rebase to main

.github/workflows/ci-default.yml

@@ -9,7 +9,7 @@ env:
   NODE_ENV: ${{ vars.NODE_ENV }}
   PLASMIC_PROJECT_ID: ${{ vars.PLASMIC_PROJECT_ID }}
   PLASMIC_PROJECT_API_TOKEN: ${{ vars.PLASMIC_PROJECT_API_TOKEN }}
-  NEXT_PUBLIC_DOMAIN: ${{ vars.NEXT_PUBLIC_DOMAIN }}
+  NEXT_PUBLIC_DOMAIN: "www.opensource.observer"
   NEXT_PUBLIC_DB_GRAPHQL_URL: ${{ vars.NEXT_PUBLIC_DB_GRAPHQL_URL }}
   OSO_API_KEY: ${{ secrets.OSO_API_KEY }}
   NEXT_PUBLIC_ALGOLIA_APPLICATION_ID: "test"
@@ -60,7 +60,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           # Check out pull request's HEAD commit instead of the merge commit to
           # prevent gitlint from failing due to too long commit message titles,
@@ -83,15 +83,15 @@ jobs:
             PUBLIC_VARS_TEST
 
       - name: Setup pnpm
-        uses: pnpm/action-setup@v2
+        uses: pnpm/action-setup@v4
         with:
           version: 9
           run_install: |
             - recursive: true
               args: [--frozen-lockfile, --strict-peer-dependencies]
 
       - name: Set up Node.js
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@v4
         with:
           node-version: "20.x"
           cache: "pnpm"
@@ -108,9 +108,9 @@ jobs:
           version: nightly-87bc53fc6c874bd4c92d97ed180b949e3a36d78c
 
       - name: Authenticate to google with a test-dummy user
-        uses: 'google-github-actions/auth@v2'
+        uses: "google-github-actions/auth@v2"
         with:
-          credentials_json: '${{ env.GOOGLE_TEST_DUMMY_CREDENTIALS_JSON }}'
+          credentials_json: "${{ env.GOOGLE_TEST_DUMMY_CREDENTIALS_JSON }}"
           create_credentials_file: true
 
       - name: Setup dbt profile
@@ -119,7 +119,7 @@ jobs:
 
       - name: Run supabase local
         run: |
-          bash .github/scripts/run-supabase-local.sh apps/frontend 
+          bash .github/scripts/run-supabase-local.sh apps/frontend
 
       - name: Check if algolia is empty, set the variable to some dummy value if it is
         shell: bash
@@ -139,7 +139,7 @@ jobs:
 
       - name: Lint
         run: |
-          pnpm lint 
+          pnpm lint
         # Always run this step so that all linting errors can be seen at once.
         if: always()
 

.github/workflows/deploy-dbt-docs.yml

@@ -0,0 +1,71 @@
+# NOTE: This name appears in GitHub's Checks API and in workflow's status badge.
+name: deploy-dbt-docs
+env:
+  CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }}
+  # Google variables
+  GOOGLE_PROJECT_ID: "opensource-observer"
+
+# Trigger the workflow when:
+on:
+  # A push occurs to one of the matched branches.
+  push:
+    branches:
+      - main
+    paths:
+      - warehouse/dbt/**
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+
+jobs:
+  build-deploy:
+    # NOTE: This name appears in GitHub's Checks API.
+    name: build-deploy
+    environment: indexer
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9
+          run_install: |
+            - recursive: true
+              args: [--frozen-lockfile, --strict-peer-dependencies]
+
+      - name: Set up Node.js 20
+        uses: actions/setup-node@v4
+        with:
+          cache: "pnpm"
+          node-version: "20.x"
+
+      - name: "Setup Python, Poetry and Dependencies"
+        uses: packetcoders/action-setup-cache-python-poetry@main
+        with:
+          python-version: 3.12
+          poetry-version: 1.7.1
+
+      - name: Login to google
+        uses: "google-github-actions/auth@v2"
+        with:
+          credentials_json: "${{ secrets.GOOGLE_CREDENTIALS_JSON }}"
+          create_credentials_file: true
+
+      - name: Setup dbt profile
+        run: |
+          bash .github/scripts/create-dbt-profile.sh ${GOOGLE_APPLICATION_CREDENTIALS}
+
+      - name: Build
+        run: pnpm build:dbt:docs
+
+      # This is necessary because wrangler tries to install at monorepo root
+      - run: echo "ignore-workspace-root-check=true" >> .npmrc
+
+      - name: Publish
+        uses: cloudflare/wrangler-action@v3
+        with:
+          apiToken: ${{ secrets.CLOUDFLARE_API_TOKEN }}
+          command: pages deploy target --project-name=models-opensource-observer

.github/workflows/deploy-docusaurus-docs.yml

@@ -0,0 +1,56 @@
+# NOTE: This name appears in GitHub's Checks API and in workflow's status badge.
+name: deploy-docusaurus-docs
+env:
+  CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }}
+  DOCS_URL: ${{ vars.DOCS_URL }}
+  DOCS_ALGOLIA_APP_ID: ${{ vars.DOCS_ALGOLIA_APP_ID }}
+  DOCS_ALGOLIA_API_KEY: ${{ vars.DOCS_ALGOLIA_API_KEY }}
+  DOCS_ALGOLIA_INDEX: ${{ vars.DOCS_ALGOLIA_INDEX }}
+  DOCS_SEGMENT_WRITE_KEY: ${{ vars.DOCS_SEGMENT_WRITE_KEY }}
+
+# Trigger the workflow when:
+on:
+  # A push occurs to one of the matched branches.
+  push:
+    branches:
+      - main
+    paths:
+      - apps/docs/**
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+
+jobs:
+  build-deploy:
+    # NOTE: This name appears in GitHub's Checks API.
+    name: build-deploy
+    environment: deploy
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9
+          run_install: |
+            - recursive: true
+              args: [--frozen-lockfile, --strict-peer-dependencies]
+
+      - name: Set up Node.js 20
+        uses: actions/setup-node@v4
+        with:
+          cache: "pnpm"
+          node-version: "20.x"
+
+      - name: Build
+        run: pnpm build:docs
+
+      - name: Publish
+        uses: cloudflare/wrangler-action@v3
+        with:
+          apiToken: ${{ secrets.CLOUDFLARE_API_TOKEN }}
+          workingDirectory: "apps/docs"
+          command: pages deploy build --project-name=docs-opensource-observer

.github/workflows/deploy-hasura.yml

@@ -27,24 +27,30 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 1
 
       - name: Setup pnpm
-        uses: pnpm/action-setup@v2
+        uses: pnpm/action-setup@v4
         with:
           version: 9
           run_install: |
             - recursive: true
               args: [--frozen-lockfile, --strict-peer-dependencies]
 
       - name: Set up Node.js 20
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@v4
         with:
           cache: "pnpm"
           node-version: "20.x"
 
+      - name: "Setup Python, Poetry and Dependencies"
+        uses: packetcoders/action-setup-cache-python-poetry@main
+        with:
+          python-version: 3.12
+          poetry-version: 1.7.1
+
       - name: Login to google
         uses: 'google-github-actions/auth@v2'
         with:
@@ -57,5 +63,6 @@ jobs:
 
       - name: Build
         run: pnpm build:hasura
+
       - name: Deploy
         run: pnpm deploy:hasura

.github/workflows/external-prs-handle-comment.yml

@@ -20,7 +20,7 @@ jobs:
     if: github.event.issue.pull_request && contains(fromJson('["OWNER", "MEMBER", "COLLABORATOR", "CONTRIBUTOR"]'), github.event.comment.author_association)
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 1
 

.github/workflows/refresh-test-credentials.yml

@@ -30,7 +30,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 1
 

.github/workflows/setup-external-pr-tools/action.yml

@@ -7,15 +7,15 @@ runs:
   using: "composite"
   steps:
     - name: Setup pnpm
-      uses: pnpm/action-setup@v2
+      uses: pnpm/action-setup@v4
       with:
         version: 9
         run_install: |
           - recursive: true
             args: [--frozen-lockfile, --strict-peer-dependencies]
 
     - name: Set up Node.js 20
-      uses: actions/setup-node@v3
+      uses: actions/setup-node@v4
       with:
         cache: "pnpm"
         node-version: "20.x"

.github/workflows/test-deploy-clean.yml

@@ -24,7 +24,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 1
 

.github/workflows/test-deploy-owners.yml

@@ -31,13 +31,13 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 1
 
       - name: Setup external pr tools
         uses: ./.github/workflows/setup-external-pr-tools
-      
+
       - name: Initialize check
         run: |
           cd ops/external-prs &&
@@ -48,9 +48,9 @@ jobs:
           echo "${{ github.event.pull_request.author_association }}"
 
       - name: Login to google
-        uses: 'google-github-actions/auth@v2'
+        uses: "google-github-actions/auth@v2"
         with:
-          credentials_json: '${{ secrets.GOOGLE_BQ_ADMIN_CREDENTIALS_JSON }}'
+          credentials_json: "${{ secrets.GOOGLE_BQ_ADMIN_CREDENTIALS_JSON }}"
           create_credentials_file: true
         if: ${{ contains(fromJson('["OWNER", "MEMBER", "COLLABORATOR", "CONTRIBUTOR"]'), github.event.pull_request.author_association) }}
 

.github/workflows/test-deploy/action.yml

@@ -46,7 +46,7 @@ runs:
     #     cd ops/external-prs && pnpm tools oso test-deploy is-eligible $GITHUB_OUTPUT
 
     - name: checkout the PR
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
       with:
         # Check out pull request's HEAD commit instead of the merge commit to
         # prevent gitlint from failing due to too long commit message titles,

.github/workflows/warehouse-meltano-ecosystems-ost.yml

@@ -28,7 +28,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 1
 

.github/workflows/warehouse-publish-docker-containers.yml

@@ -21,7 +21,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 1
 

.github/workflows/warehouse-run-data-pipeline.yml

@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 1
 

apps/docs/blog/2024-05-16-impact-metrics-rf4/index.md

@@ -26,7 +26,7 @@ The round is expected to receive applications from hundreds of projects building
 
 At Open Source Observer, our objective is to help the Optimism community arrive at up to 20 credible impact metrics that can be applied to projects with contracts on the Superchain.
 
-This page explains where the metrics come from and includes a working list of all metrics under consideration for badgeholders. We will update it regularly, at least until the start of voting (June 23), to reflect the evolution of metrics. The first version metrics was released on 2024-05-16 and the most recent version (below) was released on 2024-05-22.
+This page explains where the metrics come from and includes a working list of all metrics under consideration for badgeholders. We will update it regularly, at least until the start of voting (June 23), to reflect the evolution of metrics. The first version metrics was released on 2024-05-16 and the most recent version (below) was released on 2024-05-26.
 
 <!-- truncate -->
 
@@ -180,3 +180,9 @@ Recurring addresses are a proxy for recurring users. It is especially relevant t
 Count of trusted users who have interacted with the project in at least 3 separate months over the RF4 scope period (October 2023 - June 2024).
 
 Many crypto natives are curious to try out new protocols. But churn and user retention are major issues. Recurring users represent the most loyal and committed segment of a project's user base. This metric considers users who have interacted with a project over the course of at least three distinct calendar months during the RF4 scope period. Thus, it is intended to reflect sustained interest and ongoing engagement over time. A high count of recurring users signals strong project loyalty and a good user experience, and helps separate the fads from the future.
+
+### Power User Addresses
+
+Count of 'power user' addresses that have interacted with the project over the RF4 scope period (October 2023 - June 2024).
+
+This metric reflects the degree which a project has attracted attention from the most active and engaged users on the Superchain. A `power user` is defined as an address that has made at least 100 transactions, across at least 10 different projects, on at least 30 days, over the RF4 scope period. A project is counted by this metric if has at least one interaction from a power user. Power users are critical early adopters for the ecosystem.

apps/hasura/metadata/databases/cloudsql/tables/contracts_v1.yaml

@@ -0,0 +1,22 @@
+table:
+  name: contracts_v1
+  schema: public
+select_permissions:
+  - role: anonymous
+    permission:
+      columns: "*"
+      filter: {}
+      allow_aggregations: false
+    comment: ""
+  - role: user
+    permission:
+      columns: "*"
+      filter: {}
+      allow_aggregations: false
+    comment: ""
+  - role: developer
+    permission:
+      columns: "*"
+      filter: {}
+      allow_aggregations: true
+    comment: ""

apps/hasura/metadata/databases/cloudsql/tables/tables.yaml

@@ -2,6 +2,7 @@
 - "!include artifacts_v1.yaml"
 - "!include code_metrics_by_project_v1.yaml"
 - "!include collections_v1.yaml"
+- "!include contracts_v1.yaml"
 - "!include event_indexing_status_by_project_v1.yaml"
 - "!include event_types_v1.yaml"
 - "!include events_daily_to_artifact.yaml"