Document differences between CI scripts and git hooks

[2-Coatl]

Summary

• extend the scripts overview to clarify that new CI documentation lives under docs
• document the distinct purpose and execution context for scripts/ci/ versus scripts/git-hooks/

Testing

• not run

---

Codex Task

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Health-check test assumes Django is missing

Lines 36‑40 assert that health-check.sh must print “Skipping Django checks” every time it is executed, so the test fails whenever Django is actually installed and the script successfully runs the database/config validations. That makes the new regression suite unusable for anyone who has a working Django environment, even though the script itself behaves correctly in that scenario. The test should simulate a missing dependency (e.g., by manipulating PYTHONPATH or running in a temporary directory) or accept the success path instead of hard‑coding the degraded behaviour.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Bandit test requires CLI to be absent

The expectation in lines 50‑54 is that running bandit-scan.sh must always exit with code 2 and print “Bandit CLI not detected”. As soon as a developer installs Bandit (which is required to actually run the scan), the script exits 0 after running the tool or simply takes longer than the fixed 5‑second timeout, and the test fails even though the scan succeeded. This makes the Python test suite impossible to run on a fully provisioned environment. Please stub Bandit out or adjust the test so it passes when the CLI is present.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

NPM audit test doesn’t actually hide npm

In lines 58‑62 the test attempts to force a SKIP by rewriting PATH, but it rewrites it to the standard system directories (/usr/local/bin, /usr/bin, etc.), i.e., the very places where npm normally lives. Consequently the CLI is still found whenever Node is installed and the assertions at lines 70‑75 (returncode == 2, “npm CLI not available”) start failing even though the audit ran correctly. To keep the test deterministic you need to stub npm (e.g., clear PATH or point it at an empty temp dir) instead of relying on npm being missing on the host.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Test-execution-time test fails once Django is installed

Lines 79‑83 force test_execution_time.sh to exit with code 2 and to print “Skipping test execution time validation”. That only happens when Django or pytest is missing; as soon as a developer installs the project dependencies the script runs the tests and exits 0/1, so this assertion starts failing even though the validation worked. The regression suite therefore cannot be run in the “happy path” environment it is supposed to guard. Please make the test explicitly simulate the missing dependency or accept the real execution path instead of demanding a SKIP.

Useful? React with 👍 / 👎.