test: add deeper smoke tests for binary and npm bundle (#1013)

BYK · web-flow · commit 13ef543c5ab6 · 2026-05-22T22:40:08.000+01:00
## Problem Our current smoke tests only run `--help` and `--version`, which exercise none of the lazy-loaded code paths (SQLite, telemetry, auth DB, Ink sidecar). This allowed two critical bugs to ship: 1. `_require("../telemetry.js")` in the CJS bundle — `--help` never triggers the lazy DB init 2. `with { type: "file" }` crashing in tsx dev mode — `--help` never loads the Ink sidecar ## Changes ### CI Build Smoke Tests (`.github/workflows/ci.yml`) **`build-binary` job**: Added a "Smoke test (deep)" step that runs `auth status` (unauthenticated) on the compiled binary. Exercises SQLite init, schema migrations, telemetry lazy import, and CJS require chain. Asserts exit code 10 (`AUTH_NOT_AUTHENTICATED`) — any other code (1=crash, 127=missing) fails the step. **`build-npm` job**: Same test via `node dist/bin.cjs auth status` on both Node 22 and Node 24. ### E2E Bundle Tests (`test/e2e/bundle.test.ts`) Three new tests: 1. **`auth status`** — exercises SQLite + telemetry + auth DB via npm bundle. Asserts exit 10, "not authenticated", no module resolution errors. 2. **`cli defaults`** — exercises SQLite metadata KV store without requiring auth. Asserts exit 0. 3. **Ink sidecar import** — directly imports `dist/ink-app.js` and verifies it exports `mountApp` as a function. Catches sidecar bundling bugs. ### Why `auth status`? - Sets `auth: false` on the command, so Stricli's auth guard is skipped — the command itself checks auth state - Exercises: SQLite init, DB schema + migrations, `getAuthConfig()`, `getUserInfo()`, `getDefaultOrganization/Project()`, `getDbPath()`, telemetry lazy import, error formatting pipeline - When unauthenticated: exits with code 10 deterministically, no network calls, ~200-500ms ### Why a direct sidecar import test? `init --dry-run` is not viable for smoke testing because: (a) `init` requires auth, (b) `--dry-run` forces `LoggingUI` not `InkUI`, (c) non-TTY CI forces `LoggingUI` regardless. The direct import test catches the exact class of sidecar bundling bugs without needing auth, a TTY, or a mock server. ## Timing Impact ~1-2 seconds added per build job (well under the 2-3s budget from the issue). Closes #1010
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -309,6 +309,32 @@ jobs:
           else
             ./dist-bin/sentry-${{ matrix.target }} --help
           fi
+      - name: Smoke test (deep — SQLite, telemetry, auth DB)
+        if: matrix.can-test
+        shell: bash
+        env:
+          SENTRY_AUTH_TOKEN: ""
+          SENTRY_TOKEN: ""
+        run: |
+          if [[ "${{ matrix.target }}" == "windows-x64" ]]; then
+            BIN=./dist-bin/sentry-windows-x64.exe
+          else
+            BIN=./dist-bin/sentry-${{ matrix.target }}
+          fi
+          # auth status without a token exercises SQLite init, schema
+          # migrations, telemetry lazy import, and the CJS require chain.
+          # Expected: exit 10 (AUTH_NOT_AUTHENTICATED), NOT a crash/syntax error.
+          OUTPUT=$($BIN auth status 2>&1) && EXIT_CODE=$? || EXIT_CODE=$?
+          if [[ $EXIT_CODE -ne 10 ]]; then
+            echo "::error::Expected exit code 10 (not authenticated), got $EXIT_CODE"
+            echo "$OUTPUT"
+            exit 1
+          fi
+          if ! echo "$OUTPUT" | grep -qi "not authenticated"; then
+            echo "::error::Expected 'not authenticated' in output, got:"
+            echo "$OUTPUT"
+            exit 1
+          fi
       - name: Upload binary artifact
         uses: actions/upload-artifact@v7
         with:
@@ -710,6 +736,26 @@ jobs:
         run: pnpm run bundle
       - name: Smoke test (Node.js)
         run: node dist/bin.cjs --help
+      - name: Smoke test (Node.js — deep)
+        shell: bash
+        env:
+          SENTRY_AUTH_TOKEN: ""
+          SENTRY_TOKEN: ""
+        run: |
+          # auth status without a token exercises SQLite init, schema
+          # migrations, telemetry lazy import, and the CJS require chain.
+          # Expected: exit 10 (AUTH_NOT_AUTHENTICATED), NOT a crash/syntax error.
+          OUTPUT=$(node dist/bin.cjs auth status 2>&1) && EXIT_CODE=$? || EXIT_CODE=$?
+          if [[ $EXIT_CODE -ne 10 ]]; then
+            echo "::error::Expected exit code 10 (not authenticated), got $EXIT_CODE"
+            echo "$OUTPUT"
+            exit 1
+          fi
+          if ! echo "$OUTPUT" | grep -qi "not authenticated"; then
+            echo "::error::Expected 'not authenticated' in output, got:"
+            echo "$OUTPUT"
+            exit 1
+          fi
       - run: npm pack
       - name: Upload artifact
         if: matrix.node == '22'
diff --git a/test/e2e/bundle.test.ts b/test/e2e/bundle.test.ts
@@ -9,6 +9,7 @@ import { spawn } from "node:child_process";
 import { existsSync, rmSync } from "node:fs";
 import { readFile } from "node:fs/promises";
 import { join } from "node:path";
+import { pathToFileURL } from "node:url";
 import { afterAll, beforeAll, describe, expect, test } from "vitest";
 
 function noop(): void {
@@ -45,6 +46,7 @@ async function spawnCollect(
 
 const ROOT_DIR = join(import.meta.dirname, "../..");
 const BUNDLE_PATH = join(ROOT_DIR, "dist/bin.cjs");
+const INK_APP_PATH = join(ROOT_DIR, "dist/ink-app.js");
 
 describe("npm bundle", () => {
   beforeAll(async () => {
@@ -149,4 +151,90 @@ describe("npm bundle", () => {
     const output = stdout + stderr;
     expect(output.length).toBeGreaterThan(0);
   }, 15_000); // Allow up to 15s for cold Node.js JIT startup on slow CI runners
+
+  test("bundle exercises SQLite and auth DB (auth status)", async () => {
+    // Run `auth status` without a token — exercises SQLite initialization,
+    // schema migrations, auth DB reads, and telemetry lazy import.
+    // This catches lazy-import and require-resolution bugs that --version misses.
+    const { stdout, stderr, exitCode } = await spawnCollect(
+      "node",
+      [BUNDLE_PATH, "auth", "status"],
+      {
+        cwd: ROOT_DIR,
+        env: {
+          ...process.env,
+          // Do NOT set SENTRY_CLI_NO_TELEMETRY — we want to exercise telemetry init
+          SENTRY_AUTH_TOKEN: "",
+          SENTRY_TOKEN: "",
+        },
+      }
+    );
+
+    const output = stdout + stderr;
+
+    // Must exit 10 (AUTH_NOT_AUTHENTICATED), not crash
+    expect(exitCode).toBe(10);
+    expect(output.toLowerCase()).toContain("not authenticated");
+
+    // Must not contain Node.js module resolution errors
+    expect(output).not.toContain("Cannot find module");
+    expect(output).not.toContain("MODULE_NOT_FOUND");
+    expect(output).not.toContain("ERR_MODULE_NOT_FOUND");
+  }, 15_000);
+
+  test("bundle exercises SQLite with cli defaults", async () => {
+    // `cli defaults` (no args) reads all defaults from SQLite — exercises
+    // DB init and the metadata KV store without requiring auth.
+    const { stdout, stderr, exitCode } = await spawnCollect(
+      "node",
+      [BUNDLE_PATH, "cli", "defaults"],
+      {
+        cwd: ROOT_DIR,
+        env: {
+          ...process.env,
+          SENTRY_AUTH_TOKEN: "",
+          SENTRY_TOKEN: "",
+        },
+      }
+    );
+
+    const output = stdout + stderr;
+
+    // Should succeed — cli defaults with no args just shows current state
+    expect(exitCode).toBe(0);
+
+    // Must not contain module resolution errors
+    expect(output).not.toContain("Cannot find module");
+    expect(output).not.toContain("MODULE_NOT_FOUND");
+  }, 15_000);
+
+  test("Ink sidecar can be imported and exports mountApp", async () => {
+    // The Ink sidecar (dist/ink-app.js) is a pre-bundled self-contained ESM
+    // module that ships with the npm package. Verify it exists, can be imported
+    // by Node, and exports mountApp as a function. This catches sidecar
+    // bundling/resolution bugs — the exact class of bug where `with { type: "file" }`
+    // crashed in tsx dev mode.
+    //
+    // Run in a subprocess to avoid polluting the vitest process with
+    // React/Ink globals from the sidecar's bundled dependencies.
+    expect(existsSync(INK_APP_PATH)).toBe(true);
+
+    const { stdout, stderr, exitCode } = await spawnCollect("node", [
+      "--input-type=module",
+      "-e",
+      `import { mountApp } from ${JSON.stringify(pathToFileURL(INK_APP_PATH).href)};\n` +
+        'if (typeof mountApp !== "function") {\n' +
+        '  process.stderr.write("mountApp is " + typeof mountApp + ", expected function");\n' +
+        "  process.exit(1);\n" +
+        "}",
+    ]);
+
+    if (exitCode !== 0) {
+      const output = stdout + stderr;
+      throw new Error(
+        `Ink sidecar import failed (exit ${exitCode}): ${output}`
+      );
+    }
+    expect(exitCode).toBe(0);
+  }, 15_000);
 });
