Benjamin_Boenisch/breakpilot-compliance
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
cc1c61947d7857942f879eb8e331ca95af74aa06
breakpilot-compliance/backend-compliance/mypy.ini
Sharang Parnerkar cc1c61947d refactor(backend/api): extract Incident services (Step 4 — file 11 of 18) 
compliance/api/incident_routes.py (916 LOC) -> 280 LOC thin routes +
two services + 95-line schemas file.

Two-service split for DSGVO Art. 33/34 Datenpannen-Management:

  incident_service.py (460 LOC):
    - CRUD (create, list, get, update, delete)
    - Stats, status update, timeline append, close
    - Module-level helpers: _calculate_risk_level, _is_notification_required,
      _calculate_72h_deadline, _incident_to_response, _measure_to_response,
      _parse_jsonb, _append_timeline, DEFAULT_TENANT_ID

  incident_workflow_service.py (329 LOC):
    - Risk assessment (likelihood x impact -> risk_level)
    - Art. 33 authority notification (with 72h deadline tracking)
    - Art. 34 data subject notification
    - Corrective measures CRUD

Both services use raw SQL via sqlalchemy.text() — no ORM models for
incident_incidents / incident_measures tables. Migrated from the Go
ai-compliance-sdk; Python backend is Source of Truth.

Legacy test compat: tests/test_incident_routes.py imports
_calculate_risk_level, _is_notification_required, _calculate_72h_deadline,
_incident_to_response, _measure_to_response, _parse_jsonb,
DEFAULT_TENANT_ID directly from compliance.api.incident_routes — all
re-exported via __all__.

Verified:
  - 223/223 pytest pass (173 core + 50 incident)
  - OpenAPI 360/484 unchanged
  - mypy compliance/ -> Success on 141 source files
  - incident_routes.py 916 -> 280 LOC
  - Hard-cap violations: 8 -> 7

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-09 08:35:57 +02:00

98 lines
3.5 KiB
INI
Raw Blame History

[mypy]
python_version = 3.12
strict = True
implicit_reexport = True
ignore_missing_imports = True
warn_unused_configs = True
exclude = (?x)(
^compliance/tests/
| ^compliance/data/
| ^compliance/scripts/
)
# Tests are not type-checked (legacy; will be tightened when TestClient-based
# integration tests land in Phase 1 Step 4 follow-up).
[mypy-compliance.tests.*]
ignore_errors = True
# ----------------------------------------------------------------------
# Phase 1 refactor policy:
# - compliance.domain / compliance.schemas : fully strict
# - compliance.api._http_errors : fully strict
# - compliance.services.<new_clean_arch_service> : strict (list explicitly)
# - compliance.repositories.* : strict with ORM arg-type
# ignore (see per-file)
# - compliance.db.* : loose (ORM models)
# - compliance.services.<legacy utility modules> : loose (pre-refactor)
# - compliance.api.<route files> : loose until Step 4
# ----------------------------------------------------------------------
# Legacy utility services that predate the Phase 1 refactor. Not touched
# by the clean-arch extraction. Left loose until their own refactor pass.
[mypy-compliance.services.ai_compliance_assistant]
ignore_errors = True
[mypy-compliance.services.audit_pdf_generator]
ignore_errors = True
[mypy-compliance.services.auto_risk_updater]
ignore_errors = True
[mypy-compliance.services.control_generator]
ignore_errors = True
[mypy-compliance.services.export_generator]
ignore_errors = True
[mypy-compliance.services.llm_provider]
ignore_errors = True
[mypy-compliance.services.pdf_extractor]
ignore_errors = True
[mypy-compliance.services.regulation_scraper]
ignore_errors = True
[mypy-compliance.services.report_generator]
ignore_errors = True
[mypy-compliance.services.seeder]
ignore_errors = True
[mypy-compliance.services.similarity_detector]
ignore_errors = True
[mypy-compliance.services.license_gate]
ignore_errors = True
[mypy-compliance.services.anchor_finder]
ignore_errors = True
[mypy-compliance.services.rag_client]
ignore_errors = True
# SQLAlchemy ORM layer: models use Column() rather than Mapped[T], so
# static analysis sees descriptors as Column[T] while runtime returns T.
# Loose for the whole db package until a future Mapped[T] migration.
[mypy-compliance.db.*]
ignore_errors = True
# Route files (Phase 1 Step 4 in progress): only the refactored ones are
# checked strictly via explicit extension of the strict scope in CI.
# Until each file is refactored, it stays loose.
[mypy-compliance.api.*]
ignore_errors = True
# Refactored route modules under Step 4 — override the blanket rule above.
[mypy-compliance.api.audit_routes]
ignore_errors = False
[mypy-compliance.api.banner_routes]
ignore_errors = False
[mypy-compliance.api.tom_routes]
ignore_errors = False
[mypy-compliance.api.company_profile_routes]
ignore_errors = False
[mypy-compliance.api.vvt_routes]
ignore_errors = False
[mypy-compliance.api.canonical_control_routes]
ignore_errors = False
[mypy-compliance.api.source_policy_router]
ignore_errors = False
[mypy-compliance.api.screening_routes]
ignore_errors = False
[mypy-compliance.api.evidence_routes]
ignore_errors = False
[mypy-compliance.api.email_template_routes]
ignore_errors = False
[mypy-compliance.api.incident_routes]
ignore_errors = False
[mypy-compliance.api._http_errors]
ignore_errors = False
Reference in New Issue View Git Blame Copy Permalink