Merge remote-tracking branch 'origin/main' into matthew.kim/parquet-janitor

Author: mattmkim

.claude/skills/sesh-mode/SKILL.md

@@ -0,0 +1,119 @@
+---
+description: "Verification-first development workflow with TLA+ specs, DST, and formal methods. Use when you want Claude to follow the rigorous plan→spec→test→implement sequence."
+user-invocable: true
+---
+
+# Sesh Mode — Verification-First Development
+
+Activate this mode when working on features that touch state machines, protocols, or critical data paths. This adds formal verification requirements on top of the base CLAUDE.md.
+
+## Before Writing Any Code
+
+**MUST** follow this sequence before implementation:
+
+1. **Define the plan**: What are you doing and why? What invariants must hold?
+2. **Check ADR/roadmap**: `docs/internals/adr/README.md` → find relevant supplement
+3. **Read the spec**: If touching state machines or protocols, read `docs/internals/specs/tla/*.tla`
+4. **Write tests first**: DST tests define correctness, write them before code
+5. **Only then**: Start implementation
+
+## Three Engineering Pillars
+
+Every code change **MUST** respect all three:
+
+| Pillar | Location | Purpose |
+|--------|----------|---------|
+| **Code Quality** | [CODE_STYLE.md](../../../CODE_STYLE.md) + CLAUDE.md | Coding standards & reliability |
+| **Formal Specs** | `docs/internals/specs/tla/`, `stateright_*.rs` | Protocol correctness |
+| **DST** | DST crate (when created) | Fault tolerance |
+
+**Priority**: Safety > Performance > Developer Experience
+
+## The Verification Pyramid
+
+All verification layers share the same invariants:
+
+```
+         TLA+ Specs (docs/internals/specs/tla/*.tla)
+                    │ mirrors
+         Shared Invariants (invariants/)  ← SINGLE SOURCE
+                    │ used by
+    ┌───────────────┼───────────────┐
+    ▼               ▼               ▼
+Stateright      DST Tests      Production Metrics
+(exhaustive)    (simulation)   (Observability)
+```
+
+## Testing Through Production Path
+
+**MUST NOT** claim a feature works unless tested through the actual network stack.
+
+```bash
+# 1. Start quickwit
+cargo run -p quickwit-cli -- run --config ../config/quickwit.yaml
+
+# 2. Ingest via OTLP
+# (send logs/traces to localhost:4317)
+
+# 3. Query via REST API
+curl http://localhost:7280/api/v1/<index>/search -d '{"query": "*"}'
+```
+
+**Bypasses to AVOID**: Testing indexing pipeline without the HTTP/gRPC server, testing search without the REST API layer.
+
+## DST (Deterministic Simulation Testing)
+
+- DST tests define correctness for stateful components
+- Write DST tests before implementation for new state machines
+- Shared invariants are the single source of truth across all verification layers
+
+## Architecture Evolution
+
+Quickwit tracks architectural change through three lenses. See `docs/internals/adr/EVOLUTION.md` for the full process.
+
+```
+                    Architecture Evolution
+                            │
+       ┌────────────────────┼────────────────────┐
+       ▼                    ▼                    ▼
+ Characteristics          Gaps              Deviations
+  (Proactive)          (Reactive)          (Pragmatic)
+ "What we need"      "What we learned"   "What we accepted"
+```
+
+| Lens | Location | When to Use |
+|------|----------|-------------|
+| **Characteristics** | `docs/internals/adr/` | Track cloud-native requirements |
+| **Gaps** | `docs/internals/adr/gaps/` | Design limitation from incident/production |
+| **Deviations** | `docs/internals/adr/deviations/` | Intentional divergence from ADR intent |
+
+**Before implementing, check for**:
+- Open gaps (design limitations to be aware of)
+- Deviations (intentional divergence from ADRs)
+- Characteristic status (what's implemented vs planned)
+
+## Additional Commit Checklist (on top of CLAUDE.md MUST items)
+
+These are expected unless justified:
+- [ ] Functions under 70 lines
+- [ ] Explanatory variables for complex expressions
+- [ ] Documentation explains "why"
+- [ ] ADR/roadmap updated if applicable
+- [ ] DST test for new state transitions
+- [ ] Integration test for new API endpoints
+- [ ] Tests through production path (HTTP/gRPC)
+
+## Reference Documentation
+
+| Topic | Location |
+|-------|----------|
+| Verification & DST | [docs/internals/VERIFICATION.md](../../../docs/internals/VERIFICATION.md) |
+| Verification philosophy | [docs/internals/VERIFICATION_STACK.md](../../../docs/internals/VERIFICATION_STACK.md) |
+| Simulation workflow | [docs/internals/SIMULATION_FIRST_WORKFLOW.md](../../../docs/internals/SIMULATION_FIRST_WORKFLOW.md) |
+| Benchmarking | [docs/internals/BENCHMARKING.md](../../../docs/internals/BENCHMARKING.md) |
+| Rust style patterns | [docs/internals/RUST_STYLE.md](../../../docs/internals/RUST_STYLE.md) |
+| ADR index | [docs/internals/adr/README.md](../../../docs/internals/adr/README.md) |
+| Architecture evolution | [docs/internals/adr/EVOLUTION.md](../../../docs/internals/adr/EVOLUTION.md) |
+| Compaction architecture | [docs/internals/compaction-architecture.md](../../../docs/internals/compaction-architecture.md) |
+| Tantivy + Parquet design | [docs/internals/tantivy-parquet-architecture.md](../../../docs/internals/tantivy-parquet-architecture.md) |
+| Locality compaction | [docs/internals/locality-compaction/](../../../docs/internals/locality-compaction/) |

.github/workflows/ci.yml

@@ -76,7 +76,7 @@ jobs:
       - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v.6.2.0
         with:
           python-version: '3.11'
-      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
+      - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d # v4.0.1
         id: modified
         with:
           filters: |
@@ -88,11 +88,11 @@ jobs:
               - .github/workflows/ci.yml
       - name: Setup stable Rust Toolchain
         if: steps.modified.outputs.rust_src == 'true'
-        uses: dtolnay/rust-toolchain@efa25f7f19611383d5b0ccf2d1c8914531636bf9 # master
+        uses: dtolnay/rust-toolchain@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 # master
         with:
           toolchain: stable
       - name: Setup cache
-        uses: Swatinem/rust-cache@779680da715d629ac1d338a641029a2f4372abb5 # v2.8.2
+        uses: Swatinem/rust-cache@c19371144df3bb44fab255c43d04cbc2ab54d1c4 # v2.9.1
         if: steps.modified.outputs.rust_src == 'true'
         with:
           workspaces: "./quickwit -> target"
@@ -130,7 +130,7 @@ jobs:
       actions: write
     steps:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
+      - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d # v4.0.1
         id: modified
         with:
           filters: |
@@ -146,18 +146,18 @@ jobs:
           sudo apt-get -y install protobuf-compiler libcurl4-openssl-dev
       - name: Setup nightly Rust Toolchain (for rustfmt)
         if: steps.modified.outputs.rust_src == 'true'
-        uses: dtolnay/rust-toolchain@efa25f7f19611383d5b0ccf2d1c8914531636bf9 # master
+        uses: dtolnay/rust-toolchain@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 # master
         with:
           toolchain: nightly
           components: rustfmt
       - name: Setup stable Rust Toolchain
         if: steps.modified.outputs.rust_src == 'true'
-        uses: dtolnay/rust-toolchain@efa25f7f19611383d5b0ccf2d1c8914531636bf9 # master
+        uses: dtolnay/rust-toolchain@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 # master
         with:
           toolchain: stable
       - name: Setup cache
         if: steps.modified.outputs.rust_src == 'true'
-        uses: Swatinem/rust-cache@779680da715d629ac1d338a641029a2f4372abb5 # v2.8.2
+        uses: Swatinem/rust-cache@c19371144df3bb44fab255c43d04cbc2ab54d1c4 # v2.9.1
         with:
           workspaces: "./quickwit -> target"
           shared-key: "quickwit-cargo"
@@ -206,12 +206,12 @@ jobs:
     steps:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
       - name: Install Rust toolchain
-        uses: dtolnay/rust-toolchain@efa25f7f19611383d5b0ccf2d1c8914531636bf9 # master
+        uses: dtolnay/rust-toolchain@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 # master
         with:
           toolchain: stable
 
       - name: Cache cargo tools
-        uses: actions/cache@9255dc7a253b0ccc959486e2bca901246202afeb # v5.0.1
+        uses: actions/cache@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4
         with:
           path: ~/.cargo/bin
           key: ${{ runner.os }}-cargo-tools-${{ hashFiles('**/Cargo.lock') }}

.github/workflows/coverage.yml

@@ -117,12 +117,13 @@ jobs:
           sudo apt update
           sudo apt install libsasl2-dev
           sudo apt install libsasl2-2
+          sudo apt install libcurl4-openssl-dev
 
       - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v.6.2.0
         with:
           python-version: '3.11'
 
-      - uses: actions/cache@9255dc7a253b0ccc959486e2bca901246202afeb # v5.0.1
+      - uses: actions/cache@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4
         with:
           path: |
             ~/.cargo/git

.github/workflows/ui-ci.yml

@@ -75,11 +75,11 @@ jobs:
           cache: "yarn"
           cache-dependency-path: quickwit/quickwit-ui/yarn.lock
       - name: Setup stable Rust Toolchain
-        uses: dtolnay/rust-toolchain@efa25f7f19611383d5b0ccf2d1c8914531636bf9 # master
+        uses: dtolnay/rust-toolchain@3c5f7ea28cd621ae0bf5283f0e981fb97b8a7af9 # master
         with:
           toolchain: stable
       - name: Setup Rust cache
-        uses: Swatinem/rust-cache@779680da715d629ac1d338a641029a2f4372abb5 # v2.8.2
+        uses: Swatinem/rust-cache@c19371144df3bb44fab255c43d04cbc2ab54d1c4 # v2.9.1
         with:
           workspaces: "./quickwit -> target"
           shared-key: "quickwit-cargo"

.gitignore

@@ -29,3 +29,6 @@ qwdata
 
 # Generated by prost/tonic build
 *_descriptor.bin
+
+# GSD planning artifacts (local only)
+.planning