Files
QuantEngineByItz/.gitea/workflows/ci.yml
T
kjh2064 0823d1b5a8 fix: CI venv hash-cache + sector exposure renderer + auditor registration
- ci.yml: venv 해시 기반 캐싱 적용 (validate_specs.py md5 기준), requirements.txt 불필요 스텝 제거
- harness_coverage_auditor.py: sector_trend_analysis.py, etf_representative_monitor.py PY_FILES 등록
- render_operational_report.py: _portfolio_sector_exposure_summary 개선 — account_snapshot 실데이터 집계 + Top5 섹터별 상위 보유 종목 상세 테이블 + _display() 누락값 표시
- update_workbook_sector_insights.py: row-2 헤더 처리 + sector_holdings 상세 추적 + _display() 누락값 표시
- operational_report_contract.py: portfolio_sector_exposure_summary REPORT_SECTION_ORDER 등록
- validate_report_section_completeness_v1.py: 동일 섹션 추가
- build_architecture_boundaries_v2.py: sparkline/idx/basket-delta UI 프리미티브 whitelist 추가
- runtime/refactor_baseline_v1.yaml: 엔트로피 베이스라인 갱신 (1692 files, gate=PASS)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-06-14 21:16:32 +09:00

128 lines
5.2 KiB
YAML

name: Quant Engine CI/CD Pipeline
on:
push:
branches: [ main ]
pull_request:
branches: [ main ]
# ─────────────────────────────────────────────────────────────────
# Synology DS216j (ARMv7l 32-bit) 환경 제약
# - Python: /usr/bin/python3 (3.8.12)
# - Node.js 18: /usr/local/bin (appstore)
# - numpy/pandas: 공식 휠 없음, gcc 미설치 → 소스 빌드 불가
#
# CI 역할: 코드 구조 검증 게이트 (순수 Python, yaml/json)
# - Validate Specs / Formula Registry / Coverage / Behavioral Coverage
# 통합 테스트(run_release_dag, ingest 등)는 로컬에서 실행
# ─────────────────────────────────────────────────────────────────
jobs:
validate-and-build:
runs-on: self-hosted
steps:
- name: Checkout Code
run: |
if [ -d .git ]; then
git remote set-url origin http://x-access-token:${{ secrets.GITHUB_TOKEN }}@192.168.123.100:8418/KimJaeHyun/myfinance.git
else
git init
git remote add origin http://x-access-token:${{ secrets.GITHUB_TOKEN }}@192.168.123.100:8418/KimJaeHyun/myfinance.git
fi
git fetch origin ${{ github.sha }} --depth=1
git reset --hard FETCH_HEAD
- name: Configure Runtime Paths
run: |
# Node.js 18: /usr/local/bin (appstore symlink)
export PATH=/usr/local/bin:$PATH
echo "/usr/local/bin" >> $GITHUB_PATH
echo "=== 런타임 확인 ==="
/usr/bin/python3 --version
node --version
npm --version
- name: Setup Python Environment
run: |
# 순수 Python 패키지만 설치 (numpy/pandas 제외 — ARMv7l 휠 없음)
VENV_BASE=/volume1/gitea/python_venv
REQ_HASH=$(md5sum tools/validate_specs.py 2>/dev/null | cut -d' ' -f1 || echo "default")
VENV="$VENV_BASE/$REQ_HASH"
if [ ! -f "$VENV/bin/python" ]; then
echo "=== venv 신규 생성: $REQ_HASH ==="
mkdir -p "$VENV_BASE"
/usr/bin/python3 -m venv "$VENV"
# Synology Python 3.8은 ensurepip가 없어 venv 생성 시 pip가 누락될 수 있음
if [ ! -f "$VENV/bin/pip" ]; then
echo "pip missing in venv, installing via get-pip.py..."
curl -sS https://bootstrap.pypa.io/pip/3.8/get-pip.py -o get-pip.py
"$VENV/bin/python" get-pip.py --quiet
rm get-pip.py
fi
"$VENV/bin/pip" install --upgrade pip --quiet
"$VENV/bin/pip" install pyyaml openpyxl --quiet
# 오래된 venv 정리 (최근 2개만 유지)
ls -dt "$VENV_BASE"/*/ 2>/dev/null | tail -n +3 | xargs rm -rf 2>/dev/null || true
else
echo "=== venv 캐시 히트: $("$VENV/bin/python" --version 2>&1) ==="
fi
echo "$VENV/bin" >> $GITHUB_PATH
- name: Install Node Dependencies
run: |
# package-lock.json 해시로 캐시 유효성 판단
CACHE_BASE=/volume1/gitea/node_cache
LOCK_HASH=$(md5sum package-lock.json 2>/dev/null | cut -d' ' -f1 || echo "no-lock")
[ -z "$LOCK_HASH" ] && LOCK_HASH="no-lock"
CACHE_DIR="$CACHE_BASE/$LOCK_HASH"
if [ -d "$CACHE_DIR/node_modules" ]; then
echo "=== node_modules 캐시 히트: $LOCK_HASH ==="
# 캐시에서 심볼릭 링크로 연결 (복사 대신 즉시)
rm -rf node_modules
ln -s "$CACHE_DIR/node_modules" node_modules
else
echo "=== npm install (최초 or lock 변경) ==="
npm install --quiet
# 캐시 저장
mkdir -p "$CACHE_DIR"
cp -r node_modules "$CACHE_DIR/node_modules"
echo "캐시 저장 완료: $CACHE_DIR"
# 오래된 캐시 정리 (최근 3개만 유지)
ls -dt "$CACHE_BASE"/*/ 2>/dev/null | tail -n +4 | xargs rm -rf 2>/dev/null || true
fi
node --version && npm --version
- name: Validate Specs
run: python3 tools/validate_specs.py
- name: Validate Formula Registry
run: python3 tools/validate_formula_registry.py
- name: Validate Golden Case Coverage
run: python3 tools/validate_golden_coverage_100.py
- name: Validate Harness Coverage Audit
run: python3 tools/harness_coverage_auditor.py
- name: Notify PR Result
if: github.event_name == 'pull_request'
run: |
STATUS="${{ job.status }}"
PR_NUM="${{ github.event.pull_request.number }}"
RUN_URL="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}"
if [ "$STATUS" = "success" ]; then
MSG="✅ **CI PASS** — spec/registry/coverage gate OK\n\n[워크플로우 로그](${RUN_URL})"
else
MSG="❌ **CI FAIL** — 로그 확인 필요\n\n[워크플로우 로그](${RUN_URL})"
fi
curl -s -X POST "${{ github.api_url }}/repos/${{ github.repository }}/issues/${PR_NUM}/comments" \
-H "Authorization: token ${{ secrets.GITHUB_TOKEN }}" \
-H "Content-Type: application/json" \
-d "{\"body\":\"${MSG}\"}"