Implement modernization plan: Docker, Python 3.12, CI/CD, and tests

[Copilot]

Implements the modernization plan from docs/modernize-app-plan.md: containerization, Python 3.12 upgrade, uv package management, and CI/CD with multiple test suites.

Docker

• Multi-stage Dockerfile with Ubuntu 24.04, non-root user, health checks
• docker-compose.yml with app + Redis services (persistence enabled, memory limits)
• docker-compose.cluster.yml for Redis high availability (master + replica + Sentinel for automatic failover)

Python 3.12 Compatibility

• Updated pyproject.toml with modern build system (hatchling)
• Fixed password hashing: sha256 → scrypt for Werkzeug 3.x
• Updated config.py with robust Redis connection handling and DockerConfig class

CI/CD Workflows

• ci.yml: Lint (Ruff) → Unit tests → Security scan → Docker build → Integration tests
• security.yml: pip-audit, Safety, Bandit, Semgrep, Trivy container scan
• docker.yml: Build and push to GHCR
• All jobs have explicit permissions per CodeQL requirements

Test Suite

• 35 unit tests across app, auth, models, and Nessus API modules
• pytest fixtures with in-memory SQLite, filesystem sessions (no Redis dependency)

# Quick start with Docker (single Redis)
docker compose up -d

# High availability Redis cluster
docker compose -f docker-compose.yml -f docker-compose.cluster.yml up -d

# Run tests locally
python -m pytest tests/ -v

[!WARNING]

Custom agent used: NessusVisualizerModernizer
A Copilot agent that automates modernization of the NessusVisualizer repo. It enforces secure containerization (Ubuntu 24.04 base, OWASP/Snyk best practices), dependency upgrades, CI/CD pipelines, and visualization improvements.

Original prompt

using the plan laid out in "docs/modernize-app-plan.md" implement and improve. ensure multiple tests suites are built into github so we can validate it builds

Custom agent used: NessusVisualizerModernizer
A Copilot agent that automates modernization of the NessusVisualizer repo. It enforces secure containerization (Ubuntu 24.04 base, OWASP/Snyk best practices), dependency upgrades, CI/CD pipelines, and visualization improvements.

---

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	mypy@​1.19.1
	pytest-cov@​7.0.0

View full report

[SchwartzKamel]

@copilot Let's extend the capability to use a docker redis and work in that cluster

[Copilot]

@copilot Let's extend the capability to use a docker redis and work in that cluster

Extended Docker configuration to support Redis cluster mode with high availability. Added in commit 454b04d:

• docker-compose.cluster.yml: Redis master + replica + Sentinel for automatic failover
• Enhanced docker-compose.yml: Added Redis persistence (appendonly yes) and memory limits
• Updated config.py: Robust Redis connection handling with fallback support
• DockerConfig class: Dedicated configuration for container deployments

Usage:

# Standard (single Redis)
docker compose up -d

# High availability cluster
docker compose -f docker-compose.yml -f docker-compose.cluster.yml up -d

[sonarqubecloud]

Quality Gate failed

Failed conditions
23 Security Hotspots

See analysis details on SonarQube Cloud