PeerCortex

rene/PeerCortex

Fork 0

Commit Graph

Author	SHA1	Message	Date
Rene Fichtmueller	5554c1a53e	feat: BGP Hijack Alerting + Webhooks (Feature 1) - Deterministic Classification: MOAS/HIJACK/LEAK type detection - Severity scoring: CRITICAL/HIGH/MEDIUM/LOW based on prefix length - Optional Ollama enrichment (qwen2.5:3b) for CRITICAL only (5s timeout) - PostgreSQL backend: hijack_events, webhook_subscriptions, webhook_deliveries - HMAC-SHA256 webhook signing with exponential backoff retry - Retry scheduler: node-cron job every 5 minutes - 6 API endpoints: POST/GET/DELETE webhooks, test delivery, list/resolve hijacks - 22 comprehensive tests (80%+ coverage) - Zero external API costs (deterministic + local Ollama only)	2026-04-29 07:45:15 +02:00
Rene Fichtmueller	2ab48972c5	refactor: Replace external RPKI/BGP APIs with local PostgreSQL database queries - Create local-db-client.js with consolidated database client module (11 functions) - Refactor validateRPKIWithCache() to query local rpki_roas table (<10ms vs 1-2s external) - Update /api/health endpoint to determine health from local DB statistics - Update /api/prefix-detail endpoint to use async validateRPKIWithCache() - Update /api/prefix-changes endpoint with RPKI status lookup from local DB - Create /api/bgp endpoint with local BGP routes + threat intelligence lookup - Add bgp_routes, rpki_roas, threat_intel statistics to health response - Zero external API calls for RPKI/BGP validation queries Impact: Sub-100ms latency for all lookups, 0 token spend on BGP/RPKI/threat intel Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>	2026-04-28 21:41:01 +02:00

Author

SHA1

Message

Date

Rene Fichtmueller

5554c1a53e

feat: BGP Hijack Alerting + Webhooks (Feature 1)

- Deterministic Classification: MOAS/HIJACK/LEAK type detection
- Severity scoring: CRITICAL/HIGH/MEDIUM/LOW based on prefix length
- Optional Ollama enrichment (qwen2.5:3b) for CRITICAL only (5s timeout)
- PostgreSQL backend: hijack_events, webhook_subscriptions, webhook_deliveries
- HMAC-SHA256 webhook signing with exponential backoff retry
- Retry scheduler: node-cron job every 5 minutes
- 6 API endpoints: POST/GET/DELETE webhooks, test delivery, list/resolve hijacks
- 22 comprehensive tests (80%+ coverage)
- Zero external API costs (deterministic + local Ollama only)

2026-04-29 07:45:15 +02:00

Rene Fichtmueller

2ab48972c5

refactor: Replace external RPKI/BGP APIs with local PostgreSQL database queries

- Create local-db-client.js with consolidated database client module (11 functions)
- Refactor validateRPKIWithCache() to query local rpki_roas table (<10ms vs 1-2s external)
- Update /api/health endpoint to determine health from local DB statistics
- Update /api/prefix-detail endpoint to use async validateRPKIWithCache()
- Update /api/prefix-changes endpoint with RPKI status lookup from local DB
- Create /api/bgp endpoint with local BGP routes + threat intelligence lookup
- Add bgp_routes, rpki_roas, threat_intel statistics to health response
- Zero external API calls for RPKI/BGP validation queries

Impact: Sub-100ms latency for all lookups, 0 token spend on BGP/RPKI/threat intel

Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>

2026-04-28 21:41:01 +02:00

2 Commits