Merge pull request #39 from GitGuardian/jgriffe/-/avoid-ignored-file-error

feat: stop displaying error when scanning ignored file

Author: gg-jonathangriffe

src/extension.ts

@@ -10,10 +10,7 @@ import {
   scanFile,
   showAPIQuota,
 } from "./lib/ggshield-api";
-import {
-  getConfiguration,
-  setApiKey,
-} from "./lib/ggshield-configuration";
+import { getConfiguration, setApiKey } from "./lib/ggshield-configuration";
 import {
   ExtensionContext,
   Uri,
@@ -26,15 +23,18 @@ import {
 import { GGShieldResolver } from "./lib/ggshield-resolver";
 import { getCurrentFile, isGitInstalled } from "./utils";
 import { GitGuardianWebviewProvider } from "./ggshield-webview/gitguardian-webview-view";
-import { createStatusBarItem, StatusBarStatus, updateStatusBarItem } from "./gitguardian-interface/gitguardian-status-bar";
+import {
+  createStatusBarItem,
+  StatusBarStatus,
+  updateStatusBarItem,
+} from "./gitguardian-interface/gitguardian-status-bar";
 import {
   generateSecretName,
   GitGuardianSecretHoverProvider,
 } from "./gitguardian-interface/gitguardian-hover-provider";
 import { GitGuardianQuotaWebviewProvider } from "./ggshield-webview/gitguardian-quota-webview";
 import { GitGuardianRemediationMessageWebviewProvider } from "./ggshield-webview/gitguardian-remediation-message-view";
 
-
 function registerOpenViewsCommands(
   context: ExtensionContext,
   outputChannel: any
@@ -76,7 +76,7 @@ function registerQuotaViewCommands(view: GitGuardianQuotaWebviewProvider) {
 
 export function activate(context: ExtensionContext) {
   // Check if ggshield if available
-  commands.executeCommand('setContext', 'isAuthenticated', false);
+  commands.executeCommand("setContext", "isAuthenticated", false);
 
   const outputChannel = window.createOutputChannel("GitGuardian");
   let configuration = getConfiguration(context);
@@ -92,11 +92,12 @@ export function activate(context: ExtensionContext) {
     context
   );
 
-  const ggshieldRemediationMessageViewProvider = new GitGuardianRemediationMessageWebviewProvider(
-    configuration,
-    context.extensionUri,
-    context
-  );
+  const ggshieldRemediationMessageViewProvider =
+    new GitGuardianRemediationMessageWebviewProvider(
+      configuration,
+      context.extensionUri,
+      context
+    );
   const ggshieldQuotaViewProvider = new GitGuardianQuotaWebviewProvider(
     configuration,
     context.extensionUri,
@@ -111,7 +112,11 @@ export function activate(context: ExtensionContext) {
     "gitguardianQuotaView",
     ggshieldQuotaViewProvider
   );
-  context.subscriptions.push(ggshieldViewProvider, ggshieldRemediationMessageViewProvider, ggshieldQuotaViewProvider);
+  context.subscriptions.push(
+    ggshieldViewProvider,
+    ggshieldRemediationMessageViewProvider,
+    ggshieldQuotaViewProvider
+  );
 
   createStatusBarItem(context);
 
@@ -134,7 +139,6 @@ export function activate(context: ExtensionContext) {
         ggshieldViewProvider.refresh();
         ggshieldRemediationMessageViewProvider.refresh();
         ggshieldQuotaViewProvider.refresh();
-
       } else {
         updateStatusBarItem(StatusBarStatus.unauthenticated);
       }
@@ -156,10 +160,13 @@ export function activate(context: ExtensionContext) {
       context.subscriptions.push(
         workspace.onDidSaveTextDocument((textDocument) => {
           // Check if the document is inside the workspace
-          const workspaceFolder = workspace.getWorkspaceFolder(textDocument.uri);
-          console.log(context.globalState.get("isAuthenticated", false), workspaceFolder);
-          console.log('»»»»»»»»»»»»»»', context.globalState.get("isAuthenticated", false) && workspaceFolder);
-          if (context.globalState.get("isAuthenticated", false) && workspaceFolder) {
+          const workspaceFolder = workspace.getWorkspaceFolder(
+            textDocument.uri
+          );
+          if (
+            context.globalState.get("isAuthenticated", false) &&
+            workspaceFolder
+          ) {
             scanFile(
               textDocument.fileName,
               textDocument.uri,
@@ -182,9 +189,7 @@ export function activate(context: ExtensionContext) {
         commands.registerCommand(
           "gitguardian.ignoreSecret",
           (diagnosticData) => {
-            window.showInformationMessage(
-              'Secret ignored.'
-            );
+            window.showInformationMessage("Secret ignored.");
             let currentFile = getCurrentFile();
             let secretName = generateSecretName(currentFile, diagnosticData);
 
@@ -196,7 +201,7 @@ export function activate(context: ExtensionContext) {
             scanFile(
               currentFile,
               Uri.file(currentFile),
-              ggshieldResolver.configuration,
+              ggshieldResolver.configuration
             );
           }
         ),
@@ -207,19 +212,21 @@ export function activate(context: ExtensionContext) {
             outputChannel,
             ggshieldViewProvider.getView() as WebviewView,
             context
-          ).then(() => {
-            if (context.globalState.get("isAuthenticated", false)) {
-              updateStatusBarItem(StatusBarStatus.ready);
-              setApiKey(configuration, ggshieldApiKey(configuration));
-            } else {
-              updateStatusBarItem(StatusBarStatus.unauthenticated);
-            }
-            ggshieldViewProvider.refresh();
-            ggshieldRemediationMessageViewProvider.refresh();
-            ggshieldQuotaViewProvider.refresh();
-          }).catch((err) => {
-            outputChannel.appendLine(`Authentication failed: ${err.message}`);
-          });
+          )
+            .then(() => {
+              if (context.globalState.get("isAuthenticated", false)) {
+                updateStatusBarItem(StatusBarStatus.ready);
+                setApiKey(configuration, ggshieldApiKey(configuration));
+              } else {
+                updateStatusBarItem(StatusBarStatus.unauthenticated);
+              }
+              ggshieldViewProvider.refresh();
+              ggshieldRemediationMessageViewProvider.refresh();
+              ggshieldQuotaViewProvider.refresh();
+            })
+            .catch((err) => {
+              outputChannel.appendLine(`Authentication failed: ${err.message}`);
+            });
         }),
         commands.registerCommand("gitguardian.logout", async () => {
           logoutGGShield(ggshieldResolver.configuration, context);

src/lib/ggshield-api.ts

@@ -1,16 +1,25 @@
 /* eslint-disable @typescript-eslint/naming-convention */
+import { SpawnOptionsWithoutStdio, spawn } from "child_process";
 import {
-  SpawnOptionsWithoutStdio,
-  spawn,
-} from "child_process";
-import { window, WebviewView, DiagnosticCollection, commands, ExtensionContext, languages, Uri, Diagnostic } from "vscode";
-import axios from 'axios';
+  window,
+  WebviewView,
+  DiagnosticCollection,
+  commands,
+  ExtensionContext,
+  languages,
+  Uri,
+  Diagnostic,
+} from "vscode";
+import axios from "axios";
 import { GGShieldConfiguration } from "./ggshield-configuration";
 import { GGShieldScanResults } from "./api-types";
 import * as os from "os";
 import { apiToDashboard, dasboardToApi, isFileGitignored } from "../utils";
 import { runGGShieldCommand } from "./run-ggshield";
-import { StatusBarStatus, updateStatusBarItem } from "../gitguardian-interface/gitguardian-status-bar";
+import {
+  StatusBarStatus,
+  updateStatusBarItem,
+} from "../gitguardian-interface/gitguardian-status-bar";
 import { parseGGShieldResults } from "./ggshield-results-parser";
 
 /**
@@ -50,22 +59,21 @@ export async function getAPIquota(
   }
 }
 
-
 export async function getRemediationMessage(
   configuration: GGShieldConfiguration
 ): Promise<string> {
   const apiUrl = dasboardToApi(configuration.apiUrl);
-  const path = require('node:path');
-    try {
-      const response = await axios.get(path.join(apiUrl,'v1/metadata'), {
-          headers: {
-              'authorization': `Token ${configuration.apiKey}`
-          }
-      });
-      return response.data.remediation_messages.pre_commit;
-    } catch (error) {
-        return "An error occured.";
-    }
+  const path = require("node:path");
+  try {
+    const response = await axios.get(path.join(apiUrl, "v1/metadata"), {
+      headers: {
+        authorization: `Token ${configuration.apiKey}`,
+      },
+    });
+    return response.data.remediation_messages.pre_commit;
+  } catch (error) {
+    return "An error occurred.";
+  }
 }
 
 /**
@@ -135,7 +143,6 @@ export function cleanUpFileDiagnostics(fileUri: Uri): void {
   diagnosticCollection.delete(fileUri);
 }
 
-
 /**
  * Scan a file using ggshield
  *
@@ -167,6 +174,15 @@ export async function scanFile(
 
   // Ignore errors concerning usage
   // This occurs when the path of the file is invalid (i.e.VSCode sending an event for files not on the file system)
+  // or when the file is ignored in the .gitguardian.yaml
+  if (
+    proc.stderr.includes(
+      "Error: An ignored file or directory cannot be scanned"
+    )
+  ) {
+    updateStatusBarItem(StatusBarStatus.ignoredFile);
+    return;
+  }
   if (proc.stderr.includes("Usage: ggshield secret scan path")) {
     return undefined;
   }
@@ -195,11 +211,10 @@ export async function scanFile(
   } else {
     updateStatusBarItem(StatusBarStatus.noSecretFound);
   }
-  
+
   diagnosticCollection.set(fileUri, incidentsDiagnostics);
 }
 
-
 export async function loginGGShield(
   configuration: GGShieldConfiguration,
   outputChannel: any,
@@ -232,7 +247,7 @@ export async function loginGGShield(
       if (urlLine) {
         const authUrl = urlLine[0];
         webviewView.webview.postMessage({
-          type: 'authLink',
+          type: "authLink",
           link: authUrl,
         });
       }
@@ -249,7 +264,7 @@ export async function loginGGShield(
       } else {
         outputChannel.appendLine("ggshield login completed successfully");
         commands.executeCommand("setContext", "isAuthenticated", true);
-        await context.globalState.update('isAuthenticated', true);
+        await context.globalState.update("isAuthenticated", true);
         resolve();
       }
     });
@@ -261,44 +276,41 @@ export async function loginGGShield(
   });
 }
 
-
 export async function logoutGGShield(
   configuration: GGShieldConfiguration,
   context: ExtensionContext
 ): Promise<void> {
   runGGShieldCommand(configuration, ["auth", "logout"]);
-  commands.executeCommand('setContext', 'isAuthenticated', false);
-  await context.globalState.update('isAuthenticated', false);
-
+  commands.executeCommand("setContext", "isAuthenticated", false);
+  await context.globalState.update("isAuthenticated", false);
 }
 
 export async function ggshieldAuthStatus(
   configuration: GGShieldConfiguration,
   context: ExtensionContext
-  ): Promise<void> {
-    let isAuthenticated: boolean;
-    const proc = runGGShieldCommand(configuration, ["api-status", "--json"]);
-    if (proc.status === 0 && JSON.parse(proc.stdout).status_code === 200) {
-      isAuthenticated = true;
+): Promise<void> {
+  let isAuthenticated: boolean;
+  const proc = runGGShieldCommand(configuration, ["api-status", "--json"]);
+  if (proc.status === 0 && JSON.parse(proc.stdout).status_code === 200) {
+    isAuthenticated = true;
+  } else {
+    if (proc.stderr && proc.stderr.includes("Config key")) {
+      window.showErrorMessage(`Gitguardian: ${proc.stderr}`);
     }
-    else{
-      if (proc.stderr && proc.stderr.includes("Config key")){
-        window.showErrorMessage(`Gitguardian: ${proc.stderr}`);
-      }
-      console.log(proc.stderr);
-      isAuthenticated = false;
-    } 
-    commands.executeCommand('setContext', 'isAuthenticated', isAuthenticated);
-    await context.globalState.update('isAuthenticated', isAuthenticated);
+    console.log(proc.stderr);
+    isAuthenticated = false;
+  }
+  commands.executeCommand("setContext", "isAuthenticated", isAuthenticated);
+  await context.globalState.update("isAuthenticated", isAuthenticated);
 }
 
 /**
  * Get ggshield API key from ggshield config list
- * 
+ *
  * Search for the correct instance section and return the token
  * */
 export function ggshieldApiKey(
-  configuration: GGShieldConfiguration,
+  configuration: GGShieldConfiguration
 ): string | undefined {
   const proc = runGGShieldCommand(configuration, ["config", "list"]);
   if (proc.stderr || proc.error) {
@@ -308,7 +320,9 @@ export function ggshieldApiKey(
     console.log(proc.stdout);
     const apiUrl = configuration.apiUrl;
 
-    const regexInstanceSection = `\\[${apiToDashboard(apiUrl)}\\]([\\s\\S]*?)(?=\\[|$)`;
+    const regexInstanceSection = `\\[${apiToDashboard(
+      apiUrl
+    )}\\]([\\s\\S]*?)(?=\\[|$)`;
     const instanceSectionMatch = proc.stdout.match(regexInstanceSection);
 
     if (instanceSectionMatch) {
@@ -317,11 +331,11 @@ export function ggshieldApiKey(
       const matchToken = instanceSection.match(regexToken);
 
       // if the token is not found, or is not a valid token, return undefined
-      if (!matchToken || matchToken[1].trim().length !== 71 ) {
+      if (!matchToken || matchToken[1].trim().length !== 71) {
         return undefined;
       }
-      
+
       return matchToken[1].trim();
     }
   }
-}
+}