Add ability for opa inspect to inspect a single file outside of any bundle #6873
Conversation
tjons
force-pushed
the
tjons/6799-opa-inspect-single-file
branch
2 times, most recently
from
f333058 to
d653074
Compare
internal/bundle/inspect/inspect.go
Outdated
| } | ||
|
|
||
| if includeAnnotations { | ||
| as, errs := ast.BuildAnnotationSet(maps.Values(moduleMap)) |
There was a problem hiding this comment.
Did we add an extra dependency to OPA just for maps.Values? I think we could just add a util function for that if we don't have one already.
|
@ashutosh-narkar will do - have been busy but will circle back to this over the weekend, I also need to fix some of the tests as the output table width in CI is not matching my machine. Are you proposing that we add the |
I was thinking in line with the |
|
Let’s not change the scope as part of this PR. We can always create new issues later if we want the command to do more. |
Sure but I don't think it would be that big of a change to include data files. Either option is fine with me btw. |
tjons
force-pushed
the
tjons/6799-opa-inspect-single-file
branch
4 times, most recently
from
06fcdca to
a4450b1
Compare
|
@ashutosh-narkar this should be good now! I'm going to open a follow-on issue (#6879) for the |
There was a problem hiding this comment.
Thanks @tjons!
Code LGTM, but I'm afraid I still don't understand the dependency changes in this PR 😅 Some dependencies got bumped because it was needed for something changed here, or just as a side quest of sorts? If the latter, perhaps you could do that in a separate PR, so the changes here are isolated to resolving the issue?
Thanks! And sorry if I'm being obtuse about it 😄
tjons
force-pushed
the
tjons/6799-opa-inspect-single-file
branch
from
ebda3f8 to
f34c89c
Compare
…undle Signed-off-by: Tyler Schade <tyler.schade@solo.io> add ability for opa inspect to inspect a single file outside of any bundle Signed-off-by: Tyler Schade <tyler.schade@solo.io>
tjons
force-pushed
the
tjons/6799-opa-inspect-single-file
branch
from
f34c89c to
eeb09fb
Compare
|
@anderseknert I had backed those changes out but unfortunately it appears I made a mistake and either wasn't thorough enough or more likely messed up the rebase from main. They're gone now! |
Why the changes in this PR are needed?
Resolves #6799 by adding the ability for the
opa inspectcommand to handle single files in addition to the currently supported bundle directory and tarball options. This PR is necessary to improve the UX of inspecting annotations in a single file.What are the changes in this PR?
Adds a new method and decision tree to the
opa inspectcommand that will process a single file if the argument passed to the command ends with.rego. Will follow otheropa inspectprocessing semantics and behavior - changes are constrained to loading the single file and processing it as its own entity outside of the scope of a bundle.Notes to assist PR review:
I'm not terribly familiar with OPA's WASM capabilities yet - @anderseknert is there anything in this issue you were thinking would extend to WASM as well that I could add?
I also updated vendored deps as part of this PR - let me know if I should back those changes out.
Further comments: