Update

Author: davras5

.github/workflows/deploy-chat-worker.yml

@@ -32,6 +32,7 @@ jobs:
         run: npm run sync-db
 
       - name: Deploy to Cloudflare + sync secrets
+        id: deploy
         uses: cloudflare/wrangler-action@v3
         with:
           apiToken: ${{ secrets.CLOUDFLARE_API_TOKEN }}
@@ -41,3 +42,26 @@ jobs:
             ANTHROPIC_API_KEY
         env:
           ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
+
+      # Smoke test: GET / hits the health endpoint, which doesn't call
+      # Anthropic (so no API spend) and doesn't load the catalog DB (so
+      # no WASM init either). It only confirms the worker booted and is
+      # routing requests. Fails the build if the worker returns non-200.
+      - name: Smoke test deployed worker
+        env:
+          WORKER_URL: ${{ steps.deploy.outputs.deployment-url }}
+        run: |
+          set -euo pipefail
+          URL="${WORKER_URL:-https://bbl-datenkatalog-chat.dav-ras.workers.dev}"
+          echo "Pinging $URL ..."
+          for i in 1 2 3; do
+            if curl -fsS --max-time 10 "$URL" | tee /tmp/health.json | grep -q '"ok":true'; then
+              echo "Health check passed."
+              exit 0
+            fi
+            echo "Attempt $i failed, retrying in 5s..."
+            sleep 5
+          done
+          echo "Health check failed after 3 attempts."
+          cat /tmp/health.json || true
+          exit 1

chat-worker/src/index.js

@@ -42,17 +42,23 @@ function getDb() {
     const db = new SQL.Database(new Uint8Array(catalogDbBytes));
     db.run('PRAGMA query_only = 1;');
     return db;
-  })();
+  })().catch(err => {
+    // Don't poison the cache: a failed init shouldn't make every future
+    // request fail with the same stale error. Clear the slot so the next
+    // request retries from scratch.
+    dbPromise = null;
+    throw err;
+  });
   return dbPromise;
 }
 
 // ── Tool implementation ───────────────────────────────────────
-const FORBIDDEN_SQL = /\b(insert|update|delete|drop|alter|create|attach|detach|replace|truncate|vacuum|reindex|pragma)\b/i;
-
+// Read-only is enforced at the engine level via `PRAGMA query_only = 1`
+// (set in getDb()). We don't try to filter SQL by regex — keyword-based
+// blocking has false positives (e.g. `name LIKE '%insert%'` literals) and
+// false negatives (comments, unicode, multi-statement). The engine flag
+// rejects mutations definitively; we trust it.
 function runCatalogQuery(db, sql) {
-  if (FORBIDDEN_SQL.test(sql)) {
-    return { error: 'Only read-only SELECT statements are permitted.' };
-  }
   try {
     const rows = [];
     const stmt = db.prepare(sql);
@@ -199,9 +205,21 @@ async function runChat(env, userMessages) {
 }
 
 // ── HTTP entry ────────────────────────────────────────────────
-function corsHeaders(env) {
+// CORS: echo back the request Origin only if it's on the allowlist;
+// otherwise return a non-matching value so the browser blocks the
+// response. ALLOWED_ORIGINS is comma-separated in wrangler.toml.
+// `*` is still honoured (any origin) for emergency overrides.
+function pickAllowedOrigin(env, req) {
+  const list = (env.ALLOWED_ORIGINS || '').split(',').map(s => s.trim()).filter(Boolean);
+  if (list.includes('*')) return '*';
+  const origin = req?.headers?.get?.('Origin');
+  return origin && list.includes(origin) ? origin : 'null';
+}
+
+function corsHeaders(env, req) {
   return {
-    'Access-Control-Allow-Origin': env.ALLOWED_ORIGIN || '*',
+    'Access-Control-Allow-Origin': pickAllowedOrigin(env, req),
+    'Vary': 'Origin',
     'Access-Control-Allow-Methods': 'POST, OPTIONS',
     'Access-Control-Allow-Headers': 'Content-Type',
     'Access-Control-Max-Age': '86400'
@@ -211,7 +229,17 @@ function corsHeaders(env) {
 export default {
   async fetch(req, env) {
     if (req.method === 'OPTIONS') {
-      return new Response(null, { headers: corsHeaders(env) });
+      return new Response(null, { headers: corsHeaders(env, req) });
+    }
+    // Health endpoint: no auth, no API calls, costs nothing. Used by
+    // the post-deploy smoke test in CI.
+    if (req.method === 'GET') {
+      return new Response(JSON.stringify({ ok: true, service: 'bbl-datenkatalog-chat' }), {
+        headers: {
+          'Content-Type': 'application/json; charset=utf-8',
+          ...corsHeaders(env, req)
+        }
+      });
     }
     if (req.method !== 'POST') {
       return new Response('Method not allowed', { status: 405 });
@@ -221,35 +249,40 @@ export default {
     try {
       body = await req.json();
     } catch {
-      return jsonError('Invalid JSON body', 400, env);
+      return jsonError('Invalid JSON body', 400, env, req);
     }
     const messages = Array.isArray(body.messages) ? body.messages : null;
     if (!messages || messages.length === 0) {
-      return jsonError('Missing "messages" array', 400, env);
+      return jsonError('Missing "messages" array', 400, env, req);
     }
 
     try {
       const result = await runChat(env, messages);
       return new Response(JSON.stringify(result), {
         headers: {
           'Content-Type': 'application/json; charset=utf-8',
-          ...corsHeaders(env)
+          ...corsHeaders(env, req)
         }
       });
     } catch (e) {
+      // Always log full detail to the Worker console (visible in `wrangler tail`
+      // / CF dashboard logs). Only echo stack traces back to clients when
+      // DEBUG=1 — otherwise leak just a generic message.
       console.error('chat error:', e?.stack || e);
-      const detail = e?.stack ? `${e.message}\n${e.stack}` : (e?.message || String(e));
-      return jsonError(detail, 500, env);
+      const detail = env.DEBUG === '1'
+        ? (e?.stack ? `${e.message}\n${e.stack}` : (e?.message || String(e)))
+        : 'Internal server error';
+      return jsonError(detail, 500, env, req);
     }
   }
 };
 
-function jsonError(message, status, env) {
+function jsonError(message, status, env, req) {
   return new Response(JSON.stringify({ error: message }), {
     status,
     headers: {
       'Content-Type': 'application/json; charset=utf-8',
-      ...corsHeaders(env)
+      ...corsHeaders(env, req)
     }
   });
 }

chat-worker/wrangler.toml

@@ -14,12 +14,15 @@ type = "Data"
 globs = ["**/*.db"]
 fallthrough = true
 
-# CORS origin allowed to call this worker. Override per-environment with
-# `wrangler deploy --var ALLOWED_ORIGIN:https://example.com`. The default
-# below permits local dev plus the published GitHub Pages site.
+# Origins allowed to call this worker (comma-separated). Use "*" to
+# accept any origin (not recommended for production). The browser blocks
+# responses to other origins; this isn't real auth, just abuse deterrence.
 [vars]
-ALLOWED_ORIGIN = "*"
+ALLOWED_ORIGINS = "https://bbl-dres.github.io,http://localhost:8000"
 ANTHROPIC_MODEL = "claude-sonnet-4-6"
 
 # Secrets (set with: wrangler secret put ANTHROPIC_API_KEY):
 #   ANTHROPIC_API_KEY
+#
+# Optional: set DEBUG=1 (via `wrangler secret put DEBUG`) to echo full
+# stack traces to error responses. Leave unset in production.

prototype-sqlite/css/styles.css

@@ -2516,6 +2516,85 @@ button:focus-visible, a:focus-visible, input:focus-visible, select:focus-visible
   padding: 1px 4px;
   border-radius: 3px;
 }
+.chat-message-body pre {
+  margin: var(--space-2) 0;
+  padding: var(--space-3);
+  background: rgba(0,0,0,0.06);
+  border-radius: var(--radius-md);
+  overflow-x: auto;
+  font-size: var(--text-small);
+}
+.chat-message-body pre code {
+  background: transparent;
+  padding: 0;
+  font-size: inherit;
+}
+.chat-message-body ul,
+.chat-message-body ol {
+  margin: var(--space-2) 0;
+  padding-left: var(--space-5);
+}
+.chat-message-body li {
+  margin-bottom: var(--space-1);
+}
+.chat-message-body h1,
+.chat-message-body h2,
+.chat-message-body h3,
+.chat-message-body h4 {
+  margin: var(--space-3) 0 var(--space-2) 0;
+  font-weight: 600;
+  line-height: 1.3;
+}
+.chat-message-body h1 { font-size: 1.25em; }
+.chat-message-body h2 { font-size: 1.15em; }
+.chat-message-body h3 { font-size: 1.05em; }
+.chat-message-body h4 { font-size: 1em; }
+.chat-message-body strong { font-weight: 600; }
+.chat-message-body em { font-style: italic; }
+.chat-message-body a {
+  color: var(--color-link, #1a5fb4);
+  text-decoration: underline;
+}
+.chat-message-body blockquote {
+  margin: var(--space-2) 0;
+  padding-left: var(--space-3);
+  border-left: 3px solid var(--color-border-default);
+  color: var(--color-text-secondary);
+}
+.chat-message-body hr {
+  border: 0;
+  border-top: 1px solid var(--color-border-subtle);
+  margin: var(--space-3) 0;
+}
+.chat-message-body table {
+  border-collapse: collapse;
+  margin: var(--space-3) 0;
+  font-size: var(--text-small);
+  width: 100%;
+}
+.chat-message-body th,
+.chat-message-body td {
+  padding: var(--space-1) var(--space-2);
+  border: 1px solid var(--color-border-subtle);
+  text-align: left;
+  vertical-align: top;
+}
+.chat-message-body th {
+  background: rgba(0,0,0,0.04);
+  font-weight: 600;
+}
+/* Tables sit nicely on the user's accent bubble too, but borders
+   need lighter contrast since the background is dark. */
+.chat-message-user .chat-message-body th,
+.chat-message-user .chat-message-body td {
+  border-color: rgba(255,255,255,0.25);
+}
+.chat-message-user .chat-message-body th {
+  background: rgba(255,255,255,0.1);
+}
+.chat-message-user .chat-message-body a {
+  color: inherit;
+}
 .chat-thinking {
   display: flex;
   align-items: center;

prototype-sqlite/index.html

@@ -12,6 +12,7 @@
 <script src="https://cdnjs.cloudflare.com/ajax/libs/sql.js/1.11.0/sql-wasm.js"></script>
 <script src="https://unpkg.com/lucide@latest/dist/umd/lucide.min.js"></script>
 <script src="https://cdnjs.cloudflare.com/ajax/libs/xlsx/0.18.5/xlsx.full.min.js"></script>
+<script src="https://cdn.jsdelivr.net/npm/marked@14.1.3/marked.min.js"></script>
 </head>
 <body>
 

prototype-sqlite/js/views/search.js

@@ -246,22 +246,28 @@ function renderChatView() {
 function renderChatMessage(m) {
   const role = m.role === 'user' ? 'user' : 'assistant';
   const icon = role === 'user' ? 'user' : 'sparkles';
+  const body = role === 'assistant'
+    ? renderAssistantMarkdown(m.content)
+    : renderUserText(m.content);
   return `<div class="chat-message chat-message-${role}">
     <div class="chat-message-avatar"><i data-lucide="${icon}" style="width:14px;height:14px;"></i></div>
-    <div class="chat-message-body">${formatChatText(m.content)}</div>
+    <div class="chat-message-body">${body}</div>
   </div>`;
 }
 
-// Minimal Markdown-ish formatting: paragraphs, line breaks, inline code.
-// Real markdown rendering would need a dependency; the catalog UI keeps
-// zero JS deps, so we stick to a tiny escape-then-decorate pass.
-function formatChatText(text) {
-  const escaped = escapeHtml(text || '');
-  return escaped
-    .replace(/`([^`]+)`/g, '<code>$1</code>')
-    .replace(/\n\n+/g, '</p><p>')
-    .replace(/\n/g, '<br>')
-    .replace(/^/, '<p>') + '</p>';
+// User input: escape HTML and convert newlines. No markdown parsing —
+// users shouldn't be able to inject formatting (or worse) into their
+// own bubbles by typing it.
+function renderUserText(text) {
+  return '<p>' + escapeHtml(text || '').replace(/\n/g, '<br>') + '</p>';
+}
+
+// Assistant output: full markdown via `marked` (CDN). Falls back to
+// plain rendering if marked failed to load. `breaks: true` makes single
+// newlines turn into <br>, matching what Claude tends to emit.
+function renderAssistantMarkdown(text) {
+  if (typeof marked === 'undefined') return renderUserText(text);
+  return marked.parse(text || '', { breaks: true, gfm: true });
 }
 
 async function sendChatMessage() {
@@ -275,8 +281,13 @@ async function sendChatMessage() {
   renderChatView();
 
   try {
+    // Skip locally-generated error placeholders — they were never real
+    // assistant turns, and feeding them to Claude as if they were makes
+    // the model try to "explain" or "fix" its supposed previous failure.
     const payload = {
-      messages: chatHistory.map(m => ({ role: m.role, content: m.content }))
+      messages: chatHistory
+        .filter(m => !m.isError)
+        .map(m => ({ role: m.role, content: m.content }))
     };
     const resp = await fetch(CHAT_WORKER_URL, {
       method: 'POST',
@@ -292,6 +303,7 @@ async function sendChatMessage() {
   } catch (e) {
     chatHistory.push({
       role: 'assistant',
+      isError: true,
       content: 'Fehler beim Aufruf des Chat-Backends: ' + (e.message || e)
     });
   } finally {