chore(review): add comments/insights

jdvplus · jdvplus · commit 4dae7871d53b · 2025-11-06T20:06:42.000-08:00
diff --git a/server/db.js b/server/db.js
@@ -1,9 +1,13 @@
+// definitely periodically run Prettier or some other formatter on your codebase!
+
 import 'dotenv/config';
 import pkg from 'pg';
 const { Pool } = pkg;
 
-
-console.log("🔐 DB SSL rejectUnauthorized:", process.env.DB_SSL_REJECT_UNAUTHORIZED);
+console.log(
+  '🔐 DB SSL rejectUnauthorized:',
+  process.env.DB_SSL_REJECT_UNAUTHORIZED
+);
 export const pool = new Pool({
   connectionString: process.env.DATABASE_URL,
   max: parseInt(process.env.DB_POOL_MAX || '8', 10),
@@ -17,7 +21,9 @@ export const pool = new Pool({
   },
 });
 
-pool.on('error', (err) => console.error('[DB] Unexpected error on idle client', err));
+pool.on('error', (err) =>
+  console.error('[DB] Unexpected error on idle client', err)
+);
 
 export async function query(sql, params = []) {
   const start = Date.now();
diff --git a/server/lib/github-oauth.js b/server/lib/github-oauth.js
@@ -1,3 +1,5 @@
+// this file is great, and organized.
+
 export function buildAuthorizeUrl({ clientId, redirectUri, scopes, state }) {
   const params = new URLSearchParams({
     client_id: clientId,
diff --git a/server/routes/agent.js b/server/routes/agent.js
@@ -1,3 +1,7 @@
+/* just commenting on this file to say:
+in your /routes folder, make sure to keep your router names consistent!
+*/
+
 import express from 'express';
 import { runWizardAgent } from '../agent/wizardAgent.js';
 import { pipeline_generator } from '../tools/pipeline_generator.js';
diff --git a/server/routes/auth.aws.js b/server/routes/auth.aws.js
@@ -13,12 +13,17 @@ import {
 } from "@aws-sdk/client-sso-oidc";
 
 const router = Router();
+
+// i'd set up some linting to ensure that you're catching unused variables, like the one below
+// this will be important in terms of keeping your codebase organized & professional down the line
 const SESSION_SECRET = process.env.SESSION_SECRET;
 
 // ✅ Start AWS connect flow
 router.post("/connect", requireSession, async (req, res) => {
   const { sso_start_url, sso_region, account_id, role_to_assume } = req.body;
-  const userId = req.user.id;
+  
+  // if you want to get fancy with destructuring, i'd do this personally:
+  const { user: { id: userId } } = req;
 
   // Validate required parameters
   if (!sso_start_url || typeof sso_start_url !== 'string' || sso_start_url.trim() === '') {
diff --git a/server/routes/auth.github.js b/server/routes/auth.github.js
@@ -41,6 +41,8 @@ router.get('/start', (req, res) => {
   return res.redirect(url);
 });
 
+// remove commented-out code like this if you're not gonna use it
+
 // router.get('/callback', async (req, res) => {
 //   try {
 //     const { code, state } = req.query;
diff --git a/server/routes/pipelineCommit.js b/server/routes/pipelineCommit.js
@@ -5,6 +5,8 @@ import { upsertWorkflowFile } from '../tools/github_adapter.js';
 
 const router = Router();
 
+// this is nice. consider using JSDoc at some point in the future to document your routes/functions/etc.
+// it really elevates a codebase's professionalism
 /**
  * POST /mcp/v1/pipeline_commit
  * Body:
diff --git a/server/src/config/env.js b/server/src/config/env.js
@@ -1,6 +1,7 @@
 import dotenv from "dotenv";
 dotenv.config();
 
+// definitely be sure to remove these kinds of logs in production!
 console.log("🧾 MCP_API_KEY from .env:", process.env.MCP_API_KEY);
 
 export const config = {

Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,5 @@`
	`1`	`+// this file is great, and organized.`
	`2`	`+`
`1`	`3`	`export function buildAuthorizeUrl({ clientId, redirectUri, scopes, state }) {`
`2`	`4`	`const params = new URLSearchParams({`
`3`	`5`	`client_id: clientId,`