neetob 0.5.69 → 0.5.77

data/scripts/constants/auditData.ts

@@ -0,0 +1,402 @@
+import { GITHUB_ORGANIZATION_BASE_URL } from "./routes";
+import { GITHUB_TEXTS } from "./texts";
+
+export const DEPLOY_PASSWORD_PATTERN = /^[0-9a-z]+$/i;
+
+export const SPARKPOST_KEY_PATTERN = /^[0-9a-z•]+$/i;
+
+export const NEETO_HEALTH_WORKSPACE = "neeto-health workspace";
+
+export const DEPENDABOT_SETTINGS = [
+  {
+    setting: GITHUB_TEXTS.disableDependabotAlerts,
+    message: "alerts",
+  },
+  {
+    setting: GITHUB_TEXTS.disableDependabotSecurity,
+    message: "security updates",
+  },
+];
+
+export const PRODUCTION_APPS = [
+  {
+    name: "auth",
+    honebadgerId: "97236",
+    channelId: "3204790",
+    integrationName: "auth",
+  },
+  {
+    name: "chat",
+    honebadgerId: "84832",
+    channelId: "3204820",
+    integrationName: "chat",
+  },
+  {
+    name: "cal",
+    honebadgerId: "93329",
+    channelId: "3204806",
+    integrationName: "cal",
+  },
+  {
+    name: "desk",
+    honebadgerId: "65613",
+    channelId: "3204802",
+    integrationName: "desk",
+  },
+  {
+    name: "kb",
+    honebadgerId: "84778",
+    channelId: "3204785",
+    integrationName: "kb",
+  },
+  {
+    name: "invoice",
+    honebadgerId: "93324",
+    channelId: "3204800",
+    integrationName: "invoice",
+  },
+  {
+    name: "form",
+    honebadgerId: "93057",
+    channelId: "3204793",
+    integrationName: "form",
+  },
+  {
+    name: "runner",
+    honebadgerId: "92480",
+    channelId: "3204813",
+    integrationName: "runner",
+  },
+  {
+    name: "course",
+    honebadgerId: "94742",
+    channelId: "3204784",
+    integrationName: "course",
+  },
+  {
+    name: "ci",
+    honebadgerId: "106260",
+    channelId: "3204782",
+    integrationName: "ci",
+  },
+  {
+    name: "code",
+    honebadgerId: "94798",
+    channelId: "3204804",
+    integrationName: "code",
+  },
+  {
+    name: "crm",
+    honebadgerId: "94000",
+    channelId: "3204794",
+    integrationName: "crm",
+  },
+  {
+    name: "git",
+    honebadgerId: "107322",
+    channelId: "3204783",
+    integrationName: "git",
+  },
+  {
+    name: "planner",
+    honebadgerId: "93325",
+    channelId: "3204805",
+    integrationName: "planner",
+  },
+  {
+    name: "quiz",
+    honebadgerId: "93314",
+    channelId: "3204819",
+    integrationName: "quiz",
+  },
+  {
+    name: "record",
+    honebadgerId: "114928",
+    channelId: "3471411",
+    integrationName: "record",
+  },
+  {
+    name: "replay",
+    honebadgerId: "93321",
+    channelId: "3204803",
+    integrationName: "replay",
+  },
+  {
+    name: "site",
+    honebadgerId: "109700",
+    channelId: "3204791",
+    integrationName: "site",
+  },
+  {
+    name: "tower",
+    honebadgerId: "123186",
+    channelId: "3458437",
+    integrationName: "tower",
+  },
+  {
+    name: "wireframe",
+    honebadgerId: "93323",
+    channelId: "3204814",
+    integrationName: "wireframe",
+  },
+  {
+    name: "publish",
+    honebadgerId: "125705",
+    channelId: "3564429",
+    integrationName: "publish",
+  },
+  {
+    name: "engage",
+    honebadgerId: "93319",
+    channelId: "3694840",
+    integrationName: "engage",
+  },
+  {
+    name: "deploy",
+    honebadgerId: "104343",
+    channelId: "3204786",
+    integrationName: "deploy",
+  },
+  {
+    name: "playdash",
+    honebadgerId: "122962",
+    channelId: "3463543",
+    integrationName: "playdash",
+  },
+  {
+    name: "pay",
+    honebadgerId: "131892",
+    channelId: "",
+    integrationName: "pay",
+  },
+];
+
+export const REPOSITORIES = [
+  {
+    name: "neeto-chat-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-chat-web/`,
+  },
+  {
+    name: "neeto-desk-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-desk-web/`,
+  },
+  {
+    name: "neeto-kb-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-kb-web/`,
+  },
+  {
+    name: "neeto-invoice-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-invoice-web/`,
+  },
+  {
+    name: "neeto-form-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-form-web/`,
+  },
+  {
+    name: "neeto-cal-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-cal-web/`,
+  },
+  {
+    name: "neeto-planner-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-planner-web/`,
+  },
+  {
+    name: "neeto-course-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-course-web/`,
+  },
+  {
+    name: "neeto-runner-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-runner-web/`,
+  },
+  {
+    name: "neeto-wireframe-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-wireframe-web/`,
+  },
+  {
+    name: "neeto-engage-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-engage-web/`,
+  },
+  {
+    name: "neeto-quiz-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-quiz-web/`,
+  },
+  {
+    name: "neeto-site-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-site-web/`,
+  },
+  {
+    name: "neeto-crm-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-crm-web/`,
+  },
+  {
+    name: "neeto-replay-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-replay-web/`,
+  },
+  {
+    name: "neeto-deploy-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-deploy-web/`,
+  },
+  {
+    name: "neeto-ci-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-ci-web/`,
+  },
+  {
+    name: "neeto-git-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-git-web/`,
+  },
+  {
+    name: "neeto-auth-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-auth-web/`,
+  },
+  {
+    name: "neeto-wheel-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-wheel-web/`,
+  },
+  {
+    name: "neeto-record-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-record-web/`,
+  },
+  {
+    name: "neeto-tower-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-tower-web/`,
+  },
+  {
+    name: "neeto-publish-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-publish-web/`,
+  },
+  {
+    name: "neeto-playdash-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-playdash-web/`,
+  },
+  {
+    name: "neeto-code-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-code-web/`,
+  },
+  {
+    name: "neeto-pay-web",
+    url: `${GITHUB_ORGANIZATION_BASE_URL}/neeto-pay-web/`,
+  },
+];
+
+export const DEPLOY_APPS = [
+  {
+    appName: "neeto-chat-web",
+    sparkPostName: "neetoChat",
+    workspace: "neetochathelp",
+  },
+  {
+    appName: "neeto-desk-web",
+    sparkPostName: "neetoDesk",
+    workspace: "neetodeskhelp",
+  },
+  {
+    appName: "neeto-kb-web",
+    sparkPostName: "neetoKB",
+    workspace: "neetokbhelp",
+  },
+  {
+    appName: "neeto-invoice-web",
+    sparkPostName: "neetoInvoice",
+    workspace: "neetoinvoicehelp",
+  },
+  {
+    appName: "neeto-form-web",
+    sparkPostName: "neetoForm",
+    workspace: "neetoformhelp",
+  },
+  {
+    appName: "neeto-cal-web",
+    sparkPostName: "neetoCal",
+    workspace: "neetocalhelp",
+  },
+  {
+    appName: "neeto-planner-web",
+    sparkPostName: "neetoPlanner",
+    workspace: "neetoplannerhelp",
+  },
+  {
+    appName: "neeto-course-web",
+    sparkPostName: "neetoCourse",
+    workspace: "neetocoursehelp",
+  },
+  {
+    appName: "neeto-runner-web",
+    sparkPostName: "neetoRunner",
+    workspace: "neetorunnerhelp",
+  },
+  {
+    appName: "neeto-wireframe-web",
+    sparkPostName: "neetoWireframe",
+    workspace: "neetowireframehelp",
+  },
+  {
+    appName: "neeto-engage-web",
+    sparkPostName: "neetoEngage",
+    workspace: "neetoengagehelp",
+  },
+  {
+    appName: "neeto-quiz-web",
+    sparkPostName: "neetoQuiz",
+    workspace: "neetoquizhelp",
+  },
+  {
+    appName: "neeto-site-web",
+    sparkPostName: "neetoSite",
+    workspace: "neetositehelp",
+  },
+  {
+    appName: "neeto-crm-web",
+    sparkPostName: "neetoCRM",
+    workspace: "neetocrmhelp",
+  },
+  {
+    appName: "neeto-replay-web",
+    sparkPostName: "neetoReplay",
+    workspace: "neetoreplayhelp",
+  },
+  {
+    appName: "neeto-ci-web",
+    sparkPostName: "neetoCI",
+    workspace: "neetocihelp",
+  },
+  {
+    appName: "neeto-git-web",
+    sparkPostName: "neetoGit",
+    workspace: "neetogithelp",
+  },
+  {
+    appName: "neeto-auth-web",
+    sparkPostName: "neetoAuth",
+    workspace: "neetoauthhelp",
+  },
+  {
+    appName: "neeto-record-web",
+    sparkPostName: "neetoRecord",
+    workspace: "neetorecordhelp",
+  },
+  {
+    appName: "neeto-tower-web",
+    sparkPostName: "neetoTower",
+    workspace: "neetotowerhelp",
+  },
+  {
+    appName: "neeto-publish-web",
+    sparkPostName: "neetoPublish",
+    workspace: "neetopublishhelp",
+  },
+  {
+    appName: "neeto-playdash-web",
+    sparkPostName: "neetoPlaydash",
+    workspace: "neetoplaydashhelp",
+  },
+  {
+    appName: "neeto-code-web",
+    sparkPostName: "neetoCoding",
+    workspace: "neetocodehelp",
+  },
+  {
+    appName: "neeto-pay-web",
+    sparkPostName: "neetoPay",
+    workspace: "neetopayhelp",
+  },
+];

data/scripts/constants/routes.ts

@@ -0,0 +1,30 @@
+export const GITHUB_ORGANIZATION_BASE_URL = "https://github.com/neetozone";
+
+export const ROUTES = {
+  neetoDeploy: {
+    configure: (subdomain: string, app: string) =>
+      `https://${subdomain}.neetodeploy.com/admin/apps/${app}-production/configure/environment-variables`,
+  },
+  github: {
+    login: "https://github.com/login",
+    securityAnalysis: (repoUrl: string) =>
+      `${repoUrl}settings/security_analysis`,
+  },
+  honeybadger: {
+    signIn: "https://app.honeybadger.io/users/sign_in",
+    settings: {
+      general: (projectId: string) =>
+        `https://app.honeybadger.io/projects/${projectId}/edit`,
+      integrations: {
+        channels: (projectId: string) =>
+          `https://app.honeybadger.io/projects/${projectId}/channels`,
+        slack: (projectId: string, channelId: string) =>
+          `https://app.honeybadger.io/projects/${projectId}/channels/${channelId}/edit`,
+      },
+    },
+  },
+  sparkPost: {
+    login: "https://app.sparkpost.com/auth",
+    apiKeys: "https://app.sparkpost.com/account/api-keys",
+  },
+};

data/scripts/constants/selectors.ts

@@ -0,0 +1,4 @@
+export const NEETO_DEPLOY_SELECTORS = {
+  errorImage: "error-image",
+  resendOtpButton: "resend-otp-button",
+};

data/scripts/constants/table.ts

@@ -0,0 +1,30 @@
+export const SPARKPOST_TABLE = [
+  [
+    "App",
+    "SPARKPOST_PASSWORD env variable first 4 characters same as corresponding sub-account in SparkPost dashboard",
+    "Comments",
+    "Audit Passed",
+  ],
+];
+
+export const HONEYBADGER_TABLE = [
+  [
+    "App",
+    "Enable Notifications for production is turned on",
+    "GitHub is integrated to the correct project repo",
+    "Automatically create GitHub issue & Automatically re-open issue is turned on",
+    "Slack is integrated to the correct project channel in #neeto-health workspace",
+    "Comments",
+    "Audit Passed",
+  ],
+];
+
+export const DEPENDABOT_TABLE = [
+  [
+    "Repository",
+    "Dependabot alerts enabled",
+    "Dependabot security updates enabled",
+    "Comments",
+    "Audit Passed",
+  ],
+];

data/scripts/constants/texts.ts

@@ -0,0 +1,46 @@
+export const GITHUB_TEXTS = {
+  disableDependabotAlerts: "Disable Dependabot alerts",
+  disableDependabotSecurity: "Disable Dependabot security",
+  disableDependabotActions: "Disable Dependabot on actions",
+  username: "Username",
+  password: "Password",
+  signIn: "Sign in",
+  recoveryCode: "Use a recovery code or begin",
+  placeholderCode: "XXXXXX",
+  verify: "Verify",
+  dismissMessage: "Dismiss this message",
+  dashboard: "Dashboard",
+  codeSecurity: "Code security",
+  errorMessage: "404 “This is not the web page",
+  search: "Search",
+};
+
+export const HONEYBADGER_TEXTS = {
+  email: "Email",
+  password: "Password",
+  addProject: "Add a project",
+  signIn: "Sign in",
+  enableNotifications: "Enable notifications for production",
+  reOpenIssue: "Automatically re-open issue",
+  createIssue: "Automatically create an issue",
+  githubIntegration: (appname: string) =>
+    `GitHub - neetozone/neeto-${appname}-web`,
+  slackIntegration: (appname: string) => `Slack - #neeto-${appname}`,
+  projects: "Projects",
+  pageNotFound: "Page Not Found",
+};
+
+export const SPARKPOST_TEXTS = {
+  emailAddress: "Email Address",
+  password: "Password",
+  continue: "Continue",
+  welcome: "Welcome",
+  apiKeys: "API Keys",
+  hundredPerPage: "100 per page",
+  subaccount: (appName: string) => `${appName} subaccount`,
+};
+
+export const NEETO_DEPLOY_TEXTS = {
+  envVariable: "Add environment variable",
+  sparkPostPassword: "SPARKPOST_PASSWORD",
+};

data/scripts/constants/userAgents.ts

@@ -0,0 +1,14 @@
+export const USER_AGENTS = [
+  "Mozilla/5.0 (iPhone; CPU iPhone OS 17_0 like Mac OS X) AppleWebKit/537.36 (KHTML, like Gecko) Version/17.0 Mobile/15E148 Safari/537.36",
+  "Mozilla/5.0 (Linux; Android 14; Pixel 8 Build/TQ1A.230805.001) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.110 Mobile Safari/537.36",
+  "Mozilla/5.0 (Linux; Android 14; SM-G980F Build/SDM710) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.110 Mobile Safari/537.36",
+  "Mozilla/5.0 (Linux; Android 14; OnePlus 11 Build/UDM240) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.110 Mobile Safari/537.36",
+  "Mozilla/5.0 (Linux; Android 14; 14 Build/VD2A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.110 Mobile Safari/537.36",
+  "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Version/17.0 Safari/537.36",
+  "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.110 Safari/537.36",
+  "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_5) Gecko/20100101 Firefox/115.0",
+  "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.110 Safari/537.36 Edge/115.0.1901.183",
+  "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.110 Safari/537.36",
+  "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:115.0) Gecko/20100101 Firefox/115.0",
+  "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.110 Safari/537.36 OPR/115.0.5790.115",
+];

data/scripts/utils/markdown.ts

@@ -0,0 +1,23 @@
+type TableRow = string[];
+
+const generateRow = (row: TableRow) => `| ${row.join(" | ")} |\n`;
+
+export const generateMdTable = (table: TableRow[]) => {
+  const markdownLines = [];
+  markdownLines.push(generateRow(table[0]));
+
+  markdownLines.push(
+    "| " + Array(table[0].length).fill("---").join(" | ") + " |\n"
+  );
+
+  for (let i = 1; i < table.length; i++) {
+    markdownLines.push(generateRow(table[i]));
+  }
+
+  return markdownLines.join("");
+};
+
+export const addRow = (table: TableRow[], rowData: TableRow) =>
+  table.push(rowData);
+
+export const mdLink = (text: string, url: string) => `[${text}](${url})`;

data/scripts/workflows/dependabot.ts

@@ -0,0 +1,104 @@
+import { initializeTotp } from "@neetoplaywright";
+import { ROUTES } from "@routes";
+import { GITHUB_TEXTS } from "@texts";
+import { faker } from "@faker-js/faker";
+import test, { expect } from "@playwright/test";
+import { addRow, mdLink } from "@utils/markdown";
+import { DEPENDABOT_TABLE } from "@constants/table";
+import { REPOSITORIES, DEPENDABOT_SETTINGS } from "@constants/auditData";
+
+const randomUserAgent = faker.internet.userAgent();
+const randomTimezone = faker.location.timeZone();
+test.use({ userAgent: randomUserAgent, timezoneId: randomTimezone });
+
+test.describe("Dependabot", () => {
+  test.beforeEach(async ({ page }) => {
+    const totp = initializeTotp({
+      issuer: "GitHub",
+      secret: process.env.GITHUB_2FA_SECRET_KEY,
+    });
+
+    await page.goto(ROUTES.github.login);
+    await page.waitForLoadState();
+    await page
+      .getByLabel(GITHUB_TEXTS.username)
+      .fill(process.env.GITHUB_USERNAME);
+
+    await page
+      .getByLabel(GITHUB_TEXTS.password)
+      .fill(process.env.GITHUB_PASSWORD);
+
+    await page
+      .getByRole("button", { name: GITHUB_TEXTS.signIn, exact: true })
+      .click();
+
+    const totpToken = totp.generate({ timestamp: Date.now() + 5_000 });
+
+    const verifyButton = page.getByRole("button", {
+      name: GITHUB_TEXTS.verify,
+      exact: true,
+    });
+
+    await page.getByPlaceholder(GITHUB_TEXTS.placeholderCode).fill(totpToken);
+    (await verifyButton.isVisible()) && (await verifyButton.click());
+
+    await expect(
+      page.getByRole("link", { name: GITHUB_TEXTS.dashboard, exact: true })
+    ).toBeVisible();
+  });
+
+  test("Check whether dependabot is turned on for the repository", async ({
+    page,
+  }) => {
+    for (const [i, { name, url }] of REPOSITORIES.entries()) {
+      const row = [mdLink(name, url)];
+      const comments = [];
+
+      const securityHeading = page.getByRole("heading", {
+        name: GITHUB_TEXTS.codeSecurity,
+      });
+      const searchBtn = page.getByRole("button", {
+        name: GITHUB_TEXTS.search,
+        exact: true,
+      });
+
+      await test.step(`${
+        i + 1
+      }: Check whether dependabot is enabled for ${name}`, async () => {
+        await page.goto(ROUTES.github.securityAnalysis(url));
+        await page.waitForLoadState();
+        await expect(searchBtn.or(securityHeading)).toBeVisible({
+          timeout: 30_000,
+        });
+
+        if (await searchBtn.isVisible()) {
+          const comment = "Repository does not exist";
+          addRow(DEPENDABOT_TABLE, [name, "No", "No", "No", comment, "No"]);
+
+          return;
+        }
+
+        for (const { setting, message } of DEPENDABOT_SETTINGS) {
+          const isVisible = await page
+            .getByRole("button", { name: setting })
+            .first()
+            .isVisible();
+
+          const status = isVisible ? "Yes" : "No";
+          row.push(status);
+
+          if (status === "No") {
+            comments.push(`Dependabot ${message} is not enabled`);
+          }
+        }
+
+        row.push(comments.join(","));
+        row.push(row.includes("No") ? "No" : "Yes");
+
+        addRow(DEPENDABOT_TABLE, row);
+      });
+    }
+
+    console.log(JSON.stringify(DEPENDABOT_TABLE, null, 2));
+  });
+});