Skip to content

oslabs-beta/AutoDeploy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

22 Commits
client
client
 
 
server
server
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

Auto-Generated Secure CI/CD Pipelines with AI + MCP


General plan for file structure:

mcp-ci-cd-builder/
├── client/                # React + Tailwind + Zustand frontend (Victoria)
│   ├── src/
│   ├── public/
│   └── package.json
├── server/                # MCP orchestrator + adapters (Lorenc)
│   ├── src/
│   ├── package.json
│   └── mcp.config.json
├── infra/                 # AWS OIDC + GitHub Actions workflows (Alex)
│   ├── workflows/
│   └── terraform/ or aws-oidc.yml
├── tests/                 # Shared test utilities (Paython)
│   ├── integration/
│   └── unit/
├── .github/
│   └── workflows/
│       └── ci.yml
├── README.md
└── .env.example

Added by Lorenc - the file structure of the backend and the current back end flow:

sequenceDiagram
Frontend ->> Backend: GET /auth/github/start
Backend ->> GitHub: Redirect user to OAuth consent
GitHub ->> Backend: Redirect back with code & state
Backend ->> GitHub: POST /login/oauth/access_token
GitHub ->> Backend: Returns access_token
Backend ->> GitHub: GET /user, GET /user/emails
Backend ->> Supabase: Upsert users + connections
Backend ->> Frontend: Redirect / JSON success

AutoDeploy/
│
├── server/                      # main backend service
    └── lib/
│       ├── state.js             # CSRF state store (in-memory)
│       └── github-oauth.js      # helper functions for GitHub API
    ├── routes/
│   │   └── auth.github.js       # all GitHub OAuth + /me routes
		└── usersRoutes
│   ├── server.js                # Express bootstrap & route mounting
│   ├── db.js                    # pg Pool + query() + healthCheck()
│
├── .env                         # environment variables (GitHub, DB)
├── package.json / lock.json
├── .gitignore
└── (optional) client/           # frontend or test scripts

 Includes:
	•	CSRF protection via state (in-memory store).
	•	Token exchange & user fetch with live GitHub API calls.
	•	Upsert logic for both users and connections (idempotent).
	•	Sanity check before using any stored token.

FUNCTIONAL STATUS:
+-------------------+------------+-------------------------------------------------------------+
| Component         | Status     | Notes                                                       |
+-------------------+------------+-------------------------------------------------------------+
| Express app       | ✅ Working | Clean middleware (CORS, Helmet, JSON, logging)              |
| DB connection     | ✅ Working | Postgres via Supabase connection string                     |
| /health           | ✅ Working | Returns uptime                                              |
| /db/ping          | ✅ Working | Validates DB connectivity                                   |
| /users (POST/GET) | ✅ Working | Basic user CRUD                                             |
| /auth/github/*    | ✅ Working | OAuth flow complete                                         |
| /auth/github/me   | ✅ Working | Token sanity check + GitHub user info                       |
+-------------------+------------+-------------------------------------------------------------+

About

Auto-Generated Secure CI/CD Pipelines with AI + MCP

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Sponsor this project

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages