00db59ff83
Fix Dockerfile: bump Rust 1.79 -> 1.85 (edition2024 support)
CI — P1 Route (Rust) / test (push) Failing after 7m12s
2026-03-01 17:44:41 +00:00
435b5b1a3b
Fix Dockerfile: copy benches/ dir so Cargo.toml bench entry resolves
CI — P1 Route (Rust) / test (push) Failing after 6m56s
2026-03-01 17:34:12 +00:00
0a3173c6a9
Fix P1 Rust: all clippy warnings resolved, all tests passing
...
CI — P1 Route (Rust) / test (push) Has been cancelled
- Fixed struct field references (_org_id, _config) in constructors
- Added chrono::Weekday import in test module
- cargo clippy --workspace -- -D warnings: CLEAN
- cargo test --workspace: 5/5 passing
2026-03-01 17:28:41 +00:00
4b6292e0c3
Fix P1 Rust: remove all unused imports, variables, and fields across api/worker bins
CI — P1 Route (Rust) / test (push) Failing after 3m48s
2026-03-01 17:15:31 +00:00
6e044809d4
Fix P1 Rust: repair mangled auth lines, fix _jwt_secret constructor
CI — P1 Route (Rust) / test (push) Failing after 6m52s
2026-03-01 17:04:02 +00:00
d5a10d9266
Fix P1 Rust clippy: unused variable _auth_ctx, _jwt_secret, derive Default for RouterBrain
CI — P1 Route (Rust) / test (push) Failing after 4m22s
2026-03-01 16:56:24 +00:00
c1faed7c73
Fix P1 Rust: remove unused imports (clippy -D warnings)
CI — P1 Route (Rust) / test (push) Failing after 6m10s
2026-03-01 16:47:24 +00:00
45a0237163
Fix P1 Rust: revert proxy/handler.rs to crate:: (it's part of the library)
...
CI — P1 Route (Rust) / test (push) Failing after 7m3s
Only api/handler.rs (binary-only module) uses dd0c_route::
proxy/handler.rs is included via lib.rs pub mod proxy, so it must use crate::
2026-03-01 16:16:23 +00:00
b5e5d22c32
Fix P1 Rust: use dd0c_route:: instead of crate:: in binary imports, add hex crate
...
CI — P1 Route (Rust) / test (push) Failing after 4m37s
Binary targets (api, proxy, worker) can't use crate:: to access lib modules.
Must reference the library crate name dd0c_route:: instead.
2026-03-01 16:08:25 +00:00
bd665ea643
Trigger CI for P1 Rust and P2 Go agent
CI — P2 Drift (Go + Node) / agent (push) Failing after 26s
CI — P2 Drift (Go + Node) / saas (push) Successful in 48s
CI — P1 Route (Rust) / test (push) Failing after 7m22s
2026-03-01 06:59:03 +00:00
6403e7a3bf
Move CI workflows to repo root .gitea/workflows/ (Gitea requires root location)
...
CI — P3 Alert / test (push) Has been cancelled
CI — P5 Cost / test (push) Has been cancelled
CI — P2 Drift (Go + Node) / agent (push) Failing after 46s
CI — P2 Drift (Go + Node) / saas (push) Failing after 1m17s
CI — P4 Portal / test (push) Failing after 16s
CI — P6 Run / saas (push) Failing after 17s
CI — P1 Route (Rust) / test (push) Failing after 11m13s
- 6 per-product CI workflows with path filters
- P1: Rust (cargo test + clippy + fmt)
- P2: Go agent (go test + vet) + Node SaaS (tsc + npm test)
- P3-P6: Node (npm ci + tsc + npm test)
- Removed old per-product .gitea dirs (Gitea ignores non-root workflows)
2026-03-01 06:19:42 +00:00
b9c480c06b
Copy shared auth migration (002_auth.sql) to P1 route and P2 drift
2026-03-01 06:12:36 +00:00
5e0065e73e
Fix P2 SaaS compilation: wire dispatchNotifications correctly, add P1/P2 Dockerfiles
...
- P2 processor: use correct dispatchNotifications signature (channels, notification, severity)
- P2 processor: pass pool to withTenant, fix implicit any types
- P1 Dockerfile: multi-stage Rust build for proxy/api/worker binaries
- P2 agent Dockerfile: multi-stage Go build
- P2 SaaS package-lock.json generated
- All 6 products now compile cleanly
2026-03-01 06:10:21 +00:00
167d3be2e4
Implement all remaining P1 Rust TODOs: Slack alerts, Resend emails, pricing refresh, AES-256-GCM key encryption
...
- anomaly.rs: Slack Block Kit webhook + Resend email on 3x cost spike
- digest.rs: Weekly HTML digest email via Resend with model usage + savings tables
- main.rs: Daily pricing refresh with hardcoded table (OpenAI/Anthropic/Google models)
- handler.rs: AES-256-GCM encryption for provider API keys (nonce || ciphertext storage)
2026-03-01 05:53:51 +00:00
e626608535
Add proxy latency benchmark (criterion, 1000 samples, 1/5/10 msg variants)
2026-03-01 02:40:45 +00:00
e882f181d5
Add dd0c/route integration tests: proxy engine with wiremock
...
- Forward request to upstream and verify response passthrough
- Telemetry event emission (org_id, model, latency, status)
- Low-complexity routing: gpt-4o → gpt-4o-mini with strategy=cheapest
- Upstream error passthrough (429 rate limit)
- Invalid JSON → 400 Bad Request
- Health endpoint returns 200
2026-03-01 02:40:09 +00:00
c5ef45e69b
Add dd0c/route unit tests: router, middleware, config, digest
...
- Router tests: complexity classification (low/medium/high), routing decisions, cost delta
- Middleware tests: API key redaction (OpenAI, Anthropic, Bearer), JSON bodies, telemetry safety
- Config tests: defaults, unknown provider fallbacks
- Digest tests: next_monday_9am scheduling edge cases
- Anomaly tests: threshold logic, divide-by-zero guard
2026-03-01 02:39:01 +00:00
8a4c7c256d
Add V1 infrastructure: Gitea Actions CI/CD + Fly.io + Cloudflare Pages
...
- Gitea Actions workflows: ci.yml (tests+clippy+fmt), benchmark.yml (P99 gate), deploy.yml (Fly+CF)
- Fly.io configs: proxy (shared-cpu, 256MB, min 1 machine), API (scale-to-zero)
- Dockerfiles: multi-stage Rust builds for proxy and API binaries
- INFRASTRUCTURE.md: full V1 stack (~$5/mo), AWS migration path, Gitea runner setup, DNS plan
- Stack: Fly.io + Cloudflare Pages + Neon + Upstash + Gitea Actions
2026-03-01 02:37:48 +00:00
a486373d93
Add dd0c/route Dashboard UI: React + Vite + Tailwind SPA
...
- Layout with sidebar navigation (Dashboard, Rules, Keys, Settings)
- Dashboard page: stat cards, cost savings area chart (Recharts), model usage table
- Rules page: routing rules CRUD with modal editor, strategy/complexity/model matching
- Keys page: API key generation, copy-once reveal, revocation, quick-start code snippet
- Settings page: org info, provider config, danger zone
- API client (SWR + fetch wrapper) with full TypeScript types
- dd0c dark theme: indigo primary, cyan accent, dark surfaces
- Vite proxy config for local dev against API on :3000
2026-03-01 02:36:32 +00:00
0fe25b8aa6
Add dd0c/route worker: weekly digest generation + hourly anomaly detection
...
- digest.rs: Weekly cost savings digest per org, top models, top routing savings
- anomaly.rs: Threshold-based anomaly detection (3x hourly average = alert)
- main.rs: Periodic task scheduler (hourly anomaly, weekly digest, daily cost refresh)
- next_monday_9am() with unit tests for scheduling
2026-03-01 02:32:28 +00:00
e234f66b9b
Add dd0c/route Dashboard API: analytics, routing rules CRUD, API keys, providers
...
- GET /api/v1/analytics/summary — 7-day cost savings, latency, routing breakdown
- GET /api/v1/analytics/timeseries — hourly/daily rollups from TimescaleDB continuous aggregates
- GET /api/v1/analytics/models — per-model cost and token breakdown
- CRUD /api/v1/rules — routing rules with priority, match conditions, strategies
- CRUD /api/v1/keys — API key generation (dd0c_ prefix), bcrypt hashing, revocation
- CRUD /api/v1/providers — provider config upsert with encrypted key storage
- GET /api/v1/org — org info
- Role-based access: Owner required for mutations
2026-03-01 02:31:28 +00:00
311a834228
Add dd0c/route project scaffolding: migrations, docker-compose, README
...
- PostgreSQL schema: orgs, users, api_keys, provider_configs, routing_rules, cost_tables, feature_flags
- TimescaleDB schema: request_events hypertable, hourly/daily continuous aggregates, compression, retention
- docker-compose.yml: postgres, timescaledb, redis for local dev
- README with quick start, architecture overview, pricing tiers
- .env.example, .gitignore
2026-03-01 02:29:23 +00:00
72a0f26a7b
Add BMad review epic addendums for all 6 products
...
Per-product surgical additions to existing epics (not cross-cutting):
- P1 route: 8pts (key redaction, SSE billing, token math, CI runner)
- P2 drift: 12pts (mTLS revocation, state lock recovery, pgmq visibility, RLS leak, entropy scrubber)
- P3 alert: 10pts (HMAC replay, claim-check, out-of-order correlation, free tier, tenant isolation)
- P4 portal: 9pts (partial scan recovery, ownership conflicts, Meilisearch rebuild, VCR freshness, free tier)
- P5 cost: 7pts (concurrent baselines, remediation RBAC, Clock interface, property tests, Redis fallback)
- P6 run: 15pts (shell AST parsing, canary suite, intervention TTL, streaming audit, crypto signatures)
Total: 61 story points across 30 new stories
2026-03-01 02:27:55 +00:00
cc003cbb1c
Scaffold dd0c/route core proxy engine (handler, router, auth, config)
2026-03-01 02:23:27 +00:00
d038cd9c5c
Implement BMad Must-Have Before Launch fixes for all 6 products
...
P1: API key redaction, SSE billing leak, token math edge cases, CI runner config
P2: mTLS revocation lockout, terraform state lock recovery, RLS pool leak, entropy scrubber, pgmq visibility
P3: HMAC replay prevention, cross-tenant negative tests, correlation window edge cases, SQS claim-check, free tier
P4: Discovery partial failure recovery, ownership conflict integration test, VCR freshness CI, Meilisearch rebuild, Cmd+K latency
P5: Concurrent baseline conflicts, remediation RBAC, Clock interface for governance, 10K property-based runs, Redis panic fallback
P6: Cryptographic agent update signatures, streaming audit logs with WAL, shell AST parsing (mvdan/sh), intervention deadlock TTL, canary suite CI gate
2026-03-01 02:14:04 +00:00
b24cfa7c0d
BMad code reviews complete for all 6 products
...
P1 route: Gemini — 'Ship the proxy, stop writing tests for the tests'
P2 drift: Gemini — mTLS revocation, state lock corruption, RLS pool leak
P3 alert: Gemini — replay attacks, trace propagation, SQS claim-check
P4 portal: Manual — discovery reliability is existential risk
P5 cost: Manual — concurrent baselines, remediation RBAC, pricing staleness
P6 run: Gemini — policy update loophole, AST parsing, audit streaming
2026-03-01 02:09:19 +00:00
96e51054ae
Add dual-mode deployment architecture addendum for P1 (route)
...
Docker Compose self-hosted mode, install script, auth abstraction,
data layer abstraction (SQS→pgmq, Cognito→local JWT, S3→local FS),
Caddy auto-TLS, upgrade path, self-hosted BDD specs.
16 story points additional effort. Template for all 6 products.
2026-03-01 01:58:15 +00:00
c1484426cc
Phase 3: BDD acceptance specs for P1 (route) and P5 (cost)
...
P1: 50+ scenarios across 10 epics, all stories covered
P5: 55+ scenarios across 10 epics, written manually (Sonnet credential failures)
Remaining P2/P3/P4/P6 in progress via subagents
2026-03-01 01:50:30 +00:00
03bfe931fc
Implement review remediation + PLG analytics SDK
...
- All 6 test architectures patched with Section 11 addendums
- P5 (cost) fully rewritten from 232 to ~600 lines
- PLG brainstorm + party mode advisory board results
- Analytics SDK v2 (PostHog Cloud, Zod strict, Lambda-safe)
- Analytics tests v2 (safeParse, no , no timestamp, no PII)
- Addresses all Gemini review findings across P1-P6
2026-03-01 01:42:49 +00:00
2fe0ed856e
Add Gemini TDD reviews for all 6 products
...
P1, P2, P3, P4, P6 reviewed by Gemini subagents.
P5 reviewed manually (Gemini credential errors).
All reviews flag coverage gaps, anti-patterns, and Transparent Factory tenet gaps.
2026-03-01 00:29:24 +00:00
5ee95d8b13
dd0c: full product research pipeline - 6 products, 8 phases each
...
Products: route, drift, alert, portal, cost, run
Phases: brainstorm, design-thinking, innovation-strategy, party-mode,
product-brief, architecture, epics (incl. Epic 10 TF compliance),
test-architecture (TDD strategy)
Brand strategy and market research included.
2026-02-28 17:35:02 +00:00
