pipechecker 0.2.2

package/README.md

@@ -0,0 +1,206 @@
+# 🔍 Pipecheck
+
+[![CI](https://github.com/Ayyankhan101/PipeCheck/workflows/CI/badge.svg)](https://github.com/Ayyankhan101/PipeCheck/actions)
+[![Crates.io](https://img.shields.io/crates/v/pipecheck.svg)](https://crates.io/crates/pipecheck)
+[![npm](https://img.shields.io/npm/v/pipecheck.svg)](https://www.npmjs.com/package/pipecheck)
+[![License](https://img.shields.io/badge/license-MIT%2FApache--2.0-blue.svg)](LICENSE-MIT)
+
+**A blazingly fast CI/CD pipeline auditor that catches errors before you push.**
+
+Stop wasting time debugging CI failures. Pipecheck validates your GitHub Actions, GitLab CI, and CircleCI configurations locally, catching syntax errors, circular dependencies, and security issues instantly.
+
+## 🚀 Quick Start
+
+### Install via npm (recommended)
+```bash
+npm install -g pipecheck
+```
+
+### Install via Cargo
+```bash
+cargo install pipecheck
+```
+
+### Run
+```bash
+pipecheck .github/workflows/ci.yml
+```
+
+## ✨ Features
+
+- ✅ **Syntax Validation** - Parse and validate GitHub Actions, GitLab CI, and CircleCI configs
+- 🔄 **Dependency Analysis** - Detect circular dependencies in job workflows
+- 🔐 **Secrets Auditing** - Identify hardcoded secrets and environment variable issues
+- 🐳 **Docker Validation** - Check Docker image references and tags
+- 📊 **Multiple Output Formats** - Text and JSON output for CI integration
+- ⚡ **Fast** - Written in Rust for maximum performance
+- 🎯 **Zero Config** - Works out of the box
+
+## 💡 Why Pipecheck?
+
+**Before Pipecheck:**
+```
+git push
+→ Wait 5 minutes
+→ CI fails: "Circular dependency detected"
+→ Fix locally
+→ git push again
+→ Wait 5 minutes...
+```
+
+**With Pipecheck:**
+```
+pipecheck .github/workflows/ci.yml
+→ ❌ ERROR: Circular dependency detected: job-a -> job-c -> job-b
+→ Fix immediately
+→ git push with confidence ✅
+```
+
+## 📖 Usage
+
+### Quick Start
+
+```bash
+# Auto-detect and check workflow
+pipecheck
+
+# Check specific file
+pipecheck .github/workflows/ci.yml
+
+# Check all workflows
+pipecheck --all
+
+# Interactive TUI mode
+pipecheck --tui
+```
+
+### All Options
+
+```
+CI/CD Pipeline Auditor - Catch errors before you push
+
+Usage: pipecheck [OPTIONS] [FILE]
+
+Arguments:
+  [FILE]  Path to pipeline configuration file (auto-detects if not provided)
+
+Options:
+  -a, --all              Check all workflow files in directory
+      --install-hook     Install pre-commit hook
+  -w, --watch            Watch for file changes and re-check
+      --fix              Automatically fix issues where possible
+      --tui              Interactive terminal UI mode
+  -f, --format <FORMAT>  Output format (text, json) [default: text]
+      --no-docker        Skip Docker image checks
+  -s, --strict           Enable strict mode (warnings as errors)
+  -h, --help             Print help
+  -V, --version          Print version
+```
+
+### Interactive Features
+
+```bash
+# Install pre-commit hook
+pipecheck --install-hook
+
+# Watch mode - auto-recheck on file changes
+pipecheck --watch
+
+# Interactive TUI mode
+pipecheck --tui
+
+# Auto-fix issues (Coming soon!)
+pipecheck --fix
+```
+
+### Configuration File
+
+Create `.pipecheckrc.yml` in your project root:
+
+```yaml
+ignore:
+  - .github/workflows/old-*.yml
+  
+rules:
+  circular_dependencies: true
+  missing_secrets: true
+  docker_latest_tag: true
+```
+
+### Output Formats
+
+```bash
+# Text output (default)
+pipecheck .github/workflows/ci.yml
+
+# JSON output for CI integration
+pipecheck .github/workflows/ci.yml --format json
+
+# Strict mode (warnings as errors)
+pipecheck .github/workflows/ci.yml --strict
+
+# Skip Docker checks
+pipecheck .github/workflows/ci.yml --no-docker
+```
+
+## 📋 Example Output
+
+```
+Provider: GitHubActions
+
+1 errors, 0 warnings
+
+❌ ERROR: Circular dependency detected: job-a -> job-c -> job-b
+   💡 Remove one of the dependencies to break the cycle
+
+ℹ️  INFO: Job 'build' uses secret: API_KEY
+   💡 Ensure this secret is configured in repository settings
+```
+
+## 🔧 Supported Platforms
+
+| Platform | Status | File Pattern |
+|----------|--------|--------------|
+| **GitHub Actions** | ✅ Full Support | `.github/workflows/*.yml` |
+| **GitLab CI** | ✅ Full Support | `.gitlab-ci.yml` |
+| **CircleCI** | ✅ Full Support | `.circleci/config.yml` |
+
+## 🏗️ Use in CI/CD
+
+### GitHub Actions
+```yaml
+- name: Validate workflows
+  run: |
+    npm install -g pipecheck
+    pipecheck .github/workflows/*.yml --strict
+```
+
+### GitLab CI
+```yaml
+validate:
+  script:
+    - cargo install pipecheck
+    - pipecheck .gitlab-ci.yml --strict
+```
+
+### Pre-commit Hook
+```bash
+#!/bin/bash
+pipecheck .github/workflows/*.yml --strict || exit 1
+```
+
+## 🤝 Contributing
+
+Contributions are welcome! See [CONTRIBUTING.md](CONTRIBUTING.md) for guidelines.
+
+## 📝 License
+
+Licensed under either of:
+- MIT License ([LICENSE-MIT](LICENSE-MIT))
+- Apache License, Version 2.0 ([LICENSE-APACHE](LICENSE-APACHE))
+
+at your option.
+
+## 🌟 Show Your Support
+
+If Pipecheck saves you time, give it a ⭐ on GitHub!

package/bin/pipechecker.js

@@ -0,0 +1,22 @@
+#!/usr/bin/env node
+
+const { spawn } = require('child_process');
+const path = require('path');
+
+const binPath = path.join(__dirname, '..', 'npm', getBinaryName());
+
+const child = spawn(binPath, process.argv.slice(2), { stdio: 'inherit' });
+
+child.on('exit', (code) => {
+  process.exit(code);
+});
+
+function getBinaryName() {
+  const platform = process.platform;
+  const arch = process.arch;
+  
+  if (platform === 'win32') {
+    return `pipechecker-${arch}.exe`;
+  }
+  return `pipechecker-${platform}-${arch}`;
+}

package/package.json

@@ -0,0 +1,46 @@
+{
+  "name": "pipechecker",
+  "version": "0.2.2",
+  "description": "CI/CD Pipeline Auditor - Catch errors before you push",
+  "bin": {
+    "pipechecker": "./bin/pipechecker.js"
+  },
+  "scripts": {
+    "postinstall": "node ./scripts/install.js",
+    "build": "cargo build --release"
+  },
+  "keywords": [
+    "ci",
+    "cd",
+    "pipeline",
+    "audit",
+    "github-actions",
+    "gitlab-ci",
+    "circleci",
+    "yaml",
+    "validation"
+  ],
+  "author": "Pipecheck Contributors",
+  "license": "MIT OR Apache-2.0",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/Ayyankhan101/PipeCheck.git"
+  },
+  "engines": {
+    "node": ">=14"
+  },
+  "os": [
+    "darwin",
+    "linux",
+    "win32"
+  ],
+  "cpu": [
+    "x64",
+    "arm64"
+  ],
+  "files": [
+    "bin/",
+    "scripts/",
+    "npm/"
+  ]
+}

package/scripts/install.js

@@ -0,0 +1,101 @@
+#!/usr/bin/env node
+
+const fs = require('fs');
+const path = require('path');
+const https = require('https');
+const { execSync } = require('child_process');
+
+const REPO = 'Ayyankhan101/PipeCheck';
+const VERSION = require('../package.json').version.replace(/^v/, '');
+
+function getBinaryName() {
+  const platform = process.platform;
+  const arch = process.arch;
+
+  if (platform === 'win32') {
+    return `pipechecker-${arch}.exe`;
+  }
+  return `pipechecker-${platform}-${arch}`;
+}
+
+function getReleaseAssetName() {
+  const platform = process.platform;
+  const arch = process.arch;
+
+  if (platform === 'win32') {
+    return `pipechecker-${arch}.exe`;
+  }
+  return `pipechecker-${platform}-${arch}`;
+}
+
+function download(url, dest) {
+  return new Promise((resolve, reject) => {
+    const request = https.get(url, { followRedirects: true }, (res) => {
+      if (res.statusCode === 302 || res.statusCode === 301) {
+        https.get(res.headers.location, { followRedirects: true }, (redirectRes) => {
+          const file = fs.createWriteStream(dest);
+          redirectRes.pipe(file);
+          file.on('finish', () => {
+            file.close();
+            resolve();
+          });
+        }).on('error', reject);
+        return;
+      }
+
+      const file = fs.createWriteStream(dest);
+      res.pipe(file);
+      file.on('finish', () => {
+        file.close();
+        resolve();
+      });
+    });
+    request.on('error', reject);
+  });
+}
+
+async function install() {
+  const binaryName = getBinaryName();
+  const assetName = getReleaseAssetName();
+  const npmDir = path.join(__dirname, '..', 'npm');
+  const binaryPath = path.join(npmDir, binaryName);
+
+  // Check if binary already exists
+  if (fs.existsSync(binaryPath)) {
+    console.log('✓ Pipecheck binary already installed');
+    return;
+  }
+
+  if (!fs.existsSync(npmDir)) {
+    fs.mkdirSync(npmDir, { recursive: true });
+  }
+
+  console.log(`Installing pipechecker v${VERSION}...`);
+
+  const tag = `v${VERSION}`;
+  const url = `https://github.com/${REPO}/releases/download/${tag}/${assetName}`;
+
+  try {
+    await download(url, binaryPath);
+    fs.chmodSync(binaryPath, 0o755);
+    console.log('✓ Pipecheck installed successfully');
+  } catch (error) {
+    console.error(`Failed to download binary from ${url}`);
+    console.error('Falling back to building from source...');
+
+    try {
+      execSync('cargo build --release', { stdio: 'inherit' });
+      const sourceBinary = path.join(__dirname, '..', 'target', 'release',
+        process.platform === 'win32' ? 'pipechecker.exe' : 'pipechecker');
+      fs.copyFileSync(sourceBinary, binaryPath);
+      fs.chmodSync(binaryPath, 0o755);
+      console.log('✓ Pipecheck installed from source');
+    } catch (buildError) {
+      console.error('Failed to build from source. Please ensure Rust is installed.');
+      console.error('Visit https://rustup.rs to install Rust');
+      process.exit(1);
+    }
+  }
+}
+
+install();