chore: initial preview commit, code will fail

Code will fail until trivy fork changes are merged upstream.
Need to push fork changes to github

Author: Emyrk

go.mod

@@ -8,9 +8,16 @@ require (
 )
 
 require (
+	github.com/agext/levenshtein v1.2.3 // indirect
 	github.com/apparentlymart/go-textseg/v15 v15.0.0 // indirect
-	github.com/davecgh/go-spew v1.1.1 // indirect
-	github.com/pmezard/go-difflib v1.0.0 // indirect
-	golang.org/x/text v0.11.0 // indirect
+	github.com/aquasecurity/trivy v0.58.2 // indirect
+	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
+	github.com/hashicorp/hcl/v2 v2.23.0 // indirect
+	github.com/mitchellh/go-wordwrap v1.0.1 // indirect
+	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 // indirect
+	golang.org/x/mod v0.22.0 // indirect
+	golang.org/x/sys v0.28.0 // indirect
+	golang.org/x/text v0.21.0 // indirect
+	golang.org/x/tools v0.26.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )

go.sum

@@ -1,17 +1,39 @@
+github.com/agext/levenshtein v1.2.1 h1:QmvMAjj2aEICytGiWzmxoE0x2KZvE0fvmqMOfy2tjT8=
+github.com/agext/levenshtein v1.2.1/go.mod h1:JEDfjyjHDjOF/1e4FlBE/PkbqA9OfWu2ki2W0IB5558=
+github.com/agext/levenshtein v1.2.3/go.mod h1:JEDfjyjHDjOF/1e4FlBE/PkbqA9OfWu2ki2W0IB5558=
 github.com/apparentlymart/go-textseg/v15 v15.0.0 h1:uYvfpb3DyLSCGWnctWKGj857c6ew1u1fNQOlOtuGxQY=
 github.com/apparentlymart/go-textseg/v15 v15.0.0/go.mod h1:K8XmNZdhEBkdlyDdvbmmsvpAG721bKi0joRfFdHIWJ4=
+github.com/aquasecurity/trivy v0.58.2 h1:ZzJ9wOvXVXIJjkfYNE2CZeG3XyWz4yf9UCejgcp8WVU=
+github.com/aquasecurity/trivy v0.58.2/go.mod h1:MFlUXVTUBPaiKtQMCyaAYR6KBERWSzl+T3eMdQhH92g=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/google/go-cmp v0.3.1 h1:Xye71clBPdm5HgqGwUkwhbynsUJZhDbS20FvLhQ2izg=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
+github.com/hashicorp/hcl/v2 v2.23.0 h1:Fphj1/gCylPxHutVSEOf2fBOh1VE4AuLV7+kbJf3qos=
+github.com/hashicorp/hcl/v2 v2.23.0/go.mod h1:62ZYHrXgPoX8xBnzl8QzbWq4dyDsDtfCRgIq1rbJEvA=
+github.com/mitchellh/go-wordwrap v0.0.0-20150314170334-ad45545899c7 h1:DpOJ2HYzCv8LZP15IdmG+YdwD2luVPHITV96TkirNBM=
+github.com/mitchellh/go-wordwrap v0.0.0-20150314170334-ad45545899c7/go.mod h1:ZXFpozHsX6DPmq2I0TCekCxypsnAUbP2oI0UX1GXzOo=
+github.com/mitchellh/go-wordwrap v1.0.1/go.mod h1:R62XHJLzvMFRBbcrT7m7WgmE1eOyTSsCt+hzestvNj0=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
 github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/zclconf/go-cty v1.16.2 h1:LAJSwc3v81IRBZyUVQDUdZ7hs3SYs9jv0eZJDWHD/70=
 github.com/zclconf/go-cty v1.16.2/go.mod h1:VvMs5i0vgZdhYawQNq5kePSpLAoz8u1xvZgrPIxfnZE=
+golang.org/x/mod v0.8.0 h1:LUYupSeNrTNCGzR/hVBk2NHZO4hXcVaW1k4Qx7rjPx8=
+golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.22.0/go.mod h1:6SkKJ3Xj0I0BrPOZoBy3bdMptDDU9oJrpohJ3eWZ1fY=
+golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/text v0.11.0 h1:LAntKIrcmeSKERyiOh0XMV39LXS8IE9UL2yP7+f5ij4=
 golang.org/x/text v0.11.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
+golang.org/x/tools v0.6.0 h1:BOw41kyTf3PuCW1pVQf8+Cyg8pMlkYB1oo9iJ6D/lKM=
+golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
+golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=

hclext/references.go

@@ -0,0 +1,37 @@
+package hclext
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/hashicorp/hcl/v2"
+)
+
+func ReferenceNames(exp hcl.Expression) []string {
+	allVars := exp.Variables()
+	vars := make([]string, 0, len(allVars))
+
+	for _, v := range allVars {
+		vars = append(vars, CreateDotReferenceFromTraversal(v))
+	}
+
+	return vars
+}
+
+func CreateDotReferenceFromTraversal(traversals ...hcl.Traversal) string {
+	var refParts []string
+
+	for _, x := range traversals {
+		for _, p := range x {
+			switch part := p.(type) {
+			case hcl.TraverseRoot:
+				refParts = append(refParts, part.Name)
+			case hcl.TraverseAttr:
+				refParts = append(refParts, part.Name)
+			case hcl.TraverseIndex:
+				refParts = append(refParts, fmt.Sprintf("[%s]", part.Key.AsString()))
+			}
+		}
+	}
+	return strings.Join(refParts, ".")
+}

hclext/vartypes.go

@@ -0,0 +1,43 @@
+package hclext
+
+import (
+	"github.com/hashicorp/hcl/v2"
+	"github.com/hashicorp/hcl/v2/ext/typeexpr"
+	"github.com/hashicorp/hcl/v2/hclsyntax"
+	"github.com/zclconf/go-cty/cty"
+)
+
+func DecodeVarType(exp hcl.Expression) (cty.Type, *typeexpr.Defaults, error) {
+	// This block converts the string literals "string" -> string
+	// Coder used to allow literal strings, instead of types as keywords. So
+	// we have to handle these cases for backwards compatibility.
+	if tpl, ok := exp.(*hclsyntax.TemplateExpr); ok && len(tpl.Parts) == 1 {
+		if lit, ok := tpl.Parts[0].(*hclsyntax.LiteralValueExpr); ok && lit.Val.Type() == cty.String {
+			keyword := lit.Val.AsString()
+
+			exp = &hclsyntax.ScopeTraversalExpr{
+				Traversal: []hcl.Traverser{
+					hcl.TraverseRoot{
+						Name:     keyword,
+						SrcRange: exp.Range(),
+					},
+				},
+				SrcRange: exp.Range(),
+			}
+		}
+	}
+
+	// Special-case the shortcuts for list(any) and map(any) which aren't hcl.
+	switch hcl.ExprAsKeyword(exp) {
+	case "list":
+		return cty.List(cty.DynamicPseudoType), nil, nil
+	case "map":
+		return cty.Map(cty.DynamicPseudoType), nil, nil
+	}
+
+	t, def, diag := typeexpr.TypeConstraintWithDefaults(exp)
+	if diag.HasErrors() {
+		return cty.NilType, nil, diag
+	}
+	return t, def, nil
+}

hook.go

@@ -0,0 +1,130 @@
+package preview
+
+import (
+	"fmt"
+
+	"github.com/aquasecurity/trivy/pkg/iac/terraform"
+	tfcontext "github.com/aquasecurity/trivy/pkg/iac/terraform/context"
+	"github.com/hashicorp/hcl/v2"
+	"github.com/hashicorp/hcl/v2/ext/typeexpr"
+	"github.com/zclconf/go-cty/cty"
+	"github.com/zclconf/go-cty/cty/convert"
+
+	"github.com/coder/preview/hclext"
+)
+
+func ParameterContextsEvalHook(input Input, diags hcl.Diagnostics) func(ctx *tfcontext.Context, blocks terraform.Blocks, inputVars map[string]cty.Value) {
+	return func(ctx *tfcontext.Context, blocks terraform.Blocks, inputVars map[string]cty.Value) {
+		data := blocks.OfType("data")
+		for _, block := range data {
+			if block.TypeLabel() != "coder_parameter" {
+				continue
+			}
+
+			if !block.GetAttribute("value").IsNil() {
+				continue // Wow a value exists?!. This feels like a bug.
+			}
+
+			name := block.NameLabel()
+			var defDiags hcl.Diagnostics
+			var value cty.Value
+			pv, ok := input.RichParameterValue(name)
+			if ok {
+				// TODO: Handle non-string types
+				value = cty.StringVal(pv.Value)
+			} else {
+				// get the default value
+				value, defDiags = evaluateCoderParameterDefault(block)
+				diags = diags.Extend(defDiags)
+			}
+
+			// Set the default value as the 'value' attribute
+			path := []string{"data"}
+			path = append(path, block.Labels()...)
+			path = append(path, "value")
+			// The current context is in the `coder_parameter` block.
+			// Use the parent context to "export" the value
+			ctx.Set(value, path...)
+			//block.Context().Parent().Set(value, path...)
+		}
+	}
+}
+
+func evaluateCoderParameterDefault(b *terraform.Block) (cty.Value, hcl.Diagnostics) {
+	//if b.Label() == "" {
+	//	return cty.NilVal,  errors.New("empty label - cannot resolve")
+	//}
+
+	attributes := b.Attributes()
+	if attributes == nil {
+		r := b.HCLBlock().Body.MissingItemRange()
+		return cty.NilVal, hcl.Diagnostics{
+			{
+				Severity: hcl.DiagWarning,
+				Summary:  "'coder_parameter' block has no attributes",
+				Detail:   "No default value will be set for this paramete",
+				Subject:  &r,
+			},
+		}
+	}
+
+	var valType cty.Type
+	var defaults *typeexpr.Defaults
+	// TODO: `"string"` fails, it should be `string`
+	typeAttr, exists := attributes["type"]
+	if exists {
+		ty, def, err := hclext.DecodeVarType(typeAttr.HCLAttribute().Expr)
+		if err != nil {
+			return cty.NilVal, hcl.Diagnostics{
+				{
+					Severity:    hcl.DiagWarning,
+					Summary:     fmt.Sprintf("Decoding parameter type for %q", b.FullName()),
+					Detail:      err.Error(),
+					Subject:     &typeAttr.HCLAttribute().Range,
+					Context:     &b.HCLBlock().DefRange,
+					Expression:  typeAttr.HCLAttribute().Expr,
+					EvalContext: b.Context().Inner(),
+				},
+			}
+		}
+		valType = ty
+		defaults = def
+	} else {
+		// Default to string type
+		valType = cty.String
+	}
+
+	var val cty.Value
+
+	def, exists := attributes["default"]
+	if exists {
+		val = def.NullableValue()
+	} else {
+		return cty.NilVal, nil
+	}
+
+	if valType != cty.NilType {
+		if defaults != nil {
+			val = defaults.Apply(val)
+		}
+
+		typedVal, err := convert.Convert(val, valType)
+		if err != nil {
+			return cty.NilVal, hcl.Diagnostics{
+				{
+					Severity:    hcl.DiagWarning,
+					Summary:     "Converting default parameter value type",
+					Detail:      err.Error(),
+					Subject:     &def.HCLAttribute().Range,
+					Context:     &b.HCLBlock().DefRange,
+					Expression:  def.HCLAttribute().Expr,
+					EvalContext: b.Context().Inner(),
+				},
+			}
+		}
+		return typedVal, nil
+	}
+
+	return val, nil
+
+}

preview.go

@@ -0,0 +1,79 @@
+package preview
+
+import (
+	"context"
+	"fmt"
+	"io/fs"
+	"path/filepath"
+
+	"github.com/aquasecurity/trivy/pkg/iac/scanners/terraform/parser"
+	"github.com/coder/preview/types"
+	"github.com/hashicorp/hcl/v2"
+)
+
+type Input struct {
+	ParameterValues []types.ParameterValue
+}
+
+type Output struct {
+	Parameters []types.RichParameter
+}
+
+func Preview(ctx context.Context, input Input, dir fs.FS) (*Output, hcl.Diagnostics) {
+	varFiles, err := tfVarFiles("", dir)
+	if err != nil {
+		return nil, nil
+	}
+
+	diags := make(hcl.Diagnostics, 0)
+	hook := ParameterContextsEvalHook(input, diags)
+	// moduleSource is "" for a local module
+	p := parser.New(dir, "",
+		parser.OptionWithDownloads(false),
+		parser.OptionWithTFVarsPaths(varFiles...),
+		parser.OptionWithEvalHook(hook),
+	)
+
+	var _ = p
+
+	return nil, nil
+}
+
+func (i Input) RichParameterValue(key string) (types.ParameterValue, bool) {
+	for _, p := range i.ParameterValues {
+		if p.Name == key {
+			return p, true
+		}
+	}
+	return types.ParameterValue{}, false
+}
+
+// tfVarFiles extracts any .tfvars files from the given directory.
+// TODO: Test nested directories and how that should behave.
+func tfVarFiles(path string, dir fs.FS) ([]string, error) {
+	dp := "."
+	entries, err := fs.ReadDir(dir, dp)
+	if err != nil {
+		return nil, fmt.Errorf("read dir %q: %w", dp, err)
+	}
+
+	files := make([]string, 0)
+	for _, entry := range entries {
+		if entry.IsDir() {
+			subD, err := fs.Sub(dir, entry.Name())
+			if err != nil {
+				return nil, fmt.Errorf("sub dir %q: %w", entry.Name(), err)
+			}
+			newFiles, err := tfVarFiles(filepath.Join(path, entry.Name()), subD)
+			if err != nil {
+				return nil, err
+			}
+			files = append(files, newFiles...)
+		}
+
+		if filepath.Ext(entry.Name()) == ".tfvars" {
+			files = append(files, filepath.Join(path, entry.Name()))
+		}
+	}
+	return files, nil
+}

types/parameter.go

@@ -8,6 +8,12 @@ import (
 	"github.com/zclconf/go-cty/cty"
 )
 
+type ParameterValue struct {
+	Name string `json:"name"`
+	// TODO: Should this be a cty.Value?
+	Value string `json:"value"`
+}
+
 type RichParameter struct {
 	Name         string                 `json:"name"`
 	Description  string                 `json:"description"`