fix: handle Python project correctly in workflows

BREAKTHROUGH: Nuclear fix is working! Repo successfully cloned to /opt/gitea-runner/workspace/repo with all files present. Issue: Workflows were looking for package.json in a Python project Root cause: AITBC is a Python project (pyproject.toml + poetry.lock) with minimal package.json for OpenZeppelin contracts only Solution: - Add project type detection in all workflows - Handle both Node.js (package.json) and Python (pyproject.toml) projects - For Python: install poetry, run 'poetry install' - For Node.js: run 'npm install --legacy-peer-deps' - Add appropriate security scanning for each project type - Python: safety + bandit for security - Node.js: npm audit for security Updated workflows: - audit.yml: Detects project type, runs appropriate tools - fix.yml: Handles both Python and Node.js dependency fixes - security-scanning.yml: Project-specific security scanning This should resolve the 'package.json NOT found' error since the workflows now properly detect and handle Python projects.
2026-03-27 12:53:45 +01:00
parent a443e4375d
commit 0a2d7002c2
3 changed files with 63 additions and 13 deletions
--- a/.gitea/workflows/audit.yml
+++ b/.gitea/workflows/audit.yml
@@ -29,14 +29,32 @@ jobs:
          echo "Files in repo:"
          ls -la
          
-          echo "=== PACKAGE.JSON CHECK ==="
+          echo "=== PROJECT TYPE CHECK ==="
          if [ -f "package.json" ]; then
-            echo "✅ package.json found!"
+            echo "✅ Node.js project detected!"
+            echo "Package.json content:"
+            cat package.json
            echo "=== NPM INSTALL ==="
            npm install --legacy-peer-deps
-            echo "✅ Running audit..."
+            echo "✅ Running npm audit..."
            npm audit || true
+          elif [ -f "pyproject.toml" ]; then
+            echo "✅ Python project detected!"
+            echo "PyProject.toml content:"
+            head -10 pyproject.toml
+            echo "=== PYTHON DEPENDENCIES ==="
+            if command -v poetry >/dev/null 2>&1; then
+              echo "Poetry found, installing dependencies..."
+              poetry install
+            else
+              echo "Installing poetry..."
+              pip install poetry
+              poetry install
+            fi
+            echo "✅ Python dependencies installed!"
          else
-            echo "❌ package.json NOT found!"
+            echo "❌ No supported project type found!"
+            echo "Looking for package.json or pyproject.toml..."
+            find . -name "package.json" -o -name "pyproject.toml" 2>/dev/null || echo "No project files found"
            exit 1
          fi
--- a/.gitea/workflows/fix.yml
+++ b/.gitea/workflows/fix.yml
@@ -29,14 +29,31 @@ jobs:
          echo "Files in repo:"
          ls -la
          
-          echo "=== PACKAGE.JSON CHECK ==="
+          echo "=== PROJECT TYPE CHECK ==="
          if [ -f "package.json" ]; then
-            echo "✅ package.json found!"
+            echo "✅ Node.js project detected!"
            echo "=== NPM INSTALL ==="
            npm install --legacy-peer-deps
            echo "✅ Auto-fixing vulnerabilities..."
            npm audit fix || true
+          elif [ -f "pyproject.toml" ]; then
+            echo "✅ Python project detected!"
+            echo "=== PYTHON DEPENDENCIES ==="
+            if command -v poetry >/dev/null 2>&1; then
+              echo "Poetry found, installing dependencies..."
+              poetry install
+            else
+              echo "Installing poetry..."
+              pip install poetry
+              poetry install
+            fi
+            echo "✅ Python dependencies installed!"
+            echo "=== SECURITY FIXES ==="
+            # Check for common Python security issues
+            echo "Running safety check..."
+            pip install safety
+            safety check || echo "Safety check completed with warnings"
          else
-            echo "❌ package.json NOT found!"
+            echo "❌ No supported project type found!"
            exit 1
          fi
--- a/.gitea/workflows/security-scanning.yml
+++ b/.gitea/workflows/security-scanning.yml
@@ -29,16 +29,31 @@ jobs:
          echo "Files in repo:"
          ls -la
          
-          echo "=== PACKAGE.JSON CHECK ==="
+          echo "=== PROJECT TYPE CHECK ==="
          if [ -f "package.json" ]; then
-            echo "✅ package.json found!"
+            echo "✅ Node.js project detected!"
            echo "=== NPM INSTALL ==="
            npm install --legacy-peer-deps
-            echo "✅ Running audit..."
-            npm audit || true
-            echo "✅ Security scan..."
+            echo "✅ Running security scan..."
            npm audit --audit-level moderate || true
+          elif [ -f "pyproject.toml" ]; then
+            echo "✅ Python project detected!"
+            echo "=== PYTHON DEPENDENCIES ==="
+            if command -v poetry >/dev/null 2>&1; then
+              echo "Poetry found, installing dependencies..."
+              poetry install
+            else
+              echo "Installing poetry..."
+              pip install poetry
+              poetry install
+            fi
+            echo "✅ Running security scan..."
+            pip install safety bandit
+            echo "=== Safety check (dependencies) ==="
+            safety check || echo "Safety check completed"
+            echo "=== Bandit check (code security) ==="
+            bandit -r . -f json || echo "Bandit scan completed"
          else
-            echo "❌ package.json NOT found!"
+            echo "❌ No supported project type found!"
            exit 1
          fi