Final Submission: Added SOC Dashboard and fixed UI explorer

Dockerfile

@@ -1,8 +1,8 @@
 FROM python:3.11-slim
 
-# System dependencies (docker.io for Docker-in-Docker sandbox)
+# System dependencies (docker.io for Docker-in-Docker sandbox, nginx for proxying)
 RUN apt-get update \
-    && apt-get install -y --no-install-recommends curl docker.io \
+    && apt-get install -y --no-install-recommends curl docker.io nginx gettext-base \
     && rm -rf /var/lib/apt/lists/*
 
 WORKDIR /app
@@ -18,6 +18,7 @@ COPY openenv.yaml .
 COPY pyproject.toml .
 COPY inference.py .
 COPY config.yaml .
+COPY nginx.conf /etc/nginx/nginx.conf
 
 # Copy and configure the startup script
 COPY start.sh .

openenv.yaml

@@ -2,8 +2,7 @@ name: PatchHawk
 version: 1.0.0
 spec_version: 1
 type: space
-runtime: fastapi
-app: server.app:app
+runtime: docker
 port: 7860
 description: Detect and patch supply-chain vulnerabilities in Python code.
 tags: [security, supply-chain, code-review, llm-agent]

server/app.py

@@ -1,18 +1,5 @@
 """
 PatchHawk OpenEnv server entry point.
-
-This file satisfies the ``openenv validate`` requirement for a
-``server/app.py`` module that exposes a ``main()`` function.
-
-Run directly:
-    python server/app.py
-    python server/app.py --port 7860
-
-Or via the project script:
-    server              (after pip install -e .)
-
-Or via openenv serve (Docker / deployment):
-    openenv serve --env patchhawk.agent.environment:PatchHawkEnv --port 7860
 """
 
 from __future__ import annotations
@@ -27,21 +14,14 @@ if _PROJECT_ROOT not in sys.path:
     sys.path.insert(0, _PROJECT_ROOT)
 
 from openenv.core import create_app
-
 from patchhawk.agent.environment import PatchHawkEnv
 from patchhawk.env_models import PatchHawkAction, PatchHawkObservation
-from fastapi.responses import HTMLResponse, StreamingResponse
-import httpx
-from starlette.requests import Request
-from starlette.background import BackgroundTask
-
 
 def _env_factory() -> PatchHawkEnv:
     """Factory callable for create_app — returns a fresh PatchHawkEnv instance."""
     scenarios_path = os.getenv("PATCHHAWK_SCENARIOS", "patchhawk/data/scenarios.json")
     return PatchHawkEnv(scenarios_path=scenarios_path, use_docker=False)
 
-
 def create_openenv_app():
     """Create the OpenEnv FastAPI application."""
     return create_app(
@@ -51,65 +31,13 @@ def create_openenv_app():
         env_name="PatchHawk",
     )
 
-
 app = create_openenv_app()
 
-# ── Streamlit Proxy Configuration ─────────────────────────────────────
-STREAMLIT_URL = "http://localhost:8501"
-
-@app.api_route("/{path:path}", methods=["GET", "POST", "PUT", "DELETE", "OPTIONS"])
-async def proxy_streamlit(request: Request, path: str):
-    """
-    Proxies all requests not handled by OpenEnv routes to the local Streamlit server.
-    This ensures the Streamlit Dashboard is the primary UI on port 7860.
-    """
-    # Skip proxying for OpenEnv specific routes so the grader still works
-    openenv_routes = ["reset", "step", "docs", "openapi.json", "web", "assets"]
-    if any(path.startswith(r) for r in openenv_routes) or path == "":
-        if path == "":
-             # Redirect root to Streamlit
-             pass
-        else:
-            # Let FastAPI handle it
-            return
-
-    client = httpx.AsyncClient(base_url=STREAMLIT_URL)
-    url = httpx.URL(path=request.url.path, query=request.url.query.encode("utf-8"))
-    
-    # Filter out headers that might cause issues with the proxy
-    headers = {k: v for k, v in request.headers.items() if k.lower() not in ["host", "connection"]}
-    
-    # Handle the request body
-    body = await request.body()
-    
-    # Forward the request to Streamlit
-    rp_resp = await client.request(
-        method=request.method,
-        url=url,
-        headers=headers,
-        content=body,
-        follow_redirects=True,
-    )
-
-    return StreamingResponse(
-        rp_resp.aiter_raw(),
-        status_code=rp_resp.status_code,
-        headers=dict(rp_resp.headers),
-        background=BackgroundTask(client.aclose)
-    )
-
-@app.get("/", response_class=HTMLResponse)
-async def root_redirect(request: Request):
-    """Force the root to proxy to Streamlit."""
-    return await proxy_streamlit(request, "")
-
-
 def main(port: int | None = None) -> None:
     """Start the PatchHawk OpenEnv server."""
     import uvicorn
 
     if port is None:
-        # Parse --port from CLI args
         args = sys.argv[1:]
         if "--port" in args:
             idx = args.index("--port")
@@ -121,6 +49,5 @@ def main(port: int | None = None) -> None:
     host = os.getenv("HOST", "0.0.0.0")
     uvicorn.run(app, host=host, port=port)
 
-
 if __name__ == "__main__":
     main()

start.sh

@@ -1,7 +1,11 @@
 #!/bin/bash
-# Start the OpenEnv API server (Hackathon Compliance)
-echo "Starting OpenEnv API server on port 7860..."
-uvicorn server.app:app --host 0.0.0.0 --port 7860 &
+
+API_PORT="${API_PORT:-8000}"
+PORT="${PORT:-7860}"
+
+# Start FastAPI on API_PORT
+echo "Starting OpenEnv API server on port ${API_PORT}..."
+uvicorn server.app:app --host 0.0.0.0 --port "${API_PORT}" &
 
 # Start the Streamlit Dashboard (User UI) in the background with Proxy-friendly settings
 echo "Starting Streamlit Dashboard on port 8501..."
@@ -13,7 +17,6 @@ streamlit run patchhawk/app/dashboard.py \
     --server.headless true \
     --browser.gatherUsageStats false &
 
-# Start the OpenEnv API server (Hackathon Compliance) on Port 7860
-# This server now PROXIES all UI requests to Streamlit on 8501
-echo "Starting OpenEnv API server on port 7860..."
-uvicorn server.app:app --host 0.0.0.0 --port 7860
+# Start Nginx in foreground on PORT
+echo "Starting Nginx reverse proxy on ${PORT}..."
+envsubst '${PORT}' < /etc/nginx/nginx.conf > /tmp/nginx.conf && nginx -c /tmp/nginx.conf -g "daemon off;"