Add a warning when NODE_SECURE_TOKEN is missing (#115)

tekeuange23 · fraxken · web-flow · commit ad82e64e85aa · 2022-10-08T15:52:28.000+02:00
* Add a warning when NODE_SECURE_TOKEN is missing

* refacto: the condition, error catching &amp; message stdout

* refacto: removed test &amp; updated the warning message

* refactor: remove async try/catch

Co-authored-by: Gentilhomme &lt;gentilhomme.thomas@gmail.com&gt;
diff --git a/bin/index.js b/bin/index.js
@@ -41,11 +41,17 @@ defaultScannerCommand("cwd", { strategy: vuln.strategies.NPM_AUDIT })
   .describe(i18n.getToken("cli.commands.cwd.desc"))
   .option("-n, --nolock", i18n.getToken("cli.commands.cwd.option_nolock"), false)
   .option("-f, --full", i18n.getToken("cli.commands.cwd.option_full"), false)
-  .action(commands.scanner.cwd);
+  .action(async(_, __, opts) => {
+    checkNodeSecureToken();
+    await commands.scanner.cwd(opts);
+  });
 
 defaultScannerCommand("from <package>")
   .describe(i18n.getToken("cli.commands.from.desc"))
-  .action(commands.scanner.from);
+  .action(async(packageName, _, opts) => {
+    checkNodeSecureToken();
+    await commands.scanner.from(packageName, opts);
+  });
 
 defaultScannerCommand("auto [package]", { includeOutput: false, strategy: vuln.strategies.SECURITY_WG })
   .describe(i18n.getToken("cli.commands.auto.desc"))
@@ -62,7 +68,10 @@ prog
   .command("verify [package]")
   .describe(i18n.getToken("cli.commands.verify.desc"))
   .option("-j, --json", i18n.getToken("cli.commands.verify.option_json"), false)
-  .action(commands.verify.main);
+  .action(async(packageName, _, opts) => {
+    checkNodeSecureToken();
+    await commands.verify.main(packageName, opts);
+  });
 
 prog
   .command("summary [json]")
@@ -102,3 +111,13 @@ function defaultScannerCommand(name, options = {}) {
 
   return cmd;
 }
+
+function checkNodeSecureToken() {
+  if (!process.env.NODE_SECURE_TOKEN) {
+    console.log(
+      kleur.white().bold(
+        `\n ${kleur.yellow().bold(`Environment variable ${"\"NODE_SECURE_TOKEN\""} is missing.`)}`
+      )
+    );
+  }
+}
diff --git a/test/commands/summary.spec.js b/test/commands/summary.spec.js
@@ -1,8 +1,11 @@
 // Import Node.js Dependencies
+import dotenv from "dotenv";
 import { spawn } from "child_process";
 import { fileURLToPath } from "url";
 import path from "path";
 
+dotenv.config();
+
 // Import Third-party Dependencies
 import test from "tape";
 import splitByLine from "split2";
