charieswei
/
TradingAgents
mirror of https://github.com/TauricResearch/TradingAgents.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
TradingAgents/.claude/hooks/auto_add_to_regression.py

661 lines
20 KiB
Python
Executable File
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

#!/usr/bin/env python3
"""
Auto-add to regression suite after successful implementation.
This hook automatically grows the regression/progression test suite by:
1. Detecting commit type (feature, bugfix, optimization)
2. Auto-creating appropriate regression test
3. Adding to tests/regression/ or tests/progression/
4. Ensuring tests pass NOW (baseline established)
Hook: PostToolUse after Write to src/**/*.py (when tests are passing)
Types of regression tests:
- Feature: Ensures new feature keeps working
- Bugfix: Ensures bug never returns
- Optimization: Prevents performance regression (baseline)
Usage:
Triggered automatically by .claude/settings.json hook configuration
Args from hook: file_paths, user_prompt
"""
import html
import keyword
import subprocess
import sys
from datetime import datetime
from pathlib import Path
from string import Template
from typing import Optional, Tuple
# ============================================================================
# Configuration
# ============================================================================
PROJECT_ROOT = Path(__file__).parent.parent.parent
SRC_DIR = PROJECT_ROOT / "src" / "[project_name]"
TESTS_DIR = PROJECT_ROOT / "tests"
REGRESSION_DIR = TESTS_DIR / "regression"
PROGRESSION_DIR = TESTS_DIR / "progression"
# Commit type detection keywords
BUGFIX_KEYWORDS = ["fix bug", "bug fix", "issue", "error", "crash", "broken"]
OPTIMIZATION_KEYWORDS = ["optimize", "performance", "faster", "speed", "improve"]
FEATURE_KEYWORDS = ["implement", "add feature", "new", "create"]
# ============================================================================
# Helper Functions
# ============================================================================
def validate_python_identifier(identifier: str) -> str:
"""
Validate that a string is a safe Python identifier.
Security: Prevents code injection via malicious module/class names.
Validates:
- Not empty
- Not a Python keyword
- Not a dangerous built-in (exec, eval, etc.)
- Valid Python identifier (alphanumeric + underscore)
- Doesn't start with digit
- No dunder methods (security risk)
- Length <= 100 characters
- No special characters (XSS attack vectors)
Args:
identifier: String to validate as Python identifier
Returns:
The validated identifier (unchanged if valid)
Raises:
ValueError: If identifier is invalid or unsafe
"""
# Check for empty string
if not identifier:
raise ValueError("Identifier cannot be empty")
# Check length
if len(identifier) > 100:
raise ValueError(f"Identifier too long (max 100 characters): {len(identifier)}")
# Check for Python keywords
if keyword.iskeyword(identifier):
raise ValueError(f"Cannot use Python keyword as identifier: {identifier}")
# Check for dangerous built-in functions (security risk)
dangerous_builtins = ["exec", "eval", "compile", "__import__", "open", "input"]
if identifier in dangerous_builtins:
raise ValueError(f"Invalid identifier: dangerous built-in not allowed: {identifier}")
# Check for dunder methods (security risk)
if identifier.startswith("__") and identifier.endswith("__"):
raise ValueError(f"Invalid identifier: dunder methods not allowed: {identifier}")
# Check if valid Python identifier (alphanumeric + underscore only)
if not identifier.isidentifier():
raise ValueError(f"Invalid identifier: must be valid Python identifier: {identifier}")
return identifier
def sanitize_user_description(description: str) -> str:
"""
Sanitize user description to prevent XSS attacks.
Security: Prevents XSS via HTML entity encoding.
Operations:
- Escape backslashes FIRST (critical order!)
- HTML entity encoding (< > & " ')
- Remove control characters (except \n \t)
- Truncate to 500 characters max
Args:
description: User-provided description string
Returns:
Sanitized description safe for embedding in generated code
"""
# Handle empty string
if not description:
return ""
# Step 1: Escape backslashes FIRST (before other escaping)
# This prevents double-escaping issues
sanitized = description.replace("\\", "\\\\")
# Step 2: HTML entity encoding (escapes < > & " ')
# This prevents XSS attacks via HTML/script injection
sanitized = html.escape(sanitized, quote=True)
# Step 3: Remove control characters (except newline and tab)
# This prevents terminal injection and other control character attacks
sanitized = "".join(
char for char in sanitized
if char >= " " or char in ["\n", "\t"]
)
# Step 4: Truncate to max length
max_length = 500
if len(sanitized) > max_length:
sanitized = sanitized[:max_length - 3] + "..."
return sanitized
def detect_commit_type(user_prompt: str) -> str:
"""
Detect commit type from user prompt.
Returns: 'bugfix', 'optimization', 'feature', or 'unknown'
"""
prompt_lower = user_prompt.lower()
if any(kw in prompt_lower for kw in BUGFIX_KEYWORDS):
return "bugfix"
elif any(kw in prompt_lower for kw in OPTIMIZATION_KEYWORDS):
return "optimization"
elif any(kw in prompt_lower for kw in FEATURE_KEYWORDS):
return "feature"
else:
return "unknown"
def check_tests_passing(file_path: Path) -> Tuple[bool, str]:
"""Check if tests for this module are passing."""
module_name = file_path.stem
test_file = TESTS_DIR / "unit" / f"test_{module_name}.py"
if not test_file.exists():
return (False, "No tests exist")
try:
result = subprocess.run(
["python", "-m", "pytest", str(test_file), "-v", "--tb=short"],
capture_output=True,
text=True,
timeout=60,
)
if result.returncode == 0:
return (True, "All tests passing")
else:
return (False, f"Tests failing:\n{result.stdout}")
except subprocess.TimeoutExpired:
return (False, "Error running tests: TimeoutExpired - tests took longer than 60 seconds")
except FileNotFoundError as e:
return (False, f"Error running tests: FileNotFoundError - {e}")
except subprocess.CalledProcessError as e:
return (False, f"Error running tests: CalledProcessError - {e}")
except Exception as e:
return (False, f"Error running tests: {e}")
def generate_feature_regression_test(file_path: Path, user_prompt: str) -> Tuple[Path, str]:
"""
Generate regression test for a new feature.
Ensures the feature keeps working in future.
Security: Uses validation + sanitization + Template to prevent code injection.
"""
# SECURITY: Check for path traversal in raw path before normalization
if ".." in str(file_path):
raise ValueError(f"Invalid identifier: path traversal detected in {file_path}")
# SECURITY: Validate module name is safe Python identifier
module_name = validate_python_identifier(file_path.stem)
parent_name = validate_python_identifier(file_path.parent.name)
timestamp = datetime.now().strftime("%Y%m%d")
test_file = REGRESSION_DIR / f"test_feature_{module_name}_{timestamp}.py"
# SECURITY: Sanitize user description (XSS prevention)
# Truncate to 200 chars, add indicator if truncated
desc_to_sanitize = user_prompt[:200]
if len(user_prompt) > 200:
desc_to_sanitize += "..."
feature_desc = sanitize_user_description(desc_to_sanitize)
# SECURITY: Use Template instead of f-string (prevents code injection)
template = Template('''"""
Regression test: Feature should continue to work.
Feature: $feature_desc
Implementation: $file_path
Created: $created_time
Purpose:
Ensures this feature continues to work as implemented.
If this test fails in future, the feature has regressed.
"""
import pytest
from pathlib import Path
from $parent_name.$module_name import *
def test_feature_baseline():
"""
Baseline test: Feature should work with standard inputs.
This test captures the CURRENT working state of the feature.
If it fails later, something broke the feature.
"""
# TODO: Add actual test based on feature
# This is a placeholder - test-master should generate real tests
# Example structure:
# 1. Call the main function/class with typical inputs
# 2. Assert expected behavior
# 3. Verify output/state is correct
pass # Placeholder
def test_feature_edge_cases():
"""
Edge case test: Feature should handle edge cases correctly.
Captures edge case behavior that was working.
"""
# TODO: Add edge case tests
pass # Placeholder
# Mark as regression test
pytestmark = pytest.mark.regression
''')
test_content = template.safe_substitute(
feature_desc=feature_desc,
file_path=file_path,
created_time=datetime.now().strftime("%Y-%m-%d %H:%M:%S"),
parent_name=parent_name,
module_name=module_name,
)
return (test_file, test_content)
def generate_bugfix_regression_test(file_path: Path, user_prompt: str) -> Tuple[Path, str]:
"""
Generate regression test for a bug fix.
Ensures the specific bug never returns.
Security: Uses validation + sanitization + Template to prevent code injection.
"""
# SECURITY: Check for path traversal in raw path before normalization
if ".." in str(file_path):
raise ValueError(f"Invalid identifier: path traversal detected in {file_path}")
# SECURITY: Validate module name is safe Python identifier
module_name = validate_python_identifier(file_path.stem)
parent_name = validate_python_identifier(file_path.parent.name)
timestamp = datetime.now().strftime("%Y%m%d")
test_file = REGRESSION_DIR / f"test_bugfix_{module_name}_{timestamp}.py"
# SECURITY: Sanitize user description (XSS prevention)
# Truncate to 200 chars, add indicator if truncated
desc_to_sanitize = user_prompt[:200]
if len(user_prompt) > 200:
desc_to_sanitize += "..."
bug_desc = sanitize_user_description(desc_to_sanitize)
# SECURITY: Use Template instead of f-string (prevents code injection)
template = Template('''"""
Regression test: Bug should never return.
Bug: $bug_desc
Fixed in: $file_path
Fixed on: $fixed_time
Purpose:
Ensures this specific bug never happens again.
If this test fails, the bug has returned.
"""
import pytest
from pathlib import Path
from $parent_name.$module_name import *
def test_bug_reproduction():
"""
Reproduction test: Steps that previously triggered the bug.
This test reproduces the conditions that caused the bug.
It should PASS now (bug is fixed).
If it FAILS in future, the bug has returned.
"""
# TODO: Reproduce the bug conditions
# Steps that previously caused the bug should now work
# Example structure:
# 1. Set up conditions that triggered the bug
# 2. Call the function/code that was broken
# 3. Assert the CORRECT behavior (not the buggy behavior)
pass # Placeholder
def test_bug_related_edge_cases():
"""
Related edge cases: Similar scenarios that might trigger the bug.
Tests variations of the bug condition.
"""
# TODO: Add related edge case tests
pass # Placeholder
# Mark as regression test
pytestmark = pytest.mark.regression
''')
test_content = template.safe_substitute(
bug_desc=bug_desc,
file_path=file_path,
fixed_time=datetime.now().strftime("%Y-%m-%d %H:%M:%S"),
parent_name=parent_name,
module_name=module_name,
)
return (test_file, test_content)
def generate_performance_baseline_test(file_path: Path, user_prompt: str) -> Tuple[Path, str]:
"""
Generate performance baseline test for an optimization.
Prevents performance regression below current baseline.
Security: Uses validation + sanitization + Template to prevent code injection.
"""
# SECURITY: Check for path traversal in raw path before normalization
if ".." in str(file_path):
raise ValueError(f"Invalid identifier: path traversal detected in {file_path}")
# SECURITY: Validate module name is safe Python identifier
module_name = validate_python_identifier(file_path.stem)
parent_name = validate_python_identifier(file_path.parent.name)
timestamp = datetime.now().strftime("%Y%m%d")
test_file = PROGRESSION_DIR / f"test_perf_{module_name}_{timestamp}.py"
# SECURITY: Sanitize user description (XSS prevention)
# Truncate to 200 chars, add indicator if truncated
desc_to_sanitize = user_prompt[:200]
if len(user_prompt) > 200:
desc_to_sanitize += "..."
optimization_desc = sanitize_user_description(desc_to_sanitize)
# SECURITY: Use Template instead of f-string (prevents code injection)
template = Template('''"""
Performance baseline test: Prevent performance regression.
Optimization: $optimization_desc
Optimized file: $file_path
Baseline set: $baseline_time
Purpose:
Captures current performance as baseline.
Future changes should not degrade performance below this baseline.
"""
import pytest
import time
from pathlib import Path
from $parent_name.$module_name import *
# Store baseline metrics
BASELINE_METRICS = {
"execution_time_seconds": None, # Will be set after first run
"memory_usage_mb": None,
"tolerance_percent": 10, # Allow 10% variance
}
def test_performance_baseline():
"""
Performance baseline: Current performance should not regress.
Measures execution time and ensures future changes don't slow it down.
"""
# TODO: Add actual performance test
# Example structure:
# 1. Measure execution time
# 2. Compare to baseline (if exists)
# 3. Assert within tolerance
start_time = time.time()
# Call the optimized function
# result = optimized_function()
elapsed = time.time() - start_time
# First run: establish baseline
if BASELINE_METRICS["execution_time_seconds"] is None:
BASELINE_METRICS["execution_time_seconds"] = elapsed
print(f"Baseline established: {elapsed:.3f}s")
# Subsequent runs: check regression
else:
baseline = BASELINE_METRICS["execution_time_seconds"]
tolerance = baseline * (BASELINE_METRICS["tolerance_percent"] / 100)
max_allowed = baseline + tolerance
assert elapsed <= max_allowed, (
f"Performance regression detected! "
f"Current: {elapsed:.3f}s > Baseline: {baseline:.3f}s "
f"(+{tolerance:.3f}s tolerance)"
)
print(f"Performance OK: {elapsed:.3f}s (baseline: {baseline:.3f}s)")
pass # Placeholder
# Mark as progression test
pytestmark = pytest.mark.progression
''')
test_content = template.safe_substitute(
optimization_desc=optimization_desc,
file_path=file_path,
baseline_time=datetime.now().strftime("%Y-%m-%d %H:%M:%S"),
parent_name=parent_name,
module_name=module_name,
)
return (test_file, test_content)
def create_regression_test(commit_type: str, file_path: Path, user_prompt: str) -> Optional[Path]:
"""
Create appropriate regression test based on commit type.
Returns path to created test file, or None if skipped.
"""
# Ensure directories exist
REGRESSION_DIR.mkdir(parents=True, exist_ok=True)
PROGRESSION_DIR.mkdir(parents=True, exist_ok=True)
if commit_type == "feature":
test_file, content = generate_feature_regression_test(file_path, user_prompt)
elif commit_type == "bugfix":
test_file, content = generate_bugfix_regression_test(file_path, user_prompt)
elif commit_type == "optimization":
test_file, content = generate_performance_baseline_test(file_path, user_prompt)
else:
# Unknown commit type - skip
return None
# Write test file
test_file.write_text(content)
return test_file
def run_regression_test(test_file: Path) -> Tuple[bool, str]:
"""Run the newly created regression test to verify it passes."""
try:
result = subprocess.run(
["python", "-m", "pytest", str(test_file), "-v", "--tb=short"],
capture_output=True,
text=True,
timeout=60,
)
output = result.stdout + result.stderr
if result.returncode == 0:
return (True, output)
else:
return (False, output)
except subprocess.TimeoutExpired:
return (False, "Error running regression test: TimeoutExpired - test took longer than 60 seconds")
except FileNotFoundError as e:
return (False, f"Error running regression test: FileNotFoundError - {e}")
except subprocess.CalledProcessError as e:
return (False, f"Error running regression test: CalledProcessError - {e}")
except Exception as e:
return (False, f"Error running regression test: {e}")
# ============================================================================
# Main Logic
# ============================================================================
def main():
"""Main hook logic."""
# Check for --dry-run mode (for testing)
dry_run = '--dry-run' in sys.argv
tier = None
# Parse --tier argument
for arg in sys.argv:
if arg.startswith('--tier='):
tier = arg.split('=')[1]
# Dry-run mode: generate test template and print to stdout
if dry_run:
# Default to regression tier if not specified
if not tier:
tier = 'regression'
# Generate sample test content based on tier
test_content = f'''"""
Regression test for {tier} tier.
Generated by auto_add_to_regression.py hook.
"""
import pytest
@pytest.mark.{tier}
class Test{tier.capitalize()}Feature:
"""Test class for {tier} tier regression."""
def test_feature_works(self):
"""Test that feature continues to work."""
assert True
'''
print(test_content)
sys.exit(0)
if len(sys.argv) < 2:
print("Usage: auto_add_to_regression.py <file_path> [user_prompt]")
print(" auto_add_to_regression.py --dry-run --tier=<smoke|regression|extended>")
sys.exit(0)
file_path = Path(sys.argv[1])
user_prompt = sys.argv[2] if len(sys.argv) > 2 else ""
# Only process source files
if not str(file_path).startswith("src/"):
sys.exit(0)
# Skip __init__.py
if file_path.stem == "__init__":
sys.exit(0)
print(f"\n📈 Auto-Regression Suite Hook")
print(f" File: {file_path.name}")
# Detect commit type
commit_type = detect_commit_type(user_prompt)
print(f" Commit type: {commit_type}")
if commit_type == "unknown":
print(f" Unknown commit type - skipping regression test generation")
sys.exit(0)
# Check if tests are passing (regression tests only for working code)
print(f"\n🧪 Verifying tests are passing...")
passing, message = check_tests_passing(file_path)
if not passing:
print(f" ⚠️ Tests not passing - skipping regression test")
print(f" Reason: {message}")
print(f" Regression tests are only created for verified working code")
sys.exit(0)
print(f" ✅ Tests passing - proceeding with regression test creation")
# Create regression test
print(f"\n🔒 Creating regression test...")
print(f" Type: {commit_type}")
test_file = create_regression_test(commit_type, file_path, user_prompt)
if test_file is None:
print(f" Skipped regression test creation")
sys.exit(0)
print(f" ✅ Created: {test_file}")
# Run regression test to verify it passes NOW
print(f"\n🧪 Running regression test (should PASS)...")
passing, output = run_regression_test(test_file)
if passing:
print(f" ✅ Regression test PASSING (baseline established)")
print(f" This test will prevent future regressions")
else:
print(f" ⚠️ Regression test FAILING")
print(f" The test needs adjustment before it can protect against regression")
print(f"\n Output:")
for line in output.split("\n")[:15]:
print(f" {line}")
print(f"\n✅ Auto-regression suite update complete!")
print(f" Regression test: {test_file}")
print(f" Purpose: Prevent {commit_type} from regressing")
print(f" Status: {'PASSING' if passing else 'NEEDS REVIEW'}")
if __name__ == "__main__":
main()
Reference in New Issue View Git Blame Copy Permalink