Skip to content

Add hidden reach-continue-on-* flags for Coana v15#191

Merged
Martin Torp (mtorp) merged 2 commits intomainfrom
martin/coana-v15-reach-continue-flags
Apr 23, 2026
Merged

Add hidden reach-continue-on-* flags for Coana v15#191
Martin Torp (mtorp) merged 2 commits intomainfrom
martin/coana-v15-reach-continue-flags

Conversation

@mtorp
Copy link
Copy Markdown
Contributor

@mtorp Martin Torp (mtorp) commented Apr 22, 2026

Summary

Preparation for the upcoming Coana CLI v15 major release.

Coana v15 changes the default halt behavior in socket mode for four different failure conditions, and introduces matching --reach-continue-on-* flags to opt out of each halt. This PR adds those four flags to the Python CLI as hidden argparse options (via help=argparse.SUPPRESS) and forwards them through ReachabilityAnalyzer.run_reachability_analysis to the spawned coana run command. Nothing changes for users today — the flags are no-ops against the current default Coana version — but the Python CLI will forward them as soon as Coana v15 becomes the default.

New flags (all hidden from --help)

Python CLI flag Forwards to Coana Halt it opts out of
--reach-continue-on-analysis-errors --reach-continue-on-analysis-errors Timeouts, OOM, parse errors, low-confidence results
--reach-continue-on-install-errors --reach-continue-on-install-errors Package installation failures
--reach-continue-on-missing-lock-files --reach-continue-on-missing-lock-files Gradle/SBT projects missing lockfile / version catalog / pre-generated SBOM
--reach-continue-on-no-source-files --reach-continue-on-no-source-files Workspace with no source files for its ecosystem

When the flag is set, the corresponding argument is appended to the coana run argv; when it's unset, nothing is appended and Coana applies its own default.

Files touched

  • socketsecurity/config.pyCliConfig fields, argparse options (help=argparse.SUPPRESS), and config_args wiring
  • socketsecurity/core/tools/reachability.py — new continue_on_* kwargs on run_reachability_analysis + argv forwarding
  • socketsecurity/socketcli.py — pass config values through to the analyzer

Test plan

  • All 33 tests in tests/unit/test_config.py + tests/unit/test_cli_config.py pass
  • Manual parse check: all four flags resolve to True on the config when passed
  • Manual --help check: all four flags are absent from help output
  • Smoke-test against a Coana v15 build once one is available to confirm the flags propagate end-to-end

🤖 Generated with Claude Code

@mtorp @claude
Add hidden reach-continue-on-* flags for Coana v15
39dd14c 
Coana v15 introduces four new halt-by-default behaviors in socket mode
and corresponding --reach-continue-on-* opt-outs. Expose them as hidden
flags on the Python CLI so it is ready to forward them when Coana v15
becomes the default.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 22, 2026
edited
Loading

🚀 Preview package published!

Install with:

pip install --index-url https://test.pypi.org/simple/ --extra-index-url https://pypi.org/simple socketsecurity==2.2.85.dev2

Docker image: socketdev/cli:pr-191

@mtorp @claude
Bump version to 2.2.85
ea4f94d 
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@mtorp Martin Torp (mtorp) marked this pull request as ready for review April 22, 2026 13:43
@mtorp Martin Torp (mtorp) requested a review from a team as a code owner April 22, 2026 13:43
@mtorp Martin Torp (mtorp) merged commit 82d3e90 into main Apr 23, 2026
17 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@barslev Benjamin Barslev Nielsen (barslev) barslev approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mtorp @barslev