npm - pi-lens - Versions diffs - 2.2.8 → 2.2.9 - Mend

pi-lens 2.2.8 → 2.2.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/clients/secrets-scanner.js +22 -2
package/clients/secrets-scanner.ts +29 -2
package/index.ts +1 -1
package/package.json +1 -1

package/clients/secrets-scanner.js CHANGED Viewed

@@ -68,11 +68,31 @@ const SECRET_PATTERNS = [
         message: "Possible secret in .env format",
     },
 ];
+/**
+ * Check if file path is a test file (should skip secrets scan)
+ */
+function isTestFile(filePath) {
+    const normalized = filePath.replace(/\\/g, "/");
+    return (normalized.includes(".test.") ||
+        normalized.includes(".spec.") ||
+        normalized.includes("/test/") ||
+        normalized.includes("/tests/") ||
+        normalized.includes("__tests__/") ||
+        normalized.includes("test-utils") ||
+        normalized.startsWith("test-") ||
+        normalized.includes(".fixture.") ||
+        normalized.includes(".mock."));
+}
 /**
  * Scan content for potential secrets
- * Returns findings with line numbers
+ * Returns findings with line numbers.
+ * Skips test files to avoid false positives.
  */
-export function scanForSecrets(content) {
+export function scanForSecrets(content, filePath) {
+    // Skip test files — secrets in tests are usually fake/test values
+    if (filePath && isTestFile(filePath)) {
+        return [];
+    }
     const findings = [];
     const lines = content.split("\n");
     for (let i = 0; i < lines.length; i++) {

package/clients/secrets-scanner.ts CHANGED Viewed

@@ -83,11 +83,38 @@ export interface SecretFinding {
 	message: string;
 }
+/**
+ * Check if file path is a test file (should skip secrets scan)
+ */
+function isTestFile(filePath: string): boolean {
+	const normalized = filePath.replace(/\\/g, "/");
+	return (
+		normalized.includes(".test.") ||
+		normalized.includes(".spec.") ||
+		normalized.includes("/test/") ||
+		normalized.includes("/tests/") ||
+		normalized.includes("__tests__/") ||
+		normalized.includes("test-utils") ||
+		normalized.startsWith("test-") ||
+		normalized.includes(".fixture.") ||
+		normalized.includes(".mock.")
+	);
+}
 /**
  * Scan content for potential secrets
- * Returns findings with line numbers
+ * Returns findings with line numbers.
+ * Skips test files to avoid false positives.
  */
-export function scanForSecrets(content: string): SecretFinding[] {
+export function scanForSecrets(
+	content: string,
+	filePath?: string,
+): SecretFinding[] {
+	// Skip test files — secrets in tests are usually fake/test values
+	if (filePath && isTestFile(filePath)) {
+		return [];
+	}
 	const findings: SecretFinding[] = [];
 	const lines = content.split("\n");

package/index.ts CHANGED Viewed

@@ -1303,7 +1303,7 @@ export default function (pi: ExtensionAPI) {
 		// --- Secrets scan (blocking - must check before other linting) ---
 		if (fileContent) {
-			const secretFindings = scanForSecrets(fileContent);
+			const secretFindings = scanForSecrets(fileContent, filePath);
 			if (secretFindings.length > 0) {
 				const secretsOutput = formatSecrets(secretFindings, filePath);
 				return {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
 	"name": "pi-lens",
-	"version": "2.2.8",
+	"version": "2.2.9",
 	"type": "module",
 	"description": "Real-time code quality feedback for pi — TypeScript LSP, Biome, ast-grep, Ruff, complexity metrics, duplicate detection. Includes automated fix loop (/lens-booboo-fix) and interactive architectural refactoring (/lens-booboo-refactor) with browser-based interviews.",
 	"repository": {