fix: refactor validate command to use configkit fields

Author: BacchusJackson

CHANGELOG.md

@@ -5,6 +5,16 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [0.7.0] - 2024-05-17
+
+### Changed
+
+- Use ConfigKit with a metaconfig for all commands
+
+### Added
+
+- Gatecheck Config Encoder & Decoder
+
 ## [0.6.2] - 2024-05-15
 
 ### Changed

cmd/cli-config.go

@@ -17,23 +17,21 @@ var (
 	metadataActionInputName = "action_input_name"
 )
 
-type Config struct {
-	BundleTag string
-	EPSSURL   string
-	KEVURL    string
-}
-
 type metaConfig struct {
 	BundleTag          configkit.MetaField
 	EPSSURL            configkit.MetaField
 	KEVURL             configkit.MetaField
 	EPSSFilename       configkit.MetaField
+	KEVFilename        configkit.MetaField
 	Verbose            configkit.MetaField
 	Silent             configkit.MetaField
+	ConfigFilename     configkit.MetaField
+	Audit              configkit.MetaField
 	BundleTagValue     []string
 	bundleFile         *os.File
 	targetFile         *os.File
 	epssFile           *os.File
+	kevFile            *os.File
 	listSrcReader      io.Reader
 	listSrcName        string
 	listFormat         string
@@ -106,11 +104,27 @@ var RuntimeConfig = metaConfig{
 			cmd.Flags().StringVar(valueP, "epss-filename", "", usage)
 		},
 		Metadata: map[string]string{
-			metadataFlagUsage:       "the filename for a FIRST.org EPSS json file",
+			metadataFlagUsage:       "the filename for a FIRST.org EPSS csv file",
 			metadataFieldType:       "string",
 			metadataActionInputName: "epss_filename",
 		},
 	},
+	KEVFilename: configkit.MetaField{
+		FieldName:    "KEVFilename",
+		EnvKey:       "GATECHECK_EPSS_FILENAME",
+		DefaultValue: "",
+		FlagValueP:   new(string),
+		CobraSetupFunc: func(f configkit.MetaField, cmd *cobra.Command) {
+			valueP := f.FlagValueP.(*string)
+			usage := f.Metadata[metadataFlagUsage]
+			cmd.Flags().StringVar(valueP, "kev-filename", "", usage)
+		},
+		Metadata: map[string]string{
+			metadataFlagUsage:       "the filename for a FIRST.org KEV json file",
+			metadataFieldType:       "string",
+			metadataActionInputName: "kev_filename",
+		},
+	},
 	Verbose: configkit.MetaField{
 		FieldName:    "Verbose",
 		EnvKey:       "GATECHECK_VERBOSE",
@@ -119,7 +133,7 @@ var RuntimeConfig = metaConfig{
 		CobraSetupFunc: func(f configkit.MetaField, cmd *cobra.Command) {
 			valueP := f.FlagValueP.(*bool)
 			usage := f.Metadata[metadataFlagUsage]
-			cmd.PersistentFlags().BoolVar(valueP, "verbose", false, usage)
+			cmd.PersistentFlags().BoolVarP(valueP, "verbose", "v", false, usage)
 		},
 		Metadata: map[string]string{
 			metadataFlagUsage:       "log level set to debug",
@@ -143,4 +157,36 @@ var RuntimeConfig = metaConfig{
 			metadataActionInputName: "silent",
 		},
 	},
+	ConfigFilename: configkit.MetaField{
+		FieldName:    "ConfigFilename",
+		EnvKey:       "GATECHECK_CONFIG_FILENAME",
+		DefaultValue: "",
+		FlagValueP:   new(string),
+		CobraSetupFunc: func(f configkit.MetaField, cmd *cobra.Command) {
+			valueP := f.FlagValueP.(*string)
+			usage := f.Metadata[metadataFlagUsage]
+			cmd.PersistentFlags().StringVarP(valueP, "file", "f", "", usage)
+		},
+		Metadata: map[string]string{
+			metadataFlagUsage:       "a validation configuration file",
+			metadataFieldType:       "string",
+			metadataActionInputName: "config_filename",
+		},
+	},
+	Audit: configkit.MetaField{
+		FieldName:    "Audit",
+		EnvKey:       "GATECHECK_AUDIT",
+		DefaultValue: false,
+		FlagValueP:   new(bool),
+		CobraSetupFunc: func(f configkit.MetaField, cmd *cobra.Command) {
+			valueP := f.FlagValueP.(*bool)
+			usage := f.Metadata[metadataFlagUsage]
+			cmd.PersistentFlags().BoolVarP(valueP, "audit", "a", false, usage)
+		},
+		Metadata: map[string]string{
+			metadataFlagUsage:       "audit mode - will run all rules but wil always exit 0 for validation failures",
+			metadataFieldType:       "bool",
+			metadataActionInputName: "audit",
+		},
+	},
 }

cmd/validate.go

@@ -2,103 +2,84 @@ package cmd
 
 import (
 	"fmt"
-	"io"
 	"log/slog"
 	"os"
 
 	"github.com/gatecheckdev/gatecheck/pkg/gatecheck"
 	"github.com/spf13/cobra"
-	"github.com/spf13/viper"
 )
 
-func newValidateCommand() *cobra.Command {
-	cmd := &cobra.Command{
-		Use:   "validate [FILE]",
-		Short: "compare vulnerabilities to configured thresholds",
-		Args:  cobra.ExactArgs(1),
-		RunE:  runValidate,
-	}
-
-	cmd.Flags().StringP("config", "f", "", "threshold configuration file")
-
-	cmd.Flags().String("epss-file", "", "use this file for epss scores, will not query API")
-	_ = viper.BindPFlag("cli.validate.epss-file", cmd.Flags().Lookup("epss-file"))
-
-	cmd.Flags().String("kev-file", "", "use this file for kev catalog, will not query API")
-	_ = viper.BindPFlag("cli.validate.kev-file", cmd.Flags().Lookup("kev-file"))
-
-	cmd.Flags().Bool("audit", false, "audit mode - will run all rules but wil always exit 0 for validation failures")
-	_ = viper.BindPFlag("cli.validate.audit", cmd.Flags().Lookup("audit"))
-
-	return cmd
-}
-
-// runValidate
-//
-// shell: gatecheck validate
-func runValidate(cmd *cobra.Command, args []string) error {
-	configFilename, _ := cmd.Flags().GetString("config")
-	targetFilename := args[0]
-
-	epssURL := viper.GetString("api.epss-url")
-	kevURL := viper.GetString("api.kev-url")
-
-	epssFilename := viper.GetString("cli.validate.epss-file")
-	kevFilename := viper.GetString("cli.validate.kev-file")
-
-	audit := viper.GetBool("cli.validate.audit")
+var validateCmd = &cobra.Command{
+	Use:   "validate [FILE]",
+	Short: "compare vulnerabilities to configured thresholds",
+	Args:  cobra.ExactArgs(1),
+	PreRunE: func(cmd *cobra.Command, args []string) error {
+		configFilename := RuntimeConfig.ConfigFilename.Value().(string)
+
+		RuntimeConfig.gatecheckConfig = gatecheck.NewDefaultConfig()
+		if configFilename != "" {
+			err := gatecheck.NewConfigDecoder(configFilename).Decode(RuntimeConfig.gatecheckConfig)
+			if err != nil {
+				return err
+			}
+		}
 
-	slog.Debug("read in config", "filename", configFilename, "target_filename", targetFilename)
+		var err error
 
-	config := gatecheck.NewDefaultConfig()
-	if configFilename != "" {
-		err := LoadConfigFromFile(config, configFilename)
+		epssFilename := RuntimeConfig.EPSSFilename.Value().(string)
+		if epssFilename != "" {
+			RuntimeConfig.epssFile, err = os.Open(epssFilename)
+		}
 		if err != nil {
 			return err
 		}
-	} else {
-		slog.Warn("no configuration file given, will use default configuration file")
-	}
-
-	slog.Debug("open target file", "filename", targetFilename)
-	targetFile, err := os.Open(targetFilename)
-	if err != nil {
-		return err
-	}
 
-	var epssFile, kevFile io.Reader
-
-	if epssFilename != "" {
-		slog.Debug("open epss file", "filename", epssFilename)
-		epssFile, err = os.Open(epssFilename)
+		kevFilename := RuntimeConfig.KEVFilename.Value().(string)
+		if kevFilename != "" {
+			RuntimeConfig.kevFile, err = os.Open(kevFilename)
+		}
 		if err != nil {
 			return err
 		}
-	}
 
-	if kevFilename != "" {
-		slog.Debug("open kev file", "filename", kevFilename)
-		kevFile, err = os.Open(kevFilename)
+		targetFilename := args[0]
+		slog.Debug("open target file", "filename", targetFilename)
+		RuntimeConfig.targetFile, err = os.Open(targetFilename)
 		if err != nil {
 			return err
 		}
-	}
 
-	err = gatecheck.Validate(
-		config,
-		targetFile,
-		targetFilename,
-		gatecheck.WithEPSSURL(epssURL),
-		gatecheck.WithKEVURL(kevURL),
-		gatecheck.WithEPSSFile(epssFile),
-		gatecheck.WithKEVFile(kevFile),
-	)
+		return nil
+	},
+	RunE: func(cmd *cobra.Command, args []string) error {
+
+		err := gatecheck.Validate(
+			RuntimeConfig.gatecheckConfig,
+			RuntimeConfig.targetFile,
+			args[0],
+			gatecheck.WithEPSSURL(RuntimeConfig.EPSSURL.Value().(string)),
+			gatecheck.WithKEVURL(RuntimeConfig.KEVURL.Value().(string)),
+			gatecheck.WithEPSSFile(RuntimeConfig.epssFile),
+			gatecheck.WithKEVFile(RuntimeConfig.kevFile),
+		)
+
+		audit := RuntimeConfig.Audit.Value().(bool)
+		if audit && err != nil {
+			slog.Error("validation failure in audit mode")
+			fmt.Fprintln(cmd.ErrOrStderr(), err)
+			return nil
+		}
 
-	if audit && err != nil {
-		slog.Error("validation failure in audit mode")
-		fmt.Fprintln(cmd.ErrOrStderr(), err)
 		return nil
-	}
+	},
+}
+
+func newValidateCommand() *cobra.Command {
+
+	RuntimeConfig.ConfigFilename.SetupCobra(validateCmd)
+	RuntimeConfig.EPSSFilename.SetupCobra(validateCmd)
+	RuntimeConfig.KEVFilename.SetupCobra(validateCmd)
+	RuntimeConfig.Audit.SetupCobra(validateCmd)
 
-	return err
+	return validateCmd
 }