fix: allow validate input to handle multiple source groups #1815

mbestavros · 2024-07-31T20:48:47Z

Resolves #1688.

Turns out that the NewInput function only returned the final source group in the policy. This patch makes the function return ALL source groups and changes the caller to evaluate each one, then append all to the output.

Signed-off-by: Mark Bestavros <mbestavr@redhat.com>

codecov · 2024-07-31T21:20:00Z

Codecov Report

Attention: Patch coverage is 85.71429% with 2 lines in your changes missing coverage. Please review.

Project coverage is 80.73%. Comparing base (3459e02) to head (d731a01).
Report is 67 commits behind head on main.

Files	Patch %	Lines
internal/input/validate.go	85.71%	2 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1815      +/-   ##
==========================================
- Coverage   80.74%   80.73%   -0.01%     
==========================================
  Files          68       68              
  Lines        4954     4963       +9     
==========================================
+ Hits         4000     4007       +7     
- Misses        954      956       +2

Flag	Coverage Δ
generative	`80.73% <85.71%> (-0.01%)`	⬇️
integration	`80.73% <85.71%> (-0.01%)`	⬇️
unit	`80.73% <85.71%> (-0.01%)`	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files	Coverage Δ
internal/input/validate.go	`83.33% <85.71%> (-0.88%)`	⬇️

zregvart

Could add unit/acceptance tests to add regression tests for this

zregvart · 2024-08-01T08:45:38Z

internal/input/validate.go

+	for _, e := range p.Evaluators {
+		results, _, err := e.Evaluate(ctx, evaluator.EvaluationTarget{Inputs: inputFiles})
+		if err != nil {
+			log.Debug("Problem running conftest policy check!")


Could we also log the error?

zregvart · 2024-08-01T08:45:55Z

internal/input/validate.go

+		log.Debug("\n\nRunning conftest policy check\n\n")
+
+		if err != nil {
+			log.Debug("Problem running conftest policy check!")


Let's log the error as well

lcarva

Fix looks reasonable. Let's make sure we add some tests (unit or acceptance) to prevent the behavior from breaking in the future.

lcarva · 2024-08-05T12:59:25Z

internal/input/validate.go

+			log.Debug("Problem running conftest policy check!")
+			return nil, err
+		}
+		log.Debug("\n\nRunning conftest policy check\n\n")


A big unusual to include \n in the log message.

Yeah, let's remove the extra blanks lines.

I agree, but just for the sake of completeness, I pulled some of this code from ec validate image and that logging was there too.

simonbaird · 2024-08-07T13:40:29Z

internal/input/validate_test.go

 			defFunc: mockNewPipelineDefinitionFile,
 		},
 		{
 			name:    "validation succeeds with yaml input",
 			fpath:   "kind: task",
 			err:     nil,
-			output:  &output.Output{PolicyCheck: []evaluator.Outcome{}},
+			output:  &output.Output{PolicyCheck: []evaluator.Outcome(nil)},


I'm curious about this diff, is it just a style change?

It was necessary to allow tests to pass. AFAICT it's just a different type of "nothing" since before it was just an empty list.

simonbaird

Nice patch. Some logging nitpicks to address, otherwise lgtm.

lcarva · 2024-08-13T19:56:50Z

I created #1858 which includes the changes from the PR and addresses the comments.

mbestavros · 2024-08-15T20:27:14Z

@lcarva's patch (#1858) is the way to go here, but I added some follow-up comments to clarify a few things just for the sake of completeness.

lcarva · 2024-08-16T19:20:48Z

#1858 was merged. Let's close this.

mbestavros requested review from simonbaird and lcarva July 31, 2024 20:48

fix: allow validate input to handle multiple source groups

d731a01

Signed-off-by: Mark Bestavros <mbestavr@redhat.com>

mbestavros force-pushed the gh-1688 branch from 68df4f9 to d731a01 Compare July 31, 2024 21:12

zregvart reviewed Aug 1, 2024

View reviewed changes

lcarva reviewed Aug 5, 2024

View reviewed changes

simonbaird reviewed Aug 7, 2024

View reviewed changes

lcarva mentioned this pull request Aug 13, 2024

fix: allow validate input to handle multiple source groups #1858

Merged

lcarva closed this Aug 16, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: allow validate input to handle multiple source groups #1815

fix: allow validate input to handle multiple source groups #1815

mbestavros commented Jul 31, 2024 •

edited

Loading

codecov bot commented Jul 31, 2024 •

edited

Loading

zregvart left a comment

zregvart Aug 1, 2024

simonbaird Aug 7, 2024

zregvart Aug 1, 2024

lcarva left a comment

lcarva Aug 5, 2024

simonbaird Aug 7, 2024

mbestavros Aug 15, 2024

simonbaird Aug 7, 2024

mbestavros Aug 15, 2024

simonbaird left a comment

lcarva commented Aug 13, 2024

mbestavros commented Aug 15, 2024

lcarva commented Aug 16, 2024

fix: allow validate input to handle multiple source groups #1815

fix: allow validate input to handle multiple source groups #1815

Conversation

mbestavros commented Jul 31, 2024 • edited Loading

codecov bot commented Jul 31, 2024 • edited Loading

Codecov Report

zregvart left a comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

lcarva left a comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

simonbaird left a comment

Choose a reason for hiding this comment

lcarva commented Aug 13, 2024

mbestavros commented Aug 15, 2024

lcarva commented Aug 16, 2024

mbestavros commented Jul 31, 2024 •

edited

Loading

codecov bot commented Jul 31, 2024 •

edited

Loading