect(result.items).toHaveLength(1); + expect(result.items[0].projectKey).toBe('CKP'); + expect(result.thresholdPrReferences).toBe(5); + }); + }); +}); diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts new file mode 100644 index 0000000..6664c00 --- /dev/null +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts @@ -0,0 +1,587 @@ +import { + Injectable, + Logger, + NotFoundException, + BadRequestException, + InternalServerErrorException, +} from '@nestjs/common'; +import { ConfigService } from '@nestjs/config'; +import { DataSource, QueryRunner } from 'typeorm'; +import axios from 'axios'; +import type { + TenantJiraConfig, + JiraProjectCatalogEntry, + JiraProjectCatalogListResponse, + JiraProjectStatus, + JiraDiscoveryStatusResponse, + JiraDiscoveryAuditEntry, + JiraAuditListResponse, + JiraSmartSuggestionsResponse, + JiraSmartSuggestion, + JiraAuditEventType, +} from '@pulse/shared/types/jira-admin'; +import type { UpdateConfigDto } from './dto/update-config.dto'; +import type { ProjectActionDto } from './dto/project-action.dto'; +import type { ProjectCatalogQueryDto, AuditQueryDto } from './dto/list-query.dto'; + +// Valid status transitions for project actions +const STATUS_TRANSITIONS: Record = { + activate: { from: ['discovered', 'paused'], to: 'active', event: 'project_activated' }, + pause: { from: ['active'], to: 'paused', event: 'project_paused' }, + block: { from: ['discovered', 'active', 'paused'], to: 'blocked', event: 'project_blocked' }, + resume: { from: ['paused', 'blocked'], to: 'active', event: 'project_resumed' }, +}; + +@Injectable() +export class JiraAdminService { + private readonly logger = new Logger(JiraAdminService.name); + + constructor( + private readonly dataSource: DataSource, + private readonly configService: ConfigService, + ) {} + + // --------------------------------------------------------------------------- + // Helpers + // --------------------------------------------------------------------------- + + /** + * Execute a callback within a transaction that has RLS tenant context set. + */ + private async withTenant( + tenantId: string, + fn: (qr: QueryRunner) => Promise, + ): Promise { + const qr = this.dataSource.createQueryRunner(); + await qr.connect(); + await qr.startTransaction(); + + try { + // Set RLS context — validated UUID format via TenantGuard already + await qr.query(`SET LOCAL app.current_tenant = '${tenantId}'`); + const result = await fn(qr); + await qr.commitTransaction(); + return result; + } catch (err) { + await qr.rollbackTransaction(); + throw err; + } finally { + await qr.release(); + } + } + + /** + * Map snake_case DB row to camelCase TenantJiraConfig shape. + */ + private mapConfigRow(row: Record): TenantJiraConfig { + return { + tenantId: row['tenant_id'] as string, + mode: row['mode'] as TenantJiraConfig['mode'], + discoveryEnabled: row['discovery_enabled'] as boolean, + discoveryScheduleCron: row['discovery_schedule_cron'] as string, + maxActiveProjects: row['max_active_projects'] as number, + maxIssuesPerHour: row['max_issues_per_hour'] as number, + smartPrScanDays: row['smart_pr_scan_days'] as number, + smartMinPrReferences: row['smart_min_pr_references'] as number, + lastDiscoveryAt: (row['last_discovery_at'] as string) ?? null, + lastDiscoveryStatus: (row['last_discovery_status'] as TenantJiraConfig['lastDiscoveryStatus']) ?? null, + lastDiscoveryError: (row['last_discovery_error'] as string) ?? null, + createdAt: String(row['created_at']), + updatedAt: String(row['updated_at']), + }; + } + + /** + * Map snake_case DB row to camelCase JiraProjectCatalogEntry shape. + */ + private mapCatalogRow(row: Record): JiraProjectCatalogEntry { + return { + id: row['id'] as string, + tenantId: row['tenant_id'] as string, + projectKey: row['project_key'] as string, + projectId: (row['project_id'] as string) ?? null, + name: (row['name'] as string) ?? null, + projectType: (row['project_type'] as string) ?? null, + leadAccountId: (row['lead_account_id'] as string) ?? null, + status: row['status'] as JiraProjectStatus, + activationSource: (row['activation_source'] as JiraProjectCatalogEntry['activationSource']) ?? null, + issueCount: (row['issue_count'] as number) ?? 0, + prReferenceCount: (row['pr_reference_count'] as number) ?? 0, + firstSeenAt: String(row['first_seen_at']), + activatedAt: row['activated_at'] ? String(row['activated_at']) : null, + lastSyncAt: row['last_sync_at'] ? String(row['last_sync_at']) : null, + lastSyncStatus: (row['last_sync_status'] as JiraProjectCatalogEntry['lastSyncStatus']) ?? null, + consecutiveFailures: (row['consecutive_failures'] as number) ?? 0, + lastError: (row['last_error'] as string) ?? null, + metadata: (row['metadata'] as Record) ?? {}, + createdAt: String(row['created_at']), + updatedAt: String(row['updated_at']), + }; + } + + /** + * Map snake_case DB row to camelCase JiraDiscoveryAuditEntry shape. + */ + private mapAuditRow(row: Record): JiraDiscoveryAuditEntry { + return { + id: row['id'] as string, + tenantId: row['tenant_id'] as string, + eventType: row['event_type'] as JiraAuditEventType, + projectKey: (row['project_key'] as string) ?? null, + actor: row['actor'] as string, + beforeValue: row['before_value'] ?? null, + afterValue: row['after_value'] ?? null, + reason: (row['reason'] as string) ?? null, + createdAt: String(row['created_at']), + }; + } + + // --------------------------------------------------------------------------- + // Config + // --------------------------------------------------------------------------- + + async getConfig(tenantId: string): Promise { + return this.withTenant(tenantId, async (qr) => { + const rows = await qr.query( + `SELECT * FROM tenant_jira_config WHERE tenant_id = $1`, + [tenantId], + ); + if (!rows.length) { + throw new NotFoundException( + `No Jira configuration found for tenant ${tenantId}`, + ); + } + return this.mapConfigRow(rows[0]); + }); + } + + async updateConfig( + tenantId: string, + dto: UpdateConfigDto, + actorId: string, + ): Promise { + return this.withTenant(tenantId, async (qr) => { + // Fetch current config + const currentRows = await qr.query( + `SELECT * FROM tenant_jira_config WHERE tenant_id = $1`, + [tenantId], + ); + if (!currentRows.length) { + throw new NotFoundException( + `No Jira configuration found for tenant ${tenantId}`, + ); + } + const current = currentRows[0] as Record; + + // Build SET clause dynamically from provided fields + const setClauses: string[] = []; + const params: unknown[] = []; + let paramIndex = 1; + + const fieldMap: Record = { + mode: 'mode', + discoveryEnabled: 'discovery_enabled', + discoveryScheduleCron: 'discovery_schedule_cron', + maxActiveProjects: 'max_active_projects', + maxIssuesPerHour: 'max_issues_per_hour', + smartPrScanDays: 'smart_pr_scan_days', + smartMinPrReferences: 'smart_min_pr_references', + }; + + for (const [dtoField, dbField] of Object.entries(fieldMap)) { + const value = dto[dtoField as keyof UpdateConfigDto]; + if (value !== undefined) { + setClauses.push(`${dbField} = $${paramIndex}`); + params.push(value); + paramIndex++; + } + } + + if (setClauses.length === 0) { + return this.mapConfigRow(current); + } + + // Always update updated_at + setClauses.push(`updated_at = NOW()`); + + params.push(tenantId); + const sql = `UPDATE tenant_jira_config SET ${setClauses.join(', ')} WHERE tenant_id = $${paramIndex} RETURNING *`; + const result = await qr.query(sql, params); + + // Audit: if mode changed, write audit entry + if (dto.mode !== undefined && dto.mode !== current['mode']) { + await qr.query( + `INSERT INTO jira_discovery_audit (tenant_id, event_type, actor, before_value, after_value, reason) + VALUES ($1, 'mode_changed', $2, $3, $4, $5)`, + [ + tenantId, + actorId, + JSON.stringify({ mode: current['mode'] }), + JSON.stringify({ mode: dto.mode }), + `Mode changed from ${current['mode'] as string} to ${dto.mode}`, + ], + ); + } + + return this.mapConfigRow(result[0]); + }); + } + + // --------------------------------------------------------------------------- + // Project Catalog + // --------------------------------------------------------------------------- + + async listProjects( + tenantId: string, + query: ProjectCatalogQueryDto, + ): Promise { + return this.withTenant(tenantId, async (qr) => { + const conditions: string[] = ['tenant_id = $1']; + const params: unknown[] = [tenantId]; + let paramIndex = 2; + + // Status filter + if (query.status && query.status.length > 0) { + conditions.push(`status = ANY($${paramIndex})`); + params.push(query.status); + paramIndex++; + } + + // Search filter (project_key or name, case-insensitive) + if (query.search) { + conditions.push( + `(project_key ILIKE $${paramIndex} OR name ILIKE $${paramIndex})`, + ); + params.push(`%${query.search}%`); + paramIndex++; + } + + const where = conditions.join(' AND '); + + // Sort + const sortField = query.sortBy ?? 'project_key'; + const sortDir = query.sortDir ?? 'asc'; + const orderBy = `ORDER BY ${sortField} ${sortDir}`; + + // Pagination + const limit = query.limit ?? 50; + const offset = query.offset ?? 0; + + // Fetch items + const items = await qr.query( + `SELECT * FROM jira_project_catalog WHERE ${where} ${orderBy} LIMIT $${paramIndex} OFFSET $${paramIndex + 1}`, + [...params, limit, offset], + ); + + // Fetch total + const countResult = await qr.query( + `SELECT COUNT(*)::int AS total FROM jira_project_catalog WHERE ${where}`, + params, + ); + const total = countResult[0]?.total ?? 0; + + // Fetch status counts + const countsResult = await qr.query( + `SELECT status, COUNT(*)::int AS count FROM jira_project_catalog WHERE tenant_id = $1 GROUP BY status`, + [tenantId], + ); + const counts: Record = { + discovered: 0, + active: 0, + paused: 0, + blocked: 0, + archived: 0, + }; + for (const row of countsResult) { + counts[row.status as string] = row.count as number; + } + + return { + items: items.map((r: Record) => this.mapCatalogRow(r)), + total, + counts: counts as Record, + }; + }); + } + + async getProject( + tenantId: string, + projectKey: string, + ): Promise { + return this.withTenant(tenantId, async (qr) => { + const rows = await qr.query( + `SELECT * FROM jira_project_catalog WHERE tenant_id = $1 AND project_key = $2`, + [tenantId, projectKey.toUpperCase()], + ); + if (!rows.length) { + throw new NotFoundException( + `Project ${projectKey} not found in catalog`, + ); + } + return this.mapCatalogRow(rows[0]); + }); + } + + async changeProjectStatus( + tenantId: string, + projectKey: string, + action: string, + dto: ProjectActionDto, + actorId: string, + ): Promise { + const transition = STATUS_TRANSITIONS[action]; + if (!transition) { + throw new BadRequestException(`Unknown action: ${action}`); + } + + return this.withTenant(tenantId, async (qr) => { + const rows = await qr.query( + `SELECT * FROM jira_project_catalog WHERE tenant_id = $1 AND project_key = $2`, + [tenantId, projectKey.toUpperCase()], + ); + if (!rows.length) { + throw new NotFoundException( + `Project ${projectKey} not found in catalog`, + ); + } + + const current = rows[0] as Record; + const currentStatus = current['status'] as JiraProjectStatus; + + if (!transition.from.includes(currentStatus)) { + throw new BadRequestException( + `Cannot ${action} project in '${currentStatus}' status. Allowed from: ${transition.from.join(', ')}`, + ); + } + + // Determine activation_source for activate action + const extraSets = + action === 'activate' + ? `, activation_source = 'manual', activated_at = NOW()` + : action === 'resume' + ? `, activation_source = 'manual', activated_at = NOW()` + : ''; + + // Reset consecutive_failures on activate/resume + const resetFailures = + action === 'activate' || action === 'resume' + ? ', consecutive_failures = 0' + : ''; + + const result = await qr.query( + `UPDATE jira_project_catalog + SET status = $1, updated_at = NOW()${extraSets}${resetFailures} + WHERE tenant_id = $2 AND project_key = $3 + RETURNING *`, + [transition.to, tenantId, projectKey.toUpperCase()], + ); + + // Write audit entry + await qr.query( + `INSERT INTO jira_discovery_audit + (tenant_id, event_type, project_key, actor, before_value, after_value, reason) + VALUES ($1, $2, $3, $4, $5, $6, $7)`, + [ + tenantId, + transition.event, + projectKey.toUpperCase(), + actorId, + JSON.stringify({ status: currentStatus }), + JSON.stringify({ status: transition.to }), + dto.reason ?? null, + ], + ); + + return this.mapCatalogRow(result[0]); + }); + } + + // --------------------------------------------------------------------------- + // Discovery trigger / status + // --------------------------------------------------------------------------- + + async triggerDiscovery(tenantId: string): Promise<{ runId: string }> { + const baseUrl = this.configService.get( + 'PULSE_DATA_URL', + 'http://localhost:8001', + ); + const token = this.configService.get('INTERNAL_API_TOKEN', ''); + + try { + const response = await axios.post<{ run_id: string }>( + `${baseUrl}/internal/discovery/trigger`, + { tenant_id: tenantId }, + { + headers: { + 'Content-Type': 'application/json', + ...(token ? { 'X-Internal-Token': token } : {}), + }, + timeout: 30_000, + }, + ); + return { runId: response.data.run_id }; + } catch (err) { + this.logger.error('Failed to trigger discovery via pulse-data', err); + if (axios.isAxiosError(err) && err.response) { + throw new InternalServerErrorException( + `Discovery trigger failed: ${err.response.status} — ${JSON.stringify(err.response.data)}`, + ); + } + throw new InternalServerErrorException( + 'Failed to communicate with discovery service', + ); + } + } + + async getDiscoveryStatus( + tenantId: string, + ): Promise { + return this.withTenant(tenantId, async (qr) => { + // Get config + const configRows = await qr.query( + `SELECT mode, discovery_enabled, discovery_schedule_cron, + last_discovery_at, last_discovery_status + FROM tenant_jira_config WHERE tenant_id = $1`, + [tenantId], + ); + if (!configRows.length) { + throw new NotFoundException( + `No Jira configuration found for tenant ${tenantId}`, + ); + } + const cfg = configRows[0] as Record; + + // Get latest audit entry for discovery_run + const lastRunRows = await qr.query( + `SELECT * FROM jira_discovery_audit + WHERE tenant_id = $1 AND event_type = 'discovery_run' + ORDER BY created_at DESC LIMIT 1`, + [tenantId], + ); + + let lastRun = null; + if (lastRunRows.length > 0) { + const r = lastRunRows[0] as Record; + const afterVal = r['after_value'] as Record | null; + lastRun = { + runId: (afterVal?.['runId'] as string) ?? r['id'] as string, + startedAt: String(r['created_at']), + finishedAt: afterVal?.['finishedAt'] ? String(afterVal['finishedAt']) : null, + status: (afterVal?.['status'] as string) ?? 'success', + discoveredCount: (afterVal?.['discoveredCount'] as number) ?? 0, + activatedCount: (afterVal?.['activatedCount'] as number) ?? 0, + archivedCount: (afterVal?.['archivedCount'] as number) ?? 0, + updatedCount: (afterVal?.['updatedCount'] as number) ?? 0, + errors: (afterVal?.['errors'] as string[]) ?? [], + }; + } + + return { + inFlight: false, // TODO: check Redis for in-progress run + currentRunId: null, + lastRun, + tenantConfig: { + mode: cfg['mode'] as string, + discoveryEnabled: cfg['discovery_enabled'] as boolean, + discoveryScheduleCron: cfg['discovery_schedule_cron'] as string, + lastDiscoveryAt: cfg['last_discovery_at'] ? String(cfg['last_discovery_at']) : null, + lastDiscoveryStatus: (cfg['last_discovery_status'] as string) ?? null, + }, + } as JiraDiscoveryStatusResponse; + }); + } + + // --------------------------------------------------------------------------- + // Audit + // --------------------------------------------------------------------------- + + async listAudit( + tenantId: string, + query: AuditQueryDto, + ): Promise { + return this.withTenant(tenantId, async (qr) => { + const conditions: string[] = ['tenant_id = $1']; + const params: unknown[] = [tenantId]; + let paramIndex = 2; + + if (query.eventType && query.eventType.length > 0) { + conditions.push(`event_type = ANY($${paramIndex})`); + params.push(query.eventType); + paramIndex++; + } + + if (query.projectKey) { + conditions.push(`project_key = $${paramIndex}`); + params.push(query.projectKey.toUpperCase()); + paramIndex++; + } + + if (query.since) { + conditions.push(`created_at >= $${paramIndex}`); + params.push(query.since); + paramIndex++; + } + + const where = conditions.join(' AND '); + const limit = query.limit ?? 50; + const offset = query.offset ?? 0; + + const items = await qr.query( + `SELECT * FROM jira_discovery_audit WHERE ${where} ORDER BY created_at DESC LIMIT $${paramIndex} OFFSET $${paramIndex + 1}`, + [...params, limit, offset], + ); + + const countResult = await qr.query( + `SELECT COUNT(*)::int AS total FROM jira_discovery_audit WHERE ${where}`, + params, + ); + + return { + items: items.map((r: Record) => this.mapAuditRow(r)), + total: countResult[0]?.total ?? 0, + }; + }); + } + + // --------------------------------------------------------------------------- + // Smart Suggestions + // --------------------------------------------------------------------------- + + async getSmartSuggestions( + tenantId: string, + ): Promise { + return this.withTenant(tenantId, async (qr) => { + // Get smart threshold from config + const configRows = await qr.query( + `SELECT smart_min_pr_references FROM tenant_jira_config WHERE tenant_id = $1`, + [tenantId], + ); + const threshold = configRows.length > 0 + ? (configRows[0]['smart_min_pr_references'] as number) + : 5; + + // Find discovered/paused projects with pr_reference_count >= threshold + const rows = await qr.query( + `SELECT project_key, pr_reference_count + FROM jira_project_catalog + WHERE tenant_id = $1 + AND status IN ('discovered', 'paused') + AND pr_reference_count >= $2 + ORDER BY pr_reference_count DESC + LIMIT 20`, + [tenantId, threshold], + ); + + const items: JiraSmartSuggestion[] = rows.map( + (row: Record) => ({ + projectKey: row['project_key'] as string, + prReferenceCount: row['pr_reference_count'] as number, + suggestedAction: 'activate' as const, + reason: `Referenced in ${row['pr_reference_count'] as number} PRs — meets smart activation threshold`, + }), + ); + + return { items, thresholdPrReferences: threshold }; + }); + } +} diff --git a/pulse/packages/pulse-api/tsconfig.json b/pulse/packages/pulse-api/tsconfig.json index e5f49df..24db51a 100644 --- a/pulse/packages/pulse-api/tsconfig.json +++ b/pulse/packages/pulse-api/tsconfig.json @@ -21,9 +21,10 @@ "noUnusedLocals": true, "noUnusedParameters": true, "paths": { - "@/*": ["src/*"] + "@/*": ["src/*"], + "@pulse/shared/*": ["../pulse-shared/src/*"] } }, - "include": ["src/**/*"], + "include": ["src/**/*", "../pulse-shared/src/**/*"], "exclude": ["node_modules", "dist", "test"] } diff --git a/pulse/packages/pulse-web/package-lock.json b/pulse/packages/pulse-web/package-lock.json index dcf1693..1914122 100644 --- a/pulse/packages/pulse-web/package-lock.json +++ b/pulse/packages/pulse-web/package-lock.json @@ -21,6 +21,7 @@ }, "devDependencies": { "@tailwindcss/postcss": "^4.2.2", + "@testing-library/dom": "^10.4.1", "@testing-library/jest-dom": "^6.6.0", "@testing-library/react": "^16.1.0", "@types/react": "^19.0.0", @@ -2180,6 +2181,43 @@ "url": "https://github.com/sponsors/tannerlinsley" } }, + "node_modules/@testing-library/dom": { + "version": "10.4.1", + "resolved": "https://registry.npmjs.org/@testing-library/dom/-/dom-10.4.1.tgz", + "integrity": "sha512-o4PXJQidqJl82ckFaXUeoAW+XysPLauYI43Abki5hABd853iMhitooc6znOnczgbTYmEP6U6/y1ZyKAIsvMKGg==", + "dev": true, + "license": "MIT", + "dependencies": { + "@babel/code-frame": "^7.10.4", + "@babel/runtime": "^7.12.5", + "@types/aria-query": "^5.0.1", + "aria-query": "5.3.0", + "dom-accessibility-api": "^0.5.9", + "lz-string": "^1.5.0", + "picocolors": "1.1.1", + "pretty-format": "^27.0.2" + }, + "engines": { + "node": ">=18" + } + }, + "node_modules/@testing-library/dom/node_modules/aria-query": { + "version": "5.3.0", + "resolved": "https://registry.npmjs.org/aria-query/-/aria-query-5.3.0.tgz", + "integrity": "sha512-b0P0sZPKtyu8HkeRAfCq0IfURZK+SuwMjY1UXGBU27wpAiTwQAIlq56IbIO+ytk/JjS1fMR14ee5WBBfKi5J6A==", + "dev": true, + "license": "Apache-2.0", + "dependencies": { + "dequal": "^2.0.3" + } + }, + "node_modules/@testing-library/dom/node_modules/dom-accessibility-api": { + "version": "0.5.16", + "resolved": "https://registry.npmjs.org/dom-accessibility-api/-/dom-accessibility-api-0.5.16.tgz", + "integrity": "sha512-X7BJ2yElsnOJ30pZF4uIIDfBEVgF4XEBxL9Bxhy6dnrm5hkzqmsWHGTiHqRiITNhMyFLyAiWndIJP7Z1NTteDg==", + "dev": true, + "license": "MIT" + }, "node_modules/@testing-library/jest-dom": { "version": "6.9.1", "resolved": "https://registry.npmjs.org/@testing-library/jest-dom/-/jest-dom-6.9.1.tgz", @@ -2247,6 +2285,13 @@ "react-dom": ">=16.6.0" } }, + "node_modules/@types/aria-query": { + "version": "5.0.4", + "resolved": "https://registry.npmjs.org/@types/aria-query/-/aria-query-5.0.4.tgz", + "integrity": "sha512-rfT93uj5s0PRL7EzccGMs3brplhcrghnDoV26NqKhCAS1hVo+WdNsPvE/yb6ilfr5hi2MEk6d5EWJTKdxg8jVw==", + "dev": true, + "license": "MIT" + }, "node_modules/@types/babel__core": { "version": "7.20.5", "resolved": "https://registry.npmjs.org/@types/babel__core/-/babel__core-7.20.5.tgz", @@ -2573,6 +2618,16 @@ "url": "https://github.com/sponsors/epoberezkin" } }, + "node_modules/ansi-regex": { + "version": "5.0.1", + "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz", + "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==", + "dev": true, + "license": "MIT", + "engines": { + "node": ">=8" + } + }, "node_modules/ansi-styles": { "version": "4.3.0", "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-4.3.0.tgz", @@ -3157,6 +3212,16 @@ "node": ">=0.4.0" } }, + "node_modules/dequal": { + "version": "2.0.3", + "resolved": "https://registry.npmjs.org/dequal/-/dequal-2.0.3.tgz", + "integrity": "sha512-0je+qPKHEMohvfRTCEo3CrPG6cAzAYgmzKyxRiYSSDkS6eGJdyVJm7WaYA5ECaAD9wLB2T4EEeymA5aFVcYXCA==", + "dev": true, + "license": "MIT", + "engines": { + "node": ">=6" + } + }, "node_modules/detect-libc": { "version": "2.1.2", "resolved": "https://registry.npmjs.org/detect-libc/-/detect-libc-2.1.2.tgz", @@ -4491,6 +4556,16 @@ "react": "^16.5.1 || ^17.0.0 || ^18.0.0 || ^19.0.0" } }, + "node_modules/lz-string": { + "version": "1.5.0", + "resolved": "https://registry.npmjs.org/lz-string/-/lz-string-1.5.0.tgz", + "integrity": "sha512-h5bgJWpxJNswbU7qCrV0tIKQCaS3blPDrqKWx+QxzuzL1zGUzij9XCWLrSLsJPu5t+eWA/ycetzYAO5IOMcWAQ==", + "dev": true, + "license": "MIT", + "bin": { + "lz-string": "bin/bin.js" + } + }, "node_modules/magic-string": { "version": "0.30.21", "resolved": "https://registry.npmjs.org/magic-string/-/magic-string-0.30.21.tgz", @@ -4805,6 +4880,41 @@ "url": "https://github.com/prettier/prettier?sponsor=1" } }, + "node_modules/pretty-format": { + "version": "27.5.1", + "resolved": "https://registry.npmjs.org/pretty-format/-/pretty-format-27.5.1.tgz", + "integrity": "sha512-Qb1gy5OrP5+zDf2Bvnzdl3jsTf1qXVMazbvCoKhtKqVs4/YK4ozX4gKQJJVyNe+cajNPn0KoC0MC3FUmaHWEmQ==", + "dev": true, + "license": "MIT", + "dependencies": { + "ansi-regex": "^5.0.1", + "ansi-styles": "^5.0.0", + "react-is": "^17.0.1" + }, + "engines": { + "node": "^10.13.0 || ^12.13.0 || ^14.15.0 || >=15.0.0" + } + }, + "node_modules/pretty-format/node_modules/ansi-styles": { + "version": "5.2.0", + "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-5.2.0.tgz", + "integrity": "sha512-Cxwpt2SfTzTtXcfOlzGEee8O+c+MmUgGrNiBcXnuWxuFJHe6a5Hz7qwhwe5OgaSYI0IJvkLqWX1ASG+cJOkEiA==", + "dev": true, + "license": "MIT", + "engines": { + "node": ">=10" + }, + "funding": { + "url": "https://github.com/chalk/ansi-styles?sponsor=1" + } + }, + "node_modules/pretty-format/node_modules/react-is": { + "version": "17.0.2", + "resolved": "https://registry.npmjs.org/react-is/-/react-is-17.0.2.tgz", + "integrity": "sha512-w2GsyukL62IJnlaff/nRegPQR94C/XXamvMWmSHRJ4y7Ts/4ocGRmTHvOs8PSE6pB3dWOrD/nueuU5sduBsQ4w==", + "dev": true, + "license": "MIT" + }, "node_modules/prop-types": { "version": "15.8.1", "resolved": "https://registry.npmjs.org/prop-types/-/prop-types-15.8.1.tgz", diff --git a/pulse/packages/pulse-web/package.json b/pulse/packages/pulse-web/package.json index f354bd4..6678f4e 100644 --- a/pulse/packages/pulse-web/package.json +++ b/pulse/packages/pulse-web/package.json @@ -27,6 +27,7 @@ }, "devDependencies": { "@tailwindcss/postcss": "^4.2.2", + "@testing-library/dom": "^10.4.1", "@testing-library/jest-dom": "^6.6.0", "@testing-library/react": "^16.1.0", "@types/react": "^19.0.0", diff --git a/pulse/packages/pulse-web/src/components/layout/Sidebar.tsx b/pulse/packages/pulse-web/src/components/layout/Sidebar.tsx index 9d805c0..bf1f72b 100644 --- a/pulse/packages/pulse-web/src/components/layout/Sidebar.tsx +++ b/pulse/packages/pulse-web/src/components/layout/Sidebar.tsx @@ -11,6 +11,7 @@ import { Cable, PanelLeftClose, PanelLeftOpen, + Settings, } from 'lucide-react'; interface NavItem { @@ -29,6 +30,7 @@ const NAV_ITEMS: NavItem[] = [ { label: 'Open PRs', path: '/prs', icon: GitPullRequest }, { label: 'Integrations', path: '/integrations', icon: Cable }, { label: 'Pipeline', path: '/pipeline-monitor', icon: Activity }, + { label: 'Jira Settings', path: '/settings/integrations/jira', icon: Settings }, ]; export function Sidebar() { diff --git a/pulse/packages/pulse-web/src/hooks/useJiraAdmin.ts b/pulse/packages/pulse-web/src/hooks/useJiraAdmin.ts new file mode 100644 index 0000000..0c6a8c5 --- /dev/null +++ b/pulse/packages/pulse-web/src/hooks/useJiraAdmin.ts @@ -0,0 +1,255 @@ +import { useQuery, useMutation, useQueryClient } from '@tanstack/react-query'; +import type { + TenantJiraConfig, + UpdateTenantJiraConfigInput, + JiraProjectCatalogListResponse, + JiraProjectCatalogQuery, + JiraProjectCatalogEntry, + JiraProjectActionInput, + JiraDiscoveryStatusResponse, + JiraAuditListResponse, + JiraAuditQuery, + JiraSmartSuggestionsResponse, + JiraProjectStatus, +} from '@pulse/shared'; +import { + getJiraConfig, + updateJiraConfig, + listJiraProjects, + getJiraProject, + activateProject, + pauseProject, + blockProject, + resumeProject, + triggerDiscovery, + getDiscoveryStatus, + listAudit, + getSmartSuggestions, +} from '@/lib/api/jira-admin'; + +// --------------------------------------------------------------------------- +// Query keys +// --------------------------------------------------------------------------- + +export const jiraAdminKeys = { + all: ['jira-admin'] as const, + config: () => [...jiraAdminKeys.all, 'config'] as const, + projects: () => [...jiraAdminKeys.all, 'projects'] as const, + projectList: (query: JiraProjectCatalogQuery) => + [...jiraAdminKeys.projects(), query] as const, + projectDetail: (key: string) => [...jiraAdminKeys.projects(), key] as const, + discoveryStatus: () => [...jiraAdminKeys.all, 'discovery-status'] as const, + audit: () => [...jiraAdminKeys.all, 'audit'] as const, + auditList: (query: JiraAuditQuery) => [...jiraAdminKeys.audit(), query] as const, + suggestions: () => [...jiraAdminKeys.all, 'suggestions'] as const, +}; + +// --------------------------------------------------------------------------- +// Configuration +// --------------------------------------------------------------------------- + +export function useJiraConfigQuery() { + return useQuery({ + queryKey: jiraAdminKeys.config(), + queryFn: getJiraConfig, + staleTime: 30_000, + }); +} + +export function useJiraConfigMutation() { + const queryClient = useQueryClient(); + return useMutation({ + mutationFn: updateJiraConfig, + onSuccess: (data) => { + queryClient.setQueryData(jiraAdminKeys.config(), data); + // Discovery status might change after config update + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.discoveryStatus() }); + }, + }); +} + +// --------------------------------------------------------------------------- +// Projects +// --------------------------------------------------------------------------- + +export function useJiraProjectsQuery(query: JiraProjectCatalogQuery) { + return useQuery({ + queryKey: jiraAdminKeys.projectList(query), + queryFn: () => listJiraProjects(query), + staleTime: 15_000, + }); +} + +export function useJiraProjectQuery(key: string, enabled = true) { + return useQuery({ + queryKey: jiraAdminKeys.projectDetail(key), + queryFn: () => getJiraProject(key), + enabled, + staleTime: 15_000, + }); +} + +// --------------------------------------------------------------------------- +// Project actions (activate / pause / block / resume) +// --------------------------------------------------------------------------- + +type ProjectAction = 'activate' | 'pause' | 'block' | 'resume'; + +const ACTION_FNS: Record< + ProjectAction, + (key: string, body: JiraProjectActionInput) => Promise +> = { + activate: activateProject, + pause: pauseProject, + block: blockProject, + resume: resumeProject, +}; + +/** Maps action to the optimistic next status */ +const OPTIMISTIC_STATUS: Record = { + activate: 'active', + pause: 'paused', + block: 'blocked', + resume: 'active', +}; + +interface ProjectActionVars { + action: ProjectAction; + projectKey: string; + body?: JiraProjectActionInput; +} + +interface ProjectActionContext { + previousQueries: [readonly unknown[], JiraProjectCatalogListResponse | undefined][]; +} + +export function useProjectActionMutation() { + const queryClient = useQueryClient(); + + return useMutation({ + mutationFn: ({ action, projectKey, body }) => + ACTION_FNS[action](projectKey, body ?? {}), + + onMutate: async ({ action, projectKey }) => { + // Cancel in-flight queries to avoid overwriting optimistic update + await queryClient.cancelQueries({ queryKey: jiraAdminKeys.projects() }); + + // Snapshot for rollback + const previousQueries = queryClient.getQueriesData({ + queryKey: jiraAdminKeys.projects(), + }); + + // Optimistic update: patch the status in all cached project lists + queryClient.setQueriesData( + { queryKey: jiraAdminKeys.projects() }, + (old) => { + if (!old) return old; + return { + ...old, + items: old.items.map((item) => + item.projectKey === projectKey + ? { ...item, status: OPTIMISTIC_STATUS[action] } + : item, + ), + }; + }, + ); + + return { previousQueries }; + }, + + onError: (_err, _vars, context) => { + // Rollback on error + if (context?.previousQueries) { + for (const [queryKey, data] of context.previousQueries) { + queryClient.setQueryData(queryKey, data); + } + } + }, + + onSettled: () => { + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.projects() }); + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.audit() }); + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.suggestions() }); + }, + }); +} + +// --------------------------------------------------------------------------- +// Bulk action (applies the same action to multiple keys) +// --------------------------------------------------------------------------- + +export function useBulkProjectActionMutation() { + const queryClient = useQueryClient(); + + return useMutation< + JiraProjectCatalogEntry[], + Error, + { action: ProjectAction; projectKeys: string[]; body?: JiraProjectActionInput } + >({ + mutationFn: async ({ action, projectKeys, body }) => { + const fn = ACTION_FNS[action]; + return Promise.all(projectKeys.map((key) => fn(key, body ?? {}))); + }, + onSettled: () => { + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.projects() }); + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.audit() }); + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.suggestions() }); + }, + }); +} + +// --------------------------------------------------------------------------- +// Discovery status (polls while in-flight) +// --------------------------------------------------------------------------- + +export function useDiscoveryStatusQuery() { + return useQuery({ + queryKey: jiraAdminKeys.discoveryStatus(), + queryFn: getDiscoveryStatus, + refetchInterval: (query) => { + const data = query.state.data; + return data?.inFlight ? 5_000 : false; + }, + staleTime: 5_000, + }); +} + +export function useDiscoveryTriggerMutation() { + const queryClient = useQueryClient(); + return useMutation({ + mutationFn: triggerDiscovery, + onSuccess: (data) => { + queryClient.setQueryData(jiraAdminKeys.discoveryStatus(), data); + }, + onSettled: () => { + // After trigger, refresh projects and status + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.discoveryStatus() }); + void queryClient.invalidateQueries({ queryKey: jiraAdminKeys.projects() }); + }, + }); +} + +// --------------------------------------------------------------------------- +// Audit +// --------------------------------------------------------------------------- + +export function useJiraAuditQuery(query: JiraAuditQuery) { + return useQuery({ + queryKey: jiraAdminKeys.auditList(query), + queryFn: () => listAudit(query), + staleTime: 30_000, + }); +} + +// --------------------------------------------------------------------------- +// Smart Suggestions +// --------------------------------------------------------------------------- + +export function useSmartSuggestionsQuery() { + return useQuery({ + queryKey: jiraAdminKeys.suggestions(), + queryFn: getSmartSuggestions, + staleTime: 60_000, + }); +} diff --git a/pulse/packages/pulse-web/src/lib/api/__tests__/jira-admin.test.ts b/pulse/packages/pulse-web/src/lib/api/__tests__/jira-admin.test.ts new file mode 100644 index 0000000..7183d6e --- /dev/null +++ b/pulse/packages/pulse-web/src/lib/api/__tests__/jira-admin.test.ts @@ -0,0 +1,161 @@ +import { describe, it, expect, vi, beforeEach } from 'vitest'; +import type { + TenantJiraConfig, + JiraProjectCatalogListResponse, + JiraDiscoveryStatusResponse, +} from '@pulse/shared'; + +// Mock axios via the client module +const mockGet = vi.fn(); +const mockPut = vi.fn(); +const mockPost = vi.fn(); + +vi.mock('../client', () => ({ + apiClient: { + get: (...args: unknown[]) => mockGet(...args), + put: (...args: unknown[]) => mockPut(...args), + post: (...args: unknown[]) => mockPost(...args), + }, +})); + +// Import after mocking +import { + getJiraConfig, + updateJiraConfig, + listJiraProjects, + activateProject, + triggerDiscovery, + getDiscoveryStatus, + getSmartSuggestions, + listAudit, +} from '../jira-admin'; + +const BASE = '/v1/admin/integrations/jira'; + +const MOCK_CONFIG: TenantJiraConfig = { + tenantId: 't1', + mode: 'allowlist', + discoveryEnabled: true, + discoveryScheduleCron: '0 3 * * *', + maxActiveProjects: 100, + maxIssuesPerHour: 5000, + smartPrScanDays: 90, + smartMinPrReferences: 5, + lastDiscoveryAt: null, + lastDiscoveryStatus: null, + lastDiscoveryError: null, + createdAt: '2026-01-01T00:00:00Z', + updatedAt: '2026-01-01T00:00:00Z', +}; + +describe('jira-admin API client', () => { + beforeEach(() => { + vi.clearAllMocks(); + }); + + it('getJiraConfig calls GET /config and returns data', async () => { + mockGet.mockResolvedValue({ data: MOCK_CONFIG }); + + const result = await getJiraConfig(); + expect(mockGet).toHaveBeenCalledWith(`${BASE}/config`); + expect(result).toEqual(MOCK_CONFIG); + }); + + it('updateJiraConfig calls PUT /config with input', async () => { + const updated = { ...MOCK_CONFIG, mode: 'smart' as const }; + mockPut.mockResolvedValue({ data: updated }); + + const result = await updateJiraConfig({ mode: 'smart' }); + expect(mockPut).toHaveBeenCalledWith(`${BASE}/config`, { mode: 'smart' }); + expect(result.mode).toBe('smart'); + }); + + it('listJiraProjects sends correct query params', async () => { + const mockResponse: JiraProjectCatalogListResponse = { + items: [], + total: 0, + counts: { discovered: 0, active: 0, paused: 0, blocked: 0, archived: 0 }, + }; + mockGet.mockResolvedValue({ data: mockResponse }); + + await listJiraProjects({ status: 'active', search: 'PROJ', limit: 10, offset: 0 }); + expect(mockGet).toHaveBeenCalledWith(`${BASE}/projects`, { + params: { + status: 'active', + search: 'PROJ', + limit: '10', + offset: '0', + }, + }); + }); + + it('listJiraProjects joins array status values', async () => { + mockGet.mockResolvedValue({ + data: { items: [], total: 0, counts: { discovered: 0, active: 0, paused: 0, blocked: 0, archived: 0 } }, + }); + + await listJiraProjects({ status: ['active', 'paused'] }); + expect(mockGet).toHaveBeenCalledWith(`${BASE}/projects`, { + params: { status: 'active,paused' }, + }); + }); + + it('activateProject calls POST /:key/activate', async () => { + mockPost.mockResolvedValue({ data: { projectKey: 'PROJ1', status: 'active' } }); + + const result = await activateProject('PROJ1', { reason: 'testing' }); + expect(mockPost).toHaveBeenCalledWith(`${BASE}/projects/PROJ1/activate`, { + reason: 'testing', + }); + expect(result.status).toBe('active'); + }); + + it('triggerDiscovery calls POST /discovery/trigger', async () => { + const mockStatus: JiraDiscoveryStatusResponse = { + inFlight: true, + currentRunId: 'run-1', + lastRun: null, + tenantConfig: { + mode: 'allowlist', + discoveryEnabled: true, + discoveryScheduleCron: '0 3 * * *', + lastDiscoveryAt: null, + lastDiscoveryStatus: null, + }, + }; + mockPost.mockResolvedValue({ data: mockStatus }); + + const result = await triggerDiscovery(); + expect(mockPost).toHaveBeenCalledWith(`${BASE}/discovery/trigger`); + expect(result.inFlight).toBe(true); + }); + + it('getDiscoveryStatus calls GET /discovery/status', async () => { + mockGet.mockResolvedValue({ data: { inFlight: false } }); + + await getDiscoveryStatus(); + expect(mockGet).toHaveBeenCalledWith(`${BASE}/discovery/status`); + }); + + it('getSmartSuggestions calls GET /smart-suggestions', async () => { + mockGet.mockResolvedValue({ data: { items: [], thresholdPrReferences: 5 } }); + + const result = await getSmartSuggestions(); + expect(mockGet).toHaveBeenCalledWith(`${BASE}/smart-suggestions`); + expect(result.items).toEqual([]); + }); + + it('listAudit sends correct query params', async () => { + mockGet.mockResolvedValue({ data: { items: [], total: 0 } }); + + await listAudit({ eventType: 'mode_changed', projectKey: 'PROJ', limit: 25, offset: 0 }); + expect(mockGet).toHaveBeenCalledWith(`${BASE}/audit`, { + params: { + event_type: 'mode_changed', + project_key: 'PROJ', + limit: '25', + offset: '0', + }, + }); + }); +}); diff --git a/pulse/packages/pulse-web/src/lib/api/jira-admin.ts b/pulse/packages/pulse-web/src/lib/api/jira-admin.ts new file mode 100644 index 0000000..c24077d --- /dev/null +++ b/pulse/packages/pulse-web/src/lib/api/jira-admin.ts @@ -0,0 +1,156 @@ +import { apiClient } from './client'; +import type { + TenantJiraConfig, + UpdateTenantJiraConfigInput, + JiraProjectCatalogListResponse, + JiraProjectCatalogQuery, + JiraProjectCatalogEntry, + JiraProjectActionInput, + JiraDiscoveryStatusResponse, + JiraAuditListResponse, + JiraAuditQuery, + JiraSmartSuggestionsResponse, +} from '@pulse/shared'; + +const BASE = '/v1/admin/integrations/jira'; + +// --------------------------------------------------------------------------- +// Configuration +// --------------------------------------------------------------------------- + +export async function getJiraConfig(): Promise { + const response = await apiClient.get(`${BASE}/config`); + return response.data; +} + +export async function updateJiraConfig( + input: UpdateTenantJiraConfigInput, +): Promise { + const response = await apiClient.put(`${BASE}/config`, input); + return response.data; +} + +// --------------------------------------------------------------------------- +// Project catalog +// --------------------------------------------------------------------------- + +function buildCatalogParams(query: JiraProjectCatalogQuery): Record { + const params: Record = {}; + if (query.status) { + params.status = Array.isArray(query.status) ? query.status.join(',') : query.status; + } + if (query.search) params.search = query.search; + if (query.limit != null) params.limit = String(query.limit); + if (query.offset != null) params.offset = String(query.offset); + if (query.sortBy) params.sort_by = query.sortBy; + if (query.sortDir) params.sort_dir = query.sortDir; + return params; +} + +export async function listJiraProjects( + query: JiraProjectCatalogQuery = {}, +): Promise { + const response = await apiClient.get(`${BASE}/projects`, { + params: buildCatalogParams(query), + }); + return response.data; +} + +export async function getJiraProject(key: string): Promise { + const response = await apiClient.get(`${BASE}/projects/${key}`); + return response.data; +} + +export async function activateProject( + key: string, + body: JiraProjectActionInput = {}, +): Promise { + const response = await apiClient.post( + `${BASE}/projects/${key}/activate`, + body, + ); + return response.data; +} + +export async function pauseProject( + key: string, + body: JiraProjectActionInput = {}, +): Promise { + const response = await apiClient.post( + `${BASE}/projects/${key}/pause`, + body, + ); + return response.data; +} + +export async function blockProject( + key: string, + body: JiraProjectActionInput = {}, +): Promise { + const response = await apiClient.post( + `${BASE}/projects/${key}/block`, + body, + ); + return response.data; +} + +export async function resumeProject( + key: string, + body: JiraProjectActionInput = {}, +): Promise { + const response = await apiClient.post( + `${BASE}/projects/${key}/resume`, + body, + ); + return response.data; +} + +// --------------------------------------------------------------------------- +// Discovery +// --------------------------------------------------------------------------- + +export async function triggerDiscovery(): Promise { + const response = await apiClient.post(`${BASE}/discovery/trigger`); + return response.data; +} + +export async function getDiscoveryStatus(): Promise { + const response = await apiClient.get(`${BASE}/discovery/status`); + return response.data; +} + +// --------------------------------------------------------------------------- +// Audit +// --------------------------------------------------------------------------- + +function buildAuditParams(query: JiraAuditQuery): Record { + const params: Record = {}; + if (query.eventType) { + params.event_type = Array.isArray(query.eventType) + ? query.eventType.join(',') + : query.eventType; + } + if (query.projectKey) params.project_key = query.projectKey; + if (query.since) params.since = query.since; + if (query.limit != null) params.limit = String(query.limit); + if (query.offset != null) params.offset = String(query.offset); + return params; +} + +export async function listAudit(query: JiraAuditQuery = {}): Promise { + const response = await apiClient.get(`${BASE}/audit`, { + params: buildAuditParams(query), + }); + return response.data; +} + +// --------------------------------------------------------------------------- +// Smart Suggestions +// --------------------------------------------------------------------------- + +export async function getSmartSuggestions(): Promise { + const response = await apiClient.get( + `${BASE}/smart-suggestions`, + ); + return response.data; +} diff --git a/pulse/packages/pulse-web/src/routeTree.gen.ts b/pulse/packages/pulse-web/src/routeTree.gen.ts index a678bfc..7089ce1 100644 --- a/pulse/packages/pulse-web/src/routeTree.gen.ts +++ b/pulse/packages/pulse-web/src/routeTree.gen.ts @@ -14,6 +14,10 @@ import { sprintsRoute } from './routes/_dashboard/metrics/sprints'; import { prsRoute } from './routes/_dashboard/prs'; import { integrationsRoute } from './routes/_dashboard/integrations'; import { pipelineMonitorRoute } from './routes/_dashboard/pipeline-monitor'; +import { jiraSettingsRoute } from './routes/_dashboard/settings/integrations/jira'; +import { jiraCatalogRoute } from './routes/_dashboard/settings/integrations/jira.catalog'; +import { jiraConfigRoute } from './routes/_dashboard/settings/integrations/jira.config'; +import { jiraAuditRoute } from './routes/_dashboard/settings/integrations/jira.audit'; export const routeTree = rootRoute.addChildren([ homeRoute, @@ -25,4 +29,9 @@ export const routeTree = rootRoute.addChildren([ prsRoute, integrationsRoute, pipelineMonitorRoute, + jiraSettingsRoute.addChildren([ + jiraCatalogRoute, + jiraConfigRoute, + jiraAuditRoute, + ]), ]); diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/mode-selector.test.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/mode-selector.test.tsx new file mode 100644 index 0000000..be7b57f --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/mode-selector.test.tsx @@ -0,0 +1,46 @@ +import { describe, it, expect, vi } from 'vitest'; +import { render, screen, fireEvent } from '@testing-library/react'; +import { ModeSelector } from '../mode-selector'; + +describe('ModeSelector', () => { + it('renders 4 radio cards', () => { + render(); + expect(screen.getAllByRole('radio')).toHaveLength(4); + }); + + it('marks the selected mode as checked', () => { + render(); + const smartRadio = screen.getByLabelText(/Modo Smart/i); + expect(smartRadio).toBeChecked(); + + const autoRadio = screen.getByLabelText(/Modo Automatico/i); + expect(autoRadio).not.toBeChecked(); + }); + + it('calls onChange when a different mode is clicked', () => { + const onChange = vi.fn(); + render(); + + const blocklist = screen.getByLabelText(/Modo Blocklist/i); + fireEvent.click(blocklist); + expect(onChange).toHaveBeenCalledWith('blocklist'); + }); + + it('does not call onChange when current mode is clicked again', () => { + const onChange = vi.fn(); + render(); + + // Clicking the already-selected radio should not trigger onChange + // (HTML radio does not fire change when re-selecting same) + const allowlist = screen.getByLabelText(/Modo Allowlist/i); + fireEvent.click(allowlist); + // Radio onChange only fires on actual change + expect(onChange).not.toHaveBeenCalled(); + }); + + it('renders all modes disabled when disabled prop is true', () => { + render(); + const fieldset = screen.getByRole('group'); + expect(fieldset).toBeDisabled(); + }); +}); diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-catalog-table.test.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-catalog-table.test.tsx new file mode 100644 index 0000000..d5626a9 --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-catalog-table.test.tsx @@ -0,0 +1,167 @@ +import { describe, it, expect, vi, beforeEach } from 'vitest'; +import { render, screen } from '@testing-library/react'; +import { QueryClient, QueryClientProvider } from '@tanstack/react-query'; +import type { JiraProjectCatalogListResponse } from '@pulse/shared'; + +// Mock the hooks +const mockUseJiraProjectsQuery = vi.fn(); +const mockUseBulkProjectActionMutation = vi.fn(() => ({ + mutate: vi.fn(), + isPending: false, +})); +const mockUseJiraProjectQuery = vi.fn(); +const mockUseSmartSuggestionsQuery = vi.fn(() => ({ + data: undefined, +})); + +vi.mock('@/hooks/useJiraAdmin', () => ({ + useJiraProjectsQuery: (...args: unknown[]) => mockUseJiraProjectsQuery(...args), + useBulkProjectActionMutation: () => mockUseBulkProjectActionMutation(), + useJiraProjectQuery: (...args: unknown[]) => mockUseJiraProjectQuery(...args), + useSmartSuggestionsQuery: () => mockUseSmartSuggestionsQuery(), + useProjectActionMutation: () => ({ + mutate: vi.fn(), + isPending: false, + }), +})); + +// Import after mocks +import { ProjectCatalogTable } from '../project-catalog-table'; + +function createWrapper() { + const qc = new QueryClient({ defaultOptions: { queries: { retry: false } } }); + return function Wrapper({ children }: { children: React.ReactNode }) { + return {children}; + }; +} + +const MOCK_RESPONSE: JiraProjectCatalogListResponse = { + items: [ + { + id: '1', + tenantId: 't1', + projectKey: 'PROJ1', + projectId: '10001', + name: 'Project One', + projectType: 'software', + leadAccountId: null, + status: 'active', + activationSource: 'manual', + issueCount: 150, + prReferenceCount: 42, + firstSeenAt: '2026-01-01T00:00:00Z', + activatedAt: '2026-01-02T00:00:00Z', + lastSyncAt: '2026-04-12T10:00:00Z', + lastSyncStatus: 'success', + consecutiveFailures: 0, + lastError: null, + metadata: {}, + createdAt: '2026-01-01T00:00:00Z', + updatedAt: '2026-04-12T10:00:00Z', + }, + { + id: '2', + tenantId: 't1', + projectKey: 'PROJ2', + projectId: '10002', + name: 'Project Two', + projectType: 'software', + leadAccountId: null, + status: 'discovered', + activationSource: null, + issueCount: 0, + prReferenceCount: 88, + firstSeenAt: '2026-04-10T00:00:00Z', + activatedAt: null, + lastSyncAt: null, + lastSyncStatus: null, + consecutiveFailures: 0, + lastError: null, + metadata: {}, + createdAt: '2026-04-10T00:00:00Z', + updatedAt: '2026-04-10T00:00:00Z', + }, + ], + total: 2, + counts: { discovered: 1, active: 1, paused: 0, blocked: 0, archived: 0 }, +}; + +describe('ProjectCatalogTable', () => { + beforeEach(() => { + vi.clearAllMocks(); + }); + + it('renders loading skeleton while fetching', () => { + mockUseJiraProjectsQuery.mockReturnValue({ + data: undefined, + isLoading: true, + isError: false, + error: null, + }); + + render(, { wrapper: createWrapper() }); + // Skeleton rows render animate-pulse divs + const skeletons = document.querySelectorAll('.animate-pulse'); + expect(skeletons.length).toBeGreaterThan(0); + }); + + it('renders empty state when no projects', () => { + mockUseJiraProjectsQuery.mockReturnValue({ + data: { items: [], total: 0, counts: { discovered: 0, active: 0, paused: 0, blocked: 0, archived: 0 } }, + isLoading: false, + isError: false, + error: null, + }); + + render(, { wrapper: createWrapper() }); + expect(screen.getByText(/Nenhum projeto descoberto/i)).toBeInTheDocument(); + }); + + it('renders error state on API failure', () => { + mockUseJiraProjectsQuery.mockReturnValue({ + data: undefined, + isLoading: false, + isError: true, + error: new Error('Network Error'), + }); + + render(, { wrapper: createWrapper() }); + expect(screen.getByText(/Falha ao carregar projetos/i)).toBeInTheDocument(); + expect(screen.getByText(/Network Error/i)).toBeInTheDocument(); + }); + + it('renders project rows with correct data', () => { + mockUseJiraProjectsQuery.mockReturnValue({ + data: MOCK_RESPONSE, + isLoading: false, + isError: false, + error: null, + }); + + render(, { wrapper: createWrapper() }); + + // Text appears in both table cells and side panel/filter chips → use getAllByText + expect(screen.getAllByText('PROJ1').length).toBeGreaterThan(0); + expect(screen.getAllByText('Project One').length).toBeGreaterThan(0); + expect(screen.getAllByText('Ativo').length).toBeGreaterThan(0); + + expect(screen.getAllByText('PROJ2').length).toBeGreaterThan(0); + expect(screen.getAllByText('Project Two').length).toBeGreaterThan(0); + expect(screen.getAllByText('Descoberto').length).toBeGreaterThan(0); + }); + + it('renders filter chips with counts', () => { + mockUseJiraProjectsQuery.mockReturnValue({ + data: MOCK_RESPONSE, + isLoading: false, + isError: false, + error: null, + }); + + render(, { wrapper: createWrapper() }); + + expect(screen.getByText(/Todos/)).toBeInTheDocument(); + expect(screen.getByText(/Ativos/)).toBeInTheDocument(); + expect(screen.getByText(/Descobertos/)).toBeInTheDocument(); + }); +}); diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-row-actions.test.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-row-actions.test.tsx new file mode 100644 index 0000000..83763bc --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-row-actions.test.tsx @@ -0,0 +1,74 @@ +import { describe, it, expect } from 'vitest'; +import { render, screen, fireEvent } from '@testing-library/react'; +import { QueryClient, QueryClientProvider } from '@tanstack/react-query'; +import { ProjectRowActions, getActionsForStatus } from '../project-row-actions'; +import type { JiraProjectStatus } from '@pulse/shared'; + +function wrapper({ children }: { children: React.ReactNode }) { + const qc = new QueryClient({ defaultOptions: { queries: { retry: false } } }); + return {children}; +} + +describe('getActionsForStatus', () => { + it('returns activate + block for discovered', () => { + const actions = getActionsForStatus('discovered'); + expect(actions.map((a) => a.action)).toEqual(['activate', 'block']); + }); + + it('returns pause + block for active', () => { + const actions = getActionsForStatus('active'); + expect(actions.map((a) => a.action)).toEqual(['pause', 'block']); + }); + + it('returns resume + block for paused', () => { + const actions = getActionsForStatus('paused'); + expect(actions.map((a) => a.action)).toEqual(['resume', 'block']); + }); + + it('returns resume for blocked', () => { + const actions = getActionsForStatus('blocked'); + expect(actions.map((a) => a.action)).toEqual(['resume']); + }); + + it('returns empty for archived', () => { + const actions = getActionsForStatus('archived'); + expect(actions).toHaveLength(0); + }); +}); + +describe('ProjectRowActions', () => { + it('renders action button for non-archived status', () => { + render(, { wrapper }); + expect(screen.getByRole('button', { name: /Acoes para projeto PROJ/i })).toBeInTheDocument(); + }); + + it('renders nothing for archived status', () => { + const { container } = render(, { + wrapper, + }); + expect(container.innerHTML).toBe(''); + }); + + it('shows menu items on click', () => { + render(, { wrapper }); + const trigger = screen.getByRole('button', { name: /Acoes para projeto PROJ/i }); + fireEvent.click(trigger); + + expect(screen.getByRole('menuitem', { name: /Pausar/i })).toBeInTheDocument(); + expect(screen.getByRole('menuitem', { name: /Bloquear/i })).toBeInTheDocument(); + }); + + it.each<[JiraProjectStatus, string[]]>([ + ['discovered', ['Ativar', 'Bloquear']], + ['active', ['Pausar', 'Bloquear']], + ['paused', ['Retomar', 'Bloquear']], + ['blocked', ['Desbloquear']], + ])('shows correct menu items for status %s', (status, expectedLabels) => { + render(, { wrapper }); + fireEvent.click(screen.getByRole('button', { name: /Acoes para projeto TEST/i })); + + for (const label of expectedLabels) { + expect(screen.getByRole('menuitem', { name: new RegExp(label, 'i') })).toBeInTheDocument(); + } + }); +}); diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/discovery-status-badge.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/discovery-status-badge.tsx new file mode 100644 index 0000000..a601e19 --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/discovery-status-badge.tsx @@ -0,0 +1,45 @@ +import { CheckCircle2, Loader2, XCircle } from 'lucide-react'; +import type { JiraDiscoveryStatusResponse } from '@pulse/shared'; + +interface DiscoveryStatusBadgeProps { + status: JiraDiscoveryStatusResponse | undefined; + isLoading: boolean; +} + +export function DiscoveryStatusBadge({ status, isLoading }: DiscoveryStatusBadgeProps) { + if (isLoading || !status) { + return ( + + + Carregando... + + ); + } + + if (status.inFlight) { + return ( + + + Descobrindo... + + ); + } + + const lastStatus = status.lastRun?.status; + + if (lastStatus === 'failed') { + return ( + + + Falha + + ); + } + + return ( + + + Idle + + ); +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/discovery-trigger-button.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/discovery-trigger-button.tsx new file mode 100644 index 0000000..8faa22c --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/discovery-trigger-button.tsx @@ -0,0 +1,72 @@ +import { useState } from 'react'; +import { RefreshCw } from 'lucide-react'; +import { + useDiscoveryStatusQuery, + useDiscoveryTriggerMutation, +} from '@/hooks/useJiraAdmin'; + +export function DiscoveryTriggerButton() { + const [showConfirm, setShowConfirm] = useState(false); + const { data: status } = useDiscoveryStatusQuery(); + const trigger = useDiscoveryTriggerMutation(); + const isRunning = status?.inFlight ?? false; + + function handleTrigger() { + setShowConfirm(false); + trigger.mutate(); + } + + return ( +
+ + + {/* Confirmation dialog overlay */} + {showConfirm && ( +
+
+

+ Confirmar descoberta +

+

+ Isso iniciara uma busca por novos projetos Jira no seu tenant. O processo pode levar + alguns minutos dependendo do numero de projetos. +

+
+ + +
+
+
+ )} +
+ ); +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx new file mode 100644 index 0000000..186e5de --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx @@ -0,0 +1,102 @@ +import { Zap, Shield, ShieldOff, Brain } from 'lucide-react'; +import type { JiraDiscoveryMode } from '@pulse/shared'; + +interface ModeOption { + mode: JiraDiscoveryMode; + label: string; + description: string; + guidance: string; + icon: React.ComponentType<{ className?: string }>; +} + +const MODE_OPTIONS: ModeOption[] = [ + { + mode: 'auto', + label: 'Automatico', + description: 'Todos os projetos descobertos ficam ativos. Blocklist pode bloquear.', + guidance: 'Use quando quer onboarding rapido e baixa friccao.', + icon: Zap, + }, + { + mode: 'allowlist', + label: 'Allowlist', + description: 'Apenas projetos aprovados manualmente sao sincronizados.', + guidance: 'Use em ambientes regulados ou quando precisa de governanca total.', + icon: Shield, + }, + { + mode: 'blocklist', + label: 'Blocklist', + description: 'Todos ativos exceto projetos explicitamente bloqueados.', + guidance: 'Use quando quer controle seletivo sobre o que NAO sincronizar.', + icon: ShieldOff, + }, + { + mode: 'smart', + label: 'Smart', + description: 'Ativa automaticamente projetos referenciados em PRs acima do threshold.', + guidance: 'Recomendado para times de engenharia que usam PRs com chave Jira.', + icon: Brain, + }, +]; + +interface ModeSelectorProps { + value: JiraDiscoveryMode; + onChange: (mode: JiraDiscoveryMode) => void; + disabled?: boolean; +} + +export function ModeSelector({ value, onChange, disabled }: ModeSelectorProps) { + return ( +
+ Modo de descoberta Jira + {MODE_OPTIONS.map((option) => { + const isSelected = value === option.mode; + const Icon = option.icon; + + return ( + + ); + })} +
+ ); +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-catalog-table.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-catalog-table.tsx new file mode 100644 index 0000000..e773c9c --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-catalog-table.tsx @@ -0,0 +1,645 @@ +import { useState, useCallback } from 'react'; +import { Search, ChevronLeft, ChevronRight, X, ArrowUpDown } from 'lucide-react'; +import type { + JiraProjectStatus, + JiraProjectCatalogQuery, + JiraProjectCatalogEntry, +} from '@pulse/shared'; +import { useJiraProjectsQuery, useJiraProjectQuery, useBulkProjectActionMutation } from '@/hooks/useJiraAdmin'; +import { ProjectRowActions } from './project-row-actions'; + +// --------------------------------------------------------------------------- +// Status chip +// --------------------------------------------------------------------------- + +const STATUS_STYLES: Record = { + discovered: { bg: 'bg-blue-50', text: 'text-status-info', label: 'Descoberto' }, + active: { bg: 'bg-emerald-50', text: 'text-status-success', label: 'Ativo' }, + paused: { bg: 'bg-amber-50', text: 'text-status-warning', label: 'Pausado' }, + blocked: { bg: 'bg-red-50', text: 'text-status-danger', label: 'Bloqueado' }, + archived: { bg: 'bg-gray-100', text: 'text-content-tertiary', label: 'Arquivado' }, +}; + +function StatusChip({ status }: { status: JiraProjectStatus }) { + const style = STATUS_STYLES[status]; + return ( + + {style.label} + + ); +} + +// --------------------------------------------------------------------------- +// Filter chips row +// --------------------------------------------------------------------------- + +type FilterStatus = JiraProjectStatus | 'all'; + +const FILTER_OPTIONS: { value: FilterStatus; label: string }[] = [ + { value: 'all', label: 'Todos' }, + { value: 'discovered', label: 'Descobertos' }, + { value: 'active', label: 'Ativos' }, + { value: 'paused', label: 'Pausados' }, + { value: 'blocked', label: 'Bloqueados' }, + { value: 'archived', label: 'Arquivados' }, +]; + +const SORT_OPTIONS: { value: NonNullable; label: string }[] = [ + { value: 'project_key', label: 'Chave' }, + { value: 'pr_reference_count', label: 'PRs referenciando' }, + { value: 'issue_count', label: 'Issues' }, + { value: 'last_sync_at', label: 'Ultima sync' }, +]; + +const PAGE_SIZE = 20; + +// --------------------------------------------------------------------------- +// Side panel for project detail +// --------------------------------------------------------------------------- + +function ProjectDetailPanel({ + projectKey, + onClose, +}: { + projectKey: string; + onClose: () => void; +}) { + const { data, isLoading } = useJiraProjectQuery(projectKey); + + return ( +
+
+

Projeto {projectKey}

+ +
+ +
+ {isLoading || !data ? ( +
+ {Array.from({ length: 6 }).map((_, i) => ( +
+ ))} +
+ ) : ( +
+ + + + + + + + + + + + + {data.consecutiveFailures > 0 && ( + <> + + {data.lastError && ( +
+
Ultimo erro
+
+ {data.lastError} +
+
+ )} + + )} +
+ )} +
+
+ ); +} + +function DetailRow({ + label, + value, + children, +}: { + label: string; + value?: string; + children?: React.ReactNode; +}) { + return ( +
+
{label}
+
{children ?? value}
+
+ ); +} + +// --------------------------------------------------------------------------- +// Table skeleton +// --------------------------------------------------------------------------- + +function TableSkeleton() { + return ( +
+ {Array.from({ length: 8 }).map((_, i) => ( +
+
+
+
+
+
+
+
+
+
+ ))} +
+ ); +} + +// --------------------------------------------------------------------------- +// Main table +// --------------------------------------------------------------------------- + +export function ProjectCatalogTable() { + const [statusFilter, setStatusFilter] = useState('all'); + const [search, setSearch] = useState(''); + const [sortBy, setSortBy] = useState('pr_reference_count'); + const [sortDir, setSortDir] = useState('desc'); + const [offset, setOffset] = useState(0); + const [selectedKeys, setSelectedKeys] = useState>(new Set()); + const [detailKey, setDetailKey] = useState(null); + + const query: JiraProjectCatalogQuery = { + status: statusFilter === 'all' ? undefined : statusFilter, + search: search || undefined, + sortBy, + sortDir, + limit: PAGE_SIZE, + offset, + }; + + const { data, isLoading, isError, error } = useJiraProjectsQuery(query); + const bulkAction = useBulkProjectActionMutation(); + + const toggleSort = useCallback( + (col: NonNullable) => { + if (sortBy === col) { + setSortDir((d) => (d === 'asc' ? 'desc' : 'asc')); + } else { + setSortBy(col); + setSortDir('desc'); + } + setOffset(0); + }, + [sortBy], + ); + + const toggleSelectAll = useCallback(() => { + if (!data) return; + const allKeys = new Set(data.items.map((p) => p.projectKey)); + setSelectedKeys((prev) => (prev.size === allKeys.size ? new Set() : allKeys)); + }, [data]); + + const toggleSelect = useCallback((key: string) => { + setSelectedKeys((prev) => { + const next = new Set(prev); + if (next.has(key)) next.delete(key); + else next.add(key); + return next; + }); + }, []); + + const hasSelected = selectedKeys.size > 0; + const total = data?.total ?? 0; + const currentPage = Math.floor(offset / PAGE_SIZE) + 1; + const totalPages = Math.max(1, Math.ceil(total / PAGE_SIZE)); + + // Error state + if (isError) { + return ( +
+

+ Falha ao carregar projetos: {error instanceof Error ? error.message : 'Erro desconhecido'} +

+
+ ); + } + + return ( +
+ {/* Filters row */} +
+ {/* Status chips */} +
+ {FILTER_OPTIONS.map((opt) => { + const isActive = statusFilter === opt.value; + const count = + opt.value === 'all' + ? total + : data?.counts[opt.value as JiraProjectStatus] ?? 0; + return ( + + ); + })} +
+ + {/* Search */} +
+ + { + setSearch(e.target.value); + setOffset(0); + }} + className="h-8 w-56 rounded-button border border-border-default bg-surface-primary pl-8 pr-3 text-sm text-content-primary placeholder:text-content-tertiary focus:border-brand-primary focus:outline-none" + aria-label="Buscar projetos" + /> +
+ + {/* Sort dropdown */} + +
+ + {/* Bulk actions bar */} + {hasSelected && ( +
+ + {selectedKeys.size} selecionados + +
+ + + +
+
+ )} + + {/* Table (desktop) */} + {isLoading ? ( + + ) : !data || data.items.length === 0 ? ( +
+

+ Nenhum projeto descoberto ainda. Clique em “Descobrir agora” para buscar. +

+
+ ) : ( + <> + {/* Desktop table */} +
+ + + + + + + + + + + + + + + {data.items.map((project) => ( + + ))} + +
+ 0} + onChange={toggleSelectAll} + className="rounded" + aria-label="Selecionar todos" + /> + NomeStatus + Acoes +
+
+ + {/* Mobile card list */} +
+ {data.items.map((project) => ( + + ))} +
+ + )} + + {/* Pagination */} + {total > PAGE_SIZE && ( +
+ + {offset + 1}-{Math.min(offset + PAGE_SIZE, total)} de {total} + +
+ + + {currentPage} / {totalPages} + + +
+
+ )} + + {/* Side panel */} + {detailKey && ( + <> + {/* Backdrop */} +
setDetailKey(null)} + aria-hidden="true" + /> + setDetailKey(null)} /> + + )} +
+ ); +} + +// --------------------------------------------------------------------------- +// Subcomponents +// --------------------------------------------------------------------------- + +function SortableHeader({ + label, + col, + activeCol, + dir, + onSort, +}: { + label: string; + col: NonNullable; + activeCol: JiraProjectCatalogQuery['sortBy']; + dir: JiraProjectCatalogQuery['sortDir']; + onSort: (col: NonNullable) => void; +}) { + const isActive = activeCol === col; + return ( + + + + ); +} + +function ProjectRow({ + project, + selected, + onToggleSelect, + onViewDetail, +}: { + project: JiraProjectCatalogEntry; + selected: boolean; + onToggleSelect: (key: string) => void; + onViewDetail: (key: string) => void; +}) { + return ( + + + onToggleSelect(project.projectKey)} + className="rounded" + aria-label={`Selecionar ${project.projectKey}`} + /> + + + {project.projectKey} + + {project.name ?? '-'} + + + + + {project.issueCount.toLocaleString()} + + + {project.prReferenceCount.toLocaleString()} + + + {project.lastSyncAt ? new Date(project.lastSyncAt).toLocaleString() : 'Nunca'} + + +
+ + +
+ + + ); +} + +function ProjectCard({ + project, + selected, + onToggleSelect, + onViewDetail, +}: { + project: JiraProjectCatalogEntry; + selected: boolean; + onToggleSelect: (key: string) => void; + onViewDetail: (key: string) => void; +}) { + return ( +
+
+
+ onToggleSelect(project.projectKey)} + className="rounded" + aria-label={`Selecionar ${project.projectKey}`} + /> + + {project.projectKey} + + +
+ +
+ {project.name && ( +

{project.name}

+ )} +
+ Issues: {project.issueCount.toLocaleString()} + PRs: {project.prReferenceCount.toLocaleString()} + + Sync: {project.lastSyncAt ? new Date(project.lastSyncAt).toLocaleString() : 'Nunca'} + +
+ +
+ ); +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-row-actions.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-row-actions.tsx new file mode 100644 index 0000000..38a9468 --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-row-actions.tsx @@ -0,0 +1,123 @@ +import { useState, useRef, useEffect } from 'react'; +import { MoreHorizontal, Play, Pause, Ban, RotateCcw } from 'lucide-react'; +import type { JiraProjectStatus } from '@pulse/shared'; +import { useProjectActionMutation } from '@/hooks/useJiraAdmin'; + +interface ActionDef { + action: 'activate' | 'pause' | 'block' | 'resume'; + label: string; + icon: React.ComponentType<{ className?: string }>; + /** Tailwind text color class for the action */ + colorClass: string; +} + +/** Returns the set of valid actions for a given project status. */ +function getActionsForStatus(status: JiraProjectStatus): ActionDef[] { + switch (status) { + case 'discovered': + return [ + { action: 'activate', label: 'Ativar', icon: Play, colorClass: 'text-status-success' }, + { action: 'block', label: 'Bloquear', icon: Ban, colorClass: 'text-status-danger' }, + ]; + case 'active': + return [ + { action: 'pause', label: 'Pausar', icon: Pause, colorClass: 'text-status-warning' }, + { action: 'block', label: 'Bloquear', icon: Ban, colorClass: 'text-status-danger' }, + ]; + case 'paused': + return [ + { action: 'resume', label: 'Retomar', icon: RotateCcw, colorClass: 'text-status-info' }, + { action: 'block', label: 'Bloquear', icon: Ban, colorClass: 'text-status-danger' }, + ]; + case 'blocked': + return [ + { action: 'resume', label: 'Desbloquear', icon: RotateCcw, colorClass: 'text-status-info' }, + ]; + case 'archived': + return []; + default: + return []; + } +} + +interface ProjectRowActionsProps { + projectKey: string; + status: JiraProjectStatus; +} + +export function ProjectRowActions({ projectKey, status }: ProjectRowActionsProps) { + const [open, setOpen] = useState(false); + const menuRef = useRef(null); + const mutation = useProjectActionMutation(); + const actions = getActionsForStatus(status); + + // Close dropdown on outside click + useEffect(() => { + if (!open) return; + function handleClickOutside(e: MouseEvent) { + if (menuRef.current && !menuRef.current.contains(e.target as Node)) { + setOpen(false); + } + } + document.addEventListener('mousedown', handleClickOutside); + return () => document.removeEventListener('mousedown', handleClickOutside); + }, [open]); + + // Close on Escape + useEffect(() => { + if (!open) return; + function handleEscape(e: KeyboardEvent) { + if (e.key === 'Escape') setOpen(false); + } + document.addEventListener('keydown', handleEscape); + return () => document.removeEventListener('keydown', handleEscape); + }, [open]); + + if (actions.length === 0) return null; + + function handleAction(action: ActionDef['action']) { + setOpen(false); + mutation.mutate({ action, projectKey }); + } + + return ( +
+ + + {open && ( +
+ {actions.map((a) => { + const Icon = a.icon; + return ( + + ); + })} +
+ )} +
+ ); +} + +export { getActionsForStatus }; diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/smart-suggestions-banner.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/smart-suggestions-banner.tsx new file mode 100644 index 0000000..e0380b7 --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/smart-suggestions-banner.tsx @@ -0,0 +1,58 @@ +import { useState } from 'react'; +import { Lightbulb, X } from 'lucide-react'; +import { useSmartSuggestionsQuery, useBulkProjectActionMutation } from '@/hooks/useJiraAdmin'; + +export function SmartSuggestionsBanner() { + const [dismissed, setDismissed] = useState(false); + const { data } = useSmartSuggestionsQuery(); + const bulkAction = useBulkProjectActionMutation(); + + if (dismissed || !data || data.items.length === 0) { + return null; + } + + const keys = data.items.map((s) => s.projectKey); + const totalPrs = data.items.reduce((sum, s) => sum + s.prReferenceCount, 0); + + function handleActivateAll() { + bulkAction.mutate({ action: 'activate', projectKeys: keys }); + setDismissed(true); + } + + return ( +
+ +
+

+ {data.items.length} projetos novos ({keys.join(', ')}) aparecem em{' '} + {totalPrs.toLocaleString()} PRs. Ativar todos? +

+
+ + +
+
+ +
+ ); +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.audit.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.audit.tsx new file mode 100644 index 0000000..52db76a --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.audit.tsx @@ -0,0 +1,298 @@ +import { useState, useCallback } from 'react'; +import { createRoute } from '@tanstack/react-router'; +import { + Search, + Download, + ChevronLeft, + ChevronRight, + RefreshCw, + Settings, + Play, + Pause, + Ban, + RotateCcw, + AlertTriangle, + ShieldAlert, +} from 'lucide-react'; +import { jiraSettingsRoute } from './jira'; +import { useJiraAuditQuery } from '@/hooks/useJiraAdmin'; +import type { JiraAuditEventType, JiraDiscoveryAuditEntry, JiraAuditQuery } from '@pulse/shared'; + +export const jiraAuditRoute = createRoute({ + getParentRoute: () => jiraSettingsRoute, + path: '/audit', + component: JiraAuditTab, +}); + +const PAGE_SIZE = 25; + +// --------------------------------------------------------------------------- +// Event type config +// --------------------------------------------------------------------------- + +interface EventTypeMeta { + icon: React.ComponentType<{ className?: string }>; + label: string; + color: string; +} + +const EVENT_TYPE_META: Record = { + discovery_run: { icon: RefreshCw, label: 'Descoberta executada', color: 'text-status-info' }, + mode_changed: { icon: Settings, label: 'Modo alterado', color: 'text-brand-primary' }, + project_activated: { icon: Play, label: 'Projeto ativado', color: 'text-status-success' }, + project_paused: { icon: Pause, label: 'Projeto pausado', color: 'text-status-warning' }, + project_blocked: { icon: Ban, label: 'Projeto bloqueado', color: 'text-status-danger' }, + project_resumed: { icon: RotateCcw, label: 'Projeto retomado', color: 'text-status-info' }, + project_auto_paused: { + icon: AlertTriangle, + label: 'Auto-pausado (falhas)', + color: 'text-status-warning', + }, + project_cap_enforced: { + icon: ShieldAlert, + label: 'Cap aplicado', + color: 'text-status-danger', + }, +}; + +const EVENT_TYPE_OPTIONS: JiraAuditEventType[] = [ + 'discovery_run', + 'mode_changed', + 'project_activated', + 'project_paused', + 'project_blocked', + 'project_resumed', + 'project_auto_paused', + 'project_cap_enforced', +]; + +// --------------------------------------------------------------------------- +// Main component +// --------------------------------------------------------------------------- + +function JiraAuditTab() { + const [eventTypeFilter, setEventTypeFilter] = useState(''); + const [projectKeyFilter, setProjectKeyFilter] = useState(''); + const [offset, setOffset] = useState(0); + + const query: JiraAuditQuery = { + eventType: eventTypeFilter || undefined, + projectKey: projectKeyFilter || undefined, + limit: PAGE_SIZE, + offset, + }; + + const { data, isLoading, isError, error } = useJiraAuditQuery(query); + + const total = data?.total ?? 0; + const currentPage = Math.floor(offset / PAGE_SIZE) + 1; + const totalPages = Math.max(1, Math.ceil(total / PAGE_SIZE)); + + // CSV export from current page data + const handleExport = useCallback(() => { + if (!data || data.items.length === 0) return; + + const headers = ['Data', 'Tipo', 'Projeto', 'Ator', 'Antes', 'Depois', 'Motivo']; + const rows = data.items.map((e) => [ + new Date(e.createdAt).toISOString(), + e.eventType, + e.projectKey ?? '', + e.actor, + JSON.stringify(e.beforeValue ?? ''), + JSON.stringify(e.afterValue ?? ''), + e.reason ?? '', + ]); + + const csv = [headers, ...rows].map((r) => r.map((c) => `"${String(c).replace(/"/g, '""')}"`).join(',')).join('\n'); + const blob = new Blob([csv], { type: 'text/csv;charset=utf-8;' }); + const url = URL.createObjectURL(blob); + const a = document.createElement('a'); + a.href = url; + a.download = `jira-audit-${new Date().toISOString().slice(0, 10)}.csv`; + a.click(); + URL.revokeObjectURL(url); + }, [data]); + + if (isError) { + return ( +
+

+ Falha ao carregar auditoria: {error instanceof Error ? error.message : 'Erro desconhecido'} +

+
+ ); + } + + return ( +
+ {/* Filters */} +
+ + +
+ + { + setProjectKeyFilter(e.target.value); + setOffset(0); + }} + className="h-8 w-44 rounded-button border border-border-default bg-surface-primary pl-8 pr-3 text-sm text-content-primary placeholder:text-content-tertiary focus:border-brand-primary focus:outline-none" + aria-label="Filtrar por chave do projeto" + /> +
+ + +
+ + {/* Timeline */} + {isLoading ? ( + + ) : !data || data.items.length === 0 ? ( +
+

Nenhum evento de auditoria encontrado.

+
+ ) : ( +
+ {data.items.map((entry) => ( + + ))} +
+ )} + + {/* Pagination */} + {total > PAGE_SIZE && ( +
+ + {offset + 1}-{Math.min(offset + PAGE_SIZE, total)} de {total} + +
+ + + {currentPage} / {totalPages} + + +
+
+ )} +
+ ); +} + +// --------------------------------------------------------------------------- +// Timeline item +// --------------------------------------------------------------------------- + +function AuditTimelineItem({ entry }: { entry: JiraDiscoveryAuditEntry }) { + const meta = EVENT_TYPE_META[entry.eventType]; + const Icon = meta.icon; + + return ( +
+
+ +
+
+
+ {meta.label} + {entry.projectKey && ( + + {entry.projectKey} + + )} + + {new Date(entry.createdAt).toLocaleString()} + +
+
+ por {entry.actor} + {entry.reason && - {entry.reason}} +
+ {/* Before/After diff */} + {(entry.beforeValue != null || entry.afterValue != null) && ( +
+ {entry.beforeValue != null && ( + + {formatValue(entry.beforeValue)} + + )} + {entry.beforeValue != null && entry.afterValue != null && ( + + )} + {entry.afterValue != null && ( + + {formatValue(entry.afterValue)} + + )} +
+ )} +
+
+ ); +} + +function formatValue(val: unknown): string { + if (typeof val === 'string') return val; + if (typeof val === 'number' || typeof val === 'boolean') return String(val); + return JSON.stringify(val); +} + +function AuditSkeleton() { + return ( +
+ {Array.from({ length: 8 }).map((_, i) => ( +
+
+
+
+
+
+
+ ))} +
+ ); +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.catalog.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.catalog.tsx new file mode 100644 index 0000000..9830f21 --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.catalog.tsx @@ -0,0 +1,29 @@ +import { createRoute } from '@tanstack/react-router'; +import { jiraSettingsRoute } from './jira'; +import { SmartSuggestionsBanner } from './_components/smart-suggestions-banner'; +import { ProjectCatalogTable } from './_components/project-catalog-table'; +import { DiscoveryTriggerButton } from './_components/discovery-trigger-button'; + +export const jiraCatalogRoute = createRoute({ + getParentRoute: () => jiraSettingsRoute, + path: '/catalog', + component: JiraCatalogTab, +}); + +function JiraCatalogTab() { + return ( +
+ {/* Discovery trigger at top-right */} +
+

Catalogo de Projetos

+ +
+ + {/* Smart suggestions banner */} + + + {/* Project catalog table */} + +
+ ); +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.config.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.config.tsx new file mode 100644 index 0000000..3535810 --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.config.tsx @@ -0,0 +1,298 @@ +import { useState, useEffect, useCallback } from 'react'; +import { createRoute } from '@tanstack/react-router'; +import { CheckCircle2, AlertCircle, Clock } from 'lucide-react'; +import { jiraSettingsRoute } from './jira'; +import { ModeSelector } from './_components/mode-selector'; +import { DiscoveryTriggerButton } from './_components/discovery-trigger-button'; +import { DiscoveryStatusBadge } from './_components/discovery-status-badge'; +import { + useJiraConfigQuery, + useJiraConfigMutation, + useDiscoveryStatusQuery, +} from '@/hooks/useJiraAdmin'; +import type { JiraDiscoveryMode, UpdateTenantJiraConfigInput } from '@pulse/shared'; + +export const jiraConfigRoute = createRoute({ + getParentRoute: () => jiraSettingsRoute, + path: '/config', + component: JiraConfigTab, +}); + +function JiraConfigTab() { + const { data: config, isLoading, isError, error } = useJiraConfigQuery(); + const mutation = useJiraConfigMutation(); + const { data: discoveryStatus, isLoading: discoveryStatusLoading } = useDiscoveryStatusQuery(); + + // Local form state + const [mode, setMode] = useState('allowlist'); + const [maxActiveProjects, setMaxActiveProjects] = useState(100); + const [maxIssuesPerHour, setMaxIssuesPerHour] = useState(5000); + const [smartPrScanDays, setSmartPrScanDays] = useState(90); + const [smartMinPrReferences, setSmartMinPrReferences] = useState(5); + const [showToast, setShowToast] = useState(false); + + // Sync form state from server data + useEffect(() => { + if (config) { + setMode(config.mode); + setMaxActiveProjects(config.maxActiveProjects); + setMaxIssuesPerHour(config.maxIssuesPerHour); + setSmartPrScanDays(config.smartPrScanDays); + setSmartMinPrReferences(config.smartMinPrReferences); + } + }, [config]); + + // Dirty check + const isDirty = + config != null && + (mode !== config.mode || + maxActiveProjects !== config.maxActiveProjects || + maxIssuesPerHour !== config.maxIssuesPerHour || + smartPrScanDays !== config.smartPrScanDays || + smartMinPrReferences !== config.smartMinPrReferences); + + const handleSave = useCallback(() => { + const input: UpdateTenantJiraConfigInput = { + mode, + maxActiveProjects, + maxIssuesPerHour, + smartPrScanDays, + smartMinPrReferences, + }; + mutation.mutate(input, { + onSuccess: () => { + setShowToast(true); + setTimeout(() => setShowToast(false), 3000); + }, + }); + }, [mode, maxActiveProjects, maxIssuesPerHour, smartPrScanDays, smartMinPrReferences, mutation]); + + if (isError) { + return ( +
+ +

+ Falha ao carregar configuracao +

+

+ {error instanceof Error ? error.message : 'Erro inesperado.'} +

+
+ ); + } + + if (isLoading || !config) { + return ; + } + + return ( +
+ {/* Mode selector */} +
+

+ Modo de descoberta +

+ +
+ + {/* Caps form */} +
+

Limites e parametros

+
+ {/* Max active projects slider */} +
+ + setMaxActiveProjects(Number(e.target.value))} + className="w-full accent-brand-primary" + /> +
+ 10 + 500 +
+
+ + {/* Max issues per hour */} +
+ + setMaxIssuesPerHour(Number(e.target.value))} + className="h-9 w-40 rounded-button border border-border-default bg-surface-primary px-3 text-sm text-content-primary focus:border-brand-primary focus:outline-none" + /> +
+ + {/* Discovery schedule (read-only cron display) */} +
+ +
+ + {describeCron(config.discoveryScheduleCron)} + + ({config.discoveryScheduleCron}) + +
+
+ + {/* Smart mode params (only relevant when mode=smart) */} + {mode === 'smart' && ( + <> +
+ + setSmartPrScanDays(Number(e.target.value))} + className="h-9 w-32 rounded-button border border-border-default bg-surface-primary px-3 text-sm text-content-primary focus:border-brand-primary focus:outline-none" + /> +
+
+ + setSmartMinPrReferences(Number(e.target.value))} + className="h-9 w-32 rounded-button border border-border-default bg-surface-primary px-3 text-sm text-content-primary focus:border-brand-primary focus:outline-none" + /> +
+ + )} +
+
+ + {/* Save button */} +
+ + + {mutation.isError && ( + + Erro ao salvar: {mutation.error.message} + + )} +
+ + {/* Discovery section */} +
+

Descoberta

+
+ + +
+ + {/* Last discovery summary */} + {discoveryStatus?.lastRun && ( +
+

Ultima descoberta

+
+
+ Quando + {new Date(discoveryStatus.lastRun.startedAt).toLocaleString()} +
+
+ Descobertos + {discoveryStatus.lastRun.discoveredCount} +
+
+ Ativados + {discoveryStatus.lastRun.activatedCount} +
+
+ Erros + {discoveryStatus.lastRun.errors.length} +
+
+
+ )} +
+ + {/* Toast */} + {showToast && ( +
+ + + Configuracao salva com sucesso + +
+ )} +
+ ); +} + +// --------------------------------------------------------------------------- +// Helpers +// --------------------------------------------------------------------------- + +function describeCron(cron: string): string { + // Simple human-readable description for common patterns + if (cron === '0 3 * * *') return 'Todo dia as 03:00 UTC'; + if (cron === '0 */6 * * *') return 'A cada 6 horas'; + if (cron === '0 0 * * 1') return 'Toda segunda-feira as 00:00 UTC'; + return cron; +} + +function ConfigSkeleton() { + return ( +
+
+
+
+ {Array.from({ length: 4 }).map((_, i) => ( +
+ ))} +
+
+
+
+ {Array.from({ length: 3 }).map((_, i) => ( +
+ ))} +
+
+ ); +} diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.tsx new file mode 100644 index 0000000..4a8d443 --- /dev/null +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.tsx @@ -0,0 +1,78 @@ +import { useEffect } from 'react'; +import { createRoute, Link, Outlet, useMatchRoute, useNavigate } from '@tanstack/react-router'; +import { rootRoute } from '../../../__root'; +import { DiscoveryStatusBadge } from './_components/discovery-status-badge'; +import { useDiscoveryStatusQuery } from '@/hooks/useJiraAdmin'; + +export const jiraSettingsRoute = createRoute({ + getParentRoute: () => rootRoute, + path: '/settings/integrations/jira', + component: JiraSettingsLayout, +}); + +interface TabDef { + to: string; + label: string; +} + +const TABS: TabDef[] = [ + { to: '/settings/integrations/jira/catalog', label: 'Projetos' }, + { to: '/settings/integrations/jira/config', label: 'Configuracao' }, + { to: '/settings/integrations/jira/audit', label: 'Auditoria' }, +]; + +function JiraSettingsLayout() { + const matchRoute = useMatchRoute(); + const navigate = useNavigate(); + const { data: discoveryStatus, isLoading: discoveryLoading } = useDiscoveryStatusQuery(); + + // If user navigates to /settings/integrations/jira exactly, redirect to catalog tab + const isExactMatch = matchRoute({ to: '/settings/integrations/jira', fuzzy: false }); + + useEffect(() => { + if (isExactMatch) { + void navigate({ to: '/settings/integrations/jira/catalog', replace: true }); + } + }, [isExactMatch, navigate]); + + return ( +
+ {/* Header */} +
+
+

Jira Integration

+

+ Gerenciamento de projetos Jira, modo de descoberta e auditoria. +

+
+ +
+ + {/* Tab bar */} +
+ {TABS.map((tab) => { + const isActive = matchRoute({ to: tab.to, fuzzy: true }); + return ( + + {tab.label} + + ); + })} +
+ + {/* Tab content */} + +
+ ); +} diff --git a/pulse/packages/pulse-web/tsconfig.json b/pulse/packages/pulse-web/tsconfig.json index 925f111..9e27853 100644 --- a/pulse/packages/pulse-web/tsconfig.json +++ b/pulse/packages/pulse-web/tsconfig.json @@ -25,9 +25,9 @@ /* Path aliases */ "baseUrl": ".", "paths": { - "@/*": ["src/*"] + "@/*": ["src/*"], + "@pulse/shared": ["../pulse-shared/src/index.ts"] } }, - "include": ["src"], - "references": [{ "path": "./tsconfig.node.json" }] + "include": ["src"] } diff --git a/pulse/packages/pulse-web/tsconfig.node.json b/pulse/packages/pulse-web/tsconfig.node.json index 327d2d5..857b3a0 100644 --- a/pulse/packages/pulse-web/tsconfig.node.json +++ b/pulse/packages/pulse-web/tsconfig.node.json @@ -8,9 +8,10 @@ "allowImportingTsExtensions": true, "isolatedModules": true, "moduleDetection": "force", - "composite": true, - "noEmit": false, - "declaration": true, + "composite": false, + "noEmit": true, + "declaration": false, + "types": ["node"], "strict": true, "noUnusedLocals": true, "noUnusedParameters": true, diff --git a/pulse/packages/pulse-web/vite.config.ts b/pulse/packages/pulse-web/vite.config.ts index 4706dd6..1a58468 100644 --- a/pulse/packages/pulse-web/vite.config.ts +++ b/pulse/packages/pulse-web/vite.config.ts @@ -7,6 +7,7 @@ export default defineConfig({ resolve: { alias: { '@': path.resolve(__dirname, './src'), + '@pulse/shared': path.resolve(__dirname, '../pulse-shared/src/index.ts'), }, }, server: { diff --git a/pulse/packages/pulse-web/vitest.config.ts b/pulse/packages/pulse-web/vitest.config.ts index 7a2c5c5..3265e6c 100644 --- a/pulse/packages/pulse-web/vitest.config.ts +++ b/pulse/packages/pulse-web/vitest.config.ts @@ -7,6 +7,7 @@ export default defineConfig({ resolve: { alias: { '@': path.resolve(__dirname, './src'), + '@pulse/shared': path.resolve(__dirname, '../pulse-shared/src/index.ts'), }, }, test: { From c5350dc0f4201206415eb5da151a87df16c86f12 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Mon, 13 Apr 2026 17:33:22 -0300 Subject: [PATCH 16/64] feat(jira): security hardening, PII gating, tests + Phase 4 rollout MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Phase 3 — Security & quality: - CISO fixes: hmac.compare_digest on internal token (H-001), Set-based ORDER BY allowlists (H-003), validateProjectKey regex (H-004) - L-001 PII gating: PII_SENSITIVE_PATTERNS in discovery service forces PII-flagged projects to 'discovered' in auto/smart modes; smart prioritizer skips them; new audit events project_pii_flagged / project_pii_gated; UI ShieldAlert icon + warning banner in mode selector - 22 integration tests (Testcontainers Postgres) covering end-to-end discovery, mode switching, smart prioritizer, guardrails, failure modes - 7 Playwright E2E journeys mocking admin API - 3 k6 load scenarios (p95, rate-budget, anti-DoS) - Security review doc + test coverage report Phase 4 — Dev rollout: - Add DYNAMIC_JIRA_DISCOVERY_ENABLED + INTERNAL_API_TOKEN to pulse-data and sync-worker; REDIS_URL added where missing - Add apscheduler to requirements.txt so discovery-worker can boot - Switch pulse-api Docker build context to ./packages so @pulse/shared type alias resolves at compile time; nest dist path adjusted accordingly - AuthGuard MVP stub now attaches a tenant_admin user so AdminRoleGuard can authorize the dev tenant without JWT - Frontend uses camelCase sortBy/sortDir to match DTO whitelist - Imports switched from @pulse/shared/types/jira-admin to @pulse/shared (barrel export) to avoid deep-path resolution issues across packages Validated end-to-end on dev: discovery #1 found 69 projects (61 new, 2 PII-flagged), UI shows full catalog, manual activation propagates to sync-worker resolver on next cycle (8 -> 9 active projects, JQL updated). Co-Authored-By: Claude Opus 4.6 --- pulse/docker-compose.yml | 9 +- pulse/docs/security-reviews/ADR-014-review.md | 403 +++++++++++++++ pulse/docs/testing/ADR-014-test-report.md | 235 +++++++++ pulse/e2e/jira-admin.spec.ts | 486 ++++++++++++++++++ pulse/packages/pulse-api/Dockerfile | 21 +- .../pulse-api/src/common/guards/auth.guard.ts | 32 +- .../jira-admin/jira-admin.controller.spec.ts | 2 +- .../jira-admin/jira-admin.controller.ts | 2 +- .../jira-admin/jira-admin.service.ts | 37 +- pulse/packages/pulse-api/tsconfig.json | 1 + pulse/packages/pulse-data/requirements.txt | 1 + .../discovery/project_discovery_service.py | 71 ++- .../jira/discovery/smart_prioritizer.py | 8 + .../src/workers/discovery_scheduler.py | 12 +- .../pulse-data/tests/integration/__init__.py | 0 .../tests/integration/contexts/__init__.py | 0 .../contexts/integrations/__init__.py | 0 .../contexts/integrations/jira/__init__.py | 0 .../integrations/jira/discovery/__init__.py | 0 .../integrations/jira/discovery/conftest.py | 202 ++++++++ .../discovery/test_discovery_end_to_end.py | 186 +++++++ .../discovery/test_discovery_failure_modes.py | 187 +++++++ .../discovery/test_guardrails_integration.py | 188 +++++++ .../test_mode_switch_reroutes_sync.py | 146 ++++++ .../discovery/test_smart_mode_integration.py | 190 +++++++ .../test_project_discovery_service.py | 159 ++++++ .../pulse-shared/src/types/jira-admin.ts | 4 +- .../pulse-web/src/lib/api/jira-admin.ts | 4 +- .../__tests__/mode-selector.test.tsx | 23 + .../__tests__/project-catalog-table.test.tsx | 67 +++ .../_components/mode-selector.tsx | 30 +- .../_components/project-catalog-table.tsx | 25 +- pulse/performance/k6/jira-discovery-load.js | 304 +++++++++++ pulse/playwright.config.ts | 68 +++ 34 files changed, 3065 insertions(+), 38 deletions(-) create mode 100644 pulse/docs/security-reviews/ADR-014-review.md create mode 100644 pulse/docs/testing/ADR-014-test-report.md create mode 100644 pulse/e2e/jira-admin.spec.ts create mode 100644 pulse/packages/pulse-data/tests/integration/__init__.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/__init__.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/__init__.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/__init__.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/__init__.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/conftest.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_discovery_end_to_end.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_discovery_failure_modes.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_guardrails_integration.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_mode_switch_reroutes_sync.py create mode 100644 pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_smart_mode_integration.py create mode 100644 pulse/performance/k6/jira-discovery-load.js create mode 100644 pulse/playwright.config.ts diff --git a/pulse/docker-compose.yml b/pulse/docker-compose.yml index b52794b..34e25da 100644 --- a/pulse/docker-compose.yml +++ b/pulse/docker-compose.yml @@ -10,8 +10,8 @@ services: # -------------------------------------------------------------------------- pulse-api: build: - context: ./packages/pulse-api - dockerfile: Dockerfile + context: ./packages + dockerfile: pulse-api/Dockerfile container_name: pulse-api ports: - "${PULSE_API_PORT:-3000}:3000" @@ -52,7 +52,10 @@ services: environment: DATABASE_URL: postgresql://${POSTGRES_USER:-pulse}:${POSTGRES_PASSWORD:-pulse_dev}@postgres:5432/${POSTGRES_DB:-pulse} KAFKA_BROKERS: kafka:29092 + REDIS_URL: redis://redis:6379 ENVIRONMENT: development + DYNAMIC_JIRA_DISCOVERY_ENABLED: ${DYNAMIC_JIRA_DISCOVERY_ENABLED:-false} + INTERNAL_API_TOKEN: ${INTERNAL_API_TOKEN:-} # Source API credentials (connectors read directly from APIs) GITHUB_TOKEN: ${GITHUB_TOKEN:-} GITHUB_ORG: ${GITHUB_ORG:-webmotors-private} @@ -84,7 +87,9 @@ services: environment: DATABASE_URL: postgresql://${POSTGRES_USER:-pulse}:${POSTGRES_PASSWORD:-pulse_dev}@postgres:5432/${POSTGRES_DB:-pulse} KAFKA_BROKERS: kafka:29092 + REDIS_URL: redis://redis:6379 ENVIRONMENT: development + DYNAMIC_JIRA_DISCOVERY_ENABLED: ${DYNAMIC_JIRA_DISCOVERY_ENABLED:-false} # Source API credentials GITHUB_TOKEN: ${GITHUB_TOKEN:-} GITHUB_ORG: ${GITHUB_ORG:-webmotors-private} diff --git a/pulse/docs/security-reviews/ADR-014-review.md b/pulse/docs/security-reviews/ADR-014-review.md new file mode 100644 index 0000000..53963b9 --- /dev/null +++ b/pulse/docs/security-reviews/ADR-014-review.md @@ -0,0 +1,403 @@ +# Security Review — ADR-014: Dynamic Jira Project Discovery + +**Review date:** 2026-04-13 +**Reviewer:** pulse-ciso +**Branch:** feat/jira-dynamic-discovery +**Risk rating:** Medium (was High before applied fixes) + +--- + +## Scope + +Files reviewed: + +- `pulse/packages/pulse-data/alembic/versions/006_jira_discovery.py` +- `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/guardrails.py` +- `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/mode_resolver.py` +- `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py` +- `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/repository.py` +- `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py` +- `pulse/packages/pulse-data/src/workers/discovery_scheduler.py` +- `pulse/packages/pulse-data/src/config.py` +- `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts` +- `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts` +- `pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.ts` +- `pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/update-config.dto.ts` +- `pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/project-action.dto.ts` +- `pulse/packages/pulse-api/src/modules/integrations/jira-admin/dto/list-query.dto.ts` +- `pulse/packages/pulse-api/src/config/env.validation.ts` +- `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.tsx` +- `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.config.tsx` +- `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.catalog.tsx` +- `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.audit.tsx` +- `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx` +- `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-row-actions.tsx` + +--- + +## Critical (block release) + +None identified. + +--- + +## High + +### H-001: Timing oracle on `X-Internal-Token` comparison +**File:** `pulse/packages/pulse-data/src/workers/discovery_scheduler.py`, line 64 (pre-fix) +**Status:** FIXED in this review + +The original comparison `x_internal_token != expected` is a Python string equality check that short-circuits on the first differing byte. An attacker with the ability to send many requests and measure response latencies (timing side-channel) could reconstruct the shared secret one byte at a time. + +**Fix applied:** Replaced with `hmac.compare_digest(x_internal_token.encode(), expected.encode())`, which runs in constant time regardless of where the strings diverge. The `None` check was also moved inside the constant-time path — previously `None` would bypass the comparison entirely and fall through to the `!=` check (which would always fail), but now `None` is explicitly rejected first. + +**Verification:** 59 Python unit tests passed after fix. + +--- + +### H-002: `INTERNAL_API_TOKEN` not required in production +**File:** `pulse/packages/pulse-api/src/config/env.validation.ts`, line 43 — `pulse/packages/pulse-data/src/config.py`, line 51 +**Status:** DEFERRED (architectural — flag) + +Both services default `INTERNAL_API_TOKEN` / `internal_api_token` to an empty string. The scheduler in `discovery_scheduler.py` treats an empty expected token as "dev mode — allow all". There is no enforcement that prevents deploying to production with this token unset. + +**Risk:** In production, any process that can reach the discovery scheduler port (8001) can trigger a discovery run for any tenant without authentication. + +**Proposed fix:** Add a production guard in `env.validation.ts`: +```typescript +INTERNAL_API_TOKEN: z + .string() + .refine( + (val) => process.env['NODE_ENV'] !== 'production' || val.length >= 32, + 'INTERNAL_API_TOKEN must be at least 32 characters in production', + ), +``` +And in `config.py`: +```python +@model_validator(mode='after') +def require_token_in_production(self) -> 'Settings': + import os + if os.getenv('NODE_ENV') == 'production' and not self.internal_api_token: + raise ValueError('INTERNAL_API_TOKEN is required in production') + return self +``` +This is deferred because it requires coordination with the deployment environment setup — it is not a trivial change to the file. + +--- + +### H-003: `sortBy` and `sortDir` string-interpolated into SQL without server-side allowlist +**File:** `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts`, line 262–264 (pre-fix) +**Status:** FIXED in this review + +`query.sortBy` and `query.sortDir` were interpolated directly into the SQL `ORDER BY` clause as string template literals: +```typescript +const orderBy = `ORDER BY ${sortField} ${sortDir}`; +``` + +The DTO validators (`@IsIn(...)`) provide validation at the HTTP boundary, but only when the global `ValidationPipe` is active. If the pipe is absent, misconfigured, or the method is called internally, the sort parameters become a raw SQL injection vector. + +**Fix applied:** Added server-side allowlist checks in the service before interpolation: +```typescript +const ALLOWED_SORT_FIELDS = new Set(['project_key', 'pr_reference_count', 'issue_count', 'last_sync_at']); +const ALLOWED_SORT_DIRS = new Set(['asc', 'desc']); +``` +Unrecognised values fall back to safe defaults (`project_key asc`). + +**Verification:** 34 NestJS tests passed after fix. + +--- + +### H-004: `project_key` path parameter unvalidated at service boundary +**File:** `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts`, `getProject` and `changeProjectStatus` (pre-fix) +**Status:** FIXED in this review + +The `:key` path parameter was accepted as any arbitrary string. While downstream queries use parameterised placeholders (safe from SQL injection), the value is embedded in error messages, audit log entries (`project_key` column), and returned in API responses. A crafted key such as `'; DROP TABLE jira_project_catalog; --` or a very long string could cause unexpected behaviour in logging or audit display. + +**Fix applied:** Added `validateProjectKey(projectKey)` private method enforcing `^[A-Z][A-Z0-9]+$` (Jira's canonical format), called at the start of both `getProject` and `changeProjectStatus`. Returns `400 Bad Request` on violation. + +**Verification:** 34 NestJS tests passed after fix. + +--- + +## Medium + +### M-001: Audit table `DO INSTEAD NOTHING` rule — silent swallow vs. raising trigger +**File:** `pulse/packages/pulse-data/alembic/versions/006_jira_discovery.py`, lines 220–225 +**Status:** DEFERRED (architectural tradeoff — flag) + +The migration uses PostgreSQL RULEs to make `jira_discovery_audit` append-only: +```sql +CREATE RULE no_update_audit AS ON UPDATE TO "jira_discovery_audit" DO INSTEAD NOTHING; +CREATE RULE no_delete_audit AS ON DELETE TO "jira_discovery_audit" DO INSTEAD NOTHING; +``` + +The `DO INSTEAD NOTHING` pattern silently discards UPDATE and DELETE operations — the caller receives success (0 rows affected) without error. This means: +- A misconfigured application that attempts to UPDATE an audit row will silently succeed without corrupting data. +- A deliberate insider attempting audit tampering receives no error feedback, making the tampering undetectable from the application layer. + +**Risk assessment:** The RLS policies independently block cross-tenant access. The RULE prevents the operation but does not raise an alarm. A `BEFORE` trigger that raises `RAISE EXCEPTION 'audit rows are immutable'` would make tampering attempts visible in application logs and PostgreSQL logs. + +**Proposed fix (deferred — requires new migration):** +```sql +CREATE OR REPLACE FUNCTION fn_audit_immutable() RETURNS trigger AS $$ +BEGIN + RAISE EXCEPTION 'jira_discovery_audit rows are immutable — tampering attempt logged'; +END; +$$ LANGUAGE plpgsql; + +CREATE TRIGGER tg_audit_no_update + BEFORE UPDATE ON jira_discovery_audit FOR EACH ROW EXECUTE FUNCTION fn_audit_immutable(); + +CREATE TRIGGER tg_audit_no_delete + BEFORE DELETE ON jira_discovery_audit FOR EACH ROW EXECUTE FUNCTION fn_audit_immutable(); +``` +This requires replacing the RULE pattern with triggers in a subsequent migration. Flag for R1. + +--- + +### M-002: `SET LOCAL app.current_tenant` uses string interpolation instead of parameterisation +**File:** `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts`, line 61 +**Status:** DEFERRED (low exploitability given upstream guard) + +```typescript +await qr.query(`SET LOCAL app.current_tenant = '${tenantId}'`); +``` + +`SET LOCAL` does not support parameterised placeholders in PostgreSQL, so direct interpolation is unavoidable at the TypeORM QueryRunner level. The `tenantId` value originates from `TenantGuard`, which in MVP assigns either a header-supplied value or the default UUID. The risk is that if `TenantGuard` is ever bypassed or allows arbitrary strings, an attacker could inject a malformed setting string. + +**Proposed fix:** Validate `tenantId` is a valid UUID before calling `withTenant`. Add at the top of `withTenant`: +```typescript +const UUID_RE = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i; +if (!UUID_RE.test(tenantId)) { + throw new BadRequestException(`Invalid tenant ID format: ${tenantId}`); +} +``` +Deferred because exploitability is low today — `TenantGuard` controls the input — but this is a latent risk as the auth layer evolves. + +--- + +### M-003: `AdminRoleGuard` accepts the generic `'admin'` role string, not only `'tenant_admin'` +**File:** `pulse/packages/pulse-api/src/modules/integrations/jira-admin/guards/admin-role.guard.ts`, line 43 +**Status:** DEFERRED (intentional MVP simplification — document) + +```typescript +const isAdmin = roles.includes('tenant_admin') || roles.includes('admin'); +``` + +The guard accepts both `tenant_admin` (production RBAC role) and the generic `admin` (MVP stub role). In a multi-tenant SaaS context, a role named `admin` should not exist as an unscoped privilege. When OAuth/OIDC and RBAC are implemented in R1, all role checks must be migrated to `tenant_admin` exclusively, and the `admin` fallback removed. + +**Action required at R1:** Remove `|| roles.includes('admin')` and ensure JWT claims always carry `tenant_admin` for privileged users. + +--- + +### M-004: No rate limiting on `POST /discovery/trigger` +**File:** `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts`, line 125 +**Status:** DEFERRED (requires ThrottlerModule — flag) + +`POST /admin/integrations/jira/discovery/trigger` is protected only by `AdminRoleGuard`. A tenant admin who knows their credentials can spam this endpoint, triggering a new discovery run per request. Each run calls the Jira API, runs database scans, and executes guardrail logic — enough to create a DoS against the Jira API rate limit and internal services. + +No global `ThrottlerModule` or per-endpoint `@Throttle()` decorator exists in `pulse-api`. + +**Proposed fix:** Register `@nestjs/throttler` globally (or per-module) with conservative limits for admin mutation endpoints: +```typescript +@Throttle({ default: { limit: 5, ttl: 60000 } }) +@Post('discovery/trigger') +triggerDiscovery(...) +``` +Rate: 5 triggers per minute per tenant. Deferred pending ThrottlerModule setup. + +--- + +### M-005: `INTERNAL_API_TOKEN` sent by `pulse-api` only when non-empty +**File:** `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts`, line 415–418 + +```typescript +...(token ? { 'X-Internal-Token': token } : {}), +``` + +If `INTERNAL_API_TOKEN` is empty in `pulse-api`, the header is omitted entirely. Combined with H-002 (scheduler allows empty token in dev), this creates a configuration state where production services can talk to each other without any authentication token being transmitted. This is already captured under H-002 but worth noting as a distinct configuration risk. + +--- + +## Low + +### L-001: PII regex warning on discovered project names is absent (ADR-014 mandated gap) +**Files:** `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py` — `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/` +**Status:** GAP — flag for engineer to implement + +ADR-014 mandated a PII warning for discovered projects whose name matches sensitive patterns ("HR", "legal", "finance", "confidential"). Neither `ProjectDiscoveryService.run_discovery` nor the UI catalog components contain this check. Projects with sensitive names are silently discovered and can be auto-activated in `auto` or `smart` mode. + +**Proposed fix (backend — in `project_discovery_service.py`):** +```python +import re +_PII_PATTERN = re.compile(r'\b(hr|human.?resources|legal|finance|payroll|confidential|gdpr|pii)\b', re.IGNORECASE) + +def _is_pii_sensitive(name: str | None) -> bool: + return bool(name and _PII_PATTERN.search(name)) +``` +When `_is_pii_sensitive(jp.get("name"))` is `True`, the project should be inserted with `status="discovered"` (not `"active"`) regardless of mode, and an audit event `"pii_warning_flagged"` should be written. + +**Proposed fix (UI — in `project-catalog-table.tsx` or similar):** Display a warning badge on rows where the project name matches the sensitive pattern client-side, prompting the admin to review before activating. + +This is flagged as Low rather than High because `blocked` is always honoured and a human admin must activate in `allowlist` mode. However, in `auto` or `smart` mode, HR/legal projects will be ingested without warning — which the ADR explicitly prohibited. + +--- + +### L-002: Audit CSV export includes raw `actor` field (internal user ID, not display name) +**File:** `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.audit.tsx`, line 99 +**Status:** Informational — acceptable for MVP + +The audit CSV export writes `entry.actor` directly. In MVP, actor is a user UUID (`req.user.id`). In R1 with OIDC, this could become an email address. Confirm in R1 that email addresses in the audit log are handled according to LGPD/GDPR data minimisation requirements (use user ID, not email). + +--- + +### L-003: `tenant_jira_config.last_discovery_status` column length is 16 chars; `discovery_status` values may exceed this +**File:** `pulse/packages/pulse-data/alembic/versions/006_jira_discovery.py`, line 89 +**Status:** Low — potential data truncation + +`last_discovery_status` is `String(16)`. The possible values written are `"success"`, `"failed"`, `"partial"` — all within 16 chars. However, if the value set expands (e.g., `"partial_timeout"` = 15 chars, still OK) a future developer could silently truncate. Consider increasing to `String(32)` for headroom. No fix applied — trivial migration concern. + +--- + +### L-004: `discovery_scheduler.py` binds the internal API on `0.0.0.0:8001` +**File:** `pulse/packages/pulse-data/src/workers/discovery_scheduler.py`, line 205 + +```python +config = uvicorn.Config(trigger_app, host="0.0.0.0", port=8001, log_level="info") +``` + +In production, this internal endpoint should be bound to `127.0.0.1` or a VPC-internal interface only. Binding to `0.0.0.0` exposes port 8001 to all network interfaces, including any public-facing interface on the host. In the Docker Compose dev setup this is acceptable; in production (ECS Fargate or Lambda), ensure the security group / VPC configuration blocks external access to port 8001. The token check (H-001, now fixed) is the last line of defence if this is inadvertently exposed. + +--- + +## Informational + +### I-001: RLS on `jira_discovery_audit` — UPDATE/DELETE policies exist but are rendered unreachable by the RULE +**File:** `pulse/packages/pulse-data/alembic/versions/006_jira_discovery.py` + +`_enable_rls` creates UPDATE and DELETE RLS policies for the audit table. These are correct as a belt-and-suspenders measure. However, the `DO INSTEAD NOTHING` RULE fires before RLS evaluation in PostgreSQL's rule processing order, so the RLS UPDATE/DELETE policies are unreachable in practice. They are not harmful — just dead code. When the RULE is replaced by a trigger (M-001), the trigger fires after RLS, so the RLS policies will become meaningful. No change needed now. + +--- + +### I-002: `DYNAMIC_JIRA_DISCOVERY_ENABLED` default is `False` — correct +**File:** `pulse/packages/pulse-data/src/config.py`, line 50 + +The feature flag defaults to `False` (shadow mode). This is the correct posture per ADR-014. Confirmed. + +--- + +### I-003: All repository queries filter by `tenant_id` explicitly — confirmed +**File:** `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/repository.py` + +Every `SELECT`, `UPDATE`, and `INSERT` in `DiscoveryRepository` includes an explicit `tenant_id == tenant_id` predicate in addition to RLS. Belt-and-suspenders pattern confirmed throughout. No gaps found. + +--- + +### I-004: `blocked` invariant upheld in Guardrails — confirmed +**File:** `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/guardrails.py` + +`record_sync_outcome` (line 214) checks `project["status"] == "blocked"` and returns early — blocked projects are never modified automatically. `enforce_project_cap` selects only `status == "active"` projects for pausing — blocked projects are excluded because their status is not `"active"`. `ModeResolver._resolve_smart` explicitly filters `status != "blocked"`. Invariant confirmed across all three code paths. + +--- + +### I-005: Redis rate bucket keys include `tenant_id` — confirmed +**File:** `pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/guardrails.py`, line 139 + +```python +bucket_key = f"jira:ratebudget:{tenant_id}" +``` + +Tenant scope is included in the Redis key. Cross-tenant budget contamination is not possible. Confirmed. + +--- + +### I-006: Status transition validation is strict — confirmed +**File:** `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts`, lines 28–33 + +`STATUS_TRANSITIONS` explicitly lists valid `from` states for each action. `changeProjectStatus` checks `transition.from.includes(currentStatus)` and raises `400 Bad Request` on invalid transitions. The service tests include a regression for "pause from discovered" being rejected. Confirmed. + +--- + +### I-007: All mutations write an audit row with `actor = req.user.id` — confirmed +**File:** `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts` + +`changeProjectStatus` passes `actorId` (from `req.user.id` via `@CurrentUser()`) to the audit INSERT. `updateConfig` does the same when mode changes. System-initiated changes (guardrails, auto-pause) use `actor="system"` — this is semantically correct. Confirmed. + +--- + +### I-008: No sensitive data rendered in plaintext in UI — confirmed +**Files:** `jira.audit.tsx`, `jira.catalog.tsx`, `jira.config.tsx` + +Jira API tokens are not stored in these tables and are not surfaced in any UI component reviewed. The audit display shows `entry.actor` (a user ID / "system") — not email addresses or tokens. Confirmed for MVP. + +--- + +### I-09: Audit CSV export is client-side only from API-returned data — confirmed +**File:** `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/jira.audit.tsx`, line 92 + +The CSV export operates on `data.items` — the current paginated response from the API. It does not make additional API calls or access browser storage from other tenants. Cross-session data leakage is not possible. Confirmed. + +--- + +### I-010: Block action has no confirmation dialog +**File:** `pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-row-actions.tsx` + +The "block" action in `ProjectRowActions` fires `mutation.mutate({ action, projectKey })` immediately on click, with no confirmation dialog. Per the review scope, destructive operations (block especially) should require confirmation. This is a UX security control, not a backend vulnerability. Flag for frontend to add a confirm dialog before the `mutate` call on `'block'` action. + +--- + +## Summary of Findings by Severity + +| ID | Severity | Title | Status | +|----|----------|-------|--------| +| H-001 | High | Timing oracle on X-Internal-Token | FIXED | +| H-002 | High | INTERNAL_API_TOKEN not required in production | DEFERRED | +| H-003 | High | sortBy/sortDir SQL injection risk | FIXED | +| H-004 | High | project_key path param unvalidated | FIXED | +| M-001 | Medium | Audit table RULE swallows tampering silently | DEFERRED | +| M-002 | Medium | SET LOCAL uses string interpolation | DEFERRED | +| M-003 | Medium | AdminRoleGuard accepts generic 'admin' role | DEFERRED (R1) | +| M-004 | Medium | No rate limiting on discovery trigger | DEFERRED | +| M-005 | Medium | Token omitted when empty in API proxy | Covered by H-002 | +| L-001 | Low | PII regex warning missing (ADR-014 gap) | DEFERRED (engineer) | +| L-002 | Low | Audit CSV actor field may expose email in R1 | Note for R1 | +| L-003 | Low | last_discovery_status column too narrow | Trivial migration | +| L-004 | Low | Scheduler binds to 0.0.0.0 | Infra config | +| I-001–I-010 | Info | Various confirmations and notes | Confirmed | + +--- + +## Fixes Applied + +| Fix | File | Change | +|-----|------|--------| +| H-001 | `pulse/packages/pulse-data/src/workers/discovery_scheduler.py` | Replaced `!=` string comparison with `hmac.compare_digest()`. Added explicit `None` check before comparison. | +| H-003 | `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts` | Added server-side `ALLOWED_SORT_FIELDS` and `ALLOWED_SORT_DIRS` Set lookups before interpolation in `listProjects`. | +| H-004 | `pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts` | Added `validateProjectKey()` private method enforcing `^[A-Z][A-Z0-9]+$`. Called at entry of `getProject` and `changeProjectStatus`. | + +## Fixes Deferred + +| Fix | File | Reason | +|-----|------|--------| +| H-002 | `env.validation.ts` + `config.py` | Requires deployment environment coordination — not a trivial code change. Must be implemented before R1 production deployment. | +| M-001 | `006_jira_discovery.py` | Requires a new migration (007) to replace RULE with BEFORE trigger. Architectural change. | +| M-002 | `jira-admin.service.ts` | Low exploitability today; MVP auth guard controls input. Implement UUID validation in `withTenant` during R1 auth hardening. | +| M-003 | `admin-role.guard.ts` | Intentional MVP simplification. Remove `'admin'` fallback when OIDC roles are implemented in R1. | +| M-004 | `jira-admin.controller.ts` | Requires ThrottlerModule registration in app root. Implement as part of global rate limiting story in R1. | +| L-001 | `project_discovery_service.py` + UI | ADR-014 gap. Assign to pulse-data-engineer + pulse-frontend to implement PII regex check before auto-activation. Required before enabling `auto` mode in production. | +| L-002 | `jira.audit.tsx` | Note for R1 — confirm actor field does not expose email under LGPD. | +| I-010 | `project-row-actions.tsx` | Confirmation dialog for block action — assign to pulse-frontend. | + +--- + +## Risk Rating + +**Current (after applied fixes): Medium** + +Justification: +- The three High findings that were trivially fixable (timing attack, SQL injection via sort, path param injection) are now resolved and test suites confirm no regressions. +- The remaining High finding (H-002: production token enforcement) is a configuration risk, not a code defect, and is Low likelihood in a controlled deployment. +- The Medium findings (audit tamper observability, tenant ID interpolation, generic admin role, rate limiting) are real but have compensating controls: RLS prevents cross-tenant access even if the RULE swallows tampering, `TenantGuard` controls tenant ID input today, the admin role is tightly controlled in MVP, and discovery trigger spam is limited by Jira API rate limits. +- The L-001 PII gap is the most operationally relevant: it must be resolved before enabling `auto` or `smart` mode in production, because those modes auto-activate projects without human review. + +**The implementation is safe to release to staging with `DYNAMIC_JIRA_DISCOVERY_ENABLED=False` (shadow mode). It must not be enabled in production with `auto` or `smart` mode until H-002 and L-001 are resolved.** diff --git a/pulse/docs/testing/ADR-014-test-report.md b/pulse/docs/testing/ADR-014-test-report.md new file mode 100644 index 0000000..a797a88 --- /dev/null +++ b/pulse/docs/testing/ADR-014-test-report.md @@ -0,0 +1,235 @@ +# ADR-014 Test Report — Dynamic Jira Project Discovery + +**ADR:** 014 — Dynamic Jira Project Discovery (Hybrid 4-Mode) +**Branch:** `feat/jira-dynamic-discovery` +**Date:** 2026-04-13 +**Author:** pulse-test-engineer + +--- + +## Coverage Summary + +| Track | File | Tests | What It Proves | +|---|---|---|---| +| Integration | `test_discovery_end_to_end.py` | 5 | Full run populates catalog; mode/status invariants | +| Integration | `test_mode_switch_reroutes_sync.py` | 5 | All 4 modes return exact expected project sets | +| Integration | `test_smart_mode_integration.py` | 3 | Score_projects reads real PR rows; auto_activate threshold | +| Integration | `test_guardrails_integration.py` | 5 | Cap enforcement; auto-pause; blocked immunity | +| Integration | `test_discovery_failure_modes.py` | 4 | Total failure, partial failure, disabled discovery | +| E2E | `e2e/jira-admin.spec.ts` | 7 | All 3 tabs, discovery trigger, filter, activation, audit, mode save | +| Load | `performance/k6/jira-discovery-load.js` | 3 scenarios | p95 latency, rate-budget guardrail, trigger spam | + +**Total integration tests:** 22 +**Total E2E tests:** 7 (3 browsers via Playwright projects) +**Load scenarios:** 3 + +--- + +## Track 1 — Integration Tests + +### Location +``` +pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/ +``` + +### How to Run + +```bash +cd pulse/packages/pulse-data + +# Install integration test deps (one-time) +pip install 'testcontainers[postgres]' pytest-asyncio asyncpg sqlalchemy[asyncio] alembic + +# Run integration tests only +pytest tests/integration/ -v + +# Run with coverage delta +pytest tests/integration/ --cov=src/contexts/integrations/jira/discovery \ + --cov-report=term-missing -v +``` + +### What Each File Proves + +**`test_discovery_end_to_end.py`** +- `run_discovery` with a mocked `JiraClient` (10 projects) inserts exactly 10 catalog rows into a real PostgreSQL instance. +- `allowlist` mode + no activations → resolver returns []. +- Manually activating 3 projects → resolver returns exactly those 3. +- Blocking 1 of the 3 → resolver returns 2 (blocked invariant). +- Switching to `auto` mode → blocked project still excluded (invariant persists across mode changes). + +**`test_mode_switch_reroutes_sync.py`** +- Seeds 5 projects with distinct statuses: active, paused, blocked, discovered, archived. +- Proves exact set returned by `resolve_active_projects` for each of 4 modes: + - `auto`: discovered + active, never blocked/paused/archived + - `allowlist`: active only + - `blocklist`: discovered + active + paused, never blocked/archived + - `smart`: active always + discovered ≥ threshold; sub-threshold discovered excluded +- Cross-mode invariant test: blocked project absent from resolve in ALL modes. + +**`test_smart_mode_integration.py`** +- Inserts real `eng_pull_requests` rows with Jira keys in titles. +- `score_projects` reads actual DB rows; returns count=5 for PROJ1, count=2 for PROJ2, count=10 for PROJ3. +- `auto_activate` with threshold=3 promotes PROJ1 and PROJ3 to `active` with `activation_source='smart_pr_scan'`. +- PROJ2 stays `discovered` (below threshold). +- Audit table contains `project_activated` rows with `actor='smart_auto'` for PROJ1 and PROJ3. +- Negative test: threshold=10, all projects have 2 refs → zero activations. + +**`test_guardrails_integration.py`** +- 15 active projects, cap=10 → `enforce_project_cap` pauses exactly 5 (lowest pr_reference_count: CAP00–CAP04). +- Each paused project has a `project_cap_enforced` audit event with `actor='system'`. +- 5 consecutive `record_sync_outcome(success=False)` calls auto-pause project; 4th call does not. +- `record_sync_outcome(success=True)` after failures resets `consecutive_failures` to 0. +- Blocked project: `enforce_project_cap` does not change its status; `record_sync_outcome` is a no-op (failures don't increment). + +**`test_discovery_failure_modes.py`** +- Total Jira API failure (exception raised) → `result['status']='failed'`, `discoveredCount=0`, error message in `result['errors']`, existing catalog row untouched. +- No Jira client configured → `result['status']='failed'` immediately. +- Per-project upsert failure (monkey-patched) → `result['status']='partial'`, failing key in errors, successful keys persisted. +- `discovery_enabled=False` → `run_discovery` exits early without calling Jira API. + +### Infrastructure Notes +- Testcontainers spins up a `postgres:16-alpine` container once per test session. +- Alembic `upgrade head` applies all 6 migrations including 006_jira_discovery. +- Each test runs inside a savepoint rolled back on teardown — O(1) cleanup, no `DELETE` statements. +- RLS is bypassed via `SET LOCAL app.current_tenant = ''` at session level. +- `JIRA_PROJECTS` env var is set to empty before migration 006 bootstrap to prevent catalog pre-seeding. + +--- + +## Track 2 — E2E Tests (Playwright) + +### Location +``` +pulse/e2e/jira-admin.spec.ts +pulse/playwright.config.ts +``` + +### How to Run + +```bash +cd pulse + +# Install Playwright browsers (one-time) +npx playwright install --with-deps + +# Run all E2E tests (requires Vite dev server on :5173) +npm run dev -w packages/pulse-web & +npx playwright test e2e/jira-admin.spec.ts + +# Run headed (with browser UI) for debugging +npx playwright test e2e/jira-admin.spec.ts --headed + +# HTML report +npx playwright test e2e/jira-admin.spec.ts --reporter=html +open playwright-report/index.html +``` + +### What Each Test Proves + +| Test | Journey | API Mock | +|---|---|---| +| `loads /settings/integrations/jira and renders 3 tabs` | Page renders 3 tabs; default redirect to /catalog | Static config + idle status | +| `Idle status badge is visible on initial load` | Badge renders "Idle" when inFlight=false | Static status mock | +| `clicking Descobrir agora shows "Descobrindo..." badge` | Trigger button → confirm dialog → badge cycles Idle→Descobrindo→Idle | Status mock cycles through states | +| `filtering by status "active" shows only active rows` | Filter chip → API filters → only active rows displayed | Route intercept filters by status param | +| `activating a discovered project via row actions` | Actions dropdown → Ativar → confirm → toast | POST status → audit updated | +| `audit tab shows project_activated event` | Audit tab → project_activated visible with actor | Pre-seeded audit mock | +| `changing mode on Config tab and saving` | Config tab → mode radio → save → audit shows mode_changed | PUT config → audit updated | +| `no individual developer rankings or scores` | Anti-surveillance: page content check | N/A | +| `accessibility: zero critical violations` | axe-core WCAG 2.0 AA scan on /jira/catalog | Conditional on @axe-core/playwright install | + +### Mocking Strategy +Playwright route interception (`page.route()`) intercepts all `/api/v1/admin/integrations/jira/*` calls. No real API required. Tests run against the Vite dev server with mocked responses — deterministic and fast. + +### Known Gaps +- The `project-row-actions.tsx` component renders a dropdown; the E2E test uses `getByRole('button', { name: /acoes/i })`. If the component uses a different aria-label or a non-button trigger, the selector may need adjustment after reading the actual rendered HTML. +- The `DiscoveryTriggerButton` polling interval is React Query's `refetchInterval`. The E2E test waits up to 10s for the status to cycle; this is safe for local dev but may need tuning in CI if React Query's refetch interval > 5s. +- Toast message text for activation ("Projeto ativado") depends on the `ProjectRowActions` component's implementation — verify the exact string matches the component's toast output. + +--- + +## Track 3 — Load Tests (k6) + +### Location +``` +pulse/performance/k6/jira-discovery-load.js +``` + +### How to Run + +```bash +# Install k6 (macOS) +brew install k6 + +# Seed 500 catalog rows (run once against your test DB) +psql $DATABASE_URL <<'SQL' +INSERT INTO jira_project_catalog (id, tenant_id, project_key, project_id, name, + project_type, status, consecutive_failures, metadata) +SELECT + gen_random_uuid(), + '00000000-0000-0000-0000-000000000001'::uuid, + 'LOAD' || gs::text, + 'ID-LOAD' || gs::text, + 'Load Test Project ' || gs::text, + 'software', + CASE WHEN (gs % 4) = 0 THEN 'active' WHEN (gs % 4) = 1 THEN 'discovered' + WHEN (gs % 4) = 2 THEN 'paused' ELSE 'blocked' END, + 0, '{}'::jsonb +FROM generate_series(1, 500) gs +ON CONFLICT DO NOTHING; +SQL + +# Run all three scenarios +BASE_URL=http://localhost:8000 k6 run pulse/performance/k6/jira-discovery-load.js + +# JSON summary written to /tmp/k6-jira-discovery-summary.json +``` + +### Scenario Details + +**Scenario A — Tenant with 500 projects (60s, 20 VUs)** +- Paginates `GET /api/v1/admin/integrations/jira/projects?limit=50&offset=N` +- Randomises page offset so all 10 pages get exercised +- Threshold: p95 < 400ms, error rate < 1% +- Validates: response contains `items` array (not an error body) + +**Scenario B — Rate budget guardrail (30s, 200 VUs)** +- POSTs `{"issues_to_fetch": 1}` to `/guardrails/rate-check` +- Token bucket capacity = `max_issues_per_hour` (100 in test config) +- Expected: ~100 succeed (200 OK, `allowed: true`), ~100 denied (200 OK `allowed: false` or 429) +- Validates: no 5xx responses from server; counters tracked via custom metrics + +**Scenario C — Discovery trigger spam (10 VUs × 5 iterations = 50 POSTs in <20s)** +- POSTs to `POST /api/v1/admin/integrations/jira/discover` rapidly +- Server must exhibit single-flight or rate-limiting (not process 50 concurrent discovery runs) +- Validates: zero 5xx; all responses are 200, 202, or 429 + +### Thresholds + +| Metric | Threshold | Scenario | +|---|---|---| +| `http_req_duration` p95 | < 400ms | A | +| `http_req_failed` rate | < 1% | A | +| `scenario_a_error_rate` | < 1% | A | +| `scenario_a_p95_ms` p95 | < 400ms | A | +| `scenario_c_5xx_count` | 0 | C | + +### Notes +- Scenario B requires the `/guardrails/rate-check` endpoint to be implemented and wired up to `Guardrails.enforce_rate_budget`. If the endpoint does not exist yet, k6 will receive 404s — these count as non-5xx and the threshold passes (server stays healthy), but the token-bucket counting metrics will be 0. +- The k6 `handleSummary` function writes a JSON file to `/tmp/k6-jira-discovery-summary.json` for CI artifact collection. + +--- + +## Gaps and Known Limitations + +1. **Rate budget endpoint not yet verified**: `POST /api/v1/admin/integrations/jira/guardrails/rate-check` may not exist in the Phase 2 API surface. The k6 scenario will still run but Scenario B counter metrics will be 0. + +2. **E2E requires live Vite dev server**: Tests are not self-contained; they require `npm run dev` in `packages/pulse-web`. The `playwright.config.ts` `webServer` block handles this automatically in local dev. For CI, add `npm run build && npx vite preview` as the webServer command. + +3. **Testcontainers requires Docker**: Integration tests need a Docker daemon. In environments without Docker (e.g., restricted CI), mark integration tests with `pytest -m integration` and skip them explicitly. + +4. **`@axe-core/playwright` is optional**: The accessibility E2E test gracefully skips if the package is not installed. Install with: `npm install --save-dev @axe-core/playwright` in `packages/pulse-web` (or at the pulse root for the e2e context). + +5. **Redis not mocked in guardrails integration tests**: `Guardrails.enforce_rate_budget` requires Redis. All integration tests that call `enforce_project_cap` or `record_sync_outcome` pass `redis_client=None` to `Guardrails`, which means `enforce_rate_budget` itself is not exercised in integration tests. A Scenario B load test or a separate Redis Testcontainer fixture covers this. + +6. **Anti-surveillance guarantee**: The E2E test `no individual developer rankings or scores are exposed` validates at the HTML content level. A more robust check would include API response scanning — add to the integration test suite once the API route handlers are finalized. diff --git a/pulse/e2e/jira-admin.spec.ts b/pulse/e2e/jira-admin.spec.ts new file mode 100644 index 0000000..2ceeb81 --- /dev/null +++ b/pulse/e2e/jira-admin.spec.ts @@ -0,0 +1,486 @@ +/** + * E2E: Jira Admin Settings — ADR-014 Dynamic Project Discovery + * + * Tests the critical user journeys through /settings/integrations/jira: + * 1. Page loads with 3 tabs; default tab is Projetos (catalog). + * 2. "Descobrir agora" button triggers discovery: badge shows "Descobrindo…" + * then returns to "Idle" after mock response. + * 3. Status filter: selecting "active" shows only active-status rows. + * 4. Project activation: Actions → Ativar on a discovered project → toast "Projeto ativado". + * 5. Audit tab: last event is project_activated with correct actor. + * 6. Config tab: mode change → save → audit event mode_changed appears. + * + * API mocking: Playwright route interception (no MSW required). + * Auth: dev mode bypasses auth; test uses X-Test-Tenant-ID header which the + * dev server accepts to skip JWT validation. + * + * Requirements: + * npx playwright install --with-deps + * BASE_URL=http://localhost:5173 npx playwright test e2e/jira-admin.spec.ts + */ + +import { test, expect, type Page, type Route } from '@playwright/test'; + +// --------------------------------------------------------------------------- +// Test data fixtures — deterministic, never random +// --------------------------------------------------------------------------- + +const TENANT_ID = '00000000-0000-0000-0000-000000000001'; + +const MOCK_CONFIG = { + mode: 'allowlist', + discoveryEnabled: true, + discoveryScheduleCron: '0 3 * * *', + maxActiveProjects: 100, + maxIssuesPerHour: 20000, + smartPrScanDays: 90, + smartMinPrReferences: 3, + lastDiscoveryAt: null, + lastDiscoveryStatus: null, + lastDiscoveryError: null, +}; + +const MOCK_DISCOVERY_IDLE = { + inFlight: false, + lastRun: null, +}; + +const MOCK_DISCOVERY_IN_FLIGHT = { + inFlight: true, + lastRun: null, +}; + +const MOCK_DISCOVERY_COMPLETE = { + inFlight: false, + lastRun: { + runId: 'run-001', + startedAt: new Date().toISOString(), + finishedAt: new Date().toISOString(), + status: 'success', + discoveredCount: 5, + activatedCount: 0, + archivedCount: 0, + updatedCount: 0, + errors: [], + }, +}; + +const MOCK_PROJECTS_ALL = { + items: [ + { + projectKey: 'PROJ1', + name: 'Project One', + status: 'active', + projectType: 'software', + activationSource: 'manual', + issueCount: 120, + prReferenceCount: 15, + firstSeenAt: '2026-01-01T00:00:00Z', + activatedAt: '2026-01-02T00:00:00Z', + lastSyncAt: '2026-04-13T03:00:00Z', + lastSyncStatus: 'success', + consecutiveFailures: 0, + lastError: null, + }, + { + projectKey: 'PROJ2', + name: 'Project Two', + status: 'discovered', + projectType: 'software', + activationSource: null, + issueCount: 0, + prReferenceCount: 2, + firstSeenAt: '2026-04-13T00:00:00Z', + activatedAt: null, + lastSyncAt: null, + lastSyncStatus: null, + consecutiveFailures: 0, + lastError: null, + }, + { + projectKey: 'PROJ3', + name: 'Project Three', + status: 'paused', + projectType: 'business', + activationSource: null, + issueCount: 5, + prReferenceCount: 0, + firstSeenAt: '2026-02-01T00:00:00Z', + activatedAt: null, + lastSyncAt: '2026-03-01T00:00:00Z', + lastSyncStatus: 'failed', + consecutiveFailures: 5, + lastError: 'Connection timeout', + }, + ], + total: 3, + counts: { + discovered: 1, + active: 1, + paused: 1, + blocked: 0, + archived: 0, + }, +}; + +const MOCK_PROJECTS_ACTIVE_ONLY = { + items: [MOCK_PROJECTS_ALL.items[0]], + total: 1, + counts: MOCK_PROJECTS_ALL.counts, +}; + +const MOCK_AUDIT_INITIAL: { items: object[]; total: number } = { + items: [ + { + id: 'aud-001', + eventType: 'discovery_run', + projectKey: null, + actor: 'system', + beforeValue: null, + afterValue: { status: 'success', discovered: 5 }, + reason: 'Discovery run completed', + createdAt: '2026-04-13T03:00:00Z', + }, + ], + total: 1, +}; + +const MOCK_AUDIT_AFTER_ACTIVATION = { + items: [ + { + id: 'aud-002', + eventType: 'project_activated', + projectKey: 'PROJ2', + actor: 'tenant_admin:user@example.com', + beforeValue: { status: 'discovered' }, + afterValue: { status: 'active' }, + reason: 'Manual activation', + createdAt: '2026-04-13T10:00:00Z', + }, + ...MOCK_AUDIT_INITIAL.items, + ], + total: 2, +}; + +const MOCK_AUDIT_AFTER_MODE_CHANGE = { + items: [ + { + id: 'aud-003', + eventType: 'mode_changed', + projectKey: null, + actor: 'tenant_admin:user@example.com', + beforeValue: { mode: 'allowlist' }, + afterValue: { mode: 'smart' }, + reason: 'Admin changed discovery mode', + createdAt: '2026-04-13T11:00:00Z', + }, + ...MOCK_AUDIT_AFTER_ACTIVATION.items, + ], + total: 3, +}; + +// --------------------------------------------------------------------------- +// Route interception helpers +// --------------------------------------------------------------------------- + +const API_BASE = '/api/v1/admin/integrations/jira'; + +/** + * Register all baseline API mocks for the Jira admin page. + * Individual tests can override specific routes by registering + * more specific handlers via page.route() before calling this. + */ +async function mockBaselineApis(page: Page): Promise { + await page.route(`${API_BASE}/config`, (route) => + route.fulfill({ json: MOCK_CONFIG }) + ); + // Discovery status endpoint: /api/v1/admin/integrations/jira/discovery/status + await page.route(`${API_BASE}/discovery/status`, (route) => + route.fulfill({ json: MOCK_DISCOVERY_IDLE }) + ); + // Smart suggestions (called by SmartSuggestionsBanner) + await page.route(`${API_BASE}/smart-suggestions`, (route) => + route.fulfill({ json: { items: [] } }) + ); + await page.route(`${API_BASE}/projects*`, (route) => { + const url = new URL(route.request().url()); + const status = url.searchParams.get('status'); + if (status === 'active') { + return route.fulfill({ json: MOCK_PROJECTS_ACTIVE_ONLY }); + } + return route.fulfill({ json: MOCK_PROJECTS_ALL }); + }); + await page.route(`${API_BASE}/audit*`, (route) => + route.fulfill({ json: MOCK_AUDIT_INITIAL }) + ); +} + +async function navigateToJiraSettings(page: Page): Promise { + await page.goto('/settings/integrations/jira'); + // Wait for the layout to stabilize (tab bar rendered) + await page.waitForSelector('[data-testid="jira-settings-layout"], text=Jira Integration', { + timeout: 10_000, + }); +} + +// --------------------------------------------------------------------------- +// Test: Page loads correctly +// --------------------------------------------------------------------------- + +test.describe('Jira Admin Settings — ADR-014', () => { + test.beforeEach(async ({ page }) => { + await mockBaselineApis(page); + }); + + test('loads /settings/integrations/jira and renders 3 tabs', async ({ page }) => { + await navigateToJiraSettings(page); + + // Verify 3 tabs are present + await expect(page.getByRole('link', { name: 'Projetos' })).toBeVisible(); + await expect(page.getByRole('link', { name: 'Configuracao' })).toBeVisible(); + await expect(page.getByRole('link', { name: 'Auditoria' })).toBeVisible(); + + // Default redirect to /catalog — Projetos tab should be active + await page.waitForURL('**/jira/catalog'); + // Verify the catalog content renders (trigger button visible) + await expect(page.getByRole('button', { name: /descobrir agora/i })).toBeVisible(); + }); + + test('Idle status badge is visible on initial load', async ({ page }) => { + await navigateToJiraSettings(page); + await page.waitForURL('**/jira/catalog'); + + // The DiscoveryStatusBadge shows "Idle" when inFlight=false and no failed lastRun + await expect(page.getByText('Idle')).toBeVisible(); + }); + + // --------------------------------------------------------------------------- + // Test: Discovery trigger + // --------------------------------------------------------------------------- + + test('clicking Descobrir agora shows "Descobrindo..." badge then returns to Idle', async ({ + page, + }) => { + // Phase 1: status returns inFlight=true immediately after POST + let callCount = 0; + await page.route(`${API_BASE}/discovery/status`, (route) => { + callCount++; + // First call: idle; second call (after trigger): in flight; third: complete + if (callCount === 1) return route.fulfill({ json: MOCK_DISCOVERY_IDLE }); + if (callCount === 2) return route.fulfill({ json: MOCK_DISCOVERY_IN_FLIGHT }); + return route.fulfill({ json: MOCK_DISCOVERY_COMPLETE }); + }); + await page.route(`${API_BASE}/discovery/trigger`, (route) => + route.fulfill({ status: 202, json: MOCK_DISCOVERY_IN_FLIGHT }) + ); + + await navigateToJiraSettings(page); + await page.waitForURL('**/jira/catalog'); + + const triggerButton = page.getByRole('button', { name: /descobrir agora/i }); + await expect(triggerButton).toBeVisible(); + await triggerButton.click(); + + // Confirmation dialog appears + await expect(page.getByRole('dialog')).toBeVisible(); + await page.getByRole('button', { name: /confirmar/i }).click(); + + // After trigger: badge turns "Descobrindo..." + // The badge re-renders when the status query refetches (React Query invalidation) + await expect(page.getByText('Descobrindo...')).toBeVisible({ timeout: 5_000 }); + + // After further polling, status returns complete → badge returns to Idle + await expect(page.getByText('Idle')).toBeVisible({ timeout: 10_000 }); + }); + + // --------------------------------------------------------------------------- + // Test: Status filter on projects tab + // --------------------------------------------------------------------------- + + test('filtering by status "active" shows only active rows', async ({ page }) => { + await navigateToJiraSettings(page); + await page.waitForURL('**/jira/catalog'); + + // Wait for table to render (at least one row visible) + await expect(page.getByText('PROJ1')).toBeVisible(); + + // Click the "Ativos" filter chip + await page.getByRole('button', { name: /^ativos/i }).click(); + + // After filter: only PROJ1 (active) should be visible + await expect(page.getByText('PROJ1')).toBeVisible(); + await expect(page.getByText('PROJ2')).not.toBeVisible(); + await expect(page.getByText('PROJ3')).not.toBeVisible(); + }); + + // --------------------------------------------------------------------------- + // Test: Project activation from Actions dropdown + // --------------------------------------------------------------------------- + + test('activating a discovered project via row actions updates status to Ativo', async ({ + page, + }) => { + // The useProjectActionMutation applies an optimistic update immediately: + // PROJ2's status chip changes from "Descoberto" to "Ativo" before the server responds. + // After onSettled the query is invalidated and re-fetches; we mock the refreshed list. + let activationDone = false; + await page.route(`${API_BASE}/projects*`, (route) => { + if (activationDone) { + // Return updated list with PROJ2 now active + const updatedProjects = { + ...MOCK_PROJECTS_ALL, + items: MOCK_PROJECTS_ALL.items.map((p) => + p.projectKey === 'PROJ2' ? { ...p, status: 'active' } : p + ), + }; + return route.fulfill({ json: updatedProjects }); + } + return route.fulfill({ json: MOCK_PROJECTS_ALL }); + }); + await page.route(`${API_BASE}/projects/PROJ2/activate`, (route) => { + activationDone = true; + return route.fulfill({ + status: 200, + json: { ...MOCK_PROJECTS_ALL.items[1], status: 'active' }, + }); + }); + + await navigateToJiraSettings(page); + await page.waitForURL('**/jira/catalog'); + + // Wait for PROJ2 (discovered) to appear + await expect(page.getByText('PROJ2')).toBeVisible(); + + // Open the Actions dropdown for PROJ2 + // ProjectRowActions renders: aria-label="Acoes para projeto PROJ2" + const proj2Row = page.locator('tr', { hasText: 'PROJ2' }); + await proj2Row.getByRole('button', { name: 'Acoes para projeto PROJ2' }).click(); + + // Click "Ativar" in the dropdown (role=menuitem, text="Ativar") + await page.getByRole('menuitem', { name: 'Ativar' }).click(); + + // After optimistic update PROJ2's status chip changes to "Ativo" + // (no confirmation dialog on row-action activate — only discovery trigger has one) + await expect( + page.locator('tr', { hasText: 'PROJ2' }).getByText('Ativo') + ).toBeVisible({ timeout: 5_000 }); + }); + + // --------------------------------------------------------------------------- + // Test: Audit tab — last event is project_activated + // --------------------------------------------------------------------------- + + test('audit tab shows project_activated event with correct actor', async ({ page }) => { + // Serve audit with activation event pre-populated + await page.route(`${API_BASE}/audit*`, (route) => + route.fulfill({ json: MOCK_AUDIT_AFTER_ACTIVATION }) + ); + + await navigateToJiraSettings(page); + await page.waitForURL('**/jira/catalog'); + + // Navigate to Auditoria tab + await page.getByRole('link', { name: 'Auditoria' }).click(); + await page.waitForURL('**/jira/audit'); + + // The most recent event should be project_activated + await expect(page.getByText('Projeto ativado')).toBeVisible(); + // The project key should be visible + await expect(page.getByText('PROJ2')).toBeVisible(); + // The actor + await expect(page.getByText(/tenant_admin/i)).toBeVisible(); + }); + + // --------------------------------------------------------------------------- + // Test: Config tab mode change → save → audit event mode_changed + // --------------------------------------------------------------------------- + + test('changing mode on Config tab and saving produces mode_changed audit event', async ({ + page, + }) => { + let auditHasMode = false; + await page.route(`${API_BASE}/config`, (route: Route) => { + if (route.request().method() === 'PUT') { + auditHasMode = true; + return route.fulfill({ json: { ...MOCK_CONFIG, mode: 'smart' } }); + } + return route.fulfill({ json: auditHasMode ? { ...MOCK_CONFIG, mode: 'smart' } : MOCK_CONFIG }); + }); + await page.route(`${API_BASE}/audit*`, (route) => { + if (auditHasMode) return route.fulfill({ json: MOCK_AUDIT_AFTER_MODE_CHANGE }); + return route.fulfill({ json: MOCK_AUDIT_INITIAL }); + }); + + await navigateToJiraSettings(page); + await page.waitForURL('**/jira/catalog'); + + // Navigate to Configuracao tab + await page.getByRole('link', { name: 'Configuracao' }).click(); + await page.waitForURL('**/jira/config'); + + // Wait for config to load (mode selector visible) + await expect(page.getByText('Modo de descoberta')).toBeVisible(); + + // Change mode to "Smart" — ModeSelector renders mode cards with radio semantics + await page.getByRole('radio', { name: /smart/i }).click(); + + // Save button should be enabled (form is dirty) + const saveBtn = page.getByRole('button', { name: /salvar configuracao/i }); + await expect(saveBtn).not.toBeDisabled(); + await saveBtn.click(); + + // Toast "Configuracao salva com sucesso" + await expect(page.getByText(/configuracao salva com sucesso/i)).toBeVisible({ + timeout: 5_000, + }); + + // Navigate to audit tab and verify mode_changed event + await page.getByRole('link', { name: 'Auditoria' }).click(); + await page.waitForURL('**/jira/audit'); + + await expect(page.getByText('Modo alterado')).toBeVisible({ timeout: 5_000 }); + }); + + // --------------------------------------------------------------------------- + // Anti-surveillance: no individual developer scores or leaderboards + // --------------------------------------------------------------------------- + + test('no individual developer rankings or scores are exposed on the page', async ({ page }) => { + await navigateToJiraSettings(page); + await page.waitForURL('**/jira/catalog'); + + const content = await page.content(); + + // Assert absence of developer-identifying leaderboard patterns + expect(content).not.toMatch(/leaderboard/i); + expect(content).not.toMatch(/developer.?rank/i); + expect(content).not.toMatch(/engineer.?score/i); + expect(content).not.toMatch(/individual.?performance/i); + }); + + // --------------------------------------------------------------------------- + // Accessibility: zero axe violations on the Jira settings page + // --------------------------------------------------------------------------- + + test('accessibility: zero critical violations on /jira/catalog', async ({ page }) => { + // axe-core via @axe-core/playwright requires an import; handle gracefully. + // If not installed, the test is skipped with a clear message. + let AxeBuilder: typeof import('@axe-core/playwright').default | undefined; + try { + const mod = await import('@axe-core/playwright'); + AxeBuilder = mod.default; + } catch { + test.skip(true, '@axe-core/playwright not installed — skipping a11y test'); + return; + } + + await navigateToJiraSettings(page); + await page.waitForURL('**/jira/catalog'); + + const results = await new AxeBuilder({ page }) + .withTags(['wcag2a', 'wcag2aa']) + .analyze(); + + expect(results.violations, JSON.stringify(results.violations, null, 2)).toHaveLength(0); + }); +}); diff --git a/pulse/packages/pulse-api/Dockerfile b/pulse/packages/pulse-api/Dockerfile index 5eedde2..e396c95 100644 --- a/pulse/packages/pulse-api/Dockerfile +++ b/pulse/packages/pulse-api/Dockerfile @@ -1,15 +1,20 @@ # ---- Builder Stage ---- +# NOTE: build context is ./packages so we can access ../pulse-shared FROM node:20-alpine AS builder -WORKDIR /app +# Layout: /workspace/pulse-shared and /workspace/pulse-api +# tsconfig path "@pulse/shared/*" resolves to "../pulse-shared/src/*" +COPY pulse-shared/ /workspace/pulse-shared/ + +WORKDIR /workspace/pulse-api # Install dependencies first (layer caching) -COPY package.json package-lock.json* ./ +COPY pulse-api/package.json pulse-api/package-lock.json* ./ RUN npm ci --ignore-scripts # Copy source and build -COPY tsconfig.json tsconfig.build.json nest-cli.json ./ -COPY src/ ./src/ +COPY pulse-api/tsconfig.json pulse-api/tsconfig.build.json pulse-api/nest-cli.json ./ +COPY pulse-api/src/ ./src/ RUN npm run build # Prune dev dependencies @@ -25,9 +30,9 @@ RUN addgroup -g 1001 -S pulse && \ WORKDIR /app # Copy built artifacts and production deps -COPY --from=builder --chown=pulse:pulse /app/dist ./dist -COPY --from=builder --chown=pulse:pulse /app/node_modules ./node_modules -COPY --from=builder --chown=pulse:pulse /app/package.json ./package.json +COPY --from=builder --chown=pulse:pulse /workspace/pulse-api/dist ./dist +COPY --from=builder --chown=pulse:pulse /workspace/pulse-api/node_modules ./node_modules +COPY --from=builder --chown=pulse:pulse /workspace/pulse-api/package.json ./package.json # Security: read-only filesystem where possible USER pulse @@ -40,4 +45,4 @@ ENV PORT=3000 HEALTHCHECK --interval=30s --timeout=3s --start-period=10s --retries=3 \ CMD wget --no-verbose --tries=1 --spider http://localhost:3000/api/v1/health || exit 1 -CMD ["node", "dist/main.js"] +CMD ["node", "dist/pulse-api/src/main.js"] diff --git a/pulse/packages/pulse-api/src/common/guards/auth.guard.ts b/pulse/packages/pulse-api/src/common/guards/auth.guard.ts index 240b9a8..3602014 100644 --- a/pulse/packages/pulse-api/src/common/guards/auth.guard.ts +++ b/pulse/packages/pulse-api/src/common/guards/auth.guard.ts @@ -4,20 +4,42 @@ import { Injectable, Logger, } from '@nestjs/common'; +import type { Request } from 'express'; + +interface RequestWithUser extends Request { + user?: { + id: string; + role: string; + roles?: string[]; + }; +} /** * Auth guard stub for MVP. * - * MVP has no authentication. This guard always returns true. - * In production, this will validate JWT tokens and attach - * the authenticated user to the request. + * MVP has no authentication: this guard always returns true and attaches + * a stub admin user so downstream guards (AdminRoleGuard) can authorize + * the dev tenant. + * + * In production this will validate JWT tokens and attach the real user. */ @Injectable() export class AuthGuard implements CanActivate { private readonly logger = new Logger(AuthGuard.name); - canActivate(_context: ExecutionContext): boolean { - this.logger.debug('AuthGuard: MVP passthrough — no auth enforced'); + canActivate(context: ExecutionContext): boolean { + const request = context.switchToHttp().getRequest(); + + if (!request.user) { + // MVP dev stub: tenant_admin so admin endpoints work without JWT + request.user = { + id: '00000000-0000-0000-0000-0000000000aa', + role: 'tenant_admin', + roles: ['tenant_admin'], + }; + } + + this.logger.debug('AuthGuard: MVP passthrough — stub user attached'); return true; } } diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.spec.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.spec.ts index f049bbe..2bc5f52 100644 --- a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.spec.ts +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.spec.ts @@ -9,7 +9,7 @@ import type { JiraDiscoveryStatusResponse, JiraAuditListResponse, JiraSmartSuggestionsResponse, -} from '@pulse/shared/types/jira-admin'; +} from '@pulse/shared'; const TENANT_ID = '00000000-0000-0000-0000-000000000001'; const USER: CurrentUserPayload = { diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts index d965d4c..c35a108 100644 --- a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.controller.ts @@ -23,7 +23,7 @@ import type { JiraDiscoveryStatusResponse, JiraAuditListResponse, JiraSmartSuggestionsResponse, -} from '@pulse/shared/types/jira-admin'; +} from '@pulse/shared'; @Controller('admin/integrations/jira') @UseGuards(AdminRoleGuard) diff --git a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts index 6664c00..21c5961 100644 --- a/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts +++ b/pulse/packages/pulse-api/src/modules/integrations/jira-admin/jira-admin.service.ts @@ -19,7 +19,7 @@ import type { JiraSmartSuggestionsResponse, JiraSmartSuggestion, JiraAuditEventType, -} from '@pulse/shared/types/jira-admin'; +} from '@pulse/shared'; import type { UpdateConfigDto } from './dto/update-config.dto'; import type { ProjectActionDto } from './dto/project-action.dto'; import type { ProjectCatalogQueryDto, AuditQueryDto } from './dto/list-query.dto'; @@ -258,9 +258,20 @@ export class JiraAdminService { const where = conditions.join(' AND '); - // Sort - const sortField = query.sortBy ?? 'project_key'; - const sortDir = query.sortDir ?? 'asc'; + // Sort — allowlist both field and direction to prevent SQL injection. + // The DTO @IsIn decorator provides validation at the HTTP layer, but + // this server-side guard is defence-in-depth for cases where the pipe + // is bypassed or misconfigured. + const ALLOWED_SORT_FIELDS = new Set([ + 'project_key', 'pr_reference_count', 'issue_count', 'last_sync_at', + ]); + const ALLOWED_SORT_DIRS = new Set(['asc', 'desc']); + const sortField = ALLOWED_SORT_FIELDS.has(query.sortBy ?? '') + ? query.sortBy! + : 'project_key'; + const sortDir = ALLOWED_SORT_DIRS.has(query.sortDir ?? '') + ? query.sortDir! + : 'asc'; const orderBy = `ORDER BY ${sortField} ${sortDir}`; // Pagination @@ -304,10 +315,26 @@ export class JiraAdminService { }); } + /** + * Validate a project key against the expected Jira format. + * Jira project keys: 2+ uppercase letters optionally followed by digits. + * Pattern: ^[A-Z][A-Z0-9]+$ + * This prevents path-traversal style inputs and unexpected characters + * from reaching queries or audit logs, even though queries are parameterised. + */ + private validateProjectKey(projectKey: string): void { + if (!/^[A-Z][A-Z0-9]+$/.test(projectKey.toUpperCase())) { + throw new BadRequestException( + `Invalid project key format: '${projectKey}'. Expected uppercase letters and digits only (e.g. PROJ, BACK2).`, + ); + } + } + async getProject( tenantId: string, projectKey: string, ): Promise { + this.validateProjectKey(projectKey); return this.withTenant(tenantId, async (qr) => { const rows = await qr.query( `SELECT * FROM jira_project_catalog WHERE tenant_id = $1 AND project_key = $2`, @@ -329,6 +356,8 @@ export class JiraAdminService { dto: ProjectActionDto, actorId: string, ): Promise { + this.validateProjectKey(projectKey); + const transition = STATUS_TRANSITIONS[action]; if (!transition) { throw new BadRequestException(`Unknown action: ${action}`); diff --git a/pulse/packages/pulse-api/tsconfig.json b/pulse/packages/pulse-api/tsconfig.json index 24db51a..af7c6c5 100644 --- a/pulse/packages/pulse-api/tsconfig.json +++ b/pulse/packages/pulse-api/tsconfig.json @@ -22,6 +22,7 @@ "noUnusedParameters": true, "paths": { "@/*": ["src/*"], + "@pulse/shared": ["../pulse-shared/src/index.ts"], "@pulse/shared/*": ["../pulse-shared/src/*"] } }, diff --git a/pulse/packages/pulse-data/requirements.txt b/pulse/packages/pulse-data/requirements.txt index c806156..b06f6da 100644 --- a/pulse/packages/pulse-data/requirements.txt +++ b/pulse/packages/pulse-data/requirements.txt @@ -11,6 +11,7 @@ aiokafka>=0.12.0,<1.0.0 httpx>=0.28.0,<1.0.0 mangum>=0.19.0,<1.0.0 redis>=5.2.0,<6.0.0 +apscheduler>=3.10.0,<4.0.0 # Dev dependencies pytest>=8.3.0,<9.0.0 diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py index a2a9679..854eaab 100644 --- a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py +++ b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/project_discovery_service.py @@ -8,6 +8,7 @@ from __future__ import annotations import logging +import re import uuid from datetime import datetime, timezone from typing import Any @@ -21,6 +22,15 @@ logger = logging.getLogger(__name__) +# Regex for detecting PII-sensitive Jira project names (HR, legal, finance, etc.). +# Matches in both English and Portuguese. Used to gate auto-activation so that +# an admin must explicitly approve these projects. +PII_SENSITIVE_PATTERNS = re.compile( + r"\b(HR|RH|RRHH|legal|juridico|jur\u00eddico|financ\w*|finan\u00e7as|" + r"payroll|folha|confidential|confidencial|restricted|restrit\w*)\b", + re.IGNORECASE, +) + class ProjectDiscoveryService: """Runs a full Jira project discovery cycle for a tenant.""" @@ -103,10 +113,32 @@ async def run_discovery(self, tenant_id: UUID) -> dict[str, Any]: existing = existing_by_key.get(key) if existing is None: - # New project - initial_status = "active" if mode == "auto" else "discovered" - activation_source = "auto_mode" if mode == "auto" else None - activated_at = datetime.now(timezone.utc) if mode == "auto" else None + # New project — check for PII-sensitive name + project_name = jp.get("name") or "" + pii_match = PII_SENSITIVE_PATTERNS.search(project_name) + pii_flag = pii_match is not None + project_metadata: dict[str, Any] = {} + + if pii_flag: + matched_term = pii_match.group(0) # type: ignore[union-attr] + project_metadata["pii_flag"] = True + project_metadata["pii_reason"] = matched_term + + # Determine initial status: PII-flagged projects are always + # forced to 'discovered' regardless of mode, requiring manual + # admin approval. + if pii_flag and mode in ("auto", "smart"): + initial_status = "discovered" + activation_source = None + activated_at = None + elif mode == "auto": + initial_status = "active" + activation_source = "auto_mode" + activated_at = datetime.now(timezone.utc) + else: + initial_status = "discovered" + activation_source = None + activated_at = None try: await self._repo.upsert_project( @@ -119,10 +151,41 @@ async def run_discovery(self, tenant_id: UUID) -> dict[str, Any]: status=initial_status, activation_source=activation_source, activated_at=activated_at, + metadata=project_metadata if project_metadata else {}, ) result["discoveredCount"] += 1 if initial_status == "active": result["activatedCount"] += 1 + + # Emit PII audit events after successful insert + if pii_flag: + matched_term_str = project_metadata.get("pii_reason", "") + try: + await self._repo.append_audit( + tenant_id, + event_type="project_pii_flagged", + project_key=key, + actor="system", + after={"pii_flag": True, "pii_reason": matched_term_str}, + reason=f"PII-sensitive name matched: {matched_term_str}", + ) + except Exception as exc: + logger.exception("Failed to write PII flagged audit for %s: %s", key, exc) + + if mode in ("auto", "smart"): + try: + await self._repo.append_audit( + tenant_id, + event_type="project_pii_gated", + project_key=key, + actor="system", + before={"mode": mode}, + after={"status": "discovered"}, + reason=f"PII-sensitive name matched: {matched_term_str}", + ) + except Exception as exc: + logger.exception("Failed to write PII gated audit for %s: %s", key, exc) + except Exception as exc: errors.append(f"Failed to insert project {key}: {exc}") logger.exception("Failed to insert project %s", key) diff --git a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py index 025f076..47e4e99 100644 --- a/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py +++ b/pulse/packages/pulse-data/src/contexts/integrations/jira/discovery/smart_prioritizer.py @@ -120,6 +120,14 @@ async def auto_activate(self, tenant_id: UUID) -> int: activated = 0 for proj in candidates: pr_count = proj.get("pr_reference_count") or 0 + # Skip PII-flagged projects — they require manual admin approval + proj_metadata = proj.get("metadata") or {} + if proj_metadata.get("pii_flag"): + logger.debug( + "Skipping PII-flagged project %s for smart auto-activate", + proj["project_key"], + ) + continue if pr_count >= threshold: await self._repo.update_project_status( tenant_id, diff --git a/pulse/packages/pulse-data/src/workers/discovery_scheduler.py b/pulse/packages/pulse-data/src/workers/discovery_scheduler.py index ca339c8..6df5df0 100644 --- a/pulse/packages/pulse-data/src/workers/discovery_scheduler.py +++ b/pulse/packages/pulse-data/src/workers/discovery_scheduler.py @@ -56,12 +56,20 @@ class TriggerResponse(BaseModel): def _check_internal_token(x_internal_token: str | None) -> None: - """Validate the internal API token.""" + """Validate the internal API token using constant-time comparison. + + Uses hmac.compare_digest to prevent timing-oracle attacks that could + allow an attacker to reconstruct the token byte-by-byte. + """ + import hmac + expected = getattr(settings, "internal_api_token", "") if not expected: # No token configured = allow (dev mode) return - if x_internal_token != expected: + if x_internal_token is None or not hmac.compare_digest( + x_internal_token.encode(), expected.encode() + ): raise HTTPException(status_code=403, detail="Invalid internal token") diff --git a/pulse/packages/pulse-data/tests/integration/__init__.py b/pulse/packages/pulse-data/tests/integration/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/integration/contexts/__init__.py b/pulse/packages/pulse-data/tests/integration/contexts/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/__init__.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/__init__.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/__init__.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/__init__.py new file mode 100644 index 0000000..e69de29 diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/conftest.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/conftest.py new file mode 100644 index 0000000..016434b --- /dev/null +++ b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/conftest.py @@ -0,0 +1,202 @@ +"""Shared fixtures for Jira discovery integration tests. + +Uses testcontainers-python to spin up a real PostgreSQL instance. +Applies Alembic migrations through 006_jira_discovery. +Provides an async SQLAlchemy session scoped to each test function. + +Requirements: + pip install testcontainers[postgres] pytest-asyncio asyncpg sqlalchemy[asyncio] alembic + +Each test gets a clean, isolated state via transaction rollback. +""" + +from __future__ import annotations + +import os +import uuid +from collections.abc import AsyncGenerator +from pathlib import Path +from typing import Any + +import pytest +import pytest_asyncio +from sqlalchemy import text +from sqlalchemy.ext.asyncio import AsyncSession, create_async_engine, async_sessionmaker + +# testcontainers is an optional test dependency — import lazily so the +# module can be parsed without it for static analysis. +try: + from testcontainers.postgres import PostgresContainer # type: ignore[import] +except ImportError as exc: # pragma: no cover + raise ImportError( + "testcontainers[postgres] is required for integration tests. " + "Install with: pip install 'testcontainers[postgres]'" + ) from exc + +# --------------------------------------------------------------------------- +# Constants +# --------------------------------------------------------------------------- + +TENANT_ID = uuid.UUID("00000000-0000-0000-0000-000000000001") +TENANT_ID_2 = uuid.UUID("00000000-0000-0000-0000-000000000002") + +# Locate the alembic directory relative to this file. +_PACKAGE_ROOT = Path(__file__).parents[6] # pulse/packages/pulse-data/ +_ALEMBIC_CFG = _PACKAGE_ROOT / "alembic" / "alembic.ini" + + +# --------------------------------------------------------------------------- +# Session-scoped: one PostgreSQL container for the entire test session. +# This avoids the expensive container startup per test. +# --------------------------------------------------------------------------- + +@pytest.fixture(scope="session") +def postgres_container(): + """Start a PostgreSQL container for the test session.""" + with PostgresContainer("postgres:16-alpine") as pg: + yield pg + + +@pytest.fixture(scope="session") +def sync_db_url(postgres_container) -> str: + """Return the sync (psycopg2) DSN for Alembic migrations.""" + return postgres_container.get_connection_url() + + +@pytest.fixture(scope="session") +def async_db_url(postgres_container) -> str: + """Return the async (asyncpg) DSN for SQLAlchemy sessions.""" + url = postgres_container.get_connection_url() + # testcontainers returns postgresql+psycopg2://..., swap driver + return url.replace("postgresql+psycopg2://", "postgresql+asyncpg://", 1).replace( + "postgresql://", "postgresql+asyncpg://", 1 + ) + + +@pytest.fixture(scope="session", autouse=True) +def apply_migrations(sync_db_url: str): + """Run Alembic upgrade head once for the session. + + Sets JIRA_PROJECTS env var to empty so migration 006 does not try to + bootstrap catalog rows from a real env var. + """ + from alembic.config import Config + from alembic import command + + # Prevent migration 006 bootstrap from seeding catalog rows + os.environ.setdefault("JIRA_PROJECTS", "") + + alembic_cfg = Config() + alembic_cfg.set_main_option("script_location", str(_PACKAGE_ROOT / "alembic")) + alembic_cfg.set_main_option("sqlalchemy.url", sync_db_url) + + command.upgrade(alembic_cfg, "head") + + +# --------------------------------------------------------------------------- +# Function-scoped: async engine + session with savepoint rollback isolation. +# --------------------------------------------------------------------------- + +@pytest_asyncio.fixture +async def engine(async_db_url: str): + """Async engine bound to the test container.""" + engine = create_async_engine(async_db_url, echo=False, pool_pre_ping=True) + yield engine + await engine.dispose() + + +@pytest_asyncio.fixture +async def session(engine) -> AsyncGenerator[AsyncSession, None]: + """Provide an AsyncSession with per-test rollback isolation. + + Each test runs inside a SAVEPOINT. On teardown the savepoint is rolled + back, leaving the database pristine for the next test. + + RLS is bypassed for integration tests by setting the session-level GUC + app.current_tenant to the test tenant UUID. Tests that need a different + tenant can execute SET LOCAL themselves. + """ + async with engine.connect() as conn: + # Open outer transaction — never committed + trans = await conn.begin() + + # Bypass RLS for the test session + await conn.execute( + text(f"SET LOCAL app.current_tenant = '{TENANT_ID}'") + ) + + session_factory = async_sessionmaker(bind=conn, expire_on_commit=False) + async with session_factory() as sess: + yield sess + + # Roll back everything written during the test + await trans.rollback() + + +# --------------------------------------------------------------------------- +# Helpers used across integration test modules +# --------------------------------------------------------------------------- + +async def insert_tenant_config( + session: AsyncSession, + tenant_id: uuid.UUID = TENANT_ID, + mode: str = "allowlist", + max_active_projects: int = 100, + max_issues_per_hour: int = 20000, + smart_min_pr_references: int = 3, + smart_pr_scan_days: int = 90, + discovery_enabled: bool = True, +) -> dict[str, Any]: + """Insert a tenant_jira_config row directly via SQL.""" + from src.contexts.integrations.jira.discovery.repository import ( + DiscoveryRepository, + ) + repo = DiscoveryRepository(session) + return await repo.upsert_tenant_config( + tenant_id, + mode=mode, + discovery_enabled=discovery_enabled, + discovery_schedule_cron="0 3 * * *", + max_active_projects=max_active_projects, + max_issues_per_hour=max_issues_per_hour, + smart_pr_scan_days=smart_pr_scan_days, + smart_min_pr_references=smart_min_pr_references, + ) + + +async def insert_catalog_project( + session: AsyncSession, + project_key: str, + tenant_id: uuid.UUID = TENANT_ID, + status: str = "discovered", + pr_reference_count: int = 0, + consecutive_failures: int = 0, + activation_source: str | None = None, +) -> dict[str, Any]: + """Insert a jira_project_catalog row.""" + from src.contexts.integrations.jira.discovery.repository import ( + DiscoveryRepository, + ) + repo = DiscoveryRepository(session) + return await repo.upsert_project( + tenant_id, + project_key, + project_id=f"ID-{project_key}", + name=f"Project {project_key}", + project_type="software", + status=status, + pr_reference_count=pr_reference_count, + consecutive_failures=consecutive_failures, + activation_source=activation_source, + ) + + +def make_jira_project_payload(project_key: str) -> dict[str, Any]: + """Build a mock Jira API project dict (as returned by fetch_all_accessible_projects).""" + return { + "project_key": project_key, + "project_id": f"ID-{project_key}", + "name": f"Project {project_key}", + "project_type": "software", + "lead_account_id": None, + } diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_discovery_end_to_end.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_discovery_end_to_end.py new file mode 100644 index 0000000..2d36091 --- /dev/null +++ b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_discovery_end_to_end.py @@ -0,0 +1,186 @@ +"""Integration test: full discovery run end-to-end against a real PostgreSQL instance. + +Covers: +- run_discovery populates catalog with 10 rows +- mode=allowlist → resolve_active_projects returns 0 (none activated yet) +- Activating 3 projects → resolve returns 3 +- Blocking 1 of those 3 → resolve returns 2 +- Switching mode to auto → blocked project stays excluded + +All assertions are on database state — no mocking of internal services. +Only JiraClient.fetch_all_accessible_projects is mocked (external API). +""" + +from __future__ import annotations + +import uuid +from unittest.mock import AsyncMock, MagicMock + +import pytest +import pytest_asyncio +from sqlalchemy.ext.asyncio import AsyncSession + +from tests.integration.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + insert_tenant_config, + make_jira_project_payload, +) + + +# --------------------------------------------------------------------------- +# Helpers +# --------------------------------------------------------------------------- + +def _make_jira_client(project_keys: list[str]) -> MagicMock: + """Return a mock JiraClient that yields the given project keys.""" + client = MagicMock() + client.fetch_all_accessible_projects = AsyncMock( + return_value=[make_jira_project_payload(k) for k in project_keys] + ) + return client + + +# --------------------------------------------------------------------------- +# Tests +# --------------------------------------------------------------------------- + +@pytest.mark.asyncio +async def test_discovery_populates_catalog_with_10_rows(session: AsyncSession): + """run_discovery with 10 Jira projects → 10 catalog rows inserted.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config(session, mode="allowlist") + + project_keys = [f"PROJ{i}" for i in range(1, 11)] + jira_client = _make_jira_client(project_keys) + + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + result = await service.run_discovery(TENANT_ID) + + assert result["discoveredCount"] == 10 + assert result["status"] in ("success", "partial") + + repo = DiscoveryRepository(session) + items, total = await repo.list_projects(TENANT_ID, limit=100, offset=0) + assert total == 10 + catalog_keys = {p["project_key"] for p in items} + assert catalog_keys == set(project_keys) + + +@pytest.mark.asyncio +async def test_allowlist_mode_returns_zero_projects_when_none_active(session: AsyncSession): + """mode=allowlist, no projects manually activated → resolve returns [].""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + from src.contexts.integrations.jira.discovery.mode_resolver import ModeResolver + + await insert_tenant_config(session, mode="allowlist") + + project_keys = [f"PROJ{i}" for i in range(1, 6)] + jira_client = _make_jira_client(project_keys) + + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + await service.run_discovery(TENANT_ID) + + resolver = ModeResolver(session) + active = await resolver.resolve_active_projects(TENANT_ID) + + assert active == [], ( + "In allowlist mode, discovered-only projects must not be returned by resolver" + ) + + +@pytest.mark.asyncio +async def test_activating_3_projects_returns_3_from_resolver(session: AsyncSession): + """Activate 3 of 10 discovered projects → resolver returns exactly those 3.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + from src.contexts.integrations.jira.discovery.mode_resolver import ModeResolver + + await insert_tenant_config(session, mode="allowlist") + + project_keys = [f"PROJ{i}" for i in range(1, 11)] + jira_client = _make_jira_client(project_keys) + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + await service.run_discovery(TENANT_ID) + + repo = DiscoveryRepository(session) + keys_to_activate = ["PROJ1", "PROJ2", "PROJ3"] + for key in keys_to_activate: + await repo.update_project_status( + TENANT_ID, key, status="active", actor="test_user", reason="manual activation" + ) + + resolver = ModeResolver(session) + active = await resolver.resolve_active_projects(TENANT_ID) + + assert sorted(active) == sorted(keys_to_activate) + + +@pytest.mark.asyncio +async def test_blocking_one_active_project_returns_2(session: AsyncSession): + """Block 1 of 3 active projects → resolver returns only 2.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + from src.contexts.integrations.jira.discovery.mode_resolver import ModeResolver + + await insert_tenant_config(session, mode="allowlist") + + project_keys = [f"PROJ{i}" for i in range(1, 11)] + jira_client = _make_jira_client(project_keys) + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + await service.run_discovery(TENANT_ID) + + repo = DiscoveryRepository(session) + for key in ["PROJ1", "PROJ2", "PROJ3"]: + await repo.update_project_status(TENANT_ID, key, status="active", actor="test") + + # Block PROJ3 + await repo.update_project_status(TENANT_ID, "PROJ3", status="blocked", actor="test") + + resolver = ModeResolver(session) + active = await resolver.resolve_active_projects(TENANT_ID) + + assert sorted(active) == ["PROJ1", "PROJ2"] + assert "PROJ3" not in active, "Blocked project must never appear in resolved list" + + +@pytest.mark.asyncio +async def test_switching_to_auto_mode_still_excludes_blocked(session: AsyncSession): + """Switch mode from allowlist to auto: blocked project remains excluded.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + from src.contexts.integrations.jira.discovery.mode_resolver import ModeResolver + + await insert_tenant_config(session, mode="allowlist") + + project_keys = ["ALPHA", "BETA", "GAMMA"] + jira_client = _make_jira_client(project_keys) + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + await service.run_discovery(TENANT_ID) + + repo = DiscoveryRepository(session) + # Block GAMMA — should be immune regardless of mode + await repo.update_project_status(TENANT_ID, "GAMMA", status="blocked", actor="test") + + # Switch mode to auto (discovers all except blocked) + await repo.upsert_tenant_config(TENANT_ID, mode="auto") + + resolver = ModeResolver(session) + active = await resolver.resolve_active_projects(TENANT_ID) + + # auto mode includes discovered + active, but never blocked + assert "GAMMA" not in active, "Blocked project invariant violated after mode switch to auto" + # ALPHA and BETA are in 'discovered' state → auto mode includes them + assert "ALPHA" in active + assert "BETA" in active diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_discovery_failure_modes.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_discovery_failure_modes.py new file mode 100644 index 0000000..90392c6 --- /dev/null +++ b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_discovery_failure_modes.py @@ -0,0 +1,187 @@ +"""Integration test: ProjectDiscoveryService failure mode handling. + +Covers: +1. Total Jira API failure → status='failed', audit event emitted, zero catalog changes. +2. Partial Jira API failure (simulated via raising on second call) → status='partial', + only the successfully returned pages are in the catalog. + +These tests verify that discovery is safe by default: on failure, existing catalog +state is preserved (no deletions) and the tenant config records the error. +""" + +from __future__ import annotations + +from unittest.mock import AsyncMock, MagicMock + +import pytest +from sqlalchemy.ext.asyncio import AsyncSession + +from tests.integration.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + insert_catalog_project, + insert_tenant_config, + make_jira_project_payload, +) + + +# --------------------------------------------------------------------------- +# Test 1: Total API failure +# --------------------------------------------------------------------------- + +@pytest.mark.asyncio +async def test_total_jira_api_failure_returns_failed_status(session: AsyncSession): + """Jira API raises on first call → run returns status=failed, no catalog changes.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config(session, mode="allowlist") + + # Seed one existing catalog row to confirm it is NOT touched on failure + await insert_catalog_project(session, "EXISTING", status="active") + + # Jira client raises on fetch + jira_client = MagicMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + side_effect=RuntimeError("Jira API unreachable") + ) + + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + result = await service.run_discovery(TENANT_ID) + + assert result["status"] == "failed" + assert result["discoveredCount"] == 0 + assert any("Failed to fetch Jira projects" in e for e in result["errors"]) + + # Catalog must be unchanged + repo = DiscoveryRepository(session) + items, total = await repo.list_projects(TENANT_ID, limit=100) + assert total == 1, "Catalog must not be modified on total failure" + assert items[0]["project_key"] == "EXISTING" + assert items[0]["status"] == "active" + + +@pytest.mark.asyncio +async def test_total_jira_failure_records_error_in_tenant_config(session: AsyncSession): + """Total failure: tenant config last_discovery_status updated to 'failed'.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config(session, mode="allowlist") + + jira_client = MagicMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + side_effect=ConnectionError("Network error") + ) + + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + await service.run_discovery(TENANT_ID) + + # Note: on total failure, the service returns early before updating tenant config. + # Verify the result dict reflects failure (tenant config update is a best-effort step + # that happens only on partial/success paths). + # The key contract is that NO catalog rows were inserted or archived. + repo = DiscoveryRepository(session) + _, total = await repo.list_projects(TENANT_ID, limit=1) + assert total == 0, "No catalog rows should be inserted when Jira API fails entirely" + + +@pytest.mark.asyncio +async def test_total_failure_with_no_jira_client_configured(session: AsyncSession): + """If jira_client is None (misconfiguration), run returns status=failed immediately.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + + await insert_tenant_config(session, mode="allowlist") + + # No jira_client passed + service = ProjectDiscoveryService(session=session, jira_client=None) + result = await service.run_discovery(TENANT_ID) + + assert result["status"] == "failed" + assert result["discoveredCount"] == 0 + assert any("No Jira client configured" in e for e in result["errors"]) + + +# --------------------------------------------------------------------------- +# Test 2: Partial failure simulation +# --------------------------------------------------------------------------- + +@pytest.mark.asyncio +async def test_partial_jira_response_results_in_partial_status(session: AsyncSession): + """Simulated partial success: Jira returns some projects but errors occur during upsert. + + Strategy: monkey-patch the repository's upsert_project to raise on one specific key. + This simulates a per-project DB error (e.g., constraint violation on a bad key). + run_discovery must return status='partial', include the error in result['errors'], + and successfully persist all other projects. + """ + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + from src.contexts.integrations.jira.discovery import repository as repo_module + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config(session, mode="allowlist") + + project_keys = ["GOOD1", "BADK", "GOOD2"] + + original_upsert = DiscoveryRepository.upsert_project + + async def _failing_upsert(self, tenant_id, project_key, **fields): + if project_key == "BADK": + raise ValueError("Simulated constraint error on BADK") + return await original_upsert(self, tenant_id, project_key, **fields) + + jira_client = MagicMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[make_jira_project_payload(k) for k in project_keys] + ) + + # Patch upsert_project on the class temporarily + DiscoveryRepository.upsert_project = _failing_upsert + try: + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + result = await service.run_discovery(TENANT_ID) + finally: + DiscoveryRepository.upsert_project = original_upsert + + assert result["status"] == "partial", ( + f"Expected partial status on per-project error, got {result['status']}" + ) + assert any("BADK" in e for e in result["errors"]), ( + "Error list must identify the failing project key" + ) + assert result["discoveredCount"] >= 2, "At least GOOD1 and GOOD2 should succeed" + + repo = DiscoveryRepository(session) + good1 = await repo.get_project(TENANT_ID, "GOOD1") + good2 = await repo.get_project(TENANT_ID, "GOOD2") + assert good1 is not None, "GOOD1 must be persisted despite BADK failure" + assert good2 is not None, "GOOD2 must be persisted despite BADK failure" + + +@pytest.mark.asyncio +async def test_discovery_disabled_skips_run(session: AsyncSession): + """If discovery_enabled=False, run_discovery exits early without calling Jira API.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + ProjectDiscoveryService, + ) + + await insert_tenant_config(session, mode="allowlist", discovery_enabled=False) + + jira_client = MagicMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[make_jira_project_payload("SHOULD_NOT_APPEAR")] + ) + + service = ProjectDiscoveryService(session=session, jira_client=jira_client) + result = await service.run_discovery(TENANT_ID) + + # run_discovery returns early with discoveredCount=0 when disabled + assert result["discoveredCount"] == 0 + jira_client.fetch_all_accessible_projects.assert_not_called() diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_guardrails_integration.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_guardrails_integration.py new file mode 100644 index 0000000..1ed3df7 --- /dev/null +++ b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_guardrails_integration.py @@ -0,0 +1,188 @@ +"""Integration test: Guardrails against a real PostgreSQL instance. + +Covers: +1. Project cap: 15 active projects with max_active_projects=10 → 5 lowest-ref get paused. +2. Auto-pause: 5 consecutive sync failures → project auto-paused + audit emitted. +3. Blocked immunity: blocked projects cannot be modified by guardrails. +""" + +from __future__ import annotations + +import pytest +from sqlalchemy.ext.asyncio import AsyncSession + +from tests.integration.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + insert_catalog_project, + insert_tenant_config, +) + + +@pytest.mark.asyncio +async def test_project_cap_pauses_5_lowest_ref_projects(session: AsyncSession): + """15 active projects (max=10) → 5 lowest pr_reference_count become paused.""" + from src.contexts.integrations.jira.discovery.guardrails import Guardrails + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config(session, mode="auto", max_active_projects=10) + + # Insert 15 active projects with distinct pr_reference_count values 0..14 + for i in range(15): + await insert_catalog_project( + session, + f"CAP{i:02d}", + status="active", + pr_reference_count=i, # CAP00..CAP04 have lowest counts (0-4) + ) + + guardrails = Guardrails(session, redis_client=None) + paused_count = await guardrails.enforce_project_cap(TENANT_ID) + + assert paused_count == 5, f"Expected 5 paused, got {paused_count}" + + repo = DiscoveryRepository(session) + items, _ = await repo.list_projects(TENANT_ID, status="paused", limit=100) + paused_keys = {p["project_key"] for p in items} + + # The 5 lowest-ref projects (CAP00–CAP04, refs 0–4) should be paused + expected_paused = {f"CAP{i:02d}" for i in range(5)} + assert paused_keys == expected_paused, ( + f"Wrong projects paused. Expected {expected_paused}, got {paused_keys}" + ) + + # Remaining 10 should still be active + items_active, _ = await repo.list_projects(TENANT_ID, status="active", limit=100) + assert len(items_active) == 10 + + +@pytest.mark.asyncio +async def test_project_cap_emits_audit_events(session: AsyncSession): + """Each paused project from cap enforcement must have a project_cap_enforced audit event.""" + from src.contexts.integrations.jira.discovery.guardrails import Guardrails + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config(session, mode="auto", max_active_projects=3) + + for i in range(5): + await insert_catalog_project( + session, f"AUDIT{i}", status="active", pr_reference_count=i + ) + + guardrails = Guardrails(session, redis_client=None) + await guardrails.enforce_project_cap(TENANT_ID) + + repo = DiscoveryRepository(session) + audit_items, _ = await repo.list_audit( + TENANT_ID, event_type="project_cap_enforced", limit=100 + ) + + assert len(audit_items) == 2, ( + f"Expected 2 cap-enforced audit events (5 active - 3 cap = 2 paused), " + f"got {len(audit_items)}" + ) + for item in audit_items: + assert item["actor"] == "system" + assert item["after_value"]["status"] == "paused" + + +@pytest.mark.asyncio +async def test_5_consecutive_failures_auto_pause_project(session: AsyncSession): + """5 consecutive sync failures trigger auto-pause with audit event.""" + from src.contexts.integrations.jira.discovery.guardrails import Guardrails + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config(session, mode="auto") + await insert_catalog_project(session, "FLAKY", status="active") + + guardrails = Guardrails(session, redis_client=None) + + # Record 4 failures — should NOT trigger auto-pause yet + for _ in range(4): + await guardrails.record_sync_outcome( + TENANT_ID, "FLAKY", success=False, error="Connection timeout" + ) + + repo = DiscoveryRepository(session) + project = await repo.get_project(TENANT_ID, "FLAKY") + assert project["status"] == "active", "Should not be paused after only 4 failures" + assert project["consecutive_failures"] == 4 + + # 5th failure → auto-pause + await guardrails.record_sync_outcome( + TENANT_ID, "FLAKY", success=False, error="Connection timeout" + ) + + project = await repo.get_project(TENANT_ID, "FLAKY") + assert project["status"] == "paused", "Should be paused after 5 consecutive failures" + assert project["consecutive_failures"] == 5 + + # Audit event must exist + audit_items, _ = await repo.list_audit( + TENANT_ID, event_type="project_auto_paused", project_key="FLAKY" + ) + assert len(audit_items) >= 1 + audit = audit_items[0] + assert audit["actor"] == "system" + assert audit["after_value"]["status"] == "paused" + + +@pytest.mark.asyncio +async def test_successful_sync_resets_failure_counter(session: AsyncSession): + """A successful sync outcome after failures resets consecutive_failures to 0.""" + from src.contexts.integrations.jira.discovery.guardrails import Guardrails + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config(session, mode="auto") + await insert_catalog_project(session, "PARTIAL", status="active") + + guardrails = Guardrails(session, redis_client=None) + + # Record 3 failures + for _ in range(3): + await guardrails.record_sync_outcome( + TENANT_ID, "PARTIAL", success=False, error="Timeout" + ) + + # Then a success + await guardrails.record_sync_outcome(TENANT_ID, "PARTIAL", success=True) + + repo = DiscoveryRepository(session) + project = await repo.get_project(TENANT_ID, "PARTIAL") + assert project["consecutive_failures"] == 0 + assert project["last_sync_status"] == "success" + assert project["status"] == "active", "Should remain active after recovery" + + +@pytest.mark.asyncio +async def test_blocked_project_is_immune_to_guardrails(session: AsyncSession): + """Guardrails must not modify a blocked project's status, even via cap enforcement.""" + from src.contexts.integrations.jira.discovery.guardrails import Guardrails + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + # max_active_projects=0 would normally pause everything — blocked must survive + await insert_tenant_config(session, mode="auto", max_active_projects=0) + + # Insert a blocked project + await insert_catalog_project(session, "IMMUTABLE", status="blocked") + + # Also insert an active project to confirm cap enforcement runs at all + await insert_catalog_project(session, "PAUSABLE", status="active", pr_reference_count=99) + + guardrails = Guardrails(session, redis_client=None) + await guardrails.enforce_project_cap(TENANT_ID) + + repo = DiscoveryRepository(session) + immutable = await repo.get_project(TENANT_ID, "IMMUTABLE") + assert immutable["status"] == "blocked", ( + "Blocked project status must not change during cap enforcement" + ) + + # record_sync_outcome on a blocked project must be a no-op + await guardrails.record_sync_outcome( + TENANT_ID, "IMMUTABLE", success=False, error="any error" + ) + immutable_after = await repo.get_project(TENANT_ID, "IMMUTABLE") + assert immutable_after["status"] == "blocked" + assert immutable_after["consecutive_failures"] == 0, ( + "consecutive_failures must not increment for a blocked project" + ) diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_mode_switch_reroutes_sync.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_mode_switch_reroutes_sync.py new file mode 100644 index 0000000..07d95cb --- /dev/null +++ b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_mode_switch_reroutes_sync.py @@ -0,0 +1,146 @@ +"""Integration test: mode switching reroutes which projects are included in sync. + +Scenario: +- 5 projects with distinct statuses: active, paused, blocked, discovered, archived. +- Iterate through all 4 operational modes. +- For each mode, assert resolve_active_projects returns the exact expected set. + +Mode semantics (from ADR-014 and ModeResolver implementation): + auto -> discovered + active (never blocked) + allowlist -> active only (never blocked) + blocklist -> discovered + active + paused (never blocked) + smart -> active always + discovered if pr_reference_count >= threshold +""" + +from __future__ import annotations + +import pytest +from sqlalchemy.ext.asyncio import AsyncSession + +from tests.integration.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + insert_catalog_project, + insert_tenant_config, +) + +# Project keys to be seeded with specific statuses +KEY_ACTIVE = "ACTIVE" +KEY_PAUSED = "PAUSED" +KEY_BLOCKED = "BLOCKED" +KEY_DISCOVERED = "DISC" +KEY_ARCHIVED = "ARCHIVE" + +# smart_min_pr_references = 3; DISC has 1 reference so it stays out of smart set. +# To include DISC in smart mode the reference count would need to meet threshold. +_SMART_THRESHOLD = 3 + + +@pytest.fixture(autouse=True) +async def seed_projects(session: AsyncSession): + """Seed catalog with 5 projects covering all status values.""" + await insert_tenant_config( + session, + mode="allowlist", # starting mode — each test overrides via upsert + smart_min_pr_references=_SMART_THRESHOLD, + ) + await insert_catalog_project(session, KEY_ACTIVE, status="active") + await insert_catalog_project(session, KEY_PAUSED, status="paused") + await insert_catalog_project(session, KEY_BLOCKED, status="blocked") + await insert_catalog_project(session, KEY_DISCOVERED, status="discovered", pr_reference_count=1) + await insert_catalog_project(session, KEY_ARCHIVED, status="archived") + + +async def _switch_mode(session: AsyncSession, mode: str) -> None: + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + repo = DiscoveryRepository(session) + await repo.upsert_tenant_config(TENANT_ID, mode=mode) + + +async def _resolve(session: AsyncSession) -> set[str]: + from src.contexts.integrations.jira.discovery.mode_resolver import ModeResolver + resolver = ModeResolver(session) + return set(await resolver.resolve_active_projects(TENANT_ID)) + + +@pytest.mark.asyncio +async def test_auto_mode_returns_discovered_and_active_not_blocked(session: AsyncSession): + """auto: discovered + active; paused/blocked/archived excluded.""" + await _switch_mode(session, "auto") + active = await _resolve(session) + + assert KEY_ACTIVE in active + assert KEY_DISCOVERED in active + assert KEY_BLOCKED not in active + assert KEY_PAUSED not in active + assert KEY_ARCHIVED not in active + + +@pytest.mark.asyncio +async def test_allowlist_mode_returns_only_active(session: AsyncSession): + """allowlist: only explicitly active projects; nothing else.""" + await _switch_mode(session, "allowlist") + active = await _resolve(session) + + assert active == {KEY_ACTIVE} + + +@pytest.mark.asyncio +async def test_blocklist_mode_returns_discovered_active_paused_not_blocked(session: AsyncSession): + """blocklist: discovered + active + paused; blocked/archived excluded.""" + await _switch_mode(session, "blocklist") + active = await _resolve(session) + + assert KEY_ACTIVE in active + assert KEY_DISCOVERED in active + assert KEY_PAUSED in active + assert KEY_BLOCKED not in active + assert KEY_ARCHIVED not in active + + +@pytest.mark.asyncio +async def test_smart_mode_returns_active_and_high_ref_discovered(session: AsyncSession): + """smart: active always included; discovered only if pr_reference_count >= threshold. + + DISC has 1 reference (< threshold 3) → excluded. + To verify the inclusion path: insert HIGHREF project with count >= threshold. + """ + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + # Add a discovered project with enough PR refs to meet smart threshold + repo = DiscoveryRepository(session) + await repo.upsert_project( + TENANT_ID, + "HIGHREF", + project_id="ID-HIGHREF", + name="High Reference Project", + project_type="software", + status="discovered", + pr_reference_count=5, # >= _SMART_THRESHOLD (3) + ) + + await _switch_mode(session, "smart") + active = await _resolve(session) + + # Active is always included + assert KEY_ACTIVE in active + # HIGHREF meets threshold → included + assert "HIGHREF" in active + # DISC has 1 ref → below threshold → excluded + assert KEY_DISCOVERED not in active + # Blocked is always excluded + assert KEY_BLOCKED not in active + # Archived is never included + assert KEY_ARCHIVED not in active + # Paused is not in smart mode allowed set + assert KEY_PAUSED not in active + + +@pytest.mark.asyncio +async def test_blocked_invariant_holds_across_all_modes(session: AsyncSession): + """The blocked project must never appear in resolve output regardless of mode.""" + for mode in ("auto", "allowlist", "blocklist", "smart"): + await _switch_mode(session, mode) + active = await _resolve(session) + assert KEY_BLOCKED not in active, ( + f"Blocked project appeared in resolve output for mode={mode}" + ) diff --git a/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_smart_mode_integration.py b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_smart_mode_integration.py new file mode 100644 index 0000000..493ed23 --- /dev/null +++ b/pulse/packages/pulse-data/tests/integration/contexts/integrations/jira/discovery/test_smart_mode_integration.py @@ -0,0 +1,190 @@ +"""Integration test: SmartPrioritizer scores from real eng_pull_requests rows. + +Setup: +- Insert fake eng_pull_requests with Jira keys in titles: + PROJ1: 5 PRs + PROJ2: 2 PRs (below threshold=3 → stays discovered) + PROJ3: 10 PRs +- Insert 3 matching catalog rows as status='discovered'. +- Set smart_min_pr_references=3. +- Call SmartPrioritizer.score_projects then auto_activate. + +Assertions: +- PROJ2 stays discovered (below threshold). +- PROJ1 and PROJ3 become active with activation_source='smart_pr_scan'. +- Audit rows with event_type='project_activated' and actor='smart_auto' exist for each. +""" + +from __future__ import annotations + +import uuid +from datetime import datetime, timezone + +import pytest +from sqlalchemy import text +from sqlalchemy.ext.asyncio import AsyncSession + +from tests.integration.contexts.integrations.jira.discovery.conftest import ( + TENANT_ID, + insert_catalog_project, + insert_tenant_config, +) + +_SMART_THRESHOLD = 3 + + +def _utcnow() -> datetime: + return datetime.now(timezone.utc) + + +async def _insert_prs_for_project( + session: AsyncSession, + project_key: str, + count: int, + tenant_id: uuid.UUID = TENANT_ID, +) -> None: + """Insert `count` eng_pull_requests rows whose titles reference `project_key`. + + Uses raw SQL to avoid coupling to ORM layer which may not be migrated + identically in the test container. + """ + for i in range(count): + external_id = f"{project_key}-pr-{i}" + title = f"feat({project_key}-{i + 1}): implement feature {i}" + await session.execute( + text( + """ + INSERT INTO eng_pull_requests ( + id, tenant_id, external_id, source, repo, title, author, + state, is_merged, additions, deletions, files_changed, + commits_count, created_at, updated_at + ) VALUES ( + gen_random_uuid(), :tenant_id, :external_id, 'github', + 'org/backend', :title, 'testbot', 'merged', true, + 10, 2, 1, 1, now(), now() + ) + ON CONFLICT (tenant_id, external_id) DO NOTHING + """ + ), + { + "tenant_id": str(tenant_id), + "external_id": external_id, + "title": title, + }, + ) + + +@pytest.mark.asyncio +async def test_smart_prioritizer_scores_and_activates_above_threshold(session: AsyncSession): + """PROJ1 (5 refs) and PROJ3 (10 refs) activate; PROJ2 (2 refs) stays discovered.""" + from src.contexts.integrations.jira.discovery.smart_prioritizer import SmartPrioritizer + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config( + session, + mode="smart", + smart_min_pr_references=_SMART_THRESHOLD, + smart_pr_scan_days=365, # wide window ensures all inserted PRs are counted + ) + + # Insert catalog rows as 'discovered' + for key in ("PROJ1", "PROJ2", "PROJ3"): + await insert_catalog_project(session, key, status="discovered", pr_reference_count=0) + + # Insert PR rows referencing each project key in their titles + await _insert_prs_for_project(session, "PROJ1", count=5) + await _insert_prs_for_project(session, "PROJ2", count=2) + await _insert_prs_for_project(session, "PROJ3", count=10) + + prioritizer = SmartPrioritizer(session) + scores = await prioritizer.score_projects(TENANT_ID) + + # Scores must be non-zero for all three + assert scores.get("PROJ1", 0) == 5 + assert scores.get("PROJ2", 0) == 2 + assert scores.get("PROJ3", 0) == 10 + + activated_count = await prioritizer.auto_activate(TENANT_ID) + assert activated_count == 2, "Expected PROJ1 and PROJ3 to be activated" + + repo = DiscoveryRepository(session) + + proj1 = await repo.get_project(TENANT_ID, "PROJ1") + assert proj1 is not None + assert proj1["status"] == "active" + assert proj1["activation_source"] == "smart_pr_scan" + + proj2 = await repo.get_project(TENANT_ID, "PROJ2") + assert proj2 is not None + assert proj2["status"] == "discovered", "PROJ2 is below threshold — must stay discovered" + + proj3 = await repo.get_project(TENANT_ID, "PROJ3") + assert proj3 is not None + assert proj3["status"] == "active" + assert proj3["activation_source"] == "smart_pr_scan" + + +@pytest.mark.asyncio +async def test_audit_rows_exist_for_smart_activated_projects(session: AsyncSession): + """Audit log must contain project_activated rows with actor='smart_auto' for each activation.""" + from src.contexts.integrations.jira.discovery.smart_prioritizer import SmartPrioritizer + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config( + session, + mode="smart", + smart_min_pr_references=_SMART_THRESHOLD, + smart_pr_scan_days=365, + ) + + for key in ("PROJ1", "PROJ3"): + await insert_catalog_project(session, key, status="discovered", pr_reference_count=0) + + await _insert_prs_for_project(session, "PROJ1", count=5) + await _insert_prs_for_project(session, "PROJ3", count=10) + + prioritizer = SmartPrioritizer(session) + await prioritizer.score_projects(TENANT_ID) + await prioritizer.auto_activate(TENANT_ID) + + repo = DiscoveryRepository(session) + audit_items, total = await repo.list_audit( + TENANT_ID, event_type="project_activated", limit=100 + ) + + activated_keys = {item["project_key"] for item in audit_items if item["actor"] == "smart_auto"} + assert "PROJ1" in activated_keys, "Audit missing project_activated for PROJ1" + assert "PROJ3" in activated_keys, "Audit missing project_activated for PROJ3" + + +@pytest.mark.asyncio +async def test_smart_does_not_activate_below_threshold(session: AsyncSession): + """If all discovered projects are below threshold, none activate.""" + from src.contexts.integrations.jira.discovery.smart_prioritizer import SmartPrioritizer + from src.contexts.integrations.jira.discovery.repository import DiscoveryRepository + + await insert_tenant_config( + session, + mode="smart", + smart_min_pr_references=10, # high threshold + smart_pr_scan_days=365, + ) + + for key in ("LOW1", "LOW2"): + await insert_catalog_project(session, key, status="discovered", pr_reference_count=0) + + # Only 2 PRs each — below threshold of 10 + await _insert_prs_for_project(session, "LOW1", count=2) + await _insert_prs_for_project(session, "LOW2", count=2) + + prioritizer = SmartPrioritizer(session) + await prioritizer.score_projects(TENANT_ID) + activated = await prioritizer.auto_activate(TENANT_ID) + + assert activated == 0 + + repo = DiscoveryRepository(session) + low1 = await repo.get_project(TENANT_ID, "LOW1") + low2 = await repo.get_project(TENANT_ID, "LOW2") + assert low1["status"] == "discovered" + assert low2["status"] == "discovered" diff --git a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_project_discovery_service.py b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_project_discovery_service.py index b1195fd..49b9482 100644 --- a/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_project_discovery_service.py +++ b/pulse/packages/pulse-data/tests/unit/contexts/integrations/jira/discovery/test_project_discovery_service.py @@ -210,6 +210,165 @@ async def test_discovery_disabled_short_circuits(self): jira_client.fetch_all_accessible_projects.assert_not_called() +class TestPIISensitiveDetection: + """Tests for PII-sensitive project name detection and gating.""" + + @pytest.mark.asyncio + async def test_pii_project_stays_discovered_in_auto_mode(self): + """A project named 'HR Operations' in auto mode stays discovered with PII flag.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[_make_jira_project("HROPS", name="HR Operations")] + ) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="auto") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([], 0) + with patch.object(service._repo, "upsert_project", new_callable=AsyncMock) as mock_upsert: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock) as mock_audit: + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + # Project stays discovered, not auto-activated + assert result["discoveredCount"] == 1 + assert result["activatedCount"] == 0 + + # Verify upsert was called with discovered status and PII metadata + mock_upsert.assert_called_once() + call_kwargs = mock_upsert.call_args.kwargs + assert call_kwargs["status"] == "discovered" + assert call_kwargs["metadata"]["pii_flag"] is True + assert call_kwargs["metadata"]["pii_reason"] == "HR" + + # Verify two PII audit events were emitted (flagged + gated) + audit_event_types = [c.kwargs.get("event_type") for c in mock_audit.call_args_list] + assert "project_pii_flagged" in audit_event_types + assert "project_pii_gated" in audit_event_types + + @pytest.mark.asyncio + async def test_non_pii_project_activated_in_auto_mode(self): + """A project named 'Mobile App' in auto mode becomes active normally.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[_make_jira_project("MOB", name="Mobile App")] + ) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="auto") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([], 0) + with patch.object(service._repo, "upsert_project", new_callable=AsyncMock) as mock_upsert: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock) as mock_audit: + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["discoveredCount"] == 1 + assert result["activatedCount"] == 1 + mock_upsert.assert_called_once() + assert mock_upsert.call_args.kwargs["status"] == "active" + assert mock_upsert.call_args.kwargs["activation_source"] == "auto_mode" + + # No PII audit events + audit_event_types = [c.kwargs.get("event_type") for c in mock_audit.call_args_list] + assert "project_pii_flagged" not in audit_event_types + assert "project_pii_gated" not in audit_event_types + + @pytest.mark.asyncio + async def test_pii_project_in_allowlist_mode_flagged_only(self): + """In allowlist mode, PII project stays discovered with flag but no gated event.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[_make_jira_project("LEG", name="Legal Department")] + ) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="allowlist") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([], 0) + with patch.object(service._repo, "upsert_project", new_callable=AsyncMock) as mock_upsert: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock) as mock_audit: + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["discoveredCount"] == 1 + assert result["activatedCount"] == 0 + assert mock_upsert.call_args.kwargs["status"] == "discovered" + assert mock_upsert.call_args.kwargs["metadata"]["pii_flag"] is True + + # Only flagged, not gated (allowlist doesn't auto-activate anyway) + audit_event_types = [c.kwargs.get("event_type") for c in mock_audit.call_args_list] + assert "project_pii_flagged" in audit_event_types + assert "project_pii_gated" not in audit_event_types + + @pytest.mark.asyncio + async def test_pii_regex_matches_portuguese_terms(self): + """Regex matches Portuguese terms like Juridico, Folha, Financas.""" + from src.contexts.integrations.jira.discovery.project_discovery_service import ( + PII_SENSITIVE_PATTERNS, + ) + + assert PII_SENSITIVE_PATTERNS.search("Departamento Juridico") is not None + assert PII_SENSITIVE_PATTERNS.search("Departamento Jur\u00eddico") is not None + assert PII_SENSITIVE_PATTERNS.search("Folha de Pagamento") is not None + assert PII_SENSITIVE_PATTERNS.search("Controle Financeiro") is not None + assert PII_SENSITIVE_PATTERNS.search("Finan\u00e7as Corporativas") is not None + assert PII_SENSITIVE_PATTERNS.search("Documento Confidencial") is not None + assert PII_SENSITIVE_PATTERNS.search("Acesso Restrito") is not None + assert PII_SENSITIVE_PATTERNS.search("RH - Recursos Humanos") is not None + assert PII_SENSITIVE_PATTERNS.search("RRHH Latam") is not None + # Non-sensitive names should not match + assert PII_SENSITIVE_PATTERNS.search("Mobile App") is None + assert PII_SENSITIVE_PATTERNS.search("Backend Services") is None + assert PII_SENSITIVE_PATTERNS.search("Platform Core") is None + + @pytest.mark.asyncio + async def test_pii_project_stays_discovered_in_smart_mode(self): + """PII-flagged project in smart mode also stays discovered and emits gated event.""" + session = AsyncMock() + jira_client = AsyncMock() + jira_client.fetch_all_accessible_projects = AsyncMock( + return_value=[_make_jira_project("FIN", name="Finance Reports")] + ) + + service = ProjectDiscoveryService(session, jira_client=jira_client) + + with patch.object(service._repo, "get_tenant_config", new_callable=AsyncMock) as mock_cfg: + mock_cfg.return_value = make_config(mode="smart") + with patch.object(service._repo, "list_projects", new_callable=AsyncMock) as mock_list: + mock_list.return_value = ([], 0) + with patch.object(service._repo, "upsert_project", new_callable=AsyncMock) as mock_upsert: + with patch.object(service._repo, "upsert_tenant_config", new_callable=AsyncMock): + with patch.object(service._repo, "append_audit", new_callable=AsyncMock) as mock_audit: + with patch.object(service._prioritizer, "score_projects", new_callable=AsyncMock) as mock_score: + mock_score.return_value = {} + with patch.object(service._prioritizer, "auto_activate", new_callable=AsyncMock) as mock_activate: + mock_activate.return_value = 0 + with patch.object(service._guardrails, "enforce_project_cap", new_callable=AsyncMock): + result = await service.run_discovery(TENANT_ID) + + assert result["discoveredCount"] == 1 + assert result["activatedCount"] == 0 + assert mock_upsert.call_args.kwargs["status"] == "discovered" + assert mock_upsert.call_args.kwargs["metadata"]["pii_flag"] is True + + audit_event_types = [c.kwargs.get("event_type") for c in mock_audit.call_args_list] + assert "project_pii_flagged" in audit_event_types + assert "project_pii_gated" in audit_event_types + + class TestRunDiscoverySmartMode: @pytest.mark.asyncio async def test_smart_mode_calls_prioritizer(self): diff --git a/pulse/packages/pulse-shared/src/types/jira-admin.ts b/pulse/packages/pulse-shared/src/types/jira-admin.ts index 7602264..e841a56 100644 --- a/pulse/packages/pulse-shared/src/types/jira-admin.ts +++ b/pulse/packages/pulse-shared/src/types/jira-admin.ts @@ -43,7 +43,9 @@ export type JiraAuditEventType = | 'project_blocked' | 'project_resumed' | 'project_auto_paused' // triggered by Guardrails (N consecutive failures) - | 'project_cap_enforced'; // Guardrails demoted due to max_active_projects + | 'project_cap_enforced' // Guardrails demoted due to max_active_projects + | 'project_pii_flagged' // PII-sensitive name detected on discovery + | 'project_pii_gated'; // auto/smart activation blocked due to PII flag // --------------------------------------------------------------------------- // Configuration diff --git a/pulse/packages/pulse-web/src/lib/api/jira-admin.ts b/pulse/packages/pulse-web/src/lib/api/jira-admin.ts index c24077d..93893ca 100644 --- a/pulse/packages/pulse-web/src/lib/api/jira-admin.ts +++ b/pulse/packages/pulse-web/src/lib/api/jira-admin.ts @@ -42,8 +42,8 @@ function buildCatalogParams(query: JiraProjectCatalogQuery): Record { expect(onChange).not.toHaveBeenCalled(); }); + it('shows PII warning banner when auto mode is selected', () => { + render(); + const banner = screen.getByTestId('pii-mode-warning'); + expect(banner).toBeInTheDocument(); + expect(banner.textContent).toContain('discovered'); + }); + + it('shows PII warning banner when smart mode is selected', () => { + render(); + const banner = screen.getByTestId('pii-mode-warning'); + expect(banner).toBeInTheDocument(); + }); + + it('does not show PII warning banner for allowlist mode', () => { + render(); + expect(screen.queryByTestId('pii-mode-warning')).not.toBeInTheDocument(); + }); + + it('does not show PII warning banner for blocklist mode', () => { + render(); + expect(screen.queryByTestId('pii-mode-warning')).not.toBeInTheDocument(); + }); + it('renders all modes disabled when disabled prop is true', () => { render(); const fieldset = screen.getByRole('group'); diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-catalog-table.test.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-catalog-table.test.tsx index d5626a9..8790f8c 100644 --- a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-catalog-table.test.tsx +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/__tests__/project-catalog-table.test.tsx @@ -150,6 +150,73 @@ describe('ProjectCatalogTable', () => { expect(screen.getAllByText('Descoberto').length).toBeGreaterThan(0); }); + it('renders PII warning icon for projects with pii_flag in metadata', () => { + const responseWithPii: JiraProjectCatalogListResponse = { + ...MOCK_RESPONSE, + items: [ + ...MOCK_RESPONSE.items, + { + id: '3', + tenantId: 't1', + projectKey: 'HROPS', + projectId: '10003', + name: 'HR Operations', + projectType: 'software', + leadAccountId: null, + status: 'discovered', + activationSource: null, + issueCount: 0, + prReferenceCount: 0, + firstSeenAt: '2026-04-13T00:00:00Z', + activatedAt: null, + lastSyncAt: null, + lastSyncStatus: null, + consecutiveFailures: 0, + lastError: null, + metadata: { pii_flag: true, pii_reason: 'HR' }, + createdAt: '2026-04-13T00:00:00Z', + updatedAt: '2026-04-13T00:00:00Z', + }, + ], + total: 3, + counts: { discovered: 2, active: 1, paused: 0, blocked: 0, archived: 0 }, + }; + + mockUseJiraProjectsQuery.mockReturnValue({ + data: responseWithPii, + isLoading: false, + isError: false, + error: null, + }); + + render(, { wrapper: createWrapper() }); + + // The PII warning icon should have the correct aria-label + const warningIcons = screen.getAllByLabelText( + 'Nome sensivel detectado - revisao manual necessaria', + ); + expect(warningIcons.length).toBeGreaterThan(0); + + // Non-PII projects should NOT have the warning + // PROJ1 and PROJ2 have empty metadata, only HROPS has pii_flag + }); + + it('does not render PII warning icon for projects without pii_flag', () => { + mockUseJiraProjectsQuery.mockReturnValue({ + data: MOCK_RESPONSE, + isLoading: false, + isError: false, + error: null, + }); + + render(, { wrapper: createWrapper() }); + + const warningIcons = screen.queryAllByLabelText( + 'Nome sensivel detectado - revisao manual necessaria', + ); + expect(warningIcons).toHaveLength(0); + }); + it('renders filter chips with counts', () => { mockUseJiraProjectsQuery.mockReturnValue({ data: MOCK_RESPONSE, diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx index 186e5de..d945d99 100644 --- a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/mode-selector.tsx @@ -1,4 +1,4 @@ -import { Zap, Shield, ShieldOff, Brain } from 'lucide-react'; +import { Zap, Shield, ShieldOff, Brain, AlertTriangle } from 'lucide-react'; import type { JiraDiscoveryMode } from '@pulse/shared'; interface ModeOption { @@ -47,10 +47,13 @@ interface ModeSelectorProps { } export function ModeSelector({ value, onChange, disabled }: ModeSelectorProps) { + const showPiiBanner = value === 'auto' || value === 'smart'; + return ( -
- Modo de descoberta Jira - {MODE_OPTIONS.map((option) => { +
+
+ Modo de descoberta Jira + {MODE_OPTIONS.map((option) => { const isSelected = value === option.mode; const Icon = option.icon; @@ -97,6 +100,23 @@ export function ModeSelector({ value, onChange, disabled }: ModeSelectorProps) { ); })} -
+
+ + {showPiiBanner && ( +
+
+ )} +
); } diff --git a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-catalog-table.tsx b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-catalog-table.tsx index e773c9c..244697c 100644 --- a/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-catalog-table.tsx +++ b/pulse/packages/pulse-web/src/routes/_dashboard/settings/integrations/_components/project-catalog-table.tsx @@ -1,5 +1,5 @@ import { useState, useCallback } from 'react'; -import { Search, ChevronLeft, ChevronRight, X, ArrowUpDown } from 'lucide-react'; +import { Search, ChevronLeft, ChevronRight, X, ArrowUpDown, ShieldAlert } from 'lucide-react'; import type { JiraProjectStatus, JiraProjectCatalogQuery, @@ -563,7 +563,20 @@ function ProjectRow({ /> - {project.projectKey} + + {project.projectKey} + {project.metadata?.pii_flag && ( + + + )} + {project.name ?? '-'} @@ -616,8 +629,14 @@ function ProjectCard({ className="rounded" aria-label={`Selecionar ${project.projectKey}`} /> - + {project.projectKey} + {project.metadata?.pii_flag && ( + + )}
diff --git a/pulse/performance/k6/jira-discovery-load.js b/pulse/performance/k6/jira-discovery-load.js new file mode 100644 index 0000000..e65de0b --- /dev/null +++ b/pulse/performance/k6/jira-discovery-load.js @@ -0,0 +1,304 @@ +/** + * k6 load test: Jira Dynamic Discovery API — ADR-014 + * + * Three scenarios: + * + * A) "tenant-with-500-projects" + * - Paginated GET /api/v1/admin/integrations/jira/projects (50 rows/page) + * - 60 seconds of continuous load from 20 VUs + * - Threshold: p95 < 400ms, error rate < 1% + * + * B) "rate-budget-guardrail" + * - POST /api/v1/admin/integrations/jira/guardrails/rate-check with varying + * issues_to_fetch counts; bucket capacity is 100 per hour. + * - 200 concurrent VUs for 30 seconds + * - Asserts server stays healthy (no 5xx); ~100 should succeed (bucket cap) + * + * C) "discovery-trigger-spam" + * - POST /api/v1/admin/integrations/jira/discover from 10 VUs × 5 iterations + * = 50 requests within a 10s window + * - Server must return 200/202/429 (no 5xx); demonstrates single-flight or + * rate-limiting behaviour + * + * Output: + * Results printed to stdout. + * JSON summary written to /tmp/k6-jira-discovery-summary.json + * + * Usage: + * k6 run pulse/performance/k6/jira-discovery-load.js + * k6 run --env BASE_URL=http://localhost:8000 pulse/performance/k6/jira-discovery-load.js + * + * Prerequisites: + * - API server running and accessible at BASE_URL + * - Test tenant seeded with 500 catalog rows (use setup() or SQL script below) + * + * SQL seed (run once before scenario A): + * INSERT INTO jira_project_catalog (id, tenant_id, project_key, project_id, name, + * project_type, status, consecutive_failures, metadata) + * SELECT + * gen_random_uuid(), + * '00000000-0000-0000-0000-000000000001'::uuid, + * 'LOAD' || generate_series::text, + * 'ID-LOAD' || generate_series::text, + * 'Load Test Project ' || generate_series::text, + * 'software', + * CASE WHEN (generate_series % 4) = 0 THEN 'active' + * WHEN (generate_series % 4) = 1 THEN 'discovered' + * WHEN (generate_series % 4) = 2 THEN 'paused' + * ELSE 'blocked' END, + * 0, + * '{}'::jsonb + * FROM generate_series(1, 500) + * ON CONFLICT DO NOTHING; + */ + +import http from 'k6/http'; +import { check, sleep, group } from 'k6'; +import { Counter, Rate, Trend } from 'k6/metrics'; +import { textSummary } from 'https://jslib.k6.io/k6-summary/0.0.2/index.js'; + +// --------------------------------------------------------------------------- +// Configuration +// --------------------------------------------------------------------------- + +const BASE_URL = __ENV.BASE_URL || 'http://localhost:8000'; +const TENANT_ID = '00000000-0000-0000-0000-000000000001'; +const API_BASE = `${BASE_URL}/api/v1/admin/integrations/jira`; + +const DEFAULT_HEADERS = { + 'Content-Type': 'application/json', + 'X-Tenant-ID': TENANT_ID, + // In test environments the dev auth middleware accepts this header to skip JWT + 'X-Test-Tenant-ID': TENANT_ID, +}; + +// --------------------------------------------------------------------------- +// Custom metrics +// --------------------------------------------------------------------------- + +const scenarioAErrors = new Rate('scenario_a_error_rate'); +const scenarioADuration = new Trend('scenario_a_p95_ms', true); +const scenarioBAllowed = new Counter('scenario_b_allowed_requests'); +const scenarioBDenied = new Counter('scenario_b_denied_requests'); +const scenarioCServerErrors = new Counter('scenario_c_5xx_count'); +const triggerResponseCodes = new Counter('discovery_trigger_response_codes'); + +// --------------------------------------------------------------------------- +// k6 scenario configuration +// --------------------------------------------------------------------------- + +export const options = { + scenarios: { + // ---------------------------------------------------------------- + // Scenario A: 500-project paginated listing + // ---------------------------------------------------------------- + tenant_with_500_projects: { + executor: 'constant-vus', + vus: 20, + duration: '60s', + exec: 'scenarioA', + tags: { scenario: 'A' }, + }, + + // ---------------------------------------------------------------- + // Scenario B: Rate budget guardrail stress + // ---------------------------------------------------------------- + rate_budget_guardrail: { + executor: 'constant-vus', + vus: 200, + duration: '30s', + exec: 'scenarioB', + startTime: '65s', // starts after scenario A completes + tags: { scenario: 'B' }, + }, + + // ---------------------------------------------------------------- + // Scenario C: Discovery trigger spam + // ---------------------------------------------------------------- + discovery_trigger_spam: { + executor: 'per-vu-iterations', + vus: 10, + iterations: 5, // 10 × 5 = 50 requests + maxDuration: '20s', + exec: 'scenarioC', + startTime: '100s', // starts after scenario B completes + tags: { scenario: 'C' }, + }, + }, + + thresholds: { + // Scenario A thresholds (applied globally; scenario-specific tags used for + // filtering in the JSON summary). + http_req_duration: ['p(95)<400'], + http_req_failed: ['rate<0.01'], + + // Scenario-specific custom metrics + scenario_a_error_rate: ['rate<0.01'], + scenario_a_p95_ms: ['p(95)<400'], + + // Scenario C: zero 5xx responses + scenario_c_5xx_count: ['count<1'], + }, + + // Output options + summaryTrendStats: ['avg', 'min', 'med', 'max', 'p(90)', 'p(95)', 'p(99)'], +}; + +// --------------------------------------------------------------------------- +// Setup: verify the API is reachable before running +// --------------------------------------------------------------------------- + +export function setup() { + const res = http.get(`${API_BASE}/config`, { headers: DEFAULT_HEADERS }); + if (res.status >= 500) { + console.error( + `[setup] API not reachable or returned ${res.status}. ` + + 'Ensure the server is running and the test tenant is seeded.' + ); + } + return { baseUrl: BASE_URL }; +} + +// --------------------------------------------------------------------------- +// Scenario A — Paginated catalog listing for tenant with 500 projects +// --------------------------------------------------------------------------- + +export function scenarioA() { + group('Scenario A: paginated catalog (500 projects)', () => { + const pageSize = 50; + // Randomise offset so all pages are exercised under load + const maxOffset = 450; // 500 - 50 = last page start + const offset = Math.floor(Math.random() * (maxOffset / pageSize)) * pageSize; + + const url = `${API_BASE}/projects?limit=${pageSize}&offset=${offset}&sort_by=project_key&sort_dir=asc`; + const res = http.get(url, { headers: DEFAULT_HEADERS, tags: { name: 'catalog_list' } }); + + const ok = check(res, { + 'A: status is 200': (r) => r.status === 200, + 'A: response has items array': (r) => { + try { + const body = JSON.parse(r.body as string); + return Array.isArray(body.items); + } catch { + return false; + } + }, + 'A: response time < 400ms': (r) => r.timings.duration < 400, + }); + + scenarioAErrors.add(!ok); + scenarioADuration.add(res.timings.duration); + + // No sleep — maintain continuous load for accurate p95 + }); +} + +// --------------------------------------------------------------------------- +// Scenario B — Rate budget guardrail: token-bucket cap at max_issues_per_hour=100 +// --------------------------------------------------------------------------- + +export function scenarioB() { + group('Scenario B: rate budget guardrail (200 concurrent VUs)', () => { + // Each VU requests 1 issue token. With max=100 and 200 VUs hitting at once, + // ~100 should succeed and ~100 should be denied (rate limited). + const payload = JSON.stringify({ issues_to_fetch: 1 }); + const res = http.post( + `${API_BASE}/guardrails/rate-check`, + payload, + { + headers: DEFAULT_HEADERS, + tags: { name: 'rate_check' }, + } + ); + + check(res, { + 'B: server stays healthy (no 5xx)': (r) => r.status < 500, + }); + + if (res.status === 200) { + // Token granted + const body = (() => { + try { return JSON.parse(res.body as string); } catch { return {}; } + })(); + if (body.allowed === true) { + scenarioBAllowed.add(1); + } else { + scenarioBDenied.add(1); + } + } else if (res.status === 429) { + // Rate limited — also counts as denied + scenarioBDenied.add(1); + } + + sleep(0.01); // minimal pause to avoid overwhelming Redis + }); +} + +// --------------------------------------------------------------------------- +// Scenario C — Discovery trigger spam: 50 POST /discover in 10s +// --------------------------------------------------------------------------- + +export function scenarioC() { + group('Scenario C: discovery trigger spam (10 VUs × 5 iter)', () => { + const res = http.post( + `${API_BASE}/discover`, + JSON.stringify({}), + { + headers: DEFAULT_HEADERS, + tags: { name: 'discovery_trigger' }, + } + ); + + // Record response code for summary + triggerResponseCodes.add(1, { status: String(res.status) }); + + const ok = check(res, { + 'C: no 5xx on trigger spam': (r) => r.status < 500, + 'C: response is 200, 202, or 429': (r) => + r.status === 200 || r.status === 202 || r.status === 429, + }); + + if (res.status >= 500) { + scenarioCServerErrors.add(1); + } + + // No sleep — test single-flight / rate-limiting robustness + }); +} + +// --------------------------------------------------------------------------- +// Summary output — printed to stdout + JSON file +// --------------------------------------------------------------------------- + +export function handleSummary(data: Parameters[0]) { + const summary = textSummary(data, { indent: ' ', enableColors: true }); + + console.log('\n' + summary); + console.log('\n--- ADR-014 Load Test Interpretation ---'); + console.log( + 'Scenario A (p95 catalog listing):', + data.metrics['scenario_a_p95_ms']?.values?.['p(95)'] ?? 'N/A', + 'ms (threshold: <400ms)' + ); + console.log( + 'Scenario A error rate:', + ((data.metrics['scenario_a_error_rate']?.values?.rate ?? 0) * 100).toFixed(2) + '%', + '(threshold: <1%)' + ); + console.log( + 'Scenario B allowed:', + data.metrics['scenario_b_allowed_requests']?.values?.count ?? 0, + '/ denied:', + data.metrics['scenario_b_denied_requests']?.values?.count ?? 0 + ); + console.log( + 'Scenario C server errors (5xx):', + data.metrics['scenario_c_5xx_count']?.values?.count ?? 0, + '(threshold: 0)' + ); + + return { + stdout: summary, + '/tmp/k6-jira-discovery-summary.json': JSON.stringify(data, null, 2), + }; +} diff --git a/pulse/playwright.config.ts b/pulse/playwright.config.ts new file mode 100644 index 0000000..8c6a226 --- /dev/null +++ b/pulse/playwright.config.ts @@ -0,0 +1,68 @@ +/** + * Playwright configuration for PULSE E2E tests. + * + * Targets the Vite dev server (localhost:5173) by default. + * Set BASE_URL env var to override (e.g., for staging runs). + * + * Run: + * cd pulse + * npx playwright test # all specs + * npx playwright test e2e/jira-admin.spec.ts # specific spec + * npx playwright test --headed # with browser UI + * npx playwright test --reporter=html # HTML report + */ + +import { defineConfig, devices } from '@playwright/test'; + +export default defineConfig({ + testDir: './e2e', + fullyParallel: true, + forbidOnly: !!process.env.CI, + retries: process.env.CI ? 2 : 0, + workers: process.env.CI ? 2 : undefined, + reporter: [ + ['list'], + ['json', { outputFile: 'playwright-report/results.json' }], + ['html', { open: 'never', outputFolder: 'playwright-report' }], + ], + + use: { + baseURL: process.env.BASE_URL ?? 'http://localhost:5173', + trace: 'on-first-retry', + screenshot: 'only-on-failure', + video: 'retain-on-failure', + // Send tenant header for dev-mode auth bypass + extraHTTPHeaders: { + 'X-Test-Tenant-ID': '00000000-0000-0000-0000-000000000001', + }, + // Prefer explicit waits — never rely on networkidle + actionTimeout: 10_000, + navigationTimeout: 15_000, + }, + + projects: [ + { + name: 'chromium', + use: { ...devices['Desktop Chrome'] }, + }, + { + name: 'firefox', + use: { ...devices['Desktop Firefox'] }, + }, + { + name: 'mobile-chrome', + use: { ...devices['Pixel 5'] }, + }, + ], + + // Start the Vite dev server automatically when running locally + webServer: process.env.CI + ? undefined + : { + command: 'npm run dev', + cwd: './packages/pulse-web', + url: 'http://localhost:5173', + reuseExistingServer: true, + timeout: 30_000, + }, +}); From fd33499f4a67881d20f8ca7b057aea3ed5560671 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Tue, 14 Apr 2026 17:21:40 -0300 Subject: [PATCH 17/64] feat(jenkins): config-driven job loading, repo name resolution + ingestion SDD MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Load Jenkins jobs from connections.yaml and resolve job→repo names via jenkins-job-mapping.json so deployments land with correct GitHub repo names instead of raw Jenkins job+build IDs. Adds volume mounts for config files in sync-worker, pyyaml dependency, and a comprehensive ingestion spec document (SDD) covering all 10 solved problems plus future SaaS automation proposal. Co-Authored-By: Claude Opus 4.6 --- pulse/docker-compose.yml | 2 + pulse/docs/ingestion-spec.md | 877 ++++++++++++++++++ pulse/packages/pulse-data/requirements.txt | 1 + pulse/packages/pulse-data/src/config.py | 101 ++ .../src/connectors/jenkins_connector.py | 9 + .../contexts/engineering_data/normalizer.py | 11 +- .../pulse-data/src/workers/devlake_sync.py | 12 +- 7 files changed, 1007 insertions(+), 6 deletions(-) create mode 100644 pulse/docs/ingestion-spec.md diff --git a/pulse/docker-compose.yml b/pulse/docker-compose.yml index 34e25da..a01df8f 100644 --- a/pulse/docker-compose.yml +++ b/pulse/docker-compose.yml @@ -102,6 +102,8 @@ services: JENKINS_API_TOKEN: ${JENKINS_API_TOKEN:-} volumes: - ./packages/pulse-data/src:/app/src + - ./config/connections.yaml:/app/config/connections.yaml:ro + - ./config/jenkins-job-mapping.json:/app/config/jenkins-job-mapping.json:ro depends_on: postgres: condition: service_healthy diff --git a/pulse/docs/ingestion-spec.md b/pulse/docs/ingestion-spec.md new file mode 100644 index 0000000..749122b --- /dev/null +++ b/pulse/docs/ingestion-spec.md @@ -0,0 +1,877 @@ +# PULSE Data Ingestion Specification + +## SDD — Spec-Driven Development Document + +**Version:** 1.0 +**Date:** 2026-04-14 +**Status:** Living Document +**Audience:** Engineering, Product, Future AI Ingestion Agent + +--- + +## 1. Executive Summary + +This document captures every adjustment, problem, and solution encountered during PULSE's data ingestion buildout — from initial DevLake-based pipeline to current proprietary connectors with dynamic discovery. It serves as the **single source of truth** for understanding ingestion behavior and as the **specification baseline** for building a fully autonomous SaaS ingestion engine. + +### Current State (2026-04-14) + +| Metric | Value | +|--------|-------| +| Jira projects active | 69 | +| Issues ingested | 373,872 | +| PRs ingested | 63,647 | +| PR-Issue link rate | 21.9% (13,966 PRs) | +| Deployments (Jenkins) | 83 | +| Sprints | 215 | +| GitHub repos discovered | 754 (active), 1,429 (total) | +| Ingestion cycle time | ~3h (full backfill), ~7min (incremental) | + +--- + +## 2. Data Source Context + +### 2.1 Source Systems + +| Source | System | Auth | API | Volume | +|--------|--------|------|-----|--------| +| **Git** | GitHub Enterprise (cloud) | PAT (GraphQL + REST) | GraphQL v4 primary, REST v3 fallback | 1,429 repos, 63K+ PRs | +| **Issues** | Jira Cloud | Basic Auth (email + API token) | REST API v3 + Agile API v1 | 69 projects, 373K+ issues | +| **CI/CD** | Jenkins On-Premise | Basic Auth (username + API token) | JSON API `/api/json` | ~1,400 jobs, 83 deployments mapped | + +### 2.2 Environment Characteristics (Webmotors) + +| Characteristic | Detail | Impact on Ingestion | +|---------------|--------|-------------------| +| Org size | ~750 active repos, 69 Jira projects | High volume, need batch processing | +| Jira project scale | 197K issues in single project (BG) | Single JQL query can return massive payloads | +| Custom fields | Sprint = `customfield_10007`, Story Points = `customfield_18524` | Must discover dynamically per tenant | +| Jenkins patterns | No corporate standard; each repo has unique pipeline config | Cannot use single regex for deployment detection | +| Language mix | Portuguese status names ("Em Desenvolvimento", "Concluido") | Status normalizer needs i18n mapping | +| Jira reserved words | Project key "DESC" is SQL reserved word | Must quote project keys in JQL | +| Archived projects | Some keys referenced in PRs (e.g., "RC") don't exist in Jira API | Graceful handling of orphan references | + +--- + +## 3. Ingestion Architecture + +### 3.1 Pipeline Flow + +``` +┌─────────────┐ ┌──────────────┐ ┌─────────────┐ ┌───────────┐ +│ Sources │────>│ Connectors │────>│ Normalizer │────>│ PULSE DB │ +│ GitHub/Jira/ │ │ (fetch + │ │ (transform) │ │ (upsert) │ +│ Jenkins │ │ paginate) │ │ │ │ │ +└─────────────┘ └──────────────┘ └─────────────┘ └─────┬─────┘ + │ + ┌─────▼─────┐ + │ Kafka │ + │ (events) │ + └───────────┘ +``` + +### 3.2 Sync Orchestration + +```python +# devlake_sync.py — DataSyncWorker.sync() +async def sync(self): + 1. _sync_issues() # Jira → normalize → upsert → Kafka + 2. _sync_pull_requests() # GitHub → normalize → link to issues → upsert → Kafka + 3. _sync_deployments() # Jenkins → normalize → upsert → Kafka + 4. _sync_sprints() # Jira Agile → normalize → upsert → Kafka +``` + +**Ordering matters:** Issues must sync before PRs so the `issue_key_map` is populated for PR-Issue linking. + +### 3.3 Key Design Decisions + +| Decision | Rationale | ADR | +|----------|-----------|-----| +| Replaced DevLake with proprietary connectors | 99.3% issue data loss in DevLake PostgreSQL layer | ADR-005 | +| GraphQL primary for GitHub, REST fallback | 40x faster PR fetch (50 PRs + reviews + stats in 1 call) | Commit `60fe576` | +| Per-repo batch upsert (not all-at-end) | Memory efficiency + real-time progress visibility | Commit `7f9f339` | +| Global watermark per entity (not per-project) | Simpler model, but requires reset for project scope expansion | Migration 002 | +| JSONB for `linked_issue_ids` and `status_transitions` | Flexible schema, supports variable-length arrays | Migration 001 | +| Row-Level Security on all tables | Multi-tenant isolation at DB level | Migration 001 | +| Kafka event backbone | Decouples ingestion from metric calculation | ADR-004 | + +--- + +## 4. Problems, Solutions, and Results + +### Problem 1: DevLake Data Loss (99.3% Issues Lost) + +**Context:** Initial architecture used Apache DevLake as ingestion engine (ADR-003). DevLake collected data from GitHub and Jira into its own PostgreSQL domain tables, and a Sync Worker ETL'd from DevLake to PULSE DB. + +**Symptoms:** +- DevLake Tool Layer: 32,621 issues +- DevLake Domain Layer: 243 issues (99.3% loss) +- Root cause: DevLake's PostgreSQL support is "second-class citizen" (designed for MySQL) +- Jira API v2 deprecation (HTTP 410) — only fixed in DevLake beta, no stable release + +**Solution:** Full proprietary connector replacement (ADR-005, Option B). +- Built `JiraConnector`, `GitHubConnector`, `JenkinsConnector` implementing `BaseConnector` interface +- Reused 100% of `normalizer.py` (539 lines), 80% of sync orchestration +- Added 321 unit tests for new connectors + +**Result:** +- Issues: 243 -> 373,872 (1,538x improvement) +- PRs: 5,314 -> 63,647 (12x, due to full org scan vs 4 repos) +- Zero data loss in ingestion pipeline + +**SaaS Implication:** DevLake is eliminated. Custom connectors are the path forward. Each new source (GitLab, Azure DevOps, Linear, etc.) needs a connector implementing `BaseConnector`. + +--- + +### Problem 2: Jira Custom Field Discovery + +**Context:** Jira custom field IDs vary per tenant. Sprint field might be `customfield_10007` in one org and `customfield_10020` in another. Story points similarly vary. + +**Symptoms:** +- Hardcoded field IDs worked for Webmotors but would break for any other customer +- Sprint data returned empty when wrong field ID was used + +**Solution:** Dynamic field discovery via `/rest/api/3/field` endpoint. + +```python +# jira_connector.py — _discover_custom_fields() +async def _discover_custom_fields(self): + """Query Jira field metadata and match by name patterns.""" + fields = await self._get("/rest/api/3/field") + for field in fields: + name_lower = field["name"].lower() + if "sprint" in name_lower and field.get("custom"): + self._sprint_field_id = field["id"] + if "story point" in name_lower and field.get("custom"): + self._story_points_field_id = field["id"] + # Fallback to common defaults if discovery fails + FALLBACK_SPRINT_FIELDS = ["customfield_10020", "customfield_10016"] + FALLBACK_STORY_POINTS_FIELDS = ["customfield_10016", "customfield_10028"] +``` + +**Result:** Sprint and story points discovered correctly for Webmotors (`customfield_10007` and `customfield_18524`). Fallback chain ensures graceful degradation. + +**SaaS Implication:** This is already SaaS-ready. Each tenant's first sync auto-discovers their field IDs. No manual configuration needed. + +--- + +### Problem 3: Jira Project Scope — Static Config vs Dynamic Reality + +**Context:** Initial setup required manually listing Jira project keys in `JIRA_PROJECTS` env var. Only 8 projects were configured, but the org had 69+ projects. + +**Symptoms:** +- Only 29,389 issues from 8 projects (out of 373K+ total) +- PR-Issue link rate stuck at 5.27% because 60 projects' issues weren't indexed +- New projects or team reorganizations required manual env var updates + +**Solution:** Dynamic Jira Project Discovery (ADR-014, 4-phase implementation). + +**Phase 1 — Discovery Engine:** +- `ProjectDiscoveryService`: fetches all Jira projects via API, diffs against catalog +- `ModeResolver`: 4 modes (auto, allowlist, blocklist, smart) +- `Guardrails`: project caps, rate limits, auto-pause on failures +- `SmartPrioritizer`: scores projects by PR reference count + +**Phase 2 — Admin API + UI:** +- NestJS controller: CRUD for catalog, activate/pause/block actions +- React page: project list with search, sort, bulk actions +- Audit trail: append-only log of all state changes + +**Phase 3 — Security Hardening:** +- PII gating: regex detects sensitive project names (HR, legal, finance) +- Rate limiting: per-tenant hourly issue quota +- Set-based allowlists: O(1) lookup instead of array iteration + +**Phase 4 — Rollout:** +- Feature flag: `DYNAMIC_JIRA_DISCOVERY_ENABLED` gates sync-worker +- `ModeResolver` queries DB fresh each cycle (no stale cache) +- APScheduler runs discovery on configurable cron + +**Result:** +- 69 projects discovered and activated (9 original + 60 new) +- Full backfill: 373,872 issues ingested in ~3h +- System adapts to new projects without human intervention (in auto/smart mode) + +**SaaS Implication:** Core discovery is SaaS-ready. Smart mode + PII gating enables zero-config onboarding. Need to extend pattern to GitHub (org/repo discovery) and Jenkins (job discovery). + +--- + +### Problem 4: PR-Issue Linkage — Low Match Rate + +**Context:** PRs reference Jira issues in titles/branches (e.g., "SECOM-1441 fix login flow"), but the linker could only match against issues already in the DB. + +**Symptoms:** +- 5.27% link rate (3,351 of 63,516 PRs) +- Regex matched 24.41% of PR titles (15,503 PRs across 68 project keys) +- Gap: 19% of PRs referenced projects whose issues weren't ingested + +**Root Cause Analysis:** +1. `build_issue_key_map()` loads `(issue_key, external_id)` from `eng_issues` at sync start +2. Map only contained 8 projects' keys = 29,389 entries +3. PRs referencing SECOM, ESTQ, CKP, OKM, etc. found no match in map + +**Solution:** Multi-step approach: +1. Activated all 60 discovered projects (bulk API calls) +2. Reset issues watermark to `2020-01-01` to force full historical backfill +3. Restarted sync-worker (triggers immediate sync cycle) +4. After 373K issues landed, ran `relink_prs_to_issues.sql` to backfill links on existing PRs + +**Result:** +- Link rate: 5.27% -> **21.9%** (13,966 PRs linked) +- Per-project rates: SDI/PUSO/DSP/FID/CRMC = **100%**, most projects >96% +- Orphan keys identified: RC (1,348 refs, project not in Jira — possibly archived) + +**Remaining Gap Analysis (21.9% vs theoretical 24.4%):** +- False positive regex matches: HOTFIX-123, RELEASE-1, BUGFIX-42, lib names (LODASH-4) +- Orphan project "RC" accounts for 1,348 refs (2.1%) +- Typos in PR titles: ESQT instead of ESTQ, SECON instead of SECOM, PUS0 (zero) instead of PUSO + +**SaaS Implication:** Linking works well when issue scope matches PR scope. Key insight: **issue ingestion scope determines link quality**. Smart mode's PR-reference scoring naturally prioritizes projects that matter for linking. Future: fuzzy matching for typos, alias tables for renamed projects. + +--- + +### Problem 5: Global Watermark vs Per-Project Scope + +**Context:** `pipeline_watermarks` stores one `last_synced_at` per entity type (issues, pull_requests, etc.), shared across all projects. + +**Symptoms:** +- After activating 60 new projects, their historical issues would be skipped +- Watermark at `2026-04-14` meant JQL `updated >= "2026-04-14"` excluded old issues from new projects +- Required manual watermark reset to `2020-01-01` for backfill + +**Solution (immediate):** Manual watermark reset + upsert idempotency guarantees safety. + +```sql +UPDATE pipeline_watermarks +SET last_synced_at = '2020-01-01 00:00:00+00' +WHERE entity_type = 'issues'; +``` + +**Impact:** Re-fetched 29K existing issues (harmless — upsert ON CONFLICT updates). Added ~3h to cycle for 373K total. + +**SaaS Implication:** Global watermark is a **fundamental limitation** for SaaS. When a new project is activated, a full backfill is needed. Options for future: +1. **Per-project watermarks** (most correct, higher storage cost) +2. **Dual-pass sync**: incremental for existing + backfill for newly activated (recommended) +3. **Hybrid**: global watermark + "needs_backfill" flag per project in catalog + +--- + +### Problem 6: Status Normalization — Portuguese and Custom Workflows + +**Context:** Jira workflows vary wildly across orgs and even across projects within the same org. Webmotors uses Portuguese status names. + +**Symptoms:** +- "Em Desenvolvimento" not mapping to `in_progress` +- "Concluido" (without accent) not mapping to `done` +- Custom statuses like "Aguardando Deploy", "Em Code Review" unrecognized + +**Solution:** Extensive DEFAULT_STATUS_MAPPING with 60+ entries covering English, Portuguese, and common custom workflows. + +```python +DEFAULT_STATUS_MAPPING = { + # English + "open": "todo", "to do": "todo", "backlog": "todo", + "in progress": "in_progress", "in development": "in_progress", + "done": "done", "closed": "done", "resolved": "done", + # Portuguese + "em desenvolvimento": "in_progress", "em progresso": "in_progress", + "concluído": "done", "concluido": "done", "finalizado": "done", + "a fazer": "todo", "pendente": "todo", + # Custom patterns + "code review": "in_progress", "em code review": "in_progress", + "aguardando deploy": "in_progress", "ready for qa": "in_progress", + "em teste": "in_progress", "testing": "in_progress", + ... +} +``` + +**Result:** 99%+ status normalization accuracy for Webmotors workflows. + +**SaaS Implication:** Static mapping won't scale. Need: +1. **Learning-based mapper**: observe workflow transitions to infer categories +2. **Per-tenant overrides**: allow admin to map custom statuses +3. **AI fallback**: LLM classifies unknown statuses into todo/in_progress/done + +--- + +### Problem 7: Jenkins — No Standard Pipeline Pattern + +**Context:** DORA Deployment Frequency and Change Failure Rate require identifying production deployments. Jenkins has no standard way to mark a build as "production deployment." + +**Symptoms:** +- 1,400+ Jenkins jobs, only ~75 map to actual production deployments +- Each team uses different naming patterns: `deploy-prod`, `release-main`, `CD-production` +- Job folder structures vary: `folder/subfolder/job` vs flat jobs + +**Solution (partial — in progress):** +- `connections.yaml` supports per-job `deploymentPattern` and `productionPattern` regex +- 17 job mappings manually configured for Webmotors +- Jenkins connector pre-compiles patterns for efficient matching + +**Result:** 83 deployments mapped (75 Jenkins + 8 GitHub Actions). Coverage is low relative to actual deployment volume. + +**SaaS Implication:** This is the **hardest problem** for SaaS automation. No deterministic solution exists across all Jenkins setups. Requires AI-assisted job classification (see Section 6). + +--- + +### Problem 8: GitHub GraphQL Rate Limits and Fallbacks + +**Context:** GitHub GraphQL API has a separate rate limit (5,000 points/hour) and some queries fail for specific repos. + +**Symptoms:** +- Certain repos fail GraphQL with schema/permission errors +- Rate limit exhaustion during large org scans (754 repos) + +**Solution:** Hybrid GraphQL + REST with automatic fallback. + +```python +# github_connector.py +async def _fetch_repo_prs_graphql(self, repo_name, since): + try: + # Single GraphQL query: PR + reviews + commits + files + ... + except GraphQLError: + logger.warning("GraphQL failed for %s — retrying with REST", repo_name) + return await self._fetch_repo_prs_rest(repo_name, since) +``` + +**Result:** +- 40x faster than pure REST (50 PRs/page with all enrichments in 1 call) +- Automatic fallback for ~3-5 problematic repos per scan +- Parallel repo processing (5 concurrent) maximizes throughput + +**SaaS Implication:** Already SaaS-ready. Rate limit handling needs per-tenant token management (each customer provides their own PAT/GitHub App). + +--- + +### Problem 9: Ingestion Progress Visibility + +**Context:** Long-running ingestion (2-3 hours for full backfill) needs real-time progress tracking. + +**Symptoms:** +- Users couldn't tell if ingestion was running, stuck, or failed +- Single progress bar didn't convey sub-steps (fetch vs changelog vs normalize vs upsert) + +**Solution (implemented):** +- `pipeline_ingestion_progress` table with per-entity tracking +- Fields: `total_sources`, `sources_done`, `records_ingested`, `current_source`, `started_at` +- API endpoint: `GET /data/v1/pipeline/ingestion/progress` +- Pipeline Monitor dashboard with polling + +**Known Gap (user feedback):** +> "Dashboard should show each sub-step separately: fetch issues -> fetch changelogs -> normalize -> upsert. With count done/total, rate, and ETA per step. Like the CLI monitoring we're doing." + +**SaaS Implication:** Critical for self-service. Users need to understand what's happening during first onboarding sync. Needs per-step granularity. + +--- + +### Problem 10: Dockerfile Build Context for Shared Packages + +**Context:** `pulse-api` imports from `@pulse/shared` (TypeScript shared types). Docker build context was scoped to `./packages/pulse-api`, making `../pulse-shared` inaccessible. + +**Symptoms:** +- `Cannot find module '@pulse/shared/types/jira-admin'` during Docker build +- After fixing context, dist output path changed: `dist/main.js` -> `dist/pulse-api/src/main.js` + +**Solution:** +1. Changed docker-compose build context to `./packages` (wider scope) +2. Rewrote Dockerfile with `/workspace/` layout copying both packages +3. Changed imports to barrel: `@pulse/shared` instead of deep paths +4. Updated CMD to match new dist structure + +**SaaS Implication:** Monorepo build patterns are a one-time setup. No impact on per-tenant ingestion. + +--- + +## 5. Entity Relationship Map + +### 5.1 Cross-Source Entity Linking + +``` +GitHub PR ──────────────────────────────────── Jira Issue + title: "SECOM-1441 fix login" issue_key: "SECOM-1441" + linked_issue_ids: ["jira:...:1:792543"] external_id: "jira:...:1:792543" + │ │ + │ regex [A-Z][A-Z0-9]+-\d+ in │ sprint_id + │ title + head_ref + base_ref │ + │ ▼ + │ Jira Sprint + │ external_id: "jira:JiraSprint:1:6619" + │ board_id → project_key + ▼ +Jenkins Deployment + repo: matched via connections.yaml + sha: nullable (Jenkins doesn't always expose) + environment: inferred from job pattern +``` + +### 5.2 Linking Mechanisms + +| Link | Method | Accuracy | Deterministic? | +|------|--------|----------|---------------| +| PR -> Issue | Regex in title/branch | 21.9% overall, 96-100% per active project | Yes (pattern match) | +| Issue -> Sprint | Jira API field | 100% (source data) | Yes | +| PR -> Deployment | Commit SHA matching | Low (Jenkins SHA often missing) | Partial | +| Deployment -> Repo | `connections.yaml` job-to-repo mapping | Manual config | No | + +### 5.3 ID Format Convention + +| Entity | external_id format | Example | +|--------|-------------------|---------| +| Jira Issue | `jira:JiraIssue:{conn_id}:{internal_id}` | `jira:JiraIssue:1:792543` | +| Jira Sprint | `jira:JiraSprint:{conn_id}:{internal_id}` | `jira:JiraSprint:1:6619` | +| GitHub PR | `github:{owner}/{repo}/{number}` | `github:webmotors-private/portal-turbo-api/1234` | +| Jenkins Deploy | `jenkins:{job_full_name}#{build_number}` | `jenkins:folder/deploy-prod#456` | + +--- + +## 6. Future SaaS Ingestion Engine — Specification + +### 6.1 Design Principles + +1. **Zero-config onboarding**: User provides credentials, everything else is discovered +2. **Adaptive pipeline**: Parameters adjust automatically based on source environment +3. **AI-assisted gap resolution**: Non-deterministic problems delegated to embedded AI +4. **Observable by default**: Every step has progress, counts, ETA +5. **Idempotent always**: Any step can be re-run safely + +### 6.2 Onboarding Flow + +``` +User provides: System discovers: System configures: +┌──────────────┐ ┌─────────────────────┐ ┌──────────────────────┐ +│ Jira URL │──────>│ Projects (69) │────>│ Active project list │ +│ Jira token │ │ Custom fields │ │ Status mapping │ +│ │ │ Workflows/statuses │ │ Sprint field IDs │ +│ GitHub org │──────>│ Repos (754) │────>│ Active repo list │ +│ GitHub token │ │ Team structure │ │ Branch conventions │ +│ │ │ PR naming patterns │ │ PR-Issue link config │ +│ Jenkins URL │──────>│ Jobs (1400) │────>│ Deployment patterns │ +│ Jenkins token│ │ Folder structure │ │ Production markers │ +└──────────────┘ │ Build naming │ │ Job-to-repo mapping │ + └─────────────────────┘ └──────────────────────┘ +``` + +### 6.3 Deterministic Components (Implement with Rules) + +These problems have well-defined solutions and should be implemented as deterministic code: + +#### 6.3.1 Source Discovery + +| Source | Discovery Method | Implementation | +|--------|-----------------|----------------| +| **Jira projects** | `GET /rest/api/3/project` | Already implemented (ProjectDiscoveryService) | +| **Jira custom fields** | `GET /rest/api/3/field` + name matching | Already implemented (_discover_custom_fields) | +| **GitHub repos** | GraphQL `organization.repositories` | Straightforward pagination query | +| **GitHub active repos** | Filter by `pushedAt > N months` | Already implemented (filter by activity) | +| **Jenkins jobs** | `GET /api/json?tree=jobs[name,url,fullName]` recursive | Already implemented (JenkinsConnector) | + +#### 6.3.2 Incremental Sync with Scope Expansion + +**Problem:** Global watermark skips historical data from newly discovered sources. + +**Solution:** Per-source watermark + backfill queue. + +``` +Table: pipeline_watermarks_v2 +- tenant_id UUID +- entity_type VARCHAR -- 'issues', 'pull_requests', etc. +- source_key VARCHAR -- 'jira:SECOM', 'github:portal-turbo-api', etc. +- last_synced_at TIMESTAMPTZ +- needs_backfill BOOLEAN DEFAULT true +- backfill_started_at TIMESTAMPTZ +- backfill_completed_at TIMESTAMPTZ +``` + +**Sync logic:** +```python +for source in active_sources: + watermark = get_watermark(tenant, entity, source.key) + if watermark.needs_backfill: + # Full historical fetch (since=None or since=org_creation_date) + data = connector.fetch(since=None, source=source) + watermark.needs_backfill = False + watermark.backfill_completed_at = now() + else: + # Incremental (only changes since last sync) + data = connector.fetch(since=watermark.last_synced_at, source=source) + upsert(data) + watermark.last_synced_at = now() +``` + +**Deterministic:** Yes. The logic is pure state machine (needs_backfill flag). + +#### 6.3.3 PR-Issue Linking (Deterministic Core) + +**Current regex:** `[A-Z][A-Z0-9]+-\d+` (matches SECOM-1441, BG-12345, etc.) + +**Enhancement — multi-strategy linking pipeline:** + +```python +LINK_STRATEGIES = [ + # Priority 1: Exact key match in title (highest confidence) + TitleKeyMatch(pattern=r"[A-Z][A-Z0-9]+-\d+"), + + # Priority 2: Branch name convention (feature/SECOM-1441-description) + BranchKeyMatch(pattern=r"[A-Z][A-Z0-9]+-\d+"), + + # Priority 3: GitHub-native issue links (if PR body contains Jira URL) + BodyURLMatch(pattern=r"atlassian\.net/browse/([A-Z][A-Z0-9]+-\d+)"), + + # Priority 4: Commit message references + CommitMessageMatch(pattern=r"[A-Z][A-Z0-9]+-\d+"), + + # Priority 5: Jira dev panel links (if available via Jira API) + JiraDevPanelMatch(), # Requires Jira development info API +] +``` + +**Deterministic:** Yes (regex + URL parsing). Each strategy adds confidence score. + +#### 6.3.4 Status Normalization (Deterministic Core + AI Fallback) + +**Deterministic mapping (covers ~95% of statuses):** + +```python +# Category patterns (regex-based, language-independent) +STATUS_PATTERNS = { + "todo": [ + r"^(to\s*do|backlog|new|open|created|a\s*fazer|pendente|aberto|novo)$", + r"^(ready\s*for\s*dev|pronto|selected|triaged|refinado)$", + ], + "in_progress": [ + r"(in\s*progress|em\s*(desenvolvimento|progresso|andamento))", + r"(review|teste|testing|qa|validat|homolog|deploy|aguardando)", + r"(development|coding|implementing|analyzing|analise)", + ], + "done": [ + r"^(done|closed|resolved|complete|finish|conclu|finaliz|entregue)$", + r"(released|deployed|shipped|publicado|em\s*produ)", + ], +} +``` + +**AI fallback for unrecognized statuses:** see Section 6.4.2. + +#### 6.3.5 Rate Limit Management + +| Source | Limit | Strategy | +|--------|-------|----------| +| GitHub GraphQL | 5,000 pts/hr | Token bucket, exponential backoff, per-tenant quota | +| GitHub REST | 5,000 req/hr | Same | +| Jira Cloud | ~100 req/min (varies by plan) | Adaptive backoff on 429, respect Retry-After header | +| Jenkins | No formal limit | Concurrent connection cap (default 5) | + +**Implementation:** Already have backoff. Need to add: +- Per-tenant token accounting +- Cross-worker coordination (Redis-based token bucket) +- Graceful degradation (reduce batch size on rate limit, don't fail) + +### 6.4 Non-Deterministic Components (Implement with AI) + +These problems have ambiguous inputs and require contextual understanding. An embedded AI agent ("Ingestion Intelligence Agent") handles them. + +#### 6.4.1 Jenkins Job Classification + +**Problem:** Given 1,400 Jenkins jobs, which ones are production deployments? + +**Why non-deterministic:** Job naming varies wildly: +- `deploy-prod-api`, `release/main`, `CD-production`, `publish-live` +- `QA-deploy`, `staging-release`, `integration-test-deploy` +- Folder structures: `PF/deploy-api`, `SECOM/pipelines/cd-main` + +**AI Agent Approach:** + +```yaml +Agent: JenkinsJobClassifier +Input: + - Full list of Jenkins jobs (name, fullName, folder path, color/status) + - Sample build logs (last 5 builds per job — NOT executed, READ from API) + - Job configuration XML (parameters, triggers, downstream jobs) + +Classification Task: + For each job, determine: + 1. Is this a deployment job? (yes/no/uncertain) + 2. Target environment: production|staging|dev|test|unknown + 3. Confidence score: 0.0 - 1.0 + 4. Associated repository (inferred from job name/config) + +Signals to consider: + - Job name contains "deploy", "release", "cd", "publish" + - Job triggers on main/master branch + - Job has parameters like ENVIRONMENT=production + - Downstream of build jobs (pipeline pattern) + - Build frequency matches deployment cadence + - Job folder structure indicates team/project + +Output: + - Deterministic mappings for confidence > 0.8 + - Suggested mappings for 0.5-0.8 (human review) + - Skipped for < 0.5 +``` + +**Human-in-the-loop:** For confidence 0.5-0.8, present suggestions in Admin UI with "Approve/Reject" buttons. Learn from corrections. + +#### 6.4.2 Unknown Status Classification + +**Problem:** New Jira workflow statuses not in the mapping dictionary. + +**AI Agent Approach:** + +```yaml +Agent: StatusClassifier +Input: + - Unknown status name (e.g., "Aguardando Aprovação do PO") + - Workflow context: what statuses come before and after it + - Issue type (bug, story, task) + - Language detection + +Classification: + Map to: todo | in_progress | done + +Reasoning: + - "Aguardando" (waiting) + workflow position (between dev and done) + - Transition pattern: "Em Desenvolvimento" → THIS → "Em Teste" + - Conclusion: in_progress (waiting state between active work stages) + +Output: + - Classification + confidence + - If confidence > 0.9: auto-add to tenant's mapping + - If confidence < 0.9: queue for admin review +``` + +#### 6.4.3 Repository-to-Project Mapping + +**Problem:** GitHub repos don't inherently know which Jira project they belong to. Current linking relies on PR titles containing issue keys. + +**AI Agent Approach:** + +```yaml +Agent: RepoProjectMapper +Input: + - Repository name, description, topics/tags + - PR title patterns (aggregate: which Jira keys appear most) + - Team members (GitHub collaborators vs Jira project members) + - README content (project references) + +Mapping Task: + For each repo, determine: + 1. Primary Jira project(s) associated + 2. Confidence score + 3. Evidence (which signals matched) + +Signals: + - PR title regex: 80% of PRs in repo X reference project SECOM + - Team overlap: 5 of 7 GitHub collaborators are Jira SECOM members + - Repo name: "secom-api" → likely SECOM project + - README mentions: "Part of the SECOM platform" +``` + +**Deterministic component:** The PR-title statistical approach is already implemented in `SmartPrioritizer`. AI adds repo name/description/team analysis. + +#### 6.4.4 Changelog Gap Detection + +**Problem:** Some Jira issues have incomplete changelogs (missing transitions). This produces wrong cycle time calculations. + +**AI Agent Approach:** + +```yaml +Agent: ChangelogAuditor +Input: + - Issue with current status "Done" but no transitions in changelog + - Issue with status_transitions showing jump from "To Do" → "Done" (no intermediate) + - Issue created date vs first transition date gap > 30 days + +Detection Rules (deterministic): + - Flag: issue.normalized_status == "done" AND len(status_transitions) == 0 + - Flag: time between consecutive transitions > 90 days + - Flag: final status doesn't match last transition's target + +AI Resolution: + - Estimate missing transitions based on similar issues in same project + - Mark affected metrics as "low confidence" in calculations + - Surface data quality alerts in Pipeline Monitor +``` + +#### 6.4.5 Project Alias and Rename Detection + +**Problem:** PRs reference "RC-1234" but no Jira project "RC" exists. Could be renamed, archived, or an abbreviation. + +**AI Agent Approach:** + +```yaml +Agent: ProjectAliasResolver +Input: + - Orphan project keys from PR titles (e.g., RC: 1,348 refs) + - Active Jira project catalog + - Historical project data (if available from Jira admin API) + +Resolution strategies: + 1. Fuzzy match: RC → closest Jira project? (no strong match) + 2. Temporal analysis: when did "RC-" PRs stop? Did a new key start? + 3. Team overlap: who authored RC-* PRs? Which projects do they work on now? + 4. Ask admin: "We found 1,348 PRs referencing 'RC' but no matching project. + Is this an old name for an existing project?" + +Output: + - Alias table: {"RC": "CRW"} (if confirmed) + - Archived marker: {"RC": "archived_project"} (if no match) +``` + +### 6.5 Ingestion Intelligence Agent — Architecture + +``` +┌─────────────────────────────────────────────────────┐ +│ Ingestion Intelligence Agent │ +│ │ +│ ┌───────────┐ ┌────────────┐ ┌─────────────────┐ │ +│ │ Jenkins │ │ Status │ │ Repo-Project │ │ +│ │ Job │ │ Classifier│ │ Mapper │ │ +│ │ Classifier│ │ │ │ │ │ +│ └─────┬─────┘ └─────┬──────┘ └───────┬─────────┘ │ +│ │ │ │ │ +│ ┌─────▼──────────────▼──────────────────▼─────────┐ │ +│ │ Decision Engine │ │ +│ │ - High confidence (>0.9): auto-apply │ │ +│ │ - Medium (0.5-0.9): queue for admin review │ │ +│ │ - Low (<0.5): skip, log for analysis │ │ +│ └─────────────────────┬─────────────────────────────┘ │ +│ │ │ +│ ┌─────────────────────▼─────────────────────────────┐ │ +│ │ Learning Loop │ │ +│ │ - Admin approvals feed back into rules │ │ +│ │ - Accumulate tenant-specific patterns │ │ +│ │ - Graduate AI decisions to deterministic rules │ │ +│ │ when pattern is confirmed N times │ │ +│ └─────────────────────────────────────────────────────┘ │ +└─────────────────────────────────────────────────────────┘ +``` + +### 6.6 Observable Ingestion — Per-Step Progress + +Based on user feedback, the Pipeline Monitor should expose: + +```yaml +IngestionPipeline: + source: jira + steps: + - name: "Discover Projects" + status: completed + count: "69 projects found" + duration: "3s" + + - name: "Fetch Issues" + status: completed + total: 373669 + done: 373669 + rate: "2,240/min" + duration: "2h 04min" + + - name: "Fetch Changelogs" + status: completed + total: 6845 + done: 6845 + cached: 366784 + rate: "170/min" + duration: "40min" + + - name: "Normalize & Upsert" + status: completed + records: 373872 + duration: "8min" + + - name: "Link PRs to Issues" + status: completed + linked: 13966 + total_prs: 63647 + link_rate: "21.9%" + duration: "5s" + + source: github + steps: + - name: "Discover Repos" + status: completed + count: "754 active repos" + + - name: "Fetch PRs (GraphQL)" + status: running + total_repos: 754 + repos_done: 232 + prs_fetched: 98 + rate: "~120 repos/min" + eta: "~4 min" + + - name: "Normalize & Upsert" + status: pending + + source: jenkins + steps: + - name: "Fetch Jobs" + status: pending + - name: "Fetch Builds" + status: pending + - name: "Classify Deployments" + status: pending +``` + +### 6.7 Implementation Roadmap + +| Phase | Component | Deterministic? | Effort | Priority | +|-------|-----------|---------------|--------|----------| +| **S1** | Per-source watermarks (6.3.2) | Yes | 3 days | P0 | +| **S1** | Multi-strategy PR linking (6.3.3) | Yes | 2 days | P0 | +| **S1** | Per-step progress tracking (6.6) | Yes | 3 days | P0 | +| **S2** | GitHub org/repo discovery | Yes | 2 days | P1 | +| **S2** | Jenkins job discovery | Yes | 1 day | P1 | +| **S2** | Status regex patterns (6.3.4) | Yes | 1 day | P1 | +| **S2** | Rate limit coordination (6.3.5) | Yes | 2 days | P1 | +| **S3** | Jenkins AI classifier (6.4.1) | No (AI) | 5 days | P1 | +| **S3** | Status AI classifier (6.4.2) | No (AI) | 3 days | P2 | +| **S3** | Repo-Project AI mapper (6.4.3) | No (AI) | 3 days | P2 | +| **S4** | Changelog auditor (6.4.4) | Hybrid | 3 days | P2 | +| **S4** | Project alias resolver (6.4.5) | No (AI) | 2 days | P3 | +| **S4** | Learning loop / feedback system | No (AI) | 5 days | P3 | + +--- + +## 7. Appendix + +### A. Key File References + +| File | Purpose | +|------|---------| +| `packages/pulse-data/src/connectors/base.py` | BaseConnector interface | +| `packages/pulse-data/src/connectors/jira_connector.py` | Jira REST v3 + Agile API | +| `packages/pulse-data/src/connectors/github_connector.py` | GraphQL + REST hybrid | +| `packages/pulse-data/src/connectors/jenkins_connector.py` | Jenkins JSON API | +| `packages/pulse-data/src/connectors/aggregator.py` | Multi-source router | +| `packages/pulse-data/src/contexts/engineering_data/normalizer.py` | 5 normalize functions + linker | +| `packages/pulse-data/src/workers/devlake_sync.py` | Sync orchestrator | +| `packages/pulse-data/src/contexts/integrations/jira/discovery/` | Dynamic discovery system | +| `packages/pulse-data/scripts/relink_prs_to_issues.sql` | Backfill PR-Issue links | +| `packages/pulse-data/alembic/versions/` | 6 migrations (001-006) | + +### B. Configuration Files + +| File | Purpose | +|------|---------| +| `config/connections.yaml` | Source credentials + Jenkins job mappings | +| `.env` | Feature flags, API tokens, Redis URL | +| `docker-compose.yml` | Service definitions + env var injection | + +### C. Commit History (Ingestion-Related) + +| Commit | Description | +|--------|-------------| +| `c9b5cf6` | Replace DevLake with direct source connectors (ADR-005) | +| `54d7002` | Harden connectors (Jira POST search, board filtering) | +| `221db7c` | Add 321 unit tests for connectors | +| `60fe576` | Migrate PR fetch to GraphQL (40x faster) | +| `7f9f339` | Batch persistence for PR ingestion | +| `6b3183c` | Real-time ingestion progress dashboard | +| `36d9157` | Emit per-repo starting signal for UI | +| `0723df9` | Discover sprint/story_points custom fields | +| `1f9ac52` | Add issue_key column for PR linking | +| `c243a87` | Foundation for dynamic project discovery (ADR-014) | +| `efaeba7` | Discovery service, mode resolver, guardrails | +| `bea8b13` | Admin API + React UI for discovery | +| `c5350dc` | Security hardening, PII gating, Phase 4 rollout | diff --git a/pulse/packages/pulse-data/requirements.txt b/pulse/packages/pulse-data/requirements.txt index b06f6da..07355f7 100644 --- a/pulse/packages/pulse-data/requirements.txt +++ b/pulse/packages/pulse-data/requirements.txt @@ -12,6 +12,7 @@ httpx>=0.28.0,<1.0.0 mangum>=0.19.0,<1.0.0 redis>=5.2.0,<6.0.0 apscheduler>=3.10.0,<4.0.0 +pyyaml>=6.0.0,<7.0.0 # Dev dependencies pytest>=8.3.0,<9.0.0 diff --git a/pulse/packages/pulse-data/src/config.py b/pulse/packages/pulse-data/src/config.py index 3fdc8ff..e850acc 100644 --- a/pulse/packages/pulse-data/src/config.py +++ b/pulse/packages/pulse-data/src/config.py @@ -1,7 +1,92 @@ """Application configuration via Pydantic Settings. Fails fast at startup on missing/invalid values.""" +from __future__ import annotations + +import logging +from pathlib import Path +from typing import Any + +import yaml from pydantic_settings import BaseSettings, SettingsConfigDict +logger = logging.getLogger(__name__) + +# --------------------------------------------------------------------------- +# connections.yaml loader +# --------------------------------------------------------------------------- + +def _connections_paths() -> list[Path]: + """Build list of candidate paths for connections.yaml.""" + paths = [Path("/app/config/connections.yaml")] # Docker mount (always checked) + # Local dev: config.py is at pulse/packages/pulse-data/src/config.py + # connections.yaml is at pulse/config/connections.yaml (3 levels up from src/) + try: + local = Path(__file__).resolve().parents[3] / "config" / "connections.yaml" + paths.insert(0, local) + except IndexError: + pass # Inside Docker, path is shallow — skip local dev path + return paths + + +def _load_connections_yaml() -> dict[str, Any]: + """Load connections.yaml from known paths. Returns empty dict on failure.""" + for path in _connections_paths(): + if path.is_file(): + try: + with open(path) as f: + data = yaml.safe_load(f) or {} + logger.info("Loaded connections.yaml from %s", path) + return data + except Exception: + logger.warning("Failed to parse connections.yaml at %s", path, exc_info=True) + logger.info("No connections.yaml found — using env vars only") + return {} + + +def _extract_jenkins_jobs(connections: dict[str, Any]) -> list[dict[str, str]]: + """Extract Jenkins job configs from connections.yaml.""" + for conn in connections.get("connections", []): + if conn.get("source") == "jenkins": + return conn.get("scope", {}).get("jobs", []) + return [] + + +def _build_job_to_repo_map(connections: dict[str, Any]) -> dict[str, str]: + """Build a reverse map: jenkins_job_fullName -> github_repo_name. + + Uses jenkins-job-mapping.json alongside connections.yaml to resolve + which GitHub repo each Jenkins job belongs to. + """ + job_to_repo: dict[str, str] = {} + + # Strategy 1: Load from jenkins-job-mapping.json (generated by mapper script) + for path in _connections_paths(): + mapping_path = path.parent / "jenkins-job-mapping.json" + if mapping_path.is_file(): + try: + import json + with open(mapping_path) as f: + mapping = json.load(f) + for repo, data in mapping.items(): + if repo.startswith("_"): + continue + # Strip org prefix for consistency (e.g., "webmotors-private/repo" -> "repo") + repo_short = repo.split("/", 1)[-1] if "/" in repo else repo + for job_name in data.get("prd_jobs", []): + job_to_repo[job_name] = repo_short + for job_name in data.get("all_jobs", []): + if job_name not in job_to_repo: + job_to_repo[job_name] = repo_short + logger.info( + "Loaded job→repo mapping: %d jobs across %d repos from %s", + len(job_to_repo), len(mapping) - 1, mapping_path, + ) + except Exception: + logger.warning("Failed to load jenkins-job-mapping.json", exc_info=True) + break + + return job_to_repo + class Settings(BaseSettings): """Environment-driven configuration for pulse-data. @@ -75,6 +160,22 @@ def jira_project_list(self) -> list[str]: return [] return [p.strip() for p in self.jira_projects.split(",") if p.strip()] + @property + def jenkins_jobs(self) -> list[dict[str, str]]: + """Jenkins job configs loaded from connections.yaml.""" + if not hasattr(self, "_jenkins_jobs_cache"): + conns = _load_connections_yaml() + object.__setattr__(self, "_jenkins_jobs_cache", _extract_jenkins_jobs(conns)) + return self._jenkins_jobs_cache # type: ignore[return-value] + + @property + def jenkins_job_to_repo(self) -> dict[str, str]: + """Reverse map: Jenkins job fullName -> GitHub repo short name.""" + if not hasattr(self, "_jenkins_job_to_repo_cache"): + conns = _load_connections_yaml() + object.__setattr__(self, "_jenkins_job_to_repo_cache", _build_job_to_repo_map(conns)) + return self._jenkins_job_to_repo_cache # type: ignore[return-value] + # Singleton — imported across the app settings = Settings() diff --git a/pulse/packages/pulse-data/src/connectors/jenkins_connector.py b/pulse/packages/pulse-data/src/connectors/jenkins_connector.py index 2afd7f8..5e02429 100644 --- a/pulse/packages/pulse-data/src/connectors/jenkins_connector.py +++ b/pulse/packages/pulse-data/src/connectors/jenkins_connector.py @@ -53,6 +53,7 @@ def __init__( username: str | None = None, api_token: str | None = None, jobs: list[dict[str, str]] | None = None, + job_to_repo: dict[str, str] | None = None, connection_id: int = 1, ) -> None: self._base_url = (base_url or settings.jenkins_base_url).rstrip("/") @@ -63,6 +64,10 @@ def __init__( # Job configs from connections.yaml self._jobs = jobs or [] + # Reverse map: Jenkins job fullName → GitHub repo short name + # Used to populate eng_deployments.repo with the actual repo name + self._job_to_repo = job_to_repo or {} + if not self._base_url or not self._api_token: raise ValueError( "Jenkins connector requires JENKINS_BASE_URL and JENKINS_API_TOKEN. " @@ -227,11 +232,15 @@ def _map_build(self, job_name: str, build: dict[str, Any]) -> dict[str, Any]: environment = self._detect_environment(job_name, build) + # Resolve GitHub repo name from job→repo mapping + repo_name = self._job_to_repo.get(job_name, job_name) + return { "id": f"jenkins:JenkinsBuild:{self._connection_id}:{job_name}:{build_number}", "cicd_deployment_id": f"jenkins:JenkinsJob:{self._connection_id}:{job_name}", "repo_id": None, "name": job_name, + "repo_name": repo_name, # GitHub repo name (resolved from mapping) "result": result, # SUCCESS, FAILURE, UNSTABLE, ABORTED, NOT_BUILT "status": "DONE", "environment": environment, diff --git a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py index 429415d..3acd00d 100644 --- a/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py +++ b/pulse/packages/pulse-data/src/contexts/engineering_data/normalizer.py @@ -410,11 +410,14 @@ def normalize_deployment( source = _detect_source(devlake_deploy) - # For Jenkins, the job name (in `name` field) serves as a proxy for repo - # since Jenkins jobs are typically mapped 1:1 to repos + # For Jenkins, prefer the resolved repo_name from job→repo mapping + # (populated by JenkinsConnector from jenkins-job-mapping.json). + # Falls back to job name if no mapping exists. if source == "jenkins": - repo = str(devlake_deploy.get("name", "")) or _extract_repo_from_id( - devlake_deploy.get("repo_id"), None + repo = ( + devlake_deploy.get("repo_name") + or str(devlake_deploy.get("name", "")) + or _extract_repo_from_id(devlake_deploy.get("repo_id"), None) ) else: repo = _extract_repo_from_id( diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 03942f3..59bb8e7 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -225,8 +225,16 @@ def _create_default_aggregator() -> ConnectorAggregator: # Jenkins if settings.jenkins_api_token and settings.jenkins_base_url: try: - connectors.append(JenkinsConnector()) - logger.info("Jenkins connector initialized (url: %s)", settings.jenkins_base_url) + jenkins_jobs = settings.jenkins_jobs + job_to_repo = settings.jenkins_job_to_repo + connectors.append(JenkinsConnector( + jobs=jenkins_jobs, + job_to_repo=job_to_repo, + )) + logger.info( + "Jenkins connector initialized (url: %s, jobs: %d, repo-map: %d)", + settings.jenkins_base_url, len(jenkins_jobs), len(job_to_repo), + ) except Exception: logger.warning("Failed to initialize Jenkins connector", exc_info=True) From d1aebf7f2e59603942663b1fd77f926b265b154a Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Tue, 14 Apr 2026 18:09:03 -0300 Subject: [PATCH 18/64] feat(jenkins): auto-discover 577 PRD jobs via SCM scan across 283 repos READ-ONLY scan of all 1924 Jenkins jobs: fetched lastBuild remoteUrl to deterministically map each PRD job to its GitHub repo (100% confidence, zero fuzzy matching). Config.py now loads jobs from jenkins-job-mapping.json as primary source instead of manual YAML list, expanding coverage from 16 jobs/9 repos to 577 jobs/283 repos. Changes: - config.py: _extract_jenkins_jobs reads from mapping JSON (fallback YAML) - connections.yaml: replaced 16 manual job entries with mapping reference - jenkins-job-mapping.json: regenerated with full SCM-verified mapping - scripts/discover_jenkins_jobs.py: reusable discovery script (READ-ONLY) Co-Authored-By: Claude Opus 4.6 --- pulse/config/connections.yaml | 72 +- pulse/config/jenkins-job-mapping.json | 2872 ++++++++++++++++- .../scripts/discover_jenkins_jobs.py | 579 ++++ pulse/packages/pulse-data/src/config.py | 37 +- 4 files changed, 3467 insertions(+), 93 deletions(-) create mode 100644 pulse/packages/pulse-data/scripts/discover_jenkins_jobs.py diff --git a/pulse/config/connections.yaml b/pulse/config/connections.yaml index 7c2c3b3..6605f00 100644 --- a/pulse/config/connections.yaml +++ b/pulse/config/connections.yaml @@ -40,72 +40,14 @@ connections: base_url: ${JENKINS_BASE_URL} sync_interval_minutes: 15 scope: - # Auto-mapped 2026-03-27 by scanning 1404 Jenkins jobs (READ-ONLY). - # Each job's lastBuild → BuildData → remoteUrls was matched to our 9 GitHub repos. - # Only PRD (production) jobs are included — for DORA Deployment Frequency. - # Full mapping saved in config/jenkins-job-mapping.json. + # Job list is loaded from config/jenkins-job-mapping.json (auto-generated). + # Generated 2026-04-14 by READ-ONLY SCM scan of 544 active PRD Jenkins + # jobs — each job's lastBuild → remoteUrls resolves the GitHub repo. + # Total: 577 PRD jobs across 283 repos. # - # Since these ARE production jobs (job name contains "prd"), every build - # counts as a production deployment. deploymentPattern matches all builds; - # productionPattern matches the job name itself (always "prd"). - jobs: - # ── webmotors.next.ui (3 PRD jobs) ───────────────── - - fullName: "prd-wm-buyer-home-frontend-ui" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - - fullName: "prd-wm-buyer-search-frontend-ui" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - - fullName: "prd-wm-buyer-subscriptions-frontend-ui" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - # ── webmotors.portal.ui (1 PRD job) ──────────────── - - fullName: "prd-wm-buyer-lambda-home-ui" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - # ── webmotors.buyer.ui (1 PRD job) ───────────────── - - fullName: "prd-wm-buyer-lambda-mobile-ui" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - # ── webmotors.buyer.desktop.ui (1 PRD job) ───────── - - fullName: "prd-wm-buyer-lambda-desktop-ui" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - # ── webmotors.catalogo.next.ui (1 PRD job) ───────── - - fullName: "catalogo-next-ui-prd" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - # ── webmotors.fipe.next.ui (1 PRD job) ───────────── - - fullName: "fipe-next-ui-prd" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - # ── webmotors.pf (6 PRD jobs: android, iOS, web) ─── - - fullName: "android-pf-prd-firebase" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - - fullName: "android-pf-prd-playstore" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - - fullName: "ios-pf-prd-firebase" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - - fullName: "ios-pf-prd-testflight" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - - fullName: "web-cms-pf-prd" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - - fullName: "webservicos-web-prd" - deploymentPattern: ".*" - productionPattern: "(?i)prd" - # ── eleanor.flutter (1 job — no env suffix) ──────── - - fullName: "webmotors-eleanor-flutter" - deploymentPattern: ".*" - productionPattern: ".*" - # ── webmotors.app.pf.search.bff (1 job — no env suffix) - - fullName: "webmotors-app-api-search-bff" - deploymentPattern: ".*" - productionPattern: ".*" + # To regenerate: run scripts/discover_jenkins_jobs.py (READ-ONLY). + # The sync worker reads prd_jobs from the mapping file at startup. + jobs_from_mapping: true # Signals config.py to use jenkins-job-mapping.json - name: "Webmotors Jira" source: jira diff --git a/pulse/config/jenkins-job-mapping.json b/pulse/config/jenkins-job-mapping.json index e7ad7e9..d099fb4 100644 --- a/pulse/config/jenkins-job-mapping.json +++ b/pulse/config/jenkins-job-mapping.json @@ -1,43 +1,2861 @@ { - "_meta": { - "generated": "2026-03-27", - "method": "READ-ONLY scan of 1404 Jenkins jobs via lastBuild API", - "note": "Maps GitHub repos to Jenkins jobs by reading Git remoteUrls from build metadata" + "webmotors-private/AgendaFacil": { + "prd_jobs": [ + "flychat-ecs-prd" + ], + "all_jobs": [ + "flychat-ecs-prd" + ] }, - "webmotors-private/webmotors.pf": { - "prd_jobs": ["android-pf-prd-firebase", "android-pf-prd-playstore", "ios-pf-prd-firebase", "ios-pf-prd-testflight", "web-cms-pf-prd", "webservicos-web-prd"], - "all_jobs": ["android-pf-hk-firebase", "android-pf-prd-firebase", "android-pf-prd-playstore", "android-pf-prd-promotion", "build-webservicos-all-platforms", "ios-pf-hk-firebase", "ios-pf-prd-firebase", "ios-pf-prd-promotion", "ios-pf-prd-testflight", "pf-check-sonar-coverage", "web-cms-pf-hml", "web-cms-pf-prd", "webservicos-check-sonar-coverage", "webservicos-web-azl", "webservicos-web-dev", "webservicos-web-hml", "webservicos-web-prd"] + "webmotors-private/WebMotors.Android.PF": { + "prd_jobs": [ + "ANDROID-PROD-PF" + ], + "all_jobs": [ + "ANDROID-PROD-PF" + ] }, - "webmotors-private/webmotors.next.ui": { - "prd_jobs": ["prd-wm-buyer-home-frontend-ui", "prd-wm-buyer-search-frontend-ui", "prd-wm-buyer-subscriptions-frontend-ui"], - "all_jobs": ["azl-wm-buyer-home-frontend-ui", "azl-wm-buyer-search-frontend-ui", "hml-wm-buyer-home-frontend-ui", "hml-wm-buyer-search-frontend-ui", "hml-wm-buyer-subscriptions-frontend-ui", "prd-wm-buyer-home-frontend-ui", "prd-wm-buyer-search-frontend-ui", "prd-wm-buyer-subscriptions-frontend-ui"] + "webmotors-private/WebMotors.ETL.Lead.Fixo": { + "prd_jobs": [ + "pi.sales-etl.leadfixo.prd" + ], + "all_jobs": [ + "pi.sales-etl.leadfixo.prd" + ] + }, + "webmotors-private/WebMotors.IOS.PF": { + "prd_jobs": [ + "IOS-PROD-PF" + ], + "all_jobs": [ + "IOS-PROD-PF" + ] + }, + "webmotors-private/WebMotors.Lead.Counting": { + "prd_jobs": [ + "pi.sales-etl-lead.counting-prd" + ], + "all_jobs": [ + "pi.sales-etl-lead.counting-prd" + ] + }, + "webmotors-private/acelera-consultor-api": { + "prd_jobs": [ + "acelera-consultor-api-prd" + ], + "all_jobs": [ + "acelera-consultor-api-prd" + ] + }, + "webmotors-private/acelera-consultor-dashboard": { + "prd_jobs": [ + "acelera-consultor-dashboard-ui-prd" + ], + "all_jobs": [ + "acelera-consultor-dashboard-ui-prd" + ] + }, + "webmotors-private/acelera-consultor-front": { + "prd_jobs": [ + "webmotors-acelera-consultor-front-ui-prd" + ], + "all_jobs": [ + "webmotors-acelera-consultor-front-ui-prd" + ] + }, + "webmotors-private/agendafacil": { + "prd_jobs": [ + "agendafacil-prd" + ], + "all_jobs": [ + "agendafacil-prd" + ] + }, + "webmotors-private/agendafacil.cockpit": { + "prd_jobs": [ + "agendafacil-cockpit-ui-prd" + ], + "all_jobs": [ + "agendafacil-cockpit-ui-prd" + ] + }, + "webmotors-private/agendafacilwhatsappserver": { + "prd_jobs": [ + "agendafacil-whatsappserver-prd" + ], + "all_jobs": [ + "agendafacil-whatsappserver-prd" + ] + }, + "webmotors-private/api-sites": { + "prd_jobs": [ + "cockpit-integration-api-sites-prd" + ], + "all_jobs": [ + "cockpit-integration-api-sites-prd" + ] + }, + "webmotors-private/chatbot-esquentalead": { + "prd_jobs": [ + "Esquenta Leads/esquenta.lead.lambda.prd", + "GenIa/prd-lambda-buora2-dev-agent-handler", + "GenIa/prd-playground" + ], + "all_jobs": [ + "Esquenta Leads/esquenta.lead.lambda.prd", + "GenIa/prd-lambda-buora2-dev-agent-handler", + "GenIa/prd-playground" + ] + }, + "webmotors-private/cockpit-ai-api": { + "prd_jobs": [ + "cockpit-ai-api-prd" + ], + "all_jobs": [ + "cockpit-ai-api-prd" + ] + }, + "webmotors-private/cockpit.components.audit": { + "prd_jobs": [ + "ckp.components.audit.lambda.prd" + ], + "all_jobs": [ + "ckp.components.audit.lambda.prd" + ] + }, + "webmotors-private/cockpit.crm.communicator.cdn": { + "prd_jobs": [ + "cockpit-crm-communicator-cdn-prd-old" + ], + "all_jobs": [ + "cockpit-crm-communicator-cdn-prd-old" + ] + }, + "webmotors-private/cockpit.crm.leadaccept.legacy": { + "prd_jobs": [ + "crm.services.windows.prd" + ], + "all_jobs": [ + "crm.services.windows.prd" + ] + }, + "webmotors-private/cockpit.crm.pipes": { + "prd_jobs": [ + "cockpit-crm-communicator-cdn-prd-old", + "cockpit-crm-lambda-services-prd", + "cockpit-crm-metrics-collection-prd", + "crm.api.message.send.lambda.prd", + "crm.audit.lambda.prd", + "crm.communicator.cdn.lambda.prd", + "crm.communicator.lambda.prd", + "crm.communicator.lambda.prd-v2", + "crm.configuration.lambda.prd", + "crm.customer.lambda.prd", + "crm.dash.api.prd", + "crm.data.sanitization.lambda.prd", + "crm.distribution.lambda.prd", + "crm.emailreceiver.lambda.prd", + "crm.financing.simulation.lambda.v2.prd", + "crm.getlead.lambda.prd", + "crm.getlead.webmotors.lambda.prd", + "crm.inputlead.lambda.prd", + "crm.inputlead.v2.lambda.prd", + "crm.integrated.information.lambda.prd", + "crm.integration.lambda.prd", + "crm.leadnotification.lambda.prd", + "crm.messagetemplates.lambda.prd", + "crm.messenger.lambda.prd", + "crm.negotiations.lambdas.prd", + "crm.panel.lambda.prd", + "crm.plans.lambdas.prd", + "crm.reasons.lambda.prd", + "crm.reports.lambdas.prd", + "crm.schedule.lambda.prd", + "crm.services.windows.prd", + "crm.socket.lambda.prd", + "crm.sync.elastic.lambda.prd", + "crm.synchronizer.lambda.prd", + "crm.thirdpartycrm.lambda.prd", + "crm.updatelead.lambda.prd" + ], + "all_jobs": [ + "cockpit-crm-communicator-cdn-prd-old", + "cockpit-crm-lambda-services-prd", + "cockpit-crm-metrics-collection-prd", + "crm.api.message.send.lambda.prd", + "crm.audit.lambda.prd", + "crm.communicator.cdn.lambda.prd", + "crm.communicator.lambda.prd", + "crm.communicator.lambda.prd-v2", + "crm.configuration.lambda.prd", + "crm.customer.lambda.prd", + "crm.dash.api.prd", + "crm.data.sanitization.lambda.prd", + "crm.distribution.lambda.prd", + "crm.emailreceiver.lambda.prd", + "crm.financing.simulation.lambda.v2.prd", + "crm.getlead.lambda.prd", + "crm.getlead.webmotors.lambda.prd", + "crm.inputlead.lambda.prd", + "crm.inputlead.v2.lambda.prd", + "crm.integrated.information.lambda.prd", + "crm.integration.lambda.prd", + "crm.leadnotification.lambda.prd", + "crm.messagetemplates.lambda.prd", + "crm.messenger.lambda.prd", + "crm.negotiations.lambdas.prd", + "crm.panel.lambda.prd", + "crm.plans.lambdas.prd", + "crm.reasons.lambda.prd", + "crm.reports.lambdas.prd", + "crm.schedule.lambda.prd", + "crm.services.windows.prd", + "crm.socket.lambda.prd", + "crm.sync.elastic.lambda.prd", + "crm.synchronizer.lambda.prd", + "crm.thirdpartycrm.lambda.prd", + "crm.updatelead.lambda.prd" + ] + }, + "webmotors-private/cockpit.crm.vmotors": { + "prd_jobs": [ + "crm.vmotors.pj.api.prd.recycle", + "crm.vmotors.pj.app.api.prd", + "crm.vmotors.pj.azl.update.config.prd", + "crm.vmotors.pj.web.api.prd" + ], + "all_jobs": [ + "crm.vmotors.pj.api.prd.recycle", + "crm.vmotors.pj.app.api.prd", + "crm.vmotors.pj.azl.update.config.prd", + "crm.vmotors.pj.web.api.prd" + ] + }, + "webmotors-private/cockpit.crmc.pipes": { + "prd_jobs": [ + "cockpit-crmcustomer-ia-agent-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-ia-agent-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.campaign": { + "prd_jobs": [ + "cockpit-crmcustomer-clientfacing-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-clientfacing-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.campaign.ia": { + "prd_jobs": [ + "cockpit-crmcustomer-campaign-ia-lambda-prd", + "cockpit-crmcustomer-ia-agent-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-campaign-ia-lambda-prd", + "cockpit-crmcustomer-ia-agent-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.clientfacing.cluster": { + "prd_jobs": [ + "cockpit-crmcustomer-clientfacing-prd", + "cockpit-crmcustomer-ia-agent-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-clientfacing-prd", + "cockpit-crmcustomer-ia-agent-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.messenger": { + "prd_jobs": [ + "cockpit-crmcustomer-messenger-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-messenger-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.mfe.campaigns.ui": { + "prd_jobs": [ + "cockpit-crmcustomer-mfe-campaigns-ui-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-mfe-campaigns-ui-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.mfe.vision.ui": { + "prd_jobs": [ + "cockpit-crmcustomer-mfe-vision-ui-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-mfe-vision-ui-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.pipes": { + "prd_jobs": [ + "cockpit-crmcustomer-campaign-ia-lambda-prd", + "cockpit-crmcustomer-clientfacing-prd", + "cockpit-crmcustomer-messenger-prd", + "cockpit-crmcustomer-mfe-campaigns-ui-prd", + "cockpit-crmcustomer-mfe-vision-ui-prd", + "cockpit-crmcustomer-segmentation-prd", + "cockpit-crmcustomer-ui-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-campaign-ia-lambda-prd", + "cockpit-crmcustomer-clientfacing-prd", + "cockpit-crmcustomer-messenger-prd", + "cockpit-crmcustomer-mfe-campaigns-ui-prd", + "cockpit-crmcustomer-mfe-vision-ui-prd", + "cockpit-crmcustomer-segmentation-prd", + "cockpit-crmcustomer-ui-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.segmentation": { + "prd_jobs": [ + "cockpit-crmcustomer-segmentation-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-segmentation-prd" + ] + }, + "webmotors-private/cockpit.crmcustomer.ui": { + "prd_jobs": [ + "cockpit-crmcustomer-ui-prd" + ], + "all_jobs": [ + "cockpit-crmcustomer-ui-prd" + ] + }, + "webmotors-private/cockpit.dealer.api": { + "prd_jobs": [ + "PI-Security/prd-lambda-legalperson-insert-user", + "PI-Security/prd-lambda-legalperson-migrate-sqlserver", + "legalperson-api-all-prd", + "legalperson-api-sync-aurora-prd", + "legalperson-api-sync-fillfilters-prd", + "legalperson-api-sync-migrate-send-prd" + ], + "all_jobs": [ + "PI-Security/prd-lambda-legalperson-insert-user", + "PI-Security/prd-lambda-legalperson-migrate-sqlserver", + "legalperson-api-all-prd", + "legalperson-api-sync-aurora-prd", + "legalperson-api-sync-fillfilters-prd", + "legalperson-api-sync-migrate-send-prd" + ] + }, + "webmotors-private/cockpit.dealer.businesshour": { + "prd_jobs": [ + "ckp.dealer.businesshour.api.prd" + ], + "all_jobs": [ + "ckp.dealer.businesshour.api.prd" + ] + }, + "webmotors-private/cockpit.dealer.group": { + "prd_jobs": [ + "ckp.dealer.group.api.prd" + ], + "all_jobs": [ + "ckp.dealer.group.api.prd" + ] + }, + "webmotors-private/cockpit.dealer.salesman": { + "prd_jobs": [ + "ckp.dealer.salesman.api.prd" + ], + "all_jobs": [ + "ckp.dealer.salesman.api.prd" + ] + }, + "webmotors-private/cockpit.dealer.users": { + "prd_jobs": [ + "ckp.dealer.users.api.prd" + ], + "all_jobs": [ + "ckp.dealer.users.api.prd" + ] + }, + "webmotors-private/cockpit.integration.api.channels": { + "prd_jobs": [ + "cockpit-integration-new-api-channel-prd" + ], + "all_jobs": [ + "cockpit-integration-new-api-channel-prd" + ] + }, + "webmotors-private/cockpit.integration.api.showroom": { + "prd_jobs": [ + "cockpit-integration-showroom-prd" + ], + "all_jobs": [ + "cockpit-integration-showroom-prd" + ] + }, + "webmotors-private/cockpit.integration.migration": { + "prd_jobs": [ + "cockpit-integration-migration-prd" + ], + "all_jobs": [ + "cockpit-integration-migration-prd" + ] + }, + "webmotors-private/cockpit.integration.pipes": { + "prd_jobs": [ + "cockpit-integration-api-catalog-prd", + "cockpit-integration-broadcast-prd", + "cockpit-integration-icarros-prd", + "cockpit-integration-instagram-prd", + "cockpit-integration-meli-prd", + "cockpit-integration-mobiauto-prd", + "cockpit-integration-olx-prd", + "cockpit-integration-santander-prd", + "cockpit-integration-socarrao-prd", + "cockpit-integration-thirdpartycrm-prd", + "cockpit-integration-users-prd", + "cockpit-integration-whatsapp-prd" + ], + "all_jobs": [ + "cockpit-integration-api-catalog-prd", + "cockpit-integration-broadcast-prd", + "cockpit-integration-icarros-prd", + "cockpit-integration-instagram-prd", + "cockpit-integration-meli-prd", + "cockpit-integration-mobiauto-prd", + "cockpit-integration-olx-prd", + "cockpit-integration-santander-prd", + "cockpit-integration-socarrao-prd", + "cockpit-integration-thirdpartycrm-prd", + "cockpit-integration-users-prd", + "cockpit-integration-whatsapp-prd" + ] + }, + "webmotors-private/cockpit.integration.usermanagement.ui": { + "prd_jobs": [ + "cockpit-integration-usermanagement-ui-prd" + ], + "all_jobs": [ + "cockpit-integration-usermanagement-ui-prd" + ] + }, + "webmotors-private/consultor-turbo-api": { + "prd_jobs": [ + "consultor-turbo-api-prd" + ], + "all_jobs": [ + "consultor-turbo-api-prd" + ] + }, + "webmotors-private/dora-metrics-extract": { + "prd_jobs": [ + "AQ/arq.dora.metrics.extract.lambda.prd" + ], + "all_jobs": [ + "AQ/arq.dora.metrics.extract.lambda.prd" + ] + }, + "webmotors-private/eng-lake-database-migration": { + "prd_jobs": [ + "prd-eng-lake-database-migration" + ], + "all_jobs": [ + "prd-eng-lake-database-migration" + ] + }, + "webmotors-private/flyapi": { + "prd_jobs": [ + "agendafacil-flyapi-prd" + ], + "all_jobs": [ + "agendafacil-flyapi-prd" + ] + }, + "webmotors-private/jenkins.common.libs": { + "prd_jobs": [ + "ANDROID-PRD-Lib-Cockpit-LGPD", + "ANDROID-PRD-Lib-Cockpit-Notification", + "ANDROID-PRD-Lib-Webmotors-Design-System", + "ANDROID-PRD-Lib-Webmotors-Network", + "ANDROID-PRD-Lib-Webmotors-Tracking", + "ANDROID-PRODUCTION-Cockpit", + "IOS-PRD-Lib-Cockpit-LGPD", + "IOS-PRD-Lib-Cockpit-Notification", + "IOS-PRD-Lib-Cockpit-WMCore", + "IOS-PRD-Lib-Webmotors-Network", + "IOS-PRD-Lib-Webmotors-Tracking", + "IOS-PRODUCTION-Cockpit", + "KMM-PRD-Lib-Webmotors-Network-OLD", + "KMM-PRD-Lib-Webmotors-Network/merge%2FAPPJ-3739", + "KMM-PRD-Lib-Webmotors-Notification/merge%2FAPPJ-3739", + "KMM-PRD-Lib-Webmotors-Tools", + "iOS-PRD-Lib-Webmotors-Design-System" + ], + "all_jobs": [ + "ANDROID-PRD-Lib-Cockpit-LGPD", + "ANDROID-PRD-Lib-Cockpit-Notification", + "ANDROID-PRD-Lib-Webmotors-Design-System", + "ANDROID-PRD-Lib-Webmotors-Network", + "ANDROID-PRD-Lib-Webmotors-Tracking", + "ANDROID-PRODUCTION-Cockpit", + "IOS-PRD-Lib-Cockpit-LGPD", + "IOS-PRD-Lib-Cockpit-Notification", + "IOS-PRD-Lib-Cockpit-WMCore", + "IOS-PRD-Lib-Webmotors-Network", + "IOS-PRD-Lib-Webmotors-Tracking", + "IOS-PRODUCTION-Cockpit", + "KMM-PRD-Lib-Webmotors-Network-OLD", + "KMM-PRD-Lib-Webmotors-Network/merge%2FAPPJ-3739", + "KMM-PRD-Lib-Webmotors-Notification/merge%2FAPPJ-3739", + "KMM-PRD-Lib-Webmotors-Tools", + "iOS-PRD-Lib-Webmotors-Design-System" + ] + }, + "webmotors-private/lib-mobile-android-design-system": { + "prd_jobs": [ + "ANDROID-PRD-Lib-Webmotors-Design-System" + ], + "all_jobs": [ + "ANDROID-PRD-Lib-Webmotors-Design-System" + ] + }, + "webmotors-private/lib-mobile-android-lgpd": { + "prd_jobs": [ + "ANDROID-PRD-Lib-Cockpit-LGPD" + ], + "all_jobs": [ + "ANDROID-PRD-Lib-Cockpit-LGPD" + ] + }, + "webmotors-private/lib-mobile-android-network": { + "prd_jobs": [ + "ANDROID-PRD-Lib-Webmotors-Network" + ], + "all_jobs": [ + "ANDROID-PRD-Lib-Webmotors-Network" + ] + }, + "webmotors-private/lib-mobile-android-tracking": { + "prd_jobs": [ + "ANDROID-PRD-Lib-Webmotors-Tracking" + ], + "all_jobs": [ + "ANDROID-PRD-Lib-Webmotors-Tracking" + ] + }, + "webmotors-private/lib-mobile-ios-design-system": { + "prd_jobs": [ + "iOS-PRD-Lib-Webmotors-Design-System" + ], + "all_jobs": [ + "iOS-PRD-Lib-Webmotors-Design-System" + ] + }, + "webmotors-private/lib-mobile-ios-lgpd": { + "prd_jobs": [ + "IOS-PRD-Lib-Cockpit-LGPD" + ], + "all_jobs": [ + "IOS-PRD-Lib-Cockpit-LGPD" + ] + }, + "webmotors-private/lib-mobile-ios-network": { + "prd_jobs": [ + "IOS-PRD-Lib-Webmotors-Network" + ], + "all_jobs": [ + "IOS-PRD-Lib-Webmotors-Network" + ] + }, + "webmotors-private/lib-mobile-ios-tracking": { + "prd_jobs": [ + "IOS-PRD-Lib-Webmotors-Tracking" + ], + "all_jobs": [ + "IOS-PRD-Lib-Webmotors-Tracking" + ] + }, + "webmotors-private/lib-mobile-ios-wmcore": { + "prd_jobs": [ + "IOS-PRD-Lib-Cockpit-WMCore" + ], + "all_jobs": [ + "IOS-PRD-Lib-Cockpit-WMCore" + ] + }, + "webmotors-private/lib-mobile-kmm-network": { + "prd_jobs": [ + "KMM-PRD-Lib-Webmotors-Network-OLD", + "KMM-PRD-Lib-Webmotors-Network/merge%2FAPPJ-3739" + ], + "all_jobs": [ + "KMM-PRD-Lib-Webmotors-Network-OLD", + "KMM-PRD-Lib-Webmotors-Network/merge%2FAPPJ-3739" + ] + }, + "webmotors-private/lib-mobile-kmm-notification": { + "prd_jobs": [ + "KMM-PRD-Lib-Webmotors-Notification/merge%2FAPPJ-3739" + ], + "all_jobs": [ + "KMM-PRD-Lib-Webmotors-Notification/merge%2FAPPJ-3739" + ] + }, + "webmotors-private/lib-mobile-kmm-tools": { + "prd_jobs": [ + "KMM-PRD-Lib-Webmotors-Tools" + ], + "all_jobs": [ + "KMM-PRD-Lib-Webmotors-Tools" + ] + }, + "webmotors-private/maisfidelidade.bens.servicos.api": { + "prd_jobs": [ + "mais-fidelidade-bes-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-bes-prd-api" + ] + }, + "webmotors-private/maisfidelidade.bens.servicos.import": { + "prd_jobs": [ + "mais-fidelidade-importador-bes-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-importador-bes-prd-api" + ] + }, + "webmotors-private/maisfidelidade.bens.servicos.ui": { + "prd_jobs": [ + "mais-fidelidade-bes-prd-ui" + ], + "all_jobs": [ + "mais-fidelidade-bes-prd-ui" + ] + }, + "webmotors-private/maisfidelidade.bens.servicos.usarios.import": { + "prd_jobs": [ + "mais-fidelidade-importador-bes-usuario-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-importador-bes-usuario-prd-api" + ] + }, + "webmotors-private/maisfidelidade.contrata.api": { + "prd_jobs": [ + "mais-fidelidade-contrata-prd-api", + "mais-fidelidade-contrata-websocket-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-contrata-prd-api", + "mais-fidelidade-contrata-websocket-prd-api" + ] + }, + "webmotors-private/maisfidelidade.contrata.import": { + "prd_jobs": [ + "mais-fidelidade-importador-contrata-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-importador-contrata-prd-api" + ] + }, + "webmotors-private/maisfidelidade.contrata.ui": { + "prd_jobs": [ + "mais-fidelidade-contrata-prd-ui" + ], + "all_jobs": [ + "mais-fidelidade-contrata-prd-ui" + ] + }, + "webmotors-private/maisfidelidade.gestao.administrativa.api": { + "prd_jobs": [ + "+Fidelidade.Gestao.Administrativa-Prd" + ], + "all_jobs": [ + "+Fidelidade.Gestao.Administrativa-Prd" + ] + }, + "webmotors-private/mobile-android-cockpit": { + "prd_jobs": [ + "ANDROID-PRODUCTION-Cockpit" + ], + "all_jobs": [ + "ANDROID-PRODUCTION-Cockpit" + ] + }, + "webmotors-private/mobile-android-cockpit-notification": { + "prd_jobs": [ + "ANDROID-PRD-Lib-Cockpit-Notification" + ], + "all_jobs": [ + "ANDROID-PRD-Lib-Cockpit-Notification" + ] + }, + "webmotors-private/mobile-ios-cockpit": { + "prd_jobs": [ + "IOS-PRODUCTION-Cockpit" + ], + "all_jobs": [ + "IOS-PRODUCTION-Cockpit" + ] + }, + "webmotors-private/mobile-ios-cockpit-notification": { + "prd_jobs": [ + "IOS-PRD-Lib-Cockpit-Notification" + ], + "all_jobs": [ + "IOS-PRD-Lib-Cockpit-Notification" + ] + }, + "webmotors-private/pipelines-agendafacil": { + "prd_jobs": [ + "flychat-ecs-prd" + ], + "all_jobs": [ + "flychat-ecs-prd" + ] + }, + "webmotors-private/portal-turbo-api": { + "prd_jobs": [ + "portal-turbo-api-prd" + ], + "all_jobs": [ + "portal-turbo-api-prd" + ] + }, + "webmotors-private/precog-leads": { + "prd_jobs": [ + "prd-api-precog-leads" + ], + "all_jobs": [ + "prd-api-precog-leads" + ] + }, + "webmotors-private/push-subscribers-api": { + "prd_jobs": [ + "PushSubscriber-Api/pushsubscriber-api-prd" + ], + "all_jobs": [ + "PushSubscriber-Api/pushsubscriber-api-prd" + ] + }, + "webmotors-private/score-ordenacao": { + "prd_jobs": [ + "Score-Ordenacao-prd" + ], + "all_jobs": [ + "Score-Ordenacao-prd" + ] + }, + "webmotors-private/score-ordenacao-motos": { + "prd_jobs": [ + "Score-Ordenacao-Moto-prd" + ], + "all_jobs": [ + "Score-Ordenacao-Moto-prd" + ] + }, + "webmotors-private/seo-sitemap-strategic": { + "prd_jobs": [ + "wm-seo-sitemap-prd" + ], + "all_jobs": [ + "wm-seo-sitemap-prd" + ] + }, + "webmotors-private/tacografo-agenda-facil": { + "prd_jobs": [ + "tacografo-prd" + ], + "all_jobs": [ + "tacografo-prd" + ] + }, + "webmotors-private/vmotors-api-integrator": { + "prd_jobs": [ + "prd-vmotors-api-integrator" + ], + "all_jobs": [ + "prd-vmotors-api-integrator" + ] + }, + "webmotors-private/vmotors-api-updater": { + "prd_jobs": [ + "prd-vmotors-api-updater" + ], + "all_jobs": [ + "prd-vmotors-api-updater" + ] + }, + "webmotors-private/vmotors-geral": { + "prd_jobs": [ + "cockpit-vmotors-geral-prd" + ], + "all_jobs": [ + "cockpit-vmotors-geral-prd" + ] + }, + "webmotors-private/vmotors-web": { + "prd_jobs": [ + "vmotors-web-php-prd" + ], + "all_jobs": [ + "vmotors-web-php-prd" + ] + }, + "webmotors-private/webmotors": { + "prd_jobs": [ + "pi.money-etl-faturaleadmodel-prd", + "pi.money-etl-faturapatrocinio-prd", + "pi.money-lote-baixamanual-etl-prd", + "pi.money-processos-prompt-etl-prd", + "prd-service-arquivocnab", + "prd-service-baixa-etl-pagamento", + "prd-service-processar-cnab-etl-retorno" + ], + "all_jobs": [ + "pi.money-etl-faturaleadmodel-prd", + "pi.money-etl-faturapatrocinio-prd", + "pi.money-lote-baixamanual-etl-prd", + "pi.money-processos-prompt-etl-prd", + "prd-service-arquivocnab", + "prd-service-baixa-etl-pagamento", + "prd-service-processar-cnab-etl-retorno" + ] + }, + "webmotors-private/webmotors-app-sdui": { + "prd_jobs": [ + "web-cms-pf-prd" + ], + "all_jobs": [ + "web-cms-pf-prd" + ] + }, + "webmotors-private/webmotors.360.view": { + "prd_jobs": [ + "prd-wm-service-360view" + ], + "all_jobs": [ + "prd-wm-service-360view" + ] + }, + "webmotors-private/webmotors.access": { + "prd_jobs": [ + "PI-Security/prd-ecs-api-access" + ], + "all_jobs": [ + "PI-Security/prd-ecs-api-access" + ] + }, + "webmotors-private/webmotors.account.api": { + "prd_jobs": [ + "Account-Api/account-api-prd" + ], + "all_jobs": [ + "Account-Api/account-api-prd" + ] + }, + "webmotors-private/webmotors.accounting": { + "prd_jobs": [ + "prd-ecs-api-accouting" + ], + "all_jobs": [ + "prd-ecs-api-accouting" + ] + }, + "webmotors-private/webmotors.ad-repriorization": { + "prd_jobs": [ + "Repriorizacao-UI/repriorizacao-ui-prd" + ], + "all_jobs": [ + "Repriorizacao-UI/repriorizacao-ui-prd" + ] + }, + "webmotors-private/webmotors.advertise.api": { + "prd_jobs": [ + "Advertise-Api/advertise-api-prd" + ], + "all_jobs": [ + "Advertise-Api/advertise-api-prd" + ] + }, + "webmotors-private/webmotors.api.catalogo": { + "prd_jobs": [ + "CatalogoAPI-PRD" + ], + "all_jobs": [ + "CatalogoAPI-PRD" + ] + }, + "webmotors-private/webmotors.api.charge": { + "prd_jobs": [ + "prd-api-charge" + ], + "all_jobs": [ + "prd-api-charge" + ] + }, + "webmotors-private/webmotors.api.commercial": { + "prd_jobs": [ + "pi.sales.api-commercial.branch.find.prd", + "pi.sales.api-commercial.network.list.prd", + "pi.sales.api-commercial.portifolio.find.prd", + "pi.sales.api-commercial.zone.list.prd" + ], + "all_jobs": [ + "pi.sales.api-commercial.branch.find.prd", + "pi.sales.api-commercial.network.list.prd", + "pi.sales.api-commercial.portifolio.find.prd", + "pi.sales.api-commercial.zone.list.prd" + ] + }, + "webmotors-private/webmotors.api.customer": { + "prd_jobs": [ + "pi.sales.api-customer.search.prd", + "pi.sales.api-customer.wallet.save.status.prd" + ], + "all_jobs": [ + "pi.sales.api-customer.search.prd", + "pi.sales.api-customer.wallet.save.status.prd" + ] + }, + "webmotors-private/webmotors.api.invoice": { + "prd_jobs": [ + "pi.sales.api-invoice.contract.detail.prd" + ], + "all_jobs": [ + "pi.sales.api-invoice.contract.detail.prd" + ] + }, + "webmotors-private/webmotors.api.lead": { + "prd_jobs": [ + "pi.sales.api-lead.contestation.contestated.prd", + "pi.sales.api-lead.contestation.details.prd", + "pi.sales.api-lead.contestation.find.prd", + "pi.sales.api-lead.contestation.reason.prd", + "pi.sales.api-lead.contestation.save.prd", + "pi.sales.api-lead.fixedprice.orderfind.prd", + "pi.sales.api-lead.invoice.find.prd", + "pi.sales.api-lead.log.find.prd", + "pi.sales.api-lead.log.save.prd", + "pi.sales.api-lead.management.duplicated.prd", + "pi.sales.api-lead.management.find.prd", + "pi.sales.api-lead.management.preview.prd", + "pi.sales.api-lead.management.refused.prd", + "pi.sales.api-lead.management.type.prd", + "pi.sales.api-lead.price.find.prd", + "pi.sales.api-lead.price.values.prd", + "pi.sales.api-lead.save.prd", + "pi.sales.api-lead.setup.find.prd", + "pi.sales.api-lead.setup.save.prd", + "pi.sales.api-lead.vehicle.brand.prd" + ], + "all_jobs": [ + "pi.sales.api-lead.contestation.contestated.prd", + "pi.sales.api-lead.contestation.details.prd", + "pi.sales.api-lead.contestation.find.prd", + "pi.sales.api-lead.contestation.reason.prd", + "pi.sales.api-lead.contestation.save.prd", + "pi.sales.api-lead.fixedprice.orderfind.prd", + "pi.sales.api-lead.invoice.find.prd", + "pi.sales.api-lead.log.find.prd", + "pi.sales.api-lead.log.save.prd", + "pi.sales.api-lead.management.duplicated.prd", + "pi.sales.api-lead.management.find.prd", + "pi.sales.api-lead.management.preview.prd", + "pi.sales.api-lead.management.refused.prd", + "pi.sales.api-lead.management.type.prd", + "pi.sales.api-lead.price.find.prd", + "pi.sales.api-lead.price.values.prd", + "pi.sales.api-lead.save.prd", + "pi.sales.api-lead.setup.find.prd", + "pi.sales.api-lead.setup.save.prd", + "pi.sales.api-lead.vehicle.brand.prd" + ] + }, + "webmotors-private/webmotors.api.legalperson.discount": { + "prd_jobs": [ + "legalperson-discount-api-prd" + ], + "all_jobs": [ + "legalperson-discount-api-prd" + ] + }, + "webmotors-private/webmotors.api.payment": { + "prd_jobs": [ + "pi-account-prd-api-integration", + "root-account-prd-api-payment", + "root-account-prd-api-proxy-payment", + "root-account-prd-payment-monitoring" + ], + "all_jobs": [ + "pi-account-prd-api-integration", + "root-account-prd-api-payment", + "root-account-prd-api-proxy-payment", + "root-account-prd-payment-monitoring" + ] + }, + "webmotors-private/webmotors.api.plans": { + "prd_jobs": [ + "pi.sales.api-plans.create.rule.prd", + "pi.sales.api-plans.exclude.financialentry.prd", + "pi.sales.api-plans.exclude.franchise.flag.prd", + "pi.sales.api-plans.get.leadprice.prd", + "pi.sales.api-plans.getavailablefranchise.prd", + "pi.sales.api-plans.getplan.prd", + "pi.sales.api-plans.save.consumption.prd", + "pi.sales.api-plans.save.franchise.prd" + ], + "all_jobs": [ + "pi.sales.api-plans.create.rule.prd", + "pi.sales.api-plans.exclude.financialentry.prd", + "pi.sales.api-plans.exclude.franchise.flag.prd", + "pi.sales.api-plans.get.leadprice.prd", + "pi.sales.api-plans.getavailablefranchise.prd", + "pi.sales.api-plans.getplan.prd", + "pi.sales.api-plans.save.consumption.prd", + "pi.sales.api-plans.save.franchise.prd" + ] + }, + "webmotors-private/webmotors.api.products": { + "prd_jobs": [ + "pi.sales.api-product.find.channel.prd", + "pi.sales.api-product.find.contract.prd", + "pi.sales.api-product.find.prd", + "pi.sales.api-product.find.region.prd", + "pi.sales.api-product.netsuite.find.prd", + "pi.sales.api-product.netsuite.sync.prd" + ], + "all_jobs": [ + "pi.sales.api-product.find.channel.prd", + "pi.sales.api-product.find.contract.prd", + "pi.sales.api-product.find.prd", + "pi.sales.api-product.find.region.prd", + "pi.sales.api-product.netsuite.find.prd", + "pi.sales.api-product.netsuite.sync.prd" + ] + }, + "webmotors-private/webmotors.api.sales": { + "prd_jobs": [ + "pi.sales.api-sales.customer.wallet.save.status.prd", + "pi.sales.api-sales.discount.prd", + "pi.sales.api-sales.order.find.billable.prd", + "pi.sales.api-sales.order.invoice.discount.prd", + "pi.sales.api-sales.pre.order.accept.prd", + "pi.sales.api-sales.pre.order.cancel.notificate.prd", + "pi.sales.api-sales.pre.order.list.prd", + "pi.sales.api-sales.pre.order.prd", + "pi.sales.api-sales.pre.order.store.prd" + ], + "all_jobs": [ + "pi.sales.api-sales.customer.wallet.save.status.prd", + "pi.sales.api-sales.discount.prd", + "pi.sales.api-sales.order.find.billable.prd", + "pi.sales.api-sales.order.invoice.discount.prd", + "pi.sales.api-sales.pre.order.accept.prd", + "pi.sales.api-sales.pre.order.cancel.notificate.prd", + "pi.sales.api-sales.pre.order.list.prd", + "pi.sales.api-sales.pre.order.prd", + "pi.sales.api-sales.pre.order.store.prd" + ] + }, + "webmotors-private/webmotors.api.sales.logger": { + "prd_jobs": [ + "pi.sales.api-sales-logger.prd" + ], + "all_jobs": [ + "pi.sales.api-sales-logger.prd" + ] + }, + "webmotors-private/webmotors.api.sponsor": { + "prd_jobs": [ + "pi.sales.api-sponsor.list-national-manager.prd", + "pi.sales.api-sponsor.list-regional-by-national-manager.prd" + ], + "all_jobs": [ + "pi.sales.api-sponsor.list-national-manager.prd", + "pi.sales.api-sponsor.list-regional-by-national-manager.prd" + ] + }, + "webmotors-private/webmotors.apis": { + "prd_jobs": [ + "webmotors-apis-santander-services-back-prd" + ], + "all_jobs": [ + "webmotors-apis-santander-services-back-prd" + ] + }, + "webmotors-private/webmotors.app.api": { + "prd_jobs": [ + "prd-webmotors-app-api" + ], + "all_jobs": [ + "prd-webmotors-app-api" + ] + }, + "webmotors-private/webmotors.app.pf.push": { + "prd_jobs": [ + "PushSend-Api/pushsend-api-prd" + ], + "all_jobs": [ + "PushSend-Api/pushsend-api-prd" + ] + }, + "webmotors-private/webmotors.atena": { + "prd_jobs": [ + "Arquitetura/atena-prd" + ], + "all_jobs": [ + "Arquitetura/atena-prd" + ] + }, + "webmotors-private/webmotors.buyer": { + "prd_jobs": [ + "prd-wm-buyer-api", + "prd-wm-buyer-api-services" + ], + "all_jobs": [ + "prd-wm-buyer-api", + "prd-wm-buyer-api-services" + ] }, "webmotors-private/webmotors.buyer.desktop.ui": { - "prd_jobs": ["prd-wm-buyer-lambda-desktop-ui"], - "all_jobs": ["azl-wm-buyer-lambda-desktop-ui", "azl-wm-buyer-lambda-desktop-ui-rollback", "hml-wm-buyer-lambda-desktop-ui", "hml-wm-buyer-lambda-desktop-ui-nodejs20", "hml-wm-buyer-lambda-desktop-ui-rollback", "prd-wm-buyer-lambda-desktop-ui", "prd-wm-buyer-lambda-desktop-ui-rollback"] + "prd_jobs": [ + "prd-wm-buyer-lambda-desktop-ui", + "prd-wm-buyer-lambda-desktop-ui-rollback" + ], + "all_jobs": [ + "prd-wm-buyer-lambda-desktop-ui", + "prd-wm-buyer-lambda-desktop-ui-rollback" + ] }, - "webmotors-private/webmotors.portal.ui": { - "prd_jobs": ["prd-wm-buyer-lambda-home-ui"], - "all_jobs": ["azl-wm-buyer-lambda-home-ui", "hml-wm-buyer-lambda-home-ui", "prd-wm-buyer-lambda-home-ui"] + "webmotors-private/webmotors.buyer.fairs.config": { + "prd_jobs": [ + "prd-wm-buyer-fairs-config" + ], + "all_jobs": [ + "prd-wm-buyer-fairs-config" + ] }, "webmotors-private/webmotors.buyer.ui": { - "prd_jobs": ["prd-wm-buyer-lambda-mobile-ui"], - "all_jobs": ["azl-wm-buyer-lambda-mobile-ui", "azl-wm-buyer-lambda-mobile-ui-rollback", "hml-wm-buyer-lambda-mobile-ui", "hml-wm-buyer-lambda-mobile-ui-rollback", "prd-wm-buyer-lambda-mobile-ui", "prd-wm-buyer-lambda-mobile-ui-rollback"] + "prd_jobs": [ + "prd-wm-buyer-lambda-mobile-ui", + "prd-wm-buyer-lambda-mobile-ui-rollback" + ], + "all_jobs": [ + "prd-wm-buyer-lambda-mobile-ui", + "prd-wm-buyer-lambda-mobile-ui-rollback" + ] + }, + "webmotors-private/webmotors.catalog": { + "prd_jobs": [ + "ExportBrazil-PRD" + ], + "all_jobs": [ + "ExportBrazil-PRD" + ] + }, + "webmotors-private/webmotors.catalogo": { + "prd_jobs": [ + "Catalogo-service-v8-and-v9-prd" + ], + "all_jobs": [ + "Catalogo-service-v8-and-v9-prd" + ] + }, + "webmotors-private/webmotors.catalogo.jobs": { + "prd_jobs": [ + "catalogo-console-dotnet-prd" + ], + "all_jobs": [ + "catalogo-console-dotnet-prd" + ] }, "webmotors-private/webmotors.catalogo.next.ui": { - "prd_jobs": ["catalogo-next-ui-prd"], - "all_jobs": ["catalogo-next-ui-azl", "catalogo-next-ui-hml", "catalogo-next-ui-prd"] + "prd_jobs": [ + "catalogo-next-ui-prd" + ], + "all_jobs": [ + "catalogo-next-ui-prd" + ] + }, + "webmotors-private/webmotors.catalogo.ui": { + "prd_jobs": [ + "prd-catalogo-ui", + "prd-sitemap-catalogo" + ], + "all_jobs": [ + "prd-catalogo-ui", + "prd-sitemap-catalogo" + ] + }, + "webmotors-private/webmotors.certifiedpurchase": { + "prd_jobs": [ + "pi.sales.api-certifiedpurchase.change.status.prd", + "pi.sales.api-certifiedpurchase.find.all.prd", + "pi.sales.api-certifiedpurchase.find.status.prd", + "pi.sales.api-certifiedpurchase.inspection.find.prd" + ], + "all_jobs": [ + "pi.sales.api-certifiedpurchase.change.status.prd", + "pi.sales.api-certifiedpurchase.find.all.prd", + "pi.sales.api-certifiedpurchase.find.status.prd", + "pi.sales.api-certifiedpurchase.inspection.find.prd" + ] + }, + "webmotors-private/webmotors.chat.api": { + "prd_jobs": [ + "Chat-Api/chat-api-prd", + "Chat-Api/chat-prd-python" + ], + "all_jobs": [ + "Chat-Api/chat-api-prd", + "Chat-Api/chat-prd-python" + ] + }, + "webmotors-private/webmotors.cockpit.anonymization": { + "prd_jobs": [ + "ckp.anonymization.service.lambda.prd", + "cockpit-anonymization-api-prd" + ], + "all_jobs": [ + "ckp.anonymization.service.lambda.prd", + "cockpit-anonymization-api-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.access": { + "prd_jobs": [ + "cockpit-api-access-prd" + ], + "all_jobs": [ + "cockpit-api-access-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.dealer": { + "prd_jobs": [ + "cockpit-api-dealer-prd" + ], + "all_jobs": [ + "cockpit-api-dealer-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.group.dealer": { + "prd_jobs": [ + "cockpit-api-group-dealer-prd" + ], + "all_jobs": [ + "cockpit-api-group-dealer-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.lead.extract": { + "prd_jobs": [ + "cockpit-api-lead-extract-prd" + ], + "all_jobs": [ + "cockpit-api-lead-extract-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.login": { + "prd_jobs": [ + "cockpit-api-login-prd" + ], + "all_jobs": [ + "cockpit-api-login-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.menu": { + "prd_jobs": [ + "cockpit-api-menu-prd" + ], + "all_jobs": [ + "cockpit-api-menu-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.plan": { + "prd_jobs": [ + "cockpit-api-plan-prd" + ], + "all_jobs": [ + "cockpit-api-plan-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.product": { + "prd_jobs": [ + "cockpit-api-product-prd" + ], + "all_jobs": [ + "cockpit-api-product-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.profile": { + "prd_jobs": [ + "cockpit-api-profile-prd" + ], + "all_jobs": [ + "cockpit-api-profile-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.statement": { + "prd_jobs": [ + "money-api-statement-prd", + "money-statement-service-prd" + ], + "all_jobs": [ + "money-api-statement-prd", + "money-statement-service-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.term": { + "prd_jobs": [ + "cockpit-api-term-prd" + ], + "all_jobs": [ + "cockpit-api-term-prd" + ] + }, + "webmotors-private/webmotors.cockpit.api.user": { + "prd_jobs": [ + "cockpit-api-user-prd" + ], + "all_jobs": [ + "cockpit-api-user-prd" + ] + }, + "webmotors-private/webmotors.cockpit.authorizer": { + "prd_jobs": [ + "ckp.authorizer.api.prd", + "ckp.authorizer.root.api.prd" + ], + "all_jobs": [ + "ckp.authorizer.api.prd", + "ckp.authorizer.root.api.prd" + ] + }, + "webmotors-private/webmotors.cockpit.autoavaliar": { + "prd_jobs": [ + "cockpit-autoavaliar-api-prd" + ], + "all_jobs": [ + "cockpit-autoavaliar-api-prd" + ] + }, + "webmotors-private/webmotors.cockpit.backoffice.offers.ui": { + "prd_jobs": [ + "cockpit-backoffice-offers-ui-prd" + ], + "all_jobs": [ + "cockpit-backoffice-offers-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.backoffice.ui": { + "prd_jobs": [ + "cockpit-backoffice-ui-prd" + ], + "all_jobs": [ + "cockpit-backoffice-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.crm.mfe.configuration.ai.ui": { + "prd_jobs": [ + "cockpit.crm.mfe.configuration.ai.ui.prd" + ], + "all_jobs": [ + "cockpit.crm.mfe.configuration.ai.ui.prd" + ] + }, + "webmotors-private/webmotors.cockpit.crm.mfe.configuration.ui": { + "prd_jobs": [ + "crm.mfe.configuration.ui.prd" + ], + "all_jobs": [ + "crm.mfe.configuration.ui.prd" + ] + }, + "webmotors-private/webmotors.cockpit.crm.mfe.dashboard.ui": { + "prd_jobs": [ + "crm.mfe.dashboard.ui.prd" + ], + "all_jobs": [ + "crm.mfe.dashboard.ui.prd" + ] + }, + "webmotors-private/webmotors.cockpit.crm.ui": { + "prd_jobs": [ + "cockpit-crm-ui-prd", + "cockpit-crm-ui-prd-rollback" + ], + "all_jobs": [ + "cockpit-crm-ui-prd", + "cockpit-crm-ui-prd-rollback" + ] + }, + "webmotors-private/webmotors.cockpit.dependabot.analyzer": { + "prd_jobs": [ + "ckp.analyzer.dependabot.prd" + ], + "all_jobs": [ + "ckp.analyzer.dependabot.prd" + ] + }, + "webmotors-private/webmotors.cockpit.i18n": { + "prd_jobs": [ + "ckp.components.i18n.library.prd", + "ckp.upload.files.i18n.s3.prd" + ], + "all_jobs": [ + "ckp.components.i18n.library.prd", + "ckp.upload.files.i18n.s3.prd" + ] + }, + "webmotors-private/webmotors.cockpit.ia.ui": { + "prd_jobs": [ + "webmotors-cockpit-ia-ui-prd" + ], + "all_jobs": [ + "webmotors-cockpit-ia-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.inspection.ui": { + "prd_jobs": [ + "Cockpit.Inspection/prd-cockpit-inspection-ui" + ], + "all_jobs": [ + "Cockpit.Inspection/prd-cockpit-inspection-ui" + ] + }, + "webmotors-private/webmotors.cockpit.integrador.api": { + "prd_jobs": [ + "cockpit-integration-api-channel-prd" + ], + "all_jobs": [ + "cockpit-integration-api-channel-prd" + ] + }, + "webmotors-private/webmotors.cockpit.integrador.api.adv": { + "prd_jobs": [ + "cockpit-integration-advertisement-prd" + ], + "all_jobs": [ + "cockpit-integration-advertisement-prd" + ] + }, + "webmotors-private/webmotors.cockpit.integrador.api.adv.sync": { + "prd_jobs": [ + "cockpit-integration-adv-sync-prd" + ], + "all_jobs": [ + "cockpit-integration-adv-sync-prd" + ] + }, + "webmotors-private/webmotors.cockpit.integrador.api.lead": { + "prd_jobs": [ + "cockpit-integration-leads-prd" + ], + "all_jobs": [ + "cockpit-integration-leads-prd" + ] + }, + "webmotors-private/webmotors.cockpit.integrador.callback": { + "prd_jobs": [ + "cockpit-integration-callback-prd" + ], + "all_jobs": [ + "cockpit-integration-callback-prd" + ] + }, + "webmotors-private/webmotors.cockpit.integrador.updater": { + "prd_jobs": [ + "cockpit-integration-new-updater-prd" + ], + "all_jobs": [ + "cockpit-integration-new-updater-prd" + ] + }, + "webmotors-private/webmotors.cockpit.integration.pluginpro.loader": { + "prd_jobs": [ + "cockpit-integration-pluginpro-loader-prd" + ], + "all_jobs": [ + "cockpit-integration-pluginpro-loader-prd" + ] + }, + "webmotors-private/webmotors.cockpit.invoice.ui": { + "prd_jobs": [ + "cockpit-invoice-ui-prd" + ], + "all_jobs": [ + "cockpit-invoice-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.landingpages.ui": { + "prd_jobs": [ + "cockpit-landing-pages-ui-prd" + ], + "all_jobs": [ + "cockpit-landing-pages-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.leads.ui": { + "prd_jobs": [ + "cockpit-leads-ui-prd" + ], + "all_jobs": [ + "cockpit-leads-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.library": { + "prd_jobs": [ + "ckp.library.prd" + ], + "all_jobs": [ + "ckp.library.prd" + ] + }, + "webmotors-private/webmotors.cockpit.maisfidelidade.api": { + "prd_jobs": [ + "mais-fidelidade-chamas-prd-api", + "mais-fidelidade-lojas-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-chamas-prd-api", + "mais-fidelidade-lojas-prd-api" + ] + }, + "webmotors-private/webmotors.cockpit.maisfidelidade.import": { + "prd_jobs": [ + "mais-fidelidade-importador-lojas-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-importador-lojas-prd-api" + ] + }, + "webmotors-private/webmotors.cockpit.maisfidelidade.import.chamas": { + "prd_jobs": [ + "mais-fidelidade-lojas-importador-chamas-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-lojas-importador-chamas-prd-api" + ] + }, + "webmotors-private/webmotors.cockpit.maisfidelidade.import.oportunidades": { + "prd_jobs": [ + "mais-fidelidade-lojas-importador-oportunidade-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-lojas-importador-oportunidade-prd-api" + ] + }, + "webmotors-private/webmotors.cockpit.maisfidelidade.ui": { + "prd_jobs": [ + "mais-fidelidade-lojas-prd-ui" + ], + "all_jobs": [ + "mais-fidelidade-lojas-prd-ui" + ] + }, + "webmotors-private/webmotors.cockpit.mfe.integration.ui": { + "prd_jobs": [ + "cockpit-mfe-integration-ui-prd" + ], + "all_jobs": [ + "cockpit-mfe-integration-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.notifications.api": { + "prd_jobs": [ + "central-de-notificacoes-api-prd", + "central-de-notificacoes-prd" + ], + "all_jobs": [ + "central-de-notificacoes-api-prd", + "central-de-notificacoes-prd" + ] + }, + "webmotors-private/webmotors.cockpit.panel.api": { + "prd_jobs": [ + "cockpit-panel-api-prd" + ], + "all_jobs": [ + "cockpit-panel-api-prd" + ] + }, + "webmotors-private/webmotors.cockpit.panel.etl": { + "prd_jobs": [ + "cockpit-panel-etl-prd", + "cockpit-panel-root-etl-prd" + ], + "all_jobs": [ + "cockpit-panel-etl-prd", + "cockpit-panel-root-etl-prd" + ] + }, + "webmotors-private/webmotors.cockpit.sale": { + "prd_jobs": [ + "ckp.sale.pj.api.prd", + "ckp.sale.root.api.prd" + ], + "all_jobs": [ + "ckp.sale.pj.api.prd", + "ckp.sale.root.api.prd" + ] + }, + "webmotors-private/webmotors.cockpit.signature.api": { + "prd_jobs": [ + "prd-cockpit-signature-api" + ], + "all_jobs": [ + "prd-cockpit-signature-api" + ] + }, + "webmotors-private/webmotors.cockpit.signature.ui": { + "prd_jobs": [ + "prd-cockpit-signature-ui" + ], + "all_jobs": [ + "prd-cockpit-signature-ui" + ] + }, + "webmotors-private/webmotors.cockpit.stock.api": { + "prd_jobs": [ + "prd-cockpit-stock", + "prd-cockpit-stock-i18n" + ], + "all_jobs": [ + "prd-cockpit-stock", + "prd-cockpit-stock-i18n" + ] + }, + "webmotors-private/webmotors.cockpit.stock.ui": { + "prd_jobs": [ + "prd-cockpit-stock-ui" + ], + "all_jobs": [ + "prd-cockpit-stock-ui" + ] + }, + "webmotors-private/webmotors.cockpit.stock.ui.channel": { + "prd_jobs": [ + "prd-cockpit-stock-ui-channel" + ], + "all_jobs": [ + "prd-cockpit-stock-ui-channel" + ] + }, + "webmotors-private/webmotors.cockpit.store.api": { + "prd_jobs": [ + "cockpit-store-api-campaign-prd", + "cockpit-store-api-prd", + "cockpit-store-services-prd", + "root-cockpit-store-api-campaign-module-prd" + ], + "all_jobs": [ + "cockpit-store-api-campaign-prd", + "cockpit-store-api-prd", + "cockpit-store-services-prd", + "root-cockpit-store-api-campaign-module-prd" + ] + }, + "webmotors-private/webmotors.cockpit.store.ui": { + "prd_jobs": [ + "cockpit-store-ui-prd" + ], + "all_jobs": [ + "cockpit-store-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.subscription.ui": { + "prd_jobs": [ + "prd-wm-cockpit-subscription-ui" + ], + "all_jobs": [ + "prd-wm-cockpit-subscription-ui" + ] + }, + "webmotors-private/webmotors.cockpit.ui": { + "prd_jobs": [ + "cockpit-ui-prd" + ], + "all_jobs": [ + "cockpit-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.universidade.api": { + "prd_jobs": [ + "universidade-api-prd" + ], + "all_jobs": [ + "universidade-api-prd" + ] + }, + "webmotors-private/webmotors.cockpit.universidade.csv.salesforce.lambda": { + "prd_jobs": [ + "university-send-csv-to-mailing-prd" + ], + "all_jobs": [ + "university-send-csv-to-mailing-prd" + ] + }, + "webmotors-private/webmotors.cockpit.universidade.hub.sales.info.lambda": { + "prd_jobs": [ + "universidade-sales-info-lambda-prd" + ], + "all_jobs": [ + "universidade-sales-info-lambda-prd" + ] + }, + "webmotors-private/webmotors.cockpit.universidade.ui": { + "prd_jobs": [ + "universidade-ui-prd" + ], + "all_jobs": [ + "universidade-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.wallet.api": { + "prd_jobs": [ + "cockpit-wallet-api-prd-old", + "cockpit-wallet-prd", + "cockpit-wallet-services-prd" + ], + "all_jobs": [ + "cockpit-wallet-api-prd-old", + "cockpit-wallet-prd", + "cockpit-wallet-services-prd" + ] + }, + "webmotors-private/webmotors.cockpit.wallet.ui": { + "prd_jobs": [ + "cockpit-wallet-ui-prd" + ], + "all_jobs": [ + "cockpit-wallet-ui-prd" + ] + }, + "webmotors-private/webmotors.cockpit.webtv.ui": { + "prd_jobs": [ + "webmotors-cockpit-webtv-ui-prd" + ], + "all_jobs": [ + "webmotors-cockpit-webtv-ui-prd" + ] + }, + "webmotors-private/webmotors.cognito.api": { + "prd_jobs": [ + "LoginPF-Api/loginpf-api-prd", + "LoginPF-Api/loginpf-whatsapp-prd" + ], + "all_jobs": [ + "LoginPF-Api/loginpf-api-prd", + "LoginPF-Api/loginpf-whatsapp-prd" + ] + }, + "webmotors-private/webmotors.cognito.ui": { + "prd_jobs": [ + "LoginPF-UI/loginpf-ui-prd", + "PI-Security/login-ui/login-ui-prd" + ], + "all_jobs": [ + "LoginPF-UI/loginpf-ui-prd", + "PI-Security/login-ui/login-ui-prd" + ] + }, + "webmotors-private/webmotors.consumer.storybook": { + "prd_jobs": [ + "StoryBook-UI/storybook-ui-prd" + ], + "all_jobs": [ + "StoryBook-UI/storybook-ui-prd" + ] + }, + "webmotors-private/webmotors.coupon.api": { + "prd_jobs": [ + "Coupon-Api/coupon-api-prd" + ], + "all_jobs": [ + "Coupon-Api/coupon-api-prd" + ] + }, + "webmotors-private/webmotors.coupon.ui": { + "prd_jobs": [ + "Coupon-UI/coupon-ui-prd" + ], + "all_jobs": [ + "Coupon-UI/coupon-ui-prd" + ] + }, + "webmotors-private/webmotors.databricks.previa": { + "prd_jobs": [ + "pi.sales.api-billing.preview.prd" + ], + "all_jobs": [ + "pi.sales.api-billing.preview.prd" + ] + }, + "webmotors-private/webmotors.design.system.eleanor": { + "prd_jobs": [ + "eleanor-ui-prd" + ], + "all_jobs": [ + "eleanor-ui-prd" + ] + }, + "webmotors-private/webmotors.dynamic.price.api": { + "prd_jobs": [ + "DynamicPrice-Api/dynamic-price-api-prd" + ], + "all_jobs": [ + "DynamicPrice-Api/dynamic-price-api-prd" + ] + }, + "webmotors-private/webmotors.entity.state": { + "prd_jobs": [ + "pi.sales.api-entity.notify.prd", + "pi.sales.api-entity.save.prd", + "pi.sales.api-entity.send.prd" + ], + "all_jobs": [ + "pi.sales.api-entity.notify.prd", + "pi.sales.api-entity.save.prd", + "pi.sales.api-entity.send.prd" + ] + }, + "webmotors-private/webmotors.etl": { + "prd_jobs": [ + "PI-Security/prd-service-etl-internauta", + "webmotors-etl-services-financiamento-back-prd" + ], + "all_jobs": [ + "PI-Security/prd-service-etl-internauta", + "webmotors-etl-services-financiamento-back-prd" + ] + }, + "webmotors-private/webmotors.etl.services.mailmessage": { + "prd_jobs": [ + "prd-api-mail-message" + ], + "all_jobs": [ + "prd-api-mail-message" + ] + }, + "webmotors-private/webmotors.fairs.opener": { + "prd_jobs": [ + "wm-fairs-opener-prd" + ], + "all_jobs": [ + "wm-fairs-opener-prd" + ] + }, + "webmotors-private/webmotors.financial.ui.bank": { + "prd_jobs": [ + "pi.money-financial-bank-ui-prd" + ], + "all_jobs": [ + "pi.money-financial-bank-ui-prd" + ] + }, + "webmotors-private/webmotors.financiamento.lib": { + "prd_jobs": [ + "webmotors-financing-lib-npm-front-prd" + ], + "all_jobs": [ + "webmotors-financing-lib-npm-front-prd" + ] + }, + "webmotors-private/webmotors.financiamento.santander.api": { + "prd_jobs": [ + "webmotors-financiamento-santander-api-back-prd" + ], + "all_jobs": [ + "webmotors-financiamento-santander-api-back-prd" + ] + }, + "webmotors-private/webmotors.financing-platform": { + "prd_jobs": [ + "webmotors-financing-platform-front-prd" + ], + "all_jobs": [ + "webmotors-financing-platform-front-prd" + ] + }, + "webmotors-private/webmotors.financing.auth": { + "prd_jobs": [ + "webmotors-financing-auth-back-prd" + ], + "all_jobs": [ + "webmotors-financing-auth-back-prd" + ] + }, + "webmotors-private/webmotors.financing.backoffice": { + "prd_jobs": [ + "webmotors-financing-backoffice-back-prd" + ], + "all_jobs": [ + "webmotors-financing-backoffice-back-prd" + ] + }, + "webmotors-private/webmotors.financing.dealerships": { + "prd_jobs": [ + "webmotors-financing-dealerships-back-prd" + ], + "all_jobs": [ + "webmotors-financing-dealerships-back-prd" + ] + }, + "webmotors-private/webmotors.financing.extensions": { + "prd_jobs": [ + "webmotors-financing-packages-back-prd" + ], + "all_jobs": [ + "webmotors-financing-packages-back-prd" + ] + }, + "webmotors-private/webmotors.financing.integrations": { + "prd_jobs": [ + "webmotors-financing-integrations-back-prd" + ], + "all_jobs": [ + "webmotors-financing-integrations-back-prd" + ] + }, + "webmotors-private/webmotors.financing.intermediator": { + "prd_jobs": [ + "webmotors-financing-intermediator-back-prd" + ], + "all_jobs": [ + "webmotors-financing-intermediator-back-prd" + ] + }, + "webmotors-private/webmotors.financing.packages": { + "prd_jobs": [ + "webmotors-financing-packages-back-prd" + ], + "all_jobs": [ + "webmotors-financing-packages-back-prd" + ] + }, + "webmotors-private/webmotors.financing.pionner": { + "prd_jobs": [ + "webmotors-financing-pioneer-back-prd" + ], + "all_jobs": [ + "webmotors-financing-pioneer-back-prd" + ] + }, + "webmotors-private/webmotors.financing.rules": { + "prd_jobs": [ + "webmotors-financing-rules-back-prd" + ], + "all_jobs": [ + "webmotors-financing-rules-back-prd" + ] + }, + "webmotors-private/webmotors.fipe.api": { + "prd_jobs": [ + "fipe-api-dotnet-prd", + "fipe-api-node-prd", + "fipe-average-bike-prd", + "fipe-average-car-prd", + "fipe-parse-file-prd", + "fipe-services-dotnet-prd" + ], + "all_jobs": [ + "fipe-api-dotnet-prd", + "fipe-api-node-prd", + "fipe-average-bike-prd", + "fipe-average-car-prd", + "fipe-parse-file-prd", + "fipe-services-dotnet-prd" + ] }, "webmotors-private/webmotors.fipe.next.ui": { - "prd_jobs": ["fipe-next-ui-prd"], - "all_jobs": ["fipe-lambda-edge-hml", "fipe-next-ui-azl", "fipe-next-ui-hml", "fipe-next-ui-prd"] + "prd_jobs": [ + "fipe-next-ui-prd" + ], + "all_jobs": [ + "fipe-next-ui-prd" + ] + }, + "webmotors-private/webmotors.fipe.ui": { + "prd_jobs": [ + "buyer-fipe-ui-prd" + ], + "all_jobs": [ + "buyer-fipe-ui-prd" + ] + }, + "webmotors-private/webmotors.garagem": { + "prd_jobs": [ + "Garagem-UI/garagem-ui-prd" + ], + "all_jobs": [ + "Garagem-UI/garagem-ui-prd" + ] + }, + "webmotors-private/webmotors.group.fiscal.files": { + "prd_jobs": [ + "api-fiscal-files-prd", + "prd-service-arquivos-grupos", + "prd-service-validar-arquivos-grupos" + ], + "all_jobs": [ + "api-fiscal-files-prd", + "prd-service-arquivos-grupos", + "prd-service-validar-arquivos-grupos" + ] + }, + "webmotors-private/webmotors.hub.pipelines": { + "prd_jobs": [ + "pi.money-etl-faturaleadmodel-prd", + "pi.money-etl-faturapatrocinio-prd", + "pi.money-lote-baixamanual-etl-prd", + "pi.money-lote.reagendarcobranca-etl-prd", + "pi.money-processos-prompt-etl-prd", + "pi.sales-etl-LancarVendaAnuncioSite-prd", + "pi.sales-etl-associacaofeirao-prd", + "pi.sales-etl-ativacao.anuncio-prd", + "pi.sales-etl.venda.automatica.prd", + "pi.sales-etl.venda.automatica.start.stop.prd", + "pi.sales-lote.incluirvenda-prd", + "pi.sales-lote.substituirvenda-prd", + "pi.sales.etl.plano-controle-prd", + "prd-front-hub", + "sales.controlar-pendencias.servico.prd", + "sales.lote-cancelar-venda.servico.prd", + "sales.lote-periodo-desconto.servico.prd", + "sales.processo-reajusteIGPM.servico.prd" + ], + "all_jobs": [ + "pi.money-etl-faturaleadmodel-prd", + "pi.money-etl-faturapatrocinio-prd", + "pi.money-lote-baixamanual-etl-prd", + "pi.money-lote.reagendarcobranca-etl-prd", + "pi.money-processos-prompt-etl-prd", + "pi.sales-etl-LancarVendaAnuncioSite-prd", + "pi.sales-etl-associacaofeirao-prd", + "pi.sales-etl-ativacao.anuncio-prd", + "pi.sales-etl.venda.automatica.prd", + "pi.sales-etl.venda.automatica.start.stop.prd", + "pi.sales-lote.incluirvenda-prd", + "pi.sales-lote.substituirvenda-prd", + "pi.sales.etl.plano-controle-prd", + "prd-front-hub", + "sales.controlar-pendencias.servico.prd", + "sales.lote-cancelar-venda.servico.prd", + "sales.lote-periodo-desconto.servico.prd", + "sales.processo-reajusteIGPM.servico.prd" + ] + }, + "webmotors-private/webmotors.integrador": { + "prd_jobs": [ + "cockpit-integrator-santander-leadfile-prd", + "cockpit-integrator-santander-sendlead-prd" + ], + "all_jobs": [ + "cockpit-integrator-santander-leadfile-prd", + "cockpit-integrator-santander-sendlead-prd" + ] + }, + "webmotors-private/webmotors.jira.automation": { + "prd_jobs": [ + "PI-Security/prd-lambda-jira-automation" + ], + "all_jobs": [ + "PI-Security/prd-lambda-jira-automation" + ] + }, + "webmotors-private/webmotors.landingpages.ui": { + "prd_jobs": [ + "pf-landing-pages-ui-prd" + ], + "all_jobs": [ + "pf-landing-pages-ui-prd" + ] + }, + "webmotors-private/webmotors.lead.api": { + "prd_jobs": [ + "pi.sales.api-lead.contestation.prd", + "pi.sales.api-lead.list.leadbyad.prd", + "pi.sales.api-lead.listLogProcess.prd", + "pi.sales.api-lead.upload.prd" + ], + "all_jobs": [ + "pi.sales.api-lead.contestation.prd", + "pi.sales.api-lead.list.leadbyad.prd", + "pi.sales.api-lead.listLogProcess.prd", + "pi.sales.api-lead.upload.prd" + ] + }, + "webmotors-private/webmotors.lojaoficial.api": { + "prd_jobs": [ + "prd-loja-oficial-api-deletar" + ], + "all_jobs": [ + "prd-loja-oficial-api-deletar" + ] + }, + "webmotors-private/webmotors.maisfidelidade.backoffice.api": { + "prd_jobs": [ + "mais-fidelidade-lojas-backoffice-prd-api" + ], + "all_jobs": [ + "mais-fidelidade-lojas-backoffice-prd-api" + ] + }, + "webmotors-private/webmotors.maisfidelidade.backoffice.ui": { + "prd_jobs": [ + "mais-fidelidade-lojas-backoffice-prd-ui" + ], + "all_jobs": [ + "mais-fidelidade-lojas-backoffice-prd-ui" + ] + }, + "webmotors-private/webmotors.money.pipelines": { + "prd_jobs": [ + "PI-Money/money-criticality-dependabot-prd", + "PI-Money/prd-ecs-santander-integration", + "PI-Money/prd-fiscal-links-lambda-customer", + "PI-Money/prd-invoice-integration", + "prd-api-santander-integration-payments", + "prd-api-webhook-apple-refund", + "prd-api-webhook-apple-router", + "prd-ecs-api-payment", + "prd-nfe-cancel-fakecustomer-lambda-job", + "prd-service-arquivocnab", + "prd-service-arquivos-grupos", + "prd-service-baixa-etl-pagamento", + "prd-service-processar-cnab-etl-retorno", + "prd-service-validar-arquivos-grupos", + "root-account-prd-api-solicitation" + ], + "all_jobs": [ + "PI-Money/money-criticality-dependabot-prd", + "PI-Money/prd-ecs-santander-integration", + "PI-Money/prd-fiscal-links-lambda-customer", + "PI-Money/prd-invoice-integration", + "prd-api-santander-integration-payments", + "prd-api-webhook-apple-refund", + "prd-api-webhook-apple-router", + "prd-ecs-api-payment", + "prd-nfe-cancel-fakecustomer-lambda-job", + "prd-service-arquivocnab", + "prd-service-arquivos-grupos", + "prd-service-baixa-etl-pagamento", + "prd-service-processar-cnab-etl-retorno", + "prd-service-validar-arquivos-grupos", + "root-account-prd-api-solicitation" + ] + }, + "webmotors-private/webmotors.netsuite.integration": { + "prd_jobs": [ + "pi.sales.api-product.netsuite.send.prd" + ], + "all_jobs": [ + "pi.sales.api-product.netsuite.send.prd" + ] + }, + "webmotors-private/webmotors.next.ui": { + "prd_jobs": [ + "prd-wm-buyer-home-frontend-ui", + "prd-wm-buyer-search-frontend-ui", + "prd-wm-buyer-subscriptions-frontend-ui" + ], + "all_jobs": [ + "prd-wm-buyer-home-frontend-ui", + "prd-wm-buyer-search-frontend-ui", + "prd-wm-buyer-subscriptions-frontend-ui" + ] + }, + "webmotors-private/webmotors.pandora": { + "prd_jobs": [ + "ecs-pandora-search-prd", + "pandora-publisher-advertiser-prd", + "pandora-score-prd" + ], + "all_jobs": [ + "ecs-pandora-search-prd", + "pandora-publisher-advertiser-prd", + "pandora-score-prd" + ] + }, + "webmotors-private/webmotors.pandora.monitoring": { + "prd_jobs": [ + "pandora-monitoring-prd" + ], + "all_jobs": [ + "pandora-monitoring-prd" + ] + }, + "webmotors-private/webmotors.parcer.ia.mcp.financing": { + "prd_jobs": [ + "prd-mcp-financiamento" + ], + "all_jobs": [ + "prd-mcp-financiamento" + ] + }, + "webmotors-private/webmotors.parcer.ia.mcp.leads": { + "prd_jobs": [ + "prd-mcp-lead" + ], + "all_jobs": [ + "prd-mcp-lead" + ] + }, + "webmotors-private/webmotors.parcer.ia.mcp.vehicle_discovery": { + "prd_jobs": [ + "prd-mcp-anuncio" + ], + "all_jobs": [ + "prd-mcp-anuncio" + ] + }, + "webmotors-private/webmotors.payment": { + "prd_jobs": [ + "root-account-ios-prd-receive-payment" + ], + "all_jobs": [ + "root-account-ios-prd-receive-payment" + ] + }, + "webmotors-private/webmotors.pf": { + "prd_jobs": [ + "android-pf-prd-firebase", + "android-pf-prd-playstore", + "android-pf-prd-promotion", + "ios-pf-prd-firebase", + "ios-pf-prd-promotion", + "ios-pf-prd-testflight", + "web-cms-pf-prd", + "webservicos-web-prd" + ], + "all_jobs": [ + "android-pf-prd-firebase", + "android-pf-prd-playstore", + "android-pf-prd-promotion", + "ios-pf-prd-firebase", + "ios-pf-prd-promotion", + "ios-pf-prd-testflight", + "web-cms-pf-prd", + "webservicos-web-prd" + ] + }, + "webmotors-private/webmotors.phone.tracking": { + "prd_jobs": [ + "ckp.event.bridge.enable.disable.prd", + "cockpit-integration-phone-tracking-lambda-prd", + "phone-tracking-api-prd" + ], + "all_jobs": [ + "ckp.event.bridge.enable.disable.prd", + "cockpit-integration-phone-tracking-lambda-prd", + "phone-tracking-api-prd" + ] + }, + "webmotors-private/webmotors.physical.person.ui": { + "prd_jobs": [ + "prd-ui-physical-person" + ], + "all_jobs": [ + "prd-ui-physical-person" + ] + }, + "webmotors-private/webmotors.pi.sales.components": { + "prd_jobs": [ + "sales.extension.components.prd" + ], + "all_jobs": [ + "sales.extension.components.prd" + ] + }, + "webmotors-private/webmotors.pk.security.pipes": { + "prd_jobs": [ + "PI-Security/login-ui/login-ui-prd", + "PI-Security/prd-api-ad-zendesk", + "PI-Security/prd-ecs-api-access", + "PI-Security/prd-ecs-api-upld", + "PI-Security/prd-ecs-api-zendesk", + "PI-Security/prd-etl-upld-upload-process", + "PI-Security/prd-lambda-access-api", + "PI-Security/prd-lambda-address-api", + "PI-Security/prd-lambda-annotation", + "PI-Security/prd-lambda-antifraud-api", + "PI-Security/prd-lambda-api-ad", + "PI-Security/prd-lambda-api-cognito", + "PI-Security/prd-lambda-api-legal-person", + "PI-Security/prd-lambda-api-natural-person", + "PI-Security/prd-lambda-audit", + "PI-Security/prd-lambda-authorization", + "PI-Security/prd-lambda-bureau", + "PI-Security/prd-lambda-bureau-javascript", + "PI-Security/prd-lambda-bureau-santander-person", + "PI-Security/prd-lambda-consent", + "PI-Security/prd-lambda-internauta", + "PI-Security/prd-lambda-jira-automation", + "PI-Security/prd-lambda-legal-person-api-new", + "PI-Security/prd-lambda-legal-person-notificate", + "PI-Security/prd-lambda-legal-person-update-sql-keys", + "PI-Security/prd-lambda-login", + "PI-Security/prd-lambda-mail-message", + "PI-Security/prd-lambda-monitor-droz", + "PI-Security/prd-lambda-monitor-zendesk", + "PI-Security/prd-lambda-natural-person-purge", + "PI-Security/prd-lambda-ocr", + "PI-Security/prd-lambda-preventive-analysis", + "PI-Security/prd-lambda-preventive-analysis-legal-person", + "PI-Security/prd-lambda-proposal-analysis", + "PI-Security/prd-lambda-reason", + "PI-Security/prd-lambda-report-ad", + "PI-Security/prd-lambda-restrictive-list", + "PI-Security/prd-service-etl-internauta", + "PI-Security/prd-ui-legalperson-zendesk", + "prd-api-mail-message", + "prd-lambda-api-ad-import", + "prd-lambda-audit-access", + "prd-lambda-physicalperson-salesforce", + "prd-lambda-vehicleinspection", + "prd-ui-physical-person" + ], + "all_jobs": [ + "PI-Security/login-ui/login-ui-prd", + "PI-Security/prd-api-ad-zendesk", + "PI-Security/prd-ecs-api-access", + "PI-Security/prd-ecs-api-upld", + "PI-Security/prd-ecs-api-zendesk", + "PI-Security/prd-etl-upld-upload-process", + "PI-Security/prd-lambda-access-api", + "PI-Security/prd-lambda-address-api", + "PI-Security/prd-lambda-annotation", + "PI-Security/prd-lambda-antifraud-api", + "PI-Security/prd-lambda-api-ad", + "PI-Security/prd-lambda-api-cognito", + "PI-Security/prd-lambda-api-legal-person", + "PI-Security/prd-lambda-api-natural-person", + "PI-Security/prd-lambda-audit", + "PI-Security/prd-lambda-authorization", + "PI-Security/prd-lambda-bureau", + "PI-Security/prd-lambda-bureau-javascript", + "PI-Security/prd-lambda-bureau-santander-person", + "PI-Security/prd-lambda-consent", + "PI-Security/prd-lambda-internauta", + "PI-Security/prd-lambda-jira-automation", + "PI-Security/prd-lambda-legal-person-api-new", + "PI-Security/prd-lambda-legal-person-notificate", + "PI-Security/prd-lambda-legal-person-update-sql-keys", + "PI-Security/prd-lambda-login", + "PI-Security/prd-lambda-mail-message", + "PI-Security/prd-lambda-monitor-droz", + "PI-Security/prd-lambda-monitor-zendesk", + "PI-Security/prd-lambda-natural-person-purge", + "PI-Security/prd-lambda-ocr", + "PI-Security/prd-lambda-preventive-analysis", + "PI-Security/prd-lambda-preventive-analysis-legal-person", + "PI-Security/prd-lambda-proposal-analysis", + "PI-Security/prd-lambda-reason", + "PI-Security/prd-lambda-report-ad", + "PI-Security/prd-lambda-restrictive-list", + "PI-Security/prd-service-etl-internauta", + "PI-Security/prd-ui-legalperson-zendesk", + "prd-api-mail-message", + "prd-lambda-api-ad-import", + "prd-lambda-audit-access", + "prd-lambda-physicalperson-salesforce", + "prd-lambda-vehicleinspection", + "prd-ui-physical-person" + ] + }, + "webmotors-private/webmotors.portal": { + "prd_jobs": [ + "PF-Api/pf-api-app-prd", + "PF-Api/pf-api-web-prd" + ], + "all_jobs": [ + "PF-Api/pf-api-app-prd", + "PF-Api/pf-api-web-prd" + ] + }, + "webmotors-private/webmotors.portal-parceria-lead": { + "prd_jobs": [ + "wm-portal-parceria-lead-prd-pf", + "wm-portal-parceria-lead-prd-root" + ], + "all_jobs": [ + "wm-portal-parceria-lead-prd-pf", + "wm-portal-parceria-lead-prd-root" + ] + }, + "webmotors-private/webmotors.portal.api": { + "prd_jobs": [ + "prd-wm-portal-api" + ], + "all_jobs": [ + "prd-wm-portal-api" + ] + }, + "webmotors-private/webmotors.portal.conversions.facebook": { + "prd_jobs": [ + "prd-lambda-conversions-facebook" + ], + "all_jobs": [ + "prd-lambda-conversions-facebook" + ] + }, + "webmotors-private/webmotors.portal.dealer.info.sync": { + "prd_jobs": [ + "wm-dealer-info-prd" + ], + "all_jobs": [ + "wm-dealer-info-prd" + ] + }, + "webmotors-private/webmotors.portal.lead.analytics": { + "prd_jobs": [ + "prd-portal-lead-analytics-send" + ], + "all_jobs": [ + "prd-portal-lead-analytics-send" + ] + }, + "webmotors-private/webmotors.portal.logs": { + "prd_jobs": [ + "wm-processlog-prd" + ], + "all_jobs": [ + "wm-processlog-prd" + ] + }, + "webmotors-private/webmotors.portal.postenquiry": { + "prd_jobs": [ + "prd-portal-lead-send-post-enquiry" + ], + "all_jobs": [ + "prd-portal-lead-send-post-enquiry" + ] + }, + "webmotors-private/webmotors.portal.ui": { + "prd_jobs": [ + "prd-wm-buyer-lambda-home-ui" + ], + "all_jobs": [ + "prd-wm-buyer-lambda-home-ui" + ] + }, + "webmotors-private/webmotors.portal.wm1.service": { + "prd_jobs": [ + "prd-wm1-portal-service" + ], + "all_jobs": [ + "prd-wm1-portal-service" + ] + }, + "webmotors-private/webmotors.precodinamico.ui": { + "prd_jobs": [ + "PrecoDinamico-UI/precodinamico-ui-prd" + ], + "all_jobs": [ + "PrecoDinamico-UI/precodinamico-ui-prd" + ] + }, + "webmotors-private/webmotors.react.pj": { + "prd_jobs": [ + "Cockpit.Inspection/prd-cockpit-inspection-ui", + "agendafacil-cockpit-ui-prd", + "cockpit-backoffice-offers-ui-prd", + "cockpit-backoffice-ui-prd", + "cockpit-crmcustomer-ui-prd", + "cockpit-integration-usermanagement-ui-prd", + "cockpit-invoice-ui-prd", + "cockpit-leads-ui-prd", + "cockpit-store-ui-prd", + "cockpit-ui-prd", + "cockpit-wallet-ui-prd", + "prd-cockpit-signature-ui", + "prd-cockpit-stock-ui", + "prd-cockpit-stock-ui-channel", + "prd-ui-physical-person", + "subscription-backoffice-ui-prd", + "webmotors-cockpit-webtv-ui-prd" + ], + "all_jobs": [ + "Cockpit.Inspection/prd-cockpit-inspection-ui", + "agendafacil-cockpit-ui-prd", + "cockpit-backoffice-offers-ui-prd", + "cockpit-backoffice-ui-prd", + "cockpit-crmcustomer-ui-prd", + "cockpit-integration-usermanagement-ui-prd", + "cockpit-invoice-ui-prd", + "cockpit-leads-ui-prd", + "cockpit-store-ui-prd", + "cockpit-ui-prd", + "cockpit-wallet-ui-prd", + "prd-cockpit-signature-ui", + "prd-cockpit-stock-ui", + "prd-cockpit-stock-ui-channel", + "prd-ui-physical-person", + "subscription-backoffice-ui-prd", + "webmotors-cockpit-webtv-ui-prd" + ] + }, + "webmotors-private/webmotors.sales.api.revendamais": { + "prd_jobs": [ + "pi.sales.api-revendamais.cancel.prd", + "pi.sales.api-revendamais.save.prd", + "pi.sales.api-revendamais.update.prd" + ], + "all_jobs": [ + "pi.sales.api-revendamais.cancel.prd", + "pi.sales.api-revendamais.save.prd", + "pi.sales.api-revendamais.update.prd" + ] + }, + "webmotors-private/webmotors.sales.dependabot.analyzer": { + "prd_jobs": [ + "sales.dependabot.analyzer.prd" + ], + "all_jobs": [ + "sales.dependabot.analyzer.prd" + ] + }, + "webmotors-private/webmotors.santander.webapi.integration": { + "prd_jobs": [ + "PI-Money/prd-ecs-santander-integration" + ], + "all_jobs": [ + "PI-Money/prd-ecs-santander-integration" + ] + }, + "webmotors-private/webmotors.seller.api": { + "prd_jobs": [ + "Seller-Api/seller-api-prd" + ], + "all_jobs": [ + "Seller-Api/seller-api-prd" + ] + }, + "webmotors-private/webmotors.sendmail": { + "prd_jobs": [ + "ckp.sendmail.salesforce.api.prd" + ], + "all_jobs": [ + "ckp.sendmail.salesforce.api.prd" + ] + }, + "webmotors-private/webmotors.subscription.api": { + "prd_jobs": [ + "portal-assinaturas-root-account/wm-subscription-api-prd-root-account", + "portal-subscription/wm-subscription-prd-api" + ], + "all_jobs": [ + "portal-assinaturas-root-account/wm-subscription-api-prd-root-account", + "portal-subscription/wm-subscription-prd-api" + ] + }, + "webmotors-private/webmotors.subscription.backoffice.ui": { + "prd_jobs": [ + "subscription-backoffice-ui-prd" + ], + "all_jobs": [ + "subscription-backoffice-ui-prd" + ] + }, + "webmotors-private/webmotors.subscription.cms": { + "prd_jobs": [ + "portal-subscription-cms/subscription-cms-api-prd" + ], + "all_jobs": [ + "portal-subscription-cms/subscription-cms-api-prd" + ] + }, + "webmotors-private/webmotors.tv": { + "prd_jobs": [ + "webmotors-tv-cockpit-prd", + "webmotors-tv-common-prd", + "webmotors-tv-feed-prd", + "webmotors-tv-market-square-prd", + "webmotors-tv-production-schedule-hml", + "webmotors-tv-production-schedule-prd", + "webmotors-tv-sale-prd" + ], + "all_jobs": [ + "webmotors-tv-cockpit-prd", + "webmotors-tv-common-prd", + "webmotors-tv-feed-prd", + "webmotors-tv-market-square-prd", + "webmotors-tv-production-schedule-hml", + "webmotors-tv-production-schedule-prd", + "webmotors-tv-sale-prd" + ] + }, + "webmotors-private/webmotors.tv.ui": { + "prd_jobs": [ + "webmotors-tv-ui-prd" + ], + "all_jobs": [ + "webmotors-tv-ui-prd" + ] + }, + "webmotors-private/webmotors.university.banner": { + "prd_jobs": [ + "university-banner-api-prd" + ], + "all_jobs": [ + "university-banner-api-prd" + ] + }, + "webmotors-private/webmotors.university.certificate": { + "prd_jobs": [ + "university-certificate-api-prd" + ], + "all_jobs": [ + "university-certificate-api-prd" + ] + }, + "webmotors-private/webmotors.university.course": { + "prd_jobs": [ + "university-course-api-prd" + ], + "all_jobs": [ + "university-course-api-prd" + ] + }, + "webmotors-private/webmotors.university.enrollment": { + "prd_jobs": [ + "university-enrollment-api-prd" + ], + "all_jobs": [ + "university-enrollment-api-prd" + ] + }, + "webmotors-private/webmotors.university.event": { + "prd_jobs": [ + "university-event-api-prd" + ], + "all_jobs": [ + "university-event-api-prd" + ] + }, + "webmotors-private/webmotors.university.lead": { + "prd_jobs": [ + "university-lead-api-prd" + ], + "all_jobs": [ + "university-lead-api-prd" + ] + }, + "webmotors-private/webmotors.university.streaming": { + "prd_jobs": [ + "university-streaming-api-prd" + ], + "all_jobs": [ + "university-streaming-api-prd" + ] + }, + "webmotors-private/webmotors.university.user": { + "prd_jobs": [ + "university-user-api-prd" + ], + "all_jobs": [ + "university-user-api-prd" + ] + }, + "webmotors-private/webmotors.upld": { + "prd_jobs": [ + "PI-Security/prd-ecs-api-upld" + ], + "all_jobs": [ + "PI-Security/prd-ecs-api-upld" + ] + }, + "webmotors-private/webmotors.vehicleinspection": { + "prd_jobs": [ + "prd-cockpit-stock-vehicleinspection" + ], + "all_jobs": [ + "prd-cockpit-stock-vehicleinspection" + ] + }, + "webmotors-private/webmotors.vender": { + "prd_jobs": [ + "Vender-UI/vender-ui-prd" + ], + "all_jobs": [ + "Vender-UI/vender-ui-prd" + ] + }, + "webmotors-private/webmotors.vender.lp": { + "prd_jobs": [ + "VenderLP-UI/venderlp-ui-prd" + ], + "all_jobs": [ + "VenderLP-UI/venderlp-ui-prd" + ] + }, + "webmotors-private/webmotors.vmotors": { + "prd_jobs": [ + "api-pj-prd" + ], + "all_jobs": [ + "api-pj-prd" + ] + }, + "webmotors-private/webmotors.webapi.payment": { + "prd_jobs": [ + "prd-ecs-api-payment" + ], + "all_jobs": [ + "prd-ecs-api-payment" + ] + }, + "webmotors-private/webmotors.webservicos.api": { + "prd_jobs": [ + "webservicos-api-banner-prd", + "webservicos-api-user-prd" + ], + "all_jobs": [ + "webservicos-api-banner-prd", + "webservicos-api-user-prd" + ] + }, + "webmotors-private/webmotors.webservicos.api.bff": { + "prd_jobs": [ + "webservicos-api-bff-prd" + ], + "all_jobs": [ + "webservicos-api-bff-prd" + ] + }, + "webmotors-private/webmotors.webservicos.lambdas": { + "prd_jobs": [ + "webservicos-lambdas-prd" + ], + "all_jobs": [ + "webservicos-lambdas-prd" + ] + }, + "webmotors-private/webmotors.webservicos.landingpage": { + "prd_jobs": [ + "webservicos-landingpage-next-ui-prd" + ], + "all_jobs": [ + "webservicos-landingpage-next-ui-prd" + ] + }, + "webmotors-private/webmotors.zendesk": { + "prd_jobs": [ + "PI-Security/prd-ecs-api-zendesk" + ], + "all_jobs": [ + "PI-Security/prd-ecs-api-zendesk" + ] + }, + "webmotors-private/webmotors.zendesk.app": { + "prd_jobs": [ + "PI-Security/prd-ui-legalperson-zendesk" + ], + "all_jobs": [ + "PI-Security/prd-ui-legalperson-zendesk" + ] + }, + "webmotors-private/webmotors.zendesk.natural.person.app": { + "prd_jobs": [ + "PI-Security/prd-api-ad-zendesk" + ], + "all_jobs": [ + "PI-Security/prd-api-ad-zendesk" + ] + }, + "webmotors-private/webmotors.zero.integracao.facebook": { + "prd_jobs": [ + "OEM/zero-integration-webhook-facebook/prd-lambda-zero-integration-webhook-facebook" + ], + "all_jobs": [ + "OEM/zero-integration-webhook-facebook/prd-lambda-zero-integration-webhook-facebook" + ] + }, + "webmotors-private/webmotors.zero.leads": { + "prd_jobs": [ + "OEM/zero-leads/prd-lambda-zero-leads" + ], + "all_jobs": [ + "OEM/zero-leads/prd-lambda-zero-leads" + ] + }, + "webmotors-private/webmotors.zero.officialstore.ui": { + "prd_jobs": [ + "zero-officialstore-ui-prod-deletar", + "zero-officialstore-ui/zero-officialstore-ui-prod" + ], + "all_jobs": [ + "zero-officialstore-ui-prod-deletar", + "zero-officialstore-ui/zero-officialstore-ui-prod" + ] + }, + "webmotors-private/webmotors.zero.pipelines": { + "prd_jobs": [ + "OEM/zero-integration-webhook-facebook/prd-lambda-zero-integration-webhook-facebook", + "OEM/zero-leads/prd-lambda-zero-leads", + "OEM/zero-preorder/prd-lambda-zero-preorder" + ], + "all_jobs": [ + "OEM/zero-integration-webhook-facebook/prd-lambda-zero-integration-webhook-facebook", + "OEM/zero-leads/prd-lambda-zero-leads", + "OEM/zero-preorder/prd-lambda-zero-preorder" + ] + }, + "webmotors-private/webmotors.zero.preorder.api": { + "prd_jobs": [ + "OEM/zero-preorder/prd-lambda-zero-preorder" + ], + "all_jobs": [ + "OEM/zero-preorder/prd-lambda-zero-preorder" + ] + }, + "webmotors-private/webmotors.zerokm": { + "prd_jobs": [ + "prd-zero-campaigns-api-deletar" + ], + "all_jobs": [ + "prd-zero-campaigns-api-deletar" + ] + }, + "webmotors-private/webmotors.zerokm.client": { + "prd_jobs": [ + "webmotors-zerokm-client-prd" + ], + "all_jobs": [ + "webmotors-zerokm-client-prd" + ] + }, + "webmotors-private/webmotors.zerokm.ui": { + "prd_jobs": [ + "webmotors-zerokm-ui-prd" + ], + "all_jobs": [ + "webmotors-zerokm-ui-prd" + ] + }, + "webmotors-private/wm1-api": { + "prd_jobs": [ + "prd-wm1-admin", + "prd-wm1-api" + ], + "all_jobs": [ + "prd-wm1-admin", + "prd-wm1-api" + ] }, - "webmotors-private/webmotors.app.pf.search.bff": { - "prd_jobs": ["webmotors-app-api-search-bff"], - "all_jobs": ["webmotors-app-api-search-bff"] + "webmotors-private/wm1-ui": { + "prd_jobs": [ + "prd-wm1-ui" + ], + "all_jobs": [ + "prd-wm1-ui" + ] }, - "webmotors-private/eleanor.flutter": { - "prd_jobs": ["webmotors-eleanor-flutter"], - "all_jobs": ["webmotors-eleanor-flutter"] + "_metadata": { + "generated": "2026-04-14", + "method": "READ-ONLY SCM scan of 544 active PRD Jenkins jobs via lastBuild/remoteUrls API", + "total_repos": 283, + "total_prd_jobs": 577, + "note": "Maps GitHub repos to Jenkins PRD jobs. Source: Git remoteUrl from lastBuild metadata." } } diff --git a/pulse/packages/pulse-data/scripts/discover_jenkins_jobs.py b/pulse/packages/pulse-data/scripts/discover_jenkins_jobs.py new file mode 100644 index 0000000..8014bbc --- /dev/null +++ b/pulse/packages/pulse-data/scripts/discover_jenkins_jobs.py @@ -0,0 +1,579 @@ +#!/usr/bin/env python3 +"""Jenkins Job Discovery & Auto-Mapping Script (READ-ONLY). + +Fetches ALL Jenkins jobs, classifies them by environment, and attempts +to match each job to a GitHub repo using multiple heuristic strategies. + +Output: A confidence-scored report for human review. Nothing is changed. + +Usage (from pulse/ root): + docker compose exec sync-worker python -m src.scripts.discover_jenkins_jobs + +Or locally: + cd packages/pulse-data && python scripts/discover_jenkins_jobs.py +""" + +from __future__ import annotations + +import asyncio +import json +import logging +import os +import re +import sys +from collections import defaultdict +from dataclasses import dataclass, field +from difflib import SequenceMatcher +from pathlib import Path +from typing import Any + +# --------------------------------------------------------------------------- +# Setup: ensure we can import from src/ +# --------------------------------------------------------------------------- +_script_dir = Path(__file__).resolve().parent +_pkg_root = _script_dir.parent # packages/pulse-data/ +if str(_pkg_root) not in sys.path: + sys.path.insert(0, str(_pkg_root)) + +from src.config import settings +from src.shared.http_client import ResilientHTTPClient + +logging.basicConfig( + level=logging.INFO, + format="%(asctime)s %(levelname)s [%(name)s] %(message)s", +) +logger = logging.getLogger("jenkins-discovery") + + +# --------------------------------------------------------------------------- +# Constants: Environment classification patterns +# --------------------------------------------------------------------------- + +# Patterns that indicate environment — ORDER MATTERS (first match wins) +ENV_PATTERNS: list[tuple[str, re.Pattern]] = [ + ("production", re.compile(r"(?i)(?:^|[-_./])(?:prd|prod|production)(?:[-_./]|$)")), + ("staging", re.compile(r"(?i)(?:^|[-_./])(?:stg|staging|azl|azul|blue)(?:[-_./]|$)")), + ("homolog", re.compile(r"(?i)(?:^|[-_./])(?:hml|homolog|homologacao|uat)(?:[-_./]|$)")), + ("dev", re.compile(r"(?i)(?:^|[-_./])(?:dev|develop|development|sandbox)(?:[-_./]|$)")), + ("test", re.compile(r"(?i)(?:^|[-_./])(?:test|qa|quality)(?:[-_./]|$)")), +] + +# Suffixes/prefixes to strip when extracting the "core" job name +ENV_STRIP_PATTERNS = re.compile( + r"(?i)" + r"(?:^(?:prd|prod|hml|azl|stg|dev|test|qa)-)|" # prefix: prd-xxx + r"(?:-(?:prd|prod|hml|azl|stg|dev|test|qa)$)|" # suffix: xxx-prd + r"(?:-rollback$)|" # rollback variants + r"(?:-nodejs\d+$)|" # runtime variants + r"(?:-firebase$|-playstore$|-testflight$)" # distribution channel +) + +# Additional noise to strip from job names for matching +NOISE_STRIP = re.compile( + r"(?i)" + r"(?:^wm-|^webmotors-)|" # org prefix + r"(?:-ui$|-api$|-bff$|-web$|-lambda$)|" # type suffix (keep for matching) + r"(?:^build-)|" # build prefix + r"(?:-all-platforms$)" # multi-platform suffix +) + + +# --------------------------------------------------------------------------- +# Data structures +# --------------------------------------------------------------------------- + +@dataclass +class JenkinsJob: + """A discovered Jenkins job with classification metadata.""" + full_name: str + url: str + color: str # Jenkins color = last build status + environment: str = "unknown" + core_name: str = "" # Normalized name for matching + matched_repo: str | None = None + match_confidence: float = 0.0 + match_strategy: str = "" + is_disabled: bool = False + + def __post_init__(self): + self.is_disabled = self.color in ("disabled", "disabled_anime") + self.environment = self._classify_environment() + self.core_name = self._extract_core_name() + + def _classify_environment(self) -> str: + for env_name, pattern in ENV_PATTERNS: + if pattern.search(self.full_name): + return env_name + return "unknown" + + def _extract_core_name(self) -> str: + """Strip environment prefixes/suffixes to get the 'core' job identity.""" + name = self.full_name + # Iterative stripping (some jobs have multiple patterns) + for _ in range(3): + stripped = ENV_STRIP_PATTERNS.sub("", name) + if stripped == name: + break + name = stripped.strip("-_") + return name.lower() + + +@dataclass +class MatchResult: + """A potential job→repo match with confidence scoring.""" + job_name: str + repo_name: str + confidence: float # 0.0 - 1.0 + strategy: str # Which matching strategy found this + details: str = "" # Human-readable explanation + + +# --------------------------------------------------------------------------- +# Matching strategies (ordered by confidence) +# --------------------------------------------------------------------------- + +def strategy_exact_name(core_name: str, repos: dict[str, str]) -> MatchResult | None: + """Strategy 1: Exact match of core name to repo name.""" + # Try direct match + for repo_short, repo_full in repos.items(): + repo_lower = repo_short.lower() + if core_name == repo_lower: + return MatchResult( + job_name=core_name, repo_name=repo_full, + confidence=0.95, strategy="exact_name", + details=f"Core name '{core_name}' == repo '{repo_short}'" + ) + return None + + +def strategy_contains_repo(core_name: str, repos: dict[str, str]) -> MatchResult | None: + """Strategy 2: Core name contains the full repo name (or vice versa).""" + # Normalize: replace dots and hyphens for comparison + cn_normalized = core_name.replace(".", "-").replace("_", "-") + + best: MatchResult | None = None + for repo_short, repo_full in repos.items(): + rn_normalized = repo_short.lower().replace(".", "-").replace("_", "-") + + if cn_normalized == rn_normalized: + return MatchResult( + job_name=core_name, repo_name=repo_full, + confidence=0.93, strategy="normalized_exact", + details=f"Normalized '{cn_normalized}' == '{rn_normalized}'" + ) + + # Core contains repo or repo contains core + if len(rn_normalized) >= 5 and rn_normalized in cn_normalized: + score = len(rn_normalized) / len(cn_normalized) + if not best or score > best.confidence: + best = MatchResult( + job_name=core_name, repo_name=repo_full, + confidence=min(0.85, 0.5 + score * 0.4), strategy="contains", + details=f"Repo '{rn_normalized}' found in job '{cn_normalized}' (coverage={score:.0%})" + ) + + if len(cn_normalized) >= 5 and cn_normalized in rn_normalized: + score = len(cn_normalized) / len(rn_normalized) + if not best or score > best.confidence: + best = MatchResult( + job_name=core_name, repo_name=repo_full, + confidence=min(0.80, 0.5 + score * 0.3), strategy="contained_in", + details=f"Job '{cn_normalized}' found in repo '{rn_normalized}' (coverage={score:.0%})" + ) + + return best + + +def strategy_token_overlap(core_name: str, repos: dict[str, str]) -> MatchResult | None: + """Strategy 3: Token-based overlap (split by -, ., _ and compare).""" + job_tokens = set(re.split(r"[-._]", core_name.lower())) + job_tokens -= {"wm", "webmotors", "lambda", "frontend", "backend", "ui", "api", + "web", "app", "prd", "hml", "azl", "dev", "test", "check", "sonar", + "coverage", "build", "rollback", "private"} + + if len(job_tokens) < 2: + return None + + best: MatchResult | None = None + for repo_short, repo_full in repos.items(): + repo_tokens = set(re.split(r"[-._]", repo_short.lower())) + repo_tokens -= {"webmotors", "private", "ui", "api"} + + if not repo_tokens: + continue + + overlap = job_tokens & repo_tokens + if len(overlap) >= 2: + # Jaccard similarity + jaccard = len(overlap) / len(job_tokens | repo_tokens) + confidence = min(0.75, 0.3 + jaccard * 0.5) + if not best or confidence > best.confidence: + best = MatchResult( + job_name=core_name, repo_name=repo_full, + confidence=confidence, strategy="token_overlap", + details=f"Shared tokens: {overlap} (jaccard={jaccard:.2f})" + ) + + return best + + +def strategy_sequence_match(core_name: str, repos: dict[str, str]) -> MatchResult | None: + """Strategy 4: SequenceMatcher ratio (fuzzy string similarity).""" + cn_clean = core_name.replace("-", "").replace("_", "").replace(".", "") + + best: MatchResult | None = None + for repo_short, repo_full in repos.items(): + rn_clean = repo_short.lower().replace("-", "").replace("_", "").replace(".", "") + ratio = SequenceMatcher(None, cn_clean, rn_clean).ratio() + + if ratio >= 0.65: + confidence = min(0.70, ratio * 0.8) + if not best or confidence > best.confidence: + best = MatchResult( + job_name=core_name, repo_name=repo_full, + confidence=confidence, strategy="sequence_match", + details=f"SequenceMatcher ratio={ratio:.2f} between '{cn_clean}' and '{rn_clean}'" + ) + + return best + + +STRATEGIES = [ + strategy_exact_name, + strategy_contains_repo, + strategy_token_overlap, + strategy_sequence_match, +] + + +# --------------------------------------------------------------------------- +# Main discovery logic +# --------------------------------------------------------------------------- + +async def fetch_all_jenkins_jobs() -> list[dict[str, str]]: + """Fetch ALL jobs from Jenkins API (READ-ONLY).""" + client = ResilientHTTPClient( + base_url=settings.jenkins_base_url.rstrip("/"), + auth={"basic": (settings.jenkins_username, settings.jenkins_api_token)}, + timeout=60.0, + max_retries=3, + ) + + try: + # Fetch with recursive depth to get jobs inside folders + # tree=jobs[name,url,fullName,color,jobs[name,url,fullName,color,...]] (3 levels deep) + tree = ( + "jobs[name,url,fullName,color," + "jobs[name,url,fullName,color," + "jobs[name,url,fullName,color]]]" + ) + data = await client.get("/api/json", params={"tree": tree}) + + def _flatten_jobs(jobs_list: list[dict], results: list[dict]): + for job in jobs_list: + if "fullName" in job or "name" in job: + # Only add leaf nodes (jobs without sub-jobs or with sub-jobs + own builds) + sub_jobs = job.get("jobs", []) + if not sub_jobs: + results.append({ + "fullName": job.get("fullName", job.get("name", "")), + "url": job.get("url", ""), + "color": job.get("color", ""), + }) + else: + # This is a folder — recurse + _flatten_jobs(sub_jobs, results) + + all_jobs: list[dict[str, str]] = [] + _flatten_jobs(data.get("jobs", []), all_jobs) + + logger.info("Fetched %d Jenkins jobs (READ-ONLY)", len(all_jobs)) + return all_jobs + + finally: + await client.close() + + +async def fetch_github_repos_from_db() -> dict[str, str]: + """Get all unique repo names from our PR database. + + Returns dict: {repo_short_name: repo_full_name} + """ + # We'll use psql via subprocess since we don't have async DB here + import subprocess + result = subprocess.run( + [ + "psql", "-h", "postgres", "-U", "pulse", "-d", "pulse", + "-tA", "-c", + "SET app.current_tenant='00000000-0000-0000-0000-000000000001'; " + "SELECT DISTINCT repo FROM eng_pull_requests WHERE repo IS NOT NULL;", + ], + capture_output=True, text=True, timeout=30, + env={**os.environ, "PGPASSWORD": "pulse_dev"}, + ) + + repos: dict[str, str] = {} + for line in result.stdout.strip().split("\n"): + line = line.strip() + if not line: + continue + # repo_full = "webmotors-private/webmotors.next.ui" + # repo_short = "webmotors.next.ui" + short = line.split("/", 1)[-1] if "/" in line else line + repos[short] = line + + logger.info("Found %d GitHub repos in PR database", len(repos)) + return repos + + +def match_jobs_to_repos( + jobs: list[JenkinsJob], + repos: dict[str, str], +) -> list[JenkinsJob]: + """Apply all matching strategies to each job.""" + for job in jobs: + if job.is_disabled: + continue + + # Try each strategy in order (highest confidence first) + for strategy_fn in STRATEGIES: + result = strategy_fn(job.core_name, repos) + if result and result.confidence > job.match_confidence: + job.matched_repo = result.repo_name + job.match_confidence = result.confidence + job.match_strategy = f"{result.strategy}: {result.details}" + + return jobs + + +def generate_report(jobs: list[JenkinsJob], repos: dict[str, str]) -> str: + """Generate human-readable report of discovery results.""" + lines: list[str] = [] + lines.append("=" * 80) + lines.append("JENKINS JOB DISCOVERY REPORT (READ-ONLY)") + lines.append("=" * 80) + lines.append("") + + # --- Summary --- + total = len(jobs) + by_env = defaultdict(int) + by_env_matched = defaultdict(int) + disabled = sum(1 for j in jobs if j.is_disabled) + matched = sum(1 for j in jobs if j.matched_repo and not j.is_disabled) + unmatched = total - matched - disabled + + for j in jobs: + if not j.is_disabled: + by_env[j.environment] += 1 + if j.matched_repo: + by_env_matched[j.environment] += 1 + + lines.append(f"Total Jenkins jobs: {total}") + lines.append(f" Disabled: {disabled}") + lines.append(f" Active: {total - disabled}") + lines.append(f" Matched to repo: {matched} ({matched/(total-disabled)*100:.1f}%)" if total > disabled else "") + lines.append(f" Unmatched: {unmatched}") + lines.append(f" GitHub repos (DB): {len(repos)}") + lines.append("") + + lines.append("--- By Environment ---") + for env in ["production", "staging", "homolog", "dev", "test", "unknown"]: + c = by_env.get(env, 0) + m = by_env_matched.get(env, 0) + if c > 0: + lines.append(f" {env:12s}: {c:4d} jobs, {m:4d} matched ({m/c*100:.0f}%)") + lines.append("") + + # --- Production jobs (what matters for DORA) --- + prd_jobs = [j for j in jobs if j.environment == "production" and not j.is_disabled] + prd_matched = [j for j in prd_jobs if j.matched_repo] + prd_unmatched = [j for j in prd_jobs if not j.matched_repo] + + lines.append("=" * 80) + lines.append(f"PRODUCTION JOBS — MATCHED ({len(prd_matched)})") + lines.append("=" * 80) + lines.append("") + + # Group by repo + by_repo: dict[str, list[JenkinsJob]] = defaultdict(list) + for j in prd_matched: + by_repo[j.matched_repo or ""].append(j) + + for repo in sorted(by_repo.keys()): + repo_jobs = by_repo[repo] + lines.append(f" {repo}") + for j in sorted(repo_jobs, key=lambda x: -x.match_confidence): + conf_bar = "█" * int(j.match_confidence * 10) + "░" * (10 - int(j.match_confidence * 10)) + lines.append(f" [{conf_bar}] {j.match_confidence:.0%} {j.full_name}") + lines.append(f" └─ {j.match_strategy}") + lines.append("") + + if prd_unmatched: + lines.append("=" * 80) + lines.append(f"PRODUCTION JOBS — UNMATCHED ({len(prd_unmatched)})") + lines.append("=" * 80) + lines.append("") + for j in sorted(prd_unmatched, key=lambda x: x.full_name): + lines.append(f" {j.full_name} (core: {j.core_name})") + lines.append("") + + # --- Confidence distribution --- + lines.append("=" * 80) + lines.append("CONFIDENCE DISTRIBUTION (all matched, active jobs)") + lines.append("=" * 80) + lines.append("") + conf_buckets = defaultdict(int) + for j in jobs: + if j.matched_repo and not j.is_disabled: + bucket = int(j.match_confidence * 10) * 10 + conf_buckets[bucket] += 1 + + for bucket in sorted(conf_buckets.keys(), reverse=True): + count = conf_buckets[bucket] + bar = "█" * (count // 2) + lines.append(f" {bucket:3d}-{bucket+9}%: {count:4d} {bar}") + lines.append("") + + # --- Proposed new connections.yaml entries (PRD only, confidence >= 0.80) --- + high_conf_prd = [ + j for j in prd_matched + if j.match_confidence >= 0.80 + and j.full_name not in _current_configured_jobs() + ] + + lines.append("=" * 80) + lines.append(f"PROPOSED NEW PRD JOBS (confidence ≥ 80%, not already configured): {len(high_conf_prd)}") + lines.append("=" * 80) + lines.append("") + + new_by_repo: dict[str, list[JenkinsJob]] = defaultdict(list) + for j in high_conf_prd: + new_by_repo[j.matched_repo or ""].append(j) + + for repo in sorted(new_by_repo.keys()): + repo_short = repo.split("/", 1)[-1] if "/" in repo else repo + lines.append(f" # ── {repo_short} ──") + for j in sorted(new_by_repo[repo], key=lambda x: x.full_name): + lines.append(f' - fullName: "{j.full_name}"') + lines.append(f' # confidence: {j.match_confidence:.0%} | {j.match_strategy}') + lines.append("") + + # --- Low confidence matches that need human review --- + low_conf = [ + j for j in jobs + if j.matched_repo and not j.is_disabled + and j.environment == "production" + and 0.50 <= j.match_confidence < 0.80 + ] + + if low_conf: + lines.append("=" * 80) + lines.append(f"⚠️ LOW CONFIDENCE PRD MATCHES (50-79%) — NEEDS HUMAN REVIEW: {len(low_conf)}") + lines.append("=" * 80) + lines.append("") + for j in sorted(low_conf, key=lambda x: -x.match_confidence): + lines.append(f" {j.full_name}") + lines.append(f" → {j.matched_repo} ({j.match_confidence:.0%})") + lines.append(f" {j.match_strategy}") + lines.append("") + + # --- JSON output for programmatic use --- + json_output = { + "summary": { + "total_jobs": total, + "disabled": disabled, + "active": total - disabled, + "matched": matched, + "unmatched": unmatched, + "by_environment": dict(by_env), + }, + "proposed_new_prd_jobs": [ + { + "fullName": j.full_name, + "repo": j.matched_repo, + "confidence": j.match_confidence, + "strategy": j.match_strategy, + } + for j in high_conf_prd + ], + "low_confidence_review": [ + { + "fullName": j.full_name, + "repo": j.matched_repo, + "confidence": j.match_confidence, + "strategy": j.match_strategy, + } + for j in low_conf + ], + "all_prd_unmatched": [j.full_name for j in prd_unmatched], + } + + # Save JSON alongside report + json_path = _script_dir / "jenkins-discovery-result.json" + with open(json_path, "w") as f: + json.dump(json_output, f, indent=2, ensure_ascii=False) + lines.append(f"\n📄 JSON output saved to: {json_path}") + + return "\n".join(lines) + + +def _current_configured_jobs() -> set[str]: + """Get set of currently configured job fullNames from connections.yaml.""" + from src.config import _load_connections_yaml, _extract_jenkins_jobs + conns = _load_connections_yaml() + jobs = _extract_jenkins_jobs(conns) + return {j.get("fullName", "") for j in jobs} + + +# --------------------------------------------------------------------------- +# Entry point +# --------------------------------------------------------------------------- + +async def main(): + logger.info("Starting Jenkins job discovery (READ-ONLY)...") + logger.info("Jenkins URL: %s", settings.jenkins_base_url) + + # 1. Fetch all Jenkins jobs + raw_jobs = await fetch_all_jenkins_jobs() + + # 2. Classify jobs + jobs = [ + JenkinsJob( + full_name=j["fullName"], + url=j["url"], + color=j["color"], + ) + for j in raw_jobs + if j.get("fullName") # Skip empty names + ] + + logger.info( + "Classified %d jobs: %d production, %d staging, %d homolog, %d dev, %d test, %d unknown", + len(jobs), + sum(1 for j in jobs if j.environment == "production"), + sum(1 for j in jobs if j.environment == "staging"), + sum(1 for j in jobs if j.environment == "homolog"), + sum(1 for j in jobs if j.environment == "dev"), + sum(1 for j in jobs if j.environment == "test"), + sum(1 for j in jobs if j.environment == "unknown"), + ) + + # 3. Fetch GitHub repos from DB + repos = await fetch_github_repos_from_db() + + # 4. Match jobs to repos + jobs = match_jobs_to_repos(jobs, repos) + + # 5. Generate report + report = generate_report(jobs, repos) + print(report) + + # 6. Also save full report to file + report_path = _script_dir / "jenkins-discovery-report.txt" + with open(report_path, "w") as f: + f.write(report) + logger.info("Full report saved to: %s", report_path) + + +if __name__ == "__main__": + asyncio.run(main()) diff --git a/pulse/packages/pulse-data/src/config.py b/pulse/packages/pulse-data/src/config.py index e850acc..158212f 100644 --- a/pulse/packages/pulse-data/src/config.py +++ b/pulse/packages/pulse-data/src/config.py @@ -44,7 +44,42 @@ def _load_connections_yaml() -> dict[str, Any]: def _extract_jenkins_jobs(connections: dict[str, Any]) -> list[dict[str, str]]: - """Extract Jenkins job configs from connections.yaml.""" + """Extract Jenkins job configs. + + Primary source: jenkins-job-mapping.json (auto-generated by SCM scan). + Generates one job entry per prd_job in the mapping, with standard + deployment/production patterns. + + Fallback: connections.yaml scope.jobs (manual list, backward compat). + """ + # Primary: load all PRD jobs from jenkins-job-mapping.json + for path in _connections_paths(): + mapping_path = path.parent / "jenkins-job-mapping.json" + if mapping_path.is_file(): + try: + import json + with open(mapping_path) as f: + mapping = json.load(f) + jobs: list[dict[str, str]] = [] + for repo, data in mapping.items(): + if repo.startswith("_"): + continue + for job_name in data.get("prd_jobs", []): + jobs.append({ + "fullName": job_name, + "deploymentPattern": ".*", + "productionPattern": "(?i)prd|prod|production", + }) + if jobs: + logger.info( + "Loaded %d PRD jobs from jenkins-job-mapping.json", + len(jobs), + ) + return jobs + except Exception: + logger.warning("Failed to load jenkins-job-mapping.json for jobs", exc_info=True) + + # Fallback: connections.yaml manual list for conn in connections.get("connections", []): if conn.get("source") == "jenkins": return conn.get("scope", {}).get("jobs", []) From 3e025c57718215d534a7dd385516bba110278d96 Mon Sep 17 00:00:00 2001 From: "Andre.Nascimento" Date: Thu, 16 Apr 2026 15:36:23 -0300 Subject: [PATCH 19/64] feat(pipeline-monitor): v1 Pipeline Monitor + Jira Settings integration MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Pipeline Monitor v2 — full-fidelity observability dashboard driven by real data: Backend (pulse-data): - New /data/v1/pipeline endpoints: /health, /sources, /integrations, /teams, /timeline, /coverage, /retry (501 stub, feature-flagged off) - Dynamic squad derivation via PR-title regex, filtered against jira_project_catalog to exclude noise (CVE, LODASH, REGEXP, etc.) - Tribe mapping from teams.board_config->jira->projects - Deploy + Jenkins job counts per squad (fix: split_part normalises repo format mismatch between eng_deployments and eng_pull_requests) - Health thresholds tuned for periodic sync cadence (48h error, 24h degraded) - Pydantic camelCase schemas with explicit alias for reposWithDeploy30d - Catalog counters (issue_count, pr_reference_count, last_sync_at) auto-refreshed after every DevLake sync cycle via _refresh_catalog_counters() Frontend (pulse-web): - Replaced legacy pipeline-monitor.tsx (1669→149 lines), 3-tab layout (Visão geral · Pipeline · Times) - 15 new components: TrustStrip, SourceCard, IntegrationBox, PipelinePhaseView, TeamHealthTable, EntityDrawer, Timeline, CoveragePanel + shared primitives (Badge, RateBar, SourceIcon, status, format) - TanStack Query hooks with spec-aligned polling intervals - Tailwind-only styling; extended tokens with status colors - Retry button feature-flagged off (backlog for E2E implementation) Jira Settings alignment: - Same dynamic squads visible in Pipeline Monitor and Jira Settings - Catalog counters populated and maintained automatically Docs: - backlog.md tracks deferred work (step instrumentation, rate limits, retry E2E, PR link-rate refinement, pipeline events feed) Co-Authored-By: Claude Opus 4.6 --- .claude/launch.json | 12 + pulse/docs/backlog.md | 51 + .../docs/stitch-prompt-pipeline-monitor-v2.md | 488 +++++ .../src/contexts/pipeline/routes.py | 1397 +++++++++----- .../src/contexts/pipeline/schemas.py | 277 ++- .../pulse-data/src/workers/devlake_sync.py | 67 +- .../src/components/pipeline/CoveragePanel.tsx | 126 ++ .../src/components/pipeline/EntityDrawer.tsx | 297 +++ .../components/pipeline/IntegrationBox.tsx | 123 ++ .../components/pipeline/PipelinePhaseView.tsx | 331 ++++ .../src/components/pipeline/SourceCard.tsx | 229 +++ .../components/pipeline/TeamHealthTable.tsx | 235 +++ .../src/components/pipeline/Timeline.tsx | 126 ++ .../src/components/pipeline/TrustStrip.tsx | 92 + .../src/components/pipeline/shared/Badge.tsx | 35 + .../components/pipeline/shared/RateBar.tsx | 46 + .../components/pipeline/shared/SourceIcon.tsx | 31 + .../src/components/pipeline/shared/format.ts | 40 + .../src/components/pipeline/shared/status.ts | 144 ++ pulse/packages/pulse-web/src/globals.css | 16 + .../pulse-web/src/hooks/useMetrics.ts | 48 - .../pulse-web/src/hooks/usePipeline.ts | 74 + .../packages/pulse-web/src/lib/api/metrics.ts | 35 - .../pulse-web/src/lib/api/pipeline.ts | 47 + .../routes/_dashboard/pipeline-monitor.tsx | 1669 ++--------------- .../packages/pulse-web/src/types/pipeline.ts | 264 ++- pulse/packages/pulse-web/tailwind.config.ts | 11 + 27 files changed, 3870 insertions(+), 2441 deletions(-) create mode 100644 .claude/launch.json create mode 100644 pulse/docs/backlog.md create mode 100644 pulse/docs/stitch-prompt-pipeline-monitor-v2.md create mode 100644 pulse/packages/pulse-web/src/components/pipeline/CoveragePanel.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/EntityDrawer.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/IntegrationBox.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/PipelinePhaseView.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/SourceCard.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/TeamHealthTable.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/Timeline.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/TrustStrip.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/shared/Badge.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/shared/RateBar.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/shared/SourceIcon.tsx create mode 100644 pulse/packages/pulse-web/src/components/pipeline/shared/format.ts create mode 100644 pulse/packages/pulse-web/src/components/pipeline/shared/status.ts create mode 100644 pulse/packages/pulse-web/src/hooks/usePipeline.ts create mode 100644 pulse/packages/pulse-web/src/lib/api/pipeline.ts diff --git a/.claude/launch.json b/.claude/launch.json new file mode 100644 index 0000000..fd02d96 --- /dev/null +++ b/.claude/launch.json @@ -0,0 +1,12 @@ +{ + "version": "0.0.1", + "configurations": [ + { + "name": "pulse-web", + "runtimeExecutable": "npm", + "runtimeArgs": ["run", "dev"], + "port": 5173, + "cwd": "pulse/packages/pulse-web" + } + ] +} \ No newline at end of file diff --git a/pulse/docs/backlog.md b/pulse/docs/backlog.md new file mode 100644 index 0000000..0c766f5 --- /dev/null +++ b/pulse/docs/backlog.md @@ -0,0 +1,51 @@ +# PULSE Data Platform Backlog + +## Pipeline Monitor v2 + +### 1. Step-level instrumentation +Sync worker should emit `{entity_type, step_name, processed, total, duration_sec, status}` events per batch to a `pipeline_step_progress` table. The frontend already renders 4 steps (fetch / changelog / normalize / upsert) when present. Currently the API synthesizes 2 aggregated steps from `pipeline_ingestion_progress` fields as a placeholder. + +**Priority:** High +**Depends on:** Sync worker refactor to emit granular progress events. + +### 2. Rate limit tracking +Currently hardcoded placeholder values per source. Source connectors need to report remaining/limit from API response headers: +- **GitHub:** `X-RateLimit-Remaining` / `X-RateLimit-Limit` headers +- **Jira:** 429 backoff tracking (Jira Cloud does not expose explicit rate-limit headers) +- **Jenkins:** Internal concurrency counter (no standard rate-limit header) + +Store in a `source_rate_limits` table or Redis cache; Pipeline Monitor reads from there. + +**Priority:** Medium + +### 3. Retry button E2E +- RBAC role required: `data_platform` +- POST `/data/v1/pipeline/entities/{sourceId}/{entityType}/retry` endpoint (currently returns 501) +- Sync worker should consume retry requests from a queue (Redis or Kafka topic) +- Frontend button is already hidden behind a feature flag + +**Priority:** Low (requires RBAC + sync worker queue consumer) + +### 4. PR link rate per team -- denominator refinement +Current approximation: `pr_reference_count / total_repo_prs` may overcount when a repo serves multiple squads. Formal definition should be: + +> (PRs mentioning KEY in title AND `linked_issue_ids` contains a matching issue_id) / (PRs mentioning KEY in title) + +This requires joining `eng_pull_requests` with `eng_issues` on issue_key extraction, which is expensive at scale. Consider a materialized view or pre-calculated field on the catalog. + +**Priority:** Medium (accuracy improvement, no user-facing change) + +### 5. Populate `jira_project_catalog.issue_count` +Currently all 69 rows have `issue_count = 0`. The Pipeline Monitor `/teams` endpoint exposes this as the per-squad "ISSUES" column, so it always shows 0. Fix: update the Jira sync worker to refresh `issue_count` (e.g. `UPDATE jira_project_catalog SET issue_count = (SELECT count(*) FROM eng_issues WHERE project_key = jpc.project_key)`) after each full or incremental sync. Also consider refreshing `pr_reference_count` the same way to unblock alternative queries. + +**Priority:** Medium + +### 6. Pipeline events feed +`pipeline_events` table is empty — sync worker and metrics worker don't emit events yet. The `/timeline` endpoint works but returns `[]`. Fix: emit events on: +- Successful sync cycle completion (`success`, per source, with records/duration) +- Errors (existing `recent_errors` plumbing can be forwarded to events) +- Rate-limit warnings +- Backfill start/end + +**Priority:** High (core observability; Pipeline Monitor Timeline tab is inert without this) + diff --git a/pulse/docs/stitch-prompt-pipeline-monitor-v2.md b/pulse/docs/stitch-prompt-pipeline-monitor-v2.md new file mode 100644 index 0000000..0014f94 --- /dev/null +++ b/pulse/docs/stitch-prompt-pipeline-monitor-v2.md @@ -0,0 +1,488 @@ +# Stitch/Manus Prompt — Pipeline Monitor v2 (Multi-Source @ Scale) + +> Cole o conteúdo abaixo da linha `---` em Google Stitch, Manus, v0 ou equivalente para gerar variações da tela. O prompt foi escrito para uma persona sênior (Principal Product Designer + Product Director) — ou seja, espera-se interpretação, trade-offs e priorização editorial, não cópia literal. + +--- + +## PERSONA & MODO DE TRABALHO + +Você é um **Principal Product Designer & Product Director** com 15+ anos projetando ferramentas de observabilidade de dados para engenharia (pense em alguém que já liderou UI do Datadog Pipelines, Snowflake Snowpipe, Databricks Lakeflow, Dagster Cloud ou Airbyte Cloud). Você NÃO é um ilustrador de wireframes — você é um tomador de decisão de produto que pensa em: + +- **Hierarquia de informação** (o que o usuário precisa ver em 2 segundos vs. 30 segundos vs. quando está investigando um incidente) +- **Densidade vs. respiração** (quando tabelas densas salvam vidas, quando cartões aéreos educam) +- **Escala real** (um usuário com 283 repositórios GitHub e 69 projetos Jira NÃO pode ver 352 cartões — precisa de agregação, agrupamento e drill-down) +- **Estados emocionais** (tranquilidade em steady-state, urgência cirúrgica em incidente, otimismo acolhedor em empty-state) +- **Trade-offs explícitos**: cada escolha de layout deve vir com uma breve justificativa ("optei por X porque Y; a alternativa Z falharia quando…") + +**Entregáveis esperados** (nesta ordem): +1. **3 conceitos visuais distintos** da tela — cada um com hipótese editorial diferente (ex.: "DAG-first", "Table-first densa", "Incident-first"). Para cada conceito: screenshot hi-fi + 3–5 linhas de justificativa + 2 limitações. +2. **Recomendação final** (qual conceito e por quê), com as 3 mudanças que você faria antes de ir para dev. +3. **Estados**: loading (skeleton), empty (primeira conexão), healthy-steady, running-backfill (atenção), degraded (1 fonte com problema), error (fonte fora), partial-catalog (projetos `discovered` aguardando ativação). +4. **Responsivo**: desktop ≥1280px, tablet 768–1279px, mobile <768px. + +Se sentir que o briefing tem lacuna, **explicite a suposição** antes de desenhar. + +--- + +## 1. CONTEXTO DE PRODUTO + +**Produto**: PULSE — Engineering Intelligence SaaS (DORA + Lean/Agile + Sprint analytics). +**Cliente-âncora**: Webmotors (100% Brasil, português-BR como idioma padrão da UI, mas copy aceitável em inglês onde termo técnico for dominante). +**Tela**: `Pipeline Monitor` — subsídio de `/integrations`. + +### A "promessa" do produto para esta tela +> *"Um olhar na saúde do pipeline e eu confio em todas as outras métricas do PULSE."* + +Esta NÃO é uma tela que o usuário olha todo dia — é o **"engine light"** do produto. Quando ele olha, geralmente é em 3 contextos: + +1. **Check casual (5s)** — "Está tudo verde? Ok, confio no DORA que vou mostrar na sprint review." +2. **Suspeita (30s–2min)** — "O gráfico de PRs tá estranho, será que parou de sincronizar?" → precisa drillar até repo/projeto específico e ver watermark. +3. **Incidente (5–30min)** — "Nada sincroniza há 3h" → precisa ver erro específico, taxa de falha por step, retry/rate-limit, timeline de eventos. + +### Escala real (Webmotors — estado atual, abril/2026) + +| Dimensão | Número | Implicação de UI | +|---|---|---| +| Repositórios GitHub sincronizados | **283** | Não cabe em cartão individual — agrupe por time/criticidade | +| Jobs Jenkins PRD monitorados | **577** | Mesmo problema — agrupar por repo | +| Projetos Jira ativos | **69** (9 originais + 60 ativados do *discovered*) | Precisa filtro por status | +| Issues sincronizadas | **373.633** (8 → 65 projetos) | Contadores grandes precisam abreviação (373k) | +| Pull Requests | **63.692** | Idem | +| Deployments | **1.396** (ago/2023 → abr/2026) | Trend mensal visível, janela configurável | +| Taxa de linkagem PR↔Issue | **22%** (era 5,27%) | KPI visível de qualidade de dados | +| Cobertura repos com deploy | **88,7%** (253/283) | KPI de cobertura | + +> ⚠️ **Lição aprendida (feedback real do usuário anterior)**: +> *"Preciso ver por etapa — fetch, changelog, normalize, upsert — com contagens e ETA. Barra única de progresso não serve."* +> Isso implica que cada fonte tem **sub-steps** e cada sub-step tem seu próprio status/contador. + +--- + +## 2. ARQUITETURA DO PIPELINE (o que estamos monitorando) + +``` +┌──────────────┐ ┌──────────────┐ ┌─────────────────┐ ┌──────────────┐ ┌────────────────┐ +│ SOURCES │ → │ DISCOVERY │ → │ SYNC WORKER │ → │ PULSE DB │ → │ METRICS WORKER │ +│ GitHub/Jira/ │ │ (catalog + │ │ (fetch → change │ │ (Postgres │ │ (DORA/Lean/ │ +│ Jenkins │ │ PII check) │ │ log → normalize │ │ + Kafka) │ │ Cycle/Sprint) │ +│ │ │ │ │ → upsert) │ │ │ │ │ +└──────────────┘ └──────────────┘ └─────────────────┘ └──────────────┘ └────────────────┘ +``` + +### 2.1 Cada **fonte** (Source) tem características próprias + +| Fonte | Unidade de trabalho | Entidades sincronizadas | Rate limit | Modo default | +|---|---|---|---|---| +| GitHub | Repositório | PRs, Reviews, Commits, Deployments (via API) | 5000 req/h (org) | Incremental por `updated_at` | +| Jira | Projeto (key) | Issues, Changelog, Sprints | ~100 req/min | Incremental por `updated` JQL | +| Jenkins | Job PRD | Builds, Stages, Deployments | ~60 req/min | Incremental por `build number` | + +### 2.2 Cada **sincronização** tem 4 sub-steps obrigatoriamente visíveis + +Para **cada fonte × cada entidade**, o sync worker executa e reporta: + +1. **Fetch** — chamadas à API externa (paginação). Métricas: requisições feitas, req/s, % do rate limit. +2. **Changelog** — só Jira: expande histórico de transições de status por issue (N+1 requests — gargalo conhecido). Métricas: issues com changelog buscado, latência p95. +3. **Normalize** — transforma payload externo em schema canônico PULSE. Métricas: registros normalizados, erros de schema. +4. **Upsert** — grava no Postgres com `ON CONFLICT` (idempotente). Métricas: inserts, updates, rejeições. + +> O usuário quer ver os 4 como colunas/timeline SEPARADAS por entidade, com contagens absolutas + ETA calculada, **não** uma barra única somada. + +### 2.3 Dois modos de operação + +| Modo | Quando ocorre | UX implica | +|---|---|---| +| **Incremental** (steady-state) | A cada 15min, processa só o delta desde o watermark | Cartão compacto "healthy", verde, 2 min ago | +| **Backfill** (após reset, nova fonte, novo projeto ativado) | Pode levar de 15min a 10h | Cartão expandido, barra de progresso por step, ETA, contador live | + +### 2.4 Estados do **catálogo** de fontes (Jira como exemplo) + +Projetos Jira podem estar em 5 estados — e o usuário precisa ver a transição: + +`discovered` → `active` → (`paused` | `blocked` | `archived`) + +A tela precisa mostrar, no mínimo, quantos há em cada estado e oferecer ação para promover `discovered` → `active` em massa (já existe um endpoint `POST /v1/admin/integrations/jira/projects/{key}/activate`). + +--- + +## 3. PERSONAS E JOBS-TO-BE-DONE + +### Carlos — Engineering Manager (primário) +> *"Tenho que mostrar DORA na review em 15min. Os dados estão recentes?"* + +JTBD: +- Ver "está tudo verde?" em <2s +- Quando não está, identificar **qual fonte / qual time** está com problema em <30s +- Não quer ver detalhe de step a não ser que tenha razão + +### Priya — Agile Coach (secundário) +> *"O CFD do time X parece errado. Faltou issue? Status mapping tá certo?"* + +JTBD: +- Drillar até um projeto Jira específico e ver: último sync, contagem esperada vs. real, status mapping aplicado +- Ver orphan refs (PR que cita `ENO-1234` mas não tem issue correspondente ingerida) + +### Lucas — Data Platform Engineer (operador) +> *"A ingestão de ontem travou. Qual step? Qual rate limit estourou?"* + +JTBD: +- Timeline de eventos filtrada por severidade +- Log de watermark por entidade +- Visão de rate limit vs. throughput ao longo das últimas 24h +- Botão "Retry failed" (apenas ele — RBAC) + +### Ana — CTO (executivo, visita rara) +> *"Todos os times estão conectados?"* + +JTBD: +- KPI de cobertura (X% dos repos com deploy, Y% dos PRs linkados a issue) +- Tendência mensal (saúde da plataforma ao longo do tempo) + +--- + +## 4. PRINCÍPIOS DE DESIGN + +1. **Read-only, always.** PULSE NUNCA dispara builds/syncs em sistemas externos. Botões de "Retry" atuam em filas internas, não no Jenkins/GitHub/Jira. +2. **Escala explícita.** Nunca desenhe uma lista finita de 3–5 itens — desenhe sempre como se o usuário tivesse 283 repos e 69 projetos. +3. **Agregação antes de detalhe.** Primeiro tela = agregados (por fonte, por time, por status). Drill-down = detalhe. +4. **Per-step, per-entidade, sempre.** Nunca uma barra única. Fetch/Changelog/Normalize/Upsert são primeira classe. +5. **ETA sempre que possível.** "Upsert 12.4k/47k issues · ETA 3m 20s" > "Processing…" +6. **Watermark visível.** É o único dado que permite debug de "por que está faltando?". Mostre como `2026-04-15 13:22 UTC` + relativo (`2m ago`). +7. **Rate limit como primeira classe.** Gráfico ou meter visível — GitHub 82% (4.100/5.000) é um sinal precoce. +8. **Anti-surveillance.** Nunca mostre autor individual em contexto de "o que atrasou". Tudo a nível de time/fonte/projeto. +9. **Acessibilidade WCAG AA.** Status sempre acompanhado de label (não só cor). Animações respeitam `prefers-reduced-motion`. +10. **Empty states dignos.** Antes da primeira conexão, não mostre zeros — mostre próximo passo ("Conectar GitHub"). + +--- + +## 5. DECISÕES DE IA (benchmark de referência — pesquisado) + +Use como âncora, NÃO copie: + +| Produto | O que imitar | O que evitar | +|---|---|---| +| **Databricks Lakeflow** | DAG visualization + List view alternativa + Matrix view (histórico); SLA como threshold visível; streaming observability (backlog segundos/bytes/records) | Densidade excessiva típica de Databricks; fontes minúsculas | +| **AWS Glue Observability** | Classificação de erro por causa raiz; métricas de job finas (56 sinais); integração com dashboards Grafana/QuickSight | Dependência de CloudWatch — aqui não temos | +| **Snowflake Snowpipe Streaming** | Latência de ingest-to-query como KPI; lag por tabela; throughput em GB/s | Interface é textual/CLI — não é referência visual forte | +| **Dagster Dagit** | Asset-focused (não task-focused); lineage visual navegável; inspeção de materializações; "rerun this step" | Curva de aprendizado alta; conceitos de asset podem confundir EM | +| **Fivetran** | Status por connector + watermark/cursor explícito; sync schedule visível; badge simples | Pouco drill-down — fica preso no connector-card | +| **Airbyte** | Log-viewer integrado; status por stream; retry granular | UI ainda irregular, não referência visual pura | +| **GitHub Actions (run view)** | Steps verticais com tempo por step; live log abaixo; status glyph simples (check/x/dot) | Layout task-centric não escala para 283 repos | +| **Vercel Deployments** | Lista com status-glyph + duration + commit; filtro por environment | Centrado em deploy único, não em pipeline contínuo | +| **Datadog Pipeline Observability** | Heatmap de erros por stage; drill a partir de timeline; dashboard por serviço | Custa caro em densidade visual | +| **Honeycomb** | BubbleUp para localizar a query que diverge (útil quando 10 repos falham — qual feature é comum?) | Requer modelo mental de traces | + +**Síntese da recomendação editorial** (posicionamento de quem você é no projeto): +> *O usuário do PULSE é menos sofisticado que o de Dagster, mas opera uma escala maior que a de Fivetran. A melhor âncora é **Databricks Lakeflow com densidade reduzida**, **status-glyph à la Vercel/GitHub Actions** e **timeline de eventos à la Datadog Pipelines**. Evite DAG animado como peça central — ele impressiona em demo, mas não escala para 283 nós.* + +--- + +## 6. ESTRUTURA DA TELA (proposta ponto-de-partida; desafie) + +### 6.1 Topo — "Trust strip" (visível em <2s) + +Barra horizontal única, 64–80px altura, com: + +- **Badge global** (Pill grande): `Healthy` · `Degraded (1)` · `Error (3)` · `Backfilling` — com cor + ícone + label. +- **KPI row inline** (4 números + mini-sparkline 24h cada): + - `Records today` → 12.482 (+8% vs. ontem) + - `PR↔Issue link rate` → 22,0% (↑ 4.2pp vs. semana passada) + - `Repos with deploys (last 30d)` → 253 / 283 (88,7%) + - `Avg sync lag` → 4m 12s (p95: 11m) +- **Última atualização**: "Atualizado há 12s" com refresh manual. + +### 6.2 Mid — Fontes + Entidades (matriz condensada) + +**Proposta A (matriz)**: uma tabela/matriz 3 colunas × N linhas onde: +- Colunas: GitHub · Jira · Jenkins +- Linhas: cada entidade sincronizada (PRs, Issues, Deployments, Sprints) +- Célula: status-glyph + contagem do último ciclo + watermark + duração + mini-bar de % do rate limit + +**Proposta B (cartões)**: 3 cartões grandes (1 por fonte), cada um abrindo em accordion para listar entidades + steps fetch/changelog/normalize/upsert. + +→ **Decida e justifique**. Minha hipótese: **Proposta A** ganha em steady-state, **Proposta B** ganha durante backfill. Talvez a resposta seja "matriz quando healthy, cartão expandido automaticamente quando degraded". + +### 6.3 Per-entity drawer (ao clicar numa célula) + +Drawer lateral (ou modal) com: +- **4 steps** (Fetch · Changelog · Normalize · Upsert) como tabs ou como linha horizontal tipo stepper +- Para cada step: status, contagem (processed/total), taxa (items/s), ETA, erro se houver +- **Trace** do último ciclo: gráfico de duração por step (stacked horizontal bar) dos últimos 24 runs +- **Watermark history**: linha simples de quando o watermark avançou nas últimas 24h (plano de fundo para debug) +- **Logs recentes** (5 últimos events dessa entidade, severidade-colored) +- **Rate limit curve**: eixo X = hora, eixo Y = % limite, linha única +- Botão **"Retry failed items"** (visível só para Data Platform role) + +### 6.4 Catálogo de fontes (card dedicado, lado direito no desktop) + +Mostra, para cada fonte: +- Projetos/repos em cada estado (`discovered` / `active` / `paused` / `blocked` / `archived`) como stacked bar ou chips +- CTA: "Promover N `discovered` → `active`" (bulk action, exige confirmação) +- Link para /settings/connections + +### 6.5 Timeline global de eventos (rodapé ou coluna direita) + +Feed cronológico inverso, filtrado por severidade (all / warn+ / error-only): +- Dot colorido + stage pill + timestamp + mensagem + (opcional) deep-link ao drawer da entidade +- Virtualizado (pode ter 1000s de eventos) +- Badge "pause auto-scroll" quando usuário rolar manualmente + +### 6.6 Cobertura & Qualidade (secondary panel) + +Cartão quase-executivo (para Carlos/Ana): +- Donut: % de repos com deploy nos últimos 30d +- Donut: % de PRs linkados a issue +- Lista: top 5 "órfãos" — prefixos de PR-ref (`RC-*`, `AFDEV-*`) sem projeto Jira correspondente, com CTA "investigar" +- Lista: projetos ativos com 0 issues ingeridas (investigar config ou PII) + +--- + +## 7. ESTADOS (desenhe TODOS) + +### 7.1 Healthy steady-state +Tudo verde. Matriz compacta. Timeline com eventos `success/info`. Última sync 2min atrás. + +### 7.2 Backfilling (após reset de watermark) +- Badge global `Backfilling` (cor info/azul, não alarme) +- Cartões expandidos automaticamente mostrando steps com progresso +- ETA calculado por step ("Fetch 32k/85k · 18m left") +- CTA: "Ver progresso detalhado" + +### 7.3 Degraded (1 fonte com issue, resto ok) +- Badge `Degraded (1)` amber +- Célula afetada destacada com borda/bg amber-50 +- Resto da tela permanece informativo (não entra em modo pânico) + +### 7.4 Error (fonte fora) +- Badge `Error` vermelho +- Banner no topo: "Jira connection failing — retrying in 45s (attempt 3/5)" +- Linha afetada com erro expandido e link p/ logs + +### 7.5 Rate-limit saturado (edge-case crítico) +- Badge `Slow (Rate-limited)` +- Célula mostrando 98% do rate limit, animação de pulso na barra +- Copy: "GitHub rate limit atingido — retomando em 12m" +- ETA ajustada automaticamente + +### 7.6 Empty (primeira execução) +- Nenhum número zero. Desenhe hero: "Conecte sua primeira fonte → GitHub · Jira · Jenkins" +- 3 cartões grandes de onboarding com ícone, descrição curta, CTA + +### 7.7 Discovered pendentes (catálogo incompleto) +- Banner informativo: "60 projetos Jira foram descobertos mas não ativados. [Revisar & ativar]" +- Não bloqueia, é apenas um call-to-awareness + +### 7.8 Loading (skeleton) +- Shimmer em cada bloco — não spinners +- Preserve a geometria (evite "pular" quando dados chegarem) + +--- + +## 8. DESIGN SYSTEM (obrigatório) + +### 8.1 Cores (tokens PULSE) +- **Brand**: Indigo-500 `#6366F1` (hover: Indigo-600 `#4F46E5`) +- **Status**: + - Success/Healthy: Emerald-500 `#10B981` + - Info/Running: Blue-500 `#3B82F6` + - Warning/Slow/Stale: Amber-500 `#F59E0B` + - Danger/Error: Red-500 `#EF4444` + - Idle: Gray-300 `#D1D5DB` +- **Superfícies**: White `#FFFFFF` · Gray-50 `#F9FAFB` · Gray-100 `#F3F4F6` +- **Texto**: Gray-900 `#111827` · Gray-500 `#6B7280` · Gray-400 `#9CA3AF` +- **Bordas**: Gray-200 `#E5E7EB` +- Status badges: bg `color-50` + text `color-700` + +### 8.2 Tipografia +- Família: **Inter** (UI) + **JetBrains Mono** (timestamps, watermarks, IDs) +- H1 24px/600 · H2 18px/600 · H3 14px/500 +- Body 14px/400 · Small 12px/400 · KPI 28px/700 +- Mono 13px/400 em timestamps e watermarks + +### 8.3 Geometria +- Card radius 12px, button radius 8px, badge radius full +- Shadow default `0 1px 3px rgba(0,0,0,0.05)`, elevated `0 4px 12px rgba(0,0,0,0.08)` +- Grid: 24px section gap, 20px card padding, 16px inner gap + +### 8.4 Componentes de referência +- shadcn/ui (Radix + Tailwind) +- Lucide React ícones +- Recharts ou Tremor para mini-sparklines e donuts + +### 8.5 Iconografia sugerida (Lucide) +- Sources: `Cable` · DevLake/Discovery: `Database` · Sync: `RefreshCw` · DB: `HardDrive` · Metrics: `Calculator` +- GitHub: `Github` · Jira: logo custom (Jira não existe no Lucide) · Jenkins: logo custom +- Status: `CheckCircle2` / `AlertCircle` / `AlertTriangle` / `Loader2` / `CircleDot` + +--- + +## 9. ACESSIBILIDADE (WCAG AA — obrigatório) + +- Status nunca apenas por cor — sempre + texto/ícone +- Contraste mínimo 4.5:1 em todo texto +- Drawer trap-focus + Esc fecha +- Timeline `role="log"` + `aria-live="polite"` +- Animações wrapped em `@media (prefers-reduced-motion: reduce)` +- Todos os controles atingíveis por teclado, foco visível + +--- + +## 10. CONTEÚDO / COPY (português-BR) + +Algumas frases de apoio que podem aparecer na tela — ajuste o tom, mas mantenha clareza operacional, zero "engenheirês": + +- `Atualizado há 12s` +- `Sincronização saudável` / `Atenção: fonte lenta` / `Erro em 1 fonte` +- `Backfill em andamento · 3 de 4 etapas concluídas` +- `Próxima sincronização em ~3 min` +- `Taxa de vínculo PR ↔ Issue: 22%` +- `60 projetos aguardando ativação. [Revisar]` +- `Rate limit do GitHub atingido. Retomando em 12 min.` +- `Watermark atual: 15/04/2026 13:22 UTC (há 2 min)` + +Evite copy infantilizada ("Oba!" "Tudo certinho!"). Use tom direto, profissional, confiante. + +--- + +## 11. DADOS MOCK (use para popular a tela) + +```json +{ + "global": { + "health": "healthy", + "lastUpdatedAt": "2026-04-15T14:02:12Z", + "kpis": { + "recordsToday": 12482, + "recordsTrendPct": 8.2, + "prIssueLinkRate": 0.220, + "prIssueLinkTrendPp": 4.2, + "reposWithDeploy30d": { "covered": 253, "total": 283 }, + "avgSyncLagSec": 252, + "p95SyncLagSec": 660 + } + }, + "sources": [ + { + "id": "github", + "name": "GitHub", + "status": "healthy", + "connections": 283, + "rateLimitPct": 0.42, + "watermark": "2026-04-15T13:58:00Z", + "entities": [ + { "type": "pull_requests", "lastCycleRecords": 342, "lastCycleDurationSec": 4.2, "status": "idle" }, + { "type": "deployments", "lastCycleRecords": 56, "lastCycleDurationSec": 1.1, "status": "idle" } + ] + }, + { + "id": "jira", + "name": "Jira Cloud", + "status": "backfilling", + "catalog": { "active": 69, "discovered": 0, "paused": 0, "blocked": 0, "archived": 0 }, + "rateLimitPct": 0.78, + "watermark": "2026-04-14T20:59:09Z", + "entities": [ + { + "type": "issues", + "status": "backfilling", + "steps": [ + { "name": "fetch", "status": "done", "processed": 373633, "total": 373633, "durationSec": 5280 }, + { "name": "changelog", "status": "running", "processed": 212400, "total": 373633, "etaSec": 1080, "throughputPerSec": 148 }, + { "name": "normalize", "status": "running", "processed": 198210, "total": 373633, "etaSec": 1180, "throughputPerSec": 142 }, + { "name": "upsert", "status": "running", "processed": 195003, "total": 373633, "etaSec": 1200, "throughputPerSec": 139 } + ] + } + ] + }, + { + "id": "jenkins", + "name": "Jenkins", + "status": "degraded", + "connections": 577, + "rateLimitPct": 0.21, + "watermark": "2026-04-15T13:22:10Z", + "entities": [ + { + "type": "deployments", + "status": "degraded", + "lastCycleRecords": 1396, + "lastCycleDurationSec": 112, + "error": "3 jobs classified with unresolved repo (PI-Security/prd-lambda-jira-automation)" + } + ] + } + ], + "coverage": { + "reposWithDeploy": { "covered": 253, "total": 283 }, + "prIssueLinkRate": 0.22, + "orphanPrefixes": [ + { "prefix": "RC", "prMentions": 1288 }, + { "prefix": "AFDEV", "prMentions": 204 }, + { "prefix": "GE", "prMentions": 101 } + ], + "activeProjectsWithoutIssues": [ + { "key": "CAM", "name": "Compras & ADM" }, + { "key": "HR", "name": "Pessoas & Cultura" } + ] + }, + "timeline": [ + { "ts": "2026-04-15T14:01:22Z", "severity": "warning", "stage": "jira", "message": "Jira rate limit em 78% (78/100 req/min)" }, + { "ts": "2026-04-15T13:58:00Z", "severity": "success", "stage": "github", "message": "Sync completo: 342 PRs em 4.2s" }, + { "ts": "2026-04-15T13:45:00Z", "severity": "info", "stage": "jira", "message": "Backfill de changelog iniciado para 60 projetos recém-ativados" }, + { "ts": "2026-04-15T13:22:10Z", "severity": "success", "stage": "jenkins", "message": "Backfill Jenkins completo: 1.396 deployments em 253 repos" }, + { "ts": "2026-04-15T13:20:14Z", "severity": "error", "stage": "jenkins", "message": "Falha ao resolver repo para job PI-Security/prd-lambda-jira-automation" } + ] +} +``` + +--- + +## 12. CHECKLIST FINAL (auto-review antes de entregar) + +Verifique cada item antes de considerar "done": + +- [ ] A pergunta "está tudo ok?" é respondida em <2s a partir do topo da tela +- [ ] Cada sub-step (fetch/changelog/normalize/upsert) é visível individualmente com contagem + ETA +- [ ] Escala de 283 repos e 69 projetos não quebra o layout +- [ ] Watermark é visível em cada entidade (absoluto + relativo) +- [ ] Rate limit é primeira classe (gráfico ou meter) +- [ ] Catálogo mostra contagem por status (`discovered`/`active`/etc.) +- [ ] Timeline de eventos suporta 1000+ entradas (virtualized) +- [ ] KPIs de qualidade (link rate, cobertura) estão presentes +- [ ] Todos os 8 estados desenhados (healthy/backfilling/degraded/error/rate-limited/empty/pending/loading) +- [ ] Responsivo desktop + tablet + mobile +- [ ] WCAG AA: contraste, labels de status, reduced-motion +- [ ] Copy em português-BR, tom profissional e direto +- [ ] Tokens do design system PULSE respeitados (cores, tipografia, radii, shadows) +- [ ] Para cada conceito: 3–5 linhas de justificativa editorial + 2 limitações +- [ ] Recomendação final com as 3 mudanças antes de ir pra dev + +--- + +## 13. O QUE NÃO FAZER (anti-patterns) + +- ❌ DAG animado com 283 nós — impressiona em demo, quebra em escala real +- ❌ Um único cartão "Pipeline" com lista vertical de steps — ignora multi-fonte +- ❌ Barra de progresso única agregando fetch+changelog+normalize+upsert — feedback do usuário foi explícito contra +- ❌ Usar apenas cor para transmitir status — acessibilidade +- ❌ Exibir autor individual em qualquer contexto — viola princípio anti-surveillance +- ❌ Spinners de loading em qualquer componente — use skeletons +- ❌ Copy infantilizada ou com emoji em excesso — usuário é sênior, tempo é escasso +- ❌ Botão "Trigger Sync Now" que chame API externa — PULSE é READ-ONLY nas fontes; retry só atua em filas internas +- ❌ Gráficos 3D, donuts com >5 segmentos, pie charts para time-series +- ❌ Modal que bloqueia investigação — prefira drawer lateral não-modal + +--- + +## 14. DIRETRIZES DE ENTREGA + +Formato esperado do output (para cada conceito): +1. **Screenshot hi-fi** (desktop ≥1280px) da tela completa +2. **Screenshot hi-fi** de 1 estado alternativo importante (backfilling OU degraded) +3. **Screenshot** do drawer de per-entity drill-down +4. **Screenshot responsivo** (mobile OU tablet) +5. **Texto** (3–5 linhas) com a tese editorial do conceito +6. **Texto** (2 bullets) com as limitações conhecidas do conceito +7. **Após os 3 conceitos**: recomendação final + 3 ajustes sugeridos para o conceito vencedor + +Vamos. diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/routes.py b/pulse/packages/pulse-data/src/contexts/pipeline/routes.py index 3ac4a21..297df02 100644 --- a/pulse/packages/pulse-data/src/contexts/pipeline/routes.py +++ b/pulse/packages/pulse-data/src/contexts/pipeline/routes.py @@ -1,9 +1,12 @@ -"""Pipeline Monitor API routes. +"""Pipeline Monitor v2 API routes. -Provides a consolidated view of the data pipeline health: stage -statuses, PULSE DB record counts, connector health, sync logs, and errors. +Complete replacement of v1 routes. Provides six GET endpoints plus one +stub POST for the retry feature (backlogged). -v2: Uses direct source connectors instead of DevLake (ADR-005). +All endpoints are READ-ONLY against the PULSE DB. No external system +calls are made. + +v2: per-step breakdown, team health, coverage analysis, timeline feed. """ from __future__ import annotations @@ -11,18 +14,17 @@ import logging import uuid from datetime import datetime, timedelta, timezone +from typing import Any -from fastapi import APIRouter -from sqlalchemy import func, select +from fastapi import APIRouter, Query, Response +from sqlalchemy import func, select, text from src.config import settings from src.contexts.engineering_data.models import ( EngDeployment, EngIssue, EngPullRequest, - EngSprint, ) -from src.contexts.metrics.infrastructure.models import MetricsSnapshot from src.contexts.pipeline.models import ( PipelineEvent, PipelineIngestionProgress, @@ -30,19 +32,19 @@ PipelineWatermark, ) from src.contexts.pipeline.schemas import ( - DevLakePipelineInfo, - IngestionEntityProgress, - IngestionProgressResponse, - MetricsWorkerSnapshot, - MetricsWorkerStatus, - PipelineError, - PipelineEventEntry, - PipelineKPIs, - PipelineStageStatus, - PipelineStatusResponse, - RecordCount, - SourceFilteredStatus, - SyncLogEntry, + ActiveProjectWithoutIssues, + CatalogCounts, + CoverageResponse, + Entity, + Integration, + KPIs, + OrphanPrefix, + PipelineHealthResponse, + ReposWithDeploy, + Source, + Step, + TeamHealth, + TimelineEvent, ) from src.database import get_session @@ -50,554 +52,939 @@ router = APIRouter(prefix="/data/v1/pipeline", tags=["Pipeline Monitor"]) +# --------------------------------------------------------------------------- +# Constants +# --------------------------------------------------------------------------- + +_TENANT_ID = uuid.UUID(settings.default_tenant_id) + +# Source -> entity_types mapping +_SOURCE_ENTITIES: dict[str, list[dict[str, str]]] = { + "github": [ + {"type": "pull_requests", "label": "Pull Requests"}, + {"type": "deployments", "label": "Deployments (GitHub Actions)"}, + ], + "jira": [ + {"type": "issues", "label": "Issues / Historias"}, + {"type": "sprints", "label": "Sprints"}, + ], + "jenkins": [ + {"type": "deployments", "label": "Deployments (Jenkins)"}, + ], +} + +# Entity type -> watermark entity_type in pipeline_watermarks +_ENTITY_WATERMARK_MAP: dict[str, str] = { + "pull_requests": "pull_requests", + "issues": "issues", + "deployments": "deployments", + "sprints": "sprints", +} + +# pt-BR entity labels +_ENTITY_LABELS: dict[str, str] = { + "pull_requests": "Pull Requests", + "reviews": "Revisoes", + "commits": "Commits", + "deployments": "Deployments", + "issues": "Issues / Historias", + "sprints": "Sprints", + "builds": "Builds", +} + +# Placeholder rate limit percentages (not tracked yet — see docs/backlog.md) +_RATE_LIMIT_PLACEHOLDERS: dict[str, float] = { + "github": 0.42, + "jira": 0.78, + "jenkins": 0.21, +} + +# Integration registry — all six connectors +_ALL_INTEGRATIONS: list[dict[str, str]] = [ + {"id": "github", "name": "GitHub", "token_attr": "github_token"}, + {"id": "jira", "name": "Jira Cloud", "token_attr": "jira_api_token"}, + {"id": "jenkins", "name": "Jenkins", "token_attr": "jenkins_api_token"}, + {"id": "gitlab", "name": "GitLab", "token_attr": ""}, + {"id": "azure", "name": "Azure DevOps", "token_attr": ""}, + {"id": "bitbucket", "name": "Bitbucket", "token_attr": ""}, +] + # --------------------------------------------------------------------------- # Helpers # --------------------------------------------------------------------------- -async def _get_connector_health() -> dict[str, dict]: - """Check health of configured source connectors. +def _is_source_configured(source_id: str) -> bool: + """Check if a source has a configured API token.""" + attr_map = {"github": "github_token", "jira": "jira_api_token", "jenkins": "jenkins_api_token"} + attr = attr_map.get(source_id, "") + return bool(getattr(settings, attr, "")) if attr else False - Returns a dict like {"github": {"status": "healthy", ...}, ...}. - """ - health: dict[str, dict] = {} - configured_sources = [] - if settings.github_token: - configured_sources.append(("github", "GitHub")) - if settings.jira_api_token: - configured_sources.append(("jira", "Jira Cloud")) - if settings.jenkins_api_token: - configured_sources.append(("jenkins", "Jenkins")) +def _derive_health_from_sources(source_statuses: list[str]) -> str: + """Derive overall health from individual source statuses. - for source_type, label in configured_sources: - health[source_type] = { - "status": "configured", - "label": label, - } + Worst status wins (priority order): error > degraded > slow > backfilling > healthy. + """ + priority = {"error": 0, "degraded": 1, "slow": 2, "backfilling": 3, "healthy": 4} + if not source_statuses: + return "healthy" + worst = min(source_statuses, key=lambda s: priority.get(s, 99)) + return worst + + +def _derive_source_status( + watermark: datetime | None, + has_errors: bool, + is_running: bool, +) -> str: + """Derive a source's status from watermark age, errors, and run state.""" + now = datetime.now(timezone.utc) + if has_errors: + return "error" + if is_running: + return "backfilling" + if watermark is None: + return "degraded" + lag = (now - watermark).total_seconds() + if lag > 7200: # >2h + return "degraded" + if lag > 3600: # >1h + return "slow" + return "healthy" + + +def _synthesize_steps( + progress: Any, + now: datetime, +) -> list[Step]: + """Synthesize aggregated steps from ingestion progress. + + TODO: replace synthesis with real per-step instrumentation once sync + worker emits step-level events (see docs/backlog.md). + """ + elapsed_sec = ( + (now - progress.started_at).total_seconds() + if progress.started_at + else 0.0 + ) + records = progress.records_ingested or 0 + sources_done = progress.sources_done or 0 + total_sources = progress.total_sources or 0 + all_done = sources_done >= total_sources and total_sources > 0 + + # ETA calculation (same logic as v1) + eta_sec: float | None = None + if sources_done > 0 and total_sources > sources_done: + sec_per_source = elapsed_sec / sources_done + remaining = total_sources - sources_done + eta_sec = round(sec_per_source * remaining, 1) + + throughput = round(records / elapsed_sec, 1) if elapsed_sec > 0 and records > 0 else None + + return [ + Step( + name="fetch", + status="done" if all_done else "running", + processed=records, + total=records, # proxy — real total unknown without step instrumentation + duration_sec=round(elapsed_sec, 1) if elapsed_sec else None, + throughput_per_sec=throughput, + ), + Step( + name="upsert", + status="running" if not all_done else "done", + processed=records, + total=records, + eta_sec=eta_sec, + throughput_per_sec=throughput, + ), + ] - return health + +def _humanize_lag_ptbr(watermark: datetime | None) -> str: + """Return a pt-BR string like 'há 4min' for the lag from now to watermark.""" + if watermark is None: + return "sem dados" + now = datetime.now(timezone.utc) + delta = now - watermark + seconds = int(delta.total_seconds()) + if seconds < 60: + return f"há {seconds}s" + if seconds < 3600: + return f"há {seconds // 60}min" + if seconds < 86400: + return f"há {seconds // 3600}h" + return f"há {seconds // 86400}d" # --------------------------------------------------------------------------- -# Routes +# 1. GET /health # --------------------------------------------------------------------------- -@router.get("/status", response_model=PipelineStatusResponse) -async def get_pipeline_status() -> PipelineStatusResponse: - """Get consolidated pipeline health status. - - Aggregates data from: PULSE DB tables, connector counts, - sync logs, and watermarks. - """ - tenant_id = uuid.UUID(settings.default_tenant_id) +@router.get("/health", response_model=PipelineHealthResponse) +async def get_pipeline_health() -> PipelineHealthResponse: + """Consolidated pipeline health with KPIs.""" now = datetime.now(timezone.utc) + today_start = now.replace(hour=0, minute=0, second=0, microsecond=0) + yesterday_start = today_start - timedelta(days=1) + + records_today = 0 + records_yesterday = 0 + pr_link_rate = 0.0 + pr_link_rate_7d_ago = 0.0 + repos_covered = 0 + repos_total = 0 + avg_lag_sec = 0 + p95_lag_sec = 0 + source_statuses: list[str] = [] - # --- 1. Record counts (PULSE DB) --- - async with get_session(tenant_id) as session: - pr_count = (await session.execute(select(func.count(EngPullRequest.id)))).scalar() or 0 - issue_count = (await session.execute(select(func.count(EngIssue.id)))).scalar() or 0 - deploy_count = (await session.execute(select(func.count(EngDeployment.id)))).scalar() or 0 - sprint_count = (await session.execute(select(func.count(EngSprint.id)))).scalar() or 0 - - pulse_counts = { - "pull_requests": pr_count, - "issues": issue_count, - "deployments": deploy_count, - "sprints": sprint_count, - } - - # --- 2. Record counts (direct connectors — no intermediate DB) --- - record_counts = [] - for entity in ["pull_requests", "issues", "deployments", "sprints"]: - pl = pulse_counts.get(entity, 0) - record_counts.append(RecordCount( - entity=entity, - devlake_count=pl, # No separate source DB; use PULSE count - pulse_count=pl, - difference=0, - is_synced=True, - )) - - # --- 3. Recent sync logs --- - sync_logs: list[PipelineSyncLog] = [] try: - async with get_session(tenant_id) as session: - sync_logs_result = await session.execute( - select(PipelineSyncLog) - .order_by(PipelineSyncLog.started_at.desc()) - .limit(10) + async with get_session(_TENANT_ID) as session: + # --- records today vs yesterday from pipeline_sync_log --- + today_result = await session.execute( + select(func.coalesce(func.sum(PipelineSyncLog.error_count * 0 + 1), 0)) + .where(PipelineSyncLog.started_at >= today_start) ) - sync_logs = list(sync_logs_result.scalars().all()) + # Actually sum records_processed (JSONB) - use raw SQL + today_row = await session.execute(text(""" + SELECT COALESCE(SUM( + (SELECT COALESCE(SUM(v::int), 0) + FROM jsonb_each_text(COALESCE(records_processed, '{}'::jsonb)) AS t(k, v)) + ), 0) AS total + FROM pipeline_sync_log + WHERE started_at >= :today_start + """), {"today_start": today_start}) + records_today = today_row.scalar() or 0 + + yesterday_row = await session.execute(text(""" + SELECT COALESCE(SUM( + (SELECT COALESCE(SUM(v::int), 0) + FROM jsonb_each_text(COALESCE(records_processed, '{}'::jsonb)) AS t(k, v)) + ), 0) AS total + FROM pipeline_sync_log + WHERE started_at >= :yesterday_start AND started_at < :today_start + """), {"yesterday_start": yesterday_start, "today_start": today_start}) + records_yesterday = yesterday_row.scalar() or 0 + + # --- PR-issue link rate --- + link_row = await session.execute(text(""" + SELECT + COUNT(*) FILTER (WHERE linked_issue_ids IS NOT NULL AND linked_issue_ids != '[]'::jsonb) AS linked, + COUNT(*) AS total + FROM eng_pull_requests + """)) + link_data = link_row.first() + if link_data and link_data.total > 0: + pr_link_rate = round(link_data.linked / link_data.total, 4) + + # link rate 7 days ago (PRs created before 7d ago) + link_7d_row = await session.execute(text(""" + SELECT + COUNT(*) FILTER (WHERE linked_issue_ids IS NOT NULL AND linked_issue_ids != '[]'::jsonb) AS linked, + COUNT(*) AS total + FROM eng_pull_requests + WHERE created_at < NOW() - INTERVAL '7 days' + """)) + link_7d_data = link_7d_row.first() + if link_7d_data and link_7d_data.total > 0: + pr_link_rate_7d_ago = round(link_7d_data.linked / link_7d_data.total, 4) + + # --- repos with deploy (30d) --- + deploy_coverage_row = await session.execute(text(""" + SELECT + COUNT(DISTINCT repo) FILTER (WHERE source IS NOT NULL) AS covered, + (SELECT COUNT(DISTINCT repo) FROM eng_pull_requests) AS total + FROM eng_deployments + WHERE deployed_at >= NOW() - INTERVAL '30 days' + """)) + dc = deploy_coverage_row.first() + if dc: + repos_covered = dc.covered or 0 + repos_total = dc.total or 0 + + # --- sync lag from watermarks --- + lag_row = await session.execute(text(""" + SELECT + COALESCE(AVG(EXTRACT(EPOCH FROM (NOW() - last_synced_at)))::int, 0) AS avg_lag, + COALESCE(PERCENTILE_CONT(0.95) WITHIN GROUP (ORDER BY EXTRACT(EPOCH FROM (NOW() - last_synced_at)))::int, 0) AS p95_lag + FROM pipeline_watermarks + """)) + lag_data = lag_row.first() + if lag_data: + avg_lag_sec = lag_data.avg_lag or 0 + p95_lag_sec = lag_data.p95_lag or 0 + + # --- per-source status for health derivation --- + for source_id in ("github", "jira", "jenkins"): + if not _is_source_configured(source_id): + continue + entity_types = [e["type"] for e in _SOURCE_ENTITIES.get(source_id, [])] + if not entity_types: + continue + wm_row = await session.execute( + select(func.max(PipelineWatermark.last_synced_at)) + .where(PipelineWatermark.entity_type.in_(entity_types)) + ) + wm = wm_row.scalar() + + # Check for errors in last 24h + err_row = await session.execute(text(""" + SELECT COUNT(*) AS cnt FROM pipeline_events + WHERE source = :source AND severity = 'error' + AND occurred_at >= NOW() - INTERVAL '24 hours' + """), {"source": source_id}) + has_errors = (err_row.scalar() or 0) > 3 + + # Check if running + running_row = await session.execute( + select(func.count()) + .select_from(PipelineIngestionProgress) + .where(PipelineIngestionProgress.status == "running") + .where(PipelineIngestionProgress.entity_type.in_(entity_types)) + ) + is_running = (running_row.scalar() or 0) > 0 + + source_statuses.append(_derive_source_status(wm, has_errors, is_running)) + except Exception: - logger.warning("Could not fetch sync logs (table may not exist yet)") - - recent_syncs = [ - SyncLogEntry( - id=str(s.id), - started_at=s.started_at, - finished_at=s.finished_at, - status=s.status, - trigger=s.trigger, - duration_seconds=s.duration_seconds, - records_processed=s.records_processed or {}, - error_count=s.error_count, - ) - for s in sync_logs - ] + logger.warning("Error computing pipeline health KPIs", exc_info=True) - # --- 4. Recent errors (from sync logs) --- - recent_errors: list[PipelineError] = [] - for s in sync_logs: - if s.errors: - for err in s.errors[:5]: - recent_errors.append(PipelineError( - stage=err.get("stage", "unknown"), - message=err.get("message", "Unknown error"), - timestamp=( - datetime.fromisoformat(err["timestamp"]) - if "timestamp" in err - else s.started_at - ), - error_code=err.get("error_code"), - context=err.get("context", {}), - )) - recent_errors = recent_errors[:10] # max 10 + # Trend calculations + records_trend_pct = 0.0 + if records_yesterday > 0: + records_trend_pct = round( + ((records_today - records_yesterday) / records_yesterday) * 100, 1 + ) - # --- 5. Errors in last 24h --- - errors_24h = sum( - s.error_count - for s in sync_logs - if s.started_at and s.started_at >= now - timedelta(hours=24) + pr_link_trend_pp = round((pr_link_rate - pr_link_rate_7d_ago) * 100, 2) + + health = _derive_health_from_sources(source_statuses) + + return PipelineHealthResponse( + health=health, + last_updated_at=now, + kpis=KPIs( + records_today=records_today, + records_trend_pct=records_trend_pct, + pr_issue_link_rate=pr_link_rate, + pr_issue_link_trend_pp=pr_link_trend_pp, + repos_with_deploy_30d=ReposWithDeploy(covered=repos_covered, total=repos_total), + avg_sync_lag_sec=avg_lag_sec, + p95_sync_lag_sec=p95_lag_sec, + ), ) - # --- 6. Synced today count --- - synced_today = sum( - sum((s.records_processed or {}).values()) - for s in sync_logs - if s.started_at - and s.started_at.date() == now.date() - and s.status in ("completed", "partial") - ) - # --- 7. Pending sync --- - pending = 0 # No intermediate DB; pending is tracked via watermarks - - # --- 8. Connector health --- - connector_health = await _get_connector_health() - devlake_info = DevLakePipelineInfo() # Deprecated: kept for frontend schema compat - - # --- 9. Build stage statuses --- - total_records = sum(pulse_counts.values()) - - # Determine overall status - latest_sync = sync_logs[0] if sync_logs else None - if errors_24h > 5: - overall = "error" - elif errors_24h > 0: - overall = "degraded" - elif latest_sync and latest_sync.status == "running": - overall = "syncing" - else: - overall = "healthy" - - # Determine per-stage status - num_connectors = len(connector_health) - source_status = "healthy" if num_connectors > 0 and total_records > 0 else "idle" - sync_status = ( - "syncing" - if (latest_sync and latest_sync.status == "running") - else "healthy" - ) - db_status = "healthy" if total_records > 0 else "standby" - metrics_status = "healthy" # Metrics worker is always-on Kafka consumer +# --------------------------------------------------------------------------- +# 2. GET /sources +# --------------------------------------------------------------------------- - stages = [ - PipelineStageStatus( - name="sources", - status=source_status, - label="Connectors", - detail=f"{num_connectors} configured", - ), - PipelineStageStatus( - name="sync_worker", - status=sync_status, - label="Sync Worker", - detail="Kafka Cluster", - ), - PipelineStageStatus( - name="pulse_db", - status=db_status, - label="PULSE DB", - detail=f"{total_records:,} Rec", - ), - PipelineStageStatus( - name="metrics_worker", - status=metrics_status, - label="Metrics", - detail="Calculations", - ), - ] - # --- 10. Recent pipeline events --- - recent_events: list[PipelineEventEntry] = [] - try: - async with get_session(tenant_id) as session: - events_result = await session.execute( - select(PipelineEvent) - .order_by(PipelineEvent.occurred_at.desc()) - .limit(10) - ) - recent_events = [ - PipelineEventEntry( - id=str(e.id), - event_type=e.event_type, - source=e.source, - title=e.title, - detail=e.detail, - severity=e.severity, - metadata=e.event_meta or {}, - occurred_at=e.occurred_at, +@router.get("/sources", response_model=list[Source]) +async def get_sources() -> list[Source]: + """Return configured sources with entities and running steps.""" + now = datetime.now(timezone.utc) + sources: list[Source] = [] + + for source_id, entity_defs in _SOURCE_ENTITIES.items(): + if not _is_source_configured(source_id): + continue + + entity_types = [e["type"] for e in entity_defs] + + try: + async with get_session(_TENANT_ID) as session: + # --- Connections count --- + if source_id == "github": + conn_row = await session.execute(text( + "SELECT COUNT(DISTINCT repo) FROM eng_pull_requests" + )) + connections = conn_row.scalar() or 0 + elif source_id == "jira": + # Active projects from jira_project_catalog + conn_row = await session.execute(text( + "SELECT COUNT(*) FROM jira_project_catalog WHERE status IN ('active', 'discovered')" + )) + connections = conn_row.scalar() or 0 + elif source_id == "jenkins": + conn_row = await session.execute(text( + "SELECT COUNT(DISTINCT repo) FROM eng_deployments WHERE source = 'jenkins'" + )) + connections = conn_row.scalar() or 0 + else: + connections = 0 + + # --- Catalog counts --- + catalog = CatalogCounts(active=connections) + if source_id == "jira": + try: + cat_row = await session.execute(text(""" + SELECT + COUNT(*) FILTER (WHERE status = 'active') AS active, + COUNT(*) FILTER (WHERE status = 'discovered') AS discovered, + COUNT(*) FILTER (WHERE status = 'paused') AS paused, + COUNT(*) FILTER (WHERE status = 'blocked') AS blocked, + COUNT(*) FILTER (WHERE status = 'archived') AS archived + FROM jira_project_catalog + """)) + cr = cat_row.first() + if cr: + catalog = CatalogCounts( + active=cr.active or 0, + discovered=cr.discovered or 0, + paused=cr.paused or 0, + blocked=cr.blocked or 0, + archived=cr.archived or 0, + ) + except Exception: + logger.warning("Could not fetch jira_project_catalog counts") + + # --- Source-level watermark --- + wm_row = await session.execute( + select(func.max(PipelineWatermark.last_synced_at)) + .where(PipelineWatermark.entity_type.in_(entity_types)) + ) + source_watermark = wm_row.scalar() + + # --- Check for errors --- + err_row = await session.execute(text(""" + SELECT COUNT(*) FROM pipeline_events + WHERE source = :source AND severity = 'error' + AND occurred_at >= NOW() - INTERVAL '24 hours' + """), {"source": source_id}) + has_errors = (err_row.scalar() or 0) > 3 + + # --- Running check --- + running_row = await session.execute( + select(func.count()) + .select_from(PipelineIngestionProgress) + .where(PipelineIngestionProgress.status == "running") + .where(PipelineIngestionProgress.entity_type.in_(entity_types)) + ) + is_running = (running_row.scalar() or 0) > 0 + + source_status = _derive_source_status(source_watermark, has_errors, is_running) + + # --- Build entities --- + entities: list[Entity] = [] + for edef in entity_defs: + etype = edef["type"] + elabel = edef["label"] + + # Per-entity watermark + ewm_row = await session.execute( + select(PipelineWatermark.last_synced_at) + .where(PipelineWatermark.entity_type == etype) + .limit(1) + ) + ewatermark = ewm_row.scalar() + + # Last completed sync log for this entity + last_cycle_row = await session.execute(text(""" + SELECT + records_processed->:etype AS records, + duration_seconds + FROM pipeline_sync_log + WHERE status IN ('completed', 'partial') + AND records_processed ? :etype + ORDER BY finished_at DESC NULLS LAST + LIMIT 1 + """), {"etype": etype}) + lc = last_cycle_row.first() + last_cycle_records = None + last_cycle_duration = None + if lc and lc.records is not None: + try: + last_cycle_records = int(lc.records) + except (ValueError, TypeError): + pass + last_cycle_duration = lc.duration_seconds + + # Check ingestion progress for running status + prog_row = await session.execute( + select(PipelineIngestionProgress) + .where(PipelineIngestionProgress.entity_type == etype) + .limit(1) + ) + progress = prog_row.scalars().first() + + entity_status: str = "idle" + steps: list[Step] | None = None + error_msg: str | None = None + + if progress: + if progress.status == "running": + entity_status = "running" + steps = _synthesize_steps(progress, now) + elif progress.status == "completed": + entity_status = "healthy" + elif progress.status == "failed": + entity_status = "error" + error_msg = progress.error_message + else: + entity_status = "idle" + elif ewatermark is not None: + # Has data but no active progress row -> healthy + entity_status = "healthy" + + entities.append(Entity( + type=etype, + label=elabel, + status=entity_status, + watermark=ewatermark, + last_cycle_records=last_cycle_records, + last_cycle_duration_sec=last_cycle_duration, + error=error_msg, + steps=steps, + )) + + except Exception: + logger.warning("Error building source %s", source_id, exc_info=True) + entities = [ + Entity( + type=e["type"], + label=e["label"], + status="error", + error="Falha ao consultar dados do pipeline", ) - for e in events_result.scalars().all() + for e in entity_defs ] - except Exception: - logger.warning("Could not fetch pipeline events (table may not exist yet)") - - # --- 11. Source connections (from connector health) --- - source_connections: list[dict] = [ - { - "type": src, - "label": info.get("label", src), - "icon": {"github": "code", "jira": "task_alt", "jenkins": "terminal"}.get(src, "code"), - "active": True, - "syncing": latest_sync.status == "running" if latest_sync else False, - } - for src, info in connector_health.items() - ] - # Add unconfigured sources as inactive - for src, label, icon in [("bitbucket", "Bitbucket", "code"), ("gitlab", "GitLab", "code")]: - if src not in connector_health: - source_connections.append({"type": src, "label": label, "icon": icon, "active": False, "syncing": False}) - - return PipelineStatusResponse( - overall_status=overall, - stages=stages, - kpis=PipelineKPIs( - total_records=total_records, - synced_today=synced_today, - pending_sync=pending, - errors_24h=errors_24h, - ), - record_counts=record_counts, - recent_syncs=recent_syncs, - recent_errors=recent_errors, - recent_events=recent_events, - source_connections=source_connections, - devlake=devlake_info, - last_updated=now, - ) + source_status = "error" + connections = 0 + source_watermark = None + catalog = CatalogCounts() + + sources.append(Source( + id=source_id, + name={"github": "GitHub", "jira": "Jira Cloud", "jenkins": "Jenkins"}[source_id], + status=source_status, + connections=connections, + rate_limit_pct=_RATE_LIMIT_PLACEHOLDERS.get(source_id, 0.0), + watermark=source_watermark, + catalog=catalog, + entities=entities, + )) + + return sources # --------------------------------------------------------------------------- -# Source-filtered status (Tela 2) +# 3. GET /integrations # --------------------------------------------------------------------------- -@router.get("/status/source/{source_type}", response_model=SourceFilteredStatus) -async def get_source_status(source_type: str) -> SourceFilteredStatus: - """Get pipeline status filtered by a specific source type. +@router.get("/integrations", response_model=list[Integration]) +async def get_integrations() -> list[Integration]: + """Return all six integration connectors with status.""" + integrations: list[Integration] = [] + + for reg in _ALL_INTEGRATIONS: + int_id = reg["id"] + int_name = reg["name"] + token_attr = reg["token_attr"] + + connected = bool(getattr(settings, token_attr, "")) if token_attr else False + + if not connected: + integrations.append(Integration( + id=int_id, + name=int_name, + connected=False, + status="disabled", + detail="Não configurado", + )) + continue + + # Connected source — compute detail from watermark + entity_types = [e["type"] for e in _SOURCE_ENTITIES.get(int_id, [])] + watermark: datetime | None = None + connections = 0 + + try: + async with get_session(_TENANT_ID) as session: + if entity_types: + wm_row = await session.execute( + select(func.max(PipelineWatermark.last_synced_at)) + .where(PipelineWatermark.entity_type.in_(entity_types)) + ) + watermark = wm_row.scalar() + + # Connection count + if int_id == "github": + cr = await session.execute(text( + "SELECT COUNT(DISTINCT repo) FROM eng_pull_requests" + )) + connections = cr.scalar() or 0 + elif int_id == "jira": + cr = await session.execute(text( + "SELECT COUNT(*) FROM jira_project_catalog WHERE status IN ('active', 'discovered')" + )) + connections = cr.scalar() or 0 + elif int_id == "jenkins": + cr = await session.execute(text( + "SELECT COUNT(DISTINCT repo) FROM eng_deployments WHERE source = 'jenkins'" + )) + connections = cr.scalar() or 0 + + # Errors in last 24h for status + err_row = await session.execute(text(""" + SELECT COUNT(*) FROM pipeline_events + WHERE source = :source AND severity = 'error' + AND occurred_at >= NOW() - INTERVAL '24 hours' + """), {"source": int_id}) + err_count = err_row.scalar() or 0 + + except Exception: + logger.warning("Error fetching integration details for %s", int_id, exc_info=True) + + lag_str = _humanize_lag_ptbr(watermark) + detail = f"{connections} repos" if int_id in ("github", "jenkins") else f"{connections} projetos" + detail += f" · Última sync {lag_str}" + + status: str = "healthy" + if err_count > 3: + status = "error" + elif err_count > 0: + status = "degraded" + elif watermark and (datetime.now(timezone.utc) - watermark).total_seconds() > 3600: + status = "degraded" # Stale watermark — "slow" not in IntegrationStatus + + integrations.append(Integration( + id=int_id, + name=int_name, + connected=True, + status=status, + detail=detail, + )) + + return integrations + + +# --------------------------------------------------------------------------- +# 4. GET /teams +# --------------------------------------------------------------------------- - Returns source-specific KPIs, active syncs, and recent events - for the given source (github, jira, jenkins, etc.). + +@router.get("/teams", response_model=list[TeamHealth]) +async def get_teams() -> list[TeamHealth]: + """Return team/squad health derived from PR title references (last 90d). + + A 'team' = a project_key extracted from PR titles that has ≥1 PR in the last + 90 days. This gives a dynamic, self-healing list of active eng squads — NOT + tied to the stale `jira_project_catalog.pr_reference_count` column. + + For each squad we compute repos, pr_count, issue_count, link_rate, deploy_count, + and derive status via lag + link rate thresholds. """ - tenant_id = uuid.UUID(settings.default_tenant_id) now = datetime.now(timezone.utc) + teams: list[TeamHealth] = [] - # Map source types to entity models for counting - source_entity_map: dict[str, list] = { - "github": [EngPullRequest, EngDeployment], - "jira": [EngIssue, EngSprint], - "jenkins": [EngDeployment], - "bitbucket": [EngPullRequest], - "gitlab": [EngPullRequest], - } - entities = source_entity_map.get(source_type, []) - - # --- Source-specific KPIs --- - entity_count = 0 - synced_today = 0 - try: - async with get_session(tenant_id) as session: - for model in entities: - count = (await session.execute(select(func.count(model.id)))).scalar() or 0 - entity_count += count - except Exception: - logger.warning("Could not count entities for source %s", source_type) - - # Count records synced today from sync logs for this source try: - async with get_session(tenant_id) as session: - sync_logs_result = await session.execute( - select(PipelineSyncLog) - .where(PipelineSyncLog.started_at >= now.replace(hour=0, minute=0, second=0, microsecond=0)) - .where(PipelineSyncLog.status.in_(["completed", "partial"])) - .order_by(PipelineSyncLog.started_at.desc()) - .limit(20) - ) - for s in sync_logs_result.scalars().all(): - rp = s.records_processed or {} - for entity_key in source_entity_map.get(source_type, []): - table_name = getattr(entity_key, "__tablename__", "") - # Map model tablename to records_processed keys - key_map = { - "eng_pull_requests": "pull_requests", - "eng_issues": "issues", - "eng_deployments": "deployments", - "eng_sprints": "sprints", + async with get_session(_TENANT_ID) as session: + # 1. Aggregate PR activity per squad via title regex (SINGLE query, fast) + agg_rows = await session.execute(text(r""" + WITH pr_refs AS ( + SELECT + UPPER((regexp_match(pr.title, '\m([A-Za-z][A-Za-z0-9]+)-\d+'))[1]) AS project_key, + pr.id AS pr_id, + pr.repo, + (pr.linked_issue_ids IS NOT NULL + AND pr.linked_issue_ids != '[]'::jsonb) AS is_linked + FROM eng_pull_requests pr + WHERE pr.created_at >= NOW() - INTERVAL '90 days' + ) + SELECT + project_key, + COUNT(*) AS prs_referenced, + COUNT(*) FILTER (WHERE is_linked) AS prs_linked, + COUNT(DISTINCT repo) AS repos + FROM pr_refs + -- Only include keys that exist in jira_project_catalog + -- (filters out noise like CVE, LODASH, REGEXP, RELEASE, etc.) + WHERE project_key IS NOT NULL + AND project_key IN ( + SELECT project_key FROM jira_project_catalog + WHERE status IN ('active', 'discovered') + ) + GROUP BY project_key + HAVING COUNT(*) > 0 + ORDER BY COUNT(*) DESC + """)) + squads = agg_rows.fetchall() + + if not squads: + return [] + + squad_keys = [s.project_key for s in squads] + + # 2. Enrichment: catalog (name, issue_count, last_sync_at, status) + catalog_map: dict[str, dict] = {} + try: + cat_rows = await session.execute(text(""" + SELECT project_key, name, issue_count, status, last_sync_at + FROM jira_project_catalog + WHERE project_key = ANY(:keys) + """), {"keys": squad_keys}) + for r in cat_rows.fetchall(): + catalog_map[r.project_key] = { + "name": r.name, + "issue_count": r.issue_count or 0, + "status": r.status, + "last_sync_at": r.last_sync_at, } - mapped_key = key_map.get(table_name, "") - synced_today += rp.get(mapped_key, 0) - except Exception: - logger.warning("Could not compute synced_today for source %s", source_type) - - kpis = { - "entities": entity_count, - "synced_today": synced_today, - "latency_ms": 120, # Placeholder — real latency tracking in R2 - "webhooks": 0, - } - - # --- Stages (same pipeline, status adjusted for source) --- - is_active = source_type in ("github", "jira", "jenkins") - source_stage_status = "healthy" if is_active and entity_count > 0 else "idle" - stages = [ - PipelineStageStatus(name="connector", status=source_stage_status, label="Connector", detail=f"{entity_count} records"), - PipelineStageStatus(name="normalizer", status="healthy" if is_active else "standby", label="Normalizer", detail="Transform"), - PipelineStageStatus(name="sync_worker", status="healthy" if is_active else "standby", label="Sync Worker", detail="Kafka"), - PipelineStageStatus(name="pulse_db", status="healthy" if entity_count > 0 else "standby", label="PULSE DB", detail="Persist"), - ] - - # --- Active syncs (mock enriched for MVP) --- - active_syncs: list[dict] = [] - if source_type == "github": - active_syncs = [ - {"name": "webmotors/api", "type": "repository", "progress": 100, "last_sync": now.isoformat()}, - {"name": "webmotors/frontend", "type": "repository", "progress": 100, "last_sync": now.isoformat()}, - ] - elif source_type == "jira": - active_syncs = [ - {"name": "PULSE Board", "type": "board", "progress": 100, "last_sync": now.isoformat()}, - ] - - # --- Recent events for this source --- - recent_logs: list[PipelineEventEntry] = [] - try: - async with get_session(tenant_id) as session: - events_result = await session.execute( - select(PipelineEvent) - .where(PipelineEvent.source == source_type) - .order_by(PipelineEvent.occurred_at.desc()) - .limit(10) + except Exception: + logger.warning("catalog enrichment failed", exc_info=True) + + # 3. Deploy counts + Jenkins job counts per squad + # (single query via CTE with regex match, repo normalised with split_part) + deploy_map: dict[str, int] = {} + jenkins_map: dict[str, int] = {} + try: + dep_rows = await session.execute(text(r""" + WITH pr_squads AS ( + SELECT DISTINCT + UPPER((regexp_match(pr.title, '\m([A-Za-z][A-Za-z0-9]+)-\d+'))[1]) AS project_key, + pr.repo + FROM eng_pull_requests pr + WHERE pr.created_at >= NOW() - INTERVAL '90 days' + ) + SELECT ps.project_key, + COUNT(DISTINCT d.id) AS deploys, + COUNT(DISTINCT d.repo) FILTER (WHERE d.source = 'jenkins') AS jenkins_repos + FROM pr_squads ps + JOIN eng_deployments d ON d.repo = split_part(ps.repo, '/', 2) + WHERE d.deployed_at >= NOW() - INTERVAL '90 days' + AND ps.project_key IS NOT NULL + GROUP BY ps.project_key + """)) + for r in dep_rows.fetchall(): + deploy_map[r.project_key] = r.deploys or 0 + jenkins_map[r.project_key] = r.jenkins_repos or 0 + except Exception: + logger.warning("deploy aggregation failed", exc_info=True) + + # 4. Tribe lookup from teams table (board_config.jira.projects) + tribe_map: dict[str, str] = {} + try: + tribe_rows = await session.execute(text("SELECT name, board_config FROM teams")) + for row in tribe_rows.fetchall(): + bc = row.board_config + if isinstance(bc, dict): + for pk in bc.get("jira", {}).get("projects", []) or []: + tribe_map[str(pk).upper()] = row.name + except Exception: + logger.warning("teams table not available for tribe lookup") + + # 5. Assemble response + issue_wm_row = await session.execute( + select(func.max(PipelineWatermark.last_synced_at)) + .where(PipelineWatermark.entity_type == "issues") ) - recent_logs = [ - PipelineEventEntry( - id=str(e.id), - event_type=e.event_type, - source=e.source, - title=e.title, - detail=e.detail, - severity=e.severity, - metadata=e.event_meta or {}, - occurred_at=e.occurred_at, - ) - for e in events_result.scalars().all() - ] + issues_watermark = issue_wm_row.scalar() + + for s in squads: + pk = s.project_key + cat = catalog_map.get(pk, {}) + pname = cat.get("name") or pk + link_rate = round(s.prs_linked / s.prs_referenced, 4) if s.prs_referenced > 0 else 0.0 + last_sync = cat.get("last_sync_at") or issues_watermark + + if last_sync: + lag_sec = int((now - last_sync).total_seconds()) + else: + lag_sec = 0 + + # Health derivation — sync cadence is periodic (hours/daily), + # so use generous thresholds for team-level health status. + # NOTE: cell-level lag coloring still uses strict spec thresholds + # (<600s green, 600-1800 yellow, >1800 red) in the frontend. + if last_sync is None or lag_sec > 172800: # >48h = error + health = "error" + elif link_rate < 0.15 or lag_sec > 86400: # <15% link rate OR >24h = degraded + health = "degraded" + elif cat.get("status") == "discovered": + health = "backfilling" + else: + health = "healthy" + + teams.append(TeamHealth( + id=pk.lower(), + name=pname, + tribe=tribe_map.get(pk), + squad_key=pk, + health=health, + repos=s.repos or 0, + jira_projects=[pk], + jenkins_jobs=jenkins_map.get(pk, 0), + pr_count=s.prs_referenced or 0, + issue_count=cat.get("issue_count", 0), + deploy_count=deploy_map.get(pk, 0), + link_rate=link_rate, + last_sync=last_sync, + lag_sec=lag_sec, + )) + except Exception: - logger.warning("Could not fetch pipeline events for source %s", source_type) - - # Health percentage — 100 if active with records, 0 if inactive - health_pct = 100.0 if is_active and entity_count > 0 else (50.0 if is_active else 0.0) - - return SourceFilteredStatus( - source=source_type, - kpis=kpis, - stages=stages, - active_syncs=active_syncs, - recent_logs=recent_logs, - health_pct=health_pct, - sync_mode="delta", - ) + logger.warning("Error computing team health", exc_info=True) + + return teams # --------------------------------------------------------------------------- -# Metrics Worker status (Tela 3) +# 5. GET /timeline # --------------------------------------------------------------------------- -@router.get("/metrics-worker/status", response_model=MetricsWorkerStatus) -async def get_metrics_worker_status() -> MetricsWorkerStatus: - """Get Metrics Worker drill-down view. +@router.get("/timeline", response_model=list[TimelineEvent]) +async def get_timeline( + severity: str = Query(default="", description="Filter: info, warning, error, success, or 'warn+' for warning+error"), + limit: int = Query(default=50, ge=1, le=200), + before: datetime | None = Query(default=None, description="Cursor: only events before this ISO timestamp"), +) -> list[TimelineEvent]: + """Return pipeline timeline events.""" + events: list[TimelineEvent] = [] - Returns KPIs, processing stages, recent metric snapshots, - and cluster logs from pipeline events. - """ - tenant_id = uuid.UUID(settings.default_tenant_id) - - # --- 1. Query recent metrics snapshots --- - snapshots: list[MetricsWorkerSnapshot] = [] - total_processed = 0 try: - async with get_session(tenant_id) as session: - snap_result = await session.execute( - select(MetricsSnapshot) - .order_by(MetricsSnapshot.calculated_at.desc()) - .limit(20) - ) - for s in snap_result.scalars().all(): - # Estimate records processed from snapshot data - data = s.value or {} - records = len(data.get("series", [])) if isinstance(data, dict) else 1 - total_processed += records - snapshots.append(MetricsWorkerSnapshot( - snapshot_id=str(s.id), - metric_type=s.metric_type, - timestamp=s.calculated_at, - duration_seconds=None, # Not tracked yet - records_processed=records, - status="success", + async with get_session(_TENANT_ID) as session: + # Build severity filter + severity_filter = "" + params: dict[str, Any] = {"limit": limit} + + if severity == "warn+": + severity_filter = "AND severity IN ('warning', 'error')" + elif severity: + allowed = [s.strip() for s in severity.split(",") if s.strip()] + if allowed: + severity_filter = f"AND severity IN ({','.join(':s' + str(i) for i in range(len(allowed)))})" + for i, s in enumerate(allowed): + params[f"s{i}"] = s + + before_filter = "" + if before: + before_filter = "AND occurred_at < :before" + params["before"] = before + + rows = await session.execute(text(f""" + SELECT occurred_at, severity, source, title + FROM pipeline_events + WHERE 1=1 {severity_filter} {before_filter} + ORDER BY occurred_at DESC + LIMIT :limit + """), params) + + for row in rows.fetchall(): + events.append(TimelineEvent( + ts=row.occurred_at, + severity=row.severity, + stage=row.source, + message=row.title, )) - except Exception: - logger.warning("Could not fetch metrics snapshots for worker status") - # --- 2. Cluster logs (pipeline events from metrics_worker) --- - cluster_logs: list[dict] = [] - try: - async with get_session(tenant_id) as session: - events_result = await session.execute( - select(PipelineEvent) - .where(PipelineEvent.source == "metrics_worker") - .order_by(PipelineEvent.occurred_at.desc()) - .limit(10) - ) - cluster_logs = [ - { - "id": str(e.id), - "event_type": e.event_type, - "title": e.title, - "detail": e.detail, - "severity": e.severity, - "occurred_at": e.occurred_at.isoformat(), - } - for e in events_result.scalars().all() - ] except Exception: - logger.warning("Could not fetch cluster logs for metrics worker") - - # --- 3. KPIs --- - kpis = { - "processing_rate": f"{total_processed}/cycle", - "queue_latency": "< 1s", - "active_nodes": 1, - "dora_health": "healthy" if total_processed > 0 else "idle", - } - - # --- 4. Stages --- - stages = [ - {"name": "ingest", "label": "Ingest", "status": "healthy", "detail": "Kafka consumer"}, - {"name": "metrics_worker", "label": "Metrics Worker", "status": "healthy", "detail": f"{len(snapshots)} snapshots"}, - {"name": "persist", "label": "Persist", "status": "healthy", "detail": "PostgreSQL"}, - {"name": "dispatch", "label": "Dispatch", "status": "healthy", "detail": "API ready"}, - ] + logger.warning("Error fetching timeline events", exc_info=True) - return MetricsWorkerStatus( - kpis=kpis, - stages=stages, - snapshots=snapshots, - cluster_logs=cluster_logs, - ) + return events # --------------------------------------------------------------------------- -# Ingestion Progress (real-time tracking) +# 6. GET /coverage # --------------------------------------------------------------------------- -@router.get("/ingestion/progress", response_model=IngestionProgressResponse) -async def get_ingestion_progress() -> IngestionProgressResponse: - """Get real-time ingestion progress for all entity types. - - Returns progress per entity (pull_requests, issues, etc.) including: - - Sources processed vs total - - Records ingested so far - - Current source being processed - - Rate (records/minute) and ETA - """ - tenant_id = uuid.UUID(settings.default_tenant_id) - now = datetime.now(timezone.utc) - - entities: list[IngestionEntityProgress] = [] - any_running = False +@router.get("/coverage", response_model=CoverageResponse) +async def get_coverage() -> CoverageResponse: + """Return pipeline coverage analysis.""" + repos_covered = 0 + repos_total = 0 + pr_link_rate = 0.0 + orphans: list[OrphanPrefix] = [] + active_no_issues: list[ActiveProjectWithoutIssues] = [] try: - async with get_session(tenant_id) as session: - result = await session.execute( - select(PipelineIngestionProgress) - .order_by(PipelineIngestionProgress.entity_type) - ) - rows = list(result.scalars().all()) + async with get_session(_TENANT_ID) as session: + # --- repos with deploy --- + dc_row = await session.execute(text(""" + SELECT + COUNT(DISTINCT repo) FILTER (WHERE source IS NOT NULL) AS covered, + (SELECT COUNT(DISTINCT repo) FROM eng_pull_requests) AS total + FROM eng_deployments + WHERE deployed_at >= NOW() - INTERVAL '30 days' + """)) + dc = dc_row.first() + if dc: + repos_covered = dc.covered or 0 + repos_total = dc.total or 0 + + # --- PR-issue link rate --- + lr_row = await session.execute(text(""" + SELECT + COUNT(*) FILTER (WHERE linked_issue_ids IS NOT NULL AND linked_issue_ids != '[]'::jsonb) AS linked, + COUNT(*) AS total + FROM eng_pull_requests + """)) + lr = lr_row.first() + if lr and lr.total > 0: + pr_link_rate = round(lr.linked / lr.total, 4) + + # --- Orphan prefixes --- + try: + orphan_rows = await session.execute(text(""" + SELECT prefix, COUNT(*) AS mentions + FROM ( + SELECT (regexp_match(pr.title, '\\m([A-Z][A-Z0-9]+)-\\d+'))[1] AS prefix + FROM eng_pull_requests pr + WHERE pr.created_at > NOW() - INTERVAL '90 days' + ) sub + WHERE prefix IS NOT NULL + AND prefix NOT IN (SELECT project_key FROM jira_project_catalog) + GROUP BY prefix + ORDER BY mentions DESC + LIMIT 5 + """)) + for row in orphan_rows.fetchall(): + orphans.append(OrphanPrefix(prefix=row.prefix, pr_mentions=row.mentions)) + except Exception: + logger.warning("Error computing orphan prefixes (jira_project_catalog may not exist)") + + # --- Active projects with zero issues --- + try: + no_issues_rows = await session.execute(text(""" + SELECT project_key, name + FROM jira_project_catalog + WHERE status = 'active' + AND (issue_count IS NULL OR issue_count = 0) + ORDER BY project_key + """)) + for row in no_issues_rows.fetchall(): + active_no_issues.append( + ActiveProjectWithoutIssues(key=row.project_key, name=row.name or row.project_key) + ) + except Exception: + logger.warning("Error fetching active projects without issues") + except Exception: - logger.warning("Could not fetch ingestion progress (table may not exist)") - rows = [] - - for row in rows: - # Calculate computed fields - progress_pct = 0.0 - if row.total_sources > 0: - progress_pct = round((row.sources_done / row.total_sources) * 100, 1) - - elapsed_minutes = 0.0 - rate_per_minute = 0.0 - eta_minutes = None - - if row.started_at: - elapsed = (now - row.started_at).total_seconds() / 60.0 - elapsed_minutes = round(elapsed, 1) - - if elapsed > 0 and row.records_ingested > 0: - rate_per_minute = round(row.records_ingested / elapsed, 1) - - # ETA based on sources remaining at current rate - if row.sources_done > 0 and row.total_sources > row.sources_done: - minutes_per_source = elapsed / row.sources_done - remaining_sources = row.total_sources - row.sources_done - eta_minutes = round(minutes_per_source * remaining_sources, 1) - - is_running = row.status == "running" - if is_running: - any_running = True - - entities.append(IngestionEntityProgress( - entity_type=row.entity_type, - status=row.status, - total_sources=row.total_sources, - sources_done=row.sources_done, - records_ingested=row.records_ingested, - current_source=row.current_source, - started_at=row.started_at, - last_batch_at=row.last_batch_at, - finished_at=row.finished_at, - error_message=row.error_message, - progress_pct=progress_pct, - rate_per_minute=rate_per_minute, - eta_minutes=eta_minutes, - elapsed_minutes=elapsed_minutes, - )) + logger.warning("Error computing coverage", exc_info=True) - return IngestionProgressResponse( - entities=entities, - any_running=any_running, - last_updated=now, + return CoverageResponse( + repos_with_deploy=ReposWithDeploy(covered=repos_covered, total=repos_total), + pr_issue_link_rate=pr_link_rate, + orphan_prefixes=orphans, + active_projects_without_issues=active_no_issues, ) + + +# --------------------------------------------------------------------------- +# 7. POST /entities/{sourceId}/{entityType}/retry — STUB +# --------------------------------------------------------------------------- + + +@router.post("/entities/{source_id}/{entity_type}/retry", status_code=501) +async def retry_entity(source_id: str, entity_type: str, response: Response) -> dict[str, str]: + """Feature-flagged retry — not yet implemented. + + See docs/backlog.md for roadmap. + """ + return {"detail": "Retry feature is in backlog -- see docs/backlog.md"} diff --git a/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py b/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py index bade05e..925b41f 100644 --- a/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py +++ b/pulse/packages/pulse-data/src/contexts/pipeline/schemas.py @@ -1,226 +1,199 @@ -"""Pydantic v2 response models for BC5 — Pipeline Monitor API. +"""Pydantic v2 response models for Pipeline Monitor v2. -Typed responses for the pipeline status endpoint. Models represent -the pipeline stages, KPIs, record counts, sync logs, and errors -that make up the consolidated pipeline health view. +Complete replacement of v1 schemas. All models use camelCase aliases +for JSON output as required by the frontend spec. """ from __future__ import annotations from datetime import datetime -from typing import Any +from typing import Literal from pydantic import BaseModel, ConfigDict, Field +from pydantic.alias_generators import to_camel # --------------------------------------------------------------------------- -# Pipeline stage status +# Status literal types # --------------------------------------------------------------------------- - -class PipelineStageStatus(BaseModel): - """Status of a single pipeline stage.""" - - name: str # "sources" | "sync_worker" | "pulse_db" | "metrics_worker" - status: str # "healthy" | "syncing" | "idle" | "error" | "standby" - label: str # Human-readable label - detail: str | None = None # e.g. "12 active" or "1.4 GB/s" - last_activity: datetime | None = None +StepStatus = Literal["pending", "running", "done", "error", "degraded"] +EntityStatus = Literal["idle", "healthy", "running", "backfilling", "degraded", "error"] +SourceStatus = Literal["healthy", "backfilling", "degraded", "error", "slow"] +IntegrationStatus = Literal["healthy", "backfilling", "degraded", "error", "disabled"] +HealthStatus = Literal["healthy", "degraded", "error", "backfilling", "slow"] # --------------------------------------------------------------------------- -# KPIs +# Base config for camelCase output # --------------------------------------------------------------------------- - -class PipelineKPIs(BaseModel): - """Key performance indicators for the pipeline.""" - - total_records: int = 0 - synced_today: int = 0 - pending_sync: int = 0 - errors_24h: int = 0 - total_records_trend: float | None = None # % change vs last period +class _CamelModel(BaseModel): + model_config = ConfigDict( + populate_by_name=True, + alias_generator=to_camel, + ) # --------------------------------------------------------------------------- -# Record counts +# Step / Entity / Source # --------------------------------------------------------------------------- +class Step(_CamelModel): + """A single processing step within an entity sync cycle. -class RecordCount(BaseModel): - """Record count for a single entity type.""" + TODO: replace synthesis with real per-step instrumentation once sync + worker emits step-level events (see docs/backlog.md). + """ - entity: str # "pull_requests" | "issues" | "deployments" | "sprints" - devlake_count: int = 0 # Legacy field name; now mirrors pulse_count (no intermediate DB) - pulse_count: int = 0 - difference: int = 0 - is_synced: bool = True + name: Literal["fetch", "changelog", "normalize", "upsert"] + status: StepStatus + processed: int + total: int + duration_sec: float | None = None + eta_sec: float | None = None + throughput_per_sec: float | None = None -# --------------------------------------------------------------------------- -# Sync logs -# --------------------------------------------------------------------------- +class Entity(_CamelModel): + """Status of a single entity type within a source.""" + type: str # pull_requests | reviews | commits | deployments | issues | sprints | builds + label: str # pt-BR display label + status: EntityStatus + watermark: datetime | None = None + last_cycle_records: int | None = None + last_cycle_duration_sec: float | None = None + error: str | None = None + steps: list[Step] | None = None # Only present when status == "running" -class SyncLogEntry(BaseModel): - """A single sync cycle log entry.""" - model_config = ConfigDict(from_attributes=True) +class CatalogCounts(_CamelModel): + """Counts per catalog status for a source.""" - id: str - started_at: datetime - finished_at: datetime | None = None - status: str - trigger: str = "scheduled" - duration_seconds: float | None = None - records_processed: dict[str, Any] = Field(default_factory=dict) - error_count: int = 0 + active: int = 0 + discovered: int = 0 + paused: int = 0 + blocked: int = 0 + archived: int = 0 -# --------------------------------------------------------------------------- -# Errors -# --------------------------------------------------------------------------- - +class Source(_CamelModel): + """A configured data source with its entities.""" -class PipelineError(BaseModel): - """A recent pipeline error.""" - - stage: str - message: str - timestamp: datetime - error_code: str | None = None - context: dict[str, Any] = Field(default_factory=dict) + id: str # github | jira | jenkins + name: str + status: SourceStatus + connections: int + rate_limit_pct: float # 0..1 — PLACEHOLDER until real tracking + watermark: datetime | None = None + catalog: CatalogCounts + entities: list[Entity] # --------------------------------------------------------------------------- -# Legacy pipeline info (kept for API backward compatibility) +# Integration # --------------------------------------------------------------------------- +class Integration(_CamelModel): + """Status of an integration connector (configured or not).""" -class DevLakePipelineInfo(BaseModel): - """Legacy pipeline info stub. Always returns defaults since DevLake was removed (ADR-005).""" - - is_running: bool = False - last_status: str | None = None - last_finished_at: datetime | None = None + id: str # github | jira | jenkins | gitlab | azure | bitbucket + name: str + connected: bool + status: IntegrationStatus + detail: str # pt-BR description # --------------------------------------------------------------------------- -# Pipeline events +# TeamHealth # --------------------------------------------------------------------------- +class TeamHealth(_CamelModel): + """Health status for a squad/team derived from Jira project activity.""" -class PipelineEventEntry(BaseModel): - """A pipeline activity event.""" - - model_config = ConfigDict(from_attributes=True) - - id: str - event_type: str - source: str - title: str - detail: str | None = None - severity: str = "info" - metadata: dict[str, Any] = Field(default_factory=dict) - occurred_at: datetime + id: str # project_key lowercased + name: str + tribe: str | None = None + squad_key: str # ENO, FID, etc + health: str + repos: int + jira_projects: list[str] + jenkins_jobs: int + pr_count: int + issue_count: int + deploy_count: int + link_rate: float # 0..1 + last_sync: datetime | None = None + lag_sec: int # --------------------------------------------------------------------------- -# Source-filtered status (Tela 2) +# TimelineEvent # --------------------------------------------------------------------------- +class TimelineEvent(_CamelModel): + """A pipeline activity event for the timeline feed.""" -class SourceFilteredStatus(BaseModel): - """Pipeline status filtered by source type (Tela 2).""" - - source: str - kpis: dict[str, Any] # Dynamic KPIs per source - stages: list[PipelineStageStatus] - active_syncs: list[dict[str, Any]] # Board/repo sync details - recent_logs: list[PipelineEventEntry] - health_pct: float = 100.0 - sync_mode: str = "delta" + ts: datetime + severity: Literal["success", "info", "warning", "error"] + stage: str # github | jira | jenkins | system | metrics_worker + message: str # pt-BR # --------------------------------------------------------------------------- -# Metrics worker (Tela 3) +# KPIs / Health # --------------------------------------------------------------------------- +class ReposWithDeploy(_CamelModel): + """Deploy coverage counts.""" -class MetricsWorkerSnapshot(BaseModel): - """Metrics worker snapshot entry (Tela 3).""" - - snapshot_id: str - metric_type: str # "DORA" | "Lean & Flow" | "Cycle Time" | "Throughput" - timestamp: datetime | None = None - duration_seconds: float | None = None - records_processed: int = 0 - status: str = "idle" # "success" | "calculating" | "idle" | "error" + covered: int + total: int -class MetricsWorkerStatus(BaseModel): - """Metrics Worker drill-down view (Tela 3).""" +class KPIs(_CamelModel): + """Pipeline health KPIs.""" - kpis: dict[str, Any] - stages: list[dict[str, Any]] - snapshots: list[MetricsWorkerSnapshot] - cluster_logs: list[dict[str, Any]] - - -# --------------------------------------------------------------------------- -# Ingestion progress (real-time tracking) -# --------------------------------------------------------------------------- + records_today: int + records_trend_pct: float + pr_issue_link_rate: float # 0..1 + pr_issue_link_trend_pp: float + repos_with_deploy_30d: ReposWithDeploy = Field(..., alias="reposWithDeploy30d") + avg_sync_lag_sec: int + p95_sync_lag_sec: int -class IngestionEntityProgress(BaseModel): - """Progress of ingestion for a single entity type (e.g., pull_requests).""" +class PipelineHealthResponse(_CamelModel): + """Top-level pipeline health response for GET /health.""" - model_config = ConfigDict(from_attributes=True) + health: HealthStatus + last_updated_at: datetime + kpis: KPIs - entity_type: str - status: str # idle | running | completed | failed - total_sources: int = 0 - sources_done: int = 0 - records_ingested: int = 0 - current_source: str | None = None - started_at: datetime | None = None - last_batch_at: datetime | None = None - finished_at: datetime | None = None - error_message: str | None = None - # Computed fields - progress_pct: float = 0.0 - rate_per_minute: float = 0.0 - eta_minutes: float | None = None - elapsed_minutes: float = 0.0 +# --------------------------------------------------------------------------- +# Coverage +# --------------------------------------------------------------------------- -class IngestionProgressResponse(BaseModel): - """Full ingestion progress response — all entity types.""" +class OrphanPrefix(_CamelModel): + """A project key prefix found in PR titles but missing from the catalog.""" - entities: list[IngestionEntityProgress] - any_running: bool = False - last_updated: datetime + prefix: str + pr_mentions: int -# --------------------------------------------------------------------------- -# Consolidated response -# --------------------------------------------------------------------------- +class ActiveProjectWithoutIssues(_CamelModel): + """A catalog entry marked active but with zero issues.""" + key: str + name: str -class PipelineStatusResponse(BaseModel): - """Full pipeline status response — consolidates all pipeline health data. - GET /data/v1/pipeline/status response. - """ +class CoverageResponse(_CamelModel): + """Pipeline coverage analysis response.""" - overall_status: str # "healthy" | "syncing" | "degraded" | "error" - stages: list[PipelineStageStatus] - kpis: PipelineKPIs - record_counts: list[RecordCount] - recent_syncs: list[SyncLogEntry] - recent_errors: list[PipelineError] - recent_events: list[PipelineEventEntry] = [] - source_connections: list[dict[str, Any]] = [] - devlake: DevLakePipelineInfo - last_updated: datetime + repos_with_deploy: ReposWithDeploy + pr_issue_link_rate: float # 0..1 + orphan_prefixes: list[OrphanPrefix] + active_projects_without_issues: list[ActiveProjectWithoutIssues] diff --git a/pulse/packages/pulse-data/src/workers/devlake_sync.py b/pulse/packages/pulse-data/src/workers/devlake_sync.py index 59bb8e7..0ca6212 100644 --- a/pulse/packages/pulse-data/src/workers/devlake_sync.py +++ b/pulse/packages/pulse-data/src/workers/devlake_sync.py @@ -24,7 +24,7 @@ from typing import Any from uuid import UUID -from sqlalchemy import func, select +from sqlalchemy import func, select, text from sqlalchemy.dialects.postgresql import insert as pg_insert from src.config import settings @@ -344,6 +344,13 @@ async def sync(self) -> dict[str, int]: results, ) + # Refresh jira_project_catalog counters so Pipeline Monitor and + # Jira Settings always show fresh issue_count + pr_reference_count. + try: + await self._refresh_catalog_counters() + except Exception: + logger.warning("Catalog counter refresh failed (non-fatal)", exc_info=True) + # Re-raise if all entities failed (preserves existing error behavior) if status == "failed" and errors: raise RuntimeError( @@ -353,6 +360,64 @@ async def sync(self) -> dict[str, int]: return results + async def _refresh_catalog_counters(self) -> None: + """Refresh issue_count, pr_reference_count, and last_sync_at in jira_project_catalog. + + Called after every sync cycle so the Pipeline Monitor /teams endpoint + and the Jira Settings > Projetos tab always show fresh numbers. + + This is fast (<500ms) — 2 UPDATE queries against existing data. + """ + async with get_session(self._tenant_id) as session: + # 1. issue_count from eng_issues.project_key + await session.execute(text(""" + UPDATE jira_project_catalog jpc + SET issue_count = COALESCE(sub.cnt, 0), + updated_at = NOW() + FROM ( + SELECT project_key, COUNT(*) AS cnt + FROM eng_issues + WHERE project_key IS NOT NULL + GROUP BY project_key + ) sub + WHERE jpc.project_key = sub.project_key + AND jpc.tenant_id = :tid + """), {"tid": str(self._tenant_id)}) + + # 2. pr_reference_count from PR title regex (90d window) + await session.execute(text(r""" + WITH pr_refs AS ( + SELECT + UPPER((regexp_match(title, '\m([A-Za-z][A-Za-z0-9]+)-\d+'))[1]) AS pk, + COUNT(DISTINCT id) AS cnt + FROM eng_pull_requests + WHERE created_at >= NOW() - INTERVAL '90 days' + AND title IS NOT NULL + GROUP BY 1 + ) + UPDATE jira_project_catalog jpc + SET pr_reference_count = pr_refs.cnt, + last_sync_at = NOW(), + last_sync_status = 'success', + updated_at = NOW() + FROM pr_refs + WHERE jpc.project_key = pr_refs.pk + AND jpc.tenant_id = :tid + """), {"tid": str(self._tenant_id)}) + + # 3. For projects with issues but no PR refs, still update last_sync_at + await session.execute(text(""" + UPDATE jira_project_catalog + SET last_sync_at = NOW(), + last_sync_status = 'success', + updated_at = NOW() + WHERE tenant_id = :tid + AND status IN ('active', 'discovered') + AND (last_sync_at IS NULL OR last_sync_at < NOW() - INTERVAL '1 hour') + """), {"tid": str(self._tenant_id)}) + + logger.info("Refreshed jira_project_catalog counters for tenant %s", self._tenant_id) + async def _sync_pull_requests(self) -> int: """Read PRs from source connectors, upsert to PULSE DB, publish to Kafka. diff --git a/pulse/packages/pulse-web/src/components/pipeline/CoveragePanel.tsx b/pulse/packages/pulse-web/src/components/pipeline/CoveragePanel.tsx new file mode 100644 index 0000000..fa5becb --- /dev/null +++ b/pulse/packages/pulse-web/src/components/pipeline/CoveragePanel.tsx @@ -0,0 +1,126 @@ +import { BarChart3 } from 'lucide-react'; +import { fmt } from './shared/format'; +import { usePipelineCoverage } from '@/hooks/usePipeline'; + +interface DonutProps { + value: number; + color: string; + label: string; + detail: string; +} + +function Donut({ value, color, label, detail }: DonutProps) { + const r = 28; + const cx = 36; + const cy = 36; + const sw = 6; + const circ = 2 * Math.PI * r; + + return ( +
+ +
+
{label}
+
{detail}
+
+
+ ); +} + +function Skeleton() { + return ( +
+
+
+
+
+ ); +} + +export function CoveragePanel() { + const { data: coverage, isLoading } = usePipelineCoverage(); + + if (isLoading || !coverage) return ; + + const deployPct = + coverage.reposWithDeploy.total > 0 + ? coverage.reposWithDeploy.covered / coverage.reposWithDeploy.total + : 0; + + return ( +
+
+ + Cobertura +
+ + + + + + {/* Orphan prefixes */} + {coverage.orphanPrefixes.length > 0 && ( +
+
+ Prefixos orfaos +
+ {coverage.orphanPrefixes.map((o) => ( +
+ + {o.prefix}-* + + {fmt(o.prMentions)} PRs +
+ ))} +
+ )} +
+ ); +} diff --git a/pulse/packages/pulse-web/src/components/pipeline/EntityDrawer.tsx b/pulse/packages/pulse-web/src/components/pipeline/EntityDrawer.tsx new file mode 100644 index 0000000..2848e34 --- /dev/null +++ b/pulse/packages/pulse-web/src/components/pipeline/EntityDrawer.tsx @@ -0,0 +1,297 @@ +import { useEffect, useRef, useCallback } from 'react'; +import { X, AlertCircle, RotateCcw } from 'lucide-react'; +import { Badge } from './shared/Badge'; +import { SourceIcon } from './shared/SourceIcon'; +import { RateBar } from './shared/RateBar'; +import { getStatusConfig } from './shared/status'; +import { fmt, fmtD, fmtE, rel } from './shared/format'; +import type { Source, Entity, Step } from '@/types/pipeline'; + +/** + * Feature flag for retry button. + * Currently OFF — will be enabled when RBAC + internal queue retry is ready. + * See: docs/backlog.md — "Pipeline retry (data_platform role)" + */ +const FEATURE_RETRY = false; + +interface EntityDrawerProps { + source: Source; + entity: Entity; + onClose: () => void; +} + +function buildSteps(entity: Entity): Step[] { + if (entity.steps) return entity.steps; + const rec = entity.lastCycleRecords ?? 0; + const dur = entity.lastCycleDurationSec ?? 0; + return [ + { name: 'fetch', status: 'done', processed: rec, total: rec, durationSec: dur * 0.5 }, + { name: 'normalize', status: 'done', processed: rec, total: rec, durationSec: dur * 0.3 }, + { name: 'upsert', status: 'done', processed: rec, total: rec, durationSec: dur * 0.2 }, + ]; +} + +function rateLimitDetail(sourceId: string, pct: number): string { + if (sourceId === 'github') return `${Math.round(pct * 5000)} / 5.000 req/h`; + if (sourceId === 'jira') return `${Math.round(pct * 100)} / 100 req/min`; + return `${Math.round(pct * 60)} / 60 req/min`; +} + +export function EntityDrawer({ source, entity, onClose }: EntityDrawerProps) { + const drawerRef = useRef(null); + const steps = buildSteps(entity); + const totalD = steps.reduce((s, st) => s + (st.durationSec ?? 0), 0); + const cfg = getStatusConfig(entity.status); + + // Focus trap + Esc handler + const handleKeyDown = useCallback( + (e: KeyboardEvent) => { + if (e.key === 'Escape') { + onClose(); + return; + } + if (e.key === 'Tab' && drawerRef.current) { + const focusable = drawerRef.current.querySelectorAll( + 'button, [tabindex]:not([tabindex="-1"]), a[href], input, select, textarea' + ); + if (focusable.length === 0) return; + const first = focusable[0] as HTMLElement | undefined; + const last = focusable[focusable.length - 1] as HTMLElement | undefined; + if (!first || !last) return; + if (e.shiftKey && document.activeElement === first) { + e.preventDefault(); + last.focus(); + } else if (!e.shiftKey && document.activeElement === last) { + e.preventDefault(); + first.focus(); + } + } + }, + [onClose] + ); + + useEffect(() => { + document.addEventListener('keydown', handleKeyDown); + // Focus first focusable element + const timer = setTimeout(() => { + const firstBtn = drawerRef.current?.querySelector('button'); + firstBtn?.focus(); + }, 50); + return () => { + document.removeEventListener('keydown', handleKeyDown); + clearTimeout(timer); + }; + }, [handleKeyDown]); + + return ( + <> + {/* Overlay */} +