replace semgrep with opengrep

Author: heliocodacy

.codacy/codacy.yaml

@@ -3,13 +3,11 @@ runtimes:
     - java@17.0.10
     - node@22.2.0
     - python@3.11.11
-    - flutter@3.7.2
 tools:
     - eslint@9.38.0
     - lizard@1.17.31
     - pmd@6.55.0
     - pylint@3.3.9
     - revive@1.12.0
-    - semgrep@1.78.0
+    - opengrep@1.16.2
     - trivy@0.66.0
-    - dartanalyzer@3.7.2

cmd/analyze.go

@@ -273,7 +273,7 @@ var versionedToolNames = map[string]map[int]string{
 
 var simpleToolAliases = map[string]string{
 	"lizard":  "Lizard",
-	"semgrep": "Semgrep",
+	"opengrep": "Opengrep",
 	"pylint":  "pylintpython3",
 	"trivy":   "Trivy",
 }
@@ -405,9 +405,9 @@ func runToolByName(toolName string, workDirectory string, pathsToCheck []string,
 	case "dartanalyzer":
 		binaryPath := tool.Binaries[tool.Runtime]
 		return tools.RunDartAnalyzer(workDirectory, tool.InstallDir, binaryPath, pathsToCheck, outputFile, outputFormat)
-	case "semgrep":
+	case "opengrep":
 		binaryPath := tool.Binaries[toolName]
-		return tools.RunSemgrep(workDirectory, binaryPath, pathsToCheck, outputFile, outputFormat)
+		return tools.RunOpengrep(workDirectory, binaryPath, pathsToCheck, outputFile, outputFormat)
 	case "lizard":
 		binaryPath := tool.Binaries[tool.Runtime]
 		return lizard.RunLizard(workDirectory, binaryPath, pathsToCheck, outputFile, outputFormat)

cmd/analyze_integration_test.go

@@ -114,7 +114,7 @@ func TestToolConfigFileNameMapCompleteness(t *testing.T) {
 		"pmd":          constants.PMDConfigFileName,
 		"pylint":       constants.PylintConfigFileName,
 		"dartanalyzer": constants.DartAnalyzerConfigFileName,
-		"semgrep":      constants.SemgrepConfigFileName,
+		"opengrep":     constants.OpengrepConfigFileName,
 		"revive":       constants.ReviveConfigFileName,
 		"lizard":       constants.LizardConfigFileName,
 	}

cmd/analyze_test.go

@@ -449,7 +449,7 @@ func TestToolConfigFileNameMap(t *testing.T) {
 		"pmd":          constants.PMDConfigFileName,
 		"pylint":       constants.PylintConfigFileName,
 		"dartanalyzer": constants.DartAnalyzerConfigFileName,
-		"semgrep":      constants.SemgrepConfigFileName,
+		"opengrep":     constants.OpengrepConfigFileName,
 		"revive":       constants.ReviveConfigFileName,
 		"lizard":       constants.LizardConfigFileName,
 	}

cmd/configsetup/default_config.go

@@ -103,7 +103,7 @@ func CreateConfigurationFilesForDiscoveredTools(discoveredToolNames map[string]s
 		currentCliMode = "local" // Default to local
 	}
 
-	if currentCliMode == "remote" && initFlags.ApiToken != "" {
+	if currentCliMode == "remote" && (initFlags.ApiToken != "" || initFlags.ProjectToken != "") {
 		// Remote mode - create configurations based on cloud repository settings
 		return createRemoteToolConfigurationsForDiscovered(discoveredToolNames, initFlags)
 	}

cmd/configsetup/tool_creators.go

@@ -24,7 +24,7 @@ var toolConfigRegistry = map[string]ToolConfigCreator{
 	domain.PMD7:         &pmd7ConfigCreator{},
 	domain.PyLint:       &pylintConfigCreator{},
 	domain.DartAnalyzer: &dartAnalyzerConfigCreator{},
-	domain.Semgrep:      &semgrepConfigCreator{},
+	domain.Opengrep:     &opengrepConfigCreator{},
 	domain.Lizard:       &lizardConfigCreator{},
 	domain.Revive:       &reviveConfigCreator{},
 }
@@ -121,23 +121,23 @@ func (d *dartAnalyzerConfigCreator) GetConfigFileName() string {
 }
 func (d *dartAnalyzerConfigCreator) GetToolName() string { return "Dart Analyzer" }
 
-// semgrepConfigCreator implements ToolConfigCreator for Semgrep
-type semgrepConfigCreator struct{}
+// opengrepConfigCreator implements ToolConfigCreator for Opengrep
+type opengrepConfigCreator struct{}
 
-func (s *semgrepConfigCreator) CreateConfig(toolsConfigDir string, patterns []domain.PatternConfiguration) error {
-	configData, err := tools.GetSemgrepConfig(patterns)
+func (s *opengrepConfigCreator) CreateConfig(toolsConfigDir string, patterns []domain.PatternConfiguration) error {
+	configData, err := tools.GetOpengrepConfig(patterns)
 	if err != nil {
-		return fmt.Errorf("failed to create Semgrep config: %v", err)
+		return fmt.Errorf("failed to create Opengrep config: %v", err)
 	}
-	err = writeConfigFile(filepath.Join(toolsConfigDir, constants.SemgrepConfigFileName), configData)
+	err = writeConfigFile(filepath.Join(toolsConfigDir, constants.OpengrepConfigFileName), configData)
 	if err == nil {
-		fmt.Println("Semgrep configuration created based on Codacy settings")
+		fmt.Println("Opengrep configuration created based on Codacy settings")
 	}
 	return err
 }
 
-func (s *semgrepConfigCreator) GetConfigFileName() string { return constants.SemgrepConfigFileName }
-func (s *semgrepConfigCreator) GetToolName() string       { return "Semgrep" }
+func (s *opengrepConfigCreator) GetConfigFileName() string { return constants.OpengrepConfigFileName }
+func (s *opengrepConfigCreator) GetToolName() string       { return "Opengrep" }
 
 // lizardConfigCreator implements ToolConfigCreator for Lizard
 type lizardConfigCreator struct{}

cmd/init.go

@@ -36,7 +36,7 @@ var initCmd = &cobra.Command{
 			log.Fatalf("Failed to create tools-configs directory: %v", err)
 		}
 
-		cliLocalMode := len(initFlags.ApiToken) == 0
+		cliLocalMode := len(initFlags.ApiToken)+len(initFlags.ProjectToken) == 0
 
 		if cliLocalMode {
 			fmt.Println()

cmd/upload.go

@@ -55,7 +55,8 @@ var sarifShortNameMap = map[string]string{
 	"Trivy":               "trivy",
 	"Pylint":              "pylintpython3",
 	"dartanalyzer":        "dartanalyzer",
-	"Semgrep":             "semgrep",
+	"Opengrep":            "opengrep",
+	"Opengrep OSS":        "opengrep",
 	"Lizard":              "lizard",
 	"revive":              "revive",
 }

codacy-client/client.go

@@ -15,7 +15,16 @@ const timeout = 10 * time.Second
 // CodacyApiBase is the base URL for the Codacy API
 var CodacyApiBase = "https://app.codacy.com"
 
-func getRequest(url string, apiToken string) ([]byte, error) {
+// getTokenFromFlags extracts the appropriate token and its type from init flags.
+// Project tokens take precedence over API tokens.
+func getTokenFromFlags(initFlags domain.InitFlags) (token string, isProjectToken bool) {
+	if initFlags.ProjectToken != "" {
+		return initFlags.ProjectToken, true
+	}
+	return initFlags.ApiToken, false
+}
+
+func getRequest(url string, apiToken string, isProjectToken bool) ([]byte, error) {
 	client := &http.Client{
 		Timeout: timeout,
 	}
@@ -26,7 +35,11 @@ func getRequest(url string, apiToken string) ([]byte, error) {
 	}
 
 	if apiToken != "" {
-		req.Header.Set("api-token", apiToken)
+		if isProjectToken {
+			req.Header.Set("project-token", apiToken)
+		} else {
+			req.Header.Set("api-token", apiToken)
+		}
 	}
 
 	resp, err := client.Do(req)
@@ -56,7 +69,8 @@ func GetPage[T any](
 	initFlags domain.InitFlags,
 	parser func([]byte) ([]T, string, error),
 ) ([]T, string, error) {
-	response, err := getRequest(url, initFlags.ApiToken)
+	token, isProjectToken := getTokenFromFlags(initFlags)
+	response, err := getRequest(url, token, isProjectToken)
 	if err != nil {
 		return nil, "", fmt.Errorf("failed to get page: %w", err)
 	}
@@ -211,7 +225,8 @@ func GetRepositoryTools(initFlags domain.InitFlags) ([]domain.Tool, error) {
 		initFlags.Organization,
 		initFlags.Repository)
 
-	bodyResponse, err := getRequest(baseURL, initFlags.ApiToken)
+	token, isProjectToken := getTokenFromFlags(initFlags)
+	bodyResponse, err := getRequest(baseURL, token, isProjectToken)
 	if err != nil {
 		return nil, fmt.Errorf("failed to get repository tools: %w", err)
 	}
@@ -251,7 +266,7 @@ func GetRepositoryTools(initFlags domain.InitFlags) ([]domain.Tool, error) {
 func GetToolsVersions() ([]domain.Tool, error) {
 	baseURL := fmt.Sprintf("%s/api/v3/tools", CodacyApiBase)
 
-	bodyResponse, err := getRequest(baseURL, "")
+	bodyResponse, err := getRequest(baseURL, "", false)
 	if err != nil {
 		return nil, fmt.Errorf("failed to get tool versions: %w", err)
 	}
@@ -273,7 +288,8 @@ func GetRepositoryLanguages(initFlags domain.InitFlags) ([]domain.RepositoryLang
 		initFlags.Organization,
 		initFlags.Repository)
 
-	bodyResponse, err := getRequest(baseURL, initFlags.ApiToken)
+	token, isProjectToken := getTokenFromFlags(initFlags)
+	bodyResponse, err := getRequest(baseURL, token, isProjectToken)
 	if err != nil {
 		return nil, fmt.Errorf("failed to get repository languages: %w", err)
 	}
@@ -291,7 +307,7 @@ func GetRepositoryLanguages(initFlags domain.InitFlags) ([]domain.RepositoryLang
 func GetLanguageTools() ([]domain.LanguageTool, error) {
 	baseURL := fmt.Sprintf("%s/api/v3/languages/tools", CodacyApiBase)
 
-	bodyResponse, err := getRequest(baseURL, "")
+	bodyResponse, err := getRequest(baseURL, "", false)
 	if err != nil {
 		return nil, fmt.Errorf("failed to get language tools: %w", err)
 	}

codacy-client/client_test.go

@@ -19,7 +19,7 @@ func TestGetRequest_Success(t *testing.T) {
 	defer ts.Close()
 
 	initFlags := domain.InitFlags{ApiToken: "dummy"}
-	resp, err := getRequest(ts.URL, initFlags.ApiToken)
+	resp, err := getRequest(ts.URL, initFlags.ApiToken, false)
 	assert.NoError(t, err)
 	assert.Contains(t, string(resp), "ok")
 }
@@ -31,7 +31,7 @@ func TestGetRequest_Failure(t *testing.T) {
 	defer ts.Close()
 
 	initFlags := domain.InitFlags{ApiToken: "dummy"}
-	_, err := getRequest(ts.URL, initFlags.ApiToken)
+	_, err := getRequest(ts.URL, initFlags.ApiToken, false)
 	assert.Error(t, err)
 }