RubyGems - e11y - Versions diffs - 0.1.0 → 0.2.0 - Mend

e11y 0.1.0 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (70) hide show

checksums.yaml +4 -4
data/.rspec +1 -0
data/.rubocop.yml +20 -0
data/CHANGELOG.md +151 -13
data/README.md +1138 -104
data/RELEASE.md +254 -0
data/Rakefile +377 -0
data/benchmarks/OPTIMIZATION.md +246 -0
data/benchmarks/README.md +103 -0
data/benchmarks/allocation_profiling.rb +253 -0
data/benchmarks/e11y_benchmarks.rb +447 -0
data/benchmarks/ruby_baseline_allocations.rb +175 -0
data/benchmarks/run_all.rb +9 -21
data/docs/00-ICP-AND-TIMELINE.md +2 -2
data/docs/ADR-001-architecture.md +1 -1
data/docs/ADR-004-adapter-architecture.md +247 -0
data/docs/ADR-009-cost-optimization.md +231 -115
data/docs/ADR-017-multi-rails-compatibility.md +103 -0
data/docs/ADR-INDEX.md +99 -0
data/docs/CONTRIBUTING.md +312 -0
data/docs/IMPLEMENTATION_PLAN.md +1 -1
data/docs/QUICK-START.md +0 -6
data/docs/use_cases/UC-019-retention-based-routing.md +584 -0
data/e11y.gemspec +28 -17
data/lib/e11y/adapters/adaptive_batcher.rb +3 -0
data/lib/e11y/adapters/audit_encrypted.rb +10 -4
data/lib/e11y/adapters/base.rb +15 -0
data/lib/e11y/adapters/file.rb +4 -1
data/lib/e11y/adapters/in_memory.rb +6 -0
data/lib/e11y/adapters/loki.rb +9 -0
data/lib/e11y/adapters/otel_logs.rb +11 -9
data/lib/e11y/adapters/sentry.rb +9 -0
data/lib/e11y/adapters/yabeda.rb +54 -10
data/lib/e11y/buffers.rb +8 -8
data/lib/e11y/console.rb +52 -60
data/lib/e11y/event/base.rb +75 -10
data/lib/e11y/event/value_sampling_config.rb +10 -4
data/lib/e11y/events/rails/http/request.rb +1 -1
data/lib/e11y/instruments/active_job.rb +6 -3
data/lib/e11y/instruments/rails_instrumentation.rb +51 -28
data/lib/e11y/instruments/sidekiq.rb +7 -7
data/lib/e11y/logger/bridge.rb +24 -54
data/lib/e11y/metrics/cardinality_protection.rb +257 -12
data/lib/e11y/metrics/cardinality_tracker.rb +17 -0
data/lib/e11y/metrics/registry.rb +6 -2
data/lib/e11y/metrics/relabeling.rb +0 -56
data/lib/e11y/metrics.rb +6 -1
data/lib/e11y/middleware/audit_signing.rb +12 -9
data/lib/e11y/middleware/pii_filter.rb +18 -10
data/lib/e11y/middleware/request.rb +10 -4
data/lib/e11y/middleware/routing.rb +117 -90
data/lib/e11y/middleware/sampling.rb +47 -28
data/lib/e11y/middleware/trace_context.rb +40 -11
data/lib/e11y/middleware/validation.rb +20 -2
data/lib/e11y/middleware/versioning.rb +1 -1
data/lib/e11y/pii.rb +7 -7
data/lib/e11y/railtie.rb +24 -20
data/lib/e11y/reliability/circuit_breaker.rb +3 -0
data/lib/e11y/reliability/dlq/file_storage.rb +16 -5
data/lib/e11y/reliability/dlq/filter.rb +3 -0
data/lib/e11y/reliability/retry_handler.rb +4 -0
data/lib/e11y/sampling/error_spike_detector.rb +16 -5
data/lib/e11y/sampling/load_monitor.rb +13 -4
data/lib/e11y/self_monitoring/reliability_monitor.rb +3 -0
data/lib/e11y/version.rb +1 -1
data/lib/e11y.rb +86 -9
metadata +83 -38
data/docs/use_cases/UC-019-tiered-storage-migration.md +0 -562
data/lib/e11y/middleware/pii_filtering.rb +0 -280
data/lib/e11y/middleware/slo.rb +0 -168

data/lib/e11y/middleware/pii_filtering.rb DELETED Viewed

@@ -1,280 +0,0 @@
-# frozen_string_literal: true
-module E11y
-  module Middleware
-    # PII Filtering Middleware - 3-Tier Strategy
-    #
-    # Filters Personally Identifiable Information (PII) from event payloads
-    # before they reach adapters. Implements ADR-006 3-tier security model.
-    #
-    # **Three-Tier Strategy:**
-    # - Tier 1: No PII (`contains_pii false`) - Skip filtering (0ms overhead)
-    # - Tier 2: Default - Rails filters only (~0.05ms overhead)
-    # - Tier 3: Explicit PII (`contains_pii true`) - Deep filtering (~0.2ms overhead)
-    #
-    # @example Basic Usage (Tier 2 - Default)
-    #   class Events::OrderCreated < E11y::Event::Base
-    #     schema do
-    #       required(:order_id).filled(:string)
-    #       optional(:api_key).filled(:string)  # Rails will filter this
-    #     end
-    #   end
-    #
-    # @example Tier 1: No PII (High Performance)
-    #   class Events::HealthCheck < E11y::Event::Base
-    #     contains_pii false  # Skip all filtering
-    #   end
-    #
-    # @example Tier 3: Explicit PII (Deep Filtering)
-    #   class Events::UserRegistered < E11y::Event::Base
-    #     contains_pii true
-    #
-    #     pii_filtering do
-    #       masks :password
-    #       hashes :email
-    #       allows :user_id
-    #     end
-    #   end
-    #
-    # @see ADR-006 PII Security & Compliance
-    # @see UC-007 PII Filtering
-    # @see E11y::PII::Patterns
-    class PIIFiltering < Base
-      middleware_zone :security
-      # Initialize PII filtering middleware
-      #
-      # @param app [Proc] Next middleware in chain
-      # @param config [Hash] Configuration options
-      def initialize(app, config = {})
-        super(app)
-        @config = config
-      end
-      # Process event and filter PII based on tier
-      #
-      # @param event_data [Hash] Event data with payload
-      # @return [Hash] Processed event data
-      def call(event_data)
-        # Determine filtering tier
-        tier = determine_tier(event_data)
-        case tier
-        when :tier1
-          # Tier 1: No PII - Skip filtering (0ms overhead)
-          @app.call(event_data)
-        when :tier2
-          # Tier 2: Rails filters only (~0.05ms overhead)
-          filtered_data = apply_rails_filters(event_data)
-          @app.call(filtered_data)
-        when :tier3
-          # Tier 3: Deep filtering (~0.2ms overhead)
-          filtered_data = apply_deep_filtering(event_data)
-          @app.call(filtered_data)
-        else
-          @app.call(event_data)
-        end
-      end
-      private
-      # Determine PII filtering tier for event
-      #
-      # @param event_data [Hash] Event data
-      # @return [Symbol] :tier1, :tier2, or :tier3
-      def determine_tier(event_data)
-        event_class = event_data[:event_class]
-        return :tier2 unless event_class
-        # Check explicit declaration
-        if event_class.respond_to?(:pii_tier)
-          case event_class.pii_tier
-          when :none
-            :tier1
-          when :explicit
-            :tier3
-          else
-            :tier2
-          end
-        else
-          # Default: Tier 2 (Rails filters)
-          :tier2
-        end
-      end
-      # Apply Rails filter_parameters (Tier 2)
-      #
-      # @param event_data [Hash] Event data
-      # @return [Hash] Filtered event data
-      def apply_rails_filters(event_data)
-        return event_data unless defined?(Rails)
-        # Clone to avoid modifying original
-        filtered_data = deep_dup(event_data)
-        # Apply Rails parameter filter
-        filter = parameter_filter
-        filtered_data[:payload] = filter.filter(filtered_data[:payload])
-        filtered_data
-      end
-      # Apply deep PII filtering (Tier 3)
-      #
-      # @param event_data [Hash] Event data
-      # @return [Hash] Filtered event data
-      def apply_deep_filtering(event_data)
-        event_class = event_data[:event_class]
-        return event_data unless event_class
-        # Clone to avoid modifying original
-        filtered_data = deep_dup(event_data)
-        # Get PII filtering config from event class
-        pii_config = event_class.pii_filtering_config if event_class.respond_to?(:pii_filtering_config)
-        return filtered_data unless pii_config
-        # Apply field-level strategies
-        filtered_data[:payload] = apply_field_strategies(
-          filtered_data[:payload],
-          pii_config
-        )
-        # Apply pattern-based filtering
-        filtered_data[:payload] = apply_pattern_filtering(
-          filtered_data[:payload]
-        )
-        filtered_data
-      end
-      # Apply field-level filtering strategies
-      #
-      # @param payload [Hash] Payload to filter
-      # @param config [Hash] PII configuration
-      # @return [Hash] Filtered payload
-      def apply_field_strategies(payload, config)
-        return payload unless config
-        filtered = {}
-        payload.each do |key, value|
-          strategy = config.dig(:fields, key, :strategy) || :allow
-          filtered[key] = case strategy
-                          when :mask
-                            "[FILTERED]"
-                          when :hash
-                            hash_value(value)
-                          when :partial
-                            partial_mask(value)
-                          when :redact
-                            nil
-                          when :allow
-                            value
-                          else
-                            value
-                          end
-        end
-        filtered
-      end
-      # Apply pattern-based filtering to string values
-      #
-      # @param data [Object] Data to filter (recursively)
-      # @return [Object] Filtered data
-      def apply_pattern_filtering(data)
-        case data
-        when Hash
-          data.transform_values { |v| apply_pattern_filtering(v) }
-        when Array
-          data.map { |v| apply_pattern_filtering(v) }
-        when String
-          filter_string_patterns(data)
-        else
-          data
-        end
-      end
-      # Filter PII patterns in string
-      #
-      # @param str [String] String to filter
-      # @return [String] Filtered string
-      def filter_string_patterns(str)
-        result = str.dup
-        # Apply all PII patterns
-        E11y::PII::Patterns::ALL.each do |pattern|
-          result = result.gsub(pattern, "[FILTERED]")
-        end
-        result
-      end
-      # Hash value using SHA256
-      #
-      # @param value [Object] Value to hash
-      # @return [String] Hashed value
-      def hash_value(value)
-        return "[FILTERED]" if value.nil?
-        require "digest"
-        "hashed_#{Digest::SHA256.hexdigest(value.to_s)[0..15]}"
-      end
-      # Partial mask (show first/last chars)
-      #
-      # @param value [String] Value to mask
-      # @return [String] Partially masked value
-      def partial_mask(value)
-        return "[FILTERED]" unless value.is_a?(String)
-        return "[FILTERED]" if value.length < 4
-        if value.include?("@")
-          # Email: show first 2 chars before @, last 2 after @
-          local, domain = value.split("@", 2)
-          "#{local[0..1]}***@#{domain[-3..-1]}"
-        else
-          # Generic: show first/last 2 chars
-          "#{value[0..1]}***#{value[-2..-1]}"
-        end
-      end
-      # Deep duplicate data structure
-      #
-      # @param data [Object] Data to duplicate
-      # @return [Object] Duplicated data
-      def deep_dup(data)
-        case data
-        when Hash
-          data.transform_values { |v| deep_dup(v) }
-        when Array
-          data.map { |v| deep_dup(v) }
-        when String, Symbol, Integer, Float, TrueClass, FalseClass, NilClass
-          data
-        else
-          begin
-            data.dup
-          rescue StandardError
-            data
-          end
-        end
-      end
-      # Get Rails parameter filter
-      #
-      # @return [ActiveSupport::ParameterFilter] Parameter filter
-      def parameter_filter
-        @parameter_filter ||= if defined?(Rails)
-                                ActiveSupport::ParameterFilter.new(
-                                  Rails.application.config.filter_parameters
-                                )
-                              else
-                                # Fallback for non-Rails environments
-                                ActiveSupport::ParameterFilter.new([])
-                              end
-      end
-    end
-  end
-end

data/lib/e11y/middleware/slo.rb DELETED Viewed

@@ -1,168 +0,0 @@
-# frozen_string_literal: true
-require "e11y/middleware/base"
-require "e11y/slo/event_driven"
-module E11y
-  module Middleware
-    # SLO Middleware for Event-Driven SLO tracking (ADR-014).
-    #
-    # Automatically processes events with SLO configuration enabled,
-    # computes `slo_status` from payload, and emits metrics.
-    #
-    # **Features:**
-    # - Auto-detects events with `slo { enabled true }`
-    # - Calls `slo_status_from` proc to compute 'success'/'failure'
-    # - Emits `slo_event_result_total{slo_status}` metric to Yabeda
-    # - Never fails event tracking (graceful error handling)
-    #
-    # **Middleware Zone:** `:post_processing` (after routing, before adapters)
-    #
-    # **ADR References:**
-    # - ADR-014 §3 (Event SLO DSL)
-    # - ADR-014 §4 (SLO Status Calculation)
-    # - ADR-014 §6 (Metrics Export)
-    # - ADR-015 §3 (Middleware Order)
-    #
-    # **Use Case:** UC-014 (Event-Driven SLO)
-    #
-    # @example Configuration
-    #   E11y.configure do |config|
-    #     # Enable SLO middleware (auto-enabled if any Events have slo { enabled true })
-    #     config.pipeline.use E11y::Middleware::SLO, zone: :post_processing
-    #   end
-    #
-    # @example Event with SLO
-    #   module Events
-    #     class PaymentProcessed < E11y::Event::Base
-    #       schema do
-    #         required(:payment_id).filled(:string)
-    #         required(:status).filled(:string)
-    #       end
-    #
-    #       slo do
-    #         enabled true
-    #         slo_status_from do |payload|
-    #           case payload[:status]
-    #           when 'completed' then 'success'
-    #           when 'failed' then 'failure'
-    #           else nil  # Not counted
-    #           end
-    #         end
-    #       end
-    #     end
-    #   end
-    #
-    #   # Tracking will automatically emit SLO metric:
-    #   Events::PaymentProcessed.track(payment_id: 'p123', status: 'completed')
-    #   # → Emits: slo_event_result_total{event_name="payment.processed", slo_status="success"} +1
-    #
-    # @see ADR-014 for complete Event-Driven SLO architecture
-    class SLO < Base
-      middleware_zone :post_processing
-      # Process event and emit SLO metric if SLO is enabled.
-      #
-      # @param event_data [Hash] Event payload
-      # @return [Hash] Unchanged event_data (passthrough)
-      def call(event_data)
-        # Skip if SLO not enabled for this event
-        event_class = resolve_event_class(event_data)
-        return event_data unless event_class&.respond_to?(:slo_config)
-        return event_data unless event_class.slo_config&.enabled
-        # Compute slo_status from payload
-        slo_status = compute_slo_status(event_class, event_data[:payload])
-        return event_data unless slo_status
-        # Emit SLO metric
-        emit_slo_metric(event_class, slo_status, event_data[:payload])
-        event_data # Passthrough (never modify event_data)
-      rescue StandardError => e
-        # Never fail event tracking due to SLO processing
-        E11y.logger.error(
-          "[E11y::Middleware::SLO] SLO processing failed for #{event_data[:event_name]}: #{e.message}"
-        )
-        event_data
-      end
-      private
-      # Resolve Event class from event_name.
-      #
-      # @param event_data [Hash] Event payload
-      # @return [Class, nil] Event class or nil if not found
-      def resolve_event_class(event_data)
-        event_name = event_data[:event_name]
-        return nil unless event_name
-        # Convert event_name to class name (e.g., "payment.processed" → "Events::PaymentProcessed")
-        # This assumes Rails autoloading or explicit requires
-        class_name = event_name.to_s.split(".").map(&:capitalize).join
-        "Events::#{class_name}".constantize
-      rescue NameError
-        # Event class not found (may be from external source)
-        nil
-      end
-      # Compute slo_status using event's slo_status_from proc.
-      #
-      # @param event_class [Class] Event class
-      # @param payload [Hash] Event payload
-      # @return [String, nil] 'success', 'failure', or nil
-      def compute_slo_status(event_class, payload)
-        return nil unless event_class.slo_config.slo_status_proc
-        event_class.slo_config.slo_status_proc.call(payload)
-      rescue StandardError => e
-        E11y.logger.error(
-          "[E11y::Middleware::SLO] Failed to compute slo_status for #{event_class.name}: #{e.message}"
-        )
-        nil
-      end
-      # Emit SLO metric to Yabeda/Prometheus.
-      #
-      # @param event_class [Class] Event class
-      # @param slo_status [String] 'success' or 'failure'
-      # @param payload [Hash] Event payload
-      # @return [void]
-      def emit_slo_metric(event_class, slo_status, payload)
-        labels = build_slo_labels(event_class, slo_status, payload)
-        E11y::Metrics.increment(:slo_event_result_total, labels)
-      rescue StandardError => e
-        E11y.logger.error(
-          "[E11y::Middleware::SLO] Failed to emit SLO metric for #{event_class.name}: #{e.message}"
-        )
-      end
-      # Build metric labels for SLO.
-      #
-      # @param event_class [Class] Event class
-      # @param slo_status [String] 'success' or 'failure'
-      # @param payload [Hash] Event payload
-      # @return [Hash] Metric labels
-      def build_slo_labels(event_class, slo_status, payload)
-        labels = {
-          event_name: event_class.event_name,
-          slo_status: slo_status
-        }
-        # Add custom SLO name if configured
-        if event_class.slo_config.contributes_to
-          labels[:slo_name] = event_class.slo_config.contributes_to
-        end
-        # Add group_by field if configured
-        if event_class.slo_config.group_by_field
-          field = event_class.slo_config.group_by_field
-          labels[:group_by] = payload[field].to_s if payload[field]
-        end
-        labels
-      end
-    end
-  end
-end