Merge pull request #1 from jeremyeder/refactor/remove-fastapi-app

refactor: Convert to documentation-only reference repository

Author: jeremyeder

.github/workflows/ci.yml

@@ -7,63 +7,34 @@ on:
     branches: [main]
 
 jobs:
-  lint-and-test:
+  documentation-quality:
     runs-on: ubuntu-latest
-    strategy:
-      matrix:
-        python-version: ["3.11", "3.12"]
 
     steps:
       - uses: actions/checkout@v4
 
-      - name: Set up Python ${{ matrix.python-version }}
+      - name: Set up Python 3.11
         uses: actions/setup-python@v5
         with:
-          python-version: ${{ matrix.python-version }}
-
-      - name: Install uv
-        run: |
-          curl -LsSf https://astral.sh/uv/install.sh | sh
-          echo "$HOME/.cargo/bin" >> $GITHUB_PATH
+          python-version: "3.11"
 
       - name: Install dependencies
         run: |
-          uv pip install --system -r requirements-dev.txt
-
-      - name: Run black
-        run: black --check app/ tests/
-
-      - name: Run isort
-        run: isort --check-only app/ tests/
+          pip install markdownlint-cli
 
-      - name: Run ruff
-        run: ruff check app/ tests/
-
-      - name: Run tests with coverage
-        run: pytest --cov=app --cov-report=xml --cov-report=term-missing
-
-      - name: Upload coverage to Codecov
-        uses: codecov/codecov-action@v4
-        with:
-          files: ./coverage.xml
-          flags: unittests
-          name: codecov-${{ matrix.python-version }}
-
-  build-container:
-    runs-on: ubuntu-latest
-    needs: lint-and-test
-
-    steps:
-      - uses: actions/checkout@v4
+      - name: Lint markdown files
+        run: |
+          markdownlint docs/**/*.md README.md CLAUDE.md || true
 
-      - name: Build container
+      - name: Validate Mermaid diagrams
         run: |
-          podman build -t ambient-code-reference:test -f Containerfile .
+          npm install -g @mermaid-js/mermaid-cli
+          ./scripts/validate-mermaid.sh || true
 
-      - name: Test container health
+      - name: Check documentation structure
         run: |
-          podman run -d --name test-app -p 8000:8000 ambient-code-reference:test
-          sleep 5
-          curl --fail http://localhost:8000/health || exit 1
-          podman stop test-app
-          podman rm test-app
+          # Verify required documentation files exist
+          test -f docs/quickstart.md || echo "Warning: docs/quickstart.md missing"
+          test -f docs/architecture.md || echo "Warning: docs/architecture.md missing"
+          test -f docs/tutorial.md || echo "Warning: docs/tutorial.md missing"
+          test -f docs/api-reference.md || echo "Warning: docs/api-reference.md missing"

.github/workflows/security.yml

@@ -15,35 +15,22 @@ jobs:
     steps:
       - uses: actions/checkout@v4
 
-      - name: Set up Python
-        uses: actions/setup-python@v5
-        with:
-          python-version: "3.11"
-
-      - name: Install uv
+      - name: Check for secrets in documentation
         run: |
-          curl -LsSf https://astral.sh/uv/install.sh | sh
-          echo "$HOME/.cargo/bin" >> $GITHUB_PATH
+          # Check for common secret patterns in docs
+          if grep -r -E '(api_key|secret|password|token).*=.*["\047][A-Za-z0-9+/]{20,}' docs/ README.md || true; then
+            echo "Warning: Potential secrets found in documentation"
+          fi
 
-      - name: Install dependencies
+      - name: Check for hardcoded URLs with credentials
         run: |
-          uv pip install --system -r requirements-dev.txt
-
-      - name: Run Bandit
-        run: bandit -r app/ -f json -o bandit-report.json || true
-
-      - name: Upload Bandit report
-        uses: actions/upload-artifact@v4
-        with:
-          name: bandit-report
-          path: bandit-report.json
-
-      - name: Run Safety
-        run: safety check --json || true
+          if grep -r -E 'https?://[^:]+:[^@]+@' docs/ README.md || true; then
+            echo "Warning: URLs with credentials found in documentation"
+          fi
 
-      - name: Check Bandit results
+      - name: Verify no .env files committed
         run: |
-          if grep -q '"issue_severity": "HIGH"' bandit-report.json; then
-            echo "HIGH severity security issues found"
+          if find . -name ".env*" -not -path "./.git/*" -not -name ".env.example" | grep -q .; then
+            echo "Error: .env files should not be committed"
             exit 1
           fi