# Lab 8: Software Reliability & SQA (CI Pipelines)
**Course:** COME6304 - Special Topics in SE  
**Student:** Nchinde Tandjong Josue (UBa25EP063)  

## Objective
To implement a **Continuous Integration (CI) Pipeline** that enforces software quality via automated **Quality Gates**.

In [2]:
# CELL 1: Import the CI Server Simulator
from ci_server import CIServer

# Initialize the pipeline on our application file
pipeline = CIServer("banking_app.py")

print("CI Server Online.")

CI Server Online.


### Run 1: Baseline Execution
We will run the pipeline on the current `banking_app.py`. 
**Expected Result:** It should FAIL at **Gate 2 (Security)** because the code contains a hardcoded API key.

In [3]:
# CELL 2: Execute Pipeline
pipeline.run_pipeline()

>>> STARTING CI PIPELINE FOR: banking_app.py
[CI-SERVER] [SEARCH] Running Gate 1: Static Analysis (Linting)...
[CI-SERVER] [PASS] Code style looks good.
[CI-SERVER] [SECURE] Running Gate 2: Security Scan...
[CI-SERVER] [FAIL] Security Vulnerability Found! (Hardcoded Secret detected)
[STOP] PIPELINE FAILED at Gate 2.


### Run 2: Fix and Retry
Now we will programmatically fix the security issue by removing the hardcoded key and running the pipeline again.

In [4]:
# CELL 3: Apply Patch (Fix Security Flaw)
fixed_code = """
import os

class BankAccount:
    def __init__(self, owner, balance=0):
        self.owner = owner
        self.balance = balance
        # SECURE: Loaded from environment variable
        self.api_key = os.getenv('API_KEY') 

    def deposit(self, amount):
        if amount > 0:
            self.balance += amount
            return True
        return False

    def withdraw(self, amount):
        if 0 < amount <= self.balance:
            self.balance -= amount
            return True
        return False

    def get_balance(self):
        return self.balance
"""

# Overwrite the file with fixed code
with open("banking_app.py", "w", encoding="utf-8") as f:
    f.write(fixed_code)

print("[OK] Patch Applied: Removed Hardcoded Secret.")

[OK] Patch Applied: Removed Hardcoded Secret.


In [5]:
# CELL 4: Rerun Pipeline
# Expected Result: SUCCESS (All gates pass)
pipeline.run_pipeline()

>>> STARTING CI PIPELINE FOR: banking_app.py
[CI-SERVER] [SEARCH] Running Gate 1: Static Analysis (Linting)...
[CI-SERVER] [PASS] Code style looks good.
[CI-SERVER] [SECURE] Running Gate 2: Security Scan...
[CI-SERVER] [FAIL] Security Vulnerability Found! (Hardcoded Secret detected)
[STOP] PIPELINE FAILED at Gate 2.
