Skip to content

infrastructure.md

Latest commit

 

History

History
238 lines (183 loc) · 5.9 KB

infrastructure.md

File metadata and controls

238 lines (183 loc) · 5.9 KB

Infrastructure Languages

HCL (Terraform), JSON, TOML, and GraphQL support in Sitting Duck.

Language Nuances

Extraction Quality Summary

Infrastructure languages are primarily data/configuration formats rather than programming languages, so traditional metrics don't fully apply:

Language Structure Keys/Values Native Extraction Overall
HCL ⭐⭐⭐ ⭐⭐ Good for Terraform
JSON ⭐⭐⭐ ⭐⭐⭐ ⭐⭐ Excellent
TOML ⭐⭐⭐ ⭐⭐⭐ ⭐⭐ Excellent
GraphQL ⭐⭐⭐ ⭐⭐ Good for schemas

Implementation Notes

  • HCL Blocks: Terraform resource, variable, module, output blocks are detected as ORGANIZATION_SECTION.
  • JSON/TOML: Pure data formats with excellent structural parsing; no function/class concepts.
  • GraphQL Schemas: Type definitions, fields, and operations are extracted with appropriate semantic types.
  • GraphQL Fragment Spreads: Uses CUSTOM native extraction strategy for fragment_spread nodes.

Known Limitations

  • HCL Native Extraction: Limited native extraction - needs specialized extractor for Terraform-specific patterns.
  • GraphQL Queries: Query/mutation operations are parsed but argument extraction is basic.
  • Nested Structures: Deep JSON/TOML nesting is fully parsed but can produce large ASTs.

Use Cases

These languages are best used for:

  • HCL: Analyzing Terraform configurations, finding resource dependencies, auditing infrastructure
  • JSON: Parsing package.json, config files, API responses
  • TOML: Analyzing Cargo.toml, pyproject.toml, config files
  • GraphQL: Schema analysis, query validation, API documentation

HCL (Terraform)

Extensions: .hcl, .tf, .tfvars Identifier: 'hcl'

Common Node Types

Type Semantic Type Description
block ORGANIZATION_SECTION HCL blocks
attribute DEFINITION_VARIABLE Attributes
identifier NAME_IDENTIFIER Identifiers
string_lit LITERAL_STRING Strings

Examples

-- Find all blocks
SELECT type, name, peek
FROM read_ast('**/*.tf')
WHERE type = 'block';

-- Find resource definitions
SELECT peek
FROM read_ast('**/*.tf')
WHERE type = 'block'
  AND peek LIKE 'resource %';

-- Find variables
SELECT peek
FROM read_ast('**/*.tf')
WHERE type = 'block'
  AND peek LIKE 'variable %';

-- Find module references
SELECT peek
FROM read_ast('**/*.tf')
WHERE type = 'block'
  AND peek LIKE 'module %';

JSON

Extensions: .json Identifier: 'json'

Common Node Types

Type Semantic Type Description
object LITERAL_STRUCTURED Objects
array LITERAL_STRUCTURED Arrays
pair DEFINITION_VARIABLE Key-value pairs
string LITERAL_STRING Strings
number LITERAL_NUMBER Numbers

Examples

-- Find all objects
SELECT depth, children_count
FROM read_ast('config.json')
WHERE type = 'object';

-- Find all key-value pairs
SELECT name, peek
FROM read_ast('config.json')
WHERE type = 'pair';

-- Analyze JSON structure depth
SELECT
    file_path,
    MAX(depth) as max_depth,
    COUNT(*) as total_nodes
FROM read_ast('**/*.json')
GROUP BY file_path
ORDER BY max_depth DESC;

TOML

Extensions: .toml Identifier: 'toml'

Common Node Types

Type Semantic Type Description
table ORGANIZATION_SECTION Tables
pair DEFINITION_VARIABLE Key-value pairs
string LITERAL_STRING Strings
integer LITERAL_NUMBER Integers
array LITERAL_STRUCTURED Arrays

Examples

-- Find all tables
SELECT name, peek
FROM read_ast('**/*.toml')
WHERE type = 'table';

-- Find all key-value pairs
SELECT peek
FROM read_ast('Cargo.toml')
WHERE type = 'pair';

-- Analyze pyproject.toml
SELECT type, name
FROM read_ast('pyproject.toml')
WHERE type IN ('table', 'pair');

GraphQL

Extensions: .graphql, .gql Identifier: 'graphql'

Common Node Types

Type Semantic Type Description
type_definition DEFINITION_CLASS Type definitions
field_definition DEFINITION_VARIABLE Field definitions
operation_definition DEFINITION_FUNCTION Operations
input_object_type_definition DEFINITION_CLASS Input types
enum_type_definition DEFINITION_CLASS Enums

Examples

-- Find type definitions
SELECT name, peek
FROM read_ast('**/*.graphql')
WHERE type = 'type_definition';

-- Find queries and mutations
SELECT name, type
FROM read_ast('**/*.graphql')
WHERE type = 'operation_definition';

-- Find field definitions
SELECT name
FROM read_ast('schema.graphql')
WHERE type = 'field_definition';

-- Find input types
SELECT name
FROM read_ast('**/*.graphql')
WHERE type = 'input_object_type_definition';

Cross-Infrastructure Analysis

-- Analyze infrastructure files
SELECT
    language,
    COUNT(DISTINCT file_path) as files,
    COUNT(*) as total_nodes
FROM read_ast(['**/*.tf', '**/*.json', '**/*.toml', '**/*.graphql'], ignore_errors := true)
GROUP BY language
ORDER BY files DESC;

-- Find all configuration keys
SELECT
    file_path,
    language,
    COUNT(CASE WHEN semantic_type = 244 THEN 1 END) as key_count
FROM read_ast(['**/*.tf', '**/*.json', '**/*.toml'], ignore_errors := true)
GROUP BY file_path, language
ORDER BY key_count DESC;

Infrastructure as Code Patterns

-- Analyze Terraform resources
SELECT
    peek,
    descendant_count as complexity
FROM read_ast('**/*.tf')
WHERE type = 'block'
  AND peek LIKE 'resource %'
ORDER BY complexity DESC;

-- Find package dependencies (package.json)
SELECT peek
FROM read_ast('package.json')
WHERE type = 'pair'
  AND (peek LIKE '%dependencies%' OR peek LIKE '%devDependencies%');