Merge pull request #4697 from cloud-gov/chore-reenable-sonarjs-lint-rules-4652

chore: Reenable sonarjs linting rules #4652

Author: apburnes

api/controllers/build-task.js

@@ -60,14 +60,14 @@ module.exports = wrapHandlers({
   update: async (req, res) => {
     const { params, body } = req;
     const { build_task_id: buildTaskId, token } = params;
-    const { Error, Success } = BuildTask.Statuses;
+    const { Error: ErrorStatus, Success } = BuildTask.Statuses;
 
     const task = await BuildTask.findByPk(buildTaskId);
 
     if (!task) {
       return res.notFound();
     }
-    if (task.token !== token || [Error, Success].includes(task.status)) {
+    if (task.token !== token || [ErrorStatus, Success].includes(task.status)) {
       return res.forbidden();
     }
 

api/controllers/site.js

@@ -1,4 +1,3 @@
-const _ = require('underscore');
 const authorizer = require('../authorizers/site');
 const SiteCreator = require('../services/SiteCreator');
 const SiteDestroyer = require('../services/SiteDestroyer');

api/models/build.js

@@ -92,6 +92,7 @@ const beforeValidate = (build) => {
 };
 
 const sanitizeCompleteJobErrorMessage = (message) =>
+  // eslint-disable-next-line sonarjs/slow-regex
   message.replace(/\/\/(.*)@github/g, '//[token_redacted]@github');
 
 async function beforeCreate(build) {

api/services/SiteBuildQueue.js

@@ -27,6 +27,7 @@ const siteConfig = (build, siteBranchConfigs = []) => {
 const baseURLForBuild = (build) => {
   const link = buildUrl(build, build.Site);
   const urlObject = new URL(link);
+  // eslint-disable-next-line sonarjs/slow-regex
   return urlObject.pathname.replace(/(\/)+$/, '');
 };
 
@@ -85,6 +86,7 @@ const buildContainerEnvironment = async (build) => {
 
 const SiteBuildQueue = {};
 
+// eslint-disable-next-line sonarjs/no-invariant-returns
 SiteBuildQueue.setupBucket = async (build, buildCount) => {
   if (buildCount > 1) return true;
 

api/utils/build.js

@@ -36,6 +36,7 @@ function buildUrl(build, site) {
 
   const domainName = domain.names.split(',')[0];
 
+  // eslint-disable-next-line sonarjs/slow-regex
   return `https://${domainName.replace(/\/+$/, '')}/`;
 }
 

api/utils/index.js

@@ -55,6 +55,7 @@ function generateS3ServiceName(owner, repository) {
     const characters = 'abcdefghijklmnopqrstuvwxyz0123456789';
     const charactersLength = characters.length;
     for (let i = 0; i < 6; i += 1) {
+      // eslint-disable-next-line sonarjs/pseudo-random
       result += characters.charAt(Math.floor(Math.random() * charactersLength));
     }
     return result;
@@ -69,8 +70,10 @@ function toSubdomainPart(str) {
     // replace all invalid chars with '-'
     .replace(/[^a-zA-Z0-9-]+/g, '-')
     // remove leading and trailing '-'
+    // eslint-disable-next-line
     .replace(/(^[-]+|[-]+$)/g, '')
     // replace multiple sequential '-' with a single '-'
+    // eslint-disable-next-line sonarjs/single-char-in-character-classes
     .replace(/[-]{2,}/g, '-')
     .substring(0, 62)
     .toLowerCase();
@@ -79,6 +82,7 @@ function toSubdomainPart(str) {
   if (subdomain.length < 2) {
     // If we generate parts, make it longer
     while (subdomain.length < 5) {
+      // eslint-disable-next-line sonarjs/pseudo-random
       subdomain += characters[Math.floor(Math.random() * Math.floor(characters.length))];
     }
   }

api/utils/site.js

@@ -23,13 +23,15 @@ function siteViewLink(site, deployment = 'site') {
   } else {
     link = `${siteViewDomain(site)}${path(site, deployment)}`;
   }
+  // eslint-disable-next-line sonarjs/slow-regex
   return `${link.replace(/\/+$/, '')}/`;
 }
 
 const hideBasicAuthPassword = ({ username, password }) => {
   if (password && password.length) {
     return {
       username,
+      // eslint-disable-next-line sonarjs/no-hardcoded-passwords
       password: '**********',
     };
   }

api/utils/validators.js

@@ -1,6 +1,7 @@
 const yaml = require('js-yaml');
 const validator = require('validator');
 
+// eslint-disable-next-line sonarjs/slow-regex
 const branchRegex = /^[\w.]+(?:[/-]*[\w.])*$/;
 const githubUsernameRegex = /^[^-][a-zA-Z-]+$/;
 const shaRegex = /^[a-f0-9]{40}$/;
@@ -126,10 +127,6 @@ function isValidSubdomain(value) {
   }
 }
 
-const validBasicAuthUsername = (s) => /^(?!.*[:])(?=.*[a-zA-Z0-9]).{4,255}$/.test(s);
-
-const validBasicAuthPassword = (s) => /^(?=.*\d)(?=.*[a-z])(?=.*[A-Z]).{4,255}$/.test(s);
-
 const isDelimitedFQDN = (str) => {
   const msg = 'must be a comma-separated list of valid fully qualified domain names';
   const isValid = str.split(',').every((s) => validator.isFQDN(s));
@@ -150,8 +147,6 @@ module.exports = {
   isEmptyOrBranch,
   isEmptyOrUrl,
   ValidationError,
-  validBasicAuthUsername,
-  validBasicAuthPassword,
   isValidSubdomain,
   isDelimitedFQDN,
 };

eslint.config.mjs

@@ -7,7 +7,7 @@ import eslintConfigPrettier from 'eslint-config-prettier';
 import testingLibrary from 'eslint-plugin-testing-library';
 import jsxA11y from 'eslint-plugin-jsx-a11y';
 import importPlugin from 'eslint-plugin-import';
-// import sonarjsPlugin from 'eslint-plugin-sonarjs';
+import sonarjs from 'eslint-plugin-sonarjs';
 
 export default [
   {
@@ -87,12 +87,19 @@ export default [
       ecmaVersion: 'latest',
     },
   },
+  {
+    ignores: ['**/*.test.*', 'test/**/*', 'scripts/**/*', 'e2e/**/*', 'config/**/*'],
+    ...sonarjs.configs.recommended,
+    rules: {
+      ...sonarjs.configs.recommended.rules,
+      'sonarjs/cognitive-complexity': ['error', 16],
+      'sonarjs/todo-tag': 'off',
+    },
+  },
   pluginReact.configs.flat['jsx-runtime'],
   pluginReact.configs.flat.recommended,
   jsxA11y.flatConfigs.recommended,
   pluginJs.configs.recommended,
-  // ignore for a future PR to minimize noise
-  // sonarjsPlugin.configs.recommended,
   eslintConfigPrettier,
   {
     settings: {

frontend/pages/Error.jsx frontend/pages/ErrorMessage.jsx

@@ -1,6 +1,6 @@
 import React from 'react';
 
-const Error = () => (
+const ErrorMessage = () => (
   <div className="grid-container padding-y-6">
     <h1>An Unexpected Error Occurred</h1>
     <p>
@@ -11,4 +11,4 @@ const Error = () => (
   </div>
 );
 
-export default Error;
+export default ErrorMessage;

frontend/pages/sites/$siteId/settings/ReportConfigs.jsx

@@ -51,6 +51,7 @@ function ReportConfigs({ siteId: id }) {
   function addNewRule(index) {
     // start with pseudo-random ids to avoid key collisions
     // default to the first type
+    // eslint-disable-next-line sonarjs/pseudo-random
     const ruleUid = `temp-${Math.random().toString(36).slice(2)}`;
     const newRule = {
       id: ruleUid,

frontend/reducers/builds.js

@@ -6,13 +6,12 @@ const initialState = {
 };
 
 export default function builds(state = initialState, action) {
-  switch (action.type) {
-    case buildRestartedType:
-      return {
-        isLoading: false,
-        data: [action.build, ...state.data],
-      };
-    default:
-      return state;
+  if (action.type === buildRestartedType) {
+    return {
+      isLoading: false,
+      data: [action.build, ...state.data],
+    };
   }
+
+  return state;
 }

frontend/routes.js

@@ -19,7 +19,7 @@ import EditCustomDomain from '@pages/sites/$siteId/custom-domains/$domainId/edit
 import Reports from '@pages/sites/$siteId/reports';
 import Settings from '@pages/settings';
 import NotFound from '@pages/NotFound';
-import Error from '@pages/Error';
+import ErrorMessage from '@pages/ErrorMessage';
 
 import siteActions from './actions/siteActions';
 import userActions from './actions/userActions';
@@ -28,7 +28,7 @@ import organizationActions from './actions/organizationActions';
 const { NODE_ENV } = process.env;
 let ErrorElement = null;
 if (NODE_ENV !== 'development') {
-  ErrorElement = <Error />;
+  ErrorElement = <ErrorMessage />;
 }
 
 const fetchInitialData = () => {

frontend/util/index.js

@@ -1,8 +1,11 @@
 export function getSafeRepoName(name) {
-  return name
-    .replace(/[^\w.]+/g, '-') // replace non-alphabetic and periods with hyphens
-    .replace(/^-+/g, '') // remove starting hyphens
-    .replace(/-+$/g, ''); // remove ending hyphens
+  return (
+    name
+      .replace(/[^\w.]+/g, '-') // replace non-alphabetic and periods with hyphens
+      .replace(/^-+/g, '') // remove starting hyphens
+      // eslint-disable-next-line sonarjs/slow-regex
+      .replace(/-+$/g, '')
+  ); // remove ending hyphens
 }
 
 export function groupLogs(logs) {

frontend/util/validators.js

@@ -15,23 +15,13 @@ const validAddRepoSiteForm = ({ repoOrganizationId, repoUrl }, { organizations }
   return errors;
 };
 
+// eslint-disable-next-line
 const validBranchName = (s) => /^[\w._]+(?:[/-]*[\w._])*$/.test(s);
 
-const validBasicAuthUsername = (s) =>
-  /^(?!.*[:])(?=.*[a-zA-Z0-9]).{4,255}$/.test(s)
-    ? undefined
-    : 'Value is required and must be at least 4 characters. Semicolons are not allowed.';
-
-const validBasicAuthPassword = (s) =>
-  /^(?=.*\d)(?=.*[a-z])(?=.*[A-Z]).{4,255}$/.test(s)
-    ? undefined
-    : // eslint-disable-next-line max-len
-      'Value is required and must be at least 4 characters. At least 1 uppercase, 1 lowercase and 1 number is required';
-
 function isValidYaml(yamlString) {
   try {
     load(yamlString);
-  } catch (_) {
+  } catch {
     // for Sequelize validators, we need to throw an error
     // on invalid values
     throw new Error('input is not valid YAML');
@@ -40,10 +30,4 @@ function isValidYaml(yamlString) {
   return true;
 }
 
-export {
-  isValidYaml,
-  validAddRepoSiteForm,
-  validBranchName,
-  validBasicAuthUsername,
-  validBasicAuthPassword,
-};
+export { isValidYaml, validAddRepoSiteForm, validBranchName };

package.json

@@ -162,7 +162,7 @@
     "eslint-plugin-jsx-a11y": "^6.8.0",
     "eslint-plugin-mocha": "^10.5.0",
     "eslint-plugin-react": "^7.37.2",
-    "eslint-plugin-sonarjs": "^2.0.4",
+    "eslint-plugin-sonarjs": "^3.0.1",
     "eslint-plugin-svelte": "^2.46.0",
     "eslint-plugin-testing-library": "^6.4.0",
     "fetch-mock": "^12.1.0",

test/api/unit/utils/validators.test.js

@@ -80,54 +80,4 @@ describe('validators', () => {
       );
     });
   });
-
-  describe('.validBasicAuthUsername', () => {
-    it('accepts valid username', () => {
-      expect(validators.validBasicAuthUsername('username1')).to.be.true;
-    });
-
-    it('accepts valid username with symbols that arenot semicolons', () => {
-      expect(validators.validBasicAuthUsername('username1!@#$%^&*()-_+=<>?,./~`{}[]|\\'))
-        .to.be.true;
-    });
-
-    it('must contain at least 1 alphanumeric char', () => {
-      expect(validators.validBasicAuthUsername('****')).to.be.false;
-    });
-
-    it('must be 4 characters', () => {
-      expect(validators.validBasicAuthUsername('use')).to.be.false;
-    });
-
-    it('colons are not allowed in username', () => {
-      expect(validators.validBasicAuthUsername('user:name1')).to.be.false;
-    });
-  });
-
-  describe('.validBasicAuthPassword', () => {
-    it('at least 1 uppercase, 1 lowercase and one number required', () => {
-      expect(validators.validBasicAuthPassword('paSsw0rd')).to.be.true;
-    });
-
-    it('at least 1 uppercase, 1 lowercase and one number required w/ symbols', () => {
-      expect(validators.validBasicAuthPassword('paSsw0rd!@#$%^&*()-_+=<>?,./~`{}[]|\\'))
-        .to.be.true;
-    });
-
-    it('at least 1 uppercase char required', () => {
-      expect(validators.validBasicAuthPassword('passw0rd')).to.be.false;
-    });
-
-    it('at leaset 1 lowercase char required', () => {
-      expect(validators.validBasicAuthPassword('PASSW0RD')).to.be.false;
-    });
-
-    it('at least one number required', () => {
-      expect(validators.validBasicAuthPassword('paSsword')).to.be.false;
-    });
-
-    it('must be 4 characters', () => {
-      expect(validators.validBasicAuthPassword('Pa5')).to.be.false;
-    });
-  });
 });

test/frontend/util/validators.test.js

@@ -65,53 +65,3 @@ describe('validAddRepoSiteForm', () => {
     expect(expected.repoOrganizationId).to.equal('Please select an organization');
   });
 });
-
-describe('validBasicAuthUsername', () => {
-  it('accepts valid username', () => {
-    expect(validators.validBasicAuthUsername('username1')).to.be.undefined;
-  });
-
-  it('accepts valid username with symbols that arenot semicolons', () => {
-    expect(validators.validBasicAuthUsername('username1!@#$%^&*()-_+=<>?,./~`{}[]|\\')).to
-      .be.undefined;
-  });
-
-  it('must contain at least 1 alphanumeric char', () => {
-    expect(validators.validBasicAuthUsername('****')).to.not.be.undefined;
-  });
-
-  it('must be 4 characters', () => {
-    expect(validators.validBasicAuthUsername('use')).to.not.be.undefined;
-  });
-
-  it('colons are not allowed in username', () => {
-    expect(validators.validBasicAuthUsername('user:name1')).to.not.be.undefined;
-  });
-});
-
-describe('validBasicAuthPassword', () => {
-  it('at least 1 uppercase, 1 lowercase and one number required', () => {
-    expect(validators.validBasicAuthPassword('paSsw0rd')).to.be.undefined;
-  });
-
-  it('at least 1 uppercase, 1 lowercase and one number required w/ symbols', () => {
-    expect(validators.validBasicAuthPassword('paSsw0rd!@#$%^&*()-_+=<>?,./~`{}[]|\\')).to
-      .be.undefined;
-  });
-
-  it('at least 1 uppercase char required', () => {
-    expect(validators.validBasicAuthPassword('passw0rd')).to.not.be.undefined;
-  });
-
-  it('at leaset 1 lowercase char required', () => {
-    expect(validators.validBasicAuthPassword('PASSW0RD')).to.not.be.undefined;
-  });
-
-  it('at least one number required', () => {
-    expect(validators.validBasicAuthPassword('paSsword')).to.not.be.undefined;
-  });
-
-  it('must be 4 characters', () => {
-    expect(validators.validBasicAuthPassword('Pa5')).to.not.be.undefined;
-  });
-});