You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Coverage variation is the difference between the coverage for the head and common ancestor commits of the pull request branch: <coverage of head commit> - <coverage of common ancestor commit>
Diff coverage is the percentage of lines that are covered by tests out of the coverable lines that the pull request added or modified: <covered lines added or modified>/<coverable lines added or modified> * 100%
The reason will be displayed to describe this comment to others. Learn more.
Code Review
This pull request introduces proxy support for Axios and telemetry requests by reading VS Code configuration and environment variables. The feedback suggests ensuring proxy settings are initialized immediately upon extension activation, passing authorization headers to the HTTP proxy agent while removing invalid TLS options, and configuring Axios to not throw on non-2xx status codes so that Segment can handle HTTP errors properly.
The reason will be displayed to describe this comment to others. Learn more.
Pull Request Overview
While this PR implements the core proxy support requested in CF-2437, it fails to meet the explicit requirement for NO_PROXY support. This omission, combined with the use of a global Axios agent, means the extension will attempt to route all traffic through the proxy, likely breaking connectivity for local or internal hosts.
The file src/common/proxy.ts is high-risk; it contains complex logic for proxy resolution and agent creation but lacks sufficient unit tests (30.3% coverage). Additionally, several logic errors in the Segment HTTP client and URL parsing could lead to runtime crashes or telemetry failures. Although Codacy rates the PR as 'Up to Standards', the security trade-off of disabling TLS verification globally and the architectural issue in src/extension.ts (exceeding line limits) should be addressed before merging.
About this PR
The implementation completely ignores the NO_PROXY environment variable. This was an explicit requirement in the JIRA ticket and is necessary for users in environments with internal service exclusions.
The PR description is empty. Please provide context regarding the manual testing performed, especially since automated test coverage for the proxy logic is currently low.
1 comment outside of the diffsrc/extension.ts
line 207 🟡 MEDIUM RISK
The activate function has 127 lines of code, exceeding the 100-line limit. Refactoring this into purpose-specific initialization functions (telemetry, proxy listener, UI flags) would improve readability and testability.
Test suggestions
Missing recommended test scenario: Verify resolveProxyUrl prioritizes VS Code settings over environment variables
Missing recommended test scenario: Verify SSL verification is disabled globally via NODE_TLS_REJECT_UNAUTHORIZED when proxyStrictSSL is false
Missing recommended test scenario: Verify proxy settings are updated dynamically when vscode.workspace.onDidChangeConfiguration is triggered for 'http'
Missing recommended test scenario: Verify NO_PROXY exclusions are respected for outbound requests
Missing recommended test scenario: Verify ProxiedSegmentHTTPClient correctly routes Segment telemetry through the configured axios proxy
Unit tests for configureAxiosProxy covering no proxy, HTTP/HTTPS protocols, and authentication headers
Prompt proposal for missing tests
Consider implementing these tests if applicable:
1. Missing recommended test scenario: Verify resolveProxyUrl prioritizes VS Code settings over environment variables
2. Missing recommended test scenario: Verify SSL verification is disabled globally via NODE_TLS_REJECT_UNAUTHORIZED when proxyStrictSSL is false
3. Missing recommended test scenario: Verify proxy settings are updated dynamically when vscode.workspace.onDidChangeConfiguration is triggered for 'http'
4. Missing recommended test scenario: Verify NO_PROXY exclusions are respected for outbound requests
5. Missing recommended test scenario: Verify ProxiedSegmentHTTPClient correctly routes Segment telemetry through the configured axios proxy
6. Unit tests for configureAxiosProxy covering no proxy, HTTP/HTTPS protocols, and authentication headers
Low confidence findings
The current manual implementation using 'tunnel' and 'http-proxy-agent' requires more maintenance than the 'proxy-agent' library, which handles NO_PROXY and environment variable prioritization out of the box.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
![codacy-production[bot]](https://avatars.githubusercontent.com/in/56611?s=60&v=4){kind=small}
No description provided.