Merge remote-tracking branch 'origin/main' into feature/mcp-multi-client-testing

Author: robotlearning123

.github/workflows/code-quality.yml

@@ -0,0 +1,209 @@
+name: Code Quality
+
+on:
+  push:
+    branches: [ main, develop, feature/* ]
+  pull_request:
+    branches: [ main, develop ]
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+jobs:
+  pre-commit:
+    name: Pre-commit hooks
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: '3.11'
+          
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install pre-commit
+          
+      - name: Run pre-commit
+        run: pre-commit run --all-files
+
+  lint-and-format:
+    name: Linting and Formatting
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ['3.10', '3.11', '3.12']
+        
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v4
+        with:
+          python-version: ${{ matrix.python-version }}
+          
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -e . || echo "Package install failed, installing dev deps directly"
+          pip install black ruff isort
+          
+      - name: Check code formatting with Black
+        run: black --check --diff .
+        
+      - name: Lint with Ruff
+        run: ruff check .
+        
+      - name: Check import sorting with isort
+        run: isort --check-only --diff .
+
+  type-check:
+    name: Type Checking
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: '3.11'
+          
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -e . || echo "Package install failed, installing deps directly"
+          pip install mypy types-requests
+          
+      - name: Type check with MyPy
+        run: mypy src/
+
+  security:
+    name: Security Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: '3.11'
+          
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install bandit[toml] safety
+          
+      - name: Run Bandit security linter
+        run: bandit -r src/ -f json -o bandit-report.json || true
+        
+      - name: Upload Bandit report
+        uses: actions/upload-artifact@v4
+        if: always()
+        with:
+          name: bandit-report
+          path: bandit-report.json
+          
+      - name: Check dependencies for security vulnerabilities
+        run: safety check --json --output safety-report.json || true
+        
+      - name: Upload Safety report
+        uses: actions/upload-artifact@v4
+        if: always()
+        with:
+          name: safety-report
+          path: safety-report.json
+
+  complexity:
+    name: Code Complexity Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: '3.11'
+          
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install radon xenon
+          
+      - name: Run complexity analysis
+        run: |
+          echo "## Cyclomatic Complexity" >> complexity-report.md
+          radon cc src/ -s >> complexity-report.md
+          echo "" >> complexity-report.md
+          echo "## Maintainability Index" >> complexity-report.md
+          radon mi src/ -s >> complexity-report.md
+          echo "" >> complexity-report.md
+          echo "## Raw Metrics" >> complexity-report.md
+          radon raw src/ -s >> complexity-report.md
+          
+      - name: Check complexity thresholds
+        run: xenon --max-absolute B --max-modules B --max-average A src/
+        
+      - name: Upload complexity report
+        uses: actions/upload-artifact@v4
+        if: always()
+        with:
+          name: complexity-report
+          path: complexity-report.md
+
+  test-coverage:
+    name: Test Coverage
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: '3.11'
+          
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -e . || echo "Package install failed, installing deps directly" 
+          pip install pytest pytest-cov pytest-asyncio pytest-mock coverage
+          
+      - name: Run tests with coverage
+        run: |
+          pytest --cov=src/mujoco_mcp --cov-report=xml --cov-report=html --cov-report=term-missing
+          
+      - name: Upload coverage to Codecov
+        uses: codecov/codecov-action@v3
+        with:
+          file: ./coverage.xml
+          flags: unittests
+          name: codecov-umbrella
+          
+      - name: Upload coverage report
+        uses: actions/upload-artifact@v4
+        if: always()
+        with:
+          name: coverage-report
+          path: htmlcov/
+
+  quality-gate:
+    name: Quality Gate
+    runs-on: ubuntu-latest
+    needs: [pre-commit, lint-and-format, type-check, security, complexity, test-coverage]
+    if: always()
+    steps:
+      - name: Check all jobs status
+        run: |
+          if [[ "${{ needs.pre-commit.result }}" == "failure" || \
+                "${{ needs.lint-and-format.result }}" == "failure" || \
+                "${{ needs.type-check.result }}" == "failure" || \
+                "${{ needs.security.result }}" == "failure" || \
+                "${{ needs.complexity.result }}" == "failure" || \
+                "${{ needs.test-coverage.result }}" == "failure" ]]; then
+            echo "❌ Quality gate failed - some checks did not pass"
+            exit 1
+          else
+            echo "✅ Quality gate passed - all checks successful"
+          fi

.github/workflows/performance.yml

@@ -42,30 +42,14 @@ jobs:
       run: |
         python -c "
         import json
-        import os
+        with open('performance_benchmark_report.json') as f:
+            results = json.load(f)
         
-        if os.path.exists('performance_benchmark_report.json'):
-            with open('performance_benchmark_report.json') as f:
-                results = json.load(f)
-            
-            # Check overall success rate
-            summary = results.get('summary', {})
-            success_rate = summary.get('success_rate', 0.0)
-            total_time = summary.get('total_execution_time', 0.0)
-            
-            print(f'📊 Benchmark Results:')
-            print(f'   Success Rate: {success_rate:.1%}')
-            print(f'   Total Time: {total_time:.2f}s')
-            
-            # Performance thresholds
-            if success_rate < 0.8:  # 80% success rate
-                print(f'❌ Performance regression: success rate {success_rate:.1%} < 80%')
-                exit(1)
-            elif total_time > 60.0:  # 60 seconds max
-                print(f'❌ Performance regression: total time {total_time:.2f}s > 60s')
-                exit(1)
-            else:
-                print(f'✅ Performance targets met')
+        # Check if performance targets are met
+        startup_time = results.get('startup_time', {}).get('mean', 0)
+        if startup_time > 5.0:
+            print(f'❌ Performance regression: startup time {startup_time:.2f}s > 5.0s')
+            exit(1)
         else:
-            print('⚠️ No benchmark results found - skipping regression check')
+            print(f'✅ Performance OK: startup time {startup_time:.2f}s')
         "

.pre-commit-config.yaml

@@ -0,0 +1,89 @@
+# Pre-commit hooks for code quality enforcement
+repos:
+  # Pre-commit hooks
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v4.5.0
+    hooks:
+      - id: trailing-whitespace
+      - id: end-of-file-fixer
+      - id: check-yaml
+      - id: check-toml
+      - id: check-json
+      - id: check-merge-conflict
+      - id: check-added-large-files
+      - id: debug-statements
+      - id: check-executables-have-shebangs
+      - id: check-shebang-scripts-are-executable
+
+  # Black formatter
+  - repo: https://github.com/psf/black
+    rev: 23.12.1
+    hooks:
+      - id: black
+        language_version: python3
+        args: [--line-length=100]
+
+  # Ruff linter and formatter
+  - repo: https://github.com/astral-sh/ruff-pre-commit
+    rev: v0.1.9
+    hooks:
+      - id: ruff
+        args: [--fix, --exit-non-zero-on-fix]
+      - id: ruff-format
+
+  # MyPy type checking
+  - repo: https://github.com/pre-commit/mirrors-mypy
+    rev: v1.8.0
+    hooks:
+      - id: mypy
+        additional_dependencies: [types-requests]
+        args: [--strict, --ignore-missing-imports]
+
+  # Security checks with bandit
+  - repo: https://github.com/PyCQA/bandit
+    rev: 1.7.5
+    hooks:
+      - id: bandit
+        args: [-c, pyproject.toml]
+
+  # Import sorting with isort
+  - repo: https://github.com/pycqa/isort
+    rev: 5.13.2
+    hooks:
+      - id: isort
+        args: [--profile, black, --line-length, "100"]
+
+  # Check for common Python mistakes
+  - repo: https://github.com/PyCQA/flake8
+    rev: 6.1.0
+    hooks:
+      - id: flake8
+        additional_dependencies: [flake8-docstrings, flake8-typing-imports]
+        args: [--max-line-length=100, --extend-ignore=E203,W503]
+
+  # Security vulnerabilities in dependencies
+  - repo: https://github.com/Lucas-C/pre-commit-hooks-safety
+    rev: v1.3.2
+    hooks:
+      - id: python-safety-dependencies-check
+
+  # Spell checking
+  - repo: https://github.com/codespell-project/codespell
+    rev: v2.2.6
+    hooks:
+      - id: codespell
+        args: [--write-changes]
+        exclude: ^(\.git/.*|.*\.lock|.*\.log)$
+
+# Configuration
+ci:
+  autofix_commit_msg: |
+    [pre-commit.ci] auto fixes from pre-commit.com hooks
+
+    for more information, see https://pre-commit.ci
+  autofix_prs: true
+  autoupdate_branch: ''
+  autoupdate_commit_msg: '[pre-commit.ci] pre-commit autoupdate'
+  autoupdate_schedule: weekly
+  skip: []
+  submodules: false