Access-Time · Caknoooo · Oct 30, 2025 · Oct 30, 2025 · Oct 30, 2025 · Oct 30, 2025
diff --git a/.github/workflows/lens-core-template.yml b/.github/workflows/lens-core-template.yml
@@ -0,0 +1,273 @@
+name: LensCore Accessibility CI
+
+on:
+  workflow_call:
+    inputs:
+      url:
+        description: 'Application URL to scan'
+        required: false
+        type: string
+        default: 'http://localhost:3000'
+      port:
+        description: 'Application port'
+        required: false
+        type: number
+        default: 3000
+      max_urls:
+        description: 'Maximum number of URLs to scan'
+        required: false
+        type: number
+        default: 10
+      scan_depth:
+        description: 'Depth of crawling'
+        required: false
+        type: number
+        default: 2
+      timeout:
+        description: 'Timeout for each page scan (ms)'
+        required: false
+        type: number
+        default: 15000
+
+jobs:
+  accessibility:
+    name: Run LensCore Accessibility Scan
+    runs-on: ubuntu-latest
+    timeout-minutes: 30
+
+    permissions:
+      contents: read
+      pull-requests: write
+      id-token: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Detect package manager
+        id: detect_pm
+        run: |
+          if [ -f package-lock.json ] || [ -f npm-shrinkwrap.json ]; then
+            echo "manager=npm" >> $GITHUB_OUTPUT
+            echo "lockfile=package-lock.json" >> $GITHUB_OUTPUT
+          elif [ -f yarn.lock ]; then
+            echo "manager=yarn" >> $GITHUB_OUTPUT
+            echo "lockfile=yarn.lock" >> $GITHUB_OUTPUT
+          elif [ -f pnpm-lock.yaml ]; then
+            echo "manager=pnpm" >> $GITHUB_OUTPUT
+            echo "lockfile=pnpm-lock.yaml" >> $GITHUB_OUTPUT
+          else
+            echo "manager=npm" >> $GITHUB_OUTPUT
+            echo "lockfile=" >> $GITHUB_OUTPUT
+          fi
+      - name: Install system packages
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y jq curl
+      - name: Install docker-compose
+        run: |
+          sudo curl -L "https://github.com/docker/compose/releases/latest/download/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
+          sudo chmod +x /usr/local/bin/docker-compose
+          docker-compose --version
+      - name: Extract port and get Docker host IP
+        id: extract_port
+        run: |
+          URL="${{ inputs.url }}"
+          PORT="${{ inputs.port }}"
+          if [ -z "$PORT" ] || [ "$PORT" = "0" ]; then
+            if echo "$URL" | grep -qE ':[0-9]+'; then
+              PORT=$(echo "$URL" | sed -E 's/.*:([0-9]+).*/\1/')
+            else
+              PORT=3000
+            fi
+          fi
+          DOCKER_HOST_IP=$(docker network inspect bridge --format '{{ (index .IPAM.Config 0).Gateway }}' 2>/dev/null || echo "")
+          if [ -z "$DOCKER_HOST_IP" ]; then
+            DOCKER_HOST_IP=$(docker network inspect bridge --format '{{range .IPAM.Config}}{{.Gateway}}{{end}}' 2>/dev/null | head -1 || echo "")
+          fi
+          if [ -z "$DOCKER_HOST_IP" ]; then
+            DOCKER_HOST_IP="172.17.0.1"
+            echo "::warning::Could not get Docker host IP from bridge network, using default: $DOCKER_HOST_IP"
+          fi
+          echo "port=$PORT" >> $GITHUB_OUTPUT
+          echo "docker_host_ip=$DOCKER_HOST_IP" >> $GITHUB_OUTPUT
+          echo "app_url=http://app:$PORT" >> $GITHUB_OUTPUT
+          echo "localhost_url=http://localhost:$PORT" >> $GITHUB_OUTPUT
+          echo "host_docker_internal_url=http://host.docker.internal:$PORT" >> $GITHUB_OUTPUT
+          echo "docker_host_url=http://${DOCKER_HOST_IP}:${PORT}" >> $GITHUB_OUTPUT
+          echo "Docker host IP: $DOCKER_HOST_IP"
+          echo "Scan URL will be: http://${DOCKER_HOST_IP}:${PORT}"
+      - name: Setup LensCore
+        run: |
+          npm install -g @accesstime/lenscore@latest
+          mkdir -p ~/.lenscore
+          cat > ~/.lenscore/config.json << 'CONFIG_EOF'
+          {
+            "mode": "local",
+            "docker": {
+              "image": "lenscore:latest",
+              "port": 3001
+            },
+            "remote": {
+              "baseUrl": "http://localhost:3001"
+            },
+            "openai": {
+              "apiKey": "",
+              "model": "gpt-3.5-turbo",
+              "enabled": false
+            }
+          }
+          CONFIG_EOF
+          lens-core build
+      - name: Prepare Dockerfile
+        run: |
+          PM="${{ steps.detect_pm.outputs.manager }}"
+          PORT="${{ steps.extract_port.outputs.port }}"
+          if [ ! -f Dockerfile ]; then
+            echo "Dockerfile not found. Creating a basic Dockerfile for $PM..."
+
+            if [ "$PM" = "npm" ]; then
+              {
+                echo "FROM node:20-alpine"
+                echo "WORKDIR /app"
+                echo "COPY package*.json ./"
+                echo "RUN npm ci"
+                echo "COPY . ."
+                echo "RUN npm run build || true"
+                echo "EXPOSE ${PORT}"
+                echo "CMD [\"npm\", \"start\"]"
+              } > Dockerfile
+            elif [ "$PM" = "yarn" ]; then
+              {
+                echo "FROM node:20-alpine"
+                echo "WORKDIR /app"
+                echo "RUN corepack enable && corepack prepare yarn@stable --activate"
+                echo "COPY package.json yarn.lock* .yarnrc* ./"
+                echo "COPY . ."
+                echo "RUN yarn install"
+                echo "RUN yarn build || true"
+                echo "EXPOSE ${PORT}"
+                echo "CMD [\"yarn\", \"start\"]"
+              } > Dockerfile
+            elif [ "$PM" = "pnpm" ]; then
+              {
+                echo "FROM node:20-alpine"
+                echo "WORKDIR /app"
+                echo "RUN corepack enable && corepack prepare pnpm@latest --activate"
+                echo "COPY package.json pnpm-lock.yaml ./"
+                echo "RUN pnpm install --frozen-lockfile"
+                echo "COPY . ."
+                echo "RUN pnpm build || true"
+                echo "EXPOSE ${PORT}"
+                echo "CMD [\"pnpm\", \"start\"]"
+              } > Dockerfile
+            else
+              echo "::warning::Unknown package manager: $PM. Creating generic Dockerfile..."
+              {
+                echo "FROM node:20-alpine"
+                echo "WORKDIR /app"
+                echo "COPY package*.json ./"
+                echo "RUN npm install --production || true"
+                echo "COPY . ."
+                echo "EXPOSE ${PORT}"
+                echo "CMD [\"node\", \"index.js\"]"
+              } > Dockerfile
+            fi
+            echo "✓ Created basic Dockerfile for $PM"
+          else
+            echo "✓ Using existing Dockerfile"
+          fi
+      - name: Start application
+        run: |
+          PORT="${{ steps.extract_port.outputs.port }}"
+          if [ -f docker-compose.yml ]; then
+            echo "✓ Found docker-compose.yml, using it to start application"
+            docker-compose up -d --build
+          else
+            echo "No docker-compose.yml found. Building and running application directly..."
+            docker build -t app-image .
+            docker run -d --rm \
+              --name app \
+              -p "${PORT}:${PORT}" \
+              -e NODE_ENV=production \
+              -e PORT=${PORT} \
+              app-image
+            echo "✓ Application container started"
+          fi
+      - name: Wait for LensCore
+        run: |
+          timeout=120
+          elapsed=0
+          while [ $elapsed -lt $timeout ]; do
+            if curl -sf "http://localhost:3001/api/health" > /dev/null 2>&1; then
+              echo "✓ LensCore is ready"
+              exit 0
+            fi
+            sleep 5
+            elapsed=$((elapsed + 5))
+          done
+          echo "::error::LensCore did not become available within timeout"
+          docker ps -a | grep lenscore || true
+          exit 1
+      - name: Wait for application
+        id: wait_app
+        run: |
+          DOCKER_HOST_IP="${{ steps.extract_port.outputs.docker_host_ip }}"
+          PORT="${{ steps.extract_port.outputs.port }}"
+          SCAN_BASE_URL="http://${DOCKER_HOST_IP}:${PORT}"
+          echo "Docker host IP: ${DOCKER_HOST_IP}"
+          echo "Waiting for app on ${SCAN_BASE_URL}..."
+          curl --retry 30 --retry-delay 3 --retry-connrefused \
+               "${SCAN_BASE_URL}" > /dev/null
+          echo "✓ Application is accessible at ${SCAN_BASE_URL}"
+          echo "localhost_url=${SCAN_BASE_URL}" >> $GITHUB_OUTPUT
+          echo "Previewing application response..."
+          RESPONSE=$(curl -sS "$SCAN_BASE_URL" 2>/dev/null || echo "")
+          if [ -n "$RESPONSE" ]; then
+            echo "Response preview (first 5 lines):"
+            echo "$RESPONSE" | head -n 5
+          fi
+          echo "scan_url=${SCAN_BASE_URL}" >> $GITHUB_ENV
+      - name: Run scan
+        run: |
+          SCAN_URL="${{ steps.wait_app.outputs.localhost_url }}"
+          if [ -z "$SCAN_URL" ]; then
+            DOCKER_HOST_IP="${{ steps.extract_port.outputs.docker_host_ip }}"
+            PORT="${{ steps.extract_port.outputs.port }}"
+            SCAN_URL="http://${DOCKER_HOST_IP}:${PORT}"
+          fi
+          lens-core scan "$SCAN_URL" \
+            -u ${{ inputs.max_urls }} \
+            -d ${{ inputs.scan_depth }} \
+            -t ${{ inputs.timeout }} \
+            --skip-cache \
+            --ci \
+            -o report.json
+      - name: Generate HTML report
+        run: |
+          SCAN_URL="${{ steps.wait_app.outputs.localhost_url }}"
+          if [ -z "$SCAN_URL" ]; then
+            DOCKER_HOST_IP="${{ steps.extract_port.outputs.docker_host_ip }}"
+            PORT="${{ steps.extract_port.outputs.port }}"
+            SCAN_URL="http://${DOCKER_HOST_IP}:${PORT}"
+          fi
+          lens-core scan "$SCAN_URL" -u ${{ inputs.max_urls }} -d ${{ inputs.scan_depth }} -t ${{ inputs.timeout }} --skip-cache --web || true
+      - name: Upload artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: lenscore-accessibility-report
+          path: |
+            report.json
+          retention-days: 7
+          if-no-files-found: warn
+
+      - name: Stop services
+        if: always()
+        run: |
+          if [ -f docker-compose.yml ]; then
+            docker-compose down -v || true
+          else
+            docker stop app || true
+            docker rm app || true
+          fi
+          lens-core down || true