feat: Add CI workflow for linting, testing, and building the project

chore: Update changelog to reflect changes made on 2025-11-12
refactor: Replace local Base declaration with import from config.database
2025-11-12 12:00:56 +01:00 · 2025-11-12 12:00:04 +01:00 · 2025-11-12 11:59:02 +01:00
3 changed files with 5 additions and 8 deletions
--- a/.gitea/workflows/ci_backup.yml
+++ b/.gitea/workflows/ci_backup.yml
--- a/changelog.md
+++ b/changelog.md
@@ -1,13 +1,11 @@
 # Changelog

-## 2025-11-13
-
- Eliminated Bandit hardcoded-secret findings by replacing literal JWT tokens and passwords across auth/security tests with randomized helpers drawn from `tests/utils/security.py`, ensuring fixtures still assert expected behaviours.
- Centralized Bandit configuration in `pyproject.toml`, reran `bandit -c pyproject.toml -r calminer tests`, and verified the scan now reports zero issues.
- Updated `.github/instructions/TODO.md` and `.github/instructions/DONE.md` to reflect the completed security scan remediation workflow.
-
 ## 2025-11-12

+- Switched `models/performance_metric.py` to reuse the shared declarative base from `config.database`, clearing the SQLAlchemy 2.0 `declarative_base` deprecation warning and verifying repository tests still pass.
+- Eliminated Bandit hardcoded-secret findings by replacing literal JWT tokens and passwords across auth/security tests with randomized helpers drawn from `tests/utils/security.py`, ensuring fixtures still assert expected behaviours.
+- Centralized Bandit configuration in `pyproject.toml`, reran `bandit -c pyproject.toml -r calminer tests`, and verified the scan now reports zero issues.
+- Updated `.github/instructions/TODO.md` and `.github/instructions/DONE.md` to reflect the completed security scan remediation workflow.
 - Diagnosed admin bootstrap failure caused by legacy `roles` schema, added Alembic migration `20251112_00_add_roles_metadata_columns.py` to backfill `display_name`, `description`, `created_at`, and `updated_at`, and verified the migration via full pytest run in the activated `.venv`.
 - Resolved Ruff E402 warnings by moving module docstrings ahead of `from __future__ import annotations` across currency and pricing service modules, dropped the unused `HTTPException` import in `monitoring/__init__.py`, and confirmed a clean `ruff check .` run.
 - Enhanced the deploy job in `.gitea/workflows/cicache.yml` to capture Kubernetes pod, deployment, and container logs into `/logs/deployment/` for staging/production rollouts and publish them via a `deployment-logs` artifact, updating CI/CD documentation with retrieval instructions.
--- a/models/performance_metric.py
+++ b/models/performance_metric.py
@@ -3,9 +3,8 @@ from __future__ import annotations
 from datetime import datetime

 from sqlalchemy import Column, DateTime, Float, Integer, String
-from sqlalchemy.ext.declarative import declarative_base

-Base = declarative_base()
+from config.database import Base


 class PerformanceMetric(Base):
Author	SHA1	Message	Date
zwitschi	e72e297c61	feat: Add CI workflow for linting, testing, and building the project Some checks failed CI / test (push) Has been skipped Details CI / build (push) Has been skipped Details CI / lint (push) Failing after 14s Details CI / deploy (push) Has been skipped Details	2025-11-12 12:00:56 +01:00
zwitschi	101d9309fd	chore: Update changelog to reflect changes made on 2025-11-12	2025-11-12 12:00:04 +01:00
zwitschi	9556f9e1f1	refactor: Replace local Base declaration with import from config.database	2025-11-12 11:59:02 +01:00