2020-11-12 11:27:34 -06:00
#!/usr/bin/env bash
2021-07-19 09:28:49 -05:00
DetectActions( ) {
FILE = " ${ 1 } "
2024-01-06 18:39:39 +01:00
if [ " ${ VALIDATE_GITHUB_ACTIONS } " = = "false" ] ; then
debug " Don't check if ${ FILE } is a GitHub Actions file because VALIDATE_GITHUB_ACTIONS is: ${ VALIDATE_GITHUB_ACTIONS } "
return 1
fi
2021-07-19 09:28:49 -05:00
debug " Checking if ${ FILE } is a GitHub Actions file... "
# Check if in the users .github, or the super linter test suite
2023-12-15 09:50:35 +01:00
if [ [ " $( dirname " ${ FILE } " ) " = = *".github/workflows" * ] ] || [ [ " $( dirname " ${ FILE } " ) " = = *" ${ TEST_CASE_FOLDER } /github_actions " * ] ] ; then
2021-07-19 09:28:49 -05:00
debug " ${ FILE } is GitHub Actions file. "
return 0
else
debug " ${ FILE } is NOT GitHub Actions file. "
return 1
fi
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
DetectOpenAPIFile( ) {
FILE = " ${ 1 } "
2024-01-06 18:39:39 +01:00
if [ " ${ VALIDATE_OPENAPI } " = = "false" ] ; then
debug " Don't check if ${ FILE } is an OpenAPI file because VALIDATE_OPENAPI is: ${ VALIDATE_OPENAPI } "
return 1
fi
2020-11-12 11:27:34 -06:00
2024-01-06 18:39:39 +01:00
debug " Checking if ${ FILE } is an OpenAPI file... "
2020-11-12 11:27:34 -06:00
2024-01-06 18:39:39 +01:00
if grep -E '"openapi":|"swagger":|^openapi:|^swagger:' " ${ FILE } " >/dev/null; then
2021-01-27 20:47:34 +01:00
debug " ${ FILE } is an OpenAPI descriptor "
2020-11-12 11:27:34 -06:00
return 0
else
2021-01-27 20:47:34 +01:00
debug " ${ FILE } is NOT an OpenAPI descriptor "
2020-11-12 11:27:34 -06:00
return 1
fi
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
DetectTektonFile( ) {
FILE = " ${ 1 } "
2024-01-06 18:39:39 +01:00
if [ " ${ VALIDATE_TEKTON } " = = "false" ] ; then
debug " Don't check if ${ FILE } is a Tekton file because VALIDATE_TEKTON is: ${ VALIDATE_TEKTON } "
return 1
fi
2020-11-12 11:27:34 -06:00
debug " Checking if ${ FILE } is a Tekton file... "
2024-01-06 18:39:39 +01:00
if grep -q -E 'apiVersion: tekton' " ${ FILE } " >/dev/null; then
2020-11-12 11:27:34 -06:00
return 0
else
return 1
fi
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
DetectARMFile( ) {
2024-01-06 18:39:39 +01:00
FILE = " ${ 1 } "
if [ " ${ VALIDATE_ARM } " = = "false" ] ; then
debug " Don't check if ${ FILE } is an ARM file because VALIDATE_ARM is: ${ VALIDATE_ARM } "
return 1
fi
2020-11-12 11:27:34 -06:00
debug " Checking if ${ FILE } is an ARM file... "
2024-01-06 18:39:39 +01:00
if grep -E 'schema.management.azure.com' " ${ FILE } " >/dev/null; then
2020-11-12 11:27:34 -06:00
return 0
else
return 1
fi
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
DetectCloudFormationFile( ) {
2024-01-06 18:39:39 +01:00
FILE = " ${ 1 } "
if [ " ${ VALIDATE_CLOUDFORMATION } " = = "false" ] ; then
debug " Don't check if ${ FILE } is a CloudFormation file because VALIDATE_CLOUDFORMATION is: ${ VALIDATE_CLOUDFORMATION } "
return 1
fi
2020-11-12 11:27:34 -06:00
debug " Checking if ${ FILE } is a Cloud Formation file... "
# https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/template-formats.html
# AWSTemplateFormatVersion is optional
2024-01-06 18:39:39 +01:00
# Check if file has AWS Template info
2020-11-12 11:27:34 -06:00
if grep -q 'AWSTemplateFormatVersion' " ${ FILE } " >/dev/null; then
return 0
fi
2024-01-06 18:39:39 +01:00
# See if it contains AWS References
2020-11-12 11:27:34 -06:00
if grep -q -E '(AWS|Alexa|Custom)::' " ${ FILE } " >/dev/null; then
return 0
fi
return 1
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
DetectKubernetesFile( ) {
2024-01-06 18:39:39 +01:00
FILE = " ${ 1 } "
if [ " ${ VALIDATE_KUBERNETES_KUBECONFORM } " = = "false" ] ; then
debug " Don't check if ${ FILE } is a Kubernetes file because VALIDATE_KUBERNETES_KUBECONFORM is: ${ VALIDATE_KUBERNETES_KUBECONFORM } "
return 1
fi
2020-11-12 11:27:34 -06:00
debug " Checking if ${ FILE } is a Kubernetes descriptor... "
2022-03-14 15:22:58 +01:00
if grep -q -v 'kustomize.config.k8s.io' " ${ FILE } " &&
grep -q -v "tekton" " ${ FILE } " &&
2023-06-20 12:27:03 -07:00
grep -q -E '(^apiVersion):' " ${ FILE } " &&
grep -q -E '(^kind):' " ${ FILE } " ; then
2020-11-12 11:27:34 -06:00
debug " ${ FILE } is a Kubernetes descriptor "
return 0
fi
debug " ${ FILE } is NOT a Kubernetes descriptor "
return 1
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
DetectAWSStatesFIle( ) {
2024-01-06 18:39:39 +01:00
FILE = " ${ 1 } "
if [ " ${ VALIDATE_STATES } " = = "false" ] ; then
debug " Don't check if ${ FILE } is an AWS states file because VALIDATE_STATES is: ${ VALIDATE_STATES } "
return 1
fi
2020-11-12 11:27:34 -06:00
debug " Checking if ${ FILE } is a AWS states descriptor... "
# https://states-language.net/spec.html#example
2021-09-10 04:03:41 +10:00
if grep -q '"Resource": *"arn' " ${ FILE } " &&
grep -q '"States"' " ${ FILE } " ; then
2020-11-12 11:27:34 -06:00
return 0
fi
return 1
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
CheckInArray( ) {
NEEDLE = " $1 " # Language we need to match
######################################
# Check if Language was in the array #
######################################
for LANG in " ${ UNIQUE_LINTED_ARRAY [@] } " ; do
if [ [ " ${ LANG } " = = " ${ NEEDLE } " ] ] ; then
return 0
fi
done
return 1
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
function GetFileType( ) {
# Need to run the file through the 'file' exec to help determine
# The type of file being parsed
FILE = " $1 "
GET_FILE_TYPE_CMD = $( file " ${ FILE } " 2>& 1)
echo " ${ GET_FILE_TYPE_CMD } "
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
function CheckFileType( ) {
# Need to run the file through the 'file' exec to help determine
# The type of file being parsed
FILE = " $1 "
GET_FILE_TYPE_CMD = " $( GetFileType " $FILE " ) "
2024-01-11 20:44:16 +01:00
local FILE_TYPE_MESSAGE
2020-11-12 11:27:34 -06:00
if [ [ ${ GET_FILE_TYPE_CMD } = = *"Ruby script" * ] ] ; then
2024-01-11 20:44:16 +01:00
FILE_TYPE_MESSAGE = " Found Ruby script without extension ( ${ FILE } ). Rename the file with proper extension for Ruby files. "
2020-11-12 11:27:34 -06:00
FILE_ARRAY_RUBY += ( " ${ FILE } " )
2022-01-19 11:09:26 -06:00
elif [ [ ${ GET_FILE_TYPE_CMD } = = *"Python script" * ] ] ; then
2024-01-11 20:44:16 +01:00
FILE_TYPE_MESSAGE = " Found Python script without extension ( ${ FILE } ). Rename the file with proper extension for Python files. "
2022-01-19 11:09:26 -06:00
FILE_ARRAY_PYTHON += ( " ${ FILE } " )
elif [ [ ${ GET_FILE_TYPE_CMD } = = *"Perl script" * ] ] ; then
2024-01-11 20:44:16 +01:00
FILE_TYPE_MESSAGE = " Found Perl script without extension ( ${ FILE } ). Rename the file with proper extension for Perl files. "
2022-01-19 11:09:26 -06:00
FILE_ARRAY_PERL += ( " ${ FILE } " )
2020-11-12 11:27:34 -06:00
else
2024-01-11 20:44:16 +01:00
FILE_TYPE_MESSAGE = " Failed to get file type for: ${ FILE } "
fi
if [ " ${ SUPPRESS_FILE_TYPE_WARN } " = = "false" ] ; then
warn " ${ FILE_TYPE_MESSAGE } "
else
debug " ${ FILE_TYPE_MESSAGE } "
2020-11-12 11:27:34 -06:00
fi
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
function GetFileExtension( ) {
FILE = " $1 "
2024-01-11 21:30:00 +01:00
# We want a lowercase value
local -l FILE_TYPE
# Extract the file extension
2020-11-12 11:27:34 -06:00
FILE_TYPE = ${ FILE ##*. }
echo " $FILE_TYPE "
}
2024-01-06 18:39:39 +01:00
2020-11-12 11:27:34 -06:00
function IsValidShellScript( ) {
FILE = " $1 "
2024-01-06 18:39:39 +01:00
if [ " ${ VALIDATE_BASH } " = = "false" ] && [ " ${ VALIDATE_BASH_EXEC } " = = "false" ] && [ " ${ VALIDATE_SHELL_SHFMT } " = = "false" ] ; then
debug " Don't check if ${ FILE } is a shell script because VALIDATE_BASH, VALIDATE_BASH_EXEC, and VALIDATE_SHELL_SHFMT are set to: ${ VALIDATE_BASH } , ${ VALIDATE_BASH_EXEC } , ${ VALIDATE_SHELL_SHFMT } "
return 1
fi
2020-11-12 11:27:34 -06:00
FILE_EXTENSION = " $( GetFileExtension " $FILE " ) "
GET_FILE_TYPE_CMD = " $( GetFileType " $FILE " ) "
trace " File:[ ${ FILE } ], File extension:[ ${ FILE_EXTENSION } ], File type: [ ${ GET_FILE_TYPE_CMD } ] "
if [ [ " ${ FILE_EXTENSION } " = = "zsh" ] ] ||
[ [ ${ GET_FILE_TYPE_CMD } = = *"zsh script" * ] ] ; then
warn " $FILE is a ZSH script. Skipping... "
return 1
fi
if [ " ${ FILE_EXTENSION } " = = "sh" ] ||
[ " ${ FILE_EXTENSION } " = = "bash" ] ||
2021-07-19 22:30:44 +08:00
[ " ${ FILE_EXTENSION } " = = "bats" ] ||
2020-11-12 11:27:34 -06:00
[ " ${ FILE_EXTENSION } " = = "dash" ] ||
[ " ${ FILE_EXTENSION } " = = "ksh" ] ; then
debug " $FILE is a valid shell script (has a valid extension: ${ FILE_EXTENSION } ) "
return 0
fi
if [ [ " ${ GET_FILE_TYPE_CMD } " = = *"POSIX shell script" * ] ] ||
[ [ ${ GET_FILE_TYPE_CMD } = = *"Bourne-Again shell script" * ] ] ||
[ [ ${ GET_FILE_TYPE_CMD } = = *"dash script" * ] ] ||
[ [ ${ GET_FILE_TYPE_CMD } = = *"ksh script" * ] ] ||
[ [ ${ GET_FILE_TYPE_CMD } = = *"/usr/bin/env sh script" * ] ] ; then
debug " $FILE is a valid shell script (has a valid file type: ${ GET_FILE_TYPE_CMD } ) "
return 0
fi
trace " $FILE is NOT a supported shell script. Skipping "
return 1
}
2024-01-06 18:39:39 +01:00
2021-06-28 13:59:11 +01:00
function IsGenerated( ) {
FILE = " $1 "
2024-01-06 18:39:39 +01:00
if [ " ${ IGNORE_GENERATED_FILES } " = = "false" ] ; then
debug " Don't check if ${ FILE } is generated because IGNORE_GENERATED_FILES is: ${ IGNORE_GENERATED_FILES } "
return 1
fi
2021-06-28 13:59:11 +01:00
2024-01-06 18:39:39 +01:00
if ! grep -q "@generated" " $FILE " ; then
2021-06-28 13:59:11 +01:00
trace " File:[ ${ FILE } ] is not generated, because it doesn't have @generated marker "
return 1
fi
2024-01-06 18:39:39 +01:00
if grep -q "@not-generated" " $FILE " ; then
2021-06-28 13:59:11 +01:00
trace " File:[ ${ FILE } ] is not-generated because it has @not-generated marker "
return 1
else
trace " File:[ ${ FILE } ] is generated because it has @generated marker "
return 0
fi
}
2024-01-06 18:39:39 +01:00
2021-09-10 09:43:20 -05:00
function RunAdditionalInstalls( ) {
##################################
# Run installs for Psalm and PHP #
##################################
if [ " ${ VALIDATE_PHP_PSALM } " = = "true" ] && [ " ${# FILE_ARRAY_PHP_PSALM [@] } " -ne 0 ] ; then
# found PHP files and were validating it, need to composer install
info "Found PHP files to validate, and [VALIDATE_PHP_PSALM] set to true, need to run composer install"
info "looking for composer.json in the users repository..."
mapfile -t COMPOSER_FILE_ARRAY < <( find / -name composer.json 2>& 1)
2021-10-01 12:41:13 -05:00
debug " COMPOSER_FILE_ARRAY contents:[ ${ COMPOSER_FILE_ARRAY [*] } ] "
2021-09-10 09:43:20 -05:00
############################################
# Check if we found the file in the system #
############################################
if [ " ${# COMPOSER_FILE_ARRAY [@] } " -ne 0 ] ; then
for LINE in " ${ COMPOSER_FILE_ARRAY [@] } " ; do
2022-03-23 17:43:28 +01:00
COMPOSER_PATH = $( dirname " ${ LINE } " 2>& 1)
2021-09-10 09:43:20 -05:00
info " Found [composer.json] at:[ ${ LINE } ] "
COMPOSER_CMD = $(
2022-03-23 17:43:28 +01:00
cd " ${ COMPOSER_PATH } " || exit 1
2021-10-01 12:41:13 -05:00
composer install --no-progress -q 2>& 1
2021-09-10 09:43:20 -05:00
)
##############
# Error code #
##############
ERROR_CODE = $?
##############################
# Check the shell for errors #
##############################
if [ " ${ ERROR_CODE } " -ne 0 ] ; then
# Error
2022-03-23 17:43:28 +01:00
error " ERROR! Failed to run composer install at location:[ ${ COMPOSER_PATH } ] "
2021-09-10 09:43:20 -05:00
fatal " ERROR:[ ${ COMPOSER_CMD } ] "
else
# Success
info "Successfully ran:[composer install] for PHP validation"
fi
done
fi
fi
2021-10-05 15:46:38 +02:00
###############################
# Run installs for R language #
###############################
if [ " ${ VALIDATE_R } " = = "true" ] && [ " ${# FILE_ARRAY_R [@] } " -ne 0 ] ; then
info "Detected R Language files to lint."
info " Trying to install the R package inside:[ ${ WORKSPACE_PATH } ] "
#########################
# Run the build command #
#########################
BUILD_CMD = $( R CMD build " ${ WORKSPACE_PATH } " 2>& 1)
##############
# Error code #
##############
ERROR_CODE = $?
##############################
# Check the shell for errors #
##############################
if [ " ${ ERROR_CODE } " -ne 0 ] ; then
# Error
warn " ERROR! Failed to run:[R CMD build] at location:[ ${ WORKSPACE_PATH } ] "
warn " BUILD_CMD:[ ${ BUILD_CMD } ] "
else
# Get the build package
BUILD_PKG = $(
cd " ${ WORKSPACE_PATH } " || exit 0
echo *.tar.gz 2>& 1
)
##############################
# Install the build packages #
##############################
INSTALL_CMD = $(
cd " ${ WORKSPACE_PATH } " || exit 0
2022-10-28 18:41:13 +01:00
R -e "remotes::install_local('.', dependencies=T)" 2>& 1
2021-11-09 15:35:36 -05:00
)
2021-10-05 15:46:38 +02:00
##############
# Error code #
##############
ERROR_CODE = $?
##############################
# Check the shell for errors #
##############################
2023-01-16 18:28:56 +00:00
debug " INSTALL_CMD:[ ${ INSTALL_CMD } ] "
2021-10-05 15:46:38 +02:00
if [ " ${ ERROR_CODE } " -ne 0 ] ; then
2023-10-15 00:10:37 -05:00
warn " ERROR: Failed to install the build package at:[ ${ BUILD_PKG } ] "
2021-10-05 15:46:38 +02:00
fi
fi
fi
2022-03-28 13:32:04 -05:00
####################################
# Run installs for TFLINT language #
####################################
if [ " ${ VALIDATE_TERRAFORM_TFLINT } " = = "true" ] && [ " ${# FILE_ARRAY_TERRAFORM_TFLINT [@] } " -ne 0 ] ; then
info "Detected TFLint Language files to lint."
info " Trying to install the TFLint init inside:[ ${ WORKSPACE_PATH } ] "
#########################
# Run the build command #
#########################
BUILD_CMD = $(
cd " ${ WORKSPACE_PATH } " || exit 0
2023-12-15 10:29:34 +01:00
tflint --init -c " ${ TERRAFORM_TFLINT_LINTER_RULES } " 2>& 1
2022-03-28 13:32:04 -05:00
)
##############
# Error code #
##############
ERROR_CODE = $?
##############################
# Check the shell for errors #
##############################
if [ " ${ ERROR_CODE } " -ne 0 ] ; then
2023-12-15 10:29:34 +01:00
fatal " ERROR! Failed to initialize tflint with the ${ TERRAFORM_TFLINT_LINTER_RULES } config file: ${ BUILD_CMD } "
2022-03-28 13:32:04 -05:00
else
2023-12-15 10:29:34 +01:00
info " Successfully initialized tflint with the ${ TERRAFORM_TFLINT_LINTER_RULES } config file "
debug " Tflint output: ${ BUILD_CMD } "
2022-03-28 13:32:04 -05:00
fi
fi
2021-09-10 09:43:20 -05:00
}