build: initial commit

Author: HarshPatel5940

.dockerignore

@@ -0,0 +1,39 @@
+# Git
+.git
+.gitignore
+
+# IDE
+.idea
+.vscode
+*.swp
+*.swo
+
+# Environment files (secrets)
+.env
+*.pem
+
+# Build artifacts
+gitvigil
+*.exe
+*.dll
+*.so
+*.dylib
+
+# Test files
+*_test.go
+coverage.out
+coverage.html
+
+# Documentation
+*.md
+!README.md
+docs/
+
+# Docker files (not needed in context)
+docker-compose*.yml
+Dockerfile*
+
+# Misc
+.DS_Store
+Thumbs.db
+tmp/

.env.example

@@ -0,0 +1,45 @@
+# GitVigil Environment Configuration
+# Copy this file to .env and fill in your values
+
+# ===================
+# GitHub App Settings
+# ===================
+# Get these from your GitHub App settings page
+GITHUB_APP_ID=your_app_id
+GITHUB_APP_CLIENT_ID=your_client_id
+GITHUB_APP_CLIENT_SECRET=your_client_secret
+
+# Webhook secret (set in GitHub App settings)
+GITHUB_WEBHOOK_SECRET=your_webhook_secret
+
+# Path to your GitHub App's private key PEM file
+GITHUB_PRIVATE_KEY_PATH=./your-app.private-key.pem
+
+# ===================
+# Database Settings
+# ===================
+# PostgreSQL connection string
+# For Docker Compose: postgres://gitvigil:gitvigil@db:5432/gitvigil?sslmode=disable
+# For local dev: postgres://postgres:postgres@localhost:5432/gitvigil?sslmode=disable
+DATABASE_URL=postgres://gitvigil:gitvigil@localhost:5432/gitvigil?sslmode=disable
+
+# Database password (used by Docker Compose)
+DB_PASSWORD=gitvigil
+
+# ===================
+# Server Settings
+# ===================
+PORT=8080
+BASE_URL=https://your-domain.com
+
+# ===================
+# Detection Thresholds
+# ===================
+# Hours after which a commit is flagged as suspicious (default: 24)
+BACKDATE_SUSPICIOUS_HOURS=24
+
+# Hours after which a commit is flagged as critical (default: 72)
+BACKDATE_CRITICAL_HOURS=72
+
+# Hours of inactivity before streak is at risk (default: 72)
+STREAK_INACTIVITY_HOURS=72

.gitignore

@@ -0,0 +1,4 @@
+.temp/*
+*.pem
+.env
+

Dockerfile

@@ -0,0 +1,65 @@
+# =============================================================================
+# GitVigil Dockerfile
+# Multi-stage build for minimal, secure production image
+# =============================================================================
+
+# -----------------------------------------------------------------------------
+# Build Stage
+# -----------------------------------------------------------------------------
+FROM golang:1.23-alpine AS builder
+
+# Install build dependencies
+RUN apk add --no-cache git ca-certificates tzdata
+
+# Create non-root user for runtime
+RUN adduser -D -g '' appuser
+
+WORKDIR /app
+
+# Download dependencies first (better caching)
+COPY go.mod go.sum ./
+RUN go mod download
+
+# Copy source code
+COPY . .
+
+# Build the binary
+# - CGO_ENABLED=0: Static binary, no C dependencies
+# - -ldflags="-s -w": Strip debug info for smaller binary
+RUN CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build \
+    -ldflags="-s -w" \
+    -o /gitvigil \
+    ./cmd/main.go
+
+# -----------------------------------------------------------------------------
+# Runtime Stage
+# -----------------------------------------------------------------------------
+FROM alpine:3.19
+
+# Install runtime dependencies
+RUN apk --no-cache add ca-certificates tzdata
+
+# Import user from builder
+COPY --from=builder /etc/passwd /etc/passwd
+COPY --from=builder /etc/group /etc/group
+
+WORKDIR /app
+
+# Copy binary from builder
+COPY --from=builder /gitvigil .
+
+# Copy migrations (embedded in binary, but keep for reference)
+COPY --from=builder /app/internal/database/migrations ./internal/database/migrations
+
+# Use non-root user
+USER appuser
+
+# Expose default port
+EXPOSE 8080
+
+# Health check
+HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \
+    CMD wget --no-verbose --tries=1 --spider http://localhost:8080/health || exit 1
+
+# Run the application
+ENTRYPOINT ["/app/gitvigil"]

Makefile

@@ -0,0 +1,147 @@
+# =============================================================================
+# GitVigil Makefile
+# =============================================================================
+
+.PHONY: all build run test fmt vet clean dev \
+        docker-build docker-up docker-down docker-logs docker-clean \
+        help
+
+# Go parameters
+BINARY_NAME := gitvigil
+MAIN_PATH := ./cmd/main.go
+GO := go
+
+# Docker parameters
+DOCKER_IMAGE := gitvigil
+DOCKER_TAG := latest
+
+# =============================================================================
+# Development
+# =============================================================================
+
+## build: Build the binary
+build:
+	@echo "Building $(BINARY_NAME)..."
+	@$(GO) build -o $(BINARY_NAME) $(MAIN_PATH)
+	@echo "Done!"
+
+## run: Run the application locally
+run:
+	@$(GO) run $(MAIN_PATH)
+
+## test: Run all tests
+test:
+	@echo "Running tests..."
+	@$(GO) test -v ./...
+
+## test-coverage: Run tests with coverage
+test-coverage:
+	@echo "Running tests with coverage..."
+	@$(GO) test -coverprofile=coverage.out ./...
+	@$(GO) tool cover -html=coverage.out -o coverage.html
+	@echo "Coverage report: coverage.html"
+
+## fmt: Format code
+fmt:
+	@echo "Formatting code..."
+	@$(GO) fmt ./...
+
+## vet: Run go vet
+vet:
+	@echo "Running go vet..."
+	@$(GO) vet ./...
+
+## lint: Run linter (requires golangci-lint)
+lint:
+	@echo "Running linter..."
+	@golangci-lint run ./...
+
+## clean: Clean build artifacts
+clean:
+	@echo "Cleaning..."
+	@rm -f $(BINARY_NAME)
+	@rm -f coverage.out coverage.html
+	@$(GO) clean
+	@echo "Done!"
+
+## dev: Format, vet, and build
+dev: fmt vet build
+
+## tidy: Tidy go modules
+tidy:
+	@$(GO) mod tidy
+
+# =============================================================================
+# Docker
+# =============================================================================
+
+## docker-build: Build Docker image
+docker-build:
+	@echo "Building Docker image..."
+	@docker build -t $(DOCKER_IMAGE):$(DOCKER_TAG) .
+	@echo "Done!"
+
+## docker-up: Start services with Docker Compose
+docker-up:
+	@echo "Starting services..."
+	@docker compose up -d
+	@echo "Services started. Access at http://localhost:8080"
+
+## docker-down: Stop Docker Compose services
+docker-down:
+	@echo "Stopping services..."
+	@docker compose down
+
+## docker-logs: View application logs
+docker-logs:
+	@docker compose logs -f app
+
+## docker-logs-db: View database logs
+docker-logs-db:
+	@docker compose logs -f db
+
+## docker-restart: Restart the application
+docker-restart:
+	@docker compose restart app
+
+## docker-clean: Stop services and remove volumes
+docker-clean:
+	@echo "Stopping services and removing volumes..."
+	@docker compose down -v
+	@echo "Done!"
+
+## docker-shell: Open shell in app container
+docker-shell:
+	@docker compose exec app sh
+
+## docker-db-shell: Open psql in database container
+docker-db-shell:
+	@docker compose exec db psql -U gitvigil -d gitvigil
+
+# =============================================================================
+# Database
+# =============================================================================
+
+## db-migrate: Run database migrations (local)
+db-migrate:
+	@echo "Running migrations..."
+	@$(GO) run $(MAIN_PATH) migrate
+
+# =============================================================================
+# Help
+# =============================================================================
+
+## help: Show this help message
+help:
+	@echo "GitVigil - Hackathon Monitoring Service"
+	@echo ""
+	@echo "Usage: make [target]"
+	@echo ""
+	@echo "Development:"
+	@sed -n 's/^## //p' $(MAKEFILE_LIST) | grep -E '^[a-z]' | grep -v 'docker-' | column -t -s ':'
+	@echo ""
+	@echo "Docker:"
+	@sed -n 's/^## //p' $(MAKEFILE_LIST) | grep -E '^docker-' | column -t -s ':'
+
+# Default target
+all: dev

cmd/main.go

@@ -0,0 +1,76 @@
+package main
+
+import (
+	"context"
+	"os"
+	"os/signal"
+	"syscall"
+
+	"github.com/harshpatel5940/gitvigil/internal/config"
+	"github.com/harshpatel5940/gitvigil/internal/database"
+	"github.com/harshpatel5940/gitvigil/internal/github"
+	"github.com/harshpatel5940/gitvigil/internal/server"
+	"github.com/rs/zerolog"
+)
+
+func main() {
+	// Setup logger
+	logger := zerolog.New(zerolog.ConsoleWriter{Out: os.Stderr}).
+		With().
+		Timestamp().
+		Caller().
+		Logger()
+
+	// Load configuration
+	cfg, err := config.Load()
+	if err != nil {
+		logger.Fatal().Err(err).Msg("failed to load configuration")
+	}
+
+	logger.Info().
+		Int64("app_id", cfg.AppID).
+		Str("port", cfg.Port).
+		Msg("configuration loaded")
+
+	// Setup context with signal handling
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	sigCh := make(chan os.Signal, 1)
+	signal.Notify(sigCh, syscall.SIGINT, syscall.SIGTERM)
+	go func() {
+		sig := <-sigCh
+		logger.Info().Str("signal", sig.String()).Msg("received shutdown signal")
+		cancel()
+	}()
+
+	// Connect to database
+	db, err := database.New(ctx, cfg.DatabaseURL)
+	if err != nil {
+		logger.Fatal().Err(err).Msg("failed to connect to database")
+	}
+	defer db.Close()
+	logger.Info().Msg("connected to database")
+
+	// Run migrations
+	if err := database.RunMigrations(cfg.DatabaseURL); err != nil {
+		logger.Fatal().Err(err).Msg("failed to run migrations")
+	}
+	logger.Info().Msg("migrations completed")
+
+	// Create GitHub App client
+	gh, err := github.NewAppClient(cfg.AppID, cfg.PrivateKey)
+	if err != nil {
+		logger.Fatal().Err(err).Msg("failed to create GitHub App client")
+	}
+	logger.Info().Int64("app_id", gh.AppID()).Msg("GitHub App client created")
+
+	// Create and start server
+	srv := server.New(cfg, db, gh, logger)
+
+	if err := srv.Start(ctx); err != nil {
+		logger.Fatal().Err(err).Msg("server error")
+	}
+
+	logger.Info().Msg("server stopped gracefully")
+}