dare_sitemap_regen.py — architecture sketch · 2026-05-14

Parked workstream. Portfolio-portable static-site sitemap regenerator that emits valid sitemap.xml + post-sitemap.xml + page-sitemap.xml from a static repo. Designed to retire the WP-era frozen-in-amber post-sitemap.xml (last edited 2026-05-07; carries 506 dead http://edge.dare.co.uk/wp/* entries). Lives in ~/bin/ so the same script handles dare → dogwood → audrey → client work via config swap.

Genesis: today’s Edge-cohort migration left the sitemap stale (3 entries fixed by hand, commit 24b8736e). Doing that 506 more times by hand is a non-starter; generating it from current repo state is the right substrate.

What it does

One walk of the repo, three outputs:

1. sitemap.xml — the index. References the children with current <lastmod> values.
2. post-sitemap.xml — article-tree <url> blocks (one per migrated article), each carrying <image:image> children for body imagery.
3. page-sitemap.xml — top-level static pages (/contact/, /privacy-policy/, policy pages, the four section listings).

Auto-shards if >= 45,000 URLs or >= 45 MB. Auto-skips if no diff vs deployed sitemap. Emits a dated report to ~/Downloads/dare_sitemap_regen_<date>.md per the always-publish rule.

Inputs (config-driven, never hardcoded)

A per-site YAML at ~/.config/dare-sitemap/<site>.yaml:

repo_root:       /Users/dansellars/Code/dare-co-uk
canonical_base:  https://www.dare.co.uk
image_cdn_base:  https://images.dare.co.uk
excludes:
  - wp-content/**
  - wp-includes/**
  - "**/*.bak-*"
  - "**/index.html.bak-*"
  - error-404/**
  - dare_migrate_failures_*.txt
redirect_file:   _redirects        # source-column entries get skipped from sitemap
post_paths:                         # globs that go into post-sitemap.xml
  - architecture/*/index.html
  - cinema/*/index.html
  - methods-of-business-design/*/index.html
  - culture-means-thriving-teams/*/index.html
  - field-notes-from-business-design/*/index.html
  - daring-acts/*/index.html
  - observations/*/index.html
  - books/*/index.html
  - brands/*/index.html
  - albums/*/index.html
  - photography/*/index.html
  - users/*/index.html
  - archive/*/index.html
page_paths:                         # globs that go into page-sitemap.xml
  - contact.html
  - privacy-policy/**
  - anti-spam-policy/**
  - dmca-policy/**
  - sitemap/**
  - "*/archive/index.html"          # section root archives
  - methods-of-business-design/index.html
  - culture-means-thriving-teams/index.html
  - field-notes-from-business-design/index.html
  - daring-acts/index.html
homepage:        index.html         # treated as a top-level "page"

Dogwood / audrey / client engagements each get their own YAML; the script is otherwise identical.

The walk (one function per concern)

collect(config) →
    for each html_path in walk(repo, includes=post+page, excludes):
        parsed = lxml.html.parse(html_path)
        canonical = extract_canonical(parsed)        # <link rel="canonical">
        lastmod   = extract_lastmod(html_path, parsed)
            ↪ priority: JSON-LD dateModified > article:modified_time
                       > git log -1 --format=%cI -- <file> > file mtime
        images    = extract_images(parsed)           # see classify_images() below
        yield Entry(canonical, lastmod, images, is_post=in_post_globs)

render(entries) →
    sort by canonical URL                            # stable output
    split into post/page/maybe-image-only sitemaps
    serialise via ElementTree (escapes &, no BOM, LF endings)
    write to repo_root/<sitemap>.xml

validate(written) →
    xmllint --noout if available
    head-check each <loc> via Mozilla UA + cached results
    emit count summary to ~/Downloads/dare_sitemap_regen_<date>.md

Pitfalls + traps (the meat of the sketch)

Category A — Lastmod & timestamps

Category B — Image discovery

Category C — URL canonicalisation

Category D — XML correctness

Category E — Size & sharding

Category F — Robots.txt / _redirects coherence

Category G — Idempotency & cron

Category H — Portfolio portability

Category I — CDN, security layer, and DNS provider sitting in front of dare.co.uk.">CF / bot interactions

Category J — Image-sitemap-extension subtleties

What the report (the .md emitted each run) should say

Following the “so what + what next” report structure:

• TL;DR — N pages indexed, N images cited, sitemap size before/after, run duration
• What changed — diff summary vs the previous run (new pages, dropped pages, lastmod-only updates)
• Watch items — pages with no canonical URL, pages with no images, pages with future-dated lastmod, pages still pointing at dead hosts
• Recommendations — orphan articles (in tree but not linked from anywhere), image-search candidates (pages with strong images + weak traffic per GSC join), etc.

The report becomes the storytelling-substrate artefact for sitemap hygiene over time (per feedback_toolkit_as_storytelling_substrate.md).

Wire-up

Compounding across portfolio

Attribution & references

Where the design decisions in this sketch come from. Inline [N] markers in the pitfalls section above point at these.

Specs (load-bearing)

• Sitemap protocol — https://www.sitemaps.org/protocol.html Canonical XML schema, the 50,000-URL and 50 MB-uncompressed per-file limits, and the <sitemapindex>-of-<sitemap> shape for index files. Source of the namespace strings and the <lastmod> W3C-datetime requirement.
• Sitemap image extension — https://www.sitemaps.org/protocol.html#image The <image:image> namespace (xmlns:image="http://www.google.com/schemas/sitemap-image/1.1"), required <image:loc> child, optional <image:caption> / <image:title> / <image:license> / <image:geo_location>.
• robots.txt — RFC 9309, https://datatracker.ietf.org/doc/html/rfc9309 §2.2.4 mandates parsers MUST ignore unknown directives (basis for the Content-Signal-isn’t-broken finding earlier today). §2.5 establishes the Sitemap: directive convention used at the end of robots.txt.

Google guidance (consumer of the sitemap)

• Sitemaps overview — https://developers.google.com/search/docs/crawling-indexing/sitemaps/overview Establishes that Google treats sitemaps as hints, not directives; that <changefreq> and <priority> are largely ignored (well-documented across years of Google Search Central guidance); and that conflicts with robots.txt degrade the sitemap’s overall trust.
• Build a sitemap — https://developers.google.com/search/docs/crawling-indexing/sitemaps/build-sitemap Specifies UTF-8 encoding requirement, URL-entity-encoding for & etc., and the canonical-URL discipline (no 301 sources).
• Image sitemap docs — https://developers.google.com/search/docs/crawling-indexing/sitemaps/image-sitemaps Confirms one image-block per page (don’t dedupe across pages), and that <image:caption> from alt is a useful signal.
• Sitemap formats supported — https://developers.google.com/search/docs/crawling-indexing/sitemaps/build-sitemap#text XML, RSS/Atom, and plain text formats are accepted; XML is the only one supporting the image extension.

Cloudflare-specific

• Workers static assets — https://developers.cloudflare.com/workers/static-assets/ The deploy model dare.co.uk uses (Workers-with-Assets, not classic Pages); .assetsignore semantics (referenced in this session’s 72 MB-cut commit 6252b77e); deploy-by-wrangler versions upload.
• Cloudflare Pages — https://developers.cloudflare.com/pages/ The model dare-dev-reports uses (publish surface for devreports.dare.co.uk); --branch=main as the production-promotion mechanism.
• Cloudflare R2 — https://developers.cloudflare.com/r2/ The bucket model used for dare-images, the now-retired edge, and the dogwood/audrey successors. S3-compatible API used by dare_s3_to_r2_promote.py and today’s dare_wp_uploads_to_r2.py.
• Cloudflare Image Resizing (cdn-cgi/image/) — https://developers.cloudflare.com/images/transform-images/ The /cdn-cgi/image/format=auto,quality=85/<source> transform syntax encountered in the 3 Tier 1 articles before today’s rewrite. Confirms the script should resolve these back to the canonical CDN URL before emitting into a sitemap.
• Cloudflare Cache — https://developers.cloudflare.com/cache/concepts/cache-control/ The Cache-Control: public, max-age=31536000, immutable headers dare_s3_to_r2_promote.py sets — basis for the “long HEAD cache TTL is fine” decision (URLs are stable by content-addressed-naming convention).

Internal memory references (in-house lessons)

• feedback_python_urllib_ua_cloudflare.md — CDN, security layer, and DNS provider sitting in front of dare.co.uk.">CF bot management 403s default Python-urllib/<ver>. Drives the Mozilla-UA discipline on every HEAD probe.
• feedback_referrer_policy_for_cross_origin_images.md — images.dare.co.uk hotlink-protects against non-dare.co.uk Referer. Drives the no-Referer probe choice.
• feedback_screenshot_error_page_guards.md — CDN, security layer, and DNS provider sitting in front of dare.co.uk.">CF Pages serves 200 + custom-error-body for unknown paths; HEAD-200 alone isn’t proof. Drives the body-fingerprint check optionally.
• feedback_seo_image_naming_convention.md — five rules for image filenames on CDNs; sitemap should never rename images mid-flight (basename-mode discipline from dare_s3_to_r2_promote_basename_2026-05-11).
• feedback_check_devreports_before_infra_gap_analysis.md — sweep ~/Downloads/dare_* + ~/bin/dare_* + memory before re-deriving. Verified there’s no existing dare_sitemap_* script before starting this build.
• feedback_save_vs_find_alignment.md — REPORT_PATTERNS is the find-time query; emit basenames that match (the *_sitemap_regen_* pattern this script will need).
• feedback_park_with_resume_conditions.md — resume conditions structure (named below).
• feedback_layered_guardrail_stack.md — credential layering (no secrets needed here; layer 1 alone suffices for a local walk + public HEAD probes).

Tooling references (the existing toolkit this script joins)

• ~/bin/dare_s3_to_r2_promote.py — argparse + dry-run-default + dated-report shape. Closest sibling.
• ~/bin/dare_wp_uploads_to_r2.py — today’s build; same shape, smaller scope.
• ~/bin/dare_dev_reports_publish.py — the publishing micro-service; REPORT_PATTERNS allowlist this script must join.
• ~/bin/dare_404_audit.py — repo-walk-by-glob pattern, HEAD-check pattern.
• ~/bin/dare_dev_reports_refresh.sh — the cron-wrapper pattern; sentinel-based op-injection re-exec (not needed here since no secrets, but worth matching shape for future portfolio variants that may need GHA secrets).

Resume conditions

Build when one of these triggers: - post-sitemap.xml reaches embarrassment threshold (currently 506 dead entries; if image-search referral traffic to dare ever materialises, the rotting sitemap becomes a measurable cost) - A second portfolio site (dogwood or audrey) needs a sitemap and we’d otherwise hand-roll it (build once, run twice) - A client engagement requires sitemap generation from a static repo (commercial trigger) - Cumulative hand-edited entries (the 3 fixed today + any future) exceed 20 (manual cost > build cost)

Until then: parked. Per feedback_park_with_resume_conditions.md.

Build once, run across the portfolio. The proper resolution to a 535-entry sitemap is not 535 edits — it’s the function that emits 535 entries from the source of truth.