Skip to content

Commit

Permalink
Core scoped configuration & SECURED_ENV_VARIABLES (#2601)
Browse files Browse the repository at this point in the history 
* Core: Scope configuration instead of directly using ENV vars

* Fixes

* Default request id

* Fix sarif test

* Fix get_workspace

* uuid as string

* Replace distutils by shutil

* PRINT_ALL_FILES = false for test classes

* Fixes about scoped config

* Revert "PRINT_ALL_FILES = false for test classes"

This reverts commit df07dfa.

* Display request config in header

* Fix init _config

* Fix subprocess_env

* copy node_modules only if there are pre_commands & post_commands

* more logs

* Reformat config when must be used for env

* Fix check missing flavors

* Fix config test classes

* Fix Github Comment reporter

* mypy & cspell fixes

* [MegaLinter] Apply linters fixes

* Ad icu-libs for BICEP linter

* Fix build script

* [MegaLinter] Apply linters fixes

* Fix pre_test

* [MegaLinter] Apply linters fixes

* Do not use os.environ to call subprocess

* SECURED_ENV_VARIABLES

* Fix

* [MegaLinter] Apply linters fixes

* Doc SECURED_ENV_VARIABLES

* Update jsonschema

* Do not use secured environment for pre_commands & post_commands by default

* [MegaLinter] Apply linters fixes

* Manage init_config case for test classes

* Fix test cases __init__

* [MegaLinter] Apply linters fixes

* Fix config tests

* [MegaLinter] Apply linters fixes

* Fix config class

* [MegaLinter] Apply linters fixes

* Fix test classes

* [MegaLinter] Apply linters fixes

* Fix load plugins & secure ENV

* Fix powershell_formatter test class

* [MegaLinter] Apply linters fixes

* Use DELETE_TEST_CLASSES to reset test classes when building

* Documentation

* [MegaLinter] Apply linters fixes

* Display process number in logs

* display

---------

Co-authored-by: nvuillam <[email protected]>
  • Loading branch information
@nvuillam
nvuillam and nvuillam authored Apr 30, 2023
1 parent 0e3eadd commit 7a78b9a
Show file tree
Hide file tree
Showing 61 changed files with 1,159 additions and 642 deletions.
28 changes: 15 additions & 13 deletions .automation/build.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@
import yaml
from bs4 import BeautifulSoup
from giturlparse import parse
from megalinter import utils
from megalinter import config, utils
from megalinter.constants import (
DEFAULT_DOCKERFILE_APK_PACKAGES,
DEFAULT_RELEASE,
Expand All @@ -47,6 +47,7 @@
UPDATE_CHANGELOG = "--changelog" in sys.argv
IS_LATEST = "--latest" in sys.argv
DELETE_DOCKERFILES = "--delete-dockerfiles" in sys.argv
DELETE_TEST_CLASSES = "--delete-test-classes" in sys.argv

# Release args management
if RELEASE is True:
Expand Down Expand Up @@ -153,7 +154,7 @@ def generate_flavor(flavor, flavor_info):
descriptor_and_linters += [descriptor]
flavor_descriptors += [descriptor["descriptor_id"]]
# Get install instructions at linter level
linters = megalinter.linter_factory.list_all_linters()
linters = megalinter.linter_factory.list_all_linters(({"request_id": "build"}))
requires_docker = False
for linter in linters:
if match_flavor(vars(linter), flavor, flavor_info) is True:
Expand Down Expand Up @@ -596,7 +597,7 @@ def generate_linter_dockerfiles():
if "install" in descriptor:
descriptor_items += [descriptor]
descriptor_linters = megalinter.linter_factory.build_descriptor_linters(
descriptor_file, None
descriptor_file, {"request_id": "build"}
)
# Browse descriptor linters
for linter in descriptor_linters:
Expand Down Expand Up @@ -686,11 +687,12 @@ def generate_linter_dockerfiles():
def generate_linter_test_classes():
test_linters_root = f"{REPO_HOME}/megalinter/tests/test_megalinter/linters"

# Remove all the contents of test_linters_root beforehand so that the result is deterministic
shutil.rmtree(os.path.realpath(test_linters_root))
os.makedirs(os.path.realpath(test_linters_root))
if DELETE_TEST_CLASSES is True:
# Remove all the contents of test_linters_root beforehand so that the result is deterministic
shutil.rmtree(os.path.realpath(test_linters_root))
os.makedirs(os.path.realpath(test_linters_root))

linters = megalinter.linter_factory.list_all_linters()
linters = megalinter.linter_factory.list_all_linters(({"request_id": "build"}))
for linter in linters:
if linter.name is not None:
linter_name = linter.name
Expand Down Expand Up @@ -737,7 +739,7 @@ def list_descriptors_for_build():
descriptor = megalinter.linter_factory.build_descriptor_info(descriptor_file)
descriptors += [descriptor]
descriptor_linters = megalinter.linter_factory.build_descriptor_linters(
descriptor_file
descriptor_file, {"request_id": "build"}
)
linters_by_type[descriptor_linters[0].descriptor_type] += descriptor_linters
DESCRIPTORS_FOR_BUILD_CACHE = descriptors, linters_by_type
Expand Down Expand Up @@ -2468,7 +2470,7 @@ def generate_json_schema_enums():
outfile.write("\n")
# Update list of descriptors and linters in configuration schema
descriptors, _linters_by_type = list_descriptors_for_build()
linters = megalinter.linter_factory.list_all_linters()
linters = megalinter.linter_factory.list_all_linters({"request_id": "build"})
with open(CONFIG_JSON_SCHEMA, "r", encoding="utf-8") as json_file:
json_schema = json.load(json_file)
json_schema["definitions"]["enum_descriptor_keys"]["enum"] = [
Expand All @@ -2489,7 +2491,7 @@ def generate_json_schema_enums():

# Collect linters info from linter url, later used to build link preview card within linter documentation
def collect_linter_previews():
linters = megalinter.linter_factory.list_all_linters()
linters = megalinter.linter_factory.list_all_linters({"request_id": "build"})
# Read file
with open(LINKS_PREVIEW_FILE, "r", encoding="utf-8") as json_file:
data = json.load(json_file)
Expand All @@ -2498,7 +2500,7 @@ def collect_linter_previews():
for linter in linters:
if (
linter.linter_name not in data
or megalinter.config.get("REFRESH_LINTER_PREVIEWS", "false") == "true"
or megalinter.config.get(None, "REFRESH_LINTER_PREVIEWS", "false") == "true"
):
logging.info(
f"Collecting link preview info for {linter.linter_name} at {linter.linter_url}"
Expand Down Expand Up @@ -2527,7 +2529,7 @@ def collect_linter_previews():


def generate_documentation_all_linters():
linters_raw = megalinter.linter_factory.list_all_linters()
linters_raw = megalinter.linter_factory.list_all_linters(({"request_id": "build"}))
linters = []
with open(VERSIONS_FILE, "r", encoding="utf-8") as json_file:
linter_versions = json.load(json_file)
Expand Down Expand Up @@ -3103,7 +3105,7 @@ def update_workflow_linters(file_path, linters):
format="%(asctime)s [%(levelname)s] %(message)s",
handlers=[logging.StreamHandler(sys.stdout)],
)

config.init_config("build")
# noinspection PyTypeChecker
collect_linter_previews()
generate_json_schema_enums()
Expand Down
2 changes: 1 addition & 1 deletion .automation/generated/linter-versions.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -94,7 +94,7 @@
"standard": "17.0.0",
"stylelint": "15.6.0",
"swiftlint": "0.51.0",
"syft": "0.79.0",
"syft": "0.76.1",
"tekton-lint": "0.6.0",
"terraform-fmt": "1.4.6",
"terragrunt": "0.45.6",
Expand Down
3 changes: 3 additions & 0 deletions .automation/test/sample_project/.mega-linter.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
DISABLE:
- REPOSITORY
- SPELL
6 changes: 0 additions & 6 deletions .automation/test/sample_project/groovy_good_01.groovy
View file

This file was deleted.

3 changes: 3 additions & 0 deletions .github/linters/.cspell.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -535,6 +535,7 @@
"contextlib",
"contextmanager",
"copypaste",
"copytree",
"coreutils",
"countdef",
"coursier",
Expand Down Expand Up @@ -576,6 +577,7 @@
"disableassertions",
"disablesystemassertions",
"displaymath",
"distutils",
"djlint",
"dockerfilelint",
"dockerfilelintrc",
Expand Down Expand Up @@ -1217,6 +1219,7 @@
"shpca",
"shppa",
"shpss",
"shutil",
"simplexml",
"slshape",
"smallskip",
Expand Down
1 change: 1 addition & 0 deletions .mega-linter.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,7 @@ REPOSITORY_TRIVY_ARGUMENTS:
- "--skip-dirs"
- ".automation/test"
SHOW_ELAPSED_TIME: true
FLAVOR_SUGGESTIONS: false
EMAIL_REPORTER: false
FILEIO_REPORTER: true
JSON_REPORTER: true
Expand Down
3 changes: 3 additions & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,6 +28,9 @@ Note: Can be used with `oxsecurity/megalinter@beta` in your GitHub Action mega-l

- Core
- Use relative file paths to call linters ([#1875](https://github.com/oxsecurity/megalinter/issues/1875))
- Refactor internal configuration management to scope config to a request identifier
- New configuration variable SECURED_ENV_VARIABLES to hide some env vars from environment used when calling linters
- Replace deprecated distutils.copy_tree by shutil.copytree
- Add support for idea plugins autoinstall
- Upgrade base Docker image to python:3.11.3-alpine3.17
- Fix issue preventing plugins to work with flavors
Expand Down
Loading

0 comments on commit 7a78b9a

Please sign in to comment.