Simplify plugin to chat-only UI and add optimization notes

Co-authored-by: Mte90 <403283+Mte90@users.noreply.github.com>

Author: Copilot

OPTIMIZATION_NOTES.md

@@ -0,0 +1,93 @@
+# Python Code Review and Optimization Suggestions
+
+## Files Reviewed
+- main.py
+- db.py
+- projects.py
+- analyzer.py
+- external_api.py
+- config.py
+- logger.py
+- models.py
+
+## Findings and Optimizations
+
+### 1. **main.py**
+- **Global Variable Usage**: `_ANALYSES_CACHE` - Consider using a proper caching mechanism
+  - **Optimization**: Use `functools.lru_cache` or a proper cache library like `cachetools`
+- **Database Path Handling**: Currently uses global `DATABASE` variable
+  - **Status**: Acceptable for backward compatibility with web UI
+- **Backward Compatibility**: Both `analysis_id` and `project_id` supported in `/code` endpoint ✅
+  - Web UI uses `analysis_id` with main database
+  - Plugin uses `project_id` with per-project databases
+
+### 2. **db.py**
+- **Connection Management**: Uses context managers properly ✅
+- **WAL Mode**: Enabled for concurrent access ✅
+- **Retry Logic**: Exponential backoff implemented ✅
+- **Optimization Opportunities**:
+  - Connection pooling could be added for high-load scenarios
+  - Consider prepared statements for frequently used queries
+
+### 3. **projects.py**
+- **Code Organization**: Successfully refactored to use shared utilities from db.py ✅
+- **Path Validation**: Multiple layers of security checks ✅
+- **Database Isolation**: Each project gets its own database ✅
+
+### 4. **analyzer.py**
+- **Background Processing**: Uses async properly ✅
+- **File Size Limits**: Configurable via MAX_FILE_SIZE ✅
+- **Optimization**: Batch processing for embeddings could be improved
+
+### 5. **external_api.py**
+- **API Rate Limiting**: Not implemented
+  - **Recommendation**: Add rate limiting for production use
+- **Error Handling**: Basic error handling present
+  - **Recommendation**: Add retry logic with exponential backoff
+
+### 6. **config.py**
+- **Environment Variables**: Properly loaded ✅
+- **Type Conversion**: Minimal validation
+  - **Recommendation**: Add validation for critical config values
+
+### 7. **logger.py**
+- **Centralized Logging**: All modules now use this ✅
+- **Configuration**: Basic setup
+  - **Recommendation**: Add log rotation for production
+
+### 8. **models.py**
+- **Pydantic Models**: Clean separation ✅
+- **Validation**: Basic validation present ✅
+
+## Performance Optimizations Summary
+
+### Implemented ✅
+1. Database WAL mode for concurrent access
+2. Retry logic with exponential backoff
+3. Centralized logging
+4. Path validation and security checks
+5. Backward compatibility (analysis_id + project_id)
+6. Per-project database isolation
+
+### Recommended for Future
+1. **Connection Pooling**: For high-load scenarios
+2. **Cache Layer**: Replace global cache with `functools.lru_cache`
+3. **Rate Limiting**: Add to external API calls
+4. **Batch Optimization**: Improve embedding batch processing
+5. **Log Rotation**: Add for production environments
+6. **Config Validation**: Add type checking and validation
+7. **Prepared Statements**: For frequently used queries
+
+## Security Review
+- ✅ Path traversal prevention
+- ✅ Generic error messages (no stack trace exposure)
+- ✅ Input validation
+- ✅ Secure database operations
+
+## Architecture Notes
+- **Web UI**: Uses main `codebase.db` with `analysis_id` parameter
+- **Plugin**: Uses per-project databases with `project_id` parameter
+- **Backward Compatibility**: Both systems work seamlessly via `/code` endpoint
+
+## No Critical Issues Found
+All Python files compile successfully. No FLAGS, TODOs, or FIXMEs in current codebase.