Skip to content

codeGROOVE-dev/architecture

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 

Repository files navigation

Ready To Review Systems Architecture

Network

Ready To Review operates with a Zero Trust network infrastructure.

stateDiagram-v2
    Client_Browser --> Cloudflare
    GitHub_Webhook --> Cloudflare
    Cloudflare --> Virtual_Cluster
    Virtual_Cluster --> site1
    Virtual_Cluster --> site2
    Virtual_Cluster --> site3...
 
Loading

Data Flow

Where possible, clients pull all data directly from GitHub -- so that we don't have to store sensitive data. No customer data is persisted to disk.

stateDiagram-v2
    Client_Browser --> Plugin
    Client_Browser --> Dashboard
    Plugin --> GitHub
    Dashboard --> GitHub
    Dashboard --> Cloudflare
    Notifier --> GitHub
    Notifier --> Cloudflare
    Notifier --> Chat_System
    GitHub --> Cloudflare
    Cloudflare --> Virtual_Cluster
    Plugin --> Cloudflare
    Virtual_Cluster --> turn_server
    Virtual_Cluster --> approver
    Virtual_Cluster --> reviewer
    approver --> GitHub
    reviewer --> GitHub
Loading

Virtual Cluster

Similar to Netflix's architecture, our Virtual Cluster is made up of distributed nodes running FreeBSD 15.0-CURRENT, a highly performant and relatively secure environment. The host itself is extremely minimalist with no 3rd party packages installed. These nodes only exist to run isolated verifiable workloads.

V1

Jail-based isolation with locally built binaries. Kind of lame.

V2

Isolated workloads using bhyve VMs and a nano kernel. manager binary rebuilds binaries nightly via a builder jail. Firewall only allows access to VMs from Cloudflare.

About

internal architectural description

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published