core/lint
8
0
Fork 0
Code Issues 1 Pull requests 1 Projects Releases Packages Wiki Activity Actions
lint/cmd/core-lint/main.go

436 lines
12 KiB
Go
Raw Blame History

package main
import (
"context"
"encoding/json"
"fmt"
"io"
"os"
"sort"
"strings"
"forge.lthn.ai/core/cli/pkg/cli"
coreerr "forge.lthn.ai/core/go-log"
cataloglint "forge.lthn.ai/core/lint"
lintpkg "forge.lthn.ai/core/lint/pkg/lint"
)
func main() {
cli.WithAppName("core-lint")
cli.Main(cli.WithCommands("lint", addLintCommands))
}
func addLintCommands(root *cli.Command) {
addRFCCommands(root)
lintCmd := cli.NewGroup("lint", "Pattern-based code linter", "")
lintCmd.AddCommand(newCheckCommand(), newCatalogCommand())
addRFCCommands(lintCmd)
root.AddCommand(lintCmd)
}
func addRFCCommands(parent *cli.Command) {
parent.AddCommand(
newRunCommand("run", "Run configured linters", lintpkg.RunInput{}),
newDetectCommand("detect", "Detect project languages"),
newToolsCommand("tools", "List supported linter tools"),
newInitCommand("init", "Generate .core/lint.yaml"),
newRunCommand("go", "Run Go linters", lintpkg.RunInput{Lang: "go"}),
newRunCommand("php", "Run PHP linters", lintpkg.RunInput{Lang: "php"}),
newRunCommand("js", "Run JS/TS linters", lintpkg.RunInput{Lang: "js"}),
newRunCommand("python", "Run Python linters", lintpkg.RunInput{Lang: "python"}),
newRunCommand("security", "Run security linters", lintpkg.RunInput{Category: "security"}),
newRunCommand("compliance", "Run compliance linters", lintpkg.RunInput{Category: "compliance", SBOM: true}),
newHookCommand(),
)
}
func newRunCommand(use string, short string, defaults lintpkg.RunInput) *cli.Command {
input := defaults
cmd := cli.NewCommand(use, short, "", func(cmd *cli.Command, args []string) error {
if len(args) > 0 {
input.Path = args[0]
}
if input.Path == "" {
input.Path = "."
}
output, err := resolvedOutput(input)
if err != nil {
return err
}
input.Output = output
svc := lintpkg.NewService()
report, err := svc.Run(context.Background(), input)
if err != nil {
return err
}
if err := writeReport(cmd.OutOrStdout(), input.Output, report); err != nil {
return err
}
if !report.Summary.Passed {
return coreerr.E("cmd."+use, "lint failed", nil)
}
return nil
})
cli.StringFlag(cmd, &input.Output, "output", "o", defaults.Output, "Output format: json, text, github, sarif")
cli.StringFlag(cmd, &input.Config, "config", "c", defaults.Config, "Config path (default: .core/lint.yaml)")
cli.StringFlag(cmd, &input.FailOn, "fail-on", "", defaults.FailOn, "Fail threshold: error, warning, info")
cli.StringFlag(cmd, &input.Category, "category", "", defaults.Category, "Restrict to one category")
cli.StringFlag(cmd, &input.Lang, "lang", "l", defaults.Lang, "Restrict to one language")
cli.BoolFlag(cmd, &input.Hook, "hook", "", defaults.Hook, "Run in pre-commit mode against staged files")
cli.BoolFlag(cmd, &input.CI, "ci", "", defaults.CI, "GitHub Actions mode (github annotations)")
cli.BoolFlag(cmd, &input.SBOM, "sbom", "", defaults.SBOM, "Enable compliance/SBOM tools")
return cmd
}
func newDetectCommand(use string, short string) *cli.Command {
var output string
cmd := cli.NewCommand(use, short, "", func(cmd *cli.Command, args []string) error {
path := "."
if len(args) > 0 {
path = args[0]
}
languages := lintpkg.Detect(path)
switch output {
case "", "text":
for _, language := range languages {
fmt.Fprintln(cmd.OutOrStdout(), language)
}
return nil
case "json":
return writeJSON(cmd.OutOrStdout(), languages)
default:
return coreerr.E("cmd.detect", "unsupported output format "+output, nil)
}
})
cli.StringFlag(cmd, &output, "output", "o", "text", "Output format: text, json")
return cmd
}
func newToolsCommand(use string, short string) *cli.Command {
var output string
var language string
cmd := cli.NewCommand(use, short, "", func(cmd *cli.Command, args []string) error {
svc := lintpkg.NewService()
var languages []string
if language != "" {
languages = []string{language}
}
tools := svc.Tools(languages)
switch output {
case "", "text":
for _, tool := range tools {
status := "missing"
if tool.Available {
status = "available"
}
fmt.Fprintf(cmd.OutOrStdout(), "%-14s [%-11s] %s\n", tool.Name, tool.Category, status)
}
return nil
case "json":
return writeJSON(cmd.OutOrStdout(), tools)
default:
return coreerr.E("cmd.tools", "unsupported output format "+output, nil)
}
})
cli.StringFlag(cmd, &output, "output", "o", "text", "Output format: text, json")
cli.StringFlag(cmd, &language, "lang", "l", "", "Filter by language")
return cmd
}
func newInitCommand(use string, short string) *cli.Command {
var force bool
cmd := cli.NewCommand(use, short, "", func(cmd *cli.Command, args []string) error {
path := "."
if len(args) > 0 {
path = args[0]
}
svc := lintpkg.NewService()
writtenPath, err := svc.WriteDefaultConfig(path, force)
if err != nil {
return err
}
fmt.Fprintln(cmd.OutOrStdout(), writtenPath)
return nil
})
cli.BoolFlag(cmd, &force, "force", "f", false, "Overwrite an existing config")
return cmd
}
func newHookCommand() *cli.Command {
hookCmd := cli.NewGroup("hook", "Install or remove the git pre-commit hook", "")
installCmd := cli.NewCommand("install", "Install the pre-commit hook", "", func(cmd *cli.Command, args []string) error {
path := "."
if len(args) > 0 {
path = args[0]
}
svc := lintpkg.NewService()
if err := svc.InstallHook(path); err != nil {
return err
}
fmt.Fprintln(cmd.OutOrStdout(), "installed")
return nil
})
removeCmd := cli.NewCommand("remove", "Remove the pre-commit hook", "", func(cmd *cli.Command, args []string) error {
path := "."
if len(args) > 0 {
path = args[0]
}
svc := lintpkg.NewService()
if err := svc.RemoveHook(path); err != nil {
return err
}
fmt.Fprintln(cmd.OutOrStdout(), "removed")
return nil
})
hookCmd.AddCommand(installCmd, removeCmd)
return hookCmd
}
func newCheckCommand() *cli.Command {
var (
format string
language string
severity string
)
cmd := cli.NewCommand("check", "Scan files for pattern matches", "", func(cmd *cli.Command, args []string) error {
catalog, err := cataloglint.LoadEmbeddedCatalog()
if err != nil {
return coreerr.E("cmd.check", "loading catalog", err)
}
rules := catalog.Rules
if language != "" {
rules = catalog.ForLanguage(language)
if len(rules) == 0 {
fmt.Fprintf(os.Stderr, "no rules for language %q\n", language)
return nil
}
}
if severity != "" {
filtered := (&lintpkg.Catalog{Rules: rules}).AtSeverity(severity)
if len(filtered) == 0 {
fmt.Fprintf(os.Stderr, "no rules at severity %q or above\n", severity)
return nil
}
rules = filtered
}
scanner, err := lintpkg.NewScanner(rules)
if err != nil {
return coreerr.E("cmd.check", "creating scanner", err)
}
paths := args
if len(paths) == 0 {
paths = []string{"."}
}
var findings []lintpkg.Finding
for _, path := range paths {
info, err := os.Stat(path)
if err != nil {
return coreerr.E("cmd.check", "stat "+path, err)
}
if info.IsDir() {
pathFindings, err := scanner.ScanDir(path)
if err != nil {
return err
}
findings = append(findings, pathFindings...)
continue
}
pathFindings, err := scanner.ScanFile(path)
if err != nil {
return err
}
findings = append(findings, pathFindings...)
}
switch format {
case "json":
return lintpkg.WriteJSON(cmd.OutOrStdout(), findings)
case "jsonl":
return lintpkg.WriteJSONL(cmd.OutOrStdout(), findings)
default:
lintpkg.WriteText(cmd.OutOrStdout(), findings)
if format == "text" && len(findings) > 0 {
writeLegacySummary(cmd.OutOrStdout(), findings)
}
return nil
}
})
cli.StringFlag(cmd, &format, "format", "f", "text", "Output format: text, json, jsonl")
cli.StringFlag(cmd, &language, "lang", "l", "", "Filter rules by language")
cli.StringFlag(cmd, &severity, "severity", "s", "", "Minimum severity threshold (info, low, medium, high, critical)")
return cmd
}
func newCatalogCommand() *cli.Command {
catalogCmd := cli.NewGroup("catalog", "Browse the pattern catalog", "")
var listLanguage string
listCmd := cli.NewCommand("list", "List all rules in the catalog", "", func(cmd *cli.Command, args []string) error {
catalog, err := cataloglint.LoadEmbeddedCatalog()
if err != nil {
return coreerr.E("cmd.catalog.list", "loading catalog", err)
}
rules := catalog.Rules
if listLanguage != "" {
rules = catalog.ForLanguage(listLanguage)
}
if len(rules) == 0 {
fmt.Fprintln(cmd.OutOrStdout(), "No rules found.")
return nil
}
rules = append([]lintpkg.Rule(nil), rules...)
sort.Slice(rules, func(left int, right int) bool {
if rules[left].Severity == rules[right].Severity {
return strings.Compare(rules[left].ID, rules[right].ID) < 0
}
return strings.Compare(rules[left].Severity, rules[right].Severity) < 0
})
for _, rule := range rules {
fmt.Fprintf(cmd.OutOrStdout(), "%-14s [%-8s] %s\n", rule.ID, rule.Severity, rule.Title)
}
fmt.Fprintf(os.Stderr, "\n%d rule(s)\n", len(rules))
return nil
})
cli.StringFlag(listCmd, &listLanguage, "lang", "l", "", "Filter by language")
showCmd := cli.NewCommand("show", "Show details of a specific rule", "", func(cmd *cli.Command, args []string) error {
if len(args) == 0 {
return coreerr.E("cmd.catalog.show", "rule ID required", nil)
}
catalog, err := cataloglint.LoadEmbeddedCatalog()
if err != nil {
return coreerr.E("cmd.catalog.show", "loading catalog", err)
}
rule := catalog.ByID(args[0])
if rule == nil {
return coreerr.E("cmd.catalog.show", "rule "+args[0]+" not found", nil)
}
data, err := json.MarshalIndent(rule, "", " ")
if err != nil {
return err
}
fmt.Fprintf(cmd.OutOrStdout(), "%s\n", string(data))
return nil
})
catalogCmd.AddCommand(listCmd, showCmd)
return catalogCmd
}
func resolvedOutput(input lintpkg.RunInput) (string, error) {
if input.Output != "" {
return input.Output, nil
}
if input.CI {
return "github", nil
}
config, _, err := lintpkg.LoadProjectConfig(input.Path, input.Config)
if err != nil {
return "", err
}
if config.Output != "" {
return config.Output, nil
}
return "text", nil
}
func writeReport(w io.Writer, output string, report lintpkg.Report) error {
switch output {
case "json":
return lintpkg.WriteReportJSON(w, report)
case "text":
lintpkg.WriteReportText(w, report)
return nil
case "github":
lintpkg.WriteReportGitHub(w, report)
return nil
case "sarif":
return lintpkg.WriteReportSARIF(w, report)
default:
return coreerr.E("writeReport", "unsupported output format "+output, nil)
}
}
func writeJSON(w io.Writer, value any) error {
encoder := json.NewEncoder(w)
encoder.SetIndent("", " ")
return encoder.Encode(value)
}
func writeLegacySummary(w io.Writer, findings []lintpkg.Finding) {
summary := lintpkg.Summarise(findings)
fmt.Fprintf(w, "\n%d finding(s)", summary.Total)
orderedSeverities := []string{"critical", "high", "medium", "low", "info", "error", "warning"}
seen := make(map[string]bool, len(summary.BySeverity))
var parts []string
for _, severity := range orderedSeverities {
count := summary.BySeverity[severity]
if count == 0 {
continue
}
seen[severity] = true
parts = append(parts, fmt.Sprintf("%d %s", count, severity))
}
var extraSeverities []string
for severity := range summary.BySeverity {
if seen[severity] {
continue
}
extraSeverities = append(extraSeverities, severity)
}
sort.Strings(extraSeverities)
for _, severity := range extraSeverities {
count := summary.BySeverity[severity]
if count == 0 {
continue
}
parts = append(parts, fmt.Sprintf("%d %s", count, severity))
}
if len(parts) > 0 {
fmt.Fprintf(w, " (%s)", strings.Join(parts, ", "))
}
fmt.Fprintln(w)
}
Reference in a new issue View git blame Copy permalink