bytelyst/learning_ai_common_plat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,568 Commits 2 Branches 3 Tags 60 MiB
359d99b67f
Commit Graph

167 Commits

Author SHA1 Message Date
root
b7b3869014 docs(architecture): keep monitoring stacks internal on VM 2026-03-31 06:47:39 +00:00
root
5cec039905 docs(architecture): keep internal dashboards on VM Docker 2026-03-31 06:39:19 +00:00
root
bb85bf6176 docs(devops): refresh Track A handoff status 2026-03-30 00:11:45 +00:00
root
5cff282961 docs(architecture): move dashboards to Vercel 2026-03-30 00:05:50 +00:00
root
c0cf80d96b docs(devops): add Track A handoff and prep gateway changes 2026-03-29 23:57:03 +00:00
root
eba6c7a641 chore(platform): align docker and package outputs 2026-03-29 23:41:08 +00:00
root
1b7a68c8a8 feat(devops): add efforise to single-vm ecosystem 2026-03-29 23:34:36 +00:00
saravanakumardb1
80e6268924 docs(vercel): improve Codex prompts with progress trackers, preconditions, verification gates, and per-repo checklists 2026-03-29 16:29:42 -07:00
saravanakumardb1
5fb5a7d468 docs(vercel): split Codex prompts into Track A (Azure VM) and Track B (Vercel code) — replace monolithic file 2026-03-29 16:15:49 -07:00
saravanakumardb1
133d9fe337 docs(vercel): add Codex agent prompts for remaining Vercel deployment work — 8 prompts in dependency order 2026-03-29 16:09:26 -07:00
saravanakumardb1
8dd0036fc4 docs(vercel): cross-reference Azure VM Caddy gateway — concrete gitea.bytelyst.com and api.bytelyst.com URLs across all roadmaps 2026-03-29 16:05:57 -07:00
saravanakumardb1
e6b625f4e2 docs(vercel): review and fix ecosystem web apps audit — update registry strategy to Gitea-on-Azure-VM, fix effort estimates, fix EffoRise path, remove spurious PeakPulse entry, add prerequisite section 2026-03-29 15:46:44 -07:00
saravanakumardb1
64885dbc33 docs: update documentation 2026-03-29 15:46:44 -07:00
root
b261c5d13f fix(devops): harden single-vm gitea bootstrap 2026-03-29 22:44:02 +00:00
root
388d71a06f docs(devops): add azure vm deployment status snapshot 2026-03-29 22:42:33 +00:00
root
626e19f776 docs(devops): add secure single-vm api exposure guidance 2026-03-29 22:29:08 +00:00
saravanakumardb1
21ff1058a4 docs(docker): rewrite prompt.md as execution guide for Codex agent on fresh VM 
- Reframed from 'review and fix' to 'execute, monitor, fix failures, validate'
- 4 clear tasks: run script, handle failures, validate deployment, report results
- Moved bug history and development context to background reference
- Added copy-pastable validation commands for all 31 services
- Simplified constraints: don't modify unless actual runtime failure
 2026-03-28 02:06:52 -07:00
saravanakumardb1
7c4f0bc3d9 feat(docker): add --dry-run mode + test-plan.md, complete all 7 prompt tasks 
- Task 4: Add --dry-run flag that validates system, Docker, Node, Ollama, Gitea, repos, GitHub access, compose file, env file, and phase state without building or deploying
- Task 7: Create test-plan.md with phase-by-phase verification, functional smoke tests, idempotency/resume tests, remote connectivity via SSH forwarding, and service count summary
- Update README CLI flags table with --dry-run
- Mark all 7 tasks done in prompt.md
 2026-03-28 01:58:15 -07:00
saravanakumardb1
91a651805c docs(docker): update README, prompt.md, .env.ecosystem.example with audit fixes 
- README: NSG port list inline, phase 7 count 31, CORS/NODE_ENV troubleshooting, SSH port-forwarding example
- prompt.md: mark tasks 5+6 done, add 8 new bug fixes to table, update definition of done with llmlab-dashboard
- .env.ecosystem.example: add NODE_ENV=production and CORS_ORIGIN=*
 2026-03-28 00:45:38 -07:00
saravanakumardb1
d8908093fa fix(docker): add llmlab-dashboard to setup.sh, fix service count to 31, add CORS_ORIGIN + NODE_ENV 
- B1: Add llmlab-dashboard to WEB_SERVICES array (was missing, 30→31)
- B2: Add llmlab-dashboard to check-health.sh (port 3075)
- B3: Fix service count comments throughout (30→31)
- B6: Restore CWD after phase 3 git push loop
- G1: Add CORS_ORIGIN=* to phase6_env for remote browser access
- G2: Add NODE_ENV=production to phase6_env for all services
 2026-03-28 00:40:25 -07:00
saravanakumardb1
fc12a8eaa2 feat(devops): add Local LLM Lab to ecosystem deployment 
- docker-compose.ecosystem.yml: add llmlab-dashboard service (port 3075)
- setup.sh: add learning_ai_local_llms as 12th repo
- README.md: update to 31 services, 11 products, add Docker vs K8s recommendation
- docker/README.md: update port map, phase descriptions
- prompt.md: update repo list and service counts
 2026-03-27 00:10:40 -07:00
saravanakumardb1
70fdc6b279 feat(devops): add Gitea CI (act_runner) to Azure VM setup 
- Phase 2: install act_runner binary, register with Gitea, create systemd service
- Phase 3: push all 11 repos to VM Gitea after cloning from GitHub
- Expanded Gitea API token scopes (write:repository, write:user)
- Runner config: host mode, capacity 2, GITEA_NPM_TOKEN injected
- Enables CI on the VM for NETWORK!=corp usage
 2026-03-26 23:19:37 -07:00
saravanakumardb1
aa139d5021 feat(ci): add auto-publish job for @bytelyst/* packages + update migration doc 
- Add publish-packages job to CI workflow (runs after build-and-test)
- Publish 13 remaining packages to Gitea (56 total, up from 43)
- Update act_runner token to read+write scope
- Fix package counts throughout migration doc (43 → 56)
- Update CI status: all 10/10 repos now have CI workflows
- Add package inventory section (§15.1)
 2026-03-26 23:18:05 -07:00
saravanakumardb1
5ba9518722 docs: update Gitea registry docs for NETWORK-aware GITEA_NPM_HOST 
- GITEA_NPM_REGISTRY_MIGRATION.md: update .npmrc examples, add home
  row to network topology table, note switch-network.sh sets the host
- SINGLE_VM_DEPLOYMENT.md: consolidate .npmrc example to show unified
  ${GITEA_NPM_HOST}:3300 pattern (host-side + Docker-side)
- GITEA_LOCAL_CI.md: add NPM registry host note to Key Settings
 2026-03-24 15:57:20 -07:00
saravanakumardb1
32522b218a fix(k8s): setup-k8s.sh — fail phase 3 on build errors, fix non-root crash 
- Phase 3 now exits with error if any image builds fail, preventing
  mark_phase_done from running. Previously it just warned and continued,
  which could lead to phase 5 deploying with missing images.
- Moved mkdir from top-level scope into mark_phase_done(). The old
  top-level mkdir -p /opt/bytelyst/.setup-state-k8s crashed non-root
  invocations (--status, --help) due to set -e + permission denied.
- Fixed header comment: 'containerd' → 'Docker runtime' (we use --docker).
- Added --resume to header usage block (was supported but undocumented).
 2026-03-24 14:52:53 -07:00
saravanakumardb1
a25d6f7847 fix(k8s): remove YAML anchors that break across document separators 
YAML anchors (&name/*name) are scoped per document. In multi-document
files (separated by ---), anchors defined in one document cannot be
referenced from another. This caused all backends/webs after the first
to fail kubectl apply with unknown alias errors.

Fixed by inlining envFrom, resources, and labels in every Deployment.
 2026-03-24 14:51:48 -07:00
saravanakumardb1
8a568932b4 feat(infra): add production-grade k3s Kubernetes setup for single VM 
Complete K8s deployment alternative to Docker Compose, targeting
~50 beta users on a Standard_D8s_v5 Azure VM (8 vCPU, 32 GB RAM).

setup-k8s.sh (6 phases):
  1. Pre-flight: verify docker phases 1-5 ran, disk/RAM checks
  2. Install k3s: Docker runtime, NodePort range 1024-32767
  3. Build images: docker compose build + tag as bytelyst/<svc>
  4. Config: namespaces, ConfigMap (3 copies), Secrets (JWT + blob keys), Ollama
  5. Deploy: infra -> platform -> dashboards -> products (ordered)
  6. Health check: 32 endpoints + kubectl pod status

K8s manifests (18 files):
  - 4 namespaces (infra, platform, dashboards, products)
  - 6 infra (cosmos StatefulSet+PVC, azurite StatefulSet+PVC,
    mailpit, loki StatefulSet+PVC, grafana+PVC, ollama external)
  - 3 platform (Deployment+Service+NodePort each)
  - 2 dashboards (Deployment+Service+NodePort each)
  - 10 backends + 9 webs (all with readiness+liveness probes,
    resource limits, product-specific NEXT_PUBLIC_* env vars)

Design decisions:
  - k3s --docker: reuses existing Docker images, no containerd import
  - Same ports as Docker Compose (NodePort with extended range)
  - ConfigMap replaces .env.ecosystem, copied to 3 app namespaces
  - Blob storage keys injected at deploy time via Secret (not in YAML)
  - Cross-namespace DNS: <svc>.<ns>.svc for service discovery
  - Ollama as Endpoints+Service pointing to host node IP
  - Resource limits: ~19 Gi total, fits in 32 GB with 13 GB headroom
  - Teardown: --teardown flag deletes namespaces, keeps k3s
 2026-03-24 14:47:17 -07:00
saravanakumardb1
7d0c469858 refactor(infra): reorganize single_azure_vm into docker/ and k8s/ subfolders 
- Move setup.sh, README.md, prompt.md into docker/ subfolder
- Create top-level README.md comparing both approaches
- Create k8s/README.md with full design doc: k3s architecture,
  namespace strategy, manifest structure, ConfigMap/Secret design,
  Cosmos emulator StatefulSet, Ollama host service, resource limits,
  5-phase implementation plan, and kubectl cheat sheet
 2026-03-24 14:11:50 -07:00
saravanakumardb1
40731e06f4 docs(infra): update prompt.md with 15 new bug fixes and stale corrections 
- Added 15 recent fixes to the Bugs Already Fixed table
- Fixed line count (~940 → ~990)
- Fixed stale lysnrai-web → lysnrai-dashboard in architecture diagram
- Fixed test plan service count (27+ → 30+)
- Updated constraint: compose/Dockerfile changes allowed with verification
 2026-03-24 13:49:17 -07:00
saravanakumardb1
d64ea4fba7 fix(infra): add cd path to banner compose logs command 
The banner showed bare COMPOSE_FILE filename without the directory,
making the command unusable via copy-paste. Now shows the cd first.
 2026-03-24 13:48:05 -07:00
saravanakumardb1
e928ec6025 fix(infra): audit round 2 — token guard, frozen-lockfile, build cache, docs 
- Add require_gitea_token() guard — fail early with actionable message
  if GITEA_NPM_TOKEN is empty after restore (prevents silent failures
  in Phase 4/5/7)
- Wire require_gitea_token() into phase4_build and setup_compose_env
- Remove --frozen-lockfile from admin-web + tracker-web Dockerfiles
  (Docker context is missing services/ and scripts/ workspace members;
  Phase 4 reconciles lockfile so --frozen-lockfile is unnecessary)
- Add docker builder prune after Phase 7 builds (reclaim 20-40 GB)
- Update README: pre-flight thresholds, Ollama stop/restart behavior,
  Loki + Azurite in port map, updated memory pressure note
 2026-03-24 13:37:21 -07:00
saravanakumardb1
1a8697d8ed fix(infra): fix last stale service count comment (27→30) in setup.sh 2026-03-24 13:18:12 -07:00
saravanakumardb1
f78d382d62 fix(infra): add Azurite + Loki to health check script 
- Azurite blob storage (:10000) was missing from check-health.sh
- Loki log aggregation (:3100/ready) was missing from check-health.sh
- Now covers all 30 compose services + Gitea + Ollama = 32 endpoints
 2026-03-24 13:08:12 -07:00
saravanakumardb1
1a1f7dd55c fix(infra): harden setup.sh — pre-flight checks, pipefail safety, RAM management 
- Add pre-flight disk space + memory checks after root validation
- Add --batch --yes to gpg dearmor calls (idempotent on re-run)
- Fix jq abort on malformed Gitea token response (|| echo guard)
- Wrap pnpm install/build in if-blocks with explicit fail() messages
- Stop Ollama during Phase 7 Docker builds to free ~3 GB RAM
- Restart Ollama after Phase 7 builds complete (before Phase 8 health check)
 2026-03-24 13:06:05 -07:00
saravanakumardb1
c2ca7f53b4 fix(infra): harden setup.sh from independent audit findings 
- Replace deprecated NodeSource curl|bash with modern GPG key + apt source
- Add build-essential + python3 to apt deps (native addons: better-sqlite3)
- Add --if-present to pnpm -r build (defensive: skip workspace members without build script)
- Fix README: remove stale proxy stripping reference from Phase 3
- Add Known Limitations section: remote browser access, ARM VM, memory pressure
- Remove AUDIT_PROMPT.md (served its purpose)
 2026-03-24 12:56:43 -07:00
saravanakumardb1
35021b67b9 docs(infra): fix stale service count (27→30), update prompt.md + README.md for Codex agent readiness 
- prompt.md: mark tasks 1-3 as DONE, add 'Current State' section listing
  all implemented features, update bugs-fixed table (16 items), fix service
  count in architecture diagram, add CLI reference, remove stale --frozen-lockfile
- README.md: add Resume & Retry section with examples, add CLI Flags table,
  fix service count in title/phases, update build failure troubleshooting
  with build log paths and retry command
- setup.sh: fix '27 services' → '30 services' in header comment and banner
 2026-03-24 12:35:59 -07:00
saravanakumardb1
acbab75aaa docs(infra): add complete CLI reference, examples, and phase docs to setup.sh + ECOSYSTEM_DEPLOYMENT.md 
setup.sh header now includes:
- All 6 CLI flags (--resume, --resume-from, --phase, --reset, --status, --help)
- Phase descriptions (1-8)
- 6 usage examples (fresh install, retry, resume, jump, status, reset)
- Resume/retry explanation with state dir and build log paths

ECOSYSTEM_DEPLOYMENT.md now includes:
- Single-VM Bootstrap section with quick start
- Resume & Retry examples
- Phase table
- Per-service build & fallback explanation
- Health check script reference
 2026-03-24 12:24:16 -07:00
saravanakumardb1
b634708da8 fix(infra): make ollama model pull non-fatal in setup.sh 
ollama pull piped through tail with set -euo pipefail would abort the
entire 8-phase setup on a slow network or wrong model name. Only
LocalMemGPT needs the model — the other 9 products are unaffected.
 2026-03-24 12:20:13 -07:00
saravanakumardb1
a3f4c6facf fix(infra): fix sequential phase gap + add phase 7 guards 
1. last_completed_phase now stops at first gap — prevents --resume from
   skipping phases when --phase=N created non-sequential markers
2. Phase 7 fails early if .env.ecosystem is missing (points to --phase=6)
3. Warns if compose config JSON cache fails — graceful degradation
 2026-03-24 12:17:45 -07:00
saravanakumardb1
a9414218ba fix(infra): fix 5 bugs in setup.sh per-service build + resume logic 
1. set -e + pipefail: docker compose up piped through tail would abort
   script on partial startup failure before printing summary — add || true
2. Phase 7 marked done even with build failures, so --resume would skip
   it — now only marks done when all builds succeed
3. --phase=7 printed 'Phase 7 complete' even with failures — now exits
   with code 1 and points to build logs
4. docker compose config --format json called 30 times in build loop —
   now cached once (saves ~3s)
5. Build logs now saved per-service to STATE_DIR/builds/<svc>.log for
   post-failure debugging
 2026-03-24 12:13:14 -07:00
saravanakumardb1
8ff9e42817 feat(infra): add resume/retry, per-service build, and fallback to setup.sh 
- --resume: auto-detect last completed phase and continue from there
- --resume-from=N: resume from a specific phase
- --phase=N: run only one phase (e.g. --phase=7 to retry deploy)
- --reset: clear phase markers and start fresh
- --status: show completed phases
- Phase 7 now builds each of 27 services individually with progress
- Failed builds are skipped; remaining services still start
- Phase completion markers stored in /opt/bytelyst/.setup-state/
- GITEA_NPM_TOKEN auto-restored from saved state on resume
 2026-03-24 12:03:55 -07:00
saravanakumardb1
c0bc13e10a fix(infra): improve setup.sh publish error handling — distinguish real failures from 409 conflicts 2026-03-24 11:56:26 -07:00
saravanakumardb1
52b424937a refactor(infra): remove proxy-stripping sed from setup.sh — Dockerfiles are clean at source 2026-03-24 11:17:02 -07:00
saravanakumardb1
c8a196de58 docs(infra): add bugs-already-fixed section to Codex handoff prompt 2026-03-24 11:04:11 -07:00
saravanakumardb1
ddd2db848e fix(infra): 6 bugs in setup.sh — jfrog sed, apt source, token fallback, log file 2026-03-24 11:02:16 -07:00
saravanakumardb1
6abf13d983 docs(infra): add Codex agent handoff prompt for VM setup 2026-03-24 10:53:20 -07:00
saravanakumardb1
7c34cee0ab feat(infra): install Ollama + full raw-VM bootstrap in setup.sh 2026-03-24 10:47:20 -07:00
saravanakumardb1
2b9fd71740 fix(docker): make proxy optional in dashboard Dockerfiles, strip proxy in VM setup 2026-03-24 10:35:00 -07:00
saravanakumardb1
3b31709b47 fix(infra): add extra_hosts for Linux, improve env example docs, harden setup.sh 2026-03-24 10:26:47 -07:00
saravanakumardb1
2458a9d3b0 feat(infra): add single Azure VM bootstrap script + README 2026-03-24 10:14:16 -07:00
saravanakumardb1
25a1bd5187 fix(infra): add BuildKit secrets + GITEA_NPM_HOST to ecosystem compose 2026-03-24 10:02:40 -07:00
saravanakumardb1
3a840572bf chore(infra): add .env.ecosystem.example for ecosystem compose 2026-03-24 09:08:30 -07:00
saravanakumardb1
d466b8a7c4 docs: clean stale sections in GITEA_NPM_REGISTRY_MIGRATION.md 2026-03-24 08:44:29 -07:00
saravanakumardb1
fee5e87052 docs: remove versioning refs and stale transition language from deployment docs 
- Remove 'Supersedes' and 'What Changed' section from enhanced plan
- Rewrite Package-Manager Strategy (transition complete, all repos on pnpm)
- Remove docker-prep.sh prerequisites, .tarballs/ references, npm variants
- Replace Dockerfile templates with current Gitea registry-backed pattern
- Remove §11.1 Package-Manager Migration Roadmap (migration complete)
- Clean up §11.2 Gitea section (remove 'Current pain', comparison table)
- Clean up §12 audit findings (remove tarball references)
- Simplify §10 Dockerization table (remove transition columns)
- Update §5.1/5.2 to reflect validated state, not open gaps
- Fix v2 tag in K3s exercise to use semver 1.1.0
- Update Summary table with current state
 2026-03-24 08:10:17 -07:00
saravanakumardb1
baf47ac56b docs: add enhanced single-VM deployment plan with Coolify, Valkey, Uptime Kuma, SOPS 
New SINGLE_VM_ENHANCED_PLAN.md covers:
- Coolify as self-hosted PaaS (15-min setup vs 6-7hr manual)
- Valkey (Redis fork) for sessions, cache, pub/sub, rate limits
- Uptime Kuma for status page + alerting
- Dozzle for live container logs
- SOPS + age for git-safe encrypted secrets
- Restic for volume backups
- BuildKit cache mounts for faster Docker builds
- Docker Compose profiles for selective startup
- Revised 4.5-hour implementation timeline

Also updates SINGLE_VM_DEPLOYMENT.md §3 prerequisite to reference
resolved Gitea registry migration and new enhanced plan.
 2026-03-24 07:49:50 -07:00
saravanakumardb1
b0a4b2d9c3 docs: add Docker build verification section (§17) — all 4 images pass, 1591 tests green 2026-03-24 07:28:44 -07:00
saravanakumardb1
d64acd79e3 docs: add post-migration audit section (§16) — 5 bugs/gaps found and fixed 2026-03-24 06:53:15 -07:00
saravanakumardb1
266f45a851 docs: finalize Gitea registry migration — all 10 repos migrated, rollback + Azure documented, Definition of Done 10/10 2026-03-24 06:23:33 -07:00
saravanakumardb1
4929cb9202 docs(devops): update registry migration status — 8 repos migrated, 38 packages published 
- Update validation results: 8 repos migrated, all Docker builds verified
- Update rollout order with completion status
- Update definition of done: 7/10 items checked
- Update next actions: remaining 2 non-standard repos (MindLyst, LysnrAI)
- Mark gaps section: mobile stays on file: refs, CI queue sequential
 2026-03-23 21:08:27 -07:00
saravanakumardb1
0dd57b9d00 fix(docs): distinguish NETWORK=corp local-dev topology from VM deployment 2026-03-23 19:48:55 -07:00
saravanakumardb1
f0945a2d86 fix(ci): prefer ipv4 for local runner registration 2026-03-23 19:39:11 -07:00
saravanakumardb1
64db209bab fix(docs): refresh local Gitea rehearsal status 2026-03-23 19:26:31 -07:00
saravanakumardb1
39f33c4342 fix(docs): export local Docker token example 2026-03-23 19:24:32 -07:00
saravanakumardb1
688aad624a fix(docs): document hardened FlowMonk Docker workaround 2026-03-23 19:19:46 -07:00
saravanakumardb1
03b92eb2df fix(docs): update local Gitea migration status 2026-03-23 19:17:07 -07:00
saravanakumardb1
6f748b11d4 fix(docs): record local FlowMonk Docker workaround 2026-03-23 19:09:04 -07:00
saravanakumardb1
2296d98bf6 fix(docs): capture localhost tarball blocker in Docker 2026-03-23 19:02:49 -07:00
saravanakumardb1
fdf640e5bd fix(docs): capture local Docker auth blocker 2026-03-23 18:57:34 -07:00
saravanakumardb1
90e3f8d056 fix(docs): narrow docker-prep assumptions in vm guide 2026-03-23 18:54:18 -07:00
saravanakumardb1
a0469c2a57 fix(docs): clarify local Gitea consumer auth behavior 2026-03-23 18:52:26 -07:00
saravanakumardb1
fdf80d6470 fix(docs): correct FlowMonk compose build examples 2026-03-23 18:50:38 -07:00
saravanakumardb1
7361cba125 fix(docs): restore valid helm template examples 2026-03-23 18:16:01 -07:00
saravanakumardb1
4687351de0 ci: update CI/CD configuration 2026-03-23 18:04:18 -07:00
saravanakumardb1
fa1adf829c docs(devops): capture azure vm and scaling readiness gaps 2026-03-23 16:10:02 -07:00
saravanakumardb1
7116749bbd docs(devops): record local gitea registry rehearsal 2026-03-23 15:48:18 -07:00
saravanakumardb1
e427282234 docs(ci): update Gitea CI docs + add /gitea-ci workflow 
- Add key settings, runner log path, detailed repo/job matrix to GITEA_LOCAL_CI.md
- Add /gitea-ci Windsurf workflow: start, push all, check status, view logs
- Add learning_ai_local_memory_gpt to repos.txt
 2026-03-22 20:56:03 -07:00
saravanakumardb1
6d4579da37 chore(ci): migrate to Gitea local CI, disable GitHub Actions 
- Add .gitea/workflows/ci.yml for Gitea Actions
- Disable GitHub Actions: ci-extraction-service, ci-mcp-server, reusable-pnpm-workspace
- Add docs/devops/GITEA_LOCAL_CI.md setup guide
 2026-03-22 20:13:02 -07:00
saravanakumardb1
828d31b63d docs: update documentation 2026-03-22 14:06:44 -07:00
saravanakumardb1
a92373adec docs(devops): fix 15 bugs/gaps in single-VM deployment guide — add 4 missing web services, update stale references 2026-03-22 00:49:14 -07:00
saravanakumardb1
0502dead68 docs(devops): add Docker Desktop K8s as primary local option alongside K3s 2026-03-22 00:44:23 -07:00
saravanakumardb1
5646cefcbd docs(devops): add K8s best practices from production comparisons, update gap table to reflect all Dockerfiles created 2026-03-22 00:36:59 -07:00
saravanakumardb1
ae2af43d71 docs(devops): add single-VM deployment guide with audit findings 2026-03-22 00:18:17 -07:00
saravanakumardb1
b1af8e550a docs(e2ee): detailed SQLCipher + AKV implementation plan for LocalMemGPT Sprint 5.4 
- Decision: SQLCipher full-DB encryption (preserves FTS5 search)
- Key hierarchy: AKV secret > env var > auto-generated file > unencrypted dev
- Existing DB migration via sqlcipher_export
- 6 implementation steps documented
 2026-03-21 13:39:01 -07:00
saravanakumardb1
c252cfd198 feat(devops): encryption migration CLI with embedded product configs 
- scripts/encrypt-migrate.ts — batch-encrypt existing plaintext Cosmos docs
- scripts/ added as pnpm workspace member for clean @bytelyst/* imports
- 10 product configs, 20 containers, 40+ fields
- --dry-run, --product, --container, --batch-size, --verbose flags
- Idempotent via __encrypted sentinel (migrateDocuments helper)
- Updated E2EE roadmap Sprint 6.2 as complete
 2026-03-21 13:19:55 -07:00
saravanakumardb1
32afe8dde7 docs(e2ee): update roadmap — ChronoMind + PeakPulse backends encrypted (9 total) 
- ChronoMind: timers.description, routines.description, routines.steps[].notes (182 tests)
- PeakPulse: peak-sessions.notes (65 tests)
- Only MindLyst (KMP) and LocalMemGPT (SQLite) deferred
 2026-03-21 12:04:10 -07:00
saravanakumardb1
d11f84da5f docs(e2ee): update roadmap — Sprint 4 complete 
- 4.1.2: Swift Keychain key derivation ✓
- 4.2.2: Kotlin SecureStore key derivation ✓
- 4.3: @bytelyst/client-encrypt (22 tests) ✓
- 4.4.1: @bytelyst/secure-storage-web (16 tests) ✓
- 4.5: FlowMonk tasks.description encrypted (211 tests) ✓
- Only 4.4.2 (auth-client migration) deferred to Sprint 5
 2026-03-21 11:23:26 -07:00
saravanakumardb1
e59dcdb9ac docs(e2ee): update roadmap — Sprint 4.1/4.2 native SDKs complete 
- Swift BLFieldEncrypt: 22 XCTest tests, CryptoKit AES-256-GCM
- Kotlin BLFieldEncrypt: 21/21 JUnit5 tests, javax.crypto AES-256-GCM
- Both wire-compatible with @bytelyst/field-encrypt EncryptedField JSON
 2026-03-21 10:58:47 -07:00
saravanakumardb1
d6de30ee57 docs(devops): refresh backend audit baseline 2026-03-21 10:45:55 -07:00
saravanakumardb1
7c99f5a5fa docs(e2ee): update roadmap — Phase 1 + Sprint 3 complete, 6 backends encrypted 
- Sprint 1: @bytelyst/field-encrypt package — all items complete
- Sprint 2: LysnrAI + JarvisJr encrypted, MFA refactor deferred (data format risk)
- Sprint 3: NoteLett + NomGap + ActionTrail encrypted
- MindLyst deferred (KMP/Gradle repo, not Fastify backend pattern)
- Total: 6 product backends with field-level encryption, all tests green
 2026-03-21 09:36:39 -07:00
saravanakumardb1
8af997ba0f docs(devops): update stale mywisprai/MyWisprAI branding across 5 AKV docs 
- BytelystAI → ByteLyst in titles
- MyWisprAI → LysnrAI (legacy) for wispr-* secret references
- Added 'legacy resource name' annotations to Azure resource names
  (kv-mywisprai, cosmos-mywisprai, etc. cannot be renamed)
- Updated dashboard paths (admin-web moved to dashboards/)
- Fixed telemetry role name: mywisprai-admin → lysnrai-admin
- Updated last-updated dates to 2026-03-21

Files: AZURE_KEY_VAULT_AND_SECRETS_ROTATION.md,
AZURE_PORTAL_SETUP.md, AZURE_RESOURCE_INVENTORY.md,
ENVIRONMENT_VARIABLES_AND_KEYVAULT_AUDIT.md,
END_TO_END_ENCRYPTION_ROADMAP.md
 2026-03-21 09:15:30 -07:00
saravanakumardb1
2e35334e13 docs(devops): add coding agent automation playbook 
- 11 cross-repo automation tasks for AI coding agents
- Workspace hygiene, test suites, coverage gaps, typecheck, deps, secrets
- Baseline test counts: 1,457 backend + 864 web = 2,321 total
- Priority matrix, quick-start commands, existing workflow references
 2026-03-21 09:04:35 -07:00
saravanakumardb1
af5684587d docs(devops): fix 14 bugs/gaps in E2EE design + roadmap after codebase review 2026-03-21 09:01:35 -07:00
saravanakumardb1
b6a1d637fb docs(devops): add E2EE design document and implementation roadmap 2026-03-21 08:51:43 -07:00
Saravana Achu Mac
6d6ca217a5 chore(devops): improve railway deploy script, add env sync and deployment runbook 
- Refactor railway-deploy.sh: add --sync-env, --dry-run, --detach flags and service selector
- Add railway-sync-env.sh for pre-deploy environment variable synchronization
- Add RAILWAY_DEPLOYMENT_RUNBOOK.md with step-by-step deployment guide

Co-Authored-By: Oz <oz-agent@warp.dev>
 2026-03-05 20:03:59 -08:00
saravanakumardb1
cb3aa640ae docs(roadmap): mark Phase 3.2 Session Detail View complete 
- Phase 3.2: Session Detail View with 5 tabs

- All Phase 3 exit criteria now met

Next: Phase 4 Advanced Features (auto-triggers, session replay)
 2026-03-03 09:48:15 -08:00
saravanakumardb1
e955668e6a docs(roadmap): mark Phases 2 and 3.1 complete 
- Phase 2.1: TypeScript SDK (21 tests)

- Phase 2.2: Swift SDK (20+ tests, iOS 15+)

- Phase 2.3: Kotlin SDK (16+ tests, API 26+)

- Phase 3.1: Admin Debug Sessions UI

Screenshot capture deferred to Phase 4 for all platforms

Session Detail View (3.2) marked as next priority
 2026-03-03 09:39:57 -08:00
saravanakumardb1
e4c3c7cc13 docs(roadmap): mark Phase 2.1 TypeScript SDK complete 
- Mark all 2.1.* items complete with commit 8acb8db

- 21 Vitest tests passing

- Screenshot capture deferred to Phase 2.2+

- Update Current Status section
 2026-03-03 09:25:06 -08:00
saravanakumardb1
3b9eb5bd19 docs(diagnostics): mark Phase 1.5 complete, update roadmap status 
Phase 1.5 items completed:

- 1.5.1: Wired into server.ts (routes + subscribers)

- 1.5.2: Event bus subscribers for 8 events + email templates

- 1.5.3: Audit logging for all session lifecycle events

- 1.5.4: Rate limiting keys configured

Phase 1 now COMPLETE with 17 diagnostics tests passing

Next: Phase 2 Client SDKs (TS/Swift/Kotlin)
 2026-03-03 08:21:01 -08:00
saravanakumardb1
cc9129bc60 docs(feedback): mark all TODOs as completed in roadmap 2026-03-03 07:20:56 -08:00
saravanakumardb1
698e114b65 docs(feedback): update roadmap with TODO completions 2026-03-03 07:12:04 -08:00