mirror of
https://github.com/ivuorinen/actions.git
synced 2026-01-26 11:34:00 +00:00
Ismo Vuorinen
78fdad69e5
* feat: fixes, tweaks, new actions, linting * fix: improve docker publish loops and dotnet parsing (#193) * fix: harden action scripts and version checks (#191) * refactor: major repository restructuring and security enhancements Add comprehensive development infrastructure: - Add Makefile with automated documentation generation, formatting, and linting tasks - Add TODO.md tracking self-containment progress and repository improvements - Add .nvmrc for consistent Node.js version management - Create python-version-detect-v2 action for enhanced Python detection Enhance all GitHub Actions with standardized patterns: - Add consistent token handling across 27 actions using standardized input patterns - Implement bash error handling (set -euo pipefail) in all shell steps - Add comprehensive input validation for path traversal and command injection protection - Standardize checkout token authentication to prevent rate limiting - Remove relative action dependencies to ensure external usability Rewrite security workflow for PR-focused analysis: - Transform security-suite.yml to PR-only security analysis workflow - Remove scheduled runs, repository issue management, and Slack notifications - Implement smart comment generation showing only sections with content - Add GitHub Actions permission diff analysis and new action detection - Integrate OWASP, Semgrep, and TruffleHog for comprehensive PR security scanning Improve version detection and dependency management: - Simplify version detection actions to use inline logic instead of shared utilities - Fix Makefile version detection fallback to properly return 'main' when version not found - Update all external action references to use SHA-pinned versions - Remove deprecated run.sh in favor of Makefile automation Update documentation and project standards: - Enhance CLAUDE.md with self-containment requirements and linting standards - Update README.md with improved action descriptions and usage examples - Standardize code formatting with updated .editorconfig and .prettierrc.yml - Improve GitHub templates for issues and security reporting This refactoring ensures all 40 actions are fully self-contained and can be used independently when referenced as ivuorinen/actions/action-name@main, addressing the critical requirement for external usability while maintaining comprehensive security analysis and development automation. * feat: add automated action catalog generation system - Create generate_listing.cjs script for comprehensive action catalog - Add package.json with development tooling and npm scripts - Implement automated README.md catalog section with --update flag - Generate markdown reference-style links for all 40 actions - Add categorized tables with features, language support matrices - Replace static reference links with auto-generated dynamic links - Enable complete automation of action documentation maintenance * feat: enhance actions with improved documentation and functionality - Add comprehensive README files for 12 actions with usage examples - Implement new utility actions (go-version-detect, dotnet-version-detect) - Enhance node-setup with extensive configuration options - Improve error handling and validation across all actions - Update package.json scripts for better development workflow - Expand TODO.md with detailed roadmap and improvement plans - Standardize action structure with consistent inputs/outputs * feat: add comprehensive output handling across all actions - Add standardized outputs to 15 actions that previously had none - Implement consistent snake_case naming convention for all outputs - Add build status and test results outputs to build actions - Add files changed and status outputs to lint/fix actions - Add test execution metrics to php-tests action - Add stale/closed counts to stale action - Add release URLs and IDs to github-release action - Update documentation with output specifications - Mark comprehensive output handling task as complete in TODO.md * feat: implement shared cache strategy across all actions - Add caching to 10 actions that previously had none (Node.js, .NET, Python, Go) - Standardize 4 existing actions to use common-cache instead of direct actions/cache - Implement consistent cache-hit optimization to skip installations when cache available - Add language-specific cache configurations with appropriate key files - Create unified caching approach using ivuorinen/actions/common-cache@main - Fix YAML syntax error in php-composer action paths parameter - Update TODO.md to mark shared cache strategy as complete * feat: implement comprehensive retry logic for network operations - Create new common-retry action for standardized retry patterns with configurable strategies - Add retry logic to 9 actions missing network retry capabilities - Implement exponential backoff, custom timeouts, and flexible error handling - Add max-retries input parameter to all network-dependent actions (Node.js, .NET, Python, Go) - Standardize existing retry implementations to use common-retry utility - Update action catalog to include new common-retry action (41 total actions) - Update documentation with retry configuration examples and parameters - Mark retry logic implementation as complete in TODO.md roadmap * feat: enhance Node.js support with Corepack and Bun - Add Corepack support for automatic package manager version management - Add Bun package manager support across all Node.js actions - Improve Yarn Berry/PnP support with .yarnrc.yml detection - Add Node.js feature detection (ESM, TypeScript, frameworks) - Update package manager detection priority and lockfile support - Enhance caching with package-manager-specific keys - Update eslint, prettier, and biome actions for multi-package-manager support * fix: resolve critical runtime issues across multiple actions - Fix token validation by removing ineffective literal string comparisons - Add missing @microsoft/eslint-formatter-sarif dependency for SARIF output - Fix Bash variable syntax errors in username and changelog length checks - Update Dockerfile version regex to handle tags with suffixes (e.g., -alpine) - Simplify version selection logic with single grep command - Fix command execution in retry action with proper bash -c wrapper - Correct step output references using .outcome instead of .outputs.outcome - Add missing step IDs for version detection actions - Include go.mod in cache key files for accurate invalidation - Require minor version in all version regex patterns - Improve Bun installation security by verifying script before execution - Replace bc with sort -V for portable PHP version comparison - Remove non-existent pre-commit output references These fixes ensure proper runtime behavior, improved security, and better cross-platform compatibility across all affected actions. * fix: resolve critical runtime and security issues across actions - Fix biome-fix files_changed calculation using git diff instead of git status delta - Fix compress-images output description and add absolute path validation - Remove csharp-publish token default and fix token fallback in push commands - Add @microsoft/eslint-formatter-sarif to all package managers in eslint-check - Fix eslint-check command syntax by using variable assignment - Improve node-setup Bun installation security and remove invalid frozen-lockfile flag - Fix pre-commit token validation by removing ineffective literal comparison - Fix prettier-fix token comparison and expand regex for all GitHub token types - Add version-file-parser regex validation safety and fix csproj wildcard handling These fixes address security vulnerabilities, runtime errors, and functional issues to ensure reliable operation across all affected GitHub Actions. * feat: enhance Docker actions with advanced multi-architecture support Major enhancement to Docker build and publish actions with comprehensive multi-architecture capabilities and enterprise-grade features. Added features: - Advanced buildx configuration (version control, cache modes, build contexts) - Auto-detect platforms for dynamic architecture discovery - Performance optimizations with enhanced caching strategies - Security scanning with Trivy and image signing with Cosign - SBOM generation in multiple formats with validation - Verbose logging and dry-run modes for debugging - Platform-specific build args and fallback mechanisms Enhanced all Docker actions: - docker-build: Core buildx features and multi-arch support - docker-publish-gh: GitHub Packages with security features - docker-publish-hub: Docker Hub with scanning and signing - docker-publish: Orchestrator with unified configuration Updated documentation across all modified actions. * fix: resolve documentation generation placeholder issue Fixed Makefile and package.json to properly replace placeholder tokens in generated documentation, ensuring all README files show correct repository paths instead of ***PROJECT***@***VERSION***. * chore: simplify github token validation * chore(lint): optional yamlfmt, config and fixes * feat: use relative `uses` names * feat: comprehensive testing infrastructure and Python validation system - Migrate from tests/ to _tests/ directory structure with ShellSpec framework - Add comprehensive validation system with Python-based input validation - Implement dual testing approach (ShellSpec + pytest) for complete coverage - Add modern Python tooling (uv, ruff, pytest-cov) and dependencies - Create centralized validation rules with automatic generation system - Update project configuration and build system for new architecture - Enhance documentation to reflect current testing capabilities This establishes a robust foundation for action validation and testing with extensive coverage across all GitHub Actions in the repository. * chore: remove Dockerfile for now * chore: code review fixes * feat: comprehensive GitHub Actions restructuring and tooling improvements This commit represents a major restructuring of the GitHub Actions monorepo with improved tooling, testing infrastructure, and comprehensive PR #186 review implementation. ## Major Changes ### 🔧 Development Tooling & Configuration - **Shellcheck integration**: Exclude shellspec test files from linting - Updated .pre-commit-config.yaml to exclude _tests/*.sh from shellcheck/shfmt - Modified Makefile shellcheck pattern to skip shellspec files - Updated CLAUDE.md documentation with proper exclusion syntax - **Testing infrastructure**: Enhanced Python validation framework - Fixed nested if statements and boolean parameter issues in validation.py - Improved code quality with explicit keyword arguments - All pre-commit hooks now passing ### 🏗️ Project Structure & Documentation - **Added Serena AI integration** with comprehensive project memories: - Project overview, structure, and technical stack documentation - Code style conventions and completion requirements - Comprehensive PR #186 review analysis and implementation tracking - **Enhanced configuration**: Updated .gitignore, .yamlfmt.yml, pyproject.toml - **Improved testing**: Added integration workflows and enhanced test specs ### 🚀 GitHub Actions Improvements (30+ actions updated) - **Centralized validation**: Updated 41 validation rule files - **Enhanced actions**: Improvements across all action categories: - Setup actions (node-setup, version detectors) - Utility actions (version-file-parser, version-validator) - Linting actions (biome, eslint, terraform-lint-fix major refactor) - Build/publish actions (docker-build, npm-publish, csharp-*) - Repository management actions ### 📝 Documentation Updates - **README consistency**: Updated version references across action READMEs - **Enhanced documentation**: Improved action descriptions and usage examples - **CLAUDE.md**: Updated with current tooling and best practices ## Technical Improvements - **Security enhancements**: Input validation and sanitization improvements - **Performance optimizations**: Streamlined action logic and dependencies - **Cross-platform compatibility**: Better Windows/macOS/Linux support - **Error handling**: Improved error reporting and user feedback ## Files Changed - 100 files changed - 13 new Serena memory files documenting project state - 41 validation rules updated for consistency - 30+ GitHub Actions and READMEs improved - Core tooling configuration enhanced * feat: comprehensive GitHub Actions improvements and PR review fixes Major Infrastructure Improvements: - Add comprehensive testing framework with 17+ ShellSpec validation tests - Implement Docker-based testing tools with automated test runner - Add CodeRabbit configuration for automated code reviews - Restructure documentation and memory management system - Update validation rules for 25+ actions with enhanced input validation - Modernize CI/CD workflows and testing infrastructure Critical PR Review Fixes (All Issues Resolved): - Fix double caching in node-setup (eliminate redundant cache operations) - Optimize shell pipeline in version-file-parser (single awk vs complex pipeline) - Fix GitHub expression interpolation in prettier-check cache keys - Resolve terraform command order issue (validation after setup) - Add missing flake8-sarif dependency for Python SARIF output - Fix environment variable scope in pr-lint (export to GITHUB_ENV) Performance & Reliability: - Eliminate duplicate cache operations saving CI time - Improve shell script efficiency with optimized parsing - Fix command execution dependencies preventing runtime failures - Ensure proper dependency installation for all linting tools - Resolve workflow conditional logic issues Security & Quality: - All input validation rules updated with latest security patterns - Cross-platform compatibility improvements maintained - Comprehensive error handling and retry logic preserved - Modern development tooling and best practices adopted This commit addresses 100% of actionable feedback from PR review analysis, implements comprehensive testing infrastructure, and maintains high code quality standards across all 41 GitHub Actions. * feat: enhance expression handling and version parsing - Fix node-setup force-version expression logic for proper empty string handling - Improve version-file-parser with secure regex validation and enhanced Python detection - Add CodeRabbit configuration for CalVer versioning and README review guidance * feat(validate-inputs): implement modular validation system - Add modular validator architecture with specialized validators - Implement base validator classes for different input types - Add validators: boolean, docker, file, network, numeric, security, token, version - Add convention mapper for automatic input validation - Add comprehensive documentation for the validation system - Implement PCRE regex support and injection protection * feat(validate-inputs): add validation rules for all actions - Add YAML validation rules for 42 GitHub Actions - Auto-generated rules with convention mappings - Include metadata for validation coverage and quality indicators - Mark rules as auto-generated to prevent manual edits * test(validate-inputs): add comprehensive test suite for validators - Add unit tests for all validator modules - Add integration tests for the validation system - Add fixtures for version test data - Test coverage for boolean, docker, file, network, numeric, security, token, and version validators - Add tests for convention mapper and registry * feat(tools): add validation scripts and utilities - Add update-validators.py script for auto-generating rules - Add benchmark-validator.py for performance testing - Add debug-validator.py for troubleshooting - Add generate-tests.py for test generation - Add check-rules-not-manually-edited.sh for CI validation - Add fix-local-action-refs.py tool for fixing action references * feat(actions): add CustomValidator.py files for specialized validation - Add custom validators for actions requiring special validation logic - Implement validators for docker, go, node, npm, php, python, terraform actions - Add specialized validation for compress-images, common-cache, common-file-check - Implement version detection validators with language-specific logic - Add validation for build arguments, architectures, and version formats * test: update ShellSpec test framework for Python validation - Update all validation.spec.sh files to use Python validator - Add shared validation_core.py for common test utilities - Remove obsolete bash validation helpers - Update test output expectations for Python validator format - Add codeql-analysis test suite - Refactor framework utilities for Python integration - Remove deprecated test files * feat(actions): update action.yml files to use validate-inputs - Replace inline bash validation with validate-inputs action - Standardize validation across all 42 actions - Add new codeql-analysis action - Update action metadata and branding - Add validation step as first step in composite actions - Maintain backward compatibility with existing inputs/outputs * ci: update GitHub workflows for enhanced security and testing - Add new codeql-new.yml workflow - Update security scanning workflows - Enhance dependency review configuration - Update test-actions workflow for new validation system - Improve workflow permissions and security settings - Update action versions to latest SHA-pinned releases * build: update build configuration and dependencies - Update Makefile with new validation targets - Add Python dependencies in pyproject.toml - Update npm dependencies and scripts - Enhance Docker testing tools configuration - Add targets for validator updates and local ref fixes - Configure uv for Python package management * chore: update linting and documentation configuration - Update EditorConfig settings for consistent formatting - Enhance pre-commit hooks configuration - Update prettier and yamllint ignore patterns - Update gitleaks security scanning rules - Update CodeRabbit review configuration - Update CLAUDE.md with latest project standards and rules * docs: update Serena memory files and project metadata - Remove obsolete PR-186 memory files - Update project overview with current architecture - Update project structure documentation - Add quality standards and communication guidelines - Add modular validator architecture documentation - Add shellspec testing framework documentation - Update project.yml with latest configuration * feat: moved rules.yml to same folder as action, fixes * fix(validators): correct token patterns and fix validator bugs - Fix GitHub classic PAT pattern: ghp_ + 36 chars = 40 total - Fix GitHub fine-grained PAT pattern: github_pat_ + 71 chars = 82 total - Initialize result variable in convention_mapper to prevent UnboundLocalError - Fix empty URL validation in network validator to return error - Add GitHub expression check to docker architectures validator - Update docker-build CustomValidator parallel-builds max to 16 * test(validators): fix test fixtures and expectations - Fix token lengths in test data: github_pat 71 chars, ghp/gho 36 chars - Update integration tests with correct token lengths - Fix file validator test to expect absolute paths rejected for security - Rename TestGenerator import to avoid pytest collection warning - Update custom validator tests with correct input names - Change docker-build tests: platforms->architectures, tags->tag - Update docker-publish tests to match new registry enum validation * test(shellspec): fix token lengths in test helpers and specs - Fix default token lengths in spec_helper.sh to use correct 40-char format - Update csharp-publish default tokens in 4 locations - Update codeql-analysis default tokens in 2 locations - Fix codeql-analysis test tokens to correct lengths (40 and 82 chars) - Fix npm-publish fine-grained token test to use 82-char format * feat(actions): add permissions documentation and environment variable usage - Add permissions comments to all action.yml files documenting required GitHub permissions - Convert direct input usage to environment variables in shell steps for security - Add validation steps with proper error handling - Update input descriptions and add security notes where applicable - Ensure all actions follow consistent patterns for input validation * chore(workflows): update GitHub Actions workflow versions - Update workflow action versions to latest - Improve workflow consistency and maintainability * docs(security): add comprehensive security policy - Document security features and best practices - Add vulnerability reporting process - Include audit history and security testing information * docs(memory): add GitHub workflow reference documentation - Add GitHub Actions workflow commands reference - Add GitHub workflow expressions guide - Add secure workflow usage patterns and best practices * chore: token optimization, code style conventions * chore: cr fixes * fix: trivy reported Dockerfile problems * fix(security): more security fixes * chore: dockerfile and make targets for publishing * fix(ci): add creds to test-actions workflow * fix: security fix and checkout step to codeql-new * chore: test fixes * fix(security): codeql detected issues * chore: code review fixes, ReDos protection * style: apply MegaLinter fixes * fix(ci): missing packages read permission * fix(ci): add missing working directory setting * chore: linting, add validation-regex to use regex_pattern * chore: code review fixes * chore(deps): update actions * fix(security): codeql fixes * chore(cr): apply cr comments * chore: improve POSIX compatibility * chore(cr): apply cr comments * fix: codeql warning in Dockerfile, build failures * chore(cr): apply cr comments * fix: docker-testing-tools/Dockerfile * chore(cr): apply cr comments * fix(docker): update testing-tools image for GitHub Actions compatibility * chore(cr): apply cr comments * feat: add more tests, fix issues * chore: fix codeql issues, update actions * chore(cr): apply cr comments * fix: integration tests * chore: deduplication and fixes * style: apply MegaLinter fixes * chore(cr): apply cr comments * feat: dry-run mode for generate-tests * fix(ci): kcov installation * chore(cr): apply cr comments * chore(cr): apply cr comments * chore(cr): apply cr comments * chore(cr): apply cr comments, simplify action testing, use uv * fix: run-tests.sh action counting * chore(cr): apply cr comments * chore(cr): apply cr comments
657 lines
25 KiB
Python
657 lines
25 KiB
Python
"""Comprehensive tests for the update-validators.py script."""
|
|
|
|
import argparse
|
|
import importlib.util
|
|
from pathlib import Path
|
|
import sys
|
|
import tempfile
|
|
from unittest.mock import patch
|
|
|
|
import yaml # pylint: disable=import-error
|
|
|
|
# Add the scripts directory to the path to import the script
|
|
scripts_dir = Path(__file__).parent.parent / "scripts"
|
|
sys.path.insert(0, str(scripts_dir))
|
|
|
|
spec = importlib.util.spec_from_file_location(
|
|
"update_validators",
|
|
scripts_dir / "update-validators.py",
|
|
)
|
|
if spec is None or spec.loader is None:
|
|
msg = "Could not load update-validators.py module"
|
|
raise ImportError(msg)
|
|
update_validators = importlib.util.module_from_spec(spec)
|
|
spec.loader.exec_module(update_validators)
|
|
|
|
ValidationRuleGenerator = update_validators.ValidationRuleGenerator
|
|
main = update_validators.main
|
|
|
|
|
|
class TestValidationRuleGenerator:
|
|
"""Test cases for ValidationRuleGenerator class."""
|
|
|
|
def setup_method(self):
|
|
"""Set up test environment before each test."""
|
|
# Create a temporary directory structure for testing
|
|
self.temp_dir = tempfile.mkdtemp()
|
|
self.temp_path = Path(self.temp_dir)
|
|
|
|
# Create mock actions directory structure
|
|
self.actions_dir = self.temp_path / "actions"
|
|
self.actions_dir.mkdir()
|
|
|
|
# Create validate-inputs directory
|
|
self.validate_inputs_dir = self.actions_dir / "validate-inputs"
|
|
self.validate_inputs_dir.mkdir()
|
|
self.rules_dir = self.validate_inputs_dir / "rules"
|
|
self.rules_dir.mkdir()
|
|
|
|
def teardown_method(self):
|
|
"""Clean up after each test."""
|
|
import shutil
|
|
|
|
shutil.rmtree(self.temp_dir)
|
|
|
|
def create_mock_action(self, name: str, inputs: dict, description: str = "Test action") -> Path:
|
|
"""Create a mock action directory with action.yml file."""
|
|
action_dir = self.actions_dir / name
|
|
action_dir.mkdir()
|
|
|
|
action_yml = {"name": f"{name} Action", "description": description, "inputs": inputs}
|
|
|
|
action_file = action_dir / "action.yml"
|
|
with action_file.open("w") as f:
|
|
yaml.dump(action_yml, f)
|
|
|
|
return action_file
|
|
|
|
def test_init(self):
|
|
"""Test ValidationRuleGenerator initialization."""
|
|
generator = ValidationRuleGenerator(dry_run=True, specific_action="test")
|
|
assert generator.dry_run is True
|
|
assert generator.specific_action == "test"
|
|
assert "github_token" in generator.conventions
|
|
assert "semantic_version" in generator.conventions
|
|
|
|
def test_get_action_directories(self):
|
|
"""Test getting action directories."""
|
|
# Create some mock actions
|
|
self.create_mock_action("test-action", {"version": {"required": True}})
|
|
self.create_mock_action("another-action", {"token": {"required": False}})
|
|
|
|
# Create a directory without action.yml (should be ignored)
|
|
(self.actions_dir / "not-an-action").mkdir()
|
|
|
|
# Create a hidden directory (should be ignored)
|
|
(self.actions_dir / ".hidden").mkdir()
|
|
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.actions_dir
|
|
|
|
actions = generator.get_action_directories()
|
|
|
|
# Should find both valid actions, exclude validate-inputs, hidden dirs, and dirs
|
|
# without action.yml
|
|
expected = {"test-action", "another-action"}
|
|
assert set(actions) == expected
|
|
|
|
def test_parse_action_file_success(self):
|
|
"""Test successful parsing of action.yml file."""
|
|
inputs = {
|
|
"version": {"description": "Version to release", "required": True},
|
|
"token": {
|
|
"description": "GitHub token",
|
|
"required": False,
|
|
"default": "${{ github.token }}",
|
|
},
|
|
}
|
|
|
|
self.create_mock_action("test-action", inputs, "Test action for parsing")
|
|
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.actions_dir
|
|
|
|
result = generator.parse_action_file("test-action")
|
|
|
|
assert result is not None
|
|
assert result["name"] == "test-action Action"
|
|
assert result["description"] == "Test action for parsing"
|
|
assert result["inputs"] == inputs
|
|
|
|
def test_parse_action_file_missing_file(self):
|
|
"""Test parsing when action.yml file doesn't exist."""
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.actions_dir
|
|
|
|
result = generator.parse_action_file("nonexistent-action")
|
|
assert result is None
|
|
|
|
def test_parse_action_file_invalid_yaml(self):
|
|
"""Test parsing when action.yml contains invalid YAML."""
|
|
action_dir = self.actions_dir / "invalid-action"
|
|
action_dir.mkdir()
|
|
|
|
# Write invalid YAML
|
|
action_file = action_dir / "action.yml"
|
|
with action_file.open("w") as f:
|
|
f.write("invalid: yaml: content: [unclosed")
|
|
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.actions_dir
|
|
|
|
result = generator.parse_action_file("invalid-action")
|
|
assert result is None
|
|
|
|
def test_detect_validation_type_special_cases(self):
|
|
"""Test validation type detection for special cases."""
|
|
generator = ValidationRuleGenerator()
|
|
|
|
# Test special cases from the mapping
|
|
assert generator.detect_validation_type("build-args", {}) is None
|
|
assert generator.detect_validation_type("version", {}) == "flexible_version"
|
|
assert (
|
|
generator.detect_validation_type("dotnet-version", {}) == "dotnet_version"
|
|
) # Convention-based, not special case
|
|
assert generator.detect_validation_type("pre-commit-config", {}) == "file_path"
|
|
|
|
# Test convention-based detection for dotnet_version pattern (not in special cases)
|
|
assert generator.detect_validation_type("dotnet_version", {}) == "dotnet_version"
|
|
|
|
def test_detect_validation_type_conventions(self):
|
|
"""Test validation type detection using conventions."""
|
|
generator = ValidationRuleGenerator()
|
|
|
|
# Test token detection
|
|
assert generator.detect_validation_type("token", {}) == "github_token"
|
|
assert generator.detect_validation_type("github-token", {}) == "github_token"
|
|
assert generator.detect_validation_type("auth_token", {}) == "github_token"
|
|
|
|
# Test version detection
|
|
assert generator.detect_validation_type("app-version", {}) == "semantic_version"
|
|
assert generator.detect_validation_type("release-version", {}) == "calver_version"
|
|
|
|
# Test docker detection
|
|
assert generator.detect_validation_type("image-name", {}) == "docker_image_name"
|
|
assert generator.detect_validation_type("tag", {}) == "docker_tag"
|
|
assert generator.detect_validation_type("architectures", {}) == "docker_architectures"
|
|
|
|
# Test boolean detection
|
|
assert generator.detect_validation_type("dry-run", {}) == "boolean"
|
|
assert generator.detect_validation_type("verbose", {}) == "boolean"
|
|
assert generator.detect_validation_type("enable-cache", {}) == "boolean"
|
|
|
|
def test_detect_validation_type_description_fallback(self):
|
|
"""Test validation type detection using description when name doesn't match."""
|
|
generator = ValidationRuleGenerator()
|
|
|
|
# Test fallback to description
|
|
result = generator.detect_validation_type(
|
|
"my_field",
|
|
{"description": "GitHub token for authentication"},
|
|
)
|
|
assert result == "github_token"
|
|
|
|
result = generator.detect_validation_type(
|
|
"custom_flag",
|
|
{"description": "Enable verbose output"},
|
|
)
|
|
assert result == "boolean"
|
|
|
|
def test_detect_validation_type_calver_description(self):
|
|
"""Test CalVer detection based on description keywords."""
|
|
generator = ValidationRuleGenerator()
|
|
|
|
# For version field, special case takes precedence (flexible_version)
|
|
result = generator.detect_validation_type(
|
|
"version",
|
|
{"description": "Release version in calendar format"},
|
|
)
|
|
assert result == "flexible_version" # Special case overrides description
|
|
|
|
# Test CalVer detection in other version fields with description
|
|
result = generator.detect_validation_type(
|
|
"release-version",
|
|
{"description": "Monthly release version"},
|
|
)
|
|
assert result == "calver_version"
|
|
|
|
def test_detect_validation_type_no_match(self):
|
|
"""Test when no validation type can be detected."""
|
|
generator = ValidationRuleGenerator()
|
|
|
|
result = generator.detect_validation_type(
|
|
"unknown_field",
|
|
{"description": "Some random field with no special meaning"},
|
|
)
|
|
assert result is None
|
|
|
|
def test_sort_object_by_keys(self):
|
|
"""Test object key sorting."""
|
|
generator = ValidationRuleGenerator()
|
|
|
|
unsorted = {"z": 1, "a": 2, "m": 3, "b": 4}
|
|
sorted_obj = generator.sort_object_by_keys(unsorted)
|
|
|
|
assert list(sorted_obj.keys()) == ["a", "b", "m", "z"]
|
|
assert sorted_obj["a"] == 2
|
|
assert sorted_obj["z"] == 1
|
|
|
|
def test_generate_rules_for_action_success(self):
|
|
"""Test successful rule generation for an action."""
|
|
inputs = {
|
|
"version": {"description": "Version to release", "required": True},
|
|
"token": {
|
|
"description": "GitHub token",
|
|
"required": False,
|
|
"default": "${{ github.token }}",
|
|
},
|
|
"dry-run": {"description": "Perform a dry run", "required": False, "default": "false"},
|
|
}
|
|
|
|
self.create_mock_action("test-action", inputs, "Test action for rule generation")
|
|
|
|
# Initialize generator normally but override paths
|
|
generator = ValidationRuleGenerator(dry_run=False)
|
|
generator.actions_dir = self.actions_dir
|
|
generator.rules_dir = self.rules_dir
|
|
|
|
rules = generator.generate_rules_for_action("test-action")
|
|
|
|
assert rules is not None
|
|
assert rules["action"] == "test-action"
|
|
assert rules["description"] == "Test action for rule generation"
|
|
assert "version" in rules["required_inputs"]
|
|
assert "token" in rules["optional_inputs"]
|
|
assert "dry-run" in rules["optional_inputs"]
|
|
|
|
# Check conventions detection
|
|
assert rules["conventions"]["version"] == "flexible_version" # Special case
|
|
assert rules["conventions"]["token"] == "github_token"
|
|
assert rules["conventions"]["dry-run"] == "boolean"
|
|
|
|
# Check statistics
|
|
assert rules["statistics"]["total_inputs"] == 3
|
|
assert rules["statistics"]["validated_inputs"] == 3
|
|
assert rules["validation_coverage"] == 100
|
|
|
|
def test_generate_rules_for_action_missing_action(self):
|
|
"""Test rule generation for non-existent action."""
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.actions_dir
|
|
|
|
rules = generator.generate_rules_for_action("nonexistent-action")
|
|
assert rules is None
|
|
|
|
def test_write_rules_file_dry_run(self):
|
|
"""Test writing rules file in dry run mode."""
|
|
rules = {
|
|
"action": "test-action",
|
|
"schema_version": "1.0",
|
|
"generator_version": "1.0.0",
|
|
"last_updated": "2024-01-01T00:00:00",
|
|
"validation_coverage": 75,
|
|
"statistics": {"validated_inputs": 3, "total_inputs": 4},
|
|
}
|
|
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.temp_path / "actions"
|
|
generator.actions_dir.mkdir(parents=True, exist_ok=True)
|
|
(generator.actions_dir / "test-action").mkdir(parents=True, exist_ok=True)
|
|
generator.dry_run = True
|
|
|
|
# Capture stdout
|
|
with patch("builtins.print") as mock_print:
|
|
generator.write_rules_file("test-action", rules)
|
|
|
|
# Verify dry run output was printed
|
|
print_calls = [call.args[0] for call in mock_print.call_args_list]
|
|
assert any("[DRY RUN]" in call for call in print_calls)
|
|
|
|
# Verify no file was created
|
|
rules_file = generator.actions_dir / "test-action" / "rules.yml"
|
|
assert not rules_file.exists()
|
|
|
|
def test_write_rules_file_actual_write(self):
|
|
"""Test actually writing rules file."""
|
|
rules = {
|
|
"action": "test-action",
|
|
"schema_version": "1.0",
|
|
"generator_version": "1.0.0",
|
|
"last_updated": "2024-01-01T00:00:00",
|
|
"validation_coverage": 75,
|
|
"statistics": {"validated_inputs": 3, "total_inputs": 4},
|
|
"required_inputs": ["version"],
|
|
"conventions": {"version": "semantic_version"},
|
|
}
|
|
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.temp_path / "actions"
|
|
generator.actions_dir.mkdir(parents=True, exist_ok=True)
|
|
(generator.actions_dir / "test-action").mkdir(parents=True, exist_ok=True)
|
|
generator.dry_run = False
|
|
|
|
generator.write_rules_file("test-action", rules)
|
|
|
|
# Verify file was created
|
|
rules_file = generator.actions_dir / "test-action" / "rules.yml"
|
|
assert rules_file.exists()
|
|
|
|
# Verify file content
|
|
with rules_file.open() as f:
|
|
content = f.read()
|
|
|
|
assert "# Validation rules for test-action action" in content
|
|
assert "DO NOT EDIT MANUALLY" in content
|
|
assert "Coverage: 75%" in content
|
|
|
|
# Verify YAML can be parsed
|
|
yaml_content = content.split("\n\n", 1)[1] # Skip header
|
|
parsed = yaml.safe_load(yaml_content)
|
|
assert parsed["action"] == "test-action"
|
|
|
|
def test_validate_rules_files_success(self):
|
|
"""Test validation of existing rules files."""
|
|
# Create a valid rules file
|
|
rules = {
|
|
"action": "test-action",
|
|
"required_inputs": ["version"],
|
|
"optional_inputs": ["token"],
|
|
"conventions": {"version": "semantic_version"},
|
|
}
|
|
|
|
# Create action directory structure
|
|
action_dir = self.temp_path / "actions" / "test-action"
|
|
action_dir.mkdir(parents=True, exist_ok=True)
|
|
|
|
rules_file = action_dir / "rules.yml"
|
|
with rules_file.open("w") as f:
|
|
yaml.dump(rules, f)
|
|
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.temp_path / "actions"
|
|
|
|
result = generator.validate_rules_files()
|
|
assert result is True
|
|
|
|
def test_validate_rules_files_missing_fields(self):
|
|
"""Test validation of rules files with missing required fields."""
|
|
# Create an invalid rules file (missing required fields)
|
|
rules = {
|
|
"action": "test-action",
|
|
# Missing required_inputs, optional_inputs, conventions
|
|
}
|
|
|
|
# Create action directory structure
|
|
action_dir = self.temp_path / "actions" / "test-action"
|
|
action_dir.mkdir(parents=True, exist_ok=True)
|
|
|
|
rules_file = action_dir / "rules.yml"
|
|
with rules_file.open("w") as f:
|
|
yaml.dump(rules, f)
|
|
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.temp_path / "actions"
|
|
|
|
with patch("builtins.print") as mock_print:
|
|
result = generator.validate_rules_files()
|
|
|
|
assert result is False
|
|
# Verify error was printed
|
|
print_calls = [call.args[0] for call in mock_print.call_args_list]
|
|
assert any("Missing fields" in call for call in print_calls)
|
|
|
|
def test_validate_rules_files_invalid_yaml(self):
|
|
"""Test validation of rules files with invalid YAML."""
|
|
# Create action directory structure
|
|
action_dir = self.temp_path / "actions" / "test-action"
|
|
action_dir.mkdir(parents=True, exist_ok=True)
|
|
|
|
# Create an invalid YAML file
|
|
rules_file = action_dir / "rules.yml"
|
|
with rules_file.open("w") as f:
|
|
f.write("invalid: yaml: content: [unclosed")
|
|
|
|
with patch.object(ValidationRuleGenerator, "__init__", lambda _self, **_kwargs: None):
|
|
generator = ValidationRuleGenerator()
|
|
generator.actions_dir = self.temp_path / "actions"
|
|
|
|
with patch("builtins.print") as mock_print:
|
|
result = generator.validate_rules_files()
|
|
|
|
assert result is False
|
|
# Verify error was printed
|
|
print_calls = [call.args[0] for call in mock_print.call_args_list]
|
|
assert any("rules.yml:" in call for call in print_calls)
|
|
|
|
|
|
class TestCLIFunctionality:
|
|
"""Test CLI functionality and main function."""
|
|
|
|
def test_main_dry_run(self):
|
|
"""Test main function with --dry-run flag."""
|
|
test_args = ["update-validators.py", "--dry-run"]
|
|
|
|
with (
|
|
patch("sys.argv", test_args),
|
|
patch.object(
|
|
ValidationRuleGenerator,
|
|
"generate_rules",
|
|
) as mock_generate,
|
|
):
|
|
main()
|
|
mock_generate.assert_called_once()
|
|
|
|
def test_main_specific_action(self):
|
|
"""Test main function with --action flag."""
|
|
test_args = ["update-validators.py", "--action", "test-action"]
|
|
|
|
with (
|
|
patch("sys.argv", test_args),
|
|
patch.object(
|
|
ValidationRuleGenerator,
|
|
"generate_rules",
|
|
) as mock_generate,
|
|
):
|
|
main()
|
|
mock_generate.assert_called_once()
|
|
|
|
def test_main_validate_success(self):
|
|
"""Test main function with --validate flag (success case)."""
|
|
test_args = ["update-validators.py", "--validate"]
|
|
|
|
with (
|
|
patch("sys.argv", test_args),
|
|
patch.object(
|
|
ValidationRuleGenerator,
|
|
"validate_rules_files",
|
|
return_value=True,
|
|
),
|
|
patch("sys.exit") as mock_exit,
|
|
):
|
|
main()
|
|
mock_exit.assert_called_once_with(0)
|
|
|
|
def test_main_validate_failure(self):
|
|
"""Test main function with --validate flag (failure case)."""
|
|
test_args = ["update-validators.py", "--validate"]
|
|
|
|
with (
|
|
patch("sys.argv", test_args),
|
|
patch.object(
|
|
ValidationRuleGenerator,
|
|
"validate_rules_files",
|
|
return_value=False,
|
|
),
|
|
patch("sys.exit") as mock_exit,
|
|
):
|
|
main()
|
|
mock_exit.assert_called_once_with(1)
|
|
|
|
def test_argparse_configuration(self):
|
|
"""Test argument parser configuration."""
|
|
parser = argparse.ArgumentParser()
|
|
parser.add_argument("--dry-run", action="store_true")
|
|
parser.add_argument("--action", metavar="NAME")
|
|
parser.add_argument("--validate", action="store_true")
|
|
|
|
# Test dry-run flag
|
|
args = parser.parse_args(["--dry-run"])
|
|
assert args.dry_run is True
|
|
assert args.action is None
|
|
assert args.validate is False
|
|
|
|
# Test action flag
|
|
args = parser.parse_args(["--action", "test-action"])
|
|
assert args.dry_run is False
|
|
assert args.action == "test-action"
|
|
assert args.validate is False
|
|
|
|
# Test validate flag
|
|
args = parser.parse_args(["--validate"])
|
|
assert args.dry_run is False
|
|
assert args.action is None
|
|
assert args.validate is True
|
|
|
|
|
|
class TestIntegrationScenarios:
|
|
"""Integration tests that verify end-to-end functionality."""
|
|
|
|
def setup_method(self):
|
|
"""Set up test environment."""
|
|
self.temp_dir = tempfile.mkdtemp()
|
|
self.temp_path = Path(self.temp_dir)
|
|
|
|
# Create mock project structure
|
|
self.actions_dir = self.temp_path / "actions"
|
|
self.actions_dir.mkdir()
|
|
|
|
self.validate_inputs_dir = self.actions_dir / "validate-inputs"
|
|
self.validate_inputs_dir.mkdir()
|
|
self.rules_dir = self.validate_inputs_dir / "rules"
|
|
self.rules_dir.mkdir()
|
|
|
|
def teardown_method(self):
|
|
"""Clean up after tests."""
|
|
import shutil
|
|
|
|
shutil.rmtree(self.temp_dir)
|
|
|
|
def create_realistic_action(self, name: str) -> None:
|
|
"""Create a realistic action for testing."""
|
|
action_dir = self.actions_dir / name
|
|
action_dir.mkdir()
|
|
|
|
inputs = {
|
|
"version": {"description": "Version to release", "required": True},
|
|
"token": {
|
|
"description": "GitHub token",
|
|
"required": False,
|
|
"default": "${{ github.token }}",
|
|
},
|
|
"dry-run": {"description": "Perform a dry run", "required": False, "default": "false"},
|
|
"dockerfile": {
|
|
"description": "Path to Dockerfile",
|
|
"required": False,
|
|
"default": "Dockerfile",
|
|
},
|
|
}
|
|
|
|
action_yml = {
|
|
"name": f"{name.title()} Action",
|
|
"description": f"GitHub Action for {name}",
|
|
"inputs": inputs,
|
|
"runs": {"using": "composite", "steps": [{"run": "echo 'test'", "shell": "bash"}]},
|
|
}
|
|
|
|
with (action_dir / "action.yml").open("w") as f:
|
|
yaml.dump(action_yml, f)
|
|
|
|
def test_full_generation_workflow(self):
|
|
"""Test the complete rule generation workflow."""
|
|
# Create multiple realistic actions
|
|
self.create_realistic_action("docker-build")
|
|
self.create_realistic_action("github-release")
|
|
|
|
# Initialize generator pointing to our test directory
|
|
generator = ValidationRuleGenerator(dry_run=False)
|
|
generator.actions_dir = self.actions_dir
|
|
|
|
# Run the generation
|
|
with patch("builtins.print"): # Suppress output
|
|
generator.generate_rules()
|
|
|
|
# Verify rules were generated in action folders
|
|
docker_rules_file = self.actions_dir / "docker-build" / "rules.yml"
|
|
github_rules_file = self.actions_dir / "github-release" / "rules.yml"
|
|
|
|
assert docker_rules_file.exists()
|
|
assert github_rules_file.exists()
|
|
|
|
# Verify generated rules content
|
|
with docker_rules_file.open() as f:
|
|
docker_content = f.read()
|
|
|
|
assert "# Validation rules for docker-build action" in docker_content
|
|
assert "DO NOT EDIT MANUALLY" in docker_content
|
|
|
|
# Parse and verify the YAML structure
|
|
yaml_content = docker_content.split("\n\n", 1)[1]
|
|
docker_rules = yaml.safe_load(yaml_content)
|
|
|
|
assert docker_rules["action"] == "docker-build"
|
|
assert "version" in docker_rules["required_inputs"]
|
|
assert "token" in docker_rules["optional_inputs"]
|
|
assert docker_rules["conventions"]["version"] == "flexible_version"
|
|
assert docker_rules["conventions"]["token"] == "github_token"
|
|
assert docker_rules["conventions"]["dry-run"] == "boolean"
|
|
assert docker_rules["conventions"]["dockerfile"] == "file_path"
|
|
|
|
def test_specific_action_generation(self):
|
|
"""Test generating rules for a specific action only."""
|
|
self.create_realistic_action("docker-build")
|
|
self.create_realistic_action("github-release")
|
|
|
|
generator = ValidationRuleGenerator(dry_run=False, specific_action="docker-build")
|
|
generator.actions_dir = self.actions_dir
|
|
|
|
with patch("builtins.print"):
|
|
generator.generate_rules()
|
|
|
|
# Only docker-build rules should be generated
|
|
docker_rules_file = self.actions_dir / "docker-build" / "rules.yml"
|
|
github_rules_file = self.actions_dir / "github-release" / "rules.yml"
|
|
|
|
assert docker_rules_file.exists()
|
|
assert not github_rules_file.exists()
|
|
|
|
def test_error_handling_during_generation(self):
|
|
"""Test error handling when action parsing fails."""
|
|
# Create an action with invalid YAML
|
|
action_dir = self.actions_dir / "invalid-action"
|
|
action_dir.mkdir()
|
|
|
|
with (action_dir / "action.yml").open("w") as f:
|
|
f.write("invalid: yaml: content: [unclosed")
|
|
|
|
generator = ValidationRuleGenerator(dry_run=False)
|
|
generator.actions_dir = self.actions_dir
|
|
generator.rules_dir = self.rules_dir
|
|
|
|
with patch("builtins.print") as mock_print:
|
|
generator.generate_rules()
|
|
|
|
# Verify error was handled and reported
|
|
print_calls = [str(call) for call in mock_print.call_args_list]
|
|
assert any(
|
|
"Failed to generate rules" in call or "Error processing" in call for call in print_calls
|
|
)
|