Skip to content

feat(storage): foundation — integrity, manifest, profile, secrets, backend (PR1 of 4)#108

Open
sidd-27 wants to merge 2 commits into
kornia:feat/bubbaloop-storage-specfrom
sidd-27:storage-pr1-foundation
Open

feat(storage): foundation — integrity, manifest, profile, secrets, backend (PR1 of 4)#108
sidd-27 wants to merge 2 commits into
kornia:feat/bubbaloop-storage-specfrom
sidd-27:storage-pr1-foundation

Conversation

@sidd-27

@sidd-27 sidd-27 commented Jun 18, 2026

Copy link
Copy Markdown
Contributor

Stacked split of #107 — part 1 of 4. The original PR bundled all four in-tree phases (~16.5k lines) into one branch, which isn't reviewable. This is the first of four sequential PRs, each scoped to one phase of the storage spec (docs/superpowers/specs/2026-05-26-bubbaloop-storage-design.md, §17). PR2/3/4 open against this branch as each merges.

PR1 — foundation (crates/bubbaloop/src/storage/)

The pure-logic core, no Zenoh/daemon dependencies, full unit coverage:

  • integrity — streaming + one-shot SHA-256, hex/prefix8/base64 helpers, verify (mandatory per-chunk integrity, §11).
  • recording + manifest — the manifest.json data model (§4.4) with forward-compatible unknown-field preservation, derived lifecycle/upload state, atomic write_tmp_then_rename save/load, and structural validation (§3.4.5).
  • profile — profile YAML + full v1 validator (§4.3.1), reserved pipelines:→v2 gate (§4.3.2), canonical profile_sha256 (§4.3.3).
  • secrets — opaque zeroize-on-drop Secret (redacted Debug), secrets.toml chmod 0600 (§4.2).
  • backend — async StorageBackend trait + LocalFs impl with checksum verification, path-traversal guards, and deterministic object-key builders (§8).

Also adds the osx-arm64 platform to the pixi workspace so it builds on Apple Silicon (no dependency changes). New deps: sha2, zeroize, async-trait.

Scope boundary

S3-compatible backend, discover/sync/reconcile/replay, the CLI/MCP surfaces, and the dashboard are deferred to PR2–PR4 per the spec phasing.

Verification

57 unit tests; clippy-clean.

Review status

The original combined branch had a high-effort multi-agent code review with all findings fixed. The fixes are distributed across the PRs they touch.

🤖 Generated with Claude Code

Siddharth Rambhia and others added 2 commits June 14, 2026 22:38
@claude
feat(storage): add storage foundation module (PR1)
f05cf30 
Implements the pure-logic core of the bubbaloop storage subsystem from
docs/superpowers/specs/2026-05-26-bubbaloop-storage-design.md (spec §17 "PR1"),
with no Zenoh dependencies and full unit coverage:

- integrity: streaming + one-shot SHA-256, hex/prefix8/base64 helpers, verify
  (mandatory per-chunk integrity, §11)
- recording: manifest.json data model (§4.4) with forward-compatible
  unknown-field preservation and derived lifecycle/upload state
- manifest: atomic write_tmp_then_rename save, load, structural validation (§3.4.5)
- profile: profile YAML + full v1 validator (§4.3.1), reserved `pipelines:`->v2
  gate (§4.3.2), canonical profile_sha256 (§4.3.3)
- secrets: opaque zeroize-on-drop Secret (redacted Debug), secrets.toml chmod 0600 (§4.2)
- backend: async StorageBackend trait + LocalFs impl with checksum verification
  and path-traversal guards; deterministic object-key builders (§8)

S3Compat backend, discover/sync/reconcile/replay, CLI/MCP surfaces and the
dashboard tab are deferred to later PRs per the spec phasing.

Adds sha2, zeroize, async-trait deps. 57 unit tests; clippy-clean.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
@claude
chore: add osx-arm64 platform to pixi workspace
ddabd72 
Enables building/testing on Apple Silicon (the workspace previously declared
only linux-aarch64 and linux-64). No dependency changes.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
@qodo-code-review

qodo-code-review Bot commented Jun 18, 2026

Copy link
Copy Markdown

Qodo reviews are paused for this user.

Troubleshooting steps vary by plan Learn more →

On a Teams plan?
Reviews resume once this user has a paid seat and their Git account is linked in Qodo.
Link Git account →

Using GitHub Enterprise Server, GitLab Self-Managed, or Bitbucket Data Center?
These require an Enterprise plan - Contact us
Contact us →

This was referenced Jun 18, 2026
Closed
Draft
@sidd-27

sidd-27 commented Jun 18, 2026

Copy link
Copy Markdown
Contributor Author

Stacked PR — review in order. Each merges into feat/bubbaloop-storage-spec before the next.

  1. feat(storage): foundation — integrity, manifest, profile, secrets, backend (PR1 of 4) #108 — PR1 foundation
  2. feat(storage): discover / sync / reconcile / CLI (PR2 of 4) #109 — PR2 discover/sync/reconcile/CLI
  3. feat(storage): replay + ring buffer (PR3 of 4) #110 — PR3 replay + ring buffer
  4. feat(storage): sync driver + daemon wiring + MCP parity + docs (PR4 of 4) #111 — PR4 sync driver + daemon + MCP parity

Drafts #109#111 currently show a cumulative diff against the spec branch; each collapses to its own phase automatically once the PR above it merges.

This was referenced Jun 18, 2026
Draft
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sidd-27