systemprompt-database 0.10.2

PostgreSQL infrastructure for systemprompt.io AI governance. SQLx-backed pool, generic repository traits, and compile-time query verification. Part of the systemprompt.io AI governance pipeline.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53

//! A non-blocking concurrency limiter.

use std::sync::Arc;

use tokio::sync::{OwnedSemaphorePermit, Semaphore};

/// Returned by [`Bulkhead::try_acquire`] when the concurrency limit is reached.
#[derive(Debug, Clone, Copy)]
pub struct Full;

/// A concurrency cap for one dependency.
///
/// Acquisition is non-blocking: when the limit is reached the call is rejected
/// with [`Full`] rather than queued, so a slow dependency fast-fails callers
/// instead of letting them pile up and exhaust workers.
#[derive(Debug)]
pub struct Bulkhead {
    key: String,
    limit: usize,
    semaphore: Arc<Semaphore>,
}

impl Bulkhead {
    /// Create a bulkhead admitting `cfg.max_concurrent` in-flight calls.
    pub fn new(key: impl Into<String>, max_concurrent: usize) -> Self {
        Self {
            key: key.into(),
            limit: max_concurrent,
            semaphore: Arc::new(Semaphore::new(max_concurrent)),
        }
    }

    /// Try to admit a call. The returned permit must be held for the call's
    /// duration (including, for streaming responses, the stream's lifetime).
    pub fn try_acquire(&self) -> Result<OwnedSemaphorePermit, Full> {
        Arc::clone(&self.semaphore)
            .try_acquire_owned()
            .map_err(|_| {
                tracing::warn!(
                    key = %self.key,
                    limit = self.limit,
                    "bulkhead saturated, rejecting call",
                );
                Full
            })
    }

    /// The configured concurrency limit.
    #[must_use]
    pub const fn limit(&self) -> usize {
        self.limit
    }
}