generated from coulomb/repo-seed
feat(tpsc): Third-Party Services Catalog (CUST-WP-0023)
Introduces TPSC for tracking external service dependencies with GDPR
compliance maturity (CNIL/IAPP CMMI scale), pricing model, ToS, and
data retention information across all repos.
Primary data:
- canon/tpsc/{openai,anthropic,gemini,openrouter}-api.yaml — service definitions
- tpsc.yaml in each repo (llm-connect seeded with 4 services)
State-hub additions:
- Migration j7e8f9a0b1c2: tpsc_catalog + tpsc_snapshots + tpsc_entries
- api/models/tpsc.py, api/schemas/tpsc.py, api/routers/tpsc.py
- /tpsc/catalog/, /tpsc/ingest/, /tpsc/snapshots/, /tpsc/report/gdpr endpoints
- 4 MCP tools: register_service, list_services, ingest_tpsc_tool, get_gdpr_report
- scripts/ingest_tpsc.py + make ingest-tpsc[/-all] targets
- Dashboard: tpsc.md page + docs/tpsc.md
GDPR maturity scale: unknown | non_compliant | initial | developing | defined | managed | certified
Warnings triggered at: unknown, non_compliant, initial
Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
70
migrations/versions/j7e8f9a0b1c2_tpsc.py
Normal file
70
migrations/versions/j7e8f9a0b1c2_tpsc.py
Normal file
@@ -0,0 +1,70 @@
|
||||
"""tpsc: third-party services catalog
|
||||
|
||||
Revision ID: j7e8f9a0b1c2
|
||||
Revises: i6d7e8f9a0b1
|
||||
Create Date: 2026-03-19
|
||||
"""
|
||||
from alembic import op
|
||||
import sqlalchemy as sa
|
||||
from sqlalchemy.dialects.postgresql import UUID, JSON
|
||||
import uuid
|
||||
|
||||
revision = "j7e8f9a0b1c2"
|
||||
down_revision = "i6d7e8f9a0b1"
|
||||
branch_labels = None
|
||||
depends_on = None
|
||||
|
||||
|
||||
def upgrade() -> None:
|
||||
op.create_table(
|
||||
"tpsc_catalog",
|
||||
sa.Column("id", UUID(as_uuid=True), primary_key=True, default=uuid.uuid4),
|
||||
sa.Column("slug", sa.String(100), nullable=False, unique=True),
|
||||
sa.Column("name", sa.String(200), nullable=False),
|
||||
sa.Column("provider", sa.String(200), nullable=True),
|
||||
sa.Column("category", sa.String(100), nullable=True),
|
||||
sa.Column("website_url", sa.Text, nullable=True),
|
||||
sa.Column("pricing_model", sa.String(20), nullable=False, server_default="unknown"),
|
||||
sa.Column("gdpr_maturity", sa.String(20), nullable=False, server_default="unknown"),
|
||||
sa.Column("gdpr_notes", sa.Text, nullable=True),
|
||||
sa.Column("dpa_available", sa.Boolean, nullable=False, server_default="false"),
|
||||
sa.Column("tos_url", sa.Text, nullable=True),
|
||||
sa.Column("privacy_policy_url", sa.Text, nullable=True),
|
||||
sa.Column("data_processing_regions", JSON, nullable=True),
|
||||
sa.Column("data_retention_notes", sa.Text, nullable=True),
|
||||
sa.Column("status", sa.String(20), nullable=False, server_default="active"),
|
||||
sa.Column("created_at", sa.DateTime(timezone=True), server_default=sa.func.now()),
|
||||
sa.Column("updated_at", sa.DateTime(timezone=True), server_default=sa.func.now(), onupdate=sa.func.now()),
|
||||
)
|
||||
op.create_index("ix_tpsc_catalog_slug", "tpsc_catalog", ["slug"])
|
||||
op.create_index("ix_tpsc_catalog_gdpr_maturity", "tpsc_catalog", ["gdpr_maturity"])
|
||||
|
||||
op.create_table(
|
||||
"tpsc_snapshots",
|
||||
sa.Column("id", UUID(as_uuid=True), primary_key=True, default=uuid.uuid4),
|
||||
sa.Column("repo_id", UUID(as_uuid=True), sa.ForeignKey("managed_repos.id", ondelete="SET NULL"), nullable=True),
|
||||
sa.Column("snapshot_at", sa.DateTime(timezone=True), server_default=sa.func.now()),
|
||||
sa.Column("source_file", sa.String(200), nullable=True),
|
||||
sa.Column("entry_count", sa.Integer, nullable=False, server_default="0"),
|
||||
)
|
||||
op.create_index("ix_tpsc_snapshots_repo_id", "tpsc_snapshots", ["repo_id"])
|
||||
|
||||
op.create_table(
|
||||
"tpsc_entries",
|
||||
sa.Column("id", UUID(as_uuid=True), primary_key=True, default=uuid.uuid4),
|
||||
sa.Column("snapshot_id", UUID(as_uuid=True), sa.ForeignKey("tpsc_snapshots.id", ondelete="CASCADE"), nullable=False),
|
||||
sa.Column("catalog_id", UUID(as_uuid=True), sa.ForeignKey("tpsc_catalog.id", ondelete="SET NULL"), nullable=True),
|
||||
sa.Column("service_slug", sa.String(100), nullable=False),
|
||||
sa.Column("purpose", sa.Text, nullable=True),
|
||||
sa.Column("auth_type", sa.String(50), nullable=True),
|
||||
sa.Column("endpoint_override", sa.Text, nullable=True),
|
||||
sa.Column("notes", sa.Text, nullable=True),
|
||||
)
|
||||
op.create_index("ix_tpsc_entries_snapshot_id", "tpsc_entries", ["snapshot_id"])
|
||||
op.create_index("ix_tpsc_entries_service_slug", "tpsc_entries", ["service_slug"])
|
||||
|
||||
|
||||
def downgrade() -> None:
|
||||
op.drop_table("tpsc_entries")
|
||||
op.drop_table("tpsc_snapshots")
|
||||
op.drop_table("tpsc_catalog")
|
||||
Reference in New Issue
Block a user