Commit cc45ff4

authored

Doug/fix windows support (#123)

* Added gates so that resources module doesn't break windows * feat: centralize User-Agent string across all API clients - Add USER_AGENT constant to socketsecurity/__init__.py - Replace hardcoded 'SocketPythonScript/0.0.1' and 'SocketPythonCLI/0.0.1' with centralized USER_AGENT - Update all SCM clients (GitHub, GitLab) and CLI client to use USER_AGENT - Update unit tests to reference centralized constant - Pin GitHub Actions to commit SHAs for improved security and reproducibility - Fix minor GitLab client bugs (return type, pipeline source support) * Updated version-check.yml to used commit hashes * Minor type fixes

1 parent ee8b836 commit cc45ff4Copy full SHA for cc45ff4

File tree

11 files changed

+44

-44

lines changed

Pipfile.lock
pyproject.toml
socketsecurity
tests/unit
- test_gitlab_auth.py

11 files changed

+44

-44

lines changed

`‎Pipfile.lock‎`

Lines changed: 0 additions & 20 deletions

This file was deleted.

`‎pyproject.toml‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -6,7 +6,7 @@ build-backend = "hatchling.build"`
`6`	`6`
`7`	`7`	`[project]`
`8`	`8`	`name = "socketsecurity"`
`9`		`-version = "2.2.12"`
	`9`	`+version = "2.2.15"`
`10`	`10`	`requires-python = ">= 3.10"`
`11`	`11`	`license = {"file" = "LICENSE"}`
`12`	`12`	`dependencies = [`

`‎socketsecurity/init.py‎`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,3 @@`
`1`	`1`	`__author__ = 'socket.dev'`
`2`		`-__version__ = '2.2.12'`
	`2`	`+__version__ = '2.2.15'`
	`3`	`+USER_AGENT = f'SocketPythonCLI/{__version__}'`

`‎socketsecurity/core/init.py‎`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@`
`18`	`18`	`from socketdev.repos import RepositoryInfo`
`19`	`19`	`from socketdev.settings import SecurityPolicyRule`
`20`	`20`	`import copy`
`21`		`-from socketsecurity import __version__`
	`21`	`+from socketsecurity import __version__, USER_AGENT`
`22`	`22`	`from socketsecurity.core.classes import (`
`23`	`23`	`Alert,`
`24`	`24`	`Diff,`
`@@ -39,6 +39,7 @@`
`39`	`39`	`"Core",`
`40`	`40`	`"log",`
`41`	`41`	`"__version__",`
	`42`	`+ "USER_AGENT",`
`42`	`43`	`]`
`43`	`44`
`44`	`45`	`version = __version__`

`‎socketsecurity/core/cli_client.py‎`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,7 @@`
`4`	`4`
`5`	`5`	`import requests`
`6`	`6`
	`7`	`+from socketsecurity import USER_AGENT`
`7`	`8`	`from .exceptions import APIFailure`
`8`	`9`	`from .socket_config import SocketConfig`
`9`	`10`
`@@ -31,7 +32,7 @@ def request(`
`31`	`32`
`32`	`33`	`default_headers = {`
`33`	`34`	`'Authorization': f"Basic {self._encoded_key}",`
`34`		`- 'User-Agent': 'SocketPythonCLI/0.0.1',`
	`35`	`+ 'User-Agent': USER_AGENT,`
`35`	`36`	`"accept": "application/json"`
`36`	`37`	`}`
`37`	`38`

`‎socketsecurity/core/resource_utils.py‎`

Lines changed: 21 additions & 8 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,19 +1,32 @@`
`1`	`1`	`"""`
`2`	`2`	`System resource utilities for the Socket Security CLI.`
`3`	`3`	`"""`
`4`		`-import resource`
`5`	`4`	`import logging`
	`5`	`+import sys`
	`6`	`+`
	`7`	`+# The resource module is only available on Unix-like systems`
	`8`	`+resource_available = False`
	`9`	`+try:`
	`10`	`+ import resource`
	`11`	`+ resource_available = True`
	`12`	`+except ImportError:`
	`13`	`+ # On Windows, the resource module is not available`
	`14`	`+ pass`
`6`	`15`
`7`	`16`	`log = logging.getLogger("socketdev")`
`8`	`17`
`9`	`18`
`10`	`19`	`def get_file_descriptor_limit():`
`11`	`20`	`"""`
`12`	`21`	`Get the current file descriptor limit (equivalent to ulimit -n)`
`13`		`-`
	`22`	`+`
`14`	`23`	`Returns:`
`15`		`- tuple: (soft_limit, hard_limit) or (None, None) if error`
	`24`	`+ tuple: (soft_limit, hard_limit) or (None, None) if error or on Windows`
`16`	`25`	`"""`
	`26`	`+ if not resource_available:`
	`27`	`+ # On Windows, resource module is not available`
	`28`	`+ return None, None`
	`29`	`+`
`17`	`30`	`try:`
`18`	`31`	`soft_limit, hard_limit = resource.getrlimit(resource.RLIMIT_NOFILE)`
`19`	`32`	`return soft_limit, hard_limit`
`@@ -25,26 +38,26 @@ def get_file_descriptor_limit():`
`25`	`38`	`def check_file_count_against_ulimit(file_count, buffer_size=100):`
`26`	`39`	`"""`
`27`	`40`	`Check if the number of files would exceed the file descriptor limit`
`28`		`-`
	`41`	`+`
`29`	`42`	`Args:`
`30`	`43`	`file_count (int): Number of files to check`
`31`	`44`	`buffer_size (int): Safety buffer to leave for other file operations`
`32`		`-`
	`45`	`+`
`33`	`46`	`Returns:`
`34`	`47`	`dict: Information about the check`
`35`	`48`	`"""`
`36`	`49`	`soft_limit, hard_limit = get_file_descriptor_limit()`
`37`		`-`
	`50`	`+`
`38`	`51`	`if soft_limit is None:`
`39`	`52`	`return {`
`40`	`53`	`"can_check": False,`
`41`	`54`	`"error": "Could not determine file descriptor limit",`
`42`	`55`	`"safe_to_process": True # Assume safe if we can't check`
`43`	`56`	`}`
`44`		`-`
	`57`	`+`
`45`	`58`	`available_fds = soft_limit - buffer_size`
`46`	`59`	`would_exceed = file_count > available_fds`
`47`		`-`
	`60`	`+`
`48`	`61`	`return {`
`49`	`62`	`"can_check": True,`
`50`	`63`	`"file_count": file_count,`

`‎socketsecurity/core/scm/client.py‎`

Lines changed: 3 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,7 @@`
`1`	`1`	`from abc import abstractmethod`
`2`	`2`	`from typing import Dict`
`3`	`3`
	`4`	`+from socketsecurity import USER_AGENT`
`4`	`5`	`from ..cli_client import CliClient`
`5`	`6`
`6`	`7`
`@@ -28,7 +29,7 @@ class GithubClient(ScmClient):`
`28`	`29`	`def get_headers(self) -> Dict:`
`29`	`30`	`return {`
`30`	`31`	`'Authorization': f"Bearer {self.token}",`
`31`		`- 'User-Agent': 'SocketPythonScript/0.0.1',`
	`32`	`+ 'User-Agent': USER_AGENT,`
`32`	`33`	`"accept": "application/json"`
`33`	`34`	`}`
`34`	`35`
`@@ -52,7 +53,7 @@ def _get_gitlab_auth_headers(token: str) -> dict:`
`52`	`53`	`import os`
`53`	`54`
`54`	`55`	`base_headers = {`
`55`		`- 'User-Agent': 'SocketPythonScript/0.0.1',`
	`56`	`+ 'User-Agent': USER_AGENT,`
`56`	`57`	`"accept": "application/json"`
`57`	`58`	`}`
`58`	`59`

`‎socketsecurity/core/scm/github.py‎`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,7 @@`
`5`	`5`
`6`	`6`	`from git import Optional`
`7`	`7`
	`8`	`+from socketsecurity import USER_AGENT`
`8`	`9`	`from socketsecurity.core import log`
`9`	`10`	`from socketsecurity.core.classes import Comment`
`10`	`11`	`from socketsecurity.core.scm_comments import Comments`
`@@ -83,7 +84,7 @@ def from_env(cls, pr_number: Optional[str] = None) -> 'GithubConfig':`
`83`	`84`	`event_action=event_action,`
`84`	`85`	`headers={`
`85`	`86`	`'Authorization': f"Bearer {token}",`
`86`		`- 'User-Agent': 'SocketPythonScript/0.0.1',`
	`87`	`+ 'User-Agent': USER_AGENT,`
`87`	`88`	`"accept": "application/json"`
`88`	`89`	`}`
`89`	`90`	`)`

`‎socketsecurity/core/scm/gitlab.py‎`

Lines changed: 8 additions & 7 deletions

Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,7 @@`
`3`	`3`	`from dataclasses import dataclass`
`4`	`4`	`from typing import Optional`
`5`	`5`
	`6`	`+from socketsecurity import USER_AGENT`
`6`	`7`	`from socketsecurity.core import log`
`7`	`8`	`from socketsecurity.core.classes import Comment`
`8`	`9`	`from socketsecurity.core.scm_comments import Comments`
`@@ -79,7 +80,7 @@ def _get_auth_headers(token: str) -> dict:`
`79`	`80`	`- Other tokens: Use PRIVATE-TOKEN as fallback`
`80`	`81`	`"""`
`81`	`82`	`base_headers = {`
`82`		`- 'User-Agent': 'SocketPythonScript/0.0.1',`
	`83`	`+ 'User-Agent': USER_AGENT,`
`83`	`84`	`"accept": "application/json"`
`84`	`85`	`}`
`85`	`86`
`@@ -150,7 +151,7 @@ def _get_fallback_headers(self, original_headers: dict) -> dict:`
`150`	`151`	`If using Bearer, fallback to PRIVATE-TOKEN and vice versa.`
`151`	`152`	`"""`
`152`	`153`	`base_headers = {`
`153`		`- 'User-Agent': 'SocketPythonScript/0.0.1',`
	`154`	`+ 'User-Agent': USER_AGENT,`
`154`	`155`	`"accept": "application/json"`
`155`	`156`	`}`
`156`	`157`
`@@ -171,11 +172,11 @@ def _get_fallback_headers(self, original_headers: dict) -> dict:`
`171`	`172`	`}`
`172`	`173`
`173`	`174`	`# No fallback available`
`174`		`- return None`
	`175`	`+ return {}`
`175`	`176`
`176`	`177`	`def check_event_type(self) -> str:`
`177`	`178`	`pipeline_source = self.config.pipeline_source.lower()`
`178`		`- if pipeline_source in ["web", 'merge_request_event', "push", "api"]:`
	`179`	`+ if pipeline_source in ["web", 'merge_request_event', "push", "api", 'pipeline']:`
`179`	`180`	`if not self.config.mr_iid:`
`180`	`181`	`return "main"`
`181`	`182`	`return "diff"`
`@@ -234,8 +235,8 @@ def add_socket_comments(`
`234`	`235`	`new_security_comment: bool = True,`
`235`	`236`	`new_overview_comment: bool = True`
`236`	`237`	`) -> None:`
`237`		`- existing_overview_comment = comments.get("overview")`
`238`		`- existing_security_comment = comments.get("security")`
	`238`	`+ existing_overview_comment = comments.get("overview", "")`
	`239`	`+ existing_security_comment = comments.get("security", "")`
`239`	`240`	`if new_overview_comment:`
`240`	`241`	`log.debug("New Dependency Overview comment")`
`241`	`242`	`if existing_overview_comment is not None:`
`@@ -256,7 +257,7 @@ def add_socket_comments(`
`256`	`257`	`self.post_comment(security_comment)`
`257`	`258`
`258`	`259`	`def remove_comment_alerts(self, comments: dict):`
`259`		`- security_alert = comments.get("security")`
	`260`	`+ security_alert = comments.get("security", "")`
`260`	`261`	`if security_alert is not None:`
`261`	`262`	`security_alert: Comment`
`262`	`263`	`new_body = Comments.process_security_comment(security_alert, comments)`

`‎socketsecurity/socketcli.py‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -114,7 +114,7 @@ def main_code():`
`114`	`114`
`115`	`115`	`# Git setup`
`116`	`116`	`is_repo = False`
`117`		`- git_repo=None`
	`117`	`+ git_repo: Git`
`118`	`118`	`try:`
`119`	`119`	`git_repo = Git(config.target_path)`
`120`	`120`	`is_repo = True`

0 commit comments

Comments

(0)

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit cc45ff4

File tree

11 files changed

11 files changed

`‎Pipfile.lock‎`

`‎pyproject.toml‎`

`‎socketsecurity/init.py‎`

`‎socketsecurity/core/init.py‎`

`‎socketsecurity/core/cli_client.py‎`

`‎socketsecurity/core/resource_utils.py‎`

`‎socketsecurity/core/scm/client.py‎`

`‎socketsecurity/core/scm/github.py‎`

`‎socketsecurity/core/scm/gitlab.py‎`

`‎socketsecurity/socketcli.py‎`

0 commit comments