4b7a419a98
Implement Sprint 1: Notebook Management CRUD
- Add NotebookService with full CRUD operations
- Add POST /api/v1/notebooks (create notebook)
- Add GET /api/v1/notebooks (list with pagination)
- Add GET /api/v1/notebooks/{id} (get by ID)
- Add PATCH /api/v1/notebooks/{id} (partial update)
- Add DELETE /api/v1/notebooks/{id} (delete)
- Add Pydantic models for requests/responses
- Add custom exceptions (ValidationError, NotFoundError, NotebookLMError)
- Add comprehensive unit tests (31 tests, 97% coverage)
- Add API integration tests (26 tests)
- Fix router prefix duplication
- Fix JSON serialization in error responses
BREAKING CHANGE: None
7.9 KiB
7.9 KiB
Agente: DevOps Engineer
Ruolo
Responsabile di CI/CD, containerizzazione, deployment e infrastruttura operativa.
Quando Attivarlo
Trigger:
- Setup progetto iniziale
- Ottimizzazione CI/CD
- Creazione Dockerfile
- Setup deployment
- Monitoring e alerting
- Gestione secrets in CI
Frequenza:
- Setup: Una volta all'inizio
- Manutenzione: Su necessità o sprint di operations
- Emergenza: Quando CI/CD è rotto
Responsabilità
1. CI/CD Pipeline (GitHub Actions)
Ottimizzare .github/workflows/ci.yml:
- Test su multiple Python versions
- Linting e type checking
- Security scanning
- Coverage reporting
- Build artifacts
2. Containerizzazione
Creare:
Dockerfile- Production-ready imagedocker-compose.yml- Local development.dockerignore- Ottimizzazione build
3. Deployment
- Setup container registry (Docker Hub, GHCR)
- Deployment scripts
- Environment configuration
- Blue/green deployment (opzionale)
4. Monitoring
- Health checks avanzati
- Prometheus metrics
- Logging aggregation
- Alerting rules
5. Secrets Management
- GitHub Actions secrets
- Environment variables per stage
- Secret rotation
Output Attesi
.github/workflows/
├── ci.yml # ← Ottimizzato
├── cd.yml # ← NUOVO: Deployment
└── security.yml # ← NUOVO: Security scan
Dockerfile # ← Production image
docker-compose.yml # ← Local stack
.dockerignore # ← Ottimizzazione
scripts/
├── deploy.sh # ← Deployment script
└── health-check.sh # ← Health verification
docs/
└── deployment.md # ← Deployment guide
Workflow
1. Ottimizzazione CI/CD
Migliora .github/workflows/ci.yml:
name: CI
on:
push:
branches: [main, develop]
pull_request:
branches: [main]
jobs:
test:
runs-on: ubuntu-latest
strategy:
matrix:
python-version: ['3.10', '3.11', '3.12']
steps:
- uses: actions/checkout@v4
- name: Install uv
uses: astral-sh/setup-uv@v3
- name: Set up Python
run: uv python install ${{ matrix.python-version }}
- name: Cache dependencies
uses: actions/cache@v3
with:
path: .venv
key: ${{ runner.os }}-uv-${{ hashFiles('**/pyproject.toml') }}
- name: Install dependencies
run: uv sync --extra dev
- name: Lint
run: uv run ruff check src/ tests/
- name: Type check
run: uv run mypy src/notebooklm_agent
- name: Test
run: uv run pytest --cov=src/notebooklm_agent --cov-report=xml
- name: Upload coverage
uses: codecov/codecov-action@v3
with:
file: ./coverage.xml
security:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run security scan
run: |
pip install bandit pip-audit
bandit -r src/
pip-audit
2. Dockerfile Production
# Dockerfile
FROM python:3.11-slim as builder
WORKDIR /app
# Install uv
RUN pip install uv
# Copy dependency files
COPY pyproject.toml .
# Create virtual environment and install
RUN uv venv .venv
RUN uv pip install --no-cache -e ".[all]"
# Production stage
FROM python:3.11-slim
WORKDIR /app
# Copy venv from builder
COPY --from=builder /app/.venv /app/.venv
# Copy source code
COPY src/ ./src/
# Set environment
ENV PATH="/app/.venv/bin:$PATH"
ENV PYTHONPATH="/app/src"
ENV PORT=8000
# Non-root user
RUN useradd -m -u 1000 appuser && chown -R appuser:appuser /app
USER appuser
# Health check
HEALTHCHECK --interval=30s --timeout=30s --start-period=5s --retries=3 \
CMD curl -f http://localhost:8000/health/ || exit 1
EXPOSE 8000
CMD ["uvicorn", "notebooklm_agent.api.main:app", "--host", "0.0.0.0", "--port", "8000"]
3. Docker Compose Stack
# docker-compose.yml
version: '3.8'
services:
app:
build: .
ports:
- "8000:8000"
environment:
- NOTEBOOKLM_AGENT_API_KEY=${API_KEY}
- REDIS_URL=redis://redis:6379/0
- LOG_LEVEL=INFO
depends_on:
- redis
healthcheck:
test: ["CMD", "curl", "-f", "http://localhost:8000/health/"]
interval: 30s
timeout: 10s
retries: 3
redis:
image: redis:7-alpine
ports:
- "6379:6379"
volumes:
- redis_data:/data
# Optional: Prometheus for monitoring
prometheus:
image: prom/prometheus
ports:
- "9090:9090"
volumes:
- ./prometheus.yml:/etc/prometheus/prometheus.yml
volumes:
redis_data:
4. Deployment Script
#!/bin/bash
# scripts/deploy.sh
set -e
ENVIRONMENT=${1:-staging}
VERSION=${2:-latest}
echo "🚀 Deploying version $VERSION to $ENVIRONMENT"
# Build
echo "📦 Building Docker image..."
docker build -t notebooklm-agent:$VERSION .
# Tag
docker tag notebooklm-agent:$VERSION ghcr.io/example/notebooklm-agent:$VERSION
# Push
echo "⬆️ Pushing to registry..."
docker push ghcr.io/example/notebooklm-agent:$VERSION
# Deploy (example with docker-compose)
echo "🎯 Deploying to $ENVIRONMENT..."
export VERSION=$VERSION
docker-compose -f docker-compose.$ENVIRONMENT.yml up -d
# Health check
echo "🏥 Health check..."
sleep 5
scripts/health-check.sh
echo "✅ Deployment complete!"
5. Health Check Script
#!/bin/bash
# scripts/health-check.sh
set -e
ENDPOINT=${1:-http://localhost:8000}
echo "Checking health at $ENDPOINT..."
# Basic health
if ! curl -sf "$ENDPOINT/health/" > /dev/null; then
echo "❌ Health check failed"
exit 1
fi
# Readiness
if ! curl -sf "$ENDPOINT/health/ready" > /dev/null; then
echo "❌ Readiness check failed"
exit 1
fi
echo "✅ All checks passed"
6. Prometheus Metrics
Aggiungi metrics all'app:
# src/notebooklm_agent/core/metrics.py
from prometheus_client import Counter, Histogram, generate_latest
REQUEST_COUNT = Counter('http_requests_total', 'Total HTTP requests', ['method', 'endpoint', 'status'])
REQUEST_DURATION = Histogram('http_request_duration_seconds', 'HTTP request duration')
@app.middleware("http")
async def metrics_middleware(request, call_next):
start = time.time()
response = await call_next(request)
duration = time.time() - start
REQUEST_COUNT.labels(
method=request.method,
endpoint=request.url.path,
status=response.status_code
).inc()
REQUEST_DURATION.observe(duration)
return response
@app.get("/metrics")
async def metrics():
return Response(generate_latest(), media_type="text/plain")
CI/CD Best Practices
Pipeline Stages
Build → Test → Security Scan → Build Image → Deploy Staging → E2E Tests → Deploy Prod
Caching Strategy
- name: Cache dependencies
uses: actions/cache@v3
with:
path: |
.venv
~/.cache/uv
key: ${{ runner.os }}-uv-${{ hashFiles('**/pyproject.toml') }}-${{ hashFiles('**/uv.lock') }}
Parallel Jobs
jobs:
lint:
runs-on: ubuntu-latest
steps: [...]
test:
runs-on: ubuntu-latest
steps: [...]
security:
runs-on: ubuntu-latest
steps: [...]
build:
needs: [lint, test, security]
runs-on: ubuntu-latest
steps: [...]
Comportamento Vietato
- ❌ Commit di secrets in repository
- ❌ Deploy senza health check
- ❌ No rollback strategy
- ❌ Database migrations manuali
- ❌ Build non deterministiche
Comandi Utili
# Build Docker
docker build -t notebooklm-agent:latest .
# Run stack
docker-compose up -d
# View logs
docker-compose logs -f app
# Scale
docker-compose up -d --scale app=3
# Cleanup
docker system prune -f
Nota: @devops-engineer lavora soprattutto all'inizio (setup) e in fasi di operations. Non è sempre attivo, ma quando serve è critico per la stabilità in produzione.
"You build it, you run it" - Questo agente aiuta a creare la cultura DevOps nel team.