f47e8211fb
* feat(mcp): add workspace root validation to prevent path traversal - Add workspaceRoot field to Service for restricting file operations - Add WithWorkspaceRoot() option for configuring the workspace directory - Add validatePath() helper to check paths are within workspace - Apply validation to all file operation handlers - Default to current working directory for security - Add comprehensive tests for path validation Closes #82 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * refactor: move CLI commands from pkg/ to internal/cmd/ - Move 18 CLI command packages to internal/cmd/ (not externally importable) - Keep 16 library packages in pkg/ (externally importable) - Update all import paths throughout codebase - Cleaner separation between CLI logic and reusable libraries CLI commands moved: ai, ci, dev, docs, doctor, gitcmd, go, monitor, php, pkgcmd, qa, sdk, security, setup, test, updater, vm, workspace Libraries remaining: agentic, build, cache, cli, container, devops, errors, framework, git, i18n, io, log, mcp, process, release, repos Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * refactor(mcp): use pkg/io Medium for sandboxed file operations Replace manual path validation with pkg/io.Medium for all file operations. This delegates security (path traversal, symlink bypass) to the sandboxed local.Medium implementation. Changes: - Add io.NewSandboxed() for creating sandboxed Medium instances - Refactor MCP Service to use io.Medium instead of direct os.* calls - Remove validatePath and resolvePathWithSymlinks functions - Update tests to verify Medium-based behaviour Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * fix: correct import path and workflow references - Fix pkg/io/io.go import from core-gui to core - Update CI workflows to use internal/cmd/updater path Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * fix(security): address CodeRabbit review issues for path validation - pkg/io/local: add symlink resolution and boundary-aware containment - Reject absolute paths in sandboxed Medium - Use filepath.EvalSymlinks to prevent symlink bypass attacks - Fix prefix check to prevent /tmp/root matching /tmp/root2 - pkg/mcp: fix resolvePath to validate and return errors - Changed resolvePath from (string) to (string, error) - Update deleteFile, renameFile, listDirectory, fileExists to handle errors - Changed New() to return (*Service, error) instead of *Service - Properly propagate option errors instead of silently discarding - pkg/io: wrap errors with E() helper for consistent context - Copy() and MockMedium.Read() now use coreerr.E() - tests: rename to use _Good/_Bad/_Ugly suffixes per coding guidelines - Fix hardcoded /tmp in TestPath to use t.TempDir() - Add TestResolvePath_Bad_SymlinkTraversal test Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * style: fix gofmt formatting Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * style: fix gofmt formatting across all files Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
322 lines
8.2 KiB
Go
322 lines
8.2 KiB
Go
// cmd_review.go implements the 'qa review' command for PR review status.
|
|
//
|
|
// Usage:
|
|
// core qa review # Show all PRs needing attention
|
|
// core qa review --mine # Show status of your open PRs
|
|
// core qa review --requested # Show PRs you need to review
|
|
|
|
package qa
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
"os/exec"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/host-uk/core/pkg/cli"
|
|
"github.com/host-uk/core/pkg/errors"
|
|
"github.com/host-uk/core/pkg/i18n"
|
|
)
|
|
|
|
// Review command flags
|
|
var (
|
|
reviewMine bool
|
|
reviewRequested bool
|
|
reviewRepo string
|
|
)
|
|
|
|
// PullRequest represents a GitHub pull request
|
|
type PullRequest struct {
|
|
Number int `json:"number"`
|
|
Title string `json:"title"`
|
|
Author Author `json:"author"`
|
|
State string `json:"state"`
|
|
IsDraft bool `json:"isDraft"`
|
|
Mergeable string `json:"mergeable"`
|
|
ReviewDecision string `json:"reviewDecision"`
|
|
URL string `json:"url"`
|
|
HeadRefName string `json:"headRefName"`
|
|
CreatedAt time.Time `json:"createdAt"`
|
|
UpdatedAt time.Time `json:"updatedAt"`
|
|
Additions int `json:"additions"`
|
|
Deletions int `json:"deletions"`
|
|
ChangedFiles int `json:"changedFiles"`
|
|
StatusChecks *StatusCheckRollup `json:"statusCheckRollup"`
|
|
ReviewRequests ReviewRequests `json:"reviewRequests"`
|
|
Reviews []Review `json:"reviews"`
|
|
}
|
|
|
|
// Author represents a GitHub user
|
|
type Author struct {
|
|
Login string `json:"login"`
|
|
}
|
|
|
|
// StatusCheckRollup contains CI check status
|
|
type StatusCheckRollup struct {
|
|
Contexts []StatusContext `json:"contexts"`
|
|
}
|
|
|
|
// StatusContext represents a single check
|
|
type StatusContext struct {
|
|
State string `json:"state"`
|
|
Conclusion string `json:"conclusion"`
|
|
Name string `json:"name"`
|
|
}
|
|
|
|
// ReviewRequests contains pending review requests
|
|
type ReviewRequests struct {
|
|
Nodes []ReviewRequest `json:"nodes"`
|
|
}
|
|
|
|
// ReviewRequest represents a review request
|
|
type ReviewRequest struct {
|
|
RequestedReviewer Author `json:"requestedReviewer"`
|
|
}
|
|
|
|
// Review represents a PR review
|
|
type Review struct {
|
|
Author Author `json:"author"`
|
|
State string `json:"state"`
|
|
}
|
|
|
|
// addReviewCommand adds the 'review' subcommand to the qa command.
|
|
func addReviewCommand(parent *cli.Command) {
|
|
reviewCmd := &cli.Command{
|
|
Use: "review",
|
|
Short: i18n.T("cmd.qa.review.short"),
|
|
Long: i18n.T("cmd.qa.review.long"),
|
|
RunE: func(cmd *cli.Command, args []string) error {
|
|
return runReview()
|
|
},
|
|
}
|
|
|
|
reviewCmd.Flags().BoolVarP(&reviewMine, "mine", "m", false, i18n.T("cmd.qa.review.flag.mine"))
|
|
reviewCmd.Flags().BoolVarP(&reviewRequested, "requested", "r", false, i18n.T("cmd.qa.review.flag.requested"))
|
|
reviewCmd.Flags().StringVar(&reviewRepo, "repo", "", i18n.T("cmd.qa.review.flag.repo"))
|
|
|
|
parent.AddCommand(reviewCmd)
|
|
}
|
|
|
|
func runReview() error {
|
|
// Check gh is available
|
|
if _, err := exec.LookPath("gh"); err != nil {
|
|
return errors.E("qa.review", i18n.T("error.gh_not_found"), nil)
|
|
}
|
|
|
|
ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second)
|
|
defer cancel()
|
|
|
|
// Determine repo
|
|
repoFullName := reviewRepo
|
|
if repoFullName == "" {
|
|
var err error
|
|
repoFullName, err = detectRepoFromGit()
|
|
if err != nil {
|
|
return errors.E("qa.review", i18n.T("cmd.qa.review.error.no_repo"), nil)
|
|
}
|
|
}
|
|
|
|
// Default: show both mine and requested if neither flag is set
|
|
showMine := reviewMine || (!reviewMine && !reviewRequested)
|
|
showRequested := reviewRequested || (!reviewMine && !reviewRequested)
|
|
|
|
if showMine {
|
|
if err := showMyPRs(ctx, repoFullName); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
if showRequested {
|
|
if showMine {
|
|
cli.Blank()
|
|
}
|
|
if err := showRequestedReviews(ctx, repoFullName); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// showMyPRs shows the user's open PRs with status
|
|
func showMyPRs(ctx context.Context, repo string) error {
|
|
prs, err := fetchPRs(ctx, repo, "author:@me")
|
|
if err != nil {
|
|
return errors.E("qa.review", "failed to fetch your PRs", err)
|
|
}
|
|
|
|
if len(prs) == 0 {
|
|
cli.Print("%s\n", dimStyle.Render(i18n.T("cmd.qa.review.no_prs")))
|
|
return nil
|
|
}
|
|
|
|
cli.Print("%s (%d):\n", i18n.T("cmd.qa.review.your_prs"), len(prs))
|
|
|
|
for _, pr := range prs {
|
|
printPRStatus(pr)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// showRequestedReviews shows PRs where user's review is requested
|
|
func showRequestedReviews(ctx context.Context, repo string) error {
|
|
prs, err := fetchPRs(ctx, repo, "review-requested:@me")
|
|
if err != nil {
|
|
return errors.E("qa.review", "failed to fetch review requests", err)
|
|
}
|
|
|
|
if len(prs) == 0 {
|
|
cli.Print("%s\n", dimStyle.Render(i18n.T("cmd.qa.review.no_reviews")))
|
|
return nil
|
|
}
|
|
|
|
cli.Print("%s (%d):\n", i18n.T("cmd.qa.review.review_requested"), len(prs))
|
|
|
|
for _, pr := range prs {
|
|
printPRForReview(pr)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// fetchPRs fetches PRs matching the search query
|
|
func fetchPRs(ctx context.Context, repo, search string) ([]PullRequest, error) {
|
|
args := []string{
|
|
"pr", "list",
|
|
"--state", "open",
|
|
"--search", search,
|
|
"--json", "number,title,author,state,isDraft,mergeable,reviewDecision,url,headRefName,createdAt,updatedAt,additions,deletions,changedFiles,statusCheckRollup,reviewRequests,reviews",
|
|
}
|
|
|
|
if repo != "" {
|
|
args = append(args, "--repo", repo)
|
|
}
|
|
|
|
cmd := exec.CommandContext(ctx, "gh", args...)
|
|
output, err := cmd.Output()
|
|
if err != nil {
|
|
if exitErr, ok := err.(*exec.ExitError); ok {
|
|
return nil, fmt.Errorf("%s", strings.TrimSpace(string(exitErr.Stderr)))
|
|
}
|
|
return nil, err
|
|
}
|
|
|
|
var prs []PullRequest
|
|
if err := json.Unmarshal(output, &prs); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return prs, nil
|
|
}
|
|
|
|
// printPRStatus prints a PR with its merge status
|
|
func printPRStatus(pr PullRequest) {
|
|
// Determine status icon and color
|
|
status, style, action := analyzePRStatus(pr)
|
|
|
|
cli.Print(" %s #%d %s\n",
|
|
style.Render(status),
|
|
pr.Number,
|
|
truncate(pr.Title, 50))
|
|
|
|
if action != "" {
|
|
cli.Print(" %s %s\n", dimStyle.Render("->"), action)
|
|
}
|
|
}
|
|
|
|
// printPRForReview prints a PR that needs review
|
|
func printPRForReview(pr PullRequest) {
|
|
// Show PR info with stats
|
|
stats := fmt.Sprintf("+%d/-%d, %d files",
|
|
pr.Additions, pr.Deletions, pr.ChangedFiles)
|
|
|
|
cli.Print(" %s #%d %s\n",
|
|
warningStyle.Render("◯"),
|
|
pr.Number,
|
|
truncate(pr.Title, 50))
|
|
cli.Print(" %s @%s, %s\n",
|
|
dimStyle.Render("->"),
|
|
pr.Author.Login,
|
|
stats)
|
|
cli.Print(" %s gh pr checkout %d\n",
|
|
dimStyle.Render("->"),
|
|
pr.Number)
|
|
}
|
|
|
|
// analyzePRStatus determines the status, style, and action for a PR
|
|
func analyzePRStatus(pr PullRequest) (status string, style *cli.AnsiStyle, action string) {
|
|
// Check if draft
|
|
if pr.IsDraft {
|
|
return "◯", dimStyle, "Draft - convert to ready when done"
|
|
}
|
|
|
|
// Check CI status
|
|
ciPassed := true
|
|
ciFailed := false
|
|
ciPending := false
|
|
var failedCheck string
|
|
|
|
if pr.StatusChecks != nil {
|
|
for _, check := range pr.StatusChecks.Contexts {
|
|
switch check.Conclusion {
|
|
case "FAILURE", "failure":
|
|
ciFailed = true
|
|
ciPassed = false
|
|
if failedCheck == "" {
|
|
failedCheck = check.Name
|
|
}
|
|
case "PENDING", "pending", "":
|
|
if check.State == "PENDING" || check.State == "" {
|
|
ciPending = true
|
|
ciPassed = false
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
// Check review status
|
|
approved := pr.ReviewDecision == "APPROVED"
|
|
changesRequested := pr.ReviewDecision == "CHANGES_REQUESTED"
|
|
|
|
// Check mergeable status
|
|
hasConflicts := pr.Mergeable == "CONFLICTING"
|
|
|
|
// Determine overall status
|
|
if hasConflicts {
|
|
return "✗", errorStyle, "Needs rebase - has merge conflicts"
|
|
}
|
|
|
|
if ciFailed {
|
|
return "✗", errorStyle, fmt.Sprintf("CI failed: %s", failedCheck)
|
|
}
|
|
|
|
if changesRequested {
|
|
return "✗", warningStyle, "Changes requested - address review feedback"
|
|
}
|
|
|
|
if ciPending {
|
|
return "◯", warningStyle, "CI running..."
|
|
}
|
|
|
|
if !approved && pr.ReviewDecision != "" {
|
|
return "◯", warningStyle, "Awaiting review"
|
|
}
|
|
|
|
if approved && ciPassed {
|
|
return "✓", successStyle, "Ready to merge"
|
|
}
|
|
|
|
return "◯", dimStyle, ""
|
|
}
|
|
|
|
// truncate shortens a string to max length (rune-safe for UTF-8)
|
|
func truncate(s string, max int) string {
|
|
runes := []rune(s)
|
|
if len(runes) <= max {
|
|
return s
|
|
}
|
|
return string(runes[:max-3]) + "..."
|
|
}
|