@eduardbar/drift 1.2.0 → 1.4.0

package/tests/sarif.test.ts

@@ -0,0 +1,160 @@
+import { describe, expect, it } from 'vitest'
+import { diffToSarif, toSarif } from '../src/sarif.js'
+import type { DriftDiff, DriftReport } from '../src/types.js'
+
+describe('toSarif', () => {
+  function createReport(): DriftReport {
+    return {
+      scannedAt: '2026-03-17T10:20:30.000Z',
+      targetPath: '/repo',
+      files: [{
+        path: 'src/app.ts',
+        score: 72,
+        issues: [
+          {
+            rule: 'large-file',
+            severity: 'error',
+            message: 'File exceeds threshold',
+            line: 14,
+            column: 3,
+            snippet: 'export function app() {}',
+          },
+          {
+            rule: 'debug-leftover',
+            severity: 'warning',
+            message: 'console.log detected',
+            line: 22,
+            column: 1,
+            snippet: 'console.log(value)',
+          },
+          {
+            rule: 'plugin-warning',
+            severity: 'info',
+            message: 'Plugin diagnostic',
+            line: 1,
+            column: 1,
+            snippet: 'app.ts',
+          },
+        ],
+      }],
+      totalIssues: 3,
+      totalScore: 72,
+      totalFiles: 1,
+      summary: {
+        errors: 1,
+        warnings: 1,
+        infos: 1,
+        byRule: {
+          'large-file': 1,
+          'debug-leftover': 1,
+          'plugin-warning': 1,
+        },
+      },
+      quality: {
+        overall: 90,
+        dimensions: {
+          architecture: 91,
+          complexity: 87,
+          'ai-patterns': 92,
+          testing: 89,
+        },
+      },
+      maintenanceRisk: {
+        score: 20,
+        level: 'low',
+        hotspots: [],
+        signals: {
+          highComplexityFiles: 0,
+          filesWithoutNearbyTests: 0,
+          frequentChangeFiles: 0,
+        },
+      },
+    }
+  }
+
+  it('maps drift severities to SARIF levels', () => {
+    const sarif = toSarif(createReport())
+    const levels = sarif.runs[0].results.map((result) => result.level)
+
+    expect(levels).toContain('error')
+    expect(levels).toContain('warning')
+    expect(levels).toContain('note')
+  })
+
+  it('builds SARIF minimal valid structure', () => {
+    const sarif = toSarif(createReport())
+
+    expect(sarif.version).toBe('2.1.0')
+    expect(sarif.runs).toHaveLength(1)
+    expect(sarif.runs[0].tool.driver.name).toBe('drift')
+    expect(Array.isArray(sarif.runs[0].results)).toBe(true)
+    expect(sarif.runs[0].results).toHaveLength(3)
+  })
+
+  it('maps message and location fields for each issue', () => {
+    const sarif = toSarif(createReport())
+    const result = sarif.runs[0].results.find((item) => item.ruleId === 'large-file')
+
+    expect(result).toBeDefined()
+    expect(result?.message.text).toBe('File exceeds threshold')
+    expect(result?.locations[0].physicalLocation.artifactLocation.uri).toBe('src/app.ts')
+    expect(result?.locations[0].physicalLocation.region.startLine).toBe(14)
+    expect(result?.locations[0].physicalLocation.region.startColumn).toBe(3)
+    expect(result?.properties?.weight).toBe(20)
+    expect(result?.properties?.fileScore).toBe(72)
+  })
+
+  it('maps diff newIssues to SARIF results', () => {
+    const diff: DriftDiff = {
+      baseRef: 'origin/main',
+      projectPath: '/repo',
+      scannedAt: '2026-03-17T10:20:30.000Z',
+      files: [
+        {
+          path: 'src/app.ts',
+          scoreBefore: 60,
+          scoreAfter: 72,
+          scoreDelta: 12,
+          newIssues: [
+            {
+              rule: 'debug-leftover',
+              severity: 'warning',
+              message: 'console.log detected',
+              line: 22,
+              column: 1,
+              snippet: 'console.log(value)',
+            },
+          ],
+          resolvedIssues: [
+            {
+              rule: 'magic-number',
+              severity: 'info',
+              message: 'legacy issue resolved',
+              line: 10,
+              column: 5,
+              snippet: '42',
+            },
+          ],
+        },
+      ],
+      totalScoreBefore: 60,
+      totalScoreAfter: 72,
+      totalDelta: 12,
+      newIssuesCount: 1,
+      resolvedIssuesCount: 1,
+    }
+
+    const sarif = diffToSarif(diff)
+
+    expect(sarif.version).toBe('2.1.0')
+    expect(sarif.runs[0].results).toHaveLength(1)
+    expect(sarif.runs[0].results[0]?.ruleId).toBe('debug-leftover')
+    expect(sarif.runs[0].results[0]?.locations[0]?.physicalLocation?.artifactLocation?.uri).toBe('src/app.ts')
+    expect(sarif.runs[0].results[0]?.properties?.baseRef).toBe('origin/main')
+    expect(sarif.runs[0].results[0]?.properties?.scoreDelta).toBe(12)
+    expect(sarif.runs[0].results[0]?.properties?.changeType).toBe('new-issue')
+    expect(sarif.runs[0].properties.baseRef).toBe('origin/main')
+    expect(sarif.runs[0].properties.newIssuesCount).toBe(1)
+    expect(sarif.runs[0].properties.resolvedIssuesCount).toBe(1)
+  })
+})

package/tests/trust-kpi.test.ts

@@ -0,0 +1,147 @@
+import { afterEach, describe, expect, it } from 'vitest'
+import { mkdirSync, mkdtempSync, rmSync, writeFileSync } from 'node:fs'
+import { tmpdir } from 'node:os'
+import { join } from 'node:path'
+import { computeTrustKpis } from '../src/trust-kpi.js'
+
+describe('trust KPI aggregation', () => {
+  let tempDir = ''
+
+  afterEach(() => {
+    if (tempDir) rmSync(tempDir, { recursive: true, force: true })
+    tempDir = ''
+  })
+
+  it('aggregates trust KPIs and diff trends from JSON artifacts', () => {
+    tempDir = mkdtempSync(join(tmpdir(), 'drift-kpi-aggregate-'))
+
+    writeFileSync(join(tempDir, 'trust-a.json'), JSON.stringify({
+      $schema: 'schemas/drift-trust.v1.json',
+      toolVersion: '1.3.0',
+      trust_score: 80,
+      merge_risk: 'LOW',
+      diff_context: {
+        baseRef: 'origin/main',
+        status: 'improved',
+        scoreDelta: -5,
+        newIssues: 1,
+        resolvedIssues: 3,
+        filesChanged: 2,
+        penalty: 0,
+        bonus: 7,
+        netImpact: -7,
+      },
+    }, null, 2))
+
+    writeFileSync(join(tempDir, 'trust-b.json'), JSON.stringify({
+      $schema: 'schemas/drift-trust.v1.json',
+      toolVersion: '1.3.0',
+      trust_score: 60,
+      merge_risk: 'MEDIUM',
+      diff_context: {
+        baseRef: 'origin/main',
+        status: 'regressed',
+        scoreDelta: 8,
+        newIssues: 4,
+        resolvedIssues: 1,
+        filesChanged: 3,
+        penalty: 9,
+        bonus: 0,
+        netImpact: 9,
+      },
+    }, null, 2))
+
+    writeFileSync(join(tempDir, 'trust-c.json'), JSON.stringify({
+      $schema: 'schemas/drift-trust.v1.json',
+      toolVersion: '1.3.0',
+      trust_score: 30,
+      merge_risk: 'HIGH',
+    }, null, 2))
+
+    const kpi = computeTrustKpis(tempDir)
+
+    expect(kpi.files).toEqual({ matched: 3, parsed: 3, malformed: 0 })
+    expect(kpi.prsEvaluated).toBe(3)
+    expect(kpi.mergeRiskDistribution).toEqual({ LOW: 1, MEDIUM: 1, HIGH: 1, CRITICAL: 0 })
+    expect(kpi.highRiskRatio).toBe(0.3333)
+    expect(kpi.trustScore).toEqual({ average: 56.67, median: 60, min: 30, max: 80 })
+
+    expect(kpi.diffTrend.available).toBe(true)
+    expect(kpi.diffTrend.samples).toBe(2)
+    expect(kpi.diffTrend.statusDistribution).toEqual({ improved: 1, regressed: 1, neutral: 0 })
+    expect(kpi.diffTrend.scoreDelta).toEqual({ average: 1.5, median: 1.5 })
+    expect(kpi.diffTrend.issues).toEqual({ newTotal: 5, resolvedTotal: 4, netNew: 1 })
+    expect(kpi.diagnostics).toEqual([])
+  })
+
+  it('keeps parsing resilient and reports diagnostics for malformed artifacts', () => {
+    tempDir = mkdtempSync(join(tmpdir(), 'drift-kpi-parse-'))
+
+    writeFileSync(join(tempDir, 'valid.json'), JSON.stringify({
+      $schema: 'schemas/drift-trust.v1.json',
+      toolVersion: '1.3.0',
+      trust_score: 70,
+      merge_risk: 'MEDIUM',
+      diff_context: {
+        scoreDelta: 2,
+        newIssues: 3,
+        resolvedIssues: 1,
+      },
+    }, null, 2))
+
+    writeFileSync(join(tempDir, 'broken.json'), '{"trust_score":70')
+    writeFileSync(join(tempDir, 'invalid-shape.json'), JSON.stringify({ trust_score: 70 }, null, 2))
+    writeFileSync(join(tempDir, 'bad-diff.json'), JSON.stringify({
+      $schema: 'schemas/drift-trust.v1.json',
+      toolVersion: '1.3.0',
+      trust_score: 50,
+      merge_risk: 'HIGH',
+      diff_context: 'oops',
+    }, null, 2))
+
+    writeFileSync(join(tempDir, 'wrong-schema.json'), JSON.stringify({
+      $schema: 'schemas/drift-report.v1.json',
+      toolVersion: '1.3.0',
+      trust_score: 65,
+      merge_risk: 'MEDIUM',
+    }, null, 2))
+
+    const kpi = computeTrustKpis(tempDir)
+
+    expect(kpi.files.matched).toBe(5)
+    expect(kpi.files.parsed).toBe(2)
+    expect(kpi.files.malformed).toBe(3)
+    expect(kpi.prsEvaluated).toBe(2)
+
+    const byCode = new Set(kpi.diagnostics.map((diagnostic) => diagnostic.code))
+    expect(byCode.has('parse-failed')).toBe(true)
+    expect(byCode.has('invalid-shape')).toBe(true)
+    expect(byCode.has('invalid-diff-context')).toBe(true)
+  })
+
+  it('supports glob input selection for trust artifacts', () => {
+    tempDir = mkdtempSync(join(tmpdir(), 'drift-kpi-glob-'))
+    mkdirSync(join(tempDir, 'nested'))
+
+    writeFileSync(join(tempDir, 'trust-1.json'), JSON.stringify({
+      $schema: 'schemas/drift-trust.v1.json',
+      toolVersion: '1.3.0',
+      trust_score: 90,
+      merge_risk: 'LOW',
+    }))
+    writeFileSync(join(tempDir, 'nested', 'trust-2.json'), JSON.stringify({
+      $schema: 'schemas/drift-trust.v1.json',
+      toolVersion: '1.3.0',
+      trust_score: 20,
+      merge_risk: 'CRITICAL',
+    }))
+    writeFileSync(join(tempDir, 'other.json'), JSON.stringify({ trust_score: 55, merge_risk: 'MEDIUM' }))
+
+    const pattern = join(tempDir, '**', 'trust-*.json')
+    const kpi = computeTrustKpis(pattern)
+
+    expect(kpi.files).toEqual({ matched: 2, parsed: 2, malformed: 0 })
+    expect(kpi.mergeRiskDistribution).toEqual({ LOW: 1, MEDIUM: 0, HIGH: 0, CRITICAL: 1 })
+    expect(kpi.trustScore.average).toBe(55)
+  })
+})