Changelog¶

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[5.3.1] - 2026-02-26¶

Patch release: one bug fix and comprehensive documentation overhaul. Architecture terminology corrected across all documentation, README rewritten, project specification added.

Fixed¶

_transpose_to_columns (#311): Use strict=True in zip() to catch row length mismatches that bypass validation. Closes #242

Documentation¶

Architecture terminology (#312): Replaced "pipeline" terminology with "independent services" across all documentation, source docstrings, and deployment configs. Renamed pipeline.md to services.md. Fixed service count (5 -> 6), architecture tiers (5 -> 4), test counts, query function count (14 -> 15), Prometheus ports, alert rules (4 -> 6), and DAG diagram edges
README: Rewritten with comprehensive project overview reflecting current architecture
PROJECT_SPECIFICATION.md: Added full system specification with database schema, service descriptions, deployment variants, and architecture diagrams
Removed stale REVIEW.md: Cleanup of previous review artifact

5.3.0 - 2026-02-25¶

Comprehensive codebase hardening: 46 commits across 44 PRs. Finder refactored from kind-specific event parsing to kind-agnostic tagvalues scanning with JMESPath-based configurable API extraction. Extensive bug fixes across all layers (models, core, NIPs, services, deployments), dead code removal, and improved error handling.

DEPLOYMENT CHANGES¶

SQL template sync: LilBrotr deployment SQL files updated for batched orphan_event_delete, network_stats direct-join rewrite, supported_nip_counts cast guard, Synchronizer indexes, and corrected file headers. Requires fresh initdb or manual execution of updated SQL files (04, 05, 06, 07, 08)
Grafana depends_on: Added service_healthy condition to Grafana container's Prometheus dependency

Added¶

JMESPath API extraction (#309): ApiSourceConfig.jmespath field enables configurable relay URL extraction from diverse JSON API response formats ([*], data.relays, [*].url, keys(@))
jmespath dependency: jmespath>=1.0.0 (runtime) and types-jmespath>=1.0.0 (dev type stubs)
delete_orphan_cursors query: Removes cursor records for relays no longer in the database, shared by Finder and Synchronizer (#309)
Finder metrics: relays_failed gauge and total_api_relays_found counter (#309)
Synchronizer network filtering: fetch_relays() now filters by enabled networks, avoiding unnecessary relay loading (#309)
NIP-11 shared session: Nip11.fetch_info() accepts an optional shared aiohttp.ClientSession for connection pooling (#307)
Event.from_db_params() roundtrip test (#295)

Refactored¶

Finder event scanning (#309): Replaced kind-specific parsing (r-tags, kind 2 content, kind 3 JSON) with kind-agnostic tagvalues scanning via parse_relay_url. Removed EventsConfig.kinds field. Renamed get_events_with_relay_urls → fetch_event_tagvalues (simpler query selecting only tagvalues + seen_at)
Logger truncation (#300): Consolidated duplicate value truncation logic to single point in format_kv_pairs()
Dead code removal: Removed unused fetch_relay_events function (#280), unused dict-based CertificateExtractor methods (#306), hardcoded skipped_events from Synchronizer (#297), unused stagger_delay config (#272), unnecessary getattr fallbacks in run_forever() (#275)

Fixed¶

Relay equality (#287, #289): Excluded raw_url from Relay.__eq__ comparison, preventing false negatives when the same URL is stored with different original casing
SSL validation (#268): Made conditional on successful certificate extraction, preventing false validation errors
_persist_scan_chunk (#309): No longer re-raises non-fatal cursor update errors
upsert_service_state (#305): Returns confirmed count from database instead of input count
_get_publish_relays (#285): Uses is not None instead of truthiness check
_publish_if_due (#279): Uses int timestamp consistently
deep_freeze (#284): Returns tuple instead of list for true immutability
parse_seed_file (#292): Widened exception handling to catch all I/O errors
models_from_dict (#293): Catches KeyError for missing keys
SyncCycleCounters (#298, #308): Removed duplicate initialization and stale skipped_events reference
NIP-11 supported_nips (#291): Deduplicates NIP values during parsing
NIP-66 log classes (#270): Unified reason validation to falsy check
NIP-66 DNS (#269): Catches tldextract exceptions
NIP-66 GeoIP (#278): Removed dead exception catch in _geo() method
_NostrSdkStderrFilter (#299): Added max line safety valve
NetworksConfig (#294): Logs warning on fallback to clearnet
parse_fields (#277): Cached dispatch dict with lru_cache
One-shot mode (#276): Wrapped in service context manager
Refresher (#271): Narrowed exception catch to database errors only
network_stats (#274): Computes unique counts at network level with direct join
supported_nip_counts (#273): Guards against non-integer NIP values
orphan_event_delete (#283): Added batching for large deletions
mypy (#302, #304): Removed blanket ignore_errors from __main__ and asyncpg from ignore list
Pre-commit mypy hook (#303): Added missing runtime dependencies
LilBrotr SQL (#282, #286): Fixed file headers and added missing Synchronizer indexes
Grafana (#281): Added health check condition to depends_on
SQL templates: Synced with all deployment fixes (batching, joins, cast guards, headers)

Tests¶

Relaxed exact mock call count assertions in Event tests (#296)
Added 170+ new tests for Finder (JMESPath, orphan cursors, metrics), Synchronizer (network filter, orphan cursors), queries (delete_orphan_cursors, fetch_event_tagvalues), and transport

Documentation¶

Removed incorrect case-insensitive claim from procedure name docstring (#288)
Documented _StderrSuppressor global scope trade-off (#301)
Updated service count from five to six in common package docstring (#290)

5.2.0 - 2026-02-24¶

Refresher service, rich analytics materialized views, shared deployment SQL, concurrent Finder event scanning, and legacy brotr deployment removal. 8 commits across 6 PRs.

DEPLOYMENT CHANGES¶

These changes require deployment updates (Docker Compose, SQL schema, monitoring). No Python API breaking changes.

Refresher service container: New refresher container added to both docker-compose.yaml files. Requires DB_WRITER_PASSWORD environment variable and config/services/refresher.yaml config file
deployments/brotr/ removed: The legacy monolithic deployment has been deleted. Use bigbrotr or lilbrotr instead
Materialized views shared: All 11 materialized views, 12 refresh functions, and matview indexes are now present in both bigbrotr and lilbrotr (previously only bigbrotr had statistical views). LilBrotr deployments require fresh initdb or manual 06_materialized_views.sql + 07_functions_refresh.sql + 08_indexes.sql execution
Config class renames: PoolLimitsConfig → LimitsConfig, PoolTimeoutsConfig → TimeoutsConfig, PoolRetryConfig → RetryConfig, BrotrTimeoutsConfig → TimeoutsConfig. Old names are removed (no backward compatibility shim)

Added¶

Refresher service (services/refresher/): Periodically refreshes all 11 materialized views in 3-level dependency order (relay_metadata_latest → independent stats → dependent stats). Per-view logging, timing, error isolation, and Prometheus gauges (views_refreshed, views_failed) (#207, #208)
4 new materialized views: network_stats (per-network relay/event/pubkey/kind counts), relay_software_counts (NIP-11 software distribution), supported_nip_counts (NIP support frequency), event_daily_counts (daily event volume time series) (#206)
Concurrent Finder event scanning: find_from_events() uses asyncio.TaskGroup + asyncio.Semaphore for bounded concurrent relay scanning, replacing the sequential for loop. New config field ConcurrencyConfig.max_parallel_events (default: 10) (#203)
Refresher Docker containers: Service definitions and Prometheus scrape jobs in both bigbrotr and lilbrotr docker-compose.yaml and prometheus.yaml (#208)
389 Refresher unit tests: Full coverage of service lifecycle, dependency ordering, error handling, metrics, and configuration validation (#207)
Comprehensive codebase review (REVIEW.md): Full project audit covering all source files, tests, deployment configs, SQL, and documentation. 58 findings documented with exact locations and solutions (#208)

Refactored¶

Materialized views redesigned (#206): 6 existing BigBrotr stat matviews enriched with events_per_day, unique_kinds, NIP-11 info columns, NIP-01 category labels, and HAVING >= 2 anti-explosion filter. all_statistics_refresh() updated with 3-level dependency ordering
Deployment SQL shared (#205, #207): Moved matview definitions, refresh functions, and indexes from bigbrotr-specific Jinja2 overrides to shared base templates. Both bigbrotr and lilbrotr now generate identical matview SQL from the same base blocks (extra_materialized_views, extra_refresh_functions, extra_matview_indexes)
Deployment base restructured (#205): _template renamed to brotr as the reference implementation. Integration tests reorganized by deployment: base/ (61 tests), bigbrotr/ (25 tests), lilbrotr/ (8 tests)
Config naming cleaned up (#204): Removed redundant prefixes from 4 config classes. Slimmed down __init__.py exports to public API only, removing 45+ dead re-exports across 6 packages. Removed ~110 decorative comments while preserving ~65 meaningful comments
deployments/brotr/ removed (#207): 35 files deleted after matview consolidation made brotr and bigbrotr generate identical SQL. generate_sql.py updated to produce 20 files instead of 30

Fixed¶

BaseService.from_yaml() return type (#203): Factory methods from_yaml(), from_dict(), and __aenter__() now return Self instead of "BaseService[ConfigT]", giving type checkers the correct subclass return type
ConcurrencyConfig.max_parallel renamed (#203): Renamed to max_parallel_api for clarity, distinguishing API-based from event-based concurrency

Documentation¶

MkDocs cross-references fixed for removed re-exports (#204)
README, database.md, architecture.md, configuration.md, custom-deployment.md, sql-templates.md, and new-service.md updated for Refresher service, shared matviews, and deployment changes
PostgreSQL guide updated for 25 stored functions (was 21)

5.1.0 - 2026-02-23¶

Major infrastructure and architecture release: services restructured into packages with clear public APIs, PostgreSQL role isolation with PgBouncer dual-pool routing, full monitoring stack (postgres-exporter + Grafana dashboards), asyncpg/PgBouncer compatibility hardening, and comprehensive audit remediation across all layers. 152 commits across 22 PRs.

DEPLOYMENT CHANGES¶

These changes require deployment updates (env vars, Docker Compose, PostgreSQL schema). No Python API breaking changes.

DB_PASSWORD renamed to DB_ADMIN_PASSWORD: Update .env files and Docker Compose environment sections
PostgreSQL role isolation: New *_writer and *_reader roles replace single-role access. Requires fresh initdb or manual 98_grants.sh execution
PgBouncer dual-pool: Separate [bigbrotr_writer] and [bigbrotr_reader] pool sections. Update pgbouncer.ini and userlist.txt
metadata.metadata_type column renamed to type: SQL schema change across all deployments. Requires fresh initdb or manual migration
pg_stat_statements extension: Now enabled in all deployments. Requires shared_preload_libraries in postgresql.conf

Added¶

PostgreSQL role isolation (98_grants.sh): Separate writer (DML + EXECUTE) and reader (SELECT + EXECUTE + pg_monitor) roles with principle of least privilege (#197)
PgBouncer dual-pool routing (pgbouncer.ini): Writer and reader pools with independent connection limits, routed by PostgreSQL role (#197)
Per-service pool overrides (BaseServiceConfig): Services can override min_size, max_size, and timeouts in their YAML config (#197)
Postgres-exporter (monitoring/postgres-exporter/): Custom SQL queries for materialized view age, event ingestion rates, relay counts, service state health (#196)
Grafana dashboard panels: 35+ panels covering PostgreSQL internals, relay statistics, event pipeline, service health across all deployments (#196, #198)
Prometheus metrics for Finder and Synchronizer: Relay discovery counts, event fetch counters, cursor synchronization progress (#198)
pg_stat_statements: Enabled across all deployments (template, bigbrotr, lilbrotr) for query performance analysis (#199)
Template schema completeness: Views, materialized views, refresh functions, and full indexes now included in _template deployment (#199)
BaseNip abstract hierarchy (nips/base.py): Uniform BaseNip → BaseNipMetadata → BaseNipDependencies class hierarchy for all NIP implementations (#174)
Lazy imports (bigbrotr/__init__.py): Deferred import system for faster CLI startup (#162)
Integration tests: Full stored procedure coverage with testcontainers PostgreSQL (#195)
SQL generation tooling: Jinja2 templates (tools/templates/sql/) with CI drift check via generate_sql.py --check (#162)
Bounded file download (utils/http.py): download_file() with configurable size cap for GeoLite2 and NIP-11 responses (#174)
PgBouncer query_timeout: 300s server-side safety net for abandoned queries (#199)

Refactored¶

Services package restructure (#194): All 5 services converted from single modules to packages with explicit public APIs:
Each service now exposes granular methods (seed(), find_from_events(), validate(), fetch_relays(), etc.)
Extracted GeoReaders, NetworkSemaphores, ChunkProgress as standalone classes
Split transport.py into transport.py (low-level WebSocket) + protocol.py (Nostr protocol)
Extracted event_builders.py from Monitor to NIP layer
Standardized sub-config naming and field names across all services
NIP layer hardening (#174): BaseNipMetadata naming consistency, NIP-66 execute() methods return graceful failures instead of raising, response size limits on Finder API and NIP-11 info fetch
Brotr simplification (#192): Removed unused Pool/Brotr methods, aligned ServiceState db_params pattern, cleaned up candidate lifecycle
Model field alignment (#163): ServiceState promoted to DbParams pattern, SQL columns and stored procedure parameters aligned with Python models
Schema cleanup (#175): metadata.metadata_type column renamed to type, PgBouncer config improvements
Build system (#170): Migrated from pip/setuptools to uv with uv.lock
Makefile (#169): Redesigned for consistency with pyproject.toml and CI workflows
Documentation (#164, #165): Consolidated CONTRIBUTING.md, fixed stale docstring references, restructured docs/ into mkdocs-material sections

Fixed¶

asyncpg prepared statement caching (#199): Disabled (statement_cache_size=0) for PgBouncer transaction mode compatibility — previously caused silent prepared statement does not exist errors
statement_timeout ineffective (#199): Default changed to 0 because PgBouncer's ignore_startup_parameters strips it before it reaches PostgreSQL
PgBouncer userlist.txt permissions (#199): chmod 600 after creation to prevent credential exposure
Health check start_period (#199): PostgreSQL 10s→30s, PgBouncer 15s→20s to accommodate init scripts
WAL metrics (#199): GRANT pg_monitor to reader role replaces --no-collector.wal workaround, re-enabling full WAL collector
Reader role permissions (#199): GRANT EXECUTE on all functions + ALTER DEFAULT PRIVILEGES for future functions
Chunked transfer-encoding (#196): HTTP response handling in NIP-11 info fetch
Monitor completion percentage (#196): Correct handling on empty batches (division by zero)
NIP-42 detection (#192): Standardized auth-required prefix per NIP-01
Publisher state type (#168): Use CHECKPOINT state type for publisher timestamps in MonitorPublisherMixin
Config-driven timeouts (#167): Graceful shutdown waits and per-network semaphores now configurable
Docker image size (#171, #172): Removed system Python packages and site-packages to resolve Trivy findings
Shell injection (#162): Hardened release.yml against untrusted input in shell commands
SQL hardening (#177, #178, #191): Cleanup functions batched, views improved, redundant indexes removed, SSL validation tightened
Models and core validation (#191): Empty reason string rejection, NIP-11 parsing deduplication, fail-fast validation improvements
Dockerfile HEALTHCHECK (#162): Corrected port and switched to console_scripts entrypoint

Documentation¶

MkDocs Material site restructured with auto-generated API reference
Database and architecture docs updated for role isolation and schema changes
Cross-references and broken links fixed after services restructure
All deployment README and CI workflow documentation updated

5.0.1 - 2026-02-10¶

CI/CD infrastructure hardening, automated documentation site, and dependency maintenance.

Added¶

MkDocs Material documentation site (mkdocs.yml, docs/reference/): Auto-generated API reference via mkdocstrings, deployed to GitHub Pages on push to main
Release pipeline (.github/workflows/release.yml): 6-job DAG -- validate, build-python, build-docker, publish-pypi (OIDC), publish-ghcr (semver tags), release (GitHub Release with SBOM artifacts)
Documentation workflow (.github/workflows/docs.yml): Automatic rebuild on docs/source/config/changelog changes
CODEOWNERS (.github/CODEOWNERS): @BigBrotr/maintainers for all paths

Changed¶

CI pipeline overhauled (.github/workflows/ci.yml): Renamed test → unit-test, added integration-test job, timeout-minutes on all jobs, build added to ci-success gate with skipped-allowed logic, Docker cache scoped per deployment
Dependabot grouping (.github/dependabot.yml): github-actions-all group for major/minor/patch updates
Makefile: Renamed test → test-unit, added test-integration, docs, docs-serve, build targets
GitHub Actions pinned by SHA with # vX.Y.Z comments for Dependabot compatibility
Dependencies updated: upload-artifact v4→v6, download-artifact v4→v7, codeql-action and codecov-action SHA updates

Fixed¶

Codecov upload on Dependabot PRs: Added github.actor != 'dependabot[bot]' condition to skip upload when secrets are unavailable, unblocking all automated dependency PRs
Docker GHA cache collision: Added scope=${{ matrix.deployment }} to prevent cache eviction between bigbrotr/lilbrotr matrix jobs
docs.yml missing CHANGELOG.md trigger: Root CHANGELOG.md included via pymdownx.snippets but wasn't in the paths filter
release.yml coverage overhead: Removed unused --cov flags from validate job

Documentation¶

MkDocs site: Home page, 5 user guide sections (Architecture, Configuration, Database, Deployment, Development), Changelog, and 5 API reference modules (Core, Models, NIPs, Utils, Services)
README.md: Updated CI/CD pipeline table and make targets
docs/DEVELOPMENT.md: Updated make targets and test commands
CONTRIBUTING.md: Migrated all commands to make targets, added docs section
PULL_REQUEST_TEMPLATE.md: Added integration test checkbox

5.0.0 - 2026-02-09¶

Major quality and operational hardening release: exception hierarchy replaces all bare catches, Monitor split into 3 modules, DAG violation fixed, Docker infrastructure hardened with real healthchecks and network segmentation, CI/CD expanded with security scanning, 4 Prometheus alerting rules, and complete documentation rewrite.

BREAKING CHANGES¶

Exception hierarchy: All except Exception blocks replaced with specific catches from bigbrotr.core.exceptions (BigBrotrError, ConfigurationError, DatabaseError, ConnectionPoolError, QueryError, ConnectivityError, RelayTimeoutError, RelaySSLError, ProtocolError, PublishingError)
Monitor split into 3 modules: monitor.py (~1,000 lines orchestration) + monitor_publisher.py (~230 lines Nostr broadcasting) + monitor_tags.py (~280 lines NIP-66 tag building). Import MonitorPublisherMixin and MonitorTagsMixin separately.
ServiceState moved: ServiceState, ServiceStateKey, StateType, EventKind moved from services/common/constants to models/service_state.py (re-exported from constants for backward compatibility)
Per-deployment Dockerfiles deleted: Single parametric deployments/Dockerfile with ARG DEPLOYMENT replaces 3 separate Dockerfiles
Docker networks: Flat bridge network replaced with data-network + monitoring-network segmentation
SQL functions: All 22 stored functions now require SECURITY INVOKER

Added¶

Exception hierarchy (core/exceptions.py): 10-class typed exception tree replacing bare except Exception across 15 files. Transient errors (ConnectionPoolError) distinguished from permanent (QueryError) for retry logic
Prometheus alerting rules (deployments/bigbrotr/monitoring/prometheus/rules/alerts.yml): 4 alerts -- ServiceDown (critical, 5m), HighFailureRate (warning, 0.1/s over 5m), PoolExhausted (critical, 2m), DatabaseSlow (warning, p99 > 5s)
Makefile: 11 targets -- lint, format, typecheck, test, test-fast, coverage, ci, docker-build, docker-up, docker-down, clean. Parametric Docker targets via DEPLOYMENT= variable
CI security scanning: pip-audit --strict for dependency vulnerabilities, Trivy image scanning (CRITICAL/HIGH severity), CodeQL static analysis (.github/workflows/codeql.yml), Dependabot for pip/docker/github-actions (.github/dependabot.yml)
Shared test fixtures (tests/fixtures/relays.py): Canonical relay fixtures (relay_clearnet, relay_tor, relay_i2p, relay_loki, relay_ipv6, relay_clearnet_with_port, relay_clearnet_ws) registered as pytest plugin via pytest_plugins
Pre-commit hooks: Added hadolint (Dockerfile linting), markdownlint (with --fix), sqlfluff-fix (PostgreSQL SQL formatting)
Global test timeout: --timeout=120 in pytest addopts prevents hanging tests

Refactored¶

Monitor service split: Single 1,400+ line monitor.py decomposed into 3 modules using mixin pattern -- MonitorPublisherMixin (event broadcasting) and MonitorTagsMixin (NIP-66 tag building) mixed into Monitor class
ServiceState extraction: ServiceState, ServiceStateKey, StateType, EventKind moved from services/common/constants.py to models/service_state.py, fixing DAG violation where core/brotr.py had a TYPE_CHECKING import from services layer
Single parametric Dockerfile: deployments/Dockerfile with ARG DEPLOYMENT=bigbrotr replaces 3 per-deployment Dockerfiles. Multi-stage build (builder -> production), non-root execution (UID 1000), tini as PID 1 for proper signal handling
Docker healthchecks: Fake /proc/1/cmdline checks replaced with real service probes (pg_isready for PostgreSQL/PGBouncer, curl http://localhost:<port>/metrics for application services)
Docker network segmentation: Single flat bridge split into data-network (postgres, pgbouncer, tor, services) and monitoring-network (prometheus, grafana, services)
Docker resource limits: CPU and memory limits on all containers (postgres 2 CPU/2 GB, services 1 CPU/512 MB, pgbouncer 0.5 CPU/256 MB)
SQL hardening: SECURITY INVOKER on all 22 stored functions, DISTINCT ON queries paired with ORDER BY for deterministic results, batched cleanup operations

Changed¶

pyproject.toml: Version 4.0.0 -> 5.0.0; coverage fail_under = 80 (branch coverage); --timeout=120 in pytest addopts; pytest-timeout added to dev dependencies
Logger JSON format: _format_json() now emits timestamp (ISO 8601), level, service fields for cloud log aggregation compatibility
Metrics config: MetricsConfig with enabled, port, host, path fields; host defaults to "127.0.0.1" (use "0.0.0.0" in containers)
Docker Compose: stop_grace_period: 60s and STOPSIGNAL SIGTERM for graceful shutdown; JSON-file logging driver with size rotation
CI pipeline: Single coverage run for all Python versions (removed duplicate non-coverage step for 3.11); Trivy scan on both BigBrotr and LilBrotr images; Python 3.14 with allow-prereleases: true

Fixed¶

DAG violation: Removed TYPE_CHECKING import of ServiceState from services layer in core/brotr.py
Metadata column naming: MetadataDbParams consistently uses payload field matching SQL column metadata.payload
Grafana dashboards: Set editable: false on provisioned dashboards to prevent drift

Documentation¶

Complete docs/ rewrite: All 6 documentation files rewritten from scratch for v5.0.0 accuracy:
docs/ARCHITECTURE.md (~970 lines): Diamond DAG, all 5 layers, every service flow, data architecture, design patterns
docs/CONFIGURATION.md (~760 lines): Complete YAML reference for all services with Pydantic models, CLI args, env vars
docs/DATABASE.md (~620 lines): All 6 tables, 22 stored functions, 7 materialized views, complete index reference
docs/DEPLOYMENT.md (~515 lines): Docker Compose and manual deployment, monitoring stack, backup/recovery
docs/DEVELOPMENT.md (~460 lines): Setup, testing, code quality, CI/CD pipeline, contribution guide
docs/README.md (~33 lines): Documentation index with quick links
README.md (~460 lines): Complete project overview rewritten with verified data from codebase
Removed obsolete docs: OVERVIEW.md (redundant with README), TECHNICAL.md (redundant with ARCHITECTURE), V5_PLAN.md (internal planning)
CLAUDE.md: Updated for v5.0.0 architecture, exception hierarchy, monitor split, ServiceState location

4.0.0 - 2026-02-09¶

Major architectural restructuring: all code moved under bigbrotr namespace package with diamond DAG dependency graph. Nine design problems resolved. No functional or behavioral changes — pure structural refactor.

BREAKING CHANGES¶

All imports changed: from core.X / from models.X / from services.X / from utils.X → from bigbrotr.core.X / from bigbrotr.models.X / from bigbrotr.services.X / from bigbrotr.utils.X
CLI entry point changed: python -m services <name> → python -m bigbrotr <name> (or bigbrotr <name> via console script)
Deployment directories renamed: implementations/ → deployments/
Config directories renamed: yaml/core/brotr.yaml → config/brotr.yaml (flattened); yaml/services/ → config/services/
NIP models extracted: from models.nips.nip11 import Nip11 → from bigbrotr.nips.nip11 import Nip11
YAML loader moved: from utils.yaml import load_yaml → from bigbrotr.core.yaml import load_yaml
Dependency files removed: requirements.txt / requirements-dev.txt deleted; use pip install -e . or pip install -e ".[dev]"

Refactored¶

Namespace package: All source code moved under src/bigbrotr/ to eliminate pip namespace collisions from generic top-level names (core, models, services, utils)
Diamond DAG architecture: Five-layer dependency graph (services → {core, nips, utils} → models) replacing the previous linear four-layer stack
NIP extraction: models/nips/ (18 files with I/O logic: HTTP, DNS, SSL, WebSocket, GeoIP) extracted to bigbrotr/nips/ as a separate package, restoring models layer purity
YAML loader: utils/yaml.py moved to core/yaml.py (resolving upward layer dependency — only consumers were in core)
CLI decoupled: services/__main__.py moved to bigbrotr/__main__.py with sync cli() wrapper for console_scripts entry point
Monitoring directories merged: grafana/ + prometheus/ → monitoring/grafana/ + monitoring/prometheus/ in each deployment
Root cleanup: Deleted alembic.ini, migrations/, requirements*.txt, requirements*.in; moved generate_sql.py and templates/ to tools/
Deleted src/__init__.py: Removed the 107-line file with 36 re-exports that violated the src-layout pattern

Changed¶

pyproject.toml: Version 3.0.4 → 4.0.0; known-first-party = ["bigbrotr"]; include = ["bigbrotr*"]; files = ["src/bigbrotr"] (mypy); source = ["src/bigbrotr"] (coverage); added [project.scripts] bigbrotr = "bigbrotr.__main__:cli"
100+ source files: Moved under src/bigbrotr/ with updated imports
40+ test files: Updated with bigbrotr-prefixed imports and ~100 mock patch targets rewritten
3 Dockerfiles + 3 docker-compose files: Updated paths, commands, and volume mounts
CI workflow: Updated for new deployment and source paths
12 deployment YAML configs: Updated _template/yaml/ → _template/config/ in comments
6 service module docstrings: Updated example paths from yaml/ to config/

Fixed¶

Stale NIP class references (pre-existing, exposed by restructuring):
Nip11FetchMetadata → Nip11InfoMetadata (renamed in v3.1.0 but __init__.py not updated; fully completed in v5.1.0)
Nip66RttLogs → Nip66RttMultiPhaseLogs
RttDependencies → Nip66RttDependencies
Nip66TestFlags → Nip66Selection + Nip66Options

Added¶

Console script: bigbrotr command via [project.scripts] in pyproject.toml
Integration test infrastructure: tests/integration/conftest.py with testcontainers-based ephemeral PostgreSQL; tests/integration/test_database_roundtrip.py
SQL generation tooling: tools/generate_sql.py + tools/templates/sql/ (Jinja2 templates for deployment SQL files)

Documentation¶

README.md: Version badge, five-layer diamond DAG architecture diagram, updated all paths/commands/project structure tree, test count → 1896
All docs/*.md: Updated for new paths, imports, and architecture (ARCHITECTURE, CONFIGURATION, DATABASE, DEPLOYMENT, DEVELOPMENT, OVERVIEW, TECHNICAL)
CLAUDE.md: Rewritten for bigbrotr namespace and diamond DAG architecture
CONTRIBUTING.md: Updated paths and install commands
Agent knowledge base: All 7 .claude/agents/bigbrotr-expert/ files updated

3.0.4 - 2026-02-07¶

Architecture refinement release: domain logic extracted from core to services/common/, three-tier architecture formalized, and comprehensive test and documentation alignment.

Refactored¶

services/common/ package: Extracted domain queries, constants, and mixins from core/ into a new shared service infrastructure package with three stable modules:
constants.py: ServiceName and DataType StrEnum classes replacing all hardcoded service/data-type strings
mixins.py: BatchProgressMixin and NetworkSemaphoreMixin (moved from core/service.py and utils/progress.py)
queries.py: 13 domain SQL query functions parameterized with enum values (moved from core/queries.py)
Core layer purified: core/ is now a generic infrastructure facade with zero domain logic
Renamed core/service.py to core/base_service.py (contains only BaseService and BaseServiceConfig)
Removed core/queries.py (absorbed into services/common/queries.py)
Removed BatchProgress, NetworkSemaphoreMixin from core
Brotr API simplified:
Removed retry parameter from facade methods (retry always handled internally by Pool)
Removed conn parameter from _call_procedure (use transaction() instead)
Removed default_query_limit and materialized_views from BrotrConfig
Simplified refresh_matview() injection prevention (regex guard only)
Fixed result or 0 to result if result is not None else 0 for correct falsy handling
Model layer decoupled: NIP models (nip11/fetch, nip66/*) now use stdlib logging instead of core.logger, maintaining zero core dependencies
Model caching: All frozen dataclasses (Relay, EventRelay, Metadata, RelayMetadata) now cache to_db_params() in __post_init__
Service registry: Uses ServiceEntry NamedTuple with ServiceName enum keys instead of raw tuples
utils/transport.py: Decoupled from core.logger (stdlib logging only)
utils/progress.py: Deleted (functionality moved to services/common/mixins.py)

Changed¶

Monitor service: Aligned MetadataFlags and CheckResult with MetadataType enum values (nip11 -> nip11_info); removed unused nip66_probe field
Infrastructure: Removed CHECK constraints from relay_metadata.metadata_type across all implementations; validation handled in Python enum layer
Implementation configs: Standardized .env.example, docker-compose.yaml, and 04_functions_cleanup.sql across template, bigbrotr, and lilbrotr

Added¶

69 new unit tests for services/common/:
test_constants.py (15 tests): ServiceName and DataType StrEnum value and behavior coverage
test_mixins.py (15 tests): BatchProgressMixin and NetworkSemaphoreMixin initialization, composition, and edge cases
test_queries.py (39 tests): All 13 domain SQL query functions with mocked Brotr, SQL fragment verification, and edge cases
Total test count: 1854 (up from 1776)

Documentation¶

Three-tier architecture: Reframed documentation around Foundation (core + models), Active (services + utils), and Implementation tiers
All docs updated: ARCHITECTURE.md, DEVELOPMENT.md, TECHNICAL.md, README.md, CLAUDE.md reflect renamed files and services/common/
Agent knowledge base updated: AGENT.md, core-reference.md, architecture-index.md aligned with new structure
YAML template comments: Fixed BaseServiceConfig file path references in all 4 service templates
Removed deprecated test_nip11_nip66.ipynb notebook

Chore¶

Bumped version to 3.0.4
Updated secrets baseline line numbers
Added AUDIT_REPORT.* pattern to .gitignore
Removed stale RESTRUCTURING_PLAN.md

3.0.3 - 2026-02-06¶

Documentation-focused release with comprehensive docstring rewrites, standardized file headers, and cleaned up project documentation.

Documentation¶

Core layer: Rewrote docstrings for all core modules (pool, brotr, service, metrics, logger)
Models layer: Rewrote docstrings for all data model modules
Services layer: Rewrote docstrings for services and utilities
SQL: Rewrote SQL file headers and function documentation
YAML: Standardized YAML configuration file headers
Tests: Cleaned up test documentation and removed redundant comments
Project docs: Rewrote project documentation and cleaned up markdown files
Agents: Fixed outdated references and cleaned up agent knowledge base

Chore¶

Updated secrets baseline line numbers

3.0.2 - 2026-02-05¶

Code quality and maintainability release with FieldSpec pattern, module reorganization, and comprehensive test restructuring.

Changed¶

FieldSpec pattern: Consolidated field parsing with FieldSpec dataclass for consistent validation and transformation across NIP models
Module reorganization:
Logger now at src/core/logger.py, imported as from core.logger import Logger
Renamed base_service to service and consolidated mixins
Added NetworkSemaphoreMixin for simplified service code
NIP-11 refactoring:
Migrated to FieldSpec pattern for improved type safety
Simplified structure with keyword-only arguments in create method
NIP-66 refactoring:
Migrated to FieldSpec pattern for improved code quality
Extracted GeoExtractor helper class for geolocation logic
Extracted CertificateExtractor helper class for SSL certificate parsing
Decomposed RTT method into focused phase methods
Added keyword-only arguments in create method
Models: Added fail-fast validation and unified from_db_params API across all models
Core: Improved type safety and simplified database operations
Services: Updated imports for module renames, simplified code structure
Utils: Moved NetworkType enum for better organization, improved configuration flexibility

Refactored¶

Monitor service: Updated NIP-11 API usage and decomposed tag building logic
Test structure:
Renamed test_cli.py to test_main.py
Renamed test_base_service.py to test_service.py
Moved test_logger.py to tests/unit/core/ to match src/core/logger.py location
Restructured NIP-11 tests into focused modules (test_nip11.py, test_data.py, test_logs.py, test_fetch.py)
Restructured NIP-66 tests into focused modules (test_nip66.py, test_rtt.py, test_ssl.py, test_geo.py, test_net.py, test_dns.py, test_http.py, test_logs.py)
Added comprehensive tests for base.py and parsing.py
Updated tests for fail-fast validation and simplified return types

Style¶

Reordered imports per isort conventions
Combined nested if statements per ruff SIM102

Chore¶

Added EditorConfig for consistent coding styles
Cleaned up project configuration
Removed versioned release notes from repository
Removed auto-generated footer from agents README

3.0.1 - 2026-02-04¶

Major refactoring release with new NIP models architecture, Python-side hash computation, and comprehensive documentation alignment.

Added¶

NIP-11 subpackage (src/models/nips/nip11/):
Nip11 main class with database serialization
Nip11InfoData with relay info document structure (originally Nip11FetchData)
Nip11InfoLogs for info retrieval status tracking (originally Nip11FetchLogs)
HTTP fetch implementation with SSL fallback
NIP-66 subpackage (src/models/nips/nip66/):
Nip66 aggregate class with database serialization
Nip66RttMetadata with WebSocket probe testing
Nip66SslMetadata with certificate validation
Nip66GeoMetadata with MaxMind GeoLite2 lookup
Nip66NetMetadata with ASN lookup
Nip66DnsMetadata with comprehensive record lookup
Nip66HttpMetadata from WebSocket handshake
Data and logs models for all metadata types
NIP base classes (src/models/nips/base.py) for content-addressed storage
Async DNS utility (src/utils/dns.py) with IPv4/IPv6 support
Retry configuration for all metadata types in Monitor
py.typed markers for nips subpackages

Changed¶

Hash computation moved to Python: SHA-256 hashing now performed in Python instead of PostgreSQL for better portability
SQL schema updated: All implementations (bigbrotr, lilbrotr, template) updated for BYTEA metadata id
Monitor service refactored to use new nips metadata classes
Brotr updated for Python-side metadata hash computation
Logging standardized across all models, utils, and services
Default max_batch_size reduced from 10000 to 1000
Network config classes separated to fix partial YAML override inheritance
Metrics endpoint secured with standardized ports

Fixed¶

Runtime imports for Pydantic models restored
Column name in relay_metadata_latest materialized view corrected
Null byte validation added to Event content
Logger-related issues resolved (#124, #78, #99, #141, #92)
Documentation aligned with actual codebase:
BigBrotr Expert reference files updated for NIP subpackages
Database column name corrected (metadata.data → metadata.metadata)
BaseService constructor signature documented (config is optional)
Version references aligned across all files

3.0.0 - 2026-01-26¶

Major release with four-layer architecture, expanded NIP-66 compliance, and comprehensive AI-assisted development tooling.

Breaking Changes¶

Service initializer renamed to seeder
Service config classes now extend BaseServiceConfig instead of BaseModel
Constructor signature changed: __init__(brotr, config) instead of __init__(config, brotr)
MetadataType values changed: nip66_rtt split into granular types

Added¶

Four-layer architecture: Added Utils layer between Core and Services
New Utils module (src/utils/):
NetworkConfig - Multi-network configuration (clearnet, tor, i2p, loki)
KeysConfig - Nostr keypair configuration from environment
BatchProgress - Batch processing progress tracking dataclass
transport.py - Multi-network transport factory (aiohttp/aiohttp-socks)
yaml.py - YAML configuration loading utilities
parsing.py - URL and data parsing utilities
Prometheus metrics (src/core/metrics.py):
SERVICE_INFO - Static service metadata
SERVICE_GAUGE - Point-in-time values with labels
SERVICE_COUNTER - Cumulative counters with labels
CYCLE_DURATION_SECONDS - Histogram for cycle duration percentiles
MetadataType expanded from 4 to 7 types:
nip11_info - NIP-11 relay information document
nip66_rtt - Round-trip time measurements
nip66_ssl - SSL certificate information
nip66_geo - Geolocation data
nip66_net - Network information (ASN, ISP)
nip66_dns - DNS resolution data
nip66_http - HTTP header analysis
Validator service - Streaming relay validation with multi-network support
NIP-42 authentication support
Probabilistic candidate selection (Efraimidis-Spirakis algorithm)
Automatic cleanup of failed candidates (configurable threshold)
Full multi-network support in all services:
Clearnet (wss://, ws://)
Tor (.onion via SOCKS5 proxy)
I2P (.i2p via SOCKS5 proxy)
Lokinet (.loki via SOCKS5 proxy)
Monitor service restructured:
BatchProgress for tracking check progress
CheckResult for individual relay check results
Nip66RelayMetadata for NIP-66 compliant output
31 AI agents for development assistance:
29 generic agents (python-pro, security-auditor, etc.)
2 specialized agents (nostr-expert, bigbrotr-expert)
3 audit commands (/audit-quick, /audit-core, /audit-full)
NIP-42 authentication support in Validator, Monitor, and Synchronizer
Comprehensive docstrings across all models and services
Keys model for loading Nostr keypairs from environment variables

Changed¶

Architecture: Three-layer → Four-layer (Core, Utils, Services, Implementation)
Test structure reorganized to tests/unit/{core,models,services,utils}/
Config inheritance: All service configs now extend BaseServiceConfig
Constructor order: (brotr, config) instead of (config, brotr) for consistency
Finder now stores candidates in service_data table (Validator picks them up)
Monitor checks use service_data checkpoints for efficient scheduling
Synchronizer uses relay_metadata_latest view for faster relay selection
Improved error handling and logging across all services
Enhanced test coverage with 411+ unit tests

Fixed¶

Race conditions in Monitor metrics collection (added asyncio.Lock)
Resource leaks in Monitor client shutdown (added try/finally)
Memory optimization in Monitor with chunked relay processing

Migration Guide¶

1. Update service imports:

# Before (v2.x)
from pydantic import BaseModel
class MyServiceConfig(BaseModel):
    interval: float = 300.0

# After (v3.0.0)
from core import BaseServiceConfig
class MyServiceConfig(BaseServiceConfig):
    # interval is inherited from BaseServiceConfig
    pass

2. Update constructor signatures:

# Before (v2.x)
def __init__(self, config: MyConfig, brotr: Brotr):
    self._config = config
    self._brotr = brotr

# After (v3.0.0)
def __init__(self, brotr: Brotr, config: MyConfig | None = None):
    super().__init__(brotr=brotr, config=config or MyConfig())

3. Update MetadataType references:

# Before (v2.x)
type = MetadataType.NIP66_RTT  # Was used for all NIP-66 data

# After (v3.0.0)
type = MetadataType.NIP66_RTT    # Only for RTT measurements
type = MetadataType.NIP66_PROBE  # For connectivity checks
type = MetadataType.NIP66_SSL    # For SSL certificate data
type = MetadataType.NIP66_GEO    # For geolocation
type = MetadataType.NIP66_NET    # For network info
type = MetadataType.NIP66_DNS    # For DNS data
type = MetadataType.NIP66_HTTP   # For HTTP headers

2.0.0 - 2025-12¶

Complete architectural rewrite from monolithic prototype to modular, enterprise-ready system.

Added¶

Three-layer architecture (Core, Service, Implementation)
Multiple implementations: BigBrotr (full) and LilBrotr (lightweight)
Core components: Pool, Brotr, BaseService, Logger
Services: Seeder, Finder, Monitor, Synchronizer
Async database driver (asyncpg) with connection pooling
PGBouncer for connection management
BYTEA storage for 50% space savings
Pydantic configuration validation
YAML-driven configuration
Service state persistence
Graceful shutdown handling
NIP-11 and NIP-66 content deduplication
174 unit tests with pytest
Pre-commit hooks (ruff, mypy)
Comprehensive documentation (ARCHITECTURE, CONFIGURATION, DATABASE, DEVELOPMENT, DEPLOYMENT)
GitHub Actions CI pipeline (lint, typecheck, test matrix Python 3.11-3.14, Docker build)
Issue templates (bug report, feature request)
Pull request template
CHANGELOG.md (Keep a Changelog format)
CONTRIBUTING.md (contribution guidelines)
SECURITY.md (security policy)
CODE_OF_CONDUCT.md (Contributor Covenant)

Changed¶

Architecture: Monolithic → Three-layer modular design
Configuration: Environment variables → YAML + Pydantic
Database driver: psycopg2 (sync) → asyncpg (async)
Storage format: CHAR (hex) → BYTEA (binary)
Service name: syncronizer → synchronizer (fixed typo)
Multicore: multiprocessing.Pool → aiomultiprocess

Removed¶

pgAdmin (use external tools instead)
pandas dependency
secp256k1/bech32 dependencies (using nostr-sdk)

Fixed¶

Connection pooling (was creating new connections per operation)
State persistence (services now resume from last state)
Configuration validation (now validates at startup)
Graceful shutdown (services handle SIGTERM properly)

1.0.0 - 2025-06¶

Initial prototype release.

Added¶

Full event archiving from Nostr relays
Relay monitoring with NIP-11 support
Connectivity testing (openable, readable, writable)
RTT measurement for all operations
Tor support for .onion relays
Multicore processing with multiprocessing.Pool
Time-window stack algorithm for large event volumes
Docker Compose deployment
PostgreSQL database with stored functions
8,865 seed relay URLs

Known Issues¶

No async database (synchronous psycopg2)
No connection pooling
Finder service not implemented (stub only)
No unit tests
No configuration validation
No graceful shutdown
No state persistence
Typo in service name ("syncronizer")