fix(test): avoid scanning fs-safe import boundary

2026-05-18 15:34:46 +00:00 · 2026-05-16 14:10:40 +08:00
parent 2bdbf240a9
commit f9d015346e
1 changed files with 68 additions and 4 deletions
--- a/src/infra/fs-safe-import-boundary.test.ts
+++ b/src/infra/fs-safe-import-boundary.test.ts
@@ -1,6 +1,7 @@
+import { spawnSync } from "node:child_process";
 import fs from "node:fs";
 import path from "node:path";
-import { describe, expect, it } from "vitest";
+import { describe, expect, it, vi } from "vitest";

 const REPO_ROOT = path.resolve(import.meta.dirname, "../..");
 const SCAN_ROOTS = ["src", "packages", "extensions"] as const;
@@ -11,7 +12,57 @@ function isSourceFile(filePath: string): boolean {
  return filePath.endsWith(".ts") && !filePath.endsWith(".test.ts") && !filePath.endsWith(".d.ts");
 }

-function walk(dir: string): string[] {
+function listSourceFiles(dir: string): string[] {
+  const externalFiles = listExternalSourceFiles(dir);
+  if (externalFiles) {
+    return externalFiles;
+  }
+  return walkSourceFiles(dir);
+}
+
+function listExternalSourceFiles(dir: string): string[] | null {
+  const repoPath = toRepoPath(dir);
+  return listGitSourceFiles(repoPath) ?? listFindSourceFiles(dir);
+}
+
+function listGitSourceFiles(repoPath: string): string[] | null {
+  const result = spawnSync("git", ["ls-files", "--", repoPath], {
+    cwd: REPO_ROOT,
+    encoding: "utf8",
+    maxBuffer: 1024 * 1024 * 8,
+    stdio: ["ignore", "pipe", "ignore"],
+  });
+  if (result.status !== 0) {
+    return null;
+  }
+  return result.stdout
+    .split("\n")
+    .map((line) => line.trim())
+    .filter((line) => line.length > 0)
+    .map((filePath) => path.join(REPO_ROOT, filePath))
+    .filter(isSourceFile)
+    .toSorted();
+}
+
+function listFindSourceFiles(dir: string): string[] | null {
+  const result = spawnSync("find", [dir, "-type", "f", "-name", "*.ts"], {
+    cwd: REPO_ROOT,
+    encoding: "utf8",
+    maxBuffer: 1024 * 1024 * 8,
+    stdio: ["ignore", "pipe", "ignore"],
+  });
+  if (result.status !== 0) {
+    return null;
+  }
+  return result.stdout
+    .split("\n")
+    .map((line) => line.trim())
+    .filter((line) => line.length > 0)
+    .filter(isSourceFile)
+    .toSorted();
+}
+
+function walkSourceFiles(dir: string): string[] {
  const entries = fs.readdirSync(dir, { withFileTypes: true });
  const files: string[] = [];
  for (const entry of entries) {
@@ -20,7 +71,7 @@ function walk(dir: string): string[] {
      if (entry.name === "node_modules" || entry.name === "dist") {
        continue;
      }
-      files.push(...walk(fullPath));
+      files.push(...walkSourceFiles(fullPath));
      continue;
    }
    if (entry.isFile() && isSourceFile(fullPath)) {
@@ -35,8 +86,21 @@ function toRepoPath(filePath: string): string {
 }

 describe("fs-safe import boundary", () => {
+  it("lists source files without scanning boundary roots in-process", () => {
+    const readDir = vi.spyOn(fs, "readdirSync");
+    try {
+      const files = SCAN_ROOTS.flatMap((root) => listSourceFiles(path.join(REPO_ROOT, root)));
+
+      expect(files.length).toBeGreaterThan(0);
+      expect(files.every(isSourceFile)).toBe(true);
+      expect(readDir).not.toHaveBeenCalled();
+    } finally {
+      readDir.mockRestore();
+    }
+  });
+
  it("keeps direct fs-safe imports behind OpenClaw policy wrappers", () => {
-    const violations = SCAN_ROOTS.flatMap((root) => walk(path.join(REPO_ROOT, root)))
+    const violations = SCAN_ROOTS.flatMap((root) => listSourceFiles(path.join(REPO_ROOT, root)))
      .map(toRepoPath)
      .filter((filePath) => {
        if (ALLOWED_PREFIXES.some((prefix) => filePath.startsWith(prefix))) {