Add CI and update hosted project docs

Author: LEANDERANTONY

.github/workflows/ci.yml

@@ -0,0 +1,29 @@
+name: CI
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Check out repository
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.11"
+
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r requirements.txt
+
+      - name: Run unit tests
+        run: |
+          python -m unittest tests.test_analysis_store tests.test_report_builder tests.test_exporters tests.test_repo_checks tests.test_github_auth tests.test_github_client tests.test_openai_service

.gitignore

@@ -225,3 +225,4 @@ playwright-smoke.pdf
 docs/recordings/full_app_workflow.mp4
 .tmp.drivedownload/
 .tmp.driveupload/
+tmp_frames/

DEVLOG.md

@@ -198,13 +198,21 @@ Hardened the hosted Streamlit experience around GitHub sign-in and report export
 - kept repository-audit expander headers visually stable after interaction in the multi-repo report view
 - changed PDF export so the expensive PDF generation starts only when the user clicks the download button instead of when they merely switch the format selector
 
+## March 11, 2026 - Hosted Deployment and Baseline CI
+
+Closed the first public deployment loop and added the initial repository-quality automation:
+
+- documented and configured the Streamlit Community Cloud deployment path with a tracked secrets template
+- deployed the live app to `portfolio-reviewer-agent.streamlit.app`
+- updated hosted OAuth/runtime behavior to work with Streamlit Cloud's external navigation model
+- added a GitHub Actions workflow that installs dependencies and runs the current unit-test suite on pushes and pull requests
+- refreshed README status/roadmap wording so it reflects the hosted app and the shift toward GitHub-side polish
+
 ---
 
 ## Next Steps
 
-- deployment setup for public usage
-- final deployment-oriented configuration and secrets hardening
-- update the GitHub OAuth callback URL and verify browser sign-in on the deployed app
-- validate end-to-end hosted flows for single-repo, multi-repo, cache hit, force refresh, and export behavior
+- finish GitHub-side polish: topics, homepage/demo link, and optional badges
+- continue deployment hardening for hosted runtime edge cases such as Playwright availability and SQLite persistence constraints
 - decide whether SQLite remains sufficient for hosted single-instance use or needs to be replaced later
 - future product upgrade path: optional repository RAG / Q&A mode for deeper codebase exploration

README.md

@@ -2,6 +2,8 @@
 
 GitHub Portfolio Reviewer Agent is a Streamlit app that audits a GitHub profile or a selected set of repositories and turns the result into a recruiter-facing report.
 
+Live app: [portfolio-reviewer-agent.streamlit.app](https://portfolio-reviewer-agent.streamlit.app)
+
 The app combines:
 
 - GitHub API metadata and repository content checks
@@ -108,6 +110,7 @@ For portfolio-level analysis, the app also:
 - HTML/CSS PDF rendering via Playwright with a ReportLab fallback path
 - Graceful fallback and warning handling for GitHub, OAuth, OpenAI, and export failures
 - Parallelized GitHub repo-detail fetching with retry handling for transient API failures
+- GitHub Actions CI for automated unit-test validation on pushes and pull requests
 
 ## Scoring Model
 
@@ -341,8 +344,8 @@ venv\Scripts\python.exe -m unittest tests.test_analysis_store tests.test_report_
 
 ## Roadmap
 
-- deployment setup for public usage
 - hosted persistence/secrets strategy for multi-instance deployment
+- GitHub-side polish such as repo topics, homepage/demo link, and optional status badges
 - optional repository Q&A / RAG mode for deeper codebase exploration
 - deeper export branding and report theming
 
@@ -354,4 +357,4 @@ venv\Scripts\python.exe -m unittest tests.test_analysis_store tests.test_report_
 
 ## Status
 
-This repository is now beyond the initial MVP stage. The core audit pipeline, scoped analysis flow, persistent analysis caching, deterministic report generation, export flow, polished Streamlit interface, public-only GitHub OAuth sign-in, cache-aware UX, retry-aware GitHub fetching, and broader failure-path coverage are implemented. The next major product milestone is deployment hardening.
+This repository is now beyond the initial MVP stage. The core audit pipeline, scoped analysis flow, persistent analysis caching, deterministic report generation, export flow, polished Streamlit interface, public-only GitHub OAuth sign-in, cache-aware UX, retry-aware GitHub fetching, broader failure-path coverage, hosted Streamlit deployment, and baseline GitHub Actions CI are implemented. The next major product milestone is GitHub-side polish and longer-term hosting hardening.