🚀 release: v2.0.0

[warengonzaga]

Summary by CodeRabbit

• Chores
  • Updated the project license from AGPL-3.0 to MIT License.
  • Updated license references in documentation.
  • Increased the project version to 2.0.0.
• New Features
  • Added detailed test suites covering core, advanced, environment-based, integration, and smoke testing of data redaction functionality.
  • Introduced utilities to support testing, including console mocks and environment management.
• Bug Fixes
  • Improved test configuration for better performance and reliability with parallelism and timeout settings.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

📢 Thoughts on this report? Let us know!

[Copilot]

Pull Request Overview

This release bumps the package to v2.0.0 and switches the project license from AGPL-3.0 to MIT.

• Updated version in package.json from 1.3.0 to 2.0.0
• Changed license field from AGPL-3.0 to MIT in both package.json and README.md

Reviewed Changes

Copilot reviewed 2 out of 3 changed files in this pull request and generated no comments.

File	Description
package.json	Bumped version; updated license to MIT
README.md	Replaced AGPL-3.0 license text with MIT

Comments suppressed due to low confidence (1)

package.json:20

• Ensure the LICENSE file in the repository root is updated to the MIT license to match this change.

  "license": "MIT",

[coderabbitai]

📝 Walkthrough

Walkthrough

Sir, the primary modification across the project involves transitioning the software’s license from the GNU Affero General Public License version 3 (AGPLv3) to the MIT License. This update is reflected in the LICENSE file, the README.md, and the package.json, with a corresponding version increment to 2.0.0. No code or API changes were introduced. Additionally, the testing framework was extensively restructured: the previous comprehensive redaction test file was removed and replaced by multiple focused test suites covering core, advanced, environment, integration, and smoke tests, complemented by new test utilities and Jest configuration enhancements.

Changes

Files	Change Summary
LICENSE	Replaced AGPLv3 license text with the MIT License.
README.md	Updated license section to reference the MIT License instead of AGPL-3.0.
package.json	Changed license field from AGPL-3.0 to MIT; bumped version from 1.3.0 to 2.0.0; added Jest test scripts for redaction.
jest.config.js	Added maxWorkers: '50%' and testTimeout: 10000 to Jest configuration.
src/tests/redaction.test.ts	Deleted comprehensive redaction test suite covering core, advanced, environment, and integration tests.
src/tests/redaction/core.test.ts	Added new test suite for core redaction functionality including configuration and edge cases.
src/tests/redaction/advanced.test.ts	Added new test suite for advanced redaction features, custom patterns, and complex data handling.
src/tests/redaction/env.test.ts	Added new test suite for environment variable and development mode controlled redaction behavior.
src/tests/redaction/logengine.test.ts	Added new test suite for LogEngine logging integration with redaction, covering multiple log levels and configurations.
src/tests/redaction/smoke.test.ts	Added new smoke test suite for basic redaction functionality verification.
src/tests/redaction/test-utils.ts	Added new test utilities for console mocking and environment setup/teardown to support redaction tests.

---

📜 Recent review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between d0c71ea and 6868411.

📒 Files selected for processing (1)

• src/__tests__/redaction/advanced.test.ts (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

• src/tests/redaction/advanced.test.ts

✨ Finishing Touches

• 📝 Generate Docstrings

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Explain this complex logic.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai explain this code block.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and explain its main purpose.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR.
• @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai or @coderabbitai auto title anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (7)

src/__tests__/redaction/test-utils.ts (1)

23-28: Console mock setup is efficiently implemented.

The function properly clears previous mocks and replaces console methods. However, I should point out that calling jest.clearAllMocks() here might clear mocks from other unrelated tests if they're running concurrently.

Consider being more specific about which mocks to clear:

 export function setupConsoleMocks(): void {
-    jest.clearAllMocks();
+    mockConsole.log.mockClear();
+    mockConsole.warn.mockClear();
+    mockConsole.error.mockClear();
     console.log = mockConsole.log;
     console.warn = mockConsole.warn;
     console.error = mockConsole.error;
 }

src/__tests__/redaction/env.test.ts (1)

12-20: Environment reset logic needs attention, sir.

While the manual environment handling works, it's rather verbose and could benefit from the utilities already created in test-utils.ts. The current approach is functional but not as elegant as it could be.

Consider leveraging the existing test utilities:

+import { setupTestEnvironment, restoreEnvironment } from './test-utils';

 describe('Data Redaction - Environment Control', () => {
-    // Store original environment to restore after tests
-    const originalEnv = { ...process.env };
+    let originalEnv: NodeJS.ProcessEnv;

     beforeEach(() => {
         // Reset to default configuration before each test
         DataRedactor.updateConfig(defaultRedactionConfig);
-        // Clear current environment and restore original
-        for (const key in process.env) {
-            delete process.env[key];
-        }
-        Object.assign(process.env, originalEnv);
+        ({ originalEnv } = setupTestEnvironment());
     });

src/__tests__/redaction/logengine.test.ts (2)

9-21: Console mocking duplication detected, sir.

While the inline console mocking works perfectly, it duplicates the functionality already provided in test-utils.ts. This creates maintenance burden and potential inconsistencies.

Consider leveraging the existing test utilities:

+import { mockConsole, originalConsole, setupConsoleMocks, restoreConsole } from './test-utils';

-// Mock console methods to capture output for integration tests
-const mockConsole = {
-    log: jest.fn(),
-    warn: jest.fn(),
-    error: jest.fn()
-};
-
-// Store original console methods
-const originalConsole = {
-    log: console.log,
-    warn: console.warn,
-    error: console.error
-};

---

27-41: Environment and console setup could be streamlined.

The manual setup in beforeEach could be simplified by using the utilities, making the test more maintainable and consistent with other test suites.

     beforeEach(() => {
         // Reset environment
         process.env = { ...originalEnv };
         
-        // Clear all mock calls for integration tests
-        jest.clearAllMocks();
-        
-        // Replace console methods with mocks for integration tests
-        console.log = mockConsole.log;
-        console.warn = mockConsole.warn;
-        console.error = mockConsole.error;
+        setupConsoleMocks();

         // Configure LogEngine for testing
         LogEngine.configure({ mode: LogMode.DEBUG });
     });

src/__tests__/redaction/advanced.test.ts (3)

151-153: Sir, I've detected a minor type safety concern.

While testing edge cases with null and undefined is commendable, the as any type assertions could be avoided by updating the method signature to accept string | null | undefined if that's the intended behavior.

---

302-307: Sir, the performance benchmark requires calibration for environmental variables.

The 1-second threshold may fail on slower CI/CD environments. Consider making this configurable or using a more generous threshold with a warning comment.

-            // Should complete within reasonable time (less than 1 second)
-            expect(endTime - startTime).toBeLessThan(1000);
+            // Should complete within reasonable time (less than 2 seconds on CI)
+            const performanceThreshold = process.env.CI ? 2000 : 1000;
+            expect(endTime - startTime).toBeLessThan(performanceThreshold);

---

1-428: Sir, architectural analysis complete. The test infrastructure exhibits remarkable sophistication.

This test suite demonstrates enterprise-grade testing practices with comprehensive coverage of advanced redaction features. Consider implementing a test data factory pattern for the complex nested structures to improve maintainability and reusability across test suites.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between abe8786 and 95cdac1.

📒 Files selected for processing (9)

• jest.config.js (1 hunks)
• package.json (3 hunks)
• src/__tests__/redaction.test.ts (0 hunks)
• src/__tests__/redaction/advanced.test.ts (1 hunks)
• src/__tests__/redaction/core.test.ts (1 hunks)
• src/__tests__/redaction/env.test.ts (1 hunks)
• src/__tests__/redaction/logengine.test.ts (1 hunks)
• src/__tests__/redaction/smoke.test.ts (1 hunks)
• src/__tests__/redaction/test-utils.ts (1 hunks)

💤 Files with no reviewable changes (1)

• src/tests/redaction.test.ts

✅ Files skipped from review due to trivial changes (1)

• jest.config.js

🚧 Files skipped from review as they are similar to previous changes (1)

• package.json

🧰 Additional context used

🧬 Code Graph Analysis (1)

src/__tests__/redaction/core.test.ts (1)

src/redaction/config.ts (1)

• defaultRedactionConfig (12-53)

🔇 Additional comments (23)

src/__tests__/redaction/test-utils.ts (2)

6-11: Excellent console mocking infrastructure, sir.

The mock console implementation is precisely what's needed for capturing log output during integration tests. The structure is clean and will serve the test suites admirably.

---

13-18: Prudent preservation of original console methods.

Storing the original console methods ensures proper restoration after tests complete. This prevents any interference between test runs - a most sensible approach.

src/__tests__/redaction/smoke.test.ts (4)

8-10: Proper test isolation with configuration reset.

The beforeEach hook ensures each test starts with a clean slate by resetting to default configuration. This is precisely the kind of test hygiene that prevents mysterious failures.

---

12-16: Password redaction verification is spot-on.

The test correctly verifies that sensitive fields like 'password' are redacted with the expected placeholder text. The assertion is clear and unambiguous.

---

18-22: Username preservation logic appears sound.

However, I must point out a potential inconsistency - while the test expects 'username' to remain unredacted, this conflicts with the default configuration from src/redaction/config.ts which doesn't list 'username' as a sensitive field. The test is correct based on the configuration.

---

24-27: Null handling test is appropriately defensive.

Testing null input handling is essential for robust redaction functionality. The expectation that null input returns null is sensible and matches typical JavaScript behavior.

src/__tests__/redaction/env.test.ts (3)

31-44: Development environment detection is properly implemented.

The test correctly verifies that redaction is disabled when NODE_ENV is set to 'development'. The configuration update and assertion logic are sound.

---

74-96: Environment variable override testing is comprehensive.

The test covers multiple environment variables and verifies both redaction text customization and content truncation. The assertions properly validate the expected behavior.

---

98-116: Truncation text environment variable test is thorough.

The test specifically covers the LOG_TRUNCATION_TEXT environment variable with appropriate assertions. The comment indicating this tests line 95 in config.ts shows good traceability.

src/__tests__/redaction/core.test.ts (6)

15-31: Excellent basic redaction functionality verification.

The test properly validates that sensitive fields (password, email, apiKey) are redacted while non-sensitive fields (username, publicInfo) remain unchanged. The assertions are precise and comprehensive.

---

100-124: Comprehensive sensitive field pattern detection.

The test covers various naming patterns and case variations for sensitive fields. This thorough approach ensures the redaction logic handles real-world field naming conventions effectively.

---

142-154: Case-insensitive field detection is properly tested.

The verification that fields like 'Password', 'EMAIL', and 'Api_Key' are redacted confirms the case-insensitive matching works as intended. This is crucial for robust redaction.

---

269-280: Circular reference handling is elegantly tested.

The test creates a circular reference and verifies it's handled gracefully. The assertion that result.self contains 'Circular' is appropriate, though the exact implementation may vary.

---

282-302: Deep nesting test demonstrates impressive thoroughness.

Creating a 20-level deep object structure and verifying redaction at the deepest level shows the implementation can handle complex nested scenarios. This is excellent stress testing.

---

375-385: Content field handling with non-string values is well-tested.

The test verifies that content fields containing non-string values (numbers, objects) are handled appropriately without truncation. This edge case coverage is commendable.

src/__tests__/redaction/logengine.test.ts (4)

54-76: Debug log redaction verification is expertly crafted.

The test properly verifies that sensitive data is redacted in debug logs while non-sensitive data remains visible. The multiple assertions ensure comprehensive validation of the redaction behavior.

---

185-199: withoutRedaction bypass test is perfectly implemented.

The test confirms that the withoutRedaction() method properly bypasses redaction, allowing sensitive data to be logged when explicitly required. This is essential for debugging scenarios.

---

296-326: Complex integration scenario testing is exemplary.

The test combines multiple redaction features (custom text, truncation, mixed sensitive/non-sensitive fields) in a single scenario. This comprehensive approach validates real-world usage patterns effectively.

---

356-377: Log formatting preservation test is thoughtfully designed.

Verifying that redaction maintains proper log formatting while protecting sensitive data is crucial for production readability. The assertions ensure the output remains consumable.

src/__tests__/redaction/advanced.test.ts (4)

14-76: Sir, the custom pattern management test suite is operating at peak efficiency.

The test coverage for regex pattern functionality is comprehensive and well-structured. I particularly appreciate the case-insensitive pattern matching tests and the accumulation verification.

---

78-127: Excellent work on the sensitive fields management suite, sir.

The test methodology here is exemplary - using fields that explicitly aren't in the default sensitive list ensures proper isolation of the custom field functionality.

---

156-208: Configuration refresh testing protocols are functioning optimally, sir.

The test coverage for configuration management is thorough, particularly the partial update verification which ensures system stability during runtime configuration changes.

---

317-427: Outstanding edge case coverage, sir. This test suite would make even Tony Stark proud.

The circular reference handling, deep nesting stress tests, and content field truncation scenarios demonstrate exceptional attention to detail. The 100-level nesting test is particularly impressive for ensuring stack safety.

[coderabbitai]

Actionable comments posted: 1

♻️ Duplicate comments (1)

src/__tests__/redaction/advanced.test.ts (1)

227-230: Sir, excellent work addressing the previous review feedback.

The assertion now properly validates the specific expected redacted value rather than just checking the type. This ensures the redaction behavior is correctly verified.

🧹 Nitpick comments (2)

src/__tests__/redaction/advanced.test.ts (2)

319-321: Sir, I recommend strengthening type safety by avoiding the any type.

Using any bypasses TypeScript's type checking, which defeats the purpose of using TypeScript in the first place.

-            const parent: any = { name: 'parent', password: 'secret' };
-            const child: any = { name: 'child', parent, token: 'token123' };
+            interface TestNode {
+                name: string;
+                password?: string;
+                token?: string;
+                parent?: TestNode;
+                child?: TestNode;
+                references?: TestNode[];
+            }
+            const parent: TestNode = { name: 'parent', password: 'secret' };
+            const child: TestNode = { name: 'child', parent, token: 'token123' };

Also applies to: 334-336, 347-348

---

247-247: Sir, these magic numbers would benefit from being extracted as named constants.

Magic numbers scattered throughout reduce readability and maintainability. Consider defining them as constants at the top of the test suite.

+const TEST_CONSTANTS = {
+    LONG_REDACTION_REPEATS: 100,
+    LARGE_DATASET_SIZE: 1000,
+    MAX_NESTING_DEPTH: 100,
+    LONG_CONTENT_LENGTH: 1500
+} as const;

// Then use throughout the tests:
-            const longRedactionText = '[REDACTED]'.repeat(100);
+            const longRedactionText = '[REDACTED]'.repeat(TEST_CONSTANTS.LONG_REDACTION_REPEATS);

Also applies to: 294-294, 351-351, 387-387

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 95cdac1 and d0c71ea.

📒 Files selected for processing (2)

• src/__tests__/redaction/advanced.test.ts (1 hunks)
• src/__tests__/redaction/test-utils.ts (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

• src/tests/redaction/test-utils.ts

🔇 Additional comments (1)

src/__tests__/redaction/advanced.test.ts (1)

1-428: Sir, this test suite demonstrates exceptional coverage and organization.

The comprehensive approach to testing advanced redaction features, including edge cases, circular references, and performance considerations, provides robust validation of the DataRedactor functionality. The logical grouping of test cases enhances maintainability.