feat: initial v0.1 scaffold#1
Merged
Merged
Conversation
Public API: put/4, get/2, get_stream/2, head/2, delete/2, copy/3, exists/2, sign_url/3,4, list/2,3. Adapter-owns-its-process model, opaque State, time in ms, sizes in bytes, one store one bucket. Caller-required content_type; no extension sniffing. Per-store max_size guard. Adapters: nova_storage_local (filesystem, sharded layout, atomic rename writes with .tmp staging + reap on startup) and nova_storage_s3 (any S3-compatible: AWS / R2 / Scaleway / Minio / B2) using httpc + crypto + xmerl, no third-party HTTP/sig dependencies. SigV4 implementation hand-rolled in nova_storage_sigv4 with the documented traps wired in: year-based clock-skew guard (refuses 2020 > year > 2100), UNSIGNED-PAYLOAD rejected over HTTP, AWS canonical-URI encoding, path-style/virtual-host addressing. Property tests against AWS-published vectors live in test/nova_storage_sigv4_SUITE.erl. Telemetry: [nova_storage, Op, start|stop|exception] events with store, adapter, key, result, duration. Optional telemetry dep, no-op when absent. Ships with Taure/erlang-ci v2 CI + release workflows and ex_doc guides covering getting-started, adapters, SigV4 internals, and telemetry.
ℹ️ 15 OTP CVEs auto-ignored (already fixed in running version)These CVEs are patched in the installed OTP version but NVD data
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Initial v0.1 scaffold of
nova_storage— object/file storage abstraction for the Nova ecosystem.Public API
put/4,get/2,get_stream/2,head/2,delete/2,copy/3,exists/2,sign_url/3,4,list/2,3Adapters
nova_storage_local— filesystem with sharded layout, atomic-rename writes, sidecar JSON metadata, partial-write recoverynova_storage_s3— S3-compatible (AWS / R2 / Scaleway / Minio / B2), httpc + crypto + xmerl, zero new depsSigV4
Hand-rolled in
nova_storage_sigv4with the documented traps wired in:UNSIGNED-PAYLOADrejected onhttp://URLsTelemetry
[nova_storage, Op, start|stop|exception]events for every public operation, withstore,adapter,key,result,duration. Optional telemetry dep.Guardian-flagged design decisions implemented
head/2andcopy/3added to the behaviour (not justget/put/delete)max_sizeguard enforced in public APIcontent_typerequired onput; no extension sniffingnova_storageMUST NOT become a dep of nova core (README + CLAUDE.md)Test plan
rebar3 compile— cleanrebar3 ct— 16/16 passrebar3 xref— cleanrebar3 dialyzer— cleanrebar3 hank— cleanrebar3 fmt --check— cleanv0.1.0Follow-ups (not in v0.1)
nova_storage_s3_gun— true streaming get for large objectssign_urlget-utf8,post-vanilla,get-vanilla-query-order)