fledge 1.1.1

Dev lifecycle CLI. One tool for the dev loop, any language.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121

use anyhow::Result;
use std::collections::HashMap;
use std::fs;
use std::process::Command;

pub(crate) fn handle_metadata(keys: &[String]) -> Result<serde_json::Value> {
    let mut result = serde_json::Map::new();

    for key in keys {
        match key.as_str() {
            "fledge_config" => {
                let config_path = std::env::current_dir()
                    .unwrap_or_default()
                    .join("fledge.toml");
                if config_path.exists() {
                    if let Ok(content) = fs::read_to_string(&config_path) {
                        if let Ok(parsed) = content.parse::<toml::Value>() {
                            result.insert(
                                key.clone(),
                                serde_json::to_value(parsed).unwrap_or(serde_json::Value::Null),
                            );
                            continue;
                        }
                    }
                }
                result.insert(key.clone(), serde_json::Value::Null);
            }
            "git_tags" => {
                let tags: Vec<String> = Command::new("git")
                    .args(["tag", "--sort=-v:refname", "--no-column"])
                    .output()
                    .ok()
                    .filter(|o| o.status.success())
                    .map(|o| {
                        String::from_utf8_lossy(&o.stdout)
                            .lines()
                            .take(100)
                            .map(String::from)
                            .collect()
                    })
                    .unwrap_or_default();
                result.insert(
                    key.clone(),
                    serde_json::to_value(tags).unwrap_or(serde_json::Value::Null),
                );
            }
            "git_status" => {
                let files: Vec<String> = Command::new("git")
                    .args(["status", "--porcelain"])
                    .output()
                    .map(|o| {
                        String::from_utf8_lossy(&o.stdout)
                            .lines()
                            .map(String::from)
                            .collect()
                    })
                    .unwrap_or_default();
                result.insert(
                    key.clone(),
                    serde_json::to_value(files).unwrap_or(serde_json::Value::Null),
                );
            }
            "git_log" => {
                let entries: Vec<String> = Command::new("git")
                    .args(["log", "--oneline", "-20"])
                    .output()
                    .map(|o| {
                        String::from_utf8_lossy(&o.stdout)
                            .lines()
                            .map(String::from)
                            .collect()
                    })
                    .unwrap_or_default();
                result.insert(
                    key.clone(),
                    serde_json::to_value(entries).unwrap_or(serde_json::Value::Null),
                );
            }
            "env" => {
                let sensitive_patterns = [
                    "secret",
                    "token",
                    "password",
                    "key",
                    "credential",
                    "auth",
                    "private",
                    "session",
                    "cookie",
                ];
                let dangerous_prefixes = ["ld_preload", "ld_library_path", "dyld_", "kubeconfig"];
                let safe_vars: HashMap<String, String> = std::env::vars()
                    .filter(|(k, v)| {
                        let lower = k.to_lowercase();
                        let is_sensitive_name =
                            sensitive_patterns.iter().any(|p| lower.contains(p));
                        let is_dangerous_prefix =
                            dangerous_prefixes.iter().any(|p| lower.starts_with(p));
                        let looks_like_conn_string = lower.ends_with("_url")
                            || lower.ends_with("_uri")
                            || lower.ends_with("_dsn");
                        let value_has_creds = v.contains('@') && v.contains(':');
                        !is_sensitive_name
                            && !is_dangerous_prefix
                            && !looks_like_conn_string
                            && !value_has_creds
                    })
                    .collect();
                result.insert(
                    key.clone(),
                    serde_json::to_value(safe_vars).unwrap_or(serde_json::Value::Null),
                );
            }
            _ => {
                result.insert(key.clone(), serde_json::Value::Null);
            }
        }
    }

    Ok(serde_json::Value::Object(result))
}