Diablo_Rain/LifeRPG_v2.0
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
master
LifeRPG_v2.0/.github/workflows/migrations.yml
Copilot 90750ee8df
Strip emoji from docs, fix XSS/hashing vulnerabilities, remediate all failing CI checks (#1) 
* Initial plan

* Fix security vulnerabilities: MD5→SHA-256, XSS via dangerouslySetInnerHTML/innerHTML, insecure randomness, CodeQL config

Co-authored-by: TLimoges33 <125313326+TLimoges33@users.noreply.github.com>

* Clean up README: remove decorative emojis for a professional tone

Remove all emojis from section headers, list item prefixes, and
decorative positions. Replace  phase status markers with '(Complete)'
text. Keep the  in the final call-to-action line. No changes to
links, badges, code blocks, or technical content.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

* docs: remove emoji characters from CONTRIBUTING.md

Remove all emoji from section headers and closing line while
preserving links, code blocks, and technical content.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

* docs: remove emoji characters from documentation files

Remove all emoji characters from 8 documentation files in docs/.
Replace status-marker checkmarks () with '(Done)' text.
Remove decorative emojis from headers and body text entirely.
Preserve emojis inside code blocks unchanged.
Clean up trailing whitespace introduced by removals.

Files modified:
- DEPLOYMENT_GUIDE.md
- IMPLEMENTATION_PLAN.md
- MILESTONE_6_SUMMARY.md
- PRODUCTION_ROADMAP.md
- PROJECT_STATUS.md
- REPOSITORY_ENHANCEMENT.md
- ROADMAP.md
- SECURITY_AUDIT_ROADMAP.md

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

* docs: remove emoji characters from documentation files

Remove all emoji characters from 9 markdown files while preserving
code block content (box-drawing characters, indentation). Emojis
removed from headers, list items, and body text across READMEs,
issue templates, PR template, runbook, and mobile docs.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

* Remove excessive emoji from all documentation for professional presentation

Co-authored-by: TLimoges33 <125313326+TLimoges33@users.noreply.github.com>

* Fix PluginWidget initial state and remove || true from security audit steps

Co-authored-by: TLimoges33 <125313326+TLimoges33@users.noreply.github.com>

* Remediate all failing CI checks: update deprecated actions, fix npm vulnerabilities, fix migrations YAML

Co-authored-by: SynOSdev <257853113+SynOSdev@users.noreply.github.com>

* Fix all remaining CI failures: Node 18→20, fix test API contract, fix pytest version, fix Postgres health checks

Co-authored-by: SynOSdev <257853113+SynOSdev@users.noreply.github.com>

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: TLimoges33 <125313326+TLimoges33@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: SynOSdev <257853113+SynOSdev@users.noreply.github.com>
2026-03-14 08:59:37 -04:00

284 lines
9.0 KiB
YAML
Raw Permalink Blame History

name: DB Migrations
on:
push:
branches: [master]
pull_request:
branches: [master]
workflow_dispatch: {}
jobs:
alembic-sqlite:
runs-on: ubuntu-latest
concurrency:
group: alembic-sqlite-${{ github.ref }}-${{ matrix.python-version }}
cancel-in-progress: true
strategy:
matrix:
python-version: ["3.10", "3.11", "3.12"]
steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v5
with:
python-version: ${{ matrix.python-version }}
- name: Cache pyc
uses: actions/cache@v4
with:
path: |
**/__pycache__
key: ${{ runner.os }}-pyc-${{ github.sha }}
- name: Cache pip
uses: actions/cache@v4
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-${{ matrix.python-version }}-${{ hashFiles('**/requirements*.txt', 'poetry.lock', 'Pipfile.lock') }}
restore-keys: |
${{ runner.os }}-pip-${{ matrix.python-version }}-
- name: Install deps
run: |
python -m pip install --upgrade pip
python -m pip install -r modern/backend/requirements_full.txt alembic
- name: Stamp sqlite (dev default)
env:
DATABASE_URL: sqlite:///./modern_dev.db
run: |
export PYTHONPATH=$(pwd)
alembic -c modern/alembic.ini stamp head
- name: Alembic upgrade sqlite
env:
DATABASE_URL: sqlite:///./modern_dev.db
run: |
export PYTHONPATH=$(pwd)
alembic -c modern/alembic.ini upgrade head
alembic-postgres:
runs-on: ubuntu-latest
concurrency:
group: alembic-postgres-${{ github.ref }}-${{ matrix.python-version }}
cancel-in-progress: true
strategy:
matrix:
python-version: ["3.10", "3.11", "3.12"]
services:
postgres:
image: postgres:16
env:
POSTGRES_USER: postgres
POSTGRES_PASSWORD: postgres
POSTGRES_DB: liferpg
ports:
- 5432:5432
options: >-
--health-cmd "pg_isready -U postgres"
--health-interval 10s
--health-timeout 5s
--health-retries 10
steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v5
with:
python-version: ${{ matrix.python-version }}
- name: Cache pyc
uses: actions/cache@v4
with:
path: |
**/__pycache__
key: ${{ runner.os }}-pyc-${{ github.sha }}
- name: Cache pip
uses: actions/cache@v4
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-${{ matrix.python-version }}-${{ hashFiles('**/requirements*.txt', 'poetry.lock', 'Pipfile.lock') }}
restore-keys: |
${{ runner.os }}-pip-${{ matrix.python-version }}-
- name: Install deps
run: |
python -m pip install --upgrade pip
python -m pip install -r modern/backend/requirements_full.txt alembic
- name: Wait for Postgres
run: |
for i in $(seq 1 30); do
pg_isready -h 127.0.0.1 -p 5432 -U postgres && exit 0
sleep 2
done
echo "Postgres not ready after 60s" >&2
exit 1
- name: Stamp postgres
env:
DATABASE_URL: postgresql+psycopg2://postgres:postgres@localhost:5432/liferpg
run: |
export PYTHONPATH=$(pwd)
alembic -c modern/alembic.ini stamp head
- name: Alembic upgrade postgres
env:
DATABASE_URL: postgresql+psycopg2://postgres:postgres@localhost:5432/liferpg
run: |
export PYTHONPATH=$(pwd)
alembic -c modern/alembic.ini upgrade head
smoke-api:
runs-on: ubuntu-latest
needs: alembic-sqlite
concurrency:
group: smoke-api-${{ github.ref }}
cancel-in-progress: true
steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v5
with:
python-version: "3.12"
- name: Cache pyc
uses: actions/cache@v4
with:
path: |
**/__pycache__
key: ${{ runner.os }}-pyc-${{ github.sha }}
- name: Cache pip
uses: actions/cache@v4
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-3.12-${{ hashFiles('**/requirements*.txt', 'poetry.lock', 'Pipfile.lock') }}
restore-keys: |
${{ runner.os }}-pip-3.12-
- name: Install deps
run: |
python -m pip install --upgrade pip
python -m pip install -r modern/backend/requirements_full.txt uvicorn
- name: Upgrade DB (sqlite)
env:
DATABASE_URL: sqlite:///./modern_dev.db
run: |
export PYTHONPATH=$(pwd)
alembic -c modern/alembic.ini upgrade head
- name: Start API and smoke test
env:
DATABASE_URL: sqlite:///./modern_dev.db
run: |
export PYTHONPATH=$(pwd)
(python -m uvicorn modern.backend.app:app --host 127.0.0.1 --port 8000 & echo $! > uvicorn.pid)
# wait for port 8000
python - <<'PY'
import socket, time, sys
for i in range(60):
try:
with socket.create_connection(('127.0.0.1',8000), timeout=1):
sys.exit(0)
except OSError:
time.sleep(1)
print('API not ready', file=sys.stderr)
sys.exit(1)
PY
curl -fsS http://127.0.0.1:8000/health
curl -fsS http://127.0.0.1:8000/api/v1/hello
- name: Stop API
if: always()
run: |
if [ -f uvicorn.pid ]; then kill $(cat uvicorn.pid) || true; fi
drift-check:
runs-on: ubuntu-latest
concurrency:
group: drift-check-${{ github.ref }}
cancel-in-progress: true
steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v5
with:
python-version: "3.12"
- name: Cache pyc
uses: actions/cache@v4
with:
path: |
**/__pycache__
key: ${{ runner.os }}-pyc-${{ github.sha }}
- name: Install deps
run: |
python -m pip install --upgrade pip
python -m pip install -r modern/backend/requirements_full.txt alembic
- name: Run schema drift check
env:
DATABASE_URL: sqlite:///./modern_dev.db
run: |
export PYTHONPATH=$(pwd)
python scripts/alembic_check.py
smoke-api-postgres:
runs-on: ubuntu-latest
needs: alembic-postgres
concurrency:
group: smoke-api-postgres-${{ github.ref }}
cancel-in-progress: true
services:
postgres:
image: postgres:16
env:
POSTGRES_USER: postgres
POSTGRES_PASSWORD: postgres
POSTGRES_DB: liferpg
ports:
- 5432:5432
options: >-
--health-cmd "pg_isready -U postgres"
--health-interval 10s
--health-timeout 5s
--health-retries 10
steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v5
with:
python-version: '3.12'
- name: Cache pyc
uses: actions/cache@v4
with:
path: |
**/__pycache__
key: ${{ runner.os }}-pyc-${{ github.sha }}
- name: Cache pip
uses: actions/cache@v4
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-3.12-${{ hashFiles('**/requirements*.txt', 'poetry.lock', 'Pipfile.lock') }}
restore-keys: |
${{ runner.os }}-pip-3.12-
- name: Install deps
run: |
python -m pip install --upgrade pip
python -m pip install -r modern/backend/requirements_full.txt uvicorn alembic
- name: Wait for Postgres
run: |
for i in $(seq 1 30); do
pg_isready -h 127.0.0.1 -p 5432 -U postgres && exit 0
sleep 2
done
echo "Postgres not ready after 60s" >&2
exit 1
- name: Upgrade DB (postgres)
env:
DATABASE_URL: postgresql+psycopg2://postgres:postgres@localhost:5432/liferpg
run: |
export PYTHONPATH=$(pwd)
alembic -c modern/alembic.ini upgrade head
- name: Start API and smoke test (postgres)
env:
DATABASE_URL: postgresql+psycopg2://postgres:postgres@localhost:5432/liferpg
run: |
export PYTHONPATH=$(pwd)
(python -m uvicorn modern.backend.app:app --host 127.0.0.1 --port 8000 & echo $! > uvicorn.pid)
# wait for port 8000
python - <<'PY'
import socket, time, sys
for i in range(60):
try:
with socket.create_connection(('127.0.0.1',8000), timeout=1):
sys.exit(0)
except OSError:
time.sleep(1)
print('API not ready', file=sys.stderr)
sys.exit(1)
PY
curl -fsS http://127.0.0.1:8000/health
curl -fsS http://127.0.0.1:8000/api/v1/hello
- name: Stop API
if: always()
run: |
if [ -f uvicorn.pid ]; then kill $(cat uvicorn.pid) || true; fi
Reference in New Issue View Git Blame Copy Permalink