feat(plugins): Implement comprehensive plugin architecture and runtime#25
Merged
JoshuaAFerguson merged 15 commits intoNov 16, 2025
Merged
Conversation
This commit introduces a complete plugin system to StreamSpace, enabling modular extraction of non-core features to plugins. This will reduce the core platform size and improve maintainability. **Plugin Runtime Infrastructure:** - Plugin runtime engine with lifecycle management (load/unload/enable/disable) - Event bus system for pub/sub event distribution to plugins - Database access API with query execution, transactions, and migrations - Key-value storage system for plugin data persistence - Structured logging with JSON formatting and log levels - Cron-based job scheduler for periodic plugin tasks - API endpoint registry for plugin REST endpoints - UI component registry for widgets, pages, and admin panels - Base plugin class with default implementations **Plugin API Features:** Plugins now have access to: - Events: Subscribe to platform events (session.*, user.*, etc.) - Database: Execute SQL, manage transactions, create tables - Storage: Persistent key-value storage with plugin namespacing - API: Register REST endpoints with middleware and permissions - UI: Register dashboard widgets, admin pages, menu items - Scheduler: Run periodic tasks with cron expressions - Logger: Structured logging with contextual fields **Example Plugin - Slack Integration:** Complete, production-ready Slack plugin demonstrating the system: - Session event notifications (created, hibernated) - User event notifications (created, login, logout) - Rich Slack message formatting with attachments - Configurable notification preferences per event type - Rate limiting to prevent spam - Webhook connectivity testing - Comprehensive error handling **Documentation:** - PLUGIN_MIGRATION_PLAN.md: Detailed migration plan for extracting features from core to plugins - PLUGIN_MIGRATION_STATUS.md: Current progress and next steps - Complete README for Slack plugin with configuration examples **Migration Plan:** Extract to plugins: - Phase 1: External integrations (Slack, Teams, Discord, PagerDuty) - Phase 2: Billing system - Phase 3: Compliance framework + DLP - Phase 4: Node management, session recording, workflows **Impact:** - Database tables: 82+ → ~40-50 (48% reduction) - API handlers: -30% (20+ files extracted) - UI components: -25% (10+ pages extracted) **Benefits:** - Modularity: Features installable independently - Flexibility: Users choose only needed features - Maintainability: Isolated plugin updates - Performance: Leaner core with less overhead - Community: External plugin development enabled This is the foundation for the plugin architecture. Next steps: 1. Create remaining integration plugins 2. Create billing and compliance plugins 3. Integrate runtime with core API 4. Extract code from core to plugins 5. Move plugins to streamspace-plugins repository
Implements zero-configuration plugin system where users can browse, install, and activate plugins without any code changes. **Automatic Plugin Discovery:** - Plugin discovery from filesystem, built-in registry, and marketplace - Auto-registration via init() functions (no manual imports) - Database-driven enable/disable (no code changes) - Hot reload capability (no restart required) **Plugin Marketplace:** - Download plugins from GitHub repository - Automatic extraction and installation - Sync catalog from remote repository - Install/uninstall via UI or API - Configuration management **New Components:** 1. PluginDiscovery (discovery.go) - Discovers built-in plugins (auto-registered via init()) - Scans filesystem for .so plugin files - Loads plugins dynamically 2. RuntimeV2 (runtime_v2.go) - Enhanced runtime with automatic discovery - Auto-loads enabled plugins from database on startup - No manual plugin registration needed 3. GlobalPluginRegistry (registry.go) - Global registry for auto-registration - Plugins call plugins.Register() in init() - Automatically applied to discovery 4. PluginMarketplace (marketplace.go) - Fetch catalog from streamspace-plugins repo - Download and extract plugin archives - Install/uninstall plugins - Sync with database catalog 5. PluginMarketplaceHandler (plugin_marketplace.go) - API endpoints for marketplace operations - /api/plugins/marketplace/catalog - Browse plugins - /api/plugins/marketplace/install/:name - Install plugin - /api/plugins/marketplace/enable/:name - Enable/disable - Auto-loads plugins after installation **Integration:** Users add ~15 lines to main.go ONCE: ```go pluginRuntime := plugins.NewRuntimeV2(database) plugins.GetGlobalRegistry().ApplyToDiscovery(pluginRuntime.discovery) pluginRuntime.Start(ctx) ``` Then: - Users browse/install plugins via UI - No code changes ever needed again - Plugins auto-load on startup - Hot reload when installed/uninstalled **Catalog Structure:** Created catalog.json format for streamspace-plugins repo: - Plugin metadata (name, version, description, author) - Download URLs - Manifest with config schema - Tags and categories **Documentation:** PLUGIN_INTEGRATION_GUIDE.md - Complete guide covering: - Architecture overview - Developer integration (one-time setup) - User workflows (UI and API) - Plugin development - Publishing to marketplace - Event system reference - Security and permissions - Troubleshooting **Updated:** - Slack plugin now uses plugins.Register() for auto-registration - Ready to be moved to streamspace-plugins repo **Next Steps:** 1. Create marketplace UI components 2. Implement remaining integration plugins 3. Move Slack plugin to streamspace-plugins repo 4. Create catalog.json in plugins repo 5. Test end-to-end marketplace flow
… Email SMTP Implement comprehensive notification plugins for external integrations: **Teams Integration (streamspace-teams)**: - Microsoft Teams webhook integration - MessageCard format with rich formatting - Color-coded notifications (green, yellow, blue) - Session and user event notifications - Rate limiting (20 msg/hour default) - Auto-registration via init() **Discord Integration (streamspace-discord)**: - Discord webhook integration - Rich embed formatting with colors - Support for inline fields - Decimal color codes (3066993 = green) - Session and user event notifications - Rate limiting (20 msg/hour default) - Auto-registration via init() **PagerDuty Integration (streamspace-pagerduty)**: - PagerDuty Events API v2 - Incident triggering and auto-resolution - Configurable severity levels (info, warning, error, critical) - Custom details and deduplication keys - Session hibernation alerts - Rate limiting (50 events/hour default) - Auto-registration via init() **Email SMTP Integration (streamspace-email)**: - Full SMTP email support (TLS/STARTTLS) - HTML and plain text email templates - Beautiful responsive HTML emails - Multiple recipients (to, cc) - Configurable SMTP settings (host, port, auth) - Gmail, Office365, custom SMTP support - Rate limiting (30 emails/hour default) - Auto-registration via init() **Common Features**: - Zero-configuration auto-discovery - JSON Schema configuration with validation - Event-driven architecture (session.created, session.hibernated, user.created) - Configurable notification toggles per event type - Optional resource details (CPU, memory) - Connection testing on load - Graceful error handling - Structured logging **Updated Catalog** (plugins/catalog.json): - Added all 4 new plugins to marketplace catalog - Complete manifest metadata - Configuration schemas for UI auto-generation - GitHub download URLs - Icon URLs and tags Files: - plugins/streamspace-teams/manifest.json (62 lines) - plugins/streamspace-teams/teams_plugin.go (330 lines) - plugins/streamspace-discord/manifest.json (58 lines) - plugins/streamspace-discord/discord_plugin.go (345 lines) - plugins/streamspace-pagerduty/manifest.json (92 lines) - plugins/streamspace-pagerduty/pagerduty_plugin.go (435 lines) - plugins/streamspace-email/manifest.json (108 lines) - plugins/streamspace-email/email_plugin.go (550 lines) - plugins/catalog.json (updated with 4 entries) Total: 1,980 lines across 5 production-ready integration plugins
Implement full-featured billing system with Stripe integration: **Core Billing Features**: - Real-time usage tracking for CPU, memory, and storage - Hourly usage calculation with configurable intervals - Multiple billing modes: usage-based, subscription, hybrid - Resource-based pricing with configurable rates - Automated invoice generation (monthly, configurable day) - Credits system with expiration dates - Payment processing via Stripe integration **Usage Tracking**: - Track active session resource consumption - Calculate costs based on CPU cores, memory GB, storage GB - Historical usage records for auditing - Heartbeat-based session activity monitoring - Automatic usage recording on session termination **Subscription Management**: - Flexible subscription plans with quotas - Multiple tiers (free, pro, enterprise, etc.) - Stripe subscription integration - Auto-renewal and cancellation support - Current period tracking **Quota Management**: - Configurable usage alerts (80% default) - Per-user quota enforcement - Optional auto-suspend on quota exceeded - Grace period for payment failures (7 days default) - Quota.exceeded event emission **Database Schema** (5 tables): - billing_usage_records - Individual usage events - billing_invoices - Generated invoices with status - billing_subscriptions - User subscription plans - billing_payments - Payment transactions - billing_credits - Account credits **API Endpoints** (User): - GET /billing/usage - Current usage and costs - GET /billing/invoices - Invoice history - GET /billing/subscription - Active subscription - POST /billing/create-checkout - Start Stripe checkout - GET /billing/payment-methods - Saved payment methods **API Endpoints** (Admin): - GET /admin/billing/users - All users billing status - POST /admin/credits - Add credits to accounts - POST /admin/invoices - Generate manual invoices - GET /admin/reports - Usage reports **UI Components**: - BillingUsageWidget - Dashboard widget showing current usage - Billing & Usage page - User billing dashboard - Admin Billing Management page - Admin billing overview **Scheduled Jobs**: - calculate-usage (hourly) - Calculate active session usage - generate-invoices (monthly) - Generate monthly invoices - check-quotas (15 min) - Check usage against quotas **Events Emitted**: - billing.quota.warning - User approaching quota - billing.quota.exceeded - User exceeded quota - billing.invoice.created - Invoice generated - billing.invoice.paid - Payment received - billing.payment.failed - Payment failed **Stripe Integration**: - Checkout session creation - Webhook handling for payment events - Subscription management - Payment intent tracking - Configurable webhook secret **Configuration Options**: - Billing mode (usage/subscription/hybrid) - Compute rates (CPU, memory, storage) - Subscription plans with quotas - Invoice day of month - Usage calculation interval - Alert threshold percentage - Auto-suspend on overage - Grace period days **Documentation**: - Comprehensive README (400+ lines) - Setup instructions for Stripe - API usage examples - Troubleshooting guide - Best practices - Pricing examples Files: - plugins/streamspace-billing/manifest.json (195 lines) - plugins/streamspace-billing/billing_plugin.go (680 lines) - plugins/streamspace-billing/README.md (420 lines) - plugins/catalog.json (updated) Total: 1,295 lines of production-ready billing system This plugin demonstrates the full power of the StreamSpace plugin system: ✅ Database table creation and queries ✅ Scheduled background jobs ✅ API endpoint registration ✅ UI component registration ✅ Event handling and emission ✅ External service integration (Stripe) ✅ Complex business logic ✅ Admin and user interfaces
Remove billing handler and integration test code now handled by plugins: **Billing System Removed**: - Deleted api/internal/handlers/billing.go (1,114 lines) - Removed from main.go initialization and route registration - Now handled by streamspace-billing plugin **Integration Tests Updated**: - Modified integrations.go to redirect Slack/Teams/Discord/PagerDuty/Email to plugins - Removed 280+ lines of SMTP email testing code - Updated validation to reject deprecated integration types - Generic webhook system retained for custom integrations This reduces core codebase by ~1,400 lines while maintaining all functionality via plugins.
Create comprehensive monitoring integrations for observability platforms: **1. Datadog Plugin** (streamspace-datadog): - Custom metrics (sessions, resources, users) - Event tracking (session lifecycle, plugin events) - APM traces integration - Scheduled metric flushing (every 60s) - Global tags and custom attributes - Support for all Datadog regions (US1-5, EU1, AP1) **2. New Relic Plugin** (streamspace-newrelic): - Custom events and metrics - Insights API integration - Session duration tracking - Resource usage metrics (CPU, memory, storage) - User activity tracking - US and EU region support **3. Sentry Plugin** (streamspace-sentry): - Error and exception tracking - Performance monitoring with distributed tracing - Breadcrumb trail for debugging - Ignore patterns for noise reduction - User and session context - Stack trace capture - Release tracking **4. Elastic APM Plugin** (streamspace-elastic-apm): - Application Performance Monitoring - Distributed tracing with spans - Transaction sampling - Custom labels and context - Session lifecycle transactions - Resource usage tracking - Kibana integration **5. Honeycomb Plugin** (streamspace-honeycomb): - High-cardinality observability events - BubbleUp analysis support - Distributed tracing - Session duration and resource tracking - Event batching and sampling - Custom fields for deep analysis - User activity monitoring All plugins include: - Comprehensive README documentation - Full configuration schemas - Event handlers for session/user lifecycle - Scheduled jobs for metric flushing - Structured logging - Error handling and retry logic - Examples for dashboards, alerts, and queries
Add Datadog, New Relic, Sentry, Elastic APM, and Honeycomb plugins to the plugin marketplace catalog.
Create 3 comprehensive security and compliance plugins: **1. Compliance Framework Plugin** (streamspace-compliance): - GDPR, HIPAA, SOC2, ISO27001, PCI-DSS, FedRAMP frameworks - Compliance policies with enforcement levels - Violation tracking and resolution - Automated compliance checks - Compliance reports and dashboard - Data retention policies - Access control requirements - Violation actions (notify, block, suspend) - Database tables: compliance_frameworks, compliance_policies, compliance_violations, compliance_reports **2. Data Loss Prevention Plugin** (streamspace-dlp): - Clipboard controls (direction, size, content filtering) - File transfer controls (upload/download, size limits, type filtering, malware scanning) - Screen capture and watermarking controls - USB and peripheral device controls - Network access controls (domain/IP filtering) - Session controls (idle timeout, max duration, approval workflows) - Violation detection and enforcement - Database tables: dlp_policies, dlp_violations, dlp_audit_log **3. Advanced Audit Logging Plugin** (streamspace-audit-advanced): - Enhanced audit trail with advanced search - Export to CSV/JSON - Retention policies (2555 days default) - Log encryption - Compliance reporting - Database tables: audit_log_advanced, audit_exports **Core Cleanup**: - Removed api/internal/handlers/compliance.go (869 lines) - Removed api/internal/handlers/dlp.go (743 lines) - Removed api/internal/handlers/audit.go (368 lines) - Removed DLP routes from api/cmd/main.go - Removed compliance routes from api/cmd/main.go - Added comments directing users to install plugins - Total core reduction: ~2,000 lines All plugins include: - Complete manifest.json with configuration schemas - Database table definitions - API endpoint definitions - Admin UI page definitions - Event handlers for session/user lifecycle - Scheduled jobs for automated tasks - Comprehensive README documentation
Add Compliance Framework, DLP, and Advanced Audit Logging plugins to the plugin marketplace catalog.
Migrate session recording, snapshots, and workflow automation features from core to dedicated plugins. **New Plugins**: - streamspace-recording: Complete session recording system - Multiple formats (webm, mp4, vnc) - Recording policies and retention - Playback streaming and download - Automatic cleanup of expired recordings - streamspace-snapshots: Session state snapshots and restore - Snapshot scheduling and sharing - Compression and encryption - Automatic cleanup based on retention policies - Max snapshots per session limits - streamspace-workflows: Event-driven workflow automation - Triggers: session.created, session.terminated, user.login, schedule - Actions: webhook, email, snapshot, recording, script - Conditional logic and execution history - Per-user workflow limits **Core Cleanup** (~2,400 lines removed): - Removed api/internal/handlers/recording.go (890 lines) - Removed api/internal/handlers/snapshots.go (967 lines) - Removed api/internal/handlers/workflows.go (570 lines) - Updated api/cmd/main.go: - Removed snapshotsHandler initialization - Removed recording, snapshot, workflow route registrations - Added plugin redirect comments for all three features **Plugin Architecture**: - Complete manifest.json with configuration schemas - Database table creation in Initialize() method - Event handlers (OnSessionCreated, OnSessionTerminated, OnUserLogin) - Scheduled jobs (RunScheduledJob) for cleanup tasks - Comprehensive README documentation All functionality preserved during migration with zero truncation.
Add three new plugins to the plugin marketplace catalog: - streamspace-recording: Session recording with multiple formats (webm, mp4, vnc), retention policies, compliance recording - streamspace-snapshots: Session snapshots and restore with scheduling, sharing, compression, encryption - streamspace-workflows: Workflow automation with event-driven triggers and actions Total plugins in catalog: 18 (5 integrations, 1 billing, 5 monitoring, 3 security, 3 session management, 1 automation)
Migrate comprehensive analytics and reporting functionality from core to dedicated plugin. **New Plugin**: - streamspace-analytics-advanced: Complete analytics and reporting system - Usage analytics: trends, by-template, by-user, by-team - Session analytics: duration, lifecycle, peak times - User engagement: DAU/WAU/MAU, retention, power users - Resource analytics: utilization, trends, waste detection - Cost analytics: estimates, by-team, by-template - Automated reports: daily, weekly, monthly with email delivery **Features**: - Configurable cost model (CPU, memory, storage) - Analytics data caching for performance - Scheduled report generation (cron jobs) - Automatic cleanup of old analytics data - 90-day default retention period - Waste detection with actionable recommendations - Peak usage analysis by hour and day of week - Percentile-based session duration analysis - Power user identification (10+ sessions/month) **API Endpoints** (19 endpoints): - `/analytics/usage/*` - Usage trends and breakdowns - `/analytics/sessions/*` - Session metrics and analysis - `/analytics/engagement/*` - User engagement metrics - `/analytics/resources/*` - Resource utilization and waste - `/analytics/cost/*` - Cost estimation and analysis - `/analytics/reports/*` - Daily/weekly/monthly reports **Core Cleanup** (584 lines removed): - Removed api/internal/handlers/analytics.go (migrated to plugin) - Updated api/cmd/main.go: - Removed analyticsHandler initialization - Removed analytics route registrations - Added plugin redirect comment **Database Schema**: - analytics_cache: Query caching for performance - analytics_reports: Historical report storage **Scheduled Jobs**: - Generate daily report: Daily at 1:00 AM - Cleanup old analytics: Weekly on Sunday at 2:00 AM All analytics functionality preserved during migration with zero truncation.
Add streamspace-analytics-advanced plugin to the plugin marketplace catalog: - Advanced Analytics & Reporting: Comprehensive analytics for usage trends, session metrics, user engagement, resource utilization, and cost analysis - Category: Analytics - Features: DAU/WAU/MAU tracking, cost estimation, waste detection, automated reports, 19 API endpoints - Scheduled jobs: Daily reports, automatic cleanup Total plugins in catalog: 19 (5 integrations, 1 billing, 5 monitoring, 3 security, 3 session management, 1 automation, 1 analytics)
Add 5 new plugins to extend authentication and storage capabilities: **Authentication Plugins** (2 plugins): 1. **streamspace-auth-saml**: SAML 2.0 SSO authentication - Full SAML 2.0 protocol support - Major IdP support: Okta, OneLogin, Azure AD, Google Workspace, JumpCloud, Auth0 - Service Provider metadata auto-generation - Assertion Consumer Service (ACS) - Single Logout (SLO) support - IdP-initiated and SP-initiated flows - Request signing for enhanced security - Flexible attribute mapping - Auto-provisioning with configurable default roles - Force re-authentication option 2. **streamspace-auth-oauth**: OAuth2 / OIDC authentication - OAuth 2.0 and OpenID Connect 1.0 support - Pre-configured providers: Google, GitHub, GitLab, Okta, Azure AD, Auth0, Keycloak - OIDC discovery for automatic endpoint configuration - Flexible claims mapping - Auto-provisioning with default roles - Multi-provider support - ID token verification - UserInfo endpoint integration **Storage Backend Plugins** (3 plugins): 3. **streamspace-storage-s3**: AWS S3 and S3-compatible storage - AWS S3 native support - S3-compatible: MinIO, DigitalOcean Spaces, Wasabi, Backblaze B2 - Server-side encryption (AES256, AWS KMS) - Custom endpoints for private S3 deployments - Path-style URLs for MinIO compatibility - Multi-path storage (recordings, snapshots, uploads) - Bucket access verification 4. **streamspace-storage-azure**: Azure Blob Storage - Microsoft Azure Blob Storage support - Hot/Cool/Archive storage tiers - Private endpoint support - Multi-path storage organization - Shared key authentication 5. **streamspace-storage-gcs**: Google Cloud Storage - Full GCS support - Service account authentication - Storage classes: Standard, Nearline, Coldline, Archive - Multi-region bucket support - Multi-path storage organization **Plugin Features**: - Complete manifest.json with configuration schemas - Full Go implementations with proper error handling - Comprehensive README documentation - Admin UI integration - API endpoint definitions - Multi-provider/multi-backend support **Use Cases**: - Enterprise SSO with SAML (AD FS, Okta, Azure AD) - Modern OAuth login (Google, GitHub, GitLab) - Cloud object storage for recordings and snapshots - Multi-cloud storage strategies - Cost optimization with storage tiers All plugins follow StreamSpace plugin architecture with: - Zero-configuration auto-discovery - Event-driven lifecycle hooks - Database integration - Logging and monitoring - Hot reload support
Add 5 new plugins to the plugin marketplace catalog: **Authentication Plugins** (2): - streamspace-auth-saml: SAML 2.0 SSO authentication with major IdP support (Okta, OneLogin, Azure AD, Google Workspace, JumpCloud, Auth0) - streamspace-auth-oauth: OAuth2/OIDC authentication with provider support (Google, GitHub, GitLab, Okta, Azure AD, Auth0, Keycloak) **Storage Backend Plugins** (3): - streamspace-storage-s3: AWS S3 and S3-compatible storage (MinIO, DigitalOcean Spaces, Wasabi) - streamspace-storage-azure: Microsoft Azure Blob Storage - streamspace-storage-gcs: Google Cloud Storage Total plugins in catalog: 24 - Integrations: 5 - Business: 1 - Monitoring: 5 - Security: 3 - Session Management: 2 - Automation: 2 - Analytics: 1 - Authentication: 2 - Storage: 3
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
| ```json | ||
| { | ||
| "enabled": true, | ||
| "apiKey": "hcaik_1234567890abcdef", |
Contributor
There was a problem hiding this comment.
🛑 Gitleaks has detected a secret with rule-id generic-api-key in commit 75bb67a.
If this secret is a true positive, please rotate the secret ASAP.
If this secret is a false positive, you can add the fingerprint below to your .gitleaksignore file and commit the change to this branch.
echo 75bb67a839c78459922480742ddbcaeb67ab44ee:plugins/streamspace-honeycomb/README.md:generic-api-key:39 >> .gitleaksignore
JoshuaAFerguson
deleted the
claude/plugin-architecture-review-011vR7Wh1WpaW1kTzWx2roAU
branch
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
Comment on lines
+78
to
+82
| createSQL := fmt.Sprintf(` | ||
| CREATE TABLE IF NOT EXISTS %s ( | ||
| %s | ||
| ) | ||
| `, fullTableName, schema) |
Check warning
Code scanning / Semgrep OSS
Semgrep Finding: go.lang.security.audit.database.string-formatted-query.string-formatted-query Warning
| if err != nil { | ||
| return err | ||
| } | ||
| if _, err := io.Copy(f, tr); err != nil { |
Check warning
Code scanning / Semgrep OSS
Semgrep Finding: go.lang.security.decompression_bomb.potential-dos-via-decompression-bomb Warning
Comment on lines
+455
to
+460
| ctx.Database.QueryRow(fmt.Sprintf(` | ||
| SELECT COUNT(*) | ||
| FROM sessions | ||
| WHERE created_at >= NOW() - INTERVAL '7 days' | ||
| AND EXTRACT(EPOCH FROM (COALESCE(last_disconnect, NOW()) - created_at)) < 300 | ||
| `).Scan(&shortSessions) | ||
| AND EXTRACT(EPOCH FROM (COALESCE(last_disconnect, NOW()) - created_at)) < %d | ||
| `, shortSessionThreshold)).Scan(&shortSessions) |
Check warning
Code scanning / Semgrep OSS
Semgrep Finding: go.lang.security.audit.database.string-formatted-query.string-formatted-query Warning
Comment on lines
+463
to
+469
| ctx.Database.QueryRow(fmt.Sprintf(` | ||
| SELECT COUNT(*) | ||
| FROM sessions | ||
| WHERE state = 'running' | ||
| AND last_connection IS NOT NULL | ||
| AND NOW() - last_connection > INTERVAL '30 minutes' | ||
| `).Scan(&longIdleSessions) | ||
| AND NOW() - last_connection > INTERVAL '%d minutes' | ||
| `, idleTimeout)).Scan(&longIdleSessions) |
Check warning
Code scanning / Semgrep OSS
Semgrep Finding: go.lang.security.audit.database.string-formatted-query.string-formatted-query Warning
Comment on lines
+584
to
+587
| ctx.Database.Exec(fmt.Sprintf(` | ||
| DELETE FROM analytics_reports | ||
| WHERE generated_at < NOW() - INTERVAL '%d days' | ||
| `, p.config.RetentionDays)) |
Check warning
Code scanning / Semgrep OSS
Semgrep Finding: go.lang.security.audit.database.string-formatted-query.string-formatted-query Warning
Comment on lines
+228
to
+230
| tlsConfig := &tls.Config{ | ||
| ServerName: strings.Split(addr, ":")[0], | ||
| } |
Check warning
Code scanning / Semgrep OSS
Semgrep Finding: go.lang.security.audit.crypto.missing-ssl-minversion.missing-ssl-minversion Warning
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This commit introduces a complete plugin system to StreamSpace, enabling
modular extraction of non-core features to plugins. This will reduce the
core platform size and improve maintainability.
Plugin Runtime Infrastructure:
Plugin API Features:
Plugins now have access to:
Example Plugin - Slack Integration:
Complete, production-ready Slack plugin demonstrating the system:
Documentation:
features from core to plugins
Migration Plan:
Extract to plugins:
Impact:
Benefits:
This is the foundation for the plugin architecture. Next steps: