ivuorinen/gh-action-readme
1
0
Fork 0
mirror of https://github.com/ivuorinen/gh-action-readme.git synced 2026-02-20 18:51:55 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat: detect permissions from actions (#137)

Browse Source 
* feat: detect permissions from actions

* refactor(test): fix 25 SonarCloud issues by extracting test constants

Resolved all SonarCloud code quality issues for PR #137:
- Fixed 12 string duplication issues (S1192)
- Fixed 13 naming convention issues (S100)

Changes:
- Centralized test constants in appconstants/test_constants.go
  * Added 9 parser test constants for YAML templates
  * Added 3 template test constants for paths and versions
- Updated parser_test.go to use shared constants
- Updated template_test.go to use shared constants
- Renamed 13 test functions to camelCase (removed underscores)

* chore: reduce code duplication

* fix: implement cr fixes

* chore: deduplication
This commit is contained in:
Ismo Vuorinen
2026-01-04 02:48:29 +02:00
committed by GitHub
parent 9534bf9e45
commit ce23f93b74
12 changed files with 1797 additions and 170 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
internal/json_writer.go
View File

@@ -40,6 +40,7 @@ type ActionYMLForJSON struct {
Outputs map[string]ActionOutputForJSON `json:"outputs,omitempty"`
Runs map[string]any `json:"runs"`
Branding *BrandingForJSON `json:"branding,omitempty"`
Permissions map[string]string `json:"permissions,omitempty"`
}
// ActionInputForJSON represents an input parameter in JSON format.
@@ -218,6 +219,7 @@ func (jw *JSONWriter) convertToJSONOutput(action *ActionYML) *JSONOutput {
Outputs: outputs,
Runs: action.Runs,
Branding: branding,
Permissions: action.Permissions,
},
Documentation: DocumentationInfo{
Title: action.Name,

140
internal/parser.go
View File

@@ -1,6 +1,7 @@
package internal
import (
"bufio"
"fmt"
"os"
"path/filepath"
@@ -19,6 +20,7 @@ type ActionYML struct {
Outputs map[string]ActionOutput `yaml:"outputs"`
Runs map[string]any `yaml:"runs"`
Branding *Branding `yaml:"branding,omitempty"`
Permissions map[string]string `yaml:"permissions,omitempty"`
// Add more fields as the schema evolves
}
@@ -42,6 +44,14 @@ type Branding struct {
// ParseActionYML reads and parses action.yml from given path.
func ParseActionYML(path string) (*ActionYML, error) {
// Parse permissions from header comments FIRST
commentPermissions, err := parsePermissionsFromComments(path)
if err != nil {
// Don't fail if comment parsing fails, just log and continue
commentPermissions = nil
}
// Standard YAML parsing
f, err := os.Open(path) // #nosec G304 -- path from function parameter
if err != nil {
return nil, err
@@ -55,9 +65,139 @@ func ParseActionYML(path string) (*ActionYML, error) {
return nil, err
}
// Merge permissions: YAML permissions override comment permissions
mergePermissions(&a, commentPermissions)
return &a, nil
}
// mergePermissions combines comment and YAML permissions.
// YAML permissions take precedence when both exist.
func mergePermissions(action *ActionYML, commentPerms map[string]string) {
if action.Permissions == nil && commentPerms != nil && len(commentPerms) > 0 {
action.Permissions = commentPerms
} else if action.Permissions != nil && commentPerms != nil && len(commentPerms) > 0 {
// Merge: YAML takes precedence, add missing from comments
for key, value := range commentPerms {
if _, exists := action.Permissions[key]; !exists {
action.Permissions[key] = value
}
}
}
}
// parsePermissionsFromComments extracts permissions from header comments.
// Looks for lines like:
//
// # permissions:
// # - contents: read # Required for checking out repository
// # contents: read # Alternative format without dash
func parsePermissionsFromComments(path string) (map[string]string, error) {
file, err := os.Open(path) // #nosec G304 -- path from function parameter
if err != nil {
return nil, err
}
defer func() {
_ = file.Close() // Ignore close error in defer
}()
permissions := make(map[string]string)
scanner := bufio.NewScanner(file)
inPermissionsBlock := false
var expectedItemIndent int
for scanner.Scan() {
line := scanner.Text()
trimmed := strings.TrimSpace(line)
// Stop parsing at first non-comment line
if !strings.HasPrefix(trimmed, "#") {
break
}
// Remove leading # and spaces
content := strings.TrimPrefix(trimmed, "#")
content = strings.TrimSpace(content)
// Check for permissions block start
if content == "permissions:" {
inPermissionsBlock = true
// Calculate expected indent for permission items (after the # and any spaces)
// We expect items to be indented relative to the content
expectedItemIndent = -1 // Will be set on first item
continue
}
// Parse permission entries
if inPermissionsBlock && content != "" {
shouldBreak := processPermissionEntry(line, content, &expectedItemIndent, permissions)
if shouldBreak {
break
}
}
}
if err := scanner.Err(); err != nil {
return nil, err
}
return permissions, nil
}
// parsePermissionLine extracts key-value from a permission line.
// Supports formats:
// - "- contents: read # comment"
// - "contents: read # comment"
func parsePermissionLine(content string) (key, value string, ok bool) {
// Remove leading dash if present
content = strings.TrimPrefix(content, "-")
content = strings.TrimSpace(content)
// Remove inline comments
if idx := strings.Index(content, "#"); idx > 0 {
content = strings.TrimSpace(content[:idx])
}
// Parse key: value
parts := strings.SplitN(content, ":", 2)
if len(parts) == 2 {
key = strings.TrimSpace(parts[0])
value = strings.TrimSpace(parts[1])
if key != "" && value != "" {
return key, value, true
}
}
return "", "", false
}
// processPermissionEntry processes a single line in the permissions block.
// Returns true if parsing should break (dedented out of block), false to continue.
func processPermissionEntry(line, content string, expectedItemIndent *int, permissions map[string]string) bool {
// Get the indent of the content (after removing #)
lineAfterHash := strings.TrimPrefix(line, "#")
contentIndent := len(lineAfterHash) - len(strings.TrimLeft(lineAfterHash, " "))
// Set expected indent on first item
if *expectedItemIndent == -1 {
*expectedItemIndent = contentIndent
}
// If dedented relative to expected item indent, we've left the permissions block
if contentIndent < *expectedItemIndent {
return true
}
// Parse permission line and add to map if valid
if key, value, ok := parsePermissionLine(content); ok {
permissions[key] = value
}
return false
}
// shouldIgnoreDirectory checks if a directory name matches the ignore list.
func shouldIgnoreDirectory(dirName string, ignoredDirs []string) bool {
for _, ignored := range ignoredDirs {

621
internal/parser_test.go
View File

@@ -3,23 +3,45 @@ package internal
import (
"os"
"path/filepath"
"reflect"
"strings"
"testing"
"github.com/ivuorinen/gh-action-readme/appconstants"
"github.com/ivuorinen/gh-action-readme/testutil"
)
const testPermissionWrite = "write"
// parseActionFromContent creates a temporary action.yml file with the given content and parses it.
func parseActionFromContent(t *testing.T, content string) (*ActionYML, error) {
t.Helper()
tmpFile, err := os.CreateTemp(t.TempDir(), appconstants.TestActionFilePattern)
if err != nil {
t.Fatal(err)
}
defer func() { _ = os.Remove(tmpFile.Name()) }()
if _, err := tmpFile.WriteString(content); err != nil {
t.Fatal(err)
}
_ = tmpFile.Close()
return ParseActionYML(tmpFile.Name())
}
// createTestDirWithAction creates a directory with an action.yml file and returns both paths.
func createTestDirWithAction(t *testing.T, baseDir, dirName, yamlContent string) (string, string) {
t.Helper()
dirPath := filepath.Join(baseDir, dirName)
if err := os.Mkdir(dirPath, appconstants.FilePermDir); err != nil { // nolint:gosec
if err := os.Mkdir(dirPath, appconstants.FilePermDir); err != nil {
t.Fatalf(testutil.ErrCreateDir(dirName), err)
}
actionPath := filepath.Join(dirPath, appconstants.ActionFileNameYML)
if err := os.WriteFile(
actionPath, []byte(yamlContent), appconstants.FilePermDefault,
); err != nil { // nolint:gosec
); err != nil {
t.Fatalf(testutil.ErrCreateFile(dirName+"/action.yml"), err)
}
@@ -32,7 +54,7 @@ func createTestFile(t *testing.T, baseDir, fileName, content string) string {
filePath := filepath.Join(baseDir, fileName)
if err := os.WriteFile(
filePath, []byte(content), appconstants.FilePermDefault,
); err != nil { // nolint:gosec
); err != nil {
t.Fatalf(testutil.ErrCreateFile(fileName), err)
}
@@ -224,14 +246,14 @@ func TestDiscoverActionFilesNestedIgnoredDirs(t *testing.T) {
// action.yml (should be ignored)
nodeModulesDir := filepath.Join(tmpDir, appconstants.DirNodeModules, "deep", "nested")
if err := os.MkdirAll(nodeModulesDir, appconstants.FilePermDir); err != nil { // nolint:gosec
if err := os.MkdirAll(nodeModulesDir, appconstants.FilePermDir); err != nil {
t.Fatalf(testutil.ErrCreateDir("nested"), err)
}
nestedAction := filepath.Join(nodeModulesDir, appconstants.ActionFileNameYML)
if err := os.WriteFile(
nestedAction, []byte(appconstants.TestYAMLNested), appconstants.FilePermDefault,
); err != nil { // nolint:gosec
); err != nil {
t.Fatalf(testutil.ErrCreateFile("nested action.yml"), err)
}
@@ -254,19 +276,19 @@ func TestDiscoverActionFilesNonRecursive(t *testing.T) {
rootAction := filepath.Join(tmpDir, appconstants.ActionFileNameYML)
if err := os.WriteFile(
rootAction, []byte(appconstants.TestYAMLRoot), appconstants.FilePermDefault,
); err != nil { // nolint:gosec
); err != nil {
t.Fatalf(testutil.ErrCreateFile("action.yml"), err)
}
// Create subdirectory (should not be searched in non-recursive mode)
subDir := filepath.Join(tmpDir, "sub")
if err := os.Mkdir(subDir, appconstants.FilePermDir); err != nil { // nolint:gosec
if err := os.Mkdir(subDir, appconstants.FilePermDir); err != nil {
t.Fatalf(testutil.ErrCreateDir("sub"), err)
}
subAction := filepath.Join(subDir, appconstants.ActionFileNameYML)
if err := os.WriteFile(
subAction, []byte(appconstants.TestYAMLSub), appconstants.FilePermDefault,
); err != nil { // nolint:gosec
); err != nil {
t.Fatalf(testutil.ErrCreateFile("sub/action.yml"), err)
}
@@ -283,3 +305,586 @@ func TestDiscoverActionFilesNonRecursive(t *testing.T) {
t.Errorf("DiscoverActionFiles() = %v, want %v", files[0], rootAction)
}
}
// TestParsePermissionsFromComments tests parsing permissions from header comments.
func TestParsePermissionsFromComments(t *testing.T) {
t.Parallel()
tests := []struct {
name string
content string
want map[string]string
wantErr bool
}{
{
name: "single permission with dash format",
content: `# yaml-language-server: $schema=https://json.schemastore.org/github-action.json
# permissions:
# - contents: read # Required for checking out repository
name: Test Action`,
want: map[string]string{
"contents": "read",
},
wantErr: false,
},
{
name: "multiple permissions",
content: `# permissions:
# - contents: read
# - issues: write
# - pull-requests: write
name: Test Action`,
want: map[string]string{
"contents": "read",
"issues": "write",
"pull-requests": "write",
},
wantErr: false,
},
{
name: "permissions without dash",
content: `# permissions:
# contents: read
# issues: write
name: Test Action`,
want: map[string]string{
"contents": "read",
"issues": "write",
},
wantErr: false,
},
{
name: "no permissions block",
content: `# Just a comment
name: Test Action`,
want: map[string]string{},
wantErr: false,
},
{
name: "permissions with inline comments",
content: `# permissions:
# - contents: read # Needed for checkout
# - issues: write # To create issues
name: Test Action`,
want: map[string]string{
"contents": "read",
"issues": "write",
},
wantErr: false,
},
{
name: "empty permissions block",
content: `# permissions:
name: Test Action`,
want: map[string]string{},
wantErr: false,
},
{
name: "permissions with mixed formats",
content: `# permissions:
# - contents: read
# issues: write
name: Test Action`,
want: map[string]string{
"contents": "read",
"issues": "write",
},
wantErr: false,
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
t.Parallel()
// Create temp file
tmpFile, err := os.CreateTemp(t.TempDir(), appconstants.TestActionFilePattern)
if err != nil {
t.Fatal(err)
}
defer func() { _ = os.Remove(tmpFile.Name()) }()
if _, err := tmpFile.WriteString(tt.content); err != nil {
t.Fatal(err)
}
_ = tmpFile.Close()
got, err := parsePermissionsFromComments(tmpFile.Name())
if (err != nil) != tt.wantErr {
t.Errorf("parsePermissionsFromComments() error = %v, wantErr %v", err, tt.wantErr)
return
}
if !reflect.DeepEqual(got, tt.want) {
t.Errorf("parsePermissionsFromComments() = %v, want %v", got, tt.want)
}
})
}
}
// TestParseActionYMLWithCommentPermissions tests that ParseActionYML includes comment permissions.
func TestParseActionYMLWithCommentPermissions(t *testing.T) {
t.Parallel()
content := appconstants.TestPermissionsHeader +
"# - contents: read\n" +
appconstants.TestActionNameLine +
appconstants.TestDescriptionLine +
appconstants.TestRunsLine +
appconstants.TestCompositeUsing +
appconstants.TestStepsEmpty
action, err := parseActionFromContent(t, content)
if err != nil {
t.Fatalf(appconstants.TestErrorFormat, err)
}
if action.Permissions == nil {
t.Fatal("Expected permissions to be parsed from comments")
}
if action.Permissions["contents"] != "read" {
t.Errorf("Expected contents: read, got %v", action.Permissions)
}
}
// TestParseActionYMLYAMLPermissionsOverrideComments tests that YAML permissions override comments.
func TestParseActionYMLYAMLPermissionsOverrideComments(t *testing.T) {
t.Parallel()
content := appconstants.TestPermissionsHeader +
"# - contents: read\n" +
"# - issues: write\n" +
appconstants.TestActionNameLine +
appconstants.TestDescriptionLine +
"permissions:\n" +
" contents: write # YAML override\n" +
appconstants.TestRunsLine +
appconstants.TestCompositeUsing +
appconstants.TestStepsEmpty
action, err := parseActionFromContent(t, content)
if err != nil {
t.Fatalf(appconstants.TestErrorFormat, err)
}
// YAML should override comment
if action.Permissions["contents"] != testPermissionWrite {
t.Errorf(
"Expected YAML permissions to override comment permissions, got contents: %v",
action.Permissions["contents"],
)
}
// Comment permission should be merged in
if action.Permissions["issues"] != testPermissionWrite {
t.Errorf(
"Expected comment permissions to be merged with YAML permissions, got issues: %v",
action.Permissions["issues"],
)
}
}
// TestParseActionYMLOnlyYAMLPermissions tests parsing when only YAML permissions exist.
func TestParseActionYMLOnlyYAMLPermissions(t *testing.T) {
t.Parallel()
content := appconstants.TestActionNameLine +
appconstants.TestDescriptionLine +
"permissions:\n" +
" contents: read\n" +
" issues: write\n" +
appconstants.TestRunsLine +
appconstants.TestCompositeUsing +
appconstants.TestStepsEmpty
action, err := parseActionFromContent(t, content)
if err != nil {
t.Fatalf(appconstants.TestErrorFormat, err)
}
if action.Permissions == nil {
t.Fatal("Expected permissions to be parsed from YAML")
}
if action.Permissions["contents"] != "read" {
t.Errorf("Expected contents: read, got %v", action.Permissions)
}
if action.Permissions["issues"] != testPermissionWrite {
t.Errorf("Expected issues: write, got %v", action.Permissions)
}
}
// TestParseActionYMLNoPermissions tests parsing when no permissions exist.
func TestParseActionYMLNoPermissions(t *testing.T) {
t.Parallel()
content := appconstants.TestActionNameLine +
appconstants.TestDescriptionLine +
appconstants.TestRunsLine +
appconstants.TestCompositeUsing +
appconstants.TestStepsEmpty
action, err := parseActionFromContent(t, content)
if err != nil {
t.Fatalf(appconstants.TestErrorFormat, err)
}
if action.Permissions != nil {
t.Errorf("Expected no permissions, got %v", action.Permissions)
}
}
// TestParseActionYMLMalformedYAML tests parsing with malformed YAML.
func TestParseActionYMLMalformedYAML(t *testing.T) {
t.Parallel()
content := appconstants.TestActionNameLine +
appconstants.TestDescriptionLine +
"invalid-yaml: [\n" + // Unclosed bracket
" - item"
_, err := parseActionFromContent(t, content)
if err == nil {
t.Error("Expected error for malformed YAML, got nil")
}
}
// TestParseActionYMLEmptyFile tests parsing an empty file.
func TestParseActionYMLEmptyFile(t *testing.T) {
t.Parallel()
tmpFile, err := os.CreateTemp(t.TempDir(), appconstants.TestActionFilePattern)
if err != nil {
t.Fatal(err)
}
defer func() { _ = os.Remove(tmpFile.Name()) }()
_ = tmpFile.Close()
_, err = ParseActionYML(tmpFile.Name())
// Empty file should return EOF error from YAML parser
if err == nil {
t.Error("Expected EOF error for empty file, got nil")
}
}
// TestParsePermissionLineEdgeCases tests edge cases in permission line parsing.
func TestParsePermissionLineEdgeCases(t *testing.T) {
tests := []struct {
name string
input string
wantKey string
wantValue string
wantOK bool
}{
{
name: "comment at start is parsed",
input: "#contents: read",
wantKey: "#contents",
wantValue: "read",
wantOK: true,
},
{
name: "empty value after colon",
input: "contents:",
wantKey: "",
wantValue: "",
wantOK: false,
},
{
name: "only spaces after colon",
input: "contents: ",
wantKey: "",
wantValue: "",
wantOK: false,
},
{
name: "valid with inline comment",
input: "contents: read # required",
wantKey: "contents",
wantValue: "read",
wantOK: true,
},
{
name: "valid with leading dash",
input: "- issues: write",
wantKey: "issues",
wantValue: "write",
wantOK: true,
},
{
name: "no colon",
input: "invalid permission line",
wantKey: "",
wantValue: "",
wantOK: false,
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
key, value, ok := parsePermissionLine(tt.input)
if ok != tt.wantOK {
t.Errorf("parsePermissionLine() ok = %v, want %v", ok, tt.wantOK)
}
if key != tt.wantKey {
t.Errorf("parsePermissionLine() key = %q, want %q", key, tt.wantKey)
}
if value != tt.wantValue {
t.Errorf("parsePermissionLine() value = %q, want %q", value, tt.wantValue)
}
})
}
}
// TestProcessPermissionEntryIndentationEdgeCases tests indentation scenarios.
func TestProcessPermissionEntryIndentationEdgeCases(t *testing.T) {
tests := []struct {
name string
line string
content string
initialIndent int
wantBreak bool
wantPermissionsLen int
}{
{
name: "first item sets indent",
line: appconstants.TestContentsRead,
content: "contents: read",
initialIndent: -1,
wantBreak: false,
wantPermissionsLen: 1,
},
{
name: "dedented breaks",
line: "# contents: read",
content: "contents: read",
initialIndent: 2,
wantBreak: true,
wantPermissionsLen: 0,
},
{
name: "same indent continues",
line: "# issues: write",
content: "issues: write",
initialIndent: 3,
wantBreak: false,
wantPermissionsLen: 1,
},
{
name: "invalid format skipped",
line: "# invalid-line-no-colon",
content: "invalid-line-no-colon",
initialIndent: 3,
wantBreak: false,
wantPermissionsLen: 0,
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
permissions := make(map[string]string)
indent := tt.initialIndent
shouldBreak := processPermissionEntry(tt.line, tt.content, &indent, permissions)
if shouldBreak != tt.wantBreak {
t.Errorf("processPermissionEntry() shouldBreak = %v, want %v", shouldBreak, tt.wantBreak)
}
if len(permissions) != tt.wantPermissionsLen {
t.Errorf(
"processPermissionEntry() permissions length = %d, want %d",
len(permissions),
tt.wantPermissionsLen,
)
}
})
}
}
// TestParsePermissionsFromCommentsEdgeCases tests edge cases in comment parsing.
func TestParsePermissionsFromCommentsEdgeCases(t *testing.T) {
tests := []struct {
name string
content string
wantPerms map[string]string
wantErr bool
description string
}{
{
name: "duplicate permissions",
content: appconstants.TestPermissionsHeader +
appconstants.TestContentsRead +
"# contents: write\n",
wantPerms: map[string]string{"contents": "write"},
wantErr: false,
description: "last value wins",
},
{
name: "mixed valid and invalid lines",
content: appconstants.TestPermissionsHeader +
appconstants.TestContentsRead +
"# invalid-line-no-value\n" +
"# issues: write\n",
wantPerms: map[string]string{"contents": "read", "issues": "write"},
wantErr: false,
description: "invalid lines skipped",
},
{
name: "permissions block ends at non-comment",
content: appconstants.TestPermissionsHeader +
appconstants.TestContentsRead +
appconstants.TestActionNameLine +
"# issues: write\n",
wantPerms: map[string]string{"contents": "read"},
wantErr: false,
description: "stops at first non-comment",
},
{
name: "only permissions header",
content: appconstants.TestPermissionsHeader +
appconstants.TestActionNameLine,
wantPerms: map[string]string{},
wantErr: false,
description: "empty permissions block",
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
tmpFile, err := os.CreateTemp(t.TempDir(), "test-*.yml")
if err != nil {
t.Fatal(err)
}
defer func() { _ = os.Remove(tmpFile.Name()) }()
if _, err := tmpFile.WriteString(tt.content); err != nil {
t.Fatal(err)
}
_ = tmpFile.Close()
perms, err := parsePermissionsFromComments(tmpFile.Name())
if (err != nil) != tt.wantErr {
t.Errorf("parsePermissionsFromComments() error = %v, wantErr %v", err, tt.wantErr)
}
if !reflect.DeepEqual(perms, tt.wantPerms) {
t.Errorf("parsePermissionsFromComments() = %v, want %v (%s)", perms, tt.wantPerms, tt.description)
}
})
}
}
// TestMergePermissionsEdgeCases tests permission merging edge cases.
func TestMergePermissionsEdgeCases(t *testing.T) {
tests := []struct {
name string
yamlPerms map[string]string
commentPerms map[string]string
wantPerms map[string]string
}{
{
name: "both nil",
yamlPerms: nil,
commentPerms: nil,
wantPerms: nil,
},
{
name: "yaml nil, comments empty",
yamlPerms: nil,
commentPerms: map[string]string{},
wantPerms: nil,
},
{
name: "yaml empty, comments nil",
yamlPerms: map[string]string{},
commentPerms: nil,
wantPerms: map[string]string{},
},
{
name: "yaml has value, comments override",
yamlPerms: map[string]string{"contents": "read"},
commentPerms: map[string]string{"issues": "write"},
wantPerms: map[string]string{"contents": "read", "issues": "write"},
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
action := &ActionYML{Permissions: tt.yamlPerms}
mergePermissions(action, tt.commentPerms)
if !reflect.DeepEqual(action.Permissions, tt.wantPerms) {
t.Errorf("mergePermissions() = %v, want %v", action.Permissions, tt.wantPerms)
}
})
}
}
// TestDiscoverActionFilesWalkErrors tests error handling during directory walk.
func TestDiscoverActionFilesWalkErrors(t *testing.T) {
// Test with a path that doesn't exist
_, err := DiscoverActionFiles("/nonexistent/path/that/does/not/exist", true, []string{})
if err == nil {
t.Error("Expected error for nonexistent directory, got nil")
}
// Test that error message mentions the path
if err != nil && !strings.Contains(err.Error(), "/nonexistent/path/that/does/not/exist") {
t.Errorf("Expected error to mention path, got: %v", err)
}
}
// TestWalkFuncErrorHandling tests walkFunc error propagation.
func TestWalkFuncErrorHandling(t *testing.T) {
walker := &actionFileWalker{
ignoredDirs: []string{},
actionFiles: []string{},
}
// Create a valid FileInfo for testing
tmpDir := t.TempDir()
info, err := os.Stat(tmpDir)
if err != nil {
t.Fatalf("Failed to stat temp dir: %v", err)
}
// Test with valid directory - should return nil
err = walker.walkFunc(tmpDir, info, nil)
if err != nil {
t.Errorf("walkFunc() with valid directory should return nil, got: %v", err)
}
// Test with pre-existing error - should propagate
testErr := filepath.SkipDir
err = walker.walkFunc(tmpDir, info, testErr)
if err != testErr {
t.Errorf("walkFunc() should propagate error, got %v, want %v", err, testErr)
}
}
// TestParseActionYMLOnlyComments tests file with only comments.
func TestParseActionYMLOnlyComments(t *testing.T) {
t.Parallel()
content := "# This is a comment\n" +
"# Another comment\n" +
appconstants.TestPermissionsHeader +
appconstants.TestContentsRead
_, err := parseActionFromContent(t, content)
// File with only comments should return EOF error from YAML parser
// (comments are parsed separately, but YAML decoder still needs valid YAML)
if err == nil {
t.Error("Expected EOF error for comment-only file, got nil")
}
}

533
internal/template_test.go Normal file
View File

@@ -0,0 +1,533 @@
package internal
import (
"path/filepath"
"testing"
"github.com/ivuorinen/gh-action-readme/appconstants"
"github.com/ivuorinen/gh-action-readme/internal/git"
)
// newTemplateData creates a TemplateData with common test values.
// Pass nil for any field to use defaults or zero values.
func newTemplateData(
actionName string,
version string,
useDefaultBranch bool,
defaultBranch string,
org string,
repo string,
actionPath string,
repoRoot string,
) *TemplateData {
var actionYML *ActionYML
if actionName != "" {
actionYML = &ActionYML{Name: actionName}
}
return &TemplateData{
ActionYML: actionYML,
Config: &AppConfig{
Version: version,
UseDefaultBranch: useDefaultBranch,
},
Git: git.RepoInfo{
Organization: org,
Repository: repo,
DefaultBranch: defaultBranch,
},
ActionPath: actionPath,
RepoRoot: repoRoot,
}
}
// TestExtractActionSubdirectory tests the extractActionSubdirectory function.
func TestExtractActionSubdirectory(t *testing.T) {
t.Parallel()
tests := []struct {
name string
actionPath string
repoRoot string
want string
}{
{
name: "subdirectory action",
actionPath: "/repo/actions/csharp-build/action.yml",
repoRoot: "/repo",
want: "actions/csharp-build",
},
{
name: "single level subdirectory",
actionPath: appconstants.TestRepoBuildActionPath,
repoRoot: "/repo",
want: "build",
},
{
name: "deeply nested subdirectory",
actionPath: "/repo/a/b/c/d/action.yml",
repoRoot: "/repo",
want: "a/b/c/d",
},
{
name: "root action",
actionPath: appconstants.TestRepoActionPath,
repoRoot: "/repo",
want: "",
},
{
name: "empty action path",
actionPath: "",
repoRoot: "/repo",
want: "",
},
{
name: "empty repo root",
actionPath: appconstants.TestRepoActionPath,
repoRoot: "",
want: "",
},
{
name: "both empty",
actionPath: "",
repoRoot: "",
want: "",
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
t.Parallel()
got := extractActionSubdirectory(tt.actionPath, tt.repoRoot)
// Normalize paths for cross-platform compatibility
want := filepath.ToSlash(tt.want)
got = filepath.ToSlash(got)
if got != want {
t.Errorf("extractActionSubdirectory() = %q, want %q", got, want)
}
})
}
}
// TestBuildUsesString tests the buildUsesString function with subdirectory extraction.
func TestBuildUsesString(t *testing.T) {
t.Parallel()
tests := []struct {
name string
td *TemplateData
org string
repo string
version string
want string
}{
{
name: "monorepo with subdirectory",
td: &TemplateData{
ActionPath: "/repo/actions/csharp-build/action.yml",
RepoRoot: "/repo",
},
org: "ivuorinen",
repo: "actions",
version: "@main",
want: "ivuorinen/actions/actions/csharp-build@main",
},
{
name: "root action",
td: &TemplateData{
ActionPath: appconstants.TestRepoActionPath,
RepoRoot: "/repo",
},
org: "ivuorinen",
repo: "my-action",
version: "@main",
want: "ivuorinen/my-action@main",
},
{
name: "empty org",
td: &TemplateData{
ActionPath: appconstants.TestRepoBuildActionPath,
RepoRoot: "/repo",
},
org: "",
repo: "actions",
version: "@main",
want: "your-org/your-action@v1",
},
{
name: "empty repo",
td: &TemplateData{
ActionPath: appconstants.TestRepoBuildActionPath,
RepoRoot: "/repo",
},
org: "ivuorinen",
repo: "",
version: "@main",
want: "your-org/your-action@v1",
},
{
name: "missing paths in template data",
td: &TemplateData{
ActionPath: "",
RepoRoot: "",
},
org: "ivuorinen",
repo: "actions",
version: "@v1",
want: "ivuorinen/actions@v1",
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
t.Parallel()
got := buildUsesString(tt.td, tt.org, tt.repo, tt.version)
// Normalize paths for cross-platform compatibility
want := filepath.ToSlash(tt.want)
got = filepath.ToSlash(got)
if got != want {
t.Errorf("buildUsesString() = %q, want %q", got, want)
}
})
}
}
// TestGetActionVersion tests the getActionVersion function with priority logic.
func TestGetActionVersion(t *testing.T) {
t.Parallel()
tests := []struct {
name string
data any
want string
}{
{
name: "config version override",
data: newTemplateData("", "v2.0.0", true, "main", "", "", "", ""),
want: "v2.0.0",
},
{
name: "use default branch when enabled",
data: newTemplateData("", "", true, "main", "", "", "", ""),
want: "main",
},
{
name: "use default branch master",
data: newTemplateData("", "", true, "master", "", "", "", ""),
want: "master",
},
{
name: "fallback to v1 when default branch disabled",
data: newTemplateData("", "", false, "main", "", "", "", ""),
want: "v1",
},
{
name: "fallback to v1 when default branch not detected",
data: newTemplateData("", "", true, "", "", "", "", ""),
want: "v1",
},
{
name: "fallback to v1 when data is invalid",
data: "invalid",
want: "v1",
},
{
name: "fallback to v1 when data is nil",
data: nil,
want: "v1",
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
t.Parallel()
got := getActionVersion(tt.data)
if got != tt.want {
t.Errorf("getActionVersion() = %q, want %q", got, tt.want)
}
})
}
}
// TestGetGitUsesString tests the complete integration of gitUsesString template function.
func TestGetGitUsesString(t *testing.T) {
t.Parallel()
tests := []struct {
name string
data *TemplateData
want string
}{
{
name: "monorepo action with default branch",
data: newTemplateData("C# Build", "", true, "main", "ivuorinen", "actions",
"/repo/csharp-build/action.yml", "/repo"),
want: "ivuorinen/actions/csharp-build@main",
},
{
name: "monorepo action with explicit version",
data: newTemplateData("Build Action", "v1.0.0", true, "main", "org", "actions",
appconstants.TestRepoBuildActionPath, "/repo"),
want: "org/actions/build@v1.0.0",
},
{
name: "root level action with default branch",
data: newTemplateData("My Action", "", true, "develop", "user", "my-action",
appconstants.TestRepoActionPath, "/repo"),
want: "user/my-action@develop",
},
{
name: "action with use_default_branch disabled",
data: newTemplateData("Test Action", "", false, "main", "org", "test",
appconstants.TestRepoActionPath, "/repo"),
want: "org/test@v1",
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
t.Parallel()
got := getGitUsesString(tt.data)
// Normalize paths for cross-platform compatibility
want := filepath.ToSlash(tt.want)
got = filepath.ToSlash(got)
if got != want {
t.Errorf("getGitUsesString() = %q, want %q", got, want)
}
})
}
}
// TestFormatVersion tests the formatVersion function.
func TestFormatVersion(t *testing.T) {
t.Parallel()
tests := []struct {
name string
version string
want string
}{
{
name: "empty version",
version: "",
want: "@v1",
},
{
name: "whitespace only version",
version: " ",
want: "@v1",
},
{
name: "version without @",
version: "v1.2.3",
want: appconstants.TestVersionV123,
},
{
name: "version with @",
version: appconstants.TestVersionV123,
want: appconstants.TestVersionV123,
},
{
name: "main branch",
version: "main",
want: "@main",
},
{
name: "version with @ and spaces",
version: " @v2.0.0 ",
want: "@v2.0.0",
},
{
name: "sha version",
version: "abc123",
want: "@abc123",
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
t.Parallel()
got := formatVersion(tt.version)
if got != tt.want {
t.Errorf("formatVersion(%q) = %q, want %q", tt.version, got, tt.want)
}
})
}
}
// TestBuildTemplateData tests the BuildTemplateData function.
func TestBuildTemplateData(t *testing.T) {
t.Parallel()
tests := []struct {
name string
action *ActionYML
config *AppConfig
repoRoot string
actionPath string
wantOrg string
wantRepo string
}{
{
name: "basic action with config overrides",
action: &ActionYML{
Name: "Test Action",
Description: "Test description",
},
config: &AppConfig{
Organization: "testorg",
Repository: "testrepo",
},
repoRoot: ".",
actionPath: "action.yml",
wantOrg: "testorg",
wantRepo: "testrepo",
},
{
name: "action without config overrides",
action: &ActionYML{
Name: "Another Action",
Description: "Another description",
},
config: &AppConfig{},
repoRoot: ".",
actionPath: "action.yml",
wantOrg: "",
wantRepo: "",
},
{
name: "action with dependency analysis enabled",
action: &ActionYML{
Name: "Dep Action",
Description: "Action with deps",
},
config: &AppConfig{
Organization: "deporg",
Repository: "deprepo",
AnalyzeDependencies: true,
},
repoRoot: ".",
actionPath: "../testdata/composite-action/action.yml",
wantOrg: "deporg",
wantRepo: "deprepo",
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
t.Parallel()
data := BuildTemplateData(tt.action, tt.config, tt.repoRoot, tt.actionPath)
assertTemplateData(t, data, tt.action, tt.config, tt.wantOrg, tt.wantRepo)
})
}
}
func assertTemplateData(
t *testing.T,
data *TemplateData,
action *ActionYML,
config *AppConfig,
wantOrg, wantRepo string,
) {
t.Helper()
if data == nil {
t.Fatal("BuildTemplateData() returned nil")
}
if data.ActionYML != action {
t.Error("BuildTemplateData() did not preserve ActionYML")
}
if data.Config != config {
t.Error("BuildTemplateData() did not preserve Config")
}
if config.Organization != "" && data.Git.Organization != wantOrg {
t.Errorf("BuildTemplateData() Git.Organization = %q, want %q", data.Git.Organization, wantOrg)
}
if config.Repository != "" && data.Git.Repository != wantRepo {
t.Errorf("BuildTemplateData() Git.Repository = %q, want %q", data.Git.Repository, wantRepo)
}
if config.AnalyzeDependencies && data.Dependencies == nil {
t.Error("BuildTemplateData() expected Dependencies to be set when AnalyzeDependencies is true")
}
}
// TestAnalyzeDependencies tests the analyzeDependencies function.
func TestAnalyzeDependencies(t *testing.T) {
t.Parallel()
tests := []struct {
name string
actionPath string
config *AppConfig
expectNil bool
}{
{
name: "valid composite action without GitHub token",
actionPath: "../../testdata/analyzer/composite-action.yml",
config: &AppConfig{},
expectNil: false,
},
{
name: "nonexistent action file",
actionPath: "../../testdata/analyzer/nonexistent.yml",
config: &AppConfig{},
expectNil: false, // Should return empty slice, not nil
},
{
name: "docker action without token",
actionPath: "../../testdata/analyzer/docker-action.yml",
config: &AppConfig{},
expectNil: false,
},
{
name: "javascript action without token",
actionPath: "../../testdata/analyzer/javascript-action.yml",
config: &AppConfig{},
expectNil: false,
},
{
name: "invalid yaml file",
actionPath: "../../testdata/analyzer/invalid.yml",
config: &AppConfig{},
expectNil: false, // Should gracefully handle errors and return empty slice
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
t.Parallel()
gitInfo := git.RepoInfo{
Organization: "testorg",
Repository: "testrepo",
}
result := analyzeDependencies(tt.actionPath, tt.config, gitInfo)
if tt.expectNil && result != nil {
t.Errorf("analyzeDependencies() expected nil, got %v", result)
}
if !tt.expectNil && result == nil {
t.Error("analyzeDependencies() returned nil, expected non-nil slice")
}
})
}
}