New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

github.com/cooldryplace/cart

Package Overview
Dependencies
Alerts
File Explorer
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

github.com/cooldryplace/cart

  • v0.0.0-20190722063932-119882a72477
  • Source
  • Go
  • Socket score
Version published
Created
Source

Cart

Photo

©Roberto Badillo

Go Report Card GoDoc

Why

Hey, people want to buy products.

Building this microservice to scale better.

How

Cut a piece from the monolith and serve chilled.

API documentation

Have to be generated. So I have generated a client with GoDoc. Client documentation

Package structure

The package structure is simple for a reason. Currently, this is a straightforward service, so almost everything is in a single package, where business logic, data storage, and API code is located in separate files. Later if service will become more complex, there will be a need for better granularity and code isolation. But for now, I feel like this is the right balance.

Future structure

In the future packages structure will be derived from domains, and not from the functionality that code provides. An example would be:

  • user
  • billing
  • auth

Not:

  • controller
  • service
  • dao

@rakyll Style guideline for Go packages

Other microservices

Carts rely on other microservices.

  • AuthZ: to check that the caller is allowed to access/modify Cart state.
  • Billing: to get prices.
  • Business Analytics: to submit Cart updates details and make conclusions.
  • Products: to get product details.

Some microservices rely on Cart.

  • Orders: to retrieve Cart state.
  • Users: to retrieve Cart(s) for User profile.

Testing

To run all tests: go test github.com/cooldryplace/cart/....

To skip integration tests: go test --short github.com/cooldryplace/cart/....

Missing Parts

The current integration test does not cover cases when storage or other dependency fails.

Metrics

Currently, only API and client metrics are implemented. This already allows measuring availability and latency. In the future, I can add more specific metrics that will not be used in SLO implementations but will be in dashboards. To pinpoint the root cause of a problem during incidents. So we alert based on SLIs, look at the dashboard, and know where and why it happens.

Tracing

Adding spans here and there will help to identify bottlenecks. I use Opencensus with Stackdriver exporter for this.

Limitations

The current DB schema does not allow us to shard data. FKs and autoincrement are in the way. The suggested next step is to handle constraints in the application code. Start using UUIDs.

FAQs

Package last updated on 22 Jul 2019

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Linux Foundation Warns Open Source Developers: Compliance with Sanctions Is Not Optional

Security News

Linux Foundation Warns Open Source Developers: Compliance with Sanctions Is Not Optional

The Linux Foundation is warning open source developers that compliance with global sanctions is mandatory, highlighting legal risks and restrictions on contributions.

By Sarah Gooding  -  Feb 06, 2025
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc