feat: initial OpsPortal implementation

Signed-off-by: Damian Skrzyński <polprog.tech@gmail.com>

Author: polprog-dev

.env.example

@@ -0,0 +1,49 @@
+# OpsPortal — Environment Variables
+# Copy to .env and adjust as needed.
+
+# ── Server ─────────────────────────────────────────────────────────────────
+OPSPORTAL_HOST=127.0.0.1
+OPSPORTAL_PORT=8000
+OPSPORTAL_DEBUG=false
+OPSPORTAL_LOG_LEVEL=info
+
+# ── Paths ──────────────────────────────────────────────────────────────────
+# Path to the YAML tool manifest
+OPSPORTAL_MANIFEST_PATH=opsportal.yaml
+
+# Base directory for resolving relative tool repo paths
+OPSPORTAL_TOOLS_BASE_DIR=..
+
+# Where generated artifacts (HTML dashboards, reports) are stored
+OPSPORTAL_ARTIFACT_DIR=artifacts
+
+# Working directory for temporary files
+OPSPORTAL_WORK_DIR=work
+
+# ── Process Management ─────────────────────────────────────────────────────
+OPSPORTAL_PROCESS_STARTUP_TIMEOUT=30
+OPSPORTAL_CLI_TASK_TIMEOUT=300
+OPSPORTAL_LOG_BUFFER_SIZE=5000
+OPSPORTAL_HEALTH_CHECK_INTERVAL=30
+
+# ── Tool Config Overrides ─────────────────────────────────────────────────
+# Override the default config file location for ReleaseBoard.
+# If unset, the adapter searches: repo_path/, tools_base_dir/, cwd/
+# OPSPORTAL_RELEASEBOARD_CONFIG=/path/to/releaseboard.json
+
+# ── Corporate Proxy / SSL (auto-propagated to child tools) ─────────────────
+# These are standard environment variables. Set them in your shell or here.
+# OpsPortal automatically forwards them to all child tool subprocesses.
+#
+# HTTP_PROXY=http://proxy.corp.example.com:8080
+# HTTPS_PROXY=http://proxy.corp.example.com:8080
+# NO_PROXY=localhost,127.0.0.1,.corp.example.com
+#
+# ── Custom CA Certificates ─────────────────────────────────────────────────
+# If your organisation uses SSL inspection (Zscaler, Netskope, etc.),
+# point these to your corporate CA bundle:
+#
+# SSL_CERT_FILE=/etc/ssl/certs/corporate-ca-bundle.pem
+# REQUESTS_CA_BUNDLE=/etc/ssl/certs/corporate-ca-bundle.pem
+# CURL_CA_BUNDLE=/etc/ssl/certs/corporate-ca-bundle.pem
+# NODE_EXTRA_CA_CERTS=/etc/ssl/certs/corporate-ca-bundle.pem

.github/workflows/ci.yml

@@ -0,0 +1,131 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+permissions:
+  contents: read
+
+env:
+  PYTHON_VERSION: "3.13"
+
+jobs:
+  lint:
+    name: Lint & Format
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: ${{ env.PYTHON_VERSION }}
+
+      - name: Install dependencies
+        run: pip install -e ".[dev]"
+
+      - name: Ruff lint
+        run: python -m ruff check src/ tests/
+
+      - name: Ruff format check
+        run: python -m ruff format --check src/ tests/
+
+  test:
+    name: Test (Python ${{ matrix.python-version }})
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ["3.12", "3.13"]
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: ${{ matrix.python-version }}
+
+      - name: Install dependencies
+        run: pip install -e ".[dev]"
+
+      - name: Run tests
+        run: python -m pytest tests/ -v --tb=short --junitxml=test-results.xml
+
+      - name: Upload test results
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: test-results-py${{ matrix.python-version }}
+          path: test-results.xml
+
+  validate-config:
+    name: Validate Configs
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: ${{ env.PYTHON_VERSION }}
+
+      - name: Install dependencies
+        run: pip install -e ".[dev]"
+
+      - name: Validate manifest YAML
+        run: python -c "
+          from opsportal.config.manifest import load_manifest
+          from pathlib import Path
+          m = load_manifest(Path('opsportal.yaml'), Path('.'), Path('work/tools'))
+          print(f'Manifest OK: {len(m.enabled_tools)} tool(s) registered')
+          for t in m.enabled_tools:
+              src = f' [source: {t.source.repository}@{t.source.ref}]' if t.source else ''
+              print(f'  - {t.slug} ({t.integration_mode}){src}')
+          "
+
+  deploy-example:
+    name: Deploy (Example)
+    runs-on: ubuntu-latest
+    needs: [build]
+    if: github.ref == 'refs/heads/main'
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: ${{ env.PYTHON_VERSION }}
+
+      - name: Install OpsPortal
+        run: pip install -e ".[dev]"
+
+      - name: Install managed tools from remote sources
+        run: |
+          pip install "git+https://github.com/POLPROG-TECH/ReleasePilot.git@v1.1.0[all]"
+          pip install "git+https://github.com/POLPROG-TECH/ReleaseBoard.git@v1.1.0"
+
+      - name: Verify CLI entrypoints
+        run: |
+          releasepilot --version
+          releaseboard --version
+
+  build:
+    name: Build Package
+    runs-on: ubuntu-latest
+    needs: [lint, test]
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: ${{ env.PYTHON_VERSION }}
+
+      - name: Install build tools
+        run: pip install build
+
+      - name: Build wheel
+        run: python -m build
+
+      - name: Upload artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: dist
+          path: dist/

.gitignore

@@ -0,0 +1,6 @@
+__pycache__/
+*.pyc
+artifacts/
+work/
+.env
+*.egg-info/

CODE_OF_CONDUCT.md

@@ -0,0 +1,62 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our
+community a harassment-free experience for everyone, regardless of age, body
+size, visible or invisible disability, ethnicity, sex characteristics, gender
+identity and expression, level of experience, education, socio-economic status,
+nationality, personal appearance, race, religion, or sexual identity
+and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming,
+diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment for our
+community include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the
+  overall community
+
+Examples of unacceptable behavior include:
+
+* The use of sexualized language or imagery, and sexual attention or
+  advances of any kind
+* Trolling, insulting or derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or email
+  address, without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Enforcement Responsibilities
+
+Community leaders are responsible for clarifying and enforcing our standards of
+acceptable behavior and will take appropriate and fair corrective action in
+response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when
+an individual is officially representing the community in public spaces.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the project maintainers at **polprog.tech@gmail.com**.
+
+All complaints will be reviewed and investigated promptly and fairly.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant](https://www.contributor-covenant.org/),
+version 2.1, available at
+[https://www.contributor-covenant.org/version/2/1/code_of_conduct.html](https://www.contributor-covenant.org/version/2/1/code_of_conduct.html).

CONTRIBUTING.md

@@ -0,0 +1,69 @@
+# Contributing to OpsPortal
+
+Thank you for your interest in contributing to OpsPortal! This guide covers everything you need to get started.
+
+## Development Setup
+
+Clone all repositories into a shared parent directory:
+
+```bash
+mkdir opsportal-dev && cd opsportal-dev
+git clone https://github.com/POLPROG-TECH/OpsPortal.git
+git clone https://github.com/POLPROG-TECH/ReleasePilot.git
+git clone https://github.com/POLPROG-TECH/ReleaseBoard.git
+
+pip3 install -e "./ReleasePilot[all]"
+pip3 install -e ./ReleaseBoard
+pip3 install -e ./OpsPortal
+```
+
+Verify the installation:
+
+```bash
+opsportal version
+```
+
+### Pre-commit hook
+
+```bash
+cd OpsPortal
+cp scripts/pre-commit .git/hooks/pre-commit && chmod +x .git/hooks/pre-commit
+```
+
+## Running Tests
+
+```bash
+pytest                                    # all tests
+pytest -v                                 # verbose
+pytest tests/test_security.py             # specific file
+pytest tests/test_security.py::TestCSP    # specific class
+```
+
+Tests follow the **GIVEN/WHEN/THEN** docstring pattern (see existing tests for examples).
+
+## Code Quality
+
+```bash
+ruff check src/ tests/
+```
+
+## How to Contribute
+
+### Reporting Bugs
+
+Include: expected vs actual behavior, `opsportal.yaml` (redacted), Python/OS version, steps to reproduce.
+
+### Pull Requests
+
+1. Branch from `main`
+2. Make changes + add tests
+3. Run `pytest` and `ruff check src/ tests/`
+4. Open PR with clear description
+
+## Commit Convention
+
+[Conventional Commits](https://www.conventionalcommits.org/): `feat:`, `fix:`, `docs:`, `test:`, `refactor:`, `chore:`
+
+## License
+
+See [LICENSE](LICENSE).