address copilot feedback

poconnor-cloud · poconnor-cloud · commit 3dcfac87f99f · 2026-04-14T13:12:36.000+01:00
diff --git a/cloudsmith_cli/cli/commands/upstream.py b/cloudsmith_cli/cli/commands/upstream.py
@@ -75,22 +75,28 @@ def build_row(u):
                 )
             )
             row.append(click.style(str(u.get("rsa_key_url", "") or ""), fg="yellow"))
-            row.append(click.style(str(u.get("rsa_verification", "")), fg="yellow"))
             row.append(
-                click.style(str(u.get("rsa_verification_status", "")), fg="yellow")
+                click.style(str(u.get("rsa_verification", "") or ""), fg="yellow")
+            )
+            row.append(
+                click.style(
+                    str(u.get("rsa_verification_status", "") or ""), fg="yellow"
+                )
             )
 
         if upstream_fmt == "deb":
             # `Component`, `Distribution Versions` and `Upstream Distribution` are deb-only
-            row.append(click.style(str(u.get("component", None)), fg="yellow"))
+            row.append(click.style(str(u.get("component", None) or ""), fg="yellow"))
             row.append(
                 click.style(
                     str(maybe_truncate_list(u.get("distro_versions", []))),
                     fg="yellow",
                 )
             )
             row.append(
-                click.style(str(u.get("upstream_distribution", None)), fg="yellow")
+                click.style(
+                    str(u.get("upstream_distribution", None) or ""), fg="yellow"
+                )
             )
 
         if upstream_fmt == "rpm":
diff --git a/cloudsmith_cli/cli/tests/commands/test_upstream.py b/cloudsmith_cli/cli/tests/commands/test_upstream.py
@@ -159,3 +159,69 @@ def test_upstream_commands(
     assert result.exit_code == 0
     result_data = json.loads(result.output)["data"]
     assert not result_data  # We should have no upstreams at this point
+
+
+@pytest.mark.usefixtures("set_api_key_env_var", "set_api_host_env_var")
+def test_alpine_upstream_ls_pretty_rsa_columns(
+    runner, organization, tmp_repository, tmp_path
+):
+    """Pretty-output ls for alpine must render all four RSA columns with correct headers and values.
+
+    Alpine is the only format with RSA verification fields (rsa_key_inline, rsa_key_url,
+    rsa_verification, rsa_verification_status). These are appended to the common column set
+    inside print_upstreams(), so a regression in the branching logic or header list would
+    silently drop or misalign them. This test catches that by asserting against the rendered
+    table text rather than JSON output.
+    """
+    rsa_key_url = "https://www.cloudsmith.io"
+    upstream_config = {
+        "name": "cli-test-upstream-alpine-rsa",
+        "upstream_url": "https://www.cloudsmith.io",
+        "rsa_key_url": rsa_key_url,
+    }
+
+    upstream_config_file = tmp_path / "cli-test-upstream-alpine-rsa.json"
+    upstream_config_file.write_text(json.dumps(upstream_config))
+
+    org_repo = f"{organization}/{tmp_repository['slug']}"
+
+    # Create the upstream and capture its slug_perm for later cleanup
+    create_result = runner.invoke(
+        upstream,
+        args=["alpine", "create", org_repo, str(upstream_config_file), "-F", "json"],
+        catch_exceptions=False,
+    )
+    assert create_result.exit_code == 0
+    slug_perm = json.loads(create_result.output)["data"]["slug_perm"]
+
+    try:
+        # Run ls with default pretty output — the path under test
+        result = runner.invoke(
+            upstream,
+            args=["alpine", "ls", org_repo],
+            catch_exceptions=False,
+        )
+        assert result.exit_code == 0
+
+        # All four RSA column headers must appear in the table header row
+        assert "RSA Key Inline" in result.output
+        assert "RSA Key URL" in result.output
+        assert (
+            "RSA Verification Status" in result.output
+        )  # most specific; covers "RSA Verification" too
+        assert "RSA Verification" in result.output
+
+        # The rsa_key_url value we set must appear in the data row
+        assert rsa_key_url in result.output
+
+        # Common non-RSA headers must still be present (guard against over-trimming)
+        assert "Name" in result.output
+        assert "Upstream Url" in result.output
+        assert "Verify SSL" in result.output
+
+    finally:
+        runner.invoke(
+            upstream,
+            args=["alpine", "delete", f"{org_repo}/{slug_perm}", "-y"],
+            catch_exceptions=False,
+        )

Original file line number	Diff line number	Diff line change
`@@ -75,22 +75,28 @@ def build_row(u):`
`75`	`75`	`)`
`76`	`76`	`)`
`77`	`77`	`row.append(click.style(str(u.get("rsa_key_url", "") or ""), fg="yellow"))`
`78`		`- row.append(click.style(str(u.get("rsa_verification", "")), fg="yellow"))`
`79`	`78`	`row.append(`
`80`		`- click.style(str(u.get("rsa_verification_status", "")), fg="yellow")`
	`79`	`+ click.style(str(u.get("rsa_verification", "") or ""), fg="yellow")`
	`80`	`+ )`
	`81`	`+ row.append(`
	`82`	`+ click.style(`
	`83`	`+ str(u.get("rsa_verification_status", "") or ""), fg="yellow"`
	`84`	`+ )`
`81`	`85`	`)`
`82`	`86`
`83`	`87`	`if upstream_fmt == "deb":`
`84`	`88`	# `Component`, `Distribution Versions` and `Upstream Distribution` are deb-only
`85`		`- row.append(click.style(str(u.get("component", None)), fg="yellow"))`
	`89`	`+ row.append(click.style(str(u.get("component", None) or ""), fg="yellow"))`
`86`	`90`	`row.append(`
`87`	`91`	`click.style(`
`88`	`92`	`str(maybe_truncate_list(u.get("distro_versions", []))),`
`89`	`93`	`fg="yellow",`
`90`	`94`	`)`
`91`	`95`	`)`
`92`	`96`	`row.append(`
`93`		`- click.style(str(u.get("upstream_distribution", None)), fg="yellow")`
	`97`	`+ click.style(`
	`98`	`+ str(u.get("upstream_distribution", None) or ""), fg="yellow"`
	`99`	`+ )`
`94`	`100`	`)`
`95`	`101`
`96`	`102`	`if upstream_fmt == "rpm":`