lint

Author: freeznet

.github/workflows/lint.yaml

@@ -0,0 +1,50 @@
+name: Lint
+on:
+  push:
+  pull_request:
+
+permissions:
+  contents: read
+
+jobs:
+  lint:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v4
+
+      - name: Set up Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: 'go.mod'
+
+      - name: Verify dependencies
+        run: |
+          go mod verify
+          go mod download
+
+          LINT_VERSION=1.64.8
+          curl -fsSL https://github.com/golangci/golangci-lint/releases/download/v${LINT_VERSION}/golangci-lint-${LINT_VERSION}-linux-amd64.tar.gz | \
+            tar xz --strip-components 1 --wildcards \*/golangci-lint
+          mkdir -p bin && mv golangci-lint bin/
+
+      - name: Run checks
+        run: |
+          STATUS=0
+          assert-nothing-changed() {
+            local diff
+            "$@" >/dev/null || return 1
+            if ! diff="$(git diff -U1 --color --exit-code)"; then
+              printf '\e[31mError: running `\e[1m%s\e[22m` results in modifications that you must check into version control:\e[0m\n%s\n\n' "$*" "$diff" >&2
+              git checkout -- .
+              STATUS=1
+            fi
+          }
+
+          assert-nothing-changed go fmt ./...
+          assert-nothing-changed go mod tidy
+
+          bin/golangci-lint run --out-format=colored-line-number --timeout=3m || STATUS=$?
+
+          exit $STATUS

.gitignore

@@ -5,3 +5,6 @@ dist/
 .DS_Store 
 tmp/
 *.log
+
+# Go
+vendor

.golangci.yml

@@ -0,0 +1,28 @@
+run:
+  timeout: 5m
+  tests: true
+  concurrency: 4
+
+linters:
+  enable:
+    - govet
+    - errcheck
+    - staticcheck
+    - gofmt
+    - goimports
+    - revive
+    - ineffassign
+    - typecheck
+    - unused
+    - gosimple
+    - misspell
+    - nakedret
+    - bodyclose
+    - gocritic
+    - makezero
+    - gosec
+
+output:
+  formats: colored-line-number
+  print-issued-lines: true
+  print-linter-name: true

.goreleaser.yaml

@@ -0,0 +1,44 @@
+version: 2
+project_name: streamnative-mcp-server
+before:
+  hooks:
+    - go mod tidy
+    - go generate ./...
+
+builds:
+  - env:
+      - CGO_ENABLED=0
+    ldflags:
+      - -s -w -X main.version={{.Version}} -X main.commit={{.Commit}} -X main.date={{.Date}}
+    goos:
+      - linux
+      - windows
+      - darwin
+    main: ./cmd/streamnative-mcp-server
+
+archives:
+  - formats: tar.gz
+    # this name template makes the OS and Arch compatible with the results of `uname`.
+    name_template: >-
+      {{ .ProjectName }}_
+      {{- title .Os }}_
+      {{- if eq .Arch "amd64" }}x86_64
+      {{- else if eq .Arch "386" }}i386
+      {{- else }}{{ .Arch }}{{ end }}
+      {{- if .Arm }}v{{ .Arm }}{{ end }}
+    # use zip for windows archives
+    format_overrides:
+      - goos: windows
+        formats: zip
+
+changelog:
+  sort: asc
+  filters:
+    exclude:
+      - "^docs:"
+      - "^test:"
+
+release:
+  draft: true
+  prerelease: auto
+  name_template: "StreamNative MCP Server {{.Version}}"

Makefile

@@ -1,9 +1,7 @@
 BASE_PATH=github.com/streamnative/streamnative-mcp-server
 VERSION_PATH=main
-# GIT_VERSION=$(shell git describe --tags --abbrev=0)-SNAPSHOT-$(shell git rev-parse --short HEAD)
-# GIT_COMMIT=$(shell git rev-parse HEAD)
-GIT_VERSION=snapshot
-GIT_COMMIT=snapshot
+GIT_VERSION=$(shell git describe --tags --abbrev=0)-SNAPSHOT-$(shell git rev-parse --short HEAD)
+GIT_COMMIT=$(shell git rev-parse HEAD)
 BUILD_DATE=$(shell date -u +"%Y-%m-%dT%H:%M:%SZ")
 MKDIR_P = mkdir -p
 

cmd/streamnative-mcp-server/main.go

@@ -38,8 +38,8 @@ func newRootCommand(configOpts *config.Options) *cobra.Command {
 		Short: "StreamNative Cloud MCP Server for AI agent integration",
 		Long: `StreamNative Cloud MCP Server provides resources and tools for AI agents 
 to interact with StreamNative Cloud resources and services.`,
-		Run: func(cmd *cobra.Command, args []string) {
-			cmd.Help()
+		Run: func(cmd *cobra.Command, _ []string) {
+			_ = cmd.Help()
 		},
 		Version: fmt.Sprintf("Version: %s\nCommit: %s\nBuild Date: %s", version, commit, date),
 	}

pkg/auth/store/keyring.go

@@ -3,7 +3,7 @@
 package store
 
 import (
-	"crypto/sha1"
+	"crypto/sha1" //nolint:gosec
 	"encoding/json"
 	"fmt"
 	"sync"
@@ -180,7 +180,7 @@ func (f *KeyringStore) setItem(item storedItem) error {
 
 // hashKeyringKey creates a safe key based on the given string
 func hashKeyringKey(s string) string {
-	h := sha1.New()
+	h := sha1.New() //nolint:gosec
 	h.Write([]byte(s))
 	bs := h.Sum(nil)
 	return fmt.Sprintf("%x", bs)

pkg/cmd/mcp/mcp.go

@@ -38,94 +38,103 @@ func (o *ServerOptions) Complete() error {
 	snConfig := o.Options.LoadConfigOrDie()
 
 	// If the key file is provided, use it to authenticate to StreamNative Cloud
-	if snConfig.KeyFile != "" {
-		issuer := snConfig.Auth.Issuer()
+	switch {
+	case snConfig.KeyFile != "":
+		{
+			issuer := snConfig.Auth.Issuer()
 
-		// authorize
-		flow, err := o.newClientCredentialsFlow(issuer, o.KeyFile)
-		if err != nil {
-			return errors.Wrap(err, "configuration error: unable to use client credential flow")
-		}
-		grant, err := flow.Authorize()
-		if err != nil {
-			return errors.Wrap(err, "activation failed")
-		}
-
-		// persist the authorization data
-		if err = o.Options.SaveGrant(issuer.Audience, *grant); err != nil {
-			return errors.Wrap(err, "Unable to store the authorization data")
-		}
+			// authorize
+			flow, err := o.newClientCredentialsFlow(issuer, o.KeyFile)
+			if err != nil {
+				return errors.Wrap(err, "configuration error: unable to use client credential flow")
+			}
+			grant, err := flow.Authorize()
+			if err != nil {
+				return errors.Wrap(err, "activation failed")
+			}
 
-		err = config.InitSNCloudClient(
-			issuer.IssuerEndpoint, issuer.Audience, o.KeyFile, o.Options.Server, 30*time.Second, o.Options.Store)
-		if err != nil {
-			return errors.Wrap(err, "failed to initialize StreamNative Cloud client")
-		}
+			// persist the authorization data
+			if err = o.Options.SaveGrant(issuer.Audience, *grant); err != nil {
+				return errors.Wrap(err, "Unable to store the authorization data")
+			}
 
-		if o.Options.PulsarInstance != "" && o.Options.PulsarCluster != "" {
-			err = mcp.SetContext(o.Options, o.Options.PulsarInstance, o.Options.PulsarCluster)
+			err = config.InitSNCloudClient(
+				issuer.IssuerEndpoint, issuer.Audience, o.KeyFile, o.Options.Server, 30*time.Second, o.Options.Store)
 			if err != nil {
-				return errors.Wrap(err, "failed to set StreamNative Cloud context")
+				return errors.Wrap(err, "failed to initialize StreamNative Cloud client")
 			}
-		}
 
-		if len(o.Features) != 0 {
-			requiredFeatures := []mcp.McpFeature{
-				mcp.FeatureStreamNativeCloud,
+			if o.Options.PulsarInstance != "" && o.Options.PulsarCluster != "" {
+				err = mcp.SetContext(o.Options, o.Options.PulsarInstance, o.Options.PulsarCluster)
+				if err != nil {
+					return errors.Wrap(err, "failed to set StreamNative Cloud context")
+				}
 			}
-			for _, feature := range requiredFeatures {
-				if !slices.Contains(o.Features, string(feature)) {
-					o.Features = append(o.Features, string(feature))
+
+			if len(o.Features) != 0 {
+				requiredFeatures := []mcp.Feature{
+					mcp.FeatureStreamNativeCloud,
+				}
+				for _, feature := range requiredFeatures {
+					if !slices.Contains(o.Features, string(feature)) {
+						o.Features = append(o.Features, string(feature))
+					}
 				}
+			} else {
+				o.Features = []string{string(mcp.FeatureAll)}
 			}
-		} else {
-			o.Features = []string{string(mcp.FeatureAll)}
 		}
-	} else if snConfig.ExternalKafka != nil {
-		if len(o.Features) != 0 {
-			return errors.New("kafka-only mode does not support additional features")
-		}
-		o.Features = []string{string(mcp.FeatureKafkaClient), string(mcp.FeatureKafkaAdmin), string(mcp.FeatureKafkaAdminSchemaRegistry)}
-		err := kafka.NewCurrentKafkaContext(kafka.KafkaContext{
-			BootstrapServers:          snConfig.ExternalKafka.BootstrapServers,
-			AuthType:                  snConfig.ExternalKafka.AuthType,
-			AuthMechanism:             snConfig.ExternalKafka.AuthMechanism,
-			AuthUser:                  snConfig.ExternalKafka.AuthUser,
-			AuthPass:                  snConfig.ExternalKafka.AuthPass,
-			UseTLS:                    snConfig.ExternalKafka.UseTLS,
-			ClientKeyFile:             snConfig.ExternalKafka.ClientKeyFile,
-			ClientCertFile:            snConfig.ExternalKafka.ClientCertFile,
-			CaFile:                    snConfig.ExternalKafka.CaFile,
-			SchemaRegistryURL:         snConfig.ExternalKafka.SchemaRegistryURL,
-			SchemaRegistryAuthUser:    snConfig.ExternalKafka.SchemaRegistryAuthUser,
-			SchemaRegistryAuthPass:    snConfig.ExternalKafka.SchemaRegistryAuthPass,
-			SchemaRegistryBearerToken: snConfig.ExternalKafka.SchemaRegistryBearerToken,
-		})
-		if err != nil {
-			return errors.Wrap(err, "failed to set external Kafka context")
+	case snConfig.ExternalKafka != nil:
+		{
+			if len(o.Features) != 0 {
+				return errors.New("kafka-only mode does not support additional features")
+			}
+			o.Features = []string{string(mcp.FeatureKafkaClient), string(mcp.FeatureKafkaAdmin), string(mcp.FeatureKafkaAdminSchemaRegistry)}
+			err := kafka.NewCurrentKafkaContext(kafka.KafkaContext{
+				BootstrapServers:          snConfig.ExternalKafka.BootstrapServers,
+				AuthType:                  snConfig.ExternalKafka.AuthType,
+				AuthMechanism:             snConfig.ExternalKafka.AuthMechanism,
+				AuthUser:                  snConfig.ExternalKafka.AuthUser,
+				AuthPass:                  snConfig.ExternalKafka.AuthPass,
+				UseTLS:                    snConfig.ExternalKafka.UseTLS,
+				ClientKeyFile:             snConfig.ExternalKafka.ClientKeyFile,
+				ClientCertFile:            snConfig.ExternalKafka.ClientCertFile,
+				CaFile:                    snConfig.ExternalKafka.CaFile,
+				SchemaRegistryURL:         snConfig.ExternalKafka.SchemaRegistryURL,
+				SchemaRegistryAuthUser:    snConfig.ExternalKafka.SchemaRegistryAuthUser,
+				SchemaRegistryAuthPass:    snConfig.ExternalKafka.SchemaRegistryAuthPass,
+				SchemaRegistryBearerToken: snConfig.ExternalKafka.SchemaRegistryBearerToken,
+			})
+			if err != nil {
+				return errors.Wrap(err, "failed to set external Kafka context")
+			}
 		}
-	} else if snConfig.ExternalPulsar != nil {
-		if len(o.Features) != 0 {
-			return errors.New("pulsar-only mode does not support additional features")
+	case snConfig.ExternalPulsar != nil:
+		{
+			if len(o.Features) != 0 {
+				return errors.New("pulsar-only mode does not support additional features")
+			}
+			o.Features = []string{string(mcp.FeatureAllPulsar)}
+			err := pulsar.NewCurrentPulsarContext(pulsar.PulsarContext{
+				WebServiceURL:                 snConfig.ExternalPulsar.WebServiceURL,
+				AuthPlugin:                    snConfig.ExternalPulsar.AuthPlugin,
+				AuthParams:                    snConfig.ExternalPulsar.AuthParams,
+				Token:                         snConfig.ExternalPulsar.Token,
+				TLSAllowInsecureConnection:    snConfig.ExternalPulsar.TLSAllowInsecureConnection,
+				TLSEnableHostnameVerification: snConfig.ExternalPulsar.TLSEnableHostnameVerification,
+				TLSTrustCertsFilePath:         snConfig.ExternalPulsar.TLSTrustCertsFilePath,
+				TLSCertFile:                   snConfig.ExternalPulsar.TLSCertFile,
+				TLSKeyFile:                    snConfig.ExternalPulsar.TLSKeyFile,
+			})
+			if err != nil {
+				return errors.Wrap(err, "failed to set external Pulsar context")
+			}
 		}
-		o.Features = []string{string(mcp.FeatureAllPulsar)}
-		err := pulsar.NewCurrentPulsarContext(pulsar.PulsarContext{
-			WebServiceURL:                 snConfig.ExternalPulsar.WebServiceURL,
-			AuthPlugin:                    snConfig.ExternalPulsar.AuthPlugin,
-			AuthParams:                    snConfig.ExternalPulsar.AuthParams,
-			Token:                         snConfig.ExternalPulsar.Token,
-			TLSAllowInsecureConnection:    snConfig.ExternalPulsar.TLSAllowInsecureConnection,
-			TLSEnableHostnameVerification: snConfig.ExternalPulsar.TLSEnableHostnameVerification,
-			TLSTrustCertsFilePath:         snConfig.ExternalPulsar.TLSTrustCertsFilePath,
-			TLSCertFile:                   snConfig.ExternalPulsar.TLSCertFile,
-			TLSKeyFile:                    snConfig.ExternalPulsar.TLSKeyFile,
-		})
-		if err != nil {
-			return errors.Wrap(err, "failed to set external Pulsar context")
+	default:
+		{
+			return errors.New("no valid configuration found")
 		}
 	}
-
-	return nil
 }
 
 func (o *ServerOptions) AddFlags(cmd *cobra.Command) {