Chaos engineering for payment flows
Project description
Carbon Layer
Chaos engineering for payment flows.
Every company processing payments tests the happy path — payment succeeds, order fulfilled — and ships. What breaks in production is everything else: dispute spikes your system doesn't respond to, refund storms that break reconciliation, gateway errors that leave orders stuck, webhook sequences your handlers were never tested against.
Carbon Layer lets you simulate these failure modes against your own integration before your customers encounter them. Run a scenario, point it at your webhook endpoint, and see exactly what your system handles and what it doesn't.
Installation
Option A: Quick start (no database needed)
pip install carbon-layer
Works out of the box. Carbon Layer uses SQLite by default — data is stored in ~/.carbon/carbon.db. Nothing else to install or configure.
Option B: With PostgreSQL (if you already have it)
pip install carbon-layer[postgres]
Then set your connection string via a .env file or environment variable:
# .env file in your project directory
DATABASE_URL=postgresql://postgres:yourpassword@localhost:5432/carbon
Or with Docker:
docker run -d --name carbon-pg \
-e POSTGRES_PASSWORD=carbon \
-e POSTGRES_DB=carbon \
-p 5432:5432 postgres:15
# then set:
DATABASE_URL=postgresql://postgres:carbon@localhost:5432/carbon
Both options support all features. You can start with SQLite and switch to PostgreSQL anytime by installing the extra and setting DATABASE_URL.
Quickstart
# List available scenarios
carbon scenarios-list
# Run your first scenario
carbon run dispute-spike --provider mock
# View the report (use the run_id from the output above)
carbon report --run-id <run_id>
No payment gateway account needed. The mock adapter simulates the full payment lifecycle locally.
Webhook Simulation
The real value of Carbon Layer is testing your webhook handlers. Point it at your endpoint and it fires payment gateway events — payment.captured, dispute.created, refund.processed, and more — after the scenario runs. Payloads are signed with HMAC-SHA256, matching real payment gateway webhook formats.
carbon run dispute-spike --provider mock --webhook-url http://localhost:8000/webhooks
The report shows how your endpoint responded for each event type — 2xx, 4xx, 5xx, or timeout. No payment gateway account required.
Scenarios
| Scenario | What it tests |
|---|---|
dispute-spike |
15% dispute rate — does your system respond and submit evidence? |
payment-decline-spike |
30% payment failure rate — does your retry and order state logic hold? |
refund-storm |
Mass refunds on captured payments — does reconciliation break? |
flash-sale |
High order and payment volume — does throughput hold? |
gateway-error-burst |
Intermittent gateway errors — are orders left in inconsistent state? |
min-amount |
Minimum paise transactions — are edge-case amounts handled correctly? |
max-amount |
Large-value transactions — are limits and approvals handled correctly? |
Parameter Overrides
Override scenario parameters at runtime without editing YAML:
carbon run dispute-spike --provider mock --set baseline_orders=500 --set dispute_rate=0.3
Use --set multiple times for multiple parameters. Unknown keys are ignored with a warning.
HTML Reports
Export a shareable HTML report after any run:
carbon report --run-id <run_id> --format html
Writes carbon_report_<run_id>.html to the current directory. Self-contained, no external dependencies — safe to share with your team or attach to an incident report.
CI/CD Integration
Use --callback-url to POST a JSON run summary to your pipeline after a scenario completes:
carbon run dispute-spike --provider mock \
--webhook-url http://localhost:8000/webhooks \
--callback-url http://localhost:8000/carbon/results
The callback payload includes pass/fail status, findings summary, and webhook delivery counts. Your pipeline can fail the build if passed is false.
Using with a Payment Gateway
To run scenarios against your payment gateway's test environment, pass your credentials:
carbon run dispute-spike \
--provider razorpay \
--api-key your_test_key \
--api-secret your_test_secret \
--webhook-url https://your-staging-app.com/webhooks
Or set credentials via environment variables. Use --provider mock if you don't have test credentials — mock mode simulates the full payment lifecycle locally.
License
Apache 2.0 — see LICENSE.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file carbon_layer-0.3.0.tar.gz.
File metadata
- Download URL: carbon_layer-0.3.0.tar.gz
- Upload date:
- Size: 35.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9cfc9faf13c2d7fed40dd40a4db593a94b9974265d93714feb924dc6958a6255
|
|
| MD5 |
287fc33f3a82512d9b73794be1ce3730
|
|
| BLAKE2b-256 |
9fe75d85850119699c85256dd49eb4ca15f69558d0c1923dec51a3fc3ecdaa84
|
File details
Details for the file carbon_layer-0.3.0-py3-none-any.whl.
File metadata
- Download URL: carbon_layer-0.3.0-py3-none-any.whl
- Upload date:
- Size: 39.5 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
d602b0800ac01beadc6977cfa8b8a2c96feca2ec8ac6bd86ce82cad26a7829af
|
|
| MD5 |
0ed4e7670a3c1b804da27df18d622a33
|
|
| BLAKE2b-256 |
0d1f3f172fef5e2043ffa031b6b8dc917b4c14b1e704dd21225ff18bbf0a8722
|
