Skip to content

⚑ Bolt: Optimize dashboard and SPRS endpoints with selective column fetching #149

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
AGI-Corporation wants to merge 4 commits into
base: main
Choose a base branch
from
Draft

⚑ Bolt: Optimize dashboard and SPRS endpoints with selective column fetching #149

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
dc8ea97
⚑ Bolt: Optimize dashboard and SPRS endpoints with selective column f…
AGI-Corporation Apr 12, 2026
6c135d6
⚑ Bolt: Optimize dashboard and SPRS endpoints with selective column f…
AGI-Corporation Apr 12, 2026
8f52b03
⚑ Bolt: Optimize dashboard and SPRS endpoints with selective column f…
AGI-Corporation Apr 12, 2026
39df45e
⚑ Bolt: Optimize summary and report endpoints with selective column f…
AGI-Corporation Apr 12, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
18 changes: 16 additions & 2 deletions backend/db/database.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -137,10 +137,13 @@ async def get_db():
await session.close()


async def get_latest_assessments(db: AsyncSession, control_ids: list[str] = None):
async def get_latest_assessments(
db: AsyncSession, control_ids: list[str] = None, columns: list = None
):
"""
Shared helper to fetch the latest AssessmentRecord for each control.
Optionally filtered by a list of control_ids for better performance.
Supports selective column fetching via the 'columns' parameter.
"""
sub_q = select(
AssessmentRecord.control_id,
Expand All @@ -152,11 +155,22 @@ async def get_latest_assessments(db: AsyncSession, control_ids: list[str] = None

sub_q = sub_q.subquery()

query = select(AssessmentRecord).join(
if columns:
# Ensure control_id is always included for the dictionary mapping
fetch_columns = list(columns)
if AssessmentRecord.control_id not in fetch_columns:
fetch_columns.append(AssessmentRecord.control_id)
query = select(*fetch_columns)
else:
query = select(AssessmentRecord)

query = query.join(
sub_q,
(AssessmentRecord.control_id == sub_q.c.control_id)
& (AssessmentRecord.assessment_date == sub_q.c.max_date),
)

result = await db.execute(query)
if columns:
return {a.control_id: a for a in result.all()}
return {a.control_id: a for a in result.scalars().all()}
32 changes: 26 additions & 6 deletions backend/routers/assessment.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -78,10 +78,21 @@ class SPRSResult(BaseModel):
description="Get overall CMMC compliance posture summary including implementation percentages, SPRS score, and breakdown by domain and level.",
)
async def get_compliance_dashboard(db: AsyncSession = Depends(get_db)):
result = await db.execute(select(ControlRecord))
controls = result.scalars().all()
# Optimized: Select only required columns
result = await db.execute(
select(
ControlRecord.id,
ControlRecord.domain,
ControlRecord.level,
ControlRecord.score_value,
)
)
controls = result.all()

assessments_map = await get_latest_assessments(db)
# Optimized: Select only required columns from assessments
assessments_map = await get_latest_assessments(
db, columns=[AssessmentRecord.control_id, AssessmentRecord.status]
)

by_domain = {}
by_level = {
Expand Down Expand Up @@ -157,10 +168,19 @@ async def get_compliance_dashboard(db: AsyncSession = Depends(get_db)):
description="Calculate the DoD Supplier Performance Risk System (SPRS) score based on current control implementation status. Score ranges from -203 to 110.",
)
async def calculate_sprs_score(db: AsyncSession = Depends(get_db)):
result = await db.execute(select(ControlRecord))
controls = result.scalars().all()
# Optimized: Select only required columns
result = await db.execute(
select(
ControlRecord.id,
ControlRecord.score_value,
)
)
controls = result.all()

assessments_map = await get_latest_assessments(db)
# Optimized: Select only required columns from assessments
assessments_map = await get_latest_assessments(
db, columns=[AssessmentRecord.control_id, AssessmentRecord.status]
)

sprs = 110
deductions_list = []
Expand Down
43 changes: 35 additions & 8 deletions backend/routers/reports.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -62,11 +62,22 @@ async def generate_ssp(
Generate a NIST SP 800-171 / CMMC 2.0 SSP in Markdown format.
Includes: system overview, control family summaries, implementation status.
"""
# Fetch latest assessments
assessments_dict = await get_latest_assessments(db)
# Optimized: Fetch only required columns for SSP summary
assessments_dict = await get_latest_assessments(
db,
columns=[
AssessmentRecord.control_id,
AssessmentRecord.status,
AssessmentRecord.confidence,
AssessmentRecord.notes,
AssessmentRecord.evidence_ids,
],
)
assessments = list(assessments_dict.values())
controls_result = await db.execute(select(ControlRecord))
controls = {c.id: c for c in controls_result.scalars().all()}
controls_result = await db.execute(
select(ControlRecord.id, ControlRecord.title, ControlRecord.score_value)
)
controls = {c.id: c for c in controls_result.all()}

# Count by status
status_counts = {
Expand Down Expand Up @@ -196,10 +207,23 @@ async def generate_poam(
Generate a Plan of Action & Milestones (POA&M) as CSV.
Includes all partial and not_implemented controls.
"""
assessments_dict = await get_latest_assessments(db)
# Optimized: Fetch only required columns for POAM
assessments_dict = await get_latest_assessments(
db,
columns=[
AssessmentRecord.control_id,
AssessmentRecord.status,
AssessmentRecord.confidence,
AssessmentRecord.next_review,
AssessmentRecord.assessor,
AssessmentRecord.notes,
],
)
assessments = list(assessments_dict.values())
controls_result = await db.execute(select(ControlRecord))
controls = {c.id: c for c in controls_result.scalars().all()}
controls_result = await db.execute(
select(ControlRecord.id, ControlRecord.title, ControlRecord.zt_pillar)
)
controls = {c.id: c for c in controls_result.all()}

output = io.StringIO()
writer = csv.writer(output)
Expand Down Expand Up @@ -259,7 +283,10 @@ async def get_dashboard(
db: AsyncSession = Depends(get_db),
):
"""Return compliance posture summary for dashboard rendering."""
assessments_dict = await get_latest_assessments(db)
# Optimized: Fetch only required columns for dashboard counts
assessments_dict = await get_latest_assessments(
db, columns=[AssessmentRecord.control_id, AssessmentRecord.status]
)
assessments = list(assessments_dict.values())

status_counts = {
Expand Down
Loading