eliott/worldmonitor
1
0
Fork 0
mirror of https://github.com/koala73/worldmonitor.git synced 2026-04-25 17:14:57 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
worldmonitor/tests/sanctions-pressure.test.mjs
Elie Habib 56f237c37f fix(sanctions): replace fast-xml-parser with SAX streaming to fix Railway OOM (#2008) 
The seed was being SIGKILL'd on Railway (512MB limit) because fast-xml-parser
built a ~300MB object tree from the 120MB OFAC SDN XML download, causing both
the raw XML string and the full parsed object to coexist in heap simultaneously.

Switch to sax (already a transitive dep) with a streaming pipeline: response.body
is piped chunk-by-chunk via a TextDecoder into the SAX parser. The full XML
string is never held in memory. Reference maps (areaCodes, featureTypes,
legalBasis, locations, parties) are populated as SAX events arrive, and entries
are emitted one at a time on </SanctionsEntry>.

All DOM-traversal helpers (listify, textValue, buildEpoch, buildReferenceMaps,
buildLocationMap, extractPartyName, resolveEntityType, extractPartyCountries,
buildPartyMap, extractPrograms, extractEffectiveAt, extractNote,
buildEntriesForDocument) are removed. Output-stage pure functions (uniqueSorted,
compactNote, sortEntries, buildCountryPressure, buildProgramPressure) are kept.

Tests updated to match: removed test blocks for deleted DOM helpers, kept
coverage for the remaining pure functions (2173/2173 pass).
2026-03-21 20:26:02 +04:00

88 lines
3.7 KiB
JavaScript
Raw Permalink Blame History

import { describe, it } from 'node:test';
import assert from 'node:assert/strict';
import { readFileSync } from 'node:fs';
const handlerSrc = readFileSync('server/worldmonitor/sanctions/v1/list-sanctions-pressure.ts', 'utf8');
const seedSrc = readFileSync('scripts/seed-sanctions-pressure.mjs', 'utf8');
// ---------------------------------------------------------------------------
// Gold standard: handler must be Redis-read-only (no XML parsing, no live fetch)
// ---------------------------------------------------------------------------
describe('handler: gold standard compliance', () => {
it('handler does not import XMLParser (no live OFAC fetch at edge)', () => {
assert.ok(
!handlerSrc.includes('XMLParser'),
'handler must not import XMLParser: Vercel reads Redis only, Railway makes all external API calls',
);
});
it('handler does not define OFAC_SOURCES (no direct OFAC HTTP from edge)', () => {
assert.ok(
!handlerSrc.includes('OFAC_SOURCES'),
'handler must not define OFAC_SOURCES: all OFAC fetching belongs in the Railway seed script',
);
});
it('handler uses getCachedJson for Redis read', () => {
assert.match(
handlerSrc,
/getCachedJson\(REDIS_CACHE_KEY/,
'handler must read from Redis via getCachedJson',
);
});
});
// ---------------------------------------------------------------------------
// _state must not leak to API clients
// ---------------------------------------------------------------------------
describe('handler: _state stripping', () => {
it('handler destructures _state before spreading data', () => {
assert.match(
handlerSrc,
/_state.*_discarded/s,
'handler must destructure _state out to prevent leaking seed internals to API clients',
);
});
it('seed stores _state under STATE_KEY (not canonical key)', () => {
assert.match(
seedSrc,
/extraKeys.*STATE_KEY/s,
'extraKeys must reference STATE_KEY to write _state separately from canonical payload',
);
});
});
// ---------------------------------------------------------------------------
// Seed: sequential fetch to avoid OOM on Railway 512MB
// ---------------------------------------------------------------------------
describe('seed: memory safety', () => {
it('seed fetches OFAC sources sequentially (not Promise.all)', () => {
const fnStart = seedSrc.indexOf('async function fetchSanctionsPressure()');
const fnEnd = seedSrc.indexOf('\nfunction validate(');
const fnBody = seedSrc.slice(fnStart, fnEnd);
assert.ok(
!fnBody.includes('Promise.all(OFAC_SOURCES'),
'seed must not fetch both OFAC XML files concurrently: combined parse can exceed 512MB heap limit',
);
});
});
// ---------------------------------------------------------------------------
// Seed: DEFAULT_RECENT_LIMIT must not exceed handler MAX_ITEMS_LIMIT
// ---------------------------------------------------------------------------
describe('sanctions seed: DEFAULT_RECENT_LIMIT vs MAX_ITEMS_LIMIT', () => {
it('seed DEFAULT_RECENT_LIMIT does not exceed handler MAX_ITEMS_LIMIT (60)', () => {
const match = seedSrc.match(/const DEFAULT_RECENT_LIMIT\s*=\s*(\d+)/);
assert.ok(match, 'DEFAULT_RECENT_LIMIT must be defined in seed script');
const seedLimit = Number(match[1]);
const handlerMatch = handlerSrc.match(/const MAX_ITEMS_LIMIT\s*=\s*(\d+)/);
assert.ok(handlerMatch, 'MAX_ITEMS_LIMIT must be defined in handler');
const handlerLimit = Number(handlerMatch[1]);
assert.ok(
seedLimit <= handlerLimit,
`DEFAULT_RECENT_LIMIT (${seedLimit}) must not exceed MAX_ITEMS_LIMIT (${handlerLimit}): entries above the handler limit are never served`,
);
});
});
Reference in New Issue View Git Blame Copy Permalink