DevOps & Quality¶
Planned improvements to CI/CD, testing, and deployment practices.
ECS Rolling Updates
ECS supports rolling updates natively: new tasks are started, health checks pass, then traffic shifts to the new tasks and old ones drain. This gives similar benefits to blue-green (minimal downtime, instant rollback by reverting the task definition) without maintaining two full environments. Dedicated blue-green deployment is not planned.
Automated Testing Pipeline¶
| Type | Current | Planned | Tool | Trigger |
|---|---|---|---|---|
| Unit tests | Manual | CI on every PR | pytest | GitHub Actions on PR open/push |
| Integration tests | Manual | CI with Docker Compose | pytest + Docker Compose | GitHub Actions on PR to main |
| Load testing | Ad-hoc | Scheduled weekly | k6 (Grafana) | Cron or manual dispatch |
| Security scanning | Manual | CI on every PR | OWASP ZAP (baseline scan) | GitHub Actions on PR open/push |
| Dependency audit | Manual | Automated alerts | pip-audit / npm audit |
GitHub Dependabot + Actions |
Quality targets
The goal is zero-surprise deployments: every PR passes unit tests, integration tests, and OWASP baseline scan before merge. Weekly k6 load tests validate that the platform handles 2x current peak traffic without degradation. Security scanning catches common vulnerabilities (XSS, SQLi, misconfigurations) before they reach production.
Overview · Infrastructure · System Architecture · System Features & Product