Capture repo info (#571)

* fix gitlab approvers format in pr v2 payload

* capture repo info for attestation commands

* capture repo info for beging trail and attest artifact

* send empty list of approvers for v1 gitlab pr attestation since old evidence api does not accept none for approvers.

Author: sami-alajrami

cmd/kosli/attestArtifact.go

@@ -29,6 +29,7 @@ type AttestArtifactPayload struct {
 	Filename      string                   `json:"filename"`
 	GitCommit     string                   `json:"git_commit"`
 	GitCommitInfo *gitview.BasicCommitInfo `json:"git_commit_info"`
+	GitRepoInfo   *gitview.GitRepoInfo     `json:"repo_info"`
 	BuildUrl      string                   `json:"build_url"`
 	CommitUrl     string                   `json:"commit_url"`
 	RepoUrl       string                   `json:"repo_url"`
@@ -188,6 +189,10 @@ func (o *attestArtifactOptions) run(args []string) error {
 	if err != nil {
 		return err
 	}
+	o.payload.GitRepoInfo, err = getGitRepoInfoFromEnvironment()
+	if err != nil {
+		logger.Warn("failed to get git repo info. %s", err.Error())
+	}
 	o.payload.GitCommit = commitInfo.Sha1
 	o.payload.GitCommitInfo = &commitInfo.BasicCommitInfo
 

cmd/kosli/attestation.go

@@ -2,6 +2,7 @@ package main
 
 import (
 	"fmt"
+	"os"
 	"regexp"
 	"strings"
 
@@ -22,6 +23,7 @@ type URLInfo struct {
 type CommonAttestationPayload struct {
 	ArtifactFingerprint string                   `json:"artifact_fingerprint,omitempty"`
 	Commit              *gitview.BasicCommitInfo `json:"git_commit_info,omitempty"`
+	GitRepoInfo         *gitview.GitRepoInfo     `json:"repo_info,omitempty"`
 	AttestationName     string                   `json:"attestation_name"`
 	TargetArtifacts     []string                 `json:"target_artifacts,omitempty"`
 	ExternalURLs        map[string]*URLInfo      `json:"external_urls,omitempty"`
@@ -79,6 +81,11 @@ func (o *CommonAttestationOptions) run(args []string, payload *CommonAttestation
 		payload.Commit = &commitInfo.BasicCommitInfo
 	}
 
+	payload.GitRepoInfo, err = getGitRepoInfoFromEnvironment()
+	if err != nil {
+		logger.Warn("failed to get git repo info. %s", err.Error())
+	}
+
 	payload.UserData, err = LoadJsonData(o.userDataFilePath)
 	if err != nil {
 		return fmt.Errorf("failed to load user data. %s", err)
@@ -174,3 +181,70 @@ func wrapAttestationError(err error) error {
 	}
 	return err
 }
+
+func getGitRepoInfoFromEnvironment() (*gitview.GitRepoInfo, error) {
+	ci := WhichCI()
+	switch ci {
+	case github:
+		return getGitRepoInfoFromGitHub(), nil
+	case gitlab:
+		return getGitRepoInfoFromGitLab(), nil
+	case bitbucket:
+		return getGitRepoInfoFromBitbucket(), nil
+	case azureDevops:
+		return getGitRepoInfoFromAzureDevops(), nil
+	case circleci:
+		return getGitRepoInfoFromCircleci(), nil
+	case codeBuild:
+		return getGitRepoInfoFromCodeBuild(), nil
+	case unknown:
+		return nil, nil
+	}
+	return nil, fmt.Errorf("unsupported CI: %s", ci)
+}
+
+func getGitRepoInfoFromGitHub() *gitview.GitRepoInfo {
+	return &gitview.GitRepoInfo{
+		URL:  fmt.Sprintf("%s/%s", os.Getenv("GITHUB_SERVER_URL"), os.Getenv("GITHUB_REPOSITORY")),
+		Name: os.Getenv("GITHUB_REPOSITORY"),
+		ID:   os.Getenv("GITHUB_REPOSITORY_ID"),
+	}
+}
+
+func getGitRepoInfoFromGitLab() *gitview.GitRepoInfo {
+	return &gitview.GitRepoInfo{
+		URL:         os.Getenv("CI_PROJECT_URL"),
+		Name:        os.Getenv("CI_PROJECT_PATH"),
+		ID:          os.Getenv("CI_PROJECT_ID"),
+		Description: os.Getenv("CI_PROJECT_DESCRIPTION"),
+	}
+}
+
+func getGitRepoInfoFromBitbucket() *gitview.GitRepoInfo {
+	return &gitview.GitRepoInfo{
+		URL:  os.Getenv("BITBUCKET_GIT_HTTP_ORIGIN"),
+		Name: os.Getenv("BITBUCKET_REPO_FULL_NAME"),
+		ID:   os.Getenv("BITBUCKET_REPO_UUID"),
+	}
+}
+
+func getGitRepoInfoFromAzureDevops() *gitview.GitRepoInfo {
+	return &gitview.GitRepoInfo{
+		URL:  os.Getenv("BUILD_REPOSITORY_URI"),
+		Name: os.Getenv("BUILD_REPOSITORY_NAME"),
+		ID:   os.Getenv("BUILD_REPOSITORY_ID"),
+	}
+}
+
+func getGitRepoInfoFromCircleci() *gitview.GitRepoInfo {
+	return &gitview.GitRepoInfo{
+		URL:  os.Getenv("CIRCLE_REPOSITORY_URL"),
+		Name: os.Getenv("CIRCLE_PROJECT_REPONAME"),
+	}
+}
+
+func getGitRepoInfoFromCodeBuild() *gitview.GitRepoInfo {
+	return &gitview.GitRepoInfo{
+		URL: os.Getenv("CODEBUILD_SOURCE_REPO_URL"),
+	}
+}

cmd/kosli/beginTrail.go

@@ -48,6 +48,7 @@ type TrailPayload struct {
 	Description  string                   `json:"description"`
 	UserData     interface{}              `json:"user_data"`
 	Commit       *gitview.BasicCommitInfo `json:"git_commit_info,omitempty"`
+	GitRepoInfo  *gitview.GitRepoInfo     `json:"repo_info,omitempty"`
 	ExternalURLs map[string]*URLInfo      `json:"external_urls,omitempty"`
 	OriginURL    string                   `json:"origin_url,omitempty"`
 }
@@ -122,6 +123,11 @@ func (o *beginTrailOptions) run(args []string) error {
 		o.payload.Commit = &commitInfo.BasicCommitInfo
 	}
 
+	o.payload.GitRepoInfo, err = getGitRepoInfoFromEnvironment()
+	if err != nil {
+		logger.Warn("failed to get git repo info. %s", err.Error())
+	}
+
 	// process external urls
 	o.payload.ExternalURLs, err = processExternalURLs(o.externalURLs, o.externalFingerprints)
 	if err != nil {

internal/gitlab/gitlab.go

@@ -4,7 +4,6 @@ import (
 	"fmt"
 
 	"github.com/kosli-dev/cli/internal/types"
-	"github.com/kosli-dev/cli/internal/utils"
 	gitlab "gitlab.com/gitlab-org/api/client-go"
 )
 
@@ -79,11 +78,14 @@ func (c *GitlabConfig) newPRGitlabEvidenceV1(mr *gitlab.BasicMergeRequest) (*typ
 		MergeCommit: mr.MergeCommitSHA,
 		State:       mr.State,
 	}
-	approvers, err := c.GetMergeRequestApprovers(mr.IID)
+	approvers, err := c.GetMergeRequestApprovers(mr.IID, 1)
 	if err != nil {
 		return evidence, err
 	}
-	evidence.Approvers = utils.ConvertStringListToInterfaceList(approvers)
+	if approvers == nil {
+		approvers = []any{}
+	}
+	evidence.Approvers = approvers
 	return evidence, nil
 }
 
@@ -98,11 +100,11 @@ func (c *GitlabConfig) newPRGitlabEvidenceV2(mr *gitlab.BasicMergeRequest) (*typ
 		Title:       mr.Title,
 		HeadRef:     mr.SourceBranch,
 	}
-	approvers, err := c.GetMergeRequestApprovers(mr.IID)
+	approvers, err := c.GetMergeRequestApprovers(mr.IID, 2)
 	if err != nil {
 		return evidence, err
 	}
-	evidence.Approvers = utils.ConvertStringListToInterfaceList(approvers)
+	evidence.Approvers = approvers
 	commits, err := c.GetMergeRequestCommits(mr)
 	if err != nil {
 		return evidence, err
@@ -127,8 +129,8 @@ func (c *GitlabConfig) MergeRequestsForCommit(commit string) ([]*gitlab.BasicMer
 }
 
 // GetMergeRequestApprovers returns a list of users (name and username) who approved an MR
-func (c *GitlabConfig) GetMergeRequestApprovers(mrIID int) ([]string, error) {
-	approvers := []string{}
+func (c *GitlabConfig) GetMergeRequestApprovers(mrIID, version int) ([]any, error) {
+	var approvers []any
 	client, err := c.NewGitlabClientFromToken()
 	if err != nil {
 		return approvers, err
@@ -137,8 +139,16 @@ func (c *GitlabConfig) GetMergeRequestApprovers(mrIID int) ([]string, error) {
 	if err != nil {
 		return approvers, err
 	}
+
 	for _, approver := range approvals.ApprovedBy {
-		approvers = append(approvers, fmt.Sprintf("%s (@%s)", approver.User.Name, approver.User.Username))
+		approverName := fmt.Sprintf("%s (@%s)", approver.User.Name, approver.User.Username)
+		if version == 1 {
+			approvers = append(approvers, approverName)
+		} else {
+			approvers = append(approvers, types.PRApprovals{
+				Username: approverName,
+			})
+		}
 	}
 	return approvers, nil
 }

internal/gitlab/gitlab_test.go

@@ -288,7 +288,7 @@ func (suite *GitlabTestSuite) TestGetMergeRequestApprovers() {
 				testHelpers.SkipIfEnvVarUnset(suite.Suite.T(), []string{"KOSLI_GITLAB_TOKEN"})
 				t.gitlabConfig.Token = os.Getenv("KOSLI_GITLAB_TOKEN")
 			}
-			approvers, err := t.gitlabConfig.GetMergeRequestApprovers(t.mrIID)
+			approvers, err := t.gitlabConfig.GetMergeRequestApprovers(t.mrIID, 1)
 			if t.result.wantError {
 				require.Error(suite.Suite.T(), err)
 			} else {

internal/gitview/gitView.go

@@ -28,6 +28,13 @@ type CommitInfo struct {
 	Parents []string `json:"parents"`
 }
 
+type GitRepoInfo struct {
+	URL         string `json:"url,omitempty"`
+	Name        string `json:"name,omitempty"`
+	ID          string `json:"id,omitempty"`
+	Description string `json:"description,omitempty"`
+}
+
 // GitView
 // A read-only view of a git repository.
 type GitView struct {