torbo/flyer-crawler.projectium.com
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: torbo:v0.15.0
Branches Tags
torbo:main
torbo:v0.20.1 torbo:v0.20.0 torbo:v0.19.3 torbo:v0.19.2 torbo:v0.19.1 torbo:v0.19.0 torbo:v0.18.1 torbo:v0.18.0 torbo:v0.17.1 torbo:v0.17.0 torbo:v0.16.4 torbo:v0.16.3 torbo:v0.16.2 torbo:v0.16.1 torbo:v0.16.0 torbo:v0.15.2 torbo:v0.15.1 torbo:v0.15.0 torbo:v0.14.4 torbo:v0.14.3 torbo:v0.14.2 torbo:v0.14.1 torbo:v0.14.0 torbo:v0.13.0 torbo:v0.12.25 torbo:v0.12.24 torbo:v0.12.23 torbo:v0.12.22 torbo:v0.12.21 torbo:v0.12.20 torbo:v0.12.19 torbo:v0.12.18 torbo:v0.12.17 torbo:v0.12.16 torbo:v0.12.15 torbo:v0.12.14 torbo:v0.12.13 torbo:v0.12.12 torbo:v0.12.11 torbo:v0.12.10 torbo:v0.12.9 torbo:v0.12.8 torbo:v0.12.7 torbo:v0.12.6 torbo:v0.12.5 torbo:v0.12.4 torbo:v0.12.3 torbo:v0.12.2 torbo:v0.12.1 torbo:v0.12.0 torbo:v0.11.20 torbo:v0.11.19 torbo:v0.11.18 torbo:v0.11.17 torbo:v0.11.16 torbo:v0.11.15 torbo:v0.11.14 torbo:v0.11.13 torbo:v0.11.12 torbo:v0.11.11 torbo:v0.11.10 torbo:v0.11.9 torbo:v0.11.8 torbo:v0.11.7 torbo:v0.11.6 torbo:v0.11.5 torbo:v0.11.4 torbo:v0.11.3 torbo:v0.11.2 torbo:v0.11.1 torbo:v0.11.0 torbo:v0.10.0 torbo:v0.9.115 torbo:v0.9.114 torbo:v0.9.113 torbo:v0.9.112 torbo:v0.9.111 torbo:v0.9.110 torbo:v0.9.109 torbo:v0.9.108 torbo:v0.9.107 torbo:v0.9.106 torbo:v0.9.105 torbo:v0.9.104 torbo:v0.9.103 torbo:v0.9.102 torbo:v0.9.101 torbo:v0.9.100 torbo:v0.9.99 torbo:v0.9.98 torbo:v0.9.97 torbo:v0.9.96 torbo:v0.9.95 torbo:v0.9.94 torbo:v0.9.93 torbo:v0.9.92 torbo:v0.9.91 torbo:v0.9.90 torbo:v0.9.89 torbo:v0.9.88 torbo:v0.9.87 torbo:v0.9.86 torbo:v0.9.85 torbo:v0.9.84 torbo:v0.9.83 torbo:v0.9.82 torbo:v0.9.81 torbo:v0.9.80 torbo:v0.9.79 torbo:v0.9.78 torbo:v0.9.77 torbo:v0.9.76 torbo:v0.9.75 torbo:v0.9.74 torbo:v0.9.73 torbo:v0.9.72 torbo:v0.9.71 torbo:v0.9.70 torbo:v0.9.69 torbo:v0.9.68 torbo:v0.9.67 torbo:v0.9.66 torbo:v0.9.65 torbo:v0.9.64 torbo:v0.9.63 torbo:v0.9.62 torbo:v0.9.61 torbo:v0.9.60 torbo:v0.9.59 torbo:v0.9.58 torbo:v0.9.57 torbo:v0.9.56 torbo:v0.9.55 torbo:v0.9.54 torbo:v0.9.53 torbo:v0.9.52 torbo:v0.9.51 torbo:v0.9.50 torbo:v0.9.49 torbo:v0.9.48 torbo:v0.9.47 torbo:v0.9.46 torbo:v0.9.45 torbo:v0.9.44 torbo:v0.9.43 torbo:v0.9.42 torbo:v0.9.41 torbo:v0.9.38 torbo:v0.9.39 torbo:v0.9.37 torbo:v0.9.36 torbo:v0.9.35 torbo:v0.9.34 torbo:v0.9.33 torbo:v0.9.32 torbo:v0.9.31 torbo:v0.9.30 torbo:v0.9.29 torbo:v0.9.28 torbo:v0.9.27 torbo:v0.9.26 torbo:v0.9.25 torbo:v0.9.24 torbo:v0.9.23 torbo:v0.9.22 torbo:v0.9.21 torbo:v0.9.20 torbo:v0.9.19 torbo:v0.9.18 torbo:v0.9.17 torbo:v0.9.16 torbo:v0.9.15 torbo:v0.9.14 torbo:v0.9.13 torbo:v0.9.12 torbo:v0.9.11 torbo:v0.9.10 torbo:v0.9.9 torbo:v0.9.8 torbo:v0.9.7 torbo:v0.9.6 torbo:v0.9.5 torbo:v0.9.4 torbo:v0.9.3 torbo:v0.9.2 torbo:v0.9.1 torbo:v0.9.0 torbo:v0.8.0 torbo:v0.7.29 torbo:v0.7.28 torbo:v0.7.27 torbo:v0.7.26 torbo:v0.7.25 torbo:v0.7.24 torbo:v0.7.23 torbo:v0.7.22 torbo:v0.7.21 torbo:v0.7.20 torbo:v0.7.19 torbo:v0.7.18 torbo:v0.7.17 torbo:v0.7.16 torbo:v0.7.15 torbo:v0.7.14 torbo:v0.7.13 torbo:v0.7.12 torbo:v0.7.11 torbo:v0.7.10 torbo:v0.7.9 torbo:v0.7.8 torbo:v0.7.7 torbo:v0.7.6 torbo:v0.7.5 torbo:v0.7.4 torbo:v0.7.3 torbo:v0.7.2 torbo:v0.7.1 torbo:v0.7.0 torbo:v0.6.6 torbo:v0.6.5 torbo:v0.6.4 torbo:v0.6.3 torbo:v0.6.2 torbo:v0.6.1 torbo:v0.6.0 torbo:v0.5.5 torbo:v0.5.4 torbo:v0.5.3 torbo:v0.5.2 torbo:v0.5.1 torbo:v0.5.0 torbo:v0.4.6 torbo:v0.4.5 torbo:v0.4.4 torbo:v0.4.3 torbo:v0.4.2 torbo:v0.4.1 torbo:v0.4.0 torbo:v0.3.0 torbo:v0.2.37 torbo:v0.2.36 torbo:v0.2.35 torbo:v0.2.34 torbo:v0.2.33 torbo:v0.2.32 torbo:v0.2.31 torbo:v0.2.30 torbo:v0.2.29 torbo:v0.2.28 torbo:v0.2.27 torbo:v0.2.26 torbo:v0.2.25 torbo:v0.2.24 torbo:v0.2.23 torbo:v0.2.22 torbo:v0.2.21 torbo:v0.2.20 torbo:v0.2.19 torbo:v0.2.18 torbo:v0.2.15 torbo:v0.2.16 torbo:v0.2.14 torbo:v0.2.13 torbo:v0.2.12 torbo:v0.2.11 torbo:v0.2.10 torbo:v0.2.9 torbo:v0.2.8 torbo:v0.2.7 torbo:v0.2.6 torbo:v0.2.5 torbo:v0.2.4 torbo:v0.2.3 torbo:v0.2.2 torbo:v0.2.1 torbo:v0.2.0 torbo:v0.1.19 torbo:v0.1.18 torbo:v0.1.17 torbo:v0.1.16 torbo:v0.1.15 torbo:v0.1.14 torbo:v0.1.13 torbo:v0.1.12 torbo:v0.1.11 torbo:v0.1.10 torbo:v0.1.9 torbo:v0.1.8 torbo:v0.1.7 torbo:v0.1.6 torbo:v0.1.5 torbo:v0.1.4 torbo:v0.1.3 torbo:v0.1.2 torbo:v0.1.1 torbo:v0.1.0 torbo:v0.0.30 torbo:v0.0.29 torbo:v0.0.28 torbo:v0.0.27 torbo:v0.0.26 torbo:v0.0.25 torbo:v0.0.24 torbo:v0.0.23 torbo:v0.0.22 torbo:v0.0.21 torbo:v0.0.20 torbo:v0.0.19 torbo:v0.0.18 torbo:v0.0.17 torbo:v0.0.16 torbo:v0.0.15 torbo:v0.0.14 torbo:v0.0.13 torbo:v0.0.12 torbo:v0.0.11 torbo:v0.0.10 torbo:v0.0.9 torbo:v0.0.8 torbo:v0.0.7 torbo:v0.0.6 torbo:v0.0.5 torbo:v0.0.4 torbo:v0.0.3 torbo:v0.0.2 torbo:v0.0.1
..
compare: torbo:v0.20.1
Branches Tags
torbo:main
torbo:v0.20.1 torbo:v0.20.0 torbo:v0.19.3 torbo:v0.19.2 torbo:v0.19.1 torbo:v0.19.0 torbo:v0.18.1 torbo:v0.18.0 torbo:v0.17.1 torbo:v0.17.0 torbo:v0.16.4 torbo:v0.16.3 torbo:v0.16.2 torbo:v0.16.1 torbo:v0.16.0 torbo:v0.15.2 torbo:v0.15.1 torbo:v0.15.0 torbo:v0.14.4 torbo:v0.14.3 torbo:v0.14.2 torbo:v0.14.1 torbo:v0.14.0 torbo:v0.13.0 torbo:v0.12.25 torbo:v0.12.24 torbo:v0.12.23 torbo:v0.12.22 torbo:v0.12.21 torbo:v0.12.20 torbo:v0.12.19 torbo:v0.12.18 torbo:v0.12.17 torbo:v0.12.16 torbo:v0.12.15 torbo:v0.12.14 torbo:v0.12.13 torbo:v0.12.12 torbo:v0.12.11 torbo:v0.12.10 torbo:v0.12.9 torbo:v0.12.8 torbo:v0.12.7 torbo:v0.12.6 torbo:v0.12.5 torbo:v0.12.4 torbo:v0.12.3 torbo:v0.12.2 torbo:v0.12.1 torbo:v0.12.0 torbo:v0.11.20 torbo:v0.11.19 torbo:v0.11.18 torbo:v0.11.17 torbo:v0.11.16 torbo:v0.11.15 torbo:v0.11.14 torbo:v0.11.13 torbo:v0.11.12 torbo:v0.11.11 torbo:v0.11.10 torbo:v0.11.9 torbo:v0.11.8 torbo:v0.11.7 torbo:v0.11.6 torbo:v0.11.5 torbo:v0.11.4 torbo:v0.11.3 torbo:v0.11.2 torbo:v0.11.1 torbo:v0.11.0 torbo:v0.10.0 torbo:v0.9.115 torbo:v0.9.114 torbo:v0.9.113 torbo:v0.9.112 torbo:v0.9.111 torbo:v0.9.110 torbo:v0.9.109 torbo:v0.9.108 torbo:v0.9.107 torbo:v0.9.106 torbo:v0.9.105 torbo:v0.9.104 torbo:v0.9.103 torbo:v0.9.102 torbo:v0.9.101 torbo:v0.9.100 torbo:v0.9.99 torbo:v0.9.98 torbo:v0.9.97 torbo:v0.9.96 torbo:v0.9.95 torbo:v0.9.94 torbo:v0.9.93 torbo:v0.9.92 torbo:v0.9.91 torbo:v0.9.90 torbo:v0.9.89 torbo:v0.9.88 torbo:v0.9.87 torbo:v0.9.86 torbo:v0.9.85 torbo:v0.9.84 torbo:v0.9.83 torbo:v0.9.82 torbo:v0.9.81 torbo:v0.9.80 torbo:v0.9.79 torbo:v0.9.78 torbo:v0.9.77 torbo:v0.9.76 torbo:v0.9.75 torbo:v0.9.74 torbo:v0.9.73 torbo:v0.9.72 torbo:v0.9.71 torbo:v0.9.70 torbo:v0.9.69 torbo:v0.9.68 torbo:v0.9.67 torbo:v0.9.66 torbo:v0.9.65 torbo:v0.9.64 torbo:v0.9.63 torbo:v0.9.62 torbo:v0.9.61 torbo:v0.9.60 torbo:v0.9.59 torbo:v0.9.58 torbo:v0.9.57 torbo:v0.9.56 torbo:v0.9.55 torbo:v0.9.54 torbo:v0.9.53 torbo:v0.9.52 torbo:v0.9.51 torbo:v0.9.50 torbo:v0.9.49 torbo:v0.9.48 torbo:v0.9.47 torbo:v0.9.46 torbo:v0.9.45 torbo:v0.9.44 torbo:v0.9.43 torbo:v0.9.42 torbo:v0.9.41 torbo:v0.9.38 torbo:v0.9.39 torbo:v0.9.37 torbo:v0.9.36 torbo:v0.9.35 torbo:v0.9.34 torbo:v0.9.33 torbo:v0.9.32 torbo:v0.9.31 torbo:v0.9.30 torbo:v0.9.29 torbo:v0.9.28 torbo:v0.9.27 torbo:v0.9.26 torbo:v0.9.25 torbo:v0.9.24 torbo:v0.9.23 torbo:v0.9.22 torbo:v0.9.21 torbo:v0.9.20 torbo:v0.9.19 torbo:v0.9.18 torbo:v0.9.17 torbo:v0.9.16 torbo:v0.9.15 torbo:v0.9.14 torbo:v0.9.13 torbo:v0.9.12 torbo:v0.9.11 torbo:v0.9.10 torbo:v0.9.9 torbo:v0.9.8 torbo:v0.9.7 torbo:v0.9.6 torbo:v0.9.5 torbo:v0.9.4 torbo:v0.9.3 torbo:v0.9.2 torbo:v0.9.1 torbo:v0.9.0 torbo:v0.8.0 torbo:v0.7.29 torbo:v0.7.28 torbo:v0.7.27 torbo:v0.7.26 torbo:v0.7.25 torbo:v0.7.24 torbo:v0.7.23 torbo:v0.7.22 torbo:v0.7.21 torbo:v0.7.20 torbo:v0.7.19 torbo:v0.7.18 torbo:v0.7.17 torbo:v0.7.16 torbo:v0.7.15 torbo:v0.7.14 torbo:v0.7.13 torbo:v0.7.12 torbo:v0.7.11 torbo:v0.7.10 torbo:v0.7.9 torbo:v0.7.8 torbo:v0.7.7 torbo:v0.7.6 torbo:v0.7.5 torbo:v0.7.4 torbo:v0.7.3 torbo:v0.7.2 torbo:v0.7.1 torbo:v0.7.0 torbo:v0.6.6 torbo:v0.6.5 torbo:v0.6.4 torbo:v0.6.3 torbo:v0.6.2 torbo:v0.6.1 torbo:v0.6.0 torbo:v0.5.5 torbo:v0.5.4 torbo:v0.5.3 torbo:v0.5.2 torbo:v0.5.1 torbo:v0.5.0 torbo:v0.4.6 torbo:v0.4.5 torbo:v0.4.4 torbo:v0.4.3 torbo:v0.4.2 torbo:v0.4.1 torbo:v0.4.0 torbo:v0.3.0 torbo:v0.2.37 torbo:v0.2.36 torbo:v0.2.35 torbo:v0.2.34 torbo:v0.2.33 torbo:v0.2.32 torbo:v0.2.31 torbo:v0.2.30 torbo:v0.2.29 torbo:v0.2.28 torbo:v0.2.27 torbo:v0.2.26 torbo:v0.2.25 torbo:v0.2.24 torbo:v0.2.23 torbo:v0.2.22 torbo:v0.2.21 torbo:v0.2.20 torbo:v0.2.19 torbo:v0.2.18 torbo:v0.2.15 torbo:v0.2.16 torbo:v0.2.14 torbo:v0.2.13 torbo:v0.2.12 torbo:v0.2.11 torbo:v0.2.10 torbo:v0.2.9 torbo:v0.2.8 torbo:v0.2.7 torbo:v0.2.6 torbo:v0.2.5 torbo:v0.2.4 torbo:v0.2.3 torbo:v0.2.2 torbo:v0.2.1 torbo:v0.2.0 torbo:v0.1.19 torbo:v0.1.18 torbo:v0.1.17 torbo:v0.1.16 torbo:v0.1.15 torbo:v0.1.14 torbo:v0.1.13 torbo:v0.1.12 torbo:v0.1.11 torbo:v0.1.10 torbo:v0.1.9 torbo:v0.1.8 torbo:v0.1.7 torbo:v0.1.6 torbo:v0.1.5 torbo:v0.1.4 torbo:v0.1.3 torbo:v0.1.2 torbo:v0.1.1 torbo:v0.1.0 torbo:v0.0.30 torbo:v0.0.29 torbo:v0.0.28 torbo:v0.0.27 torbo:v0.0.26 torbo:v0.0.25 torbo:v0.0.24 torbo:v0.0.23 torbo:v0.0.22 torbo:v0.0.21 torbo:v0.0.20 torbo:v0.0.19 torbo:v0.0.18 torbo:v0.0.17 torbo:v0.0.16 torbo:v0.0.15 torbo:v0.0.14 torbo:v0.0.13 torbo:v0.0.12 torbo:v0.0.11 torbo:v0.0.10 torbo:v0.0.9 torbo:v0.0.8 torbo:v0.0.7 torbo:v0.0.6 torbo:v0.0.5 torbo:v0.0.4 torbo:v0.0.3 torbo:v0.0.2 torbo:v0.0.1

35 Commits
v0.15.0 ... v0.20.1

Author SHA1 Message Date
Gitea Actions
0c23aa4c5e ci: Bump version to 0.20.1 [skip ci] 2026-02-19 11:27:23 +05:00
Torben Sorensen
07125fc99d feat: complete PM2 namespace implementation (100%)
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 56m40s
Details 
Add missing namespace flags to pm2 save commands and comprehensive tests
to ensure complete isolation between production, test, and dev environments.

## Changes Made

### Workflow Fixes
- restart-pm2.yml: Add --namespace flags to pm2 save (lines 45, 69)
- manual-db-restore.yml: Add --namespace flag to pm2 save (line 95)

### Test Enhancements
- Add 6 new tests to validate ALL pm2 save commands have namespace flags
- Total test suite: 89 tests (all passing)
- Specific validation for each workflow file

### Documentation
- Create comprehensive PM2 Namespace Completion Report
- Update docs/README.md with PM2 Management section
- Cross-reference with ADR-063 and migration script

## Benefits
- Eliminates pm2 save race conditions between environments
- Enables safe parallel test and production deployments
- Simplifies process management with namespace isolation
- Prevents incidents like 2026-02-17 PM2 process kill

## Test Results
All 89 tests pass:
- 21 ecosystem config tests
- 38 workflow file tests
- 6 pm2 save validation tests
- 15 migration script tests
- 15 documentation tests
- 3 end-to-end consistency tests

Verified in dev container with vitest.

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
 2026-02-18 22:25:56 -08:00
Torben Sorensen
626aa80799 feat: add extensive PM2 logging to test deployment workflow
Some checks failed
Deploy to Test Environment / deploy-to-test (push) Failing after 1h4m43s
Details 
Add comprehensive before/after logging for all PM2 commands to diagnose
test process startup issues. Each PM2 operation now includes:

- Pre-command state (process list, JSON details, timestamps)
- Command execution with captured exit codes
- Post-command verification with expected vs actual comparison
- Clear success/warning/error indicators (/⚠️/)

Enhanced sections:
1. Stop Test Server Before Tests - delete commands with verification
2. LAYER 2: Stop PM2 Before File Operations - stop commands + port checks
3. PM2 Cleanup - errored/stopped process removal with safety checks
4. PM2 Start/Reload - critical section with stability checks
5. Final Verification - comprehensive status + logs + environment

This addresses reported issues where PM2 test processes fail to start
by providing detailed diagnostics at every deployment stage.

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
 2026-02-18 18:33:36 -08:00
Gitea Actions
4025f29c5c ci: Bump version to 0.20.0 for production release [skip ci] 2026-02-19 07:26:46 +05:00
Gitea Actions
e9e3b14050 ci: Bump version to 0.19.3 [skip ci] 2026-02-19 06:41:32 +05:00
Torben Sorensen
507e89ea4e minor commit to test pm2 again
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 27m43s
Details
2026-02-18 17:27:45 -08:00
Gitea Actions
1efe42090b ci: Bump version to 0.19.2 [skip ci] 2026-02-19 05:54:34 +05:00
Torben Sorensen
97cc14288b optimize giteas performance with language detection
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 25m51s
Details
2026-02-18 16:53:16 -08:00
Gitea Actions
96251ec2cc ci: Bump version to 0.19.1 [skip ci] 2026-02-19 04:45:22 +05:00
Torben Sorensen
fe79522ea4 pm2 save fix + test work
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 27m44s
Details
2026-02-18 15:43:20 -08:00
Gitea Actions
743216ef1b ci: Bump version to 0.19.0 for production release [skip ci] 2026-02-19 02:54:09 +05:00
Gitea Actions
c53295a371 ci: Bump version to 0.18.1 [skip ci] 2026-02-19 02:03:05 +05:00
Torben Sorensen
c18efb1b60 fix: add PORT=3001 to production PM2 config to prevent EADDRINUSE crashes
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 32m55s
Details 
Root cause: server.ts defaults to port 3001 when PORT env var is not set.
PM2 cluster mode shares a single port across all instances, but the PORT
env variable was missing from ecosystem.config.cjs, causing port binding
conflicts.

Fix: Added PORT: '3001' to production API env configuration in
ecosystem.config.cjs. Test environment already had PORT: 3002 set.

Port allocation on projectium.com:
- 3000: Gitea (system)
- 3001: flyer-crawler production
- 3002: flyer-crawler test
- 3003: stock-alert production
- 3004: stock-alert test

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
 2026-02-18 12:55:39 -08:00
Gitea Actions
822805e4c4 ci: Bump version to 0.18.0 for production release [skip ci] 2026-02-19 01:26:11 +05:00
Gitea Actions
6fd690890b style: auto-format code via Prettier [skip ci] 2026-02-19 00:36:02 +05:00
Gitea Actions
5fd836190c ci: Bump version to 0.17.1 [skip ci] 2026-02-19 00:34:08 +05:00
Torben Sorensen
441467eb8a feat: add lightweight version sync workflow (ADR-062)
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 26m39s
Details 
Implements efficient version synchronization between production and test
environments without running the full test deployment pipeline.

Problem:
- Production version bumps triggered full 5-7 minute test deployment
- Wasteful: 95% less CPU, 99.8% less file I/O needed
- Code already tested when originally pushed to main

Solution (matching stock-alert architecture):
- New sync-test-version.yml workflow (~30 seconds)
- Triggers automatically after successful production deployment
- Updates only package.json in test directory
- Restarts PM2 with --update-env to refresh version metadata

Benefits:
- 90% faster (30 sec vs 5-7 min)
- Saves ~20 minutes/month of CI time
- Clean separation: no conditionals polluting deploy-to-test.yml
- Same end state, optimized path

Changes:
- Added .gitea/workflows/sync-test-version.yml (new workflow)
- Added docs/adr/0062-lightweight-version-sync-workflow.md (decision record)
- Updated docs/adr/index.md (ADR catalog)
- Cleaned up duplicate TSOA generation step in deploy-to-test.yml

Architecture:
- deploy-to-test.yml: unchanged (runs on code changes)
- deploy-to-prod.yml: unchanged (no explicit trigger needed)
- sync-test-version.yml: auto-triggers via workflow_run

Related:
- Inspired by stock-alert project optimization (commit 021f9c8)
- ADR-061: PM2 Process Isolation Safeguards

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
 2026-02-18 11:33:05 -08:00
Torben Sorensen
59bfc859d7 fix: add TSOA build step to all deployment workflows 
CRITICAL FIX: Production deployment was failing because tsoa-spec.json
is a gitignored generated file that was missing on the server.

Root cause:
- server.ts imports './src/config/tsoa-spec.json' (line 30)
- File is generated by TSOA but gitignored
- Deployment workflows never ran 'npm run tsoa:build'
- Server crashed on startup with ERR_MODULE_NOT_FOUND

Changes:
- Add "Generate TSOA OpenAPI Spec and Routes" step to:
  - deploy-to-prod.yml
  - deploy-to-test.yml
  - manual-deploy-major.yml
- Runs after 'npm ci' but before React build
- Generates both tsoa-spec.json and tsoa-generated routes

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
 2026-02-18 11:33:04 -08:00
Gitea Actions
b989405a53 ci: Bump version to 0.17.0 for production release [skip ci] 2026-02-18 23:40:09 +05:00
Gitea Actions
6af2533e9e ci: Bump version to 0.16.4 [skip ci] 2026-02-18 23:04:08 +05:00
Torben Sorensen
f434a5846a fix: apply three-layer rsync safety system to prevent PM2 crashes
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 24m17s
Details 
CRITICAL FIX: Prevents rsync --delete from removing PM2 config files

Root Cause:
- rsync --delete was removing ecosystem*.config.cjs and .env.* files
- This caused PM2 daemon corruption affecting ALL projects on shared server
- Same vulnerability that crashed stock-alert PM2 processes

Three-Layer Safety System:
1. Pre-flight checks (git repo, critical files, file count validation)
2. Stop PM2 before file operations (prevent ENOENT/uv_cwd errors)
3. Comprehensive rsync excludes (ecosystem configs, .env files, coverage)

Changes:
- deploy-to-prod.yml: Added safety system to production deployment
- deploy-to-test.yml: Added safety system to test deployment

Files excluded from rsync --delete:
- ecosystem*.config.cjs (PM2 configuration)
- .env* (environment secrets)
- coverage, .nyc_output, .vitest-results (test artifacts)
- .vscode, .idea (IDE files)

Prevents:
- PM2 daemon crashes across all projects
- Process CWD (working directory) deletion
- Cross-project interference on shared PM2 daemon

Related:
- Stock-alert fix that identified this vulnerability
- PM2 Process Isolation documentation (CLAUDE.md)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
 2026-02-18 09:58:29 -08:00
Gitea Actions
aea368677f ci: Bump version to 0.16.3 [skip ci] 2026-02-18 22:51:45 +05:00
Torben Sorensen
cd8ee92813 debug: add PM2 crash debugging tools
Some checks failed
Deploy to Test Environment / deploy-to-test (push) Has been cancelled
Details
2026-02-18 09:43:40 -08:00
Gitea Actions
cf2cc5b832 ci: Bump version to 0.16.2 [skip ci] 2026-02-18 15:01:02 +05:00
Torben Sorensen
d2db3562bb test deploy
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 24m32s
Details
2026-02-18 01:35:16 -08:00
Gitea Actions
0532b4b22e style: auto-format code via Prettier [skip ci] 2026-02-18 14:06:10 +05:00
Gitea Actions
e767ccbb21 ci: Bump version to 0.16.1 [skip ci] 2026-02-18 14:04:40 +05:00
Torben Sorensen
1ff813f495 job to fix pm2
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 24m45s
Details
2026-02-18 00:54:08 -08:00
Torben Sorensen
204fe4394a oh god maybe pm2 finally workin
Some checks are pending
Deploy to Test Environment / deploy-to-test (push) Has started running
Details
2026-02-17 23:54:27 -08:00
Gitea Actions
029b621632 ci: Bump version to 0.16.0 for production release [skip ci] 2026-02-18 11:21:36 +05:00
Gitea Actions
0656ab3ae7 style: auto-format code via Prettier [skip ci] 2026-02-18 10:48:03 +05:00
Gitea Actions
ae0bb9e04d ci: Bump version to 0.15.2 [skip ci] 2026-02-18 10:46:29 +05:00
Torben Sorensen
b83c37b977 deploy fixes
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 25m45s
Details
2026-02-17 21:44:34 -08:00
Gitea Actions
69ae23a1ae ci: Bump version to 0.15.1 [skip ci] 2026-02-18 09:50:16 +05:00
Torben Sorensen
c059b30201 PM2 Process Isolation
All checks were successful
Deploy to Test Environment / deploy-to-test (push) Successful in 30m15s
Details
2026-02-17 20:49:01 -08:00
113 changed files with 6147 additions and 471 deletions
Expand all files Collapse all files

2
.env.example
View File

@@ -59,6 +59,8 @@ GITHUB_CLIENT_SECRET=
# AI/ML Services
# ===================
# REQUIRED: Google Gemini API key for flyer OCR processing
# NOTE: Test/staging environment deliberately OMITS this to preserve free API quota.
# Production has a working key. Deploy warnings in test are expected and safe to ignore.
GEMINI_API_KEY=your-gemini-api-key
# ===================

93
.gitattributes vendored Normal file
View File

@@ -0,0 +1,93 @@
# .gitattributes
#
# Optimize Gitea performance by excluding generated and vendored files
# from language statistics and indexing.
#
# See: https://github.com/github/linguist/blob/master/docs/overrides.md
# =============================================================================
# Vendored Dependencies
# =============================================================================
node_modules/** linguist-vendored
# =============================================================================
# Generated Files - Coverage Reports
# =============================================================================
coverage/** linguist-generated
.coverage/** linguist-generated
public/coverage/** linguist-generated
.nyc_output/** linguist-generated
# =============================================================================
# Generated Files - Build Artifacts
# =============================================================================
dist/** linguist-generated
build/** linguist-generated
# =============================================================================
# Generated Files - Test Results
# =============================================================================
test-results/** linguist-generated
playwright-report/** linguist-generated
playwright-report-visual/** linguist-generated
.vitest-results/** linguist-generated
# =============================================================================
# Generated Files - TSOA OpenAPI Spec & Routes
# =============================================================================
src/routes/routes.ts linguist-generated
public/swagger.json linguist-generated
# =============================================================================
# Documentation Files
# =============================================================================
*.md linguist-documentation
# =============================================================================
# Line Ending Normalization
# =============================================================================
# Ensure consistent line endings across platforms
* text=auto
# Shell scripts should always use LF
*.sh text eol=lf
# Windows batch files should use CRLF
*.bat text eol=crlf
*.cmd text eol=crlf
# SQL files should use LF
*.sql text eol=lf
# Configuration files
*.json text
*.yml text
*.yaml text
*.toml text
*.ini text
# Source code
*.ts text
*.tsx text
*.js text
*.jsx text
*.cjs text
*.mjs text
*.css text
*.scss text
*.html text
# =============================================================================
# Binary Files (explicit binary to prevent corruption)
# =============================================================================
*.png binary
*.jpg binary
*.jpeg binary
*.gif binary
*.ico binary
*.pdf binary
*.woff binary
*.woff2 binary
*.ttf binary
*.eot binary
*.otf binary

167
.gitea/workflows/deploy-to-prod.yml
View File

@@ -86,6 +86,12 @@ jobs:
echo "✅ Schema is up to date. No changes detected."
fi
- name: Generate TSOA OpenAPI Spec and Routes
run: |
echo "Generating TSOA OpenAPI specification and route handlers..."
npm run tsoa:build
echo "✅ TSOA files generated successfully"
- name: Build React Application for Production
# Source Maps (ADR-015): If SENTRY_AUTH_TOKEN is set, the @sentry/vite-plugin will:
# 1. Generate hidden source maps during build
@@ -119,13 +125,93 @@ jobs:
- name: Deploy Application to Production Server
run: |
echo "Deploying application files to /var/www/flyer-crawler.projectium.com..."
echo "========================================="
echo "DEPLOYING TO PRODUCTION SERVER"
echo "========================================="
APP_PATH="/var/www/flyer-crawler.projectium.com"
# ========================================
# LAYER 1: PRE-FLIGHT SAFETY CHECKS
# ========================================
echo ""
echo "--- Pre-Flight Safety Checks ---"
# Check 1: Verify we're in a git repository
if ! git rev-parse --git-dir > /dev/null 2>&1; then
echo "❌ FATAL: Not in a git repository! Aborting to prevent data loss."
exit 1
fi
echo "✅ Git repository verified"
# Check 2: Verify critical files exist before deployment
if [ ! -f "package.json" ] || [ ! -f "server.ts" ]; then
echo "❌ FATAL: Critical files missing (package.json or server.ts). Aborting."
exit 1
fi
echo "✅ Critical files verified"
# Check 3: Verify we have actual content to deploy (prevent empty checkout)
FILE_COUNT=$(find . -type f | wc -l)
if [ "$FILE_COUNT" -lt 10 ]; then
echo "❌ FATAL: Suspiciously few files ($FILE_COUNT). Aborting to prevent catastrophic deletion."
exit 1
fi
echo "✅ File count verified: $FILE_COUNT files ready to deploy"
# ========================================
# LAYER 2: STOP PM2 BEFORE FILE OPERATIONS
# ========================================
echo ""
echo "--- Stopping PM2 Processes ---"
pm2 stop flyer-crawler-api flyer-crawler-worker flyer-crawler-analytics-worker || echo "No production processes to stop"
pm2 list
# ========================================
# LAYER 3: SAFE RSYNC WITH COMPREHENSIVE EXCLUDES
# ========================================
echo ""
echo "--- Deploying Application Files ---"
mkdir -p "$APP_PATH"
mkdir -p "$APP_PATH/flyer-images/icons" "$APP_PATH/flyer-images/archive"
rsync -avz --delete --exclude 'node_modules' --exclude '.git' --exclude 'dist' --exclude 'flyer-images' ./ "$APP_PATH/"
rsync -avz dist/ "$APP_PATH"
echo "Application deployment complete."
# Deploy backend with critical file exclusions
rsync -avz --delete \
--exclude 'node_modules' \
--exclude '.git' \
--exclude 'dist' \
--exclude 'flyer-images' \
--exclude 'ecosystem.config.cjs' \
--exclude 'ecosystem-test.config.cjs' \
--exclude 'ecosystem.dev.config.cjs' \
--exclude '.env.*' \
--exclude 'coverage' \
--exclude '.coverage' \
--exclude 'test-results' \
--exclude 'playwright-report' \
--exclude 'playwright-report-visual' \
./ "$APP_PATH/" 2>&1 | tail -20
echo "✅ Backend files deployed ($(find "$APP_PATH" -type f | wc -l) files)"
# Deploy frontend assets
rsync -avz dist/ "$APP_PATH" 2>&1 | tail -10
echo "✅ Frontend assets deployed"
echo ""
echo "========================================="
echo "DEPLOYMENT COMPLETE"
echo "========================================="
- name: Log Workflow Metadata
run: |
echo "=== WORKFLOW METADATA ==="
echo "Workflow file: deploy-to-prod.yml"
echo "Workflow file hash: $(sha256sum .gitea/workflows/deploy-to-prod.yml | cut -d' ' -f1)"
echo "Git commit: $(git rev-parse HEAD)"
echo "Git branch: $(git rev-parse --abbrev-ref HEAD)"
echo "Timestamp: $(date -u '+%Y-%m-%d %H:%M:%S UTC')"
echo "Actor: ${{ gitea.actor }}"
echo "=== END METADATA ==="
- name: Install Backend Dependencies and Restart Production Server
env:
@@ -165,9 +251,78 @@ jobs:
cd /var/www/flyer-crawler.projectium.com
npm install --omit=dev
# --- Cleanup Errored Processes ---
# === PRE-CLEANUP PM2 STATE LOGGING ===
echo "=== PRE-CLEANUP PM2 STATE ==="
pm2 jlist
echo "=== END PRE-CLEANUP STATE ==="
# --- Cleanup Errored Processes with Defense-in-Depth Safeguards ---
echo "Cleaning up errored or stopped PRODUCTION PM2 processes..."
node -e "const exec = require('child_process').execSync; try { const list = JSON.parse(exec('pm2 jlist').toString()); const prodProcesses = ['flyer-crawler-api', 'flyer-crawler-worker', 'flyer-crawler-analytics-worker']; list.forEach(p => { if ((p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') && prodProcesses.includes(p.name)) { console.log('Deleting ' + p.pm2_env.status + ' production process: ' + p.name + ' (' + p.pm2_env.pm_id + ')'); try { exec('pm2 delete ' + p.pm2_env.pm_id); } catch(e) { console.error('Failed to delete ' + p.pm2_env.pm_id); } } }); console.log('✅ Production process cleanup complete.'); } catch (e) { console.error('Error cleaning up processes:', e); }"
node -e "
const exec = require('child_process').execSync;
try {
const list = JSON.parse(exec('pm2 jlist').toString());
const prodProcesses = ['flyer-crawler-api', 'flyer-crawler-worker', 'flyer-crawler-analytics-worker'];
// Filter for processes that match our criteria
const targetProcesses = list.filter(p =>
(p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') &&
prodProcesses.includes(p.name)
);
// SAFEGUARD 1: Process count validation
const totalProcesses = list.length;
if (targetProcesses.length === totalProcesses && totalProcesses > 3) {
console.error('SAFETY ABORT: Filter would delete ALL processes!');
console.error('Total processes: ' + totalProcesses + ', Target processes: ' + targetProcesses.length);
console.error('This indicates a potential filter bug. Aborting cleanup.');
process.exit(1);
}
// SAFEGUARD 2: Explicit name verification
console.log('Found ' + targetProcesses.length + ' PRODUCTION processes to clean:');
targetProcesses.forEach(p => {
console.log(' - ' + p.name + ' (status: ' + p.pm2_env.status + ', pm_id: ' + p.pm2_env.pm_id + ')');
});
// Perform the cleanup
targetProcesses.forEach(p => {
console.log('Deleting ' + p.pm2_env.status + ' production process: ' + p.name + ' (' + p.pm2_env.pm_id + ')');
try {
exec('pm2 delete ' + p.pm2_env.pm_id);
} catch(e) {
console.error('Failed to delete ' + p.pm2_env.pm_id);
}
});
console.log('Production process cleanup complete.');
} catch (e) {
console.error('Error cleaning up processes:', e);
}
"
# Save PM2 process list after cleanup to persist deletions
echo "Saving PM2 process list after cleanup..."
pm2 save
# === POST-CLEANUP VERIFICATION ===
echo "=== POST-CLEANUP VERIFICATION ==="
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const prodProcesses = list.filter(p => p.name && p.name.startsWith('flyer-crawler-') && !p.name.endsWith('-test') && !p.name.endsWith('-dev'));
console.log('Production processes after cleanup:');
prodProcesses.forEach(p => {
console.log(' ' + p.name + ': ' + p.pm2_env.status);
});
if (prodProcesses.length === 0) {
console.log(' (no production processes currently running)');
}
} catch (e) {
console.error('Failed to parse PM2 output:', e.message);
}
"
echo "=== END POST-CLEANUP VERIFICATION ==="
# --- Version Check Logic ---
# Get the version from the newly deployed package.json

622
.gitea/workflows/deploy-to-test.yml
View File

@@ -81,23 +81,158 @@ jobs:
- name: TypeScript Type-Check
run: npm run type-check
- name: Prettier Check
run: npx prettier --check . || true
- name: Prettier Auto-Fix
run: |
echo "--- Running Prettier auto-fix for test/staging deployment ---"
# Auto-format all files
npx prettier --write .
# Check if any files were changed
if ! git diff --quiet; then
echo "📝 Prettier made formatting changes. Committing..."
git config --global user.name 'Gitea Actions'
git config --global user.email 'actions@gitea.projectium.com'
git add .
git commit -m "style: auto-format code via Prettier [skip ci]"
git push
echo "✅ Formatting changes committed and pushed."
else
echo "✅ No formatting changes needed."
fi
- name: Lint Check
run: npm run lint || true
- name: Log Workflow Metadata
run: |
echo "=== WORKFLOW METADATA ==="
echo "Workflow file: deploy-to-test.yml"
echo "Workflow file hash: $(sha256sum .gitea/workflows/deploy-to-test.yml | cut -d' ' -f1)"
echo "Git commit: $(git rev-parse HEAD)"
echo "Git branch: $(git rev-parse --abbrev-ref HEAD)"
echo "Timestamp: $(date -u '+%Y-%m-%d %H:%M:%S UTC')"
echo "Actor: ${{ gitea.actor }}"
echo "=== END METADATA ==="
- name: Stop Test Server Before Tests
# This is a critical step to ensure a clean test environment.
# It stops the currently running pm2 process, freeing up port 3001 so that the
# integration test suite can launch its own, fresh server instance.
# '|| true' ensures the workflow doesn't fail if the process isn't running.
run: |
echo "--- Stopping and deleting all test processes ---"
echo "========================================="
echo "STOPPING TEST PROCESSES BEFORE TEST RUN"
echo "========================================="
echo "Timestamp: $(date '+%Y-%m-%d %H:%M:%S')"
echo ""
# === PRE-CLEANUP PM2 STATE LOGGING ===
echo "=== PRE-CLEANUP PM2 STATE ==="
pm2 list || echo "PM2 list failed"
echo ""
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
console.log('Total PM2 processes: ' + list.length);
const testProcs = list.filter(p => p.name && p.name.endsWith('-test'));
console.log('Test processes: ' + testProcs.length);
testProcs.forEach(p => {
console.log(' ' + p.name + ': status=' + p.pm2_env.status + ', pm_id=' + p.pm2_env.pm_id);
});
} catch(e) {
console.log('No PM2 processes running or parse failed');
}
" || echo "No PM2 processes running"
echo "=== END PRE-CLEANUP STATE ==="
echo ""
# Use a script to parse pm2's JSON output and delete any process whose name ends with '-test'.
# This is safer than 'pm2 delete all' and more robust than naming each process individually.
# It prevents the accumulation of duplicate processes from previous test runs.
node -e "const exec = require('child_process').execSync; try { const list = JSON.parse(exec('pm2 jlist').toString()); list.forEach(p => { if (p.name && p.name.endsWith('-test')) { console.log('Deleting test process: ' + p.name + ' (' + p.pm2_env.pm_id + ')'); try { exec('pm2 delete ' + p.pm2_env.pm_id); } catch(e) { console.error('Failed to delete ' + p.pm2_env.pm_id, e.message); } } }); console.log('✅ Test process cleanup complete.'); } catch (e) { if (e.stdout.toString().includes('No process found')) { console.log('No PM2 processes running, cleanup not needed.'); } else { console.error('Error cleaning up test processes:', e.message); } }" || true
echo "[PM2 CLEANUP] Starting deletion of test processes..."
node -e "
const exec = require('child_process').execSync;
try {
const list = JSON.parse(exec('pm2 jlist').toString());
// Filter for test processes only
const targetProcesses = list.filter(p => p.name && p.name.endsWith('-test'));
// SAFEGUARD 1: Process count validation
const totalProcesses = list.length;
if (targetProcesses.length === totalProcesses && totalProcesses > 3) {
console.error('SAFETY ABORT: Filter would delete ALL processes!');
console.error('Total processes: ' + totalProcesses + ', Target processes: ' + targetProcesses.length);
console.error('This indicates a potential filter bug. Aborting cleanup.');
process.exit(1);
}
// SAFEGUARD 2: Explicit name verification
console.log('Found ' + targetProcesses.length + ' TEST processes to clean:');
targetProcesses.forEach(p => {
console.log(' - ' + p.name + ' (status: ' + p.pm2_env.status + ', pm_id: ' + p.pm2_env.pm_id + ')');
});
// Perform the cleanup
if (targetProcesses.length > 0) {
targetProcesses.forEach(p => {
console.log('[PM2 COMMAND] Deleting test process: ' + p.name + ' (pm_id: ' + p.pm2_env.pm_id + ')');
try {
const output = exec('pm2 delete ' + p.pm2_env.pm_id).toString();
console.log('[PM2 COMMAND RESULT] Delete succeeded for: ' + p.name);
} catch(e) {
console.error('[PM2 COMMAND RESULT] Failed to delete ' + p.pm2_env.pm_id + ':', e.message);
}
});
} else {
console.log('No test processes to delete');
}
console.log('[PM2 CLEANUP] Test process cleanup complete.');
} catch (e) {
if (e.stdout && e.stdout.toString().includes('No process found')) {
console.log('No PM2 processes running, cleanup not needed.');
} else {
console.error('[PM2 CLEANUP] Error cleaning up test processes:', e.message);
}
}
" || true
CLEANUP_PRE_TEST_EXIT=$?
echo "[PM2 CLEANUP RESULT] Cleanup script exit code: $CLEANUP_PRE_TEST_EXIT"
echo ""
# Save PM2 process list after cleanup to persist deletions
echo "[PM2 COMMAND] About to execute: pm2 save"
pm2 save || true
SAVE_EXIT=$?
echo "[PM2 COMMAND RESULT] pm2 save exit code: $SAVE_EXIT"
echo ""
# === POST-CLEANUP VERIFICATION ===
echo "=== POST-CLEANUP VERIFICATION ==="
pm2 list || echo "PM2 list failed"
echo ""
pm2 jlist 2>/dev/null | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const testProcesses = list.filter(p => p.name && p.name.endsWith('-test'));
const prodProcesses = list.filter(p => p.name && p.name.startsWith('flyer-crawler-') && !p.name.endsWith('-test') && !p.name.endsWith('-dev'));
console.log('Test processes after cleanup: ' + testProcesses.length);
if (testProcesses.length > 0) {
testProcesses.forEach(p => console.log(' ' + p.name + ': ' + p.pm2_env.status));
console.log('⚠️ WARNING: Expected 0 test processes, found ' + testProcesses.length);
} else {
console.log('✅ All test processes deleted');
}
console.log('');
console.log('Production processes (should be untouched): ' + prodProcesses.length);
prodProcesses.forEach(p => console.log(' ' + p.name + ': ' + p.pm2_env.status));
} catch (e) {
console.log('No PM2 processes or failed to parse output');
}
" || true
echo "=== END POST-CLEANUP VERIFICATION ==="
echo ""
- name: Flush Redis Test Database Before Tests
# CRITICAL: Clear Redis database 1 (test database) to remove stale BullMQ jobs.
@@ -412,21 +547,154 @@ jobs:
- name: Deploy Application to Test Server
run: |
set -x # Enable command tracing for debugging
echo "========================================="
echo "DEPLOYING TO TEST SERVER"
echo "========================================="
echo "Timestamp: $(date)"
echo "Deploying application files to /var/www/flyer-crawler-test.projectium.com..."
APP_PATH="/var/www/flyer-crawler-test.projectium.com"
# ======================================================================
# LAYER 1: PRE-FLIGHT SAFETY CHECKS
# ======================================================================
# These checks prevent catastrophic deployments (e.g., empty rsync source)
# that could wipe out the entire application directory.
echo ""
echo "--- LAYER 1: Pre-Flight Safety Checks ---"
# Check 1: Verify we're in a git repository
if ! git rev-parse --git-dir > /dev/null 2>&1; then
echo "FATAL: Not in a git repository. Aborting deployment."
exit 1
fi
echo "✅ Git repository verified"
# Check 2: Verify critical files exist before syncing
CRITICAL_FILES=("package.json" "server.ts" "ecosystem.config.cjs" "ecosystem-test.config.cjs")
for file in "${CRITICAL_FILES[@]}"; do
if [ ! -f "$file" ]; then
echo "FATAL: Critical file '$file' not found. Aborting deployment."
exit 1
fi
done
echo "✅ Critical files verified"
# Check 3: Verify minimum file count (prevent empty directory sync)
FILE_COUNT=$(find . -type f | wc -l)
if [ "$FILE_COUNT" -lt 50 ]; then
echo "FATAL: Suspiciously low file count ($FILE_COUNT). Expected >50 files. Aborting deployment."
exit 1
fi
echo "✅ File count check passed ($FILE_COUNT files)"
# ======================================================================
# LAYER 2: STOP PM2 BEFORE FILE OPERATIONS
# ======================================================================
# Prevents ENOENT/uv_cwd errors by stopping processes before rsync --delete
echo ""
echo "--- LAYER 2: Stopping test PM2 processes ---"
echo ""
echo "=== PM2 STATE BEFORE STOP COMMAND ==="
echo "Timestamp: $(date '+%Y-%m-%d %H:%M:%S')"
pm2 list || echo "PM2 list failed"
echo ""
echo "Detailed JSON state:"
pm2 jlist | grep -E '"name"|"pm_id"|"status"|"pid"' || echo "PM2 jlist failed"
echo "=== END PM2 STATE BEFORE STOP ==="
echo ""
echo "[PM2 COMMAND] About to execute: pm2 stop flyer-crawler-api-test flyer-crawler-worker-test flyer-crawler-analytics-worker-test"
pm2 stop flyer-crawler-api-test flyer-crawler-worker-test flyer-crawler-analytics-worker-test 2>&1 || echo "No test processes to stop (exit code: $?)"
STOP_EXIT_CODE=$?
echo "[PM2 COMMAND RESULT] pm2 stop exit code: $STOP_EXIT_CODE"
echo ""
echo "=== PM2 STATE AFTER STOP COMMAND ==="
echo "Timestamp: $(date '+%Y-%m-%d %H:%M:%S')"
pm2 list || echo "PM2 list failed"
echo ""
echo "Verifying test processes are stopped:"
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const testProcs = list.filter(p => p.name && p.name.endsWith('-test'));
console.log('Test processes count: ' + testProcs.length);
testProcs.forEach(p => {
console.log(' ' + p.name + ' (pm_id: ' + p.pm2_env.pm_id + ', status: ' + p.pm2_env.status + ', pid: ' + (p.pid || 'N/A') + ')');
});
const runningTests = testProcs.filter(p => p.pm2_env.status === 'online');
if (runningTests.length > 0) {
console.log('WARNING: ' + runningTests.length + ' test processes still running!');
} else {
console.log('✅ All test processes stopped');
}
} catch(e) {
console.log('Failed to parse PM2 output');
}
" || echo "Verification script failed"
echo "=== END PM2 STATE AFTER STOP ==="
echo ""
# ======================================================================
# LAYER 3: SAFE RSYNC WITH COMPREHENSIVE EXCLUDES
# ======================================================================
# Protects critical runtime files from deletion
echo ""
echo "--- LAYER 3: Safe rsync deployment ---"
# Ensure the destination directory exists
mkdir -p "$APP_PATH"
mkdir -p "$APP_PATH/flyer-images/icons" "$APP_PATH/flyer-images/archive" # Ensure all required subdirectories exist
mkdir -p "$APP_PATH/flyer-images/icons" "$APP_PATH/flyer-images/archive"
echo "Directories created/verified"
# 1. Copy the backend source code and project files first.
# CRITICAL: We exclude 'node_modules', '.git', and 'dist'.
rsync -avz --delete --exclude 'node_modules' --exclude '.git' --exclude 'dist' --exclude 'flyer-images' ./ "$APP_PATH/"
echo ""
echo "--- Step 3: Deploying backend files ---"
# CRITICAL: Comprehensive excludes prevent deletion of:
# - PM2 configuration files (ecosystem*.config.cjs)
# - Environment files (.env.*)
# - Test artifacts (coverage, .vitest-results)
# - Development files (.vscode, .idea)
# - Generated files (dist, node_modules)
rsync -avz --delete \
--exclude 'node_modules' \
--exclude '.git' \
--exclude '.gitea' \
--exclude 'dist' \
--exclude 'flyer-images' \
--exclude 'ecosystem.config.cjs' \
--exclude 'ecosystem-test.config.cjs' \
--exclude 'ecosystem.dev.config.cjs' \
--exclude '.env' \
--exclude '.env.local' \
--exclude '.env.test' \
--exclude '.env.production' \
--exclude '.env.*.local' \
--exclude 'coverage' \
--exclude '.coverage' \
--exclude '.nyc_output' \
--exclude '.vitest-results' \
--exclude 'test-results' \
--exclude '.vscode' \
--exclude '.idea' \
--exclude '*.log' \
--exclude '.DS_Store' \
--exclude 'Thumbs.db' \
./ "$APP_PATH/" 2>&1 | tail -20
echo "Backend files deployed"
echo ""
echo "--- Step 4: Deploying frontend assets ---"
# 2. Copy the built frontend assets into the same directory.
# This will correctly place index.html and the assets/ folder in the webroot.
rsync -avz dist/ "$APP_PATH"
echo "Application deployment complete."
rsync -avz dist/ "$APP_PATH" 2>&1 | tail -10
echo "Frontend assets deployed"
echo ""
echo "========================================="
echo "APPLICATION DEPLOYMENT COMPLETE"
echo "========================================="
set +x # Disable command tracing
- name: Deploy Coverage Report to Public URL
if: always()
@@ -492,16 +760,226 @@ jobs:
cd /var/www/flyer-crawler-test.projectium.com
npm install --omit=dev
# --- Cleanup Errored Processes ---
echo "Cleaning up errored or stopped TEST PM2 processes..."
node -e "const exec = require('child_process').execSync; try { const list = JSON.parse(exec('pm2 jlist').toString()); list.forEach(p => { if ((p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') && p.name && p.name.endsWith('-test')) { console.log('Deleting ' + p.pm2_env.status + ' test process: ' + p.name + ' (' + p.pm2_env.pm_id + ')'); try { exec('pm2 delete ' + p.pm2_env.pm_id); } catch(e) { console.error('Failed to delete ' + p.pm2_env.pm_id); } } }); console.log('✅ Test process cleanup complete.'); } catch (e) { console.error('Error cleaning up processes:', e); }"
# ======================================================================
# PM2 CLEANUP OF ERRORED/STOPPED TEST PROCESSES
# ======================================================================
echo ""
echo "=== PRE-CLEANUP PM2 STATE ==="
echo "Timestamp: $(date '+%Y-%m-%d %H:%M:%S')"
echo "Full PM2 list:"
pm2 list
echo ""
echo "Detailed JSON state (test processes only):"
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const testProcs = list.filter(p => p.name && p.name.endsWith('-test'));
console.log('Total test processes: ' + testProcs.length);
testProcs.forEach(p => {
console.log(' ' + p.name + ': status=' + p.pm2_env.status + ', pm_id=' + p.pm2_env.pm_id + ', pid=' + (p.pid || 'N/A'));
});
} catch(e) { console.log('Failed to parse'); }
" || echo "Parse failed"
echo "=== END PRE-CLEANUP STATE ==="
echo ""
# Use `startOrReload` with the TEST ecosystem file. This starts test-specific processes
# (flyer-crawler-api-test, flyer-crawler-worker-test, flyer-crawler-analytics-worker-test)
# that run separately from production processes.
# We also add `&& pm2 save` to persist the process list across server reboots.
pm2 startOrReload ecosystem-test.config.cjs --update-env && pm2 save
echo "Test backend server reloaded successfully."
# --- Cleanup Errored Processes with Defense-in-Depth Safeguards ---
echo "[PM2 CLEANUP] Starting cleanup of errored/stopped TEST processes..."
node -e "
const exec = require('child_process').execSync;
try {
const list = JSON.parse(exec('pm2 jlist').toString());
// Filter for errored/stopped test processes only
const targetProcesses = list.filter(p =>
(p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') &&
p.name && p.name.endsWith('-test')
);
// SAFEGUARD 1: Process count validation
const totalProcesses = list.length;
if (targetProcesses.length === totalProcesses && totalProcesses > 3) {
console.error('SAFETY ABORT: Filter would delete ALL processes!');
console.error('Total processes: ' + totalProcesses + ', Target processes: ' + targetProcesses.length);
console.error('This indicates a potential filter bug. Aborting cleanup.');
process.exit(1);
}
// SAFEGUARD 2: Explicit name verification
console.log('Found ' + targetProcesses.length + ' errored/stopped TEST processes to clean:');
targetProcesses.forEach(p => {
console.log(' - ' + p.name + ' (status: ' + p.pm2_env.status + ', pm_id: ' + p.pm2_env.pm_id + ')');
});
// Perform the cleanup
if (targetProcesses.length > 0) {
targetProcesses.forEach(p => {
console.log('[PM2 COMMAND] About to delete: ' + p.name + ' (pm_id: ' + p.pm2_env.pm_id + ')');
try {
const output = exec('pm2 delete ' + p.pm2_env.pm_id).toString();
console.log('[PM2 COMMAND RESULT] Delete succeeded: ' + p.name);
console.log(output);
} catch(e) {
console.error('[PM2 COMMAND RESULT] Delete failed for ' + p.pm2_env.pm_id + ':', e.message);
}
});
} else {
console.log('No errored/stopped test processes to clean');
}
console.log('[PM2 CLEANUP] Test process cleanup complete.');
} catch (e) {
console.error('[PM2 CLEANUP] Error during cleanup:', e.message);
}
"
CLEANUP_EXIT_CODE=$?
echo "[PM2 CLEANUP RESULT] Cleanup script exit code: $CLEANUP_EXIT_CODE"
echo ""
# Save PM2 process list after cleanup to persist deletions
echo "[PM2 COMMAND] About to execute: pm2 save (after cleanup)"
pm2 save
SAVE_CLEANUP_EXIT_CODE=$?
echo "[PM2 COMMAND RESULT] pm2 save exit code: $SAVE_CLEANUP_EXIT_CODE"
echo ""
# === POST-CLEANUP VERIFICATION ===
echo "=== POST-CLEANUP VERIFICATION ==="
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const testProcesses = list.filter(p => p.name && p.name.endsWith('-test'));
const prodProcesses = list.filter(p => p.name && p.name.startsWith('flyer-crawler-') && !p.name.endsWith('-test') && !p.name.endsWith('-dev'));
console.log('Test processes after cleanup:');
testProcesses.forEach(p => console.log(' ' + p.name + ': ' + p.pm2_env.status));
if (testProcesses.length === 0) {
console.log(' (no test processes currently running)');
}
console.log('Production processes (should be untouched): ' + prodProcesses.length);
prodProcesses.forEach(p => console.log(' ' + p.name + ': ' + p.pm2_env.status));
} catch (e) {
console.error('Failed to parse PM2 output:', e.message);
}
"
echo "=== END POST-CLEANUP VERIFICATION ==="
echo ""
# ======================================================================
# PM2 START/RELOAD - CRITICAL SECTION
# ======================================================================
echo "=== PM2 STATE BEFORE START/RELOAD ==="
echo "Timestamp: $(date '+%Y-%m-%d %H:%M:%S')"
echo "Working directory: $(pwd)"
echo "Checking ecosystem-test.config.cjs exists:"
ls -lh ecosystem-test.config.cjs || echo "ERROR: ecosystem-test.config.cjs not found!"
echo ""
echo "Current PM2 processes:"
pm2 list
echo ""
echo "Checking port 3002 availability (test API port):"
netstat -tlnp | grep ':3002' || echo "Port 3002 is free"
echo "=== END PRE-START STATE ==="
echo ""
echo "[PM2 COMMAND] About to execute: pm2 startOrReload ecosystem-test.config.cjs --update-env"
pm2 startOrReload ecosystem-test.config.cjs --update-env
STARTOR_RELOAD_EXIT_CODE=$?
echo "[PM2 COMMAND RESULT] pm2 startOrReload exit code: $STARTOR_RELOAD_EXIT_CODE"
echo ""
if [ $STARTOR_RELOAD_EXIT_CODE -ne 0 ]; then
echo "ERROR: pm2 startOrReload failed with exit code $STARTOR_RELOAD_EXIT_CODE"
echo "Attempting to diagnose..."
pm2 list
pm2 logs --lines 50 --nostream || echo "Could not retrieve logs"
fi
echo "=== PM2 STATE IMMEDIATELY AFTER START/RELOAD ==="
echo "Timestamp: $(date '+%Y-%m-%d %H:%M:%S')"
pm2 list
echo ""
echo "Detailed process status:"
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const testProcs = list.filter(p => p.name && p.name.endsWith('-test'));
console.log('Test processes found: ' + testProcs.length);
console.log('Expected: 3 (flyer-crawler-api-test, flyer-crawler-worker-test, flyer-crawler-analytics-worker-test)');
testProcs.forEach(p => {
console.log('');
console.log('Process: ' + p.name);
console.log(' pm_id: ' + p.pm2_env.pm_id);
console.log(' status: ' + p.pm2_env.status);
console.log(' pid: ' + (p.pid || 'N/A'));
console.log(' restarts: ' + p.pm2_env.restart_time);
console.log(' uptime: ' + ((Date.now() - p.pm2_env.pm_uptime) / 1000).toFixed(1) + 's');
console.log(' memory: ' + (p.monit ? (p.monit.memory / 1024 / 1024).toFixed(1) + 'MB' : 'N/A'));
});
const onlineTests = testProcs.filter(p => p.pm2_env.status === 'online');
const erroredTests = testProcs.filter(p => p.pm2_env.status === 'errored');
const stoppedTests = testProcs.filter(p => p.pm2_env.status === 'stopped');
console.log('');
console.log('Summary:');
console.log(' Online: ' + onlineTests.length);
console.log(' Errored: ' + erroredTests.length);
console.log(' Stopped: ' + stoppedTests.length);
if (onlineTests.length === 3) {
console.log('');
console.log('✅ All 3 test processes started successfully');
} else {
console.log('');
console.log('⚠️ WARNING: Expected 3 online processes, got ' + onlineTests.length);
}
} catch(e) {
console.log('Failed to parse PM2 output:', e.message);
}
" || echo "Verification script failed"
echo "=== END POST-START STATE ==="
echo ""
echo "[PM2 COMMAND] About to execute: pm2 save"
pm2 save
SAVE_EXIT_CODE=$?
echo "[PM2 COMMAND RESULT] pm2 save exit code: $SAVE_EXIT_CODE"
echo ""
if [ $SAVE_EXIT_CODE -eq 0 ]; then
echo "✅ PM2 process list saved successfully"
else
echo "⚠️ WARNING: pm2 save failed with exit code $SAVE_EXIT_CODE"
fi
echo ""
echo "Waiting 5 seconds for processes to stabilize..."
sleep 5
echo ""
echo "=== PM2 STATE AFTER 5-SECOND STABILIZATION ==="
echo "Timestamp: $(date '+%Y-%m-%d %H:%M:%S')"
pm2 list
echo ""
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const testProcs = list.filter(p => p.name && p.name.endsWith('-test'));
const crashedRecently = testProcs.filter(p => p.pm2_env.restart_time > 0 && p.pm2_env.status !== 'online');
if (crashedRecently.length > 0) {
console.log('⚠️ WARNING: ' + crashedRecently.length + ' processes crashed after initial start');
crashedRecently.forEach(p => console.log(' - ' + p.name + ': ' + p.pm2_env.status));
} else {
console.log('✅ All processes stable after 5 seconds');
}
} catch(e) {
console.log('Stability check failed');
}
" || echo "Stability check script failed"
echo "=== END STABILIZATION CHECK ==="
echo ""
echo "Test backend server reload complete."
# After a successful deployment, update the schema hash in the database.
# This ensures the next deployment will compare against this new state.
@@ -531,21 +1009,103 @@ jobs:
find "$PROD_APP_PATH/flyer-images/archive" -mindepth 1 -maxdepth 1 -type f -delete || echo "Prod archive directory is empty or not found, skipping."
echo "✅ Test artifacts cleared from production asset directories."
- name: Show PM2 Environment for Test
- name: Show PM2 Environment for Test and Final Verification
run: |
echo "--- Displaying recent PM2 logs for flyer-crawler-api-test ---"
# After a reload, the server restarts. We'll show the last 20 lines of the log to see the startup messages.
sleep 5
echo "========================================="
echo "FINAL PM2 VERIFICATION"
echo "========================================="
echo "Timestamp: $(date '+%Y-%m-%d %H:%M:%S')"
echo ""
echo "--- Full PM2 Process List ---"
pm2 list
echo ""
echo "--- Test Processes Detailed Status ---"
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const testProcs = list.filter(p => p.name && p.name.endsWith('-test'));
console.log('Test processes count: ' + testProcs.length);
console.log('Expected: 3');
console.log('');
const procNames = ['flyer-crawler-api-test', 'flyer-crawler-worker-test', 'flyer-crawler-analytics-worker-test'];
procNames.forEach(procName => {
const proc = list.find(p => p.name === procName);
if (proc) {
console.log('✅ ' + procName + ':');
console.log(' pm_id: ' + proc.pm2_env.pm_id);
console.log(' status: ' + proc.pm2_env.status);
console.log(' pid: ' + (proc.pid || 'N/A'));
console.log(' uptime: ' + ((Date.now() - proc.pm2_env.pm_uptime) / 1000).toFixed(1) + 's');
console.log(' restarts: ' + proc.pm2_env.restart_time);
console.log(' memory: ' + (proc.monit ? (proc.monit.memory / 1024 / 1024).toFixed(1) + 'MB' : 'N/A'));
} else {
console.log('❌ ' + procName + ': NOT FOUND');
}
console.log('');
});
const allOnline = testProcs.every(p => p.pm2_env.status === 'online');
if (testProcs.length === 3 && allOnline) {
console.log('✅✅✅ DEPLOYMENT SUCCESS: All 3 test processes are online');
} else {
console.log('⚠️⚠️⚠️ DEPLOYMENT WARNING: Not all test processes are online');
}
} catch(e) {
console.log('Failed to parse PM2 output:', e.message);
}
" || echo "Status check script failed"
echo ""
echo "--- Port Status Check ---"
echo "Checking if test API is listening on port 3002:"
netstat -tlnp | grep ':3002' || echo "⚠️ WARNING: Port 3002 not in use (expected for flyer-crawler-api-test)"
echo ""
echo "--- Displaying PM2 Logs for Test API ---"
sleep 3
# Resolve the PM2 ID dynamically to ensure we target the correct process
PM2_ID=$(pm2 jlist | node -e "try { const list = JSON.parse(require('fs').readFileSync(0, 'utf-8')); const app = list.find(p => p.name === 'flyer-crawler-api-test'); console.log(app ? app.pm2_env.pm_id : ''); } catch(e) { console.log(''); }")
PM2_API_ID=$(pm2 jlist | node -e "try { const list = JSON.parse(require('fs').readFileSync(0, 'utf-8')); const app = list.find(p => p.name === 'flyer-crawler-api-test'); console.log(app ? app.pm2_env.pm_id : ''); } catch(e) { console.log(''); }")
PM2_WORKER_ID=$(pm2 jlist | node -e "try { const list = JSON.parse(require('fs').readFileSync(0, 'utf-8')); const app = list.find(p => p.name === 'flyer-crawler-worker-test'); console.log(app ? app.pm2_env.pm_id : ''); } catch(e) { console.log(''); }")
PM2_ANALYTICS_ID=$(pm2 jlist | node -e "try { const list = JSON.parse(require('fs').readFileSync(0, 'utf-8')); const app = list.find(p => p.name === 'flyer-crawler-analytics-worker-test'); console.log(app ? app.pm2_env.pm_id : ''); } catch(e) { console.log(''); }")
if [ -n "$PM2_ID" ]; then
echo "Found process ID: $PM2_ID"
pm2 describe "$PM2_ID" || echo "Failed to describe process $PM2_ID"
pm2 logs "$PM2_ID" --lines 20 --nostream || echo "Failed to get logs for $PM2_ID"
pm2 env "$PM2_ID" || echo "Failed to get env for $PM2_ID"
if [ -n "$PM2_API_ID" ]; then
echo "=== flyer-crawler-api-test (pm_id: $PM2_API_ID) ==="
echo "Process description:"
pm2 describe "$PM2_API_ID" || echo "Failed to describe process"
echo ""
echo "Recent logs (last 30 lines):"
pm2 logs "$PM2_API_ID" --lines 30 --nostream || echo "Failed to get logs"
echo ""
echo "Environment variables:"
pm2 env "$PM2_API_ID" | grep -E 'PORT|NODE_ENV|DB_|REDIS_' || echo "Failed to get env"
echo ""
else
echo "Could not find process 'flyer-crawler-api-test' in pm2 list."
pm2 list # Fallback to listing everything to help debug
echo "⚠️ flyer-crawler-api-test NOT FOUND in PM2"
fi
if [ -n "$PM2_WORKER_ID" ]; then
echo "=== flyer-crawler-worker-test (pm_id: $PM2_WORKER_ID) ==="
echo "Recent logs (last 20 lines):"
pm2 logs "$PM2_WORKER_ID" --lines 20 --nostream || echo "Failed to get logs"
echo ""
else
echo "⚠️ flyer-crawler-worker-test NOT FOUND in PM2"
fi
if [ -n "$PM2_ANALYTICS_ID" ]; then
echo "=== flyer-crawler-analytics-worker-test (pm_id: $PM2_ANALYTICS_ID) ==="
echo "Recent logs (last 20 lines):"
pm2 logs "$PM2_ANALYTICS_ID" --lines 20 --nostream || echo "Failed to get logs"
echo ""
else
echo "⚠️ flyer-crawler-analytics-worker-test NOT FOUND in PM2"
fi
echo "========================================="
echo "END FINAL VERIFICATION"
echo "========================================="

7
.gitea/workflows/manual-db-restore.yml
View File

@@ -57,8 +57,9 @@ jobs:
- name: Step 1 - Stop Application Server
run: |
echo "Stopping PRODUCTION PM2 processes to release database connections..."
pm2 stop flyer-crawler-api flyer-crawler-worker flyer-crawler-analytics-worker || echo "Production PM2 processes were not running."
echo "✅ Production application server stopped."
pm2 stop flyer-crawler-api flyer-crawler-worker flyer-crawler-analytics-worker --namespace flyer-crawler-prod || echo "Production PM2 processes were not running."
pm2 save --namespace flyer-crawler-prod
echo "✅ Production application server stopped and saved."
- name: Step 2 - Drop and Recreate Database
run: |
@@ -91,5 +92,5 @@ jobs:
run: |
echo "Restarting application server..."
cd /var/www/flyer-crawler.projectium.com
pm2 startOrReload ecosystem.config.cjs --env production && pm2 save
pm2 startOrReload ecosystem.config.cjs --env production --namespace flyer-crawler-prod && pm2 save --namespace flyer-crawler-prod
echo "✅ Application server restarted."

90
.gitea/workflows/manual-deploy-major.yml
View File

@@ -85,6 +85,12 @@ jobs:
echo "✅ Schema is up to date. No changes detected."
fi
- name: Generate TSOA OpenAPI Spec and Routes
run: |
echo "Generating TSOA OpenAPI specification and route handlers..."
npm run tsoa:build
echo "✅ TSOA files generated successfully"
- name: Build React Application for Production
run: |
if [ -z "${{ secrets.VITE_GOOGLE_GENAI_API_KEY }}" ]; then
@@ -109,6 +115,17 @@ jobs:
rsync -avz dist/ "$APP_PATH"
echo "Application deployment complete."
- name: Log Workflow Metadata
run: |
echo "=== WORKFLOW METADATA ==="
echo "Workflow file: manual-deploy-major.yml"
echo "Workflow file hash: $(sha256sum .gitea/workflows/manual-deploy-major.yml | cut -d' ' -f1)"
echo "Git commit: $(git rev-parse HEAD)"
echo "Git branch: $(git rev-parse --abbrev-ref HEAD)"
echo "Timestamp: $(date -u '+%Y-%m-%d %H:%M:%S UTC')"
echo "Actor: ${{ gitea.actor }}"
echo "=== END METADATA ==="
- name: Install Backend Dependencies and Restart Production Server
env:
# --- Production Secrets Injection ---
@@ -138,9 +155,78 @@ jobs:
cd /var/www/flyer-crawler.projectium.com
npm install --omit=dev
# --- Cleanup Errored Processes ---
# === PRE-CLEANUP PM2 STATE LOGGING ===
echo "=== PRE-CLEANUP PM2 STATE ==="
pm2 jlist
echo "=== END PRE-CLEANUP STATE ==="
# --- Cleanup Errored Processes with Defense-in-Depth Safeguards ---
echo "Cleaning up errored or stopped PRODUCTION PM2 processes..."
node -e "const exec = require('child_process').execSync; try { const list = JSON.parse(exec('pm2 jlist').toString()); const prodProcesses = ['flyer-crawler-api', 'flyer-crawler-worker', 'flyer-crawler-analytics-worker']; list.forEach(p => { if ((p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') && prodProcesses.includes(p.name)) { console.log('Deleting ' + p.pm2_env.status + ' production process: ' + p.name + ' (' + p.pm2_env.pm_id + ')'); try { exec('pm2 delete ' + p.pm2_env.pm_id); } catch(e) { console.error('Failed to delete ' + p.pm2_env.pm_id); } } }); console.log('✅ Production process cleanup complete.'); } catch (e) { console.error('Error cleaning up processes:', e); }"
node -e "
const exec = require('child_process').execSync;
try {
const list = JSON.parse(exec('pm2 jlist').toString());
const prodProcesses = ['flyer-crawler-api', 'flyer-crawler-worker', 'flyer-crawler-analytics-worker'];
// Filter for processes that match our criteria
const targetProcesses = list.filter(p =>
(p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') &&
prodProcesses.includes(p.name)
);
// SAFEGUARD 1: Process count validation
const totalProcesses = list.length;
if (targetProcesses.length === totalProcesses && totalProcesses > 3) {
console.error('SAFETY ABORT: Filter would delete ALL processes!');
console.error('Total processes: ' + totalProcesses + ', Target processes: ' + targetProcesses.length);
console.error('This indicates a potential filter bug. Aborting cleanup.');
process.exit(1);
}
// SAFEGUARD 2: Explicit name verification
console.log('Found ' + targetProcesses.length + ' PRODUCTION processes to clean:');
targetProcesses.forEach(p => {
console.log(' - ' + p.name + ' (status: ' + p.pm2_env.status + ', pm_id: ' + p.pm2_env.pm_id + ')');
});
// Perform the cleanup
targetProcesses.forEach(p => {
console.log('Deleting ' + p.pm2_env.status + ' production process: ' + p.name + ' (' + p.pm2_env.pm_id + ')');
try {
exec('pm2 delete ' + p.pm2_env.pm_id);
} catch(e) {
console.error('Failed to delete ' + p.pm2_env.pm_id);
}
});
console.log('Production process cleanup complete.');
} catch (e) {
console.error('Error cleaning up processes:', e);
}
"
# Save PM2 process list after cleanup to persist deletions
echo "Saving PM2 process list after cleanup..."
pm2 save
# === POST-CLEANUP VERIFICATION ===
echo "=== POST-CLEANUP VERIFICATION ==="
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const prodProcesses = list.filter(p => p.name && p.name.startsWith('flyer-crawler-') && !p.name.endsWith('-test') && !p.name.endsWith('-dev'));
console.log('Production processes after cleanup:');
prodProcesses.forEach(p => {
console.log(' ' + p.name + ': ' + p.pm2_env.status);
});
if (prodProcesses.length === 0) {
console.log(' (no production processes currently running)');
}
} catch (e) {
console.error('Failed to parse PM2 output:', e.message);
}
"
echo "=== END POST-CLEANUP VERIFICATION ==="
# --- Version Check Logic ---
# Get the version from the newly deployed package.json

188
.gitea/workflows/pm2-diagnostics.yml Normal file
View File

@@ -0,0 +1,188 @@
# .gitea/workflows/pm2-diagnostics.yml
#
# Comprehensive PM2 diagnostics to identify crash causes and problematic projects
name: PM2 Diagnostics
on:
workflow_dispatch:
inputs:
capture_interval:
description: 'Seconds between PM2 state captures (default: 5)'
required: false
default: '5'
duration:
description: 'Total monitoring duration in seconds (default: 60)'
required: false
default: '60'
jobs:
pm2-diagnostics:
runs-on: projectium.com
steps:
- name: PM2 Current State Snapshot
run: |
echo "========================================="
echo "PM2 CURRENT STATE SNAPSHOT"
echo "========================================="
echo ""
echo "--- PM2 List (Human Readable) ---"
pm2 list
echo ""
echo "--- PM2 List (JSON) ---"
pm2 jlist > /tmp/pm2-state-initial.json
cat /tmp/pm2-state-initial.json | jq '.'
echo ""
echo "--- PM2 Daemon Info ---"
pm2 info pm2-logrotate || echo "pm2-logrotate not found"
echo ""
echo "--- PM2 Version ---"
pm2 --version
echo ""
echo "--- Node Version ---"
node --version
- name: PM2 Process Working Directories
run: |
echo "========================================="
echo "PROCESS WORKING DIRECTORIES"
echo "========================================="
pm2 jlist | jq -r '.[] | "Process: \(.name) | CWD: \(.pm2_env.pm_cwd) | Exists: \(if .pm2_env.pm_cwd then "checking..." else "N/A" end)"'
echo ""
echo "--- Checking if CWDs still exist ---"
pm2 jlist | jq -r '.[].pm2_env.pm_cwd' | while read cwd; do
if [ -d "$cwd" ]; then
echo "✅ EXISTS: $cwd"
else
echo "❌ MISSING: $cwd (THIS WILL CAUSE CRASHES!)"
fi
done
- name: PM2 Log Analysis
run: |
echo "========================================="
echo "PM2 LOG ANALYSIS"
echo "========================================="
echo ""
echo "--- PM2 Daemon Log (Last 100 Lines) ---"
tail -100 /home/gitea-runner/.pm2/pm2.log
echo ""
echo "--- Searching for ENOENT errors ---"
grep -i "ENOENT\|no such file or directory\|uv_cwd" /home/gitea-runner/.pm2/pm2.log || echo "No ENOENT errors found"
echo ""
echo "--- Searching for crash patterns ---"
grep -i "crash\|error\|exception" /home/gitea-runner/.pm2/pm2.log | tail -50 || echo "No crashes found"
- name: Identify All PM2-Managed Projects
run: |
echo "========================================="
echo "ALL PM2-MANAGED PROJECTS"
echo "========================================="
pm2 jlist | jq -r '.[] | "[\(.pm_id)] \(.name) - v\(.pm2_env.version // "N/A") - \(.pm2_env.status) - CWD: \(.pm2_env.pm_cwd)"'
echo ""
echo "--- Projects by CWD ---"
pm2 jlist | jq -r '.[].pm2_env.pm_cwd' | sort -u
echo ""
echo "--- Checking which projects might interfere ---"
for dir in /var/www/*; do
if [ -d "$dir" ]; then
echo ""
echo "Directory: $dir"
ls -la "$dir" | grep -E "ecosystem|package.json|node_modules" || echo " No PM2/Node files"
fi
done
- name: Monitor PM2 State Over Time
run: |
echo "========================================="
echo "PM2 STATE MONITORING"
echo "========================================="
echo "Monitoring PM2 for ${{ gitea.event.inputs.duration }} seconds..."
echo "Capturing state every ${{ gitea.event.inputs.capture_interval }} seconds"
echo ""
INTERVAL=${{ gitea.event.inputs.capture_interval }}
DURATION=${{ gitea.event.inputs.duration }}
COUNT=$((DURATION / INTERVAL))
for i in $(seq 1 $COUNT); do
echo "--- Capture $i at $(date) ---"
pm2 jlist | jq -r '.[] | "\(.name): \(.pm2_env.status) (restarts: \(.pm2_env.restart_time))"'
# Check for new crashes
CRASHED=$(pm2 jlist | jq '[.[] | select(.pm2_env.status == "errored" or .pm2_env.status == "stopped")] | length')
if [ "$CRASHED" -gt 0 ]; then
echo "⚠️ WARNING: $CRASHED process(es) in crashed state!"
pm2 jlist | jq -r '.[] | select(.pm2_env.status == "errored" or .pm2_env.status == "stopped") | " - \(.name): \(.pm2_env.status)"'
fi
sleep $INTERVAL
done
- name: PM2 Dump File Analysis
run: |
echo "========================================="
echo "PM2 DUMP FILE ANALYSIS"
echo "========================================="
echo "--- Dump file location ---"
ls -lh /home/gitea-runner/.pm2/dump.pm2
echo ""
echo "--- Dump file contents ---"
cat /home/gitea-runner/.pm2/dump.pm2 | jq '.'
echo ""
echo "--- Processes in dump ---"
cat /home/gitea-runner/.pm2/dump.pm2 | jq -r '.apps[] | "\(.name) at \(.pm_cwd)"'
- name: Check for Rogue Deployment Scripts
run: |
echo "========================================="
echo "DEPLOYMENT SCRIPT ANALYSIS"
echo "========================================="
echo "Checking for scripts that might delete directories..."
echo ""
for project in flyer-crawler stock-alert; do
for env in "" "-test"; do
DIR="/var/www/$project$env.projectium.com"
if [ -d "$DIR" ]; then
echo "--- Project: $project$env ---"
echo "Location: $DIR"
if [ -f "$DIR/.gitea/workflows/deploy-to-test.yml" ]; then
echo "Has deploy-to-test workflow"
grep -n "rsync.*--delete\|rm -rf" "$DIR/.gitea/workflows/deploy-to-test.yml" | head -5 || echo "No dangerous commands found"
fi
if [ -f "$DIR/.gitea/workflows/deploy-to-prod.yml" ]; then
echo "Has deploy-to-prod workflow"
grep -n "rsync.*--delete\|rm -rf" "$DIR/.gitea/workflows/deploy-to-prod.yml" | head -5 || echo "No dangerous commands found"
fi
echo ""
fi
done
done
- name: Generate Diagnostic Report
run: |
echo "========================================="
echo "DIAGNOSTIC SUMMARY"
echo "========================================="
echo ""
echo "Total PM2 processes: $(pm2 jlist | jq 'length')"
echo "Online: $(pm2 jlist | jq '[.[] | select(.pm2_env.status == "online")] | length')"
echo "Stopped: $(pm2 jlist | jq '[.[] | select(.pm2_env.status == "stopped")] | length')"
echo "Errored: $(pm2 jlist | jq '[.[] | select(.pm2_env.status == "errored")] | length')"
echo ""
echo "Flyer-crawler processes:"
pm2 jlist | jq -r '.[] | select(.name | contains("flyer-crawler")) | " \(.name): \(.pm2_env.status)"'
echo ""
echo "Stock-alert processes:"
pm2 jlist | jq -r '.[] | select(.name | contains("stock-alert")) | " \(.name): \(.pm2_env.status)"'
echo ""
echo "Other processes:"
pm2 jlist | jq -r '.[] | select(.name | contains("flyer-crawler") | not) | select(.name | contains("stock-alert") | not) | " \(.name): \(.pm2_env.status)"'
echo ""
echo "========================================="
echo "RECOMMENDATIONS"
echo "========================================="
echo "1. Check for missing CWDs (marked with ❌ above)"
echo "2. Review PM2 daemon log for ENOENT errors"
echo "3. Verify no deployments are running rsync --delete while processes are online"
echo "4. Consider separating PM2 daemons by user or using PM2 namespaces"

107
.gitea/workflows/restart-pm2.yml Normal file
View File

@@ -0,0 +1,107 @@
# .gitea/workflows/restart-pm2.yml
#
# Manual workflow to restart PM2 processes and verify their status.
# Useful for recovering from PM2 daemon crashes or process issues.
name: Restart PM2 Processes
on:
workflow_dispatch:
inputs:
environment:
description: 'Environment to restart (test, production, or both)'
required: true
default: 'test'
type: choice
options:
- test
- production
- both
jobs:
restart-pm2:
runs-on: projectium.com
steps:
- name: Validate Environment Input
run: |
echo "Restarting PM2 processes for environment: ${{ gitea.event.inputs.environment }}"
- name: Restart Test Environment
if: gitea.event.inputs.environment == 'test' || gitea.event.inputs.environment == 'both'
run: |
echo "=== RESTARTING TEST ENVIRONMENT ==="
cd /var/www/flyer-crawler-test.projectium.com
echo "--- Current PM2 State (Before Restart) ---"
pm2 list --namespace flyer-crawler-test
echo "--- Restarting Test Processes ---"
pm2 restart flyer-crawler-api-test flyer-crawler-worker-test flyer-crawler-analytics-worker-test --namespace flyer-crawler-test || {
echo "Restart failed, attempting to start processes..."
pm2 start ecosystem-test.config.cjs --namespace flyer-crawler-test
}
echo "--- Saving PM2 Process List ---"
pm2 save --namespace flyer-crawler-test
echo "--- Waiting 3 seconds for processes to stabilize ---"
sleep 3
echo "=== TEST ENVIRONMENT STATUS ==="
pm2 ps --namespace flyer-crawler-test
- name: Restart Production Environment
if: gitea.event.inputs.environment == 'production' || gitea.event.inputs.environment == 'both'
run: |
echo "=== RESTARTING PRODUCTION ENVIRONMENT ==="
cd /var/www/flyer-crawler.projectium.com
echo "--- Current PM2 State (Before Restart) ---"
pm2 list --namespace flyer-crawler-prod
echo "--- Restarting Production Processes ---"
pm2 restart flyer-crawler-api flyer-crawler-worker flyer-crawler-analytics-worker --namespace flyer-crawler-prod || {
echo "Restart failed, attempting to start processes..."
pm2 start ecosystem.config.cjs --namespace flyer-crawler-prod
}
echo "--- Saving PM2 Process List ---"
pm2 save --namespace flyer-crawler-prod
echo "--- Waiting 3 seconds for processes to stabilize ---"
sleep 3
echo "=== PRODUCTION ENVIRONMENT STATUS ==="
pm2 ps --namespace flyer-crawler-prod
- name: Final PM2 Status (All Processes)
run: |
echo "========================================="
echo "FINAL PM2 STATUS - ALL PROCESSES"
echo "========================================="
if [ "${{ gitea.event.inputs.environment }}" = "test" ]; then
echo "--- Test Namespace ---"
pm2 ps --namespace flyer-crawler-test
echo ""
echo "--- PM2 Logs (Last 20 Lines) ---"
pm2 logs --namespace flyer-crawler-test --lines 20 --nostream || echo "No logs available"
elif [ "${{ gitea.event.inputs.environment }}" = "production" ]; then
echo "--- Production Namespace ---"
pm2 ps --namespace flyer-crawler-prod
echo ""
echo "--- PM2 Logs (Last 20 Lines) ---"
pm2 logs --namespace flyer-crawler-prod --lines 20 --nostream || echo "No logs available"
else
echo "--- Test Namespace ---"
pm2 ps --namespace flyer-crawler-test
echo ""
echo "--- Production Namespace ---"
pm2 ps --namespace flyer-crawler-prod
echo ""
echo "--- PM2 Logs - Test (Last 10 Lines) ---"
pm2 logs --namespace flyer-crawler-test --lines 10 --nostream || echo "No logs available"
echo ""
echo "--- PM2 Logs - Production (Last 10 Lines) ---"
pm2 logs --namespace flyer-crawler-prod --lines 10 --nostream || echo "No logs available"
fi

100
.gitea/workflows/sync-test-version.yml Normal file
View File

@@ -0,0 +1,100 @@
# .gitea/workflows/sync-test-version.yml
#
# Lightweight workflow to sync version numbers from production to test environment.
# This runs after successful production deployments to update test PM2 metadata
# without re-running the full test suite, build, and deployment pipeline.
#
# Duration: ~30 seconds (vs 5+ minutes for full test deployment)
name: Sync Test Version
on:
workflow_run:
workflows: ["Deploy to Production"]
types:
- completed
branches:
- main
jobs:
sync-version:
runs-on: projectium.com
# Only run if the production deployment succeeded
if: ${{ gitea.event.workflow_run.conclusion == 'success' }}
steps:
- name: Checkout Latest Code
uses: actions/checkout@v3
with:
fetch-depth: 1 # Shallow clone, we only need latest commit
- name: Update Test Package Version
run: |
echo "========================================="
echo "SYNCING VERSION TO TEST ENVIRONMENT"
echo "========================================="
APP_PATH="/var/www/flyer-crawler-test.projectium.com"
# Get version from this repo's package.json
NEW_VERSION=$(node -p "require('./package.json').version")
echo "Production version: $NEW_VERSION"
# Get current test version
if [ -f "$APP_PATH/package.json" ]; then
CURRENT_VERSION=$(node -p "require('$APP_PATH/package.json').version")
echo "Current test version: $CURRENT_VERSION"
else
CURRENT_VERSION="unknown"
echo "Test package.json not found"
fi
# Only update if versions differ
if [ "$NEW_VERSION" != "$CURRENT_VERSION" ]; then
echo "Updating test package.json to version $NEW_VERSION..."
# Update just the version field in test's package.json
cd "$APP_PATH"
npm version "$NEW_VERSION" --no-git-tag-version --allow-same-version
echo "✅ Test package.json updated to $NEW_VERSION"
else
echo " Versions already match, no update needed"
fi
- name: Restart Test PM2 Processes
run: |
echo "Restarting test PM2 processes to refresh version metadata..."
# Restart with --update-env to pick up new package.json version
pm2 restart flyer-crawler-api-test flyer-crawler-worker-test flyer-crawler-analytics-worker-test --update-env && pm2 save
echo "✅ Test PM2 processes restarted and saved"
# Show current state
echo ""
echo "--- Current PM2 State ---"
pm2 list
# Verify version in PM2 metadata
echo ""
echo "--- Verifying Version in PM2 ---"
pm2 jlist | node -e "
try {
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const testProcesses = list.filter(p => p.name && p.name.endsWith('-test'));
testProcesses.forEach(p => {
console.log(p.name + ': v' + (p.pm2_env.version || 'unknown') + ' (' + p.pm2_env.status + ')');
});
} catch(e) {
console.error('Failed to parse PM2 output');
}
"
- name: Summary
run: |
echo "========================================="
echo "VERSION SYNC COMPLETE"
echo "========================================="
echo "Test environment version updated to match production"
echo "No tests run, no builds performed"
echo "Duration: ~30 seconds"

83
CLAUDE.md
View File

@@ -49,6 +49,8 @@ Out-of-sync = test failures.
**CRITICAL**: Production and test environments share the same PM2 daemon on the server.
**See also**: [PM2 Process Isolation Incidents](#pm2-process-isolation-incidents) for past incidents and response procedures.
| Environment | Processes | Config File |
| ----------- | -------------------------------------------------------------------------------------------- | --------------------------- |
| Production | `flyer-crawler-api`, `flyer-crawler-worker`, `flyer-crawler-analytics-worker` | `ecosystem.config.cjs` |
@@ -87,6 +89,54 @@ if (p.pm2_env.status === 'errored') {
}
```
### PM2 Save Requirement (CRITICAL)
**CRITICAL**: Every `pm2 start`, `pm2 restart`, `pm2 stop`, or `pm2 delete` command MUST be immediately followed by `pm2 save`.
Without `pm2 save`, processes become ephemeral and will disappear on:
- PM2 daemon restarts
- Server reboots
- Internal PM2 reconciliation events
**Pattern:**
```bash
# ✅ CORRECT - Save after every state change
pm2 start ecosystem.config.cjs && pm2 save
pm2 restart my-app && pm2 save
pm2 stop my-app && pm2 save
pm2 delete my-app && pm2 save
# ❌ WRONG - Missing save (processes become ephemeral)
pm2 start ecosystem.config.cjs
pm2 restart my-app
```
**In Cleanup Scripts:**
```javascript
// ✅ CORRECT - Save after cleanup loop completes
targetProcesses.forEach((p) => {
exec('pm2 delete ' + p.pm2_env.pm_id);
});
exec('pm2 save'); // Persist all deletions
// ❌ WRONG - Missing save
targetProcesses.forEach((p) => {
exec('pm2 delete ' + p.pm2_env.pm_id);
});
```
**Why This Matters:**
PM2 maintains an in-memory process list. The `pm2 save` command writes this list to `~/.pm2/dump.pm2`, which PM2 uses to resurrect processes after daemon restarts. Without it, your carefully managed process state is lost.
**See Also:**
- [ADR-014: Containerization and Deployment Strategy](docs/adr/0014-containerization-and-deployment-strategy.md)
- [ADR-061: PM2 Process Isolation Safeguards](docs/adr/0061-pm2-process-isolation-safeguards.md)
### Communication Style
Ask before assuming. Never assume:
@@ -288,6 +338,39 @@ Common issues with solutions:
**Full Details**: See test issues section at end of this document or [docs/development/TESTING.md](docs/development/TESTING.md)
### PM2 Process Isolation Incidents
**CRITICAL**: PM2 process cleanup scripts can affect all PM2 processes if not properly filtered.
**Incident**: 2026-02-17 Production Deployment (v0.15.0)
- **Impact**: ALL PM2 processes on production server were killed
- **Affected**: stock-alert.projectium.com and all other PM2-managed applications
- **Root Cause**: Under investigation (see [incident report](docs/operations/INCIDENT-2026-02-17-PM2-PROCESS-KILL.md))
- **Status**: Safeguards added to prevent recurrence
**Prevention Measures** (implemented):
1. Name-based filtering (exact match or pattern-based)
2. Pre-cleanup process list logging
3. Process count validation (abort if filtering all processes)
4. Explicit name verification in logs
5. Post-cleanup verification
6. Workflow version hash logging
**If PM2 Incident Occurs**:
- **DO NOT** attempt another deployment immediately
- Follow the [PM2 Incident Response Runbook](docs/operations/PM2-INCIDENT-RESPONSE.md)
- Manually restore affected processes
- Investigate workflow execution logs before next deployment
**Related Documentation**:
- [PM2 Process Isolation Requirements](#pm2-process-isolation-productiontest-servers) (existing section)
- [Incident Report 2026-02-17](docs/operations/INCIDENT-2026-02-17-PM2-PROCESS-KILL.md)
- [PM2 Incident Response Runbook](docs/operations/PM2-INCIDENT-RESPONSE.md)
### Git Bash Path Conversion (Windows)
Git Bash auto-converts Unix paths, breaking container commands.

4
README.md
View File

@@ -49,8 +49,8 @@ npm run dev
The application will be available at:
- **Frontend**: http://localhost:5173
- **Backend API**: http://localhost:3001
- **Frontend**: <http://localhost:5173>
- **Backend API**: <http://localhost:3001>
See [docs/getting-started/INSTALL.md](docs/getting-started/INSTALL.md) for detailed setup instructions including:

70
docs/MANUAL_TESTING_PLAN.md
View File

@@ -56,7 +56,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -90,7 +90,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -114,7 +114,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -138,7 +138,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -161,7 +161,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -189,7 +189,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -211,7 +211,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -234,7 +234,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -259,7 +259,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -284,7 +284,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -307,7 +307,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -330,7 +330,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -355,7 +355,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -379,7 +379,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -425,7 +425,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -448,7 +448,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -476,7 +476,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -502,7 +502,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -529,7 +529,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -555,7 +555,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -579,7 +579,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -612,7 +612,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -637,7 +637,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -656,7 +656,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -681,7 +681,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -705,7 +705,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -757,7 +757,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Measurements**: **********************\_\_\_**********************
**Measurements**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -765,7 +765,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
### Test 8.1: Chrome/Edge
**Browser Version**: ******\_\_\_******
**Browser Version**: **\*\***\_\_\_**\*\***
**Tests to Run**:
@@ -775,13 +775,13 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
### Test 8.2: Firefox
**Browser Version**: ******\_\_\_******
**Browser Version**: **\*\***\_\_\_**\*\***
**Tests to Run**:
@@ -791,13 +791,13 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
### Test 8.3: Safari (macOS/iOS)
**Browser Version**: ******\_\_\_******
**Browser Version**: **\*\***\_\_\_**\*\***
**Tests to Run**:
@@ -807,7 +807,7 @@ podman exec -it flyer-crawler-dev npm run dev:container
**Pass/Fail**: [ ]
**Notes**: **********************\_\_\_**********************
**Notes**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
---
@@ -849,8 +849,8 @@ podman exec -it flyer-crawler-dev npm run dev:container
## Sign-Off
**Tester Name**: **********************\_\_\_**********************
**Date Completed**: **********************\_\_\_**********************
**Tester Name**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
**Date Completed**: \***\*\*\*\*\***\*\*\***\*\*\*\*\***\_\_\_\***\*\*\*\*\***\*\*\***\*\*\*\*\***
**Overall Status**: [ ] PASS [ ] PASS WITH ISSUES [ ] FAIL
**Ready for Production**: [ ] YES [ ] NO [ ] WITH FIXES

6
docs/QUICK_TEST_CHECKLIST.md
View File

@@ -208,7 +208,7 @@ Press F12 or Ctrl+Shift+I
**Result**: [ ] PASS [ ] FAIL
**Errors found**: ******************\_\_\_******************
**Errors found**: **\*\*\*\***\*\***\*\*\*\***\_\_\_**\*\*\*\***\*\***\*\*\*\***
---
@@ -224,7 +224,7 @@ Check for:
**Result**: [ ] PASS [ ] FAIL
**Issues found**: ******************\_\_\_******************
**Issues found**: **\*\*\*\***\*\***\*\*\*\***\_\_\_**\*\*\*\***\*\***\*\*\*\***
---
@@ -272,4 +272,4 @@ Check for:
2. ***
3. ***
**Sign-off**: ********\_\_\_******** **Date**: ****\_\_\_****
**Sign-off**: **\*\*\*\***\_\_\_**\*\*\*\*** **Date**: \***\*\_\_\_\*\***

10
docs/README.md
View File

@@ -47,6 +47,16 @@ Production operations and deployment:
- [Logstash Troubleshooting](operations/LOGSTASH-TROUBLESHOOTING.md) - Debugging logs
- [Monitoring](operations/MONITORING.md) - Bugsink, health checks, observability
**PM2 Management**:
- [PM2 Namespace Completion Report](operations/PM2-NAMESPACE-COMPLETION-REPORT.md) - PM2 namespace implementation project summary
- [PM2 Incident Response Runbook](operations/PM2-INCIDENT-RESPONSE.md) - Step-by-step procedures for PM2 incidents
- [PM2 Crash Debugging](operations/PM2-CRASH-DEBUGGING.md) - Troubleshooting PM2 crashes
**Incident Reports**:
- [2026-02-17 PM2 Process Kill](operations/INCIDENT-2026-02-17-PM2-PROCESS-KILL.md) - ALL PM2 processes killed during v0.15.0 deployment (Mitigated)
**NGINX Reference Configs** (in repository root):
- `etc-nginx-sites-available-flyer-crawler.projectium.com` - Production server config

44
docs/adr/0009-caching-strategy-for-read-heavy-operations.md
View File

@@ -39,15 +39,15 @@ All cache operations are fail-safe - cache failures do not break the application
Different data types use different TTL values based on volatility:
| Data Type | TTL | Rationale |
| ------------------- | --------- | -------------------------------------- |
| Brands/Stores | 1 hour | Rarely changes, safe to cache longer |
| Flyer lists | 5 minutes | Changes when new flyers are added |
| Individual flyers | 10 minutes| Stable once created |
| Flyer items | 10 minutes| Stable once created |
| Statistics | 5 minutes | Can be slightly stale |
| Frequent sales | 15 minutes| Aggregated data, updated periodically |
| Categories | 1 hour | Rarely changes |
| Data Type | TTL | Rationale |
| ----------------- | ---------- | ------------------------------------- |
| Brands/Stores | 1 hour | Rarely changes, safe to cache longer |
| Flyer lists | 5 minutes | Changes when new flyers are added |
| Individual flyers | 10 minutes | Stable once created |
| Flyer items | 10 minutes | Stable once created |
| Statistics | 5 minutes | Can be slightly stale |
| Frequent sales | 15 minutes | Aggregated data, updated periodically |
| Categories | 1 hour | Rarely changes |
### Cache Key Strategy
@@ -64,11 +64,11 @@ Cache keys follow a consistent prefix pattern for pattern-based invalidation:
The following repository methods implement server-side caching:
| Method | Cache Key Pattern | TTL |
| ------ | ----------------- | --- |
| `FlyerRepository.getAllBrands()` | `cache:brands` | 1 hour |
| `FlyerRepository.getFlyers()` | `cache:flyers:{limit}:{offset}` | 5 minutes |
| `FlyerRepository.getFlyerItems()` | `cache:flyer-items:{flyerId}` | 10 minutes |
| Method | Cache Key Pattern | TTL |
| --------------------------------- | ------------------------------- | ---------- |
| `FlyerRepository.getAllBrands()` | `cache:brands` | 1 hour |
| `FlyerRepository.getFlyers()` | `cache:flyers:{limit}:{offset}` | 5 minutes |
| `FlyerRepository.getFlyerItems()` | `cache:flyer-items:{flyerId}` | 10 minutes |
### Cache Invalidation
@@ -86,14 +86,14 @@ The following repository methods implement server-side caching:
TanStack React Query provides client-side caching with configurable stale times:
| Query Type | Stale Time |
| ----------------- | ----------- |
| Categories | 1 hour |
| Master Items | 10 minutes |
| Flyer Items | 5 minutes |
| Flyers | 2 minutes |
| Shopping Lists | 1 minute |
| Activity Log | 30 seconds |
| Query Type | Stale Time |
| -------------- | ---------- |
| Categories | 1 hour |
| Master Items | 10 minutes |
| Flyer Items | 5 minutes |
| Flyers | 2 minutes |
| Shopping Lists | 1 minute |
| Activity Log | 30 seconds |
### Multi-Layer Cache Architecture

28
docs/adr/0012-frontend-component-library-and-design-system.md
View File

@@ -80,13 +80,13 @@ src/
**Common Utility Patterns**:
| Pattern | Classes |
| ------- | ------- |
| Card container | `bg-white dark:bg-gray-800 rounded-lg shadow-md p-6` |
| Primary button | `bg-brand-primary hover:bg-brand-dark text-white rounded-lg px-4 py-2` |
| Secondary button | `bg-gray-100 dark:bg-gray-700 text-gray-700 dark:text-gray-200` |
| Input field | `border border-gray-300 dark:border-gray-600 rounded-md px-3 py-2` |
| Focus ring | `focus:outline-none focus:ring-2 focus:ring-brand-primary` |
| Pattern | Classes |
| ---------------- | ---------------------------------------------------------------------- |
| Card container | `bg-white dark:bg-gray-800 rounded-lg shadow-md p-6` |
| Primary button | `bg-brand-primary hover:bg-brand-dark text-white rounded-lg px-4 py-2` |
| Secondary button | `bg-gray-100 dark:bg-gray-700 text-gray-700 dark:text-gray-200` |
| Input field | `border border-gray-300 dark:border-gray-600 rounded-md px-3 py-2` |
| Focus ring | `focus:outline-none focus:ring-2 focus:ring-brand-primary` |
### Color System
@@ -187,13 +187,13 @@ export const CheckCircleIcon: React.FC<IconProps> = ({ title, ...props }) => (
**Context Providers** (see ADR-005):
| Provider | Purpose |
| -------- | ------- |
| `AuthProvider` | Authentication state |
| `ModalProvider` | Modal open/close state |
| `FlyersProvider` | Flyer data |
| `MasterItemsProvider` | Grocery items |
| `UserDataProvider` | User-specific data |
| Provider | Purpose |
| --------------------- | ---------------------- |
| `AuthProvider` | Authentication state |
| `ModalProvider` | Modal open/close state |
| `FlyersProvider` | Flyer data |
| `MasterItemsProvider` | Grocery items |
| `UserDataProvider` | User-specific data |
**Provider Hierarchy** in `AppProviders.tsx`:

29
docs/adr/0014-containerization-and-deployment-strategy.md
View File

@@ -249,26 +249,39 @@ module.exports = {
### PM2 Commands Reference
**CRITICAL**: Every `pm2 start`, `pm2 restart`, `pm2 stop`, or `pm2 delete` command MUST be immediately followed by `pm2 save`. Without this, processes become ephemeral and will disappear on PM2 daemon restarts, server reboots, or internal reconciliation events.
```bash
# Start/reload with environment
# ✅ CORRECT - Start/reload with environment and save
pm2 startOrReload ecosystem.config.cjs --env production --update-env && pm2 save
# ✅ CORRECT - Restart and save
pm2 restart flyer-crawler-api && pm2 save
# ✅ CORRECT - Stop and save
pm2 stop flyer-crawler-api && pm2 save
# ✅ CORRECT - Delete and save
pm2 delete flyer-crawler-api && pm2 save
# ❌ WRONG - Missing save (processes become ephemeral)
pm2 startOrReload ecosystem.config.cjs --env production --update-env
# Save process list for startup
pm2 save
# View logs
# View logs (read-only operation, no save needed)
pm2 logs flyer-crawler-api --lines 50
# Monitor processes
# Monitor processes (read-only operation, no save needed)
pm2 monit
# List all processes
# List all processes (read-only operation, no save needed)
pm2 list
# Describe process details
# Describe process details (read-only operation, no save needed)
pm2 describe flyer-crawler-api
```
**Why This Matters**: PM2 maintains an in-memory process list. The `pm2 save` command writes this list to `~/.pm2/dump.pm2`, which PM2 uses to resurrect processes after daemon restarts. Without it, your carefully managed process state is lost.
### Resource Limits
| Process | Memory Limit | Restart Delay | Kill Timeout |

76
docs/adr/0016-api-security-hardening.md
View File

@@ -45,15 +45,15 @@ Using **helmet v8.x** configured in `server.ts` as the first middleware after ap
**Security Headers Applied**:
| Header | Configuration | Purpose |
| ------ | ------------- | ------- |
| Content-Security-Policy | Custom directives | Prevents XSS, code injection |
| Strict-Transport-Security | 1 year, includeSubDomains, preload | Forces HTTPS connections |
| X-Content-Type-Options | nosniff | Prevents MIME type sniffing |
| X-Frame-Options | DENY | Prevents clickjacking |
| X-XSS-Protection | 0 (disabled) | Deprecated, CSP preferred |
| Referrer-Policy | strict-origin-when-cross-origin | Controls referrer information |
| Cross-Origin-Resource-Policy | cross-origin | Allows external resource loading |
| Header | Configuration | Purpose |
| ---------------------------- | ---------------------------------- | -------------------------------- |
| Content-Security-Policy | Custom directives | Prevents XSS, code injection |
| Strict-Transport-Security | 1 year, includeSubDomains, preload | Forces HTTPS connections |
| X-Content-Type-Options | nosniff | Prevents MIME type sniffing |
| X-Frame-Options | DENY | Prevents clickjacking |
| X-XSS-Protection | 0 (disabled) | Deprecated, CSP preferred |
| Referrer-Policy | strict-origin-when-cross-origin | Controls referrer information |
| Cross-Origin-Resource-Policy | cross-origin | Allows external resource loading |
**Content Security Policy Directives**:
@@ -87,35 +87,35 @@ Using **express-rate-limit v8.2.1** with a centralized configuration in `src/con
```typescript
const standardConfig = {
standardHeaders: true, // Sends RateLimit-* headers
standardHeaders: true, // Sends RateLimit-* headers
legacyHeaders: false,
skip: shouldSkipRateLimit, // Disabled in test environment
skip: shouldSkipRateLimit, // Disabled in test environment
};
```
**Rate Limiters by Category**:
| Category | Limiter | Window | Max Requests |
| -------- | ------- | ------ | ------------ |
| **Authentication** | loginLimiter | 15 min | 5 |
| | registerLimiter | 1 hour | 5 |
| | forgotPasswordLimiter | 15 min | 5 |
| | resetPasswordLimiter | 15 min | 10 |
| | refreshTokenLimiter | 15 min | 20 |
| | logoutLimiter | 15 min | 10 |
| **Public/User Read** | publicReadLimiter | 15 min | 100 |
| | userReadLimiter | 15 min | 100 |
| | userUpdateLimiter | 15 min | 100 |
| **Sensitive Operations** | userSensitiveUpdateLimiter | 1 hour | 5 |
| | adminTriggerLimiter | 15 min | 30 |
| **AI/Costly** | aiGenerationLimiter | 15 min | 20 |
| | geocodeLimiter | 1 hour | 100 |
| | priceHistoryLimiter | 15 min | 50 |
| **Uploads** | adminUploadLimiter | 15 min | 20 |
| | aiUploadLimiter | 15 min | 10 |
| | batchLimiter | 15 min | 50 |
| **Tracking** | trackingLimiter | 15 min | 200 |
| | reactionToggleLimiter | 15 min | 150 |
| Category | Limiter | Window | Max Requests |
| ------------------------ | -------------------------- | ------ | ------------ |
| **Authentication** | loginLimiter | 15 min | 5 |
| | registerLimiter | 1 hour | 5 |
| | forgotPasswordLimiter | 15 min | 5 |
| | resetPasswordLimiter | 15 min | 10 |
| | refreshTokenLimiter | 15 min | 20 |
| | logoutLimiter | 15 min | 10 |
| **Public/User Read** | publicReadLimiter | 15 min | 100 |
| | userReadLimiter | 15 min | 100 |
| | userUpdateLimiter | 15 min | 100 |
| **Sensitive Operations** | userSensitiveUpdateLimiter | 1 hour | 5 |
| | adminTriggerLimiter | 15 min | 30 |
| **AI/Costly** | aiGenerationLimiter | 15 min | 20 |
| | geocodeLimiter | 1 hour | 100 |
| | priceHistoryLimiter | 15 min | 50 |
| **Uploads** | adminUploadLimiter | 15 min | 20 |
| | aiUploadLimiter | 15 min | 10 |
| | batchLimiter | 15 min | 50 |
| **Tracking** | trackingLimiter | 15 min | 200 |
| | reactionToggleLimiter | 15 min | 150 |
**Test Environment Handling**:
@@ -140,7 +140,7 @@ sanitizeFilename(filename: string): string
**Multer Configuration** (`src/middleware/multer.middleware.ts`):
- MIME type validation via `imageFileFilter` (only image/* allowed)
- MIME type validation via `imageFileFilter` (only image/\* allowed)
- File size limits (2MB for logos, configurable per upload type)
- Unique filenames using timestamps + random suffixes
- User-scoped storage paths
@@ -203,10 +203,12 @@ Per-request structured logging (ADR-004):
```typescript
import cors from 'cors';
app.use(cors({
origin: process.env.ALLOWED_ORIGINS?.split(',') || 'http://localhost:3000',
credentials: true,
}));
app.use(
cors({
origin: process.env.ALLOWED_ORIGINS?.split(',') || 'http://localhost:3000',
credentials: true,
}),
);
```
2. **Redis-backed rate limiting**: For distributed deployments, use `rate-limit-redis` store

6
docs/adr/0027-standardized-naming-convention-for-ai-and-database-types.md
View File

@@ -16,12 +16,12 @@ We will adopt a hybrid naming convention strategy to explicitly distinguish betw
1. **Database and AI Types (`snake_case`)**:
Interfaces, Type definitions, and Zod schemas that represent raw database rows or direct AI responses **MUST** use `snake_case`.
- *Examples*: `AiFlyerDataSchema`, `ExtractedFlyerItemSchema`, `FlyerInsert`.
- *Reasoning*: This avoids unnecessary mapping layers when inserting data into the database or parsing AI output. It serves as a visual cue that the data is "raw", "external", or destined for persistence.
- _Examples_: `AiFlyerDataSchema`, `ExtractedFlyerItemSchema`, `FlyerInsert`.
- _Reasoning_: This avoids unnecessary mapping layers when inserting data into the database or parsing AI output. It serves as a visual cue that the data is "raw", "external", or destined for persistence.
2. **Internal Application Logic (`camelCase`)**:
Variables, function arguments, and processed data structures used within the application logic (Service layer, UI components, utility functions) **MUST** use `camelCase`.
- *Reasoning*: This adheres to standard JavaScript/TypeScript practices and maintains consistency with the rest of the ecosystem (React, etc.).
- _Reasoning_: This adheres to standard JavaScript/TypeScript practices and maintains consistency with the rest of the ecosystem (React, etc.).
3. **Boundary Handling**:
- For background jobs that primarily move data from AI to DB, preserving `snake_case` is preferred to minimize transformation logic.

224
docs/adr/0061-pm2-process-isolation-safeguards.md Normal file
View File

@@ -0,0 +1,224 @@
# ADR-061: PM2 Process Isolation Safeguards
## Status
Accepted
## Context
On 2026-02-17, a critical incident occurred during v0.15.0 production deployment where ALL PM2 processes on the production server were terminated, not just flyer-crawler processes. This caused unplanned downtime for multiple applications including `stock-alert.projectium.com`.
### Problem Statement
Production and test environments share the same PM2 daemon on the server. This creates a risk where deployment scripts that operate on PM2 processes can accidentally affect processes belonging to other applications or environments.
### Pre-existing Controls
Prior to the incident, PM2 process isolation controls were already in place (commit `b6a62a0`):
- Production workflows used whitelist-based filtering with explicit process names
- Test workflows filtered by `-test` suffix pattern
- CLAUDE.md documented the prohibition of `pm2 stop all`, `pm2 delete all`, and `pm2 restart all`
Despite these controls being present in the codebase and included in v0.15.0, the incident still occurred. The leading hypothesis is that the Gitea runner executed a cached/older version of the workflow file.
### Requirements
1. Prevent accidental deletion of processes from other applications or environments
2. Provide audit trail for forensic analysis when incidents occur
3. Enable automatic abort when dangerous conditions are detected
4. Maintain visibility into PM2 operations during deployment
5. Work correctly even if the filtering logic itself is bypassed
## Decision
Implement a defense-in-depth strategy with 5 layers of safeguards in all deployment workflows that interact with PM2 processes.
### Safeguard Layers
#### Layer 1: Workflow Metadata Logging
Log workflow execution metadata at the start of each deployment:
```bash
echo "=== WORKFLOW METADATA ==="
echo "Workflow file: deploy-to-prod.yml"
echo "Workflow file hash: $(sha256sum .gitea/workflows/deploy-to-prod.yml | cut -d' ' -f1)"
echo "Git commit: $(git rev-parse HEAD)"
echo "Git branch: $(git rev-parse --abbrev-ref HEAD)"
echo "Timestamp: $(date -u '+%Y-%m-%d %H:%M:%S UTC')"
echo "Actor: ${{ gitea.actor }}"
echo "=== END METADATA ==="
```
**Purpose**: Enables verification of which workflow version was actually executed.
#### Layer 2: Pre-Cleanup PM2 State Logging
Capture full PM2 process list before any modifications:
```bash
echo "=== PRE-CLEANUP PM2 STATE ==="
pm2 jlist
echo "=== END PRE-CLEANUP STATE ==="
```
**Purpose**: Provides forensic evidence of system state before cleanup.
#### Layer 3: Process Count Validation (SAFETY ABORT)
Abort deployment if the filter would delete ALL processes and there are more than 3 processes total:
```javascript
const totalProcesses = list.length;
if (targetProcesses.length === totalProcesses && totalProcesses > 3) {
console.error('SAFETY ABORT: Filter would delete ALL processes!');
console.error(
'Total processes: ' + totalProcesses + ', Target processes: ' + targetProcesses.length,
);
process.exit(1);
}
```
**Purpose**: Catches filter bugs or unexpected conditions automatically.
**Threshold Rationale**: A threshold of 3 allows normal operation when only the expected processes exist (API, Worker, Analytics Worker) while catching anomalies when the server hosts additional applications.
#### Layer 4: Explicit Name Verification
Log the exact name, status, and PM2 ID of each process that will be affected:
```javascript
console.log('Found ' + targetProcesses.length + ' PRODUCTION processes to clean:');
targetProcesses.forEach((p) => {
console.log(
' - ' + p.name + ' (status: ' + p.pm2_env.status + ', pm_id: ' + p.pm2_env.pm_id + ')',
);
});
```
**Purpose**: Provides clear visibility into cleanup operations.
#### Layer 5: Post-Cleanup Verification
After cleanup, verify environment isolation was maintained:
```bash
echo "=== POST-CLEANUP VERIFICATION ==="
pm2 jlist | node -e "
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const prodProcesses = list.filter(p => p.name && p.name.startsWith('flyer-crawler-') && !p.name.endsWith('-test'));
console.log('Production processes after cleanup: ' + prodProcesses.length);
"
echo "=== END POST-CLEANUP VERIFICATION ==="
```
**Purpose**: Immediately identifies cross-environment contamination.
#### Layer 6: PM2 Process List Persistence
**CRITICAL**: Save the PM2 process list after every state-changing operation:
```bash
# After any pm2 start/stop/restart/delete operation
pm2 save
# Example: After cleanup loop completes
targetProcesses.forEach(p => {
exec('pm2 delete ' + p.pm2_env.pm_id);
});
exec('pm2 save'); // Persist all deletions
```
**Purpose**: Ensures PM2 process state persists across daemon restarts, server reboots, and internal reconciliation events.
**Why This Matters**: PM2 maintains an in-memory process list. Without `pm2 save`, processes become ephemeral:
- Daemon restart → All unsaved processes disappear
- Server reboot → Process list reverts to last saved state
- PM2 internal reconciliation → Unsaved processes may be lost
**Pattern**: Every `pm2 start`, `pm2 restart`, `pm2 stop`, or `pm2 delete` MUST be followed by `pm2 save`.
## Consequences
### Positive
1. **Automatic Prevention**: Layer 3 (process count validation) can prevent catastrophic process deletion automatically, without human intervention.
2. **Forensic Capability**: Layers 1 and 2 provide the data needed to determine root cause after an incident.
3. **Visibility**: Layers 4 and 5 make PM2 operations transparent in workflow logs.
4. **Fail-Safe Design**: Even if individual layers fail, other layers provide backup protection.
5. **Non-Breaking**: Safeguards are additive and do not change the existing filtering logic.
### Negative
1. **Increased Log Volume**: Additional logging increases workflow output size.
2. **Minor Performance Impact**: Extra PM2 commands add a few seconds to deployment time.
3. **Threshold Tuning**: The threshold of 3 may need adjustment if the expected process count changes.
### Neutral
1. **Root Cause Still Unknown**: These safeguards mitigate the risk but do not definitively explain why the original incident occurred.
2. **No Structural Changes**: The underlying architecture (shared PM2 daemon) remains unchanged.
## Alternatives Considered
### PM2 Namespaces
PM2 supports namespaces to isolate groups of processes. This would provide complete isolation but requires:
- Changes to ecosystem config files
- Changes to all PM2 commands in workflows
- Potential breaking changes to monitoring and log aggregation
**Decision**: Deferred for future consideration. Current safeguards provide adequate protection.
### Separate PM2 Daemons
Running a separate PM2 daemon per application would eliminate cross-application risk entirely.
**Decision**: Not implemented due to increased operational complexity and the current safeguards being sufficient.
### Deployment Locks
Implementing mutex-style locks to prevent concurrent deployments could prevent race conditions.
**Decision**: Not implemented as the current safeguards address the identified risk. May be reconsidered if concurrent deployment issues are observed.
## Implementation
### Files Modified
| File | Changes |
| ------------------------------------------ | ---------------------- |
| `.gitea/workflows/deploy-to-prod.yml` | All 5 safeguard layers |
| `.gitea/workflows/deploy-to-test.yml` | All 5 safeguard layers |
| `.gitea/workflows/manual-deploy-major.yml` | All 5 safeguard layers |
### Validation
A standalone test file validates the safeguard logic:
- **File**: `tests/qa/test-pm2-safeguard-logic.js`
- **Coverage**: 11 scenarios covering normal operations and dangerous edge cases
- **Result**: All tests pass
## Related Documentation
- [Incident Report: 2026-02-17](../operations/INCIDENT-2026-02-17-PM2-PROCESS-KILL.md)
- [PM2 Incident Response Runbook](../operations/PM2-INCIDENT-RESPONSE.md)
- [Session Summary](../archive/sessions/PM2_SAFEGUARDS_SESSION_2026-02-17.md)
- [CLAUDE.md - PM2 Process Isolation](../../CLAUDE.md#pm2-process-isolation-productiontest-servers)
- [ADR-014: Containerization and Deployment Strategy](0014-containerization-and-deployment-strategy.md)
## References
- PM2 Documentation: https://pm2.keymetrics.io/docs/usage/application-declaration/
- Defense in Depth: https://en.wikipedia.org/wiki/Defense_in_depth_(computing)

203
docs/adr/0062-lightweight-version-sync-workflow.md Normal file
View File

@@ -0,0 +1,203 @@
# ADR-0062: Lightweight Version Sync Workflow
**Status:** Accepted
**Date:** 2026-02-18
**Decision Makers:** Development Team
**Related:** ADR-061 (PM2 Process Isolation Safeguards)
## Context
After successful production deployments, the version number in `package.json` is bumped and pushed back to the `main` branch. This triggered the full test deployment workflow (`deploy-to-test.yml`), which includes:
- `npm ci` (dependency installation)
- TypeScript type-checking
- Prettier formatting
- ESLint linting
- Unit tests (~150 tests)
- Integration tests (~50 tests)
- React build with source maps
- Full rsync deployment
- PM2 process restart
**Problem:** Running the complete 5-7 minute test suite just to update a 10KB `package.json` file was wasteful:
| Resource | Waste |
| -------------- | ------------------------------------- |
| **Duration** | 5-7 minutes (vs 30 seconds needed) |
| **CPU** | ~95% unnecessary (full test suite) |
| **File I/O** | 99.8% unnecessary (only need 1 file) |
| **CI Queue** | Blocked other workflows unnecessarily |
| **Time/month** | ~20 minutes wasted on version syncs |
The code being tested had already passed the full test suite when originally pushed to `main`. Re-running tests for a version number change provided no additional value.
## Decision
Implement a lightweight **version-sync-only workflow** that:
1. **Triggers automatically** after successful production deployments (via `workflow_run`)
2. **Updates only** the `package.json` version in the test deployment directory
3. **Restarts PM2** with `--update-env` to refresh version metadata
4. **Completes in ~30 seconds** instead of 5-7 minutes
### Architecture
```yaml
# .gitea/workflows/sync-test-version.yml
on:
workflow_run:
workflows: ['Deploy to Production']
types: [completed]
branches: [main]
jobs:
sync-version:
if: ${{ gitea.event.workflow_run.conclusion == 'success' }}
steps:
- Checkout latest main
- Update test package.json version
- PM2 restart with --update-env
- Verify version in PM2 metadata
```
**Key Points:**
- `deploy-to-test.yml` remains **unchanged** (runs normally for code changes)
- `deploy-to-prod.yml` remains **unchanged** (no explicit trigger needed)
- `workflow_run` automatically triggers after production deployment
- Non-blocking: production success doesn't depend on version sync
## Consequences
### Positive
**90% faster** version synchronization (30 sec vs 5-7 min)
**95% less CPU** usage (no test suite execution)
**99.8% less file I/O** (only package.json updated)
**Cleaner separation** of concerns (version sync vs full deployment)
**No workflow file pollution** with conditionals
**Saves ~20 minutes/month** of CI time
### Negative
⚠️ Test environment version could briefly lag behind production (30 second window)
⚠️ Additional workflow file to maintain
⚠️ PM2 version metadata relies on `--update-env` working correctly
### Neutral
- Full test deployment still runs for actual code changes (as designed)
- Version numbers remain synchronized (just via different workflow)
- Same end state, different path
## Alternatives Considered
### 1. Add Conditionals to `deploy-to-test.yml`
**Approach:** Detect version bump commits and skip most steps
**Rejected because:**
- Pollutes workflow with 20+ `if:` conditionals
- Makes workflow complex and brittle
- Still queues a workflow run (even if it exits early)
- Harder to maintain and debug
### 2. Manual Production Deployments
**Approach:** Make production `workflow_dispatch` only (manual trigger)
**Rejected because:**
- Removes automation benefits
- Requires human intervention for every production deploy
- Doesn't align with CI/CD best practices
- Slows down deployment velocity
### 3. Don't Sync Test Versions
**Approach:** Accept that test version lags behind production
**Rejected because:**
- Version numbers become meaningless in test
- Harder to correlate test issues with production releases
- Loses visibility into what's deployed where
### 4. Release Tag-Based Production Deployments
**Approach:** Only deploy production on release tags, not on every push
**Rejected because:**
- Changes current deployment cadence
- Adds manual release step overhead
- Doesn't solve the fundamental problem (version sync still needed)
## Implementation
### Files Created
- `.gitea/workflows/sync-test-version.yml` - Lightweight version sync workflow
### Files Modified
- None (clean separation, no modifications to existing workflows)
### Configuration
No additional secrets or environment variables required. Uses existing PM2 configuration and test deployment paths.
## Verification
After implementation:
1. **Production deployment** completes and bumps version
2. **Version sync workflow** triggers automatically within seconds
3. **Test PM2 processes** restart with updated version metadata
4. **PM2 list** shows matching versions across environments
```bash
# Verify version sync worked
pm2 jlist | jq '.[] | select(.name | endsWith("-test")) | {name, version: .pm2_env.version}'
```
Expected output:
```json
{
"name": "flyer-crawler-api-test",
"version": "0.16.2"
}
{
"name": "flyer-crawler-worker-test",
"version": "0.16.2"
}
```
## Monitoring
Track workflow execution times:
- Before: `deploy-to-test.yml` duration after prod deploys (~5-7 min)
- After: `sync-test-version.yml` duration (~30 sec)
## Rollback Plan
If version sync fails or causes issues:
1. Remove `sync-test-version.yml`
2. Previous behavior automatically resumes (full test deployment on version bumps)
3. No data loss or configuration changes needed
## References
- Inspired by similar optimization in `stock-alert` project (commit `021f9c8`)
- Related: ADR-061 for PM2 process isolation and deployment safety
- Workflow pattern: GitHub Actions `workflow_run` trigger documentation
## Notes
This optimization follows the principle: **"Don't test what you've already tested."**
The code was validated when originally pushed to `main`. Version number changes are metadata updates, not code changes. Treating them differently is an architectural improvement, not a shortcut.

2
docs/adr/index.md
View File

@@ -56,6 +56,8 @@ This directory contains a log of the architectural decisions made for the Flyer
**[ADR-038](./0038-graceful-shutdown-pattern.md)**: Graceful Shutdown Pattern (Accepted)
**[ADR-053](./0053-worker-health-checks.md)**: Worker Health Checks and Stalled Job Monitoring (Accepted)
**[ADR-054](./0054-bugsink-gitea-issue-sync.md)**: Bugsink to Gitea Issue Synchronization (Proposed)
**[ADR-061](./0061-pm2-process-isolation-safeguards.md)**: PM2 Process Isolation Safeguards (Accepted)
**[ADR-062](./0062-lightweight-version-sync-workflow.md)**: Lightweight Version Sync Workflow (Accepted)
## 7. Frontend / User Interface

377
docs/archive/sessions/PM2_SAFEGUARDS_SESSION_2026-02-17.md Normal file
View File

@@ -0,0 +1,377 @@
# PM2 Process Isolation Safeguards Project
**Session Date**: 2026-02-17
**Status**: Completed
**Triggered By**: Critical production incident during v0.15.0 deployment
---
## Executive Summary
On 2026-02-17, a critical incident occurred during v0.15.0 production deployment where ALL PM2 processes on the production server were killed, not just the flyer-crawler processes. This caused unplanned downtime for multiple applications including `stock-alert.projectium.com`.
Despite PM2 process isolation fixes already being in place (commit `b6a62a0`), the incident still occurred. Investigation suggests the Gitea runner may have executed a cached/older version of the workflow files. In response, we implemented a comprehensive defense-in-depth strategy with 5 layers of safeguards across all deployment workflows.
---
## Incident Background
### What Happened
| Aspect | Detail |
| --------------------- | ------------------------------------------------------- |
| **Date/Time** | 2026-02-17 ~07:40 UTC |
| **Trigger** | v0.15.0 production deployment via `deploy-to-prod.yml` |
| **Impact** | ALL PM2 processes killed (all environments) |
| **Collateral Damage** | `stock-alert.projectium.com` and other PM2-managed apps |
| **Severity** | P1 - Critical |
### Key Mystery
The PM2 process isolation fix was already implemented in commit `b6a62a0` (2026-02-13) and was included in v0.15.0. The fix correctly used whitelist-based filtering:
```javascript
const prodProcesses = [
'flyer-crawler-api',
'flyer-crawler-worker',
'flyer-crawler-analytics-worker',
];
list.forEach((p) => {
if (
(p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') &&
prodProcesses.includes(p.name)
) {
exec('pm2 delete ' + p.pm2_env.pm_id);
}
});
```
**Hypothesis**: Gitea runner executed a cached older version of the workflow file that did not contain the fix.
---
## Solution: Defense-in-Depth Safeguards
Rather than relying solely on the filter logic (which may be correct but not executed), we implemented 5 layers of safeguards that provide visibility, validation, and automatic abort capabilities.
### Safeguard Layers
| Layer | Name | Purpose |
| ----- | --------------------------------- | ------------------------------------------------------- |
| 1 | **Workflow Metadata Logging** | Audit trail of which workflow version actually executed |
| 2 | **Pre-Cleanup PM2 State Logging** | Capture full process list before any modifications |
| 3 | **Process Count Validation** | SAFETY ABORT if filter would delete ALL processes |
| 4 | **Explicit Name Verification** | Log exactly which processes will be affected |
| 5 | **Post-Cleanup Verification** | Verify environment isolation after cleanup |
### Layer Details
#### Layer 1: Workflow Metadata Logging
Logs at the start of deployment:
- Workflow file name
- SHA-256 hash of the workflow file
- Git commit being deployed
- Git branch
- Timestamp (UTC)
- Actor (who triggered the deployment)
**Purpose**: If an incident occurs, we can verify whether the executed workflow matches the repository version.
```bash
echo "=== WORKFLOW METADATA ==="
echo "Workflow file: deploy-to-prod.yml"
echo "Workflow file hash: $(sha256sum .gitea/workflows/deploy-to-prod.yml | cut -d' ' -f1)"
echo "Git commit: $(git rev-parse HEAD)"
echo "Timestamp: $(date -u '+%Y-%m-%d %H:%M:%S UTC')"
echo "Actor: ${{ gitea.actor }}"
echo "=== END METADATA ==="
```
#### Layer 2: Pre-Cleanup PM2 State Logging
Captures full PM2 process list in JSON format before any modifications.
**Purpose**: Provides forensic evidence of what processes existed before cleanup began.
```bash
echo "=== PRE-CLEANUP PM2 STATE ==="
pm2 jlist
echo "=== END PRE-CLEANUP STATE ==="
```
#### Layer 3: Process Count Validation (SAFETY ABORT)
The most critical safeguard. Aborts the entire deployment if the filter would delete ALL processes and there are more than 3 processes total.
**Purpose**: Catches filter bugs or unexpected conditions that would result in catastrophic process deletion.
```javascript
// SAFEGUARD 1: Process count validation
const totalProcesses = list.length;
if (targetProcesses.length === totalProcesses && totalProcesses > 3) {
console.error('SAFETY ABORT: Filter would delete ALL processes!');
console.error(
'Total processes: ' + totalProcesses + ', Target processes: ' + targetProcesses.length,
);
console.error('This indicates a potential filter bug. Aborting cleanup.');
process.exit(1);
}
```
**Threshold Rationale**: The threshold of 3 allows normal operation when only the 3 expected processes exist (API, Worker, Analytics Worker) while catching anomalies when the server hosts more applications.
#### Layer 4: Explicit Name Verification
Logs the exact name, status, and PM2 ID of each process that will be deleted.
**Purpose**: Provides clear visibility into what the cleanup operation will actually do.
```javascript
console.log('Found ' + targetProcesses.length + ' PRODUCTION processes to clean:');
targetProcesses.forEach((p) => {
console.log(
' - ' + p.name + ' (status: ' + p.pm2_env.status + ', pm_id: ' + p.pm2_env.pm_id + ')',
);
});
```
#### Layer 5: Post-Cleanup Verification
After cleanup, logs the state of processes by environment to verify isolation was maintained.
**Purpose**: Immediately identifies if the cleanup affected the wrong environment.
```bash
echo "=== POST-CLEANUP VERIFICATION ==="
pm2 jlist | node -e "
const list = JSON.parse(require('fs').readFileSync(0, 'utf-8'));
const prodProcesses = list.filter(p => p.name && p.name.startsWith('flyer-crawler-') && !p.name.endsWith('-test'));
const testProcesses = list.filter(p => p.name && p.name.endsWith('-test'));
console.log('Production processes after cleanup: ' + prodProcesses.length);
console.log('Test processes (should be untouched): ' + testProcesses.length);
"
echo "=== END POST-CLEANUP VERIFICATION ==="
```
---
## Implementation Details
### Files Modified
| File | Changes |
| ------------------------------------------ | --------------------------------------------- |
| `.gitea/workflows/deploy-to-prod.yml` | Added all 5 safeguard layers |
| `.gitea/workflows/deploy-to-test.yml` | Added all 5 safeguard layers |
| `.gitea/workflows/manual-deploy-major.yml` | Added all 5 safeguard layers |
| `CLAUDE.md` | Added PM2 Process Isolation Incidents section |
### Files Created
| File | Purpose |
| --------------------------------------------------------- | --------------------------------------- |
| `docs/operations/INCIDENT-2026-02-17-PM2-PROCESS-KILL.md` | Detailed incident report |
| `docs/operations/PM2-INCIDENT-RESPONSE.md` | Comprehensive incident response runbook |
| `tests/qa/test-pm2-safeguard-logic.js` | Validation tests for safeguard logic |
---
## Testing and Validation
### Test Artifact
A standalone JavaScript test file was created to validate the safeguard logic:
**File**: `tests/qa/test-pm2-safeguard-logic.js`
**Test Categories**:
1. **Normal Operations (should NOT abort)**
- 3 errored out of 15 processes
- 1 errored out of 10 processes
- 0 processes to clean
- Fresh server with 3 processes (threshold boundary)
2. **Dangerous Operations (SHOULD abort)**
- All 10 processes targeted
- All 15 processes targeted
- All 4 processes targeted (just above threshold)
3. **Workflow-Specific Filter Tests**
- Production filter only matches production processes
- Test filter only matches `-test` suffix processes
- Filters don't cross-contaminate environments
### Test Results
All 11 scenarios passed:
| Scenario | Total | Target | Expected | Result |
| -------------------------- | ----- | ------ | -------- | ------ |
| Normal prod cleanup | 15 | 3 | No abort | PASS |
| Normal test cleanup | 15 | 3 | No abort | PASS |
| Single process | 10 | 1 | No abort | PASS |
| No cleanup needed | 10 | 0 | No abort | PASS |
| Fresh server (threshold) | 3 | 3 | No abort | PASS |
| Minimal server | 2 | 2 | No abort | PASS |
| Empty PM2 | 0 | 0 | No abort | PASS |
| Filter bug - 10 processes | 10 | 10 | ABORT | PASS |
| Filter bug - 15 processes | 15 | 15 | ABORT | PASS |
| Filter bug - 4 processes | 4 | 4 | ABORT | PASS |
| Filter bug - 100 processes | 100 | 100 | ABORT | PASS |
### YAML Validation
All workflow files passed YAML syntax validation using `python -c "import yaml; yaml.safe_load(open(...))"`
---
## Documentation Updates
### CLAUDE.md Updates
Added new section at line 293: **PM2 Process Isolation Incidents**
Contains:
- Reference to the 2026-02-17 incident
- Impact summary
- Prevention measures list
- Response instructions
- Links to related documentation
### docs/README.md
Added incident report reference under **Operations > Incident Reports**.
### Cross-References Verified
| Document | Reference | Status |
| --------------- | --------------------------------------- | ------ |
| CLAUDE.md | PM2-INCIDENT-RESPONSE.md | Valid |
| CLAUDE.md | INCIDENT-2026-02-17-PM2-PROCESS-KILL.md | Valid |
| Incident Report | CLAUDE.md PM2 section | Valid |
| Incident Report | PM2-INCIDENT-RESPONSE.md | Valid |
| docs/README.md | INCIDENT-2026-02-17-PM2-PROCESS-KILL.md | Valid |
---
## Lessons Learned
### Technical Lessons
1. **Filter logic alone is not sufficient** - Even correct filters can be bypassed if an older version of the script is executed.
2. **Workflow caching is a real risk** - CI/CD runners may cache workflow files, leading to stale versions being executed.
3. **Defense-in-depth is essential for destructive operations** - Multiple layers of validation catch failures that single-point checks miss.
4. **Visibility enables diagnosis** - Pre/post state logging makes root cause analysis possible.
5. **Automatic abort prevents cascading failures** - The process count validation could have prevented the incident entirely.
### Process Lessons
1. **Shared PM2 daemons are risky** - Multiple applications sharing a PM2 daemon create cross-application dependencies.
2. **Documentation should include failure modes** - CLAUDE.md now explicitly documents what can go wrong and how to respond.
3. **Runbooks save time during incidents** - The incident response runbook provides step-by-step guidance when time is critical.
---
## Future Considerations
### Not Implemented (Potential Future Work)
1. **PM2 Namespacing** - Use PM2's native namespace feature to completely isolate environments.
2. **Separate PM2 Daemons** - Run one PM2 daemon per application to eliminate cross-application risk.
3. **Deployment Locks** - Implement mutex-style locks to prevent concurrent deployments.
4. **Workflow Version Verification** - Add a pre-flight check that compares workflow hash against expected value.
5. **Automated Rollback** - Implement automatic process restoration if safeguards detect a problem.
---
## Related Documentation
- **ADR-061**: [PM2 Process Isolation Safeguards](../../adr/0061-pm2-process-isolation-safeguards.md)
- **Incident Report**: [INCIDENT-2026-02-17-PM2-PROCESS-KILL.md](../../operations/INCIDENT-2026-02-17-PM2-PROCESS-KILL.md)
- **Response Runbook**: [PM2-INCIDENT-RESPONSE.md](../../operations/PM2-INCIDENT-RESPONSE.md)
- **CLAUDE.md Section**: [PM2 Process Isolation Incidents](../../../CLAUDE.md#pm2-process-isolation-incidents)
- **Test Artifact**: [test-pm2-safeguard-logic.js](../../../tests/qa/test-pm2-safeguard-logic.js)
- **ADR-014**: [Containerization and Deployment Strategy](../../adr/0014-containerization-and-deployment-strategy.md)
---
## Appendix: Workflow Changes Summary
### deploy-to-prod.yml
```diff
+ - name: Log Workflow Metadata
+ run: |
+ echo "=== WORKFLOW METADATA ==="
+ echo "Workflow file: deploy-to-prod.yml"
+ echo "Workflow file hash: $(sha256sum .gitea/workflows/deploy-to-prod.yml | cut -d' ' -f1)"
+ ...
- name: Install Backend Dependencies and Restart Production Server
run: |
+ # === PRE-CLEANUP PM2 STATE LOGGING ===
+ echo "=== PRE-CLEANUP PM2 STATE ==="
+ pm2 jlist
+ echo "=== END PRE-CLEANUP STATE ==="
+
# --- Cleanup Errored Processes with Defense-in-Depth Safeguards ---
node -e "
...
+ // SAFEGUARD 1: Process count validation
+ if (targetProcesses.length === totalProcesses && totalProcesses > 3) {
+ console.error('SAFETY ABORT: Filter would delete ALL processes!');
+ process.exit(1);
+ }
+
+ // SAFEGUARD 2: Explicit name verification
+ console.log('Found ' + targetProcesses.length + ' PRODUCTION processes to clean:');
+ targetProcesses.forEach(p => {
+ console.log(' - ' + p.name + ' (status: ' + p.pm2_env.status + ')');
+ });
...
"
+
+ # === POST-CLEANUP VERIFICATION ===
+ echo "=== POST-CLEANUP VERIFICATION ==="
+ pm2 jlist | node -e "..."
+ echo "=== END POST-CLEANUP VERIFICATION ==="
```
Similar changes were applied to `deploy-to-test.yml` and `manual-deploy-major.yml`.
---
## Session Participants
| Role | Agent Type | Responsibility |
| ------------ | ------------------------- | ------------------------------------- |
| Orchestrator | Main Claude | Session coordination and delegation |
| Planner | planner subagent | Incident analysis and solution design |
| Documenter | describer-for-ai subagent | Incident report creation |
| Coder #1 | coder subagent | Workflow safeguard implementation |
| Coder #2 | coder subagent | Incident response runbook creation |
| Coder #3 | coder subagent | CLAUDE.md updates |
| Tester | tester subagent | Comprehensive validation |
| Archivist | Lead Technical Archivist | Final documentation |
---
## Revision History
| Date | Author | Change |
| ---------- | ------------------------ | ----------------------- |
| 2026-02-17 | Lead Technical Archivist | Initial session summary |

4
docs/archive/sessions/TESTING_SESSION_2026-01-21.md
View File

@@ -486,9 +486,9 @@ Attach screenshots for:
## 🔐 Sign-Off
**Tester Name**: ******\*\*\*\*******\_\_\_******\*\*\*\*******
**Tester Name**: **\*\***\*\*\*\***\*\***\_\_\_**\*\***\*\*\*\***\*\***
**Date/Time Completed**: ****\*\*\*\*****\_\_\_****\*\*\*\*****
**Date/Time Completed**: \***\*\*\*\*\*\*\***\_\_\_\***\*\*\*\*\*\*\***
**Total Testing Time**: **\_\_** minutes

2
docs/getting-started/ENVIRONMENT.md
View File

@@ -123,6 +123,8 @@ node -e "console.log(require('crypto').randomBytes(32).toString('hex'))"
**Get API Key**: [Google AI Studio](https://aistudio.google.com/app/apikey)
**Test Environment Note**: The test/staging environment **deliberately omits** `GEMINI_API_KEY` to preserve free API quota. This is intentional - the API has strict daily limits on the free tier, and we want to reserve tokens for production use. AI features will be non-functional in test, but all other features can be tested normally. Deploy warnings about missing `GEMINI_API_KEY` in test logs are expected and safe to ignore.
### Google Services
| Variable | Required | Description |

53
docs/operations/DEPLOYMENT.md
View File

@@ -17,15 +17,15 @@ This guide covers deploying Flyer Crawler to a production server.
### Command Reference Table
| Task | Command |
| -------------------- | ----------------------------------------------------------------------- |
| Deploy to production | Gitea Actions workflow (manual trigger) |
| Deploy to test | Automatic on push to `main` |
| Check PM2 status | `pm2 list` |
| View logs | `pm2 logs flyer-crawler-api --lines 100` |
| Restart all | `pm2 restart all` |
| Check NGINX | `sudo nginx -t && sudo systemctl status nginx` |
| Check health | `curl -s https://flyer-crawler.projectium.com/api/health/ready \| jq .` |
| Task | Command |
| -------------------- | ----------------------------------------------------------------------------------------------- |
| Deploy to production | Gitea Actions workflow (manual trigger) |
| Deploy to test | Automatic on push to `main` |
| Check PM2 status | `pm2 list` |
| View logs | `pm2 logs flyer-crawler-api --lines 100` |
| Restart all | `pm2 restart flyer-crawler-api flyer-crawler-worker flyer-crawler-analytics-worker && pm2 save` |
| Check NGINX | `sudo nginx -t && sudo systemctl status nginx` |
| Check health | `curl -s https://flyer-crawler.projectium.com/api/health/ready \| jq .` |
### Deployment URLs
@@ -274,7 +274,40 @@ sudo systemctl reload nginx
---
## PM2 Log Management
## PM2 Process Management
### Critical: Always Save After State Changes
**CRITICAL**: Every `pm2 start`, `pm2 restart`, `pm2 stop`, or `pm2 delete` command MUST be immediately followed by `pm2 save`.
Without `pm2 save`, processes become ephemeral and will disappear on:
- PM2 daemon restarts
- Server reboots
- Internal PM2 reconciliation events
**Correct Pattern:**
```bash
# ✅ CORRECT - Always save after state changes
pm2 restart flyer-crawler-api && pm2 save
pm2 stop flyer-crawler-worker && pm2 save
pm2 delete flyer-crawler-analytics-worker && pm2 save
pm2 startOrReload ecosystem.config.cjs --env production --update-env && pm2 save
# ❌ WRONG - Missing save (processes become ephemeral)
pm2 restart flyer-crawler-api
pm2 stop flyer-crawler-worker
# ✅ Read-only operations don't need save
pm2 list
pm2 logs flyer-crawler-api
pm2 monit
```
**Why This Matters**: PM2 maintains an in-memory process list. The `pm2 save` command writes this list to `~/.pm2/dump.pm2`, which PM2 uses to resurrect processes after daemon restarts. Without it, your carefully managed process state is lost.
### PM2 Log Management
Install and configure pm2-logrotate to manage log files:

269
docs/operations/INCIDENT-2026-02-17-PM2-PROCESS-KILL.md Normal file
View File

@@ -0,0 +1,269 @@
# Incident Report: PM2 Process Kill During v0.15.0 Deployment
**Date**: 2026-02-17
**Severity**: Critical
**Status**: Mitigated - Safeguards Implemented
**Affected Systems**: All PM2-managed applications on projectium.com server
---
## Resolution Summary
**Safeguards implemented on 2026-02-17** to prevent recurrence:
1. Workflow metadata logging (audit trail)
2. Pre-cleanup PM2 state logging (forensics)
3. Process count validation with SAFETY ABORT (automatic prevention)
4. Explicit name verification (visibility)
5. Post-cleanup verification (environment isolation check)
**Documentation created**:
- [PM2 Incident Response Runbook](PM2-INCIDENT-RESPONSE.md)
- [PM2 Safeguards Session Summary](../archive/sessions/PM2_SAFEGUARDS_SESSION_2026-02-17.md)
- CLAUDE.md updated with [PM2 Process Isolation Incidents section](../../CLAUDE.md#pm2-process-isolation-incidents)
---
## Summary
During v0.15.0 production deployment, ALL PM2 processes on the server were terminated, not just flyer-crawler processes. This caused unplanned downtime for other applications including stock-alert.
## Timeline
| Time (Approx) | Event |
| --------------------- | ---------------------------------------------------------------- |
| 2026-02-17 ~07:40 UTC | v0.15.0 production deployment triggered via `deploy-to-prod.yml` |
| Unknown | All PM2 processes killed (flyer-crawler AND other apps) |
| Unknown | Incident discovered - stock-alert down |
| 2026-02-17 | Investigation initiated |
| 2026-02-17 | Defense-in-depth safeguards implemented in all workflows |
| 2026-02-17 | Incident response runbook created |
| 2026-02-17 | Status changed to Mitigated |
## Impact
- **Affected Applications**: All PM2-managed processes on projectium.com
- flyer-crawler-api, flyer-crawler-worker, flyer-crawler-analytics-worker (expected)
- stock-alert (NOT expected - collateral damage)
- Potentially other unidentified applications
- **Downtime Duration**: TBD
- **User Impact**: Service unavailability for all affected applications
---
## Investigation Findings
### Deployment Workflow Analysis
All deployment workflows were reviewed for PM2 process isolation:
| Workflow | PM2 Isolation | Implementation |
| ------------------------- | -------------- | ------------------------------------------------------------------------------------------------- |
| `deploy-to-prod.yml` | Whitelist | `prodProcesses = ['flyer-crawler-api', 'flyer-crawler-worker', 'flyer-crawler-analytics-worker']` |
| `deploy-to-test.yml` | Pattern | `p.name.endsWith('-test')` |
| `manual-deploy-major.yml` | Whitelist | Same as deploy-to-prod |
| `manual-db-restore.yml` | Explicit names | `pm2 stop flyer-crawler-api flyer-crawler-worker flyer-crawler-analytics-worker` |
### Fix Commit Already In Place
The PM2 process isolation fix was implemented in commit `b6a62a0` (2026-02-13):
```
commit b6a62a036f39ac895271402a61e5cc4227369de7
Author: Torben Sorensen <torben.sorensen@gmail.com>
Date: Fri Feb 13 10:19:28 2026 -0800
be specific about pm2 processes
Files modified:
.gitea/workflows/deploy-to-prod.yml
.gitea/workflows/deploy-to-test.yml
.gitea/workflows/manual-db-restore.yml
.gitea/workflows/manual-deploy-major.yml
CLAUDE.md
```
### v0.15.0 Release Contains Fix
Confirmed: v0.15.0 (commit `93ad624`, 2026-02-18) includes the fix commit:
```
93ad624 ci: Bump version to 0.15.0 for production release [skip ci]
...
b6a62a0 be specific about pm2 processes <-- Fix commit included
```
### Current Workflow PM2 Commands
**Production Deploy (`deploy-to-prod.yml` line 170)**:
```javascript
const prodProcesses = [
'flyer-crawler-api',
'flyer-crawler-worker',
'flyer-crawler-analytics-worker',
];
list.forEach((p) => {
if (
(p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') &&
prodProcesses.includes(p.name)
) {
exec('pm2 delete ' + p.pm2_env.pm_id);
}
});
```
**Test Deploy (`deploy-to-test.yml` line 100)**:
```javascript
list.forEach((p) => {
if (p.name && p.name.endsWith('-test')) {
exec('pm2 delete ' + p.pm2_env.pm_id);
}
});
```
Both implementations have proper name filtering and should NOT affect non-flyer-crawler processes.
---
## Discrepancy Analysis
### Key Mystery
**If the fixes are in place, why did ALL processes get killed?**
### Possible Explanations
#### 1. Workflow Version Mismatch (HIGH PROBABILITY)
**Hypothesis**: Gitea runner cached an older version of the workflow file.
- Gitea Actions may cache workflow definitions
- The runner might have executed an older version without the fix
- Need to verify: What version of `deploy-to-prod.yml` actually executed?
**Investigation Required**:
- Check Gitea workflow execution logs for actual script content
- Verify runner workflow caching behavior
- Compare executed workflow vs repository version
#### 2. Concurrent Workflow Execution (MEDIUM PROBABILITY)
**Hypothesis**: Another workflow ran simultaneously with destructive PM2 commands.
Workflows with potential issues:
- `manual-db-reset-prod.yml` - Does NOT restart PM2 (schema reset only)
- `manual-redis-flush-prod.yml` - Does NOT touch PM2
- Test deployment concurrent with prod deployment
**Investigation Required**:
- Check Gitea Actions history for concurrent workflow runs
- Review timestamps of all workflow executions on 2026-02-17
#### 3. Manual SSH Command (MEDIUM PROBABILITY)
**Hypothesis**: Someone SSH'd to the server and ran `pm2 stop all` or `pm2 delete all` manually.
**Investigation Required**:
- Check server shell history (if available)
- Review any maintenance windows or manual interventions
- Ask team members about manual actions
#### 4. PM2 Internal Issue (LOW PROBABILITY)
**Hypothesis**: PM2 daemon crash or corruption caused all processes to stop.
**Investigation Required**:
- Check PM2 daemon logs on server
- Look for OOM killer events in system logs
- Check disk space issues during deployment
#### 5. Script Execution Error (LOW PROBABILITY)
**Hypothesis**: JavaScript parsing error caused the filtering logic to be bypassed.
**Investigation Required**:
- Review workflow execution logs for JavaScript errors
- Test the inline Node.js scripts locally
- Check for shell escaping issues
---
## Documentation/Code Gaps Identified
### CLAUDE.md Documentation
The PM2 isolation rules are documented in `CLAUDE.md`, but:
- Documentation uses `pm2 restart all` in the Quick Reference table (for dev container - acceptable)
- Multiple docs still reference `pm2 restart all` without environment context
- No incident response runbook for PM2 issues
### Workflow Gaps
1. **No Workflow Audit Trail**: No logging of which exact workflow version executed
2. **No Pre-deployment Verification**: Workflows don't log PM2 state before modifications
3. **No Cross-Application Impact Assessment**: No mechanism to detect/warn about other apps
---
## Next Steps for Root Cause Analysis
### Immediate (Priority 1)
1. [ ] Retrieve Gitea Actions execution logs for v0.15.0 deployment
2. [ ] Extract actual executed workflow content from logs
3. [ ] Check for concurrent workflow executions on 2026-02-17
4. [ ] Review server PM2 daemon logs around incident time
### Short-term (Priority 2)
5. [ ] Implement pre-deployment PM2 state logging in workflows
6. [ ] Add workflow version hash logging for audit trail
7. [ ] Create incident response runbook for PM2/deployment issues
### Long-term (Priority 3)
8. [ ] Evaluate PM2 namespacing for complete process isolation
9. [ ] Consider separate PM2 daemon per application
10. [ ] Implement deployment monitoring/alerting
---
## Related Documentation
- [CLAUDE.md - PM2 Process Isolation](../../../CLAUDE.md) (Critical Rules section)
- [ADR-014: Containerization and Deployment Strategy](../adr/0014-containerization-and-deployment-strategy.md)
- [Deployment Guide](./DEPLOYMENT.md)
- Workflow files in `.gitea/workflows/`
---
## Appendix: Commit Timeline
```
93ad624 ci: Bump version to 0.15.0 for production release [skip ci] <-- v0.15.0 release
7dd4f21 ci: Bump version to 0.14.4 [skip ci]
174b637 even more typescript fixes
4f80baf ci: Bump version to 0.14.3 [skip ci]
8450b5e Generate TSOA Spec and Routes
e4d830a ci: Bump version to 0.14.2 [skip ci]
b6a62a0 be specific about pm2 processes <-- PM2 fix commit
2d2cd52 Massive Dependency Modernization Project
```
---
## Revision History
| Date | Author | Change |
| ---------- | ------------------ | ----------------------- |
| 2026-02-17 | Investigation Team | Initial incident report |

278
docs/operations/PM2-CRASH-DEBUGGING.md Normal file
View File

@@ -0,0 +1,278 @@
# PM2 Crash Debugging Guide
## Overview
This guide helps diagnose PM2 daemon crashes and identify which project is causing the issue.
## Common Symptoms
1. **PM2 processes disappear** between deployments
2. **`ENOENT: no such file or directory, uv_cwd`** errors in PM2 logs
3. **Processes require `pm2 resurrect`** after deployments
4. **PM2 daemon restarts** unexpectedly
## Root Cause
PM2 processes crash when their working directory (CWD) is deleted or modified while they're running. This typically happens when:
1. **rsync --delete** removes/recreates directories while processes are active
2. **npm install** modifies node_modules while processes are using them
3. **Deployments** don't stop processes before file operations
## Debugging Tools
### 1. PM2 Diagnostics Workflow
Run the comprehensive diagnostics workflow:
```bash
# In Gitea Actions UI:
# 1. Go to Actions → "PM2 Diagnostics"
# 2. Click "Run workflow"
# 3. Choose monitoring duration (default: 60s)
```
This workflow captures:
- Current PM2 state
- Working directory validation
- PM2 daemon logs
- All PM2-managed projects
- Crash patterns
- Deployment script analysis
### 2. PM2 Crash Analysis Script
Run the crash analysis script on the server:
```bash
# SSH to server
ssh gitea-runner@projectium.com
# Run analysis
cd /var/www/flyer-crawler.projectium.com
bash scripts/analyze-pm2-crashes.sh
# Or save to file
bash scripts/analyze-pm2-crashes.sh > pm2-crash-report.txt
```
### 3. Manual PM2 Inspection
Quick manual checks:
```bash
# Current PM2 state
pm2 list
# Detailed JSON state
pm2 jlist | jq '.'
# Check for missing CWDs
pm2 jlist | jq -r '.[] | "\(.name): \(.pm2_env.pm_cwd)"' | while read line; do
PROC=$(echo "$line" | cut -d: -f1)
CWD=$(echo "$line" | cut -d: -f2- | xargs)
[ -d "$CWD" ] && echo "$PROC" || echo "$PROC (CWD missing: $CWD)"
done
# View PM2 daemon log
tail -100 ~/.pm2/pm2.log
# Search for ENOENT errors
grep -i "ENOENT\|uv_cwd" ~/.pm2/pm2.log
```
## Identifying the Problematic Project
### Check Which Projects Share PM2 Daemon
```bash
pm2 list
# Group by project
pm2 jlist | jq -r '.[] | .name' | grep -oE "^[a-z-]+" | sort -u
```
**Projects on projectium.com:**
- `flyer-crawler` (production, test)
- `stock-alert` (production, test)
- Others?
### Check Deployment Timing
1. Review PM2 daemon restart times:
```bash
grep "New PM2 Daemon started" ~/.pm2/pm2.log
```
2. Compare with deployment times in Gitea Actions
3. Identify which deployment triggered the crash
### Check Deployment Scripts
For each project, check if deployment stops PM2 before rsync:
```bash
# Flyer-crawler
cat /var/www/flyer-crawler.projectium.com/.gitea/workflows/deploy-to-prod.yml | grep -B5 -A5 "rsync.*--delete"
# Stock-alert
cat /var/www/stock-alert.projectium.com/.gitea/workflows/deploy-to-prod.yml | grep -B5 -A5 "rsync.*--delete"
```
**Look for:**
- ❌ `rsync --delete` **before** `pm2 stop`
- ✅ `pm2 stop` **before** `rsync --delete`
## Common Culprits
### 1. Flyer-Crawler Deployments
**Before Fix:**
```yaml
# ❌ BAD - Deploys files while processes running
- name: Deploy Application
run: |
rsync --delete ./ /var/www/...
pm2 restart ...
```
**After Fix:**
```yaml
# ✅ GOOD - Stops processes first
- name: Deploy Application
run: |
pm2 stop flyer-crawler-api flyer-crawler-worker
rsync --delete ./ /var/www/...
pm2 startOrReload ...
```
### 2. Stock-Alert Deployments
Check if stock-alert follows the same pattern. If it deploys without stopping PM2, it could crash the shared PM2 daemon.
### 3. Cross-Project Interference
If multiple projects share PM2:
- One project's deployment can crash another project's processes
- The crashed project's processes lose their CWD
- PM2 daemon may restart, clearing all processes
## Solutions
### Immediate Fix (Manual)
```bash
# Restore processes from dump file
pm2 resurrect
# Verify all processes are running
pm2 list
```
### Permanent Fix
1. **Update deployment workflows** to stop PM2 before file operations
2. **Isolate PM2 daemons** by user or namespace
3. **Monitor deployments** to ensure proper sequencing
## Deployment Workflow Template
**Correct sequence:**
```yaml
- name: Deploy Application
run: |
# 1. STOP PROCESSES FIRST
pm2 stop my-api my-worker
# 2. THEN deploy files
rsync -avz --delete ./ /var/www/my-app/
# 3. Install dependencies (safe, no processes running)
cd /var/www/my-app
npm install --omit=dev
# 4. Clean up errored processes
pm2 delete my-api my-worker || true
# 5. START processes
pm2 startOrReload ecosystem.config.cjs
pm2 save
```
## Monitoring & Prevention
### Enable Verbose Logging
Enhanced deployment logging (already implemented in flyer-crawler):
```yaml
- name: Deploy Application
run: |
set -x # Command tracing
echo "Step 1: Stopping PM2..."
pm2 stop ...
pm2 list # Verify stopped
echo "Step 2: Deploying files..."
rsync --delete ...
echo "Step 3: Starting PM2..."
pm2 start ...
pm2 list # Verify started
```
### Regular Health Checks
```bash
# Add to cron or monitoring system
*/5 * * * * pm2 jlist | jq -r '.[] | select(.pm2_env.status != "online") | "ALERT: \(.name) is \(.pm2_env.status)"'
```
## Troubleshooting Decision Tree
```
PM2 processes missing?
├─ YES → Run `pm2 resurrect`
│ └─ Check PM2 daemon log for ENOENT errors
│ ├─ ENOENT found → Working directory deleted during deployment
│ │ └─ Fix: Add `pm2 stop` before rsync
│ └─ No ENOENT → Check other error patterns
└─ NO → Processes running but unstable?
└─ Check restart counts: `pm2 jlist | jq '.[].pm2_env.restart_time'`
└─ High restarts → Application-level issue (not PM2 crash)
```
## Related Documentation
- [PM2 Process Isolation Requirements](../../CLAUDE.md#pm2-process-isolation-productiontest-servers)
- [PM2 Incident Response Runbook](./PM2-INCIDENT-RESPONSE.md)
- [Incident Report 2026-02-17](./INCIDENT-2026-02-17-PM2-PROCESS-KILL.md)
## Quick Reference Commands
```bash
# Diagnose
pm2 list # Current state
pm2 jlist | jq '.' # Detailed JSON
tail -100 ~/.pm2/pm2.log # Recent logs
grep ENOENT ~/.pm2/pm2.log # Find crashes
# Fix
pm2 resurrect # Restore from dump
pm2 restart all # Restart everything
pm2 save # Save current state
# Analyze
bash scripts/analyze-pm2-crashes.sh # Run analysis script
pm2 jlist | jq -r '.[].pm2_env.pm_cwd' # Check working dirs
```

828
docs/operations/PM2-INCIDENT-RESPONSE.md Normal file
View File

@@ -0,0 +1,828 @@
# PM2 Incident Response Runbook
**Purpose**: Step-by-step procedures for responding to PM2 process isolation incidents on the projectium.com server.
**Audience**: On-call responders, system administrators, developers with server access.
**Last updated**: 2026-02-17
**Related documentation**:
- [CLAUDE.md - PM2 Process Isolation Rules](../../CLAUDE.md)
- [Incident Report: 2026-02-17](INCIDENT-2026-02-17-PM2-PROCESS-KILL.md)
- [Monitoring Guide](MONITORING.md)
- [Deployment Guide](DEPLOYMENT.md)
---
## Table of Contents
1. [Quick Reference](#quick-reference)
2. [Detection](#detection)
3. [Initial Assessment](#initial-assessment)
4. [Immediate Response](#immediate-response)
5. [Process Restoration](#process-restoration)
6. [Root Cause Investigation](#root-cause-investigation)
7. [Communication Templates](#communication-templates)
8. [Prevention Measures](#prevention-measures)
9. [Contact Information](#contact-information)
10. [Post-Incident Review](#post-incident-review)
---
## Quick Reference
### PM2 Process Inventory
| Application | Environment | Process Names | Config File | Directory |
| ------------- | ----------- | -------------------------------------------------------------------------------------------- | --------------------------- | -------------------------------------------- |
| Flyer Crawler | Production | `flyer-crawler-api`, `flyer-crawler-worker`, `flyer-crawler-analytics-worker` | `ecosystem.config.cjs` | `/var/www/flyer-crawler.projectium.com` |
| Flyer Crawler | Test | `flyer-crawler-api-test`, `flyer-crawler-worker-test`, `flyer-crawler-analytics-worker-test` | `ecosystem-test.config.cjs` | `/var/www/flyer-crawler-test.projectium.com` |
| Stock Alert | Production | `stock-alert-*` | (varies) | `/var/www/stock-alert.projectium.com` |
### Critical Commands
**IMPORTANT**: Every `pm2 start`, `pm2 restart`, `pm2 stop`, or `pm2 delete` command MUST be immediately followed by `pm2 save` to persist changes.
```bash
# Check PM2 status (read-only, no save needed)
pm2 list
# Check specific process (read-only, no save needed)
pm2 show flyer-crawler-api
# View recent logs (read-only, no save needed)
pm2 logs --lines 50
# ✅ Restart specific processes (SAFE - includes save)
pm2 restart flyer-crawler-api flyer-crawler-worker flyer-crawler-analytics-worker && pm2 save
# ✅ Start processes from config (SAFE - includes save)
pm2 startOrReload /var/www/flyer-crawler.projectium.com/ecosystem.config.cjs --update-env && pm2 save
# ❌ DO NOT USE (affects ALL apps)
# pm2 restart all <-- DANGEROUS
# pm2 stop all <-- DANGEROUS
# pm2 delete all <-- DANGEROUS
# ❌ DO NOT FORGET pm2 save after state changes
# pm2 restart flyer-crawler-api <-- WRONG: Missing save, process becomes ephemeral
```
**Why `pm2 save` Matters**: Without it, processes become ephemeral and disappear on daemon restarts, server reboots, or internal PM2 reconciliation events.
### Severity Classification
| Severity | Criteria | Response Time | Example |
| ----------------- | --------------------------------------------- | ------------------- | ----------------------------------------------- |
| **P1 - Critical** | Multiple applications down, production impact | Immediate (< 5 min) | All PM2 processes killed |
| **P2 - High** | Single application down, production impact | < 15 min | Flyer Crawler prod down, Stock Alert unaffected |
| **P3 - Medium** | Test environment only, no production impact | < 1 hour | Test processes killed, production unaffected |
---
## Detection
### How to Identify a PM2 Incident
**Automated Indicators**:
- Health check failures on `/api/health/ready`
- Monitoring alerts (UptimeRobot, etc.)
- Bugsink showing connection errors
- NGINX returning 502 Bad Gateway
**User-Reported Symptoms**:
- "The site is down"
- "I can't log in"
- "Pages are loading slowly then timing out"
- "I see a 502 error"
**Manual Discovery**:
```bash
# SSH to server
ssh gitea-runner@projectium.com
# Check if PM2 is running
pm2 list
# Expected output shows processes
# If empty or all errored = incident
```
### Incident Signature: Process Isolation Violation
When a PM2 incident is caused by process isolation failure, you will see:
```text
# Expected state (normal):
+-----------------------------------+----+-----+---------+-------+
| App name | id |mode | status | cpu |
+-----------------------------------+----+-----+---------+-------+
| flyer-crawler-api | 0 |clust| online | 0% |
| flyer-crawler-worker | 1 |fork | online | 0% |
| flyer-crawler-analytics-worker | 2 |fork | online | 0% |
| flyer-crawler-api-test | 3 |fork | online | 0% |
| flyer-crawler-worker-test | 4 |fork | online | 0% |
| flyer-crawler-analytics-worker-test| 5 |fork | online | 0% |
| stock-alert-api | 6 |fork | online | 0% |
+-----------------------------------+----+-----+---------+-------+
# Incident state (isolation violation):
# All processes missing or errored - not just one app
+-----------------------------------+----+-----+---------+-------+
| App name | id |mode | status | cpu |
+-----------------------------------+----+-----+---------+-------+
# (empty or all processes errored/stopped)
+-----------------------------------+----+-----+---------+-------+
```
---
## Initial Assessment
### Step 1: Gather Information (2 minutes)
Run these commands and capture output:
```bash
# 1. Check PM2 status
pm2 list
# 2. Check PM2 daemon status
pm2 ping
# 3. Check recent PM2 logs
pm2 logs --lines 20 --nostream
# 4. Check system status
systemctl status pm2-gitea-runner --no-pager
# 5. Check disk space
df -h /
# 6. Check memory
free -h
# 7. Check recent deployments (in app directory)
cd /var/www/flyer-crawler.projectium.com
git log --oneline -5
```
### Step 2: Determine Scope
| Question | Command | Impact Level |
| ------------------------ | ---------------------------------------------------------------- | ------------------------------- |
| How many apps affected? | `pm2 list` | Count missing/errored processes |
| Is production down? | `curl https://flyer-crawler.projectium.com/api/health/ping` | Yes/No |
| Is test down? | `curl https://flyer-crawler-test.projectium.com/api/health/ping` | Yes/No |
| Are other apps affected? | `pm2 list \| grep stock-alert` | Yes/No |
### Step 3: Classify Severity
```text
Decision Tree:
Production app(s) down?
|
+-- YES: Multiple apps affected?
| |
| +-- YES --> P1 CRITICAL (all apps down)
| |
| +-- NO --> P2 HIGH (single app down)
|
+-- NO: Test environment only?
|
+-- YES --> P3 MEDIUM
|
+-- NO --> Investigate further
```
### Step 4: Document Initial State
Capture this information before making any changes:
```bash
# Save PM2 state to file
pm2 jlist > /tmp/pm2-incident-$(date +%Y%m%d-%H%M%S).json
# Save system state
{
echo "=== PM2 List ==="
pm2 list
echo ""
echo "=== Disk Space ==="
df -h
echo ""
echo "=== Memory ==="
free -h
echo ""
echo "=== Recent Git Commits ==="
cd /var/www/flyer-crawler.projectium.com && git log --oneline -5
} > /tmp/incident-state-$(date +%Y%m%d-%H%M%S).txt
```
---
## Immediate Response
### Priority 1: Stop Ongoing Deployments
If a deployment is currently running:
1. Check Gitea Actions for running workflows
2. Cancel any in-progress deployment workflows
3. Do NOT start new deployments until incident resolved
### Priority 2: Assess Which Processes Are Down
```bash
# Get list of processes and their status
pm2 list
# Check which processes exist but are errored/stopped
pm2 jlist | jq '.[] | {name, status: .pm2_env.status}'
```
### Priority 3: Establish Order of Restoration
Restore in this order (production first, critical path first):
| Priority | Process | Rationale |
| -------- | ------------------------------------- | ------------------------------------ |
| 1 | `flyer-crawler-api` | Production API - highest user impact |
| 2 | `flyer-crawler-worker` | Production background jobs |
| 3 | `flyer-crawler-analytics-worker` | Production analytics |
| 4 | `stock-alert-*` | Other production apps |
| 5 | `flyer-crawler-api-test` | Test environment |
| 6 | `flyer-crawler-worker-test` | Test background jobs |
| 7 | `flyer-crawler-analytics-worker-test` | Test analytics |
---
## Process Restoration
### Scenario A: Flyer Crawler Production Processes Missing
```bash
# Navigate to production directory
cd /var/www/flyer-crawler.projectium.com
# Start production processes
pm2 start ecosystem.config.cjs
# Verify processes started
pm2 list
# Check health endpoint
curl -s http://localhost:3001/api/health/ready | jq .
```
### Scenario B: Flyer Crawler Test Processes Missing
```bash
# Navigate to test directory
cd /var/www/flyer-crawler-test.projectium.com
# Start test processes
pm2 start ecosystem-test.config.cjs
# Verify processes started
pm2 list
# Check health endpoint
curl -s http://localhost:3002/api/health/ready | jq .
```
### Scenario C: Stock Alert Processes Missing
```bash
# Navigate to stock-alert directory
cd /var/www/stock-alert.projectium.com
# Start processes (adjust config file name as needed)
pm2 start ecosystem.config.cjs
# Verify processes started
pm2 list
```
### Scenario D: All Processes Missing
Execute restoration in priority order:
```bash
# 1. Flyer Crawler Production (highest priority)
cd /var/www/flyer-crawler.projectium.com
pm2 start ecosystem.config.cjs
# Verify production is healthy before continuing
curl -s http://localhost:3001/api/health/ready | jq '.data.status'
# Should return "healthy"
# 2. Stock Alert Production
cd /var/www/stock-alert.projectium.com
pm2 start ecosystem.config.cjs
# 3. Flyer Crawler Test (lower priority)
cd /var/www/flyer-crawler-test.projectium.com
pm2 start ecosystem-test.config.cjs
# 4. Save PM2 process list
pm2 save
# 5. Final verification
pm2 list
```
### Health Check Verification
After restoration, verify each application:
**Flyer Crawler Production**:
```bash
# API health
curl -s https://flyer-crawler.projectium.com/api/health/ready | jq '.data.status'
# Expected: "healthy"
# Check all services
curl -s https://flyer-crawler.projectium.com/api/health/ready | jq '.data.services'
```
**Flyer Crawler Test**:
```bash
curl -s https://flyer-crawler-test.projectium.com/api/health/ready | jq '.data.status'
```
**Stock Alert**:
```bash
# Adjust URL as appropriate for stock-alert
curl -s https://stock-alert.projectium.com/api/health/ready | jq '.data.status'
```
### Verification Checklist
After restoration, confirm:
- [ ] `pm2 list` shows all expected processes as `online`
- [ ] Production health check returns `healthy`
- [ ] Test health check returns `healthy` (if applicable)
- [ ] No processes showing high restart count
- [ ] No processes showing `errored` or `stopped` status
- [ ] PM2 process list saved: `pm2 save`
---
## Root Cause Investigation
### Step 1: Check Workflow Execution Logs
```bash
# Find recent Gitea Actions runs
# (Access via Gitea web UI: Repository > Actions > Recent Runs)
# Look for these workflows:
# - deploy-to-prod.yml
# - deploy-to-test.yml
# - manual-deploy-major.yml
# - manual-db-restore.yml
```
### Step 2: Check PM2 Daemon Logs
```bash
# PM2 daemon logs
cat ~/.pm2/pm2.log | tail -100
# PM2 process-specific logs
ls -la ~/.pm2/logs/
# Recent API logs
tail -100 ~/.pm2/logs/flyer-crawler-api-out.log
tail -100 ~/.pm2/logs/flyer-crawler-api-error.log
```
### Step 3: Check System Logs
```bash
# System journal for PM2 service
journalctl -u pm2-gitea-runner -n 100 --no-pager
# Kernel messages (OOM killer, etc.)
journalctl -k -n 50 --no-pager | grep -i "killed\|oom\|memory"
# Authentication logs (unauthorized access)
tail -50 /var/log/auth.log
```
### Step 4: Git History Analysis
```bash
# Recent commits to deployment workflows
cd /var/www/flyer-crawler.projectium.com
git log --oneline -20 -- .gitea/workflows/
# Check what changed in PM2 configs
git log --oneline -10 -- ecosystem.config.cjs ecosystem-test.config.cjs
# Diff against last known good state
git diff <last-good-commit> -- .gitea/workflows/ ecosystem*.cjs
```
### Step 5: Timing Correlation
Create a timeline:
```text
| Time (UTC) | Event | Source |
|------------|-------|--------|
| XX:XX | Last successful health check | Monitoring |
| XX:XX | Deployment workflow started | Gitea Actions |
| XX:XX | First failed health check | Monitoring |
| XX:XX | Incident detected | User report / Alert |
| XX:XX | Investigation started | On-call |
```
### Common Root Causes
| Root Cause | Evidence | Prevention |
| ---------------------------- | -------------------------------------- | ---------------------------- |
| `pm2 stop all` in workflow | Workflow logs show "all" command | Use explicit process names |
| `pm2 delete all` in workflow | Empty PM2 list after deploy | Use whitelist-based deletion |
| OOM killer | `journalctl -k` shows "Killed process" | Increase memory limits |
| Disk space exhaustion | `df -h` shows 100% | Log rotation, cleanup |
| Manual intervention | Shell history shows pm2 commands | Document all manual actions |
| Concurrent deployments | Multiple workflows at same time | Implement deployment locks |
| Workflow caching issue | Old workflow version executed | Force workflow refresh |
---
## Communication Templates
### Incident Notification (Internal)
```text
Subject: [P1 INCIDENT] PM2 Process Isolation Failure - Multiple Apps Down
Status: INVESTIGATING
Time Detected: YYYY-MM-DD HH:MM UTC
Affected Systems: [flyer-crawler-prod, stock-alert-prod, ...]
Summary:
All PM2 processes on projectium.com server were terminated unexpectedly.
Multiple production applications are currently down.
Impact:
- flyer-crawler.projectium.com: DOWN
- stock-alert.projectium.com: DOWN
- [other affected apps]
Current Actions:
- Restoring critical production processes
- Investigating root cause
Next Update: In 15 minutes or upon status change
Incident Commander: [Name]
```
### Status Update Template
```text
Subject: [P1 INCIDENT] PM2 Process Isolation Failure - UPDATE #N
Status: [INVESTIGATING | IDENTIFIED | RESTORING | RESOLVED]
Time: YYYY-MM-DD HH:MM UTC
Progress Since Last Update:
- [Action taken]
- [Discovery made]
- [Process restored]
Current State:
- flyer-crawler.projectium.com: [UP|DOWN]
- stock-alert.projectium.com: [UP|DOWN]
Root Cause: [If identified]
Next Steps:
- [Planned action]
ETA to Resolution: [If known]
Next Update: In [X] minutes
```
### Resolution Notification
```text
Subject: [RESOLVED] PM2 Process Isolation Failure
Status: RESOLVED
Time Resolved: YYYY-MM-DD HH:MM UTC
Total Downtime: X minutes
Summary:
All PM2 processes have been restored. Services are operating normally.
Root Cause:
[Brief description of what caused the incident]
Impact Summary:
- flyer-crawler.projectium.com: Down for X minutes
- stock-alert.projectium.com: Down for X minutes
- Estimated user impact: [description]
Immediate Actions Taken:
1. [Action]
2. [Action]
Follow-up Actions:
1. [ ] [Preventive measure] - Owner: [Name] - Due: [Date]
2. [ ] Post-incident review scheduled for [Date]
Post-Incident Review: [Link or scheduled time]
```
---
## Prevention Measures
### Pre-Deployment Checklist
Before triggering any deployment:
- [ ] Review workflow file for PM2 commands
- [ ] Confirm no `pm2 stop all`, `pm2 delete all`, or `pm2 restart all`
- [ ] Verify process names are explicitly listed
- [ ] Check for concurrent deployment risks
- [ ] Confirm recent workflow changes were reviewed
### Workflow Review Checklist
When reviewing deployment workflow changes:
- [ ] All PM2 `stop` commands use explicit process names
- [ ] All PM2 `delete` commands filter by process name pattern
- [ ] All PM2 `restart` commands use explicit process names
- [ ] Test deployments filter by `-test` suffix
- [ ] Production deployments use whitelist array
**Safe Patterns**:
```javascript
// SAFE: Explicit process names (production)
const prodProcesses = [
'flyer-crawler-api',
'flyer-crawler-worker',
'flyer-crawler-analytics-worker',
];
list.forEach((p) => {
if (
(p.pm2_env.status === 'errored' || p.pm2_env.status === 'stopped') &&
prodProcesses.includes(p.name)
) {
exec('pm2 delete ' + p.pm2_env.pm_id);
}
});
// SAFE: Pattern-based filtering (test)
list.forEach((p) => {
if (p.name && p.name.endsWith('-test')) {
exec('pm2 delete ' + p.pm2_env.pm_id);
}
});
```
**Dangerous Patterns** (NEVER USE):
```bash
# DANGEROUS - affects ALL applications
pm2 stop all
pm2 delete all
pm2 restart all
# DANGEROUS - no name filtering
pm2 delete $(pm2 jlist | jq -r '.[] | select(.pm2_env.status == "errored") | .pm_id')
```
### PM2 Configuration Validation
Before deploying PM2 config changes:
```bash
# Test configuration locally
cd /var/www/flyer-crawler.projectium.com
node -e "console.log(JSON.stringify(require('./ecosystem.config.cjs'), null, 2))"
# Verify process names
node -e "require('./ecosystem.config.cjs').apps.forEach(a => console.log(a.name))"
# Expected output should match documented process names
```
### Deployment Monitoring
After every deployment:
```bash
# Immediate verification
pm2 list
# Check no unexpected processes were affected
pm2 list | grep -v flyer-crawler
# Should still show other apps (e.g., stock-alert)
# Health check
curl -s https://flyer-crawler.projectium.com/api/health/ready | jq '.data.status'
```
---
## Contact Information
### On-Call Escalation
| Role | Contact | When to Escalate |
| ----------------- | -------------- | ----------------------------------- |
| Primary On-Call | [Name/Channel] | First responder |
| Secondary On-Call | [Name/Channel] | If primary unavailable after 10 min |
| Engineering Lead | [Name/Channel] | P1 incidents > 30 min |
| Product Owner | [Name/Channel] | User communication needed |
### External Dependencies
| Service | Support Channel | When to Contact |
| --------------- | --------------- | ----------------------- |
| Server Provider | [Contact info] | Hardware/network issues |
| DNS Provider | [Contact info] | DNS resolution failures |
| SSL Certificate | [Contact info] | Certificate issues |
### Communication Channels
| Channel | Purpose |
| -------------- | -------------------------- |
| `#incidents` | Real-time incident updates |
| `#deployments` | Deployment announcements |
| `#engineering` | Technical discussion |
| Email list | Formal notifications |
---
## Post-Incident Review
### Incident Report Template
```markdown
# Incident Report: [Title]
## Overview
| Field | Value |
| ------------------ | ----------------- |
| Date | YYYY-MM-DD |
| Duration | X hours Y minutes |
| Severity | P1/P2/P3 |
| Incident Commander | [Name] |
| Status | Resolved |
## Timeline
| Time (UTC) | Event |
| ---------- | ------------------- |
| HH:MM | [Event description] |
| HH:MM | [Event description] |
## Impact
- **Users affected**: [Number/description]
- **Revenue impact**: [If applicable]
- **SLA impact**: [If applicable]
## Root Cause
[Detailed technical explanation]
## Resolution
[What was done to resolve the incident]
## Contributing Factors
1. [Factor]
2. [Factor]
## Action Items
| Action | Owner | Due Date | Status |
| -------- | ------ | -------- | ------ |
| [Action] | [Name] | [Date] | [ ] |
## Lessons Learned
### What Went Well
- [Item]
### What Could Be Improved
- [Item]
## Appendix
- Link to monitoring data
- Link to relevant logs
- Link to workflow runs
```
### Lessons Learned Format
Use "5 Whys" technique:
```text
Problem: All PM2 processes were killed during deployment
Why 1: The deployment workflow ran `pm2 delete all`
Why 2: The workflow used an outdated version of the script
Why 3: Gitea runner cached the old workflow file
Why 4: No mechanism to verify workflow version before execution
Why 5: Workflow versioning and audit trail not implemented
Root Cause: Lack of workflow versioning and execution verification
Preventive Measure: Implement workflow hash logging and pre-execution verification
```
### Action Items Tracking
Create Gitea issues for each action item:
```bash
# Example using Gitea CLI or API
gh issue create --title "Implement PM2 state logging in deployment workflows" \
--body "Related to incident YYYY-MM-DD. Add pre-deployment PM2 state capture." \
--label "incident-follow-up,priority:high"
```
Track action items in a central location:
| Issue # | Action | Owner | Due | Status |
| ------- | -------------------------------- | ------ | ------ | ------ |
| #123 | Add PM2 state logging | [Name] | [Date] | Open |
| #124 | Implement workflow version hash | [Name] | [Date] | Open |
| #125 | Create deployment lock mechanism | [Name] | [Date] | Open |
---
## Appendix: PM2 Command Reference
### Safe Commands
```bash
# Status and monitoring
pm2 list
pm2 show <process-name>
pm2 monit
pm2 logs <process-name>
# Restart specific processes
pm2 restart flyer-crawler-api
pm2 restart flyer-crawler-api flyer-crawler-worker flyer-crawler-analytics-worker
# Reload (zero-downtime, cluster mode only)
pm2 reload flyer-crawler-api
# Start from config
pm2 start ecosystem.config.cjs
pm2 start ecosystem.config.cjs --only flyer-crawler-api
```
### Dangerous Commands (Use With Caution)
```bash
# CAUTION: These affect ALL processes
pm2 stop all # Stops every PM2 process
pm2 restart all # Restarts every PM2 process
pm2 delete all # Removes every PM2 process
# CAUTION: Modifies saved process list
pm2 save # Overwrites saved process list
pm2 resurrect # Restores from saved list
# CAUTION: Affects PM2 daemon
pm2 kill # Kills PM2 daemon and all processes
pm2 update # Updates PM2 in place (may cause brief outage)
```
---
## Revision History
| Date | Author | Change |
| ---------- | ---------------------- | ------------------------ |
| 2026-02-17 | Incident Response Team | Initial runbook creation |

390
docs/operations/PM2-NAMESPACE-COMPLETION-REPORT.md Normal file
View File

@@ -0,0 +1,390 @@
# PM2 Namespace Implementation - Project Completion Report
**Date:** 2026-02-18
**Status:** Complete
**ADR Reference:** [ADR-063: PM2 Namespace Implementation](../adr/0063-pm2-namespace-implementation.md)
---
## Executive Summary
The PM2 namespace implementation for the flyer-crawler project is now 100% complete. This implementation provides complete process isolation between production, test, and development environments, eliminating race conditions during parallel deployments and simplifying PM2 management commands.
### Key Achievements
| Metric | Value |
|--------|-------|
| **Namespaces Implemented** | 3 (production, test, development) |
| **Workflow Files Updated** | 6 |
| **Config Files Modified** | 3 |
| **Test Coverage** | 89 tests (all passing) |
| **Race Conditions Eliminated** | `pm2 save` isolation complete |
---
## Problem Statement
Prior to this implementation, the project experienced critical issues with PM2 process management:
1. **Race Condition with `pm2 save`**: Simultaneous test and production deployments could overwrite each other's PM2 dump files, causing process loss on PM2 daemon restart.
2. **Cross-Environment Process Interference**: PM2 commands without proper filtering could affect processes across environments (test/production).
3. **Operational Complexity**: Every PM2 command required JavaScript inline filtering logic for safety.
4. **2026-02-17 Incident**: A production deployment accidentally killed ALL PM2 processes on the server, affecting both flyer-crawler and other PM2-managed applications.
---
## Solution Implemented
### Namespace Architecture
| Environment | Namespace | Config File | Use Case |
|-------------|-----------|-------------|----------|
| Production | `flyer-crawler-prod` | `ecosystem.config.cjs` | Live production deployment |
| Test | `flyer-crawler-test` | `ecosystem-test.config.cjs` | Staging/test deployment |
| Development | `flyer-crawler-dev` | `ecosystem.dev.config.cjs` | Local development in dev container |
### Namespace Definition Pattern
Each ecosystem config defines its namespace at the module.exports level (not inside apps):
```javascript
// ecosystem.config.cjs (production)
module.exports = {
namespace: 'flyer-crawler-prod',
apps: [
{ name: 'flyer-crawler-api', /* ... */ },
{ name: 'flyer-crawler-worker', /* ... */ },
{ name: 'flyer-crawler-analytics-worker', /* ... */ }
]
};
```
---
## Files Modified
### Ecosystem Configuration Files
| File | Change |
|------|--------|
| `ecosystem.config.cjs` | Added `namespace: 'flyer-crawler-prod'` at module.exports level |
| `ecosystem-test.config.cjs` | Added `namespace: 'flyer-crawler-test'` at module.exports level |
| `ecosystem.dev.config.cjs` | Added `namespace: 'flyer-crawler-dev'` at module.exports level |
### Workflow Files
| File | Changes |
|------|---------|
| `.gitea/workflows/deploy-to-prod.yml` | Added `--namespace flyer-crawler-prod` to all PM2 commands |
| `.gitea/workflows/deploy-to-test.yml` | Added `--namespace flyer-crawler-test` to all PM2 commands |
| `.gitea/workflows/restart-pm2.yml` | Added `--namespace` flags for both test and production environments |
| `.gitea/workflows/manual-db-restore.yml` | Added `--namespace flyer-crawler-prod` to PM2 stop, save, and startOrReload commands |
| `.gitea/workflows/manual-deploy-major.yml` | Added `--namespace flyer-crawler-prod` to PM2 commands |
| `.gitea/workflows/pm2-diagnostics.yml` | Added namespace-specific sections for both production and test |
### Session-Specific Modifications (2026-02-18)
The following files were modified in the final session to ensure complete namespace coverage:
1. **`.gitea/workflows/restart-pm2.yml`**
- Line 45: Added `--namespace flyer-crawler-test` to `pm2 save`
- Line 69: Added `--namespace flyer-crawler-prod` to `pm2 save`
2. **`.gitea/workflows/manual-db-restore.yml`**
- Line 61: Added `--namespace flyer-crawler-prod` to `pm2 save` (after stopping processes)
- Line 95: Added `--namespace flyer-crawler-prod` to `pm2 save` (after restart)
3. **`tests/pm2-namespace.test.ts`**
- Added 6 new tests in the "PM2 Save Namespace Validation" describe block
- Validates ALL `pm2 save` commands across all workflow files have namespace flags
### Migration Script
| File | Purpose |
|------|---------|
| `scripts/migrate-pm2-namespaces.sh` | Zero-downtime migration script for transitioning servers to namespace-based PM2 |
### Documentation
| File | Purpose |
|------|---------|
| `docs/adr/0063-pm2-namespace-implementation.md` | Architecture Decision Record documenting the design |
| `CLAUDE.md` | Updated PM2 Namespace Isolation section with usage examples |
---
## Test Coverage
### Test File: `tests/pm2-namespace.test.ts`
Total: **89 tests** (all passing)
#### Test Categories
1. **Ecosystem Configurations** (21 tests)
- Validates namespace property in each config file
- Verifies namespace is at module.exports level (not inside apps)
- Confirms correct app definitions per environment
- Ensures namespace uniqueness across environments
2. **Workflow Files** (38 tests)
- Validates `--namespace` flag on all PM2 commands:
- `pm2 list`
- `pm2 jlist`
- `pm2 save`
- `pm2 stop`
- `pm2 startOrReload`
- `pm2 delete`
- `pm2 logs`
- `pm2 describe`
- `pm2 env`
- Verifies environment selection logic
- Checks diagnostic workflows show both namespaces
3. **PM2 Save Namespace Validation** (6 tests)
- Validates ALL `pm2 save` commands have `--namespace` flag
- Individual file checks for clarity in test output
- Covers: deploy-to-prod.yml, deploy-to-test.yml, restart-pm2.yml, manual-db-restore.yml, manual-deploy-major.yml
4. **Migration Script** (15 tests)
- Validates script options (--dry-run, --test-only, --prod-only)
- Verifies namespace constants
- Checks rollback instructions
- Confirms health check functionality
- Validates idempotency logic
5. **Documentation** (15 tests)
- ADR-063 structure validation
- CLAUDE.md namespace section
- Cross-reference consistency
6. **End-to-End Consistency** (3 tests)
- Matching namespaces between configs and workflows
- Namespace flag coverage ratio validation
- Dump file isolation documentation
---
## Benefits Achieved
### 1. Race Condition Elimination
Before:
```
Test deploy: pm2 save -> writes to ~/.pm2/dump.pm2
Prod deploy: pm2 save -> overwrites ~/.pm2/dump.pm2
PM2 daemon restart -> incomplete process list
```
After:
```
Test deploy: pm2 save --namespace flyer-crawler-test -> writes to ~/.pm2/dump-flyer-crawler-test.pm2
Prod deploy: pm2 save --namespace flyer-crawler-prod -> writes to ~/.pm2/dump-flyer-crawler-prod.pm2
PM2 daemon restart -> both environments fully restored
```
### 2. Safe Parallel Deployments
Test and production deployments can now run simultaneously without interference. Each namespace operates independently with its own:
- Process list
- Dump file
- Logs (when using namespace filter)
### 3. Simplified Commands
Before (with filtering logic):
```javascript
// Complex inline JavaScript filtering
const list = JSON.parse(execSync('pm2 jlist').toString());
const prodProcesses = list.filter(p =>
['flyer-crawler-api', 'flyer-crawler-worker', 'flyer-crawler-analytics-worker'].includes(p.name)
);
prodProcesses.forEach(p => execSync(`pm2 delete ${p.pm_id}`));
```
After (simple namespace flag):
```bash
pm2 delete all --namespace flyer-crawler-prod
```
### 4. Clear Organization
```bash
# View only production processes
pm2 list --namespace flyer-crawler-prod
# View only test processes
pm2 list --namespace flyer-crawler-test
# No more confusion about which process belongs to which environment
```
### 5. Defense in Depth
The ADR-061 safeguards (name-based filtering, process count validation, logging) remain active as an additional protection layer, providing defense in depth.
---
## Usage Examples
### Starting Processes
```bash
# Production
cd /var/www/flyer-crawler.projectium.com
pm2 start ecosystem.config.cjs --namespace flyer-crawler-prod
pm2 save --namespace flyer-crawler-prod
# Test
cd /var/www/flyer-crawler-test.projectium.com
pm2 start ecosystem-test.config.cjs --namespace flyer-crawler-test
pm2 save --namespace flyer-crawler-test
```
### Restarting Processes
```bash
# Production
pm2 restart all --namespace flyer-crawler-prod
# Test
pm2 restart all --namespace flyer-crawler-test
# Specific process
pm2 restart flyer-crawler-api --namespace flyer-crawler-prod
```
### Viewing Status
```bash
# Production only
pm2 list --namespace flyer-crawler-prod
# Test only
pm2 list --namespace flyer-crawler-test
# JSON output for scripting
pm2 jlist --namespace flyer-crawler-prod
```
### Viewing Logs
```bash
# All production logs
pm2 logs --namespace flyer-crawler-prod
# Specific process logs
pm2 logs flyer-crawler-api --namespace flyer-crawler-prod --lines 100
```
### Stopping and Deleting
```bash
# Stop all production (safe - only affects production namespace)
pm2 stop all --namespace flyer-crawler-prod
# Delete all test (safe - only affects test namespace)
pm2 delete all --namespace flyer-crawler-test
```
### Saving State
```bash
# IMPORTANT: Always use namespace when saving
pm2 save --namespace flyer-crawler-prod
pm2 save --namespace flyer-crawler-test
```
---
## Migration Instructions
For servers not yet using namespaces, run the migration script:
### Dry Run (Preview Changes)
```bash
cd /var/www/flyer-crawler.projectium.com
./scripts/migrate-pm2-namespaces.sh --dry-run
```
### Test Environment Only
```bash
./scripts/migrate-pm2-namespaces.sh --test-only
```
### Production Environment Only
```bash
./scripts/migrate-pm2-namespaces.sh --prod-only
```
### Both Environments
```bash
./scripts/migrate-pm2-namespaces.sh
```
### Post-Migration Verification
```bash
# Verify namespace isolation
pm2 list --namespace flyer-crawler-prod
pm2 list --namespace flyer-crawler-test
# Verify dump files exist
ls -la ~/.pm2/dump-flyer-crawler-*.pm2
# Verify no orphaned processes
pm2 list # Should show processes organized by namespace
```
---
## Related Documentation
| Document | Purpose |
|----------|---------|
| [ADR-063: PM2 Namespace Implementation](../adr/0063-pm2-namespace-implementation.md) | Architecture decision record |
| [ADR-061: PM2 Process Isolation Safeguards](../adr/0061-pm2-process-isolation-safeguards.md) | Prior safeguards (still active) |
| [CLAUDE.md](../../CLAUDE.md) | PM2 Namespace Isolation section (lines 52-169) |
| [PM2 Incident Response Runbook](./PM2-INCIDENT-RESPONSE.md) | Emergency procedures |
| [Incident Report 2026-02-17](./INCIDENT-2026-02-17-PM2-PROCESS-KILL.md) | Root cause analysis |
---
## Recommendations for Team
1. **Always Include Namespace**: Every PM2 command should include `--namespace <namespace>`. Without it, the command may affect unintended processes or use the wrong dump file.
2. **Use CI/CD Workflows**: Prefer using the Gitea workflows (`restart-pm2.yml`, `deploy-to-*.yml`) over manual SSH commands when possible. The workflows have been validated to use correct namespaces.
3. **Run Tests Before Deployment**: The test suite validates all PM2 commands have proper namespace flags. Run `npm test` to catch any regressions.
4. **Monitor After Migration**: After running the migration script, monitor PM2 status and application health for 15-30 minutes to ensure stability.
5. **Review Logs by Namespace**: When debugging, always filter logs by namespace to avoid confusion between environments.
---
## Appendix: Command Quick Reference
| Action | Production | Test |
|--------|------------|------|
| Start | `pm2 start ecosystem.config.cjs --namespace flyer-crawler-prod` | `pm2 start ecosystem-test.config.cjs --namespace flyer-crawler-test` |
| Stop all | `pm2 stop all --namespace flyer-crawler-prod` | `pm2 stop all --namespace flyer-crawler-test` |
| Restart all | `pm2 restart all --namespace flyer-crawler-prod` | `pm2 restart all --namespace flyer-crawler-test` |
| Delete all | `pm2 delete all --namespace flyer-crawler-prod` | `pm2 delete all --namespace flyer-crawler-test` |
| List | `pm2 list --namespace flyer-crawler-prod` | `pm2 list --namespace flyer-crawler-test` |
| Logs | `pm2 logs --namespace flyer-crawler-prod` | `pm2 logs --namespace flyer-crawler-test` |
| Save | `pm2 save --namespace flyer-crawler-prod` | `pm2 save --namespace flyer-crawler-test` |
| Describe | `pm2 describe flyer-crawler-api --namespace flyer-crawler-prod` | `pm2 describe flyer-crawler-api-test --namespace flyer-crawler-test` |
---
**Report Generated:** 2026-02-18
**Author:** Lead Technical Archivist (Claude Code)

14
ecosystem-test.config.cjs
View File

@@ -50,7 +50,7 @@ if (fs.existsSync(envPath)) {
} else {
console.warn('[ecosystem-test.config.cjs] No .env file found at:', envPath);
console.warn(
'[ecosystem-test.config.cjs] Environment variables must be provided by the shell or CI/CD.'
'[ecosystem-test.config.cjs] Environment variables must be provided by the shell or CI/CD.',
);
}
@@ -60,12 +60,16 @@ if (fs.existsSync(envPath)) {
// The actual application will fail to start if secrets are missing,
// which PM2 will handle with its restart logic.
const requiredSecrets = ['DB_HOST', 'JWT_SECRET', 'GEMINI_API_KEY'];
const missingSecrets = requiredSecrets.filter(key => !process.env[key]);
const missingSecrets = requiredSecrets.filter((key) => !process.env[key]);
if (missingSecrets.length > 0) {
console.warn('\n[ecosystem.config.test.cjs] WARNING: The following environment variables are MISSING:');
missingSecrets.forEach(key => console.warn(` - ${key}`));
console.warn('[ecosystem.config.test.cjs] The application may fail to start if these are required.\n');
console.warn(
'\n[ecosystem.config.test.cjs] WARNING: The following environment variables are MISSING:',
);
missingSecrets.forEach((key) => console.warn(` - ${key}`));
console.warn(
'[ecosystem.config.test.cjs] The application may fail to start if these are required.\n',
);
} else {
console.log('[ecosystem.config.test.cjs] Critical environment variables are present.');
}

9
ecosystem.config.cjs
View File

@@ -16,11 +16,13 @@
// The actual application will fail to start if secrets are missing,
// which PM2 will handle with its restart logic.
const requiredSecrets = ['DB_HOST', 'JWT_SECRET', 'GEMINI_API_KEY'];
const missingSecrets = requiredSecrets.filter(key => !process.env[key]);
const missingSecrets = requiredSecrets.filter((key) => !process.env[key]);
if (missingSecrets.length > 0) {
console.warn('\n[ecosystem.config.cjs] WARNING: The following environment variables are MISSING:');
missingSecrets.forEach(key => console.warn(` - ${key}`));
console.warn(
'\n[ecosystem.config.cjs] WARNING: The following environment variables are MISSING:',
);
missingSecrets.forEach((key) => console.warn(` - ${key}`));
console.warn('[ecosystem.config.cjs] The application may fail to start if these are required.\n');
} else {
console.log('[ecosystem.config.cjs] Critical environment variables are present.');
@@ -75,6 +77,7 @@ module.exports = {
min_uptime: '10s',
env: {
NODE_ENV: 'production',
PORT: '3001',
WORKER_LOCK_DURATION: '120000',
...sharedEnv,
},

4
ecosystem.dev.config.cjs
View File

@@ -34,9 +34,7 @@ if (missingVars.length > 0) {
'\n[ecosystem.dev.config.cjs] WARNING: The following environment variables are MISSING:',
);
missingVars.forEach((key) => console.warn(` - ${key}`));
console.warn(
'[ecosystem.dev.config.cjs] These should be set in compose.dev.yml or .env.local\n',
);
console.warn('[ecosystem.dev.config.cjs] These should be set in compose.dev.yml or .env.local\n');
} else {
console.log('[ecosystem.dev.config.cjs] Required environment variables are present.');
}

4
package-lock.json generated
View File

@@ -1,12 +1,12 @@
{
"name": "flyer-crawler",
"version": "0.15.0",
"version": "0.20.1",
"lockfileVersion": 3,
"requires": true,
"packages": {
"": {
"name": "flyer-crawler",
"version": "0.15.0",
"version": "0.20.1",
"dependencies": {
"@bull-board/api": "^6.14.2",
"@bull-board/express": "^6.14.2",

2
package.json
View File

@@ -1,7 +1,7 @@
{
"name": "flyer-crawler",
"private": true,
"version": "0.15.0",
"version": "0.20.1",
"type": "module",
"engines": {
"node": ">=18.0.0"

31
plans/adr-0005-implementation-plan.md
View File

@@ -7,6 +7,7 @@
## Current State Analysis
### What We Have
1.**TanStack Query v5.90.12 already installed** in package.json
2.**Not being used** - Custom hooks reimplementing its functionality
3.**Custom `useInfiniteQuery` hook** ([src/hooks/useInfiniteQuery.ts](../src/hooks/useInfiniteQuery.ts)) using `useState`/`useEffect`
@@ -16,10 +17,12 @@
### Current Data Fetching Patterns
#### Pattern 1: Custom useInfiniteQuery Hook
**Location**: [src/hooks/useInfiniteQuery.ts](../src/hooks/useInfiniteQuery.ts)
**Used By**: [src/providers/FlyersProvider.tsx](../src/providers/FlyersProvider.tsx)
**Problems**:
- Reimplements pagination logic that TanStack Query provides
- Manual loading state management
- Manual error handling
@@ -28,10 +31,12 @@
- No request deduplication
#### Pattern 2: useApiOnMount Hook
**Location**: Unknown (needs investigation)
**Used By**: [src/providers/UserDataProvider.tsx](../src/providers/UserDataProvider.tsx)
**Problems**:
- Fetches data on mount only
- Manual loading/error state management
- No caching between unmount/remount
@@ -42,6 +47,7 @@
### Phase 1: Setup TanStack Query Infrastructure (Day 1)
#### 1.1 Create QueryClient Configuration
**File**: `src/config/queryClient.ts`
```typescript
@@ -51,7 +57,7 @@ export const queryClient = new QueryClient({
defaultOptions: {
queries: {
staleTime: 1000 * 60 * 5, // 5 minutes
gcTime: 1000 * 60 * 30, // 30 minutes (formerly cacheTime)
gcTime: 1000 * 60 * 30, // 30 minutes (formerly cacheTime)
retry: 1,
refetchOnWindowFocus: false,
refetchOnMount: true,
@@ -64,9 +70,11 @@ export const queryClient = new QueryClient({
```
#### 1.2 Wrap App with QueryClientProvider
**File**: `src/providers/AppProviders.tsx`
Add TanStack Query provider at the top level:
```typescript
import { QueryClientProvider } from '@tanstack/react-query';
import { ReactQueryDevtools } from '@tanstack/react-query-devtools';
@@ -158,6 +166,7 @@ export const FlyersProvider: React.FC<{ children: ReactNode }> = ({ children })
```
**Benefits**:
- ~100 lines of code removed
- Automatic caching
- Background refetching
@@ -170,6 +179,7 @@ export const FlyersProvider: React.FC<{ children: ReactNode }> = ({ children })
**Action**: Use TanStack Query's `useQuery` for watched items and shopping lists
**New Files**:
- `src/hooks/queries/useWatchedItemsQuery.ts`
- `src/hooks/queries/useShoppingListsQuery.ts`
@@ -208,6 +218,7 @@ export const useShoppingListsQuery = (enabled: boolean) => {
```
**Updated Provider**:
```typescript
import React, { ReactNode, useMemo } from 'react';
import { UserDataContext } from '../contexts/UserDataContext';
@@ -240,6 +251,7 @@ export const UserDataProvider: React.FC<{ children: ReactNode }> = ({ children }
```
**Benefits**:
- ~40 lines of code removed
- No manual state synchronization
- Automatic cache invalidation on user logout
@@ -292,7 +304,7 @@ export const useUpdateShoppingListMutation = () => {
// Optimistically update
queryClient.setQueryData(['shopping-lists'], (old) =>
old.map((list) => (list.id === newList.id ? newList : list))
old.map((list) => (list.id === newList.id ? newList : list)),
);
return { previousLists };
@@ -313,20 +325,24 @@ export const useUpdateShoppingListMutation = () => {
### Phase 4: Remove Old Custom Hooks (Day 9)
#### Files to Remove:
-`src/hooks/useInfiniteQuery.ts` (if not used elsewhere)
-`src/hooks/useApiOnMount.ts` (needs investigation)
#### Files to Update:
- Update any remaining usages in other components
### Phase 5: Testing & Documentation (Day 10)
#### 5.1 Update Tests
- Update provider tests to work with QueryClient
- Add tests for new query hooks
- Add tests for mutation hooks
#### 5.2 Update Documentation
- Mark ADR-0005 as **Accepted** and **Implemented**
- Add usage examples to documentation
- Update developer onboarding guide
@@ -334,11 +350,13 @@ export const useUpdateShoppingListMutation = () => {
## Migration Checklist
### Prerequisites
- [x] TanStack Query installed
- [ ] QueryClient configuration created
- [ ] App wrapped with QueryClientProvider
### Queries
- [ ] Flyers infinite query migrated
- [ ] Watched items query migrated
- [ ] Shopping lists query migrated
@@ -346,6 +364,7 @@ export const useUpdateShoppingListMutation = () => {
- [ ] Active deals query migrated (if applicable)
### Mutations
- [ ] Add watched item mutation
- [ ] Remove watched item mutation
- [ ] Update shopping list mutation
@@ -353,12 +372,14 @@ export const useUpdateShoppingListMutation = () => {
- [ ] Remove shopping list item mutation
### Cleanup
- [ ] Remove custom useInfiniteQuery hook
- [ ] Remove custom useApiOnMount hook
- [ ] Update all tests
- [ ] Remove redundant state management code
### Documentation
- [ ] Update ADR-0005 status to "Accepted"
- [ ] Add usage guidelines to README
- [ ] Document query key conventions
@@ -367,10 +388,12 @@ export const useUpdateShoppingListMutation = () => {
## Benefits Summary
### Code Reduction
- **Estimated**: ~300-500 lines of custom hook code removed
- **Result**: Simpler, more maintainable codebase
### Performance Improvements
- ✅ Automatic request deduplication
- ✅ Background data synchronization
- ✅ Smart cache invalidation
@@ -378,12 +401,14 @@ export const useUpdateShoppingListMutation = () => {
- ✅ Automatic retry logic
### Developer Experience
- ✅ React Query Devtools for debugging
- ✅ Type-safe query hooks
- ✅ Standardized patterns across the app
- ✅ Less boilerplate code
### User Experience
- ✅ Faster perceived performance (cached data)
- ✅ Better offline experience
- ✅ Smoother UI interactions (optimistic updates)
@@ -392,11 +417,13 @@ export const useUpdateShoppingListMutation = () => {
## Risk Assessment
### Low Risk
- TanStack Query is industry-standard
- Already installed in project
- Incremental migration possible
### Mitigation Strategies
1. **Test thoroughly** - Maintain existing test coverage
2. **Migrate incrementally** - One provider at a time
3. **Monitor performance** - Use React Query Devtools

28
plans/adr-0005-phase-2-summary.md
View File

@@ -45,6 +45,7 @@ Successfully completed Phase 2 of ADR-0005 enforcement by migrating all remainin
## Code Reduction Summary
### Phase 1 + Phase 2 Combined
- **Total custom state management code removed**: ~200 lines
- **New query hooks created**: 5 files (~200 lines of standardized code)
- **Providers simplified**: 4 files
@@ -53,34 +54,38 @@ Successfully completed Phase 2 of ADR-0005 enforcement by migrating all remainin
## Technical Improvements
### 1. Intelligent Caching Strategy
```typescript
// Master items (rarely change) - 10 min stale time
useMasterItemsQuery() // staleTime: 10 minutes
useMasterItemsQuery(); // staleTime: 10 minutes
// Flyers (moderate changes) - 2 min stale time
useFlyersQuery() // staleTime: 2 minutes
useFlyersQuery(); // staleTime: 2 minutes
// User data (frequent changes) - 1 min stale time
useWatchedItemsQuery() // staleTime: 1 minute
useShoppingListsQuery() // staleTime: 1 minute
useWatchedItemsQuery(); // staleTime: 1 minute
useShoppingListsQuery(); // staleTime: 1 minute
// Flyer items (static) - 5 min stale time
useFlyerItemsQuery() // staleTime: 5 minutes
useFlyerItemsQuery(); // staleTime: 5 minutes
```
### 2. Per-Resource Caching
Each flyer's items are cached separately:
```typescript
// Flyer 1 items cached with key: ['flyer-items', 1]
useFlyerItemsQuery(1)
useFlyerItemsQuery(1);
// Flyer 2 items cached with key: ['flyer-items', 2]
useFlyerItemsQuery(2)
useFlyerItemsQuery(2);
// Both caches persist independently
```
### 3. Automatic Query Disabling
```typescript
// Query automatically disabled when flyerId is undefined
const { data } = useFlyerItemsQuery(selectedFlyer?.flyer_id);
@@ -90,24 +95,28 @@ const { data } = useFlyerItemsQuery(selectedFlyer?.flyer_id);
## Benefits Achieved
### Performance
-**Reduced API calls** - Data cached between component unmounts
-**Background refetching** - Stale data updates in background
-**Request deduplication** - Multiple components can use same query
-**Optimized cache times** - Different strategies for different data types
### Code Quality
-**Removed ~50 more lines** of custom state management
-**Eliminated useApiOnMount** from all providers
-**Standardized patterns** - All queries follow same structure
-**Better type safety** - TypeScript types flow through queries
### Developer Experience
-**React Query Devtools** - Inspect all queries and cache
-**Easier debugging** - Clear query states and transitions
-**Less boilerplate** - No manual loading/error state management
-**Automatic retries** - Failed queries retry automatically
### User Experience
-**Faster perceived performance** - Cached data shows instantly
-**Fresh data** - Background refetching keeps data current
-**Better offline handling** - Cached data available offline
@@ -116,12 +125,14 @@ const { data } = useFlyerItemsQuery(selectedFlyer?.flyer_id);
## Remaining Work
### Phase 3: Mutations (Next)
- [ ] Create mutation hooks for data modifications
- [ ] Add/remove watched items with optimistic updates
- [ ] Shopping list CRUD operations
- [ ] Proper cache invalidation strategies
### Phase 4: Cleanup (Final)
- [ ] Remove `useApiOnMount` hook entirely
- [ ] Remove `useApi` hook if no longer used
- [ ] Remove stub implementations in providers
@@ -159,10 +170,13 @@ Before merging, test the following:
## Migration Notes
### Breaking Changes
None! All providers maintain the same interface.
### Deprecation Warnings
The following will log warnings if used:
- `setWatchedItems()` in UserDataProvider
- `setShoppingLists()` in UserDataProvider

24
plans/adr-0005-phase-3-summary.md
View File

@@ -12,6 +12,7 @@ Successfully completed Phase 3 of ADR-0005 enforcement by creating all mutation
### Mutation Hooks
All mutation hooks follow a consistent pattern:
- Automatic cache invalidation via `queryClient.invalidateQueries()`
- Success/error notifications via notification service
- Proper TypeScript types for parameters
@@ -113,15 +114,12 @@ function WatchedItemsManager() {
{
onSuccess: () => console.log('Added to watched list!'),
onError: (error) => console.error('Failed:', error),
}
},
);
};
return (
<button
onClick={handleAdd}
disabled={addWatchedItem.isPending}
>
<button onClick={handleAdd} disabled={addWatchedItem.isPending}>
{addWatchedItem.isPending ? 'Adding...' : 'Add to Watched List'}
</button>
);
@@ -134,7 +132,7 @@ function WatchedItemsManager() {
import {
useCreateShoppingListMutation,
useAddShoppingListItemMutation,
useUpdateShoppingListItemMutation
useUpdateShoppingListItemMutation,
} from '../hooks/mutations';
function ShoppingListManager() {
@@ -149,14 +147,14 @@ function ShoppingListManager() {
const handleAddItem = (listId: number, masterItemId: number) => {
addItem.mutate({
listId,
item: { masterItemId }
item: { masterItemId },
});
};
const handleMarkPurchased = (itemId: number) => {
updateItem.mutate({
itemId,
updates: { is_purchased: true }
updates: { is_purchased: true },
});
};
@@ -172,23 +170,27 @@ function ShoppingListManager() {
## Benefits Achieved
### Performance
-**Automatic cache updates** - Queries automatically refetch after mutations
-**Request deduplication** - Multiple mutation calls are properly queued
-**Optimistic updates ready** - Infrastructure in place for Phase 4
### Code Quality
-**Standardized pattern** - All mutations follow the same structure
-**Comprehensive documentation** - JSDoc with examples for every hook
-**Type safety** - Full TypeScript types for all parameters
-**Error handling** - Consistent error handling and user notifications
### Developer Experience
-**React Query Devtools** - Inspect mutation states in real-time
-**Easy imports** - Barrel export for clean imports
-**Consistent API** - Same pattern across all mutations
-**Built-in loading states** - `isPending`, `isError`, `isSuccess` states
### User Experience
-**Automatic notifications** - Success/error toasts on all mutations
-**Fresh data** - Queries automatically update after mutations
-**Loading states** - UI can show loading indicators during mutations
@@ -197,6 +199,7 @@ function ShoppingListManager() {
## Current State
### Completed
- ✅ All 7 mutation hooks created
- ✅ Barrel export created for easy imports
- ✅ Comprehensive documentation with examples
@@ -225,12 +228,14 @@ These hooks are actively used throughout the application and will need careful r
### Phase 4: Hook Refactoring & Cleanup
#### Step 1: Refactor useWatchedItems
- [ ] Replace `useApi` calls with mutation hooks
- [ ] Remove manual state management logic
- [ ] Simplify to just wrap mutation hooks with custom logic
- [ ] Update all tests
#### Step 2: Refactor useShoppingLists
- [ ] Replace `useApi` calls with mutation hooks
- [ ] Remove manual state management logic
- [ ] Remove complex state synchronization
@@ -238,17 +243,20 @@ These hooks are actively used throughout the application and will need careful r
- [ ] Update all tests
#### Step 3: Remove Deprecated Code
- [ ] Remove `setWatchedItems` from UserDataContext
- [ ] Remove `setShoppingLists` from UserDataContext
- [ ] Remove `useApi` hook (if no longer used)
- [ ] Remove `useApiOnMount` hook (already deprecated)
#### Step 4: Add Optimistic Updates (Optional)
- [ ] Implement optimistic updates for better UX
- [ ] Use `onMutate` to update cache before server response
- [ ] Implement rollback on error
#### Step 5: Documentation & Testing
- [ ] Update all component documentation
- [ ] Update developer onboarding guide
- [ ] Add integration tests for mutation flows

97
plans/adr-0005-phase-4-summary.md
View File

@@ -41,13 +41,13 @@ Successfully completed Phase 4 of ADR-0005 enforcement by refactoring the remain
### Phase 1-4 Combined
| Metric | Before | After | Reduction |
|--------|--------|-------|-----------|
| **useWatchedItems** | 77 lines | 71 lines | -6 lines (cleaner) |
| **useShoppingLists** | 222 lines | 176 lines | -46 lines (-21%) |
| **Manual state management** | ~150 lines | 0 lines | -150 lines (100%) |
| **useApi dependencies** | 7 hooks | 0 hooks | -7 dependencies |
| **Total for Phase 4** | 299 lines | 247 lines | **-52 lines (-17%)** |
| Metric | Before | After | Reduction |
| --------------------------- | ---------- | --------- | -------------------- |
| **useWatchedItems** | 77 lines | 71 lines | -6 lines (cleaner) |
| **useShoppingLists** | 222 lines | 176 lines | -46 lines (-21%) |
| **Manual state management** | ~150 lines | 0 lines | -150 lines (100%) |
| **useApi dependencies** | 7 hooks | 0 hooks | -7 dependencies |
| **Total for Phase 4** | 299 lines | 247 lines | **-52 lines (-17%)** |
### Overall ADR-0005 Impact (Phases 1-4)
@@ -61,45 +61,54 @@ Successfully completed Phase 4 of ADR-0005 enforcement by refactoring the remain
### 1. Simplified useWatchedItems
**Before (useApi pattern):**
```typescript
const { execute: addWatchedItemApi, error: addError } = useApi<MasterGroceryItem, [string, string]>(
(itemName, category) => apiClient.addWatchedItem(itemName, category)
(itemName, category) => apiClient.addWatchedItem(itemName, category),
);
const addWatchedItem = useCallback(async (itemName: string, category: string) => {
if (!userProfile) return;
const updatedOrNewItem = await addWatchedItemApi(itemName, category);
const addWatchedItem = useCallback(
async (itemName: string, category: string) => {
if (!userProfile) return;
const updatedOrNewItem = await addWatchedItemApi(itemName, category);
if (updatedOrNewItem) {
setWatchedItems((currentItems) => {
const itemExists = currentItems.some(
(item) => item.master_grocery_item_id === updatedOrNewItem.master_grocery_item_id
);
if (!itemExists) {
return [...currentItems, updatedOrNewItem].sort((a, b) => a.name.localeCompare(b.name));
}
return currentItems;
});
}
}, [userProfile, setWatchedItems, addWatchedItemApi]);
if (updatedOrNewItem) {
setWatchedItems((currentItems) => {
const itemExists = currentItems.some(
(item) => item.master_grocery_item_id === updatedOrNewItem.master_grocery_item_id,
);
if (!itemExists) {
return [...currentItems, updatedOrNewItem].sort((a, b) => a.name.localeCompare(b.name));
}
return currentItems;
});
}
},
[userProfile, setWatchedItems, addWatchedItemApi],
);
```
**After (TanStack Query):**
```typescript
const addWatchedItemMutation = useAddWatchedItemMutation();
const addWatchedItem = useCallback(async (itemName: string, category: string) => {
if (!userProfile) return;
const addWatchedItem = useCallback(
async (itemName: string, category: string) => {
if (!userProfile) return;
try {
await addWatchedItemMutation.mutateAsync({ itemName, category });
} catch (error) {
console.error('useWatchedItems: Failed to add item', error);
}
}, [userProfile, addWatchedItemMutation]);
try {
await addWatchedItemMutation.mutateAsync({ itemName, category });
} catch (error) {
console.error('useWatchedItems: Failed to add item', error);
}
},
[userProfile, addWatchedItemMutation],
);
```
**Benefits:**
- No manual state updates
- Cache automatically invalidated
- Success/error notifications handled
@@ -108,6 +117,7 @@ const addWatchedItem = useCallback(async (itemName: string, category: string) =>
### 2. Dramatically Simplified useShoppingLists
**Before:** 222 lines with:
- 5 separate `useApi` hooks
- Complex manual state synchronization
- Client-side duplicate checking
@@ -115,6 +125,7 @@ const addWatchedItem = useCallback(async (itemName: string, category: string) =>
- Try-catch blocks for each operation
**After:** 176 lines with:
- 5 TanStack Query mutation hooks
- Zero manual state management
- Server-side validation
@@ -122,6 +133,7 @@ const addWatchedItem = useCallback(async (itemName: string, category: string) =>
- Consistent error handling
**Removed Complexity:**
```typescript
// OLD: Manual state update with complex logic
const addItemToList = useCallback(async (listId: number, item: {...}) => {
@@ -158,6 +170,7 @@ const addItemToList = useCallback(async (listId: number, item: {...}) => {
```
**NEW: Simple mutation call:**
```typescript
const addItemToList = useCallback(async (listId: number, item: {...}) => {
if (!userProfile) return;
@@ -173,18 +186,20 @@ const addItemToList = useCallback(async (listId: number, item: {...}) => {
### 3. Cleaner Context Interface
**Before:**
```typescript
export interface UserDataContextType {
watchedItems: MasterGroceryItem[];
shoppingLists: ShoppingList[];
setWatchedItems: React.Dispatch<React.SetStateAction<MasterGroceryItem[]>>; // ❌ Removed
setShoppingLists: React.Dispatch<React.SetStateAction<ShoppingList[]>>; // ❌ Removed
setWatchedItems: React.Dispatch<React.SetStateAction<MasterGroceryItem[]>>; // ❌ Removed
setShoppingLists: React.Dispatch<React.SetStateAction<ShoppingList[]>>; // ❌ Removed
isLoading: boolean;
error: string | null;
}
```
**After:**
```typescript
export interface UserDataContextType {
watchedItems: MasterGroceryItem[];
@@ -195,6 +210,7 @@ export interface UserDataContextType {
```
**Why this matters:**
- Context now truly represents "server state" (read-only from context perspective)
- Mutations are handled separately via mutation hooks
- Clear separation of concerns: queries for reads, mutations for writes
@@ -202,12 +218,14 @@ export interface UserDataContextType {
## Benefits Achieved
### Performance
-**Eliminated redundant refetches** - No more manual state sync causing stale data
-**Automatic cache updates** - Mutations invalidate queries automatically
-**Optimistic updates ready** - Infrastructure supports adding optimistic updates in future
-**Reduced bundle size** - 52 lines less code in custom hooks
### Code Quality
-**Removed 150+ lines** of manual state management across all hooks
-**Eliminated useApi dependency** from user-facing hooks
-**Consistent error handling** - All mutations use same pattern
@@ -215,12 +233,14 @@ export interface UserDataContextType {
-**Removed complex logic** - No more client-side duplicate checking
### Developer Experience
-**Simpler hook implementations** - 46 lines less in useShoppingLists alone
-**Easier debugging** - React Query Devtools show all mutations
-**Type safety** - Mutation hooks provide full TypeScript types
-**Consistent patterns** - All operations follow same mutation pattern
### User Experience
-**Automatic notifications** - Success/error toasts on all operations
-**Fresh data** - Cache automatically updates after mutations
-**Better error messages** - Server-side validation provides better feedback
@@ -231,6 +251,7 @@ export interface UserDataContextType {
### Breaking Changes
**Direct UserDataContext usage:**
```typescript
// ❌ OLD: This no longer works
const { setWatchedItems } = useUserData();
@@ -245,6 +266,7 @@ addWatchedItem.mutate({ itemName: 'Milk', category: 'Dairy' });
### Non-Breaking Changes
**Custom hooks maintain backward compatibility:**
```typescript
// ✅ STILL WORKS: Custom hooks maintain same interface
const { addWatchedItem, removeWatchedItem } = useWatchedItems();
@@ -273,6 +295,7 @@ addWatchedItem.mutate({ itemName: 'Milk', category: 'Dairy' });
### Testing Approach
**Current tests mock useApi:**
```typescript
vi.mock('./useApi');
const mockedUseApi = vi.mocked(useApi);
@@ -280,6 +303,7 @@ mockedUseApi.mockReturnValue({ execute: mockFn, error: null, loading: false });
```
**New tests should mock mutations:**
```typescript
vi.mock('./mutations', () => ({
useAddWatchedItemMutation: vi.fn(),
@@ -300,17 +324,20 @@ useAddWatchedItemMutation.mockReturnValue({
## Remaining Work
### Immediate Follow-Up (Phase 4.5)
- [ ] Update [src/hooks/useWatchedItems.test.tsx](../src/hooks/useWatchedItems.test.tsx)
- [ ] Update [src/hooks/useShoppingLists.test.tsx](../src/hooks/useShoppingLists.test.tsx)
- [ ] Add integration tests for mutation flows
### Phase 5: Admin Features (Next)
- [ ] Create query hooks for admin features
- [ ] Migrate ActivityLog.tsx
- [ ] Migrate AdminStatsPage.tsx
- [ ] Migrate CorrectionsPage.tsx
### Phase 6: Final Cleanup
- [ ] Remove `useApi` hook (no longer used by core features)
- [ ] Remove `useApiOnMount` hook (deprecated)
- [ ] Remove custom `useInfiniteQuery` hook (deprecated)
@@ -350,12 +377,14 @@ None! Phase 4 implementation is complete and working.
## Performance Metrics
### Before Phase 4
- Multiple redundant state updates per mutation
- Client-side validation adding latency
- Complex nested state updates causing re-renders
- Manual cache synchronization prone to bugs
### After Phase 4
- Single mutation triggers automatic cache update
- Server-side validation (proper place for business logic)
- Simple refetch after mutation (no manual updates)
@@ -372,6 +401,7 @@ None! Phase 4 implementation is complete and working.
Phase 4 successfully refactored the remaining custom hooks (`useWatchedItems` and `useShoppingLists`) to use TanStack Query mutations, eliminating all manual state management for user-facing features. The codebase is now significantly simpler, more maintainable, and follows consistent patterns throughout.
**Key Achievements:**
- Removed 52 lines of code from custom hooks
- Eliminated 7 `useApi` dependencies
- Removed 150+ lines of manual state management
@@ -380,6 +410,7 @@ Phase 4 successfully refactored the remaining custom hooks (`useWatchedItems` an
- Zero regressions in functionality
**Next Steps**:
1. Update tests for refactored hooks (Phase 4.5 - follow-up)
2. Proceed to Phase 5 to migrate admin features
3. Final cleanup in Phase 6

32
plans/adr-0005-phase-5-summary.md
View File

@@ -100,6 +100,7 @@ Successfully completed Phase 5 of ADR-0005 by migrating all admin features from
### Before (Manual State Management)
**ActivityLog.tsx - Before:**
```typescript
const [logs, setLogs] = useState<ActivityLogItem[]>([]);
const [isLoading, setIsLoading] = useState(true);
@@ -116,8 +117,7 @@ useEffect(() => {
setError(null);
try {
const response = await fetchActivityLog(20, 0);
if (!response.ok)
throw new Error((await response.json()).message || 'Failed to fetch logs');
if (!response.ok) throw new Error((await response.json()).message || 'Failed to fetch logs');
setLogs(await response.json());
} catch (err) {
setError(err instanceof Error ? err.message : 'Failed to load activity.');
@@ -131,6 +131,7 @@ useEffect(() => {
```
**ActivityLog.tsx - After:**
```typescript
const { data: logs = [], isLoading, error } = useActivityLogQuery(20, 0);
```
@@ -138,6 +139,7 @@ const { data: logs = [], isLoading, error } = useActivityLogQuery(20, 0);
### Before (Manual Parallel Fetching)
**CorrectionsPage.tsx - Before:**
```typescript
const [corrections, setCorrections] = useState<SuggestedCorrection[]>([]);
const [isLoading, setIsLoading] = useState(true);
@@ -172,6 +174,7 @@ useEffect(() => {
```
**CorrectionsPage.tsx - After:**
```typescript
const {
data: corrections = [],
@@ -180,15 +183,9 @@ const {
refetch: refetchCorrections,
} = useSuggestedCorrectionsQuery();
const {
data: masterItems = [],
isLoading: isLoadingMasterItems,
} = useMasterItemsQuery();
const { data: masterItems = [], isLoading: isLoadingMasterItems } = useMasterItemsQuery();
const {
data: categories = [],
isLoading: isLoadingCategories,
} = useCategoriesQuery();
const { data: categories = [], isLoading: isLoadingCategories } = useCategoriesQuery();
const isLoading = isLoadingCorrections || isLoadingMasterItems || isLoadingCategories;
const error = correctionsError?.message || null;
@@ -197,12 +194,14 @@ const error = correctionsError?.message || null;
## Benefits Achieved
### Performance
-**Automatic parallel fetching** - CorrectionsPage fetches 3 queries simultaneously
-**Shared cache** - Multiple components can reuse the same queries
-**Smart refetching** - Queries refetch on window focus automatically
-**Stale-while-revalidate** - Shows cached data while fetching fresh data
### Code Quality
-**~77 lines removed** from admin components (-20% average)
-**Eliminated manual state management** for all admin queries
-**Consistent error handling** across all admin features
@@ -210,6 +209,7 @@ const error = correctionsError?.message || null;
-**Removed complex Promise.all logic** from CorrectionsPage
### Developer Experience
-**Simpler component code** - Focus on UI, not data fetching
-**Easier debugging** - React Query Devtools show all queries
-**Type safety** - Query hooks provide full TypeScript types
@@ -217,6 +217,7 @@ const error = correctionsError?.message || null;
-**Consistent patterns** - All admin features follow same query pattern
### User Experience
-**Faster perceived performance** - Show cached data instantly
-**Background updates** - Data refreshes without loading spinners
-**Network resilience** - Automatic retry on failure
@@ -224,12 +225,12 @@ const error = correctionsError?.message || null;
## Code Reduction Summary
| Component | Before | After | Reduction |
|-----------|--------|-------|-----------|
| **ActivityLog.tsx** | 158 lines | 133 lines | -25 lines (-16%) |
| **AdminStatsPage.tsx** | 104 lines | 78 lines | -26 lines (-25%) |
| Component | Before | After | Reduction |
| ----------------------- | ----------------------- | ----------------- | --------------------------- |
| **ActivityLog.tsx** | 158 lines | 133 lines | -25 lines (-16%) |
| **AdminStatsPage.tsx** | 104 lines | 78 lines | -26 lines (-25%) |
| **CorrectionsPage.tsx** | ~120 lines (state mgmt) | ~50 lines (hooks) | ~70 lines (-58% state code) |
| **Total Reduction** | ~382 lines | ~261 lines | **~121 lines (-32%)** |
| **Total Reduction** | ~382 lines | ~261 lines | **~121 lines (-32%)** |
**Note**: CorrectionsPage reduction is approximate as the full component includes rendering logic that wasn't changed.
@@ -334,6 +335,7 @@ export const AdminComponent: React.FC = () => {
All changes are backward compatible at the component level. Components maintain their existing props and behavior.
**Example: ActivityLog component still accepts same props:**
```typescript
interface ActivityLogProps {
userProfile: UserProfile | null;

78
plans/mcp-server-access-summary.md
View File

@@ -2,7 +2,8 @@
**Date**: 2026-01-08
**Environment**: Windows 10, VSCode with Claude Code integration
**Configuration Files**:
**Configuration Files**:
- [`mcp.json`](c:/Users/games3/AppData/Roaming/Code/User/mcp.json:1)
- [`mcp-servers.json`](c:/Users/games3/AppData/Roaming/Code/User/globalStorage/mcp-servers.json:1)
@@ -13,6 +14,7 @@
You have **8 MCP servers** configured in your environment. These servers extend Claude's capabilities by providing specialized tools for browser automation, file conversion, Git hosting integration, container management, filesystem access, and HTTP requests.
**Key Findings**:
- ✅ 7 servers are properly configured and ready to test
- ⚠️ 1 server requires token update (gitea-lan)
- 📋 Testing guide and automated script provided
@@ -23,11 +25,13 @@ You have **8 MCP servers** configured in your environment. These servers extend
## MCP Server Inventory
### 1. Chrome DevTools MCP Server
**Status**: ✅ Configured
**Type**: Browser Automation
**Command**: `npx -y chrome-devtools-mcp@latest`
**Capabilities**:
- Launch and control Chrome browser
- Navigate to URLs
- Click elements and interact with DOM
@@ -36,6 +40,7 @@ You have **8 MCP servers** configured in your environment. These servers extend
- Execute JavaScript in browser context
**Use Cases**:
- Web scraping
- Automated testing
- UI verification
@@ -43,6 +48,7 @@ You have **8 MCP servers** configured in your environment. These servers extend
- Debugging frontend issues
**Configuration Details**:
- Headless mode: Enabled
- Isolated: False (shares browser state)
- Channel: Stable
@@ -50,11 +56,13 @@ You have **8 MCP servers** configured in your environment. These servers extend
---
### 2. Markitdown MCP Server
**Status**: ✅ Configured
**Type**: File Conversion
**Command**: `C:\Users\games3\.local\bin\uvx.exe markitdown-mcp`
**Capabilities**:
- Convert PDF files to markdown
- Convert DOCX files to markdown
- Convert HTML to markdown
@@ -62,24 +70,28 @@ You have **8 MCP servers** configured in your environment. These servers extend
- Convert PowerPoint presentations
**Use Cases**:
- Document processing
- Content extraction from various formats
- Making documents AI-readable
- Converting legacy documents to markdown
**Notes**:
- Requires Python and `uvx` to be installed
- Uses Microsoft's Markitdown library
---
### 3. Gitea Torbonium
**Status**: ✅ Configured
**Type**: Git Hosting Integration
**Host**: https://gitea.torbonium.com
**Command**: `d:\gitea-mcp\gitea-mcp.exe run -t stdio`
**Capabilities**:
- List and manage repositories
- Create and update issues
- Manage pull requests
@@ -89,6 +101,7 @@ You have **8 MCP servers** configured in your environment. These servers extend
- Manage repository settings
**Use Cases**:
- Automated issue creation
- Repository management
- Code review automation
@@ -96,12 +109,14 @@ You have **8 MCP servers** configured in your environment. These servers extend
- Release management
**Configuration**:
- Token: Configured (ending in ...fcf8)
- Access: Full API access based on token permissions
---
### 4. Gitea LAN (Torbolan)
**Status**: ⚠️ Requires Configuration
**Type**: Git Hosting Integration
**Host**: https://gitea.torbolan.com
@@ -110,6 +125,7 @@ You have **8 MCP servers** configured in your environment. These servers extend
**Issue**: Access token is set to `REPLACE_WITH_NEW_TOKEN`
**Action Required**:
1. Log into https://gitea.torbolan.com
2. Navigate to Settings → Applications
3. Generate a new access token
@@ -120,6 +136,7 @@ You have **8 MCP servers** configured in your environment. These servers extend
---
### 5. Gitea Projectium
**Status**: ✅ Configured
**Type**: Git Hosting Integration
**Host**: https://gitea.projectium.com
@@ -128,6 +145,7 @@ You have **8 MCP servers** configured in your environment. These servers extend
**Capabilities**: Same as Gitea Torbonium
**Configuration**:
- Token: Configured (ending in ...9ef)
- This appears to be the Gitea instance for your current project
@@ -136,11 +154,13 @@ You have **8 MCP servers** configured in your environment. These servers extend
---
### 6. Podman/Docker MCP Server
**Status**: ✅ Configured
**Type**: Container Management
**Command**: `npx -y @modelcontextprotocol/server-docker`
**Capabilities**:
- List running containers
- Start and stop containers
- View container logs
@@ -150,6 +170,7 @@ You have **8 MCP servers** configured in your environment. These servers extend
- Create and manage networks
**Use Cases**:
- Container orchestration
- Development environment management
- Log analysis
@@ -157,22 +178,26 @@ You have **8 MCP servers** configured in your environment. These servers extend
- Image management
**Configuration**:
- Docker Host: `npipe:////./pipe/docker_engine`
- Requires: Docker Desktop or Podman running on Windows
**Prerequisites**:
- Docker Desktop must be running
- Named pipe access configured
---
### 7. Filesystem MCP Server
**Status**: ✅ Configured
**Type**: File System Access
**Path**: `D:\gitea\flyer-crawler.projectium.com\flyer-crawler.projectium.com`
**Command**: `npx -y @modelcontextprotocol/server-filesystem`
**Capabilities**:
- List directory contents recursively
- Read file contents
- Write and modify files
@@ -181,27 +206,31 @@ You have **8 MCP servers** configured in your environment. These servers extend
- Create and delete files/directories
**Use Cases**:
- Project file management
- Bulk file operations
- Code generation and modifications
- File content analysis
- Project structure exploration
**Security Note**:
**Security Note**:
This server has full read/write access to your project directory. It operates within the specified directory only.
**Scope**:
**Scope**:
- Limited to: `D:\gitea\flyer-crawler.projectium.com\flyer-crawler.projectium.com`
- Cannot access files outside this directory
---
### 8. Fetch MCP Server
**Status**: ✅ Configured
**Type**: HTTP Client
**Command**: `npx -y @modelcontextprotocol/server-fetch`
**Capabilities**:
- Send HTTP GET requests
- Send HTTP POST requests
- Send PUT, DELETE, PATCH requests
@@ -211,6 +240,7 @@ This server has full read/write access to your project directory. It operates wi
- Handle authentication
**Use Cases**:
- API testing
- Web scraping
- Data fetching from external services
@@ -218,6 +248,7 @@ This server has full read/write access to your project directory. It operates wi
- Integration with external APIs
**Examples**:
- Fetch data from REST APIs
- Download web content
- Test API endpoints
@@ -228,11 +259,12 @@ This server has full read/write access to your project directory. It operates wi
## Current Status: MCP Server Tool Availability
**Important Note**: While these MCP servers are configured in your environment, they are **not currently exposed as callable tools** in this Claude Code session.
**Important Note**: While these MCP servers are configured in your environment, they are **not currently exposed as callable tools** in this Claude Code session.
### What This Means:
MCP servers typically work by:
1. Running as separate processes
2. Exposing tools and resources via the Model Context Protocol
3. Being connected to the AI assistant by the client application (VSCode)
@@ -240,12 +272,14 @@ MCP servers typically work by:
### Current Situation:
In the current session, Claude Code has access to:
- ✅ Built-in file operations (read, write, search, list)
- ✅ Browser actions
- ✅ Mode switching
- ✅ Task management tools
But does **NOT** have direct access to:
- ❌ MCP server-specific tools (e.g., Gitea API operations)
- ❌ Chrome DevTools controls
- ❌ Markitdown conversion functions
@@ -255,6 +289,7 @@ But does **NOT** have direct access to:
### Why This Happens:
MCP servers need to be:
1. Actively connected by the client (VSCode)
2. Running in the background
3. Properly registered with the AI assistant
@@ -277,6 +312,7 @@ cd plans
```
This will:
- Test each server's basic functionality
- Check API connectivity for Gitea servers
- Verify Docker daemon access
@@ -297,6 +333,7 @@ mcp-inspector npx -y @modelcontextprotocol/server-filesystem "D:\gitea\flyer-cra
```
The inspector provides a web UI to:
- View available tools
- Test tool invocations
- See real-time logs
@@ -343,14 +380,14 @@ Follow the comprehensive guide in [`mcp-server-testing-guide.md`](plans/mcp-serv
## MCP Server Use Case Matrix
| Server | Code Analysis | Testing | Deployment | Documentation | API Integration |
|--------|--------------|---------|------------|---------------|-----------------|
| Chrome DevTools | ✓ (UI testing) | ✓✓✓ | - | ✓ (screenshots) | ✓ |
| Markitdown | - | - | - | ✓✓✓ | - |
| Gitea (all 3) | ✓✓✓ | ✓ | ✓✓✓ | ✓✓ | ✓✓✓ |
| Docker | ✓ | ✓✓✓ | ✓✓✓ | - | ✓ |
| Filesystem | ✓✓✓ | ✓✓ | ✓ | ✓✓ | ✓ |
| Fetch | ✓ | ✓✓ | ✓ | - | ✓✓✓ |
| Server | Code Analysis | Testing | Deployment | Documentation | API Integration |
| --------------- | -------------- | ------- | ---------- | --------------- | --------------- |
| Chrome DevTools | ✓ (UI testing) | ✓✓✓ | - | ✓ (screenshots) | ✓ |
| Markitdown | - | - | - | ✓✓✓ | - |
| Gitea (all 3) | ✓✓✓ | ✓ | ✓✓✓ | ✓✓ | ✓✓✓ |
| Docker | ✓ | ✓✓✓ | ✓✓✓ | - | ✓ |
| Filesystem | ✓✓✓ | ✓✓ | ✓ | ✓✓ | ✓ |
| Fetch | ✓ | ✓✓ | ✓ | - | ✓✓✓ |
Legend: ✓✓✓ = Primary use case, ✓✓ = Strong use case, ✓ = Applicable, - = Not applicable
@@ -359,12 +396,14 @@ Legend: ✓✓✓ = Primary use case, ✓✓ = Strong use case, ✓ = Applicable
## Potential Workflows
### Workflow 1: Automated Documentation Updates
1. **Fetch server**: Get latest API documentation from external service
2. **Markitdown**: Convert to markdown format
3. **Filesystem server**: Write to project documentation folder
4. **Gitea server**: Create commit and push changes
### Workflow 2: Container-Based Testing
1. **Docker server**: Start test containers
2. **Fetch server**: Send test API requests
3. **Docker server**: Collect container logs
@@ -372,6 +411,7 @@ Legend: ✓✓✓ = Primary use case, ✓✓ = Strong use case, ✓ = Applicable
5. **Gitea server**: Update test status in issues
### Workflow 3: Web UI Testing
1. **Chrome DevTools**: Launch browser and navigate to app
2. **Chrome DevTools**: Interact with UI elements
3. **Chrome DevTools**: Capture screenshots
@@ -379,6 +419,7 @@ Legend: ✓✓✓ = Primary use case, ✓✓ = Strong use case, ✓ = Applicable
5. **Gitea server**: Update test documentation
### Workflow 4: Repository Management
1. **Gitea server**: List all repositories
2. **Gitea server**: Check for outdated dependencies
3. **Gitea server**: Create issues for updates needed
@@ -389,24 +430,28 @@ Legend: ✓✓✓ = Primary use case, ✓✓ = Strong use case, ✓ = Applicable
## Next Steps
### Phase 1: Verification (Immediate)
1. Run the test script: [`test-mcp-servers.ps1`](plans/test-mcp-servers.ps1:1)
2. Review results and identify issues
3. Fix Gitea LAN token configuration
4. Re-test all servers
### Phase 2: Documentation (Short-term)
1. Document successful test results
2. Create usage examples for each server
3. Set up troubleshooting guides
4. Document common error scenarios
### Phase 3: Integration (Medium-term)
1. Verify MCP server connectivity in Claude Code sessions
2. Test tool availability and functionality
3. Create workflow templates
4. Integrate into development processes
### Phase 4: Optimization (Long-term)
1. Monitor MCP server performance
2. Optimize configurations
3. Add additional MCP servers as needed
@@ -419,7 +464,7 @@ Legend: ✓✓✓ = Primary use case, ✓✓ = Strong use case, ✓ = Applicable
- **MCP Protocol Specification**: https://modelcontextprotocol.io
- **Testing Guide**: [`mcp-server-testing-guide.md`](plans/mcp-server-testing-guide.md:1)
- **Test Script**: [`test-mcp-servers.ps1`](plans/test-mcp-servers.ps1:1)
- **Configuration Files**:
- **Configuration Files**:
- [`mcp.json`](c:/Users/games3/AppData/Roaming/Code/User/mcp.json:1)
- [`mcp-servers.json`](c:/Users/games3/AppData/Roaming/Code/User/globalStorage/mcp-servers.json:1)
@@ -447,6 +492,7 @@ Legend: ✓✓✓ = Primary use case, ✓✓ = Strong use case, ✓ = Applicable
## Conclusion
You have a comprehensive MCP server setup that provides powerful capabilities for:
- **Browser automation** (Chrome DevTools)
- **Document conversion** (Markitdown)
- **Git hosting integration** (3 Gitea instances)
@@ -454,12 +500,14 @@ You have a comprehensive MCP server setup that provides powerful capabilities fo
- **File system operations** (Filesystem)
- **HTTP requests** (Fetch)
**Immediate Action Required**:
**Immediate Action Required**:
- Fix the Gitea LAN token configuration
- Run the test script to verify all servers are operational
- Review test results and address any failures
**Current Limitation**:
**Current Limitation**:
- MCP server tools are not exposed in the current Claude Code session
- May require VSCode or client-side configuration to enable

52
plans/mcp-server-testing-guide.md
View File

@@ -9,9 +9,11 @@ MCP (Model Context Protocol) servers are standalone processes that expose tools
## Testing Prerequisites
1. **MCP Inspector Tool** - Install the official MCP testing tool:
```bash
npm install -g @modelcontextprotocol/inspector
```
```powershell
npm install -g @modelcontextprotocol/inspector
```
@@ -25,20 +27,24 @@ MCP (Model Context Protocol) servers are standalone processes that expose tools
**Purpose**: Browser automation and Chrome DevTools integration
### Test Command:
```bash
npx -y chrome-devtools-mcp@latest --headless true --isolated false --channel stable
```
```powershell
npx -y chrome-devtools-mcp@latest --headless true --isolated false --channel stable
```
### Expected Capabilities:
- Browser launch and control
- DOM inspection
- Network monitoring
- JavaScript execution in browser context
### Manual Test Steps:
1. Run the command above
2. The server should start and output MCP protocol messages
3. Use MCP Inspector to connect:
@@ -50,6 +56,7 @@ npx -y chrome-devtools-mcp@latest --headless true --isolated false --channel sta
```
### Success Indicators:
- Server starts without errors
- Lists available tools (e.g., `navigate`, `click`, `screenshot`)
- Can execute browser actions
@@ -61,20 +68,24 @@ npx -y chrome-devtools-mcp@latest --headless true --isolated false --channel sta
**Purpose**: Convert various file formats to markdown
### Test Command:
```bash
C:\Users\games3\.local\bin\uvx.exe markitdown-mcp
```
```powershell
C:\Users\games3\.local\bin\uvx.exe markitdown-mcp
```
### Expected Capabilities:
- Convert PDF to markdown
- Convert DOCX to markdown
- Convert HTML to markdown
- Convert images (OCR) to markdown
### Manual Test Steps:
1. Ensure `uvx` is installed (Python tool)
2. Run the command above
3. Test with MCP Inspector:
@@ -86,11 +97,13 @@ C:\Users\games3\.local\bin\uvx.exe markitdown-mcp
```
### Success Indicators:
- Server initializes successfully
- Lists conversion tools
- Can convert a test file
### Troubleshooting:
- If `uvx` is not found, install it:
```bash
pip install uvx
@@ -111,6 +124,7 @@ You have three Gitea server configurations. All use the same executable but conn
**Host**: https://gitea.torbonium.com
#### Test Command:
```powershell
$env:GITEA_HOST="https://gitea.torbonium.com"
$env:GITEA_ACCESS_TOKEN="391c9ddbe113378bc87bb8184800ba954648fcf8"
@@ -118,6 +132,7 @@ d:\gitea-mcp\gitea-mcp.exe run -t stdio
```
#### Expected Capabilities:
- List repositories
- Create/update issues
- Manage pull requests
@@ -125,6 +140,7 @@ d:\gitea-mcp\gitea-mcp.exe run -t stdio
- Manage branches
#### Manual Test Steps:
1. Set environment variables
2. Run gitea-mcp.exe
3. Use MCP Inspector or test direct API access:
@@ -141,6 +157,7 @@ d:\gitea-mcp\gitea-mcp.exe run -t stdio
**Status**: ⚠️ Token needs replacement
#### Test Command:
```powershell
$env:GITEA_HOST="https://gitea.torbolan.com"
$env:GITEA_ACCESS_TOKEN="REPLACE_WITH_NEW_TOKEN" # ⚠️ UPDATE THIS
@@ -148,6 +165,7 @@ d:\gitea-mcp\gitea-mcp.exe run -t stdio
```
#### Before Testing:
1. Generate a new access token:
- Log into https://gitea.torbolan.com
- Go to Settings → Applications → Generate New Token
@@ -158,6 +176,7 @@ d:\gitea-mcp\gitea-mcp.exe run -t stdio
**Host**: https://gitea.projectium.com
#### Test Command:
```powershell
$env:GITEA_HOST="https://gitea.projectium.com"
$env:GITEA_ACCESS_TOKEN="c72bc0f14f623fec233d3c94b3a16397fe3649ef"
@@ -165,12 +184,14 @@ d:\gitea-mcp\gitea-mcp.exe run -t stdio
```
### Success Indicators for All Gitea Servers:
- Server connects to Gitea instance
- Lists available repositories
- Can read repository metadata
- Authentication succeeds
### Troubleshooting:
- **401 Unauthorized**: Token is invalid or expired
- **Connection refused**: Check if Gitea instance is accessible
- **SSL errors**: Verify HTTPS certificate validity
@@ -182,12 +203,14 @@ d:\gitea-mcp\gitea-mcp.exe run -t stdio
**Purpose**: Container management and Docker operations
### Test Command:
```powershell
$env:DOCKER_HOST="npipe:////./pipe/docker_engine"
npx -y @modelcontextprotocol/server-docker
```
### Expected Capabilities:
- List containers
- Start/stop containers
- View container logs
@@ -195,6 +218,7 @@ npx -y @modelcontextprotocol/server-docker
- Manage images
### Manual Test Steps:
1. Ensure Docker Desktop or Podman is running
2. Verify named pipe exists: `npipe:////./pipe/docker_engine`
3. Run the server command
@@ -207,17 +231,20 @@ npx -y @modelcontextprotocol/server-docker
```
### Verify Docker Access Directly:
```powershell
docker ps
docker images
```
### Success Indicators:
- Server connects to Docker daemon
- Can list containers and images
- Can execute container operations
### Troubleshooting:
- **Cannot connect to Docker daemon**: Ensure Docker Desktop is running
- **Named pipe error**: Check DOCKER_HOST configuration
- **Permission denied**: Run as administrator
@@ -229,14 +256,17 @@ docker images
**Purpose**: Access and manipulate files in specified directory
### Test Command:
```bash
npx -y @modelcontextprotocol/server-filesystem "D:\gitea\flyer-crawler.projectium.com\flyer-crawler.projectium.com"
```
```powershell
npx -y @modelcontextprotocol/server-filesystem "D:\gitea\flyer-crawler.projectium.com\flyer-crawler.projectium.com"
```
### Expected Capabilities:
- List directory contents
- Read files
- Write files
@@ -244,6 +274,7 @@ npx -y @modelcontextprotocol/server-filesystem "D:\gitea\flyer-crawler.projectiu
- Get file metadata
### Manual Test Steps:
1. Run the command above
2. Use MCP Inspector:
```bash
@@ -255,18 +286,21 @@ npx -y @modelcontextprotocol/server-filesystem "D:\gitea\flyer-crawler.projectiu
3. Test listing directory contents
### Verify Directory Access:
```powershell
Test-Path "D:\gitea\flyer-crawler.projectium.com\flyer-crawler.projectium.com"
Get-ChildItem "D:\gitea\flyer-crawler.projectium.com\flyer-crawler.projectium.com" | Select-Object -First 5
```
### Success Indicators:
- Server starts successfully
- Can list directory contents
- Can read file contents
- Write operations work (if permissions allow)
### Security Note:
This server has access to your entire project directory. Ensure it's only used in trusted contexts.
---
@@ -276,14 +310,17 @@ This server has access to your entire project directory. Ensure it's only used i
**Purpose**: Make HTTP requests to external APIs and websites
### Test Command:
```bash
npx -y @modelcontextprotocol/server-fetch
```
```powershell
npx -y @modelcontextprotocol/server-fetch
```
### Expected Capabilities:
- HTTP GET requests
- HTTP POST requests
- Handle JSON/text responses
@@ -291,6 +328,7 @@ npx -y @modelcontextprotocol/server-fetch
- Follow redirects
### Manual Test Steps:
1. Run the server command
2. Use MCP Inspector:
```bash
@@ -302,9 +340,11 @@ npx -y @modelcontextprotocol/server-fetch
3. Test fetching a URL through the inspector
### Test Fetch Capability Directly:
```bash
curl https://api.github.com/users/github
```
```powershell
# Test if curl/web requests work
curl https://api.github.com/users/github
@@ -313,6 +353,7 @@ Invoke-RestMethod -Uri "https://api.github.com/users/github"
```
### Success Indicators:
- Server initializes
- Can fetch URLs
- Returns proper HTTP responses
@@ -414,6 +455,7 @@ npm install -g @modelcontextprotocol/inspector
# Test any server
mcp-inspector <command> <args>
```
```powershell
# Install globally
npm install -g @modelcontextprotocol/inspector
@@ -434,6 +476,7 @@ mcp-inspector npx -y @modelcontextprotocol/server-filesystem "D:\gitea\flyer-cra
# Test Docker server
mcp-inspector npx -y @modelcontextprotocol/server-docker
```
```powershell
# Test fetch server
mcp-inspector npx -y @modelcontextprotocol/server-fetch
@@ -450,19 +493,25 @@ mcp-inspector npx -y @modelcontextprotocol/server-docker
## Common Issues and Solutions
### Issue: "Cannot find module" or "Command not found"
**Solution**: Ensure Node.js and npm are installed and in PATH
### Issue: MCP server starts but doesn't respond
**Solution**: Check server logs, verify stdio communication, ensure no JSON parsing errors
### Issue: Authentication failures with Gitea
**Solution**:
**Solution**:
1. Verify tokens haven't expired
2. Check token permissions in Gitea settings
3. Ensure network access to Gitea instances
### Issue: Docker server cannot connect
**Solution**:
1. Start Docker Desktop
2. Verify DOCKER_HOST environment variable
3. Check Windows named pipe permissions
@@ -472,6 +521,7 @@ mcp-inspector npx -y @modelcontextprotocol/server-docker
## Next Steps
After testing:
1. Document which servers are working
2. Fix any configuration issues
3. Update tokens as needed

11
plans/podman-mcp-test-results.md
View File

@@ -6,6 +6,7 @@
## Configuration Summary
### MCP Configuration File
**Location**: `c:/Users/games3/AppData/Roaming/Code/User/mcp.json`
```json
@@ -19,6 +20,7 @@
```
### Key Configuration Details
- **Package**: `docker-mcp` (community MCP server with SSH support)
- **Connection Method**: SSH to Podman machine
- **SSH Endpoint**: `root@127.0.0.1:2972`
@@ -27,12 +29,14 @@
## Podman System Status
### Podman Machine
```
NAME VM TYPE CREATED CPUS MEMORY DISK SIZE
podman-machine-default wsl 4 weeks ago 4 2GiB 100GiB
```
### Connection Information
```
Name: podman-machine-default-root
URI: ssh://root@127.0.0.1:2972/run/podman/podman.sock
@@ -40,7 +44,9 @@ Default: true
```
### Container Status
Podman is operational with 3 containers:
- `flyer-dev` (Ubuntu) - Exited
- `flyer-crawler-redis` (Redis) - Exited
- `flyer-crawler-postgres` (PostGIS) - Exited
@@ -48,11 +54,13 @@ Podman is operational with 3 containers:
## Test Results
### Command Line Tests
**Podman CLI**: Working - `podman ps` returns successfully
**Container Management**: Working - Can list and manage containers
**Socket Connection**: Working - SSH connection to Podman machine functional
### MCP Server Integration Tests
**Configuration File**: Updated and valid JSON
**VSCode Restart**: Completed to load new MCP configuration
**Package Selection**: Using `docker-mcp` (supports SSH connections)
@@ -85,16 +93,19 @@ Once the MCP server is fully loaded, the following tools should be available:
### If MCP Server Doesn't Connect
1. **Verify Podman is running**:
```bash
podman ps
```
2. **Check SSH connection**:
```bash
podman system connection list
```
3. **Test docker-mcp package manually**:
```powershell
$env:DOCKER_HOST="ssh://root@127.0.0.1:2972/run/podman/podman.sock"
npx -y docker-mcp

106
scripts/analyze-pm2-crashes.sh Normal file
View File

@@ -0,0 +1,106 @@
#!/bin/bash
# scripts/analyze-pm2-crashes.sh
#
# Analyzes PM2 logs to identify crash patterns and problematic projects
set -e
PM2_LOG="/home/gitea-runner/.pm2/pm2.log"
echo "========================================="
echo "PM2 CRASH ANALYSIS TOOL"
echo "========================================="
echo ""
if [ ! -f "$PM2_LOG" ]; then
echo "❌ PM2 log file not found at: $PM2_LOG"
exit 1
fi
echo "Analyzing PM2 log file: $PM2_LOG"
echo "Log file size: $(du -h "$PM2_LOG" | cut -f1)"
echo "Last modified: $(stat -c %y "$PM2_LOG")"
echo ""
echo "========================================="
echo "1. RECENT PM2 DAEMON RESTARTS"
echo "========================================="
grep -i "New PM2 Daemon started" "$PM2_LOG" | tail -5 || echo "No daemon restarts found"
echo ""
echo "========================================="
echo "2. ENOENT / CWD ERRORS"
echo "========================================="
grep -i "ENOENT\|uv_cwd\|no such file or directory" "$PM2_LOG" | tail -20 || echo "No ENOENT errors found"
echo ""
echo "========================================="
echo "3. PROCESS CRASH PATTERNS"
echo "========================================="
echo "Searching for app crash events..."
grep -i "App \[.*\] exited\|App \[.*\] errored\|App \[.*\] crashed" "$PM2_LOG" | tail -20 || echo "No app crashes found"
echo ""
echo "========================================="
echo "4. PROJECTS INVOLVED IN CRASHES"
echo "========================================="
echo "Extracting project names from crash logs..."
grep -i "ENOENT\|crash\|error" "$PM2_LOG" | grep -oE "flyer-crawler[a-z-]*|stock-alert[a-z-]*" | sort | uniq -c | sort -rn || echo "No project names found in crashes"
echo ""
echo "========================================="
echo "5. TIMELINE OF RECENT ERRORS (Last 50)"
echo "========================================="
grep -E "^[0-9]{4}-[0-9]{2}-[0-9]{2}" "$PM2_LOG" | grep -i "error\|crash\|ENOENT" | tail -50 || echo "No timestamped errors found"
echo ""
echo "========================================="
echo "6. CURRENT PM2 STATE"
echo "========================================="
pm2 list
echo ""
echo "========================================="
echo "7. PROCESSES WITH MISSING CWD"
echo "========================================="
pm2 jlist | jq -r '.[] | select(.pm2_env.pm_cwd) | "\(.name): \(.pm2_env.pm_cwd)"' | while read line; do
PROC_NAME=$(echo "$line" | cut -d: -f1)
CWD=$(echo "$line" | cut -d: -f2- | xargs)
if [ ! -d "$CWD" ]; then
echo "$PROC_NAME - CWD missing: $CWD"
else
echo "$PROC_NAME - CWD exists: $CWD"
fi
done
echo ""
echo "========================================="
echo "8. RECOMMENDATIONS"
echo "========================================="
echo ""
# Count ENOENT errors
ENOENT_COUNT=$(grep -c "ENOENT\|uv_cwd" "$PM2_LOG" 2>/dev/null || echo "0")
if [ "$ENOENT_COUNT" -gt 0 ]; then
echo "⚠️ Found $ENOENT_COUNT ENOENT/CWD errors in logs"
echo " This indicates processes losing their working directory during deployment"
echo " Solution: Ensure PM2 processes are stopped BEFORE rsync --delete operations"
echo ""
fi
# Check for multiple projects
FLYER_PROCESSES=$(pm2 jlist | jq '[.[] | select(.name | contains("flyer-crawler"))] | length' 2>/dev/null || echo "0")
STOCK_PROCESSES=$(pm2 jlist | jq '[.[] | select(.name | contains("stock-alert"))] | length' 2>/dev/null || echo "0")
if [ "$FLYER_PROCESSES" -gt 0 ] && [ "$STOCK_PROCESSES" -gt 0 ]; then
echo " Multiple projects detected:"
echo " - Flyer-crawler: $FLYER_PROCESSES processes"
echo " - Stock-alert: $STOCK_PROCESSES processes"
echo " Recommendation: Ensure deployments don't interfere with each other"
echo ""
fi
echo "✅ Analysis complete"
echo ""
echo "To save this report:"
echo " bash scripts/analyze-pm2-crashes.sh > pm2-crash-report.txt"

4
scripts/clean.mjs
View File

@@ -50,12 +50,12 @@ async function main() {
DIRECTORIES_TO_CLEAN.map((dir) => {
const absolutePath = resolve(projectRoot, dir);
return removeDirectory(absolutePath);
})
}),
);
const successCount = results.filter(Boolean).length;
console.log(
`Clean complete: ${successCount}/${DIRECTORIES_TO_CLEAN.length} directories processed.`
`Clean complete: ${successCount}/${DIRECTORIES_TO_CLEAN.length} directories processed.`,
);
// Always exit successfully (matches rimraf behavior)

3
scripts/dev-entrypoint.sh
View File

@@ -149,6 +149,9 @@ pm2 delete all 2>/dev/null || true
# Start PM2 with the dev ecosystem config
pm2 start /app/ecosystem.dev.config.cjs
# Save PM2 process list to persist across daemon restarts
pm2 save
# Show PM2 status
echo ""
echo "--- PM2 Process Status ---"

14
src/components/StatCard.test.tsx
View File

@@ -9,11 +9,7 @@ import '@testing-library/jest-dom';
describe('StatCard', () => {
it('renders title and value correctly', () => {
renderWithProviders(
<StatCard
title="Total Users"
value="1,234"
icon={<div data-testid="mock-icon">Icon</div>}
/>,
<StatCard title="Total Users" value="1,234" icon={<div data-testid="mock-icon">Icon</div>} />,
);
expect(screen.getByText('Total Users')).toBeInTheDocument();
@@ -22,13 +18,9 @@ describe('StatCard', () => {
it('renders the icon', () => {
renderWithProviders(
<StatCard
title="Total Users"
value="1,234"
icon={<div data-testid="mock-icon">Icon</div>}
/>,
<StatCard title="Total Users" value="1,234" icon={<div data-testid="mock-icon">Icon</div>} />,
);
expect(screen.getByTestId('mock-icon')).toBeInTheDocument();
});
});
});

2
src/config/rateLimiters.ts
View File

@@ -144,4 +144,4 @@ export const batchLimiter = rateLimit({
message: 'Too many batch requests from this IP, please try again later.',
});
export const budgetUpdateLimiter = batchLimiter; // Alias
export const budgetUpdateLimiter = batchLimiter; // Alias

9
src/hooks/useAppInitialization.test.tsx
View File

@@ -108,7 +108,14 @@ describe('useAppInitialization Hook', () => {
});
it('should open "What\'s New" modal if version is new', () => {
vi.spyOn(window.localStorage, 'getItem').mockReturnValue('1.0.0');
// The hook only shows "What's New" if:
// 1. The app version differs from lastSeenVersion
// 2. The onboarding tour has been completed (flyer_crawler_onboarding_completed === 'true')
vi.spyOn(window.localStorage, 'getItem').mockImplementation((key) => {
if (key === 'lastSeenVersion') return '1.0.0';
if (key === 'flyer_crawler_onboarding_completed') return 'true';
return null;
});
renderHook(() => useAppInitialization(), { wrapper });
expect(mockOpenModal).toHaveBeenCalledWith('whatsNew');
expect(window.localStorage.setItem).toHaveBeenCalledWith('lastSeenVersion', '1.0.1');

12
src/pages/admin/FlyerReviewPage.tsx
View File

@@ -73,9 +73,15 @@ export const FlyerReviewPage: React.FC = () => {
flyers.map((flyer) => (
<li key={flyer.flyer_id} className="p-4 hover:bg-gray-50 dark:hover:bg-gray-700/50">
<Link to={`/flyers/${flyer.flyer_id}`} className="flex items-center space-x-4">
<img src={flyer.icon_url || undefined} alt={flyer.store?.name || 'Unknown Store'} className="w-12 h-12 rounded-md object-cover" />
<img
src={flyer.icon_url || undefined}
alt={flyer.store?.name || 'Unknown Store'}
className="w-12 h-12 rounded-md object-cover"
/>
<div className="flex-1">
<p className="font-semibold text-gray-800 dark:text-white">{flyer.store?.name || 'Unknown Store'}</p>
<p className="font-semibold text-gray-800 dark:text-white">
{flyer.store?.name || 'Unknown Store'}
</p>
<p className="text-sm text-gray-500 dark:text-gray-400">{flyer.file_name}</p>
</div>
<div className="text-right text-sm text-gray-500 dark:text-gray-400">
@@ -90,4 +96,4 @@ export const FlyerReviewPage: React.FC = () => {
)}
</div>
);
};
};

4
src/pages/admin/components/StatCard.test.tsx
View File

@@ -6,7 +6,9 @@ import { renderWithProviders } from '../../../tests/utils/renderWithProviders';
describe('StatCard', () => {
it('should render the title and value correctly', () => {
renderWithProviders(<StatCard title="Test Stat" value="1,234" icon={<div data-testid="icon" />} />);
renderWithProviders(
<StatCard title="Test Stat" value="1,234" icon={<div data-testid="icon" />} />,
);
expect(screen.getByText('Test Stat')).toBeInTheDocument();
expect(screen.getByText('1,234')).toBeInTheDocument();

2
src/providers/AppProviders.test.tsx
View File

@@ -69,4 +69,4 @@ describe('AppProviders', () => {
expect(masterItemsProvider).toContainElement(userDataProvider);
expect(userDataProvider).toContainElement(child);
});
});
});

2
src/providers/FlyersProvider.tsx
View File

@@ -35,7 +35,7 @@ export const FlyersProvider: React.FC<{ children: ReactNode }> = ({ children })
isRefetchingFlyers,
refetchFlyers,
}),
[flyers, isLoadingFlyers, error, isRefetchingFlyers, refetchFlyers]
[flyers, isLoadingFlyers, error, isRefetchingFlyers, refetchFlyers],
);
return <FlyersContext.Provider value={value}>{children}</FlyersContext.Provider>;

8
src/providers/MasterItemsProvider.tsx
View File

@@ -12,11 +12,7 @@ import { useMasterItemsQuery } from '../hooks/queries/useMasterItemsQuery';
* Master items are cached longer (10 minutes) since they change infrequently.
*/
export const MasterItemsProvider: React.FC<{ children: ReactNode }> = ({ children }) => {
const {
data: masterItems = [],
isLoading,
error,
} = useMasterItemsQuery();
const { data: masterItems = [], isLoading, error } = useMasterItemsQuery();
const value = useMemo(
() => ({
@@ -24,7 +20,7 @@ export const MasterItemsProvider: React.FC<{ children: ReactNode }> = ({ childre
isLoading,
error: error?.message || null,
}),
[masterItems, isLoading, error]
[masterItems, isLoading, error],
);
return <MasterItemsContext.Provider value={value}>{children}</MasterItemsContext.Provider>;

10
src/providers/UserDataProvider.tsx
View File

@@ -38,7 +38,15 @@ export const UserDataProvider: React.FC<{ children: ReactNode }> = ({ children }
isLoading: isEnabled && (isLoadingWatched || isLoadingLists),
error: watchedError?.message || listsError?.message || null,
}),
[watchedItems, shoppingLists, isEnabled, isLoadingWatched, isLoadingLists, watchedError, listsError]
[
watchedItems,
shoppingLists,
isEnabled,
isLoadingWatched,
isLoadingLists,
watchedError,
listsError,
],
);
return <UserDataContext.Provider value={value}>{children}</UserDataContext.Provider>;

16
src/routes/ai.routes.test.ts
View File

@@ -705,7 +705,9 @@ describe('AI Routes (/api/v1/ai)', () => {
});
it('should return 200 with a stubbed response on success', async () => {
const response = await supertest(app).post('/api/v1/ai/check-flyer').attach('image', imagePath);
const response = await supertest(app)
.post('/api/v1/ai/check-flyer')
.attach('image', imagePath);
expect(response.status).toBe(200);
expect(response.body.data.is_flyer).toBe(true);
});
@@ -717,7 +719,9 @@ describe('AI Routes (/api/v1/ai)', () => {
throw new Error('Logging failed');
});
// Attach a valid file to get past the `if (!req.file)` check.
const response = await supertest(app).post('/api/v1/ai/check-flyer').attach('image', imagePath);
const response = await supertest(app)
.post('/api/v1/ai/check-flyer')
.attach('image', imagePath);
expect(response.status).toBe(500);
});
});
@@ -900,14 +904,18 @@ describe('AI Routes (/api/v1/ai)', () => {
});
it('POST /generate-image should return 501 Not Implemented', async () => {
const response = await supertest(app).post('/api/v1/ai/generate-image').send({ prompt: 'test' });
const response = await supertest(app)
.post('/api/v1/ai/generate-image')
.send({ prompt: 'test' });
expect(response.status).toBe(501);
expect(response.body.error.message).toBe('Image generation is not yet implemented.');
});
it('POST /generate-speech should return 501 Not Implemented', async () => {
const response = await supertest(app).post('/api/v1/ai/generate-speech').send({ text: 'test' });
const response = await supertest(app)
.post('/api/v1/ai/generate-speech')
.send({ text: 'test' });
expect(response.status).toBe(501);
expect(response.body.error.message).toBe('Speech generation is not yet implemented.');
});

8
src/routes/gamification.routes.test.ts
View File

@@ -204,7 +204,9 @@ describe('Gamification Routes (/api/v1/achievements)', () => {
mockedIsAdmin.mockImplementation((req: Request, res: Response, next: NextFunction) => next()); // Grant admin access
vi.mocked(db.gamificationRepo.awardAchievement).mockResolvedValue(undefined);
const response = await supertest(adminApp).post('/api/v1/achievements/award').send(awardPayload);
const response = await supertest(adminApp)
.post('/api/v1/achievements/award')
.send(awardPayload);
expect(response.status).toBe(200);
expect(response.body.data.message).toContain('Successfully awarded');
@@ -224,7 +226,9 @@ describe('Gamification Routes (/api/v1/achievements)', () => {
mockedIsAdmin.mockImplementation((req: Request, res: Response, next: NextFunction) => next());
vi.mocked(db.gamificationRepo.awardAchievement).mockRejectedValue(new Error('DB Error'));
const response = await supertest(adminApp).post('/api/v1/achievements/award').send(awardPayload);
const response = await supertest(adminApp)
.post('/api/v1/achievements/award')
.send(awardPayload);
expect(response.status).toBe(500);
expect(response.body.error.message).toBe('DB Error');
});

4
src/routes/price.routes.test.ts
View File

@@ -99,7 +99,9 @@ describe('Price Routes (/api/v1/price-history)', () => {
});
it('should return 400 if masterItemIds is an empty array', async () => {
const response = await supertest(app).post('/api/v1/price-history').send({ masterItemIds: [] });
const response = await supertest(app)
.post('/api/v1/price-history')
.send({ masterItemIds: [] });
expect(response.status).toBe(400);
expect(response.body.error.details[0].message).toBe(

4
src/routes/stats.routes.test.ts
View File

@@ -60,7 +60,9 @@ describe('Stats Routes (/api/v1/stats)', () => {
});
it('should return 400 for invalid query parameters', async () => {
const response = await supertest(app).get('/api/v1/stats/most-frequent-sales?days=0&limit=abc');
const response = await supertest(app).get(
'/api/v1/stats/most-frequent-sales?days=0&limit=abc',
);
expect(response.status).toBe(400);
expect(response.body.error.details).toBeDefined();
expect(response.body.error.details.length).toBe(2);

12
src/routes/user.routes.test.ts
View File

@@ -388,7 +388,9 @@ describe('User Routes (/api/v1/users)', () => {
describe('Shopping List Item Routes', () => {
describe('POST /shopping-lists/:listId/items (Validation)', () => {
it('should return 400 if neither masterItemId nor customItemName are provided', async () => {
const response = await supertest(app).post('/api/v1/users/shopping-lists/1/items').send({});
const response = await supertest(app)
.post('/api/v1/users/shopping-lists/1/items')
.send({});
expect(response.status).toBe(400);
expect(response.body.error.details[0].message).toBe(
'Either masterItemId or customItemName must be provided.',
@@ -512,7 +514,9 @@ describe('User Routes (/api/v1/users)', () => {
});
it('should return 400 if no update fields are provided for an item', async () => {
const response = await supertest(app).put(`/api/v1/users/shopping-lists/items/101`).send({});
const response = await supertest(app)
.put(`/api/v1/users/shopping-lists/items/101`)
.send({});
expect(response.status).toBe(400);
expect(response.body.error.details[0].message).toContain(
'At least one field (quantity, is_purchased) must be provided.',
@@ -1011,7 +1015,9 @@ describe('User Routes (/api/v1/users)', () => {
const addressData = { address_line_1: '123 New St' };
vi.mocked(userService.upsertUserAddress).mockResolvedValue(5);
const response = await supertest(app).put('/api/v1/users/profile/address').send(addressData);
const response = await supertest(app)
.put('/api/v1/users/profile/address')
.send(addressData);
expect(response.status).toBe(200);
expect(userService.upsertUserAddress).toHaveBeenCalledWith(

8
src/services/aiAnalysisService.ts
View File

@@ -51,7 +51,9 @@ export class AiAnalysisService {
// Normalize sources to a consistent format.
const mappedSources = (response.sources || []).map(
(s: RawSource) =>
(s.web ? { uri: s.web.uri || '', title: s.web.title || 'Untitled' } : { uri: '', title: 'Untitled' }) as Source,
(s.web
? { uri: s.web.uri || '', title: s.web.title || 'Untitled' }
: { uri: '', title: 'Untitled' }) as Source,
);
return { ...response, sources: mappedSources };
}
@@ -82,7 +84,9 @@ export class AiAnalysisService {
// Normalize sources to a consistent format.
const mappedSources = (response.sources || []).map(
(s: RawSource) =>
(s.web ? { uri: s.web.uri || '', title: s.web.title || 'Untitled' } : { uri: '', title: 'Untitled' }) as Source,
(s.web
? { uri: s.web.uri || '', title: s.web.title || 'Untitled' }
: { uri: '', title: 'Untitled' }) as Source,
);
return { ...response, sources: mappedSources };
}

4
src/services/analyticsService.server.test.ts
View File

@@ -45,7 +45,7 @@ describe('AnalyticsService', () => {
data,
attemptsMade: 1,
updateProgress: vi.fn(),
} as unknown as Job<T>);
}) as unknown as Job<T>;
describe('processDailyReportJob', () => {
it('should process successfully', async () => {
@@ -207,4 +207,4 @@ describe('AnalyticsService', () => {
);
});
});
});
});

2
src/services/analyticsService.server.ts
View File

@@ -76,4 +76,4 @@ export class AnalyticsService {
}
}
export const analyticsService = new AnalyticsService();
export const analyticsService = new AnalyticsService();

6
src/services/brandService.test.ts
View File

@@ -45,7 +45,9 @@ describe('BrandService', () => {
vi.mocked(db.adminRepo.updateBrandLogo).mockRejectedValue(dbError);
await expect(brandService.updateBrandLogo(brandId, mockFile, mockLogger)).rejects.toThrow('DB Error');
await expect(brandService.updateBrandLogo(brandId, mockFile, mockLogger)).rejects.toThrow(
'DB Error',
);
});
});
});
});

8
src/services/brandService.ts
View File

@@ -3,11 +3,15 @@ import * as db from './db/index.db';
import type { Logger } from 'pino';
class BrandService {
async updateBrandLogo(brandId: number, file: Express.Multer.File, logger: Logger): Promise<string> {
async updateBrandLogo(
brandId: number,
file: Express.Multer.File,
logger: Logger,
): Promise<string> {
const logoUrl = `/flyer-images/${file.filename}`;
await db.adminRepo.updateBrandLogo(brandId, logoUrl, logger);
return logoUrl;
}
}
export const brandService = new BrandService();
export const brandService = new BrandService();

54
src/services/db/budget.db.ts
View File

@@ -28,9 +28,15 @@ export class BudgetRepository {
);
return res.rows;
} catch (error) {
handleDbError(error, logger, 'Database error in getBudgetsForUser', { userId }, {
defaultMessage: 'Failed to retrieve budgets.',
});
handleDbError(
error,
logger,
'Database error in getBudgetsForUser',
{ userId },
{
defaultMessage: 'Failed to retrieve budgets.',
},
);
}
}
@@ -60,12 +66,18 @@ export class BudgetRepository {
return res.rows[0];
});
} catch (error) {
handleDbError(error, logger, 'Database error in createBudget', { budgetData, userId }, {
fkMessage: 'The specified user does not exist.',
notNullMessage: 'One or more required budget fields are missing.',
checkMessage: 'Invalid value provided for budget period.',
defaultMessage: 'Failed to create budget.',
});
handleDbError(
error,
logger,
'Database error in createBudget',
{ budgetData, userId },
{
fkMessage: 'The specified user does not exist.',
notNullMessage: 'One or more required budget fields are missing.',
checkMessage: 'Invalid value provided for budget period.',
defaultMessage: 'Failed to create budget.',
},
);
}
}
@@ -98,9 +110,15 @@ export class BudgetRepository {
return res.rows[0];
} catch (error) {
if (error instanceof NotFoundError) throw error;
handleDbError(error, logger, 'Database error in updateBudget', { budgetId, userId }, {
defaultMessage: 'Failed to update budget.',
});
handleDbError(
error,
logger,
'Database error in updateBudget',
{ budgetId, userId },
{
defaultMessage: 'Failed to update budget.',
},
);
}
}
@@ -120,9 +138,15 @@ export class BudgetRepository {
}
} catch (error) {
if (error instanceof NotFoundError) throw error;
handleDbError(error, logger, 'Database error in deleteBudget', { budgetId, userId }, {
defaultMessage: 'Failed to delete budget.',
});
handleDbError(
error,
logger,
'Database error in deleteBudget',
{ budgetId, userId },
{
defaultMessage: 'Failed to delete budget.',
},
);
}
}

2
src/services/db/conversion.db.test.ts
View File

@@ -158,4 +158,4 @@ describe('Conversion DB Service', () => {
);
});
});
});
});

3
src/services/db/errors.db.ts
View File

@@ -194,6 +194,7 @@ export function handleDbError(
// Fallback generic error
// Use the consistent DatabaseError from the processing errors module for the fallback.
const errorMessage = options.defaultMessage || `Failed to perform operation on ${options.entityName || 'database'}.`;
const errorMessage =
options.defaultMessage || `Failed to perform operation on ${options.entityName || 'database'}.`;
throw new ProcessingDatabaseError(errorMessage);
}

2
src/services/db/price.db.test.ts
View File

@@ -94,4 +94,4 @@ describe('Price DB Service', () => {
);
});
});
});
});

2
src/services/db/price.db.ts
View File

@@ -61,4 +61,4 @@ export const priceRepo = {
);
}
},
};
};

163
src/services/db/recipe.db.ts
View File

@@ -25,9 +25,15 @@ export class RecipeRepository {
);
return res.rows;
} catch (error) {
handleDbError(error, logger, 'Database error in getRecipesBySalePercentage', { minPercentage }, {
defaultMessage: 'Failed to get recipes by sale percentage.',
});
handleDbError(
error,
logger,
'Database error in getRecipesBySalePercentage',
{ minPercentage },
{
defaultMessage: 'Failed to get recipes by sale percentage.',
},
);
}
}
@@ -95,9 +101,15 @@ export class RecipeRepository {
);
return res.rows;
} catch (error) {
handleDbError(error, logger, 'Database error in getUserFavoriteRecipes', { userId }, {
defaultMessage: 'Failed to get favorite recipes.',
});
handleDbError(
error,
logger,
'Database error in getUserFavoriteRecipes',
{ userId },
{
defaultMessage: 'Failed to get favorite recipes.',
},
);
}
}
@@ -124,10 +136,16 @@ export class RecipeRepository {
}
return res.rows[0];
} catch (error) {
handleDbError(error, logger, 'Database error in addFavoriteRecipe', { userId, recipeId }, {
fkMessage: 'The specified user or recipe does not exist.',
defaultMessage: 'Failed to add favorite recipe.',
});
handleDbError(
error,
logger,
'Database error in addFavoriteRecipe',
{ userId, recipeId },
{
fkMessage: 'The specified user or recipe does not exist.',
defaultMessage: 'Failed to add favorite recipe.',
},
);
}
}
@@ -146,9 +164,15 @@ export class RecipeRepository {
throw new NotFoundError('Favorite recipe not found for this user.');
}
} catch (error) {
handleDbError(error, logger, 'Database error in removeFavoriteRecipe', { userId, recipeId }, {
defaultMessage: 'Failed to remove favorite recipe.',
});
handleDbError(
error,
logger,
'Database error in removeFavoriteRecipe',
{ userId, recipeId },
{
defaultMessage: 'Failed to remove favorite recipe.',
},
);
}
}
@@ -160,23 +184,55 @@ export class RecipeRepository {
*/
async createRecipe(
userId: string,
recipeData: Pick<Recipe, 'name' | 'instructions' | 'description' | 'prep_time_minutes' | 'cook_time_minutes' | 'servings' | 'photo_url'>,
logger: Logger
recipeData: Pick<
Recipe,
| 'name'
| 'instructions'
| 'description'
| 'prep_time_minutes'
| 'cook_time_minutes'
| 'servings'
| 'photo_url'
>,
logger: Logger,
): Promise<Recipe> {
try {
const { name, instructions, description, prep_time_minutes, cook_time_minutes, servings, photo_url } = recipeData;
const {
name,
instructions,
description,
prep_time_minutes,
cook_time_minutes,
servings,
photo_url,
} = recipeData;
const res = await this.db.query<Recipe>(
`INSERT INTO public.recipes
(user_id, name, instructions, description, prep_time_minutes, cook_time_minutes, servings, photo_url, status)
VALUES ($1, $2, $3, $4, $5, $6, $7, $8, 'public')
RETURNING *`,
[userId, name, instructions, description, prep_time_minutes, cook_time_minutes, servings, photo_url]
[
userId,
name,
instructions,
description,
prep_time_minutes,
cook_time_minutes,
servings,
photo_url,
],
);
return res.rows[0];
} catch (error) {
handleDbError(error, logger, 'Database error in createRecipe', { userId, recipeData }, {
defaultMessage: 'Failed to create recipe.',
});
handleDbError(
error,
logger,
'Database error in createRecipe',
{ userId, recipeData },
{
defaultMessage: 'Failed to create recipe.',
},
);
}
}
@@ -206,9 +262,15 @@ export class RecipeRepository {
throw new NotFoundError('Recipe not found or user does not have permission to delete.');
}
} catch (error) {
handleDbError(error, logger, 'Database error in deleteRecipe', { recipeId, userId, isAdmin }, {
defaultMessage: 'Failed to delete recipe.',
});
handleDbError(
error,
logger,
'Database error in deleteRecipe',
{ recipeId, userId, isAdmin },
{
defaultMessage: 'Failed to delete recipe.',
},
);
}
}
@@ -271,9 +333,15 @@ export class RecipeRepository {
if (error instanceof Error && error.message === 'No fields provided to update.') {
throw error;
}
handleDbError(error, logger, 'Database error in updateRecipe', { recipeId, userId, updates }, {
defaultMessage: 'Failed to update recipe.',
});
handleDbError(
error,
logger,
'Database error in updateRecipe',
{ recipeId, userId, updates },
{
defaultMessage: 'Failed to update recipe.',
},
);
}
}
@@ -315,9 +383,15 @@ export class RecipeRepository {
}
return res.rows[0];
} catch (error) {
handleDbError(error, logger, 'Database error in getRecipeById', { recipeId }, {
defaultMessage: 'Failed to retrieve recipe.',
});
handleDbError(
error,
logger,
'Database error in getRecipeById',
{ recipeId },
{
defaultMessage: 'Failed to retrieve recipe.',
},
);
}
}
@@ -341,9 +415,15 @@ export class RecipeRepository {
const res = await this.db.query<RecipeComment>(query, [recipeId]);
return res.rows;
} catch (error) {
handleDbError(error, logger, 'Database error in getRecipeComments', { recipeId }, {
defaultMessage: 'Failed to get recipe comments.',
});
handleDbError(
error,
logger,
'Database error in getRecipeComments',
{ recipeId },
{
defaultMessage: 'Failed to get recipe comments.',
},
);
}
}
@@ -374,7 +454,10 @@ export class RecipeRepository {
logger,
'Database error in addRecipeComment',
{ recipeId, userId, parentCommentId },
{ fkMessage: 'The specified recipe, user, or parent comment does not exist.', defaultMessage: 'Failed to add recipe comment.' },
{
fkMessage: 'The specified recipe, user, or parent comment does not exist.',
defaultMessage: 'Failed to add recipe comment.',
},
);
}
}
@@ -398,10 +481,16 @@ export class RecipeRepository {
// raise_exception
throw new Error(error.message); // Re-throw the user-friendly message from the DB function.
}
handleDbError(error, logger, 'Database error in forkRecipe', { userId, originalRecipeId }, {
fkMessage: 'The specified user or original recipe does not exist.',
defaultMessage: 'Failed to fork recipe.',
});
handleDbError(
error,
logger,
'Database error in forkRecipe',
{ userId, originalRecipeId },
{
fkMessage: 'The specified user or original recipe does not exist.',
defaultMessage: 'Failed to fork recipe.',
},
);
}
}
}

2
src/services/eventBus.test.ts
View File

@@ -81,4 +81,4 @@ describe('EventBus', () => {
// callback2 should be called again
expect(callback2).toHaveBeenCalledTimes(2);
});
});
});

21
src/services/flyerFileHandler.server.ts
View File

@@ -4,7 +4,11 @@ import sharp from 'sharp';
import type { Dirent } from 'node:fs';
import type { Job } from 'bullmq';
import type { Logger } from 'pino';
import { ImageConversionError, PdfConversionError, UnsupportedFileTypeError } from './processingErrors';
import {
ImageConversionError,
PdfConversionError,
UnsupportedFileTypeError,
} from './processingErrors';
import type { FlyerJobData } from '../types/job-data';
// Define the image formats supported by the AI model
const SUPPORTED_IMAGE_EXTENSIONS = ['.jpg', '.jpeg', '.png', '.webp', '.heic', '.heif'];
@@ -169,7 +173,9 @@ export class FlyerFileHandler {
return outputPath;
} catch (error) {
logger.error({ err: error, filePath }, 'Failed to convert image to PNG using sharp.');
throw new ImageConversionError(`Image conversion to PNG failed for ${path.basename(filePath)}.`);
throw new ImageConversionError(
`Image conversion to PNG failed for ${path.basename(filePath)}.`,
);
}
}
@@ -217,7 +223,10 @@ export class FlyerFileHandler {
// For other supported types like WEBP, etc., which are less likely to have problematic EXIF,
// we can process them directly without modification for now.
logger.info(`Processing as a single image file (non-JPEG/PNG): ${filePath}`);
return { imagePaths: [{ path: filePath, mimetype: `image/${fileExt.slice(1)}` }], createdImagePaths: [] };
return {
imagePaths: [{ path: filePath, mimetype: `image/${fileExt.slice(1)}` }],
createdImagePaths: [],
};
}
/**
@@ -294,9 +303,11 @@ export class FlyerFileHandler {
await this.fs.rename(tempPath, image.path);
} catch (error) {
logger.error({ err: error, path: image.path }, 'Failed to optimize image.');
throw new ImageConversionError(`Image optimization failed for ${path.basename(image.path)}.`);
throw new ImageConversionError(
`Image optimization failed for ${path.basename(image.path)}.`,
);
}
}
logger.info('Image optimization complete.');
}
}
}

10
src/services/flyerPersistenceService.server.test.ts
View File

@@ -102,10 +102,10 @@ describe('FlyerPersistenceService', () => {
mockFlyerData,
mockItemsForDb,
mockLogger,
mockClient
mockClient,
);
expect(mockLogger.info).toHaveBeenCalledWith(
expect.stringContaining('Successfully processed flyer')
expect.stringContaining('Successfully processed flyer'),
);
// Verify AdminRepository usage
@@ -117,7 +117,7 @@ describe('FlyerPersistenceService', () => {
displayText: `Processed a new flyer for ${mockFlyerData.store_name}.`,
details: { flyerId: mockCreatedFlyer.flyer_id, storeName: mockFlyerData.store_name },
}),
mockLogger
mockLogger,
);
// Verify GamificationRepository usage
@@ -153,8 +153,8 @@ describe('FlyerPersistenceService', () => {
vi.mocked(createFlyerAndItems).mockRejectedValue(error);
await expect(
service.saveFlyer(mockFlyerData, mockItemsForDb, 'user-1', mockLogger)
service.saveFlyer(mockFlyerData, mockItemsForDb, 'user-1', mockLogger),
).rejects.toThrow(error);
});
});
});
});

8
src/services/gamificationService.test.ts
View File

@@ -52,7 +52,11 @@ describe('GamificationService', () => {
await gamificationService.awardAchievement(userId, achievementName, mockLogger);
expect(gamificationRepo.awardAchievement).toHaveBeenCalledWith(userId, achievementName, mockLogger);
expect(gamificationRepo.awardAchievement).toHaveBeenCalledWith(
userId,
achievementName,
mockLogger,
);
});
it('should re-throw ForeignKeyConstraintError without logging it as a service error', async () => {
@@ -163,4 +167,4 @@ describe('GamificationService', () => {
);
});
});
});
});

2
src/services/gamificationService.ts
View File

@@ -72,4 +72,4 @@ class GamificationService {
}
}
export const gamificationService = new GamificationService();
export const gamificationService = new GamificationService();

12
src/services/geocodingService.server.ts
View File

@@ -25,7 +25,10 @@ export class GeocodingService {
return JSON.parse(cached);
}
} catch (error) {
logger.error({ err: error, cacheKey }, 'Redis GET or JSON.parse command failed. Proceeding without cache.');
logger.error(
{ err: error, cacheKey },
'Redis GET or JSON.parse command failed. Proceeding without cache.',
);
}
if (process.env.GOOGLE_MAPS_API_KEY) {
@@ -42,7 +45,7 @@ export class GeocodingService {
} catch (error) {
logger.error(
{ err: error },
'An error occurred while calling the Google Maps Geocoding API. Falling back to Nominatim.'
'An error occurred while calling the Google Maps Geocoding API. Falling back to Nominatim.',
);
}
} else {
@@ -69,7 +72,10 @@ export class GeocodingService {
try {
await redis.set(cacheKey, JSON.stringify(result), 'EX', 60 * 60 * 24 * 30); // Cache for 30 days
} catch (error) {
logger.error({ err: error, cacheKey }, 'Redis SET command failed. Result will not be cached.');
logger.error(
{ err: error, cacheKey },
'Redis SET command failed. Result will not be cached.',
);
}
}

8
src/services/processingErrors.test.ts
View File

@@ -121,7 +121,9 @@ describe('Processing Errors', () => {
expect(error).toBeInstanceOf(TransformationError);
expect(error.message).toBe(message);
expect(error.errorCode).toBe('TRANSFORMATION_FAILED');
expect(error.userMessage).toBe('There was a problem transforming the flyer data. Please check the input.');
expect(error.userMessage).toBe(
'There was a problem transforming the flyer data. Please check the input.',
);
});
});
@@ -147,7 +149,9 @@ describe('Processing Errors', () => {
expect(error).toBeInstanceOf(ImageConversionError);
expect(error.message).toBe(message);
expect(error.errorCode).toBe('IMAGE_CONVERSION_FAILED');
expect(error.userMessage).toBe('The uploaded image could not be processed. It might be corrupt or in an unsupported format.');
expect(error.userMessage).toBe(
'The uploaded image could not be processed. It might be corrupt or in an unsupported format.',
);
});
});

8
src/services/queueService.workers.test.ts
View File

@@ -68,12 +68,18 @@ vi.mock('bullmq', () => ({
UnrecoverableError: class UnrecoverableError extends Error {},
}));
// Mock redis.server to prevent real Redis connection attempts
// Mock redis.server to prevent real Redis connection attempts.
// The workers.server.ts imports `bullmqConnection` from redis.server,
// so we must export both `connection` and `bullmqConnection` from this mock.
vi.mock('./redis.server', () => ({
connection: {
on: vi.fn(),
quit: vi.fn().mockResolvedValue(undefined),
},
bullmqConnection: {
on: vi.fn(),
quit: vi.fn().mockResolvedValue(undefined),
},
}));
// Mock queues.server to provide mock queue instances

4
src/services/queues.server.test.ts
View File

@@ -19,8 +19,10 @@ vi.mock('bullmq', () => ({
}));
// Mock our internal redis connection module to export our mock connection object.
// The queues.server.ts imports `bullmqConnection` (aliased as `connection`),
// so we must export `bullmqConnection` from this mock.
vi.mock('./redis.server', () => ({
connection: mocks.mockConnection,
bullmqConnection: mocks.mockConnection,
}));
describe('Queue Definitions', () => {

7
src/services/systemService.test.ts
View File

@@ -66,7 +66,10 @@ describe('SystemService', () => {
});
it('should return success: false when process does not exist', async () => {
const error = new Error('Command failed') as ExecException & { stdout?: string; stderr?: string };
const error = new Error('Command failed') as ExecException & {
stdout?: string;
stderr?: string;
};
error.code = 1;
error.stderr = "[PM2][ERROR] Process or Namespace flyer-crawler-api doesn't exist";
@@ -83,4 +86,4 @@ describe('SystemService', () => {
);
});
});
});
});

2
src/services/tokenStorage.test.ts
View File

@@ -121,4 +121,4 @@ describe('tokenStorage', () => {
);
});
});
});
});

2
src/services/tokenStorage.ts
View File

@@ -43,4 +43,4 @@ export const removeToken = (): void => {
} catch (error) {
console.error('SecurityError: Failed to access localStorage to remove token.', error);
}
};
};

42
src/services/userService.test.ts
View File

@@ -193,7 +193,9 @@ describe('UserService', () => {
// Act & Assert
// The service should wrap the generic error in a `DatabaseError`.
await expect(userService.upsertUserAddress(user, addressData, logger)).rejects.toBeInstanceOf(DatabaseError);
await expect(userService.upsertUserAddress(user, addressData, logger)).rejects.toBeInstanceOf(
DatabaseError,
);
// Assert that the error was logged correctly
expect(logger.error).toHaveBeenCalledWith(
@@ -285,7 +287,10 @@ describe('UserService', () => {
await expect(userService.updateUserAvatar(userId, file, logger)).rejects.toThrow(
DatabaseError,
);
expect(logger.error).toHaveBeenCalledWith(expect.any(Object), `Failed to update user avatar: ${genericError.message}`);
expect(logger.error).toHaveBeenCalledWith(
expect.any(Object),
`Failed to update user avatar: ${genericError.message}`,
);
});
});
@@ -313,8 +318,13 @@ describe('UserService', () => {
vi.mocked(bcrypt.hash).mockResolvedValue();
mocks.mockUpdateUserPassword.mockRejectedValue(genericError);
await expect(userService.updateUserPassword(userId, newPassword, logger)).rejects.toThrow(DatabaseError);
expect(logger.error).toHaveBeenCalledWith(expect.any(Object), `Failed to update user password: ${genericError.message}`);
await expect(userService.updateUserPassword(userId, newPassword, logger)).rejects.toThrow(
DatabaseError,
);
expect(logger.error).toHaveBeenCalledWith(
expect.any(Object),
`Failed to update user password: ${genericError.message}`,
);
});
});
@@ -340,9 +350,9 @@ describe('UserService', () => {
const { logger } = await import('./logger.server');
mocks.mockFindUserWithPasswordHashById.mockResolvedValue(null);
await expect(
userService.deleteUserAccount('user-123', 'password', logger),
).rejects.toThrow(NotFoundError);
await expect(userService.deleteUserAccount('user-123', 'password', logger)).rejects.toThrow(
NotFoundError,
);
});
it('should throw ValidationError if password does not match', async () => {
@@ -371,8 +381,13 @@ describe('UserService', () => {
});
vi.mocked(bcrypt.compare).mockRejectedValue(genericError);
await expect(userService.deleteUserAccount(userId, password, logger)).rejects.toThrow(DatabaseError);
expect(logger.error).toHaveBeenCalledWith(expect.any(Object), `Failed to delete user account: ${genericError.message}`);
await expect(userService.deleteUserAccount(userId, password, logger)).rejects.toThrow(
DatabaseError,
);
expect(logger.error).toHaveBeenCalledWith(
expect.any(Object),
`Failed to delete user account: ${genericError.message}`,
);
});
});
@@ -430,8 +445,13 @@ describe('UserService', () => {
mocks.mockDeleteUserById.mockRejectedValue(genericError);
await expect(userService.deleteUserAsAdmin(deleterId, targetId, logger)).rejects.toThrow(DatabaseError);
expect(logger.error).toHaveBeenCalledWith(expect.any(Object), `Admin failed to delete user account: ${genericError.message}`);
await expect(userService.deleteUserAsAdmin(deleterId, targetId, logger)).rejects.toThrow(
DatabaseError,
);
expect(logger.error).toHaveBeenCalledWith(
expect.any(Object),
`Admin failed to delete user account: ${genericError.message}`,
);
});
});
});

38
src/services/userService.ts
View File

@@ -38,13 +38,20 @@ class UserService {
logger,
);
if (!userprofile.address_id) {
await userRepo.updateUserProfile(userprofile.user.user_id, { address_id: addressId }, logger);
await userRepo.updateUserProfile(
userprofile.user.user_id,
{ address_id: addressId },
logger,
);
}
return addressId;
})
.catch((error) => {
const errorMessage = error instanceof Error ? error.message : 'An unknown error occurred.';
logger.error({ err: error, userId: userprofile.user.user_id }, `Transaction to upsert user address failed: ${errorMessage}`);
logger.error(
{ err: error, userId: userprofile.user.user_id },
`Transaction to upsert user address failed: ${errorMessage}`,
);
// Wrap the original error in a service-level DatabaseError to standardize the error contract,
// as this is an unexpected failure within the transaction boundary.
throw new DatabaseError(errorMessage);
@@ -68,7 +75,10 @@ class UserService {
return { deletedCount };
} catch (error) {
const errorMessage = error instanceof Error ? error.message : 'An unknown error occurred.';
logger.error({ err: error, attemptsMade: job.attemptsMade }, `Expired token cleanup job failed: ${errorMessage}`);
logger.error(
{ err: error, attemptsMade: job.attemptsMade },
`Expired token cleanup job failed: ${errorMessage}`,
);
// This is a background job, but wrapping in a standard error type is good practice.
throw new DatabaseError(errorMessage);
}
@@ -81,7 +91,11 @@ class UserService {
* @param logger The logger instance.
* @returns The updated user profile.
*/
async updateUserAvatar(userId: string, file: Express.Multer.File, logger: Logger): Promise<Profile> {
async updateUserAvatar(
userId: string,
file: Express.Multer.File,
logger: Logger,
): Promise<Profile> {
try {
const baseUrl = getBaseUrl(logger);
const avatarUrl = `${baseUrl}/uploads/avatars/${file.filename}`;
@@ -151,7 +165,11 @@ class UserService {
* @param logger The logger instance.
* @returns The address object.
*/
async getUserAddress(userProfile: UserProfile, addressId: number, logger: Logger): Promise<Address> {
async getUserAddress(
userProfile: UserProfile,
addressId: number,
logger: Logger,
): Promise<Address> {
if (userProfile.address_id !== addressId) {
throw new ValidationError([], 'Forbidden: You can only access your own address.');
}
@@ -162,7 +180,10 @@ class UserService {
throw error;
}
const errorMessage = error instanceof Error ? error.message : 'An unknown error occurred.';
logger.error({ err: error, userId: userProfile.user.user_id, addressId }, `Failed to get user address: ${errorMessage}`);
logger.error(
{ err: error, userId: userProfile.user.user_id, addressId },
`Failed to get user address: ${errorMessage}`,
);
// Wrap unexpected errors.
throw new DatabaseError(errorMessage);
}
@@ -187,7 +208,10 @@ class UserService {
throw error;
}
const errorMessage = error instanceof Error ? error.message : 'An unknown error occurred.';
log.error({ err: error, deleterId, userToDeleteId }, `Admin failed to delete user account: ${errorMessage}`);
log.error(
{ err: error, deleterId, userToDeleteId },
`Admin failed to delete user account: ${errorMessage}`,
);
// Wrap unexpected errors.
throw new DatabaseError(errorMessage);
}

2
src/services/worker.test.ts
View File

@@ -173,4 +173,4 @@ describe('Worker Entry Point', () => {
);
});
});
});
});

2
src/services/worker.ts
View File

@@ -28,4 +28,4 @@ process.on('unhandledRejection', (reason, promise) => {
logger.error({ reason, promise }, '[Worker] Unhandled Rejection');
});
logger.info('[Worker] Worker process is running and listening for jobs.');
logger.info('[Worker] Worker process is running and listening for jobs.');

4
src/tests/e2e/auth.e2e.test.ts
View File

@@ -209,7 +209,9 @@ describe('Authentication E2E Flow', () => {
expect(loginResponse?.status).toBe(200);
// Request password reset (do not poll, as this endpoint is rate-limited)
const forgotResponse = await getRequest().post('/api/v1/auth/forgot-password').send({ email });
const forgotResponse = await getRequest()
.post('/api/v1/auth/forgot-password')
.send({ email });
expect(forgotResponse.status).toBe(200);
const resetToken = forgotResponse.body.data.token;

4
src/tests/integration/reactions.integration.test.ts
View File

@@ -112,7 +112,9 @@ describe('Reactions API Routes Integration Tests', () => {
});
it('should return 400 when entityId is missing', async () => {
const response = await request.get('/api/v1/reactions/summary').query({ entityType: 'recipe' });
const response = await request
.get('/api/v1/reactions/summary')
.query({ entityType: 'recipe' });
expect(response.status).toBe(400);
expect(response.body.success).toBe(false);

2
src/tests/setup/mockUI.ts
View File

@@ -72,4 +72,4 @@ vi.mock('../../components/WhatsNewModal', async () => {
vi.mock('../../layouts/MainLayout', async () => {
const { MockMainLayout } = await import('../utils/componentMocks');
return { MainLayout: MockMainLayout };
});
});

42
src/tests/utils/cleanup.ts
View File

@@ -30,47 +30,69 @@ export const cleanupDb = async (options: CleanupOptions) => {
// Children entities first, then parents.
if (options.suggestedCorrectionIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.suggested_corrections WHERE suggested_correction_id = ANY($1::int[])', [options.suggestedCorrectionIds]);
await client.query(
'DELETE FROM public.suggested_corrections WHERE suggested_correction_id = ANY($1::int[])',
[options.suggestedCorrectionIds],
);
logger.debug(`Cleaned up ${options.suggestedCorrectionIds.length} suggested correction(s).`);
}
if (options.budgetIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.budgets WHERE budget_id = ANY($1::int[])', [options.budgetIds]);
await client.query('DELETE FROM public.budgets WHERE budget_id = ANY($1::int[])', [
options.budgetIds,
]);
logger.debug(`Cleaned up ${options.budgetIds.length} budget(s).`);
}
if (options.recipeCommentIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.recipe_comments WHERE recipe_comment_id = ANY($1::int[])', [options.recipeCommentIds]);
await client.query(
'DELETE FROM public.recipe_comments WHERE recipe_comment_id = ANY($1::int[])',
[options.recipeCommentIds],
);
logger.debug(`Cleaned up ${options.recipeCommentIds.length} recipe comment(s).`);
}
if (options.recipeIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.recipes WHERE recipe_id = ANY($1::int[])', [options.recipeIds]);
await client.query('DELETE FROM public.recipes WHERE recipe_id = ANY($1::int[])', [
options.recipeIds,
]);
logger.debug(`Cleaned up ${options.recipeIds.length} recipe(s).`);
}
if (options.flyerIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.flyers WHERE flyer_id = ANY($1::int[])', [options.flyerIds]);
await client.query('DELETE FROM public.flyers WHERE flyer_id = ANY($1::int[])', [
options.flyerIds,
]);
logger.debug(`Cleaned up ${options.flyerIds.length} flyer(s).`);
}
if (options.storeIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.stores WHERE store_id = ANY($1::int[])', [options.storeIds]);
await client.query('DELETE FROM public.stores WHERE store_id = ANY($1::int[])', [
options.storeIds,
]);
logger.debug(`Cleaned up ${options.storeIds.length} store(s).`);
}
if (options.masterItemIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.master_grocery_items WHERE master_grocery_item_id = ANY($1::int[])', [options.masterItemIds]);
await client.query(
'DELETE FROM public.master_grocery_items WHERE master_grocery_item_id = ANY($1::int[])',
[options.masterItemIds],
);
logger.debug(`Cleaned up ${options.masterItemIds.length} master grocery item(s).`);
}
if (options.shoppingListIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.shopping_lists WHERE shopping_list_id = ANY($1::int[])', [options.shoppingListIds]);
await client.query(
'DELETE FROM public.shopping_lists WHERE shopping_list_id = ANY($1::int[])',
[options.shoppingListIds],
);
logger.debug(`Cleaned up ${options.shoppingListIds.length} shopping list(s).`);
}
if (options.userIds?.filter(Boolean).length) {
await client.query('DELETE FROM public.users WHERE user_id = ANY($1::uuid[])', [options.userIds]);
await client.query('DELETE FROM public.users WHERE user_id = ANY($1::uuid[])', [
options.userIds,
]);
logger.debug(`Cleaned up ${options.userIds.length} user(s).`);
}
} catch (error) {
@@ -78,4 +100,4 @@ export const cleanupDb = async (options: CleanupOptions) => {
} finally {
client.release();
}
};
};

2
src/tests/utils/cleanupFiles.ts
View File

@@ -27,4 +27,4 @@ export const cleanupFiles = async (filePaths: (string | undefined | null)[]) =>
});
await Promise.allSettled(cleanupPromises);
};
};

2
src/tests/utils/createMockRequest.ts
View File

@@ -6,4 +6,4 @@ export const createMockRequest = (overrides: Partial<Request> = {}): Request =>
log: mockLogger,
...overrides,
} as unknown as Request;
};
};

2
src/tests/utils/poll.ts
View File

@@ -33,4 +33,4 @@ export async function poll<T>(
}
throw new Error(`Polling timed out for ${description} after ${timeout}ms.`);
}
}

2
src/types/ai.ts
View File

@@ -28,4 +28,4 @@ export const AiFlyerDataSchema = z.object({
valid_to: z.string().nullable(),
store_address: z.string().nullable(),
items: z.array(ExtractedFlyerItemSchema),
});
});

2
src/types/exif-parser.d.ts vendored
View File

@@ -105,4 +105,4 @@ declare module 'exif-parser' {
}
export default ExifParser;
}
}

5
src/types/pdf-poppler.d.ts vendored
View File

@@ -105,7 +105,10 @@ declare module 'pdf-poppler' {
export class Poppler {
constructor(binPath?: string);
pdfToCairo(file: string, outputFilePrefix?: string, options?: PopplerOptions): Promise<string>;
pdfInfo(file: string, options?: { ownerPassword?: string; userPassword?: string }): Promise<PdfInfo>;
pdfInfo(
file: string,
options?: { ownerPassword?: string; userPassword?: string },
): Promise<PdfInfo>;
pdfToPs(file: string, outputFile: string, options?: any): Promise<string>;
pdfToText(file: string, outputFile: string, options?: any): Promise<string>;
}

6
src/utils/authUtils.test.ts
View File

@@ -64,9 +64,7 @@ describe('validatePasswordStrength', () => {
it('should return invalid for a medium password (score 2)', () => {
// Arrange: Mock zxcvbn to return a score of 2
vi.mocked(zxcvbn).mockReturnValue(
createMockZxcvbnResult(2, ['Add another symbol or number']),
);
vi.mocked(zxcvbn).mockReturnValue(createMockZxcvbnResult(2, ['Add another symbol or number']));
// Act
const result = validatePasswordStrength('Password123');
@@ -99,4 +97,4 @@ describe('validatePasswordStrength', () => {
expect(result.isValid).toBe(true);
expect(result.feedback).toBe('');
});
});
});

2
src/utils/authUtils.ts
View File

@@ -17,4 +17,4 @@ export function validatePasswordStrength(password: string): {
return { isValid: false, feedback: `Password is too weak. ${suggestions}` };
}
return { isValid: true, feedback: '' };
}
}

4
src/utils/dateUtils.test.ts
View File

@@ -175,9 +175,7 @@ describe('dateUtils', () => {
it('should handle dates with time components correctly', () => {
// parseISO should handle the time component and formatShortDate should strip it
expect(formatDateRange('2023-01-01T10:00:00', '2023-01-05T15:30:00')).toBe(
'Jan 1 - Jan 5',
);
expect(formatDateRange('2023-01-01T10:00:00', '2023-01-05T15:30:00')).toBe('Jan 1 - Jan 5');
});
describe('verbose mode', () => {

Some files were not shown because too many files have changed in this diff Show More