sboulahtit/orion
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: add background task to onboarding order sync + migrate to GitLab

Browse Source 
Onboarding fixes:
- Add missing background task trigger for order sync (step 4)
- Import process_historical_import task in onboarding API

GitLab migration:
- Update audit rules to support both GitHub and GitLab paths
- Add .gitlab-ci.yml with lint, test, security, build stages
- Add merge request template (.gitlab/merge_request_templates/default.md)
- Update validate_audit.py to check for GitLab equivalents

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
Samir Boulahtit
2025-12-28 11:52:24 +01:00
parent 11ebb2116a
commit 56bd302361
8 changed files with 208 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
.audit-rules/change_management.yaml
View File

@@ -55,6 +55,7 @@ rules:
type: file_exists
paths:
- ".github/PULL_REQUEST_TEMPLATE.md"
- ".gitlab/merge_request_templates/*.md"
message: "Pull request template recommended"
- id: CHANGE-REV-002
@@ -73,6 +74,7 @@ rules:
type: file_exists
paths:
- ".github/CODEOWNERS"
- "CODEOWNERS" # GitLab uses root CODEOWNERS or .gitlab/CODEOWNERS
- "CODEOWNERS"
message: "Consider defining code owners for critical paths"
@@ -89,6 +91,7 @@ rules:
paths:
- ".github/workflows/ci.yml"
- ".github/workflows/test.yml"
- ".gitlab-ci.yml"
message: "CI workflow for automated testing required"
- id: CHANGE-CI-002
@@ -99,6 +102,7 @@ rules:
type: pattern_recommended
paths:
- ".github/workflows/*.yml"
- ".gitlab-ci.yml"
patterns:
- "security|bandit|safety|snyk|trivy"
message: "Consider security scanning in CI pipeline"
@@ -111,6 +115,7 @@ rules:
type: pattern_required
paths:
- ".github/workflows/*.yml"
- ".gitlab-ci.yml"
patterns:
- "ruff|flake8|pylint|mypy|lint"
message: "Code quality checks required in CI"
@@ -141,6 +146,7 @@ rules:
paths:
- ".github/workflows/release.yml"
- ".github/workflows/deploy.yml"
- ".gitlab-ci.yml"
- "Dockerfile"
message: "Automated deployment process recommended"
@@ -193,6 +199,7 @@ rules:
paths:
- "Dockerfile"
- ".github/workflows/*.yml"
- ".gitlab-ci.yml"
patterns:
- "tag|version|:v"
message: "Container image versioning recommended"

7
.audit-rules/compliance.yaml
View File

@@ -122,8 +122,10 @@ rules:
type: file_exists
paths:
- ".github/PULL_REQUEST_TEMPLATE.md"
- ".gitlab/merge_request_templates/*.md"
- "CONTRIBUTING.md"
- ".github/workflows/*.yml"
- ".gitlab-ci.yml"
message: "Code review process must be documented/enforced"
- id: COMP-POL-002
@@ -134,7 +136,10 @@ rules:
type: file_exists
paths:
- ".github/CODEOWNERS"
- "CODEOWNERS"
- ".github/workflows/*.yml"
- ".gitlab-ci.yml"
- ".gitlab-ci.yml"
message: "Document change approval requirements"
- id: COMP-POL-003
@@ -161,6 +166,7 @@ rules:
type: file_exists
paths:
- ".github/workflows/ci.yml"
- ".gitlab-ci.yml"
- "pytest.ini"
- "pyproject.toml"
patterns:
@@ -175,6 +181,7 @@ rules:
type: file_exists
paths:
- ".github/workflows/*.yml"
- ".gitlab-ci.yml"
patterns:
- "deploy|release"
message: "Deployment process must be automated and logged"

1
.audit-rules/documentation.yaml
View File

@@ -94,6 +94,7 @@ rules:
paths:
- "SECURITY.md"
- ".github/SECURITY.md"
- ".gitlab/SECURITY.md"
message: "Security policy (SECURITY.md) required"
- id: DOC-SEC-002

3
.audit-rules/third_party.yaml
View File

@@ -57,6 +57,7 @@ rules:
type: file_exists
paths:
- ".github/workflows/*.yml"
- ".gitlab-ci.yml"
patterns:
- "safety|pip-audit|snyk|dependabot"
message: "Dependency vulnerability scanning required"
@@ -69,6 +70,7 @@ rules:
type: file_exists
paths:
- ".github/dependabot.yml"
- ".gitlab-ci.yml" # GitLab uses built-in dependency scanning
message: "Consider enabling Dependabot for security updates"
- id: THIRD-VULN-003
@@ -79,6 +81,7 @@ rules:
type: pattern_recommended
paths:
- ".github/workflows/*.yml"
- ".gitlab-ci.yml"
patterns:
- "trivy|grype|snyk.*container"
message: "Consider container image vulnerability scanning"