TehRiehlDeal/TehRiehlIncremental
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
TehRiehlIncremental/docker-compose.yml
T
TehRiehlDeal 66a44354cd
CI / security (push) Failing after 4s
Details
CI / test (push) Failing after 17s
Details
CI / static (push) Failing after 19s
Details
chore: session 4 polish — CI, lint, prestige UI, balance pass 
Adds the CI workflow, ESLint flat config, basic prestige action,
and tunes three off-balance numbers in the day-1 content.

CI runs three parallel jobs: `static` (lint, typecheck, prettier,
build), `test` (unit + Postgres-backed integration via service
container, with coverage gate), and `security` (gitleaks + trivy).
Scratch crypto keys are generated per-run from openssl so the
server can boot in CI without any committed secrets.

Prestige UI: a "git commit" / "git tag -a" button in each
prestigeable layer's canvas header, gated on the upstream `best`
threshold. Displays projected gain inline (`// +N `) so the
trade is visible before clicking.

Balance fixes:
- Releases requirement was 1000 commits (≈5B LoC, unreachable)
  with a gain formula that returned 0 at the threshold. Aligned
  both at 100 commits with prestigePoints exponent 0.5.
- Tech Debt accrual was 0.0005 × code/s (500 debt/s at 1M LoC).
  Reduced to 0.0001 — still meaningful, no longer punitive.
- Pay-Down Debt was effect=-10 per buyable, instantly turning the
  production multiplier to -9. Changed to -0.1 (each pay-down
  slows accrual by 10%; 10 pay-downs stops it; further buys
  reverse the flow). Also corrected costLayer to "code" so it
  spends LoC, not Debt.

Schema: added `costLayer` to Buyable to match Upgrade (needed for
the Tech Debt fix). RightPanel now honors `costLayer` for both
upgrades and buyables — the cost-side affordability check and the
spendAmount target both follow the override.

Verification:
- pnpm -r typecheck: clean
- pnpm -r lint: clean
- pnpm format:check: clean
- pnpm -r test: 73 unit tests pass
- pnpm --filter @teh-riehl/server test:integration: 7/7 pass
- 80 tests total

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-17 12:50:45 -07:00

26 lines
759 B
YAML
Raw Permalink Blame History

services:
postgres:
image: postgres:16-alpine
container_name: teh-riehl-postgres
restart: unless-stopped
environment:
POSTGRES_USER: teh_riehl
POSTGRES_PASSWORD: dev_password
POSTGRES_DB: teh_riehl
ports:
- '5432:5432'
volumes:
- teh-riehl-pgdata:/var/lib/postgresql/data
healthcheck:
test: ['CMD-SHELL', 'pg_isready -U teh_riehl -d teh_riehl']
interval: 5s
timeout: 5s
retries: 5
volumes:
teh-riehl-pgdata:
# NOTE: this named volume is NOT encrypted at rest in local dev.
# Field-level encryption in the app layer is the primary defense.
# In production, mount an encrypted block device (e.g. AWS EBS with KMS,
# GCP PD with CMEK, or LUKS on bare metal).
Reference in New Issue View Git Blame Copy Permalink