orion

Author	SHA1	Message	Date
Samir Boulahtit	1b8a40f1ff	feat(validators): add noqa suppression support to security and performance validators All checks were successful CI / dependency-scanning (push) Successful in 27s Details CI / docs (push) Successful in 35s Details CI / ruff (push) Successful in 8s Details CI / pytest (push) Successful in 34m22s Details CI / validate (push) Successful in 19s Details CI / deploy (push) Successful in 2m25s Details - Add centralized _is_noqa_suppressed() to BaseValidator with normalization (accepts both SEC001 and SEC-001 formats for ruff compatibility) - Wire noqa support into all 21 security and 18 performance check functions - Add ruff external config for SEC/PERF/MOD/EXC codes in pyproject.toml - Convert all 280 Python noqa comments to dashless format (ruff-compatible) - Add site/ to IGNORE_PATTERNS (excludes mkdocs build output) - Suppress 152 false positive findings (test passwords, seed data, validator self-references, Apple Wallet SHA1, etc.) - Security: 79 errors → 0, 60 warnings → 0 - Performance: 80 warnings → 77 (3 test script suppressions) - Add proposal doc with noqa inventory and remaining findings recommendations Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-14 22:56:56 +01:00
Samir Boulahtit	79c985ee39	fix(lint): use plain comments for architecture validator codes Some checks failed CI / ruff (push) Failing after 7s Details CI / pytest (push) Failing after 0s Details CI / architecture (push) Failing after 8s Details CI / dependency-scanning (push) Successful in 26s Details CI / audit (push) Successful in 8s Details CI / docs (push) Has been skipped Details Replace # noqa: SVC-006 with # SVC-006 to avoid ruff warnings about unknown codes. Updated architecture validators to match the new format by checking for the code string directly instead of the noqa: prefix. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-12 23:24:57 +01:00
Samir Boulahtit	3a264c0a39	fix(lint): restore noqa directives and register custom codes with ruff Some checks failed CI / ruff (push) Failing after 7s Details CI / pytest (push) Failing after 1s Details CI / architecture (push) Failing after 8s Details CI / dependency-scanning (push) Successful in 26s Details CI / audit (push) Successful in 9s Details CI / docs (push) Has been skipped Details Reverts the noqa: removal — the architecture validators (SVC-006, SEC-034, MOD-004, API-007) use these to skip known-safe violations. Added ruff lint.external config so ruff treats them as valid codes. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-12 23:21:27 +01:00
Samir Boulahtit	1b24269ef1	fix(lint): convert custom noqa directives to regular comments Some checks failed CI / ruff (push) Failing after 7s Details CI / pytest (push) Failing after 0s Details CI / architecture (push) Failing after 8s Details CI / dependency-scanning (push) Successful in 27s Details CI / audit (push) Successful in 8s Details CI / docs (push) Has been skipped Details Ruff only accepts standard rule codes (e.g., E712, F401) in noqa directives. Custom architecture validator codes (SEC-034, SVC-006, MOD-004, API-007) are now regular comments instead. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-12 23:19:34 +01:00
Samir Boulahtit	0984ff7d17	feat(tenancy): add merchant-level domain with store override Merchants can now register domains (e.g., myloyaltyprogram.lu) that all their stores inherit. Individual stores can override with their own custom domain. Resolution priority: StoreDomain > MerchantDomain > subdomain. - Add MerchantDomain model, schema, service, and admin API endpoints - Add merchant domain fallback in platform and store context middleware - Add Merchant.primary_domain and Store.effective_domain properties - Add Alembic migration for merchant_domains table - Update loyalty user journey docs with subscription & domain setup flow - Add unit tests (50 passing) and integration tests (15 passing) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-09 22:04:49 +01:00

5 Commits