Merge pull request #6 from HardMax71/dev

Added publish scripts

Author: HardMax71

.env.example

@@ -0,0 +1,7 @@
+NEO4J_PASSWORD=your_secure_neo4j_password_here
+GRAFANA_ADMIN_PASSWORD=your_secure_grafana_password_here
+VITE_API_BASE_URL=http://localhost:8000
+VITE_GRAFANA_URL=http://grafana.localhost:8081
+
+# Frontend build target: dev (vite hot-reload) or prod (nginx static)
+FRONTEND_TARGET=dev

.github/workflows/publish-images.yml

@@ -0,0 +1,123 @@
+name: Build and Publish Docker Images
+
+on:
+  release:
+    types: [published]
+  push:
+    branches: [main]
+    paths:
+      - 'backend/**'
+      - 'frontend/**'
+      - '.github/workflows/publish-images.yml'
+  workflow_dispatch:
+    inputs:
+      push:
+        description: 'Push images to registry'
+        required: false
+        default: true
+        type: boolean
+
+env:
+  REGISTRY: ghcr.io
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+      attestations: write
+      id-token: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+          - image: backend
+            context: ./backend
+            dockerfile: ./backend/Dockerfile
+          - image: frontend
+            context: ./frontend
+            dockerfile: ./frontend/Dockerfile
+            target: prod
+            build-args: |
+              VITE_API_BASE_URL=/api
+              VITE_GRAFANA_URL=
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Log in to GitHub Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Extract metadata (tags, labels)
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ github.repository }}/${{ matrix.image }}
+          tags: |
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=semver,pattern={{major}},enable=${{ !startsWith(github.ref, 'refs/tags/v0.') }}
+            type=ref,event=branch
+            type=sha,prefix=sha-
+          flavor: |
+            latest=auto
+
+      - name: Build and push Docker image
+        id: push
+        uses: docker/build-push-action@v6
+        with:
+          context: ${{ matrix.context }}
+          file: ${{ matrix.dockerfile }}
+          target: ${{ matrix.target || '' }}
+          platforms: linux/amd64
+          push: ${{ github.event_name != 'workflow_dispatch' || inputs.push }}
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          build-args: ${{ matrix.build-args || '' }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+          provenance: true
+          sbom: true
+
+      - name: Generate artifact attestation
+        uses: actions/attest-build-provenance@v2
+        if: ${{ github.event_name != 'workflow_dispatch' || inputs.push }}
+        with:
+          subject-name: ${{ env.REGISTRY }}/${{ github.repository }}/${{ matrix.image }}
+          subject-digest: ${{ steps.push.outputs.digest }}
+          push-to-registry: true
+
+  summary:
+    needs: build
+    runs-on: ubuntu-latest
+    if: always()
+    steps:
+      - name: Create summary
+        run: |
+          echo "## Docker Image Build Summary" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "| Image | Status |" >> $GITHUB_STEP_SUMMARY
+          echo "|-------|--------|" >> $GITHUB_STEP_SUMMARY
+          if [ "${{ needs.build.result }}" = "success" ]; then
+            echo "| backend | passed |" >> $GITHUB_STEP_SUMMARY
+            echo "| frontend | passed |" >> $GITHUB_STEP_SUMMARY
+          else
+            echo "| backend | failed |" >> $GITHUB_STEP_SUMMARY
+            echo "| frontend | failed |" >> $GITHUB_STEP_SUMMARY
+          fi
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "### Pull commands" >> $GITHUB_STEP_SUMMARY
+          echo '```bash' >> $GITHUB_STEP_SUMMARY
+          echo "docker pull ghcr.io/${{ github.repository }}/backend:latest" >> $GITHUB_STEP_SUMMARY
+          echo "docker pull ghcr.io/${{ github.repository }}/frontend:latest" >> $GITHUB_STEP_SUMMARY
+          echo '```' >> $GITHUB_STEP_SUMMARY

.github/workflows/tests.yml

@@ -24,12 +24,12 @@ jobs:
       with:
         python-version: '3.12'
 
-    - name: Create .env file from example
+    - name: Create .env files
       run: |
+        cp .env.example .env
         cp backend/.env.example backend/.env
         sed -i "s|TEXT_LLM_API_KEY=.*|TEXT_LLM_API_KEY=$TEXT_LLM_API_KEY|" backend/.env
         sed -i "s|OCR_LLM_API_KEY=.*|OCR_LLM_API_KEY=$OCR_LLM_API_KEY|" backend/.env
-        echo "✓ Created .env file with API keys from secrets"
 
     - name: Start all services
       run: docker compose up -d --wait

.gitignore

@@ -2,3 +2,5 @@ uploads/
 .idea/
 .venv/
 __pycache__/
+.env
+traefik-dashboard-users

CONTRIBUTING.md

@@ -0,0 +1,156 @@
+# Contributing to ResuMariner
+
+## Development Setup
+
+### Backend Development
+
+The backend uses pre-commit hooks to ensure code quality. All linting and type checking is configured in `/backend/pyproject.toml`.
+
+#### Installing Pre-commit Hooks
+
+From the **backend directory**:
+
+```bash
+cd backend
+uv run pre-commit install
+```
+
+This will install git hooks that run automatically before each commit.
+
+#### Running Pre-commit Manually
+
+To run all checks on all files:
+
+```bash
+cd backend
+uv run pre-commit run --all-files
+```
+
+To run checks on staged files only:
+
+```bash
+cd backend
+uv run pre-commit run
+```
+
+#### Individual Tool Commands
+
+You can also run the tools individually:
+
+**Ruff (linting and auto-fix):**
+```bash
+cd backend
+uv run ruff check --fix .
+```
+
+**Ruff (formatting):**
+```bash
+cd backend
+uv run ruff format .
+```
+
+**MyPy (type checking):**
+```bash
+cd backend
+uv run mypy . --config-file pyproject.toml
+```
+
+## Code Quality Standards
+
+### Python Backend
+
+- **Linting**: Ruff with the configuration in `backend/pyproject.toml`
+  - Line length: 120 characters
+  - Target: Python 3.12
+  - Selected rules: E (pycodestyle errors), W (warnings), F (pyflakes), I (isort), B (bugbear), C4 (comprehensions), UP (pyupgrade)
+
+- **Formatting**: Ruff formatter
+  - Double quotes
+  - Space indentation
+  - Auto-formatting before commit
+
+- **Type Checking**: MyPy with strict settings
+  - Check untyped definitions enabled
+  - Warn on unused configs
+  - Test files excluded from strict checking
+
+### Pre-commit Hook Configuration
+
+The backend uses a `.pre-commit-config.yaml` file with three hooks:
+
+1. **ruff-check**: Runs linting and auto-fixes issues
+2. **ruff-format**: Formats code according to style guide
+3. **mypy**: Type checks all Python code
+
+All hooks use `uv run` to ensure they run in the correct virtual environment.
+
+### Important Notes
+
+- Pre-commit hooks are configured in `/backend/.pre-commit-config.yaml`
+- Always run commands from the `/backend` directory
+- The hooks use `pass_filenames: false` to run on all files in the backend directory
+- `fail_fast: false` means all hooks will run even if one fails
+
+## Testing
+
+Run tests with pytest:
+
+```bash
+cd backend
+uv run pytest
+```
+
+Run tests for a specific app:
+
+```bash
+cd backend
+uv run pytest core/
+uv run pytest processor/
+uv run pytest storage/
+uv run pytest search/
+```
+
+## Docker Development
+
+Build and run the full stack:
+
+```bash
+docker compose up -d
+```
+
+Rebuild specific services:
+
+```bash
+docker compose build backend backend-worker-processing backend-worker-cleanup
+docker compose up -d backend backend-worker-processing backend-worker-cleanup
+```
+
+Force rebuild without cache:
+
+```bash
+docker compose build --no-cache backend backend-worker-processing backend-worker-cleanup
+```
+
+## Common Workflows
+
+### Making Changes to Backend Code
+
+1. Make your changes
+2. Run pre-commit hooks: `cd backend && uv run pre-commit run --all-files`
+3. Fix any issues reported
+4. Commit your changes (hooks will run automatically)
+5. If hooks fail, fix issues and commit again
+
+### Adding New Dependencies
+
+1. Edit `backend/pyproject.toml`
+2. Run `cd backend && uv lock` to update lockfile
+3. Rebuild Docker containers
+4. Test the changes
+
+### Before Opening a Pull Request
+
+1. Ensure all pre-commit hooks pass: `cd backend && uv run pre-commit run --all-files`
+2. Run the full test suite: `cd backend && uv run pytest`
+3. Test the application with Docker: `docker compose up -d`
+4. Verify all services are healthy: `docker compose ps`

README.md

@@ -31,6 +31,8 @@ This project started after one of those meetings where "simple resume parsing" e
 
 The system handles CV uploads (PDF, DOCX, JPG formats), parses them into structured data, and makes them searchable. You can throw natural language queries at it ("find someone who's built payment systems") or search by specific criteria (5+ years Python, knows Docker, lives in Berlin). There's also a hybrid mode that combines both approaches when you need the flexibility of semantic search with the precision of structured filters.
 
+The frontend is a React + TypeScript app (Vite) with pages for CV upload, job status tracking, search across all three modes, health monitoring, and admin cleanup.
+
 ## Architecture
 
 V1 was microservices. Spent more time coordinating services than building features, plus the "single source of truth" problem for shared domain objects (Resume, AIReview) had no good solution - shared libs and copypasting both were bad. V2 is a Django monolith with clean separation through apps.
@@ -53,7 +55,7 @@ Then run:
 docker-compose up --build
 ```
 
-The backend API will be at http://localhost:8000 and the Traefik dashboard at http://localhost:8080. Frontend will be at http://localhost:5173. 
+The backend API will be at http://localhost:8000 and the frontend at http://localhost:5173. 
 
 ## How the API works