Skip to content
This repository was archived by the owner on Mar 12, 2024. It is now read-only.

Feature/detect jwt #444

Open
EstebanDalelR wants to merge 5 commits into
base: dev
Choose a base branch
from
Open

Feature/detect jwt #444

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
141b7b7
Delete detectLefoutComments.ts
EstebanDalelR Feb 1, 2024
6a8b853
Create detectJWT.ts
EstebanDalelR Feb 1, 2024
07ed108
Add JWT detection
EstebanDalelR Feb 1, 2024
c7d1e0e
Fix error
EstebanDalelR Feb 1, 2024
6a2b1ac
Merge branch 'dev' into feature/detect-JWT
EstebanDalelR Feb 2, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
13 changes: 13 additions & 0 deletions app/api/actions/github/route.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,7 @@ import getAllServices from "../../../../utils/actions/getAllServices";
import randomText from "../../../../utils/actions/markdownHelpers/randomText";
import createTeamAndMatchUser from "../../../../utils/db/teams/createTeamAndMatchUser";
import sendUninstall from "../../../../utils/sendgrid/sendUninstall";
import detectJWT from "../../../../utils/codeSmells/detectJWT";

const app = new App({
appId: process.env.GITHUB_APP_ID!,
Expand Down Expand Up @@ -299,6 +300,18 @@ export async function POST(request: Request) {
reqEmail: req.email,
})
: null,
CodeComments
? detectJWT({
prTitle: title,
businessLogicSummary,
repo,
owner,
issue_number: number,
installationId,
reqUrl: request.url,
reqEmail: req.email,
})
: null,
// Make Watermelon Review the PR's business logic here by comparing the title with the AI-generated summary
Badges
? labelPullRequest({
Expand Down
74 changes: 38 additions & 36 deletions utils/codeSmells/detectLefoutComments.ts → utils/codeSmells/detectJWT.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,20 +1,17 @@
const { Configuration, OpenAIApi } = require("openai");
import { App } from "@octokit/app";
import posthog from "../posthog/posthog";
import getDiffFiles from "./getDiffFiles";
import getLatestCommitHash from "./getLatestCommitHash";
import { getLineDiffs } from "./getLineDiffs";

const configuration = new Configuration({
apiKey: process.env.OPEN_AI_KEY,
});
const openai = new OpenAIApi(configuration);

const app = new App({
appId: process.env.GITHUB_APP_ID!,
privateKey: process.env.GITHUB_PRIVATE_KEY!,
});

const leftoverCommentBody = `This PR contains leftover multi-line comments. Please review or remove them.`;
const JWTComment = `This PR contains data that looks like a JWT. Please review or remove them.`;

export default async function detectLefoutComments({
export default async function detectJWT({
installationId,
owner,
repo,
Expand All @@ -32,40 +29,45 @@ export default async function detectLefoutComments({
reqEmail: string;
}) {
const octokit = await app.getInstallationOctokit(installationId);

// get the diffs
const { data: diffFiles } = await octokit.request(
"GET /repos/{owner}/{repo}/pulls/{pull_number}/files",
{
posthog.capture({
event: "detectJWTData",
properties: {
reqUrl,
reqEmail,
owner,
repo,
pull_number: issue_number,
}
);

function getLatestCommitHash() {
return octokit
.request("GET /repos/{owner}/{repo}/pulls/{pull_number}", {
issue_number,
},
});
const requestOptions = { owner, repo, issue_number, installationId };
const [diffFiles, latestCommitHash] = await Promise.all([
getDiffFiles(requestOptions),
getLatestCommitHash(requestOptions),
]).catch((err) => {
posthog.capture({
event: "detectJWTError",
properties: {
reqUrl,
reqEmail,
owner,
repo,
pull_number: issue_number,
})
.then((result) => {
return result.data.head.sha;
})
.catch((err) => {
console.log(err);
});
}

const latestCommitHash = await getLatestCommitHash();

issue_number,
error: err,
},
});
return [[], undefined];
});
const commentPromises = diffFiles.map(async (file) => {
const { additions } = getLineDiffs(file.patch ?? "");

// Leftout comment RegEx
const leftoverCommentRegex = /^\/\*[\s\S]*?\*\/|\/\/[\s\S]*?\n/gm;
const matches = additions.match(leftoverCommentRegex);
const lines = additions.split("\n");

// JWt Data RegEx
const JWTRegex = new RegExp(
"\\b[A-Za-z0-9-_]+.[A-Za-z0-9-_]+.[A-Za-z0-9-_]*\b",
"g"
);
const matches = additions.match(JWTRegex);

if (matches) {
const firstMatch = matches[0];
Expand Down Expand Up @@ -100,7 +102,7 @@ export default async function detectLefoutComments({
{
path: file.filename,
position: lineNumber, // comment at the beggining of the file by default
body: leftoverCommentBody,
body: JWTComment,
},
],
})
Expand Down