Mark PR notes for manual review (#155)

muodov · web-flow · commit 653ae5117020 · 2025-08-07T16:55:59.000+02:00
* Ignore lint PR in git blame * Mark notes that require a manual review * add a note * Require review when updating manually edited rules * Do not flag HTTP->HTTPS protocol changes * do not trigger review on www. redirects * Tweak link formatting * Use the new _metadata key from autoconsent * rename reviewUpdates -> manuallyReviewUpdates * Lint fix * Use both initial and final urls for matching sites, and use initial url for referring to new rules * Lint fix
diff --git a/.git-blame-ignore-revs b/.git-blame-ignore-revs
@@ -0,0 +1,3 @@
+# .git-blame-ignore-revs
+# Switched to a shared DDG ESLint config and introduced Prettier: https://github.com/duckduckgo/tracker-radar-collector/pull/158
+fc856d1fa643b409768d62e4f819fb915cf050ad
diff --git a/post-processing/generate-autoconsent-rules/generation.js b/post-processing/generate-autoconsent-rules/generation.js
@@ -72,8 +72,10 @@ function generateAutoconsentRule(region, url, frame, button) {
     const ruleName = `auto_${region}_${topDomain}_${Math.random().toString(36).substring(2, 5)}`;
     return {
         name: ruleName,
-        vendorUrl: url,
         cosmetic: false,
+        _metadata: {
+            vendorUrl: url,
+        },
         runContext: {
             main: frame.isTop,
             frame: !frame.isTop,
@@ -99,7 +101,7 @@ function generateAutoconsentRule(region, url, frame, button) {
  * @param {object} context - The context.
  * @param {import('./types').AutoConsentCMPRule} context.newRule
  * @param {import('./types').AutoConsentCMPRule[]} context.existingRulesWithSameRegion
- * @param {string} context.url
+ * @param {string} context.initialUrl
  * @param {string} context.region
  * @param {import('./types').AutoConsentCMPRule[]} context.matchingRules
  * @param {import('./types').AutoConsentCMPRule[]} context.rulesToOverride
@@ -109,16 +111,17 @@ function generateAutoconsentRule(region, url, frame, button) {
 function overrideExistingRegionRules({
     newRule,
     existingRulesWithSameRegion,
-    url,
+    initialUrl,
     region,
     matchingRules,
     rulesToOverride,
     newRules,
     reviewNotes,
 }) {
     if (existingRulesWithSameRegion.length > 1) {
-        console.warn('Multiple existing rules with the same region found for', url, region);
+        console.warn('Multiple existing rules with the same region found for', initialUrl, region);
         reviewNotes.push({
+            needsReview: true,
             note: 'Multiple existing rules with the same region found, consider removing all but one',
             ruleNames: existingRulesWithSameRegion.map((rule) => rule.name),
             existingRules: matchingRules.map((rule) => rule.name),
@@ -129,8 +132,9 @@ function overrideExistingRegionRules({
     // find an existing rule that we haven't overridden yet
     const ruleToOverride = existingRulesWithSameRegion.find((rule) => !rulesToOverride.some((r) => r.name === rule.name));
     if (!ruleToOverride) {
-        console.warn('Already overridden all existing rules for', url, region, 'creating a new one');
+        console.warn('Already overridden all existing rules for', initialUrl, region, 'creating a new one');
         reviewNotes.push({
+            needsReview: true,
             note: 'Already overridden all existing rules, creating a new one',
             ruleName: newRule.name,
             existingRules: existingRulesWithSameRegion.map((rule) => rule.name),
@@ -141,13 +145,25 @@ function overrideExistingRegionRules({
         rulesToOverride.push({
             ...newRule,
             name: ruleToOverride.name, // keep the existing rule name
+            _metadata: ruleToOverride._metadata, // keep the existing metadata
         });
-        reviewNotes.push({
-            note: 'Overriding existing rule',
-            ruleName: ruleToOverride.name,
-            existingRules: matchingRules.map((rule) => rule.name),
-            region,
-        });
+        if (ruleToOverride._metadata?.manuallyReviewUpdates) {
+            reviewNotes.push({
+                needsReview: true,
+                note: 'Updated rule that has been manually edited before',
+                ruleName: ruleToOverride.name,
+                existingRules: matchingRules.map((rule) => rule.name),
+                region,
+            });
+        } else {
+            reviewNotes.push({
+                needsReview: false,
+                note: 'Overriding existing rule',
+                ruleName: ruleToOverride.name,
+                existingRules: matchingRules.map((rule) => rule.name),
+                region,
+            });
+        }
     }
 }
 
@@ -156,27 +172,29 @@ function overrideExistingRegionRules({
  * override an existing one, or do nothing.
  * @param {object} context - The context for processing the button.
  * @param {string} context.region
- * @param {string} context.url
+ * @param {string} context.initialUrl
+ * @param {string} context.finalUrl
  * @param {import('./types').ScrapeScriptResult} context.frame
  * @param {import('./types').ButtonData} context.button
  * @param {import('./types').AutoConsentCMPRule[]} context.matchingRules
  * @param {import('./types').AutoConsentCMPRule[]} context.newRules
  * @param {import('./types').AutoConsentCMPRule[]} context.rulesToOverride
  * @param {import('./types').ReviewNote[]} context.reviewNotes
  */
-function processRejectButton({ region, url, frame, button, matchingRules, newRules, rulesToOverride, reviewNotes }) {
+function processRejectButton({ region, initialUrl, frame, button, matchingRules, newRules, rulesToOverride, reviewNotes }) {
     let newRule;
     try {
-        newRule = generateAutoconsentRule(region, url, frame, button);
+        newRule = generateAutoconsentRule(region, initialUrl, frame, button);
     } catch (err) {
-        console.error(`Error generating rule for ${url} (${frame.origin})`, err);
+        console.error(`Error generating rule for ${initialUrl} (${frame.origin})`, err);
         return;
     }
 
     if (matchingRules.length === 0) {
         // add the first rule for this site
         newRules.push(newRule);
         reviewNotes.push({
+            needsReview: false,
             note: 'New rule added',
             ruleName: newRule.name,
         });
@@ -192,7 +210,7 @@ function processRejectButton({ region, url, frame, button, matchingRules, newRul
         overrideExistingRegionRules({
             newRule,
             existingRulesWithSameRegion,
-            url,
+            initialUrl,
             region,
             matchingRules,
             rulesToOverride,
@@ -203,6 +221,7 @@ function processRejectButton({ region, url, frame, button, matchingRules, newRul
         // assume it's a new region-specific popup, but flag it for review
         newRules.push(newRule);
         reviewNotes.push({
+            needsReview: false,
             note: 'New region-specific popup',
             ruleName: newRule.name,
             existingRules: matchingRules.map((rule) => rule.name),
@@ -214,12 +233,13 @@ function processRejectButton({ region, url, frame, button, matchingRules, newRul
 /**
  * Analyze existing rules and generate new rules when necessary.
  * @param {string} region
- * @param {string} url - The URL being processed.
+ * @param {string} initialUrl - The URL of the initial page.
+ * @param {string} finalUrl - The URL of the final page (after load redirects).
  * @param {import('./types').CookiePopupsCollectorResult} collectorResult - The collector result.
  * @param {import('./types').AutoConsentCMPRule[]} matchingRules - Array of existing rules.
  * @returns {{newRules: import('./types').AutoConsentCMPRule[], rulesToOverride: import('./types').AutoConsentCMPRule[], reviewNotes: import('./types').ReviewNote[], keptCount: number}}
  */
-function generateRulesForSite(region, url, collectorResult, matchingRules) {
+function generateRulesForSite(region, initialUrl, finalUrl, collectorResult, matchingRules) {
     /** @type {import('./types').AutoConsentCMPRule[]} */
     const newRules = [];
     /** @type {import('./types').AutoConsentCMPRule[]} */
@@ -230,10 +250,11 @@ function generateRulesForSite(region, url, collectorResult, matchingRules) {
 
     const llmConfirmedPopups = collectorResult.scrapedFrames.flatMap((frame) => frame.potentialPopups).filter((popup) => popup.llmMatch);
     if (llmConfirmedPopups.length > 1 || llmConfirmedPopups[0].rejectButtons.length > 1) {
-        console.warn('Multiple cookie popups or reject buttons found in', url);
+        console.warn('Multiple cookie popups or reject buttons found in', initialUrl);
         reviewNotes.push({
+            needsReview: false, // it's not a problem by itself, unless this leads to multiple _rules_ generated, but we check that separately.
             note: 'Multiple popups or reject buttons found',
-            url,
+            url: initialUrl,
             region,
         });
     }
@@ -247,13 +268,14 @@ function generateRulesForSite(region, url, collectorResult, matchingRules) {
                     keptCount++;
                     continue;
                 }
-                processRejectButton({ region, url, frame, button, matchingRules, newRules, rulesToOverride, reviewNotes });
+                processRejectButton({ region, initialUrl, finalUrl, frame, button, matchingRules, newRules, rulesToOverride, reviewNotes });
             }
         }
     }
 
     if (newRules.length > 1) {
         reviewNotes.push({
+            needsReview: true,
             note: 'Multiple new rules generated',
             ruleNames: newRules.map((rule) => rule.name),
         });
diff --git a/post-processing/generate-autoconsent-rules/main.js b/post-processing/generate-autoconsent-rules/main.js
@@ -17,22 +17,27 @@ generateCMPTests('${ruleName}', ${JSON.stringify(testUrls)}, {testOptIn: false,
 
 /**
  * Find existing rules that match a given URL/domain.
- * @param {string} url - The URL to match against.
+ * @param {string} initialUrl - The URL of the initial page.
+ * @param {string} finalUrl - The URL of the final page (after load redirects).
  * @param {import('./types').CookiePopupsCollectorResult} collectorResult - Array of processed cookie popups.
  * @param {import('./types').AutoConsentCMPRule[]} existingRules - Array of existing rules.
  * @returns {import('./types').AutoConsentCMPRule[]} Array of matching existing rules.
  */
-function findMatchingExistingRules(url, collectorResult, existingRules) {
+function findMatchingExistingRules(initialUrl, finalUrl, collectorResult, existingRules) {
     return existingRules.filter((rule) => {
         if (rule.runContext && rule.runContext.urlPattern) {
             try {
                 const pattern = new RegExp(rule.runContext.urlPattern);
                 // rule is a match iff:
                 // urlPattern matches the crawled site
                 return (
-                    pattern.test(url) ||
+                    pattern.test(initialUrl) ||
+                    pattern.test(finalUrl) ||
                     // OR vendorUrl matches the crawled site (this is more like a heuristic as vendorUrl is not used by Autoconsent)
-                    rule.vendorUrl === url ||
+                    rule.vendorUrl === initialUrl ||
+                    rule.vendorUrl === finalUrl ||
+                    rule._metadata?.vendorUrl === initialUrl ||
+                    rule._metadata?.vendorUrl === finalUrl ||
                     // OR the rule matched a frame
                     (rule.runContext?.frame && collectorResult.scrapedFrames.some((frame) => pattern.test(frame.origin)))
                 );
@@ -120,7 +125,8 @@ async function writeRuleFiles({ rule, url, rulesDir, testDir, autoconsentDir, re
  * Process cookie popups for a single site and generate/update rules.
  * @param {import('./types').GlobalParams} globalParams
  * @param {{
- *  finalUrl: string, // URL of the site
+ *  finalUrl: string, // final URL of the site
+ *  initialUrl: string, // initial URL of the site
  *  collectorResult: import('./types').CookiePopupsCollectorResult,
  *  existingRules: import('./types').AutoConsentCMPRule[], // existing Autoconsent rules
  * }} params
@@ -132,7 +138,7 @@ async function writeRuleFiles({ rule, url, rulesDir, testDir, autoconsentDir, re
  * updatedExistingRules: import('./types').AutoConsentCMPRule[],
  * }>}
  */
-async function processCookiePopupsForSite(globalParams, { finalUrl, collectorResult, existingRules }) {
+async function processCookiePopupsForSite(globalParams, { finalUrl, initialUrl, collectorResult, existingRules }) {
     const { rulesDir, testDir, autoconsentDir, region } = globalParams;
 
     /** @type {import('./types').AutoconsentManifestFileData[]} */
@@ -149,11 +155,37 @@ async function processCookiePopupsForSite(globalParams, { finalUrl, collectorRes
         return { newRuleFiles, updatedRuleFiles, keptCount: 0, reviewNotes: [], updatedExistingRules };
     }
 
-    const matchingRules = findMatchingExistingRules(finalUrl, collectorResult, existingRules);
+    const matchingRules = findMatchingExistingRules(initialUrl, finalUrl, collectorResult, existingRules);
     console.log(
         `Detected ${llmConfirmedPopups.length} unhandled cookie popup(s) on ${finalUrl} (matched ${matchingRules.length} existing rules)`,
     );
-    const { newRules, rulesToOverride, reviewNotes, keptCount } = generateRulesForSite(region, finalUrl, collectorResult, matchingRules);
+    const { newRules, rulesToOverride, reviewNotes, keptCount } = generateRulesForSite(
+        region,
+        initialUrl,
+        finalUrl,
+        collectorResult,
+        matchingRules,
+    );
+    try {
+        const initialHost = new URL(initialUrl).host;
+        const finalHost = new URL(finalUrl).host;
+        if (
+            initialHost !== finalHost &&
+            // ignore redirects from www. to non-www and vice versa
+            initialHost !== 'www.' + finalHost &&
+            finalHost !== 'www.' + initialHost
+        ) {
+            reviewNotes.push({
+                note: `Site changed host: \`${initialHost}\` -> \`${finalHost}\``,
+                needsReview: true,
+            });
+        }
+    } catch (err) {
+        reviewNotes.push({
+            note: `Failed to parse URL for \`${initialUrl}\` or \`${finalUrl}\`: \`${err.message}\``,
+            needsReview: true,
+        });
+    }
 
     updatedExistingRules.push(...newRules);
     rulesToOverride.forEach((rule) => {
@@ -294,6 +326,7 @@ async function processFiles(globalParams, existingRules) {
                 totalUnhandled++;
                 const result = await processCookiePopupsForSite(globalParams, {
                     finalUrl: jsonData.finalUrl,
+                    initialUrl: jsonData.initialUrl,
                     collectorResult,
                     existingRules: existingRulesAfter,
                 });
diff --git a/post-processing/generate-autoconsent-rules/types.js b/post-processing/generate-autoconsent-rules/types.js
@@ -3,6 +3,7 @@
  *  data: {
  *      cookiepopups: import('../../collectors/CookiePopupsCollector').CookiePopupsCollectorResult;
  *  };
+ *  initialUrl: string;
  *  finalUrl: string;
  * }} CrawlData
  */
@@ -19,6 +20,7 @@
 /**
  * @typedef {{
  *  note: string;
+ *  needsReview: boolean;
  *  url?: string;
  *  region?: string;
  *  ruleName?: string;

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+# .git-blame-ignore-revs`
	`2`	`+# Switched to a shared DDG ESLint config and introduced Prettier: https://github.com/duckduckgo/tracker-radar-collector/pull/158`
	`3`	`+fc856d1fa643b409768d62e4f819fb915cf050ad`