jarvis/dd0c
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
75 Commits 1 Branch 0 Tags
84d7252f99b2cf0acb102f32470bd6de391bdeeb
Commit Graph

12 Commits

Author SHA1 Message Date
Max Mayfield
27a89ee2b7 Trigger CI with tsc fix
Some checks failed
CI — P2 Drift (Go + Node) / agent (push) Failing after 3s
Details
CI — P2 Drift (Go + Node) / saas (push) Successful in 29s
Details
CI — P3 Alert / test (push) Successful in 40s
Details
CI — P4 Portal / test (push) Successful in 32s
Details
CI — P6 Run / saas (push) Successful in 30s
Details
CI — P5 Cost / test (push) Successful in 46s
Details
2026-03-01 06:56:00 +00:00
Max Mayfield
bfc599da52 Trigger CI after workflow rewrite
All checks were successful
CI — P3 Alert / test (push) Successful in 1m9s
Details
2026-03-01 06:47:59 +00:00
Max Mayfield
68140881e0 Trigger CI for P3-P6 Node products
Some checks failed
CI — P3 Alert / test (push) Failing after 15s
Details
CI — P4 Portal / test (push) Failing after 19s
Details
CI — P5 Cost / test (push) Failing after 17s
Details
CI — P6 Run / saas (push) Failing after 18s
Details
2026-03-01 06:43:58 +00:00
Max Mayfield
4534f0aeba Fix test failures: HMAC length check (P3), fast-check fround (P5)
Some checks failed
CI — P3 Alert / test (push) Failing after 15s
Details
CI — P5 Cost / test (push) Failing after 15s
Details 
- P3: timingSafeEqual requires equal-length buffers; add length guard before compare
- P5: fast-check fc.float requires 32-bit floats; wrap min with Math.fround()
- All 5 Node products: 83 tests passing across 13 test files
 2026-03-01 06:24:46 +00:00
Max Mayfield
4146f1c4d0 Fix TypeScript compilation errors across P3-P6 
- jwt.sign: explicit SignOptions cast for expiresIn (all 4 products)
- ioredis: use named import { Redis } instead of default (P4, P6)
- P4 catalog/service: fix import paths for aws-scanner and github-scanner
- P4 discovery: pass pool to ScheduledDiscovery constructor
- P6 agent-bridge: add explicit types for Redis message callback params
- All 4 Node products now compile cleanly with tsc --noEmit
 2026-03-01 06:06:31 +00:00
Max Mayfield
e1b22e5309 Wire up remaining TODO stubs: P3 test notifications, P2 drift notification trigger 
- P3: test notification endpoint now instantiates real Slack/Email/Webhook notifiers
- P2: drift processor triggers notification service when drift_score > 0 (non-fatal on failure)
 2026-03-01 04:14:26 +00:00
Max Mayfield
5ee869b9d8 Implement auth: login/signup (scrypt), API key generation, shared migration 
- Login: email + password lookup, scrypt verify, JWT token
- Signup: create tenant + owner user in transaction, slug generation
- API key: dd0c_ prefix, SHA-256 hash (not bcrypt — faster for API key lookups), prefix index
- Scrypt over bcrypt: zero native deps, Node.js built-in crypto
- Auth routes skip JWT middleware (login/signup are public)
- 002_auth.sql: users + api_keys tables with RLS, copied to all products
- Synced auth middleware to P3/P4/P5/P6
 2026-03-01 03:19:18 +00:00
Max Mayfield
bdaa732ce1 Implement TODO stubs: webhook secret lookup, alert→incident wiring, catalog upsert/stage 
- P3: getWebhookSecret() now queries DB; ingestAlert() creates/attaches incidents, auto-resolves on resolved status
- P4: stageUpdates() writes to staged_updates table; upsertService() with ON CONFLICT; getService/updateOwner implemented
 2026-03-01 03:18:05 +00:00
Max Mayfield
829e408e1e Add notification dispatchers (P3 Slack/Email/Webhook, P5 Slack), full YAML parser for P6 
- P3 alert: NotificationDispatcher with Slack Block Kit, Resend email, generic webhook; severity-gated dispatch
- P5 cost: CostSlackNotifier with anomaly Block Kit (score, deviation, snooze/expected buttons)
- P6 run: Full YAML runbook parser with serde_yaml, variable substitution ({{var}}), failure actions, 7 tests
- P6 parser: validates non-empty steps, default timeout (300s), default abort on failure
 2026-03-01 03:13:06 +00:00
Max Mayfield
f2e0a32cc7 Wire auth middleware into all products, add docker-compose and init-db script 
- Auth middleware (JWT + API key + RBAC) copied into P3/P4/P5/P6
- All server entry points now register auth hooks + auth routes
- Webhook and Slack endpoints skip JWT auth (use HMAC/signature)
- docker-compose.yml: shared Postgres + Redis + Meilisearch, all 4 Node products as services
- init-db.sh: creates per-product databases and runs migrations
- P1 (Rust) and P2 (Go agent) run standalone, not in compose
 2026-03-01 03:10:35 +00:00
Max Mayfield
d85cdaa3e7 Flesh out dd0c/alert: webhook routes, incident API, notification config, data layer 
- Webhook routes: Datadog, PagerDuty, OpsGenie, Grafana with per-tenant HMAC/token auth
- Incident API: list (filtered), detail with alerts, acknowledge/resolve/suppress, dashboard summary
- Notification config: CRUD with upsert, test endpoint, Slack/email/webhook channels
- Grafana normalizer: severity mapping (critical/warning/info)
- Data layer: withTenant() RLS wrapper, Zod config validation
- Fastify server entry point with cors/helmet
 2026-03-01 03:04:57 +00:00
Max Mayfield
ccc4cd1c32 Scaffold dd0c/alert: ingestion, correlation engine, HMAC validation, tests 
- Webhook ingestion: HMAC validation for Datadog/PagerDuty/OpsGenie with 5-min timestamp freshness
- Payload normalizers: canonical alert schema with severity mapping per provider
- Correlation engine: time-window grouping, late-alert attachment (2x window), FakeClock for testing
- InMemoryWindowStore for unit tests
- Tests: 12 HMAC validation cases, 5 normalizer cases, 7 correlation engine cases
- PostgreSQL schema with RLS: tenants, incidents, alerts, webhook_secrets, notification_configs
- Free tier enforcement columns (alert_count_month, reset_at)
- Fly.io config, Dockerfile, Gitea Actions CI
 2026-03-01 02:49:14 +00:00