fix: #473

cmendible · cmendible · commit d4e79b9682e2 · 2025-06-10T11:01:47.000+02:00
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
@@ -107,8 +107,9 @@ jobs:
           go test ./...
 
       - name: Generate recommendations json and check diff
-        if: matrix.target_os == 'linux' && matrix.target_arch == 'amd64' && github.event_name != 'pull_request'
+        if: matrix.target_os == 'linux' && matrix.target_arch == 'amd64'
         run: |
+          go run ./cmd/azqr/main.go rules --json > ./data/recommendations.json 
           git diff --exit-code ./data/recommendations.json
 
       - name: Codecov
diff --git a/data/recommendations.json b/data/recommendations.json
diff --git a/internal/graph/aprl b/internal/graph/aprl
@@ -1 +1 @@
-Subproject commit 83d4cb533fb5906576a073ab0ff0e2baa19709f6
+Subproject commit eb5f11d76d1eb530b8fcae829561400fe1c3f538
diff --git a/internal/renderers/recommendations.go b/internal/renderers/recommendations.go
@@ -19,95 +19,87 @@ func GetAllRecommendations(md bool) string {
 
 	var output string
 
+	recommendations := map[string]models.AzqrRecommendation{}
+	graphRecommendations := map[string]models.AprlRecommendation{}
+	for _, scanner := range serviceScanners {
+		rm := scanner.GetRecommendations()
+
+		for _, r := range rm {
+			recommendations[r.RecommendationID] = r
+		}
+
+		for _, t := range scanner.ResourceTypes() {
+			for _, r := range aprl[strings.ToLower(t)] {
+				if strings.Contains(r.GraphQuery, "cannot-be-validated-with-arg") ||
+					strings.Contains(r.GraphQuery, "under-development") ||
+					strings.Contains(r.GraphQuery, "under development") {
+					continue
+				}
+				graphRecommendations[r.RecommendationID] = r
+			}
+		}
+	}
+
+	keys := make([]string, 0, len(recommendations))
+	for k := range recommendations {
+		keys = append(keys, k)
+	}
+	sort.Strings(keys)
+
+	graphKeys := make([]string, 0, len(graphRecommendations))
+	for k := range graphRecommendations {
+		graphKeys = append(graphKeys, k)
+	}
+	sort.Strings(graphKeys)
+
 	if md {
 		output += "## Recommendations List\n\n"
 		output += fmt.Sprintf("Total Supported Azure Resource Types: %d\n\n", len(aprl))
 		output += "|  | Id | Resource Type | Category | Impact | Recommendation | Learn\n"
 		output += "---|---|---|---|---|---|---\n"
 
 		i := 0
-		for _, scanner := range serviceScanners {
-			rm := scanner.GetRecommendations()
 
-			recommendations := map[string]models.AzqrRecommendation{}
-			for _, r := range rm {
-				recommendations[r.RecommendationID] = r
-			}
-
-			keys := make([]string, 0, len(recommendations))
-			for k := range recommendations {
-				keys = append(keys, k)
-			}
-			sort.Strings(keys)
-
-			for _, k := range keys {
-				r := recommendations[k]
-				i++
-				output += fmt.Sprintf("%s | %s | %s | %s | %s | %s | [Learn](%s)\n", fmt.Sprint(i), r.RecommendationID, r.ResourceType, r.Category, r.Impact, r.Recommendation, r.LearnMoreUrl)
-			}
-
-			for _, t := range scanner.ResourceTypes() {
-				for _, r := range aprl[strings.ToLower(t)] {
-					if strings.Contains(r.GraphQuery, "cannot-be-validated-with-arg") ||
-						strings.Contains(r.GraphQuery, "under-development") ||
-						strings.Contains(r.GraphQuery, "under development") {
-						continue
-					}
+		for _, k := range keys {
+			r := recommendations[k]
+			i++
+			output += fmt.Sprintf("%s | %s | %s | %s | %s | %s | [Learn](%s)\n", fmt.Sprint(i), r.RecommendationID, r.ResourceType, r.Category, r.Impact, r.Recommendation, r.LearnMoreUrl)
+		}
 
-					i++
-					output += fmt.Sprintf("%s | %s | %s | %s | %s | %s | [Learn](%s)\n", fmt.Sprint(i), r.RecommendationID, r.ResourceType, r.Category, r.Impact, r.Recommendation, r.LearnMoreLink[0].Url)
-				}
-			}
+		for _, k := range graphKeys {
+			r := graphRecommendations[k]
+			i++
+			output += fmt.Sprintf("%s | %s | %s | %s | %s | %s | [Learn](%s)\n", fmt.Sprint(i), r.RecommendationID, r.ResourceType, r.Category, r.Impact, r.Recommendation, r.LearnMoreLink[0].Url)
 		}
 	} else {
 		j := []map[string]string{}
 		i := 0
-		for _, scanner := range serviceScanners {
-			rm := scanner.GetRecommendations()
-
-			recommendations := map[string]models.AzqrRecommendation{}
-			for _, r := range rm {
-				recommendations[r.RecommendationID] = r
-			}
 
-			keys := make([]string, 0, len(recommendations))
-			for k := range recommendations {
-				keys = append(keys, k)
-			}
-			sort.Strings(keys)
-
-			for _, k := range keys {
-				j = append(j, map[string]string{})
-				j[i] = map[string]string{}
-				j[i]["recommendationId"] = recommendations[k].RecommendationID
-				j[i]["resourceType"] = recommendations[k].ResourceType
-				j[i]["category"] = string(recommendations[k].Category)
-				j[i]["impact"] = string(recommendations[k].Impact)
-				j[i]["recommendation"] = recommendations[k].Recommendation
-				j[i]["learnMoreUrl"] = recommendations[k].LearnMoreUrl
-				i++
-			}
+		for _, k := range keys {
+			j = append(j, map[string]string{})
+			j[i] = map[string]string{}
+			j[i]["recommendationId"] = recommendations[k].RecommendationID
+			j[i]["resourceType"] = recommendations[k].ResourceType
+			j[i]["category"] = string(recommendations[k].Category)
+			j[i]["impact"] = string(recommendations[k].Impact)
+			j[i]["recommendation"] = recommendations[k].Recommendation
+			j[i]["learnMoreUrl"] = recommendations[k].LearnMoreUrl
+			i++
+		}
 
-			for _, t := range scanner.ResourceTypes() {
-				for _, r := range aprl[strings.ToLower(t)] {
-					if strings.Contains(r.GraphQuery, "cannot-be-validated-with-arg") ||
-						strings.Contains(r.GraphQuery, "under-development") ||
-						strings.Contains(r.GraphQuery, "under development") {
-						continue
-					}
-
-					j = append(j, map[string]string{})
-					j[i] = map[string]string{}
-					j[i]["recommendationId"] = r.RecommendationID
-					j[i]["resourceType"] = r.ResourceType
-					j[i]["category"] = string(r.Category)
-					j[i]["impact"] = string(r.Impact)
-					j[i]["recommendation"] = r.Recommendation
-					j[i]["learnMoreUrl"] = r.LearnMoreLink[0].Url
-					i++
-				}
-			}
+		for _, k := range graphKeys {
+			r := graphRecommendations[k]
+			j = append(j, map[string]string{})
+			j[i] = map[string]string{}
+			j[i]["recommendationId"] = r.RecommendationID
+			j[i]["resourceType"] = r.ResourceType
+			j[i]["category"] = string(r.Category)
+			j[i]["impact"] = string(r.Impact)
+			j[i]["recommendation"] = r.Recommendation
+			j[i]["learnMoreUrl"] = r.LearnMoreLink[0].Url
+			i++
 		}
+
 		// print j as json to stdout
 		js, err := json.MarshalIndent(j, "", "\t")
 		if err != nil {
diff --git a/internal/renderers/report_data.go b/internal/renderers/report_data.go
@@ -188,7 +188,7 @@ func (rd *ReportData) RecommendationsTable() [][]string {
 			implemented := "N/A"
 			typeIsDeployed := false
 			for _, resType := range rd.ResourceTypeCount {
-				if strings.ToLower(resType.ResourceType) == strings.ToLower(r.ResourceType) {
+				if strings.EqualFold(resType.ResourceType, r.ResourceType) {
 					typeIsDeployed = true
 					break
 				}
diff --git a/scripts/test_graph_queries.sh b/scripts/test_graph_queries.sh
@@ -0,0 +1,40 @@
+#!/bin/bash
+
+# Function to run KQL queries using Azure CLI
+# Arguments:
+#   $1 - The KQL query to run
+runKqlQuery() {
+  local kqlQuery="$1"
+  echo "Running query: $kqlQuery"
+  # Run the KQL query using the Azure CLI and stop on error
+  az graph query -q "$kqlQuery" || { echo "Error running query: $kqlQuery"; exit 1; }
+}
+
+# Find all .kql files in the specified directory
+kqlFiles=$(find internal/graph/azure-orphan-resources -type f -name "*.kql")
+
+# Find all .kql files in the internal/graph/aprl/azure-resources directory and append them to kqlFiles
+aprlKqlFiles=$(find internal/graph/aprl/azure-resources -type f -name "*.kql")
+
+# Combine kqlFiles and aprlKqlFiles into a single variable
+kqlFiles="$kqlFiles $aprlKqlFiles"
+
+# Loop through each .kql file
+for kqlFile in $kqlFiles; do
+    echo "Processing file: $kqlFile"
+
+    # Read the entire content of the .kql file
+    kqlQuery=$(<"$kqlFile")
+
+    # dot not attempt to run th equery if it contains 
+    # "cannot-be-validated-with-arg, "under-development" or under development"
+    if [[ "$kqlQuery" == *"cannot-be-validated-with-arg"* ]] || \
+       [[ "$kqlQuery" == *"under-development"* ]] || \
+       [[ "$kqlQuery" == *"under development"* ]]; then
+        echo "Skipping query in $kqlFile due to manual validation or development status."
+        continue
+    fi
+
+    # Run the KQL query using the Azure CLI
+    runKqlQuery "$kqlQuery"
+done
diff --git a/scripts/test_queries_orphan_resources.sh b/scripts/test_queries_orphan_resources.sh

Original file line number	Diff line number	Diff line change
`@@ -188,7 +188,7 @@ func (rd *ReportData) RecommendationsTable() [][]string {`
`188`	`188`	`implemented := "N/A"`
`189`	`189`	`typeIsDeployed := false`
`190`	`190`	`for _, resType := range rd.ResourceTypeCount {`
`191`		`- if strings.ToLower(resType.ResourceType) == strings.ToLower(r.ResourceType) {`
	`191`	`+ if strings.EqualFold(resType.ResourceType, r.ResourceType) {`
`192`	`192`	`typeIsDeployed = true`
`193`	`193`	`break`
`194`	`194`	`}`