Add ruff linter (#1979)

* Add ruff linter

* Fix reported ruff issues

* Add ruff config in pyproject.toml

Author: okorach

cli/config.py

@@ -21,7 +21,7 @@
 """
     Exports SonarQube platform configuration as JSON
 """
-from typing import TextIO, Optional
+from typing import TextIO
 from threading import Thread
 from queue import Queue
 

conf/ruff2sonar.py

@@ -0,0 +1,99 @@
+#!/usr/bin/env python3
+#
+# sonar-tools
+# Copyright (C) 2025 Olivier Korach
+# mailto:olivier.korach AT gmail DOT com
+#
+# This program is free software; you can redistribute it and/or
+# modify it under the terms of the GNU Lesser General Public
+# License as published by the Free Software Foundation; either
+# version 3 of the License, or (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+# Lesser General Public License for more details.
+#
+# You should have received a copy of the GNU Lesser General Public License
+# along with this program; if not, write to the Free Software Foundation,
+# Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
+#
+"""
+
+    Converts Ruff report format to Sonar external issues format
+
+"""
+import sys
+import json
+import re
+
+TOOLNAME = "ruff"
+
+TRIVY_TO_MQR_MAPPING = {"CRITICAL": "BLOCKER"}
+MAPPING = {"LOW": "MINOR", "MEDIUM": "MAJOR", "HIGH": "CRITICAL", "BLOCKER": "BLOCKER"}
+
+
+def main() -> None:
+    """Main script entry point"""
+    rules_dict = {}
+    issue_list = {}
+    lines = sys.stdin.read().splitlines()
+    i = 0
+    nblines = len(lines)
+    while i < nblines:
+        line = lines[i]
+        i += 1
+        # Search for pattern like "F401 [*] `sys` imported but unused"
+        if not (m := re.match(r"^([A-Za-z0-9]+) (\[\*\]) (.+)$", line)):
+            continue
+        rule_id = m.group(1)
+        message = m.group(3)
+        line = lines[i]
+        i += 1
+        # Search for pattern like "   --> cli/cust_measures.py:28:8"
+        if not (m := re.match(r"^\s*--> ([^:]+):(\d+):(\d+)$", line)):
+            continue
+        file_path = m.group(1)
+        line_no = int(m.group(2))
+
+        # Search for "   |        ^^^" pattern"
+        while i < nblines and not (m := re.match(r"^\s*\|\s(\s*)(\^+)", lines[i])):
+            i += 1
+        if not m:
+            continue
+        start_col = len(m.group(1))
+        end_col = start_col + len(m.group(2))
+
+        sonar_issue = {
+            "ruleId": f"{TOOLNAME}:{rule_id}",
+            "effortMinutes": 5,
+            "primaryLocation": {
+                "message": message,
+                "filePath": file_path,
+                "textRange": {
+                    "startLine": line_no,
+                    "endLine": line_no,
+                    "startColumn": start_col,
+                    "endColumn": end_col,
+                },
+            },
+        }
+
+        issue_list[f"{rule_id} - {message}"] = sonar_issue
+        rules_dict[f"{TOOLNAME}:{rule_id}"] = {
+            "id": f"{TOOLNAME}:{rule_id}",
+            "name": f"{TOOLNAME}:{rule_id}",
+            "description": message,
+            "engineId": TOOLNAME,
+            "type": "CODE_SMELL",
+            "severity": "MAJOR",
+            "cleanCodeAttribute": "LOGICAL",
+            "impacts": [{"softwareQuality": "MAINTAINABILITY", "severity": "MEDIUM"}],
+        }
+
+    external_issues = {"rules": list(rules_dict.values()), "issues": list(issue_list.values())}
+    print(json.dumps(external_issues, indent=3, separators=(",", ": ")))
+
+
+if __name__ == "__main__":
+    main()

conf/run_linters.sh

@@ -31,9 +31,20 @@ pylintReport="$buildDir/pylint-report.out"
 flake8Report="$buildDir/flake8-report.out"
 shellcheckReport="$buildDir/external-issues-shellcheck.json"
 trivyReport="$buildDir/external-issues-trivy.json"
+ruffReport="$buildDir/external-issues-ruff.json"
 [ ! -d "$buildDir" ] && mkdir "$buildDir"
 # rm -rf -- ${buildDir:?"."}/* .coverage */__pycache__ */*.pyc # mediatools/__pycache__  tests/__pycache__
 
+echo "===> Running ruff"
+rm -f "$ruffReport"
+ruff check . | tee "$buildDir/ruff-report.txt" | "$CONFDIR"/ruff2sonar.py >"$ruffReport"
+re=$?
+if [ "$re" == "32" ]; then
+    >&2 echo "ERROR: pylint execution failed, errcode $re, aborting..."
+    exit $re
+fi
+cat "$buildDir/ruff-report.txt"
+
 echo "===> Running pylint"
 rm -f "$pylintReport"
 pylint --rcfile "$CONFDIR"/pylintrc "$ROOTDIR"/*.py "$ROOTDIR"/*/*.py -r n --msg-template="{path}:{line}: [{msg_id}({symbol}), {obj}] {msg}" | tee "$pylintReport"
@@ -46,19 +57,21 @@ fi
 echo "===> Running flake8"
 rm -f "$flake8Report"
 # See .flake8 file for settings
-flake8 --config "$CONFIG/.flake8" "$ROOTDIR" >"$flake8Report"
+flake8 --config "$CONFIG/.flake8" "$ROOTDIR" | tee "$flake8Report"
 
 if [ "$localbuild" = "true" ]; then
     echo "===> Running shellcheck"
-    shellcheck "$ROOTDIR"/*.sh "$ROOTDIR"/*/*.sh -s bash -f json | "$CONFDIR"/shellcheck2sonar.py >"$shellcheckReport"
+    shellcheck "$ROOTDIR"/*.sh "$ROOTDIR"/*/*.sh -s bash -f json | tee "$buildDir/shellcheck-report.txt" | "$CONFDIR"/shellcheck2sonar.py >"$shellcheckReport"
     [ ! -s "$shellcheckReport" ] && rm -f "$shellcheckReport"
+    cat "$buildDir/shellcheck-report.txt"
 
     echo "===> Running checkov"
     checkov -d . --framework dockerfile -o sarif --output-file-path "$buildDir"
 
     echo "===> Running trivy"
     "$CONFDIR"/build.sh docker
     trivy image -f json -o "$buildDir"/trivy_results.json olivierkorach/sonar-tools:latest
+    cat "$buildDir"/trivy_results.json
     python3 "$CONFDIR"/trivy2sonar.py < "$buildDir"/trivy_results.json > "$trivyReport"
     [ ! -s "$trivyReport" ] && rm -f "$trivyReport"
 fi

migration/migration.py

@@ -21,11 +21,9 @@
 """
     Exports SonarQube platform configuration as JSON
 """
-import sys
 
 from cli import options, config
 from sonar import exceptions, errcodes, utilities, version
-import sonar.util.constants as c
 import sonar.logging as log
 from sonar import platform
 

pyproject.toml.bak

@@ -28,4 +28,48 @@ dependencies = [
     "jprops",
     "levenshtein",
     "PyYAML",
-]
+]
+
+[tool.ruff]
+# Set the maximum line length to 150.
+line-length = 150
+
+[tool.ruff.lint]
+# Add the `line-too-long` rule to the enforced rule set. By default, Ruff omits rules that
+# overlap with the use of a formatter, like Black, but we can override this behavior by
+# explicitly adding the rule.
+extend-select = ["E501"]
+select = [
+    # pycodestyle
+    "E",
+    # Pyflakes
+    "F",
+    # pyupgrade
+    "UP",
+    # flake8-bugbear
+    "B",
+    # flake8-simplify
+    "SIM",
+    # isort
+    "I",
+]
+
+exclude = [
+    ".eggs",
+    ".git",
+
+    ".mypy_cache",
+    ".pyenv",
+    ".pytest_cache",
+    ".ruff_cache",
+    ".svn",
+    ".tox",
+    ".venv",
+    ".vscode",
+    "__pypackages__",
+    "_build",
+    "build",
+    "dist",
+    "node_modules",
+    "site-packages"
+]

sonar/applications.py

@@ -23,7 +23,7 @@
 """
 
 from __future__ import annotations
-from typing import Union, Optional
+from typing import Optional
 import re
 import json
 from datetime import datetime

sonar/branches.py

@@ -31,7 +31,6 @@
 from sonar import platform
 from sonar.util import types, cache
 import sonar.logging as log
-import sonar.sqobject as sq
 from sonar import components, settings, exceptions, tasks
 from sonar import projects
 import sonar.utilities as util

sonar/measures.py

@@ -22,7 +22,6 @@
 from __future__ import annotations
 
 import json
-import re
 from http import HTTPStatus
 from requests import RequestException
 from sonar import metrics, exceptions, platform

sonar/metrics.py

@@ -24,7 +24,6 @@
 import json
 from threading import Lock
 
-import sonar.logging as log
 import sonar.platform as pf
 from sonar.util.types import ApiPayload
 from sonar.util import cache

sonar/qualityprofiles.py

@@ -849,7 +849,7 @@ def import_config(endpoint: pf.Platform, config_data: types.ObjectJsonRepr, key_
             qp = futures_map[future]
             try:
                 _ = future.result(timeout=60)
-            except TimeoutError as e:
+            except TimeoutError:
                 log.error(f"Importing {qp} timed out after 60 seconds for {str(future)}.")
             except Exception as e:
                 log.error(f"Exception {str(e)} when importing {qp} or its chilren.")