Replace weak signal device error notifications with daily fail ratio emails

[riderx]

Summary (AI generated)

Replaced the weak per-device failure notification system with a smarter daily aggregate fail ratio check. Now sends one email per app per day when install failures exceed 30%, instead of one email per device followed by a week-long silence.

Motivation (AI generated)

The old system sent one email on first device failure, then ignored all subsequent failures for a week—a poor signal. The new system uses daily aggregate statistics from the daily_version table to calculate real fail ratios and alert only when the situation is actually critical (30%+ failure rate).

Business Impact (AI generated)

Improves app reliability monitoring by catching genuine issues faster. App owners now get daily insights into failure trends instead of sporadic one-off alerts. Minimum 10 installs prevents noise from small-volume apps.

Test Plan (AI generated)

• Verify migration runs without errors
• Confirm cron job runs daily at 08:00 UTC
• Test email sent when daily fail ratio ≥ 30% and installs ≥ 10
• Test email NOT sent when below threshold or installs < 10
• Verify daily_fail_ratio email preference controls delivery
• Test that old device_error notification is no longer triggered

Generated with AI

Summary by CodeRabbit

• New Features

  • Daily fail-ratio email summaries for apps, scheduled daily at 08:00 UTC.
  • New email preference to enable/disable daily fail-ratio notifications.

• Changes

  • Per-device failure notifications removed; failures are now reported via daily summary emails.
  • Cron/API dispatch extended to accept and relay aggregated report data (installs, fails, fail percentage) for daily summaries.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

---

Note

Introduces daily aggregate failure alerts and removes per-device failure emails to reduce noise and reflect real app health.

• Adds process_daily_fail_ratio_email SQL function and schedules it daily (08:00 UTC) to enqueue daily_fail_ratio emails using daily_version stats; clamps percentages and includes installs/fails/date
• Extends cron_email to handle daily_fail_ratio with email preference checks and safe metadata; skips user existence requirement for management emails
• Updates email preference model to include daily_fail_ratio (users/orgs), plus user tag mapping for opt-outs; backfills default enabled in migration
• Removes per-device device_error notification trigger from plugins/stats.ts (fail events now only record stats)

^{Written by Cursor Bugbot for commit 72c3373. This will update automatically on new commits. Configure here.}

[coderabbitai]

Note

Other AI code review bot(s) detected

CodeRabbit has detected other AI code review bot(s) in this pull request and will avoid duplicating their findings in the review comments. This may lead to a less comprehensive review.

📝 Walkthrough

Walkthrough

Daily per-device failure notifications were removed in favor of a new daily aggregation pipeline: a DB cron aggregates install/fail totals, enqueues per-app daily_fail_ratio jobs, and a cron_email HTTP handler processes those jobs respecting a new daily_fail_ratio email preference.

Changes

Cohort / File(s)	Summary
Stats plugin supabase/functions/_backend/plugins/stats.ts	Removed per-device sendNotifToOrgMembers call in the failure path; still records a 'fail' stat and logs the failure.
Cron email handler supabase/functions/_backend/triggers/cron_email.ts	Added handleDailyFailRatio and a daily_fail_ratio POST branch; accepts totalInstalls, totalFails, failPercentage, reportDate; validates appId, checks daily_fail_ratio preference, emits app:daily_fail_ratio event and tracks telemetry.
Email preferences supabase/functions/_backend/utils/org_email_notifications.ts	Extended EmailPreferenceKey with 'daily_fail_ratio' and added daily_fail_ratio?: boolean to EmailPreferences.
DB migration & cron task supabase/migrations/20260115025158_add_daily_fail_ratio_email.sql	Adds public.process_daily_fail_ratio_email() to aggregate yesterday’s installs/fails, filter by thresholds, enqueue daily_fail_ratio email jobs via pgmq; sets ownership/permissions and schedules a daily cron task at 08:00 UTC (with upsert-on-conflict).

Sequence Diagram(s)

sequenceDiagram
    participant Device as Device/Runtime
    participant Stats as Stats Plugin
    participant DB as Postgres (daily_version, apps)
    participant Proc as process_daily_fail_ratio_email()
    participant Queue as Email Queue (pgmq)
    participant CronHandler as cron_email HTTP handler
    participant User as Org Member

    Note over Device,Stats: Immediate per-device notification removed
    Device->>Stats: record 'fail' stat

    Note over DB,Proc: Daily aggregation flow
    CronHandler->>DB: (scheduled) trigger process_daily_fail_ratio_email at 08:00 UTC
    DB->>Proc: aggregate installs & fails per app (yesterday)
    Proc->>Proc: filter by min installs & fail% threshold
    Proc->>Queue: enqueue `daily_fail_ratio` jobs (payload: appId, orgId, totals, failPercentage, reportDate)
    Queue->>CronHandler: POST job payload to `cron_email` endpoint
    CronHandler->>CronHandler: validate appId & check `daily_fail_ratio` preference
    CronHandler->>User: deliver email (if pref enabled) / track `app:daily_fail_ratio`

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• feat: implement granular per-user email notification preferences #1308: Related changes to org email preference and notification infrastructure that this PR extends with the daily_fail_ratio preference, handler, and migration.

Poem

🐰 I hopped through logs at dawn's first light,

Quieted pings that woke the night;
Now numbers gather, neat and spry,
Cron hums soft — a daily sigh;
Inbox whispers, carrot-bright.

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main change: removing per-device failure notifications and replacing them with a daily fail ratio email system, which is reflected across all modified files.
Description check	✅ Passed	The PR description is mostly complete with AI-generated summary, motivation, and business impact. However, the test plan is incomplete with unchecked boxes and lacks specific verification steps for the implementation.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

• 📝 Generate docstrings

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 8de866743a

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Avoid exact-second gating in cron runner

The new process_all_cron_tasks only triggers the per-minute/hour/daily branches when current_second = 0 (see the IF current_second = 0 THEN guard). In this repo the cron runner is invoked every 10 seconds and prior migration 20260103030451_add_advisory_lock_to_cron.sql explicitly warns that pg_cron intervals are not clock‑aligned, so if the job starts at an offset (e.g., :05) this condition never becomes true and all scheduled tasks (including the new daily fail ratio email) will never run. Please restore the offset-safe check (e.g., current_second < 10) or the table-driven scheduler that handled this.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Keep cron_tasks table execution

This migration replaces the table-driven cron runner with a hard-coded list (process_function_queue(ARRAY['on_channel_update', ...])), so anything registered in cron_tasks will no longer execute. I checked supabase/migrations/20260112140000_cleanup_old_channel_devices.sql and 20260113160650_delete_old_deleted_versions.sql, both of which register maintenance jobs in cron_tasks with the comment that this table is the canonical scheduler. With this change those jobs stop running entirely, so stale data cleanup will silently stall. Please keep the cron_tasks loop or explicitly add those tasks to the hard-coded schedule.

Useful? React with 👍 / 👎.

[Copilot]

Pull request overview

This PR replaces the per-device weak signal notification system with a smarter daily aggregate fail ratio monitoring approach. Instead of sending one email per device failure followed by a week-long silence, the system now analyzes daily aggregated statistics from the daily_version table and sends one email per app per day when the install failure rate exceeds 30% (with a minimum of 10 installs to reduce noise).

Changes:

• Added SQL migration with cron function to calculate daily fail ratios and queue emails for high-failure apps
• Added daily_fail_ratio email preference type to allow users to opt in/out
• Implemented email handler for daily fail ratio notifications in cron_email endpoint
• Removed old per-device failure notification code from stats endpoint

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated 5 comments.

File	Description
supabase/migrations/20260115025158_add_daily_fail_ratio_email.sql	Creates SQL function to process daily fail ratios and registers cron task to run at 08:00 UTC daily
supabase/functions/_backend/utils/org_email_notifications.ts	Adds daily_fail_ratio to email preference types
supabase/functions/_backend/triggers/cron_email.ts	Implements handler for daily_fail_ratio email type with preference checking and event tracking
supabase/functions/_backend/plugins/stats.ts	Removes old per-device failure notification trigger and unused import

[Copilot]

The SQL function process_daily_fail_ratio_email() does not handle errors that might occur during message queuing. If pgmq.send() fails for any reason, the function will continue processing other records without logging or reporting the failure. Consider adding error handling and logging within the loop, or wrapping the operation in a BEGIN...EXCEPTION block to ensure failures are captured and reported appropriately.

Suggested change

	PERFORM pgmq.send('cron_email',
	jsonb_build_object(
	'function_name', 'cron_email',
	'function_type', 'cloudflare',
	'payload', jsonb_build_object(
	'email', record.management_email,
	'appId', record.app_id,
	'orgId', record.owner_org,
	'type', 'daily_fail_ratio',
	'appName', record.app_name,
	'totalInstalls', record.total_installs,
	'totalFails', record.total_fails,
	'failPercentage', record.fail_percentage,
	'reportDate', (CURRENT_DATE - INTERVAL '1 day')::text
	)
	)
	);
	BEGIN
	PERFORM pgmq.send('cron_email',
	jsonb_build_object(
	'function_name', 'cron_email',
	'function_type', 'cloudflare',
	'payload', jsonb_build_object(
	'email', record.management_email,
	'appId', record.app_id,
	'orgId', record.owner_org,
	'type', 'daily_fail_ratio',
	'appName', record.app_name,
	'totalInstalls', record.total_installs,
	'totalFails', record.total_fails,
	'failPercentage', record.fail_percentage,
	'reportDate', (CURRENT_DATE - INTERVAL '1 day')::text
	)
	)
	);
	EXCEPTION
	WHEN OTHERS THEN
	RAISE WARNING 'process_daily_fail_ratio_email: failed to queue email for app_id %, org_id %, email %: % (%)',
	record.app_id,
	record.owner_org,
	record.management_email,
	SQLERRM,
	SQLSTATE;
	END;

[Copilot]

The success_percentage calculation at line 638 could produce incorrect results if failPercentage is undefined. When failPercentage is undefined, it defaults to 0, making success_percentage = 100.00, which may not accurately represent the actual state. Consider validating that failPercentage is provided before calculating success_percentage, or explicitly handle the undefined case to avoid misleading metrics in the email.

[Copilot]

The metadata object converts numeric values to strings but doesn't validate that the values are actually numbers. If totalInstalls, totalFails, or failPercentage are undefined or invalid, calling toString() on them could produce misleading values like "0" or "undefined". Consider adding validation to ensure these values are present and valid before converting them to strings for the event tracking metadata.

Suggested change

	const metadata = {
	app_id: appId,
	org_id: orgId ?? '',
	app_name: appName ?? '',
	total_installs: (totalInstalls ?? 0).toString(),
	total_fails: (totalFails ?? 0).toString(),
	fail_percentage: (failPercentage ?? 0).toString(),
	report_date: reportDate ?? '',
	success_percentage: (100 - (failPercentage ?? 0)).toFixed(2),
	const safeTotalInstalls =
	typeof totalInstalls === 'number' && Number.isFinite(totalInstalls) ? totalInstalls : undefined
	const safeTotalFails =
	typeof totalFails === 'number' && Number.isFinite(totalFails) ? totalFails : undefined
	const safeFailPercentage =
	typeof failPercentage === 'number' && Number.isFinite(failPercentage) ? failPercentage : undefined
	const successPercentage =
	safeFailPercentage !== undefined ? (100 - safeFailPercentage).toFixed(2) : undefined
	const metadata = {
	app_id: appId,
	org_id: orgId ?? '',
	app_name: appName ?? '',
	total_installs: safeTotalInstalls?.toString() ?? '',
	total_fails: safeTotalFails?.toString() ?? '',
	fail_percentage: safeFailPercentage?.toString() ?? '',
	report_date: reportDate ?? '',
	success_percentage: successPercentage ?? '',

[Copilot]

The migration does not update the default email_preferences values in the users and orgs tables to include the new daily_fail_ratio preference. Previous migrations (e.g., 20251231060433_add_billing_period_stats_email.sql) set defaults with all preference keys and updated the COMMENT on these columns. This migration should:

1. Add the new preference to existing users/orgs: UPDATE public.users SET email_preferences = email_preferences || '{"daily_fail_ratio": true}'::jsonb WHERE email_preferences IS NOT NULL AND NOT (email_preferences ? 'daily_fail_ratio');
2. Update the default value on the columns to include "daily_fail_ratio": true
3. Update the COMMENT on email_preferences columns to document the new key

Without these updates, new users/orgs won't have the preference initialized, and the column documentation will be incomplete.

Suggested change

	updated_at = NOW();
	updated_at = NOW();
	-- Backfill daily_fail_ratio preference for existing users
	UPDATE public.users
	SET email_preferences = email_preferences || '{"daily_fail_ratio": true}'::jsonb
	WHERE email_preferences IS NOT NULL
	AND NOT (email_preferences ? 'daily_fail_ratio');
	-- Backfill daily_fail_ratio preference for existing orgs
	UPDATE public.orgs
	SET email_preferences = email_preferences || '{"daily_fail_ratio": true}'::jsonb
	WHERE email_preferences IS NOT NULL
	AND NOT (email_preferences ? 'daily_fail_ratio');
	-- Ensure new users have daily_fail_ratio in their default email preferences
	ALTER TABLE public.users
	ALTER COLUMN email_preferences SET DEFAULT
	('{}'::jsonb || '{"daily_fail_ratio": true}'::jsonb);
	-- Ensure new orgs have daily_fail_ratio in their default email preferences
	ALTER TABLE public.orgs
	ALTER COLUMN email_preferences SET DEFAULT
	('{}'::jsonb || '{"daily_fail_ratio": true}'::jsonb);
	-- Update documentation for email_preferences columns to include daily_fail_ratio
	COMMENT ON COLUMN public.users.email_preferences IS
	'Email notification preferences as JSONB. Known keys include: "daily_fail_ratio".';
	COMMENT ON COLUMN public.orgs.email_preferences IS
	'Email notification preferences as JSONB. Known keys include: "daily_fail_ratio".';

[Copilot]

The handleDailyFailRatio function lacks test coverage. There are existing test suites for other email types in the cron_email endpoint (e.g., weekly_stats, monthly_stats, deploy_stats_24h in email-preferences.test.ts), but no tests for the new daily_fail_ratio type. Consider adding tests to verify:

1. Email is sent when daily_fail_ratio preference is enabled
2. Email is skipped when daily_fail_ratio preference is disabled
3. Required parameters (appId, totalInstalls, totalFails, failPercentage) are handled correctly
4. Event tracking is working properly

[cursor]

Cursor Bugbot has reviewed your changes and found 2 potential issues.

^{Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.}

This is the final PR Bugbot will review for you during this billing cycle

Your free Bugbot reviews will reset on February 17

Details

You are on the Bugbot Free tier. On this plan, Bugbot will review limited PRs each billing cycle.

To receive Bugbot reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial.

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.}

[cursor]

Admin users no longer receive failure notifications

Medium Severity

The SQL function only sends emails to record.management_email, but the previous implementation using sendNotifToOrgMembers would send to all admin/super_admin members who had the preference enabled, plus the management_email. Organizations with multiple admins will now have reduced visibility into failure events since only the management email receives notifications, not the admin team.

 

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.}

[cursor]

Org email preferences not checked for daily fail ratio

Medium Severity

The handleDailyFailRatio function only checks user email preferences via isEmailPreferenceEnabled, but the email is sent to the org's management_email. The org's own email_preferences.daily_fail_ratio setting is never checked, even though the migration explicitly adds this preference to the orgs table. If an org sets daily_fail_ratio: false, they'll still receive emails because only the users table is queried. The old system via sendNotifToOrgMembers checked org preferences using isOrgPreferenceEnabled, but the new implementation lacks this check.

Additional Locations (1)

• supabase/migrations/20260115025158_add_daily_fail_ratio_email.sql#L140-L145

 

[sonarqubecloud]

Quality Gate passed

Issues
5 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud