feat: Cloud report sync support multi-project sync

2025-12-11 01:01:10 -06:00 · 2024-09-30 13:59:12 +05:30 · 2024-09-30 13:59:12 +05:30 · fca2b8e3ab
commit fca2b8e3ab
parent 7a5d637a50
3 changed files with 57 additions and 8 deletions
--- a/pkg/readers/github_reader.go
+++ b/pkg/readers/github_reader.go
@ -129,7 +129,7 @@ func (p *githubReader) processTopLevelLockfiles(ctx context.Context, client *git
 				return err
 			}
-			pm.SetDisplayPath(entry.GetURL())
+			pm.SetDisplayPath(gitUrl.GetHttpCloneURL())
 			err = handler(pm, NewManifestModelReader(pm))
 			if err != nil {
 				return err
--- a/pkg/reporter/sync.go
+++ b/pkg/reporter/sync.go
@ -78,6 +78,14 @@ func (s *syncSessionPool) addPrimarySession(sessionId string, client controltowe
 	}
 }
 func (s *syncSessionPool) hasKeyedSession(key string) bool {
 	s.mu.RLock()
 	defer s.mu.RUnlock()
 	_, ok := s.syncSessions[key]
 	return ok
 }
 func (s *syncSessionPool) addKeyedSession(key, sessionId string, client controltowerv1grpc.ToolServiceClient) {
 	s.mu.Lock()
 	defer s.mu.Unlock()
@ -122,6 +130,7 @@ type syncReporter struct {
 	workQueue chan *models.Package
 	done      chan bool
 	wg        sync.WaitGroup
 	client    *grpc.ClientConn
 	sessions  *syncSessionPool
 }
@ -191,6 +200,7 @@ func NewSyncReporter(config SyncReporterConfig) (Reporter, error) {
 		config:    &config,
 		done:      done,
 		workQueue: make(chan *models.Package, 1000),
 		client:    client,
 		sessions:  &syncSessionPool,
 	}
@ -203,6 +213,40 @@ func (s *syncReporter) Name() string {
 }
 func (s *syncReporter) AddManifest(manifest *models.PackageManifest) {
 	manifestSessionKey := manifest.Path
 	if s.config.EnableMultiProjectSync && !s.sessions.hasKeyedSession(manifestSessionKey) {
 		projectName := manifest.GetDisplayPath()
 		projectVersion := "main"
 		source := packagev1.ProjectSourceType_PROJECT_SOURCE_TYPE_UNSPECIFIED
 		trigger := controltowerv1.ToolTrigger_TOOL_TRIGGER_MANUAL
 		logger.Debugf("Report Sync: Creating tool session for project: %s, version: %s",
 			projectName, projectVersion)
 		toolServiceClient := controltowerv1grpc.NewToolServiceClient(s.client)
 		toolSessionRes, err := toolServiceClient.CreateToolSession(context.Background(),
 			&controltowerv1.CreateToolSessionRequest{
 				ToolName:       s.config.ToolName,
 				ToolVersion:    s.config.ToolVersion,
 				ProjectName:    projectName,
 				ProjectVersion: &projectVersion,
 				ProjectSource:  &source,
 				Trigger:        &trigger,
 			})
 		if err != nil {
 			logger.Errorf("failed to create tool session for project: %s/%s: %v",
 				projectName, projectVersion, err)
 		}
 		logger.Debugf("Report Sync: Tool data upload session ID: %s",
 			toolSessionRes.GetToolSession().GetToolSessionId())
 		s.sessions.addKeyedSession(manifestSessionKey,
 			toolSessionRes.GetToolSession().GetToolSessionId(), toolServiceClient)
 	}
 	// We are ignoring the error here because we are asynchronously handling the sync of Manifest
 	_ = readers.NewManifestModelReader(manifest).EnumPackages(func(pkg *models.Package) error {
 		s.queuePackage(pkg)
@ -269,7 +313,8 @@ func (s *syncReporter) syncReportWorker() {
 func (s *syncReporter) syncPackage(pkg *models.Package) error {
 	defer s.wg.Done()
-	session, err := s.sessions.getSession(pkg.Manifest.Path)
+	manifestSessionKey := pkg.Manifest.Path
 	session, err := s.sessions.getSession(manifestSessionKey)
 	if err != nil {
 		return fmt.Errorf("failed to get session for package: %s/%s/%s: %w",
 			pkg.Manifest.Ecosystem, pkg.GetName(), pkg.GetVersion(), err)
--- a/scan.go
+++ b/scan.go
@ -51,6 +51,7 @@ var (
 	disableAuthVerifyBeforeScan    bool
 	syncReport                     bool
 	syncReportProject              string
 	syncEnableMultiProject         bool
 	graphReportDirectory           string
 	syncReportStream               string
 	listExperimentalParsers        bool
@ -140,6 +141,8 @@ func newScanCommand() *cobra.Command {
 		"Enable syncing report data to cloud")
 	cmd.Flags().StringVarP(&syncReportProject, "report-sync-project", "", "",
 		"Project name to use in cloud")
 	cmd.Flags().BoolVarP(&syncEnableMultiProject, "report-sync-multi-project", "", false,
 		"Lazily create cloud sessions for multiple projects (per manifest)")
 	cmd.Flags().StringVarP(&syncReportStream, "report-sync-project-version", "", "",
 		"Project stream name (e.g. branch) to use in cloud")
 	cmd.Flags().StringArrayVarP(&trustedRegistryUrls, "trusted-registry", "", []string{},
@ -394,12 +397,13 @@ func internalStartScan() error {
 	if syncReport {
 		rp, err := reporter.NewSyncReporter(reporter.SyncReporterConfig{
-			ToolName:            "vet",
+			ToolName:               "vet",
-			ToolVersion:         version,
+			ToolVersion:            version,
-			ProjectName:         syncReportProject,
+			ProjectName:            syncReportProject,
-			ProjectVersion:      syncReportStream,
+			ProjectVersion:         syncReportStream,
-			ControlTowerBaseUrl: auth.DefaultControlTowerUrl(),
+			ControlTowerBaseUrl:    auth.DefaultControlTowerUrl(),
-			ControlTowerToken:   auth.ApiKey(),
+			ControlTowerToken:      auth.ApiKey(),
 			EnableMultiProjectSync: syncEnableMultiProject,
 		})
 		if err != nil {
 			return err