Skip to content

WIP - Stealth #1323

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open

WIP - Stealth #1323

wants to merge 4 commits into from
+2,335 −1,779

Conversation

nvuillam
Copy link
Member

No description provided.

@github-actions GitHub Actions
Copy link

🦙 MegaLinter status: ❌ ERROR

All Linters Summary

Descriptor Linter Files Fixed Errors Warnings Elapsed time
✅ ACTION actionlint 10 0 0 1.27s
✅ BASH shfmt 3 0 0 0 0.37s
❌ COPYPASTE jscpd yes 1 no 20.54s
✅ DOCKERFILE hadolint 1 0 0 0.14s
✅ JSON v8r 26 0 0 12.6s
✅ MARKDOWN markdown-table-formatter 334 0 0 0 1.91s
✅ REPOSITORY checkov yes no no 19.29s
⚠️ REPOSITORY gitleaks yes 5 no 61.45s
✅ REPOSITORY grype yes no no 24.1s
✅ REPOSITORY trivy yes no no 5.39s
✅ REPOSITORY trufflehog yes no no 5.43s
❌ SPELL cspell 644 12 0 15.65s
⚠️ SPELL lychee 378 16 0 8.44s
✅ TYPESCRIPT eslint 249 0 0 0 7.23s
⚠️ YAML v8r 16 1 0 8.13s

Detailed Issues

❌ SPELL / cspell - 12 errors 
src/commands/hardis/project/cpq/extract.ts:99:8      - Unknown word (Pricebook)  -- 'PricebookEntry',
	 Suggestions: [Prebook, Precook]
src/commands/hardis/project/cpq/extract.ts:101:11    - Unknown word (SBQQ)       -- // 'SBQQ__Quote__c',
	 Suggestions: [SEQQ, SQQ, SUBQ, SEQ, BBQ]
src/commands/hardis/project/cpq/extract.ts:102:11    - Unknown word (SBQQ)       -- // 'SBQQ__QuoteLine__c',
	 Suggestions: [SEQQ, SQQ, SUBQ, SEQ, BBQ]
src/commands/hardis/project/cpq/extract.ts:103:11    - Unknown word (SBQQ)       -- // 'SBQQ__QuoteLineGroup__c'
	 Suggestions: [SEQQ, SQQ, SUBQ, SEQ, BBQ]
src/commands/hardis/project/cpq/extract.ts:104:8     - Unknown word (SBQQ)       -- 'SBQQ__ProductRule__c',
	 Suggestions: [SEQQ, SQQ, SUBQ, SEQ, BBQ]
src/commands/hardis/project/cpq/extract.ts:105:8     - Unknown word (SBQQ)       -- 'SBQQ__PriceRule__c',
	 Suggestions: [SEQQ, SQQ, SUBQ, SEQ, BBQ]
src/commands/hardis/project/cpq/extract.ts:261:26    - Unknown word (argb)       -- fgColor: { argb: 'FFE0E0E0' }
	 Suggestions: [arab, argc, argo, args, argv]
src/commands/hardis/project/cpq/extract.ts:300:18    - Unknown word (argb)       -- fgColor: { argb: 'FF4472C4' }
	 Suggestions: [arab, argc, argo, args, argv]
src/commands/hardis/project/cpq/extract.ts:310:18    - Unknown word (argb)       -- fgColor: { argb: 'FFE0E0E0' }
	 Suggestions: [arab, argc, argo, args, argv]
src/commands/hardis/project/cpq/extract.ts:317:82    - Unknown word (argb)       -- `, font: { color: { argb: 'FF0000FF' }, underline
	 Suggestions: [arab, argc, argo, args, argv]
src/commands/hardis/project/cpq/extract.ts:329:99    - Unknown word (argb)       -- `, font: { color: { argb: 'FF0000FF' }, underline
	 Suggestions: [arab, argc, argo, args, argv]
src/commands/hardis/project/cpq/extract.ts:389:111   - Unknown word (lwcmp)      -- component', '.aura', '.lwcmp', '.html', '.js-meta
	 Suggestions: [lamp, limp, lump, lwcs, lwip]
CSpell: Files checked: 630, Issues found: 12 in 1 file.


You can skip this misspellings by defining the following .cspell.json file at the root of your repository
Of course, please correct real typos before :)

{
    "version": "0.2",
    "language": "en",
    "ignorePaths": [
        "**/node_modules/**",
        "**/vscode-extension/**",
        "**/.git/**",
        "**/.pnpm-lock.json",
        ".vscode",
        "package-lock.json",
        "megalinter-reports"
    ],
    "words": [
        "Pricebook",
        "SBQQ",
        "argb",
        "lwcmp"
    ]
}


You can also copy-paste megalinter-reports/.cspell.json at the root of your repository

🤖 AI-Powered Fix Suggestions for SPELL_CSPELL (by openai gpt-4.1-mini)

  1. Summary of main issues:
  • The linter flags several domain-specific or technical terms as unknown words, e.g., "Pricebook", "SBQQ", "argb", and "lwcmp".
  • These are likely valid identifiers, acronyms, or property names used in your codebase but not recognized by the default dictionary.
  1. How to fix:
  • Add these terms to your cspell custom dictionary or user word list (e.g., in .cspell.json under "words").
  • This prevents false positives and keeps your spell checking accurate.
  • Example snippet to add in .cspell.json:
{
  "words": ["Pricebook", "SBQQ", "argb", "lwcmp"]
}
  • Alternatively, if these terms appear only in comments or specific files, configure cspell to ignore those or use inline disable comments.

This approach keeps your spell checker effective without flagging valid domain-specific terms.

❌ COPYPASTE / jscpd - 1 error 
Clone found (typescript):
 - src/commands/hardis/misc/custom-label-translations.ts [37:48 - 50:2] (13 lines, 98 tokens)
   src/commands/hardis/project/cpq/extract.ts [42:57 - 55:13]

┌────────────┬────────────────┬─────────────┬──────────────┬──────────────┬──────────────────┬───────────────────┐
│ Format     │ Files analyzed │ Total lines │ Total tokens │ Clones found │ Duplicated lines │ Duplicated tokens │
├────────────┼────────────────┼─────────────┼──────────────┼──────────────┼──────────────────┼───────────────────┤
│ typescript │ 226            │ 36103       │ 271524       │ 1            │ 13 (0.04%)       │ 98 (0.04%)        │
├────────────┼────────────────┼─────────────┼──────────────┼──────────────┼──────────────────┼───────────────────┤
│ javascript │ 7              │ 376         │ 3523         │ 0            │ 0 (0%)           │ 0 (0%)            │
├────────────┼────────────────┼─────────────┼──────────────┼──────────────┼──────────────────┼───────────────────┤
│ markdown   │ 4              │ 336         │ 1695         │ 0            │ 0 (0%)           │ 0 (0%)            │
├────────────┼────────────────┼─────────────┼──────────────┼──────────────┼──────────────────┼───────────────────┤
│ Total:     │ 237            │ 36815       │ 276742       │ 1            │ 13 (0.04%)       │ 98 (0.04%)        │
└────────────┴────────────────┴─────────────┴──────────────┴──────────────┴──────────────────┴───────────────────┘
Found 1 clones.
HTML report saved to megalinter-reports/copy-paste/html/
ERROR: jscpd found too many duplicates (0.04%) over threshold (0%)
Error: ERROR: jscpd found too many duplicates (0.04%) over threshold (0%)
    at ThresholdReporter.report (/node-deps/node_modules/@jscpd/finder/dist/index.js:612:13)
    at /node-deps/node_modules/@jscpd/finder/dist/index.js:110:18
    at Array.forEach (<anonymous>)
    at /node-deps/node_modules/@jscpd/finder/dist/index.js:109:22
    at async /node-deps/node_modules/jscpd/dist/jscpd.js:351:5

🤖 AI-Powered Fix Suggestions for COPYPASTE_JSCPD (by openai gpt-4.1-mini)

  1. Summary:
    The jscpd linter detected a code clone (duplicate code) in two TypeScript files: custom-label-translations.ts and extract.ts. The duplicated block is 13 lines long (98 tokens), causing 0.04% duplication, which exceeds the configured threshold of 0%. This triggered an error and failed the check.

  2. How to fix:

  • Refactor the duplicated code by extracting the common logic into a shared function, module, or utility.
  • Replace the duplicated blocks in both files with calls to this shared code.
  • This reduces maintenance overhead and improves code clarity.
  • Alternatively, if duplication is intentional or unavoidable, adjust the jscpd threshold in .jscpd.json to allow a small percentage of duplication.

Example refactor:

// shared-utils.ts
export function commonLogic(args) {
  // extracted code here
}

// custom-label-translations.ts
import { commonLogic } from './shared-utils';
commonLogic(args);

// extract.ts
import { commonLogic } from './shared-utils';
commonLogic(args);

This approach eliminates duplication and resolves the jscpd error.

⚠️ REPOSITORY / gitleaks - 5 errors 
○
    │╲
    │ ○
    ○ ░
    ░    gitleaks

Finding:     ...BASIC_AUTH_PASSWORD=REDACTED
Secret:      REDACTED
RuleID:      grafana-cloud-api-token
Entropy:     5.345851
File:        salesforce-ci-cd-setup-integration-api/index.html
Line:        9713
Commit:      HIDDEN_BY_MEGALINTERAuthor:      
Email:       
Date:        2025-07-23T22:28:34Z
Fingerprint: 9e5039fc5fd47a9c617b018fac4aeeec0daacb62:salesforce-ci-cd-setup-integration-api/index.html:grafana-cloud-api-token:9713
Link:        https://github.com/hardisgroupcom/sfdx-hardis/blob/9e5039fc5fd47a9c617b018fac4aeeec0daacb62/salesforce-ci-cd-setup-integration-api/index.html#L9713

Finding:     ...BASIC_AUTH_PASSWORD=REDACTED
Secret:      REDACTED
RuleID:      grafana-cloud-api-token
Entropy:     5.345851
File:        salesforce-ci-cd-setup-integration-api/index.html
Line:        9714
Commit:      HIDDEN_BY_MEGALINTERAuthor:      
Email:       
Date:        2025-07-23T22:28:34Z
Fingerprint: 9e5039fc5fd47a9c617b018fac4aeeec0daacb62:salesforce-ci-cd-setup-integration-api/index.html:grafana-cloud-api-token:9714
Link:        https://github.com/hardisgroupcom/sfdx-hardis/blob/9e5039fc5fd47a9c617b018fac4aeeec0daacb62/salesforce-ci-cd-setup-integration-api/index.html#L9714

Finding:     ...BASIC_AUTH_PASSWORD=REDACTED\nNOTIF_API_METRICS_BA...
Secret:      REDACTED
RuleID:      grafana-cloud-api-token
Entropy:     5.345851
File:        search/search_index.json
Line:        1
Commit:      HIDDEN_BY_MEGALINTERAuthor:      
Email:       
Date:        2025-07-23T22:28:34Z
Fingerprint: 9e5039fc5fd47a9c617b018fac4aeeec0daacb62:search/search_index.json:grafana-cloud-api-token:1
Link:        https://github.com/hardisgroupcom/sfdx-hardis/blob/9e5039fc5fd47a9c617b018fac4aeeec0daacb62/search/search_index.json#L1

Finding:     ...BASIC_AUTH_PASSWORD=REDACTED\nNOTIF_API_METRICS_BA...
Secret:      REDACTED
RuleID:      grafana-cloud-api-token
Entropy:     5.345851
File:        search/search_index.json
Line:        1
Commit:      HIDDEN_BY_MEGALINTERAuthor:      
Email:       
Date:        2025-07-23T22:28:34Z
Fingerprint: 9e5039fc5fd47a9c617b018fac4aeeec0daacb62:search/search_index.json:grafana-cloud-api-token:1
Link:        https://github.com/hardisgroupcom/sfdx-hardis/blob/9e5039fc5fd47a9c617b018fac4aeeec0daacb62/search/search_index.json#L1

Finding:     const AMPLITUDE_TOKEN = 'REDACTED'
Secret:      REDACTED
RuleID:      generic-api-key
Entropy:     3.715018
File:        src/common/analytics.ts
Line:        7
Commit:      HIDDEN_BY_MEGALINTERAuthor:      NicolasVuillamy
Email:       [email protected]
Date:        2021-01-31T00:23:50Z
Fingerprint: ca439c204d52687b82fb54e56ed9644d245c79c5:src/common/analytics.ts:generic-api-key:7
Link:        https://github.com/hardisgroupcom/sfdx-hardis/blob/ca439c204d52687b82fb54e56ed9644d245c79c5/src/common/analytics.ts#L7

3:53PM INF 2012 commits scanned.
3:53PM INF scanned ~88926699 bytes (88.93 MB) in 1m1.3s
3:53PM WRN leaks found: 5
⚠️ SPELL / lychee - 16 errors 
[404] https://img.youtube.com/vi/sfdx-hardis/0.jpg | Network error: Not Found
[404] https://img.youtube.com/vi/sfdx-hardis/0.jpg | Error (cached)
[404] https://myclient.force.com/ | Network error: Not Found
[ERROR] file://assets/images/cloudity-map.jpg | Cannot find file
[ERROR] file://assets/images/cloudity-logo.jpg | Cannot find file
[404] https://sfdx-hardis.cloudity.com/hardis/doc/project/deploy/smart/ | Network error: Not Found
[404] https://sfdx-hardis.cloudity.com/salesforce-ci-cd-setup-integrations-bitbucket/ | Network error: Not Found
[ERROR] https://your-instance.service-now.com/ | Network error: error sending request for url (https://your-instance.service-now.com/) Maybe a certificate error?
[404] https://sfdx-hardis.cloudity.com/deployTips/ | Network error: Not Found
[403] https://help.sfdmu.com/full-documentation/advanced-features/delete-from-source | Network error: Forbidden
[404] https://sfdx-hardis.cloudity.com/deployTips/ | Error (cached)
[404] https://sfdx-hardis.cloudity.com/deployTips/ | Error (cached)
[404] https://www.schemastore.org/json/ | Network error: Not Found
[403] https://openai.com/api/pricing/ | Network error: Forbidden
[403] https://platform.openai.com/ | Network error: Forbidden
[ERROR] http://127.0.0.1:8000/ | Network error: error sending request for url (http://127.0.0.1:8000/) Maybe a certificate error?
📝 Summary
---------------------
🔍 Total.........1902
✅ Successful....1683
⏳ Timeouts.........0
🔀 Redirected.......0
👻 Excluded.......203
❓ Unknown..........0
🚫 Errors..........16

Errors in docs/salesforce-project-doc-generate.md
[ERROR] http://127.0.0.1:8000/ | Network error: error sending request for url (http://127.0.0.1:8000/) Maybe a certificate error?

Errors in docs/hardis/project/deploy/smart.md
[404] https://sfdx-hardis.cloudity.com/deployTips/ | Error (cached)

Errors in README.md
[404] https://img.youtube.com/vi/sfdx-hardis/0.jpg | Network error: Not Found

Errors in docs/articles-videos.md
[404] https://img.youtube.com/vi/sfdx-hardis/0.jpg | Error (cached)

Errors in docs/hardis/project/deploy/sources/dx.md
[404] https://sfdx-hardis.cloudity.com/deployTips/ | Error (cached)

Errors in docs/cloudity-consulting-partner.md
[ERROR] file://assets/images/cloudity-map.jpg | Cannot find file
[ERROR] file://assets/images/cloudity-logo.jpg | Cannot find file

Errors in docs/hardis/misc/servicenow-report.md
[ERROR] https://your-instance.service-now.com/ | Network error: error sending request for url (https://your-instance.service-now.com/) Maybe a certificate error?

Errors in config/sfdx-hardis.jsonschema.json
[404] https://myclient.force.com/ | Network error: Not Found

Errors in CHANGELOG.md
[403] https://help.sfdmu.com/full-documentation/advanced-features/delete-from-source | Network error: Forbidden
[404] https://www.schemastore.org/json/ | Network error: Not Found
[404] https://sfdx-hardis.cloudity.com/salesforce-ci-cd-setup-integrations-bitbucket/ | Network error: Not Found
[404] https://sfdx-hardis.cloudity.com/hardis/doc/project/deploy/smart/ | Network error: Not Found
[404] https://sfdx-hardis.cloudity.com/deployTips/ | Network error: Not Found

Errors in docs/salesforce-ai-setup.md
[403] https://openai.com/api/pricing/ | Network error: Forbidden
[403] https://platform.openai.com/ | Network error: Forbidden
⚠️ YAML / v8r - 1 error 
ℹ No config file found
ℹ Pre-warming the cache
ℹ Processing .github/dependabot.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/dependabot.yml against schema from https://www.schemastore.org/dependabot-2.0.json ...
✔ .github/dependabot.yml is valid

ℹ Processing .github/linters/.checkov.yml
✖ Could not find a schema to validate .github/linters/.checkov.yml

ℹ Processing .github/workflows/build-deploy-docs.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/build-deploy-docs.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/build-deploy-docs.yml is valid

ℹ Processing .github/workflows/deploy-ALPHA.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/deploy-ALPHA.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/deploy-ALPHA.yml is valid

ℹ Processing .github/workflows/deploy-CANARY.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/deploy-CANARY.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/deploy-CANARY.yml is valid

ℹ Processing .github/workflows/deploy-PROD.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/deploy-PROD.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/deploy-PROD.yml is valid

ℹ Processing .github/workflows/deploy-RELEASE.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/deploy-RELEASE.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/deploy-RELEASE.yml is valid

ℹ Processing .github/workflows/devScripts.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/devScripts.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/devScripts.yml is valid

ℹ Processing .github/workflows/docker-security-scan.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/docker-security-scan.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/docker-security-scan.yml is valid

ℹ Processing .github/workflows/mega-linter.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/mega-linter.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/mega-linter.yml is valid

ℹ Processing .github/workflows/retrieve-dashboards.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/retrieve-dashboards.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/retrieve-dashboards.yml is valid

ℹ Processing .github/workflows/test.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .github/workflows/test.yml against schema from https://www.schemastore.org/github-workflow.json ...
✔ .github/workflows/test.yml is valid

ℹ Processing .mega-linter.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating .mega-linter.yml against schema from https://raw.githubusercontent.com/megalinter/megalinter/main/megalinter/descriptors/schemas/megalinter-configuration.jsonschema.json ...
✖ .mega-linter.yml is invalid

.mega-linter.yml#/LLM_ADVISOR_LEVEL must be equal to one of the allowed values
.mega-linter.yml#/LLM_MAX_TOKENS must be string
.mega-linter.yml#/LLM_TEMPERATURE must be string

ℹ Processing config/sfdx-hardis.mega-linter-config.yml
✖ Could not find a schema to validate config/sfdx-hardis.mega-linter-config.yml

ℹ Processing mkdocs.yml
ℹ Found multiple possible matches for mkdocs.yml. Possible matches:

  mkdocs.yml (1.0)
  MkDocs configuration file
  https://www.schemastore.org/mkdocs-1.0.json

  mkdocs.yml (1.6)
  MkDocs configuration file
  https://www.schemastore.org/mkdocs-1.6.json

✖ Found multiple possible schemas to validate mkdocs.yml

ℹ Processing test/.sfdx-hardis.yml
ℹ Found schema in https://www.schemastore.org/api/json/catalog.json ...
ℹ Validating test/.sfdx-hardis.yml against schema from https://raw.githubusercontent.com/hardisgroupcom/sfdx-hardis/main/config/sfdx-hardis.jsonschema.json ...
✔ test/.sfdx-hardis.yml is valid

See detailed report in MegaLinter reports

MegaLinter is graciously provided by OX Security

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@nvuillam