Kiran PK

File Signature: How Systems Actually Detect File Types

KIRAN PK — Wed, 11 Mar 2026 17:15:38 GMT

Most people assume the file extension tells the system what type of file it is. It's an intuitive assumption — .png means image, .pdf means document, .exe means executable. At first glance, this seems completely reasonable.

But here's the thing: file extensions are just part of the filename. They're a label, not a guarantee.

Consider this scenario:

malware.exe  →  renamed  →  totally-safe-image.png

The filename changed. The bytes inside the file? Not a single one. If your system relied purely on the extension to decide how to handle that file, it just got fooled. This is a real technique used to sneak malicious files past unsuspecting users.

So how do operating systems and tools actually detect the real file type? They don't look at the name at all — they look inside the file itself.

Magic Numbers: The Fingerprints of Files

Every common file format has a sequence of bytes baked into it that acts as its identity. These bytes — usually sitting right at the start of the file — are called file signatures, or magic numbers.

When a program wants to know what a file really is, it opens the file and reads those first few bytes, then compares them against a table of known signatures.

Take a PNG image. No matter what you name it, the first four bytes will always be:

89 50 4E 47

The ASCII representation for that is ‰PNG.

The same is true for PDFs (%PDF-), SQLite databases (literally SQLite format 3), and dozens of other formats.

In our Go detector, we represent each of these as a struct:

type FileMagicNumberMapping struct {
    Name        string
    Signature   []byte
    Offset      int
    CustomCheck func(filePath string) bool
}

And the known signatures are defined in a lookup table:

var FileType = []FileMagicNumberMapping{
    {"PNG Image",        []byte{0x89, 0x50, 0x4E, 0x47},             0, nil},
    {"PDF Document",     []byte{0x25, 0x50, 0x44, 0x46, 0x2D},       0, nil},
    {"SQLite Database",  []byte{0x53, 0x51, 0x4C, 0x69, 0x74, 0x65, 0x20, 0x66}, 0, nil},
    // ...
}

When we run the detector, we open the file and walk through this list, reading just enough bytes at the right position to check for a match:

for _, s := range FileType {
    header := make([]byte, len(s.Signature))
    _, err := file.ReadAt(header, int64(s.Offset))
    if err != nil {
        continue
    }

    if bytes.HasPrefix(header, s.Signature) {
        fmt.Printf("Match found: %s\n", s.Name)
        found = true
        break
    }
}

The key function here is file.ReadAt — it lets us read bytes from any position in the file. Now this is just a base case.

Not Every Signature Starts at Zero

It would be convenient if every file format stored its magic bytes at the very beginning. Most do. But some don't.

ISO disk images are the classic example. Their identifying bytes (43 44 30 30 31, or CD001) sit at byte offset 32769 — deep into the file, not at the start. This is a deliberate part of the ISO 9660 spec; the first 32KB is reserved for boot code.

This is exactly why the struct has an Offset field, and why ReadAt is the right tool for the job:

{"ISO Image", []byte{0x43, 0x44, 0x30, 0x30, 0x31}, 32769, nil},

Instead of reading from position 0, we jump directly to byte 32769 and check for the signature there.

When Bytes Aren't Enough

Here's where things get interesting. Not every file format has a reliable magic number. Scripts, config files, and plain text files have no standardized binary header — they're just... text.

Many scripts start with a shebang line: a special first line that tells the shell which interpreter to use.

#!/usr/bin/python3

The #! bytes (0x23 0x21) do act as a kind of signature, but they're shared by every type of script — Python, Bash, Ruby, Perl. The bytes alone only tell you "this is a script." To know which script, you have to actually read the line.

This is called content sniffing — inspecting the file's actual content rather than relying on fixed byte patterns. In scripts_check.go, we handle this case:

func ScriptCheck(fileName string) bool {
    file, err := os.Open(fileName)
    if err != nil {
        return false
    }
    defer file.Close()

    scanner := bufio.NewScanner(file)
    if scanner.Scan() {
        line := scanner.Text()
        if strings.HasPrefix(line, "#!") && strings.Contains(line, "python") {
            fmt.Printf("Match found: Python Script\n")
            return true
        }
        // Fallback: look for common Python patterns
        if strings.HasPrefix(line, "import ") || strings.HasPrefix(line, "def ") || strings.Contains(line, "print(") {
            fmt.Printf("Match found: Python Script\n")
            return true
        }
    }
    return false
}

Notice the fallback: if there's no shebang, we look for patterns like import, def, or print( — things that strongly suggest Python code. This is a rougher heuristic, but it's how you handle formats that were never designed to be identified by a fixed header.

This is why the CustomCheck field exists in our struct. For file types where raw byte comparison isn't sufficient, we plug in a function that can do deeper inspection. The byte signature gives us a quick first filter (#!), and if that matches, the custom check takes over to figure out the specifics.

Your browser does exactly the same thing. When a server sends a file with the wrong MIME type — or no type at all — the browser reads the content and makes its best guess. That's content sniffing in the wild.

The Tricky Case: Container Formats

There's one more scenario worth knowing about.

Many modern file formats — DOCX, XLSX, PPTX, JAR, APK — aren't really unique formats at all. They're ZIP archives with a specific internal structure. And they all start with the same signature:

50 4B 03 04

That's the ZIP magic number. So if you only check the magic bytes, every Word document, every Excel spreadsheet, and every Android app looks identical — just "a ZIP file."

To tell them apart, you have to open the archive and inspect what's inside. A DOCX will contain word/document.xml. An XLSX will have xl/workbook.xml. The container tells you the encoding; the contents tell you the actual format.

This is a known limitation of pure signature-based detection, and it's a good example of where content sniffing and deeper inspection become necessary — the magic number is just the starting point.

The Limits of Magic Numbers

Magic numbers are remarkably useful, but they're not a perfect solution.

Some formats have no signature at all. Plain text files, CSVs, JSON, log files — none of these have defined magic bytes. You can't fingerprint a .csv the way you fingerprint a .png. Detection has to rely on content analysis, file extension as a hint, or context.

Some formats share a signature. As we just saw with ZIP-based formats, a shared magic number means you need additional inspection to disambiguate. The signature gets you to the right neighborhood; you still have to find the right house.

The file command on Linux, and MIME detection in browsers, both combine these techniques — magic numbers, content sniffing, and context — to make their best determination.

Wrapping Up

Next time you rename a file, remember: the extension is just a label. The truth is in the bytes.

File signatures are one of those concepts that seem small until you realize how much of your operating system, your browser, and your security tooling depends on them quietly doing their job. Understanding how they work — and where they fall short — is useful any time you're building something that needs to handle files reliably.

The full source for the detector used in this post is linked below. It's a small codebase but covers the major cases: fixed-offset signatures, content sniffing via custom checks, and the BOM-based detection used to identify Unicode text encoding variants.

Github: https://github.com/kiranmurali93/learning/tree/main/file-signature

Wikipedia: https://en.wikipedia.org/wiki/Magic_number_(programming)

Concurrency in Practice - A Job Claiming System That Works

KIRAN PK — Thu, 01 May 2025 09:30:18 GMT

Concurrency issues don’t always show up during development—they usually surface when multiple users interact with your system simultaneously. For small-scale applications, this might not even be a concern. But if you’re a developer curious about how to handle concurrency the right way, this post is for you.

For the purpose of this blog, let’s consider a business use case: a job posting platform for freelance recruiters.

Companies post jobs on the platform, and recruiters can claim the jobs they want to work on. However, to avoid overwhelming companies with too many applications, a single job can only be claimed by a limited number of recruiters—say, four. This means we need to enforce a concurrency-safe mechanism to ensure that no more than the allowed number of claims are made per job.

Now, some of you might think: “That sounds simple—we just need to query the number of claims for a job, and if it’s greater than or equal to 4, return an error, right?”

And if I ask you about the code would it be like this?

count := db.Query(`SELECT COUNT(*) FROM job_claims WHERE job_id = ?`)
if count >= 4 {
    return error("Job fully claimed")
}
// proceed to insert claim

If so then you’re almost right—but not completely.

The problem with this approach lies in how web servers handle requests and how we think they do.

As developers, we often imagine our logic runs sequentially: a request comes in, it checks the count, inserts the claim, and we're done. But in reality, multiple requests can hit the server at the same time, and each of them can execute that same SELECT COUNT(*) query before any of them inserts their claim.

This means two or more recruiters could read the same count (say, 3), believe the job is still available, and go on to insert their own claim—resulting in more than four claims being stored. This is a classic race condition.

Before we test this out, let’s set up a basic project. For this demo, I’ll be using Golang and PostgreSQL.

Here’s what the folder structure looks like:

|- db/
   |- db.go
|- handlers/
   |- jobs.go
|-.env
|- main.go
|- test.go

Now let's break down what each file will do:

db/db.go : Handles postgresql connection setup.
handlers/jobs.go: Contains the handler/business logic for claiming the job.
.env: Stores the secrets which you dont want to expose in the code.
main.go: The entry file, which starts the http server and sets up routes.
test.go: Simulates multiple concurrent recruiters trying to claim a job.

We also need to define the database schema and relationships.
Let’s start with the basic tables required for this system:

companies: Stores information about all the companies registered on the platform.
jobs: Contains job postings created by companies.
recruiters: Holds the list of all recruiters who have signed up.
job_claims: Records when a recruiter claims a job, forming a many-to-many relationship between recruiters and jobs.

Here’s a quick sql query for setting up the tables companies table

CREATE TABLE public.companies (
  id BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
  created_at TIMESTAMPTZ NOT NULL DEFAULT now(),
  name TEXT NOT NULL
);

jobs table

CREATE TABLE public.jobs (
  id BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
  created_at TIMESTAMPTZ NOT NULL DEFAULT now(),
  role TEXT,
  company_id BIGINT,
  CONSTRAINT jobs_company_id_fkey FOREIGN KEY (company_id) REFERENCES companies (id)
);

recruiter table

CREATE TABLE public.recruiter (
  id BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
  created_at TIMESTAMPTZ NOT NULL DEFAULT now(),
  name TEXT
);

job_claims table

CREATE TABLE public.job_claims (
  id BIGINT GENERATED BY DEFAULT AS IDENTITY PRIMARY KEY,
  created_at TIMESTAMPTZ DEFAULT now(),
  job_id BIGINT NOT NULL,
  recruiter_id BIGINT NOT NULL,
  CONSTRAINT job_claims_job_id_recruiter_id_key UNIQUE (job_id, recruiter_id),
  CONSTRAINT job_claims_job_id_fkey FOREIGN KEY (job_id) REFERENCES jobs (id),
  CONSTRAINT job_claims_recruiter_id_fkey FOREIGN KEY (recruiter_id) REFERENCES recruiter (id)
);

Now since the setup is done let's move a head with implementation:

Let’s now implement the logic where we simply check how many claims a job already has, and only proceed if it’s less than 4.

This is how our handler/jobs.go will look like

func ClaimJob(w http.ResponseWriter, r *http.Request) {
    jobId := r.URL.Query().Get("jobId")
    recruiterId := r.URL.Query().Get("recruiterId")

    if jobId == "" || recruiterId == "" {
        http.Error(w, "Missing jobId or recruiterId", http.StatusBadRequest)
        return
    }

    // Count how many claims exist for this job
    var count int
    err := db.DB.QueryRow(`SELECT COUNT(*) FROM job_claims WHERE job_id = $1`, jobId).Scan(&count)
    if err != nil {
        http.Error(w, "Could not fetch claim count", http.StatusInternalServerError)
        return
    }

    if count >= 4 {
        http.Error(w, "Job fully claimed", http.StatusForbidden)
        return
    }

    // Insert the claim
    _, err = db.DB.Exec(`INSERT INTO job_claims (job_id, recruiter_id) VALUES ($1, $2)`, jobId, recruiterId)
    if err != nil {
        http.Error(w, "Failed to claim the job", http.StatusInternalServerError)
        return
    }

    json.NewEncoder(w).Encode(map[string]string{
        "message": "Job claimed successfully",
    })
}

And to test this out we have a test.go file. Note: This file would remain the same during entire processes

func main() {
    var wg sync.WaitGroup

    for i := 1; i <= 5; i++ {
        wg.Add(1)
        go func(rid int) {
            defer wg.Done()
            url := fmt.Sprintf("http://localhost:3000/claim-job?jobId=1&recruiterId=%d", rid)
            resp, err := http.Get(url)
            if err != nil {
                fmt.Printf("Recruiter %d error: %v\n", rid, err)
                return
            }
            defer resp.Body.Close()
            fmt.Printf("Recruiter %d: %s\n", rid, resp.Status)
        }(i)
    }

    wg.Wait()
}

If you run this test, you will get something like this

Recruiter 4: 200 OK
Recruiter 1: 200 OK
Recruiter 2: 200 OK
Recruiter 5: 200 OK
Recruiter 3: 200 OK

Note: This can be in any order since we are running it concurrently.

If you notice the output you will be able to see there are a total of 5 claims rather than just 4.

So what went wrong? Each request checked the count before inserting, but none of them had visibility into the others that were happening at the same time.

At this point, you might be thinking:
“Why not just wrap the whole thing in a transaction so that it's atomic?”

Let's try that out too. The updated section of handler/jobs.go would look like this

tx, err := db.DB.Begin()
if err != nil {
    http.Error(w, "Could not start transaction", http.StatusInternalServerError)
    return
}
defer tx.Rollback()

var count int
err = tx.QueryRow(`SELECT COUNT(*) FROM job_claims WHERE job_id = $1`, jobId).Scan(&count)
if err != nil {
    http.Error(w, "Could not fetch claim count", http.StatusInternalServerError)
    return
}

if count >= 4 {
    http.Error(w, "Job fully claimed", http.StatusForbidden)
    return
}

_, err = tx.Exec(`INSERT INTO job_claims (job_id, recruiter_id) VALUES ($1, $2)`, jobId, recruiterId)
if err != nil {
    http.Error(w, "Failed to claim the job", http.StatusInternalServerError)
    return
}

err = tx.Commit()
if err != nil {
    http.Error(w, "Failed to commit transaction", http.StatusInternalServerError)
    return
}

This feels like this would solve the problem. To check this out let's try running the test.go again and we would get something like this

Recruiter 3: 200 OK
Recruiter 4: 200 OK
Recruiter 2: 200 OK
Recruiter 5: 200 OK
Recruiter 1: 200 OK

Unfortunately, this too doesn’t seem to help.

If you ask why, here's the reason: Even though the request is running a transaction, there is no locking happening. Each transaction still sees the same initial count before others have committed their transaction.

Transactions can only isolates their own change. Without explicitly locking in rows. So multiple transactions can read the same state and make decision based on that, leading to same race condition.

So now what would be the fix? The solution to this problem is to lock the job row that recruiters are trying to claim. This ensures that only one transaction can access and modify the relevant data at a time.

In postgres we have a command "SELECT FOR UPDATE" In our case it will be something like this

SELECT * FROM jobs WHERE id = $1 FOR UPDATE;

What does it do?

It locks on to the corresponding job.
Other transactions which tries to access the same row for update, will be blocked until the lock is released.

Let's update the handler logic

tx, err := db.DB.Begin()
if err != nil {
    http.Error(w, "Could not start transaction", http.StatusInternalServerError)
    return
}
defer tx.Rollback()

// Lock the job row
_, err = tx.Exec(`SELECT * FROM jobs WHERE id = $1 FOR UPDATE`, jobId)
if err != nil {
    http.Error(w, "Failed to lock job", http.StatusInternalServerError)
    return
}

// Check if this recruiter already claimed the job
var exists bool
err = tx.QueryRow(`SELECT EXISTS(SELECT 1 FROM job_claims WHERE job_id = $1 AND recruiter_id = $2)`, jobId, recruiterId).Scan(&exists)
if err != nil {
    http.Error(w, "Could not check claim status", http.StatusInternalServerError)
    return
}

if exists {
    http.Error(w, "Recruiter already claimed this job", http.StatusConflict)
    return
}

// Count existing claims
var count int
err = tx.QueryRow(`SELECT COUNT(*) FROM job_claims WHERE job_id = $1`, jobId).Scan(&count)
if err != nil {
    http.Error(w, "Could not fetch claim count", http.StatusInternalServerError)
    return
}

if count >= 4 {
    http.Error(w, "Job fully claimed", http.StatusForbidden)
    return
}

// Insert the claim
_, err = tx.Exec(`INSERT INTO job_claims (job_id, recruiter_id) VALUES ($1, $2)`, jobId, recruiterId)
if err != nil {
    http.Error(w, "Failed to claim job", http.StatusInternalServerError)
    return
}

err = tx.Commit()
if err != nil {
    http.Error(w, "Failed to commit transaction", http.StatusInternalServerError)
    return
}

Now when you run the test.go you will notice something like this

Recruiter 3: 200 OK
Recruiter 5: 200 OK
Recruiter 2: 200 OK
Recruiter 4: 200 OK
Recruiter 1: 403 Forbidden

As you can see only 4 claims are successful, the 5th one fails. This solves the race condition.

Now there might be some confusion that I would like to clear You might notice that we're locking a row in the jobs table, but performing operations on the job_claims table. This is intentional and highlights an important concept in database locking:

When managing concurrency, you need to lock the "decision-making resource," not just the tables being modified. In our case:

The job itself (in the jobs table) is the logical resource we're contending for
The claims (in the job_claims table) are just the implementation detail of how we track that resource allocation

By locking the job row, we ensure that all decisions about whether a particular job can accept more claims are serialised—meaning they happen one after another, not simultaneously. This prevents the race condition where multiple transactions might all see "3 claims" at the same time and all decide they can proceed.

Another approach would be to create a separate "job_claims_count" table that tracks the current count per job, and lock rows in that table instead. This would achieve the same goal while potentially reducing lock contention on the main jobs table.

For checking the implementation code check out github

A Guide to Handling Numeric Input in Go: Base Interpretation Mistakes to Avoid

KIRAN PK — Mon, 11 Nov 2024 12:21:29 GMT

The Problem: Unexpected Behaviour with Leading Zeros

Recently, while working on a Go program that reverses an integer input, I encountered an unexpected issue: input values with leading zeros produced incorrect results. For example, entering 0123 returned 83 instead of 321. After some debugging, I realised the cause was rooted in Go's interpretation of numeric literals.

Here’s a simplified version of the code:

package main

import "fmt"

func main()  {
    var inp int
    fmt.Scan(&inp)
    fmt.Println(inp)  // Outputs unexpected values for leading-zero inputs
}

Entering 0123 resulted in 83, a behaviour that puzzled me at first. Why would Go interpret 0123 as 83? Let’s dive into the mechanics behind Go’s input handling to understand this better.

Insights into Numeric Literals in Go

In Go, numeric literals are interpreted based on their prefixes:

Decimal: Numbers without any prefix (e.g., 123) are treated as decimal.
Octal: Numbers starting with 0 (like 0123) are interpreted as octal (base 8).
Hexadecimal: Numbers prefixed with 0x or 0X (like 0x1F) are hexadecimal (base 16).
Binary: Numbers prefixed with 0b or 0B (like 0b1010) are binary (base 2). This was introduced in Go 1.13.

Because 0123 has a 0 prefix, Go treats it as an octal number, converting it to 83 in decimal, which explains the unexpected output.

Avoiding the Trap: Solutions for Consistent Input Interpretation

If you’re dealing with user input that might include leading zeros and you want decimal interpretation, consider reading the input as a string and then converting it explicitly to an integer. Here’s an improved version of the original code:

package main

import (
    "fmt"
    "strconv"
)

func main() {
    var inp string
    fmt.Scan(&inp)

    num, err := strconv.Atoi(inp)
    if err != nil {
        fmt.Println("Invalid input")
        return
    }

    fmt.Println(num)  // Now it will interpret as decimal regardless of leading zeros
}

Other Situations to Watch For in Go

This behaviour isn't limited to fmt.Scan:

String parsing with strconv.ParseInt: Setting the base to 0 in functions like strconv.ParseInt("0123", 0, 64) will detect the base from prefixes. If consistent decimal interpretation is needed, specify 10 as the base instead.
Hexadecimal and binary literals in code: These are helpful, but make sure they’re not used inadvertently, as 0x and 0b prefixes will trigger hexadecimal and binary parsing.

Key Takeaways

This experience taught me the importance of understanding how Go interprets numeric literals. Here’s a summary of best practices when handling numeric input in Go:

Read input as strings when dealing with user data that could have ambiguous prefixes, and specify the desired base during conversion.
Explicitly specify the base when parsing numeric strings with strconv functions to avoid automatic base detection.
Watch out for leading zeros in integer input, especially in cases where the base might unintentionally switch to octal.

Understanding these nuances can prevent bugs and ensure that your Go programs handle numeric inputs predictably.

How I build a whatsapp campaign internal tool

KIRAN PK — Fri, 05 Jan 2024 03:44:12 GMT

Introduction:

Campaign management is a critical aspect of any organisation's outreach strategy, and an effective scheduling and execution system can significantly enhance its success. Previously we used to run manual scripts using freshchat apis, which is an api wrapper around whatsapp api, which is an manual repetitive task for developers. So I thought of automating this process and make an internal tool around it.

Architecture:

When a user uploads a campaign, the scheduling API comes into play. This API's primary function is to create a campaign and schedule an event at the specified time. The event is associated with a campaign ID and time data, and the scheduler returns an event ID, which is then stored as a property of the campaign. Importantly, this scheduling mechanism allows for future modifications to the scheduled event, but only for campaigns that are yet to happen.

Note: The scheduling is done using AWS eventbridge rules.

At the scheduled time, a Lambda function is triggered to execute the campaign. This function, in turn, calls an internal API to initiate the campaign. The entire process ensures seamless and automated campaign execution.

The run campaign process involves parsing a CSV file to generate parameters for a Freshchat API call. The Freshchat API returns a response object with a response ID. These response IDs and their statuses are saved for future reference. Notably, when listing campaigns, any messages with a status code other than Sent, Delivered, or Failed trigger a Freshchat API status check to update the values accordingly.

Campaigns can be edited with the provided schedule ID, allowing modifications to scheduled events. If there is a change in the schedule time during editing, a new event is generated with the corresponding campaign ID.

When the run campaign API is called, it checks for the scheduled time. If there is a time difference of 5 minutes or more between the API request and the scheduled time, the campaign is ignored. This feature prevents unintended or premature campaign executions.

Required APIs and Payloads:

Create and Edit Campaign:

Endpoint: POST /ss/admin/campaigns and PATCH /ss/admin/campaigns
Payloads:
- For creating: { csv: file, templateId: string, numberOfPlaceholders: string, dateTime: Date, campaignName: string }
- For editing: { id: number, csv: file, templateId: string, numberOfPlaceholders: string, dateTime: Date, campaignName: string }

List Campaigns:

Endpoint: GET /ss/admin/campaigns
Response Payload:
- { id: number, campaignName: string, templateId: string, total: number, success: number, failed: number, createdAt: Date, scheduledAt: Date, status: string, csvUploaded: string }

Test Message:

Endpoint: POST /ss/admin/test-campaign
Payload: { phoneNumber: string, placeholders: string, templateId: string }

Database Tables:

Campaign Table:

Fields: id, name, templateId, totalMessages, successMessages, failureMessages, inQueue, createdAt, scheduledAt, status, fileUrl

Message Table:

Fields: id, messageId, campaignId, status, phoneNumber

How to Implement a Simple Cache Invalidation System in Vue.js

KIRAN PK — Tue, 19 Sep 2023 04:18:28 GMT

Before we delve into the mechanics of cache invalidation, let's clarify what caching is.

A cache, often referred to as a web cache, is a technology designed to store copies of web content, such as web pages, images, and other resources, closer to end-users. The primary goal of a web cache is to enhance the speed and efficiency of web page loading by reducing the time it takes to fetch web content from remote web servers. This caching mechanism significantly improves the user experience by minimizing latency and conserving bandwidth.

Given this definition, it's evident that utilizing caching can lead to better performance. So, when should we consider invalidating these caches? The necessity for cache invalidation varies depending on different use cases. In my experience, a particular challenge emerged when performing major releases. Some users experienced issues with the platform even after thorough testing before the release. At times, we had to instruct users to force-refresh their browsers to obtain up-to-date data. Clearly, this wasn't an ideal user experience, prompting us to find a solution.

Our approach was straightforward: we needed to automate the process of refreshing the client-side cache whenever a new release of the website occurred. To accomplish this, we explored several methods, but the one that proved effective was to maintain a version data comparison between the local version and the deployed version.

Step 1: Create a version.json File

Begin by creating a version.json file in your Vue project's public folder. The file should contain a key named "version" with a value that can be used for comparison. For this example, let's use a timestamp as the value.

{
  "version": "" // This is where the timestamp comes in
}

Step 2: Implement the Version Comparison in a Composable

Now, let's implement the version comparison logic in a composable. Begin by defining the base URL for your domain:

const baseUrl = import.meta.env.VITE_WEB_URL;

This base URL should point to your website's domain. Next, retrieve the deployed version from your hosted domain:

interface GetVersion {
  version: string;
}

async function getRealVersion(): Promise<GetVersion> {
  const res = await axios.get(`${baseUrl}/version.json`);
  return res.data;
}

Similarly, obtain the local version from the version.json file:

import localVersion from "../../public/version.json";

function getLocalVersion(): GetVersion {
  try {
    const version = JSON.parse(JSON.stringify(localVersion));
    return version;
  } catch {
    return {
      version: "",
    };
  }
}

Now that we have both versions, we can create a function to compare them:

import { compareAsc, isValid } from "date-fns";

export async function invalidCacheCheck(): Promise<Boolean> {
  const deployedVersion = new Date((await getRealVersion()).version);
  const localVersion = new Date(getLocalVersion().version);

  if (!isValid(localVersion)) {
    return false;
  }

  const newVersionAvailable = compareAsc(deployedVersion, localVersion);

  if (newVersionAvailable === 1) return true;

  return false;
}

Step 3: Implement Cache Invalidation on a Timer

However, the problem with the above function is that it only checks once when called. To address this, we need to perform checks at regular intervals. Here's how you can achieve this:

import { minutesToMilliseconds } from "date-fns";

export async function cacheInvalidator(): Promise<void> {
  const timeIntervalInMinutes = 5;
  const timeIntervalInMillisecond = minutesToMilliseconds(
    timeIntervalInMinutes
  );

  setInterval(async () => {
    const invalidate = await invalidCacheCheck();
    if (invalidate) {
      window.location.reload();
    }
  }, timeIntervalInMillisecond);
}

This function checks if a new version is available in intervals of 5 minutes and, if so, refreshes the client-side cache.

Step 4: Implementation in App.vue

To activate this cache invalidation mechanism, call the cacheInvalidator() function in your App.vue file.

Step 5: Updating the Version with Each Deployment

Lastly, you'll need to ensure that the version is updated with each deployment. You can achieve this by using a script that generates the version.json file. Here's an example script:

#!/bin/bash

# Get the current UTC time
current_time=$(date -u +"%Y-%m-%dT%H:%M:%SZ")

# Create a JSON object with the current time
json_data="{ \"version\": \"$current_time\" }"

echo "$json_data" > ./public/version.json

echo "Version has been updated"

Include this script in your build process to automatically update the version in each deployment.

By implementing this cache invalidation system, you can ensure that your Vue.js application always serves the latest content to your users, enhancing their experience and avoiding the need for manual refreshes.

Navigating the JEST Memory Issue - My Workaround

KIRAN PK — Sat, 09 Sep 2023 11:27:39 GMT

Let's dive right into the issue our team was facing. We rely on one of the most popular JavaScript testing frameworks, JEST, for rigorously testing our backend APIs. Initially, everything was sailing smoothly - setup was a breeze, and our tests were smooth to run. We were okay with how things were going.

However, as our codebase grew and we added more APIs to the code, problems started cropping up. The test suite began taking longer to complete, and memory consumption started to skyrocket. Our initial solution was to simply bump up the heap memory using --max-old-space-size. It worked like a charm, at least for a while.

As time passed, we kept increasing the heap memory allocation until we reached a point where we realized this band-aid approach wasn't sustainable. We were no longer able to run tests on our local machines, and even in our pipeline, tests were failing due to mysterious memory issues.

That's when we decided it was time to tackle this head-on.

Before diving into this, I checked the Jest GitHub repository for similar issues. To my surprise, there were several reported, but none of the proposed solutions seemed to do the trick for us.

So, I embarked on a trial-and-error journey.

Uncertain if the issue lay with our code or with Jest itself, I decided to start by refactoring some code and tests. After rerunning the tests, I waited for about 12 minutes, only to see no improvement in memory usage. By the way, you can monitor memory usage in Jest using the --logHeapUsage argument.

Feeling a bit lost, I searched for more blogs and videos and came across the term "Memory Leak." With this newfound knowledge, I began searching for these leaks, feeling like a detective using Chrome DevTools to analyze heap memory usage heat maps. I zoomed in and out of those charts repeatedly, but ultimately, I was tired and still clueless.

Back to the GitHub issues, I went, reading comments one after another, still finding no definitive solution. It dawned on me that maybe it wasn't our problem; perhaps it was just how Jest operated. If it were a Jest issue, my initial reaction was, "Let's switch to another testing framework!" But the reality of rewriting the entire testing suite hit us like a ton of bricks, especially with a small team. We were only weeks away from rewriting our front end from React with Material-UI to Vue.js with Tailwind, and we had to fix bugs and implement new features. So, I decided to give it a few more tries before throwing in the towel.

This time, I ran individual tests one by one and then attempted to run everything together. What I noticed was that when I ran tests individually, they ran smoothly, and memory usage stayed within limits. However, when more files were included, memory consumption began to swell. Jest seemed to increase heap usage after each test. Although I didn't know the root cause, I had a workaround. Since I discovered this issue while running tests individually, I thought, "Why not do this every time I need to test something?"

So, I wrote a shell script that looked something like this:

base_dir=""
integration_test_dir=${base_dir}tests/integrationTests
integration_directory_list=($(ls ${integration_test_dir}))

for dir in "${integration_directory_list[@]}"; do
    echo "$dir"
    npm run test ${integration_test_dir}/${dir}
done

unit_test_dir=${base_dir}tests/unitTests
unit_directory_list=$(ls ${unit_test_dir})

for unit in "${unit_directory_list[@]}"; do
    echo "$unit"
    npm run test ${unit_test_dir}/${unit}
done

echo "Testing completed"

I then modified the package.json to include:

{
  "test": "NODE_ENV=test NODE_OPTIONS='--max-old-space-size=6144' jest --runInBand",
  "test: local": "bash scripts/test-local.sh"
}

Now to run the test use the command

npm run test:local

I gave this approach a shot, and voilà, it worked.

I realize this isn't a definitive solution, but rather a hack to keep things running until someone finds out how to fix this issue properly.