added 3D preview, CI pipelines

Author: VladM7

.github/dependabot.yml

@@ -0,0 +1,35 @@
+# Dependabot configuration file
+# Docs: https://docs.github.com/code-security/dependabot/working-with-dependabot/availability-of-dependabot-features
+version: 2
+updates:
+  # NuGet packages
+  - package-ecosystem: "nuget"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "03:00"
+      timezone: "Etc/UTC"
+    open-pull-requests-limit: 10
+    target-branch: "overhaul"
+    rebase-strategy: "auto"
+    groups:
+      minor-and-patch:
+        update-types: ["minor", "patch"]
+      major:
+        update-types: ["major"]
+
+  # GitHub Actions
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "03:30"
+      timezone: "Etc/UTC"
+    open-pull-requests-limit: 10
+    target-branch: "overhaul"
+    rebase-strategy: "auto"
+    groups:
+      actions:
+        patterns: ["*"]

.github/workflows/build-test.yml

@@ -0,0 +1,58 @@
+name: Dotnet Build and Test
+
+on:
+  push:
+    branches: [ main, overhaul ]
+  pull_request:
+    branches: [ main, overhaul ]
+
+permissions:
+  contents: read
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+jobs:
+  build-test:
+    name: Build and test
+    runs-on: windows-latest
+    env:
+      DOTNET_CLI_TELEMETRY_OPTOUT: 1
+      DOTNET_NOLOGO: 1
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Setup .NET 9 SDK
+        uses: actions/setup-dotnet@v4
+        with:
+          dotnet-version: 9.0.x
+          cache: true
+          cache-dependency-path: |
+            **/*.sln
+            **/*.csproj
+
+      - name: Restore
+        run: dotnet restore
+
+      - name: Build
+        run: dotnet build --configuration Release --no-restore /p:ContinuousIntegrationBuild=true
+
+      - name: Test
+        if: ${{ hashFiles('**/*Tests.csproj') != '' || hashFiles('**/*Test.csproj') != '' }}
+        run: >-
+          dotnet test --configuration Release --no-build --verbosity normal
+          --collect:"XPlat Code Coverage" --logger "trx;LogFileName=test_results.trx"
+
+      - name: Upload test results
+        if: ${{ always() && (hashFiles('**/*Tests.csproj') != '' || hashFiles('**/*Test.csproj') != '' ) }}
+        uses: actions/upload-artifact@v4
+        with:
+          name: test-results
+          path: |
+            **/TestResults/*.trx
+            **/TestResults/**/coverage.cobertura.xml
+          if-no-files-found: ignore

.github/workflows/codeql.yml

@@ -0,0 +1,54 @@
+name: CodeQL
+
+on:
+  push:
+    branches: [ main, overhaul ]
+  pull_request:
+    branches: [ main, overhaul ]
+  schedule:
+    - cron: '0 3 * * 1'
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  security-events: write
+  actions: read
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+jobs:
+  analyze:
+    name: CodeQL analyze (C#)
+    runs-on: windows-latest
+    env:
+      DOTNET_CLI_TELEMETRY_OPTOUT: 1
+      DOTNET_NOLOGO: 1
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup .NET 9 SDK
+        uses: actions/setup-dotnet@v4
+        with:
+          dotnet-version: 9.0.x
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v3
+        with:
+          languages: csharp
+
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v3
+
+      - name: Manual build fallback
+        if: failure()
+        run: |
+          dotnet restore
+          dotnet build --configuration Release --no-restore
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v3
+        with:
+          category: '/language:csharp'

.github/workflows/dependency-review.yml

@@ -0,0 +1,25 @@
+name: Dependency Review
+
+on:
+  pull_request:
+
+permissions:
+  contents: read
+
+jobs:
+  dependency-review:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Dependency Review
+        uses: actions/dependency-review-action@v4
+        with:
+          allow-licenses: ''
+          deny-licenses: ''
+          fail-on-severity: high
+          warn-only: false
+          comment-summary-in-pr: true

.github/workflows/vulnerability-audit.yml

@@ -0,0 +1,51 @@
+name: Vulnerability Audit
+
+on:
+  schedule:
+    - cron: '0 4 * * 1' # Weekly on Mondays at 04:00 UTC
+  workflow_dispatch:
+
+permissions:
+  contents: read
+
+jobs:
+  audit:
+    runs-on: windows-latest
+    env:
+      DOTNET_CLI_TELEMETRY_OPTOUT: 1
+      DOTNET_NOLOGO: 1
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup .NET 9 SDK
+        uses: actions/setup-dotnet@v4
+        with:
+          dotnet-version: 9.0.x
+
+      - name: Restore
+        run: dotnet restore
+
+      - name: List vulnerable packages (JSON)
+        run: |
+          dotnet list package --vulnerable --include-transitive --format json > vuln-report.json
+          type vuln-report.json
+
+      - name: Fail on high/critical vulnerabilities
+        shell: pwsh
+        run: |
+          $content = Get-Content vuln-report.json -Raw
+          $high = [regex]::Matches($content, '"severity"\s*:\s*"High"', 'IgnoreCase').Count
+          $critical = [regex]::Matches($content, '"severity"\s*:\s*"Critical"', 'IgnoreCase').Count
+          $total = $high + $critical
+          Write-Host "High: $high, Critical: $critical"
+          if ($total -gt 0) {
+            throw "Found $total High/Critical vulnerabilities"
+          }
+
+      - name: Upload audit artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: vulnerability-audit
+          path: vuln-report.json
+          if-no-files-found: error

Data/Repositories/ISkuRepository.cs

@@ -10,5 +10,8 @@ public interface ISkuRepository
         Task UpdateAsync(SKU sku, CancellationToken ct = default);
         Task DeleteAsync(string skuId, CancellationToken ct = default);
         Task<int> SaveChangesAsync(CancellationToken ct = default);
+        event EventHandler<SKU>? SkuAdded;
+        event EventHandler<SKU>? SkuUpdated;
+        event EventHandler<string>? SkuDeleted;
     }
 }

Data/Repositories/SkuRepository.cs

@@ -5,6 +5,10 @@ namespace Stack_Solver.Data.Repositories
 {
     public class SkuRepository(IDbContextFactory<ApplicationDbContext> factory) : ISkuRepository
     {
+        public event EventHandler<SKU>? SkuAdded;
+        public event EventHandler<SKU>? SkuUpdated;
+        public event EventHandler<string>? SkuDeleted;
+
         public async Task<IList<SKU>> GetAllAsync(CancellationToken ct = default)
         {
             using var db = await factory.CreateDbContextAsync(ct);
@@ -22,13 +26,15 @@ public async Task AddAsync(SKU sku, CancellationToken ct = default)
             using var db = await factory.CreateDbContextAsync(ct);
             db.Skus.Add(sku);
             await db.SaveChangesAsync(ct);
+            SkuAdded?.Invoke(this, sku);
         }
 
         public async Task UpdateAsync(SKU sku, CancellationToken ct = default)
         {
             using var db = await factory.CreateDbContextAsync(ct);
             db.Skus.Update(sku);
             await db.SaveChangesAsync(ct);
+            SkuUpdated?.Invoke(this, sku);
         }
 
         public async Task DeleteAsync(string skuId, CancellationToken ct = default)
@@ -39,6 +45,7 @@ public async Task DeleteAsync(string skuId, CancellationToken ct = default)
             {
                 db.Skus.Remove(entity);
                 await db.SaveChangesAsync(ct);
+                SkuDeleted?.Invoke(this, skuId);
             }
         }