This PR resolves several infrastructure, testing, and documentation issues to improve the repository's baseline health before release. It adds automated load testing, container vulnerability scanning, issue/PR templates, and a security disclosure policy.
- Bug fix
- New feature
- Documentation update
- Refactor / chore
- Smart contract change
Closes #905 Closes #906 Closes #907 Closes #908
- Added
baseline.jsk6 script andloadtest.ymlworkflow for manual performance testing. - Added Trivy container scanning to
deploy-staging.ymlto fail on CRITICAL vulnerabilities. - Added
.trivyignoreanddocs/wiki/security-scanning.md. - Added GitHub issue templates (Bug, Feature, Security, Config) and a PR template.
- Added
SECURITY.mddefining our disclosure policy and linked it fromREADME.md.
-
Event Indexer Test Stability:
- Aligned the test expectation in
eventIndexer.test.tswith the observed behavior in CI (handling separate score update calls). - Ensured all required Jest globals are explicitly imported for ESM compatibility.
- Aligned the test expectation in
-
ESM Connection Exports:
- Fixed a
SyntaxErrorwheregetClientwas not recognized as an export fromconnection.jsby making exports more explicit. This resolves failures in controller tests (e.g.,poolController).
- Fixed a
- Frontend: Manual testing of forms (precision) and logout flow.
- Backend: Verified manual code review of indexer logic and connection exports.
Fixes: #580 fixed Fixes: #578 fixed Fixes: #562 fixed Fixes: #567 fixed
- Tested locally (Syntax and sanity checks)
- Added/updated unit tests
- Manually tested UI flow
- My code follows the project style
- I've updated docs if needed
- No console errors or warnings
- I've rebased on latest
main