Upgrade Default CLI version (#208)

EyalDelarea · web-flow · commit 9fe0f98bd45b · 2024-09-05T11:25:59.000+03:00
diff --git a/README.md b/README.md
@@ -350,6 +350,10 @@ To read more about the JFrog CLI supported commands, visit the following link:
 [JFrog CLI Command Summaries Documentation](https://docs.jfrog-applications.jfrog.io/jfrog-applications/jfrog-cli/cli-command-summaries).
 
 ## Code Scanning Alerts
+
+**Note:** To use code scanning alerts, ensure you are using JFrog CLI version `v2.67.0` or above.
+
+
 The action also supports the display of code scanning alerts in the GitHub Actions UI.
 
 Code scanning alerts are generated following the execution of the `jf docker scan` and `jf scan` commands.
diff --git a/action.yml b/action.yml
@@ -4,7 +4,7 @@ author: "JFrog"
 inputs:
     version:
         description: "JFrog CLI Version"
-        default: "2.66.0"
+        default: "2.67.0"
         required: false
     download-repository:
         description: "Remote repository in Artifactory pointing to 'https://releases.jfrog.io/artifactory/jfrog-cli'. Use this parameter in case you don't have an Internet access."
diff --git a/lib/cleanup.js b/lib/cleanup.js
@@ -141,6 +141,9 @@ function collectAndPublishBuildInfoIfNeeded() {
             core.startGroup('Publish the build info to JFrog Artifactory');
             yield utils_1.Utils.runCli(['rt', 'build-publish'], { cwd: workingDirectory });
         }
+        catch (error) {
+            core.warning('Failed while attempting to publish the build info to JFrog Artifactory: ' + error);
+        }
         finally {
             core.endGroup();
         }
diff --git a/lib/utils.js b/lib/utils.js
@@ -489,7 +489,7 @@ class Utils {
     }
     static isJobSummarySupported() {
         const version = core.getInput(Utils.CLI_VERSION_ARG);
-        return version === Utils.LATEST_CLI_VERSION || (0, semver_1.gt)(version, Utils.MIN_CLI_VERSION_JOB_SUMMARY);
+        return version === Utils.LATEST_CLI_VERSION || (0, semver_1.gte)(version, Utils.MIN_CLI_VERSION_JOB_SUMMARY);
     }
     /**
      * Generates GitHub workflow unified Summary report.
@@ -603,7 +603,7 @@ class Utils {
             const finalSarifFile = path.join(Utils.getJobOutputDirectoryPath(), this.SECURITY_DIR_NAME, this.SARIF_REPORTS_DIR_NAME, this.CODE_SCANNING_FINAL_SARIF_FILE);
             if (!(0, fs_1.existsSync)(finalSarifFile)) {
                 console.debug('No code scanning sarif file was found.');
-                return "";
+                return '';
             }
             // Read the SARIF file, compress and encode it to match the code-scanning/sarif API requirements.
             const sarif = yield fs_1.promises.readFile(finalSarifFile, 'utf-8');
diff --git a/node_modules/.package-lock.json b/node_modules/.package-lock.json
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
     "name": "@jfrog/setup-jfrog-cli",
-    "version": "4.4.0",
+    "version": "4.4.1",
     "private": true,
     "description": "Setup JFrog CLI in GitHub Actions",
     "main": "lib/main.js",
diff --git a/src/cleanup.ts b/src/cleanup.ts
@@ -107,6 +107,8 @@ async function collectAndPublishBuildInfoIfNeeded() {
     try {
         core.startGroup('Publish the build info to JFrog Artifactory');
         await Utils.runCli(['rt', 'build-publish'], { cwd: workingDirectory });
+    } catch (error) {
+        core.warning('Failed while attempting to publish the build info to JFrog Artifactory: ' + error);
     } finally {
         core.endGroup();
     }
diff --git a/src/utils.ts b/src/utils.ts
@@ -7,7 +7,7 @@ import { OutgoingHttpHeaders } from 'http';
 import { arch, platform, tmpdir } from 'os';
 import * as path from 'path';
 import { join } from 'path';
-import { gt, lt } from 'semver';
+import { gte, lt } from 'semver';
 import { Octokit } from '@octokit/core';
 import { OctokitResponse } from '@octokit/types/dist-types/OctokitResponse';
 import * as github from '@actions/github';
@@ -547,7 +547,7 @@ export class Utils {
 
     public static isJobSummarySupported(): boolean {
         const version: string = core.getInput(Utils.CLI_VERSION_ARG);
-        return version === Utils.LATEST_CLI_VERSION || gt(version, Utils.MIN_CLI_VERSION_JOB_SUMMARY);
+        return version === Utils.LATEST_CLI_VERSION || gte(version, Utils.MIN_CLI_VERSION_JOB_SUMMARY);
     }
 
     /**
@@ -654,15 +654,20 @@ export class Utils {
      * @returns <string[]> the paths of the code scanning sarif files.
      */
     private static async getCodeScanningEncodedSarif(): Promise<string> {
-        const finalSarifFile: string = path.join(Utils.getJobOutputDirectoryPath(), this.SECURITY_DIR_NAME, this.SARIF_REPORTS_DIR_NAME, this.CODE_SCANNING_FINAL_SARIF_FILE);
+        const finalSarifFile: string = path.join(
+            Utils.getJobOutputDirectoryPath(),
+            this.SECURITY_DIR_NAME,
+            this.SARIF_REPORTS_DIR_NAME,
+            this.CODE_SCANNING_FINAL_SARIF_FILE,
+        );
         if (!existsSync(finalSarifFile)) {
             console.debug('No code scanning sarif file was found.');
-            return "";
+            return '';
         }
 
         // Read the SARIF file, compress and encode it to match the code-scanning/sarif API requirements.
         const sarif: string = await fs.readFile(finalSarifFile, 'utf-8');
-        return await this.compressAndEncodeSarif(sarif)
+        return await this.compressAndEncodeSarif(sarif);
     }
 
     private static async readMarkdownContent() {
diff --git a/test/main.spec.ts b/test/main.spec.ts
@@ -2,9 +2,10 @@ import * as os from 'os';
 import * as core from '@actions/core';
 
 import { Utils, DownloadDetails, JfrogCredentials, JWTTokenData } from '../src/utils';
-import { tmpdir } from 'os';
+import semver = require('semver/preload');
 jest.mock('os');
 jest.mock('@actions/core');
+jest.mock('semver');
 
 const DEFAULT_CLI_URL: string = 'https://releases.jfrog.io/artifactory/jfrog-cli/';
 const CUSTOM_CLI_URL: string = 'http://127.0.0.1:8081/artifactory/jfrog-cli-remote/';
@@ -365,3 +366,33 @@ describe('Job Summaries', () => {
         });
     });
 });
+
+describe('isJobSummarySupported', () => {
+    const MIN_CLI_VERSION_JOB_SUMMARY: string = '2.66.0';
+    const LATEST_CLI_VERSION: string = 'latest';
+
+    beforeEach(() => {
+        jest.resetAllMocks();
+    });
+
+    it('should return true if the version is the latest', () => {
+        jest.spyOn(core, 'getInput').mockReturnValue(LATEST_CLI_VERSION);
+        expect(Utils.isJobSummarySupported()).toBe(true);
+    });
+
+    it('should return true if the version is greater than or equal to the minimum supported version', () => {
+        const version: string = '2.66.0';
+        jest.spyOn(core, 'getInput').mockReturnValue(version);
+        (semver.gte as jest.Mock).mockReturnValue(true);
+        expect(Utils.isJobSummarySupported()).toBe(true);
+        expect(semver.gte).toHaveBeenCalledWith(version, MIN_CLI_VERSION_JOB_SUMMARY);
+    });
+
+    it('should return false if the version is less than the minimum supported version', () => {
+        const version: string = '2.65.0';
+        jest.spyOn(core, 'getInput').mockReturnValue(version);
+        (semver.gte as jest.Mock).mockReturnValue(false);
+        expect(Utils.isJobSummarySupported()).toBe(false);
+        expect(semver.gte).toHaveBeenCalledWith(version, MIN_CLI_VERSION_JOB_SUMMARY);
+    });
+});

Original file line number	Diff line number	Diff line change
`@@ -141,6 +141,9 @@ function collectAndPublishBuildInfoIfNeeded() {`
`141`	`141`	`core.startGroup('Publish the build info to JFrog Artifactory');`
`142`	`142`	`yield utils_1.Utils.runCli(['rt', 'build-publish'], { cwd: workingDirectory });`
`143`	`143`	`}`
	`144`	`+ catch (error) {`
	`145`	`+ core.warning('Failed while attempting to publish the build info to JFrog Artifactory: ' + error);`
	`146`	`+ }`
`144`	`147`	`finally {`
`145`	`148`	`core.endGroup();`
`146`	`149`	`}`
Original file line number	Diff line number	Diff line change
`@@ -489,7 +489,7 @@ class Utils {`
`489`	`489`	`}`
`490`	`490`	`static isJobSummarySupported() {`
`491`	`491`	`const version = core.getInput(Utils.CLI_VERSION_ARG);`
`492`		`- return version === Utils.LATEST_CLI_VERSION \|\| (0, semver_1.gt)(version, Utils.MIN_CLI_VERSION_JOB_SUMMARY);`
	`492`	`+ return version === Utils.LATEST_CLI_VERSION \|\| (0, semver_1.gte)(version, Utils.MIN_CLI_VERSION_JOB_SUMMARY);`
`493`	`493`	`}`
`494`	`494`	`/**`
`495`	`495`	`* Generates GitHub workflow unified Summary report.`
`@@ -603,7 +603,7 @@ class Utils {`
`603`	`603`	`const finalSarifFile = path.join(Utils.getJobOutputDirectoryPath(), this.SECURITY_DIR_NAME, this.SARIF_REPORTS_DIR_NAME, this.CODE_SCANNING_FINAL_SARIF_FILE);`
`604`	`604`	`if (!(0, fs_1.existsSync)(finalSarifFile)) {`
`605`	`605`	`console.debug('No code scanning sarif file was found.');`
`606`		`- return "";`
	`606`	`+ return '';`
`607`	`607`	`}`
`608`	`608`	`// Read the SARIF file, compress and encode it to match the code-scanning/sarif API requirements.`
`609`	`609`	`const sarif = yield fs_1.promises.readFile(finalSarifFile, 'utf-8');`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "@jfrog/setup-jfrog-cli",`
`3`		`- "version": "4.4.0",`
	`3`	`+ "version": "4.4.1",`
`4`	`4`	`"private": true,`
`5`	`5`	`"description": "Setup JFrog CLI in GitHub Actions",`
`6`	`6`	`"main": "lib/main.js",`
Original file line number	Diff line number	Diff line change
`@@ -107,6 +107,8 @@ async function collectAndPublishBuildInfoIfNeeded() {`
`107`	`107`	`try {`
`108`	`108`	`core.startGroup('Publish the build info to JFrog Artifactory');`
`109`	`109`	`await Utils.runCli(['rt', 'build-publish'], { cwd: workingDirectory });`
	`110`	`+ } catch (error) {`
	`111`	`+ core.warning('Failed while attempting to publish the build info to JFrog Artifactory: ' + error);`
`110`	`112`	`} finally {`
`111`	`113`	`core.endGroup();`
`112`	`114`	`}`