# ConfigScanner Demonstration Notebook

This notebook demonstrates the main features of the `ConfigScanner` class.  
You'll see how to scan directories and files for risky configuration values, handle nested configs, and deal with parsing errors.

---

## 1. Scanning a Directory

**Scenario:**  
You run the scanner on a project folder containing various config files:


In [9]:
import json
from safeguard_toolkit.scanners.config_scanner import ConfigScanner

scanner = ConfigScanner(path="examples/config_scanner_project")
scanner.scan()
issues = scanner.get_issues()

for issue in issues:
    print(json.dumps(issue, indent=4))



{
    "file": "examples/config_scanner_project/parsing.json",
    "error": "Failed to parse file: Expecting property name enclosed in double quotes: line 4 column 1 (char 49)"
}
{
    "file": "examples/config_scanner_project/.env",
    "line": null,
    "key": "DEBUG",
    "value": "true",
    "issue": "Risky configuration: DEBUG=true"
}


**What happens:**  
- ConfigScanner collects all `.env`, `.yaml`, `.yml`, and `.json` files in the folder.
- Each file is parsed using the appropriate parser (`yaml.safe_load`, `json.load`, or a .env parser).
- The parsed data is recursively scanned to detect risky config keys/values.
- Issues are collected and returned for review.

---

## 2. Detecting Risky Configuration Values

**Example:**  
Scan a single `.env` file for risky values.

---

In [10]:
import json
from safeguard_toolkit.scanners.config_scanner import ConfigScanner

scanner = ConfigScanner(path="examples/config_scanner_project/.env")
scanner.scan()
issues = scanner.get_issues()

for issue in issues:
    print(json.dumps(issue, indent=4))


{
    "file": "examples/config_scanner_project/.env",
    "line": null,
    "key": "DEBUG",
    "value": "true",
    "issue": "Risky configuration: DEBUG=true"
}


## 3. Handling Deeply Nested Configurations

**Example:**  
Scan a YAML file with nested configuration keys.

---

In [11]:
import json
from safeguard_toolkit.scanners.config_scanner import ConfigScanner

scanner = ConfigScanner(path="examples/config_scanner_project/config.yaml")
scanner.scan()
issues = scanner.get_issues()

for issue in issues:
    print(json.dumps(issue, indent=4))


## 4. Parsing Errors

**Example:**  
Scan a file with invalid JSON/YAML to see how parsing errors are reported.

---

In [12]:
import json
from safeguard_toolkit.scanners.config_scanner import ConfigScanner

scanner = ConfigScanner(path="examples/config_scanner_project/parsing.json")
scanner.scan()
issues = scanner.get_issues()

for issue in issues:
    print(json.dumps(issue, indent=4))


{
    "file": "examples/config_scanner_project/parsing.json",
    "error": "Failed to parse file: Expecting property name enclosed in double quotes: line 4 column 1 (char 49)"
}


---

## Next Steps

- Try scanning other config files or directories.
- Experiment with custom risky values or secret patterns.
- Integrate with your CI/CD pipeline for automated config checks.

---