Session 4 complete - RedFlag update management platform

🚩 Private development - version retention only

✅ Complete web dashboard (React + TypeScript + TailwindCSS)
✅ Production-ready server backend (Go + Gin + PostgreSQL)
✅ Linux agent with APT + Docker scanning + local CLI tools
✅ JWT authentication and REST API
✅ Update discovery and approval workflow

🚧 Status: Alpha software - active development
📦 Purpose: Version retention during development
⚠️  Not for public use or deployment

aggregator-server/internal/database/queries/agents.go

@@ -0,0 +1,83 @@
+package queries
+
+import (
+	"time"
+
+	"github.com/aggregator-project/aggregator-server/internal/models"
+	"github.com/google/uuid"
+	"github.com/jmoiron/sqlx"
+)
+
+type AgentQueries struct {
+	db *sqlx.DB
+}
+
+func NewAgentQueries(db *sqlx.DB) *AgentQueries {
+	return &AgentQueries{db: db}
+}
+
+// CreateAgent inserts a new agent into the database
+func (q *AgentQueries) CreateAgent(agent *models.Agent) error {
+	query := `
+		INSERT INTO agents (
+			id, hostname, os_type, os_version, os_architecture,
+			agent_version, last_seen, status, metadata
+		) VALUES (
+			:id, :hostname, :os_type, :os_version, :os_architecture,
+			:agent_version, :last_seen, :status, :metadata
+		)
+	`
+	_, err := q.db.NamedExec(query, agent)
+	return err
+}
+
+// GetAgentByID retrieves an agent by ID
+func (q *AgentQueries) GetAgentByID(id uuid.UUID) (*models.Agent, error) {
+	var agent models.Agent
+	query := `SELECT * FROM agents WHERE id = $1`
+	err := q.db.Get(&agent, query, id)
+	if err != nil {
+		return nil, err
+	}
+	return &agent, nil
+}
+
+// UpdateAgentLastSeen updates the agent's last_seen timestamp
+func (q *AgentQueries) UpdateAgentLastSeen(id uuid.UUID) error {
+	query := `UPDATE agents SET last_seen = $1, status = 'online' WHERE id = $2`
+	_, err := q.db.Exec(query, time.Now(), id)
+	return err
+}
+
+// ListAgents returns all agents with optional filtering
+func (q *AgentQueries) ListAgents(status, osType string) ([]models.Agent, error) {
+	var agents []models.Agent
+	query := `SELECT * FROM agents WHERE 1=1`
+	args := []interface{}{}
+	argIdx := 1
+
+	if status != "" {
+		query += ` AND status = $` + string(rune(argIdx+'0'))
+		args = append(args, status)
+		argIdx++
+	}
+	if osType != "" {
+		query += ` AND os_type = $` + string(rune(argIdx+'0'))
+		args = append(args, osType)
+	}
+
+	query += ` ORDER BY last_seen DESC`
+	err := q.db.Select(&agents, query, args...)
+	return agents, err
+}
+
+// MarkOfflineAgents marks agents as offline if they haven't checked in recently
+func (q *AgentQueries) MarkOfflineAgents(threshold time.Duration) error {
+	query := `
+		UPDATE agents
+		SET status = 'offline'
+		WHERE last_seen < $1 AND status = 'online'
+	`
+	_, err := q.db.Exec(query, time.Now().Add(-threshold))
+	return err
+}

aggregator-server/internal/database/queries/commands.go

@@ -0,0 +1,79 @@
+package queries
+
+import (
+	"time"
+
+	"github.com/aggregator-project/aggregator-server/internal/models"
+	"github.com/google/uuid"
+	"github.com/jmoiron/sqlx"
+)
+
+type CommandQueries struct {
+	db *sqlx.DB
+}
+
+func NewCommandQueries(db *sqlx.DB) *CommandQueries {
+	return &CommandQueries{db: db}
+}
+
+// CreateCommand inserts a new command for an agent
+func (q *CommandQueries) CreateCommand(cmd *models.AgentCommand) error {
+	query := `
+		INSERT INTO agent_commands (
+			id, agent_id, command_type, params, status
+		) VALUES (
+			:id, :agent_id, :command_type, :params, :status
+		)
+	`
+	_, err := q.db.NamedExec(query, cmd)
+	return err
+}
+
+// GetPendingCommands retrieves pending commands for an agent
+func (q *CommandQueries) GetPendingCommands(agentID uuid.UUID) ([]models.AgentCommand, error) {
+	var commands []models.AgentCommand
+	query := `
+		SELECT * FROM agent_commands
+		WHERE agent_id = $1 AND status = 'pending'
+		ORDER BY created_at ASC
+		LIMIT 10
+	`
+	err := q.db.Select(&commands, query, agentID)
+	return commands, err
+}
+
+// MarkCommandSent updates a command's status to sent
+func (q *CommandQueries) MarkCommandSent(id uuid.UUID) error {
+	now := time.Now()
+	query := `
+		UPDATE agent_commands
+		SET status = 'sent', sent_at = $1
+		WHERE id = $2
+	`
+	_, err := q.db.Exec(query, now, id)
+	return err
+}
+
+// MarkCommandCompleted updates a command's status to completed
+func (q *CommandQueries) MarkCommandCompleted(id uuid.UUID, result models.JSONB) error {
+	now := time.Now()
+	query := `
+		UPDATE agent_commands
+		SET status = 'completed', completed_at = $1, result = $2
+		WHERE id = $3
+	`
+	_, err := q.db.Exec(query, now, result, id)
+	return err
+}
+
+// MarkCommandFailed updates a command's status to failed
+func (q *CommandQueries) MarkCommandFailed(id uuid.UUID, result models.JSONB) error {
+	now := time.Now()
+	query := `
+		UPDATE agent_commands
+		SET status = 'failed', completed_at = $1, result = $2
+		WHERE id = $3
+	`
+	_, err := q.db.Exec(query, now, result, id)
+	return err
+}

aggregator-server/internal/database/queries/updates.go

@@ -0,0 +1,141 @@
+package queries
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/aggregator-project/aggregator-server/internal/models"
+	"github.com/google/uuid"
+	"github.com/jmoiron/sqlx"
+)
+
+type UpdateQueries struct {
+	db *sqlx.DB
+}
+
+func NewUpdateQueries(db *sqlx.DB) *UpdateQueries {
+	return &UpdateQueries{db: db}
+}
+
+// UpsertUpdate inserts or updates an update package
+func (q *UpdateQueries) UpsertUpdate(update *models.UpdatePackage) error {
+	query := `
+		INSERT INTO update_packages (
+			id, agent_id, package_type, package_name, package_description,
+			current_version, available_version, severity, cve_list, kb_id,
+			repository_source, size_bytes, status, metadata
+		) VALUES (
+			:id, :agent_id, :package_type, :package_name, :package_description,
+			:current_version, :available_version, :severity, :cve_list, :kb_id,
+			:repository_source, :size_bytes, :status, :metadata
+		)
+		ON CONFLICT (agent_id, package_type, package_name, available_version)
+		DO UPDATE SET
+			package_description = EXCLUDED.package_description,
+			current_version = EXCLUDED.current_version,
+			severity = EXCLUDED.severity,
+			cve_list = EXCLUDED.cve_list,
+			kb_id = EXCLUDED.kb_id,
+			repository_source = EXCLUDED.repository_source,
+			size_bytes = EXCLUDED.size_bytes,
+			metadata = EXCLUDED.metadata,
+			discovered_at = NOW()
+	`
+	_, err := q.db.NamedExec(query, update)
+	return err
+}
+
+// ListUpdates retrieves updates with filtering
+func (q *UpdateQueries) ListUpdates(filters *models.UpdateFilters) ([]models.UpdatePackage, int, error) {
+	var updates []models.UpdatePackage
+	whereClause := []string{"1=1"}
+	args := []interface{}{}
+	argIdx := 1
+
+	if filters.AgentID != nil {
+		whereClause = append(whereClause, fmt.Sprintf("agent_id = $%d", argIdx))
+		args = append(args, *filters.AgentID)
+		argIdx++
+	}
+	if filters.Status != "" {
+		whereClause = append(whereClause, fmt.Sprintf("status = $%d", argIdx))
+		args = append(args, filters.Status)
+		argIdx++
+	}
+	if filters.Severity != "" {
+		whereClause = append(whereClause, fmt.Sprintf("severity = $%d", argIdx))
+		args = append(args, filters.Severity)
+		argIdx++
+	}
+	if filters.PackageType != "" {
+		whereClause = append(whereClause, fmt.Sprintf("package_type = $%d", argIdx))
+		args = append(args, filters.PackageType)
+		argIdx++
+	}
+
+	// Get total count
+	countQuery := "SELECT COUNT(*) FROM update_packages WHERE " + strings.Join(whereClause, " AND ")
+	var total int
+	err := q.db.Get(&total, countQuery, args...)
+	if err != nil {
+		return nil, 0, err
+	}
+
+	// Get paginated results
+	query := fmt.Sprintf(`
+		SELECT * FROM update_packages
+		WHERE %s
+		ORDER BY discovered_at DESC
+		LIMIT $%d OFFSET $%d
+	`, strings.Join(whereClause, " AND "), argIdx, argIdx+1)
+
+	limit := filters.PageSize
+	if limit == 0 {
+		limit = 50
+	}
+	offset := (filters.Page - 1) * limit
+	if offset < 0 {
+		offset = 0
+	}
+
+	args = append(args, limit, offset)
+	err = q.db.Select(&updates, query, args...)
+	return updates, total, err
+}
+
+// GetUpdateByID retrieves a single update by ID
+func (q *UpdateQueries) GetUpdateByID(id uuid.UUID) (*models.UpdatePackage, error) {
+	var update models.UpdatePackage
+	query := `SELECT * FROM update_packages WHERE id = $1`
+	err := q.db.Get(&update, query, id)
+	if err != nil {
+		return nil, err
+	}
+	return &update, nil
+}
+
+// ApproveUpdate marks an update as approved
+func (q *UpdateQueries) ApproveUpdate(id uuid.UUID, approvedBy string) error {
+	query := `
+		UPDATE update_packages
+		SET status = 'approved', approved_by = $1, approved_at = NOW()
+		WHERE id = $2 AND status = 'pending'
+	`
+	_, err := q.db.Exec(query, approvedBy, id)
+	return err
+}
+
+// CreateUpdateLog inserts an update log entry
+func (q *UpdateQueries) CreateUpdateLog(log *models.UpdateLog) error {
+	query := `
+		INSERT INTO update_logs (
+			id, agent_id, update_package_id, action, result,
+			stdout, stderr, exit_code, duration_seconds
+		) VALUES (
+			:id, :agent_id, :update_package_id, :action, :result,
+			:stdout, :stderr, :exit_code, :duration_seconds
+		)
+	`
+	_, err := q.db.NamedExec(query, log)
+	return err
+}