DevOps26-RE · AitingLee · May 5, 2026 · May 5, 2026 · May 5, 2026 · May 5, 2026
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -1,12 +1,20 @@
 name: CI/CD Pipeline
 
+# Skip the full pipeline when a commit only touches documentation under report/
+# or the root README. Mixed commits (code + docs) still run CI/CD.
 "on":
   push:
     branches:
       - main
+    paths-ignore:
+      - "report/**"
+      - "README.md"
   pull_request:
     branches:
       - main
+    paths-ignore:
+      - "report/**"
+      - "README.md"
 
 permissions:
   pull-requests: write

diff --git a/.github/workflows/report-and-readme.yml b/.github/workflows/report-and-readme.yml
@@ -0,0 +1,25 @@
+# Lightweight checks when only report/ or README.md change (main CI is skipped via paths-ignore).
+# Add this job name under branch protection "required checks" if you require a green check on docs-only PRs.
+name: Report and README
+
+"on":
+  push:
+    branches:
+      - main
+    paths:
+      - "report/**"
+      - "README.md"
+  pull_request:
+    branches:
+      - main
+    paths:
+      - "report/**"
+      - "README.md"
+
+jobs:
+  expand-report:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Expand @include into report/main.md
+        run: make report
diff --git a/Makefile b/Makefile
@@ -1,4 +1,4 @@
-.PHONY: all lint fmt-go lint-go lint-docker lint-html lint-yaml install-tools
+.PHONY: all lint fmt-go lint-go lint-docker lint-html lint-yaml install-tools report report-expand-process
 
 # Default target: runs all linting and formatting tasks
 all: lint
@@ -40,4 +40,15 @@ install-tools:
 	npm install
 	pip install yamllint
 	@echo "✅ npm, pip, and go tools installation completed!"
-	@echo "⚠️ If golangci-lint is not installed, please refer to: https://golangci-lint.run/usage/install/"
+	@echo "⚠️ If golangci-lint is not installed, please refer to: https://golangci-lint.run/usage/install/"
+
+# Expand @include lines from report/main.template.md into report/main.md (nested includes supported).
+# Target must be .PHONY: a directory named report/ exists; otherwise `make report` would never run the recipe.
+report:
+	@python3 report/tools/expand_report_includes.py \
+		report/main.template.md \
+		report/main.md
+
+# Backwards-compatible alias (same as `make report`)
+report-expand-process: report
+	@:
diff --git a/README.md b/README.md
diff --git a/report/appendix/artifacts.md b/report/appendix/artifacts.md
@@ -0,0 +1,20 @@
+# Appendix — Linked artifacts
+Just a placeholder for now
+<!-- List each constitutional artifact with a one-line description and URL. Replace placeholders with your real links. -->
+
+## Source code and version control
+
+<!-- - Main repository: ... -->
+
+## Issue tracking
+
+<!-- - GitHub Issues / Projects: ... -->
+
+## Monitoring, logging, and dashboards
+
+<!-- - Grafana: ... -->
+<!-- - If not public, describe how reviewers can access it. -->
+
+## Other
+
+<!-- - Simulator API docs, course wiki, additional documentation repos, etc. -->
diff --git a/report/images/demo.gif b/report/images/demo.gif
diff --git a/report/main.md b/report/main.md
@@ -0,0 +1,148 @@
+# ITU-MiniTwit — Final Report (Main Index)
+
+<!-- Formal requirements checklist (verify against the full course brief before writing / exporting PDF):
+  - Maximum ~2500 words for the final report; figures do not count toward the word limit.
+  - Sources must be in a markup language (this repo uses Markdown) and version-controlled here.
+  - Place all report images under report/images/ (e.g. report/images/demo.gif).
+  - CI must build a single PDF from the report sources into report/build/, filename must match: MSc_group_[a-z].pdf (e.g. MSc_group_a.pdf).
+  - Link and briefly describe constitutional artifacts: repos, issue trackers, monitoring/logging, etc. (see appendix after expansion).
+-->
+
+<!-- Edit this file (main.template.md). Run `make report` to expand @include lines into report/main.md for PDF/GitHub preview. -->
+
+## Abstract
+
+<!-- One short paragraph. You may draft this after the body is complete. -->
+
+## Outline
+
+| Perspective | Topics |
+|-------------|--------|
+| [System](#system-perspective) | Architecture, dependencies, static analysis and quality |
+| [Process](#process-perspective) | CI/CD, monitoring, logging, security, availability and scaling |
+| [Reflection](#reflection-perspective) | Issues and lessons, evolution/ops/maintenance, DevOps-style work |
+| [Appendix](#appendix) | External artifact links |
+
+<a id="system-perspective"></a>
+
+# System's Perspective
+
+A description and illustration of the:
+- Design and architecture of your ITU-MiniTwit systems.
+- All dependencies of your ITU-MiniTwit systems on all levels of abstraction and development stages. That is, list and briefly describe all technologies and tools you applied and depend on. 
+- Describe the current state of your systems, for example using results of static analysis and quality assessments.
+
+<!-- Cover: MiniTwit design and architecture (with diagrams), dependencies and tools at each abstraction level and development stage, and the current state from static analysis and quality assessments. -->
+
+## Design and architecture
+
+<!-- Describe and illustrate: service boundaries, data flows, deployment topology (Swarm / node roles), main components (app, DB, Traefik, observability stack, etc.). -->
+
+## Dependencies and technology stack
+
+<!-- List and briefly describe: languages, frameworks, DB, orchestration, IaC, CI platform, observability components, etc. -->
+
+## Static analysis and quality
+
+<!-- e.g. make lint, golangci-lint, test coverage, integration-test strategy; optional trends or screenshots (store images under report/images/). -->
+
+<a id="process-perspective"></a>
+
+# Process' Perspective
+
+This perspective should clarify how code or other artifacts come from idea into the running system and everything that happens on the way.
+In particular, the following descriptions should be included:
+- A complete description and illustration of stages and tools included in the CI/CD pipelines, including deployment and release of your systems.
+- How do you monitor your systems and what precisely do you monitor?
+- What do you log in your systems and how do you aggregate logs?
+- Brief description of how you security hardened your systems.
+- How do you handle availability and scaling in your systems?
+
+<!-- Section bodies live under sections/*.md (one file per topic). @include lines are expanded when you run `make report` (report/main.template.md → report/main.md). -->
+
+## CI/CD pipelines, deployment, and release
+
+<!-- Describe and illustrate stages (lint, test, build, deploy); staging vs production, tag-based releases, manual DB workflows, etc. -->
+
+## Monitoring
+
+<!-- What you monitor, which tools (Prometheus, Grafana, …), key metrics and dashboard links (may reference appendix). -->
+
+## Logging
+
+<!-- What you log and how logs are aggregated (Loki, Promtail, …). -->
+
+## Security hardening
+
+<!-- Brief notes: authentication, TLS, network isolation, Basic Auth, secrets handling, etc. -->
+
+## Availability and scaling
+
+<!-- Replicas, node roles, failure isolation, how you scale and known limits. -->
+
+<a id="reflection-perspective"></a>
+
+# Reflection Perspective
+
+Describe the biggest issues, how you solved them, and which are major lessons learned with regards to:
+- evolution and refactoring
+- operation, and
+- maintenance
+of your ITU-MiniTwit systems. Link back to respective commit messages, issues, tickets, etc. to illustrate these.
+
+Also reflect and describe what was the "DevOps" style of your work. For example, what did you do differently to previous development projects and how did it work?
+
+Use of Generative AI
+
+ITU's rules on the use of generative AI apply for this report too. They are described here and in detail here. Please follow them. For your report that means that you have to state which generative AI tools have been used for which task(s) in your projects. Additionally, describe how generative AI tools have been used and briefly reflect and discuss how they supported or hindered your work process.
+
+
+<!-- Cover: major issues and how you solved them; lessons on evolution/refactoring, operation, and maintenance. Link to commits, issues, tickets. Reflect on your DevOps-style work vs previous projects. -->
+
+## Major issues, resolutions, and lessons learned
+
+### Evolution and refactoring
+
+<!-- Link: relevant commits / PRs / issues. -->
+
+### Operation
+
+<!-- Link: on-call, incidents, alerts (if any). -->
+
+### Maintenance
+
+<!-- Link: technical debt, documentation, dependency upgrades, etc. -->
+
+## DevOps-style work compared to earlier projects
+
+<!-- e.g. automation, small batches, IaC, observability-first practices. -->
+
+## Use of Generative AI
+
+<!-- e.g. how we use ai. -->
+<a id="appendix"></a>
+
+# Appendix — Linked artifacts
+Just a placeholder for now
+<!-- List each constitutional artifact with a one-line description and URL. Replace placeholders with your real links. -->
+
+## Source code and version control
+
+<!-- - Main repository: ... -->
+
+## Issue tracking
+
+<!-- - GitHub Issues / Projects: ... -->
+
+## Monitoring, logging, and dashboards
+
+<!-- - Grafana: ... -->
+<!-- - If not public, describe how reviewers can access it. -->
+
+## Other
+
+<!-- - Simulator API docs, course wiki, additional documentation repos, etc. -->
+
+## Figures and illustrations
+
+<!-- Use relative paths from report/main.md after expansion, e.g. ![Demo](images/demo.gif) -->
diff --git a/report/main.template.md b/report/main.template.md
@@ -0,0 +1,44 @@
+# ITU-MiniTwit — Final Report (Main Index)
+
+<!-- Formal requirements checklist (verify against the full course brief before writing / exporting PDF):
+  - Maximum ~2500 words for the final report; figures do not count toward the word limit.
+  - Sources must be in a markup language (this repo uses Markdown) and version-controlled here.
+  - Place all report images under report/images/ (e.g. report/images/demo.gif).
+  - CI must build a single PDF from the report sources into report/build/, filename must match: MSc_group_[a-z].pdf (e.g. MSc_group_a.pdf).
+  - Link and briefly describe constitutional artifacts: repos, issue trackers, monitoring/logging, etc. (see appendix after expansion).
+-->
+
+<!-- Edit this file (main.template.md). Run `make report` to expand @include lines into report/main.md for PDF/GitHub preview. -->
+
+## Abstract
+
+<!-- One short paragraph. You may draft this after the body is complete. -->
+
+## Outline
+
+| Perspective | Topics |
+|-------------|--------|
+| [System](#system-perspective) | Architecture, dependencies, static analysis and quality |
+| [Process](#process-perspective) | CI/CD, monitoring, logging, security, availability and scaling |
+| [Reflection](#reflection-perspective) | Issues and lessons, evolution/ops/maintenance, DevOps-style work |
+| [Appendix](#appendix) | External artifact links |
+
+<a id="system-perspective"></a>
+
+@include systems/perspective.md
+
+<a id="process-perspective"></a>
+
+@include process/perspective.md
+
+<a id="reflection-perspective"></a>
+
+@include reflection/perspective.md
+
+<a id="appendix"></a>
+
+@include appendix/artifacts.md
+
+## Figures and illustrations
+
+<!-- Use relative paths from report/main.md after expansion, e.g. ![Demo](images/demo.gif) -->
diff --git a/report/process/perspective.md b/report/process/perspective.md
@@ -0,0 +1,21 @@
+# Process' Perspective
+
+This perspective should clarify how code or other artifacts come from idea into the running system and everything that happens on the way.
+In particular, the following descriptions should be included:
+- A complete description and illustration of stages and tools included in the CI/CD pipelines, including deployment and release of your systems.
+- How do you monitor your systems and what precisely do you monitor?
+- What do you log in your systems and how do you aggregate logs?
+- Brief description of how you security hardened your systems.
+- How do you handle availability and scaling in your systems?
+
+<!-- Section bodies live under sections/*.md (one file per topic). @include lines are expanded when you run `make report` (report/main.template.md → report/main.md). -->
+
+@include sections/cicd.md
+
+@include sections/monitoring.md
+
+@include sections/logging.md
+
+@include sections/security.md
+
+@include sections/availability.md
diff --git a/report/process/sections/availability.md b/report/process/sections/availability.md
@@ -0,0 +1,3 @@
+## Availability and scaling
+
+<!-- Replicas, node roles, failure isolation, how you scale and known limits. -->
diff --git a/report/process/sections/cicd.md b/report/process/sections/cicd.md
@@ -0,0 +1,3 @@
+## CI/CD pipelines, deployment, and release
+
+<!-- Describe and illustrate stages (lint, test, build, deploy); staging vs production, tag-based releases, manual DB workflows, etc. -->
diff --git a/report/process/sections/logging.md b/report/process/sections/logging.md
@@ -0,0 +1,3 @@
+## Logging
+
+<!-- What you log and how logs are aggregated (Loki, Promtail, …). -->
diff --git a/report/process/sections/monitoring.md b/report/process/sections/monitoring.md
@@ -0,0 +1,3 @@
+## Monitoring
+
+<!-- What you monitor, which tools (Prometheus, Grafana, …), key metrics and dashboard links (may reference appendix). -->
diff --git a/report/process/sections/security.md b/report/process/sections/security.md
@@ -0,0 +1,3 @@
+## Security hardening
+
+<!-- Brief notes: authentication, TLS, network isolation, Basic Auth, secrets handling, etc. -->
diff --git a/report/reflection/perspective.md b/report/reflection/perspective.md
@@ -0,0 +1,38 @@
+# Reflection Perspective
+
+Describe the biggest issues, how you solved them, and which are major lessons learned with regards to:
+- evolution and refactoring
+- operation, and
+- maintenance
+of your ITU-MiniTwit systems. Link back to respective commit messages, issues, tickets, etc. to illustrate these.
+
+Also reflect and describe what was the "DevOps" style of your work. For example, what did you do differently to previous development projects and how did it work?
+
+Use of Generative AI
+
+ITU's rules on the use of generative AI apply for this report too. They are described here and in detail here. Please follow them. For your report that means that you have to state which generative AI tools have been used for which task(s) in your projects. Additionally, describe how generative AI tools have been used and briefly reflect and discuss how they supported or hindered your work process.
+
+
+<!-- Cover: major issues and how you solved them; lessons on evolution/refactoring, operation, and maintenance. Link to commits, issues, tickets. Reflect on your DevOps-style work vs previous projects. -->
+
+## Major issues, resolutions, and lessons learned
+
+### Evolution and refactoring
+
+<!-- Link: relevant commits / PRs / issues. -->
+
+### Operation
+
+<!-- Link: on-call, incidents, alerts (if any). -->
+
+### Maintenance
+
+<!-- Link: technical debt, documentation, dependency upgrades, etc. -->
+
+## DevOps-style work compared to earlier projects
+
+<!-- e.g. automation, small batches, IaC, observability-first practices. -->
+
+## Use of Generative AI
+
+<!-- e.g. how we use ai. -->
diff --git a/report/systems/perspective.md b/report/systems/perspective.md
@@ -0,0 +1,20 @@
+# System's Perspective
+
+A description and illustration of the:
+- Design and architecture of your ITU-MiniTwit systems.
+- All dependencies of your ITU-MiniTwit systems on all levels of abstraction and development stages. That is, list and briefly describe all technologies and tools you applied and depend on. 
+- Describe the current state of your systems, for example using results of static analysis and quality assessments.
+
+<!-- Cover: MiniTwit design and architecture (with diagrams), dependencies and tools at each abstraction level and development stage, and the current state from static analysis and quality assessments. -->
+
+## Design and architecture
+
+<!-- Describe and illustrate: service boundaries, data flows, deployment topology (Swarm / node roles), main components (app, DB, Traefik, observability stack, etc.). -->
+
+## Dependencies and technology stack
+
+<!-- List and briefly describe: languages, frameworks, DB, orchestration, IaC, CI platform, observability components, etc. -->
+
+## Static analysis and quality
+
+<!-- e.g. make lint, golangci-lint, test coverage, integration-test strategy; optional trends or screenshots (store images under report/images/). -->
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		## Availability and scaling

		<!-- Replicas, node roles, failure isolation, how you scale and known limits. -->
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		## CI/CD pipelines, deployment, and release

		<!-- Describe and illustrate stages (lint, test, build, deploy); staging vs production, tag-based releases, manual DB workflows, etc. -->
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		## Logging

		<!-- What you log and how logs are aggregated (Loki, Promtail, …). -->
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		## Monitoring

		<!-- What you monitor, which tools (Prometheus, Grafana, …), key metrics and dashboard links (may reference appendix). -->
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		## Security hardening

		<!-- Brief notes: authentication, TLS, network isolation, Basic Auth, secrets handling, etc. -->