Merge pull request #8 from mona-actions:amenocal/branch-protection

Adds branch protection and webhook count

Author: pmartindev

README.md

@@ -132,7 +132,9 @@ gh migration-validator export \
     "tags": 8,
     "releases": 3,
     "commits": 150,
-    "latest_commit_sha": "abc123def456"
+    "latest_commit_sha": "abc123def456",
+    "branch_protection_rules": 4,
+    "webhooks": 2
   }
 }
 ```
@@ -217,6 +219,8 @@ The tool compares the following metrics between source and target repositories:
 - **Tags**: Total count of Git tags
 - **Releases**: Total count of GitHub releases
 - **Commits**: Total commit count on default branch
+- **Branch Protection Rules**: Total count of branch protection rules configured for the repository
+- **Webhooks**: Total count of active repository webhooks
 - **Latest Commit SHA**: Ensures both repositories have the same latest commit in default branch
 
 ## Validation Results

internal/api/api.go

@@ -481,3 +481,87 @@ func (api *GitHubAPI) GetLatestCommitHash(clientType ClientType, owner, name str
 
 	return query.Repository.DefaultBranchRef.Target.Commit.OID, nil
 }
+
+// GetBranchProtectionRulesCount retrieves the total count of branch protection rules for a repository using GraphQL
+func (api *GitHubAPI) GetBranchProtectionRulesCount(clientType ClientType, owner, name string) (int, error) {
+	ctx := context.Background()
+
+	var query struct {
+		Repository struct {
+			NameWithOwner         string
+			BranchProtectionRules struct {
+				TotalCount int
+			}
+		} `graphql:"repository(owner: $owner, name: $name)"`
+	}
+
+	variables := map[string]interface{}{
+		"owner": githubv4.String(owner),
+		"name":  githubv4.String(name),
+	}
+
+	var client *RateLimitAwareGraphQLClient
+	var clientName string
+
+	switch clientType {
+	case SourceClient:
+		client = api.sourceGraphClient
+		clientName = "source"
+	case TargetClient:
+		client = api.targetGraphClient
+		clientName = "target"
+	default:
+		return 0, fmt.Errorf("invalid client type")
+	}
+
+	err := client.Query(ctx, &query, variables)
+	if err != nil {
+		return 0, fmt.Errorf("failed to query %s repository branch protection rules count: %v", clientName, err)
+	}
+
+	return query.Repository.BranchProtectionRules.TotalCount, nil
+}
+
+// GetWebhookCount retrieves the count of active webhooks for a repository using REST API
+func (api *GitHubAPI) GetWebhookCount(clientType ClientType, owner, name string) (int, error) {
+	ctx := context.Background()
+
+	var client *github.Client
+	var clientName string
+
+	switch clientType {
+	case SourceClient:
+		client = api.sourceClient
+		clientName = "source"
+	case TargetClient:
+		client = api.targetClient
+		clientName = "target"
+	default:
+		return 0, fmt.Errorf("invalid client type")
+	}
+
+	// List all webhooks for the repository
+	opts := &github.ListOptions{PerPage: 100}
+	var activeWebhookCount int
+
+	for {
+		webhooks, resp, err := client.Repositories.ListHooks(ctx, owner, name, opts)
+		if err != nil {
+			return 0, fmt.Errorf("failed to query %s repository webhook count: %v", clientName, err)
+		}
+
+		// Count only active webhooks
+		for _, webhook := range webhooks {
+			if webhook.Active != nil && *webhook.Active {
+				activeWebhookCount++
+			}
+		}
+
+		if resp.NextPage == 0 {
+			break
+		}
+		opts.Page = resp.NextPage
+	}
+
+	return activeWebhookCount, nil
+}

internal/api/api_test.go

@@ -687,3 +687,213 @@ func TestPRCounts_TotalCalculation(t *testing.T) {
 		})
 	}
 }
+
+func TestGetBranchProtectionRulesCount(t *testing.T) {
+	viper.Set("SOURCE_TOKEN", "source-token")
+	viper.Set("TARGET_TOKEN", "target-token")
+
+	tests := []struct {
+		name       string
+		clientType ClientType
+		owner      string
+		repo       string
+		wantError  bool
+	}{
+		{
+			name:       "source client valid request",
+			clientType: SourceClient,
+			owner:      "testowner",
+			repo:       "testrepo",
+			wantError:  true, // Will error in test due to no real connection
+		},
+		{
+			name:       "target client valid request",
+			clientType: TargetClient,
+			owner:      "testowner",
+			repo:       "testrepo",
+			wantError:  true, // Will error in test due to no real connection
+		},
+		{
+			name:       "invalid client type",
+			clientType: ClientType(999),
+			owner:      "testowner",
+			repo:       "testrepo",
+			wantError:  true,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			resetAPI()
+			api := GetAPI()
+
+			count, err := api.GetBranchProtectionRulesCount(tt.clientType, tt.owner, tt.repo)
+
+			if (err != nil) != tt.wantError {
+				t.Errorf("GetBranchProtectionRulesCount() error = %v, wantError %v", err, tt.wantError)
+				return
+			}
+
+			if !tt.wantError && count < 0 {
+				t.Errorf("GetBranchProtectionRulesCount() returned negative count: %d", count)
+			}
+		})
+	}
+}
+
+func TestGitHubAPI_GetWebhookCount(t *testing.T) {
+	tests := []struct {
+		name          string
+		clientType    ClientType
+		owner         string
+		repo          string
+		responseBody  string
+		expectedCount int
+		expectedError bool
+	}{
+		{
+			name:       "successful webhook count - multiple webhooks",
+			clientType: SourceClient,
+			owner:      "testowner",
+			repo:       "testrepo",
+			responseBody: `[
+				{
+					"id": 1,
+					"name": "web",
+					"active": true,
+					"events": ["push", "pull_request"],
+					"config": {
+						"url": "https://example.com/webhook1",
+						"content_type": "json"
+					}
+				},
+				{
+					"id": 2, 
+					"name": "web",
+					"active": true,
+					"events": ["issues"],
+					"config": {
+						"url": "https://example.com/webhook2",
+						"content_type": "json"
+					}
+				}
+			]`,
+			expectedCount: 2,
+			expectedError: false,
+		},
+		{
+			name:          "no webhooks",
+			clientType:    TargetClient,
+			owner:         "testowner",
+			repo:          "testrepo",
+			responseBody:  `[]`,
+			expectedCount: 0,
+			expectedError: false,
+		},
+		{
+			name:       "single webhook",
+			clientType: SourceClient,
+			owner:      "testowner",
+			repo:       "testrepo",
+			responseBody: `[
+				{
+					"id": 1,
+					"name": "web",
+					"active": true,
+					"events": ["push"],
+					"config": {
+						"url": "https://example.com/webhook",
+						"content_type": "json"
+					}
+				}
+			]`,
+			expectedCount: 1,
+			expectedError: false,
+		},
+		{
+			name:       "mixed active and inactive webhooks - only counts active",
+			clientType: SourceClient,
+			owner:      "testowner",
+			repo:       "testrepo",
+			responseBody: `[
+				{
+					"id": 1,
+					"name": "web",
+					"active": true,
+					"events": ["push"],
+					"config": {
+						"url": "https://example.com/webhook1",
+						"content_type": "json"
+					}
+				},
+				{
+					"id": 2,
+					"name": "web",
+					"active": false,
+					"events": ["pull_request"],
+					"config": {
+						"url": "https://example.com/webhook2",
+						"content_type": "json"
+					}
+				},
+				{
+					"id": 3,
+					"name": "web",
+					"active": true,
+					"events": ["issues"],
+					"config": {
+						"url": "https://example.com/webhook3",
+						"content_type": "json"
+					}
+				}
+			]`,
+			expectedCount: 2,
+			expectedError: false,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			// Create mock transport that returns the test response
+			mockTransport := &mockRoundTripper{
+				roundTripFunc: func(req *http.Request) (*http.Response, error) {
+					// Verify this is a webhook list request
+					if !strings.Contains(req.URL.Path, "/repos/"+tt.owner+"/"+tt.repo+"/hooks") {
+						t.Errorf("Expected webhook API endpoint, got: %s", req.URL.Path)
+					}
+
+					return &http.Response{
+						StatusCode: 200,
+						Body:       io.NopCloser(strings.NewReader(tt.responseBody)),
+						Header:     make(http.Header),
+					}, nil
+				},
+			}
+
+			api := createTestAPI(mockTransport)
+			count, err := api.GetWebhookCount(tt.clientType, tt.owner, tt.repo)
+
+			if tt.expectedError {
+				if err == nil {
+					t.Errorf("Expected error, but got none")
+				}
+			} else {
+				if err != nil {
+					t.Errorf("Unexpected error: %v", err)
+				}
+				if count != tt.expectedCount {
+					t.Errorf("Expected count %d, got %d", tt.expectedCount, count)
+				}
+			}
+		})
+	}
+}
+
+// mockRoundTripper implements http.RoundTripper for testing
+type mockRoundTripper struct {
+	roundTripFunc func(req *http.Request) (*http.Response, error)
+}
+
+func (m *mockRoundTripper) RoundTrip(req *http.Request) (*http.Response, error) {
+	return m.roundTripFunc(req)
+}

internal/export/export.go

@@ -128,6 +128,8 @@ func exportToCSV(data ExportData, filename string) error {
 		"releases_count",
 		"commits_count",
 		"latest_commit_sha",
+		"branch_protection_rules_count",
+		"webhooks_count",
 	}
 	if err := writer.Write(header); err != nil {
 		return fmt.Errorf("failed to write CSV header: %w", err)
@@ -155,6 +157,8 @@ func exportToCSV(data ExportData, filename string) error {
 		fmt.Sprintf("%d", data.Repository.Releases),
 		fmt.Sprintf("%d", data.Repository.CommitCount),
 		data.Repository.LatestCommitSHA,
+		fmt.Sprintf("%d", data.Repository.BranchProtectionRules),
+		fmt.Sprintf("%d", data.Repository.Webhooks),
 	}
 	if err := writer.Write(record); err != nil {
 		return fmt.Errorf("failed to write CSV record: %w", err)