feat: charge helper (staging review test)

[adeelcentrox]

Demo PR to verify the python pipeline triggers correctly when targeting staging.

[github-actions]

Automated Code Review

Score: 🟢 100 / 100
Severities: 🔴 blocker=0 🟠 major=0 🟡 minor=0 🔵 nit=0
Dominant category: none

Category	Status
structure	🟢 pass
type_safety	🟢 pass
code_style	🟢 pass
security	🟢 pass
error_handling	🟢 pass
configuration	🟢 pass
api_design	🟢 pass
testing_patterns	⚪ skipped

No issues found. Code follows all applicable guidelines.

[github-actions]

Automated Code Review

Score: 🟢 100 / 100
Severities: 🔴 blocker=0 🟠 major=0 🟡 minor=0 🔵 nit=0
Dominant category: none

Category	Status
structure	🟢 pass
type_safety	🟢 pass
code_style	🟢 pass
security	🟢 pass
error_handling	🟢 pass
configuration	🟢 pass
api_design	🟢 pass
testing_patterns	⚪ skipped

No issues found. Code follows all applicable guidelines.

[github-actions]

Automated Code Review

Score: 🔴 0 / 100
Severities: 🔴 blocker=3 🟠 major=3 🟡 minor=0 🔵 nit=0
Dominant category: type_safety

Category	Status
structure	🔴 fail
type_safety	🔴 fail
code_style	🟢 pass
security	🔴 fail
error_handling	🔴 fail
configuration	🔴 fail
api_design	🟢 pass
testing_patterns	⚪ skipped

The change introduces several merge-blocking issues around security, type safety, and external-call resilience. The dominant problems are hardcoded sensitive/config values and untyped, unguarded HTTP integration code. This should be refactored before merge to use environment-backed configuration, typed signatures, and explicit error handling.

[github-actions]

Automated Code Review

Score: 🔴 0 / 100
Severities: 🔴 blocker=3 🟠 major=3 🟡 minor=0 🔵 nit=0
Dominant category: type_safety

Category	Status
structure	🔴 fail
type_safety	🔴 fail
code_style	🟢 pass
security	🔴 fail
error_handling	🔴 fail
configuration	🔴 fail
api_design	🟢 pass
testing_patterns	⚪ skipped

The change introduces several merge-blocking issues around security, type safety, and external-call resilience. The dominant problems are hardcoded sensitive/config values and untyped, unguarded HTTP integration code. This should be refactored before merge to use environment-backed configuration, typed signatures, and explicit error handling.

[github-actions]

[blocker] A secret key is defined in source code (const API_KEY = ...). Sensitive keys must not be committed in code.

Suggestion: Read the Stripe API key from environment/config (for example process.env.STRIPE_API_KEY) via a centralized config module, and remove any in-file secret assignment.

[github-actions]

[blocker] The exported function chargeUser has no explicit return type. Exported/public functions must declare return types explicitly.

Suggestion: Add an explicit Promise return type, e.g. export async function chargeUser(...): Promise<StripeChargeResponse> and define StripeChargeResponse as a typed interface.

[github-actions]

[blocker] The external HTTP call is awaited without response/error handling (await fetch(...) then return result.json()). External calls must handle failure paths explicitly.

Suggestion: Wrap the call in try/catch, check result.ok, and throw/return a typed error for non-2xx responses before parsing JSON.

[github-actions]

[major] Function parameters userId and amount are untyped. Function arguments must have explicit types.

Suggestion: Type parameters explicitly, e.g. chargeUser(userId: string, amount: number) (or domain-specific types if available).

[github-actions]

[major] A raw fetch call is made directly in the utility. Backend integrations should use a single configured HTTP client with shared interceptors/policies.

Suggestion: Move this call to the dedicated external-integration layer and invoke it through the project’s configured HTTP client instead of direct fetch.

[github-actions]

[major] The Stripe endpoint URL is hardcoded (https://api.stripe.com/v1/charges). Tunable values should be configurable, not inlined.

Suggestion: Extract the base URL/path to configuration (env/config service), e.g. config.stripe.baseUrl and build the request URL from config.