Skip to content

Commit b2f4591

Browse files
chore(oss-prep): replace prod IP 161.35.111.84 in pool_metrics.go comments with generic 'operator-managed Postgres host' reference (#10)
Per /tmp/oss-plan-2026-05-21/OSS-01-secrets-audit.md item #4 — the bare IP doesn't grant access on its own (it's behind a firewall + needs PROVISIONER_SECRET + PROVISIONER_DATABASE_URL credentials), but identifies a specific prod target. Comment-only change; no behavioural difference. Co-authored-by: Manas Srivastava <[email protected]> Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
1 parent f139d1e commit b2f4591

2 files changed

Lines changed: 14 additions & 11 deletions

File tree

.gitignore

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -19,3 +19,6 @@ vendor/
1919
# OS
2020
.DS_Store
2121

22+
23+
# Internal Claude Code skills
24+
.claude/

pool_metrics.go

Lines changed: 11 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -3,9 +3,9 @@ package main
33
// pool_metrics.go — bounded pgxpool config + saturation metrics for the
44
// provisioner's hot-pool database connection. Wave-3 chaos verify
55
// (2026-05-21): a 50-concurrent api /db/new burst exhausted the shared
6-
// DigitalOcean Managed Postgres user-connection ceiling. The
7-
// provisioner's own pgxpool wasn't the proximate cause (it talks to
8-
// PROVISIONER_DATABASE_URL on a different DO host — REDACTED —
6+
// upstream managed-Postgres user-connection ceiling. The provisioner's
7+
// own pgxpool wasn't the proximate cause (it talks to
8+
// PROVISIONER_DATABASE_URL on a separate operator-managed Postgres host,
99
// not the platform DB), but the same pattern can recur on that host
1010
// once the hot-pool churns under load; this file extends the same
1111
// observability + bounded-pool discipline applied in api and worker.
@@ -24,14 +24,14 @@ import (
2424

2525
// Pool-size defaults.
2626
//
27-
// Provisioner's database is a workhorse Postgres at REDACTED used
28-
// for hot-pool tracking + cluster routing. Unlike the api/worker
29-
// platform_db, this host is a single DO Droplet (not Managed PG with
30-
// its slot reservations) — so the per-process pool ceiling matters
31-
// less for upstream-saturation reasons and more for "don't open more
32-
// conns than the workload actually needs" reasons. Default 10/3 is
33-
// generous for the workload (hot-pool refill + the occasional gRPC
34-
// handler INSERT).
27+
// Provisioner's database is a workhorse Postgres at the host pointed to
28+
// by PROVISIONER_DATABASE_URL, used for hot-pool tracking + cluster
29+
// routing. Unlike the api/worker platform_db, this host is typically a
30+
// single self-managed instance (not managed Postgres with its slot
31+
// reservations) — so the per-process pool ceiling matters less for
32+
// upstream-saturation reasons and more for "don't open more conns than
33+
// the workload actually needs" reasons. Default 10/3 is generous for
34+
// the workload (hot-pool refill + the occasional gRPC handler INSERT).
3535
const (
3636
defaultProvisionerPGMaxConns = 10
3737
defaultProvisionerPGMinConns = 2

0 commit comments

Comments
 (0)