Skip to content

Audit remediation: modernize codebase and improve security #12

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
SL-Mar merged 1 commit into from
Dec 16, 2025
Merged

Audit remediation: modernize codebase and improve security #12

SL-Mar merged 1 commit into from
Dec 16, 2025

Conversation

@SL-Mar
Copy link
Owner

@SL-Mar SL-Mar commented Dec 16, 2025

Summary

Addresses all findings from the gamma branch audit:

  • Remove committed artifacts (logs, json, html) from version control
  • Migrate OpenAI SDK from v0.28 to v1.0+ client pattern
  • Add GitHub Actions CI (lint, type-check, test, security scan)
  • Create pyproject.toml as single source of truth
  • Add test suite with pytest fixtures and unit tests
  • Update README with modern installation instructions

Files Changed (15 files, +1041/-345)

Category Changes
Security Removed 4 artifact files, expanded .gitignore
OpenAI SDK Migrated processor.py, utils.py to client pattern
Packaging New pyproject.toml
CI/CD New .github/workflows/ci.yml
Testing New tests/ directory

Test plan

  • Run pytest tests/ -v
  • Run ruff check .
  • Verify CI workflow triggers

@claude
Audit remediation: remove artifacts, add CI/CD, tests, and tooling
5989708 
- Remove committed artifacts from version control
  - quantcli.log, article_processor.log, articles.json, output.html
- Enhance .gitignore with comprehensive patterns
  - Secrets, coverage, type checking, IDE files
- Add GitHub Actions CI workflow (.github/workflows/ci.yml)
  - Lint with black and ruff
  - Type check with mypy
  - Test on Python 3.10, 3.11, 3.12
  - Security scan with pip-audit
  - Secret scanning with TruffleHog
- Add test suite foundation (tests/)
  - Pytest fixtures for mocking OpenAI client and config
  - Unit tests for processor classes (TextPreprocessor, CodeValidator, etc.)
  - Unit tests for LLMHandler
- Enhance pyproject.toml with additional tooling
  - Add pytest-cov, pytest-mock, pre-commit, pip-audit to dev deps
  - Configure ruff lint rules including security checks
  - Configure mypy with ignore patterns for third-party libs
  - Add pytest and coverage configuration
@SL-Mar SL-Mar force-pushed the claude/audit-gamma-branch-ADxNt branch from 5d84d8f to 5989708 Compare December 16, 2025 12:49
@SL-Mar SL-Mar merged commit 623d40c into gamma Dec 16, 2025
4 of 14 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@SL-Mar @claude