(API) Migrate API codebase (root -> node)

[nick-bisonai]

Description

• removal of old codes will be done after

Type of change

Please delete options that are not relevant.

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

Checklist before requesting a review

• I have performed a self-review of my code.
• If it is a core feature, I have added thorough tests.

Deployment

• Should publish npm package
• Should publish Docker image

[coderabbitai]

Caution

Review failed

The pull request is closed.

Walkthrough

Walkthrough

The recent changes involve a significant restructuring of the project, primarily reorganizing the API components under a new node directory. This shift improves clarity and maintainability, optimizing workflows in GitHub Actions, Docker configurations, and database migration scripts. Enhanced functionalities for managing services, listeners, chains, and error handling have been implemented, accompanied by a robust suite of unit tests to ensure reliability and correctness.

Changes

Files	Change Summary
.github/workflows/*.yaml	Adjusted paths for GitHub Actions workflows to reflect the new project structure under node, excluding specific directories to optimize workflow control.
dockerfiles/orakl-api.Dockerfile	Updated COPY and WORKDIR directives to point to the new node directory, refining build commands to target the application entry point more accurately.
node/cmd/api/*.go	Introduced new API functionalities for managing error records, blocks, and services, providing structured CRUD operations with proper models and routing.
node/migrations/*	Added SQL migration scripts for initializing tables and managing block records, ensuring a robust database structure for the newly organized API components.
node/pkg/api/*	New packages created for error handling, blocks, listeners, proxies, and reporters, each with dedicated controllers, models, and query management functionalities.
node/pkg/api/tests/*	Comprehensive unit tests added for each new API component, validating CRUD operations and ensuring the reliability of the implemented functionalities.
node/pkg/api/utils/custom_types.go	Introduced custom types for PostgreSQL data handling, enhancing JSON serialization and deserialization processes.
node/api/secrets/secrets.go	New package for handling secrets via HashiCorp Vault, providing secure secret management functionality.

Sequence Diagram(s)

sequenceDiagram
    participant Client
    participant API
    participant Database
    Client->>API: POST /api/errors (insert error)
    API->>Database: INSERT INTO errors (error data)
    Database-->>API: Success (error ID)
    API-->>Client: 201 Created (error ID)

    Client->>API: GET /api/errors (retrieve errors)
    API->>Database: SELECT * FROM errors
    Database-->>API: All errors
    API-->>Client: 200 OK (list of errors)

Loading

🐇 In the garden of code, a new path we weave,
Structures aligned, fresh functions conceive.
With tests that will hop, errors we’ll catch,
In the node directory, a splendid new batch!
Let’s dance with the data, our joy to display,
For every small change brings a brighter day! 🌼

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 35

Outside diff range, codebase verification and nitpick comments (58)

node/pkg/api/proxy/queries.go (1)

6-6: Consider adding a WHERE clause for filtering.

The GetProxy query retrieves all proxies. Consider adding a WHERE clause or pagination if the table is large to improve performance.

node/pkg/api/service/queries.go (2)

9-9: Consider adding filtering or pagination.

The GetService query retrieves all services. Consider adding filtering or pagination if the table is large to improve performance.

---

25-25: Potential Issue with Handling Deletions in DeleteServiceById

The DeleteServiceById query deletes a service by ID, but there are foreign key constraints in the listeners and reporters tables referencing services.service_id without ON DELETE CASCADE. This could lead to orphaned records when a service is deleted. Consider implementing cascading deletes or additional logic to handle related records appropriately.

• Foreign key constraints without cascading delete:
  • listeners_service_id_fkey in listeners table
  • reporters_service_id_fkey in reporters table

Analysis chain

Ensure proper handling of deletions.

The DeleteServiceById query deletes a service by ID. Ensure that the application logic handles the implications of deletions, such as cascading effects or orphaned records.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the handling of deletions for the DeleteServiceById query.

# Test: Search for the DeleteServiceById query usage. Expect: Proper handling of deletions in the code.
rg --type go -A 5 $'DeleteServiceById'

Length of output: 1104

---

Script:

#!/bin/bash
# Search for foreign key constraints related to the 'services' table in SQL files.
rg --type sql 'FOREIGN KEY' --context 5

# Search for any additional logic in Go files that might handle cascading deletions or orphaned records.
rg --type go 'DELETE' -A 10

Length of output: 62654

dockerfiles/orakl-api.Dockerfile (1)

12-12: Incorrect path in Dockerfile build command

The specified path ./cmd/api/main.go in the Dockerfile does not exist. It seems you intended to use ./node/cmd/api/main.go instead. Please update the Dockerfile to reflect the correct path.

• Dockerfile Line 12: Change ./cmd/api/main.go to ./node/cmd/api/main.go.

Analysis chain

Check the build command for correctness.

The RUN go build -o apibin -ldflags="-w -s" ./cmd/api/main.go command specifies the path to the main Go file. Ensure that this path is correct and the build succeeds.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the correctness of the build command path.

# Test: Check the existence of the main.go file at the specified path. Expect: The file exists.
fd --type f --search-path node --glob 'cmd/api/main.go'

Length of output: 55

---

Script:

#!/bin/bash
# Description: Search for main.go file in the entire repository to verify its existence and path.

# Test: Check for any main.go file in the repository. Expect: At least one result.
fd --type f --glob 'main.go'

Length of output: 773

node/cmd/api/main.go (1)

21-28: Consider handling the absence of the .env file more gracefully.

While the log message indicates the absence of the .env file, consider using a more robust logging mechanism or handling it differently in production environments.

node/pkg/api/tests/apierr_test.go (1)

17-20: Consider handling missing .env files more gracefully.

The test currently prints a message if the .env file is not found but continues execution. Consider logging this message or handling it more explicitly to avoid confusion during test runs.

-  fmt.Print("env file is not found, continueing without .env file")
+  fmt.Println("Warning: .env file not found, continuing without it")

node/pkg/api/blocks/controller.go (1)

33-35: Clarify error messages for missing query parameters.

The error message "service is required" could be more descriptive by indicating that it is a query parameter. This can help users understand the issue more clearly.

-  return fiber.NewError(fiber.StatusBadRequest, "service is required")
+  return fiber.NewError(fiber.StatusBadRequest, "query parameter 'service' is required")

node/pkg/api/tests/listener_test.go (1)

16-97: Enhance test assertions and error handling.

1. Consider adding assertions for operations like setup and cleanup to ensure they are executed successfully.
2. Use t.Log or t.Error instead of fmt.Print for logging within tests to integrate better with the testing framework.

// Example: t.Log("env file is not found, continuing without .env file")

node/pkg/api/tests/vrf_test.go (1)

15-94: Enhance test assertions and error handling.

1. Consider adding assertions for operations like setup and cleanup to ensure they are executed successfully.
2. Use t.Log or t.Error instead of fmt.Print for logging within tests to integrate better with the testing framework.

// Example: t.Log("env file is not found, continuing without .env file")

Tools

Gitleaks

28-28: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

node/pkg/api/tests/reporter_test.go (7)

17-20: Handle errors when loading environment variables.

Consider handling the error more explicitly or logging it for better debugging.

- if err != nil {
-   fmt.Print("env file is not found, continueing without .env file")
+ if err != nil {
+   fmt.Printf("Warning: .env file not found. Error: %v\n", err)

---

53-55: Enhance assertion messages for clarity.

Adding descriptive messages to assertions can help in debugging test failures.

- assert.Nil(t, err)
+ assert.Nil(t, err, "expected no error when inserting chain")
- assert.Nil(t, err)
+ assert.Nil(t, err, "expected no error when inserting service")

---

64-65: Add assertion messages for insertion.

Including messages in assertions provides context in case of test failures.

- assert.Nil(t, err)
+ assert.Nil(t, err, "expected no error when inserting reporter data")

---

70-71: Clarify assertion messages for list operations.

Descriptive messages in assertions can aid in understanding test failures.

- assert.Less(t, totalBefore, totalAfter)
+ assert.Less(t, totalBefore, totalAfter, "expected more reporters after insertion")

---

75-76: Improve assertion messages for read operations.

Providing context in assertion messages enhances test readability and debugging.

- assert.Equalf(t, insertResult, singleReadResult, "should be inserted")
+ assert.Equalf(t, insertResult, singleReadResult, "expected inserted reporter to match read result")

---

82-83: Refine assertion messages for patch operations.

Descriptive messages in assertions help clarify test expectations.

- assert.Equalf(t, singleReadResult, patchResult, "should be patched")
+ assert.Equalf(t, singleReadResult, patchResult, "expected patched reporter to match read result")

---

87-88: Enhance assertion messages for delete operations.

Including messages in assertions provides clarity in case of test failures.

- assert.Equalf(t, patchResult, deleteResult, "should be deleted")
+ assert.Equalf(t, patchResult, deleteResult, "expected deleted reporter to match patched result")

node/pkg/api/vrf/controller.go (10)

41-42: Provide descriptive error messages for body parsing.

Descriptive error messages can aid in identifying issues during request handling.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("failed to parse request body: %v", err))

---

46-47: Improve error messages for validation failures.

Providing context in error messages enhances debugging.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("validation failed: %v", err))

---

51-52: Enhance error messages for database queries.

Descriptive error messages can help identify issues with database interactions.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to fetch chain: %v", err))

---

81-82: Provide descriptive error messages for body parsing.

Improving error messages can aid in debugging request handling issues.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("failed to parse request body: %v", err))

---

86-88: Enhance error messages for database queries.

Descriptive error messages help identify issues with database interactions.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to fetch chain: %v", err))

---

101-102: Improve error messages for database queries.

Providing context in error messages enhances debugging.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to fetch VRF by ID: %v", err))

---

112-113: Provide descriptive error messages for body parsing.

Improving error messages can aid in debugging request handling issues.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("failed to parse request body: %v", err))

---

116-117: Improve error messages for validation failures.

Providing context in error messages enhances debugging.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("validation failed: %v", err))

---

127-128: Enhance error messages for database queries.

Descriptive error messages help identify issues with database interactions.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to update VRF by ID: %v", err))

---

137-138: Improve error messages for database queries.

Providing context in error messages enhances debugging.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to delete VRF by ID: %v", err))

node/pkg/api/listener/controller.go (12)

39-40: Provide descriptive error messages for body parsing.

Descriptive error messages can aid in identifying issues during request handling.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("failed to parse request body: %v", err))

---

44-45: Improve error messages for validation failures.

Providing context in error messages enhances debugging.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("validation failed: %v", err))

---

50-51: Enhance error messages for database queries.

Descriptive error messages can help identify issues with database interactions.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to fetch chain: %v", err))

---

54-55: Provide descriptive error messages for service queries.

Improving error messages can aid in debugging database interactions.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to fetch service: %v", err))

---

83-84: Provide descriptive error messages for body parsing.

Improving error messages can aid in debugging request handling issues.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("failed to parse request body: %v", err))

---

89-90: Enhance error messages for chain queries.

Descriptive error messages help identify issues with database interactions.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to fetch chain: %v", err))

---

97-98: Provide descriptive error messages for service queries.

Improving error messages can aid in debugging database interactions.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to fetch service: %v", err))

---

113-114: Improve error messages for database queries.

Providing context in error messages enhances debugging.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to fetch listener by ID: %v", err))

---

124-125: Provide descriptive error messages for body parsing.

Improving error messages can aid in debugging request handling issues.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("failed to parse request body: %v", err))

---

129-130: Improve error messages for validation failures.

Providing context in error messages enhances debugging.

- return err
+ return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("validation failed: %v", err))

---

137-138: Enhance error messages for database queries.

Descriptive error messages help identify issues with database interactions.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to update listener by ID: %v", err))

---

147-148: Improve error messages for database queries.

Providing context in error messages enhances debugging.

- return err
+ return fiber.NewError(fiber.StatusInternalServerError, fmt.Sprintf("failed to delete listener by ID: %v", err))

node/migrations/api/000001_initialize_tables.up.sql (4)

1-8: Ensure consistency in naming conventions.

The table adapters uses adapter_hash as a unique key and adapter_id as a primary key. Ensure that the naming conventions for columns and constraints are consistent across all tables.

---

24-40: Consider indexing frequently queried columns.

For the aggregators table, consider adding indexes on columns like adapter_id and chain_id if they are frequently queried. This can improve query performance.

---

102-112: Encrypt sensitive data.

In the reporters table, the privateKey column stores sensitive information. Ensure that this data is encrypted both at rest and in transit to enhance security.

---

114-124: Ensure secure storage of cryptographic keys.

In the vrf_keys table, sensitive cryptographic keys are stored. Implement appropriate security measures to protect these keys, such as encryption and access controls.

node/pkg/api/utils/custom_types.go (6)

37-61: Improve error messages for unexpected types.

The UnmarshalJSON method for CustomFloat returns a generic error message for unexpected types. Consider including the actual value in the error message for better debugging.

- return fmt.Errorf("unexpected type for CustomFloat: %T", value)
+ return fmt.Errorf("unexpected type for CustomFloat: %T, value: %v", value, value)

---

67-86: Improve error messages for unexpected types.

Similar to CustomFloat, the UnmarshalJSON method for CustomBool could benefit from more informative error messages.

- return fmt.Errorf("unexpected type for CustomBoolean: %T", value)
+ return fmt.Errorf("unexpected type for CustomBoolean: %T, value: %v", value, value)

---

92-124: Improve error messages for unexpected types.

The UnmarshalJSON method for CustomInt32 should include the actual value in error messages for better debugging.

- return fmt.Errorf("unexpected type for customInt32: %T", value)
+ return fmt.Errorf("unexpected type for customInt32: %T, value: %v", value, value)

---

135-167: Improve error messages for unexpected types.

The UnmarshalJSON method for CustomInt64 should include the actual value in error messages for better debugging.

- return fmt.Errorf("unexpected type for CustomInt64: %T", value)
+ return fmt.Errorf("unexpected type for CustomInt64: %T, value: %v", value, value)

---

178-194: Improve error messages for unexpected types.

The Scan method for CustomDateTime should include the actual value in error messages for better debugging.

- return fmt.Errorf("unexpected type for CustomDateTime: %T", src)
+ return fmt.Errorf("unexpected type for CustomDateTime: %T, value: %v", src, src)

---

196-217: Improve error messages for unexpected types.

The UnmarshalJSON method for CustomDateTime should include the actual value in error messages for better debugging.

- return fmt.Errorf("unexpected type for CustomDateTime: %T", value)
+ return fmt.Errorf("unexpected type for CustomDateTime: %T, value: %v", value, value)

node/pkg/api/reporter/controller.go (6)

46-85: Ensure proper error handling and logging.

In the insert function, errors are returned directly. Consider logging errors for better traceability and debugging.

if err := c.BodyParser(payload); err != nil {
  log.Error(err)
  return err
}

---

87-141: Ensure proper error handling and logging.

In the get function, errors are returned directly. Consider logging errors for better traceability and debugging.

if err != nil {
  log.Error(err)
  return err
}

---

143-184: Ensure proper error handling and logging.

In the getByOracleAddress function, errors are returned directly. Consider logging errors for better traceability and debugging.

if err != nil {
  log.Error(err)
  return err
}

---

186-200: Ensure proper error handling and logging.

In the getById function, errors are returned directly. Consider logging errors for better traceability and debugging.

if err != nil {
  log.Error(err)
  return err
}

---

202-232: Ensure proper error handling and logging.

In the updateById function, errors are returned directly. Consider logging errors for better traceability and debugging.

if err != nil {
  log.Error(err)
  return err
}

---

234-248: Ensure proper error handling and logging.

In the deleteById function, errors are returned directly. Consider logging errors for better traceability and debugging.

if err != nil {
  log.Error(err)
  return err
}

node/pkg/api/utils/utils.go (4)

51-63: Consider logging errors in RawQueryWithoutReturn.

Adding logging for errors can aid in debugging issues with query execution.

if err != nil {
	log.Printf("Error executing query: %v", err)
	return err
}

---

104-154: Consider using a more appropriate context for database connections in Setup.

Using context.Background() for database connections might not be ideal, especially in long-running applications. Consider passing a context that can be canceled or has a timeout.

---

228-261: Consider logging missing environment variables in LoadEnvVars.

Logging missing environment variables can help diagnose configuration issues.

if databaseURL == "" {
	log.Println("DATABASE_URL is not set")
	return nil, errors.New("DATABASE_URL is not set")
}
if encryptPassword == "" {
	log.Println("ENCRYPT_PASSWORD is not set")
	return nil, errors.New("ENCRYPT_PASSWORD is not set")
}

---

282-297: Consider expanding CustomStackTraceHandler to include other files.

Currently, the handler targets only controller.go. Expanding its scope could improve debugging capabilities.

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 9fddf12 and eb35b53.

Files ignored due to path filters (2)

• node/go.mod is excluded by !**/*.mod
• node/go.sum is excluded by !**/*.sum, !**/*.sum

Files selected for processing (47)

• .github/workflows/api.test.yaml (2 hunks)
• .github/workflows/node.test.yaml (1 hunks)
• dockerfiles/orakl-api.Dockerfile (2 hunks)
• node/cmd/api/.version (1 hunks)
• node/cmd/api/main.go (1 hunks)
• node/migrations/api/000001_initialize_tables.down.sql (1 hunks)
• node/migrations/api/000001_initialize_tables.up.sql (1 hunks)
• node/migrations/api/000002_blocks.down.sql (1 hunks)
• node/migrations/api/000002_blocks.up.sql (1 hunks)
• node/pkg/api/apierr/controller.go (1 hunks)
• node/pkg/api/apierr/queries.go (1 hunks)
• node/pkg/api/apierr/route.go (1 hunks)
• node/pkg/api/blocks/controller.go (1 hunks)
• node/pkg/api/blocks/queries.go (1 hunks)
• node/pkg/api/blocks/route.go (1 hunks)
• node/pkg/api/chain/controller.go (1 hunks)
• node/pkg/api/chain/queries.go (1 hunks)
• node/pkg/api/chain/route.go (1 hunks)
• node/pkg/api/l2aggregator/controller.go (1 hunks)
• node/pkg/api/l2aggregator/queries.go (1 hunks)
• node/pkg/api/l2aggregator/route.go (1 hunks)
• node/pkg/api/listener/controller.go (1 hunks)
• node/pkg/api/listener/queries.go (1 hunks)
• node/pkg/api/listener/route.go (1 hunks)
• node/pkg/api/proxy/controller.go (1 hunks)
• node/pkg/api/proxy/queries.go (1 hunks)
• node/pkg/api/proxy/route.go (1 hunks)
• node/pkg/api/reporter/controller.go (1 hunks)
• node/pkg/api/reporter/queries.go (1 hunks)
• node/pkg/api/reporter/route.go (1 hunks)
• node/pkg/api/secrets/secrets.go (1 hunks)
• node/pkg/api/service/controller.go (1 hunks)
• node/pkg/api/service/queries.go (1 hunks)
• node/pkg/api/service/route.go (1 hunks)
• node/pkg/api/tests/apierr_test.go (1 hunks)
• node/pkg/api/tests/chain_test.go (1 hunks)
• node/pkg/api/tests/listener_test.go (1 hunks)
• node/pkg/api/tests/proxy_test.go (1 hunks)
• node/pkg/api/tests/reporter_test.go (1 hunks)
• node/pkg/api/tests/service_test.go (1 hunks)
• node/pkg/api/tests/vrf_test.go (1 hunks)
• node/pkg/api/utils/custom_types.go (1 hunks)
• node/pkg/api/utils/test_helper.go (1 hunks)
• node/pkg/api/utils/utils.go (1 hunks)
• node/pkg/api/vrf/controller.go (1 hunks)
• node/pkg/api/vrf/queries.go (1 hunks)
• node/pkg/api/vrf/route.go (1 hunks)

Files skipped from review due to trivial changes (4)

• .github/workflows/node.test.yaml
• node/cmd/api/.version
• node/migrations/api/000002_blocks.down.sql
• node/pkg/api/l2aggregator/queries.go

Additional context used

Learnings (1)

node/pkg/api/tests/reporter_test.go (1)

Learnt from: Intizar-T
PR: Bisonai/orakl#1902
File: node/pkg/reporter/app_test.go:67-106
Timestamp: 2024-07-25T12:10:57.890Z
Learning: Testing edge cases and error handling scenarios is crucial for ensuring the robustness of the application, even if the basic functionality is already verified.

Gitleaks

node/pkg/api/tests/vrf_test.go

28-28: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

Additional comments not posted (73)

node/pkg/api/l2aggregator/route.go (1)

7-10: Verify the implementation of the get handler function.

Ensure that the get function is implemented correctly and includes proper error handling. This is crucial for maintaining reliability and user experience.

Verification successful

---

The get function in l2aggregator is correctly implemented with error handling. The function retrieves parameters, performs database queries, and handles errors appropriately, ensuring reliability and user experience.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the implementation of the `get` function in the l2aggregator package.

# Test: Search for the `get` function implementation. Expect: Correct implementation with error handling.
ast-grep --lang go --pattern $'func get($_) $_ { $$$ }'

Length of output: 28516

node/pkg/api/apierr/route.go (1)

7-13: Verify the implementation of the handler functions.

Ensure that the insert, get, getById, and deleteById functions are implemented correctly and include proper error handling. This is crucial for maintaining reliability and user experience.

Verification successful

---

Handler Functions Verified Successfully

The handler functions insert, get, getById, and deleteById in the apierr package are implemented with appropriate error handling. Each function checks for errors during body parsing, validation, and database operations, ensuring reliability and user experience.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the implementation of the handler functions in the apierr package.

# Test: Search for the handler function implementations. Expect: Correct implementations with error handling.
ast-grep --lang go --pattern $'func insert($_) $_ { $$$ }'
ast-grep --lang go --pattern $'func get($_) $_ { $$$ }'
ast-grep --lang go --pattern $'func getById($_) $_ { $$$ }'
ast-grep --lang go --pattern $'func deleteById($_) $_ { $$$ }'

Length of output: 88525

node/migrations/api/000002_blocks.up.sql (1)

1-10: Verify alignment with the data model and consider adding indexes.

Ensure that the observed_blocks and unprocessed_blocks tables align with the application's data model. Consider adding indexes on columns that are frequently queried to improve performance.

node/pkg/api/vrf/route.go (1)

7-15: LGTM! Verify handler implementations.

The route definitions follow RESTful conventions and are well-organized. Ensure that the handlers (insert, get, getById, updateById, deleteById) are implemented correctly.

Verification successful

---

Handler Implementations Verified

The handlers for the VRF routes (insert, get, getById, updateById, deleteById) are correctly implemented in node/pkg/api/vrf/controller.go. This confirms that the route definitions in node/pkg/api/vrf/route.go are supported by appropriate handler functions.

• Implementations found in node/pkg/api/vrf/controller.go

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the implementation of route handlers for the VRF module.

# Test: Search for handler implementations. Expect: Each handler should be defined.
rg --type go 'func (insert|get|getById|updateById|deleteById)\('

Length of output: 6818

node/pkg/api/chain/route.go (1)

7-15: LGTM! Verify handler implementations.

The route definitions follow RESTful conventions and are well-organized. Ensure that the handlers (get, getById, insert, patchById, deleteById) are implemented correctly.

Verification successful

---

Handler Implementations Verified for Chain Module

The route handlers (get, getById, insert, patchById, deleteById) for the /chain routes are correctly implemented in node/pkg/api/chain/controller.go. This confirms that the route definitions in route.go are properly supported by their respective implementations.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the implementation of route handlers for the Chain module.

# Test: Search for handler implementations. Expect: Each handler should be defined.
rg --type go 'func (get|getById|insert|patchById|deleteById)\('

Length of output: 5910

node/pkg/api/proxy/route.go (1)

7-15: LGTM! Verify handler implementations.

The route definitions follow RESTful conventions and are well-organized. Ensure that the handlers (insert, get, getById, updateById, deleteById) are implemented correctly.

Verification successful

---

Handler Implementations Verified for Proxy Module

The route handlers (insert, get, getById, updateById, deleteById) for the proxy module are implemented correctly in node/pkg/api/proxy/controller.go. The function signatures match the expected pattern. No further action is required.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the implementation of route handlers for the Proxy module.

# Test: Search for handler implementations. Expect: Each handler should be defined.
rg --type go 'func (insert|get|getById|updateById|deleteById)\('

Length of output: 6818

node/pkg/api/service/route.go (1)

7-14: Verify existence of handler functions.

Ensure that the handler functions insert, get, getById, updateById, and deleteById are defined and properly implemented in the codebase.

Verification successful

---

Handler functions are correctly defined and implemented.

The handler functions insert, get, getById, updateById, and deleteById are defined in the node/pkg/api/service/controller.go file, confirming their existence and implementation for the service routes.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the existence of handler functions for the service routes.

# Test: Search for the handler function definitions. Expect: Functions should be defined.
rg --type go --pattern 'func (insert|get|getById|updateById|deleteById)\('

Length of output: 488

---

Script:

#!/bin/bash
# Description: Verify the existence of handler functions for the service routes.

# Test: Search for the handler function definitions. Expect: Functions should be defined.
rg --type go 'func (insert|get|getById|updateById|deleteById)\('

Length of output: 6818

node/pkg/api/listener/route.go (1)

7-14: Verify existence of handler functions.

Ensure that the handler functions insert, get, getById, updateById, and deleteById are defined and properly implemented in the codebase.

Verification successful

---

Handler functions are properly implemented.

The handler functions insert, get, getById, updateById, and deleteById are defined in the codebase, specifically in node/pkg/api/listener/controller.go. This confirms their existence and proper implementation for the listener routes.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the existence of handler functions for the listener routes.

# Test: Search for the handler function definitions. Expect: Functions should be defined.
rg --type go --pattern 'func (insert|get|getById|updateById|deleteById)\('

Length of output: 488

---

Script:

#!/bin/bash
# Description: Verify the existence of handler functions for the listener routes.

# Test: Search for the handler function definitions. Expect: Functions should be defined.
rg --type go 'func (insert|get|getById|updateById|deleteById)\('

Length of output: 6818

node/pkg/api/apierr/queries.go (1)

3-10: Ensure safe usage of SQL queries.

Verify that these SQL queries are used with proper parameterization and error handling to prevent SQL injection and manage potential database errors.

Verification successful

---

SQL Queries are Safely Parameterized and Handled

The SQL queries are used with proper parameterization through pgx.NamedArgs, ensuring protection against SQL injection. Additionally, error handling is implemented to manage potential database errors effectively.

• QueryRow and QueryRows functions correctly utilize parameterized queries and handle errors.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the usage of SQL queries to ensure they are parameterized and safely executed.

# Test: Search for the usage of SQL queries. Expect: Queries should be parameterized and safely executed.
rg --type go --pattern 'InsertError|GetError|GetErrorById|RemoveErrorById'

Length of output: 488

---

Script:

#!/bin/bash
# Description: Verify the usage of SQL queries to ensure they are parameterized and safely executed.

# Corrected test: Search for the usage of SQL queries. Expect: Queries should be parameterized and safely executed.
rg 'InsertError|GetError|GetErrorById|RemoveErrorById' --type go

Length of output: 1790

---

Script:

#!/bin/bash
# Description: Search for the implementation of the utility functions `QueryRow` and `QueryRows` to verify parameter handling.

# Search for the implementation of `QueryRow`
ast-grep --lang go --pattern 'func QueryRow[$$$]($_, $_, $_) ($$, error) { $$$ }'

# Search for the implementation of `QueryRows`
ast-grep --lang go --pattern 'func QueryRows[$$$]($_, $_, $_) ($$$) { $$$ }'

Length of output: 4035

node/pkg/api/reporter/route.go (1)

1-15: Routes definition looks good!

The route definitions are clear and follow RESTful conventions. Ensure that the handler functions (insert, get, getByOracleAddress, etc.) are implemented and tested properly.

Would you like a script to verify the existence of these handler functions in the codebase?

node/pkg/api/blocks/route.go (1)

1-14: Routes definition is well-structured!

The routes for handling blocks are well-organized and RESTful. Ensure that the handler functions (getObservedBlock, upsertObservedBlock, etc.) are implemented and tested.

Would you like a script to verify the existence of these handler functions in the codebase?

node/pkg/api/chain/queries.go (1)

1-14: SQL queries are well-defined!

The SQL queries for the chains table are clear and use parameterized queries, which is good for security. Ensure these queries are integrated properly in the application logic and tested.

Would you like a script to verify the usage of these queries in the codebase?

node/pkg/api/proxy/queries.go (4)

4-4: Ensure parameter binding for SQL injection prevention.

The InsertProxy query uses named parameters, which is good for preventing SQL injection. Ensure that the code executing this query properly binds these parameters.

Verification successful

---

Parameter binding is correctly implemented for the InsertProxy query.

The InsertProxy query is executed using a map of parameters, ensuring proper parameter binding and SQL injection prevention.

• node/pkg/api/proxy/controller.go: Parameters are passed as a map in the QueryRow function.
• node/pkg/admin/tests/main_test.go: Parameters are correctly bound in the test scenario.
• node/pkg/admin/proxy/controller.go: Parameters are passed as a map in the QueryRow function.
• api/proxy/controller.go: Parameters are passed as a map in the QueryRow function.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the usage of parameter binding in the codebase for the InsertProxy query.

# Test: Search for the InsertProxy query usage. Expect: Proper parameter binding in the code.
rg --type go -A 5 $'InsertProxy'

Length of output: 2878

---

17-18: Ensure proper handling of deletions.

The DeleteProxyById query deletes a proxy by ID. Ensure that the application logic handles the implications of deletions, such as cascading effects or orphaned records.

---

8-8: Verify parameter binding for security.

The GetProxyById query uses named parameters. Ensure that the code executing this query binds these parameters securely to prevent SQL injection.

Verification successful

---

Parameter binding is secure for the GetProxyById query.

The QueryRow function in node/pkg/api/utils/utils.go uses pgx.NamedArgs(args) for parameter binding, which is a secure practice against SQL injection. No further action is needed.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the usage of parameter binding in the codebase for the GetProxyById query.

# Test: Search for the GetProxyById query usage. Expect: Proper parameter binding in the code.
rg --type go -A 5 $'GetProxyById'

Length of output: 2293

---

Script:

#!/bin/bash
# Description: Search for the implementation of the QueryRow function to verify secure parameter binding.

# Test: Locate the definition of the QueryRow function.
ast-grep --lang go --pattern 'func QueryRow[$$$]($_, $_, $_) ($$, $$)' 

Length of output: 72

---

Script:

#!/bin/bash
# Description: Search for any function definitions related to QueryRow to verify secure parameter binding.

# Test: Locate any function definitions containing "QueryRow" to identify the correct implementation.
rg --type go 'func .*QueryRow' -A 10

Length of output: 8214

---

10-14: Check for concurrency issues with updates.

The UpdateProxyById query updates a proxy by ID. Ensure that the application logic handles potential concurrency issues, such as lost updates.

node/pkg/api/service/queries.go (4)

5-5: Ensure parameter binding for SQL injection prevention.

The InsertService query uses named parameters, which is good for preventing SQL injection. Ensure that the code executing this query properly binds these parameters.

Verification successful

---

Parameter binding is correctly implemented for the InsertService query.

The InsertService query uses named parameters, and the code in controller.go binds these parameters correctly using a map with utils.QueryRow. This ensures that SQL injection is prevented.

• node/pkg/api/service/controller.go: result, err := utils.QueryRow[ServiceModel](c, InsertService, map[string]any{"name": payload.Name})

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the usage of parameter binding in the codebase for the InsertService query.

# Test: Search for the InsertService query usage. Expect: Proper parameter binding in the code.
rg --type go -A 5 $'InsertService'

Length of output: 3220

---

17-17: Verify parameter binding for security.

The GetServiceByName query uses named parameters. Ensure that the code executing this query binds these parameters securely to prevent SQL injection.

Verification successful

---

Parameter binding for GetServiceByName is secure. The QueryRow function uses pgx.NamedArgs(args) for executing the query, which securely binds parameters and prevents SQL injection.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the usage of parameter binding in the codebase for the GetServiceByName query.

# Test: Search for the GetServiceByName query usage. Expect: Proper parameter binding in the code.
rg --type go -A 5 $'GetServiceByName'

Length of output: 4923

---

Script:

#!/bin/bash
# Description: Investigate the implementation of utils.QueryRow to ensure secure parameter binding.

# Search for the implementation of QueryRow in the utils package.
ast-grep --lang go --pattern 'func QueryRow[$_]($_, $_, $_) ($_, $_) { $$$ }'

Length of output: 3910

---

21-21: Check for concurrency issues with updates.

The UpdateServiceById query updates a service by ID. Ensure that the application logic handles potential concurrency issues, such as lost updates.

---

13-13: Verify parameter binding for security.

The GetServiceById query uses named parameters. Ensure that the code executing this query binds these parameters securely to prevent SQL injection.

Verification successful

---

Secure Parameter Binding Verified

The GetServiceById query uses pgx.NamedArgs for parameter binding, ensuring security against SQL injection. No issues found with the current implementation.

• node/pkg/api/utils/utils.go: QueryRow function securely binds parameters using pgx.NamedArgs.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the usage of parameter binding in the codebase for the GetServiceById query.

# Test: Search for the GetServiceById query usage. Expect: Proper parameter binding in the code.
rg --type go -A 5 $'GetServiceById'

Length of output: 1343

---

Script:

#!/bin/bash
# Description: Search for the implementation of the QueryRow function to verify parameter binding.

# Test: Find the implementation of the QueryRow function.
ast-grep --lang go --pattern 'func QueryRow[$$$]($_, $_, $_) { $$$ }'

Length of output: 71

---

Script:

#!/bin/bash
# Description: Search for the definition of the QueryRow function to verify parameter binding.

# Test: Use ripgrep to find the definition of the QueryRow function in Go files.
rg --type go 'func QueryRow'

Length of output: 1432

---

Script:

#!/bin/bash
# Description: Extract the implementation of the QueryRow function from utils.go to verify parameter binding.

# Test: Extract the implementation of the QueryRow function in node/pkg/api/utils/utils.go.
rg --type go -A 20 'func QueryRow' node/pkg/api/utils/utils.go

Length of output: 1027

dockerfiles/orakl-api.Dockerfile (4)

10-10: Ensure WORKDIR consistency with the new structure.

The WORKDIR /app/node command updates the working directory to the new structure. Verify that subsequent commands are consistent with this change.

---

26-26: Verify the migration files' new path.

The COPY --from=builder /app/node/migrations/api /app/migrations command updates the path for migration files. Ensure that the new path is correct and contains the necessary migration files.

---

8-8: Verify the correctness of the new COPY path.

The COPY node node command reflects the new directory structure. Ensure that the node directory contains all necessary files for the build.

Verification successful

---

The COPY path appears correct and comprehensive.

The node directory includes all necessary files for building and running the application, such as Go source files, SQL migrations, and configuration files. The COPY node node command should function as intended for the build process.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the contents of the node directory for the build process.

# Test: List the contents of the node directory. Expect: All necessary files for the build process.
fd --type f --search-path node

Length of output: 15021

---

28-28: Check the binary path for correctness.

The COPY --from=builder /app/node/apibin /usr/bin command updates the path for the binary. Ensure that the binary is correctly built and copied.

node/migrations/api/000001_initialize_tables.down.sql (1)

1-25: Ensure the order of table drops is correct.

The tables are dropped in reverse order of creation, which is a good practice to avoid dependency issues. Ensure that this order matches the actual creation order in your migration scripts.

node/pkg/api/blocks/queries.go (2)

16-21: Ensure the UpsertObservedBlock query is efficient.

The ON CONFLICT clause uses GREATEST to update the block number. Ensure that this logic is correct and that the index on service is properly configured to optimize this operation.

---

10-13: Verify the GetObservedBlock query for correctness.

Ensure that the query retrieves the correct columns and that the service parameter is properly sanitized and validated.

Verification successful

---

The GetObservedBlock query correctly retrieves columns from the observed_blocks table.

The query uses SELECT * to fetch both service and block_number, which are the only columns in the table. The service column is uniquely constrained, ensuring data integrity at the database level. Ensure that parameter sanitization and validation are handled in the application logic.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that the `GetObservedBlock` query retrieves the correct columns.

# Test: Search for the observed_blocks table schema. Expect: Columns should match the query's SELECT statement.
rg --type sql 'CREATE TABLE observed_blocks' -A 10

Length of output: 52

---

Script:

#!/bin/bash
# Broaden the search for the observed_blocks table schema across all files.

# Search for the observed_blocks table definition in any file type.
rg 'CREATE TABLE observed_blocks' -A 10

Length of output: 41

---

Script:

#!/bin/bash
# Search for any references to the observed_blocks table in migration scripts or other relevant files.

# Look for any mention of 'observed_blocks' across all files to find where it might be defined or used.
rg 'observed_blocks'

Length of output: 1088

---

Script:

#!/bin/bash
# Extract the schema of the observed_blocks table from the migration script.

# Display the schema definition from the migration script for the observed_blocks table.
rg 'CREATE TABLE IF NOT EXISTS "observed_blocks"' -A 10

Length of output: 1364

node/cmd/api/main.go (2)

1-19: Imports look good.

The imports are well-organized and necessary for the functionality provided in this file.

---

39-57: Server initialization and port handling look good.

The logic for setting the port and starting the server is correct. Ensure that the deferred closing of resources is appropriate for your use case.

node/pkg/api/vrf/queries.go (6)

4-9: InsertVrf query looks good.

The query uses parameterized inputs, which helps prevent SQL injection. Ensure that the fields and table names are correct.

---

11-16: GetVrf query looks good.

The query correctly joins with the chains table. Ensure the chain ID parameter is validated in the calling code.

---

18-22: GetVrfWithoutChainId query looks good.

The query retrieves all VRF keys without filtering. Ensure this broad query is necessary and used appropriately.

---

24-29: GetVrfById query looks good.

The query uses a limit of 1, which is appropriate. Ensure the ID parameter is validated in the calling code.

---

31-37: UpdateVrfById query looks good.

The query uses parameterized inputs, which helps prevent SQL injection. Ensure that the fields and table names are correct.

---

39-42: DeleteVrfById query looks good.

The query uses parameterized inputs, which helps prevent SQL injection. Ensure that the fields and table names are correct.

.github/workflows/api.test.yaml (3)

8-8: Path adjustments look good.

The paths have been correctly updated to reflect the new structure under node/pkg/api/**.

---

48-56: Directory changes for commands look good.

The commands have been updated to operate within the node directory, ensuring the correct context for operations.

---

59-64: Testing steps and environment variables look good.

The testing steps and environment variables are set up correctly for the new structure.

node/pkg/api/chain/controller.go (1)

39-45: LGTM!

The get function is well-implemented and uses utility functions effectively.

node/pkg/api/service/controller.go (1)

38-44: LGTM!

The get function is well-implemented and uses utility functions effectively.

node/pkg/api/secrets/secrets.go (1)

64-77: LGTM!

The GetSecret function is well-implemented and handles fallbacks to environment variables effectively.

node/pkg/api/tests/chain_test.go (1)

14-68: Tests are well-structured but consider adding more assertions.

The test suite for the chain API is well-organized and covers basic CRUD operations. However, consider adding assertions to verify the HTTP status codes and more detailed checks on the response data to ensure comprehensive test coverage.

node/pkg/api/tests/service_test.go (1)

14-68: Tests are well-structured but consider adding more assertions.

The test suite for the service API is well-organized and covers basic CRUD operations. As with the chain tests, consider adding assertions for HTTP status codes and more detailed checks on the response data to ensure comprehensive test coverage.

node/pkg/api/listener/queries.go (1)

12-44: SQL query constants are well-structured.

The SQL query constants for listeners are well-organized and follow best practices for readability and maintainability.

node/pkg/api/apierr/controller.go (1)

54-60: LGTM!

The get function is well-implemented. It retrieves all error records and handles errors appropriately.

node/pkg/api/proxy/controller.go (1)

48-55: LGTM!

The get function is well-implemented. It retrieves all proxy records and handles errors appropriately.

node/pkg/api/tests/apierr_test.go (1)

16-76: Overall test structure is well-organized.

The test covers the essential CRUD operations for the error API, ensuring that the API behaves as expected. The use of testify for assertions enhances readability and maintainability.

node/pkg/api/reporter/queries.go (1)

13-41: Good use of parameterized queries for SQL constants.

The SQL constants use parameterized queries, which is a best practice for preventing SQL injection and ensuring query safety.

node/pkg/api/blocks/controller.go (3)

19-26: Effective use of custom validators.

The custom validation for non-negative integers is a good approach to ensure data integrity. Consider adding more context-specific validation rules if needed.

---

50-68: Consistent error handling and response structure.

The function handles errors consistently and returns JSON responses, which is a good practice for API endpoints.

---

104-116: Ensure consistent parameter validation.

The deleteUnprocessedBlock function should validate the service and blockNumber parameters to ensure they are not empty or invalid before proceeding with the query.

// Example: Add parameter validation checks
if service == "" || blockNumber == "" {
  return fiber.NewError(fiber.StatusBadRequest, "service and blockNumber parameters are required")
}

node/pkg/api/utils/test_helper.go (5)

60-62: LGTM!

The GetRequest function is correctly implemented as a wrapper for GET requests.

---

64-66: LGTM!

The PostRequest function is correctly implemented as a wrapper for POST requests.

---

68-70: LGTM!

The PatchRequest function is correctly implemented as a wrapper for PATCH requests.

---

72-74: LGTM!

The DeleteRequest function is correctly implemented as a wrapper for DELETE requests.

---

128-141: LGTM!

The DeepCopyMap function is correctly implemented and handles errors appropriately.

node/pkg/api/tests/vrf_test.go (1)

28-28: Address potential security issue with API key.

A generic API key is detected, which could expose sensitive operations. Ensure that this key is not used in production or replace it with a secure method of handling sensitive information.

Verification successful

---

Ensure test keys are not used in production.

The key "ebeb5229570725793797e30a426d7ef8aca79d38ff330d7d1f28485d2366de32" appears in test files. Confirm that these files are not included in production builds or deployments to avoid potential security risks.

• node/pkg/api/tests/vrf_test.go
• api/tests/vrf_test.go

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the presence of sensitive information in the codebase.

# Test: Search for potential API keys or sensitive information.
rg 'ebeb5229570725793797e30a426d7ef8aca79d38ff330d7d1f28485d2366de32'

Length of output: 491

Tools

Gitleaks

28-28: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

node/migrations/api/000001_initialize_tables.up.sql (3)

42-49: Use appropriate data types for large values.

The value column in the aggregates table is of type BIGINT. Ensure this type is appropriate for the expected range of values, as it can affect storage and performance.

---

60-69: Ensure referential integrity with ON DELETE actions.

The data table has foreign keys with ON DELETE CASCADE. Verify that this behavior is intended, as it will delete related data in this table when referenced rows in the aggregators or feeds tables are deleted.

---

81-90: Verify the length constraints for address fields.

In the listeners table, the address field is defined as CHARACTER VARYING(42). Ensure that this length is appropriate for all expected address formats.

node/pkg/api/utils/custom_types.go (8)

33-35: Ensure consistent error handling in JSON methods.

The MarshalJSON method for CustomFloat is straightforward, but ensure that any potential errors are handled consistently across all custom types.

---

63-65: Ensure consistent JSON marshaling.

The MarshalJSON method for CustomBool is consistent with CustomFloat. Ensure this consistency is maintained across all custom types.

---

88-90: Ensure consistent JSON marshaling.

The MarshalJSON method for CustomInt32 is consistent with other custom types. This consistency is good for maintainability.

---

126-128: Ensure consistent string conversion.

The String method for CustomInt64 is straightforward and consistent with Go's idioms.

---

130-133: Ensure consistent JSON marshaling.

The MarshalJSON method for CustomInt64 is consistent with other custom types, which is good for maintainability.

---

169-172: Ensure consistent string conversion.

The String method for CustomDateTime is consistent with Go's idioms and formats the date correctly.

---

174-176: Ensure consistent JSON marshaling.

The MarshalJSON method for CustomDateTime is consistent with other custom types, which is good for maintainability.

---

219-234: Ensure robust date parsing.

The tryParsingRFC3339Milli and tryParsingRFC3339 functions handle date parsing well. Ensure that any additional formats used in the system are also supported.

node/pkg/api/utils/utils.go (5)

3-25: Imports look good.

The imported packages are relevant to the functionalities implemented in this file.

---

27-30: Type definition is appropriate.

The AppConfig struct is a suitable container for application configuration.

---

66-83: QueryRow is well-implemented.

The function correctly handles single-row queries and uses generics effectively.

---

85-102: QueryRows is well-implemented.

The function correctly handles multi-row queries and uses generics effectively.

---

263-280: CustomErrorHandler is well-implemented.

The function provides effective error handling and logging.

[nick-bisonai]

@coderabbitai resolve

[nick-bisonai]

@coderabbitai resolve

[coderabbitai]

Actions performed

Comments resolved and changes approved.

[coderabbitai]

Actions performed

Comments resolved and changes approved.