deaa06a54d
Replace separate go-io (coreio) and go-log (coreerr) packages with
Core's built-in Fs and error/logging functions. This is the reference
implementation for how all Core ecosystem packages should migrate.
Changes:
- coreio.Local.Read/Write/EnsureDir/Delete/IsFile → core.Fs methods
- coreerr.E() → core.E(), coreerr.Info/Warn/Error → core.Info/Warn/Error
- (value, error) return pattern → core.Result pattern (r.OK, r.Value)
- go-io and go-log moved from direct to indirect deps in go.mod
- Added AX usage-example comments on key public types
- Added newFs("/") helper for unrestricted filesystem access
Co-Authored-By: Virgil <virgil@lethean.io>
120 lines
2.9 KiB
Go
120 lines
2.9 KiB
Go
// SPDX-License-Identifier: EUPL-1.2
|
|
|
|
package agentic
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/json"
|
|
"fmt"
|
|
"net/http"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
)
|
|
|
|
// ingestFindings reads the agent output log and creates issues via the API
|
|
// for scan/audit results. Only runs for conventions and security templates.
|
|
func (s *PrepSubsystem) ingestFindings(wsDir string) {
|
|
st, err := readStatus(wsDir)
|
|
if err != nil || st.Status != "completed" {
|
|
return
|
|
}
|
|
|
|
// Read the log file
|
|
logFiles, _ := filepath.Glob(filepath.Join(wsDir, "agent-*.log"))
|
|
if len(logFiles) == 0 {
|
|
return
|
|
}
|
|
|
|
r := fs.Read(logFiles[0])
|
|
if !r.OK || len(r.Value.(string)) < 100 {
|
|
return
|
|
}
|
|
|
|
body := r.Value.(string)
|
|
|
|
// Skip quota errors
|
|
if strings.Contains(body, "QUOTA_EXHAUSTED") || strings.Contains(body, "QuotaError") {
|
|
return
|
|
}
|
|
|
|
// Only ingest if there are actual findings (file:line references)
|
|
findings := countFileRefs(body)
|
|
if findings < 2 {
|
|
return // No meaningful findings
|
|
}
|
|
|
|
// Determine issue type from the template used
|
|
issueType := "task"
|
|
priority := "normal"
|
|
if strings.Contains(body, "security") || strings.Contains(body, "Security") {
|
|
issueType = "bug"
|
|
priority = "high"
|
|
}
|
|
|
|
// Create a single issue per repo with all findings in the body
|
|
title := fmt.Sprintf("Scan findings for %s (%d items)", st.Repo, findings)
|
|
|
|
// Truncate body to reasonable size for issue description
|
|
description := body
|
|
if len(description) > 10000 {
|
|
description = description[:10000] + "\n\n... (truncated, see full log in workspace)"
|
|
}
|
|
|
|
s.createIssueViaAPI(st.Repo, title, description, issueType, priority, "scan")
|
|
}
|
|
|
|
// countFileRefs counts file:line references in the output (indicates real findings)
|
|
func countFileRefs(body string) int {
|
|
count := 0
|
|
for i := 0; i < len(body)-5; i++ {
|
|
if body[i] == '`' {
|
|
// Look for pattern: `file.go:123`
|
|
j := i + 1
|
|
for j < len(body) && body[j] != '`' && j-i < 100 {
|
|
j++
|
|
}
|
|
if j < len(body) && body[j] == '`' {
|
|
ref := body[i+1 : j]
|
|
if strings.Contains(ref, ".go:") || strings.Contains(ref, ".php:") {
|
|
count++
|
|
}
|
|
}
|
|
}
|
|
}
|
|
return count
|
|
}
|
|
|
|
// createIssueViaAPI posts an issue to the lthn.sh API
|
|
func (s *PrepSubsystem) createIssueViaAPI(repo, title, description, issueType, priority, source string) {
|
|
if s.brainKey == "" {
|
|
return
|
|
}
|
|
|
|
// Read the agent API key from file
|
|
home, _ := os.UserHomeDir()
|
|
r := fs.Read(filepath.Join(home, ".claude", "agent-api.key"))
|
|
if !r.OK {
|
|
return
|
|
}
|
|
apiKey := strings.TrimSpace(r.Value.(string))
|
|
|
|
payload, _ := json.Marshal(map[string]string{
|
|
"title": title,
|
|
"description": description,
|
|
"type": issueType,
|
|
"priority": priority,
|
|
"reporter": "cladius",
|
|
})
|
|
|
|
req, _ := http.NewRequest("POST", s.brainURL+"/v1/issues", bytes.NewReader(payload))
|
|
req.Header.Set("Content-Type", "application/json")
|
|
req.Header.Set("Accept", "application/json")
|
|
req.Header.Set("Authorization", "Bearer "+apiKey)
|
|
|
|
resp, err := s.client.Do(req)
|
|
if err != nil {
|
|
return
|
|
}
|
|
resp.Body.Close()
|
|
}
|