HARP Technical Walkthrough — Climacs IT Consulting

Step 1 — What Is HARP

Source-Grounded Reliability Intelligence

HARP indexes your Git-tracked operational docs (runbooks, RCAs, configs) and provides citation-required search and evidence packs when alerts fire. Every answer traces to a file path.

📋 Citation-Required

Every answer must cite a source file. Uncited claims are rejected — never fabricated.

👤 Human-Approved

HARP diagnoses but never fixes. Risky actions require human approval via Git commit.

📡 Outage-Mode Ready

CLI tools work offline — no API, no network, no database. Works from a local Git clone.

🔓 Content-Agnostic

Indexes any Git repo. Platform is separate from content. Fork and point at your docs.

Step 2 — Architecture

Live Components (VM .61)

Core Stage B services deployed and smoke-tested on a self-hosted Proxmox VM. Formal eval harness is Stage C.

Live

🔍 BM25 Search Engine

Zero-dependency full-text search. Indexes Markdown, YAML, shell scripts, text.

harp/core/search.py

Live

⚡ FastAPI Server

6 endpoints: health, stats, search, evidence-pack, audit, reindex. Async.

:8100

Live

📦 Evidence Generator

Alert payload → cited Markdown with action tiers and approval enforcement.

harp/evidence/generator.py

Live

📊 Metadata Audit

Scans docs for YAML frontmatter compliance. Reports full/partial/none/exempt.

harp/cli/harp_audit.py

Live

📈 Coverage Checker

Maps Prometheus alert rules to runbooks. Gaps explicitly surfaced.

harp/cli/harp_coverage.py

Live

🗄️ SQLite Manifest

Chunk-level content manifest for drift detection and stable citation IDs.

harp/cli/harp_manifest.py

Step 3 — Data Flow

Alert → Evidence Pack Pipeline

When a Prometheus alert fires, HARP searches, assembles evidence, classifies actions, and generates a cited pack — all in under 1 second.

🚨

Alert Fires

Prometheus

→

📡

Webhook

POST /evidence-pack

→

🔍

BM25 Search

Top-10 citations

→

⚖️

Tier Classify

R / P / X / C-X / C-F / D

→

📄

Evidence Pack

Cited Markdown

→

👤

Human Review

Approve via Git

Step 4 — Safety Model

Action Tier Classification

Every suggested action is classified by risk. Tier R is auto-safe. Tier P+ requires human approval. Tier D is forbidden.

🟢

R — Read

kubectl get, describe, logs

🟡

P — Patch

Rollout restart, delete pod

🟠

X — Mutate

kubectl apply, scale, helm

🔴

C-X — Cloud

Cloud resource mutation

🔴

C-F — Finance

Cost-impacting changes

⛔

D — Destroy

Forbidden by policy

Step 5 — API Reference

6 Endpoints (Live)

Method	Path	Purpose	Auth
`GET`	`/health`	Liveness probe	None
`GET`	`/stats`	Index statistics	None
`POST`	`/search`	Citation-first BM25 search	None (read-only)
`POST`	`/evidence-pack`	Alert → evidence pack	Localhost; bearer in B+
`POST`	`/audit/metadata`	Compliance audit	Localhost; bearer in B+
`POST`	`/reindex`	Rebuild BM25 index	Localhost; bearer in B+

Step 6 — Tech Stack

What Powers HARP

Layer	Technology	Status
Search	`BM25 (pure Python)`	✅ Live
API	`FastAPI + Uvicorn`	✅ Live
Schemas	`Pydantic 2 + JSON Schema`	✅ Live
Storage	`Git + Markdown + SQLite`	✅ Live
Monitoring	`Prometheus HA + AlertManager`	✅ Live
Runtime	`Python 3.12`	✅ Live
Embeddings	`Ollama (planned)`	🔮 Stage F
MCP Server	`Model Context Protocol`	🔮 Stage H

Step 7 — Security

Hardening Applied

🛡️ Path Traversal Prevention

Alert names slugified to [a-z0-9-]. Path containment verified before write.

🔒 No Path Leaks

API returns repo-relative paths only. Server layout never exposed.

⚡ Async Isolation

Blocking ops in asyncio.to_thread(). /health never freezes during audits.

🔑 CORS Restricted

Localhost-only defaults. No credentials. GET/POST only.

🆔 Request ID Tracing

UUID-based X-Request-ID on every request for audit trail.

🚫 Error Sanitization

500s return "Check server logs" — never raw exception strings.

Step 8 — Roadmap

Stages A → I

Each stage has exit criteria, not deadlines. No stage ships until the previous is verified.

A

Foundations

✅

B

Search API

✅

C

Eval Harness

Ingestion

—

E

Notifications

—

F

Local LLM

—

G

Hybrid RAG

—

H

MCP Server

—

I

Multi-Cluster

—

Stage B implemented. Formal eval harness pending (Stage C). 74/74 tests passing.

Step 9 — Content Model

6 JSON Schemas

HARP indexes a CONTENT DIRECTORY — any Git repo. The platform is separate from the content.

📋 Runbook

Operational procedures with symptoms, components, resolution steps.

runbook.schema.json

🔬 RCA

Root cause analysis with severity, root_cause, timeline.

rca.schema.json

🚨 Incident

Incident records with alert, affected_service, resolution.

incident.schema.json

📦 Evidence Pack

Generated: trigger, citations, diagnostics, approval status.

evidence-pack.schema.json

🛡️ Guardrail

Policy docs with scope, enforcement, compliance requirements.

guardrail.schema.json

📝 Review

Multi-agent review records with findings and scope.

review.schema.json

Summary

HARP is real, tested, and staged

74

Tests Passing

6

API Endpoints

6

JSON Schemas

21

Alert Rules Mapped

← View Business Version · HARP Project Hub · climacs.net

HARP — Reliability Intelligence

Source-Grounded Reliability Intelligence

📋 Citation-Required

👤 Human-Approved

📡 Outage-Mode Ready

🔓 Content-Agnostic

Live Components (VM .61)

🔍 BM25 Search Engine

⚡ FastAPI Server

📦 Evidence Generator

📊 Metadata Audit

📈 Coverage Checker

🗄️ SQLite Manifest

Alert → Evidence Pack Pipeline

Action Tier Classification

6 Endpoints (Live)

What Powers HARP

Hardening Applied

🛡️ Path Traversal Prevention

🔒 No Path Leaks

⚡ Async Isolation

🔑 CORS Restricted

🆔 Request ID Tracing

🚫 Error Sanitization

Stages A → I

6 JSON Schemas

📋 Runbook

🔬 RCA

🚨 Incident

📦 Evidence Pack

🛡️ Guardrail

📝 Review

HARP is real, tested, and staged