Merge pull request #98 from andriumon/validation-update

Added validation test for indicators and dimensions consistency

Author: dgarijo

indicators/has_ci-tests.json

@@ -1,12 +1,12 @@
 {
     "@context": "https://w3id.org/everse/rsqi#",
-    "@id": "https://w3id.org/everse/i/indicators/software_has_ci-tests",
+    "@id": "https://w3id.org/everse/i/indicators/has_ci-tests",
     "@type": "SoftwareQualityIndicator",
     "name": "Software has continuous integration tests",
     "abbreviation": "has_ci-tests",
     "description": "This indicator aims to determine if the project runs tests before pull requests are merged.",
     "keywords": [ "continuous", "integration", "test"],
-    "identifier": { "@id": "https://w3id.org/everse/i/indicators/software_has_ci-tests" },
+    "identifier": { "@id": "https://w3id.org/everse/i/indicators/has_ci-tests" },
     "status": "Active",
     "version": "1.0.0",
     "author" : {

indicators/no_critical_vulnerability.json

@@ -1,6 +1,7 @@
 {
     "@context": "https://w3id.org/everse/rsqi#",
     "@type": "SoftwareQualityIndicator",
+    "@id": "https://w3id.org/everse/i/indicators/no_critical_vulnerability",
     "name": "No critical vulnerabilities",
     "abbreviation": "no_critical_vulnerability",
     "description": "Checks if reported critical vulnerabilities have been fixed",

indicators/no_leaked_credential.json indicators/no_leaked_credentials.jsonindicators/no_leaked_credential.json renamed to indicators/no_leaked_credentials.json

@@ -1,6 +1,7 @@
 {
     "@context": "https://w3id.org/everse/rsqi#",
     "@type": "SoftwareQualityIndicator",
+    "@id": "https://w3id.org/everse/i/indicators/no_leaked_credentials",
     "name": "No leaked credentials",
     "abbreviation": "no_leaked_credentials",
     "description": "Checks if hardcoded secrets like passwords, API keys, and tokens is stored in the public git repository",

indicators/software_has_documentation.json

@@ -3,7 +3,7 @@
     "@id": "https://w3id.org/everse/i/indicators/software_has_documentation",
     "@type": "SoftwareQualityIndicator",
     "name": "Software has documentation",
-    "abbreviation": "software_documentation",
+    "abbreviation": "software_has_documentation",
     "alternateName": "FRSM-05",
     "description": "This indicator aims to determine if a software project comes with many forms of documentation like readme or readthedocs",
     "keywords": [ "documentation", "fair", "usage", "readme"],

indicators/uses_fuzzing.json

@@ -1,12 +1,12 @@
 {
     "@context": "https://w3id.org/everse/rsqi#",
-    "@id": "https://w3id.org/everse/i/indicators/fuzzing_use",
+    "@id": "https://w3id.org/everse/i/indicators/uses_fuzzing",
     "@type": "SoftwareQualityIndicator",
     "name": "Software uses fuzzing",
-    "abbreviation": "fuzzing_use",
-    "description": "This indicator checks that If the software produced by the project includes software written using a memory-unsafe language (e.g., C or C++), then at least one dynamic tool (e.g., a fuzzer or web application scanner) be routinely used in combination with a mechanism to detect memory safety problems such as buffer overwrites. ",
+    "abbreviation": "uses_fuzzing",
+    "description": "This indicator checks that the software produced by the project includes software written using a memory-unsafe language (e.g., C or C++), then at least one dynamic tool (e.g., a fuzzer or web application scanner) be routinely used in combination with a mechanism to detect memory safety problems such as buffer overwrites. ",
     "keywords": [ "fuzzing", "test", "code"],
-    "identifier": { "@id": "https://w3id.org/everse/i/indicators/fuzzing_use" },
+    "identifier": { "@id": "https://w3id.org/everse/i/indicators/uses_fuzzing" },
     "status": "Active",
     "version": "1.0.0",
     "author" : {

…/uses_tool_for_warning_and_mistakes.json …uses_tool_for_warnings_and_mistakes.jsonindicators/uses_tool_for_warning_and_mistakes.json renamed to indicators/uses_tool_for_warnings_and_mistakes.json indicators/uses_tool_for_warning_and_mistakes.json renamed to indicators/uses_tool_for_warnings_and_mistakes.json

@@ -1,12 +1,12 @@
 {
     "@context": "https://w3id.org/everse/rsqi#",
-    "@id": "https://w3id.org/everse/i/indicators/uses_tool_for_warnings_or_mistakes",
+    "@id": "https://w3id.org/everse/i/indicators/uses_tool_for_warnings_and_mistakes",
     "@type": "SoftwareQualityIndicator",
     "name": "Software uses a tool for warnings or mistakes",
-    "abbreviation": "uses_tool_for_warnings_or_mistakes",
+    "abbreviation": "uses_tool_for_warnings_and_mistakes",
     "description": "This indicator checks that the project enables one or more compiler warning flags, a \"safe\" language mode, or uses a separate \"linter\" tool to look for code quality errors or common simple mistakes, if there is at least one FLOSS tool that can implement this criterion in the selected language.",
     "keywords": [ "linting", "code analysis", "fair"],
-    "identifier": { "@id": "https://w3id.org/everse/i/indicators/uses_tool_for_warnings_or_mistakes" },
+    "identifier": { "@id": "https://w3id.org/everse/i/indicators/uses_tool_for_warnings_and_mistakes" },
     "status": "Active",
     "version": "1.0.0",
     "author" : {

tests/helpers.py

@@ -69,3 +69,61 @@ def validate_json_files_using_schema(schema_file_path, json_file_path):
         "The schema validation failed for one or more files:\n"
         + "\n".join(validation_errors)
     )
+
+
+def validate_json_files_consistency(json_file_path):
+    
+    json_files = glob.glob(f"{json_file_path}/*.json")
+    
+    if not json_files:
+        pytest.skip(f"No json files found in {json_file_path}/ directory.")
+
+    validation_errors = []
+
+    for json_file_name in json_files:
+        filename = os.path.basename(json_file_name)
+
+        print(f"\nChecking consistency for {filename}...")
+
+        try:
+            with open(json_file_name, "r") as f:
+                data = json.load(f)
+            
+            if json_file_path == "indicators":
+                identifier = data.get("identifier", {}).get("@id")
+            elif json_file_path == "dimensions":
+                identifier = data.get("identifier", "")
+
+            id = data.get("@id")
+            
+            abbreviation = data.get("abbreviation")
+
+            if id != identifier:
+                validation_errors.append(
+                    "@id and identifier fields are not equal"
+                )
+
+            identifier_suffix = id.rstrip("/").split("/")[-1]
+            
+            if abbreviation != identifier_suffix:
+                validation_errors.append(
+                    f"{filename}: abbreviation ({abbreviation}) "
+                    f"!= identifier suffix ({identifier_suffix})"
+                )
+
+            expected_filename = f"{abbreviation}.json"
+            if filename != expected_filename:
+                validation_errors.append(
+                    f"{filename}: filename does not match abbreviation "
+                    f"(expected {expected_filename})"
+                )
+
+        except json.JSONDecodeError as e:
+            validation_errors.append(f"{filename}: Invalid JSON - {e}")
+        except Exception as e:
+            validation_errors.append(f"{filename}: Unexpected error - {e}")
+
+    assert not validation_errors, (
+        "JSON consistency validation failed for one or more files:\n"
+        + "\n".join(validation_errors)
+    )

tests/test_dimensions_and_indicators.py

@@ -1,4 +1,4 @@
-from helpers import validate_json_files_using_schema
+from helpers import validate_json_files_using_schema, validate_json_files_consistency
 
 def test_indicators_validation():
     """
@@ -20,3 +20,25 @@ def test_dimensions_validation():
         schema_file_path="tests/dimension_validation_schema.json",
         json_file_path="dimensions",
     )
+
+
+def test_indicators_json_files_consistency():
+    """
+    Validates that all JSON files in the indicators/ directory follow these guidelines:
+    
+    - identifier and @id fields have the same value
+    - abbreviation field is the same as the identifier and @id suffix (abbreviation = /identifier_suffix)
+    - json file is named after the abbreviation field (abbreviation + .json)
+    """
+    validate_json_files_consistency(json_file_path="indicators")
+    
+    
+def test_dimensions_json_files_consistency():
+    """
+    Validates that all JSON files in the dimensions/ directory follow these guidelines:
+    
+    - identifier and @id fields have the same value
+    - abbreviation field is the same as the identifier and @id suffix (abbreviation = /identifier_suffix)
+    - json file is named after the abbreviation field (abbreviation + .json)
+    """
+    validate_json_files_consistency(json_file_path="dimensions")