docs: Remove unimplemented curation requirement and enhance security (#10)

MoonBoi9001 · claude · web-flow · commit ee06dee778cb · 2025-07-25T20:33:13.000+03:00
* docs: Remove unimplemented 500 GRT curation signal requirement Remove references to 500 GRT curation signal requirement from documentation and code comments since this feature is not actually implemented in the SQL query logic. This ensures documentation accurately reflects the current implementation which only checks HTTP status, latency, and block freshness. Changes: - Remove curation signal bullet point from ELIGIBILITY_CRITERIA.md - Remove curation signal references from BigQuery provider comments - Update .gitignore for better macOS and Claude directory handling - Add comprehensive project documentation (CLAUDE.md) - Update session context with current implementation state 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> * docs: Add security guidelines for sensitive information handling Add explicit security guidelines to CLAUDE.md emphasizing that Claude should never commit secrets, keys, or credentials to the repository. This ensures proper security practices are followed when AI assists with development. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> * security: Enhance repository security for public access Strengthen security measures for public repository: - Expand .gitignore to cover more sensitive file types: * Environment files (.env, .env.*) * Keys and certificates (*.key, *.pem, *.p12, *.pfx) * Secret directories (**/secrets/, **/private/, .secrets) * Comprehensive Python cache and build files - Add detailed security guidelines to CLAUDE.md: * Clear warning about public repository status * Protected file types documentation * Pre-commit security checklist * Emergency procedures for accidental credential exposure These changes ensure better protection against accidental credential exposure in this public repository. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> * docs: Add Git safety guidelines for force push protection Add explicit guidelines to prevent dangerous force push operations: - Prohibit 'git push --force' which can cause data loss - Mandate 'git push --force-with-lease' as safer alternative - Emphasize communication before history rewriting This ensures safer Git practices and prevents accidental history overwrites. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> --------- Co-authored-by: Claude <noreply@anthropic.com>
diff --git a/.gitignore b/.gitignore
@@ -1,6 +1,15 @@
 # Ignore sensitive configuration files and credentials
 .env
+.env.*
 config.toml
+credentials.json
+*.key
+*.pem
+*.p12
+*.pfx
+**/secrets/
+**/private/
+.secrets
 
 # Ignore virtual environments
 venv/
@@ -14,12 +23,49 @@ subgraph/
 # Ignore real contract files but allow placeholders
 contracts/contract.abi.json
 
-# Ignore Ruff
-.ruff_cache/
-/tests/__pycache__
-/src/utils/__pycache__
-/src/models/__pycache__
+# Python cache and build files
+__pycache__/
+*.py[cod]
+*$py.class
+*.so
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# Testing and coverage
 .coverage
+.pytest_cache/
+.tox/
+.nox/
+htmlcov/
+.coverage.*
+coverage.xml
+*.cover
+.hypothesis/
+
+# Ruff
+.ruff_cache/
 
 # Ignore docker compose override file
 docker-compose.override.yml
+SESSION_CONTEXT.md
+
+# macOS system files
+.DS_Store
+**/.DS_Store
+
+# Claude directory - we keep .claude/ for team sharing but ignore system files within it
+.claude/.DS_Store
diff --git a/CLAUDE.md b/CLAUDE.md
@@ -0,0 +1,175 @@
+# CLAUDE.md
+
+This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
+
+## Project Overview
+
+Service Quality Oracle is a Python-based Docker containerized service that:
+- Fetches indexer performance data from Google BigQuery daily at 10:00 UTC
+- Processes data to determine indexer issuance rewards eligibility based on threshold algorithms
+- Posts eligibility updates on-chain to the ServiceQualityOracle contract
+- Implements resilient RPC failover with circuit breaker pattern
+- Sends Slack notifications for monitoring
+
+## Key Commands
+
+### Development Setup
+```bash
+# Create and activate virtual environment
+python3 -m venv venv
+source venv/bin/activate
+
+# Install dependencies
+pip install -r requirements.txt
+```
+
+### Linting and Formatting
+```bash
+# CRITICAL: Always run this before committing - CI enforces this
+./scripts/ruff_check_format_assets.sh
+
+# Optional additional checks
+mypy src/ --ignore-missing-imports
+bandit -r src/
+```
+
+### Testing
+```bash
+# Run all tests with coverage
+pytest
+
+# Run specific test file
+pytest tests/test_blockchain_client.py
+
+# Run tests matching pattern
+pytest -k "test_failover"
+
+# Run with verbose output
+pytest -v
+```
+
+### Docker Operations
+```bash
+# Build and run with Docker Compose
+docker-compose up --build -d
+
+# Monitor logs
+docker-compose logs -f
+
+# Check container health
+docker-compose ps
+```
+
+### Test Notifications
+```bash
+# Test Slack webhook
+export SLACK_WEBHOOK_URL="your_webhook_url"
+./scripts/test_slack_notifications.py
+```
+
+## Architecture Overview
+
+The system follows a clear data pipeline with daily scheduled execution:
+
+1. **Scheduler (src/models/scheduler.py)**: Main entry point that runs daily at configured time, manages catch-up runs for missed days, and handles the application lifecycle.
+
+2. **Orchestrator (src/models/service_quality_oracle.py)**: Coordinates the end-to-end oracle run process by managing the flow between components.
+
+3. **BigQuery Provider (src/models/bigquery_provider.py)**: Executes SQL queries against BigQuery to fetch indexer performance metrics.
+
+4. **Eligibility Pipeline (src/models/eligibility_pipeline.py)**: Processes raw data, applies threshold algorithms per ELIGIBILITY_CRITERIA.md, generates CSV artifacts for auditing.
+
+5. **Blockchain Client (src/models/blockchain_client.py)**: Handles on-chain transactions with automatic RPC provider failover, transaction batching, and gas optimization.
+
+6. **Circuit Breaker (src/utils/circuit_breaker.py)**: Prevents infinite restart loops by tracking failure patterns and halting execution when threshold exceeded.
+
+7. **Slack Notifier (src/utils/slack_notifier.py)**: Sends operational notifications for success/failure monitoring.
+
+## Critical Implementation Details
+
+### RPC Failover Strategy
+- Multiple RPC providers configured with automatic rotation on failure
+- Each provider gets 5 retry attempts with exponential backoff
+- Circuit breaker prevents cascade failures
+- Slack notifications sent on provider rotation
+
+### Configuration Management
+- Primary config in `config.toml` (never commit actual values)
+- Sensitive data via environment variables (BLOCKCHAIN_PRIVATE_KEY, etc.)
+- Google Cloud auth via GOOGLE_APPLICATION_CREDENTIALS or credentials.json
+
+### Data Persistence
+- Last successful run date stored in `/app/data/last_run.txt`
+- CSV outputs saved to `/app/data/output/YYYY-MM-DD/`
+- Catch-up mechanism limits to 7 days of historical data to control BigQuery costs
+
+### Testing Patterns
+- Extensive use of mocks for external services (BigQuery, Web3, Slack)
+- Snapshot testing for SQL queries via pytest-snapshot
+- Parametrized tests for edge cases
+- All new features require corresponding tests
+
+### Error Handling
+- Retryable errors handled with exponential backoff via tenacity
+- Non-retryable errors trigger immediate failure and notifications
+- All exceptions logged with context before re-raising
+- System exits with code 1 on failure for Docker restart
+
+## Development Guidelines
+
+### Before Making Changes
+1. Read ELIGIBILITY_CRITERIA.md to understand current indexer requirements
+2. Check existing patterns in similar files
+3. Run tests to ensure baseline functionality
+
+### Code Style Enforcement
+- Ruff configuration in pyproject.toml enforces strict formatting
+- Custom formatter applies additional spacing rules
+- Line length limit: 115 characters
+- Import sorting via isort rules
+
+### Git Safety Guidelines
+- **NEVER use `git push --force`** - this can overwrite remote history and cause data loss
+- **Always use `git push --force-with-lease`** if you must force push - it checks that remote hasn't changed
+- Prefer rebasing and clean history over force pushing when possible
+- Always communicate with team before any history rewriting operations
+
+### PR Requirements
+- Must pass `./scripts/ruff_check_format_assets.sh` without changes
+- All tests must pass
+- Docker build must succeed
+- Non-empty PR title and description required
+
+## Security Guidelines
+
+### ⚠️ CRITICAL: This is a PUBLIC repository
+
+### Sensitive Information Handling
+- **NEVER commit secrets, keys, or credentials** to the repository
+- **NEVER commit actual config.toml files** - only commit config.toml.example with placeholder values
+- Always follow security best practices when handling private keys and API tokens
+- Never introduce code that exposes or logs secrets and keys
+- Use environment variables for sensitive configuration (see config.toml.example)
+- Verify that .gitignore properly excludes sensitive files before committing
+
+### Protected File Types (automatically ignored by .gitignore)
+- Environment files: `.env`, `.env.*`
+- Configuration: `config.toml`, `credentials.json`
+- Keys/Certificates: `*.key`, `*.pem`, `*.p12`, `*.pfx`
+- Secret directories: `**/secrets/`, `**/private/`, `.secrets`
+
+### Security Checklist Before Commits
+1. ✅ Run `git status` and verify no sensitive files are staged
+2. ✅ Review `git diff --cached` for any accidentally included secrets
+3. ✅ Ensure all examples use placeholder values (e.g., `"your_key_here"`)
+4. ✅ Never hardcode real addresses, URLs, or API endpoints
+5. ✅ Use descriptive placeholder text that shows expected format
+
+### Emergency: If Sensitive Data is Committed
+1. **DO NOT** just delete the file in a new commit - the data remains in Git history
+2. Immediately rotate/invalidate the exposed credentials
+3. Contact repository administrators to discuss history rewriting if necessary
+4. Consider the credential permanently compromised
+
+# Session Context Import
+@./SESSION_CONTEXT.md
diff --git a/ELIGIBILITY_CRITERIA.md b/ELIGIBILITY_CRITERIA.md
@@ -25,7 +25,6 @@ The following criteria are used to identify indexers that should be eligible to
   - Query Response HTTP Status: **200 OK**.
   - Query Response Latency: **< 5,000 ms**.
   - Query Freshness: **< 50,000 blocks** behind chainhead.
-  - Subgraph Curation Signal: **≥ 500 GRT**.
 
 Eligibility for indexing rewards is typically refreshed daily via the ServiceQualityOracle contract.
 
@@ -42,6 +41,6 @@ This table tracks changes to the indexing rewards eligibility requirements over
 |----------------------|---------------------|-----------------------------|-------------|---------------|-------|
 | **Indexer Activity** | Indexers must be active for **5+ days** in a given **28 day** period for indexing rewards eligibility. | TBD | Initial | Encourages indexers to familiarize themselves with infrastructure maintenance and ongoing operations. | Planned for Service Quality Oracle launch |
 | **Query Qualification** | Indexers must serve **≥1 qualifying query** on **≥10 different subgraphs** in a day for the day to count towards the **Indexer Activity** requirement. | TBD | Initial | Encourages indexers to become familiar with the process of syncing a range of subgraphs. | Planned for Service Quality Oracle launch |
-| **Query Response Quality** | *•* Query Response HTTP Status: **200 OK**<br>*•* Query Response Latency: **< 5,000 ms**<br>*•* Query Freshness: **< 50,000 blocks** behind chainhead.<br>*•* Subgraph Curation Signal: **≥ 500 GRT**. | TBD | Initial | *•* Indexer infrastructure needs to serve successful queries to benefit data consumers.<br>*•* Fast query responses are important to data consumers.<br>*•* Encourages indexers to sync to chainhead.<br>*•* Creates a barrier against gaming eligibility requirements. | Planned for Service Quality Oracle launch |
+| **Query Response Quality** | *•* Query Response HTTP Status: **200 OK**<br>*•* Query Response Latency: **< 5,000 ms**<br>*•* Query Freshness: **< 50,000 blocks** behind chainhead. | TBD | Initial | *•* Indexer infrastructure needs to serve successful queries to benefit data consumers.<br>*•* Fast query responses are important to data consumers.<br>*•* Encourages indexers to sync to chainhead. | Planned for Service Quality Oracle launch |
 
 ---
diff --git a/src/models/bigquery_provider.py b/src/models/bigquery_provider.py
@@ -63,9 +63,7 @@ def _get_indexer_eligibility_query(self, start_date: date, end_date: date) -> st
         - A qualifying query is defined as one that meets all of the following criteria:
             - HTTP status '200 OK',
             - Response latency <5,000ms,
-            - Blocks behind <50,000,
-            - Subgraph has >=500 GRT signal at query time
-        Note: The 500 GRT curation signal requirement is not currently implemented.
+            - Blocks behind <50,000
 
         Args:
             start_date (date): The start date for the data range.
