Skip to content

improving update template + empty folder edge case #6573

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 6 commits into
base: dev
Choose a base branch
from
Open

improving update template + empty folder edge case #6573

wants to merge 6 commits into from
+881 −16

Conversation

@Mzack9999
Copy link
Member

@Mzack9999 Mzack9999 commented Nov 1, 2025
edited by coderabbitai bot
Loading

Proposed changes

Closes #6467

Checklist

  • Pull request is created against the dev branch
  • All checks passed (lint, unit/integration/regression tests etc.) with my changes
  • I have added tests that prove my fix is effective or that my feature works
  • I have added necessary documentation (if appropriate)

Summary by CodeRabbit

  • New Features

    • Automatic removal of orphaned templates during install/update while preserving custom templates.
    • Template index and checksum files are regenerated after updates so on-disk metadata stays consistent; cleanup/regeneration failures are logged as non-fatal warnings.

  • Tests

    • Added comprehensive tests covering orphan cleanup, preservation of custom/non-template files, empty/missing directories, path handling, and metadata regeneration.

@Mzack9999 Mzack9999 self-assigned this Nov 1, 2025
@Mzack9999 Mzack9999 added the Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors. label Nov 1, 2025
@coderabbitai
Copy link
Contributor

coderabbitai bot commented Nov 1, 2025
edited
Loading

Warning

Rate limit exceeded

@Mzack9999 has exceeded the limit for the number of commits or files that can be reviewed per hour. Please wait 3 minutes and 32 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📥 Commits

Reviewing files that changed from the base of the PR and between c8f284e and 54ac317.

⛔ Files ignored due to path filters (1)
  • cmd/nuclei/testget.yaml is excluded by !**/*.yaml
📒 Files selected for processing (1)
  • pkg/catalog/config/template.go (2 hunks)

Walkthrough

The template manager now returns a map of absolute written template paths from writeTemplatesToDisk. After a successful write, the updater removes orphaned on-disk templates not in that map (excluding custom dirs) and regenerates template index and checksum metadata; callers were adapted to the new return signature.

Changes

Cohort / File(s) Summary
Core Template Manager Logic
pkg/installer/template.go		 writeTemplatesToDisk signature changed to return (*mapsutil.SyncLockMap[string, struct{}], error) and records each absolute written path. Added cleanupOrphanedTemplates(dir string, writtenPaths *mapsutil.SyncLockMap[string, struct{}]) error to remove files not in writtenPaths (excluding custom template dirs and non-template files). Added regenerateTemplateMetadata(dir string) error to purge empty dirs and rewrite index and checksum. Updated installTemplatesAt/updateTemplatesAt flows and error propagation to use the new return value and to invoke cleanup and metadata regeneration.
Tests
pkg/installer/template_test.go		 Added TestCleanupOrphanedTemplates and TestRegenerateTemplateMetadata covering orphan removal, preservation of custom templates, skipping non-template files, handling empty/non-existent dirs, relative vs absolute written paths, and index/checksum regeneration. Added imports for file and maps utilities used by tests.

Sequence Diagram(s)

sequenceDiagram
    participant Updater as TemplateManager
    participant Writer as writeTemplatesToDisk
    participant Cleaner as cleanupOrphanedTemplates
    participant Metadata as regenerateTemplateMetadata
    participant FS as FileSystem

    Updater->>Writer: download & write templates
    activate Writer
    Note right of Writer #D6EAF8: track each written absolute path\nreturn writtenPaths map
    Writer->>FS: write/update files
    FS-->>Writer: write results
    Writer-->>Updater: writtenPaths, err?
    deactivate Writer

    alt write succeeded
        Updater->>Cleaner: cleanup(dir, writtenPaths)
        activate Cleaner
        Cleaner->>FS: walk templates dir
        FS-->>Cleaner: file entries
        Note right of Cleaner #F9E79F: filter non-templates\nexclude custom dirs\nidentify orphaned files
        Cleaner->>FS: delete orphaned files
        Cleaner-->>Updater: nil or error
        deactivate Cleaner

        Updater->>Metadata: regenerateTemplateMetadata(dir)
        activate Metadata
        Metadata->>FS: ensure dirs, purge empties, rewrite index, checksum
        FS-->>Metadata: success
        Metadata-->>Updater: nil or error
        deactivate Metadata
    end
Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

  • Areas needing extra attention:
    • pkg/installer/template.go — correctness of writtenPaths population and concurrency semantics of mapsutil.SyncLockMap.
    • Path normalization and relative vs absolute handling in cleanup logic.
    • Rules excluding custom template directories and skipping non-template files.
    • regenerateTemplateMetadata — safe removal of empty directories and correctness of index/checksum rewriting.
    • New tests — setup/teardown and assumptions about filesystem layout.

Poem

🐰 I hop and tally each file I write,
Old ghosts I nudge into the night,
I prune the paths, then build the list,
Checksums hum — the templates persist,
A tidy burrow, snug and bright.

Pre-merge checks and finishing touches

❌ Failed checks (1 inconclusive)
Check name Status Explanation Resolution
Title check ❓ Inconclusive The pull request title 'improving update template + empty folder edge case' is related to the changeset but is somewhat vague. While it mentions 'update template' and 'empty folder edge case,' the title doesn't clearly convey the main change—which is implementing cleanup of orphaned templates after updates and regenerating metadata. The phrasing is informal and doesn't provide clear specificity about what the improvement entails. Consider revising the title to be more specific and descriptive, such as 'Cleanup orphaned templates and regenerate metadata after updates' or 'Fix template updates by removing orphaned files and refreshing metadata.' This would better communicate the primary changes to reviewers scanning the pull request history.
✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Linked Issues check ✅ Passed The pull request directly addresses the core coding requirement from issue #6467: fixing template-update behavior where updates leave outdated templates behind instead of properly tracking deletions and renames. The implementation adds orphaned template cleanup via cleanupOrphanedTemplates() and metadata regeneration via regenerateTemplateMetadata(), which aligns with the issue's goal to make the nuclei-templates folder behave like a version control system that tracks renames and deletions correctly.
Out of Scope Changes check ✅ Passed All changes in the pull request are directly scoped to addressing the linked issue #6467. The modifications to pkg/installer/template.go introduce cleanup and metadata regeneration logic specifically for orphaned templates, while the test additions in pkg/installer/template_test.go comprehensively validate the new functionality. No unrelated refactoring, dependency updates, or tangential changes are present.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@Mzack9999 Mzack9999 marked this pull request as ready for review November 1, 2025 17:27
coderabbitai[bot]
coderabbitai bot reviewed Nov 1, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between b625a65 and a01f345.

📒 Files selected for processing (2)
  • pkg/installer/template.go (9 hunks)
  • pkg/installer/template_test.go (2 hunks)
🧰 Additional context used
📓 Path-based instructions (1)
**/*.go

📄 CodeRabbit inference engine (CLAUDE.md)

**/*.go: Format Go code using go fmt
Run static analysis with go vet

Files:

  • pkg/installer/template_test.go
  • pkg/installer/template.go
🧬 Code graph analysis (2)
pkg/installer/template_test.go (2)
pkg/installer/template.go (2)
  • HideProgressBar (32-32)
  • TemplateManager (70-74)
pkg/catalog/config/nucleiconfig.go (1)
  • DefaultConfig (23-23)
pkg/installer/template.go (2)
pkg/catalog/config/nucleiconfig.go (1)
  • DefaultConfig (23-23)
pkg/catalog/config/template.go (1)
  • IsTemplate (68-82)
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (5)
  • GitHub Check: Release test
  • GitHub Check: Integration tests (windows-latest)
  • GitHub Check: Functional tests (windows-latest)
  • GitHub Check: Integration tests (ubuntu-latest)
  • GitHub Check: Integration tests (macOS-latest)

coderabbitai[bot]
coderabbitai bot reviewed Nov 2, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (2)
pkg/installer/template.go (1)

204-209: Consider removing redundant deletion logic.

After cleanupOrphanedTemplates (line 180) removes orphaned templates and regenerateTemplateMetadata (line 187) rebuilds the checksum, the templates in results.deletions have already been removed by either:

  • Line 340 (for renamed templates with the same ID)
  • cleanupOrphanedTemplates (for deleted templates)

This deletion loop attempts to remove already-deleted files. While the os.IsNotExist check makes it harmless, removing this block would simplify the logic and eliminate confusion.

Consider removing lines 204-209 or adding a comment explaining why this fallback exists (e.g., if there are edge cases where cleanup doesn't catch all deletions).

pkg/installer/template_test.go (1)

440-514: Minor: Clarify test comment.

Line 513 comment states "index should not contain template that was deleted but not cleaned", but template2 was actually cleaned up by cleanupOrphanedTemplates (it wasn't in writtenPaths). The assertion is correct, but the comment could be clearer.

Consider revising the comment to:

require.NotContains(t, index, "test-template-2", "index should not contain orphaned template that was cleaned up")
📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between a01f345 and 20f7afa.

📒 Files selected for processing (2)
  • pkg/installer/template.go (9 hunks)
  • pkg/installer/template_test.go (2 hunks)
🧰 Additional context used
📓 Path-based instructions (1)
**/*.go

📄 CodeRabbit inference engine (CLAUDE.md)

**/*.go: Format Go code using go fmt
Run static analysis with go vet

Files:

  • pkg/installer/template_test.go
  • pkg/installer/template.go
🧠 Learnings (1)
📚 Learning: 2025-07-16T21:27:14.937Z 
Learnt from: hdm
Repo: projectdiscovery/nuclei PR: 6322
File: pkg/templates/compile.go:79-81
Timestamp: 2025-07-16T21:27:14.937Z
Learning: To make the template caching mechanism in pkg/templates/compile.go production-ready, DSLs need to be updated to use runtime options instead of cached variables, rather than restoring the Compile() calls on each request.

Applied to files:

  • pkg/installer/template.go
🧬 Code graph analysis (2)
pkg/installer/template_test.go (3)
pkg/installer/template.go (2)
  • HideProgressBar (32-32)
  • TemplateManager (70-74)
pkg/catalog/config/nucleiconfig.go (1)
  • DefaultConfig (23-23)
pkg/catalog/config/template.go (1)
  • GetNucleiTemplatesIndex (114-158)
pkg/installer/template.go (3)
pkg/catalog/config/nucleiconfig.go (1)
  • DefaultConfig (23-23)
pkg/catalog/config/template.go (2)
  • IsTemplate (68-82)
  • GetNucleiTemplatesIndex (114-158)
pkg/installer/util.go (1)
  • PurgeEmptyDirectories (75-93)
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)
  • GitHub Check: Lint
🔇 Additional comments (7)
pkg/installer/template.go (5)

138-141: LGTM: writtenPaths appropriately discarded for fresh installs.

Fresh installations don't have orphaned templates to clean up, so ignoring the returned writtenPaths is correct.

174-192: Excellent: Metadata regeneration after cleanup addresses previous review feedback.

This implementation correctly addresses the past review comment by regenerating the template index and checksum after cleanupOrphanedTemplates runs, ensuring metadata accurately reflects the cleaned template tree. The error handling appropriately logs warnings without failing the entire update since the core template write and cleanup operations have already succeeded.

300-408: LGTM: writeTemplatesToDisk correctly tracks written paths with proper thread safety.

The signature change and implementation are sound:

  • SyncLockMap provides thread safety for concurrent callback invocations
  • All successfully written paths are tracked (lines 338, 352)
  • Error handling consistently returns (nil, err)
  • Success path returns (writtenPaths, nil)

The returned map enables downstream cleanup of orphaned templates.

410-504: LGTM: cleanupOrphanedTemplates implementation is thorough and robust.

The implementation correctly:

  • Normalizes all paths to absolute for consistent comparison (lines 414-431)
  • Excludes custom template directories (lines 434-440, 463-467)
  • Uses config.IsTemplate to identify template files (line 470)
  • Handles edge cases gracefully (non-existent directory, empty directory)
  • Provides appropriate logging for removed files

506-537: LGTM: regenerateTemplateMetadata correctly rebuilds metadata from current disk state.

The implementation properly:

  • Purges empty directories before regeneration (line 510)
  • Handles edge case where templates directory is purged by recreating it (lines 513-517)
  • Rebuilds index by scanning current templates on disk (lines 520-529)
  • Regenerates checksum file to match current state (lines 532-534)

This ensures metadata files accurately reflect the cleaned template tree.

pkg/installer/template_test.go (2)

104-374: LGTM: Comprehensive test coverage for cleanupOrphanedTemplates.

The test suite thoroughly validates:

  • Core functionality: orphaned template removal while preserving referenced templates
  • Custom template preservation across nested directory structures
  • Non-template file preservation (README, config files, checksums)
  • Edge cases: empty writtenPaths, empty directories, non-existent directories
  • Path handling: relative vs absolute path normalization

All scenarios include proper setup, execution, and assertions.

376-736: LGTM: Excellent test coverage for regenerateTemplateMetadata.

The test suite comprehensively validates:

  • Index and checksum file generation
  • Integration with cleanup (ensures deleted templates excluded from metadata)
  • Empty directory handling and recreation
  • Directory purging behavior
  • End-to-end integration test simulating the complete update flow (lines 574-662)

The integration tests effectively verify that metadata accurately reflects the cleaned template tree, which is critical for the PR's objectives.

coderabbitai[bot]
coderabbitai bot reviewed Nov 3, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🧹 Nitpick comments (1)
pkg/installer/template.go (1)

204-209: Consider removing redundant deletion loop.

The cleanupOrphanedTemplates call at line 180 already removes templates that aren't in the new release. This deletion loop will attempt to remove files that have already been deleted, making it effectively a no-op. While the os.IsNotExist check prevents errors, this code is now redundant and could be removed for clarity.

If you choose to remove it, apply this diff:

 	// summarize all changes
 	results := t.summarizeChanges(oldchecksums, newchecksums)
 
-	// remove deleted templates
-	for _, deletion := range results.deletions {
-		if err := os.Remove(deletion); err != nil && !os.IsNotExist(err) {
-			gologger.Warning().Msgf("failed to remove deleted template %s: %s", deletion, err)
-		}
-	}
-
 	// print summary
📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 20f7afa and 0183c03.

📒 Files selected for processing (2)
  • pkg/installer/template.go (9 hunks)
  • pkg/installer/template_test.go (2 hunks)
🧰 Additional context used
📓 Path-based instructions (1)
**/*.go

📄 CodeRabbit inference engine (CLAUDE.md)

**/*.go: Format Go code using go fmt
Run static analysis with go vet

Files:

  • pkg/installer/template_test.go
  • pkg/installer/template.go
🧠 Learnings (1)
📚 Learning: 2025-07-16T21:27:14.937Z 
Learnt from: hdm
Repo: projectdiscovery/nuclei PR: 6322
File: pkg/templates/compile.go:79-81
Timestamp: 2025-07-16T21:27:14.937Z
Learning: To make the template caching mechanism in pkg/templates/compile.go production-ready, DSLs need to be updated to use runtime options instead of cached variables, rather than restoring the Compile() calls on each request.

Applied to files:

  • pkg/installer/template.go
🧬 Code graph analysis (2)
pkg/installer/template_test.go (3)
pkg/installer/template.go (2)
  • HideProgressBar (32-32)
  • TemplateManager (70-74)
pkg/catalog/config/nucleiconfig.go (1)
  • DefaultConfig (23-23)
pkg/catalog/config/template.go (1)
  • GetNucleiTemplatesIndex (114-158)
pkg/installer/template.go (3)
pkg/catalog/config/nucleiconfig.go (1)
  • DefaultConfig (23-23)
pkg/catalog/config/template.go (2)
  • IsTemplate (68-82)
  • GetNucleiTemplatesIndex (114-158)
pkg/installer/util.go (1)
  • PurgeEmptyDirectories (75-93)
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)
  • GitHub Check: Tests (ubuntu-latest)
  • GitHub Check: Tests (macOS-latest)
  • GitHub Check: Tests (windows-latest)
🔇 Additional comments (8)
pkg/installer/template_test.go (2)

10-11: LGTM! Imports support new test functionality.

The new imports for fileutil and mapsutil are properly aliased and necessary for the new cleanup and metadata tests.

380-748: Excellent test coverage for metadata regeneration.

The test suite comprehensively validates:

  • Index and checksum file generation
  • Cleanup integration with metadata updates
  • Edge cases (empty directories, deleted templates)
  • Path normalization consistency

The integration test (lines 583-674) effectively validates the complete cleanup and metadata regeneration flow.

pkg/installer/template.go (6)

22-22: LGTM! Import supports synchronized path tracking.

The mapsutil import is necessary for the SyncLockMap used to track written template paths during updates.

138-141: Correct handling for fresh installations.

Ignoring writtenPaths during fresh installation is appropriate since there are no pre-existing templates to clean up. The cleanup logic is only needed during updates.

174-192: Well-structured update flow with proper metadata refresh.

The implementation correctly:

  1. Captures written paths from the template write operation
  2. Cleans up orphaned templates not present in the new release
  3. Regenerates metadata (index and checksum) after cleanup to ensure consistency

The non-fatal error handling for cleanup and metadata regeneration is appropriate, allowing the update to succeed even if these operations encounter issues.

Based on past review comments.

300-408: Well-implemented path tracking in template writes.

The changes correctly:

  • Return a synchronized map of written paths for downstream cleanup
  • Track paths only after successful writes (lines 338, 352)
  • Handle errors appropriately by returning (nil, err)
  • Update all call sites to accommodate the new signature

The thread-safe SyncLockMap is appropriate for the callback-based download mechanism.

410-512: Robust orphaned template cleanup implementation.

The implementation handles:

  • Path normalization for cross-platform compatibility (using filepath.Clean)
  • Non-existent directories gracefully
  • Exclusion of custom template directories
  • Filtering to only process template files via config.IsTemplate
  • Proper error handling with debug logging for removed files

The function correctly identifies and removes templates that exist locally but weren't part of the new release.

514-545: Properly implemented metadata regeneration.

The function correctly:

  1. Purges empty directories left after cleanup
  2. Ensures the templates directory exists (handles the edge case where all templates were removed)
  3. Removes the old index file and regenerates it from current disk state
  4. Regenerates the checksum file

This ensures the index and checksum files accurately reflect the templates on disk after cleanup operations.

coderabbitai[bot]
coderabbitai bot reviewed Nov 3, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 20f7afa and 0183c03.

📒 Files selected for processing (2)
  • pkg/installer/template.go (9 hunks)
  • pkg/installer/template_test.go (2 hunks)
🧰 Additional context used
📓 Path-based instructions (1)
**/*.go

📄 CodeRabbit inference engine (CLAUDE.md)

**/*.go: Format Go code using go fmt
Run static analysis with go vet

Files:

  • pkg/installer/template_test.go
  • pkg/installer/template.go
🧠 Learnings (1)
📚 Learning: 2025-07-16T21:27:14.937Z 
Learnt from: hdm
Repo: projectdiscovery/nuclei PR: 6322
File: pkg/templates/compile.go:79-81
Timestamp: 2025-07-16T21:27:14.937Z
Learning: To make the template caching mechanism in pkg/templates/compile.go production-ready, DSLs need to be updated to use runtime options instead of cached variables, rather than restoring the Compile() calls on each request.

Applied to files:

  • pkg/installer/template.go
🧬 Code graph analysis (2)
pkg/installer/template_test.go (3)
pkg/installer/template.go (2)
  • HideProgressBar (32-32)
  • TemplateManager (70-74)
pkg/catalog/config/nucleiconfig.go (1)
  • DefaultConfig (23-23)
pkg/catalog/config/template.go (1)
  • GetNucleiTemplatesIndex (114-158)
pkg/installer/template.go (2)
pkg/catalog/config/template.go (2)
  • IsTemplate (68-82)
  • GetNucleiTemplatesIndex (114-158)
pkg/installer/util.go (1)
  • PurgeEmptyDirectories (75-93)
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)
  • GitHub Check: Lint

coderabbitai[bot]
coderabbitai bot reviewed Nov 3, 2025
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

♻️ Duplicate comments (1)
pkg/installer/template.go (1)

517-525: Critical: PurgeEmptyDirectories will panic if directory doesn't exist.

Calling PurgeEmptyDirectories(dir) before ensuring the directory exists can cause a panic. When filepath.WalkDir encounters a missing root, it passes nil for the DirEntry, and the callback in util.go attempts d.IsDir(), triggering a nil pointer dereference.

Apply this fix to ensure the directory exists before purging:

 func (t *TemplateManager) regenerateTemplateMetadata(dir string) error {
-	// Purge empty directories that may have been left after cleanup
-	PurgeEmptyDirectories(dir)
-
-	// Ensure templates directory exists (it may have been purged if empty)
+	// Ensure the directory exists before purging; WalkDir panics on a missing root.
 	if !fileutil.FolderExists(dir) {
 		if err := os.MkdirAll(dir, 0755); err != nil {
-			return errkit.Wrapf(err, "failed to recreate templates directory %s after purge", dir)
+			return errkit.Wrapf(err, "failed to create templates directory %s", dir)
 		}
 	}
+
+	// Purge empty directories that may have been left after cleanup.
+	PurgeEmptyDirectories(dir)
+
+	// Purge may remove the root if it became empty; recreate it for metadata outputs.
+	if !fileutil.FolderExists(dir) {
+		if err := os.MkdirAll(dir, 0755); err != nil {
+			return errkit.Wrapf(err, "failed to recreate templates directory %s after purge", dir)
+		}
+	}
🧹 Nitpick comments (1)
pkg/installer/template.go (1)

205-209: Consider verifying if this deletion loop is still necessary.

With the new cleanupOrphanedTemplates logic at line 180, orphaned templates are already removed. However, cleanupOrphanedTemplates only processes template files (via config.IsTemplate check), while results.deletions may include non-template files. Please verify whether this code is still needed for non-template files or if it can be removed to simplify the logic.

If this code is no longer needed, consider removing it:

-	// remove deleted templates
-	for _, deletion := range results.deletions {
-		if err := os.Remove(deletion); err != nil && !os.IsNotExist(err) {
-			gologger.Warning().Msgf("failed to remove deleted template %s: %s", deletion, err)
-		}
-	}
-
📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0183c03 and c8f284e.

📒 Files selected for processing (1)
  • pkg/installer/template.go (9 hunks)
🧰 Additional context used
📓 Path-based instructions (1)
**/*.go

📄 CodeRabbit inference engine (CLAUDE.md)

**/*.go: Format Go code using go fmt
Run static analysis with go vet

Files:

  • pkg/installer/template.go
🧠 Learnings (1)
📚 Learning: 2025-07-16T21:27:14.937Z 
Learnt from: hdm
Repo: projectdiscovery/nuclei PR: 6322
File: pkg/templates/compile.go:79-81
Timestamp: 2025-07-16T21:27:14.937Z
Learning: To make the template caching mechanism in pkg/templates/compile.go production-ready, DSLs need to be updated to use runtime options instead of cached variables, rather than restoring the Compile() calls on each request.

Applied to files:

  • pkg/installer/template.go
🧬 Code graph analysis (1)
pkg/installer/template.go (3)
pkg/catalog/config/nucleiconfig.go (1)
  • DefaultConfig (23-23)
pkg/catalog/config/template.go (2)
  • IsTemplate (68-82)
  • GetNucleiTemplatesIndex (114-158)
pkg/installer/util.go (1)
  • PurgeEmptyDirectories (75-93)
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)
  • GitHub Check: Tests (ubuntu-latest)
  • GitHub Check: Tests (windows-latest)
🔇 Additional comments (5)
pkg/installer/template.go (5)

22-22: LGTM: Signature changes and return value handling are correct.

The updated writeTemplatesToDisk signature and caller adaptations are appropriate. Discarding the written paths map in installTemplatesAt is fine since no cleanup is needed for fresh installs, while capturing it in updateTemplatesAt enables the new orphan cleanup logic.

Also applies to: 138-141, 174-177, 300-302

312-312: LGTM: Written paths tracking is comprehensive.

The implementation correctly tracks all successfully written templates, including both relocated templates and new/updated templates. The error handling properly returns nil for the map on failures and the populated writtenPaths on success.

Also applies to: 337-338, 348-353, 357-407

410-512: LGTM: Orphan cleanup logic is solid.

The implementation correctly identifies and removes templates that exist locally but were not part of the new release. Path normalization is consistent, custom directories are properly excluded, and error handling is appropriate.

179-192: LGTM: Metadata regeneration after cleanup addresses previous concern.

The new flow correctly regenerates template index and checksum files after orphan cleanup, ensuring metadata accurately reflects the cleaned template tree. This properly addresses the issue raised in the first previous review comment.

540-550: LGTM: Index filtering adds robustness.

Filtering the regenerated index to only include paths that actually exist on disk is good defensive programming, especially for handling Windows file deletion timing issues.

@Mzack9999
Copy link
Member Author

@coderabbitai resolve

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Nov 3, 2025

✅ Actions performed

Comments resolved.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

Assignees

@Mzack9999 Mzack9999

Labels

Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Manage nuclei-templates with version control system (with git or something similar)

2 participants

@Mzack9999