refactor: major codebase improvements and test framework overhaul

This commit represents a comprehensive refactoring of the codebase focused on improving code quality, testability, and maintainability. Key improvements: - Implement dependency injection and interface-based architecture - Add comprehensive test framework with fixtures and test suites - Fix all linting issues (errcheck, gosec, staticcheck, goconst, etc.) - Achieve full EditorConfig compliance across all files - Replace hardcoded test data with proper fixture files - Add configuration loader with hierarchical config support - Improve error handling with contextual information - Add progress indicators for better user feedback - Enhance Makefile with help system and improved editorconfig commands - Consolidate constants and remove deprecated code - Strengthen validation logic for GitHub Actions - Add focused consumer interfaces for better separation of concerns Testing improvements: - Add comprehensive integration tests - Implement test executor pattern for better test organization - Create extensive YAML fixture library for testing - Fix all failing tests and improve test coverage - Add validation test fixtures to avoid embedded YAML in Go files Build and tooling: - Update Makefile to show help by default - Fix editorconfig commands to use eclint properly - Add comprehensive help documentation to all make targets - Improve file selection patterns to avoid glob errors This refactoring maintains backward compatibility while significantly improving the internal architecture and developer experience.
2026-03-20 01:02:43 +00:00 · 2025-08-05 23:20:58 +03:00
parent f9823eef3e
commit f94967713a
93 changed files with 8845 additions and 1224 deletions
--- a/internal/dependencies/analyzer.go
+++ b/internal/dependencies/analyzer.go
@@ -32,7 +32,43 @@ const (
 	updateTypeNone  = "none"
 	updateTypeMajor = "major"
 	updateTypePatch = "patch"
+	updateTypeMinor = "minor"
 	defaultBranch   = "main"
+
+	// Timeout constants.
+	apiCallTimeout  = 10 * time.Second
+	cacheDefaultTTL = 1 * time.Hour
+
+	// File permission constants.
+	backupFilePerms  = 0600
+	updatedFilePerms = 0600
+
+	// GitHub URL patterns.
+	githubBaseURL      = "https://github.com"
+	marketplaceBaseURL = "https://github.com/marketplace/actions/"
+
+	// Version parsing constants.
+	fullSHALength     = 40
+	minSHALength      = 7
+	versionPartsCount = 3
+
+	// File path patterns.
+	dockerPrefix      = "docker://"
+	localPathPrefix   = "./"
+	localPathUpPrefix = "../"
+
+	// File extensions.
+	backupExtension = ".backup"
+
+	// Cache key prefixes.
+	cacheKeyLatest = "latest:"
+	cacheKeyRepo   = "repo:"
+
+	// YAML structure constants.
+	usesFieldPrefix = "uses: "
+
+	// Special line estimation for script URLs.
+	scriptLineEstimate = 10
 )

 // Dependency represents a GitHub Action dependency with detailed information.
@@ -223,7 +259,7 @@ func (a *Analyzer) analyzeActionDependency(step CompositeStep, _ int) (*Dependen
 		VersionType:   versionType,
 		IsPinned:      versionType == CommitSHA || (versionType == SemanticVersion && a.isVersionPinned(version)),
 		Author:        owner,
-		SourceURL:     fmt.Sprintf("https://github.com/%s/%s", owner, repo),
+		SourceURL:     fmt.Sprintf("%s/%s/%s", githubBaseURL, owner, repo),
 		IsLocalAction: isLocal,
 		IsShellScript: false,
 		WithParams:    a.convertWithParams(step.With),
@@ -231,7 +267,7 @@ func (a *Analyzer) analyzeActionDependency(step CompositeStep, _ int) (*Dependen

 	// Add marketplace URL for public actions
 	if !isLocal {
-		dep.MarketplaceURL = fmt.Sprintf("https://github.com/marketplace/actions/%s", repo)
+		dep.MarketplaceURL = marketplaceBaseURL + repo
 	}

 	// Fetch additional metadata from GitHub API if available
@@ -254,8 +290,14 @@ func (a *Analyzer) analyzeShellScript(step CompositeStep, stepNumber int) *Depen
 	scriptURL := ""
 	if a.RepoInfo.Organization != "" && a.RepoInfo.Repository != "" {
 		// This would ideally link to the specific line in the action.yml file
-		scriptURL = fmt.Sprintf("https://github.com/%s/%s/blob/%s/action.yml#L%d",
-			a.RepoInfo.Organization, a.RepoInfo.Repository, a.RepoInfo.DefaultBranch, stepNumber*10) // Rough estimate
+		scriptURL = fmt.Sprintf(
+			"%s/%s/%s/blob/%s/action.yml#L%d",
+			githubBaseURL,
+			a.RepoInfo.Organization,
+			a.RepoInfo.Repository,
+			a.RepoInfo.DefaultBranch,
+			stepNumber*scriptLineEstimate,
+		) // Rough estimate
 	}

 	return &Dependency{
@@ -283,11 +325,11 @@ func (a *Analyzer) parseUsesStatement(uses string) (owner, repo, version string,
 	// - ./local-action
 	// - docker://alpine:3.14

-	if strings.HasPrefix(uses, "./") || strings.HasPrefix(uses, "../") {
+	if strings.HasPrefix(uses, localPathPrefix) || strings.HasPrefix(uses, localPathUpPrefix) {
 		return "", "", uses, LocalPath
 	}

-	if strings.HasPrefix(uses, "docker://") {
+	if strings.HasPrefix(uses, dockerPrefix) {
 		return "", "", uses, LocalPath
 	}

@@ -319,7 +361,7 @@ func (a *Analyzer) parseUsesStatement(uses string) (owner, repo, version string,
 func (a *Analyzer) isCommitSHA(version string) bool {
 	// Check if it's a 40-character hex string (full SHA) or 7+ character hex (short SHA)
 	re := regexp.MustCompile(`^[a-f0-9]{7,40}$`)
-	return len(version) >= 7 && re.MatchString(version)
+	return len(version) >= minSHALength && re.MatchString(version)
 }

 // isSemanticVersion checks if a version string follows semantic versioning.
@@ -333,7 +375,7 @@ func (a *Analyzer) isSemanticVersion(version string) bool {
 func (a *Analyzer) isVersionPinned(version string) bool {
 	// Consider it pinned if it specifies patch version (v1.2.3) or is a commit SHA
 	// Also check for full commit SHAs (40 chars)
-	if len(version) == 40 {
+	if len(version) == fullSHALength {
 		return true
 	}
 	re := regexp.MustCompile(`^v?\d+\.\d+\.\d+`)
@@ -393,11 +435,11 @@ func (a *Analyzer) getLatestVersion(owner, repo string) (version, sha string, er
 		return "", "", fmt.Errorf("GitHub client not available")
 	}

-	ctx, cancel := context.WithTimeout(context.Background(), 10*time.Second)
+	ctx, cancel := context.WithTimeout(context.Background(), apiCallTimeout)
 	defer cancel()

 	// Check cache first
-	cacheKey := fmt.Sprintf("latest:%s/%s", owner, repo)
+	cacheKey := cacheKeyLatest + fmt.Sprintf("%s/%s", owner, repo)
 	if version, sha, found := a.getCachedVersion(cacheKey); found {
 		return version, sha, nil
 	}
@@ -478,7 +520,7 @@ func (a *Analyzer) cacheVersion(cacheKey, version, sha string) {
 	}

 	versionInfo := map[string]string{"version": version, "sha": sha}
-	_ = a.Cache.SetWithTTL(cacheKey, versionInfo, 1*time.Hour)
+	_ = a.Cache.SetWithTTL(cacheKey, versionInfo, cacheDefaultTTL)
 }

 // compareVersions compares two version strings and returns the update type.
@@ -505,7 +547,7 @@ func (a *Analyzer) compareVersions(current, latest string) string {
 func (a *Analyzer) parseVersionParts(version string) []string {
 	parts := strings.Split(version, ".")
 	// For floating versions like "v4", treat as "v4.0.0" for comparison
-	for len(parts) < 3 {
+	for len(parts) < versionPartsCount {
 		parts = append(parts, "0")
 	}
 	return parts
@@ -517,7 +559,7 @@ func (a *Analyzer) determineUpdateType(currentParts, latestParts []string) strin
 		return updateTypeMajor
 	}
 	if currentParts[1] != latestParts[1] {
-		return "minor"
+		return updateTypeMinor
 	}
 	if currentParts[2] != latestParts[2] {
 		return updateTypePatch
@@ -573,14 +615,14 @@ func (a *Analyzer) ApplyPinnedUpdates(updates []PinnedUpdate) error {
 // updateActionFile applies updates to a single action file.
 func (a *Analyzer) updateActionFile(filePath string, updates []PinnedUpdate) error {
 	// Read the file
-	content, err := os.ReadFile(filePath)
+	content, err := os.ReadFile(filePath) // #nosec G304 -- file path from function parameter
 	if err != nil {
 		return fmt.Errorf("failed to read file: %w", err)
 	}

 	// Create backup
-	backupPath := filePath + ".backup"
-	if err := os.WriteFile(backupPath, content, 0644); err != nil {
+	backupPath := filePath + backupExtension
+	if err := os.WriteFile(backupPath, content, backupFilePerms); err != nil { // #nosec G306 -- backup file permissions
 		return fmt.Errorf("failed to create backup: %w", err)
 	}

@@ -592,8 +634,7 @@ func (a *Analyzer) updateActionFile(filePath string, updates []PinnedUpdate) err
 			if strings.Contains(line, update.OldUses) {
 				// Replace the uses statement while preserving indentation
 				indent := strings.Repeat(" ", len(line)-len(strings.TrimLeft(line, " ")))
-				usesPrefix := "uses: "
-				lines[i] = indent + usesPrefix + update.NewUses
+				lines[i] = indent + usesFieldPrefix + update.NewUses
 				update.LineNumber = i + 1 // Store line number for reference
 				break
 			}
@@ -602,7 +643,8 @@ func (a *Analyzer) updateActionFile(filePath string, updates []PinnedUpdate) err

 	// Write updated content
 	updatedContent := strings.Join(lines, "\n")
-	if err := os.WriteFile(filePath, []byte(updatedContent), 0644); err != nil {
+	if err := os.WriteFile(filePath, []byte(updatedContent), updatedFilePerms); err != nil {
+		// #nosec G306 -- updated file permissions
 		return fmt.Errorf("failed to write updated file: %w", err)
 	}

@@ -629,11 +671,11 @@ func (a *Analyzer) validateActionFile(filePath string) error {

 // enrichWithGitHubData fetches additional information from GitHub API.
 func (a *Analyzer) enrichWithGitHubData(dep *Dependency, owner, repo string) error {
-	ctx, cancel := context.WithTimeout(context.Background(), 10*time.Second)
+	ctx, cancel := context.WithTimeout(context.Background(), apiCallTimeout)
 	defer cancel()

 	// Check cache first
-	cacheKey := fmt.Sprintf("repo:%s/%s", owner, repo)
+	cacheKey := cacheKeyRepo + fmt.Sprintf("%s/%s", owner, repo)
 	if a.Cache != nil {
 		if cached, exists := a.Cache.Get(cacheKey); exists {
 			if repository, ok := cached.(*github.Repository); ok {
@@ -651,7 +693,7 @@ func (a *Analyzer) enrichWithGitHubData(dep *Dependency, owner, repo string) err

 	// Cache the result with 1 hour TTL
 	if a.Cache != nil {
-		_ = a.Cache.SetWithTTL(cacheKey, repository, 1*time.Hour) // Ignore cache errors
+		_ = a.Cache.SetWithTTL(cacheKey, repository, cacheDefaultTTL) // Ignore cache errors
 	}

 	// Enrich dependency with API data
--- a/internal/dependencies/analyzer_test.go
+++ b/internal/dependencies/analyzer_test.go
@@ -11,6 +11,7 @@ import (
 	"github.com/google/go-github/v57/github"

 	"github.com/ivuorinen/gh-action-readme/internal/cache"
+	"github.com/ivuorinen/gh-action-readme/internal/git"
 	"github.com/ivuorinen/gh-action-readme/testutil"
 )

@@ -25,34 +26,34 @@ func TestAnalyzer_AnalyzeActionFile(t *testing.T) {
 	}{
 		{
 			name:        "simple action - no dependencies",
-			actionYML:   testutil.SimpleActionYML,
+			actionYML:   testutil.MustReadFixture("actions/javascript/simple.yml"),
 			expectError: false,
 			expectDeps:  false,
 			expectedLen: 0,
 		},
 		{
 			name:         "composite action with dependencies",
-			actionYML:    testutil.CompositeActionYML,
+			actionYML:    testutil.MustReadFixture("actions/composite/with-dependencies.yml"),
 			expectError:  false,
 			expectDeps:   true,
-			expectedLen:  3,
-			expectedDeps: []string{"actions/checkout@v4", "actions/setup-node@v3"},
+			expectedLen:  5, // 3 action dependencies + 2 shell script dependencies
+			expectedDeps: []string{"actions/checkout@v4", "actions/setup-node@v4", "actions/setup-python@v4"},
 		},
 		{
 			name:        "docker action - no step dependencies",
-			actionYML:   testutil.DockerActionYML,
+			actionYML:   testutil.MustReadFixture("actions/docker/basic.yml"),
 			expectError: false,
 			expectDeps:  false,
 			expectedLen: 0,
 		},
 		{
 			name:        "invalid action file",
-			actionYML:   testutil.InvalidActionYML,
+			actionYML:   testutil.MustReadFixture("actions/invalid/invalid-using.yml"),
 			expectError: true,
 		},
 		{
 			name:        "minimal action - no dependencies",
-			actionYML:   testutil.MinimalActionYML,
+			actionYML:   testutil.MustReadFixture("minimal-action.yml"),
 			expectError: false,
 			expectDeps:  false,
 			expectedLen: 0,
@@ -401,18 +402,7 @@ func TestAnalyzer_GeneratePinnedUpdate(t *testing.T) {
 	defer cleanup()

 	// Create a test action file with composite steps
-	actionContent := `name: 'Test Composite Action'
-description: 'Test action for update testing'
-runs:
-	using: 'composite'
-	steps:
-		- name: Checkout code
-			uses: actions/checkout@v3
-		- name: Setup Node
-			uses: actions/setup-node@v3.8.0
-			with:
-				node-version: '18'
-`
+	actionContent := testutil.MustReadFixture("test-composite-action.yml")

 	actionPath := filepath.Join(tmpDir, "action.yml")
 	testutil.WriteTestFile(t, actionPath, actionContent)
@@ -528,7 +518,7 @@ func TestAnalyzer_WithoutGitHubClient(t *testing.T) {
 	defer cleanup()

 	actionPath := filepath.Join(tmpDir, "action.yml")
-	testutil.WriteTestFile(t, actionPath, testutil.CompositeActionYML)
+	testutil.WriteTestFile(t, actionPath, testutil.MustReadFixture("actions/composite/basic.yml"))

 	deps, err := analyzer.AnalyzeActionFile(actionPath)

@@ -553,3 +543,76 @@ type mockTransport struct {
 func (t *mockTransport) RoundTrip(req *http.Request) (*http.Response, error) {
 	return t.client.Do(req)
 }
+
+// TestNewAnalyzer tests the analyzer constructor.
+func TestNewAnalyzer(t *testing.T) {
+	// Create test dependencies
+	mockResponses := testutil.MockGitHubResponses()
+	githubClient := testutil.MockGitHubClient(mockResponses)
+	cacheInstance, err := cache.NewCache(cache.DefaultConfig())
+	testutil.AssertNoError(t, err)
+	defer func() { _ = cacheInstance.Close() }()
+
+	repoInfo := git.RepoInfo{
+		Organization: "test-owner",
+		Repository:   "test-repo",
+	}
+
+	tests := []struct {
+		name         string
+		client       *github.Client
+		repoInfo     git.RepoInfo
+		cache        DependencyCache
+		expectNotNil bool
+	}{
+		{
+			name:         "creates analyzer with all dependencies",
+			client:       githubClient,
+			repoInfo:     repoInfo,
+			cache:        NewCacheAdapter(cacheInstance),
+			expectNotNil: true,
+		},
+		{
+			name:         "creates analyzer with nil client",
+			client:       nil,
+			repoInfo:     repoInfo,
+			cache:        NewCacheAdapter(cacheInstance),
+			expectNotNil: true,
+		},
+		{
+			name:         "creates analyzer with nil cache",
+			client:       githubClient,
+			repoInfo:     repoInfo,
+			cache:        nil,
+			expectNotNil: true,
+		},
+		{
+			name:         "creates analyzer with empty repo info",
+			client:       githubClient,
+			repoInfo:     git.RepoInfo{},
+			cache:        NewCacheAdapter(cacheInstance),
+			expectNotNil: true,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			analyzer := NewAnalyzer(tt.client, tt.repoInfo, tt.cache)
+
+			if tt.expectNotNil && analyzer == nil {
+				t.Fatal("expected non-nil analyzer")
+			}
+
+			// Verify fields are set correctly
+			if analyzer.GitHubClient != tt.client {
+				t.Error("GitHub client not set correctly")
+			}
+			if analyzer.Cache != tt.cache {
+				t.Error("cache not set correctly")
+			}
+			if analyzer.RepoInfo != tt.repoInfo {
+				t.Error("repo info not set correctly")
+			}
+		})
+	}
+}
--- a/internal/dependencies/parser.go
+++ b/internal/dependencies/parser.go
@@ -10,7 +10,7 @@ import (
 // parseCompositeActionFromFile reads and parses a composite action file.
 func (a *Analyzer) parseCompositeActionFromFile(actionPath string) (*ActionWithComposite, error) {
 	// Read the file
-	data, err := os.ReadFile(actionPath)
+	data, err := os.ReadFile(actionPath) // #nosec G304 -- action path from function parameter
 	if err != nil {
 		return nil, fmt.Errorf("failed to read action file %s: %w", actionPath, err)
 	}