Rule: `no-defined-entrypoint` #355

anderseknert · 2023-09-30T13:02:34Z

Aggregate rule number two, in which we aggregate entrypoint annotations, and fail if we don't find any.

Fixes #154

anderseknert · 2023-09-30T13:03:27Z

bundle/regal/rules/idiomatic/no_defined_entrypoint.rego

@@ -0,0 +1,26 @@
+# METADATA
+# description: No defined entrypoint


This message is a little short. Suggestions welcome!

Something like: Entrypoint annotation missing ? It's the same length, but perhaps gives a little more idea about what's been tested and why Regal is failing here.

I went with Missing entrypoint annotation 👍

anderseknert · 2023-09-30T13:05:56Z

bundle/regal/rules/idiomatic/no_defined_entrypoint.rego

+	count(input.aggregate) == 0
+
+	violation := result.fail(rego.metadata.chain(), {})
+}


These rules are just so simple! @sesponda note how input aggregate always is defined and at minimum an empty set/array, like how you wanted it to be. This is possible now since we're not even evaluating these rules if aggregate rules are disabled (because only one file linted or for other reasons).

charlieegan3 · 2023-10-02T08:57:19Z

bundle/regal/rules/idiomatic/no_defined_entrypoint.rego

@@ -0,0 +1,26 @@
+# METADATA
+# description: No defined entrypoint


Something like: Entrypoint annotation missing ? It's the same length, but perhaps gives a little more idea about what's been tested and why Regal is failing here.

charlieegan3 · 2023-10-02T09:03:44Z

docs/rules/idiomatic/no-defined-entrypoint.md

+allow if {
+    some role in input.user.roles
+    role in data.permissions.admin_roles
+}


Would these examples be clearer if the unnamed entrypoint allow showed how entrypoints often gather the results from various other rules?

Yeah.. I agree that'd be good! I've wanted to make all examples self-contained, so that they'd be copy-pasteable... but might be worth expanding a bit on this example and have a helper rule or two. I'll take a look!

Updated to include two helper rules :)

Aggregate rule number two, in which we aggregate entrypoint annotations, and fail if we don't find any. Fixes #154 Signed-off-by: Anders Eknert <anders@styra.com>

anderseknert commented Sep 30, 2023

View reviewed changes

anderseknert force-pushed the require-entry-point branch 3 times, most recently from 9f927eb to 481a84c Compare October 2, 2023 08:59

charlieegan3 approved these changes Oct 2, 2023

View reviewed changes

Rule: no-defined-entrypoint

c70f207

Aggregate rule number two, in which we aggregate entrypoint annotations, and fail if we don't find any. Fixes #154 Signed-off-by: Anders Eknert <anders@styra.com>

anderseknert force-pushed the require-entry-point branch from 481a84c to c70f207 Compare October 2, 2023 10:23

anderseknert merged commit f1ff4fb into main Oct 2, 2023
1 check passed

anderseknert deleted the require-entry-point branch October 2, 2023 10:29

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Rule: `no-defined-entrypoint` #355

Rule: `no-defined-entrypoint` #355

anderseknert commented Sep 30, 2023

anderseknert Sep 30, 2023

charlieegan3 Oct 2, 2023

anderseknert Oct 2, 2023

anderseknert Sep 30, 2023

charlieegan3 Oct 2, 2023

charlieegan3 Oct 2, 2023

anderseknert Oct 2, 2023

anderseknert Oct 2, 2023

		@@ -0,0 +1,26 @@
		# METADATA
		# description: No defined entrypoint

Rule: no-defined-entrypoint #355

Rule: no-defined-entrypoint #355

Conversation

anderseknert commented Sep 30, 2023

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Rule: `no-defined-entrypoint` #355

Rule: `no-defined-entrypoint` #355