jordan/stemedb
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
58594bc7b9
stemedb/applications/aphoria/examples/import-httpclient.toml
jml 7facac08a2 feat(aphoria): add enhanced bulk claim import with validation and reporting 
Replaces tedious shell scripts with TOML-based bulk import:
- 340 lines bash → 200 lines TOML → 1 command
- 15 minutes → <1 second execution time
- 0% → 100% error detection before writes

Features:
- Pre-import validation (ID format, tiers, required fields, duplicates)
- Detailed reporting (table and JSON formats)
- Template generation (--template)
- Validation-only mode (--validate-only)
- Merge strategies (skip_existing, overwrite, fail_on_duplicate)

Documentation:
- Comprehensive guide: docs/guides/bulk-claim-import.md
- Updated README with quick start
- Example files with inline documentation

Validation catches:
- Invalid claim IDs (must be kebab-case)
- Unknown authority tiers
- Empty required fields
- Duplicate IDs within import file
- Duplicate concept paths (warnings)

Error reporting:
- Shows ALL errors before any writes (not just first failure)
- Clear context: claim index, ID, field, and error message
- Warnings for non-blocking issues

Testing:
- All clippy checks pass
- Production build succeeds
- Validated template generation, validation-only, dry-run, import, merge strategies

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-02-10 05:31:04 +00:00

154 lines
5.2 KiB
TOML
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# HTTP Client Claims - Bulk Import Example
#
# This file demonstrates converting a 340-line shell script (create-claims.sh)
# into a compact TOML format for bulk import.
#
# Original: 22 claims × ~15 lines of bash = 340 lines + 15 minutes execution
# New: 22 claims in ~200 lines TOML + <1 second import
#
# Import: aphoria claims import import-httpclient.toml
#
# Note: This is a representative sample showing 5 of the 22 claims.
# See dogfood/httpclient/create-claims.sh for the full script being replaced.
# ============================================================================
# TIMEOUT CLAIMS
# ============================================================================
[[claim]]
id = "httpclient-connect-timeout-001"
concept_path = "httpclient/connect_timeout"
predicate = "max_value"
value = 10
comparison = "equals"
provenance = "Mozilla HTTP docs + Requests library (10s connect timeout)"
invariant = "TCP connection timeout MUST NOT exceed 10 seconds"
consequence = "Unresponsive endpoints block connection establishment"
authority_tier = "expert"
evidence = ["Mozilla HTTP guidelines", "Requests library default"]
category = "safety"
status = "active"
created_by = "aphoria-suggest"
created_at = "2024-12-15T10:00:00Z"
[[claim]]
id = "httpclient-request-timeout-001"
concept_path = "httpclient/request_timeout"
predicate = "max_value"
value = 30
comparison = "equals"
provenance = "Mozilla HTTP docs (30s recommended), aligned with dbpool timeout pattern"
invariant = "HTTP request timeout MUST NOT exceed 30 seconds"
consequence = "Slow external services block thread pool, cascade failures"
authority_tier = "expert"
evidence = ["Mozilla HTTP guidelines", "RFC 7230"]
category = "safety"
status = "active"
created_by = "aphoria-suggest"
created_at = "2024-12-15T10:00:00Z"
[[claim]]
id = "httpclient-read-timeout-001"
concept_path = "httpclient/read_timeout"
predicate = "max_value"
value = 30
comparison = "equals"
provenance = "Mozilla HTTP docs (15-30s for response body reading)"
invariant = "Response body read timeout MUST NOT exceed 30 seconds"
consequence = "Slow streaming responses block thread pool"
authority_tier = "expert"
evidence = ["Mozilla HTTP guidelines"]
category = "safety"
status = "active"
created_by = "aphoria-suggest"
created_at = "2024-12-15T10:00:00Z"
# ============================================================================
# TLS CLAIMS
# ============================================================================
[[claim]]
id = "httpclient-tls-cert-validation-001"
concept_path = "httpclient/tls/certificate_validation"
predicate = "required"
value = true
comparison = "equals"
provenance = "OWASP A07:2021 + Mozilla Security Guidelines, reused from dbpool pattern"
invariant = "HTTPS connections MUST validate server certificates"
consequence = "Man-in-the-middle attacks, credential exposure"
authority_tier = "expert"
evidence = ["OWASP A07:2021", "Mozilla HTTPS guidelines", "Requests library default"]
category = "security"
status = "active"
created_by = "aphoria-suggest"
created_at = "2024-12-15T10:00:00Z"
[[claim]]
id = "httpclient-tls-min-version-001"
concept_path = "httpclient/tls/min_version"
predicate = "min_value"
value = 1.2
comparison = "equals"
provenance = "OWASP + Mozilla Security Guidelines (TLS 1.2 minimum as of 2023)"
invariant = "TLS version MUST be >= 1.2 (TLS 1.0/1.1 deprecated)"
consequence = "Vulnerable to protocol downgrade attacks (BEAST, POODLE)"
authority_tier = "expert"
evidence = ["OWASP TLS cheat sheet", "Mozilla guidelines"]
category = "security"
status = "active"
created_by = "aphoria-suggest"
created_at = "2024-12-15T10:00:00Z"
# ============================================================================
# Full Script Comparison
# ============================================================================
#
# BEFORE (create-claims.sh - 340 lines):
#
# #!/bin/bash
# set -e
# APHORIA="/path/to/aphoria"
#
# echo "1/22: connect_timeout..."
# $APHORIA claims create \
# --id "httpclient-connect-timeout-001" \
# --concept-path "httpclient/connect_timeout" \
# --predicate "max_value" \
# --value "10" \
# --provenance "Mozilla HTTP docs..." \
# --invariant "TCP connection timeout..." \
# --consequence "Unresponsive endpoints..." \
# --tier expert \
# --evidence "Mozilla HTTP guidelines" \
# --category safety \
# --by "aphoria-suggest"
#
# # Repeat 21 more times...
# # Each claim: ~15 lines of bash
# # Total: 340 lines, ~15 minutes to run
#
# AFTER (import-httpclient.toml - 200 lines):
#
# [[claim]]
# id = "httpclient-connect-timeout-001"
# concept_path = "httpclient/connect_timeout"
# predicate = "max_value"
# value = 10
# comparison = "equals"
# provenance = "Mozilla HTTP docs..."
# invariant = "TCP connection timeout..."
# consequence = "Unresponsive endpoints..."
# authority_tier = "expert"
# evidence = ["Mozilla HTTP guidelines"]
# category = "safety"
# status = "active"
# created_by = "aphoria-suggest"
# created_at = "2024-12-15T10:00:00Z"
#
# # 21 more claims...
# # Total: ~200 lines, <1 second to import
#
# TIME SAVINGS: 15 minutes → <1 second
# CODE REDUCTION: 340 lines → 200 lines
# ERROR DETECTION: 0% → 100% (pre-import validation)
Reference in New Issue View Git Blame Copy Permalink