Benjamin_Boenisch/breakpilot-compliance
1
1
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity

feat(platform): live-wire AGB v2 + DSE v3 + Architektur-Tab #29

Merged
Benjamin_Boenisch merged 8 commits from feat/platform-foundation into main 2026-06-21 12:58:27 +00:00
Conversation 0 Commits 8 Files Changed 44
+28 -4
5 changed files with 28 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 5f8009e844 - Show all commits
.gitea/workflows/rag-ingest.yaml
+1 -1
View File
@@ -74,7 +74,7 @@ jobs:
-e "WORK_DIR=/tmp/rag-ingestion" \
-e "RAG_URL=http://bp-core-rag-service:8097/api/v1/documents/upload" \
-e "QDRANT_URL=https://qdrant-dev.breakpilot.ai" \
-e "QDRANT_API_KEY=z9cKbT74vl1aKPD1QGIlKWfET47VH93u" \
-e "QDRANT_API_KEY=${{ secrets.QDRANT_API_KEY }}" \
-e "SDK_URL=http://bp-compliance-ai-sdk:8090" \
alpine:3.19 \
sh -c "
.gitleaks.toml
+21
View File
@@ -0,0 +1,21 @@
# gitleaks configuration.
# Keeps gitleaks' default ruleset and adds an allowlist for known FALSE POSITIVES
# that surfaced once the CI checkout was fixed (secret-scan had never actually run
# on a PR before). Real leaked credentials are removed in code, NOT allowlisted.
[extend]
useDefault = true
[allowlist]
description = "Documentation curl examples, env templates, and non-secret identifiers"
paths = [
# API reference pages — curl examples with placeholder tokens, not real secrets
'''developer-portal/app/api/.*''',
'''developer-portal/app/development/.*''',
# Template env file — placeholder dev values (e.g. breakpilot123)
'''\.env\.example$''',
# Seed data: "rule_key" identifiers, not credentials
'''backend-compliance/compliance/data/template_rule_seed_data\.py$''',
# SDK deploy template — MINIO placeholder password
'''breakpilot-compliance-sdk/packages/cli/src/commands/deploy\.ts$''',
]
scripts/cleanup-qdrant-duplicates.py
+2 -1
View File
@@ -18,6 +18,7 @@ Run with --dry-run to preview deletions without executing.
import argparse
import json
import os
import sys
import time
import requests
@@ -33,7 +34,7 @@ TARGETS = {
},
"production": {
"url": "https://qdrant-dev.breakpilot.ai",
"api_key": "z9cKbT74vl1aKPD1QGIlKWfET47VH93u",
"api_key": os.environ.get("QDRANT_API_KEY"),
},
}
scripts/migrate-qdrant.py
+2 -1
View File
@@ -6,6 +6,7 @@ Uses persistent HTTP sessions and rate limiting for hosted Qdrant.
"""
import json
import os
import sys
import time
import requests
@@ -13,7 +14,7 @@ from urllib.parse import urljoin
SOURCE_URL = "http://macmini:6333"
TARGET_URL = "https://qdrant-dev.breakpilot.ai"
TARGET_API_KEY = "z9cKbT74vl1aKPD1QGIlKWfET47VH93u"
TARGET_API_KEY = os.environ.get("QDRANT_API_KEY", "")
BATCH_SIZE = 20
RATE_LIMIT_DELAY = 0.3 # seconds between batches
scripts/qa/delete_gpsr_prod.py
+2 -1
View File
@@ -1,8 +1,9 @@
"""Delete eu_2023_988 duplicate from production Qdrant."""
import httpx
import os
PROD_URL = "https://qdrant-dev.breakpilot.ai"
HEADERS = {"api-key": "z9cKbT74vl1aKPD1QGIlKWfET47VH93u"}
HEADERS = {"api-key": os.environ.get("QDRANT_API_KEY", "")}
# Delete
resp = httpx.post(