feat: add git metadata to monitor payload #462
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,18 @@ | ||
| import * as gitTargetBuilder from './target-builders/git'; | ||
| import { GitTarget } from './types'; | ||
|
|
||
| const TARGET_BUILDERS = [ | ||
| gitTargetBuilder, | ||
| ]; | ||
|
|
||
| export async function getInfo(packageInfo): Promise<GitTarget|null> { | ||
| for (const builder of TARGET_BUILDERS) { | ||
| const target = await builder.getInfo(packageInfo); | ||
|
|
||
| if (target) { | ||
| return target; | ||
| } | ||
| } | ||
|
There was a problem hiding this comment. This is crossing into the specific-code territory, but while i'm here: const TARGET_BUILDER = [gitMetadata, dockerImageMetadata];
// ...
for (const targetBuilder in TARGET_BUILDERS) {
const target = targetBuilder.getInfo(packageInfo);
if (target) {
return target;
}
}an implementation like that lets you add new target builders (or some other term, not precious about the name) easily. They return a target, or undefined if they can't, and you get to keep all target-specific knowledge out of this file, its responsibility becomes simply the registration and order-of-preference for each target builder. |
||
|
|
||
| return null; | ||
| } | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,33 @@ | ||
| import fs = require('fs'); | ||
| import GitUrlParse = require('git-url-parse'); | ||
|
|
||
| import subProcess = require('../../sub-process'); | ||
| import { GitTarget } from '../types'; | ||
|
|
||
| export async function getInfo(packageInfo): Promise<GitTarget|null> { | ||
| let origin: string|null|undefined; | ||
|
|
||
| if (packageInfo.docker) { | ||
| return null; | ||
| } | ||
|
|
||
| try { | ||
| origin = (await subProcess.execute('git', ['remote', 'get-url', 'origin'])).trim(); | ||
|
|
||
| if (!origin) { | ||
| return null; | ||
| } | ||
|
|
||
| const parsedOrigin = GitUrlParse(origin); | ||
| const branch = (await subProcess.execute('git', ['rev-parse', '--abbrev-ref', 'HEAD'])).trim(); | ||
|
|
||
| return { | ||
| remoteUrl: parsedOrigin.toString('http'), | ||
| branch, | ||
| }; | ||
| } catch (err) { | ||
| // Swallowing exception since we don't want to break the monitor if there is a problem | ||
| // executing git commands. | ||
| return null; | ||
|
There was a problem hiding this comment. can we handle it differently? maybe log reason for erroring |
||
| } | ||
| } | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,4 @@ | ||
| export interface GitTarget { | ||
| remoteUrl: string; | ||
| branch: string; | ||
| } | ||
|
There was a problem hiding this comment. this is still too hosted-git centric. A good test case (direct from https://git-scm.com/) is noticed that the Maybe an There was a problem hiding this comment. regarding your other comment about registry needing to do processing - I don't follow? As long as the targets are both standardised and hold the git upstream repo details then we can both group by targets and support the future desire to match up CLI with hosted source code projects in some way. what am I missing? There was a problem hiding this comment. yeah, that's a good point... I think I was overcomplicating things here because my head was too hosted solution oriented... |
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,73 @@ | ||
| 'use strict'; | ||
|
|
||
| const test = require('tape').test; | ||
| const zlib = require('zlib'); | ||
| const requestLib = require('needle'); | ||
|
|
||
| import * as _ from 'lodash'; | ||
| import * as sinon from 'sinon'; | ||
|
|
||
| import * as cli from '../src/cli/commands'; | ||
| import subProcess = require('../src/lib/sub-process'); | ||
|
|
||
| test('Make sure that target is sent correctly', async (t) => { | ||
| const subProcessStub = sinon.stub(subProcess, 'execute'); | ||
|
|
||
| subProcessStub.withArgs('git', ['remote', 'get-url', 'origin']) | ||
| .resolves('http:/snyk/project.git'); | ||
|
|
||
| subProcessStub.withArgs('git', ['rev-parse', '--abbrev-ref', 'HEAD']) | ||
| .resolves('master'); | ||
|
|
||
| const { data, spy } = await getMonitorRequestDataAndSpy(); | ||
|
|
||
| t.true(spy.calledOnce, 'needle.request was called once'); | ||
| t.true(!_.isEmpty(data.target), 'target passed to request'); | ||
| t.true(!_.isEmpty(data.targetFileRelativePath), 'targetFileRelativePath passed to request'); | ||
| t.equals(data.target.branch, 'master', 'correct branch passed to request'); | ||
| t.equals(data.target.remoteUrl, 'http:/snyk/project.git', 'correct name passed to request'); | ||
| t.equals(data.targetFileRelativePath, 'package.json', 'correct relative target file path passed to request'); | ||
|
|
||
| subProcessStub.restore(); | ||
| spy.restore(); | ||
| t.end(); | ||
| }); | ||
|
|
||
| test('Make sure it\'s not failing monitor for non git projects', async (t) => { | ||
| const subProcessStub = sinon.stub(subProcess, 'execute').resolves(''); | ||
| const { data, spy } = await getMonitorRequestDataAndSpy(); | ||
|
|
||
| t.true(spy.calledOnce, 'needle.request was called once'); | ||
| t.true(_.isEmpty(data.target), 'empty target passed to request'); | ||
| t.equals(data.targetFileRelativePath, 'package.json', 'targetFileRelativePath passed to request'); | ||
|
|
||
| subProcessStub.restore(); | ||
| spy.restore(); | ||
| t.end(); | ||
| }); | ||
|
|
||
| test('Make sure it\'s not failing if there is no remote configured', async (t) => { | ||
| const subProcessStub = sinon.stub(subProcess, 'execute').rejects(); | ||
| const { data, spy } = await getMonitorRequestDataAndSpy(); | ||
|
|
||
| t.true(spy.calledOnce, 'needle.request was called once'); | ||
| t.true(_.isEmpty(data.target), 'empty target passed to request'); | ||
| t.equals(data.targetFileRelativePath, 'package.json', 'targetFileRelativePath passed to request'); | ||
|
|
||
| subProcessStub.restore(); | ||
| spy.restore(); | ||
| t.end(); | ||
| }); | ||
|
|
||
| async function getMonitorRequestDataAndSpy() { | ||
| const requestSpy = sinon.spy(requestLib, 'request'); | ||
|
|
||
| await cli.monitor(); | ||
|
|
||
| const data = JSON.parse(zlib.gunzipSync(requestSpy.getCall(0).args[2]).toString()); | ||
|
|
||
| return { | ||
| data, | ||
| spy: requestSpy, | ||
| }; | ||
| } |
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
why add async
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
this is returning a promise not using async await
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@jonathan-fielding if you look a few lines below I'm using await there, an async function is a promise behind the scenes so this still holds true and works fine.