fix: correct flags regex to match server and docs

[drazisil]

fixes #146

[codecov]

Codecov Report

Merging #147 (a5f9338) into master (5856d15) will decrease coverage by 0.18%.
The diff coverage is 100.00%.

@@            Coverage Diff             @@
##           master     #147      +/-   ##
==========================================
- Coverage   91.57%   91.39%   -0.19%     
==========================================
  Files          15       15              
  Lines         546      546              
  Branches      105      105              
==========================================
- Hits          500      499       -1     
  Misses         20       20              
- Partials       26       27       +1     

Flag	Coverage Δ
alpine	91.39% <100.00%> (-0.19%)	⬇️
linux	91.39% <100.00%> (-0.19%)	⬇️
linux-without-git	∅ <ø> (∅)
macos	91.39% <100.00%> (-0.19%)	⬇️
macos-without-git	∅ <ø> (∅)
windows	90.84% <100.00%> (-0.19%)	⬇️
windows-without-git	∅ <ø> (∅)

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
src/helpers/validate.js	100.00% <100.00%> (ø)
src/ci_providers/provider_circleci.js	90.32% <0.00%> (-3.23%)	⬇️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 5856d15...a5f9338. Read the comment docs.

[drazisil]

I disagree that https://app.codecov.io/gh/codecov/uploader/compare/147/diff?src=pr&el=tree&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr%20comments&utm_term=codecov#diff-c3JjL2NpX3Byb3ZpZGVycy9wcm92aWRlcl9jaXJjbGVjaS5qcw== is a coverage drop. 🤷‍♀️

[RA80533]

What is a flag? What should it be validated for? It seems like this is early to validate for anything other than that flags are of type string.

It might be best to use a command-line parsing library for this functionality. Even with the addition of periods to the regular expression, validation would fail on other seemingly “valid” (from the perspective of them being genuine) flags.

[drazisil]

What is a flag? What should it be validated for? It seems like this is early to validate for anything other than that flags are of type string.

It might be best to use a command-line parsing library for this functionality. Even with the addition of periods to the regular expression, validation would fail on other seemingly “valid” (from the perspective of them being genuine) flags.

A "flag" in this context is a feature of Codecov https://docs.codecov.com/docs/flags

It's being validated because not all strings are accepted and it's preferred to stop at the upload, rather then at a server error.

[RA80533]

Only lowercase, alphanumeric values are accepted. ^[a-z0-9_\.\-]{1,45}$

Oh, I see. Thanks for the link.

Should the regex be changed to the snippet from the documentation?

[drazisil]

Should the regex be changed to the snippet from the documentation?

Indeed. Turns out the docs were incorrect as well. Now they both match the server :)

[drazisil]

Ok, @codecov/open-source . This is ready for review and merge. Finally.

[RA80533]

Should this be renamed to validateFlag (singular) since it validates one flag?

[drazisil-codecov]

Probably , but that's scope creep imo.

[RA80533]

There is benefit in moving this regex outside.

Currently, every invocation of validateFlags will instantiate a unique regular expression instance which will promptly be destroyed (and never reused) after the function returns. The optimization here is to simply instantiate one regular expression but share it among every invocation of the function. This is common practice with regular expressions in JavaScript because complex patterns can be (relatively) expensive to compile.

[RA80533]

Is this intended to match commas?

[drazisil-codecov]

Suggested change

	const mask = /^[\w,\.,\-]{1,45}$/
	const mask = /^[\w\.\-]{1,45}$/

fix: do not match commas

[drazisil-codecov]

Currently, every invocation of validateFlags will instantiate a unique regular expression instance which will promptly be destroyed (and never reused) after the function returns

I don't follow. Except in tests, this regex should generally only be used once per execution

[RA80533]

The boundaries of the regular expression should be tested; namely:

• Length: (0, 1, 45, 46)
• Characters: (uppercase and lowercase alphabetical; numeral; underline; dash; period; comma)

[RA80533]

Should the regex be changed to the snippet from the documentation?

Indeed. Turns out the docs were incorrect as well. Now they both match the server :)

It appears that the docs are still somewhat incorrect:

^[\w\.\-]+${1,45}$

+$ should be removed, resulting in:

^[\w\.\-]{1,45}$