PyPI - classifyre-cli - Versions diffs - 0.4.2__py3-none-any.whl - Mend

classifyre-cli 0.4.2__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (101) hide show

classifyre_cli-0.4.2.dist-info/METADATA +167 -0
classifyre_cli-0.4.2.dist-info/RECORD +101 -0
classifyre_cli-0.4.2.dist-info/WHEEL +4 -0
classifyre_cli-0.4.2.dist-info/entry_points.txt +2 -0
src/__init__.py +1 -0
src/detectors/__init__.py +105 -0
src/detectors/base.py +97 -0
src/detectors/broken_links/__init__.py +3 -0
src/detectors/broken_links/detector.py +280 -0
src/detectors/config.py +59 -0
src/detectors/content/__init__.py +0 -0
src/detectors/custom/__init__.py +13 -0
src/detectors/custom/detector.py +45 -0
src/detectors/custom/runners/__init__.py +56 -0
src/detectors/custom/runners/_base.py +177 -0
src/detectors/custom/runners/_factory.py +51 -0
src/detectors/custom/runners/_feature_extraction.py +138 -0
src/detectors/custom/runners/_gliner2.py +324 -0
src/detectors/custom/runners/_image_classification.py +98 -0
src/detectors/custom/runners/_llm.py +22 -0
src/detectors/custom/runners/_object_detection.py +107 -0
src/detectors/custom/runners/_regex.py +147 -0
src/detectors/custom/runners/_text_classification.py +109 -0
src/detectors/custom/trainer.py +293 -0
src/detectors/dependencies.py +109 -0
src/detectors/pii/__init__.py +0 -0
src/detectors/pii/detector.py +883 -0
src/detectors/secrets/__init__.py +0 -0
src/detectors/secrets/detector.py +399 -0
src/detectors/threat/__init__.py +0 -0
src/detectors/threat/code_security_detector.py +206 -0
src/detectors/threat/yara_detector.py +177 -0
src/main.py +608 -0
src/models/generated_detectors.py +1296 -0
src/models/generated_input.py +2732 -0
src/models/generated_single_asset_scan_results.py +240 -0
src/outputs/__init__.py +3 -0
src/outputs/base.py +69 -0
src/outputs/console.py +62 -0
src/outputs/factory.py +156 -0
src/outputs/file.py +83 -0
src/outputs/rest.py +258 -0
src/pipeline/__init__.py +7 -0
src/pipeline/content_provider.py +26 -0
src/pipeline/detector_pipeline.py +742 -0
src/pipeline/parsed_content_provider.py +59 -0
src/sandbox/__init__.py +5 -0
src/sandbox/runner.py +145 -0
src/sources/__init__.py +95 -0
src/sources/atlassian_common.py +389 -0
src/sources/azure_blob_storage/__init__.py +3 -0
src/sources/azure_blob_storage/source.py +130 -0
src/sources/base.py +296 -0
src/sources/confluence/__init__.py +3 -0
src/sources/confluence/source.py +733 -0
src/sources/databricks/__init__.py +3 -0
src/sources/databricks/source.py +1279 -0
src/sources/dependencies.py +81 -0
src/sources/google_cloud_storage/__init__.py +3 -0
src/sources/google_cloud_storage/source.py +114 -0
src/sources/hive/__init__.py +3 -0
src/sources/hive/source.py +709 -0
src/sources/jira/__init__.py +3 -0
src/sources/jira/source.py +605 -0
src/sources/mongodb/__init__.py +3 -0
src/sources/mongodb/source.py +550 -0
src/sources/mssql/__init__.py +3 -0
src/sources/mssql/source.py +1034 -0
src/sources/mysql/__init__.py +3 -0
src/sources/mysql/source.py +797 -0
src/sources/neo4j/__init__.py +0 -0
src/sources/neo4j/source.py +523 -0
src/sources/object_storage/base.py +679 -0
src/sources/oracle/__init__.py +3 -0
src/sources/oracle/source.py +982 -0
src/sources/postgresql/__init__.py +3 -0
src/sources/postgresql/source.py +774 -0
src/sources/powerbi/__init__.py +3 -0
src/sources/powerbi/source.py +774 -0
src/sources/recipe_normalizer.py +179 -0
src/sources/s3_compatible_storage/README.md +66 -0
src/sources/s3_compatible_storage/__init__.py +3 -0
src/sources/s3_compatible_storage/source.py +150 -0
src/sources/servicedesk/__init__.py +3 -0
src/sources/servicedesk/source.py +620 -0
src/sources/slack/__init__.py +3 -0
src/sources/slack/source.py +534 -0
src/sources/snowflake/__init__.py +3 -0
src/sources/snowflake/source.py +912 -0
src/sources/tableau/__init__.py +3 -0
src/sources/tableau/source.py +799 -0
src/sources/tabular_utils.py +165 -0
src/sources/wordpress/__init__.py +3 -0
src/sources/wordpress/source.py +590 -0
src/telemetry.py +96 -0
src/utils/__init__.py +1 -0
src/utils/content_extraction.py +108 -0
src/utils/file_parser.py +777 -0
src/utils/hashing.py +82 -0
src/utils/uv_sync.py +79 -0
src/utils/validation.py +56 -0

src/sources/wordpress/source.py ADDED Viewed

@@ -0,0 +1,590 @@
+import logging
+import re
+from collections.abc import AsyncGenerator, Generator
+from datetime import UTC, datetime
+from typing import Any
+from urllib.parse import urlsplit
+import requests
+from bs4 import BeautifulSoup
+from ...models.generated_input import SamplingStrategy, WordPressInput, WordPressOptionalContent
+from ...models.generated_single_asset_scan_results import (
+    AssetType as OutputAssetType,
+)
+from ...models.generated_single_asset_scan_results import (
+    DetectionResult,
+    Location,
+    SingleAssetScanResults,
+)
+from ...utils.hashing import hash_url, normalize_http_url, unhash_id
+from ..base import BaseSource
+logger = logging.getLogger(__name__)
+HTML_TAG_RE = re.compile("<.*?>")
+class WordPressSource(BaseSource):
+    source_type = "wordpress"
+    def __init__(
+        self,
+        recipe: dict[str, Any],
+        source_id: str | None = None,
+        runner_id: str | None = None,
+    ):
+        super().__init__(recipe, source_id=source_id, runner_id=runner_id)
+        self.config = WordPressInput.model_validate(recipe)
+        self.runner_id = runner_id or "local-run"
+        self.site_base_url = str(self.config.required.url).rstrip("/")
+        self.api_base = f"{self.site_base_url}/wp-json/wp/v2"
+        self._url_to_wp_id: dict[str, str] = {}
+        self._hash_to_url: dict[str, str] = {}
+        self._seen_asset_hashes: set[str] = set()
+        self.session = requests.Session()
+        if self.config.masked.username and self.config.masked.application_password:
+            self.session.auth = (
+                self.config.masked.username,
+                self.config.masked.application_password,
+            )
+        logger.info(f"Initialized WordPress source for {self.config.required.url}")
+    def _content_options(self) -> WordPressOptionalContent:
+        if self.config.optional and self.config.optional.content:
+            return self.config.optional.content
+        return WordPressOptionalContent()
+    def test_connection(self) -> dict[str, Any]:
+        """Test connectivity to WordPress REST API."""
+        logger.info(f"Testing connection to WordPress at {self.config.required.url}...")
+        result = {
+            "timestamp": datetime.now(UTC).isoformat(),
+            "source_type": self.recipe.get("type"),
+        }
+        try:
+            response = self.session.get(
+                f"{self.api_base}/posts", params={"per_page": 1}, timeout=10
+            )
+            if response.status_code == 200:
+                result["status"] = "SUCCESS"
+                result["message"] = "Successfully connected to WordPress REST API."
+                logger.info("Connection test successful")
+            elif response.status_code in (401, 403):
+                result["status"] = "SUCCESS"
+                result["message"] = (
+                    "WordPress REST API is reachable, but authentication is required for "
+                    "private content."
+                )
+                logger.info("Connection test successful (authentication required)")
+            else:
+                result["status"] = "FAILURE"
+                result["message"] = (
+                    f"Unexpected status from WordPress REST API: {response.status_code}"
+                )
+                logger.error(result["message"])
+        except requests.exceptions.RequestException as e:
+            result["status"] = "FAILURE"
+            result["message"] = f"Failed to connect: {e!s}"
+            logger.error(f"Connection test failed: {e}")
+        return result
+    async def extract_raw(self) -> AsyncGenerator[list[SingleAssetScanResults], None]:
+        """Extract posts and pages from WordPress."""
+        if self._aborted:
+            return
+        logger.info("Extracting metadata from WordPress...")
+        self._url_to_wp_id = {}
+        self._hash_to_url = {}
+        self._seen_asset_hashes = set()
+        pending_batch: list[SingleAssetScanResults] = []
+        content_options = self._content_options()
+        sampling = self.config.sampling
+        limit: int | None = (
+            None
+            if sampling.strategy == SamplingStrategy.ALL
+            else int(sampling.rows_per_page or 100)
+        )
+        total_items_extracted = 0
+        if content_options.fetch_posts is not False:
+            posts_count = 0
+            posts_assets = 0
+            for assets_chunk, items_count in self._stream_content_type(
+                "posts",
+                limit - total_items_extracted if limit else None,
+                sampling.strategy,
+            ):
+                posts_count += items_count
+                total_items_extracted += items_count
+                posts_assets += len(assets_chunk)
+                for asset in assets_chunk:
+                    pending_batch.append(asset)
+                    while len(pending_batch) >= self.BATCH_SIZE:
+                        to_emit = pending_batch[: self.BATCH_SIZE]
+                        pending_batch = pending_batch[self.BATCH_SIZE :]
+                        if to_emit:
+                            yield to_emit
+            logger.info(f"Extracted {posts_count} posts into {posts_assets} assets")
+        if content_options.fetch_pages is not False and (
+            not limit or total_items_extracted < limit
+        ):
+            pages_count = 0
+            pages_assets = 0
+            for assets_chunk, items_count in self._stream_content_type(
+                "pages",
+                limit - total_items_extracted if limit else None,
+                sampling.strategy,
+            ):
+                pages_count += items_count
+                total_items_extracted += items_count
+                pages_assets += len(assets_chunk)
+                for asset in assets_chunk:
+                    pending_batch.append(asset)
+                    while len(pending_batch) >= self.BATCH_SIZE:
+                        to_emit = pending_batch[: self.BATCH_SIZE]
+                        pending_batch = pending_batch[self.BATCH_SIZE :]
+                        if to_emit:
+                            yield to_emit
+            logger.info(f"Extracted {pages_count} pages into {pages_assets} assets")
+        if pending_batch:
+            yield pending_batch
+        logger.info("Total extracted WordPress items: %s", total_items_extracted)
+    def _stream_content_type(
+        self,
+        content_type: str,
+        limit: int | None,
+        strategy: SamplingStrategy = SamplingStrategy.LATEST,
+    ) -> Generator[tuple[list[SingleAssetScanResults], int], None, None]:
+        """Stream transformed assets for a content type while paginating the API."""
+        endpoint = f"{self.api_base}/{content_type}"
+        items_extracted = 0
+        page = 1
+        per_page = 100
+        while True:
+            if self._aborted or (limit and items_extracted >= limit):
+                break
+            current_per_page = per_page
+            if limit:
+                current_per_page = min(per_page, limit - items_extracted)
+            params: dict[str, Any] = {
+                "per_page": current_per_page,
+                "page": page,
+                "_embed": "author,wp:term",
+            }
+            # For LATEST strategy, request newest items first; RANDOM is not directly
+            # supported by WP API so we default to modified date ordering
+            if strategy == SamplingStrategy.LATEST:
+                params["orderby"] = "modified"
+                params["order"] = "desc"
+            content_options = self._content_options()
+            if content_options.post_status:
+                params["status"] = ",".join(content_options.post_status)
+            try:
+                response = self.session.get(endpoint, params=params, timeout=30)
+                response.raise_for_status()
+                items = response.json()
+                if not items:
+                    break
+                total_items = int(response.headers.get("X-WP-Total", 0))
+                total_pages = int(response.headers.get("X-WP-TotalPages", 1))
+                logger.info(
+                    f"Fetching {content_type} page {page}/{total_pages} "
+                    f"({len(items)} items, total: {total_items})"
+                )
+                page_assets: list[SingleAssetScanResults] = []
+                page_items_extracted = 0
+                for item in items:
+                    if self._aborted or (limit and items_extracted >= limit):
+                        break
+                    try:
+                        page_asset, image_assets = self._transform_item_to_assets(
+                            item, content_type
+                        )
+                        self._add_asset_if_new(page_assets, page_asset)
+                        for image_asset in image_assets:
+                            self._add_asset_if_new(page_assets, image_asset)
+                        items_extracted += 1
+                        page_items_extracted += 1
+                    except Exception as e:
+                        logger.error(
+                            f"Failed to transform {content_type} item {item.get('id')}: {e}"
+                        )
+                        continue
+                if page_items_extracted > 0:
+                    yield page_assets, page_items_extracted
+                if page >= total_pages or len(items) < current_per_page:
+                    break
+                page += 1
+            except requests.exceptions.RequestException as e:
+                logger.error(f"Failed to fetch {content_type} page {page}: {e}")
+                break
+    def _fetch_content_type(
+        self, content_type: str, limit: int | None
+    ) -> tuple[list[SingleAssetScanResults], int]:
+        """Compatibility helper used by tests; collects stream into memory."""
+        results: list[SingleAssetScanResults] = []
+        items_extracted = 0
+        for assets, extracted_count in self._stream_content_type(
+            content_type, limit, self.config.sampling.strategy
+        ):
+            results.extend(assets)
+            items_extracted += extracted_count
+        return results, items_extracted
+    def _add_asset_if_new(
+        self, results: list[SingleAssetScanResults], asset: SingleAssetScanResults
+    ) -> None:
+        if asset.hash in self._seen_asset_hashes:
+            return
+        self._seen_asset_hashes.add(asset.hash)
+        results.append(asset)
+    def _parse_wordpress_date(self, date_str: str | None) -> str | None:
+        """Parse WordPress date and ensure it has timezone info."""
+        if not date_str:
+            return None
+        if "+" in date_str or date_str.endswith("Z"):
+            return date_str
+        return f"{date_str}+00:00"
+    def _parse_datetime(self, date_str: str | None) -> datetime:
+        if not date_str:
+            return datetime.now(UTC)
+        normalized = date_str.replace("Z", "+00:00")
+        try:
+            parsed = datetime.fromisoformat(normalized)
+        except ValueError:
+            return datetime.now(UTC)
+        if parsed.tzinfo is None:
+            return parsed.replace(tzinfo=UTC)
+        return parsed
+    def _transform_item(self, item: dict[str, Any], content_type: str) -> SingleAssetScanResults:
+        """Transform WordPress item to a page URL asset."""
+        page_asset, _ = self._transform_item_to_assets(item, content_type)
+        return page_asset
+    def _transform_item_to_assets(
+        self, item: dict[str, Any], content_type: str
+    ) -> tuple[SingleAssetScanResults, list[SingleAssetScanResults]]:
+        wp_id_value = item.get("id")
+        wp_id = str(wp_id_value) if wp_id_value is not None else ""
+        slug = str(item.get("slug") or "")
+        page_url = self._build_item_url(item, slug, wp_id)
+        page_hash = self.generate_hash_id(page_url)
+        if wp_id:
+            self._url_to_wp_id[page_hash] = wp_id
+            self._url_to_wp_id[page_url] = wp_id
+        title_obj = item.get("title", {})
+        title = title_obj.get("rendered", "") if isinstance(title_obj, dict) else str(title_obj)
+        title = self._strip_html(title) or f"WordPress {content_type.rstrip('s')} {wp_id}"
+        excerpt_obj = item.get("excerpt", {})
+        excerpt = excerpt_obj.get("rendered", "") if isinstance(excerpt_obj, dict) else ""
+        excerpt = self._strip_html(excerpt)[:200]
+        content_obj = item.get("content", {})
+        html_content = content_obj.get("rendered", "") if isinstance(content_obj, dict) else ""
+        image_urls, link_urls = self._extract_related_urls(html_content)
+        image_hashes = [self.generate_hash_id(url) for url in image_urls]
+        link_hashes = [self.generate_hash_id(url) for url in link_urls]
+        page_links = self._unique_preserve_order([*image_hashes, *link_hashes])
+        created_at_str = self._parse_wordpress_date(item.get("date_gmt", item.get("date")))
+        updated_at_str = self._parse_wordpress_date(item.get("modified_gmt", item.get("modified")))
+        created_dt = self._parse_datetime(created_at_str)
+        updated_dt = self._parse_datetime(updated_at_str)
+        metadata = {
+            "wp_id": wp_id,
+            "title": title,
+            "slug": slug,
+            "status": item.get("status"),
+            "modified": updated_dt.isoformat(),
+            "excerpt": excerpt[:100] if excerpt else None,
+            "images_count": len(image_urls),
+            "links_count": len(link_urls),
+        }
+        page_asset = SingleAssetScanResults(
+            hash=page_hash,
+            checksum=self.calculate_checksum(metadata),
+            name=title,
+            external_url=page_url,
+            links=page_links,
+            asset_type=OutputAssetType.URL,
+            source_id=self.source_id,
+            created_at=created_dt,
+            updated_at=updated_dt,
+            runner_id=self.runner_id,
+        )
+        image_assets = [
+            self._make_image_asset(
+                image_url=image_url,
+                image_hash=image_hash,
+                page_hash=page_hash,
+                created_at=created_dt,
+                updated_at=updated_dt,
+            )
+            for image_url, image_hash in zip(image_urls, image_hashes, strict=False)
+        ]
+        return page_asset, image_assets
+    def _build_item_url(self, item: dict[str, Any], slug: str, wp_id: str) -> str:
+        link = item.get("link")
+        if isinstance(link, str) and link.strip():
+            return link
+        if slug:
+            return f"{self.site_base_url}/{slug.lstrip('/')}"
+        if wp_id:
+            return f"{self.site_base_url}/?p={wp_id}"
+        return self.site_base_url
+    def _extract_related_urls(self, html_content: str) -> tuple[list[str], list[str]]:
+        if not html_content:
+            return [], []
+        soup = BeautifulSoup(html_content, "html.parser")
+        image_urls: list[str] = []
+        link_urls: list[str] = []
+        for image in soup.find_all("img"):
+            src = image.get("src")
+            if isinstance(src, str):
+                normalized = self._normalize_external_url(src)
+                if normalized:
+                    image_urls.append(normalized)
+        for anchor in soup.find_all("a"):
+            href = anchor.get("href")
+            if isinstance(href, str):
+                normalized = self._normalize_external_url(href)
+                if normalized:
+                    link_urls.append(normalized)
+        return (
+            self._unique_preserve_order(image_urls),
+            self._unique_preserve_order(link_urls),
+        )
+    def _normalize_external_url(self, raw_url: str) -> str | None:
+        return normalize_http_url(raw_url, base_url=self.site_base_url)
+    def _make_image_asset(
+        self,
+        *,
+        image_url: str,
+        image_hash: str,
+        page_hash: str,
+        created_at: datetime,
+        updated_at: datetime,
+    ) -> SingleAssetScanResults:
+        image_name = self._image_name_from_url(image_url)
+        metadata = {
+            "url": image_url,
+            "referenced_by": page_hash,
+        }
+        return SingleAssetScanResults(
+            hash=image_hash,
+            checksum=self.calculate_checksum(metadata),
+            name=image_name,
+            external_url=image_url,
+            links=[],
+            asset_type=OutputAssetType.IMAGE,
+            source_id=self.source_id,
+            created_at=created_at,
+            updated_at=updated_at,
+            runner_id=self.runner_id,
+        )
+    def _image_name_from_url(self, image_url: str) -> str:
+        parsed = urlsplit(image_url)
+        file_name = parsed.path.rstrip("/").split("/")[-1]
+        return f"Image: {file_name}" if file_name else f"Image: {image_url}"
+    def _unique_preserve_order(self, values: list[str]) -> list[str]:
+        seen: set[str] = set()
+        unique_values: list[str] = []
+        for value in values:
+            if value in seen:
+                continue
+            seen.add(value)
+            unique_values.append(value)
+        return unique_values
+    def _strip_html(self, html: str) -> str:
+        """Strip HTML tags from string."""
+        return re.sub(HTML_TAG_RE, "", html).strip()
+    async def fetch_content(self, asset_id: str) -> tuple[str, str] | None:
+        """
+        Fetch full content for a WordPress URL asset (for detector scanning).
+        """
+        try:
+            from ...utils.content_extraction import html_to_text
+            logger.info(f"Fetching content for WordPress asset {asset_id}")
+            html_content: str | None = None
+            wp_id = self._resolve_wordpress_item_id(asset_id)
+            if wp_id:
+                html_content = self._fetch_content_by_wp_id(wp_id)
+            if not html_content:
+                normalized_url = normalize_http_url(asset_id, base_url=self.site_base_url)
+                if normalized_url:
+                    html_content = self._fetch_content_by_url(normalized_url)
+            if not html_content:
+                logger.warning(f"No content found for asset {asset_id}")
+                return None
+            text_content = html_to_text(html_content)
+            logger.debug(
+                f"Fetched {len(html_content)} bytes of HTML, "
+                f"extracted {len(text_content)} bytes of text"
+            )
+            return html_content, text_content
+        except Exception as e:
+            logger.error(f"Failed to fetch content for WordPress asset {asset_id}: {e}")
+            return None
+    def _resolve_wordpress_item_id(self, asset_id: str) -> str | None:
+        normalized = normalize_http_url(asset_id, base_url=self.site_base_url)
+        if normalized and normalized in self._url_to_wp_id:
+            return self._url_to_wp_id[normalized]
+        if asset_id in self._url_to_wp_id:
+            return self._url_to_wp_id[asset_id]
+        try:
+            decoded = unhash_id(asset_id)
+        except Exception:
+            return None
+        parts = decoded.split("_#_")
+        for part in reversed(parts):
+            if part.isdigit():
+                return part
+        return None
+    def _fetch_content_by_wp_id(self, wp_id: str) -> str | None:
+        response = None
+        for endpoint in ["posts", "pages"]:
+            try:
+                url = f"{self.api_base}/{endpoint}/{wp_id}"
+                response = self.session.get(url, timeout=10)
+                response.raise_for_status()
+                break
+            except requests.exceptions.RequestException:
+                continue
+        if not response or not response.ok:
+            return None
+        data = response.json()
+        content_obj = data.get("content", {})
+        html_content = content_obj.get("rendered", "")
+        if not isinstance(html_content, str) or not html_content:
+            return None
+        return html_content
+    def _fetch_content_by_url(self, url: str) -> str | None:
+        try:
+            response = self.session.get(url, timeout=10)
+            response.raise_for_status()
+        except requests.exceptions.RequestException:
+            return None
+        content_type = response.headers.get("Content-Type", "").lower()
+        if content_type.startswith("image/"):
+            return None
+        if "html" in content_type or not content_type:
+            return response.text
+        return None
+    def generate_hash_id(self, asset_id: str) -> str:
+        """Generate a stable hash ID for URL-like assets and keep reverse lookup for detectors."""
+        normalized = normalize_http_url(asset_id, base_url=self.site_base_url)
+        if not normalized:
+            raise ValueError(f"Invalid URL for hash: {asset_id}")
+        asset_hash = hash_url(normalized, base_url=self.site_base_url)
+        self._hash_to_url[asset_hash] = normalized
+        return asset_hash
+    def resolve_link_for_detection(self, link: str) -> str | None:
+        mapped = self._hash_to_url.get(link)
+        if mapped:
+            return mapped
+        return normalize_http_url(link)
+    def enrich_finding_location(
+        self,
+        finding: DetectionResult,
+        asset: SingleAssetScanResults,
+        text_content: str,
+    ) -> None:
+        finding.location = Location(path=asset.external_url)
+    def abort(self) -> None:
+        """Signal the source to stop extraction."""
+        logger.info("Aborting WordPress extraction...")
+        super().abort()
+        if hasattr(self, "session"):
+            self.session.close()
+    def cleanup(self) -> None:
+        """Clean up resources."""
+        if hasattr(self, "session"):
+            self.session.close()

src/telemetry.py ADDED Viewed

@@ -0,0 +1,96 @@
+"""
+OpenTelemetry initialisation for ephemeral Kubernetes CLI jobs.
+Key design points:
+- BatchSpanProcessor with 2 s delay so spans export before the job finishes.
+- Explicit force_flush() + SIGTERM handler — Python's default SIGTERM kills
+  the process before atexit hooks run, which would silently drop spans.
+- Graceful no-op when OTel packages are not installed or telemetry is disabled.
+Opt-out: set TELEMETRY_DISABLED=1 or DO_NOT_TRACK=1 in the environment.
+Install: uv sync --group otel
+"""
+from __future__ import annotations
+import atexit
+import os
+import signal
+import sys
+from functools import partial
+from typing import Any
+def is_telemetry_enabled() -> bool:
+    if os.getenv("TELEMETRY_DISABLED") == "1":
+        return False
+    if os.getenv("DO_NOT_TRACK") == "1":
+        return False
+    if os.getenv("CLASSIFYRE_TELEMETRY", "true").lower() == "false":
+        return False
+    return True
+def init_telemetry() -> Any:
+    """
+    Initialise the OTel SDK and return the TracerProvider.
+    Returns a no-op provider when telemetry is disabled or the OTel SDK is
+    not installed (the ``otel`` optional dependency group was not installed).
+    """
+    if not is_telemetry_enabled():
+        return None
+    try:
+        from opentelemetry import trace
+        from opentelemetry.exporter.otlp.proto.http.trace_exporter import (
+            OTLPSpanExporter,
+        )
+        from opentelemetry.sdk.resources import Resource
+        from opentelemetry.sdk.trace import TracerProvider
+        from opentelemetry.sdk.trace.export import BatchSpanProcessor
+    except ImportError:
+        # OTel optional group not installed — run without telemetry.
+        return None
+    resource = Resource.create(
+        {
+            "service.name": os.getenv("OTEL_SERVICE_NAME", "classifyre-cli"),
+            "service.version": os.getenv("SERVICE_VERSION", "0.0.0"),
+            "deployment.environment.name": os.getenv(
+                "DEPLOY_ENV", os.getenv("NODE_ENV", "production")
+            ),
+            "service.namespace": "classifyre",
+            "service.instance.id": os.getenv("CLASSIFYRE_INSTANCE_ID", ""),
+        }
+    )
+    provider = TracerProvider(resource=resource)
+    provider.add_span_processor(
+        BatchSpanProcessor(
+            OTLPSpanExporter(),
+            # Reduced delay so spans export before a short-lived job exits.
+            schedule_delay_millis=2_000,
+            max_queue_size=512,
+            max_export_batch_size=256,
+        )
+    )
+    trace.set_tracer_provider(provider)
+    _shutdown_state: dict[str, bool] = {"called": False}
+    def _shutdown(timeout_ms: int = 10_000) -> None:
+        if _shutdown_state["called"]:
+            return
+        _shutdown_state["called"] = True
+        provider.force_flush(timeout_millis=timeout_ms)
+        provider.shutdown()
+    def _handle_sigterm(signum: int, frame: Any) -> None:  # noqa: ARG001
+        _shutdown(timeout_ms=8_000)
+        sys.exit(143)
+    atexit.register(_shutdown)
+    signal.signal(signal.SIGTERM, partial(_handle_sigterm))
+    return provider

src/utils/__init__.py ADDED Viewed

	@@ -0,0 +1 @@
1	+ """Utility functions."""