From 9a691d05158a961bd40d811307cbaa47664e0272 Mon Sep 17 00:00:00 2001 From: Deepak Tiwari Date: Mon, 25 May 2026 19:26:36 +0530 Subject: [PATCH 1/3] added trivy vunerability scanning to ci pipeline --- .github/workflows/phase3-tests.yml | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/.github/workflows/phase3-tests.yml b/.github/workflows/phase3-tests.yml index b5b1585..063ab3b 100644 --- a/.github/workflows/phase3-tests.yml +++ b/.github/workflows/phase3-tests.yml @@ -22,4 +22,9 @@ jobs: - name: Lint run: ruff check services/memory/ libs/schemas/memory.py - name: Test (no Redis required — uses fakeredis) - run: pytest tests/test_memory.py -v --tb=short --cov=services/memory --cov-report=term-missing \ No newline at end of file + run: pytest tests/test_memory.py -v --tb=short --cov=services/memory --cov-report=term-missing + - name: Run Trivy Vulnerability Scanner + uses: aquasecurity/trivy-action@master + with: + scan-type: fs + scan-ref: . \ No newline at end of file From 08c4d14ab309c4dd88cc33ead85c043421906874 Mon Sep 17 00:00:00 2001 From: Deepak Tiwari Date: Mon, 25 May 2026 19:46:38 +0530 Subject: [PATCH 2/3] Update .github/workflows/phase3-tests.yml Co-authored-by: coderabbitai[bot] <136622811+coderabbitai[bot]@users.noreply.github.com> --- .github/workflows/phase3-tests.yml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.github/workflows/phase3-tests.yml b/.github/workflows/phase3-tests.yml index 063ab3b..c1ba90c 100644 --- a/.github/workflows/phase3-tests.yml +++ b/.github/workflows/phase3-tests.yml @@ -27,4 +27,6 @@ jobs: uses: aquasecurity/trivy-action@master with: scan-type: fs - scan-ref: . \ No newline at end of file + scan-ref: . + exit-code: 1 # Fail the build if vulnerabilities are found + severity: CRITICAL,HIGH # Focus on actionable vulnerabilities \ No newline at end of file From cbb5a40fd230697843b2d7529943b105789fe5bc Mon Sep 17 00:00:00 2001 From: Kunal Keshari Pattanaik Date: Fri, 29 May 2026 19:56:59 +0530 Subject: [PATCH 3/3] fix: isolate memory tests from tracking imports --- services/__init__.py | 9 +++++++-- services/tracking/tracker.py | 4 ++-- 2 files changed, 9 insertions(+), 4 deletions(-) diff --git a/services/__init__.py b/services/__init__.py index 5530bd5..db5ea16 100644 --- a/services/__init__.py +++ b/services/__init__.py @@ -1,2 +1,7 @@ -from services import tracking -__all__ = ['tracking'] +"""Top-level service package. + +Subpackages are intentionally not imported eagerly so focused test suites do +not need optional dependencies from unrelated services. +""" + +__all__ = ["tracking", "memory", "detection", "reasoning"] diff --git a/services/tracking/tracker.py b/services/tracking/tracker.py index ffd6af6..db4a769 100644 --- a/services/tracking/tracker.py +++ b/services/tracking/tracker.py @@ -18,7 +18,7 @@ import time from pathlib import Path -from Eagle.libs.config import settings +from libs.config.settings import settings import cv2 import numpy as np from deep_sort_realtime.deepsort_tracker import DeepSort @@ -455,4 +455,4 @@ def _interpolate_trajectory( return interpolated_points if __name__ == "__main__": - main() \ No newline at end of file + main()