RubyGems - e11y - Versions diffs - 0.2.0 → 1.1.0 - Mend

e11y 0.2.0 → 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (288) hide show

checksums.yaml +4 -4
data/.rubocop.yml +130 -10
data/CHANGELOG.md +80 -1
data/CLAUDE.md +168 -0
data/CONTRIBUTING.md +640 -0
data/README.md +165 -701
data/RELEASE.md +41 -12
data/Rakefile +249 -57
data/config/README.md +1 -1
data/config/loki-local-config.yaml +12 -0
data/config/otel-collector-config.yaml +44 -0
data/cucumber.yml +1 -0
data/docker-compose.yml +18 -2
data/docs/ADAPTERS.md +76 -0
data/docs/ADAPTIVE_SAMPLING.md +59 -0
data/docs/COMPARISON.md +104 -0
data/docs/CONFIGURATION.md +52 -0
data/docs/DISTRIBUTED_TRACING.md +44 -0
data/docs/LIMITATIONS.md +13 -0
data/docs/METRICS_DSL.md +84 -0
data/docs/PERFORMANCE.md +60 -0
data/docs/PII_FILTERING.md +40 -0
data/docs/PRESETS.md +65 -0
data/docs/QUICK-START.md +546 -587
data/docs/RAILS_INTEGRATION.md +79 -0
data/docs/SCHEMA_VALIDATION.md +63 -0
data/docs/SLO-PROMQL-ALERTS.md +161 -0
data/docs/TESTING.md +69 -0
data/docs/{ADR-001-architecture.md → architecture/ADR-001-architecture.md} +36 -65
data/docs/{ADR-002-metrics-yabeda.md → architecture/ADR-002-metrics-yabeda.md} +62 -236
data/docs/architecture/ADR-003-slo-observability.md +1402 -0
data/docs/{ADR-004-adapter-architecture.md → architecture/ADR-004-adapter-architecture.md} +163 -146
data/docs/{ADR-005-tracing-context.md → architecture/ADR-005-tracing-context.md} +10 -9
data/docs/{ADR-006-security-compliance.md → architecture/ADR-006-security-compliance.md} +184 -191
data/docs/{ADR-007-opentelemetry-integration.md → architecture/ADR-007-opentelemetry-integration.md} +3 -21
data/docs/{ADR-008-rails-integration.md → architecture/ADR-008-rails-integration.md} +182 -743
data/docs/{ADR-009-cost-optimization.md → architecture/ADR-009-cost-optimization.md} +45 -54
data/docs/architecture/ADR-010-developer-experience.md +522 -0
data/docs/{ADR-011-testing-strategy.md → architecture/ADR-011-testing-strategy.md} +44 -86
data/docs/{ADR-012-event-evolution.md → architecture/ADR-012-event-evolution.md} +11 -11
data/docs/{ADR-013-reliability-error-handling.md → architecture/ADR-013-reliability-error-handling.md} +37 -12
data/docs/{ADR-014-event-driven-slo.md → architecture/ADR-014-event-driven-slo.md} +12 -24
data/docs/{ADR-015-middleware-order.md → architecture/ADR-015-middleware-order.md} +43 -59
data/docs/{ADR-016-self-monitoring-slo.md → architecture/ADR-016-self-monitoring-slo.md} +58 -355
data/docs/{ADR-017-multi-rails-compatibility.md → architecture/ADR-017-multi-rails-compatibility.md} +4 -11
data/docs/architecture/ADR-018-memory-optimization.md +366 -0
data/docs/{ADR-INDEX.md → architecture/ADR-INDEX.md} +11 -6
data/docs/plans/2026-03-20-browser-overlay-svelte.md +281 -0
data/docs/{00-ICP-AND-TIMELINE.md → prd/00-ICP-AND-TIMELINE.md} +6 -6
data/docs/{01-SCALE-REQUIREMENTS.md → prd/01-SCALE-REQUIREMENTS.md} +6 -6
data/docs/prd/01-overview-vision.md +19 -14
data/docs/use_cases/README.md +22 -23
data/docs/use_cases/UC-001-request-scoped-debug-buffering.md +50 -44
data/docs/use_cases/UC-002-business-event-tracking.md +26 -95
data/docs/use_cases/UC-003-event-metrics.md +66 -0
data/docs/use_cases/UC-004-zero-config-slo-tracking.md +33 -684
data/docs/use_cases/UC-005-sentry-integration.md +13 -15
data/docs/use_cases/UC-006-trace-context-management.md +30 -28
data/docs/use_cases/UC-007-pii-filtering.md +35 -87
data/docs/use_cases/UC-008-opentelemetry-integration.md +51 -89
data/docs/use_cases/UC-009-multi-service-tracing.md +30 -178
data/docs/use_cases/UC-010-background-job-tracking.md +24 -91
data/docs/use_cases/UC-011-rate-limiting.md +95 -168
data/docs/use_cases/UC-012-audit-trail.md +21 -46
data/docs/use_cases/UC-013-high-cardinality-protection.md +29 -167
data/docs/use_cases/UC-014-adaptive-sampling.md +2 -2
data/docs/use_cases/UC-015-cost-optimization.md +46 -99
data/docs/use_cases/UC-016-rails-logger-migration.md +39 -213
data/docs/use_cases/UC-017-local-development.md +203 -777
data/docs/use_cases/UC-018-testing-events.md +3 -3
data/docs/use_cases/UC-019-retention-based-routing.md +53 -106
data/docs/use_cases/UC-020-event-versioning.md +8 -9
data/docs/use_cases/UC-021-error-handling-retry-dlq.md +18 -22
data/docs/use_cases/UC-022-event-registry.md +15 -21
data/docs/use_cases/backlog.md +119 -87
data/e11y.gemspec +2 -2
data/gems/e11y-devtools/README.md +158 -0
data/gems/e11y-devtools/config/routes.rb +15 -0
data/gems/e11y-devtools/e11y-devtools.gemspec +25 -0
data/gems/e11y-devtools/exe/e11y +34 -0
data/gems/e11y-devtools/frontend/.gitignore +24 -0
data/gems/e11y-devtools/frontend/README.md +51 -0
data/gems/e11y-devtools/frontend/index.html +14 -0
data/gems/e11y-devtools/frontend/package-lock.json +3707 -0
data/gems/e11y-devtools/frontend/package.json +28 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/events/recent.json +4205 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/interactions.json +194 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/0a2e04027cfa22d014bc22e8b27cd913/events.json +86 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/0e1543af6a630fb3af6b52283154b3e0/events.json +169 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/1838b691faa49564f97db8592ff3978d/events.json +78 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/29f198f6588dacffb687777eb5f8f118/events.json +197 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/34bc3c9c0097de28a7a6f99b90a8e7bc/events.json +194 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/3ba6c20d068ab9cee00e51b180e66444/events.json +184 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/435bfd8f17b9009146a79812d7c3726d/events.json +144 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/4c7676e3fe668e99edb2b94d7d5678a9/events.json +222 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/6daf0d47974bedfc55d5de7004a3ea9f/events.json +194 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/8a81ada42834d15f287bb40010043605/events.json +194 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/8c0a98900edaae105469df8daedccf02/events.json +198 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/8e4f645180f8a7d1dce426b07380466b/events.json +222 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/93db346fa5d44a032605a13b627f4b80/events.json +128 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/98ff6146faf7bd9be8bd03a8275817ba/events.json +223 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/9997ddd0247bc7e25f2ca7a5c415c93d/events.json +197 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/99e35f8ef3baedd798cc4fd085980ad9/events.json +194 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/b4f3095c1909924cbc98889a86c83d6d/events.json +131 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/b54b7fc32b7575a7110de809d11ccda0/events.json +128 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/c0b48033fa06746bcc5886745e053cff/events.json +169 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/c44649ac76701b4558927cd2305ab535/events.json +169 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/d601ae3320057580a39dbdac2edfdf4a/events.json +248 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/e67e724bab422d2b52eeb49635e512e1/events.json +194 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/e6c72765a28f158a8485b35fa63f73da/events.json +194 -0
data/gems/e11y-devtools/frontend/public/mocks/v1/traces/f541b87405c9a54819b18ebe529f6419/events.json +194 -0
data/gems/e11y-devtools/frontend/scripts/generate_mocks.rb +397 -0
data/gems/e11y-devtools/frontend/src/App.svelte +827 -0
data/gems/e11y-devtools/frontend/src/components/Fab.svelte +19 -0
data/gems/e11y-devtools/frontend/src/components/FilterBar.svelte +38 -0
data/gems/e11y-devtools/frontend/src/components/FullscreenPanel.svelte +82 -0
data/gems/e11y-devtools/frontend/src/components/InteractionsTimeline.svelte +264 -0
data/gems/e11y-devtools/frontend/src/components/RecentHistogram.svelte +354 -0
data/gems/e11y-devtools/frontend/src/lib/api.ts +37 -0
data/gems/e11y-devtools/frontend/src/lib/eventIdentity.ts +12 -0
data/gems/e11y-devtools/frontend/src/lib/format.ts +37 -0
data/gems/e11y-devtools/frontend/src/lib/listFilter.ts +43 -0
data/gems/e11y-devtools/frontend/src/lib/recentVolume.ts +80 -0
data/gems/e11y-devtools/frontend/src/lib/router.ts +12 -0
data/gems/e11y-devtools/frontend/src/lib/transitions.ts +34 -0
data/gems/e11y-devtools/frontend/src/lib/viewportOrigin.ts +25 -0
data/gems/e11y-devtools/frontend/src/main.ts +8 -0
data/gems/e11y-devtools/frontend/src/overlay-entry.ts +24 -0
data/gems/e11y-devtools/frontend/src/overlay.css +1080 -0
data/gems/e11y-devtools/frontend/svelte.config.js +2 -0
data/gems/e11y-devtools/frontend/test_puppeteer.js +41 -0
data/gems/e11y-devtools/frontend/test_scale.js +3 -0
data/gems/e11y-devtools/frontend/tsconfig.app.json +21 -0
data/gems/e11y-devtools/frontend/tsconfig.json +7 -0
data/gems/e11y-devtools/frontend/tsconfig.node.json +26 -0
data/gems/e11y-devtools/frontend/vite.config.ts +36 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/server.rb +96 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tool_base.rb +25 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tools/clear.rb +31 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tools/errors.rb +35 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tools/event_detail.rb +33 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tools/events_by_trace.rb +33 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tools/interactions.rb +40 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tools/recent_events.rb +34 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tools/search.rb +34 -0
data/gems/e11y-devtools/lib/e11y/devtools/mcp/tools/stats.rb +30 -0
data/gems/e11y-devtools/lib/e11y/devtools/overlay/assets/overlay.js +20 -0
data/gems/e11y-devtools/lib/e11y/devtools/overlay/controller.rb +94 -0
data/gems/e11y-devtools/lib/e11y/devtools/overlay/engine.rb +26 -0
data/gems/e11y-devtools/lib/e11y/devtools/overlay/middleware.rb +80 -0
data/gems/e11y-devtools/lib/e11y/devtools/overlay/rails_controller.rb +67 -0
data/gems/e11y-devtools/lib/e11y/devtools/tui/app.rb +262 -0
data/gems/e11y-devtools/lib/e11y/devtools/tui/grouping.rb +66 -0
data/gems/e11y-devtools/lib/e11y/devtools/tui/widgets/event_detail.rb +62 -0
data/gems/e11y-devtools/lib/e11y/devtools/tui/widgets/event_list.rb +70 -0
data/gems/e11y-devtools/lib/e11y/devtools/tui/widgets/interaction_list.rb +47 -0
data/gems/e11y-devtools/lib/e11y/devtools/version.rb +8 -0
data/gems/e11y-devtools/lib/e11y/devtools.rb +13 -0
data/gems/e11y-devtools/spec/e11y/devtools/mcp/tools_spec.rb +107 -0
data/gems/e11y-devtools/spec/e11y/devtools/overlay/controller_spec.rb +91 -0
data/gems/e11y-devtools/spec/e11y/devtools/overlay/middleware_spec.rb +46 -0
data/gems/e11y-devtools/spec/e11y/devtools/tui/app_spec.rb +85 -0
data/gems/e11y-devtools/spec/e11y/devtools/tui/grouping_spec.rb +64 -0
data/gems/e11y-devtools/spec/spec_helper.rb +5 -0
data/gems/e11y-devtools/spec/tui/widgets/event_list_spec.rb +44 -0
data/gems/e11y-devtools/spec/tui/widgets/interaction_list_spec.rb +62 -0
data/lib/e11y/adapters/audit_encrypted.rb +53 -11
data/lib/e11y/adapters/base.rb +33 -34
data/lib/e11y/adapters/dev_log/file_store.rb +143 -0
data/lib/e11y/adapters/dev_log/query.rb +219 -0
data/lib/e11y/adapters/dev_log.rb +118 -0
data/lib/e11y/adapters/file.rb +3 -6
data/lib/e11y/adapters/in_memory.rb +52 -5
data/lib/e11y/adapters/in_memory_test.rb +29 -0
data/lib/e11y/adapters/loki.rb +58 -23
data/lib/e11y/adapters/null.rb +82 -0
data/lib/e11y/adapters/opentelemetry_collector.rb +183 -0
data/lib/e11y/adapters/otel_logs.rb +136 -23
data/lib/e11y/adapters/sentry.rb +4 -7
data/lib/e11y/adapters/stdout.rb +73 -7
data/lib/e11y/adapters/yabeda.rb +153 -29
data/lib/e11y/buffers/adaptive_buffer.rb +3 -17
data/lib/e11y/buffers/{request_scoped_buffer.rb → ephemeral_buffer.rb} +72 -58
data/lib/e11y/buffers/ring_buffer.rb +3 -16
data/lib/e11y/configuration.rb +272 -0
data/lib/e11y/console.rb +10 -17
data/lib/e11y/current.rb +53 -1
data/lib/e11y/debug/pipeline_inspector.rb +96 -0
data/lib/e11y/documentation/generator.rb +48 -0
data/lib/e11y/event/base.rb +176 -82
data/lib/e11y/event/value_sampling_config.rb +1 -5
data/lib/e11y/events/rails/database/query.rb +1 -4
data/lib/e11y/events/rails/job/failed.rb +2 -0
data/lib/e11y/instruments/active_job.rb +44 -12
data/lib/e11y/instruments/rails_instrumentation.rb +49 -24
data/lib/e11y/instruments/sidekiq.rb +135 -31
data/lib/e11y/linters/base.rb +11 -0
data/lib/e11y/linters/pii/pii_declaration_linter.rb +120 -0
data/lib/e11y/linters/slo/config_consistency_linter.rb +76 -0
data/lib/e11y/linters/slo/explicit_declaration_linter.rb +36 -0
data/lib/e11y/linters/slo/slo_status_from_linter.rb +41 -0
data/lib/e11y/logger/bridge.rb +26 -7
data/lib/e11y/metrics/cardinality_protection.rb +10 -15
data/lib/e11y/metrics/cardinality_tracker.rb +16 -6
data/lib/e11y/metrics/registry.rb +3 -5
data/lib/e11y/metrics/test_backend.rb +62 -0
data/lib/e11y/metrics.rb +56 -10
data/lib/e11y/middleware/adapter_resolver.rb +40 -0
data/lib/e11y/middleware/audit_signing.rb +43 -6
data/lib/e11y/middleware/baggage_protection.rb +75 -0
data/lib/e11y/middleware/dev_log_source.rb +24 -0
data/lib/e11y/middleware/event_slo.rb +23 -9
data/lib/e11y/middleware/otel_span.rb +23 -0
data/lib/e11y/middleware/pii_filter.rb +104 -75
data/lib/e11y/middleware/rate_limiting.rb +54 -27
data/lib/e11y/middleware/request.rb +70 -23
data/lib/e11y/middleware/routing.rb +78 -21
data/lib/e11y/middleware/sampling.rb +66 -17
data/lib/e11y/middleware/self_monitoring_emit.rb +39 -0
data/lib/e11y/middleware/trace_context.rb +45 -10
data/lib/e11y/middleware/track_latency.rb +34 -0
data/lib/e11y/middleware/validation.rb +7 -16
data/lib/e11y/middleware/versioning.rb +26 -22
data/lib/e11y/opentelemetry/semantic_conventions.rb +109 -0
data/lib/e11y/opentelemetry/span_creator.rb +142 -0
data/lib/e11y/pii/patterns.rb +12 -1
data/lib/e11y/pipeline/builder.rb +4 -4
data/lib/e11y/presets/audit_event.rb +13 -2
data/lib/e11y/railtie.rb +52 -14
data/lib/e11y/registry.rb +306 -0
data/lib/e11y/reliability/circuit_breaker.rb +19 -21
data/lib/e11y/reliability/dlq/base.rb +71 -0
data/lib/e11y/reliability/dlq/file_adapter.rb +301 -0
data/lib/e11y/reliability/dlq/file_storage.rb +63 -34
data/lib/e11y/reliability/dlq/filter.rb +37 -54
data/lib/e11y/reliability/retry_handler.rb +26 -29
data/lib/e11y/reliability/retry_rate_limiter.rb +3 -11
data/lib/e11y/sampling/error_spike_detector.rb +0 -2
data/lib/e11y/sampling/load_monitor.rb +5 -9
data/lib/e11y/sampling/stratified_tracker.rb +18 -0
data/lib/e11y/self_monitoring/buffer_monitor.rb +2 -0
data/lib/e11y/self_monitoring/performance_monitor.rb +19 -61
data/lib/e11y/self_monitoring/reliability_monitor.rb +4 -74
data/lib/e11y/slo/config_loader.rb +40 -0
data/lib/e11y/slo/config_validator.rb +58 -0
data/lib/e11y/slo/dashboard_generator.rb +122 -0
data/lib/e11y/slo/event_driven.rb +8 -0
data/lib/e11y/slo/tracker.rb +31 -4
data/lib/e11y/testing/have_tracked_event_matcher.rb +190 -0
data/lib/e11y/testing/rspec_matchers.rb +21 -0
data/lib/e11y/testing/snapshot_matcher.rb +86 -0
data/lib/e11y/trace_context/sampler.rb +35 -0
data/lib/e11y/tracing/faraday_middleware.rb +31 -0
data/lib/e11y/tracing/net_http_patch.rb +33 -0
data/lib/e11y/tracing/propagator.rb +144 -0
data/lib/e11y/tracing.rb +47 -0
data/lib/e11y/version.rb +1 -1
data/lib/e11y/versioning/version_extractor.rb +32 -0
data/lib/e11y.rb +123 -266
data/lib/generators/e11y/event/event_generator.rb +22 -0
data/lib/generators/e11y/event/templates/event.rb.tt +16 -0
data/lib/generators/e11y/grafana_dashboard/grafana_dashboard_generator.rb +30 -0
data/lib/generators/e11y/grafana_dashboard/templates/e11y_dashboard.json +81 -0
data/lib/generators/e11y/install/install_generator.rb +34 -0
data/lib/generators/e11y/install/templates/e11y.rb +239 -0
data/lib/generators/e11y/prometheus_alerts/prometheus_alerts_generator.rb +29 -0
data/lib/generators/e11y/prometheus_alerts/templates/e11y_alerts.yml +28 -0
data/lib/tasks/e11y_docs.rake +30 -0
data/lib/tasks/e11y_events.rake +71 -0
data/lib/tasks/e11y_lint.rake +91 -0
data/lib/tasks/e11y_slo.rake +29 -0
metadata +186 -39
data/docs/ADR-003-slo-observability.md +0 -3337
data/docs/ADR-010-developer-experience.md +0 -2166
data/docs/API-REFERENCE-L28.md +0 -914
data/docs/COMPREHENSIVE-CONFIGURATION.md +0 -2366
data/docs/CONTRIBUTING.md +0 -312
data/docs/IMPLEMENTATION_NOTES.md +0 -2804
data/docs/IMPLEMENTATION_PLAN.md +0 -1971
data/docs/IMPLEMENTATION_PLAN_ARCHITECTURE.md +0 -586
data/docs/PLAN.md +0 -148
data/docs/README.md +0 -296
data/docs/design/00-memory-optimization.md +0 -593
data/docs/guides/MIGRATION-L27-L28.md +0 -692
data/docs/guides/PERFORMANCE-BENCHMARKS.md +0 -434
data/docs/guides/README.md +0 -44
data/docs/use_cases/UC-003-pattern-based-metrics.md +0 -1627
data/lib/e11y/adapters/registry.rb +0 -141

data/docs/use_cases/UC-013-high-cardinality-protection.md CHANGED Viewed

@@ -13,12 +13,10 @@
 **The $68,000/month mistake:**
 ```ruby
-# ❌ CATASTROPHIC: Using user_id as metric label
-E11y.configure do |config|
-  config.metrics do
-    counter_for pattern: 'user.action',
-                name: 'user_actions_total',
-                tags: [:user_id, :action_type]  # ← 💸💸💸
+# ❌ CATASTROPHIC: Using user_id as metric label (event-level example - avoid!)
+class Events::UserAction < E11y::Event::Base
+  metrics do
+    counter :user_actions_total, tags: [:user_id, :action_type]  # ← 💸💸💸 DON'T
   end
 end
@@ -35,42 +33,24 @@ end
 - **Query timeouts** (PromQL queries take 30+ seconds)
 - **Incident during Black Friday** (metrics system collapsed)
-### E11y Solution
+### E11y Solution (Event-Level)
-**4-Layer Defense System + 99% Cost Reduction:**
+**Use low-cardinality tags in event-level metrics:**
 ```ruby
-# ✅ SAFE: Aggregate user_id → user_segment
-E11y.configure do |config|
-  config.metrics do
-    # Layer 1: Denylist (hard block)
-    forbidden_labels :user_id, :order_id, :session_id, :trace_id
-    # Layer 2: Safe aggregation
-    counter_for pattern: 'user.action',
-                name: 'user_actions_total',
-                tags: [:user_segment, :action_type],  # ← 3 segments × 10 actions = 30 series
-                tag_extractors: {
-                  user_segment: ->(event) {
-                    user = User.find(event.payload[:user_id])
-                    user.segment  # 'free', 'paid', 'enterprise'
-                  }
-                }
-    # Layer 3: Per-metric limits
-    cardinality_limit_for 'user_actions_total', max: 100
-    # Layer 4: Dynamic monitoring
-    cardinality_monitoring do
-      warn_threshold 0.7   # Alert at 70%
-      auto_aggregate true  # Auto-fix if exceeded
-    end
+# ✅ SAFE: Use user_segment, not user_id
+class Events::UserAction < E11y::Event::Base
+  schema do
+    required(:user_id).filled(:string)
+    required(:action_type).filled(:string)
+    required(:user_segment).filled(:string)  # pre-aggregated: 'free', 'paid', 'enterprise'
+  end
+  metrics do
+    counter :user_actions_total, tags: [:user_segment, :action_type]  # 3 × 10 = 30 series
   end
 end
-# Result:
-# - 200 services × 10 segments × 5 dimensions = 10,000 series
-# - Datadog cost: $680/month
-# - Savings: $67,320/month (99% reduction) ✅
+# Result: low cardinality, manageable cost
 ```
 ---
@@ -283,7 +263,7 @@ end
 ### Layer Processing Flow
-> **Implementation:** See [ADR-002 Section 4.1: Four-Layer Defense](../ADR-002-metrics-yabeda.md#41-four-layer-defense) for detailed architecture.
+> **Implementation:** See [ADR-002 Section 4.1: Four-Layer Defense](../architecture/ADR-002-metrics-yabeda.md#41-four-layer-defense) for detailed architecture.
 **🔑 Critical: Layers execute SEQUENTIALLY (not simultaneously).**
@@ -399,14 +379,14 @@ Events::OrderPlaced.track(
 ### Layer 1: Denylist (Hard Block)
 > **⚠️ CRITICAL: Adapter-Specific Filtering**
-> **Implementation:** See [ADR-002 Section 4.2: Layer 1 - Universal Denylist](../ADR-002-metrics-yabeda.md#42-layer-1-universal-denylist) for detailed architecture.
+> **Implementation:** See [ADR-002 Section 4.2: Layer 1 - Universal Denylist](../architecture/ADR-002-metrics-yabeda.md#42-layer-1-universal-denylist) for detailed architecture.
 >
 > **Cardinality protection (denylist/allowlist) applies ONLY to metrics adapters (Yabeda/Prometheus), NOT to other adapters:**
 >
 > | Adapter Type | Denylist Applied? | Why? |
 > |---|---|---|
 > | **Metrics (Yabeda/Prometheus)** | ✅ YES | High-cardinality labels cause memory explosion in time-series databases (1M labels = 1GB RAM). |
-> | **Logs (Loki)** | ❌ NO | Loki is designed for high-cardinality labels and uses different indexing strategy. Full payload preserved. |
+> | **Logs (Loki)** | Optional | Loki labels = event_name + severity (low cardinality). Payload (user_id, etc.) in log line. Optional `enable_cardinality_protection` for labels. |
 > | **Errors (Sentry)** | ❌ NO | Sentry needs full context for debugging. High cardinality is acceptable for error tracking. |
 > | **Audit (File/PostgreSQL)** | ❌ NO | Audit trails require complete, unfiltered data for compliance. |
 >
@@ -428,85 +408,11 @@ Events::OrderPlaced.track(
 > - ✅ **Compliance stays intact:** Audit logs remain complete and unfiltered
 > - ✅ **Best of both worlds:** Safety for metrics + completeness for logs/errors
-**Universal denylist - NEVER use these as labels (for metrics adapters):**
-```ruby
-E11y.configure do |config|
-  config.metrics do
-    # === UNBOUNDED IDENTIFIERS (FORBIDDEN) ===
-    forbidden_labels :user_id, :customer_id, :account_id,
-                     :order_id, :transaction_id, :invoice_id,
-                     :session_id, :request_id, :trace_id, :span_id
-    # === INFRASTRUCTURE (FORBIDDEN) ===
-    forbidden_labels :pod_uid, :container_id, :instance_id,
-                     :node_name  # If dynamic
-    # === NETWORK/HTTP (FORBIDDEN) ===
-    forbidden_labels :url,          # With query strings
-                     :ip_address,
-                     :user_agent,
-                     :hostname      # If ephemeral
-    # === TIME-BASED (FORBIDDEN) ===
-    forbidden_labels :timestamp, :created_at,
-                     :version      # Patch-level: 2.5.7234
-    # === ENFORCEMENT ===
-    enforcement :strict  # ERROR on forbidden label usage
-    # OR
-    enforcement :warn    # Log warning but allow
-    # OR
-    enforcement :aggregate  # Auto-aggregate to "_other"
-  end
-end
-# Usage:
-counter_for pattern: 'user.action',
-            tags: [:user_id]  # ← ERROR: "user_id is forbidden!"
-# Development warning:
-# [E11y ERROR] Metric 'user.action_total' uses forbidden label 'user_id'
-# Cardinality explosion risk! Use 'user_segment' instead.
-```
+**Avoid these as metric tags:** user_id, customer_id, order_id, session_id, trace_id, url, ip_address, timestamp.
 ---
-### Layer 2: Allowlist (Strict Mode)
-**Only allow explicitly safe labels:**
-```ruby
-E11y.configure do |config|
-  config.metrics do
-    # Strict mode: ONLY these labels allowed
-    allowed_labels_only true
-    # === BUSINESS DIMENSIONS (< 50 values) ===
-    allowed_labels :status,          # pending, paid, failed (4-10 values)
-                   :payment_method,  # card, paypal (5-20 values)
-                   :plan_tier        # free, pro, enterprise (3-5 values)
-    # === INFRASTRUCTURE (< 20 values) ===
-    allowed_labels :env,             # production, staging, dev (3 values)
-                   :region,          # us-east, eu-west (5-20 values)
-                   :cluster,         # main, backup (2-5 values)
-                   :availability_zone
-    # === HTTP/SERVICE (< 100 values) ===
-    allowed_labels :http_method,     # GET, POST, PUT, DELETE (10 values)
-                   :http_status_code, # 200, 404, 500 (50 values)
-                   :controller_action # UsersController#show (20-100 values)
-  end
-end
-# Usage:
-counter_for pattern: 'order.paid',
-            tags: [:currency]  # ← ERROR: "currency not in allowlist!"
-# Must explicitly allow:
-allowed_labels :currency  # USD, EUR, GBP (3-20 values)
-```
+### Layer 2: Safe Labels
 **Rule of thumb:**
 - ✅ **< 10 values** - Always safe
@@ -517,55 +423,11 @@ allowed_labels :currency  # USD, EUR, GBP (3-20 values)
 ### Layer 3: Per-Metric Limits
-**Set cardinality limits per metric:**
-```ruby
-E11y.configure do |config|
-  config.metrics do
-    # === GLOBAL DEFAULT ===
-    default_cardinality_limit 1_000
-    # === PER-METRIC LIMITS ===
-    cardinality_limit_for 'http.requests' do
-      max_cardinality 2_000           # Higher limit for this metric
-      overflow_strategy :drop         # → Drop overflow events
-      overflow_sample_rate 0.1        # Sample 10% of overflow events
-    end
-    cardinality_limit_for 'user.actions' do
-      max_cardinality 500             # Lower limit
-      overflow_strategy :drop         # Drop overflow events
-      overflow_alert true             # Alert on overflow
-    end
-    cardinality_limit_for 'orders.paid' do
-      max_cardinality 100
-      overflow_strategy :alert        # Alert ops team + drop
-    end
-  end
-end
-# How it works:
-# 1. Track unique label combinations per metric
-# 2. If exceeds limit:
-#    - :drop → Discard overflow events (increment drop counter)
-#    - :alert → Alert ops team + drop
-#
-# NOTE: For aggregation/relabeling (e.g., user_id → user_segment),
-#       use tag_extractors (see "Aggregation" section below),
-#       NOT overflow_strategy.
-```
-**Overflow strategies:**
-| Strategy | Behavior | Use Case |
-|----------|----------|----------|
-| `:drop` | Discard overflow events | Default, simplest |
-| `:alert` | Alert ops team + drop | Critical metrics |
+**Yabeda adapter supports cardinality limits** via its config. Use low-cardinality tags in event-level metrics.
 #### Thread Safety
-> **Implementation:** See [ADR-002 Section 4.4: Layer 3 - Per-Metric Cardinality Limits](../ADR-002-metrics-yabeda.md#44-layer-3-per-metric-cardinality-limits) for detailed architecture.
+> **Implementation:** See [ADR-002 Section 4.4: Layer 3 - Per-Metric Cardinality Limits](../architecture/ADR-002-metrics-yabeda.md#44-layer-3-per-metric-cardinality-limits) for detailed architecture.
 >
 > **Sources:**
 > - [Ruby Hash thread safety - Stack Overflow](https://stackoverflow.com/questions/22674498/thread-safety-for-hashes-in-ruby)
@@ -716,7 +578,7 @@ end
 #### Action Selection Guide
-> **Implementation:** See [ADR-002 Section 4.5: Layer 4 - Dynamic Actions](../ADR-002-metrics-yabeda.md#45-layer-4-dynamic-actions) for detailed architecture.
+> **Implementation:** See [ADR-002 Section 4.5: Layer 4 - Dynamic Actions](../architecture/ADR-002-metrics-yabeda.md#45-layer-4-dynamic-actions) for detailed architecture.
 **🎯 When cardinality limit is exceeded, which action should you choose?**
@@ -862,7 +724,7 @@ rate(e11y_cardinality_actions_total{action="alert"}[5m])
 ### 1. Aggregation (Best ROI - 99% Reduction)
-> **Note:** This section describes **relabeling/normalization** (e.g., `user_id` → `user_segment`) via `tag_extractors`, which is different from `overflow_strategy`. Aggregation reduces cardinality **before** metrics are created, while overflow handling (`drop`/`alert`) deals with exceeding limits **after** creation. See [ADR-002 Section 4.5](../ADR-002-metrics-yabeda.md#45-cardinality-protection) for implementation details.
+> **Note:** This section describes **relabeling/normalization** (e.g., `user_id` → `user_segment`) via `tag_extractors`, which is different from `overflow_strategy`. Aggregation reduces cardinality **before** metrics are created, while overflow handling (`drop`/`alert`) deals with exceeding limits **after** creation. See [ADR-002 Section 4.5](../architecture/ADR-002-metrics-yabeda.md#45-cardinality-protection) for implementation details.
 **Problem:** 1M users = 1M metric series
@@ -1039,7 +901,7 @@ end
 ### 6. Universal Cardinality Protection (C04 Resolution) ⚠️ CRITICAL
 > **⚠️ CRITICAL: C04 Conflict Resolution - Cardinality Protection for ALL Backends**
-> **See:** [ADR-009 Section 8](../ADR-009-cost-optimization.md#8-cardinality-protection-c04-resolution--critical) for detailed architecture and cost impact analysis.
+> **See:** [ADR-009 Section 8](../architecture/ADR-009-cost-optimization.md#8-cardinality-protection-c04-resolution--critical) for detailed architecture and cost impact analysis.
 > **Problem:** Original UC-013 cardinality protection applied ONLY to Yabeda/Prometheus metrics, but NOT to OpenTelemetry span attributes or Loki log labels. High-cardinality values (`user_id`, `order_id`) bypassed protection and caused cost explosions in OTLP backends (Datadog, Honeycomb).
 > **Solution:** Universal `CardinalityFilter` middleware applies protection to **ALL backends** (Yabeda, OpenTelemetry, Loki) with optional per-backend overrides.
@@ -1623,7 +1485,7 @@ after = calculate_cardinality_cost(
 ## ❓ Frequently Asked Questions
-> **Technical Details:** See [ADR-002 Section 11: FAQ & Critical Clarifications](../ADR-002-metrics-yabeda.md#11-faq--critical-clarifications) for architectural rationale.
+> **Technical Details:** See [ADR-002 Section 11: FAQ & Critical Clarifications](../architecture/ADR-002-metrics-yabeda.md#11-faq--critical-clarifications) for architectural rationale.
 ### Q1: Does cardinality protection apply to all my logs and metrics?
@@ -2097,7 +1959,7 @@ end
 ## 📚 Related Use Cases
-- **[UC-003: Pattern-Based Metrics](./UC-003-pattern-based-metrics.md)** - Auto-generate metrics
+- **[UC-003: Event Metrics](./UC-003-event-metrics.md)** - Metrics in event classes
 - **[UC-008: OpenTelemetry Integration](./UC-008-opentelemetry-integration.md)** - OTLP cardinality protection (C04)
 - **[UC-015: Cost Optimization](./UC-015-cost-optimization.md)** - Reduce observability costs

data/docs/use_cases/UC-014-adaptive-sampling.md CHANGED Viewed

@@ -1026,7 +1026,7 @@ end
 ### Strategy 8: Stratified Sampling for Accurate SLO (C11 Resolution) ⚠️
-> **Reference:** See [ADR-009 §3.7: Stratified Sampling for SLO Accuracy](../ADR-009-cost-optimization.md#37-stratified-sampling-for-slo-accuracy-c11-resolution) for full architecture and [UC-004: SLO Tracking with Sampling Correction](./UC-004-zero-config-slo-tracking.md#sampling-correction-for-accurate-slo-c11-resolution) for SLO calculation details.
+> **Reference:** See [ADR-009 §3.7: Stratified Sampling for SLO Accuracy](../architecture/ADR-009-cost-optimization.md#37-stratified-sampling-for-slo-accuracy-c11-resolution) for full architecture and [UC-004: SLO Tracking with Sampling Correction](./UC-004-zero-config-slo-tracking.md#sampling-correction-for-accurate-slo-c11-resolution) for SLO calculation details.
 **Problem with Random Sampling:** Breaks SLO metrics! Errors are rare (5%) → random 10% sampling drops 90% of errors → SLO appears better than reality.
@@ -1046,7 +1046,7 @@ E11y.configure do |config|
       stratified_rates do
         error 1.0    # 100% - Keep ALL errors (critical for SLO!)
         warn  0.5    # 50%  - Medium priority
-        info  0.1    # 10%  - Low priority (успешные запросы)
+        info  0.1    # 10%  - Low priority (successful requests)
         debug 0.05   # 5%   - Very low priority
       end
     end

data/docs/use_cases/UC-015-cost-optimization.md CHANGED Viewed

@@ -56,12 +56,7 @@ E11y.configure do |config|
                       drop_empty_strings: true,
                       truncate_strings: 1000  # chars
-    # 5. Tiered storage (60% cheaper)
-    retention_tiers do
-      hot 7.days, storage: :loki       # Fast queries
-      warm 30.days, storage: :s3        # Slower, cheaper
-      cold 1.year, storage: :s3_glacier # Archive
-    end
+    # 5. Routing by retention_until — config.routing_rules (see Strategy 4)
     # 6. Smart routing (send only what's needed)
     routing do
@@ -79,13 +74,13 @@ end
 # Result:
 # - 100k events/sec → 10k events/sec (adaptive sampling)
 # - 2KB/event → 0.6KB/event (compression + minimization)
-# - 30 days hot storage → 7 days hot + 23 days warm (tiered)
+# - Short retention → stdout, long → Loki (routing by retention_until)
 # - Datadog: Only errors (3k/sec instead of 100k/sec)
 #
 # New monthly cost:
 # - Datadog: $3,000 → $500 (only errors)
 # - Loki: $10,368 → $1,200 (10% volume, 70% smaller, 7 days hot)
-# - S3: $200 (warm storage)
+# - Archival job (separate): exports by retention_until to cold storage
 # - Total: $1,900/month = $22,800/year
 #
 # SAVINGS: $160,416 - $22,800 = $137,616/year (86% reduction!)
@@ -95,7 +90,7 @@ end
 ## 🎯 Cost Optimization Strategies
-> **Note:** This UC focuses on proven, low-overhead optimizations. **Deduplication is intentionally NOT included** as a strategy. While it may seem like an obvious cost optimization, [ADR-009 Section 9.2.D](../ADR-009-cost-optimization.md#alternatives-considered) explains why it was rejected: high computational overhead (hash + Redis lookup per event), large memory cost (3.6GB for 1000 events/sec), false positives on legitimate retries, and debug confusion. Better alternatives (sampling + compression) achieve the same cost goals without these drawbacks.
+> **Note:** This UC focuses on proven, low-overhead optimizations. **Deduplication is intentionally NOT included** as a strategy. While it may seem like an obvious cost optimization, [ADR-009 Section 9.2.D](../architecture/ADR-009-cost-optimization.md#alternatives-considered) explains why it was rejected: high computational overhead (hash + Redis lookup per event), large memory cost (3.6GB for 1000 events/sec), false positives on legitimate retries, and debug confusion. Better alternatives (sampling + compression) achieve the same cost goals without these drawbacks.
 ### Strategy 1: Intelligent Sampling by Value
@@ -254,57 +249,34 @@ end
 ---
-### Strategy 4: Tiered Storage
+### Strategy 4: Routing by retention_until
-**Hot/warm/cold storage based on age:**
+**Route events to adapters based on retention (at collection):**
 ```ruby
+# Events declare retention_period; retention_until is auto-calculated in payload.
+# Routing rules use it to choose adapter — short retention → cheap storage.
 E11y.configure do |config|
-  config.cost_optimization do
-    tiered_storage do
-      # HOT: Fast queries, expensive ($0.20/GB/month)
-      hot_tier do
-        duration 7.days
-        storage :loki  # OR :elasticsearch
-        query_performance :fast
-      end
-      # WARM: Slower queries, cheaper ($0.05/GB/month)
-      warm_tier do
-        duration 30.days
-        storage :s3
-        query_performance :medium
-        compression :zstd  # Compress when moving to warm
-      end
-      # COLD: Archive, very cheap ($0.004/GB/month)
-      cold_tier do
-        duration 1.year
-        storage :s3_glacier
-        query_performance :slow  # Minutes to hours
-        compression :zstd
-      end
-      # Auto-archival
-      auto_archive enabled: true,
-                   schedule: '0 2 * * *'  # 2 AM daily
-    end
-  end
+  config.routing_rules = [
+    ->(event) { :audit_encrypted if event[:audit_event] },
+    ->(event) {
+      return :loki unless event[:retention_until]
+      days = (Time.parse(event[:retention_until]) - Time.now) / 86400
+      days <= 7 ? :stdout : :loki  # Short → free, long → Loki
+    }
+  ]
+  config.fallback_adapters = [:loki]
 end
-# Cost comparison (per 1TB):
-# Hot (Loki): $0.20/GB × 1000 = $200/month
-# Warm (S3): $0.05/GB × 1000 = $50/month
-# Cold (Glacier): $0.004/GB × 1000 = $4/month
-#
-# Strategy:
-# - 7 days hot (for active debugging)
-# - 30 days warm (for recent lookups)
-# - 1 year cold (for compliance)
-#
-# Cost for 30 days of data:
-# Before: 30 days × $200 = $6,000/month
-# After: (7 × $200) + (23 × $50) + (0 × $4) = $1,400 + $1,150 = $2,550/month
-# Savings: $3,450/month (58% reduction!)
+# Event classes declare retention:
+#   class DebugEvent < E11y::Event::Base
+#     retention_period 7.days   # → stdout
+#   end
+#   class AuditEvent < E11y::Event::Base
+#     retention_period 7.years  # → Loki (archival job exports later)
+#   end
+# Cost: Short retention events never hit Loki. Archival job (separate) filters by
+# retention_until for cold storage. Savings: ~58% vs all-events-to-Loki.
 ```
 ---
@@ -324,11 +296,11 @@ E11y.configure do |config|
       # High-value transactions → All (audit + analytics)
       route event_patterns: ['payment.*', 'order.*'],
             when: ->(e) { e.payload[:amount].to_i > 1000 },
-            to: [:datadog, :loki, :s3_archive]
+            to: [:datadog, :loki]
       # Security events → Specific SIEM
       route event_patterns: ['security.*', 'audit.*'],
-            to: [:splunk, :s3_archive]
+            to: [:splunk]
       # Debug events → Only Loki (no expensive Datadog)
       route severities: [:debug],
@@ -356,50 +328,25 @@ end
 ---
-### Strategy 6: Retention-Aware Tagging
+### Strategy 6: retention_period DSL
-**Tag events with retention requirements:**
+**Declare retention per event; routing uses retention_until:**
 ```ruby
-E11y.configure do |config|
-  config.cost_optimization do
-    retention_aware_tagging do
-      # Auto-tag events with retention hints
-      tag_with_retention do
-        # Compliance events: Long retention
-        when_pattern 'audit.*', 'gdpr.*', retention: 7.years
-        # Financial: Long retention
-        when_pattern 'payment.*', 'transaction.*', retention: 7.years
-        # Errors: Medium retention
-        when_severity :error, :fatal, retention: 90.days
-        # Debug: Short retention
-        when_severity :debug, retention: 7.days
-        # Default
-        default_retention 30.days
-      end
-      # Backend respects retention tags
-      backends do
-        loki retention_based: true,
-             max_retention: 30.days
-        s3_archive retention_based: true,
-                   max_retention: 7.years
-      end
-    end
-  end
+# Event-level retention (used by routing_rules + archival job)
+class DebugEvent < E11y::Event::Base
+  retention_period 7.days
 end
-# Result:
-# - Debug events: 7 days in Loki (cheap)
-# - Errors: 90 days in Loki
-# - Compliance: 7 years in S3 Glacier (very cheap)
-# - Default: 30 days in Loki
-#
-# Cost optimization: Store data only as long as needed!
+class PaymentEvent < E11y::Event::Base
+  retention_period 7.years
+end
+class OrderEvent < E11y::Event::Base
+  # Uses config.default_retention_period (30 days)
+end
+# retention_until is auto-calculated in payload. Routing (Strategy 4) and
+# archival job both use it. No separate tagging — one field, two consumers.
 ```
 ---
@@ -641,7 +588,7 @@ end
 config.cost_optimization do
   intelligent_sampling { ... }  # 90% reduction
   compression { ... }           # 70% smaller payloads
-  tiered_storage { ... }        # 60% cheaper storage
+  routing_rules (by retention_until)  # Short → stdout, long → Loki
   smart_routing { ... }         # 50% fewer expensive destinations
 end
 # Combined: ~95% cost reduction!
@@ -653,7 +600,7 @@ end
 # Dashboard: "Cost Optimization Savings"
 # - Monthly savings: $X
 # - YTD savings: $Y
-# - Optimization breakdown (sampling, compression, tiered storage)
+# - Optimization breakdown (sampling, compression, routing)
 ```
 **3. Test in staging first**