feat(comment-spam): 3-tier moderation alerting to admin Telegram (notify-only)

[mashbean]

What

Wires a 3-tier spam classification into detectSpam and surfaces all three tiers to the admin Telegram chat, reusing the existing report-alert SQS → reportTelegramAlert worker (new alert source spam_detection).

Notify-only. This never hides a comment — auto-action stays behind the separate, still-off commentSpamAutoCollapse. Gated by MATTERS_COMMENT_SPAM_ALERT (default off), so it's a no-op until ops opts in.

Why

A high spam score alone can't separate true spam from false positives. On matters_prod (7-day window, spamScore ≥ 0.94 band, the live system threshold) precision is only ~60%:

• escort ads (0.996) score the same as 中文 creative writing (0.992), short genuine replies, and opinion comments.
• account age doesn't separate either — an escort account was 818 days old with 883 articles.

What cleanly partitions them (zero false positives on the real high-score set) is a compound gate:

Tier	Rule	Catches
A — auto	score≥threshold ∧ contact-channel ∧ solicitation-keyword	escort / paid-services / account-selling / betting promo
B — ring	author repeats near-identical content (≥3 within 30d)	templated link-builder spam
C — review	high score, neither A nor B	creative writing / opinions / replies → human confirms, never auto-acted

How

• commentSpamSignals.ts — pure, fully unit-tested gate (regexes + char-3gram Jaccard ring helpers). Validated against the real prod high-score set.
• commentService.detectSpam → _alertSpamIfHighScore (tier + enqueue) and _isAuthorRepeating (one bounded read of the author's recent comments, only for the rare high-score comments).
• reportTelegramAlert worker: new spam_detection source + per-tier reason labels.

Rollout

Ship behind the flag → turn on MATTERS_COMMENT_SPAM_ALERT in prod → watch the Telegram feed to confirm Tier A stays clean → only then consider enabling auto-action.

🤖 Generated with Claude Code

[codecov]

Codecov Report

❌ Patch coverage is 94.20290% with 4 lines in your changes missing coverage. Please review.
✅ Project coverage is 72.68%. Comparing base (571c047) to head (b12c8b7).
⚠️ Report is 19 commits behind head on develop.

Files with missing lines	Patch %	Lines
src/connectors/commentService.ts	86.66%	3 Missing and 1 partial ⚠️

Additional details and impacted files

@@             Coverage Diff             @@
##           develop    #4851      +/-   ##
===========================================
+ Coverage    72.59%   72.68%   +0.08%     
===========================================
  Files         1067     1068       +1     
  Lines        21178    21246      +68     
  Branches      4623     4641      +18     
===========================================
+ Hits         15374    15442      +68     
+ Misses        5326     5325       -1     
- Partials       478      479       +1     

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.