# Project State ## Project Reference See: .planning/PROJECT.md (updated 2026-02-24) **Core value:** When something breaks — an API key expires, a service goes down, a credential needs reauthorization — the admin knows immediately and knows exactly what to fix. **Current focus:** Phase 2 — Backend Services ## Current Position Phase: 2 of 4 (Backend Services) Plan: 3 of 4 in current phase Status: In progress Last activity: 2026-02-24 — Completed 02-03 (alertService with deduplication, SMTP email, 8 unit tests) Progress: [█████░░░░░] 50% ## Performance Metrics **Velocity:** - Total plans completed: 5 - Average duration: ~17 min - Total execution time: ~1.4 hours **By Phase:** | Phase | Plans | Total | Avg/Plan | |-------|-------|-------|----------| | 01-data-foundation | 2 | ~34 min | ~17 min | | 02-backend-services | 3 | ~50 min | ~17 min | **Recent Trend:** - Last 5 plans: 01-01 (8 min), 01-02 (26 min), 02-01 (20 min), 02-02 (18 min), 02-03 (12 min) - Trend: Stable ~18 min/plan *Updated after each plan completion* ## Accumulated Context ### Decisions Decisions are logged in PROJECT.md Key Decisions table. Recent decisions affecting current work: - Roadmap: 4 phases following data layer → services → API → frontend dependency order - Architecture: Health probes decoupled from document processing as separate Cloud Function export - Architecture: Analytics writes are always fire-and-forget (never await on critical path) - Architecture: Alert recipient stored in config, not hardcoded (PITFALL-8 prevention) - 01-01: TEXT + CHECK constraint used for enum columns (not PostgreSQL ENUM types) - 01-01: getSupabaseServiceClient() called per-method, never cached at module level - 01-01: checked_at column separate from created_at on service_health_checks (probe time vs DB write time) - 01-01: Forward-only migrations only (no rollback scripts) - 01-02: Supabase mock uses chain.then (thenability) so both .single() and direct await patterns work from one mock - 01-02: makeSupabaseChain() factory per test — no shared mock state between tests - 01-02: vi.mock() factories must use only inline vi.fn() to avoid Vitest hoisting TDZ errors - 02-02: LLM probe uses claude-haiku-4-5 with max_tokens 5 (cheapest model, prevents expensive accidental probes) - 02-02: Supabase probe uses getPostgresPool().query('SELECT 1') not PostgREST (tests actual DB connectivity) - 02-02: Firebase Auth probe: verifyIdToken always throws; 'INVALID'/'Decoding'/'argument' in message = SDK alive = healthy - 02-02: Promise.allSettled for probe orchestration — all 4 probes run even if one throws outside its own try/catch - 02-02: Per-probe HealthCheckModel.create failure swallowed with logger.error — probe results still returned to caller - [Phase 02-backend-services]: 02-01: recordProcessingEvent return type is void (not Promise) — type system prevents accidental await on critical path - 02-03: Transporter created inside sendAlertEmail() on each call (not cached at module level) — Firebase Secrets not available at module load time - 02-03: Suppressed alerts skip BOTH AlertEventModel.create() AND sendMail — prevents duplicate DB rows plus duplicate emails - 02-03: Email failure caught and logged, never re-thrown — probe pipeline must continue regardless of email outage ### Pending Todos None yet. ### Blockers/Concerns - PITFALL-2: Health probe scheduler must be a separate named Cloud Function export, not piggybacked on `processDocumentJobs` - PITFALL-6: Each analytics instrumentation point must be void/fire-and-forget — reviewer must check this in Phase 3 - PITFALL-10: All new tables need `created_at` indexes in Phase 1 migrations — query performance depends on this from day one ## Session Continuity Last session: 2026-02-24 Stopped at: Completed 02-03-PLAN.md — alertService with deduplication, SMTP email, lazy transporter, 8 unit tests Resume file: None