Merge pull request #17 from CodeAnt-AI/login

scan center

Author: Chhinna

changelog.md

@@ -1,5 +1,8 @@
 # Changelog
 
+## [0.4.10] - 04/05/2026
+- Scans filtering added
+
 ## [0.4.9] - 29/05/2026
 - Login Url
 

package-lock.json

@@ -1,6 +1,6 @@
 {
   "name": "codeant-cli",
-  "version": "0.4.9",
+  "version": "0.4.10",
   "description": "Code review CLI tool",
   "type": "module",
   "bin": {

package.json

@@ -71,7 +71,8 @@ export default function registerScansCommands(program, { runCmd }) {
     .option('--severity <list>', 'Filter by severity (e.g. critical,high)')
     .option('--path <glob>', 'Filter by file path glob')
     .option('--check <regex>', 'Filter by check ID or name (regex)')
-    .option('--include-dismissed', 'Include dismissed findings (excluded by default)')
+    .option('--filter-dismissed', 'Exclude dismissed findings (default: false)')
+    .option('--no-false-positives', 'Exclude false positives (default: included)')
     .option('--format <fmt>', 'Output format: json|sarif|csv|md|table (default: json)', 'json')
     .option('--output <path>', 'Write output to file instead of stdout')
     .option('--fields <list>', 'Project findings to subset of fields (comma-separated)')
@@ -96,7 +97,8 @@ export default function registerScansCommands(program, { runCmd }) {
           severity: opts.severity,
           path: opts.path,
           check: opts.check,
-          includeDismissed: opts.includeDismissed || false,
+          filterDismissed: opts.filterDismissed || false,
+          includeFalsePositives: opts.falsePositives ?? true,
           format: opts.format,
           output: opts.output,
           fields: opts.fields,

src/commands/scans/index.js

@@ -1,29 +1,22 @@
 import { minimatch } from 'minimatch';
-import { isDismissed, findDismissMatch } from './dismissMatch.js';
 import { normalizeSeverity } from './normalize.js';
 
-const SEV_RANK = { critical: 5, high: 4, medium: 3, low: 2, info: 1, unknown: 0 };
-
 /**
- * Apply all filters to findings in-place (returns new array).
+ * Apply client-side filters to findings (returns new array).
+ * Dismissed / false-positive filtering is handled exclusively by the backend.
  *
  * @param {Array} findings - NormalizedFinding[]
  * @param {object} opts
- * @param {string[]|null} opts.severity  - allowed severity levels (e.g. ['critical','high'])
- * @param {string|null}   opts.pathGlob  - minimatch glob for file_path
+ * @param {string[]|null} opts.severity   - allowed severity levels (e.g. ['critical','high'])
+ * @param {string|null}   opts.pathGlob   - minimatch glob for file_path
  * @param {string|null}   opts.checkRegex - regex applied to check_id + check_name
- * @param {Array}         opts.dismissedAlerts - from fetchDismissedAlerts()
- * @param {boolean}       opts.includeDismissed
- * @returns {Array} filtered NormalizedFinding[] (dismissed field annotated)
+ * @returns {Array} filtered NormalizedFinding[]
  */
 export function applyFilters(findings, {
   severity = null,
   pathGlob = null,
   checkRegex = null,
-  dismissedAlerts = [],
-  includeDismissed = false,
 } = {}) {
-  // Pre-compile regex — strip Python/PCRE inline flag (?i) and fold into JS flag
   let checkRe = null;
   if (checkRegex) {
     try {
@@ -37,35 +30,15 @@ export function applyFilters(findings, {
     }
   }
 
-  // Severity set
   const sevSet = severity && severity.length > 0
     ? new Set(severity.map((s) => normalizeSeverity(s)))
     : null;
 
   const result = [];
   for (const f of findings) {
-    // Annotate dismiss status
-    const match = findDismissMatch(f, dismissedAlerts);
-    f.dismissed = match !== null;
-    if (match) {
-      f.dismiss_info = {
-        reason: match.reason_for_dismiss || null,
-        comment: match.comment_for_dismiss || null,
-      };
-    }
-
-    // Filter dismissed
-    if (f.dismissed && !includeDismissed) continue;
-
-    // Filter by severity
     if (sevSet && !sevSet.has(f.severity)) continue;
-
-    // Filter by path glob
     if (pathGlob && !minimatch(f.file_path, pathGlob, { matchBase: true })) continue;
-
-    // Filter by check regex
     if (checkRe && !checkRe.test(f.check_id) && !checkRe.test(f.check_name)) continue;
-
     result.push(f);
   }
   return result;

src/commands/scans/lib/filters.js

@@ -106,8 +106,6 @@ export function normalizeIssue(issue, category) {
     cve: cve ? String(cve) : null,
     package: packageInfo,
     metadata,
-    dismissed: false,
-    dismiss_info: null,
   };
 }
 

src/commands/scans/lib/normalize.js

@@ -7,7 +7,6 @@ import { paginate } from './lib/paginate.js';
 import { emit } from './lib/emit.js';
 import { progress, logError } from './lib/log.js';
 import { FORMATTERS } from './formatters/index.js';
-import { fetchDismissedAlerts } from '../../scans/fetchDismissedAlerts.js';
 
 /**
  * codeant scans results — full orchestration.
@@ -23,7 +22,8 @@ export async function runResults(opts = {}) {
     severity,
     path: pathGlob,
     check: checkRegex,
-    includeDismissed = false,
+    filterDismissed = false,
+    includeFalsePositives = true,
     format = 'json',
     output: outputPath = null,
     fields = null,
@@ -53,16 +53,12 @@ export async function runResults(opts = {}) {
   // 2. Parse types
   const categories = parseTypes(types);
 
-  // 3. Fetch in parallel + dismissed alerts
+  // 3. Fetch in parallel
   progress(`fetching ${categories.map((c) => c.key).join(', ')}…`);
-  const [settled, dismissedResult] = await Promise.all([
-    Promise.allSettled(categories.map((c) => c.fetcher(repo, scanMeta.commit_id))),
-    includeDismissed
-      ? Promise.resolve({ success: true, dismissedAlerts: [] })
-      : fetchDismissedAlerts(repo, 'security'),
-  ]);
-
-  const dismissedAlerts = dismissedResult.success ? (dismissedResult.dismissedAlerts ?? []) : [];
+  const fetchOpts = { filterDismissed, includeFalsePositives };
+  const settled = await Promise.allSettled(
+    categories.map((c) => c.fetcher(repo, scanMeta.commit_id, fetchOpts))
+  );
 
   // 4. Collect findings + errors
   const allFindings = [];
@@ -100,8 +96,6 @@ export async function runResults(opts = {}) {
     severity: severityList,
     pathGlob: pathGlob || null,
     checkRegex: checkRegex || null,
-    dismissedAlerts,
-    includeDismissed,
   });
 
   // 6. Sort
@@ -115,7 +109,8 @@ export async function runResults(opts = {}) {
     severity: severityList,
     path: pathGlob || null,
     check: checkRegex || null,
-    include_dismissed: includeDismissed,
+    filter_dismissed: filterDismissed,
+    include_false_positives: includeFalsePositives,
   };
 
   // Rebuild summary from all filtered (pre-page) findings

src/commands/scans/results.js

@@ -153,7 +153,7 @@ function ErrorView({ message, onBack, canGoBack }) {
 
 // ─── Main ScanCenter ─────────────────────────────────────────────────────────
 
-export default function ScanCenter() {
+export default function ScanCenter({ filterDismissed = false, includeFalsePositives = true }) {
   const { exit } = useApp();
 
   const [step, setStep] = useState(STEPS.LOADING);
@@ -198,7 +198,7 @@ export default function ScanCenter() {
 
   // ── Step 5: result type selected → fetch exactly one endpoint ──
   const handleSelectResultType = (item) =>
-    _handleSelectResultType({ STEPS, item, selectedRepo, selectedScan, setSelectedResultType, setStep, setLoadingMsg, setError, setResults });
+    _handleSelectResultType({ STEPS, item, selectedRepo, selectedScan, setSelectedResultType, setStep, setLoadingMsg, setError, setResults, filterDismissed, includeFalsePositives });
 
   // ── Back navigation ──
   const goBack = {

src/components/ScanCenter.js

@@ -211,8 +211,13 @@ program
   program
     .command('scan-center')
     .description('Browse scan results interactively')
-    .action(() => {
-      render(React.createElement(ScanCenter));
+    .option('--filter-dismissed', 'Exclude dismissed alerts from results (default: false)')
+    .option('--no-false-positives', 'Exclude false positives from results (default: included)')
+    .action((options) => {
+      render(React.createElement(ScanCenter, {
+        filterDismissed: options.filterDismissed ?? false,
+        includeFalsePositives: options.falsePositives ?? true,
+      }));
     });
 
   program

src/index.js

@@ -2,20 +2,21 @@ import { fetchScanResults } from '../scans/fetchScanResults.js';
 import { fetchAdvancedScanResults } from '../scans/fetchAdvancedScanResults.js';
 import { fetchDismissedAlerts } from '../scans/fetchDismissedAlerts.js';
 
-export async function handleSelectResultType({ STEPS, item, selectedRepo, selectedScan, setSelectedResultType, setStep, setLoadingMsg, setError, setResults }) {
+export async function handleSelectResultType({ STEPS, item, selectedRepo, selectedScan, setSelectedResultType, setStep, setLoadingMsg, setError, setResults, filterDismissed = false, includeFalsePositives = true }) {
   const rt = item.value;
   setSelectedResultType(rt);
   setStep(STEPS.LOADING);
   setLoadingMsg(`Fetching ${item.label}…`);
 
   const repo = selectedRepo.full_name;
   const commitId = selectedScan.commitId;
+  const fetchOpts = { filterDismissed, includeFalsePositives };
   let res;
 
   if (rt.kind === 'basic') {
-    res = await fetchScanResults(repo, commitId, rt.value);
+    res = await fetchScanResults(repo, commitId, rt.value, fetchOpts);
   } else if (rt.kind === 'advanced') {
-    res = await fetchAdvancedScanResults(repo, commitId, rt.value);
+    res = await fetchAdvancedScanResults(repo, commitId, rt.value, fetchOpts);
   } else if (rt.value === 'dismissed_alerts') {
     const r = await fetchDismissedAlerts(repo, 'security');
     res = r.success ? { success: true, issues: r.dismissedAlerts } : r;