ivuorinen/gh-action-readme
1
0
Fork 0
mirror of https://github.com/ivuorinen/gh-action-readme.git synced 2026-01-26 03:04:10 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ce02d3692974505e7b9dd804620f233124293d0f
gh-action-readme/main.go
Ismo Vuorinen ce02d36929 feat: add comprehensive security scanning and EditorConfig integration 
- Add govulncheck, Snyk, and Trivy vulnerability scanning
- Create security workflow for automated scanning on push/PR/schedule
- Add gitleaks for secrets detection and prevention
- Implement EditorConfig linting with eclint and editorconfig-checker
- Update Makefile with security and formatting targets
- Create SECURITY.md with vulnerability reporting guidelines
- Configure Dependabot for automated dependency updates
- Fix all EditorConfig violations across codebase
- Update Go version to 1.23.10 to address stdlib vulnerabilities
- Add tests for internal/helpers package (80% coverage)
- Remove deprecated functions and migrate to error-returning patterns
- Fix YAML indentation in test fixtures to resolve test failures
2025-08-03 20:12:18 +03:00

982 lines
28 KiB
Go
Raw Blame History

// Package main is the entry point for the gh-action-readme CLI tool.
package main
import (
"fmt"
"log"
"os"
"path/filepath"
"strings"
"github.com/spf13/cobra"
"github.com/ivuorinen/gh-action-readme/internal"
"github.com/ivuorinen/gh-action-readme/internal/cache"
"github.com/ivuorinen/gh-action-readme/internal/dependencies"
"github.com/ivuorinen/gh-action-readme/internal/helpers"
)
var (
// Version information (set by GoReleaser).
version = "dev"
commit = "none"
date = "unknown"
builtBy = "unknown"
// Application state.
globalConfig *internal.AppConfig
configFile string
verbose bool
quiet bool
)
// Helper functions to reduce duplication.
func createOutputManager(quiet bool) *internal.ColoredOutput {
return internal.NewColoredOutput(quiet)
}
func createAnalyzer(generator *internal.Generator, output *internal.ColoredOutput) *dependencies.Analyzer {
return helpers.CreateAnalyzer(generator, output)
}
func main() {
rootCmd := &cobra.Command{
Use: "gh-action-readme",
Short: "Auto-generate beautiful README and HTML documentation for GitHub Actions.",
Long: `gh-action-readme is a CLI tool for parsing one or many action.yml files and ` +
`generating informative, modern, and customizable documentation.`,
PersistentPreRun: initConfig,
}
// Global flags
rootCmd.PersistentFlags().StringVar(&configFile, "config", "", "config file (default: XDG config directory)")
rootCmd.PersistentFlags().BoolVarP(&verbose, "verbose", "v", false, "verbose output")
rootCmd.PersistentFlags().BoolVarP(&quiet, "quiet", "q", false, "quiet output (overrides verbose)")
rootCmd.AddCommand(newGenCmd())
rootCmd.AddCommand(newValidateCmd())
rootCmd.AddCommand(newSchemaCmd())
rootCmd.AddCommand(&cobra.Command{
Use: "version",
Short: "Print the version number",
Long: "Print the version number and build information",
Run: func(cmd *cobra.Command, _ []string) {
verbose, _ := cmd.Flags().GetBool("verbose")
if verbose {
fmt.Printf("gh-action-readme version %s\n", version)
fmt.Printf(" commit: %s\n", commit)
fmt.Printf(" built at: %s\n", date)
fmt.Printf(" built by: %s\n", builtBy)
} else {
fmt.Println(version)
}
},
})
rootCmd.AddCommand(&cobra.Command{
Use: "about",
Short: "About this tool",
Run: func(_ *cobra.Command, _ []string) {
fmt.Println("gh-action-readme: Generates README.md and HTML for GitHub Actions. MIT License.")
},
})
rootCmd.AddCommand(newConfigCmd())
rootCmd.AddCommand(newDepsCmd())
rootCmd.AddCommand(newCacheCmd())
if err := rootCmd.Execute(); err != nil {
fmt.Fprintln(os.Stderr, err)
os.Exit(1)
}
}
// Command registration imports below.
func initConfig(_ *cobra.Command, _ []string) {
var err error
// For now, use the legacy InitConfig. We'll enhance this to use LoadConfiguration
// when we have better git detection and directory context.
globalConfig, err = internal.InitConfig(configFile)
if err != nil {
log.Fatalf("Failed to initialize configuration: %v", err)
}
// Override with command line flags
if verbose {
globalConfig.Verbose = true
}
if quiet {
globalConfig.Quiet = true
globalConfig.Verbose = false // quiet overrides verbose
}
}
func newGenCmd() *cobra.Command {
cmd := &cobra.Command{
Use: "gen",
Short: "Generate README.md and/or HTML for all action.yml files.",
Run: genHandler,
}
cmd.Flags().StringP("output-format", "f", "md", "output format: md, html, json, asciidoc")
cmd.Flags().StringP("output-dir", "o", ".", "output directory")
cmd.Flags().StringP("theme", "t", "", "template theme: github, gitlab, minimal, professional")
cmd.Flags().BoolP("recursive", "r", false, "search for action.yml files recursively")
return cmd
}
func newValidateCmd() *cobra.Command {
return &cobra.Command{
Use: "validate",
Short: "Validate action.yml files and optionally autofill missing fields.",
Run: validateHandler,
}
}
func newSchemaCmd() *cobra.Command {
return &cobra.Command{
Use: "schema",
Short: "Show the action.yml schema info.",
Run: schemaHandler,
}
}
func genHandler(cmd *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
currentDir, err := helpers.GetCurrentDir()
if err != nil {
output.Error("Error getting current directory: %v", err)
os.Exit(1)
}
repoRoot := helpers.FindGitRepoRoot(currentDir)
config := loadGenConfig(repoRoot, currentDir)
applyGlobalFlags(config)
applyCommandFlags(cmd, config)
generator := internal.NewGenerator(config)
logConfigInfo(generator, config, repoRoot)
actionFiles := discoverActionFiles(generator, currentDir, cmd)
processActionFiles(generator, actionFiles)
}
// loadGenConfig loads multi-level configuration.
func loadGenConfig(repoRoot, currentDir string) *internal.AppConfig {
config, err := internal.LoadConfiguration(configFile, repoRoot, currentDir)
if err != nil {
fmt.Fprintf(os.Stderr, "Error loading configuration: %v\n", err)
os.Exit(1)
}
return config
}
// applyGlobalFlags applies global verbose/quiet flags.
func applyGlobalFlags(config *internal.AppConfig) {
if verbose {
config.Verbose = true
}
if quiet {
config.Quiet = true
config.Verbose = false
}
}
// applyCommandFlags applies command-specific flags.
func applyCommandFlags(cmd *cobra.Command, config *internal.AppConfig) {
outputFormat, _ := cmd.Flags().GetString("output-format")
outputDir, _ := cmd.Flags().GetString("output-dir")
theme, _ := cmd.Flags().GetString("theme")
if outputFormat != "md" {
config.OutputFormat = outputFormat
}
if outputDir != "." {
config.OutputDir = outputDir
}
if theme != "" {
config.Theme = theme
}
}
// logConfigInfo logs configuration details if verbose.
func logConfigInfo(generator *internal.Generator, config *internal.AppConfig, repoRoot string) {
if config.Verbose {
generator.Output.Info("Using effective config: %+v", config)
if repoRoot != "" {
generator.Output.Info("Repository root: %s", repoRoot)
}
}
}
// discoverActionFiles finds action files with error handling.
func discoverActionFiles(generator *internal.Generator, currentDir string, cmd *cobra.Command) []string {
recursive, _ := cmd.Flags().GetBool("recursive")
actionFiles, err := generator.DiscoverActionFiles(currentDir, recursive)
if err != nil {
generator.Output.Error("Error discovering action files: %v", err)
os.Exit(1)
}
if len(actionFiles) == 0 {
generator.Output.Error("No action.yml or action.yaml files found in %s", currentDir)
generator.Output.Info("Please run this command in a directory containing GitHub Action files.")
os.Exit(1)
}
return actionFiles
}
// processActionFiles processes discovered files.
func processActionFiles(generator *internal.Generator, actionFiles []string) {
if err := generator.ProcessBatch(actionFiles); err != nil {
generator.Output.Error("Error during generation: %v", err)
os.Exit(1)
}
}
func validateHandler(_ *cobra.Command, _ []string) {
currentDir, err := helpers.GetCurrentDir()
if err != nil {
output := createOutputManager(globalConfig.Quiet)
output.Error("Error getting current directory: %v", err)
os.Exit(1)
}
generator := internal.NewGenerator(globalConfig)
actionFiles, err := generator.DiscoverActionFiles(currentDir, true) // Recursive for validation
if err != nil {
generator.Output.Error("Error discovering action files: %v", err)
os.Exit(1)
}
if len(actionFiles) == 0 {
generator.Output.Error("No action.yml or action.yaml files found in %s", currentDir)
generator.Output.Info("Please run this command in a directory containing GitHub Action files.")
os.Exit(1)
}
// Validate the discovered files
if err := generator.ValidateFiles(actionFiles); err != nil {
generator.Output.Error("Validation completed with errors: %v", err)
os.Exit(1)
}
generator.Output.Success("\nAll validations passed successfully!")
}
func schemaHandler(_ *cobra.Command, _ []string) {
output := internal.NewColoredOutput(globalConfig.Quiet)
if globalConfig.Verbose {
output.Info("Using schema: %s", globalConfig.Schema)
}
output.Printf("Schema: schemas/action.schema.json (replaceable, editable)")
}
func newConfigCmd() *cobra.Command {
cmd := &cobra.Command{
Use: "config",
Short: "Configuration management commands",
Run: func(_ *cobra.Command, _ []string) {
output := internal.NewColoredOutput(globalConfig.Quiet)
path, err := internal.GetConfigPath()
if err != nil {
output.Error("Error getting config path: %v", err)
return
}
output.Info("Configuration file location: %s", path)
if globalConfig.Verbose {
output.Info("Current config: %+v", globalConfig)
}
},
}
// Add subcommands
cmd.AddCommand(&cobra.Command{
Use: "init",
Short: "Initialize default configuration file",
Run: configInitHandler,
})
cmd.AddCommand(&cobra.Command{
Use: "show",
Short: "Show current configuration",
Run: configShowHandler,
})
cmd.AddCommand(&cobra.Command{
Use: "themes",
Short: "List available themes",
Run: configThemesHandler,
})
return cmd
}
func configInitHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
// Check if config already exists
configPath, err := internal.GetConfigPath()
if err != nil {
output.Error("Failed to get config path: %v", err)
os.Exit(1)
}
if _, err := os.Stat(configPath); err == nil {
output.Warning("Configuration file already exists at: %s", configPath)
output.Info("Use 'gh-action-readme config show' to view current configuration")
return
}
// Create default config
if err := internal.WriteDefaultConfig(); err != nil {
output.Error("Failed to write default configuration: %v", err)
os.Exit(1)
}
output.Success("Created default configuration at: %s", configPath)
output.Info("Edit this file to customize your settings")
}
func configShowHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
output.Bold("Current Configuration:")
output.Printf("Theme: %s\n", globalConfig.Theme)
output.Printf("Output Format: %s\n", globalConfig.OutputFormat)
output.Printf("Output Directory: %s\n", globalConfig.OutputDir)
output.Printf("Template: %s\n", globalConfig.Template)
output.Printf("Schema: %s\n", globalConfig.Schema)
output.Printf("Verbose: %t\n", globalConfig.Verbose)
output.Printf("Quiet: %t\n", globalConfig.Quiet)
}
func configThemesHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
output.Bold("Available Themes:")
themes := []struct {
name string
desc string
}{
{"default", "Original simple template"},
{"github", "GitHub-style with badges and collapsible sections"},
{"gitlab", "GitLab-focused with CI/CD examples"},
{"minimal", "Clean and concise documentation"},
{"professional", "Comprehensive with troubleshooting and ToC"},
}
for _, theme := range themes {
if theme.name == globalConfig.Theme {
output.Success("• %s - %s (current)", theme.name, theme.desc)
} else {
output.Printf("• %s - %s\n", theme.name, theme.desc)
}
}
output.Info("\nUse --theme flag or set 'theme' in config file to change theme")
}
func newDepsCmd() *cobra.Command {
cmd := &cobra.Command{
Use: "deps",
Short: "Dependency management commands",
Long: "Analyze and manage GitHub Action dependencies",
}
cmd.AddCommand(&cobra.Command{
Use: "list",
Short: "List all dependencies in action files",
Run: depsListHandler,
})
cmd.AddCommand(&cobra.Command{
Use: "security",
Short: "Analyze dependency security (pinned vs floating versions)",
Run: depsSecurityHandler,
})
cmd.AddCommand(&cobra.Command{
Use: "outdated",
Short: "Check for outdated dependencies",
Run: depsOutdatedHandler,
})
cmd.AddCommand(&cobra.Command{
Use: "graph",
Short: "Generate dependency graph",
Run: depsGraphHandler,
})
upgradeCmd := &cobra.Command{
Use: "upgrade",
Short: "Upgrade dependencies with interactive or CI mode",
Long: "Upgrade dependencies to latest versions. Use --ci for automated pinned updates.",
Run: depsUpgradeHandler,
}
upgradeCmd.Flags().Bool("ci", false, "CI/CD mode: automatically pin all updates to commit SHAs")
upgradeCmd.Flags().Bool("all", false, "Update all outdated dependencies without prompts")
upgradeCmd.Flags().Bool("dry-run", false, "Show what would be updated without making changes")
cmd.AddCommand(upgradeCmd)
pinCmd := &cobra.Command{
Use: "pin",
Short: "Pin floating versions to specific commits",
Long: "Convert floating versions (like @v4) to pinned commit SHAs with version comments.",
Run: depsUpgradeHandler, // Uses same handler with different flags
}
pinCmd.Flags().Bool("all", false, "Pin all floating dependencies")
pinCmd.Flags().Bool("dry-run", false, "Show what would be pinned without making changes")
cmd.AddCommand(pinCmd)
return cmd
}
func newCacheCmd() *cobra.Command {
cmd := &cobra.Command{
Use: "cache",
Short: "Cache management commands",
Long: "Manage the XDG-compliant dependency cache",
}
cmd.AddCommand(&cobra.Command{
Use: "clear",
Short: "Clear the dependency cache",
Run: cacheClearHandler,
})
cmd.AddCommand(&cobra.Command{
Use: "stats",
Short: "Show cache statistics",
Run: cacheStatsHandler,
})
cmd.AddCommand(&cobra.Command{
Use: "path",
Short: "Show cache directory path",
Run: cachePathHandler,
})
return cmd
}
func depsListHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
currentDir, err := helpers.GetCurrentDir()
if err != nil {
output.Error("Error getting current directory: %v", err)
os.Exit(1)
}
generator := internal.NewGenerator(globalConfig)
actionFiles := discoverDepsActionFiles(generator, output, currentDir)
if len(actionFiles) == 0 {
output.Warning("No action files found")
return
}
analyzer := createAnalyzer(generator, output)
totalDeps := analyzeDependencies(output, actionFiles, analyzer)
if totalDeps > 0 {
output.Bold("\nTotal dependencies: %d", totalDeps)
}
}
// discoverDepsActionFiles discovers action files for dependency analysis.
func discoverDepsActionFiles(
generator *internal.Generator,
output *internal.ColoredOutput,
currentDir string,
) []string {
actionFiles, err := generator.DiscoverActionFiles(currentDir, true)
if err != nil {
output.Error("Error discovering action files: %v", err)
os.Exit(1)
}
if len(actionFiles) == 0 {
output.Error("No action.yml or action.yaml files found in %s", currentDir)
output.Info("Please run this command in a directory containing GitHub Action files.")
os.Exit(1)
}
return actionFiles
}
// analyzeDependencies analyzes and displays dependencies.
func analyzeDependencies(output *internal.ColoredOutput, actionFiles []string, analyzer *dependencies.Analyzer) int {
totalDeps := 0
output.Bold("Dependencies found in action files:")
for _, actionFile := range actionFiles {
output.Info("\n📄 %s", actionFile)
totalDeps += analyzeActionFileDeps(output, actionFile, analyzer)
}
return totalDeps
}
// analyzeActionFileDeps analyzes dependencies in a single action file.
func analyzeActionFileDeps(output *internal.ColoredOutput, actionFile string, analyzer *dependencies.Analyzer) int {
if analyzer == nil {
output.Printf(" • Cannot analyze (no GitHub token)\n")
return 0
}
deps, err := analyzer.AnalyzeActionFile(actionFile)
if err != nil {
output.Warning(" ⚠️ Error analyzing: %v", err)
return 0
}
if len(deps) == 0 {
output.Printf(" • No dependencies (not a composite action)\n")
return 0
}
for _, dep := range deps {
if dep.IsPinned {
output.Success(" 🔒 %s @ %s - %s", dep.Name, dep.Version, dep.Description)
} else {
output.Warning(" 📌 %s @ %s - %s", dep.Name, dep.Version, dep.Description)
}
}
return len(deps)
}
func depsSecurityHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
currentDir, err := helpers.GetCurrentDir()
if err != nil {
output.Error("Error getting current directory: %v", err)
os.Exit(1)
}
generator := internal.NewGenerator(globalConfig)
actionFiles := discoverDepsActionFiles(generator, output, currentDir)
if len(actionFiles) == 0 {
output.Warning("No action files found")
return
}
analyzer := createAnalyzer(generator, output)
if analyzer == nil {
return
}
pinnedCount, floatingDeps := analyzeSecurityDeps(output, actionFiles, analyzer)
displaySecuritySummary(output, currentDir, pinnedCount, floatingDeps)
}
// analyzeSecurityDeps analyzes dependencies for security issues.
func analyzeSecurityDeps(
output *internal.ColoredOutput,
actionFiles []string,
analyzer *dependencies.Analyzer,
) (int, []struct {
file string
dep dependencies.Dependency
}) {
pinnedCount := 0
var floatingDeps []struct {
file string
dep dependencies.Dependency
}
output.Bold("Security Analysis of GitHub Action Dependencies:")
for _, actionFile := range actionFiles {
deps, err := analyzer.AnalyzeActionFile(actionFile)
if err != nil {
continue
}
for _, dep := range deps {
if dep.IsPinned {
pinnedCount++
} else {
floatingDeps = append(floatingDeps, struct {
file string
dep dependencies.Dependency
}{actionFile, dep})
}
}
}
return pinnedCount, floatingDeps
}
// displaySecuritySummary shows security analysis results.
func displaySecuritySummary(output *internal.ColoredOutput, currentDir string, pinnedCount int, floatingDeps []struct {
file string
dep dependencies.Dependency
}) {
output.Success("\n🔒 Pinned versions: %d (Recommended for security)", pinnedCount)
floatingCount := len(floatingDeps)
if floatingCount > 0 {
output.Warning("📌 Floating versions: %d (Consider pinning)", floatingCount)
displayFloatingDeps(output, currentDir, floatingDeps)
output.Info("\nRecommendation: Pin dependencies to specific commits or semantic versions for better security.")
} else if pinnedCount > 0 {
output.Info("\n✅ All dependencies are properly pinned!")
}
}
// displayFloatingDeps shows floating dependencies details.
func displayFloatingDeps(output *internal.ColoredOutput, currentDir string, floatingDeps []struct {
file string
dep dependencies.Dependency
}) {
output.Bold("\nFloating dependencies that should be pinned:")
for _, fd := range floatingDeps {
relPath, _ := filepath.Rel(currentDir, fd.file)
output.Warning(" • %s @ %s", fd.dep.Name, fd.dep.Version)
output.Printf(" in %s\n", relPath)
}
}
func depsOutdatedHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
currentDir, err := helpers.GetCurrentDir()
if err != nil {
output.Error("Error getting current directory: %v", err)
os.Exit(1)
}
generator := internal.NewGenerator(globalConfig)
actionFiles := discoverDepsActionFiles(generator, output, currentDir)
if len(actionFiles) == 0 {
output.Warning("No action files found")
return
}
analyzer := createAnalyzer(generator, output)
if analyzer == nil {
return
}
if !validateGitHubToken(output) {
return
}
allOutdated := checkAllOutdated(output, actionFiles, analyzer)
displayOutdatedResults(output, allOutdated)
}
// validateGitHubToken checks if GitHub token is available.
func validateGitHubToken(output *internal.ColoredOutput) bool {
if globalConfig.GitHubToken == "" {
output.Warning("No GitHub token found. Set GITHUB_TOKEN environment variable for accurate results")
return false
}
return true
}
// checkAllOutdated checks all action files for outdated dependencies.
func checkAllOutdated(
output *internal.ColoredOutput,
actionFiles []string,
analyzer *dependencies.Analyzer,
) []dependencies.OutdatedDependency {
output.Bold("Checking for outdated dependencies...")
var allOutdated []dependencies.OutdatedDependency
for _, actionFile := range actionFiles {
deps, err := analyzer.AnalyzeActionFile(actionFile)
if err != nil {
output.Warning("Error analyzing %s: %v", actionFile, err)
continue
}
outdated, err := analyzer.CheckOutdated(deps)
if err != nil {
output.Warning("Error checking outdated for %s: %v", actionFile, err)
continue
}
allOutdated = append(allOutdated, outdated...)
}
return allOutdated
}
// displayOutdatedResults shows outdated dependency results.
func displayOutdatedResults(output *internal.ColoredOutput, allOutdated []dependencies.OutdatedDependency) {
if len(allOutdated) == 0 {
output.Success("✅ All dependencies are up to date!")
return
}
output.Warning("Found %d outdated dependencies:", len(allOutdated))
for _, outdated := range allOutdated {
output.Printf(" • %s: %s → %s (%s update)",
outdated.Current.Name,
outdated.Current.Version,
outdated.LatestVersion,
outdated.UpdateType)
if outdated.IsSecurityUpdate {
output.Warning(" 🔒 Potential security update")
}
}
output.Info("\nRun 'gh-action-readme deps upgrade' to update dependencies")
}
func depsUpgradeHandler(cmd *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
currentDir, err := helpers.GetCurrentDir()
if err != nil {
output.Error("Error getting current directory: %v", err)
os.Exit(1)
}
// Setup and validation
analyzer, actionFiles := setupDepsUpgrade(output, currentDir)
if analyzer == nil || len(actionFiles) == 0 {
return
}
// Parse flags and show mode
ciMode, _ := cmd.Flags().GetBool("ci")
allFlag, _ := cmd.Flags().GetBool("all")
dryRun, _ := cmd.Flags().GetBool("dry-run")
isPinCmd := cmd.Use == "pin"
showUpgradeMode(output, ciMode, isPinCmd)
// Collect all updates
allUpdates := collectAllUpdates(output, analyzer, actionFiles)
if len(allUpdates) == 0 {
output.Success("✅ No updates needed - all dependencies are current and pinned!")
return
}
// Show and apply updates
showPendingUpdates(output, allUpdates, currentDir)
if !dryRun {
applyUpdates(output, analyzer, allUpdates, ciMode || allFlag)
} else {
output.Info("\n🔍 Dry run complete - no changes made")
}
}
// setupDepsUpgrade handles initial setup and validation for dependency upgrades.
func setupDepsUpgrade(output *internal.ColoredOutput, currentDir string) (*dependencies.Analyzer, []string) {
generator := internal.NewGenerator(globalConfig)
actionFiles, err := generator.DiscoverActionFiles(currentDir, true)
if err != nil {
output.Error("Error discovering action files: %v", err)
os.Exit(1)
}
if len(actionFiles) == 0 {
output.Warning("No action files found")
return nil, nil
}
analyzer, err := generator.CreateDependencyAnalyzer()
if err != nil {
output.Warning("Could not create dependency analyzer: %v", err)
return nil, nil
}
if globalConfig.GitHubToken == "" {
output.Warning("No GitHub token found. Set GITHUB_TOKEN environment variable")
return nil, nil
}
return analyzer, actionFiles
}
// showUpgradeMode displays the current upgrade mode to the user.
func showUpgradeMode(output *internal.ColoredOutput, ciMode, isPinCmd bool) {
switch {
case ciMode:
output.Bold("🤖 CI/CD Mode: Automated dependency updates with pinned commit SHAs")
case isPinCmd:
output.Bold("📌 Pinning floating dependencies to commit SHAs")
default:
output.Bold("🔄 Interactive dependency upgrade")
}
}
// collectAllUpdates gathers all available updates from action files.
func collectAllUpdates(
output *internal.ColoredOutput,
analyzer *dependencies.Analyzer,
actionFiles []string,
) []dependencies.PinnedUpdate {
var allUpdates []dependencies.PinnedUpdate
for _, actionFile := range actionFiles {
deps, err := analyzer.AnalyzeActionFile(actionFile)
if err != nil {
output.Warning("Error analyzing %s: %v", actionFile, err)
continue
}
outdated, err := analyzer.CheckOutdated(deps)
if err != nil {
output.Warning("Error checking outdated for %s: %v", actionFile, err)
continue
}
for _, outdatedDep := range outdated {
update, err := analyzer.GeneratePinnedUpdate(
actionFile,
outdatedDep.Current,
outdatedDep.LatestVersion,
outdatedDep.LatestSHA,
)
if err != nil {
output.Warning("Error generating update for %s: %v", outdatedDep.Current.Name, err)
continue
}
allUpdates = append(allUpdates, *update)
}
}
return allUpdates
}
// showPendingUpdates displays what updates will be applied.
func showPendingUpdates(
output *internal.ColoredOutput,
allUpdates []dependencies.PinnedUpdate,
currentDir string,
) {
output.Info("Found %d dependencies to update:", len(allUpdates))
for _, update := range allUpdates {
relPath, _ := filepath.Rel(currentDir, update.FilePath)
output.Printf(" • %s (%s update)", update.OldUses, update.UpdateType)
output.Printf(" → %s", update.NewUses)
output.Printf(" in %s", relPath)
}
}
// applyUpdates applies the collected updates either automatically or interactively.
func applyUpdates(
output *internal.ColoredOutput,
analyzer *dependencies.Analyzer,
allUpdates []dependencies.PinnedUpdate,
automatic bool,
) {
if automatic {
output.Info("\n🚀 Applying updates...")
if err := analyzer.ApplyPinnedUpdates(allUpdates); err != nil {
output.Error("Failed to apply updates: %v", err)
os.Exit(1)
}
output.Success("✅ Successfully updated %d dependencies with pinned commit SHAs", len(allUpdates))
} else {
// Interactive mode
output.Info("\n❓ This will modify your action.yml files. Continue? (y/N): ")
var response string
_, _ = fmt.Scanln(&response) // User input, scan error not critical
if strings.ToLower(response) != "y" && strings.ToLower(response) != "yes" {
output.Info("Canceled")
return
}
output.Info("🚀 Applying updates...")
if err := analyzer.ApplyPinnedUpdates(allUpdates); err != nil {
output.Error("Failed to apply updates: %v", err)
os.Exit(1)
}
output.Success("✅ Successfully updated %d dependencies", len(allUpdates))
}
}
func depsGraphHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
output.Bold("Dependency Graph:")
output.Info("Generating visual dependency graph...")
output.Printf("This feature is not yet implemented\n")
}
func cacheClearHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
output.Info("Clearing dependency cache...")
// Create a cache instance
cacheInstance, err := cache.NewCache(cache.DefaultConfig())
if err != nil {
output.Error("Failed to access cache: %v", err)
os.Exit(1)
}
if err := cacheInstance.Clear(); err != nil {
output.Error("Failed to clear cache: %v", err)
os.Exit(1)
}
output.Success("Cache cleared successfully")
}
func cacheStatsHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
// Create a cache instance
cacheInstance, err := cache.NewCache(cache.DefaultConfig())
if err != nil {
output.Error("Failed to access cache: %v", err)
os.Exit(1)
}
stats := cacheInstance.Stats()
output.Bold("Cache Statistics:")
output.Printf("Cache location: %s\n", stats["cache_dir"])
output.Printf("Total entries: %d\n", stats["total_entries"])
output.Printf("Expired entries: %d\n", stats["expired_count"])
// Format size nicely
totalSize, ok := stats["total_size"].(int64)
if !ok {
totalSize = 0
}
sizeStr := "0 bytes"
if totalSize > 0 {
const unit = 1024
switch {
case totalSize < unit:
sizeStr = fmt.Sprintf("%d bytes", totalSize)
case totalSize < unit*unit:
sizeStr = fmt.Sprintf("%.2f KB", float64(totalSize)/unit)
case totalSize < unit*unit*unit:
sizeStr = fmt.Sprintf("%.2f MB", float64(totalSize)/(unit*unit))
default:
sizeStr = fmt.Sprintf("%.2f GB", float64(totalSize)/(unit*unit*unit))
}
}
output.Printf("Total size: %s\n", sizeStr)
}
func cachePathHandler(_ *cobra.Command, _ []string) {
output := createOutputManager(globalConfig.Quiet)
// Create a cache instance
cacheInstance, err := cache.NewCache(cache.DefaultConfig())
if err != nil {
output.Error("Failed to access cache: %v", err)
os.Exit(1)
}
stats := cacheInstance.Stats()
cachePath, ok := stats["cache_dir"].(string)
if !ok {
cachePath = "unknown"
}
output.Bold("Cache Directory:")
output.Printf("%s\n", cachePath)
// Check if directory exists
if _, err := os.Stat(cachePath); err == nil {
output.Success("Directory exists")
} else if os.IsNotExist(err) {
output.Warning("Directory does not exist (will be created on first use)")
}
}
Reference in New Issue View Git Blame Copy Permalink