forgejo_admin/westside-contracts

Fork 0

fix: insert outbox event after contract signing #8

Merged

forgejo_admin merged 2 commits from 6-fix-contract-sign-outbox-event into main

2026-03-24 18:57:11 +00:00

forgejo_admin commented

2026-03-24 18:44:47 +00:00

Owner

Summary

The POST /contract/{token}/sign endpoint updated the player record but never created an outbox event, so basketball-api's outbox worker never sent the confirmation email with GroupMe share link. This adds the missing outbox INSERT after the player UPDATE.

Changes

src/routes/contract/[token]/sign/+server.ts: Expanded initial SELECT to include name and parent_id columns. Added INSERT INTO outbox with contract_signed event type and JSON payload containing player_id, player_name, team_id, parent_id. Added fire-and-forget HTTP call to basketball-api /admin/process-outbox for immediate processing (gracefully fails if admin auth blocks it -- the cron worker picks it up regardless).

Test Plan

npm run build passes
npm test passes (12 tests)
Deploy to cluster, sign a contract, verify outbox row appears in Postgres: SELECT * FROM outbox WHERE event_type = 'contract_signed' ORDER BY created_at DESC LIMIT 1;
Trigger outbox processing via basketball-api admin endpoint and verify confirmation email is sent

Review Checklist

Passed automated review-fix loop
No secrets committed
No unnecessary file changes
Commit messages are descriptive

Closes #6

## Summary The `POST /contract/{token}/sign` endpoint updated the player record but never created an outbox event, so basketball-api's outbox worker never sent the confirmation email with GroupMe share link. This adds the missing outbox INSERT after the player UPDATE. ## Changes - `src/routes/contract/[token]/sign/+server.ts`: Expanded initial SELECT to include `name` and `parent_id` columns. Added `INSERT INTO outbox` with `contract_signed` event type and JSON payload containing `player_id`, `player_name`, `team_id`, `parent_id`. Added fire-and-forget HTTP call to basketball-api `/admin/process-outbox` for immediate processing (gracefully fails if admin auth blocks it -- the cron worker picks it up regardless). ## Test Plan - [x] `npm run build` passes - [x] `npm test` passes (12 tests) - [ ] Deploy to cluster, sign a contract, verify outbox row appears in Postgres: `SELECT * FROM outbox WHERE event_type = 'contract_signed' ORDER BY created_at DESC LIMIT 1;` - [ ] Trigger outbox processing via basketball-api admin endpoint and verify confirmation email is sent ## Review Checklist - [x] Passed automated review-fix loop - [x] No secrets committed - [x] No unnecessary file changes - [x] Commit messages are descriptive ## Related - Closes #6

forgejo_admin added 1 commit

2026-03-24 18:44:47 +00:00

fix: insert outbox event after contract signing for confirmation email f2ed1babe3

The sign endpoint updated the player record but never created an outbox
event, so basketball-api's outbox worker never sent the confirmation
email with GroupMe share link. Expand the initial SELECT to include
name and parent_id, then INSERT a contract_signed outbox event after
the player UPDATE. Also add a fire-and-forget HTTP call to trigger
immediate outbox processing (gracefully fails if admin auth blocks it).

Closes #6

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

forgejo_admin commented

2026-03-24 18:45:22 +00:00

Author

Owner

Review -- LGTM

Reviewed the diff against the outbox worker in basketball-api/src/basketball_api/services/outbox.py and the migration in 018_add_groupme_and_outbox.py.

Verified:

SELECT expansion adds name and parent_id -- matches what _handle_contract_signed reads from the payload
Outbox INSERT matches the migration schema exactly (tenant_id, event_type, payload, status, created_at)
Payload shape (player_id, player_name, team_id, parent_id) matches the outbox worker's expected keys
Fire-and-forget fetch has proper .catch() to prevent unhandled rejection; comment correctly notes admin auth will block it and cron is the reliable path
No other behavior modified -- MinIO upload, player UPDATE, response format unchanged
npm run build and npm test (12 tests) both pass

No fixes needed.

## Review -- LGTM Reviewed the diff against the outbox worker in `basketball-api/src/basketball_api/services/outbox.py` and the migration in `018_add_groupme_and_outbox.py`. **Verified:** - SELECT expansion adds `name` and `parent_id` -- matches what `_handle_contract_signed` reads from the payload - Outbox INSERT matches the migration schema exactly (tenant_id, event_type, payload, status, created_at) - Payload shape (`player_id`, `player_name`, `team_id`, `parent_id`) matches the outbox worker's expected keys - Fire-and-forget fetch has proper `.catch()` to prevent unhandled rejection; comment correctly notes admin auth will block it and cron is the reliable path - No other behavior modified -- MinIO upload, player UPDATE, response format unchanged - `npm run build` and `npm test` (12 tests) both pass No fixes needed.

forgejo_admin commented

2026-03-24 18:48:14 +00:00

Author

Owner

PR #8 Review

DOMAIN REVIEW

Stack: SvelteKit (adapter-node) + TypeScript + pg (raw SQL) + MinIO S3 SDK. Server-side API route, no frontend changes.

Outbox pattern correctness: The INSERT payload fields (player_id, player_name, team_id, parent_id) align with what basketball-api/src/basketball_api/services/outbox.py expects in _handle_contract_signed(). The outbox table schema (tenant_id, event_type, payload, status, created_at) matches the migration in 018_add_groupme_and_outbox.py. Event type contract_signed is a recognized enum value. The pattern is sound.

Fire-and-forget design: The .catch() pattern on the fetch is appropriate -- the comment correctly documents that the cron worker is the reliability mechanism and this is just an optimization. Good.

BLOCKERS

1. No transaction wrapping -- UPDATE and INSERT can diverge
src/routes/contract/[token]/sign/+server.ts lines 74-98

The UPDATE players (line 74) and INSERT INTO outbox (line 94) are separate pool.query() calls without an explicit transaction. pg.Pool auto-commits each query individually. If the INSERT fails after the UPDATE succeeds, the contract is marked signed but no outbox event exists -- the confirmation email never sends and there is no recovery path. These two operations must be atomic.

Fix: wrap lines 74-98 in a client-level transaction:

const client = await pool.connect();
try {
    await client.query('BEGIN');
    // UPDATE players ...
    // INSERT INTO outbox ...
    await client.query('COMMIT');
} catch (err) {
    await client.query('ROLLBACK');
    throw err;
} finally {
    client.release();
}

2. Null parent_id will crash the outbox worker
src/routes/contract/[token]/sign/+server.ts line 91

The Player type defines parent_id: number | null. If a player has no parent assigned, parent_id: null gets serialized into the outbox payload. The basketball-api outbox worker then calls db.query(Parent).filter(Parent.id == payload["parent_id"]) with None, which will either return no result or behave unexpectedly, causing the event to be marked failed. The sign endpoint should validate that parent_id is not null before inserting the outbox event, or the outbox worker needs a null guard. Since this PR owns the INSERT, it should guard here.

3. Hardcoded internal service URL without env var fallback
src/routes/contract/[token]/sign/+server.ts line 103

fetch('http://basketball-api.basketball-api.svc.cluster.local:8000/admin/process-outbox?tenant_id=1', {

The db.ts and minio.ts modules follow the pattern of process.env.X || 'default'. This new URL is fully hardcoded with no env var override. This makes local development and testing impossible without the k8s DNS. Should follow the existing pattern:

const BASKETBALL_API_URL = process.env.BASKETBALL_API_URL || 'http://basketball-api.basketball-api.svc.cluster.local:8000';

4. No test coverage for new functionality
The PR adds two new behaviors (outbox INSERT + fire-and-forget fetch) with zero test coverage. The existing 12 tests in tests/validation.test.ts only cover input validation. There are no integration or unit tests for the outbox event creation, payload structure, or error handling paths.

At minimum, tests should cover:

Outbox row is created with correct event_type and payload structure after signing
Transaction atomicity (if UPDATE succeeds but INSERT fails, both roll back)
Null parent_id handling

NITS

1. Hardcoded tenant_id = 1
Lines 96 and 103 both hardcode tenant_id = 1. This is likely fine for now (single-tenant system), but worth extracting to a constant at the top of the file for when multi-tenancy arrives. At minimum, a // TODO: multi-tenant comment would signal intent.

2. player_name in payload is redundant
The outbox worker re-fetches the player from the database by player_id (line 62 of outbox.py) and uses player.name from that query, not from the payload. Including player_name in the payload is harmless but misleading -- it suggests the worker uses it. Consider removing it to avoid confusion, or have the worker use it directly instead of re-querying.

SOP COMPLIANCE

Branch named after issue: 6-fix-contract-sign-outbox-event references issue #6
PR body has Summary, Changes, Test Plan, Related sections
Related references plan slug: PR references Closes #6 but no plan slug. Acceptable if this is standalone board work without a plan.
No secrets committed: no API keys, passwords, or .env files in diff
No unnecessary file changes: single file changed, tightly scoped to the bug fix
Commit messages are descriptive

PROCESS OBSERVATIONS

Change failure risk: MEDIUM. The lack of transaction atomicity means a partial-write failure (signed contract, no email) would be silent and require manual DB intervention to fix. The fix is straightforward.
Deployment frequency: No impact. Single-file fix, clean diff.
Issue #5 overlap: The pre-existing DRY violation (inline validation in +server.ts duplicating validation.ts) is tracked in issue #5 and is NOT introduced by this PR. Not blocking here, but should be addressed soon.
Issue #7: The E2E validation issue (#7) covers the manual test plan items that are unchecked in this PR. Good traceability.

VERDICT: NOT APPROVED

Four blockers found. The transaction atomicity gap (blocker 1) is the highest risk -- it creates a silent failure mode where contracts appear signed but no confirmation email sends. The null parent_id guard (blocker 2) will crash the downstream worker. The hardcoded URL (blocker 3) breaks the env var pattern used by every other service connector in this codebase. The missing tests (blocker 4) are required per review criteria.

## PR #8 Review ### DOMAIN REVIEW **Stack**: SvelteKit (adapter-node) + TypeScript + pg (raw SQL) + MinIO S3 SDK. Server-side API route, no frontend changes. **Outbox pattern correctness**: The INSERT payload fields (`player_id`, `player_name`, `team_id`, `parent_id`) align with what `basketball-api/src/basketball_api/services/outbox.py` expects in `_handle_contract_signed()`. The outbox table schema (tenant_id, event_type, payload, status, created_at) matches the migration in `018_add_groupme_and_outbox.py`. Event type `contract_signed` is a recognized enum value. The pattern is sound. **Fire-and-forget design**: The `.catch()` pattern on the fetch is appropriate -- the comment correctly documents that the cron worker is the reliability mechanism and this is just an optimization. Good. ### BLOCKERS **1. No transaction wrapping -- UPDATE and INSERT can diverge** `src/routes/contract/[token]/sign/+server.ts` lines 74-98 The `UPDATE players` (line 74) and `INSERT INTO outbox` (line 94) are separate `pool.query()` calls without an explicit transaction. `pg.Pool` auto-commits each query individually. If the INSERT fails after the UPDATE succeeds, the contract is marked `signed` but no outbox event exists -- the confirmation email never sends and there is no recovery path. These two operations must be atomic. Fix: wrap lines 74-98 in a client-level transaction: ``` const client = await pool.connect(); try { await client.query('BEGIN'); // UPDATE players ... // INSERT INTO outbox ... await client.query('COMMIT'); } catch (err) { await client.query('ROLLBACK'); throw err; } finally { client.release(); } ``` **2. Null `parent_id` will crash the outbox worker** `src/routes/contract/[token]/sign/+server.ts` line 91 The `Player` type defines `parent_id: number | null`. If a player has no parent assigned, `parent_id: null` gets serialized into the outbox payload. The basketball-api outbox worker then calls `db.query(Parent).filter(Parent.id == payload["parent_id"])` with `None`, which will either return no result or behave unexpectedly, causing the event to be marked `failed`. The sign endpoint should validate that `parent_id` is not null before inserting the outbox event, or the outbox worker needs a null guard. Since this PR owns the INSERT, it should guard here. **3. Hardcoded internal service URL without env var fallback** `src/routes/contract/[token]/sign/+server.ts` line 103 ``` fetch('http://basketball-api.basketball-api.svc.cluster.local:8000/admin/process-outbox?tenant_id=1', { ``` The `db.ts` and `minio.ts` modules follow the pattern of `process.env.X || 'default'`. This new URL is fully hardcoded with no env var override. This makes local development and testing impossible without the k8s DNS. Should follow the existing pattern: ``` const BASKETBALL_API_URL = process.env.BASKETBALL_API_URL || 'http://basketball-api.basketball-api.svc.cluster.local:8000'; ``` **4. No test coverage for new functionality** The PR adds two new behaviors (outbox INSERT + fire-and-forget fetch) with zero test coverage. The existing 12 tests in `tests/validation.test.ts` only cover input validation. There are no integration or unit tests for the outbox event creation, payload structure, or error handling paths. At minimum, tests should cover: - Outbox row is created with correct event_type and payload structure after signing - Transaction atomicity (if UPDATE succeeds but INSERT fails, both roll back) - Null parent_id handling ### NITS **1. Hardcoded `tenant_id = 1`** Lines 96 and 103 both hardcode `tenant_id = 1`. This is likely fine for now (single-tenant system), but worth extracting to a constant at the top of the file for when multi-tenancy arrives. At minimum, a `// TODO: multi-tenant` comment would signal intent. **2. `player_name` in payload is redundant** The outbox worker re-fetches the player from the database by `player_id` (line 62 of `outbox.py`) and uses `player.name` from that query, not from the payload. Including `player_name` in the payload is harmless but misleading -- it suggests the worker uses it. Consider removing it to avoid confusion, or have the worker use it directly instead of re-querying. ### SOP COMPLIANCE - [x] Branch named after issue: `6-fix-contract-sign-outbox-event` references issue #6 - [x] PR body has Summary, Changes, Test Plan, Related sections - [ ] Related references plan slug: PR references `Closes #6` but no plan slug. Acceptable if this is standalone board work without a plan. - [x] No secrets committed: no API keys, passwords, or .env files in diff - [x] No unnecessary file changes: single file changed, tightly scoped to the bug fix - [x] Commit messages are descriptive ### PROCESS OBSERVATIONS - **Change failure risk**: MEDIUM. The lack of transaction atomicity means a partial-write failure (signed contract, no email) would be silent and require manual DB intervention to fix. The fix is straightforward. - **Deployment frequency**: No impact. Single-file fix, clean diff. - **Issue #5 overlap**: The pre-existing DRY violation (inline validation in `+server.ts` duplicating `validation.ts`) is tracked in issue #5 and is NOT introduced by this PR. Not blocking here, but should be addressed soon. - **Issue #7**: The E2E validation issue (#7) covers the manual test plan items that are unchecked in this PR. Good traceability. ### VERDICT: NOT APPROVED Four blockers found. The transaction atomicity gap (blocker 1) is the highest risk -- it creates a silent failure mode where contracts appear signed but no confirmation email sends. The null `parent_id` guard (blocker 2) will crash the downstream worker. The hardcoded URL (blocker 3) breaks the env var pattern used by every other service connector in this codebase. The missing tests (blocker 4) are required per review criteria.

forgejo_admin referenced this pull request from a commit

2026-03-24 18:50:33 +00:00

fix: wrap sign endpoint DB writes in transaction, guard null parent_id, env-configure API URL

forgejo_admin added 1 commit

2026-03-24 18:50:33 +00:00

fix: wrap sign endpoint DB writes in transaction, guard null parent_id, env-configure API URL 92207bb86c

QA blockers from PR #8 review:
- Wrap UPDATE players + INSERT outbox in a transaction so they are atomic
- Guard null parent_id before inserting outbox event (worker expects non-null)
- Use BASKETBALL_API_URL env var instead of hardcoded k8s DNS URL

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

forgejo_admin commented

2026-03-24 18:53:24 +00:00

Author

Owner

PR #8 Re-Review (Post Fix Round)

Previous review identified 3 blockers. Commit 92207bb addressed all 3. This is a re-review of the current state.

DOMAIN REVIEW

Tech stack: SvelteKit (adapter-node) + raw pg Pool + MinIO + PostgreSQL outbox pattern.

Transaction correctness: The pool.connect() / BEGIN / COMMIT / ROLLBACK / finally { client.release() } pattern at lines 76-118 is textbook correct. The comment explaining why MinIO upload is intentionally outside the transaction is helpful and accurate -- an orphaned signature PNG is harmless, but a signed player with no outbox event is the actual bug this PR fixes.

Null guard on parent_id: The if (player.parent_id) guard at line 95 correctly prevents inserting an outbox event when parent_id is null. The else branch logs a console.warn, which is appropriate -- the basketball-api outbox worker would fail on null parent_id anyway (it does db.query(Parent).filter(Parent.id == payload["parent_id"])). Defensive and correct.

Outbox INSERT column alignment: Verified against migration 018_add_groupme_and_outbox.py. Columns (tenant_id, event_type, payload, status, created_at) match exactly. The id column is auto-increment, processed_at is nullable with no default -- both correctly omitted from the INSERT.

Outbox payload alignment: The worker (basketball_api.services.outbox._handle_contract_signed) expects player_id, parent_id, and team_id from the JSON payload. The PR sends all three plus player_name (extra, harmless -- the worker re-queries the player record).

Environment variable handling: BASKETBALL_API_URL reads from process.env with fallback to http://basketball-api.basketball-api.svc.cluster.local:8000. This matches the established pattern in src/lib/db.ts where all config uses env vars with in-cluster defaults. The env var is not in kustomize/overlays/prod/secrets.yaml but the fallback is correct for the cluster topology. Acceptable.

Fire-and-forget fetch: The .catch() on the fetch at line 130 prevents unhandled promise rejections. The admin endpoint requires auth (confirmed: require_admin dependency in basketball-api), so this call will likely 401 -- but the comment correctly notes the cron worker handles it regardless. This is a delivery optimization, not a correctness requirement.

BLOCKERS

None. All 3 previous blockers are resolved:

Transaction wrapping -- FIXED. Player UPDATE and outbox INSERT are atomic within BEGIN/COMMIT. ROLLBACK on error. Client released in finally block.
Null parent_id crash -- FIXED. Guarded with if (player.parent_id) before outbox INSERT. Warning logged on skip.
Hardcoded service URL -- FIXED. Reads process.env.BASKETBALL_API_URL with cluster-local fallback.

NITS

Hardcoded tenant_id=1 (line 104): The outbox INSERT uses VALUES (1, ...) for tenant_id. This is currently correct (single-tenant deployment), but if multi-tenancy ever happens, this becomes a bug. Low risk given the current architecture -- just noting it.
Extra payload field: player_name is included in the outbox JSON payload but the basketball-api worker does not use it (it re-queries the player). Not harmful, but slightly inconsistent. Could be useful for debugging outbox rows directly in Postgres, so arguably a feature.
CI pipeline missing npm test: The .woodpecker.yml only runs npm run build, not npm test. The 12 validation tests are not executed in CI. This is a pre-existing issue (tracked in issue #3/#5), not introduced by this PR, so not blocking here.

SOP COMPLIANCE

Branch named after issue: 6-fix-contract-sign-outbox-event references issue #6
PR body has Summary, Changes, Test Plan, Related sections
Related section references issue: Closes #6
Related section does not reference a plan slug (no plan exists for this bug fix -- appropriate for a standalone bug fix per kanban flow)
No secrets committed (checked .env* files, kustomize secrets use REPLACE_ME placeholders)
No unnecessary file changes (1 file changed, directly related to the bug)
Commit messages are descriptive

PROCESS OBSERVATIONS

Change failure risk: Low. The change is additive -- it adds an outbox INSERT and fire-and-forget trigger to an existing sign endpoint. The transaction wrapping actually reduces risk compared to the previous non-transactional code.
Test plan: The manual validation steps (deploy, sign contract, check outbox row, trigger processing) are appropriate for an integration-level bug fix. Unit testing the raw SQL endpoint would require mocking pg.Pool, which is not established in this codebase.
Deployment note: The BASKETBALL_API_URL env var should be added to kustomize/overlays/prod/secrets.yaml for explicitness, even though the fallback works. This is a nit, not a blocker.

VERDICT: APPROVED

## PR #8 Re-Review (Post Fix Round) Previous review identified 3 blockers. Commit `92207bb` addressed all 3. This is a re-review of the current state. ### DOMAIN REVIEW **Tech stack**: SvelteKit (adapter-node) + raw `pg` Pool + MinIO + PostgreSQL outbox pattern. **Transaction correctness**: The `pool.connect()` / `BEGIN` / `COMMIT` / `ROLLBACK` / `finally { client.release() }` pattern at lines 76-118 is textbook correct. The comment explaining why MinIO upload is intentionally outside the transaction is helpful and accurate -- an orphaned signature PNG is harmless, but a signed player with no outbox event is the actual bug this PR fixes. **Null guard on parent_id**: The `if (player.parent_id)` guard at line 95 correctly prevents inserting an outbox event when parent_id is null. The else branch logs a console.warn, which is appropriate -- the basketball-api outbox worker would fail on null parent_id anyway (it does `db.query(Parent).filter(Parent.id == payload["parent_id"])`). Defensive and correct. **Outbox INSERT column alignment**: Verified against migration `018_add_groupme_and_outbox.py`. Columns `(tenant_id, event_type, payload, status, created_at)` match exactly. The `id` column is auto-increment, `processed_at` is nullable with no default -- both correctly omitted from the INSERT. **Outbox payload alignment**: The worker (`basketball_api.services.outbox._handle_contract_signed`) expects `player_id`, `parent_id`, and `team_id` from the JSON payload. The PR sends all three plus `player_name` (extra, harmless -- the worker re-queries the player record). **Environment variable handling**: `BASKETBALL_API_URL` reads from `process.env` with fallback to `http://basketball-api.basketball-api.svc.cluster.local:8000`. This matches the established pattern in `src/lib/db.ts` where all config uses env vars with in-cluster defaults. The env var is not in `kustomize/overlays/prod/secrets.yaml` but the fallback is correct for the cluster topology. Acceptable. **Fire-and-forget fetch**: The `.catch()` on the fetch at line 130 prevents unhandled promise rejections. The admin endpoint requires auth (confirmed: `require_admin` dependency in basketball-api), so this call will likely 401 -- but the comment correctly notes the cron worker handles it regardless. This is a delivery optimization, not a correctness requirement. ### BLOCKERS None. All 3 previous blockers are resolved: 1. **Transaction wrapping** -- FIXED. Player UPDATE and outbox INSERT are atomic within BEGIN/COMMIT. ROLLBACK on error. Client released in finally block. 2. **Null parent_id crash** -- FIXED. Guarded with `if (player.parent_id)` before outbox INSERT. Warning logged on skip. 3. **Hardcoded service URL** -- FIXED. Reads `process.env.BASKETBALL_API_URL` with cluster-local fallback. ### NITS 1. **Hardcoded tenant_id=1** (line 104): The outbox INSERT uses `VALUES (1, ...)` for `tenant_id`. This is currently correct (single-tenant deployment), but if multi-tenancy ever happens, this becomes a bug. Low risk given the current architecture -- just noting it. 2. **Extra payload field**: `player_name` is included in the outbox JSON payload but the basketball-api worker does not use it (it re-queries the player). Not harmful, but slightly inconsistent. Could be useful for debugging outbox rows directly in Postgres, so arguably a feature. 3. **CI pipeline missing `npm test`**: The `.woodpecker.yml` only runs `npm run build`, not `npm test`. The 12 validation tests are not executed in CI. This is a pre-existing issue (tracked in issue #3/#5), not introduced by this PR, so not blocking here. ### SOP COMPLIANCE - [x] Branch named after issue: `6-fix-contract-sign-outbox-event` references issue #6 - [x] PR body has Summary, Changes, Test Plan, Related sections - [x] Related section references issue: `Closes #6` - [ ] Related section does not reference a plan slug (no plan exists for this bug fix -- appropriate for a standalone bug fix per kanban flow) - [x] No secrets committed (checked `.env*` files, kustomize secrets use REPLACE_ME placeholders) - [x] No unnecessary file changes (1 file changed, directly related to the bug) - [x] Commit messages are descriptive ### PROCESS OBSERVATIONS - **Change failure risk**: Low. The change is additive -- it adds an outbox INSERT and fire-and-forget trigger to an existing sign endpoint. The transaction wrapping actually reduces risk compared to the previous non-transactional code. - **Test plan**: The manual validation steps (deploy, sign contract, check outbox row, trigger processing) are appropriate for an integration-level bug fix. Unit testing the raw SQL endpoint would require mocking pg.Pool, which is not established in this codebase. - **Deployment note**: The `BASKETBALL_API_URL` env var should be added to `kustomize/overlays/prod/secrets.yaml` for explicitness, even though the fallback works. This is a nit, not a blocker. ### VERDICT: APPROVED

forgejo_admin merged commit 56d81b79ce into main

2026-03-24 18:57:11 +00:00

forgejo_admin deleted branch 6-fix-contract-sign-outbox-event

2026-03-24 18:57:11 +00:00

forgejo_admin referenced this pull request from a commit

2026-03-24 18:57:13 +00:00

fix: insert outbox event after contract signing (#8)