Add Snyk rules and improve audit command

nlangerdevtbg · nlangerdevtbg · commit a9d70421a04e · 2026-02-27T19:18:41.000Z
Add Snyk security guidance and editor settings, update ignore list and README formatting, and make audit command more robust.

- Added .cursor/rules/snyk_rules.mdc with Snyk code-scan guidance for new code.
- Added .vscode/settings.json to enable Snyk auto-select organization.
- Updated .gitignore to include Snyk rules and coverage-html directory.
- Fixed README table-of-contents list formatting and a minor wording change.
- Updated src/Commands/WardenAuditCommand.php to: detect and use output-&gt;isSilent() when available (Symfony Console 7.2+/Laravel 11+), fall back to using !isVerbose() for older versions, and handle empty/null audit service names by falling back to "Unknown service". These changes improve compatibility and error messaging.
diff --git a/.cursor/rules/snyk_rules.mdc b/.cursor/rules/snyk_rules.mdc
@@ -0,0 +1,14 @@
+---
+alwaysApply: true
+always_on: true
+trigger: always_on
+applyTo: "**"
+description: Snyk Security At Inception
+---
+
+# Project security best practices
+
+- Always run snyk_code_scan tool for new first party code that is generated in a Snyk-supported language.
+- If any security issues are found based on newly introduced or modified code or dependencies, attempt to fix the issues using the results context from Snyk.
+- Rescan the code after fixing the issues to ensure that the issues were fixed and that there are no newly introduced issues.
+- Repeat this process until no new issues are found.
diff --git a/.gitignore b/.gitignore
@@ -1,3 +1,6 @@
 .phpunit.cache
 /vendor
-.idea
+.idea
+# Snyk Security Extension - AI Rules (auto-generated)
+.windsurf/rules/snyk_rules.md
+/coverage-html
diff --git a/.vscode/settings.json b/.vscode/settings.json
@@ -0,0 +1,3 @@
+{
+    "snyk.advanced.autoSelectOrganization": true
+}
diff --git a/readme.md b/readme.md
@@ -33,19 +33,19 @@ Perfect for continuous security monitoring and DevOps pipelines.
 
 ## 📋 Table of Contents
 
-- [Installation](#-installation)
-- [Quick Start](#-quick-start)
-- [Command Reference](#-command-reference)
-- [Configuration](#-configuration)
-- [Security Audits](#-security-audits)
-- [Usage Examples](#-usage-examples)
-- [Notifications](#-notifications)
-- [Custom Audits](#-custom-audits)
-- [Scheduling](#-scheduling)
-- [CI/CD Integration](#-cicd-integration)
-- [Advanced Features](#-advanced-features)
-- [FAQ](#-faq)
-- [Troubleshooting](#-troubleshooting)
+- [Installation](#installation)
+- [Quick Start](#quick-start)
+- [Command Reference](#command-reference)
+- [Configuration](#configuration)
+- [Security Audits](#security-audits)
+- [Usage Examples](#usage-examples)
+- [Notifications](#notifications)
+- [Custom Audits](#custom-audits)
+- [Scheduling](#scheduling)
+- [CI/CD Integration](#cicd-integration)
+- [Advanced Features](#advanced-features)
+- [FAQ](#faq)
+- [Troubleshooting](#troubleshooting)
 
 ---
 
@@ -516,7 +516,7 @@ pipeline {
 ],
 ```
 
-> **Output & severity:** Use `--output` and `--severity` CLI options (not config). See [Command Reference](#-command-reference) below.
+> **Output & severity:** Use `--output` and `--severity` CLI options (not config). See [Command Reference](#-command-reference) above.
 
 ---
 
diff --git a/src/Commands/WardenAuditCommand.php b/src/Commands/WardenAuditCommand.php
@@ -62,7 +62,14 @@ protected function shouldSuppressNotifications(): bool
         if ($this->option('no-notify')) {
             return true;
         }
-        return $this->output->isSilent();
+
+        // Check if isSilent() exists (Symfony Console 7.2+/Laravel 11+)
+        if (method_exists($this->output, 'isSilent')) {
+            return $this->output->isSilent();
+        }
+
+        // Fallback for older Symfony Console versions
+        return !$this->output->isVerbose();
     }
 
     /**
@@ -316,9 +323,10 @@ protected function initializeAuditServices(): array
      */
     protected function handleAuditFailure(AuditServiceInterface $auditService): void
     {
-        $serviceName = $auditService instanceof \Dgtlss\Warden\Services\Audits\AbstractAuditService || $auditService instanceof CustomAuditWrapper
-            ? $auditService->getName()
-            : 'Unknown service';
+        $serviceName = $auditService->getName();
+        if ($serviceName === '' || $serviceName === null) {
+            $serviceName = 'Unknown service';
+        }
         $this->error($serviceName . ' audit failed to run.');
         if ($auditService instanceof ComposerAuditService) {
             $findings = $auditService->getFindings();

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+{`
	`2`	`+ "snyk.advanced.autoSelectOrganization": true`
	`3`	`+}`