feat: Cloud report sync support multi-project sync

2025-12-10 00:22:08 -06:00 · 2024-09-30 13:59:12 +05:30 · 2024-09-30 13:59:12 +05:30 · fca2b8e3ab
commit fca2b8e3ab
parent 7a5d637a50
3 changed files with 57 additions and 8 deletions
--- a/pkg/readers/github_reader.go
+++ b/pkg/readers/github_reader.go
@ -129,7 +129,7 @@ func (p *githubReader) processTopLevelLockfiles(ctx context.Context, client *git
 				return err
 			}

-			pm.SetDisplayPath(entry.GetURL())
+			pm.SetDisplayPath(gitUrl.GetHttpCloneURL())
 			err = handler(pm, NewManifestModelReader(pm))
 			if err != nil {
 				return err
--- a/pkg/reporter/sync.go
+++ b/pkg/reporter/sync.go
@ -78,6 +78,14 @@ func (s *syncSessionPool) addPrimarySession(sessionId string, client controltowe
 	}
 }

+func (s *syncSessionPool) hasKeyedSession(key string) bool {
+	s.mu.RLock()
+	defer s.mu.RUnlock()
+
+	_, ok := s.syncSessions[key]
+	return ok
+}
+
 func (s *syncSessionPool) addKeyedSession(key, sessionId string, client controltowerv1grpc.ToolServiceClient) {
 	s.mu.Lock()
 	defer s.mu.Unlock()
@ -122,6 +130,7 @@ type syncReporter struct {
 	workQueue chan *models.Package
 	done      chan bool
 	wg        sync.WaitGroup
+	client    *grpc.ClientConn
 	sessions  *syncSessionPool
 }

@ -191,6 +200,7 @@ func NewSyncReporter(config SyncReporterConfig) (Reporter, error) {
 		config:    &config,
 		done:      done,
 		workQueue: make(chan *models.Package, 1000),
+		client:    client,
 		sessions:  &syncSessionPool,
 	}

@ -203,6 +213,40 @@ func (s *syncReporter) Name() string {
 }

 func (s *syncReporter) AddManifest(manifest *models.PackageManifest) {
+	manifestSessionKey := manifest.Path
+	if s.config.EnableMultiProjectSync && !s.sessions.hasKeyedSession(manifestSessionKey) {
+		projectName := manifest.GetDisplayPath()
+		projectVersion := "main"
+
+		source := packagev1.ProjectSourceType_PROJECT_SOURCE_TYPE_UNSPECIFIED
+		trigger := controltowerv1.ToolTrigger_TOOL_TRIGGER_MANUAL
+
+		logger.Debugf("Report Sync: Creating tool session for project: %s, version: %s",
+			projectName, projectVersion)
+
+		toolServiceClient := controltowerv1grpc.NewToolServiceClient(s.client)
+		toolSessionRes, err := toolServiceClient.CreateToolSession(context.Background(),
+			&controltowerv1.CreateToolSessionRequest{
+				ToolName:       s.config.ToolName,
+				ToolVersion:    s.config.ToolVersion,
+				ProjectName:    projectName,
+				ProjectVersion: &projectVersion,
+				ProjectSource:  &source,
+				Trigger:        &trigger,
+			})
+		if err != nil {
+			logger.Errorf("failed to create tool session for project: %s/%s: %v",
+				projectName, projectVersion, err)
+		}
+
+		logger.Debugf("Report Sync: Tool data upload session ID: %s",
+			toolSessionRes.GetToolSession().GetToolSessionId())
+
+		s.sessions.addKeyedSession(manifestSessionKey,
+			toolSessionRes.GetToolSession().GetToolSessionId(), toolServiceClient)
+
+	}
+
 	// We are ignoring the error here because we are asynchronously handling the sync of Manifest
 	_ = readers.NewManifestModelReader(manifest).EnumPackages(func(pkg *models.Package) error {
 		s.queuePackage(pkg)
@ -269,7 +313,8 @@ func (s *syncReporter) syncReportWorker() {
 func (s *syncReporter) syncPackage(pkg *models.Package) error {
 	defer s.wg.Done()

-	session, err := s.sessions.getSession(pkg.Manifest.Path)
+	manifestSessionKey := pkg.Manifest.Path
+	session, err := s.sessions.getSession(manifestSessionKey)
 	if err != nil {
 		return fmt.Errorf("failed to get session for package: %s/%s/%s: %w",
 			pkg.Manifest.Ecosystem, pkg.GetName(), pkg.GetVersion(), err)
--- a/scan.go
+++ b/scan.go
@ -51,6 +51,7 @@ var (
 	disableAuthVerifyBeforeScan    bool
 	syncReport                     bool
 	syncReportProject              string
+	syncEnableMultiProject         bool
 	graphReportDirectory           string
 	syncReportStream               string
 	listExperimentalParsers        bool
@ -140,6 +141,8 @@ func newScanCommand() *cobra.Command {
 		"Enable syncing report data to cloud")
 	cmd.Flags().StringVarP(&syncReportProject, "report-sync-project", "", "",
 		"Project name to use in cloud")
+	cmd.Flags().BoolVarP(&syncEnableMultiProject, "report-sync-multi-project", "", false,
+		"Lazily create cloud sessions for multiple projects (per manifest)")
 	cmd.Flags().StringVarP(&syncReportStream, "report-sync-project-version", "", "",
 		"Project stream name (e.g. branch) to use in cloud")
 	cmd.Flags().StringArrayVarP(&trustedRegistryUrls, "trusted-registry", "", []string{},
@ -394,12 +397,13 @@ func internalStartScan() error {

 	if syncReport {
 		rp, err := reporter.NewSyncReporter(reporter.SyncReporterConfig{
-			ToolName:            "vet",
-			ToolVersion:         version,
-			ProjectName:         syncReportProject,
-			ProjectVersion:      syncReportStream,
-			ControlTowerBaseUrl: auth.DefaultControlTowerUrl(),
-			ControlTowerToken:   auth.ApiKey(),
+			ToolName:               "vet",
+			ToolVersion:            version,
+			ProjectName:            syncReportProject,
+			ProjectVersion:         syncReportStream,
+			ControlTowerBaseUrl:    auth.DefaultControlTowerUrl(),
+			ControlTowerToken:      auth.ApiKey(),
+			EnableMultiProjectSync: syncEnableMultiProject,
 		})
 		if err != nil {
 			return err