feat(ignore): adding event logger for ignored comments

billxinli · billxinli · commit 6e31308a758d · 2026-04-09T17:18:45.000+01:00
diff --git a/socketsecurity/core/scm/github.py b/socketsecurity/core/scm/github.py
@@ -211,20 +211,6 @@ def post_reaction(self, comment_id: int) -> None:
             base_url=self.config.api_url
         )
 
-    def post_eyes_reaction(self, comment_id: int) -> None:
-        path = f"repos/{self.config.owner}/{self.config.repository}/issues/comments/{comment_id}/reactions"
-        payload = json.dumps({"content": "eyes"})
-        try:
-            self.client.request(
-                path=path,
-                payload=payload,
-                method="POST",
-                headers=self.config.headers,
-                base_url=self.config.api_url
-            )
-        except Exception as error:
-            log.warning(f"Failed to add eyes reaction to comment {comment_id}: {error}")
-
     def comment_reaction_exists(self, comment_id: int) -> bool:
         path = f"repos/{self.config.owner}/{self.config.repository}/issues/comments/{comment_id}/reactions"
         try:
diff --git a/socketsecurity/core/scm/gitlab.py b/socketsecurity/core/scm/gitlab.py
@@ -220,8 +220,8 @@ def update_comment(self, body: str, comment_id: str) -> None:
             base_url=self.config.api_url
         )
 
-    def has_eyes_reaction(self, comment_id: int) -> bool:
-        """Best-effort check for 'eyes' award emoji on a MR note."""
+    def has_thumbsup_reaction(self, comment_id: int) -> bool:
+        """Best-effort check for 'thumbsup' award emoji on a MR note."""
         if not self.config.mr_project_id or not self.config.mr_iid:
             return False
         path = f"projects/{self.config.mr_project_id}/merge_requests/{self.config.mr_iid}/notes/{comment_id}/award_emoji"
@@ -232,7 +232,7 @@ def has_eyes_reaction(self, comment_id: int) -> bool:
                 base_url=self.config.api_url
             )
             for emoji in response.json():
-                if emoji.get("name") == "eyes":
+                if emoji.get("name") == "thumbsup":
                     return True
         except Exception as e:
             log.debug(f"Could not check award emoji for note {comment_id} (best effort): {e}")
@@ -345,26 +345,32 @@ def set_commit_status(self, state: str, description: str, target_url: str = '')
         except Exception as e:
             log.error(f"Failed to set commit status: {e}")
 
-    def post_eyes_reaction(self, comment_id: int) -> None:
-        """Best-effort: add 'eyes' award emoji to a MR note. The token may lack permission."""
+    def post_thumbsup_reaction(self, comment_id: int) -> None:
+        """Best-effort: add 'thumbsup' award emoji to a MR note."""
         if not self.config.mr_project_id or not self.config.mr_iid:
             return
         path = f"projects/{self.config.mr_project_id}/merge_requests/{self.config.mr_iid}/notes/{comment_id}/award_emoji"
         try:
             headers = {**self.config.headers, "Content-Type": "application/json"}
             self._request_with_fallback(
                 path=path,
-                payload=json.dumps({"name": "eyes"}),
+                payload=json.dumps({"name": "thumbsup"}),
                 method="POST",
                 headers=headers,
                 base_url=self.config.api_url
             )
         except Exception as e:
-            log.debug(f"Could not add eyes emoji to note {comment_id} (best effort): {e}")
+            log.debug(f"Could not add thumbsup emoji to note {comment_id} (best effort): {e}")
+
+    def handle_ignore_reactions(self, comments: dict) -> None:
+        for comment in comments.get("ignore", []):
+            if "SocketSecurity ignore" in comment.body and not self.has_thumbsup_reaction(comment.id):
+                self.post_thumbsup_reaction(comment.id)
 
     def remove_comment_alerts(self, comments: dict):
         security_alert = comments.get("security")
         if security_alert is not None:
             # Type narrowing: after None check, mypy knows this is Comment
             new_body = Comments.process_security_comment(security_alert, comments)
+            self.handle_ignore_reactions(comments)
             self.update_comment(new_body, str(security_alert.id))
diff --git a/socketsecurity/socketcli.py b/socketsecurity/socketcli.py
@@ -482,12 +482,12 @@ def main_code():
     log.debug(f"Flow decision: scm={scm is not None}, force_diff_mode={force_diff_mode}, force_api_mode={force_api_mode}, enable_diff={config.enable_diff}")
 
     def _is_unprocessed(c):
-        """Check if an ignore comment has not yet been marked with 'eyes' reaction.
-        For GitHub, reactions.eyes is already in the comment response (no extra call).
-        For GitLab, has_eyes_reaction() makes a lazy API call per comment."""
-        if getattr(c, "reactions", {}).get("eyes"):
+        """Check if an ignore comment has not yet been marked with '+1' reaction.
+        For GitHub, reactions['+1'] is already in the comment response (no extra call).
+        For GitLab, has_thumbsup_reaction() makes a lazy API call per comment."""
+        if getattr(c, "reactions", {}).get("+1"):
             return False
-        if hasattr(scm, "has_eyes_reaction") and scm.has_eyes_reaction(c.id):
+        if hasattr(scm, "has_thumbsup_reaction") and scm.has_thumbsup_reaction(c.id):
             return False
         return True
 
@@ -502,11 +502,8 @@ def _is_unprocessed(c):
 
         comments = scm.get_comments_for_pr()
 
-        log.debug("Removing comment alerts")
-        scm.remove_comment_alerts(comments)
-
-        # Emit telemetry only for ignore comments not yet marked with 'eyes' reaction.
-        # Process each comment individually so the comment author is recorded per event.
+        # Emit telemetry for ignore comments before +1 reaction is added.
+        # The +1 reaction (added by remove_comment_alerts) serves as the "processed" marker.
         if "ignore" in comments:
             unprocessed = [c for c in comments["ignore"] if _is_unprocessed(c)]
             if unprocessed:
@@ -539,13 +536,11 @@ def _is_unprocessed(c):
                     if events:
                         log.debug(f"Ignore telemetry: {len(events)} events to send")
                         client.post_telemetry_events(org_slug, events)
-
-                    # Mark as processed with eyes reaction
-                    if hasattr(scm, "post_eyes_reaction"):
-                        for c in unprocessed:
-                            scm.post_eyes_reaction(c.id)
                 except Exception as e:
                     log.warning(f"Failed to send ignore telemetry: {e}")
+
+        log.debug("Removing comment alerts")
+        scm.remove_comment_alerts(comments)
     
     elif scm is not None and scm.check_event_type() != "comment" and not force_api_mode:
         log.info("Push initiated flow")
@@ -618,10 +613,9 @@ def _is_unprocessed(c):
                     if events:
                         client.post_telemetry_events(org_slug, events)
 
-                    # Mark ignore comments as processed
-                    if hasattr(scm, "post_eyes_reaction"):
-                        for c in unprocessed_ignore:
-                            scm.post_eyes_reaction(c.id)
+                    # Mark ignore comments as processed with +1 reaction
+                    if hasattr(scm, "handle_ignore_reactions"):
+                        scm.handle_ignore_reactions(comments)
                 except Exception as e:
                     log.warning(f"Failed to send ignore telemetry: {e}")
 
diff --git a/tests/unit/test_ignore_telemetry_filtering.py b/tests/unit/test_ignore_telemetry_filtering.py
@@ -1,55 +1,55 @@
-"""Tests for the eyes-reaction dedup logic used to filter ignore comments for telemetry."""
+"""Tests for the +1 reaction dedup logic used to filter ignore comments for telemetry."""
 
 from unittest.mock import Mock
 
 from socketsecurity.core.classes import Comment
 from socketsecurity.core.scm_comments import Comments
 
 
-def _make_comment(body: str, eyes: int = 0, comment_id: int = 1, user: dict | None = None) -> Comment:
+def _make_comment(body: str, thumbs_up: int = 0, comment_id: int = 1, user: dict | None = None) -> Comment:
     return Comment(
         id=comment_id,
         body=body,
         body_list=body.split("\n"),
-        reactions={"eyes": eyes, "+1": 1},
+        reactions={"+1": thumbs_up},
         user=user or {"login": "test-user", "id": 123},
     )
 
 
 def _filter_unprocessed(comments: list[Comment], scm=None) -> list[Comment]:
     """Mirrors the _is_unprocessed logic in socketcli.py."""
     def _is_unprocessed(c):
-        if getattr(c, "reactions", {}).get("eyes"):
+        if getattr(c, "reactions", {}).get("+1"):
             return False
-        if hasattr(scm, "has_eyes_reaction") and scm.has_eyes_reaction(c.id):
+        if hasattr(scm, "has_thumbsup_reaction") and scm.has_thumbsup_reaction(c.id):
             return False
         return True
 
     return [c for c in comments if _is_unprocessed(c)]
 
 
 class TestUnprocessedIgnoreFiltering:
-    def test_returns_comments_without_eyes(self):
+    def test_returns_comments_without_thumbsup(self):
         comments = [
-            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", eyes=0, comment_id=1),
-            _make_comment("SocketSecurity ignore npm/express@4.18.2", eyes=0, comment_id=2),
+            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", thumbs_up=0, comment_id=1),
+            _make_comment("SocketSecurity ignore npm/express@4.18.2", thumbs_up=0, comment_id=2),
         ]
         result = _filter_unprocessed(comments)
         assert len(result) == 2
 
-    def test_excludes_comments_with_eyes(self):
+    def test_excludes_comments_with_thumbsup(self):
         comments = [
-            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", eyes=1, comment_id=1),
-            _make_comment("SocketSecurity ignore npm/express@4.18.2", eyes=0, comment_id=2),
+            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", thumbs_up=1, comment_id=1),
+            _make_comment("SocketSecurity ignore npm/express@4.18.2", thumbs_up=0, comment_id=2),
         ]
         result = _filter_unprocessed(comments)
         assert len(result) == 1
         assert result[0].id == 2
 
     def test_returns_empty_when_all_processed(self):
         comments = [
-            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", eyes=1, comment_id=1),
-            _make_comment("SocketSecurity ignore-all", eyes=2, comment_id=2),
+            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", thumbs_up=1, comment_id=1),
+            _make_comment("SocketSecurity ignore-all", thumbs_up=2, comment_id=2),
         ]
         result = _filter_unprocessed(comments)
         assert len(result) == 0
@@ -66,58 +66,58 @@ def test_handles_empty_reactions_dict(self):
         result = _filter_unprocessed([c])
         assert len(result) == 1
 
-    def test_handles_reactions_with_eyes_zero(self):
-        c = _make_comment("SocketSecurity ignore npm/foo@1.0.0", eyes=0, comment_id=1)
+    def test_handles_reactions_with_thumbsup_zero(self):
+        c = _make_comment("SocketSecurity ignore npm/foo@1.0.0", thumbs_up=0, comment_id=1)
         result = _filter_unprocessed([c])
         assert len(result) == 1
 
 
 class TestUnprocessedIgnoreFilteringWithScmFallback:
-    """Tests for the has_eyes_reaction fallback path (GitLab)."""
+    """Tests for the has_thumbsup_reaction fallback path (GitLab)."""
 
     def test_scm_fallback_excludes_processed_comments(self):
-        """When inline reactions.eyes is 0 but scm says it has eyes, exclude it."""
+        """When inline reactions['+1'] is 0 but scm says it has thumbsup, exclude it."""
         comments = [
-            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", eyes=0, comment_id=1),
-            _make_comment("SocketSecurity ignore npm/express@4.18.2", eyes=0, comment_id=2),
+            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", thumbs_up=0, comment_id=1),
+            _make_comment("SocketSecurity ignore npm/express@4.18.2", thumbs_up=0, comment_id=2),
         ]
         scm = Mock()
-        scm.has_eyes_reaction = Mock(side_effect=lambda cid: cid == 1)
+        scm.has_thumbsup_reaction = Mock(side_effect=lambda cid: cid == 1)
 
         result = _filter_unprocessed(comments, scm=scm)
         assert len(result) == 1
         assert result[0].id == 2
 
-    def test_scm_fallback_not_called_when_inline_eyes_present(self):
-        """When inline reactions.eyes is truthy, scm.has_eyes_reaction should not be called."""
+    def test_scm_fallback_not_called_when_inline_thumbsup_present(self):
+        """When inline reactions['+1'] is truthy, scm.has_thumbsup_reaction should not be called."""
         comments = [
-            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", eyes=1, comment_id=1),
+            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", thumbs_up=1, comment_id=1),
         ]
         scm = Mock()
-        scm.has_eyes_reaction = Mock(return_value=False)
+        scm.has_thumbsup_reaction = Mock(return_value=False)
 
         result = _filter_unprocessed(comments, scm=scm)
         assert len(result) == 0
-        scm.has_eyes_reaction.assert_not_called()
+        scm.has_thumbsup_reaction.assert_not_called()
 
-    def test_scm_without_has_eyes_reaction_skips_fallback(self):
-        """When scm doesn't have has_eyes_reaction (e.g. GitHub), only inline check runs."""
+    def test_scm_without_has_thumbsup_reaction_skips_fallback(self):
+        """When scm doesn't have has_thumbsup_reaction (e.g. GitHub), only inline check runs."""
         comments = [
-            _make_comment("SocketSecurity ignore npm/foo@1.0.0", eyes=0, comment_id=1),
+            _make_comment("SocketSecurity ignore npm/foo@1.0.0", thumbs_up=0, comment_id=1),
         ]
         scm = Mock(spec=[])  # no methods at all
 
         result = _filter_unprocessed(comments, scm=scm)
         assert len(result) == 1
 
     def test_scm_fallback_returns_all_unprocessed(self):
-        """When scm says none have eyes, all are returned."""
+        """When scm says none have thumbsup, all are returned."""
         comments = [
-            _make_comment("SocketSecurity ignore npm/foo@1.0.0", eyes=0, comment_id=1),
-            _make_comment("SocketSecurity ignore npm/bar@2.0.0", eyes=0, comment_id=2),
+            _make_comment("SocketSecurity ignore npm/foo@1.0.0", thumbs_up=0, comment_id=1),
+            _make_comment("SocketSecurity ignore npm/bar@2.0.0", thumbs_up=0, comment_id=2),
         ]
         scm = Mock()
-        scm.has_eyes_reaction = Mock(return_value=False)
+        scm.has_thumbsup_reaction = Mock(return_value=False)
 
         result = _filter_unprocessed(comments, scm=scm)
         assert len(result) == 2
@@ -128,9 +128,9 @@ class TestUnprocessedIgnoreFilteringWithCommentsParsing:
 
     def test_only_new_artifacts_are_parsed(self):
         comments = [
-            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", eyes=1, comment_id=1),
-            _make_comment("SocketSecurity ignore npm/express@4.18.2", eyes=0, comment_id=2),
-            _make_comment("SocketSecurity ignore npm/axios@1.6.0", eyes=0, comment_id=3),
+            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", thumbs_up=1, comment_id=1),
+            _make_comment("SocketSecurity ignore npm/express@4.18.2", thumbs_up=0, comment_id=2),
+            _make_comment("SocketSecurity ignore npm/axios@1.6.0", thumbs_up=0, comment_id=3),
         ]
         unprocessed = _filter_unprocessed(comments)
         unprocessed_comments = {"ignore": unprocessed}
@@ -143,8 +143,8 @@ def test_only_new_artifacts_are_parsed(self):
 
     def test_ignore_all_from_unprocessed(self):
         comments = [
-            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", eyes=1, comment_id=1),
-            _make_comment("SocketSecurity ignore-all", eyes=0, comment_id=2),
+            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", thumbs_up=1, comment_id=1),
+            _make_comment("SocketSecurity ignore-all", thumbs_up=0, comment_id=2),
         ]
         unprocessed = _filter_unprocessed(comments)
         unprocessed_comments = {"ignore": unprocessed}
@@ -154,8 +154,8 @@ def test_ignore_all_from_unprocessed(self):
 
     def test_no_unprocessed_means_no_telemetry(self):
         comments = [
-            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", eyes=1, comment_id=1),
-            _make_comment("SocketSecurity ignore npm/express@4.18.2", eyes=2, comment_id=2),
+            _make_comment("SocketSecurity ignore npm/lodash@4.17.21", thumbs_up=1, comment_id=1),
+            _make_comment("SocketSecurity ignore npm/express@4.18.2", thumbs_up=2, comment_id=2),
         ]
         unprocessed = _filter_unprocessed(comments)
         assert len(unprocessed) == 0
@@ -228,7 +228,7 @@ def test_gitlab_author_populates_sender(self):
         c = Comment(
             id=1, body="SocketSecurity ignore npm/foo@1.0.0",
             body_list=["SocketSecurity ignore npm/foo@1.0.0"],
-            reactions={"eyes": 0},
+            reactions={"+1": 0},
             author={"username": "gitlab-dev", "id": 42},
         )
         event = _build_event(c, artifact_input="npm/foo@1.0.0")
