Skip to content

🚀 [v0.2.0-beta.0] Arquitetura Modular, CI/CD e Segurança#12

Merged
LAMP-LUCAS merged 33 commits into
mainfrom
develop
May 25, 2026
Merged

🚀 [v0.2.0-beta.0] Arquitetura Modular, CI/CD e Segurança#12
LAMP-LUCAS merged 33 commits into
mainfrom
develop

Conversation

@LAMP-LUCAS
Copy link
Copy Markdown
Owner

@LAMP-LUCAS LAMP-LUCAS commented May 25, 2026

🚀 [v0.2.0-beta.0] Arquitetura Modular, CI/CD e Segurança

Este Pull Request marca a maturidade estrutural da API do autoSINAPI. O projeto deixou de ser um "MonoRepo" amontoado para se tornar um Ecossistema Profissional, separando a inteligência de extração (Toolkit) da camada de entrega e segurança (API + Gateway).

✨ O que há de novo?

1. Arquitetura Orientada a Submódulos (feat/submodule)

  • Independência: O núcleo de processamento ETL (AutoSINAPI) agora é consumido como um Git Submodule. Isso permite versionamento independente e reutilização do Toolkit em outros projetos sem acoplar a infraestrutura da API.
  • Docker Otimizado: O Dockerfile e o docker-compose.yml foram reescritos para baixar e instalar o submódulo de forma autônoma e segura.

2. Automação e Qualidade (feat/ci)

  • Release Drafter: Implementado workflow do GitHub Actions que analisa os commits e escreve automaticamente os changelogs das próximas releases.
  • Integração Contínua (CI): Criado o workflow ci.yml que sobe temporariamente o Banco de Dados, o Redis e o Kong para testar se a API consegue importar e se comunicar com o Toolkit antes de permitir qualquer merge.
  • Testes da API: Suíte de testes atualizada, com validação de Cache, Mapeamento de UI e Orquestração de Deploy passando com sucesso.

3. Auditoria e Segurança (chore/security)

  • Remoção de Hardcodes: Um token sensível do Cloudflare que havia sido chumbado no docker-compose.yml em versões anteriores foi revogado e substituído pela variável de ambiente ${CLOUDFLARE_TUNNEL_TOKEN}.
  • .env.example Atualizado: Documentação de variáveis de ambiente foi melhorada para guiar novos usuários de forma segura.

🛠️ Melhorias na UI e Endpoints Internos (feat/ui-api)

  • Trends Refatorado: Os endpoints de tendência de custos agora suportam múltiplas dimensões e se integram perfeitamente com as novas colunas de rastreabilidade (etl_run_id) do banco de dados.
  • Correções de Heatmap: Resolvido o bug (500 Error) que impedia a renderização correta de mapas de calor no Frontend Demo quando o cache estava expirado.

⚠️ Notas de Migração para Consumidores (Breaking Changes / Actions Required)

  • Novo Comando de Clone: Ao baixar o projeto pela primeira vez, os usuários DEBEM usar a flag --recursive (git clone --recursive ...) para garantir que o código do submódulo venha junto.
  • Makefile: Um novo comando make setup foi criado para ajudar a inicializar o ambiente e puxar o submódulo caso o usuário tenha esquecido a flag na clonagem.

✅ Checklist de Validação

  • Testes da API rodados localmente (pytest)
  • Smoke Test de Integração (API -> Toolkit) via GitHub Actions
  • Auditoria de Segurança: Nenhum .env, .secrets ou token no histórico recente.
  • Documentação (README.md e CONTRIBUTING.md) refatorada para explicar a arquitetura.

LAMP-LUCAS added 30 commits May 21, 2026 01:49
@LAMP-LUCAS
feat(api): overhaul for enterprise performance, resilience and profes…
c9abc47 
…sional dashboard

- Implement RESTful API versioning (/api/v1/public)
- Add Redis-based analytical cache for BOM and ABC Curve
- Introduce Sandbox mode for non-destructive ETL testing
- Secure public routes with Kong Gateway limits and CORS
- Optimize database queries using indexed date ranges
- Build professional Tool-Landing Page with multi-format exports
@LAMP-LUCAS
feat(demo): full-stack overhaul — BI endpoints, CSS @layer, DI archit…
3699fa9 
…ecture, accessibility

API:
- Add get_composicao_man_hours (hora-homem endpoint)
- Add get_candidatos_otimizacao (optimization endpoint)
- Add nivel field to ComposicaoBOMItem schema
- Fix Redis cache decorator dict-vs-object access

Demo Frontend:
- CSS: @layer cascade system, color-mix(), container queries, clamp()
- JS: Dependency Injection wiring, getChartTheme() single source of truth
- Accessibility: WCAG 2.1 AA, forced-colors, reduced-motion, keyboard nav
- Remove 150+ lines of duplicated code (shimmer, downloadAsFile, closeMobileMenu, onclick→data-format)
- Responsive: 320px → 3840px, dvh, mobile-first breakpoints

Docs:
- Update main README with new BI endpoints, demo section
- Rewrite demo/README with full architecture docs
- Add logs/ to .gitignore
@LAMP-LUCAS
feat(sprint-1a): enrich demo UI with badges, BOM comparison, search, …
8d67490 
…chart export
@LAMP-LUCAS
feat(sprint-1b): maintenance history, ABC grouping, admin UI + timeline
3dd5283
@LAMP-LUCAS
fix(bom-cost): remove vertical duplication, add labor/material/equip …
aff912e 
…breakdown
@LAMP-LUCAS
feat(sprint-2): API professionalization + BI endpoints + demo improve…
e8ff02d 
…ments

API:
- CORS configurável via ALLOWED_ORIGINS (env var)
- Structured Logging em JSON com timestamp, endpoint, duration
- Endpoint /health com status de DB e Redis
- Cache decorator nos CRUDs básicos (get_insumo, search_insumo, etc.)
- invalidate_cache() com scan+cursor para limpeza por padrão
- Limite de recursão (nivel < 10) em todas as CTEs (ABC, Man-Hours, ABC por classificacao)
- Trends com relativedelta em vez de timedelta(days=30*N)
- Filtros classificacao/grupo movidos do Python para o SQL
- Alembic migrations setup + schema inicial (7 tabelas + view vw_composicao_itens_unificados)
- 2 novos endpoints BI: GET /bi/composicao/{codigo}/produtividade e GET /bi/insumo/{codigo}/onde-usado
- Testes de cache refatorados com unittest.mock (sem Redis real), 5/5 passando

Demo:
- Export BOM to PDF com jsPDF + autoTable
- Focus trap no modal + aria-live nos resultados dinâmicos
- HTML corrigido (tags mal fechadas)
- Responsividade: comparison grid, trends form, comparison form em mobile/tablet
- Heatmap: mapa Leaflet coroplético com GeoJSON oficial IBGE + fallback bar chart
- Comparison chart: categorias por Material/Mão de Obra/Equipamento em vez de INSUMO/COMPOSICAO
- Chart.getChart() em todos os 6 módulos (abc, compare, comparison, trends, heatmap, modal)
- Leaflet CDN, legendas dark mode, scroll-zoom desativado
- Quality checklist 8/8 itens verificados

Documentação:
- docs/WorkPlan.md reescrito: tabela completa de 18+ endpoints, 12 schemas, arquitetura
- docs/SPRINT_ENRIQUECIMENTO.md (documentação das sprints 1a, 1b, 1c)
- docs/workplans/SPRINT_202605_API_DEMO_ENHANCEMENT.md (plano desta sessão)
- docs/plans/SPRINT_HEATMAP_LEAFLET.md (plano do mapa Leaflet)

Infra:
- Alembic adicionado ao requirements.txt
- GeoJSON oficial do IBGE (27 UFs) servido via FastAPI StaticFiles
@LAMP-LUCAS
fix: minor schema and crud adjustments before traceability sprint
f53dd04
@LAMP-LUCAS
docs: add PRD and sprint plans for data traceability & reliability en…
3e8d1e8 
…hancement

- PRD_DATA_TRACEABILITY.md: Full audit, requirements, architecture
- SPRINT_3.1: Schema migration (traceability columns + audit log)
- SPRINT_3.2: ETL enhancement (UPSERT, DELETE by period, version tracking)
- SPRINT_3.3: API enhancement (traceability exposure, audit endpoint)
@LAMP-LUCAS
feat: implement traceability & reliability (Sprints 3.1-3.3)
ba57cda 
- Add Alembic migration 002: traceability columns + audit log table
- Update database.py: UPSERT on append, audit logging, version/run_id propagation
- Update etl_pipeline.py: DELETE by period (not TRUNCATE), extract SINAPI version
- Update api/schemas.py: TraceabilityMixin, AuditEvent schema
- Update api/crud.py: return traceability fields, add get_audit_events
- Update api/main.py: add /audit/{tipo}/{codigo} endpoint
- Add comprehensive PRD and sprint documentation
@LAMP-LUCAS
fix: add AutoSINAPI ETL toolkit to tracking (remove from gitignore)
3c9b347 
- Remove AutoSINAPI/ from .gitignore (was incorrectly ignoring ETL source)
- Include database.py and etl_pipeline.py traceability enhancements
@LAMP-LUCAS
feat: add AutoSINAPI ETL traceability changes
7daa995 
- database.py: UPSERT on append, audit logging, version/run_id propagation
- etl_pipeline.py: DELETE by period (not TRUNCATE), extract SINAPI version
- Remove embedded .git from AutoSINAPI/ (was preventing tracking)
- Update .gitignore to not ignore AutoSINAPI/ toolkit
@LAMP-LUCAS
test: add comprehensive traceability test suite
94a4886 
New test files:
- test_migration.py: Validates Alembic 002 migration (traceability columns)
- test_traceability_db.py: UPSERT, audit log, version propagation
- test_traceability_etl.py: ETL traceability (DELETE by period, version extraction)
- test_traceability_api.py: API traceability (audit endpoint, schemas)
- test_sandbox_integration.py: E2E integration with mock SINAPI data

Updated test files:
- test_database.py: Added UPSERT behavior, traceability propagation tests
- test_pipeline.py: Added sinapi_versao extraction, DELETE by period tests
- test_file_input.py: (already existed, staged)

Features tested:
- Migration 002 creates traceability columns + audit log table
- _append_data() now does UPSERT (not just INSERT IGNORE)
- sinapi_versao and etl_run_id propagated through ETL
- DELETE by period replaces TRUNCATE for structure tables
- New /audit/{tipo}/{codigo} API endpoint
- TraceabilityMixin in Pydantic schemas
@LAMP-LUCAS
test: fix complete test suite with sandbox isolation
7d2c9b0 
- Create api/sandbox_utils.py for sandbox mode (AUTOSINAPI_SANDBOX)
- Update config.py to support mode='sandbox' with sandbox_ table prefix
- Update database.py: always propagate sinapi_versao/etl_run_id
- Fix test_migration.py: correct assertions for Alembic 002 migration
- Fix test_database.py: use call.args[0] for TextClause content checks
- Fix test_pipeline.py: use _execute_phase_1_acquisition mock, accent namin
- Fix test_traceability_etl.py: same pattern fixes
- Fix test_traceability_api.py: use app.dependency_overrides for DB mock
- Skip integration tests requiring real PostgreSQL
- 50 total: 37 ETL + 13 API tests passing, 2 skipped
@LAMP-LUCAS
fix: use config table names for sandbox mode
6772ee1 
- etl_pipeline.py: Phase 0 checks config.DB_TABLE_INSUMOS (not hardcoded)
- config.py: add DB_TABLE_AUDIT_LOG for sandbox prefix support
- database.py: use config table names for audit log DDL and queries
- database.py: drop/create audit log with config table name
@LAMP-LUCAS
feat: sandbox ETL population verified with 1.16M records
c69dd9a 
- Fix etl_pipeline.py: use config table names for Phase 0 check
- Fix database.py: use config DB_TABLE_AUDIT_LOG, add uuid import
- Fix database.py: change etl_run_id to VARCHAR(36) type
- Fix database.py: add DISTINCT ON dedup for UPSERT queries
- Fix etl_pipeline.py: add column existence checks in placeholder gen
- Fix etl_pipeline.py: revert structure tables to TRUNCATE (no data_referencia)
- Add run_sandbox.py for sandbox ETL execution
- Migration 002 applied to real DB
- Sandbox ETL populated 2025-07: 1,160,750 records
- Traceability fields verified: sinapi_versao, etl_run_id
@LAMP-LUCAS
fix: install AutoSINAPI locally instead of from GitHub
c3a32d2 
Changes requirements.txt to install ./AutoSINAPI/ locally
so the Docker build uses the local ETL toolkit with all
traceability fixes (UPSERT, version propagation, audit log)
@LAMP-LUCAS
Merge branch 'develop' of github.com:LAMP-LUCAS/autoSINAPI_API into d…
0657589 
…evelop
@LAMP-LUCAS
fix: install AutoSINAPI from local directory in Dockerfile
e2da391
@LAMP-LUCAS
fix: add SETUPTOOLS_SCM env for AutoSINAPI build
fe242c3
@LAMP-LUCAS
feat: migration 003 - change etl_run_id from UUID to VARCHAR(36)
435a3ca
@LAMP-LUCAS
test: fix tests for UUID etl_run_id and TRUNCATE structure tables
2d41299
@LAMP-LUCAS
fix(ui/api): resolve 500 cache errors, fix heatmap rendering, and sta…
5e7ed17 
…bilize UI tests

- Update CustomJSONEncoder to support SQLAlchemy RowMapping objects.
- Fix API tests returning 500 ResponseValidationError.
- Implement robust UF property detection in heatmap.js.
- Ensure Heatmap and History charts occupy 100% width with 16/9 aspect ratio in modals.
- Fix UI test race conditions by awaiting module logic and data population.
- Add Grid vs Table toggle in the Comparison UI.
- Handle missing insumos classifications by grouping them as 'GERAL' in Trends analysis.
- Adjust Trends Y-axis to start at zero.
- Add UF filter bindings missing in dom.js.
- Document fixes in docs/history/2026-05-22_Stabilization_and_UI_Refinements.md
@LAMP-LUCAS
docs: add technical ROADMAP for future Open Source evolution
e6336d2
@LAMP-LUCAS
feat(api/ui): refactor Trends to multi-dimension and harden ETL data …
4b32dd9 
…integrity

- Refactor Trends endpoint to support agrupar_por (classificacao, grupo, item) and codigos filter.
- Update UI to allow switching trend dimensions and individual item analysis.
- Fix Processor to correctly extract Grupo column from 'Analítico' Excel sheet.
- Harden ETL pipeline to protect classifications during placeholder merging.
- Ensure etl_run_id and sinapi_versao are propagated to all 10 DB tables.
- Standardize metadata with UPPER(TRIM()) in trend analysis.
- Update documentation in READMEs and history records.
@LAMP-LUCAS
feat: convert AutoSINAPI toolkit into a Git Submodule
2bba07b
@LAMP-LUCAS
chore(security): remove hardcoded cloudflare token and update env exa…
70376ff 
…mples
@LAMP-LUCAS
feat(ci): add Release Drafter and Integration Smoke Test workflows
ecab944
@LAMP-LUCAS
chore: update submodule pointer and fix integration tests
d317736
@LAMP-LUCAS
chore: update toolkit submodule with CI/CD fixes
620d091
@LAMP-LUCAS
chore: update toolkit submodule with CI stability fix and verified state
eb173b0
@LAMP-LUCAS LAMP-LUCAS marked this pull request as ready for review May 25, 2026 04:38
@LAMP-LUCAS LAMP-LUCAS merged commit 0815f46 into main May 25, 2026
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@LAMP-LUCAS