fix: adds scraper logic and token handling

[shiv810]

Resolves #187

• Adds the scraper logic
• Fetches if the data in the DB is older than 24 hrs

[ubiquity-os-deployer]

9f22bfb

264701a

d038a0b

7766a20

cbabb43

eb012dc

94fef8c

8f3b4e6

d80b712

609db1f

91fb9e7

[0x4007]

Seems generally fine changes not sure how can be QA'd

Was wondering if another approach makes sense such as only copying with high precision based on when an issue is closed as complete and only that is copied over for example. But if we are hunting down historical issues then obviously this isn't a solution

My concern is redundantly finding the same historical issues and doing the same redundant search and scrape work. I am wondering if there is a better approach to this problem.

[shiv810]

@zugdev There are two locksfiles bun.lockdb and yarn.lock, is that intended, which one is suppoed to be used ?

[shiv810]

Seems generally fine changes not sure how can be QA'd

I'll create a demo video to walk through the flows.

Right now, we store the timestamp of the last scrape for the user, I think it should be possible to use this timestamp as a filter to check for any newly closed issues marked as completed. If there are any, we can proceed with the scrape; otherwise, we can skip the process for that user.

[zugdev]

@zugdev There are two locksfiles bun.lockdb and yarn.lock, is that intended, which one is suppoed to be used ?

The bun.lockb one is related to Cloudflare Wrangler, the main one is yarn.lock. Use the later.

[0x4007]

Perhaps we should consolidate all to bun? @gentlementlegen rfc

[gentlementlegen]

Ideally we should use bun everywhere for consistency, except if there is a reason not to. It matters mostly because when testing packages locally, bun link and yarn link are not interchangeable (at least from my experience).

[shiv810]

Is there a way to add secrets in the final build without exposing them in dist? I’m thinking of creating a pg function to handle this or using Cloudflare KV.

[gentlementlegen]

Yes, you can store and pull them from the GitHub Action environment during deployment.

[shiv810]

Yes, you can store and retrieve them from the GitHub Actions environment during deployment.

You’ll still be able to view the values in the home.js file after the final build. Is that fine? I think it’s fine for the SUPABASE URL and ANON KEY, but storing the VOYAGE API KEY in plain text doesn’t seem secure.

[gentlementlegen]

Why would it be in the final build? It should not be there.

[shiv810]

The scraper logic is executed when a user logs in on the client side. So, we will need voyage API key for embeddings.

[gentlementlegen]

Ha yes I see now, I was missing the context sorry. We should definitely not expose that API key on the client side. Sadly, we don't use SSR so I don't know how we can handle this except having some API pour that we host ourselves somewhere, or storing it in cookies?

[0x4007]

Make a worker endpoint. We have a setup like this for pay.ubq.fi that's related to the cards. Check its code.

@EresDev rfc

[EresDev]

Make a worker endpoint. We have a setup like this for pay.ubq.fi that's related to the cards. Check its code.

@EresDev rfc

Yes, it looks like VOYAGEAI part needs a backend. You can get started with pages functions.

We store API keys in cloudflare worker secrets. However, one similar thing that ubiquity-os-kernel does differently is store the API keys in Github, but pushing it to cloudflare during worker deployment. This helps with managing the secrets in one place (GitHub) and we probably will do the same soon in pay.ubq.fi if possible.

[shiv810]

We store API keys in cloudflare worker secrets.

We can store API keys in Cloudflare KV, but I don't think this is the best approach, as we could quickly hit the read limit. A better option might be Supabase Functions, which would allow us to read directly from the Supabase Vault.

[gentlementlegen]

You can have environment secrets in cloud flare that do not count against any quota. We can upload then from Github environment secrets, like we do for most plug-ins.

[shiv810]

QA:

Mean Stats:

• CPU Wall time: 3.2ms
• Sub Requests: 16 (For About 61 Issues)

@zugdev could you add the supabase service role key to the secrets under SUPABASE_KEY ? That's need for adding the scraped results back to the table. Please ping me in telegram for the value.

[shiv810]

@0x4007

QA:

https://scraperui.work-ubq-fi-50d.pages.dev/

You should be able to see the scraper function request, in the Network Tab of the Inspect Window.

[0x4007]

I'm mobile these days so I don't want to hold up the review somebody else please check on their computer for me.

[0x4007]

Perhaps we can try an exponential backoff? I wonder if this is worth implementing to make this more robust although I imagine that errors are quite rare for this.

[shiv810]

It should be possible to implement, but if a request fails and we retry multiple times, the entire request will eventually be terminated once it hits the maximum CPU wall time.

[0x4007]

Retries should be handled from the client so no timeouts on the worker side should be relevant.

[0x4007]

I wonder if there is a better way to implement this. For example, instead of by timing, we can do based on an event.

Although I can't think of how it would be possible in outside organization contexts.

[gentlementlegen]

You can add /* GraphQL */ to help IDEs parse and format GraphQL queries.

Suggested change

	const SEARCH_ISSUES_QUERY = `
	const SEARCH_ISSUES_QUERY = /* GraphQL */`

[gentlementlegen]

Should be in devDependencies

[gentlementlegen]

Shouldn't this be deleted since you used bun?

[shiv810]

I'm not entirely sure about this. @zugdev mentioned that Bun is related to Cloudflare, while Yarn is the main one.So, I've reverted the bun.lockb to match the repo version and added the dependencies to the yarn.lock.

[gentlementlegen]

I suppose it's okay to use either because the frontend doesn't rely on plugins or the kernel, but having both lockfiles seems unnecessary, I would suggest removing one or the other 😄