<a href="https://colab.research.google.com/github/juantomasprojects/codebase2gemini/blob/main/analyze_codebase_with_gemini_1_5_pro.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

In [None]:
# Copyright 2024 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#     https://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

# Analyze a codebase with the Vertex AI Gemini 1.5 Pro


<table align="left">
  <td style="text-align: center">
    <a href="https://colab.research.google.com/github/GoogleCloudPlatform/generative-ai/blob/main/gemini/use-cases/code/analyze_codebase_with_gemini_1_5_pro.ipynb">
      <img src="https://cloud.google.com/ml-engine/images/colab-logo-32px.png" alt="Google Colaboratory logo"><br> Open in Colab
    </a>
  </td>
  <td style="text-align: center">
    <a href="https://console.cloud.google.com/vertex-ai/colab/import/https:%2F%2Fraw.githubusercontent.com%2FGoogleCloudPlatform%2Fgenerative-ai%2Fmain%2Fgemini%2Fuse-cases%2Fcode%2Fanalyze_codebase_with_gemini_1_5_pro.ipynb">
      <img width="32px" src="https://lh3.googleusercontent.com/JmcxdQi-qOpctIvWKgPtrzZdJJK-J3sWE1RsfjZNwshCFgE_9fULcNpuXYTilIR2hjwN" alt="Google Cloud Colab Enterprise logo"><br> Open in Colab Enterprise
    </a>
  </td>    
  <td style="text-align: center">
    <a href="https://console.cloud.google.com/vertex-ai/workbench/deploy-notebook?download_url=https://raw.githubusercontent.com/GoogleCloudPlatform/generative-ai/main/gemini/use-cases/code/analyze_codebase_with_gemini_1_5_pro.ipynb">
      <img src="https://lh3.googleusercontent.com/UiNooY4LUgW_oTvpsNhPpQzsstV5W8F7rYgxgGBD85cWJoLmrOzhVs_ksK_vgx40SHs7jCqkTkCk=e14-rj-sc0xffffff-h130-w32" alt="Vertex AI logo"><br> Open in Workbench
    </a>
  </td>
  <td style="text-align: center">
    <a href="https://github.com/GoogleCloudPlatform/generative-ai/blob/main/gemini/use-cases/code/analyze_codebase_with_gemini_1_5_pro.ipynb">
      <img src="https://cloud.google.com/ml-engine/images/github-logo-32px.png" alt="GitHub logo"><br> View on GitHub
    </a>
  </td>
</table>


| | |
|-|-|
|Author(s) | [Eric Dong](https://github.com/gericdong), [Aakash Gouda](https://github.com/aksstar)|

## Overview

Gemini 1.5 Pro introduces a breakthrough long context window of up to 1 million tokens that can help seamlessly analyze, classify and summarize large amounts of content within a given prompt. With its long-context reasoning, Gemini 1.5 Pro can analyze an entire codebase for deeper insights.

In this tutorial, you learn how to analyze an entire codebase with Gemini 1.5 Pro and prompt the model to:

- **Analyze**: Summarize codebases effortlessly.
- **Guide**: Generate clear developer getting-started documentation.
- **Debug**: Uncover critical bugs and provide fixes.
- **Enhance**: Implement new features and improve reliability and security.


## Getting Started

### Install Vertex AI SDK for Python


In [None]:
! pip3 install --upgrade --user --quiet google-cloud-aiplatform \
                                        gitpython \
                                        magika

[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m207.3/207.3 kB[0m [31m4.3 MB/s[0m eta [36m0:00:00[0m
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m1.0/1.0 MB[0m [31m10.6 MB/s[0m eta [36m0:00:00[0m
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m62.7/62.7 kB[0m [31m5.6 MB/s[0m eta [36m0:00:00[0m
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m18.2/18.2 MB[0m [31m43.3 MB/s[0m eta [36m0:00:00[0m
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m6.8/6.8 MB[0m [31m45.1 MB/s[0m eta [36m0:00:00[0m
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m46.0/46.0 kB[0m [31m3.8 MB/s[0m eta [36m0:00:00[0m
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m86.8/86.8 kB[0m [31m8.6 MB/s[0m eta [36m0:00:00[0m
[0m

### Restart runtime (Colab only)

To use the newly installed packages in this Jupyter runtime, you must restart the runtime. You can do this by running the cell below, which restarts the current kernel.

The restart might take a minute or longer. After it's restarted, continue to the next step.

In [None]:
import sys

if "google.colab" in sys.modules:
    import IPython

    app = IPython.Application.instance()
    app.kernel.do_shutdown(True)

<div class="alert alert-block alert-warning">
<b>⚠️ The kernel is going to restart. Please wait until it is finished before continuing to the next step. ⚠️</b>
</div>


### Authenticate your notebook environment (Colab only)

If you are running this notebook on Google Colab, run the following cell to authenticate your environment.


In [None]:
import sys

if "google.colab" in sys.modules:
    from google.colab import auth

    auth.authenticate_user()

### Set Google Cloud project information and initialize Vertex AI SDK

To get started using Vertex AI, you must have an existing Google Cloud project and [enable the Vertex AI API](https://console.cloud.google.com/flows/enableapi?apiid=aiplatform.googleapis.com).

Learn more about [setting up a project and a development environment](https://cloud.google.com/vertex-ai/docs/start/cloud-environment).

In [None]:
PROJECT_ID = "abadia-1"  # @param {type:"string"}
LOCATION = "us-central1"  # @param {type:"string"}

import vertexai

vertexai.init(project=PROJECT_ID, location=LOCATION)

### Import libraries

In [None]:
import IPython.display
from IPython.core.interactiveshell import InteractiveShell

InteractiveShell.ast_node_interactivity = "all"

from vertexai.generative_models import (
    FunctionDeclaration,
    GenerationConfig,
    GenerativeModel,
    Tool,
)

## Cloning a codebase

You will use repo [Online Boutique](https://github.com/GoogleCloudPlatform/microservices-demo) as an example in this notebook. Online Boutique is a cloud-first microservices demo application. The application is a web-based e-commerce app where users can browse items, add them to the cart, and purchase them. This application consists of 11 microservices across multiple languages.

In [None]:
# The GitHub repository URL
repo_url = "https://github.com/GoogleCloudPlatform/microservices-demo"  # @param {type:"string"}

# The location to clone the repo
repo_dir = "./repo"

#### Define helper functions for processing GitHub repository

In [None]:
import os
import shutil
from pathlib import Path
import requests
import git
import magika

m = magika.Magika()


def clone_repo(repo_url, repo_dir):
    """Clone a GitHub repository."""

    if os.path.exists(repo_dir):
        shutil.rmtree(repo_dir)
    os.makedirs(repo_dir)
    git.Repo.clone_from(repo_url, repo_dir)


def extract_code(repo_dir):
    """Create an index, extract content of code/text files."""

    code_index = []
    code_text = ""
    for root, _, files in os.walk(repo_dir):
        for file in files:
            file_path = os.path.join(root, file)
            relative_path = os.path.relpath(file_path, repo_dir)
            code_index.append(relative_path)

            file_type = m.identify_path(Path(file_path))
            if file_type.output.group in ("text", "code"):
                try:
                    with open(file_path, "r") as f:
                        code_text += f"----- File: {relative_path} -----\n"
                        code_text += f.read()
                        code_text += "\n-------------------------\n"
                except Exception:
                    pass

    return code_index, code_text


def get_github_issue(owner: str, repo: str, issue_number: str) -> str:
    headers = {
        "Accept": "application/vnd.github+json",
        "X-GitHub-Api-Version": "2022-11-28",
    }  # Set headers for GitHub API

    # Construct API URL
    url = f"https://api.github.com/repos/{owner}/{repo}/issues/{issue_number}"

    try:
        response_git = requests.get(url, headers=headers)
        response_git.raise_for_status()  # Check for HTTP errors
    except requests.exceptions.RequestException as error:
        print(f"Error fetching issue: {error}")  # Handle potential errors

    issue_data = response_git.json()
    if issue_data:
        return issue_data["body"]
    return ""

#### Create an index and extract content of a codebase

Clone the repo and create an index and extract content of code/text files.

In [None]:
clone_repo(repo_url, repo_dir)

code_index, code_text = extract_code(repo_dir)

In [None]:
# prompt: write a local file with the content of the code_text variable

with open("codebase.txt", "w") as f:
  f.write(code_text)

with open("codeindex.txt", "w") as f:
  f.write(code_index)


1815312

TypeError: write() argument must be str, not list

## Analyzing the codebase with Gemini 1.5 Pro

With its long-context reasoning, Gemini 1.5 Pro can process the codebase and answer questions about the codebase.

#### Load the Gemini 1.5 Pro model

Learn more about the [Gemini API models on Vertex AI](https://cloud.google.com/vertex-ai/generative-ai/docs/learn/models#gemini-models).


In [None]:
MODEL_ID = "gemini-1.5-pro-001"  # @param {type:"string"}

model = GenerativeModel(
    MODEL_ID,
    system_instruction=[
        "You are a coding expert.",
        "Your mission is to answer all code related questions with given context and instructions.",
    ],
)

#### Define a helper function to generate a prompt to a code related question

In [None]:
def get_code_prompt(question):
    """Generates a prompt to a code related question."""

    prompt = f"""
    Questions: {question}

    Context:
    - The entire codebase is provided below.
    - Here is an index of all of the files in the codebase:
      \n\n{code_index}\n\n.
    - Then each of the files is concatenated together. You will find all of the code you need:
      \n\n{code_text}\n\n

    Answer:
  """

    return prompt

### 1. Summarizing the codebase


Generate a summary of the codebase.

In [None]:
question = """
  Give me a summary of this codebase, and tell me the top 3 things that I can learn from it.
"""

prompt = get_code_prompt(question)
contents = [prompt]

# Generate text using non-streaming method
response = model.generate_content(contents)

# Print generated text and usage metadata
print(f"\nAnswer:\n{response.text}")
print(f'\nUsage metadata:\n{response.to_dict().get("usage_metadata")}')
print(f"\nFinish reason:\n{response.candidates[0].finish_reason}")
print(f"\nSafety settings:\n{response.candidates[0].safety_ratings}")


Answer:
```
This codebase is the source code for the "Online Boutique" microservices demo application. The app is a simple e-commerce storefront where users can browse products, add them to a cart, and simulate purchasing them. It's designed to run on Kubernetes, and is used by Google to showcase different technologies related to container orchestration and microservice management.

Here are the top 3 things you can learn from this codebase:

1. **Microservice Architecture:** The application is split into 11 distinct services, each responsible for a specific function (e.g., product catalog, cart, payment). This showcases the principles of microservices, including independent deployments, separate codebases (with different languages), and communication over gRPC.

2. **gRPC Communication:**  Services in the application interact primarily using gRPC, a high-performance RPC framework. You can examine the `proto` files to understand how services define their APIs and message formats. You 

### 2. Creating a developer getting started guide

Generate a getting started guide for developers. This sample uses the streaming option to generate the content.

In [None]:
# prompt: write a local file with the content of the prompt variable

with open('prompt.txt', 'w') as f:
  f.write(prompt)


1831804

In [None]:
question = """
  Provide a getting started guide to onboard new developers to the codebase.
"""

prompt = get_code_prompt(question)
contents = [prompt]

responses = model.generate_content(contents, stream=True)
for response in responses:
    IPython.display.Markdown(response.text)

```


## Getting Started with Online Boutique

Welcome to the Online Boutique project! This

 guide will walk you through setting up your development environment and understanding the codebase.



### Project Overview

Online Boutique is a cloud-native microservices demo application showcasing a web-based e-commerce platform. It comprises 11 micros

ervices written in various languages, communicating via gRPC.

### Repository Structure

* **kubernetes-manifests:** Kubernetes YAML configurations for deploying services.
*

 **helm-chart:** Helm chart for deploying Online Boutique.
* **kustomize:** Kustomize configurations for deploying various scenarios and variations.
* **src:** Source code for individual microservices:
    * **adservice

 (Java):** Provides context-based text ads.
    * **cartservice (C#):** Manages user shopping carts (using Redis, Spanner, or AlloyDB).
    * **checkoutservice (Go):

** Orchestrates payments, shipping, and email notifications.
    * **currencyservice (Node.js):** Performs currency conversion.
    * **emailservice (Python):** Sends order confirmation emails (mock implementation).
    * **frontend (Go):** Web frontend for the e-commerce platform

.
    * **loadgenerator (Python/Locust):** Simulates realistic user traffic.
    * **paymentservice (Node.js):** Handles credit card charges (mock implementation).
    * **productcatalogservice (Go):** Provides product information.
    * **recommendationservice (Python):

** Recommends products based on cart contents.
    * **shoppingassistantservice (Python):** AI assistant powered by Gemini.
* **protos:** Protocol Buffer definitions for inter-service communication.
* **docs:** Documentation and tutorials.

### Development Setup

1. **Install Prerequisites:**
    

* **Docker:** Ensure Docker for Desktop is installed and running.
    * **kubectl:** Install kubectl to interact with your Kubernetes cluster.
    * **skaffold:** Install skaffold to streamline development and deployment.
    * **Language-Specific Tools:** Install necessary tools for the services you wish to develop

 (e.g., Java JDK, Go SDK, Python, Node.js).

2. **Choose a Deployment Option:**
    * **GKE:** Deploy on a Google Kubernetes Engine cluster for a realistic cloud environment.
    * **Local Cluster:** Use Minikube, Kind, or Docker for Desktop

 Kubernetes for local development.

3. **Configure Skaffold:**
    * Navigate to the project root directory.
    * Set up a `skaffold.yaml` configuration file specifying your deployment target, container image repository, and build artifacts. Refer to the [Skaffold documentation](https://skaffold.dev

/docs/) for detailed instructions.

4. **Run the Application:**
    * **GKE:** Execute `skaffold run --default-repo=gcr.io/[PROJECT_ID]` (replace [PROJECT_ID] with your GCP project ID).
    * **Local Cluster:** Execute `ska

ffold run`. This command builds the images, pushes them to the configured repository, and deploys the application.

5. **Access the Frontend:**
    * **GKE:** Retrieve the external IP of the `frontend-external` service and open it in your browser.
    * **Local Cluster:** Use

 `kubectl port-forward` to forward a local port to the `frontend` service and access it in your browser.

### Understanding the Code

* **Protos:** Familiarize yourself with the Protocol Buffer definitions in the `protos` directory to understand inter-service communication.
* **Microservices:** Explore the source

 code for each microservice. Each service has its own README and documentation to guide you.
* **Deployment Configurations:** Review the Kubernetes YAML files and Kustomize configurations for insights into deployment settings, resource limits, and customization options.

### Contributing

* Review the project's documentation, particularly the [purpose](

/docs/purpose.md) and [product requirements](/docs/product-requirements.md).
* Adhere to the [contribution process](/CONTRIBUTING.md) and sign the Contributor License Agreement.
* For significant changes, create a GitHub issue discussing the proposed changes before implementation.

### Troubleshooting

 and Support

* Refer to the project documentation and existing GitHub issues for solutions to common problems.
* For further assistance, create a new GitHub issue.
```

Remember to consult the project's extensive documentation for detailed information on individual services, features, and deployment scenarios. We encourage you to explore, experiment,

 and contribute to the Online Boutique project!




### 3. Finding bugs

Find the top 3 most severe issues in the codebase.

In [None]:
question = """
  Find the top 3 most severe issues in the codebase.
"""

prompt = get_code_prompt(question)
contents = [prompt]

responses = model.generate_content(contents, stream=True)
for response in responses:
    IPython.display.Markdown(response.text)

```

python
def checkout(l):
    addToCart(l)
    current

_year = datetime.datetime.now().year+1
    l.

client.post("/cart/checkout", {
        'email': fake.email(),
        'street_address': fake.street_address(),


        'zip_code': fake.zipcode(),
        'city': fake.city(),
        'state': fake.state_abbr(),
        

'country': fake.country(),
        'credit_card_number': fake.credit_card_number(card_type="visa"),
        'credit_card_expiration_month': random.randint(1, 

12),
        'credit_card_expiration_year': random.randint(current_year, current_year + 70),
        'credit_card_cvv': f"{random.randint(10

ValueError: Cannot get the response text.
Cannot get the Candidate text.
Response candidate content has no parts (and thus no text). The candidate is likely blocked by the safety filters.
Content:
{}
Candidate:
{
  "finish_reason": "SAFETY",
  "safety_ratings": [
    {
      "category": "HARM_CATEGORY_HATE_SPEECH",
      "probability": "NEGLIGIBLE",
      "probability_score": 0.28686798,
      "severity": "HARM_SEVERITY_NEGLIGIBLE",
      "severity_score": 0.19360436
    },
    {
      "category": "HARM_CATEGORY_DANGEROUS_CONTENT",
      "probability": "HIGH",
      "blocked": true,
      "probability_score": 0.86860406,
      "severity": "HARM_SEVERITY_HIGH",
      "severity_score": 0.7934263
    },
    {
      "category": "HARM_CATEGORY_HARASSMENT",
      "probability": "NEGLIGIBLE",
      "probability_score": 0.23335676,
      "severity": "HARM_SEVERITY_NEGLIGIBLE",
      "severity_score": 0.15934819
    },
    {
      "category": "HARM_CATEGORY_SEXUALLY_EXPLICIT",
      "probability": "NEGLIGIBLE",
      "probability_score": 0.12721826,
      "severity": "HARM_SEVERITY_LOW",
      "severity_score": 0.20197059
    }
  ]
}
Response:
{
  "candidates": [
    {
      "finish_reason": "SAFETY",
      "safety_ratings": [
        {
          "category": "HARM_CATEGORY_HATE_SPEECH",
          "probability": "NEGLIGIBLE",
          "probability_score": 0.28686798,
          "severity": "HARM_SEVERITY_NEGLIGIBLE",
          "severity_score": 0.19360436
        },
        {
          "category": "HARM_CATEGORY_DANGEROUS_CONTENT",
          "probability": "HIGH",
          "blocked": true,
          "probability_score": 0.86860406,
          "severity": "HARM_SEVERITY_HIGH",
          "severity_score": 0.7934263
        },
        {
          "category": "HARM_CATEGORY_HARASSMENT",
          "probability": "NEGLIGIBLE",
          "probability_score": 0.23335676,
          "severity": "HARM_SEVERITY_NEGLIGIBLE",
          "severity_score": 0.15934819
        },
        {
          "category": "HARM_CATEGORY_SEXUALLY_EXPLICIT",
          "probability": "NEGLIGIBLE",
          "probability_score": 0.12721826,
          "severity": "HARM_SEVERITY_LOW",
          "severity_score": 0.20197059
        }
      ]
    }
  ],
  "usage_metadata": {
    "prompt_token_count": 667612,
    "candidates_token_count": 193,
    "total_token_count": 667805
  }
}

### 4. Fixing bug

Find the most severe issue in the codebase that can be fixed and provide a code fix for it.


In [None]:
question = """
  Find the most severe bug in the codebase that you can provide a code fix for.
"""

prompt = get_code_prompt(question)
contents = [prompt]

responses = model.generate_content(contents, stream=True)
for response in responses:
    IPython.display.Markdown(response.text)

```

diff
--- a/src/cartservice/src/cartstore/Alloy

DBCartStore.cs
+++ b/src/cartservice/src/

cartstore/AlloyDBCartStore.cs
@@ -58,7 +58,7 @@
                         currentQuantity += reader.GetInt32

(0);
                 }
                 var totalQuantity = quantity + currentQuantity;
-
+                
                 var insertCmd = $"INSERT INTO {

tableName} (userId, productId, quantity) VALUES ('{userId}', '{productId}', {totalQuantity})";
                 await using (var cmdInsert = dataSource.CreateCommand(insertCmd))
                 {
@@ -66,

6 +66,15 @@
                     {
                         return cmdInsert.ExecuteNonQueryAsync();
                     });
+                }
+                // This was originally an insert, but that's going to blow up
+                

// if you try to add the same item multiple times. AlloyDB doesn't
+                // have an "upsert" command, so we'll just delete the record if it
+                // already exists, and insert the new value
+                var deleteCmd = $"DELETE FROM {tableName} WHERE

 userID='{userId}' AND productID='{productId}'";
+                await using (var cmdDelete = dataSource.CreateCommand(deleteCmd))
+                {
+                    await cmdDelete.ExecuteNonQueryAsync();
                 }
             }
             catch (Exception ex)

```



### 5. Implementing a feature request using Function Calling

Generate code to implement a feature request.

Get feature request text from GitHub Issue

In [None]:
# Function declaration with detailed docstring
extract_details_from_url_func = FunctionDeclaration(
    name="extract_details_from_url",
    description="Extracts owner, repository name, and issue number details from a GitHub issue URL",
    parameters={
        "type": "object",
        "properties": {
            "owner": {
                "type": "string",
                "description": "The owner of the GitHub repository.",
            },
            "repo": {
                "type": "string",
                "description": "The name of the GitHub repository.",
            },
            "issue_number": {
                "type": "string",
                "description": "The issue number to fetch the body of.",
            },
        },
    },
)

# Tool definition
extraction_tool = Tool(function_declarations=[extract_details_from_url_func])

FEATURE_REQUEST_URL = (
    "https://github.com/GoogleCloudPlatform/microservices-demo/issues/2205"
)

# Prompt content
prompt_content = f"What is the feature request of the following {FEATURE_REQUEST_URL}"

# Model generation with tool usage
response = model.generate_content(
    [prompt_content],
    generation_config=GenerationConfig(temperature=0),
    tools=[extraction_tool],
)
# Extract parameters from model response
function_call = response.candidates[0].function_calls[0]

# Fetch issue details from GitHub API if function call matches
if function_call.name == "extract_details_from_url":
    issue_body = get_github_issue(
        function_call.args["owner"],
        function_call.args["repo"],
        function_call.args["issue_number"],
    )

IPython.display.Markdown(f"Feature Request:\n{issue_body}")

Feature Request:
### Describe request or inquiry 
helm chart frontend-external support config service type nodeport, like this
```
helm install xxx --set frontend.service.type=NodePort
```

### What purpose/environment will this feature serve? 

This feature enables quick access to the front-end web interface of microservices without the need for additional configuration work.

I hope to quickly access the web interface after deploying this microservice in the local environment, without the need for additional loadbalancer or ingress configuration, just nodeport is enouth.

But now that the deployment is complete, I must manually edit the service and modify the nodeport. If Helm provides parameters to set the nodeport, I don't need to。


Use the GitHub Issue text to implement the feature request

In [None]:
# Combine feature request with URL and get code prompt
question = (
    "Implement the following feature request" + FEATURE_REQUEST_URL + "\n" + issue_body
)

prompt = get_code_prompt(question)

# Generate code response
response = model.generate_content([prompt])
IPython.display.Markdown(response.text)  # Display in Markdown format

```diff
--- a/helm-chart/templates/frontend.yaml
+++ b/helm-chart/templates/frontend.yaml
@@ -846,6 +846,8 @@
   ports:
   - name: http
     port: 80
+    {{- if eq .Values.frontend.externalService "NodePort" }}
+    nodePort: 30080
+    {{- end }}
     targetPort: 8080
 {{- if .Values.frontend.externalService }}
 ---
@@ -853,6 +855,9 @@
 metadata:
   name: {{ .Values.frontend.name }}-external
   namespace: {{ .Release.Namespace }}
+  {{- if eq .Values.frontend.externalService "NodePort" }}
+  annotations: {}
+  {{- end }}
 spec:
   {{- if eq .Values.frontend.externalService "NodePort" }}
   type: NodePort
@@ -863,6 +868,8 @@
   ports:
   - name: http
     port: 80
+    {{- if eq .Values.frontend.externalService "NodePort" }}
+    nodePort: 30080
+    {{- end }}
     targetPort: 8080
 {{- end }}
 {{- if .Values.networkPolicies.create }}
@@ -1038,6 +1045,8 @@
 cartDatabase:
   # Specifies the type of the cartservice's database, could be either redis or spanner.
   type: redis
+  # The address of the cartservice database. When using an external database, be sure to
+  # set this value appropriately.
   connectionString: "redis-cart:6379"
   inClusterRedis:
     create: true

```

### 6. Creating a troubleshooting guide

Create a troubleshooting guide to help resolve common issues.

In [None]:
question = """
    Provide a troubleshooting guide to help resolve common issues.
"""

prompt = get_code_prompt(question)
contents = [prompt]

responses = model.generate_content(contents, stream=True)
for response in responses:
    IPython.display.Markdown(response.text)

```


## Online Boutique Troubleshooting Guide

This guide helps you resolve common issues encountered when

 deploying and running the Online Boutique microservices demo application.

**General Troubleshooting Tips

:**

* **Check Logs:** Examine the logs of your pods and services for error messages. Use `kubectl logs [POD_NAME]` to view logs for

 a specific pod.
* **Describe Resources:** Use `kubectl describe [RESOURCE_TYPE] [RESOURCE_NAME]` for detailed information about deployments, pods,

 and services.  Look for events and conditions that might indicate the source of the problem. 
* **Check Events:** Use `kubectl get events` to see cluster events that might be related to your issue.

**Common Issues:**



**1. Deployment Issues:**

* **ImagePullBackOff:** This indicates Kubernetes is unable to pull the container images from the registry.
    - **Solution:** Ensure your cluster has access to the registry (GCR, Docker

 Hub, etc.) and that the image names and tags are correct. Check your secret configurations if using a private registry.
* **CrashLoopBackOff:** A container keeps crashing and restarting.
    - **Solution:** Analyze the container logs (`kubectl logs [POD_NAME]`) to identify the cause of the

 crash.  Common causes include application errors, misconfiguration, and resource limits.
* **Pods Stuck in Pending:** Pods remain in a pending state and fail to start.
    - **Solution:**  Check for insufficient resources (CPU, memory) in your cluster or node. If using resource limits, ensure they

 are sufficient for the containers.  You may need to increase node size or add nodes. 

**2. Networking Issues:**

* **Service Not Accessible:** You cannot access the application's frontend or other services.
    - **Solution:** 
        - Verify the service type (`kubectl get svc`).

 `LoadBalancer` services require a cloud provider to provision an external IP.  
        - If using `ClusterIP`, use port-forwarding for local access (`kubectl port-forward svc/[SERVICE_NAME] [LOCAL_PORT]:[SERVICE_PORT]`).
        - Check your firewall rules to ensure traffic

 is allowed to the service.
* **Inter-service Communication Failure:** Services cannot communicate with each other.
    - **Solution:** 
        - Verify service names and ports in the environment variables of your deployments are correct.
        - Ensure network policies are not blocking communication.  
        - If using

 Istio, check your virtual services and destination rules for proper routing configuration.

**3. Resource Issues:**

* **OOMKilled:**  A container is killed due to exceeding its memory limit.
    - **Solution:** Increase the memory limit of the container in the deployment manifest or optimize your application to reduce

 memory consumption.  
* **CPU Throttling:** Container performance is limited due to exceeding its CPU allocation.
    - **Solution:** Increase the CPU request and limit of the container or optimize your application to reduce CPU usage.

**4. Cart Service Issues (cartservice):**

* **Cart Not

 Persisting:** Cart data is lost between sessions.
    - **Solution:** 
        -  By default, the cartservice uses an in-cluster Redis instance. Verify that the Redis pod is running and accessible by the cartservice.
        - If using external databases (Memorystore, Spanner), check

 connectivity and credentials.

**5. Recommendation Service Issues (recommendationservice):**

* **No Recommendations:** The recommendationservice fails to provide product suggestions.
    - **Solution:** Ensure the recommendationservice can communicate with the productcatalogservice. Check logs for errors in fetching product data.

**6.  Frontend

 Issues (frontend):**

* **Currency Conversion Errors:**  Issues with displaying prices in different currencies.
    - **Solution:** Verify the frontend is able to communicate with the currencyservice and that the currency codes are correct.

**7. Istio Service Mesh Issues:**

* **Sidecar Injection

 Failure:** Sidecar containers are not injected into pods.
    - **Solution:** Ensure your namespace is labeled for automatic sidecar injection (`kubectl label namespace [NAMESPACE] istio-injection=enabled`). If using a different revision, verify the `istio.io/rev` label. 
* **Incorrect

 Routing:** Traffic is not routed correctly between services.
    - **Solution:**  Check your Istio VirtualService and DestinationRule configurations for proper host, gateway, and subset definitions. 

**8.  Load Generator Issues (loadgenerator):**

* **Frontend Unreachable:**  The load generator fails to

 connect to the frontend.
    - **Solution:** Verify the `FRONTEND_ADDR` environment variable in the load generator deployment points to the correct service name and port.


**For more specific troubleshooting or if you encounter other issues, please [create a GitHub issue](https://github.com/GoogleCloudPlatform

/microservices-demo/issues/new/choose).**
```

Please note that this guide provides a starting point. 
The specific troubleshooting steps may vary depending on your environment and configurations. 
Always analyze the logs and resource descriptions for more clues about the problem. 




### 7. Making the app more reliable

Recommend best practices to make the application more reliable.


In [None]:
question = """
  How can I make this application more reliable? Consider best practices from https://www.r9y.dev/
"""

prompt = get_code_prompt(question)
contents = [prompt]

responses = model.generate_content(contents, stream=True)
for response in responses:
    IPython.display.Markdown(response.text)

```

python
import random
from locust import FastHttpUser, TaskSet, between

, events
from faker import Faker
import datetime
from socket import geth

ostname
import logging
import json

fake = Faker()

# Initialize logger with JSON formatting
logger = logging.getLogger()
logger.setLevel(

logging.INFO)
handler = logging.StreamHandler()
formatter = logging.Formatter('%(asctime)s - %(name)s - %(level

name)s - %(message)s')
handler.setFormatter(formatter)
logger.addHandler(handler)

products = [
    '0PUK6V6EV0',
    '1YMWWN1

N4O',
    '2ZYFJ3GM2N',
    '66VCHSJNUP',
    '6E92ZMYYFZ',
    '9SIQT8TOJO',


    'L9ECAV7KIM',
    'LS4PSXUNUM',
    'OLJCESPC7Z']


def index(l):
    with l.client.get("/", catch_response=True) as response:
        if response.status_code != 

200:
            response.failure(f"Got wrong response: {response.status_code}")

def setCurrency(l):
    currencies = ['EUR', 'USD', 'JPY', 'CAD', 'GBP', 'TRY']
    with l.client.post("/setCurrency",


        {'currency_code': random.choice(currencies)}, catch_response=True) as response:
        if response.status_code != 302: # Expect redirect after setting currency
            response.failure(f"Got wrong response: {response.status_code}")

def browse

Product(l):
    prod_id = random.choice(products)
    url = "/product/" + prod_id
    with l.client.get(url, catch_response=True, name="/product/[id]") as response:
        if response.status_code != 2

00:
            response.failure(f"Got wrong response on {url}: {response.status_code}")
        if prod_id not in response.text:
            response.failure(f"Product {prod_id} not in response.")

def viewCart(l):
    

with l.client.get("/cart", catch_response=True) as response:
        if response.status_code != 200:
            response.failure(f"Got wrong response: {response.status_code}")

def addToCart(l):
    product = random.

choice(products)
    l.client.get("/product/" + product)
    quantity = random.randint(1,10)
    with l.client.post("/cart", {
        'product_id': product,
        'quantity': quantity}, catch_response=True)

 as response:
        if response.status_code != 302:
            response.failure(f"Got wrong response: {response.status_code}")
        l.cart[product] =  l.cart.get(product, 0) + quantity


def empty_cart

(l):
    l.cart = {}
    with l.client.post('/cart/empty', catch_response=True) as response:
        if response.status_code != 302:
            response.failure(f"Got wrong response: {response.status_code

}")

def checkout(l):
    addToCart(l)
    current_year = datetime.datetime.now().year+1
    with l.client.post("/cart/checkout", {
        'email': fake.email(),
        'street_address': fake.street_address(),


        'zip_code': fake.zipcode(),
        'city': fake.city(),
        'state': fake.state_abbr(),
        'country': fake.country(),
        'credit_card_number': fake.credit_card_number(card_type="visa"),


        'credit_card_expiration_month': random.randint(1, 12),
        'credit_card_expiration_year': random.randint(current_year, current_year + 70),
        'credit_card_cvv': f"{random.randint(1

00, 999)}",
    }, catch_response=True) as response:
        if response.status_code != 200:
            response.failure(f"Got wrong response: {response.status_code}")
    
def logout(l):
    

with l.client.get('/logout', catch_response=True) as response:
        if response.status_code != 302:
            response.failure(f"Got wrong response: {response.status_code}")  

class UserBehavior(TaskSet):
    def on

_start(self):
        self.cart = {}
        index(self)

    tasks = {index: 1,
        setCurrency: 2,
        browseProduct: 10,
        addToCart: 2,
        viewCart: 3,
        checkout:

 1}

    def on_stop(self):
        empty_cart(self)
        logout(self)


class WebsiteUser(FastHttpUser):
    tasks = [UserBehavior]
    wait_time = between(1, 10)


@events.init.add

_listener
def on_locust_init(environment, **_kwargs):
    # Report startup event with hostname and start time
    data = {
        "message": "Locust started",
        "hostname": gethostname(),
        "timestamp": datetime.datetime.now().

isoformat(),
    }
    logger.info(json.dumps(data))
    print(json.dumps(data))

```



### 8. Making the app more secure

Recommend best practices to make the application more secure.

In [None]:
question = """
  How can you secure the application?
"""

prompt = get_code_prompt(question)
contents = [prompt]

responses = model.generate_content(contents, stream=True)
for response in responses:
    IPython.display.Markdown(response.text)

This

 application is a demo application designed to showcase various Google Cloud features and technologies in a

 microservices architecture. As such, security considerations might not have been prioritized as they

 would in a production-ready application. However, there are several ways to enhance the security of this application:

**General Best Practices:**

* **Update

 Dependencies:** Regularly update all dependencies used in the application (Node.js, Python, Go, Java, etc.) to ensure you have the latest security patches.


* **Secure Configuration:** Avoid hardcoding sensitive information like API keys, passwords, and connection strings directly in the code. Use environment variables, configuration files, or secret management services like Google Cloud Secret Manager.
* **Image Scanning:**

 Implement container image scanning to identify vulnerabilities in the Docker images used for each microservice. Google Cloud offers a [Vulnerability Scanning](https://cloud.google.com/container-registry/docs/vulnerability-scanning) service.


* **Secure Default Configuration:** While the application may offer features like publicly exposed endpoints or dynamic configuration reloading, these should be disabled by default in a production-like environment. Users can then opt-in to these features as needed.
* **Secure Logging:** Implement secure logging practices to protect sensitive information in logs. Use

 appropriate logging levels and consider redacting sensitive data before it's written to logs.

**Kubernetes-Specific Security Measures:**

* **Network Policies:** Implement strict [Network Policies](https://kubernetes.io/docs/concepts/services-networking/network-policies/) to control traffic flow between the microservices.

 Limit communication to only necessary ports and protocols. 
* **RBAC:** Utilize [Role-Based Access Control (RBAC)](https://kubernetes.io/docs/reference/access-authn-authz/rbac/) to control permissions within the Kubernetes cluster. Define roles with least-privilege access to

 resources and assign them to users and service accounts accordingly.
* **Service Accounts:** Create dedicated service accounts for each microservice with the minimum required permissions to access other services or cloud resources. Utilize Workload Identity if you're interacting with Google Cloud APIs.
* **Resource Limits:** Set [Resource Limits](https

://kubernetes.io/docs/concepts/configuration/manage-resources-containers/) for CPU, memory, and storage for each container to prevent resource exhaustion attacks.
* **Security Contexts:** Define [Security Contexts](https://kubernetes.io/docs/tasks/configure-pod-container/security-

context/) for Pods and containers to enhance security by running them as non-root users, limiting access to system resources, and applying other security hardening techniques.
* **Pod Security Standards:** Implement [Pod Security Standards](https://kubernetes.io/docs/concepts/security/pod-security-standards/) to apply

 predefined security profiles to your Pods.

**Service Mesh Enhancements (Istio):**

* **Mutual TLS (mTLS):** Enable mTLS between services to ensure secure and authenticated communication.
* **Authorization Policies:** Define [Authorization Policies](https://istio.io/latest/docs/security/

authorization/) to control which services can access specific endpoints based on user roles or other attributes.

**Code-Specific Security:**

* **cartservice (C#):**
    *  Properly sanitize user input to prevent SQL injection if connecting to Spanner or AlloyDB.
* **paymentservice (Node

.js):**
    * Implement robust credit card validation and potentially integrate with a payment gateway service.
    * Never store sensitive payment information in the service.
* **emailservice (Python):**
    *  Ensure that email templates are properly sanitized to prevent XSS (cross-site scripting) vulnerabilities.


* **frontend (Go):**
    * Validate and sanitize all user input to prevent XSS and other injection attacks.
    * Use secure cookie attributes like the `HttpOnly` and `Secure` flags.
    * Implement proper session management practices to protect user sessions.

**Additional Considerations:**

*

 **Vulnerability Assessments:** Regularly perform vulnerability assessments on your application and infrastructure to identify and address potential security weaknesses.
* **Penetration Testing:** Conduct penetration testing to simulate real-world attacks and evaluate the effectiveness of your security measures.

By implementing these security measures, you can significantly enhance the security of the Online Boutique

 application and make it more suitable for a production-like environment.




### 9. Learning the codebase

Create a quiz about the concepts used in the codebase.

In [None]:
question = """
  Create a quiz about the concepts used in my codebase to help me solidify my understanding.
"""

prompt = get_code_prompt(question)
contents = [prompt]

responses = model.generate_content(contents, stream=True)
for response in responses:
    IPython.display.Markdown(response.text)

```

python
import random

questions = [
    {
        "question":

 "What is the purpose of the `skaffold.yaml` file?",


        "options": [
            "To define the application's architecture",
            "To configure the build and deployment process using Skaffold",
            

"To store the application's source code",
            "To define the application's dependencies"
        ],
        "answer": "To configure

 the build and deployment process using Skaffold"
    },
    {
        "question": "What is the main function of the `frontend` service?",
        "options": [
            "To process payments",
            

"To manage the shopping cart",
            "To serve the website and handle user interactions",
            "To recommend products"
        ],
        "answer": "To serve the website and handle user interactions"
    },


    {
        "question": "Which database is used by the `cartservice` by default?",
        "options": [
            "MySQL",
            "PostgreSQL",
            "Redis",
            "MongoDB"
        ],
        "answer": "Redis"
    },
    

{
        "question": "What is the purpose of the `loadgenerator` service?",
        "options": [
            "To generate fake product data",
            "To simulate user traffic and test the application's performance",
            "To monitor the application's health",
            "To

 generate reports on application usage"
        ],
        "answer": "To simulate user traffic and test the application's performance"
    },
    {
        "question": "What is Kustomize used for in this codebase?",
        "options": [
            "To build Docker images

",
            "To deploy applications to Kubernetes",
            "To customize Kubernetes YAML manifests without templating",
            "To manage application dependencies"
        ],
        "answer": "To customize Kubernetes YAML manifests without templating"
    },
    {
        "question": "How are the micros

ervices in Online Boutique communicating with each other?",
        "options": [
            "REST API calls",
            "gRPC",
            "WebSockets",
            "Message queues"
        ],
        "answer": "gRPC"
    },
    {
        "question": "

What is the function of the `CYMBAL_BRANDING` environment variable in the `frontend` service?",
        "options": [
            "To enable debug logging",
            "To change the application's theme to the Cymbal Shops branding",
            "To enable user authentication",
            

"To specify the port number for the frontend service"
        ],
        "answer": "To change the application's theme to the Cymbal Shops branding"
    },
    {
        "question": "What is the purpose of the `EXTRA_LATENCY` environment variable in the `product

catalogservice`?",
        "options": [
            "To simulate network latency issues",
            "To enable debug logging",
            "To control the rate of product catalog updates",
            "To specify the number of product catalog replicas"
        ],
        "answer": "To simulate network latency

 issues"
    },
    {
        "question": "Which tool is used for building and pushing Docker images to Google Container Registry (GCR)?",
        "options": [
            "Docker Compose",
            "Kubernetes",
            "Skaffold",
            "Jenkins"
        ],


        "answer": "Skaffold"
    },
    {
        "question": "What is the purpose of the `NetworkPolicy` resources in the `components/network-policies` directory?",
        "options": [
            "To define load balancing rules",
            "To control network

 traffic between Pods",
            "To expose services outside the cluster",
            "To manage secrets used by the application"
        ],
        "answer": "To control network traffic between Pods"
    },
]

random.shuffle(questions)

score = 0
num_questions = len

(questions)

for i, q in enumerate(questions):
    print(f"Question {i+1}/{num_questions}: {q['question']}")
    for j, o in enumerate(q['options']):
        print(f"{j+1}. {o}")
    answer

 = input("Your answer (1-4): ")
    try:
        answer_index = int(answer) - 1
        if 0 <= answer_index < len(q['options']) and q['options'][answer_index] == q['answer']:
            print("Correct!")


            score += 1
        else:
            print(f"Incorrect. The answer is: {q['answer']}")
    except ValueError:
        print("Invalid input. Please enter a number between 1 and 4.")
    print()

print(f"You got {score

}/{num_questions} questions correct.")
```



### 10. Creating a quickstart tutorial

Create an end-to-end quickstart tutorial for a specific component.


In [None]:
question = """
  Please write an end-to-end quickstart tutorial that introduces AlloyDB,
  shows how to configure it with the CartService,
  and highlights key capabilities of AlloyDB in context of the Online Boutique application.
"""

prompt = get_code_prompt(question)
contents = [prompt]

responses = model.generate_content(contents, stream=True)
for response in responses:
    IPython.display.Markdown(response.text)

### 11. Creating a Git Changelog Generator

Understanding changes made between Git commits and highlighting the most important aspects of the changes.

In [None]:
### Fetches commit IDs from a local Git repository on a specified branch.

repo = git.Repo(repo_dir)
branch_name = "main"
commit_ids = [
    commit.hexsha for commit in repo.iter_commits(branch_name)
]  # A list of commit IDs (SHA-1 hashes) in reverse chronological order (newest first)

if len(commit_ids) >= 2:
    diff_text = repo.git.diff(commit_ids[0], commit_ids[1])

    question = """
      Given the above git diff output, Summarize the important changes made.
    """

    prompt = diff_text + question + code_text
    contents = [prompt]

    responses = model.generate_content(contents, stream=True)
    for response in responses:
        IPython.display.Markdown(response.text)

## Conclusion

In this tutorial, you've learned how to use the Gemini 1.5 Pro to analyze a codebase and prompt the model to:

- Summarize codebases effortlessly.
- Generate clear developer getting-started documentation.
- Uncover critical bugs and provide fixes.
- Implement new features and improve reliability and security.
- Understanding changes made between Git commits