MPT-17825: resolve WPS410, WPS412, WPS203, WPS322, WPS347 violations (#164)

🤖 **Codex-generated PR** — Please review carefully.

## Summary
- Updated Flake8 config to add global ignores for WPS410 and WPS412.
- Removed unused WPS codes from per-file ignores (WPS203, WPS322,
WPS347) and removed redundant WPS410/WPS412 there.
- Applied scoped lint-error fixes in table formatters, alias resolution,
stats string formatting, and audit plugin API URL calls.

## Validation
- make check-all

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

Closes [MPT-17825](https://softwareone.atlassian.net/browse/MPT-17825)

## Release Notes

- Updated Flake8 linter configuration to move unspecified WPS codes
(WPS410, WPS412) into global ignores and remove redundant file-specific
ignore entries
- Refactored token masking logic in `wrap_token` to improve code
structure using string concatenation with `"".join()` pattern
- Updated error message construction in `get_command` to use
intermediate variable for better readability
- Improved string output building in `ErrorMessagesCollector.__str__` by
using a list-based approach instead of incremental concatenation
- Enhanced `get_audit_records_by_object` to add explicit exit signal
when no records are found
- Simplified HTTP query string construction across audit plugin
endpoints using f-string formatting
- All 366 tests passed; code coverage maintained at 98%; all linting and
formatting checks passed

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

[MPT-17825]:
https://softwareone.atlassian.net/browse/MPT-17825?atlOrigin=eyJpIjoiNWRkNTljNzYxNjVmNDY3MDlhMDU5Y2ZhYzA5YTRkZjUiLCJwIjoiZ2l0aHViLWNvbS1KU1cifQ

Author: d3rky

cli/core/accounts/table_formatters.py

@@ -29,9 +29,10 @@ def wrap_token(account: Account, *, to_wrap_secret: bool) -> str:
 
     if to_wrap_secret:
         visible_token_prefix = token[:TOKEN_MASK_PREFIX_LENGTH]
+        token_tail = f"*****{visible_token_prefix}"
         if is_new_token:
-            token = f"{token[:NEW_TOKEN_MASK_PREFIX_LENGTH]}*****{visible_token_prefix}"
+            token = "".join((token[:NEW_TOKEN_MASK_PREFIX_LENGTH], token_tail))
         else:
-            token = f"{token[:TOKEN_MASK_PREFIX_LENGTH]}*****{visible_token_prefix}"
+            token = "".join((token[:TOKEN_MASK_PREFIX_LENGTH], token_tail))
 
     return token

cli/core/alias_group.py

@@ -31,7 +31,8 @@ def get_command(self, ctx: click.Context, cmd_name: str) -> click.Command | None
         if len(matches) == 1:
             return click.Group.get_command(self, ctx, matches[0])
 
-        ctx.fail(f"Too many matches: {', '.join(sorted(matches))}")
+        commands = ", ".join(sorted(matches))
+        ctx.fail(f"Too many matches: {commands}")
         return None
 
     def resolve_command(

cli/core/stats.py

@@ -68,22 +68,21 @@ def is_empty(self) -> bool:
         return self._is_empty
 
     def __str__(self) -> str:
-        msg = ""
+        lines: list[str] = []
         for section_name, section in self._sections.items():
-            msg = f"{msg}{section_name}:"
             section_messages = section.get("", [])
             if section_messages:
-                msg = f"{msg} {', '.join(section_messages)}\n"
+                lines.append(f"{section_name}: {', '.join(section_messages)}")
             else:
-                msg += "\n"
+                lines.append(f"{section_name}:")
 
             for item_name, item_messages in section.items():
                 if not item_name:
                     continue
 
-                msg = f"{msg}\t\t{item_name}: {', '.join(item_messages)}"
+                lines.append(f"\t\t{item_name}: {', '.join(item_messages)}")
 
-        return msg
+        return "\n".join(lines)
 
 
 class StatsCollector(ABC):

cli/plugins/audit_plugin/api.py

@@ -6,10 +6,11 @@
 
 def get_audit_trail(client: Any, record_id: str) -> dict[str, Any]:
     """Retrieve audit trail for a specific record."""
+    endpoint = f"/audit/records/{record_id}"
+    query_string = "render()&select=object,actor,details,documents,request.api.geolocation"
+
     try:
-        endpoint = f"/audit/records/{record_id}"
-        query_string = "render()&select=object,actor,details,documents,request.api.geolocation"
-        response = client.get(endpoint + "?" + query_string)
+        response = client.get(f"{endpoint}?{query_string}")
         return response.json()
     except Exception as error:
         console.print(
@@ -22,13 +23,14 @@ def get_audit_records_by_object(
     client: Any, object_id: str, limit: int = 10
 ) -> list[dict[str, Any]]:
     """Retrieve all audit records for a specific object."""
+    endpoint = "/audit/records"
+    query_string = (
+        "render()&select=object,actor,details,documents,request.api.geolocation"
+        f"&eq(object.id,'{object_id}')&order=-timestamp&limit={limit}"
+    )
+
     try:
-        endpoint = "/audit/records"
-        query_string = (
-            "render()&select=object,actor,details,documents,request.api.geolocation"
-            f"&eq(object.id,'{object_id}')&order=-timestamp&limit={limit}"
-        )
-        response = client.get(endpoint + "?" + query_string)
+        response = client.get(f"{endpoint}?{query_string}")
         records = response.json().get("data", [])
         if not records:
             console.print(f"[red]No audit records found for object {object_id}[/red]")

pyproject.toml

@@ -103,7 +103,7 @@ omit = [
 allowed-domain-names = ["result"]
 aaa_act_block_style = "large"
 doctests = true
-extend-ignore = ["WPS226"]
+extend-ignore = ["WPS226", "WPS410", "WPS412"]
 extend-exclude = [
   ".coverage",
   ".github",
@@ -121,8 +121,8 @@ select = ["AAA", "E999", "WPS"]
 show-source = true
 statistics = false
 per-file-ignores = [
-  "*.py:WPS204,WPS210,WPS211,WPS213,WPS214,WPS218,WPS221,WPS229,WPS231,WPS232,WPS234,WPS235,WPS237,WPS322,WPS327,WPS332,WPS335,WPS336,WPS338,WPS339,WPS342,WPS347,WPS349,WPS410,WPS412,WPS432",
-  "tests/**:WPS202,WPS203,WPS204,WPS210,WPS211,WPS213,WPS218,WPS221,WPS235,WPS322,WPS335,WPS339,WPS342,WPS432"
+  "*.py:WPS204,WPS210,WPS211,WPS213,WPS214,WPS218,WPS221,WPS229,WPS231,WPS232,WPS234,WPS235,WPS237,WPS327,WPS332,WPS335,WPS336,WPS338,WPS339,WPS342,WPS349,WPS432",
+  "tests/**:WPS202,WPS204,WPS210,WPS211,WPS213,WPS218,WPS221,WPS235,WPS335,WPS339,WPS342,WPS432"
 ]
 
 [tool.ruff]