Skip to content

Durable manual corrections and remediation groundwork#27

Draft
JunjoSick wants to merge 5 commits into
mainfrom
codex/project-remediation
Draft

Durable manual corrections and remediation groundwork#27
JunjoSick wants to merge 5 commits into
mainfrom
codex/project-remediation

Conversation

@JunjoSick

Copy link
Copy Markdown
Owner

What changed

  • introduces durable, auditable human translation corrections with frozen override semantics and cache isolation
  • completes the editable dashboard review loop, durable flags, guided retries, staged EPUB rebuilds, and report refresh
  • bumps changed batch prompts/cache identity to v3
  • establishes the v2.4.0-dev release identity and repairs stale project documentation
  • adds Windows MSVC CI, Dependabot, RustSec, and Rust CodeQL foundations
  • fixes Unix-only PDF tests so the workspace type-checks on Windows

Why

The v2 dashboard could show review findings but non-developer users could not correct them safely. Main also lacked an unambiguous post-v2.3 identity, Windows test coverage, and dependency/security automation.

User impact

Users can now flag, edit, save, audit, and rebuild corrected translations from the dashboard or bookforge correct. Manual edits are never overwritten by resume/QA/double-check and are never reused across jobs. Guided retries remain explicit and require stopping an active job first.

Validation

  • cargo check --workspace --all-targets --locked with -D warnings on Windows gnullvm
  • cargo test --workspace --locked: 548 passed
  • cargo fmt --all --check
  • git diff --check
  • targeted store, prompt, batch, lifecycle, and dashboard endpoint tests

Follow-up in this branch

The remaining remediation plan is tracked in docs/codex-handoff-project-remediation-2026-07-10.md: manual dashboard exercise, remote CI/security feedback, local clippy/MSRV, true live reconfiguration, modularization, and final release gates.

…ion groundwork

Continues the project-remediation plan (see docs/codex-handoff-project-remediation-2026-07-10.md):

- Release/docs truth: 2.4.0-dev across workspace, CHANGELOG v2.3.0 + Unreleased, CONTRIBUTING CI commands
- Windows CI job, cfg(unix) PDF tests, dependabot, RustSec + CodeQL workflows (not yet run on GitHub)
- Migration 0007: translations origin/human_corrected/corrected_at; save_manual_correction freezes segments, excluded from cross-job cache
- New `bookforge correct` CLI command; CSRF-protected dashboard save/flag/retry endpoints with durable segment_flags
- Retry guidance persisted, survives resume, rendered into single + batch prompts; batch templates bumped v2->v3 with new PromptVersion::BatchV3 cache tag
- Correction atomicity: staged rebuild -> validate -> DB persist -> atomic rename, with recovery path on rename failure
- QA report gains corrected_segments and regenerates after corrections
- AppState carries store_path (removes per-request cwd resolution)
- request_segment_retry now rejects running/paused jobs
- Tests: store flag/retry/guidance, CSRF + isolated-store e2e dashboard, retry-guidance lifecycle (548 workspace tests green)

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
@github-advanced-security

Copy link
Copy Markdown

You are seeing this message because GitHub Code Scanning has recently been set up for this repository, or this pull request contains the workflow file for the Code Scanning tool.

What Enabling Code Scanning Means:

  • The 'Security' tab will display more code scanning analysis results (e.g., for the default branch).
  • Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results.
  • You will be able to see the analysis results for the pull request's branch on this overview once the scans have completed and the checks have passed.

For more information about GitHub Code Scanning, check out the documentation.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants