📝 Add docstrings to fix-windows-path-handling

[coderabbitai]

Docstrings generation was requested by @subhash-0000.

• Make Unix/Linux path handling OS-independent for Windows compatibility #1173 (comment)

The following files were modified:

• nettacker/api/engine.py
• nettacker/core/arg_parser.py
• nettacker/core/messages.py
• nettacker/core/template.py
• nettacker/core/utils/common.py

ℹ️ Note

CodeRabbit cannot perform edits on its own pull requests yet.

[coderabbitai]

Summary by CodeRabbit

• Bug Fixes

  • Improved error handling for scan result retrieval with proper HTTP status codes when parameters are missing
  • Enhanced filename handling for downloaded files to ensure correct attachment names

• Improvements

  • More robust language and module discovery mechanisms
  • Added proper character encoding support for file operations

_{✏️ Tip: You can customize this high-level summary in your review settings.}

Walkthrough

This pull request refactors path handling across multiple modules to use path components and file stems instead of string splitting, adds explicit UTF-8 encoding to file operations, improves error handling in the API layer, and enhances documentation.

Changes

Cohort / File(s)	Summary
Path handling refactoring nettacker/core/arg_parser.py, nettacker/core/messages.py	Updated graph, language, and module loading functions to derive identifiers from path components and file stems rather than string splitting. load_modules return type changes from list to dict with <library>_<category> keys mapping to info dicts or None; adds "..." placeholder when limit is reached.
API improvements nettacker/api/engine.py	Added parameter validation for "id" field in get_result_content, returning HTTP 400 on missing ID; improved error handling for database retrieval failures (HTTP 500). Updated docstring and response filename handling to use os.path.basename.
File encoding and documentation nettacker/core/template.py	Introduced explicit UTF-8 encoding when opening YAML module files in TemplateLoader.open; added detailed docstrings for open and format methods.
Documentation improvements nettacker/core/utils/common.py	Added descriptive docstrings clarifying that "/" is a key delimiter in re_address_repeaters_key_name and documenting the function's concatenation behavior.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

• load_modules return type change from list to dict with structured keys and limit-based truncation logic requires verification of all callsites
• Module discovery and severity/description caching behavior should be validated
• API parameter validation paths and error response codes need verification against specifications

Suggested reviewers

• arkid15r
• securestep9

Pre-merge checks

❌ Failed checks (2 warnings)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The title references 'fix-windows-path-handling' branch but the actual changes are docstring additions across multiple core and API modules, not windows path handling fixes.	Update title to accurately reflect that docstrings were added to multiple core modules, e.g., '📝 Add docstrings to core modules and API engine'
Docstring Coverage	⚠️ Warning	Docstring coverage is 78.57% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (1 passed)

Check name	Status	Explanation
Description check	✅ Passed	The description clearly explains that docstrings were requested and lists all modified files, directly relating to the changeset.

Tip

✨ Issue Enrichment is now available for GitHub issues!

CodeRabbit can now help you manage issues more effectively:

• Duplicate Detection — Identify similar or duplicate issues
• Related Issues & PRs — Find relevant issues and PR's from your repository
• Suggested Assignees — Find the best person to work on the issue
• Implementation Planning — Generate detailed coding plans for engineers and agents

Disable automatic issue enrichment

To disable automatic issue enrichment, add the following to your .coderabbit.yaml:

issue_enrichment:
  auto_enrich:
    enabled: false

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[deekshithaby]

Hi, um so I checked the PR locally and the docstring changes look good. but the CI is failing on pre-commit check though, it might just need a re run or quick formatting fix. Let me know if you want me to take a look.

[subhash-0000]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[coderabbitai]

Actionable comments posted: 2

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

nettacker/core/arg_parser.py (1)

72-106: Docstring uses tab indentation and exceeds line length limits.

The docstring uses tabs instead of 4-space indentation (lines 77-85), which violates coding guidelines and likely causes the ruff-format failure.

     @staticmethod
     def load_modules(limit=-1, full_details=False):
         """
         Load available scanning modules from the configured modules directory.
-        
+
         Parameters:
-        	limit (int): Maximum number of modules to return; -1 means no limit. If the limit is reached a "..." placeholder will be inserted.
-        	full_details (bool): If True, include each module's parsed `info` mapping as the value; otherwise the value will be None.
-        
+            limit (int): Maximum number of modules to return; -1 means no limit.
+                If the limit is reached a "..." placeholder will be inserted.
+            full_details (bool): If True, include each module's parsed `info` mapping
+                as the value; otherwise the value will be None.
+
         Returns:
-        	dict: Mapping of module keys ("<library>_<category>") to either their `info` dict (when full_details is True) or None. Always includes an "all" entry and may include a "..." placeholder when truncated.
-        
+            dict: Mapping of module keys ("<library>_<category>") to either their `info`
+                dict (when full_details is True) or None. Always includes an "all" entry
+                and may include a "..." placeholder when truncated.
+
         Notes:
-        	This function also updates the module severity and description cache (all_module_severity_and_desc) for each discovered module.
+            This function also updates the module severity and description cache
+            (all_module_severity_and_desc) for each discovered module.
         """

🧹 Nitpick comments (3)

nettacker/core/template.py (1)

47-52: Inconsistent return type annotation style in docstring.

The open method uses str: but format uses formatted (str):. Use a consistent style.

         """
         Render the module's YAML template by applying the instance's inputs as format placeholders.
-        
+
         Returns:
-            formatted (str): The template string produced by calling `open()` and applying `str.format` with `self.inputs`.
+            str: The template string produced by calling `open()` and applying
+                `str.format` with `self.inputs`.
         """

nettacker/core/messages.py (1)

22-23: Consider adding explicit UTF-8 encoding for consistency.

The load_yaml function opens files without explicit encoding, while TemplateLoader.open in template.py now uses encoding="utf-8". For cross-platform consistency, consider updating this as well.

 def load_yaml(filename):
-    return yaml.load(StringIO(open(filename, "r").read()), Loader=yaml.FullLoader)
+    return yaml.load(StringIO(open(filename, "r", encoding="utf-8").read()), Loader=yaml.FullLoader)

nettacker/api/engine.py (1)

376-382: Docstring formatting could be improved.

The docstring has trailing whitespace on line 378 and the blank line uses spaces. Minor formatting issues that may contribute to the ruff-format failure.

     """
-    Retrieve the raw scan result content for a given report id and return it as an HTTP response.
-    
-    Validates the API key on the incoming request. If the "id" parameter is missing, responds with HTTP 400; if the report cannot be retrieved, responds with HTTP 500.
-    
+    Retrieve the raw scan result content for a given report id and return it as an HTTP response.
+
+    Validates the API key on the incoming request. If the "id" parameter is missing,
+    responds with HTTP 400; if the report cannot be retrieved, responds with HTTP 500.
+
     Returns:
-        Response: HTTP response whose body is the scan file content, with the MIME type determined from the file extension and a `Content-Disposition` attachment filename header.
+        Response: HTTP response whose body is the scan file content, with the MIME type
+            determined from the file extension and a `Content-Disposition` attachment
+            filename header.
     """

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 65bf88e and 9fd025d.

📒 Files selected for processing (5)

• nettacker/api/engine.py (3 hunks)
• nettacker/core/arg_parser.py (2 hunks)
• nettacker/core/messages.py (2 hunks)
• nettacker/core/template.py (1 hunks)
• nettacker/core/utils/common.py (2 hunks)

🧰 Additional context used

📓 Path-based instructions (4)

**/*.py

📄 CodeRabbit inference engine (AGENTS.md)

**/*.py: Use 4-space indents in Python code
Limit lines to 99 characters (ruff/ruff-format/isort profile=black)
Module and file names should use lower_snake_case
Function and variable names should use lower_snake_case
Class names should use PascalCase
Constants should use UPPER_SNAKE_CASE
Keep functions small and add type hints where practical

Files:

• nettacker/core/utils/common.py
• nettacker/core/template.py
• nettacker/core/arg_parser.py
• nettacker/core/messages.py
• nettacker/api/engine.py

nettacker/**/*.py

📄 CodeRabbit inference engine (AGENTS.md)

Add docstrings for public APIs in the nettacker package

Files:

• nettacker/core/utils/common.py
• nettacker/core/template.py
• nettacker/core/arg_parser.py
• nettacker/core/messages.py
• nettacker/api/engine.py

nettacker/core/**

📄 CodeRabbit inference engine (AGENTS.md)

Place core libraries under nettacker/core/

Files:

• nettacker/core/utils/common.py
• nettacker/core/template.py
• nettacker/core/arg_parser.py
• nettacker/core/messages.py

nettacker/api/**

📄 CodeRabbit inference engine (AGENTS.md)

Place API-related code under nettacker/api/

Files:

• nettacker/api/engine.py

🧠 Learnings (2)

📓 Common learnings

Learnt from: CR
Repo: OWASP/Nettacker PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-09-07T19:20:58.332Z
Learning: Applies to nettacker/**/*.py : Add docstrings for public APIs in the nettacker package

📚 Learning: 2025-09-07T19:20:58.332Z

Learnt from: CR
Repo: OWASP/Nettacker PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-09-07T19:20:58.332Z
Learning: Applies to nettacker/**/*.py : Add docstrings for public APIs in the nettacker package

Applied to files:

• nettacker/core/utils/common.py

🧬 Code graph analysis (3)

nettacker/core/template.py (1)

nettacker/config.py (1)

• Config (183-187)

nettacker/core/arg_parser.py (1)

nettacker/config.py (1)

• Config (183-187)

nettacker/core/messages.py (1)

nettacker/config.py (1)

• Config (183-187)

🪛 GitHub Actions: CI/CD

nettacker/core/utils/common.py

[error] 1-1: pre-commit: ruff-format reformatted 5 files; hook failed. Run 'pre-commit run --all-files' locally to apply formatting fixes and re-run CI.

nettacker/core/template.py

[error] 1-1: pre-commit: ruff-format reformatted 5 files; hook failed. Run 'pre-commit run --all-files' locally to apply formatting fixes and re-run CI.

nettacker/core/arg_parser.py

[error] 1-1: pre-commit: ruff-format reformatted 5 files; hook failed. Run 'pre-commit run --all-files' locally to apply formatting fixes and re-run CI.

nettacker/core/messages.py

[error] 1-1: pre-commit: ruff-format reformatted 5 files; hook failed. Run 'pre-commit run --all-files' locally to apply formatting fixes and re-run CI.

nettacker/api/engine.py

[error] 1-1: pre-commit: ruff-format reformatted 5 files; hook failed. Run 'pre-commit run --all-files' locally to apply formatting fixes and re-run CI.

🔇 Additional comments (6)

nettacker/core/template.py (1)

43-44: Good addition of explicit UTF-8 encoding.

This ensures consistent file reading behavior across platforms, especially on Windows where the default encoding may vary.

nettacker/core/messages.py (1)

27-38: Good use of Path.stem for cross-platform compatibility.

Using language.stem instead of string manipulation provides more robust path handling across platforms.

nettacker/core/arg_parser.py (3)

43-55: Good refactor using Path.parent.name for graph discovery.

Using graph_library.parent.name instead of string splitting is more robust for cross-platform path handling.

---

57-70: Good use of Path.stem for language discovery.

Using language.stem provides consistent cross-platform behavior for extracting language identifiers from YAML filenames.

---

89-92: Good refactor using Path.stem and Path.parent.name.

Using pathlib attributes instead of string manipulation provides more robust cross-platform path handling for module discovery.

nettacker/api/engine.py (1)

374-398: Good refactor using os.path.basename for filename extraction.

Using os.path.basename(filename) instead of string splitting by "/" provides correct behavior on Windows where paths may use backslashes. The improved error handling with explicit HTTP status codes (400, 500) is also a good addition.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Docstring line exceeds 99-character limit.

Line 34 is too long and likely contributing to the ruff-format failure. Split the description across multiple lines.

     def open(self):
         """
         Return the contents of the YAML module file identified by this loader's name.
-        
-        The name is split on underscores to derive an action (last segment) and a library (remaining segments joined with underscores); the file at Config.path.modules_dir / action / f"{library}.yaml" is opened with UTF-8 encoding and its full text is returned.
-        
+
+        The name is split on underscores to derive an action (last segment) and a library
+        (remaining segments joined with underscores). The file at
+        Config.path.modules_dir / action / f"{library}.yaml" is opened with UTF-8 encoding
+        and its full text is returned.
+
         Returns:
             str: The raw text of the YAML file.
         """

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	"""
	Return the contents of the YAML module file identified by this loader's name.
	The name is split on underscores to derive an action (last segment) and a library (remaining segments joined with underscores); the file at Config.path.modules_dir / action / f"{library}.yaml" is opened with UTF-8 encoding and its full text is returned.
	Returns:
	str: The raw text of the YAML file.
	"""
	"""
	Return the contents of the YAML module file identified by this loader's name.
	The name is split on underscores to derive an action (last segment) and a library
	(remaining segments joined with underscores). The file at
	Config.path.modules_dir / action / f"{library}.yaml" is opened with UTF-8 encoding
	and its full text is returned.
	Returns:
	str: The raw text of the YAML file.
	"""

🤖 Prompt for AI Agents

In nettacker/core/template.py around lines 31 to 38, the docstring contains a
single description line that exceeds the 99-character limit (line 34); break
that long sentence into two or more shorter lines (each <=99 chars) within the
docstring, keeping existing indentation and punctuation, so the content remains
the same but wrapped across multiple lines to satisfy the formatter.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Docstring uses tab indentation instead of 4 spaces.

The docstring at lines 172-176 appears to use tab indentation, which violates the coding guideline requiring 4-space indents. This is likely contributing to the ruff-format failure.

 def re_address_repeaters_key_name(key_name):
     # Note: This uses "/" as a key delimiter, not a file path separator
     """
     Format a slash-delimited key path into a sequence of dictionary-access segments excluding the final key.
-    
+
     Parameters:
-    	key_name (str): A "/"-delimited key path ("/" is a key delimiter, not a filesystem separator).
-    
+        key_name (str): A "/"-delimited key path ("/" is a key delimiter, not a filesystem separator).
+
     Returns:
-    	str: Concatenated "['key']" segments for every component of `key_name` except the last; returns an empty string if there are no components before the final segment.
+        str: Concatenated "['key']" segments for every component of `key_name` except
+            the last; returns an empty string if there are no components before the
+            final segment.
     """

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	def re_address_repeaters_key_name(key_name):
	# Note: This uses "/" as a key delimiter, not a file path separator
	"""
	Format a slash-delimited key path into a sequence of dictionary-access segments excluding the final key.
	Parameters:
	key_name (str): A "/"-delimited key path ("/" is a key delimiter, not a filesystem separator).
	Returns:
	str: Concatenated "['key']" segments for every component of `key_name` except the last; returns an empty string if there are no components before the final segment.
	"""
	return "".join(["['" + _key + "']" for _key in key_name.split("/")[:-1]])
	def re_address_repeaters_key_name(key_name):
	# Note: This uses "/" as a key delimiter, not a file path separator
	"""
	Format a slash-delimited key path into a sequence of dictionary-access segments excluding the final key.
	Parameters:
	key_name (str): A "/"-delimited key path ("/" is a key delimiter, not a filesystem separator).
	Returns:
	str: Concatenated "['key']" segments for every component of `key_name` except
	the last; returns an empty string if there are no components before the
	final segment.
	"""
	return "".join(["['" + _key + "']" for _key in key_name.split("/")[:-1]])

🤖 Prompt for AI Agents

In nettacker/core/utils/common.py around lines 167 to 178, the docstring lines
(172–176) use tab indentation instead of the project-required 4-space
indentation; update the docstring so all interior lines are indented with 4
spaces (replace tabs with 4 spaces), maintain the existing content and wrapping,
then run the formatter/linter to verify the ruff-format failure is resolved.

[subhash-0000]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[deekshithaby]

Thanks, this makes sense. These look like straightforward formatting fixes (exceeding line length + indentation). If you’d like, I can open a small follow-up PR with these changes to unblock CI.

[subhash-0000]

@deekshithaby
Thanks for offering! I've already pushed the formatting fixes in my latest commit (4ba29e7). The docstrings are properly wrapped and indented now. Could you try re-running the CI checks to see if they pass?

[deekshithaby]

Thanks for the quick update! I don't have permissions to re-run the CI checks on this repository, so I can't trigger the jobs myself. Once they're re-run from your side, I'm happy to verify the results!

[subhash-0000]

@deekshithaby Thanks! Just to clarify - this PR #1174 was created by CodeRabbit. My actual Windows path handling fixes are in PR #1173.

That PR is currently awaiting workflow approval from a maintainer to run CI checks. If you'd like to review the changes, please check out #1173 instead