Skip to content

williaby/ledgerbase

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

143 Commits
.github
.github
 
 
docker
docker
 
 
docs
docs
 
 
notebooks
notebooks
 
 
scripts
scripts
 
 
src
src
 
 
templates
templates
 
 
tests
tests
 
 
.bandit
.bandit
 
 
.coverage
.coverage
 
 
.dockerignore
.dockerignore
 
 
.editorconfig
.editorconfig
 
 
.envrc
.envrc
 
 
.gitattributes
.gitattributes
 
 
.gitguardian.yaml
.gitguardian.yaml
 
 
.gitignore
.gitignore
 
 
.gitleaks.toml
.gitleaks.toml
 
 
.hadolint.yaml
.hadolint.yaml
 
 
.markdownlint.jsonc
.markdownlint.jsonc
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
.prettierrc
.prettierrc
 
 
.readthedocs.yaml
.readthedocs.yaml
 
 
.secrets.baseline
.secrets.baseline
 
 
.secretsignore
.secretsignore
 
 
.semgrepignore
.semgrepignore
 
 
.snyk
.snyk
 
 
.sops.yaml
.sops.yaml
 
 
.taplo.toml
.taplo.toml
 
 
.trivyignore
.trivyignore
 
 
.trufflehog.toml
.trufflehog.toml
 
 
.vale.ini
.vale.ini
 
 
.yamllint
.yamllint
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
bandit-results.json
bandit-results.json
 
 
check-system.sh
check-system.sh
 
 
codecov.yml
codecov.yml
 
 
config_types.py
config_types.py
 
 
custom-rules.yml
custom-rules.yml
 
 
decrypt_env.sh
decrypt_env.sh
 
 
dev-requirements.txt
dev-requirements.txt
 
 
docker-compose.yml
docker-compose.yml
 
 
encrypt_env.sh
encrypt_env.sh
 
 
encryption.py
encryption.py
 
 
generate_requirements.sh
generate_requirements.sh
 
 
load_env.py
load_env.py
 
 
main.py
main.py
 
 
mypy.ini
mypy.ini
 
 
noxfile.py
noxfile.py
 
 
poetry.lock
poetry.lock
 
 
poetry.toml
poetry.toml
 
 
precommit.log
precommit.log
 
 
pyproject.toml
pyproject.toml
 
 
pytest.ini
pytest.ini
 
 
requirements.txt
requirements.txt
 
 
semgrep.yml
semgrep.yml
 
 
trivy.policy.yaml
trivy.policy.yaml
 
 
trufflehog.toml
trufflehog.toml
 
 
validate_env_keys.sh
validate_env_keys.sh
 
 
vulture_whitelist.py
vulture_whitelist.py
 
 

Repository files navigation

LedgerBase

LedgerBase is a modular financial transaction classification and budgeting platform designed for centralized, transparent, and analyzable financial recordkeeping. Built with modern Python practices and cloud-native tools, it supports multi-account imports, vendor classification, budget tracking, and reconciliation with actual savings.

🛡️ Security Workflow Status

Workflow Status
Bandit Bandit
pip-audit pip-audit
Semgrep Semgrep
Snyk Snyk
Trivy Trivy
Safety Safety

Repository Scorecard: OpenSSF Scorecard

🧩 Stack

  • Python 3.12+
  • Poetry – Dependency management
  • Flask – Backend API framework
  • PostgreSQL – Primary data store
  • Docker Compose – Container orchestration
  • GitHub Actions – CI/CD
  • Bandit, Flake8, Mypy, Black, Isort – Code quality and security checks

📦 Features

  • ETL pipeline for importing and normalizing transactions
  • Vendor dictionary with regex-based classification
  • Budgeting system with historical and savings-based models
  • Person-level tagging for family member analysis
  • Reimbursement and savings account reconciliation
  • Modular service structure for maintainability

🚀 Getting Started

Prerequisites

  • Python 3.12+
  • Docker & Docker Compose
  • Poetry (pip install poetry)

Clone the repository

git clone https://github.com/williaby/ledgerbase.git
cd ledgerbase

Install dependencies

poetry install

Run locally

poetry run flask run

For detailed setup and architecture, see docs/setup-instructions.md.

🧪 Testing and Linting

poetry run pytest
poetry run flake8
poetry run bandit -r src
poetry run mypy src

Or run everything with:

pre-commit run --all-files

Note: Ensure pre-commit is installed and initialized:

poetry run pre-commit install

🔐 Security

The project integrates static security analysis via:

  • Bandit – Python vulnerability scanning
  • Trivy – Docker image scanning
  • Snyk – Dependency vulnerability scanning
  • detect-secrets – Secret leak prevention

🛠️ Development

The codebase uses a modular layout under src/ledgerbase/. Each service (e.g., plaid_service, etl, security) follows single responsibility principles.

Docker Compose

docker-compose up --build

Use the included Dockerfile in src/flask/ for Flask containerization.

🧬 Contributing

We welcome contributions and suggestions! To get started:

  1. Fork the repo
  2. Create your branch: git checkout -b feature/xyz
  3. Commit your changes: git commit -am 'Add xyz'
  4. Push to the branch: git push origin feature/xyz
  5. Create a pull request

Please ensure you run the full pre-commit suite and tests before submitting PRs.

🪪 License

MIT License. See LICENSE for details.

👤 Maintainer

Byron Williams CPA GitHub: @williaby

About

No description, website, or topics provided.

Resources

Readme

License

MIT license

Contributing

Contributing

Security policy

Security policy
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages