npm - @umacloud/knowledge - Versions diffs - 1.0.1 - Mend

@umacloud/knowledge 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (418) hide show

package/00-governance/governance-capabilities.md +557 -0
package/00-governance/knowledge-map.md +39 -0
package/00-governance/maintenance-policy.md +76 -0
package/00-governance/review-checklist.md +81 -0
package/README.md +13 -0
package/ai/01-standards/agent-development-complete.md +691 -0
package/ai/01-standards/llm-application-complete.md +488 -0
package/ai/01-standards/mlops-complete.md +798 -0
package/ai/01-standards/prompt-engineering-complete.md +646 -0
package/ai/01-standards/rag-architecture-complete.md +649 -0
package/ai/02-playbooks/llm-evaluation-playbook.md +847 -0
package/ai/03-checklists/ai-project-checklist.md +215 -0
package/ai/04-antipatterns/ai-antipatterns.md +661 -0
package/ai/05-cases/case-rag-production.md +147 -0
package/ai/06-glossary/ai-glossary.md +162 -0
package/ai/agent-evaluation-benchmark.md +53 -0
package/ai/ai-agent-memory-context-management.md +41 -0
package/ai/ai-cost-capacity-optimization-playbook.md +42 -0
package/ai/ai-data-security-and-compliance-playbook.md +37 -0
package/ai/ai-domain-index-and-checklist.md +40 -0
package/ai/ai-governance-maturity-model.md +50 -0
package/ai/ai-model-selection-and-routing-strategy.md +47 -0
package/ai/ai-observability-and-oncall-runbook.md +52 -0
package/ai/ai-rag-engineering-playbook.md +42 -0
package/ai/ai-red-team-and-safety-evaluation.md +42 -0
package/ai/ai-release-readiness-and-rollback-gate.md +42 -0
package/ai/llm-agent-engineering-deep-dive.md +57 -0
package/ai/prompt-and-tool-guardrails.md +52 -0
package/api/01-standards/enterprise-api-standards.md +198 -0
package/api/01-standards/rest-api-design-guide.md +63 -0
package/api/02-playbooks/api-pagination-playbook.md +93 -0
package/api/02-playbooks/graphql-production-playbook.md +176 -0
package/api/03-checklists/api-review-checklist.md +55 -0
package/api/04-antipatterns/api-antipatterns.md +112 -0
package/architecture/01-standards/api-gateway-patterns.md +496 -0
package/architecture/01-standards/cloud-native-patterns.md +644 -0
package/architecture/01-standards/distributed-systems-patterns.md +591 -0
package/architecture/01-standards/event-driven-architecture.md +595 -0
package/architecture/01-standards/microservices-patterns-complete.md +968 -0
package/architecture/01-standards/microservices-patterns.md +495 -0
package/architecture/01-standards/system-design-interview.md +664 -0
package/architecture/02-playbooks/microservices-patterns-playbook.md +137 -0
package/architecture/02-playbooks/migration-playbook.md +780 -0
package/architecture/02-playbooks/system-design-playbook.md +779 -0
package/architecture/03-checklists/architecture-decision-checklist.md +297 -0
package/architecture/04-antipatterns/architecture-antipatterns.md +417 -0
package/architecture/05-cases/case-netflix-microservices.md +413 -0
package/architecture/06-glossary/architecture-glossary.md +164 -0
package/architecture/adr-template-and-examples.md +38 -0
package/architecture/api-gateway-deep-dive.md +1291 -0
package/architecture/configuration-management.md +1162 -0
package/architecture/distributed-transactions.md +1220 -0
package/architecture/microservices-complete.md +735 -0
package/architecture/resilience-and-disaster-patterns.md +37 -0
package/architecture/service-governance.md +1198 -0
package/architecture/system-architecture-deep-dive.md +37 -0
package/backend/01-standards/analytics-and-growth.md +65 -0
package/backend/01-standards/api-and-error-conventions.md +120 -0
package/backend/01-standards/application-layering-and-packaging.md +160 -0
package/backend/01-standards/auth-implementation.md +104 -0
package/backend/01-standards/backend-framework-idioms.md +74 -0
package/backend/01-standards/background-jobs-and-async.md +66 -0
package/backend/01-standards/caching-strategies-complete.md +390 -0
package/backend/01-standards/config-and-observability.md +77 -0
package/backend/01-standards/data-modeling-and-persistence.md +94 -0
package/backend/01-standards/django-complete.md +1765 -0
package/backend/01-standards/email-and-notifications.md +64 -0
package/backend/01-standards/fastapi-complete.md +925 -0
package/backend/01-standards/file-upload-and-storage.md +66 -0
package/backend/01-standards/graphql-api-complete.md +416 -0
package/backend/01-standards/llm-application-standard.md +78 -0
package/backend/01-standards/message-queue-patterns.md +379 -0
package/backend/01-standards/microservices-and-distributed.md +78 -0
package/backend/01-standards/nestjs-complete.md +2167 -0
package/backend/01-standards/payment-integration.md +80 -0
package/backend/01-standards/rate-limiting-complete.md +451 -0
package/backend/01-standards/realtime-and-websocket.md +65 -0
package/backend/01-standards/search-and-filtering.md +64 -0
package/backend/01-standards/spring-boot-complete.md +445 -0
package/backend/02-playbooks/api-design-playbook.md +718 -0
package/backend/02-playbooks/email-send-playbook.md +130 -0
package/backend/02-playbooks/file-upload-s3-playbook.md +153 -0
package/backend/02-playbooks/typescript-enterprise-playbook.md +133 -0
package/backend/02-playbooks/websocket-realtime-playbook.md +154 -0
package/backend/03-checklists/api-launch-checklist.md +189 -0
package/backend/04-antipatterns/backend-antipatterns.md +1051 -0
package/blockchain/01-standards/blockchain-basics.md +557 -0
package/blockchain/01-standards/smart-contract-development.md +1315 -0
package/cicd/01-standards/deployment-and-delivery-standard.md +96 -0
package/cicd/01-standards/github-actions-complete.md +473 -0
package/cicd/01-standards/release-and-store-submission.md +75 -0
package/cicd/02-playbooks/cicd-pipeline-playbook.md +144 -0
package/cicd/02-playbooks/release-management-playbook.md +605 -0
package/cicd/03-checklists/pipeline-security-checklist.md +168 -0
package/cicd/04-antipatterns/cicd-antipatterns.md +589 -0
package/cicd/05-cases/case-deployment-automation.md +221 -0
package/cicd/05-cases/case-gitops-transformation.md +212 -0
package/cicd/06-glossary/cicd-glossary.md +114 -0
package/cicd/cicd-blueprint-deep-dive.md +38 -0
package/cicd/release-readiness-gate.md +37 -0
package/cloud-native/01-standards/container-security.md +741 -0
package/cloud-native/01-standards/kubernetes-complete.md +812 -0
package/cloud-native/02-playbooks/api-gateway-playbook.md +155 -0
package/cloud-native/02-playbooks/gitops-with-argocd.md +760 -0
package/cloud-native/02-playbooks/k8s-troubleshooting-playbook.md +1942 -0
package/cloud-native/02-playbooks/message-queue-playbook.md +129 -0
package/cloud-native/02-playbooks/multicloud-governance.md +726 -0
package/cloud-native/02-playbooks/serverless-patterns.md +788 -0
package/cloud-native/02-playbooks/service-mesh-playbook.md +612 -0
package/cloud-native/02-playbooks/terraform-iac-playbook.md +143 -0
package/cloud-native/03-checklists/container-security-checklist.md +431 -0
package/cloud-native/03-checklists/k8s-production-readiness-checklist.md +460 -0
package/cloud-native/04-antipatterns/container-antipatterns.md +660 -0
package/cloud-native/04-antipatterns/k8s-antipatterns.md +743 -0
package/cloud-native/05-cases/case-k8s-migration.md +478 -0
package/cloud-native/05-cases/case-k8s-scaling.md +642 -0
package/cloud-native/05-cases/case-k8s-security-incident.md +397 -0
package/cloud-native/06-glossary/cloud-native-glossary.md +337 -0
package/cross-platform/01-standards/cross-platform-frameworks.md +83 -0
package/cross-platform/01-standards/platform-selection-and-architecture.md +77 -0
package/data/01-standards/elasticsearch-complete.md +2098 -0
package/data/01-standards/postgresql-complete.md +1613 -0
package/data/01-standards/redis-complete.md +1527 -0
package/data/02-playbooks/database-optimization-playbook.md +403 -0
package/data/02-playbooks/elasticsearch-production-playbook.md +132 -0
package/data/03-checklists/database-launch-checklist.md +187 -0
package/data/04-antipatterns/database-antipatterns.md +873 -0
package/data/05-cases/case-database-migration.md +310 -0
package/data/06-glossary/database-glossary.md +440 -0
package/data/data-governance-and-modeling-deep-dive.md +39 -0
package/data-engineering/01-standards/airflow-complete.md +523 -0
package/data-engineering/01-standards/kafka-complete.md +1521 -0
package/data-engineering/02-playbooks/spark-etl-playbook.md +496 -0
package/data-engineering/03-checklists/pipeline-launch-checklist.md +194 -0
package/data-engineering/04-antipatterns/data-pipeline-antipatterns.md +684 -0
package/data-engineering/05-cases/case-real-time-pipeline.md +355 -0
package/data-engineering/06-glossary/data-engineering-glossary.md +429 -0
package/database/01-standards/database-schema-standards.md +147 -0
package/database/02-playbooks/postgresql-optimization-quick.md +52 -0
package/database/02-playbooks/postgresql-performance-optimization.md +58 -0
package/database/02-playbooks/postgresql-production-playbook.md +146 -0
package/database/02-playbooks/redis-caching-playbook.md +117 -0
package/database/03-checklists/database-review-checklist.md +50 -0
package/database/04-antipatterns/database-antipatterns.md +112 -0
package/design/01-standards/ui-design-system-complete.md +423 -0
package/design/02-playbooks/design-handoff-playbook.md +254 -0
package/design/02-playbooks/design-review-playbook.md +388 -0
package/design/03-checklists/design-review-checklist.md +246 -0
package/design/04-antipatterns/design-antipatterns.md +378 -0
package/design/05-cases/case-design-system-adoption.md +328 -0
package/design/06-glossary/design-glossary.md +329 -0
package/design/ui-full-lifecycle-cross-platform-playbook.md +571 -0
package/design/ux-system-deep-dive.md +38 -0
package/design-systems/00-craft-rules.md +71 -0
package/design-systems/aesthetic-families.md +43 -0
package/design-systems/anti-ai-slop.md +162 -0
package/design-systems/bold-geometric.md +120 -0
package/design-systems/brutalist-bold.md +103 -0
package/design-systems/editorial-clean.md +109 -0
package/design-systems/glass-aurora.md +108 -0
package/design-systems/modern-minimal.md +145 -0
package/design-systems/premium-luxury.md +106 -0
package/design-systems/product-type-design-map.md +48 -0
package/design-systems/soft-warm.md +123 -0
package/design-systems/tech-utility.md +113 -0
package/desktop/01-standards/desktop-app-standard.md +72 -0
package/desktop/01-standards/desktop-design.md +71 -0
package/development/00-governance/document-template.md +41 -0
package/development/01-standards/api-versioning-strategies.md +432 -0
package/development/01-standards/authentication-patterns-complete.md +479 -0
package/development/01-standards/css-architecture-complete.md +550 -0
package/development/01-standards/database-migration-strategies.md +484 -0
package/development/01-standards/elasticsearch-complete.md +347 -0
package/development/01-standards/git-complete.md +371 -0
package/development/01-standards/golang-complete.md +1565 -0
package/development/01-standards/graphql-complete.md +298 -0
package/development/01-standards/javascript-bundlers-complete.md +469 -0
package/development/01-standards/javascript-typescript-complete.md +528 -0
package/development/01-standards/jest-complete.md +275 -0
package/development/01-standards/linux-complete.md +234 -0
package/development/01-standards/logging-observability-complete.md +526 -0
package/development/01-standards/microservices-communication.md +502 -0
package/development/01-standards/mongodb-complete.md +406 -0
package/development/01-standards/oauth2-complete.md +285 -0
package/development/01-standards/performance-optimization-complete.md +289 -0
package/development/01-standards/playwright-complete.md +247 -0
package/development/01-standards/postgresql-complete.md +456 -0
package/development/01-standards/pytest-complete.md +340 -0
package/development/01-standards/python-async-programming.md +902 -0
package/development/01-standards/python-complete.md +956 -0
package/development/01-standards/python-decorators-complete.md +799 -0
package/development/01-standards/python-design-patterns.md +2854 -0
package/development/01-standards/python-packaging-distribution.md +420 -0
package/development/01-standards/python-testing-strategies.md +607 -0
package/development/01-standards/python-web-frameworks-comparison.md +471 -0
package/development/01-standards/redis-complete.md +317 -0
package/development/01-standards/rest-api-complete.md +316 -0
package/development/01-standards/rust-complete.md +578 -0
package/development/01-standards/typescript-advanced-types.md +1513 -0
package/development/01-standards/web-security-complete.md +292 -0
package/development/02-playbooks/api-design-playbook.md +810 -0
package/development/02-playbooks/database-migration-playbook.md +580 -0
package/development/02-playbooks/debugging-playbook.md +692 -0
package/development/02-playbooks/feature-delivery-playbook.md +430 -0
package/development/02-playbooks/incident-hotfix-playbook.md +387 -0
package/development/02-playbooks/performance-optimization-playbook.md +531 -0
package/development/02-playbooks/performance-tuning-playbook.md +652 -0
package/development/02-playbooks/refactor-playbook.md +403 -0
package/development/02-playbooks/release-playbook.md +469 -0
package/development/03-checklists/architecture-review-checklist.md +168 -0
package/development/03-checklists/data-migration-checklist.md +157 -0
package/development/03-checklists/oncall-handover-checklist.md +173 -0
package/development/03-checklists/pr-checklist.md +158 -0
package/development/03-checklists/production-readiness-checklist.md +190 -0
package/development/03-checklists/release-readiness-checklist.md +154 -0
package/development/03-checklists/security-review-checklist.md +182 -0
package/development/04-antipatterns/api-antipatterns.md +657 -0
package/development/04-antipatterns/architecture-antipatterns.md +686 -0
package/development/04-antipatterns/backend-antipatterns.md +648 -0
package/development/04-antipatterns/cicd-antipatterns.md +540 -0
package/development/04-antipatterns/code-smell-antipatterns.md +571 -0
package/development/04-antipatterns/data-antipatterns.md +658 -0
package/development/04-antipatterns/database-antipatterns.md +578 -0
package/development/04-antipatterns/frontend-antipatterns.md +635 -0
package/development/04-antipatterns/reliability-antipatterns.md +700 -0
package/development/04-antipatterns/security-antipatterns.md +747 -0
package/development/05-cases/case-api-version-migration.md +428 -0
package/development/05-cases/case-authorization-hardening.md +383 -0
package/development/05-cases/case-bluegreen-rollback.md +466 -0
package/development/05-cases/case-cache-snowball-protection.md +485 -0
package/development/05-cases/case-ci-cd-pipeline.md +544 -0
package/development/05-cases/case-database-scaling.md +500 -0
package/development/05-cases/case-db-hotspot-optimization.md +487 -0
package/development/05-cases/case-incident-mttr-reduction.md +563 -0
package/development/05-cases/case-microservice-migration.md +375 -0
package/development/05-cases/case-performance-optimization.md +406 -0
package/development/05-cases/case-security-incident-response.md +345 -0
package/development/06-glossary/full-stack-glossary.md +166 -0
package/development/09-maturity/quarterly-audit-template.md +35 -0
package/development/11-ui-excellence/ui-aesthetic-system.md +41 -0
package/development/11-ui-excellence/ui-engineering-excellence.md +435 -0
package/development/12-scenarios/development-scenarios-guide.md +565 -0
package/development/13-implementation-assets/implementation-toolkit.md +282 -0
package/development/13-implementation-assets/knowledge-gates-execution.md +43 -0
package/development/14-full-lifecycle/software-lifecycle-gates.md +511 -0
package/development/15-lifecycle-templates/project-templates-collection.md +791 -0
package/development/api-contract-and-versioning-guide.md +36 -0
package/development/api-governance-complete.md +43 -0
package/development/backend-engineering-complete.md +43 -0
package/development/code-review-quality-complete.md +43 -0
package/development/concurrency-reliability-complete.md +43 -0
package/development/database-engineering-complete.md +43 -0
package/development/engineering-effectiveness-complete.md +43 -0
package/development/engineering-standards-deep-dive.md +38 -0
package/development/frontend-engineering-complete.md +43 -0
package/development/performance-capacity-complete.md +43 -0
package/development/refactor-migration-complete.md +42 -0
package/development/refactoring-and-techdebt-playbook.md +37 -0
package/development/security-in-development-complete.md +43 -0
package/devops/01-standards/cicd-pipeline-complete.md +262 -0
package/devops/01-standards/docker-complete.md +1490 -0
package/devops/01-standards/github-actions-complete.md +337 -0
package/devops/01-standards/kubernetes-complete.md +638 -0
package/devops/01-standards/terraform-complete.md +2117 -0
package/devops/02-playbooks/docker-compose-playbook.md +233 -0
package/devops/02-playbooks/docker-k8s-production-playbook.md +186 -0
package/devops/02-playbooks/docker-production-playbook.md +952 -0
package/edge-iot/01-standards/edge-iot-complete.md +473 -0
package/experts/architect/api-design.md +178 -0
package/experts/architect/methodology.md +124 -0
package/experts/architect/security.md +75 -0
package/experts/backend-lead/methodology.md +216 -0
package/experts/devops/methodology.md +160 -0
package/experts/frontend-lead/methodology.md +178 -0
package/experts/product-manager/industry/ecommerce.md +43 -0
package/experts/product-manager/industry/saas.md +40 -0
package/experts/product-manager/methodology.md +97 -0
package/experts/qa-lead/methodology.md +123 -0
package/experts/qa-lead/test-strategy.md +128 -0
package/experts/uiux-designer/methodology.md +125 -0
package/frontend/01-standards/accessibility-complete.md +532 -0
package/frontend/01-standards/accessibility-standard.md +74 -0
package/frontend/01-standards/admin-dashboard-and-crud.md +72 -0
package/frontend/01-standards/design-tokens-complete.md +444 -0
package/frontend/01-standards/forms-and-validation.md +77 -0
package/frontend/01-standards/frontend-architecture-and-layering.md +119 -0
package/frontend/01-standards/i18n-and-localization.md +65 -0
package/frontend/01-standards/nextjs-complete.md +451 -0
package/frontend/01-standards/react-complete.md +713 -0
package/frontend/01-standards/react-hooks-complete-guide.md +1100 -0
package/frontend/01-standards/react-hooks-complete.md +1171 -0
package/frontend/01-standards/seo-and-web-vitals.md +77 -0
package/frontend/01-standards/state-management-complete.md +444 -0
package/frontend/01-standards/vue-complete.md +499 -0
package/frontend/01-standards/vue3-complete.md +2002 -0
package/frontend/01-standards/web-framework-best-practices.md +64 -0
package/frontend/01-standards/web-performance-complete.md +495 -0
package/frontend/02-playbooks/accessibility-a11y-playbook.md +161 -0
package/frontend/02-playbooks/frontend-performance-playbook.md +707 -0
package/frontend/02-playbooks/i18n-internationalization-playbook.md +120 -0
package/frontend/02-playbooks/performance-optimization-playbook.md +163 -0
package/frontend/02-playbooks/react-nextjs-production-playbook.md +167 -0
package/frontend/02-playbooks/react-state-management-playbook.md +173 -0
package/frontend/03-checklists/component-quality-checklist.md +166 -0
package/frontend/03-checklists/frontend-launch-checklist.md +299 -0
package/frontend/04-antipatterns/frontend-antipatterns.md +886 -0
package/frontend/05-cases/case-performance-optimization.md +274 -0
package/harmony/01-standards/harmonyos-arkts-standard.md +75 -0
package/harmony/01-standards/harmonyos-design.md +65 -0
package/high-quality-engineering-playbook.md +54 -0
package/incident/01-standards/incident-response-complete.md +303 -0
package/incident/02-playbooks/chaos-engineering-playbook.md +883 -0
package/incident/02-playbooks/postmortem-playbook.md +398 -0
package/incident/03-checklists/incident-readiness-checklist.md +181 -0
package/incident/04-antipatterns/incident-antipatterns.md +490 -0
package/incident/05-cases/case-cascade-failure.md +176 -0
package/incident/06-glossary/incident-glossary.md +114 -0
package/incident/postmortem-and-response-deep-dive.md +39 -0
package/industries/ecommerce/ecommerce-complete.md +631 -0
package/industries/education/education-complete.md +555 -0
package/industries/fintech/fintech-complete.md +501 -0
package/industries/gaming/gaming-complete.md +587 -0
package/industries/healthcare/healthcare-complete.md +452 -0
package/low-code/01-standards/low-code-complete.md +944 -0
package/miniprogram/01-standards/ai-common-mistakes.md +61 -0
package/miniprogram/01-standards/miniprogram-custom-navbar-capsule.md +77 -0
package/miniprogram/01-standards/miniprogram-design.md +61 -0
package/miniprogram/01-standards/miniprogram-standard.md +81 -0
package/mobile/01-standards/android-material-design.md +70 -0
package/mobile/01-standards/flutter-complete.md +384 -0
package/mobile/01-standards/ios-design-hig.md +78 -0
package/mobile/01-standards/mobile-app-standard.md +85 -0
package/mobile/01-standards/react-native-complete.md +352 -0
package/mobile/02-playbooks/mobile-cross-platform-playbook.md +175 -0
package/mobile/02-playbooks/mobile-performance.md +473 -0
package/mobile/03-checklists/mobile-release-checklist.md +234 -0
package/mobile/04-antipatterns/mobile-antipatterns.md +798 -0
package/mobile/05-cases/case-app-performance.md +500 -0
package/mobile/05-cases/case-app-startup-optimization.md +218 -0
package/mobile/06-glossary/mobile-glossary.md +484 -0
package/observability/01-standards/observability-standards.md +103 -0
package/observability/02-playbooks/prometheus-grafana-playbook.md +135 -0
package/observability/02-playbooks/structured-logging-playbook.md +73 -0
package/observability/03-checklists/observability-checklist.md +54 -0
package/observability/04-antipatterns/observability-antipatterns.md +106 -0
package/operations/01-standards/prometheus-monitoring-complete.md +1578 -0
package/operations/02-playbooks/capacity-planning-playbook.md +620 -0
package/operations/03-checklists/production-launch-checklist.md +365 -0
package/operations/04-antipatterns/operations-antipatterns.md +664 -0
package/operations/05-cases/case-sre-practices.md +581 -0
package/operations/06-glossary/operations-glossary.md +120 -0
package/operations/aiops-anomaly-detection.md +758 -0
package/operations/capacity-planning.md +1061 -0
package/operations/chaos-engineering.md +659 -0
package/operations/incident-command-system.md +38 -0
package/operations/observability-complete.md +442 -0
package/operations/slo-sli-playbook.md +517 -0
package/operations/sre-operations-deep-dive.md +39 -0
package/package.json +8 -0
package/performance/01-standards/performance-and-scalability.md +80 -0
package/performance/01-standards/performance-standards.md +156 -0
package/performance/02-playbooks/query-optimization-playbook.md +103 -0
package/performance/03-checklists/performance-checklist.md +56 -0
package/performance/04-antipatterns/performance-antipatterns.md +146 -0
package/product/01-standards/product-management-complete.md +285 -0
package/product/02-playbooks/feature-launch-playbook.md +207 -0
package/product/02-playbooks/user-research-playbook.md +532 -0
package/product/03-checklists/feature-launch-checklist.md +275 -0
package/product/04-antipatterns/product-antipatterns.md +355 -0
package/product/05-cases/case-mvp-to-scale.md +384 -0
package/product/06-glossary/product-glossary.md +462 -0
package/product/feature-prioritization-framework.md +40 -0
package/product/kpi-and-metric-tree.md +37 -0
package/product/product-discovery-and-prd-deep-dive.md +41 -0
package/quantum/01-standards/quantum-complete.md +1186 -0
package/security/01-standards/api-security-complete.md +511 -0
package/security/01-standards/container-runtime-security.md +574 -0
package/security/01-standards/data-protection-gdpr.md +543 -0
package/security/01-standards/owasp-top10-complete.md +1890 -0
package/security/01-standards/secure-coding-baseline.md +90 -0
package/security/01-standards/supply-chain-security.md +441 -0
package/security/01-standards/web-security-checklist.md +108 -0
package/security/01-standards/zero-trust-architecture.md +521 -0
package/security/02-playbooks/auth-sso-playbook.md +166 -0
package/security/02-playbooks/incident-response-security-playbook.md +588 -0
package/security/02-playbooks/owasp-api-security-playbook.md +129 -0
package/security/02-playbooks/payment-integration-playbook.md +119 -0
package/security/02-playbooks/penetration-testing-playbook.md +517 -0
package/security/03-checklists/security-audit-checklist.md +356 -0
package/security/04-antipatterns/security-coding-antipatterns.md +580 -0
package/security/05-cases/case-log4shell-incident.md +537 -0
package/security/05-cases/case-major-breaches.md +468 -0
package/security/06-glossary/security-glossary.md +212 -0
package/security/compliance-automation.md +993 -0
package/security/container-security.md +680 -0
package/security/devsecops-complete.md +426 -0
package/security/sast-dast-sca.md +775 -0
package/security/secrets-management.md +594 -0
package/security/security-architecture-deep-dive.md +37 -0
package/security/threat-modeling-stride-playbook.md +40 -0
package/seed-templates/auth-system.md +59 -0
package/seed-templates/blog-content.md +94 -0
package/seed-templates/dashboard.md +89 -0
package/seed-templates/docs-site.md +73 -0
package/seed-templates/e-commerce.md +50 -0
package/seed-templates/saas-landing.md +92 -0
package/seed-templates/settings-page.md +51 -0
package/testing/01-standards/test-strategy-and-layering.md +83 -0
package/testing/01-standards/testing-strategy-complete.md +422 -0
package/testing/01-standards/unit-testing-best-practices.md +118 -0
package/testing/02-playbooks/e2e-testing-playbook.md +988 -0
package/testing/02-playbooks/testing-strategy-playbook.md +126 -0
package/testing/03-checklists/test-strategy-checklist.md +208 -0
package/testing/04-antipatterns/testing-antipatterns.md +718 -0
package/testing/05-cases/case-testing-transformation.md +300 -0
package/testing/06-glossary/testing-glossary.md +110 -0
package/testing/risk-based-test-matrix.md +36 -0
package/testing/testing-strategy-deep-dive.md +37 -0

package/development/04-antipatterns/data-antipatterns.md ADDED Viewed

@@ -0,0 +1,658 @@
+---
+id: data-antipatterns
+title: 数据工程反模式指南
+domain: development
+category: 04-antipatterns
+difficulty: intermediate
+tags: [antipatterns, audit, backups, data, development, fields, governance, inconsistency]
+quality_score: 70
+last_updated: 2026-06-15
+---
+# 数据工程反模式指南
+> 适用范围：数据管道 / ETL / 数据仓库 / 数据湖
+> 约束级别：SHALL（必须在数据架构评审阶段拦截）
+---
+## 1. 无索引治理（Missing Index Governance）
+### 描述
+数据库索引无系统性管理：该建的索引不建（慢查询长期存在），不该建的索引不删（冗余索引拖慢写入），索引策略不随查询模式变化而更新。数据量从千级增长到亿级时，问题从慢查询升级为服务不可用。
+### 错误示例
+```sql
+-- 表有 2 亿行，以下查询每天执行 10 万次，无索引
+SELECT * FROM events
+WHERE user_id = 12345
+AND event_type = 'purchase'
+AND created_at > '2024-01-01';
+-- Seq Scan，执行时间 15 秒
+-- 同时存在大量冗余索引
+CREATE INDEX idx_events_user ON events(user_id);
+CREATE INDEX idx_events_user_type ON events(user_id, event_type);
+CREATE INDEX idx_events_user_type_date ON events(user_id, event_type, created_at);
+CREATE INDEX idx_events_user_date ON events(user_id, created_at);
+CREATE INDEX idx_events_type ON events(event_type);
+-- 5 个索引中有 3 个是冗余的，写入时多维护 3 个索引
+```
+### 正确示例
+```sql
+-- 根据实际查询模式，保留最优索引组合
+CREATE INDEX idx_events_user_type_date ON events(user_id, event_type, created_at DESC);
+-- 一个复合索引覆盖所有查询模式：
+-- WHERE user_id = ?
+-- WHERE user_id = ? AND event_type = ?
+-- WHERE user_id = ? AND event_type = ? AND created_at > ?
+-- 删除冗余索引
+DROP INDEX idx_events_user;       -- 被 idx_events_user_type_date 包含
+DROP INDEX idx_events_user_type;  -- 被 idx_events_user_type_date 包含
+DROP INDEX idx_events_user_date;  -- 查询模式已不使用
+DROP INDEX idx_events_type;       -- 低选择性，全表扫描更快
+```
+```python
+# 索引巡检自动化
+class IndexGovernance:
+    def audit_unused_indexes(self, days: int = 30) -> list[dict]:
+        """找出过去 N 天未使用的索引"""
+        return self._db.execute("""
+            SELECT schemaname, relname, indexrelname, idx_scan, pg_size_pretty(pg_relation_size(indexrelid))
+            FROM pg_stat_user_indexes
+            WHERE idx_scan = 0
+            AND indexrelname NOT LIKE '%_pkey'
+            ORDER BY pg_relation_size(indexrelid) DESC
+        """).fetchall()
+    def audit_missing_indexes(self) -> list[dict]:
+        """找出可能缺失索引的表（顺序扫描次数高）"""
+        return self._db.execute("""
+            SELECT relname, seq_scan, seq_tup_read, idx_scan, idx_tup_fetch,
+                   ROUND(seq_scan::numeric / NULLIF(seq_scan + idx_scan, 0) * 100, 2) AS seq_pct
+            FROM pg_stat_user_tables
+            WHERE seq_scan > 1000
+            AND seq_scan > idx_scan
+            ORDER BY seq_tup_read DESC
+            LIMIT 20
+        """).fetchall()
+    def audit_duplicate_indexes(self) -> list[dict]:
+        """找出重复或包含关系的索引"""
+        return self._db.execute("""
+            SELECT a.indexrelid::regclass AS index_a,
+                   b.indexrelid::regclass AS index_b,
+                   pg_size_pretty(pg_relation_size(a.indexrelid)) AS size_a
+            FROM pg_index a
+            JOIN pg_index b ON a.indrelid = b.indrelid
+                AND a.indexrelid != b.indexrelid
+                AND a.indkey::text LIKE b.indkey::text || '%'
+            WHERE a.indisvalid AND b.indisvalid
+        """).fetchall()
+```
+### 检测方法
+- `pg_stat_user_indexes` 中 `idx_scan = 0` 的索引（从未使用）。
+- `pg_stat_user_tables` 中 `seq_scan >> idx_scan` 的表（缺索引）。
+- 慢查询日志中 Top 20 SQL 的执行计划。
+- 定期运行索引巡检脚本。
+### 修复步骤
+1. 收集过去 30 天的慢查询日志和索引使用统计。
+2. 为高频慢查询创建合适的索引。
+3. 删除未使用和冗余的索引。
+4. 建立月度索引巡检制度。
+5. 在 CI 中对 Schema 变更触发索引影响评估。
+### Agent Checklist
+- [ ] 高频查询有索引覆盖
+- [ ] 无使用次数为 0 的冗余索引
+- [ ] 无包含关系的重复索引
+- [ ] 有月度索引巡检机制
+- [ ] Schema 变更有索引影响评估
+---
+## 2. 缓存与数据库一致性冲突（Cache Inconsistency）
+### 描述
+缓存更新策略与数据库写入策略不一致，导致用户读到过期数据。常见问题：先更新缓存再更新数据库（数据库失败但缓存已更新）、先删缓存再更新数据库（并发读回填旧值）、缓存无过期时间（数据永久不一致）。
+### 错误示例
+```python
+# 先更新缓存再更新数据库 -- 数据库失败时缓存已是新值
+def update_user_name(user_id, new_name):
+    cache.set(f"user:{user_id}", {"name": new_name})  # 缓存已更新
+    db.execute("UPDATE users SET name = %s WHERE id = %s", (new_name, user_id))
+    # 如果数据库更新失败，缓存中是新值，数据库中是旧值
+# 先删缓存再更新数据库 -- 并发读回填旧值
+def update_product_price(product_id, new_price):
+    cache.delete(f"product:{product_id}")        # T1: 删缓存
+    # T2: 另一个请求读到缓存 miss，从数据库读到旧值，回填缓存
+    db.execute("UPDATE products SET price = %s WHERE id = %s", (new_price, product_id))
+    # 结果：缓存中是旧价格
+# 缓存无 TTL -- 永久不一致
+def get_config(key):
+    cached = cache.get(f"config:{key}")
+    if cached:
+        return cached
+    value = db.execute("SELECT value FROM config WHERE key = %s", (key,)).fetchone()
+    cache.set(f"config:{key}", value)  # 无 TTL，永不过期
+    return value
+```
+### 正确示例
+```python
+# 方案 1: Cache-Aside + 延迟双删
+class UserService:
+    def update_name(self, user_id: int, new_name: str) -> None:
+        # 1. 先更新数据库
+        self._db.execute(
+            "UPDATE users SET name = %s WHERE id = %s", (new_name, user_id)
+        )
+        # 2. 删除缓存
+        self._cache.delete(f"user:{user_id}")
+        # 3. 延迟双删（防止并发读回填旧值）
+        asyncio.get_event_loop().call_later(
+            1.0,  # 1 秒后再删一次
+            self._cache.delete, f"user:{user_id}"
+        )
+    def get_user(self, user_id: int) -> User:
+        # Cache-Aside 模式
+        cached = self._cache.get(f"user:{user_id}")
+        if cached:
+            return User.model_validate_json(cached)
+        user = self._db.get_user(user_id)
+        if user:
+            self._cache.setex(
+                f"user:{user_id}",
+                300,  # 5 分钟 TTL
+                user.model_dump_json(),
+            )
+        return user
+# 方案 2: Write-Through（强一致性场景）
+class InventoryService:
+    def update_stock(self, product_id: int, new_stock: int) -> None:
+        with self._db.transaction() as tx:
+            tx.execute(
+                "UPDATE products SET stock = %s WHERE id = %s", (new_stock, product_id)
+            )
+            # 在同一个事务中更新缓存（Redis Pipeline）
+            self._cache.setex(
+                f"stock:{product_id}", 60, str(new_stock)
+            )
+# 方案 3: 事件驱动缓存更新
+class CacheInvalidator:
+    """订阅数据库变更事件，异步刷新缓存"""
+    async def on_user_updated(self, event: UserUpdatedEvent):
+        await self._cache.delete(f"user:{event.user_id}")
+        # 预热：重新加载热点数据
+        if await self._is_hot_key(f"user:{event.user_id}"):
+            user = await self._db.get_user(event.user_id)
+            await self._cache.setex(f"user:{event.user_id}", 300, user.json())
+```
+### 检测方法
+- 缓存 `SET` 操作在数据库 `UPDATE` 之前。
+- 缓存无 TTL（`SET` 不带过期时间）。
+- 存在 "先删缓存再更新数据库" 模式且无延迟双删。
+- 数据对账（缓存 vs 数据库）发现不一致。
+### 修复步骤
+1. 确定一致性需求：最终一致性（Cache-Aside + TTL）vs 强一致性（Write-Through）。
+2. 统一缓存更新模式：先更新数据库，再删除缓存。
+3. 所有缓存设置 TTL（兜底保护）。
+4. 对高并发场景添加延迟双删。
+5. 建立缓存与数据库的定期对账机制。
+### Agent Checklist
+- [ ] 缓存更新在数据库更新之后（不是之前）
+- [ ] 所有缓存有 TTL
+- [ ] 高并发场景有延迟双删
+- [ ] 有缓存数据对账机制
+- [ ] 缓存一致性策略有文档
+---
+## 3. 关键表缺审计字段（Missing Audit Fields）
+### 描述
+业务表缺少 `created_at`、`updated_at`、`created_by`、`updated_by` 等审计字段，出问题时无法追溯数据变更的时间和操作者。在合规场景下（金融、医疗），缺少审计字段可能违反法规。
+### 错误示例
+```sql
+CREATE TABLE orders (
+    id SERIAL PRIMARY KEY,
+    user_id INTEGER NOT NULL,
+    total DECIMAL(10, 2) NOT NULL,
+    status VARCHAR(20) NOT NULL
+    -- 无 created_at: 不知道订单何时创建
+    -- 无 updated_at: 不知道最后一次修改是什么时候
+    -- 无 created_by: 不知道谁创建的（系统还是人工）
+    -- 无 version: 不知道修改了几次
+);
+```
+### 正确示例
+```sql
+CREATE TABLE orders (
+    id SERIAL PRIMARY KEY,
+    user_id INTEGER NOT NULL,
+    total DECIMAL(10, 2) NOT NULL,
+    status VARCHAR(20) NOT NULL,
+    -- 审计字段
+    created_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW(),
+    updated_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW(),
+    created_by INTEGER,      -- 操作者 ID
+    updated_by INTEGER,      -- 最后修改者 ID
+    version INTEGER NOT NULL DEFAULT 1,  -- 乐观锁版本号
+    deleted_at TIMESTAMP WITH TIME ZONE  -- 软删除
+);
+-- 自动更新 updated_at
+CREATE OR REPLACE FUNCTION update_updated_at()
+RETURNS TRIGGER AS $$
+BEGIN
+    NEW.updated_at = NOW();
+    NEW.version = OLD.version + 1;
+    RETURN NEW;
+END;
+$$ LANGUAGE plpgsql;
+CREATE TRIGGER trigger_orders_updated_at
+    BEFORE UPDATE ON orders
+    FOR EACH ROW EXECUTE FUNCTION update_updated_at();
+-- 变更审计日志表
+CREATE TABLE audit_log (
+    id BIGSERIAL PRIMARY KEY,
+    table_name VARCHAR(100) NOT NULL,
+    record_id INTEGER NOT NULL,
+    action VARCHAR(10) NOT NULL,  -- INSERT / UPDATE / DELETE
+    old_values JSONB,
+    new_values JSONB,
+    changed_by INTEGER,
+    changed_at TIMESTAMP WITH TIME ZONE NOT NULL DEFAULT NOW()
+);
+```
+```python
+# ORM 自动填充审计字段
+class AuditMixin:
+    created_at = Column(DateTime(timezone=True), server_default=func.now(), nullable=False)
+    updated_at = Column(DateTime(timezone=True), server_default=func.now(), onupdate=func.now(), nullable=False)
+    created_by = Column(Integer, nullable=True)
+    updated_by = Column(Integer, nullable=True)
+    version = Column(Integer, nullable=False, default=1)
+class Order(Base, AuditMixin):
+    __tablename__ = "orders"
+    id = Column(Integer, primary_key=True)
+    user_id = Column(Integer, nullable=False)
+    total = Column(Numeric(10, 2), nullable=False)
+    status = Column(String(20), nullable=False)
+```
+### 检测方法
+- 表结构无 `created_at` / `updated_at` 列。
+- 无变更审计日志表。
+- 数据变更后无法追溯操作者和时间。
+- Schema 审查工具检查审计字段覆盖率。
+### 修复步骤
+1. 为所有业务表添加 `created_at`、`updated_at`、`created_by`、`updated_by`、`version` 字段。
+2. 创建数据库触发器自动更新 `updated_at` 和 `version`。
+3. 创建审计日志表记录敏感表的变更历史。
+4. ORM 层使用 Mixin 统一管理审计字段。
+5. 定期审查审计字段覆盖率。
+### Agent Checklist
+- [ ] 所有业务表有 `created_at` + `updated_at`
+- [ ] 敏感表有 `created_by` + `updated_by`
+- [ ] 有数据库触发器自动更新审计字段
+- [ ] 有变更审计日志表
+- [ ] ORM 使用 Mixin 统一管理审计字段
+---
+## 4. 备份未演练（Untested Backups）
+### 描述
+数据库有定时备份，但从未验证过备份能否成功恢复。备份文件可能已损坏、不完整、格式不兼容，直到真正需要恢复时才发现无法使用。
+### 错误示例
+```bash
+# 每天凌晨备份（看起来在跑）
+0 3 * * * pg_dump mydb > /backups/mydb_$(date +%Y%m%d).sql
+# 问题：
+# 1. 从未测试过恢复
+# 2. 备份文件存在同一台机器（机器坏了备份也没了）
+# 3. 无备份大小监控（文件可能是空的）
+# 4. 无保留策略（磁盘早晚满）
+# 5. 不知道恢复需要多长时间
+```
+### 正确示例
+```python
+import subprocess
+from datetime import datetime
+class BackupManager:
+    def create_backup(self) -> BackupResult:
+        timestamp = datetime.now().strftime("%Y%m%d_%H%M%S")
+        local_path = f"/backups/mydb_{timestamp}.sql.gz"
+        # 1. 创建备份（压缩）
+        result = subprocess.run(
+            ["pg_dump", "-Fc", "-Z", "9", "-f", local_path, self._db_name],
+            capture_output=True, text=True, timeout=3600,
+        )
+        if result.returncode != 0:
+            raise BackupError(f"pg_dump failed: {result.stderr}")
+        # 2. 验证备份文件大小
+        file_size = os.path.getsize(local_path)
+        if file_size < self._min_expected_size:
+            raise BackupError(f"Backup too small: {file_size} bytes")
+        # 3. 上传到远程存储（异地备份）
+        s3_key = f"backups/mydb/{timestamp}.sql.gz"
+        self._s3.upload_file(local_path, self._bucket, s3_key)
+        # 4. 记录备份元数据
+        return BackupResult(
+            timestamp=timestamp,
+            size=file_size,
+            local_path=local_path,
+            remote_path=f"s3://{self._bucket}/{s3_key}",
+            checksum=self._compute_checksum(local_path),
+        )
+    def verify_backup(self, backup: BackupResult) -> bool:
+        """在测试环境恢复备份，验证数据完整性"""
+        # 1. 下载备份
+        local_path = self._s3.download(backup.remote_path)
+        # 2. 恢复到测试数据库
+        subprocess.run(
+            ["pg_restore", "-d", self._test_db, "-c", local_path],
+            check=True, timeout=7200,
+        )
+        # 3. 验证关键表的行数
+        for table, expected_min in self._verification_tables.items():
+            count = self._test_db.execute(f"SELECT COUNT(*) FROM {table}").scalar()
+            if count < expected_min:
+                raise VerificationError(f"{table} has {count} rows, expected >= {expected_min}")
+        # 4. 验证最新数据的时间戳
+        latest = self._test_db.execute(
+            "SELECT MAX(updated_at) FROM orders"
+        ).scalar()
+        if (datetime.now() - latest).hours > 24:
+            raise VerificationError("Backup data is more than 24 hours old")
+        return True
+    def cleanup_old_backups(self, retention_days: int = 30):
+        """清理超过保留期的备份"""
+        cutoff = datetime.now() - timedelta(days=retention_days)
+        old_backups = self._list_backups_before(cutoff)
+        for backup in old_backups:
+            self._s3.delete(backup.remote_path)
+            os.remove(backup.local_path)
+```
+```yaml
+# 备份策略
+backup_policy:
+  schedule: "0 3 * * *"  # 每天凌晨 3 点
+  type: "full"           # 全量备份
+  retention: 30          # 保留 30 天
+  storage:
+    primary: "s3://backup-bucket/prod/"
+    secondary: "gs://backup-bucket-dr/prod/"  # 异地容灾
+  verification:
+    schedule: "0 6 * * 1"  # 每周一早上 6 点验证
+    target_db: "backup-test-db"
+  alerts:
+    backup_failed: critical
+    backup_too_small: warning
+    verification_failed: critical
+    no_backup_24h: critical
+```
+### 检测方法
+- 无备份恢复演练记录。
+- 备份文件存储在同一台机器或同一可用区。
+- 无备份大小监控告警。
+- 不知道恢复一次需要多长时间（RTO 未知）。
+- 无备份保留和清理策略。
+### 修复步骤
+1. 备份上传到远程存储（S3 / GCS），至少保留异地一份。
+2. 每周自动在测试环境执行恢复验证。
+3. 监控备份文件大小，异常时告警。
+4. 记录 RTO（恢复时间目标），确保在可接受范围内。
+5. 设置备份保留策略，自动清理过期备份。
+6. 每季度手动演练一次完整的灾难恢复流程。
+### Agent Checklist
+- [ ] 有自动化备份（每日或更频繁）
+- [ ] 备份存储在异地（不同区域 / 不同云）
+- [ ] 有每周自动恢复验证
+- [ ] 备份大小有监控告警
+- [ ] RTO 已测量且在可接受范围内
+- [ ] 有备份保留和清理策略
+---
+## 5. 数据管道无幂等（Non-Idempotent Data Pipeline）
+### 描述
+ETL / 数据管道在重试或重复运行时产生重复数据。管道失败后重跑导致数据翻倍，或者部分成功的状态无法安全重试。
+### 错误示例
+```python
+# 非幂等的 ETL -- 重跑产生重复数据
+def sync_orders_to_warehouse():
+    orders = source_db.execute("SELECT * FROM orders WHERE date = CURRENT_DATE")
+    for order in orders:
+        warehouse_db.execute(
+            "INSERT INTO fact_orders (order_id, amount, date) VALUES (%s, %s, %s)",
+            (order["id"], order["amount"], order["date"])
+        )
+    # 如果中间失败重跑，已插入的数据会重复
+```
+### 正确示例
+```python
+# 幂等的 ETL -- 使用 UPSERT
+def sync_orders_to_warehouse(date: str):
+    orders = source_db.execute(
+        "SELECT * FROM orders WHERE date = %s", (date,)
+    )
+    with warehouse_db.transaction() as tx:
+        for order in orders:
+            tx.execute("""
+                INSERT INTO fact_orders (order_id, amount, date, synced_at)
+                VALUES (%s, %s, %s, NOW())
+                ON CONFLICT (order_id)
+                DO UPDATE SET amount = EXCLUDED.amount, synced_at = NOW()
+            """, (order["id"], order["amount"], order["date"]))
+        # 记录同步水位线
+        tx.execute("""
+            INSERT INTO sync_watermarks (pipeline, last_sync_date, synced_at)
+            VALUES ('orders', %s, NOW())
+            ON CONFLICT (pipeline)
+            DO UPDATE SET last_sync_date = EXCLUDED.last_sync_date, synced_at = NOW()
+        """, (date,))
+# 分区替换模式（大批量场景）
+def sync_daily_events(date: str):
+    """整个分区替换，天然幂等"""
+    # 1. 写入临时表
+    temp_table = f"tmp_events_{date.replace('-', '')}"
+    warehouse_db.execute(f"CREATE TABLE IF NOT EXISTS {temp_table} (LIKE fact_events INCLUDING ALL)")
+    warehouse_db.execute(f"TRUNCATE {temp_table}")
+    # 2. 批量导入到临时表
+    events = source_db.execute("SELECT * FROM events WHERE date = %s", (date,))
+    warehouse_db.bulk_insert(temp_table, events)
+    # 3. 原子替换分区
+    warehouse_db.execute(f"""
+        ALTER TABLE fact_events DETACH PARTITION fact_events_{date.replace('-', '')};
+        ALTER TABLE fact_events ATTACH PARTITION {temp_table}
+            FOR VALUES FROM ('{date}') TO ('{date}'::date + INTERVAL '1 day');
+    """)
+```
+### 检测方法
+- ETL 使用 `INSERT` 而非 `INSERT ... ON CONFLICT` / `MERGE`。
+- 无同步水位线记录（不知道同步到哪里了）。
+- 重跑管道后数据量翻倍。
+- 无去重逻辑或唯一约束。
+### 修复步骤
+1. 所有 ETL 写入使用 UPSERT（`INSERT ... ON CONFLICT` / `MERGE`）。
+2. 目标表建立业务唯一约束（防止重复）。
+3. 记录同步水位线，重跑时从水位线处开始。
+4. 大批量场景使用分区替换模式。
+5. ETL 测试包含重复运行场景验证。
+### Agent Checklist
+- [ ] ETL 写入使用 UPSERT / MERGE
+- [ ] 目标表有业务唯一约束
+- [ ] 有同步水位线记录
+- [ ] 重复运行不产生重复数据
+- [ ] 有重复运行的测试用例
+---
+## 6. 数据质量无监控（Missing Data Quality Monitoring）
+### 描述
+数据管道只关注是否执行成功，不检查数据本身的质量。数据可能为空、重复、格式异常、超出合理范围，但管道显示 "成功"。下游消费者发现数据问题时，问题已经扩散。
+### 错误示例
+```python
+# 管道 "成功" 但数据有问题
+def sync_user_data():
+    data = fetch_from_api("/users")
+    db.bulk_insert("users", data)
+    logger.info(f"Synced {len(data)} users")  # "成功"
+    # 问题：data 可能是空列表、字段可能缺失、email 可能无效
+```
+### 正确示例
+```python
+from great_expectations import DataContext
+class DataQualityChecker:
+    def check_user_data(self, data: list[dict]) -> QualityReport:
+        checks = [
+            # 完整性检查
+            Check("row_count", lambda d: len(d) > 0, "Data is not empty"),
+            Check("row_count_range", lambda d: 100 < len(d) < 1000000, "Row count in expected range"),
+            # 唯一性检查
+            Check("unique_ids", lambda d: len(set(r["id"] for r in d)) == len(d), "IDs are unique"),
+            # 格式检查
+            Check("valid_emails", lambda d: all(
+                re.match(r"^[^@]+@[^@]+\.[^@]+$", r.get("email", "")) for r in d
+            ), "All emails are valid format"),
+            # 范围检查
+            Check("age_range", lambda d: all(
+                0 < r.get("age", 0) < 150 for r in d
+            ), "All ages in valid range"),
+            # 时效性检查
+            Check("freshness", lambda d: any(
+                parse_date(r.get("updated_at", "1970-01-01")) > datetime.now() - timedelta(hours=24)
+                for r in d
+            ), "Data is fresh (updated within 24h)"),
+            # NULL 检查
+            Check("no_null_names", lambda d: all(
+                r.get("name") is not None and r.get("name").strip() != "" for r in d
+            ), "No null or empty names"),
+        ]
+        results = [check.run(data) for check in checks]
+        report = QualityReport(checks=results)
+        if not report.all_passed:
+            logger.error("Data quality check failed", failures=report.failures)
+            alert_service.send(
+                severity="critical" if report.critical_failures else "warning",
+                message=f"Data quality issues: {report.summary}",
+            )
+        return report
+# 在管道中集成质量检查
+def sync_user_data():
+    data = fetch_from_api("/users")
+    # 入库前检查
+    report = quality_checker.check_user_data(data)
+    if report.critical_failures:
+        raise DataQualityError(f"Critical quality issues: {report.failures}")
+    db.bulk_insert("users", data)
+    # 入库后检查
+    db_count = db.execute("SELECT COUNT(*) FROM users WHERE synced_at = NOW()::date").scalar()
+    if abs(db_count - len(data)) > 0:
+        raise DataQualityError(f"Row count mismatch: API={len(data)}, DB={db_count}")
+    logger.info("User data synced", row_count=len(data), quality_score=report.score)
+```
+### 检测方法
+- 数据管道无质量检查步骤。
+- 下游消费者频繁报告数据异常。
+- 无数据完整性 / 唯一性 / 时效性监控。
+- 管道 "成功" 但数据为空或严重异常。
+### 修复步骤
+1. 为每个数据管道定义质量检查规则（完整性、唯一性、格式、范围、时效性）。
+2. 入库前执行质量检查，关键规则失败时阻断写入。
+3. 入库后验证行数一致性。
+4. 使用 Great Expectations / dbt test / Soda 等工具自动化。
+5. 质量检查结果纳入监控仪表板。
+### Agent Checklist
+- [ ] 数据管道有入库前质量检查
+- [ ] 关键质量规则失败时阻断写入
+- [ ] 有行数一致性验证
+- [ ] 有数据时效性监控
+- [ ] 质量检查结果有仪表板
+---
+## 全局 Agent Checklist
+| 检查项 | 阈值 | 工具 |
+|--------|------|------|
+| 高频查询有索引 | 100% | `EXPLAIN ANALYZE` |
+| 冗余索引 | 0 个 | `pg_stat_user_indexes` |
+| 缓存有 TTL | 100% | Code Review |
+| 业务表有审计字段 | 100% | Schema 审查 |
+| 备份恢复验证 | 每周 1 次 | 备份系统 |
+| ETL 幂等 | 100% | 重复运行测试 |
+| 数据质量检查 | 每个管道 | 管道配置审查 |