#!/bin/bash
set -euo pipefail

cd /Users/x/websafe
source /Users/x/websafe/scripts/load-local-env.sh
LOG_DIR="/Users/x/websafe/08-threat-intel/generated/logs"
mkdir -p "$LOG_DIR"
STAMP="$(date '+%Y%m%d-%H%M%S')"
exec >> "$LOG_DIR/nightly-$STAMP.log" 2>&1

run_pr() {
  if [[ "${WEBSAFE_PR_MODE:-auto}" == "skip" ]]; then
    echo "[nightly] PR skipped by WEBSAFE_PR_MODE=skip"
  elif [[ "${WEBSAFE_PR_MODE:-auto}" == "dry-run" || -z "${GITEA_TOKEN:-}" ]]; then
    python3 /Users/x/websafe/scripts/intel/main.py open-pr --dry-run
  else
    python3 /Users/x/websafe/scripts/intel/main.py open-pr
  fi
}

echo "[nightly] $(date -u '+%Y-%m-%dT%H:%M:%SZ') starting"
python3 /Users/x/websafe/scripts/intel/main.py ingest --since last-success
python3 /Users/x/websafe/scripts/lab/main.py run-batch --limit "${WEBSAFE_NIGHTLY_LIMIT:-25}"
python3 /Users/x/websafe/scripts/intel/main.py render
python3 /Users/x/websafe/scripts/intel/main.py validate
run_pr