feat(copy): support advanced copy configuration with custom target paths

[BQXBQX]

🎯 Features:
• Added CopyConfig enum supporting both basic and advanced modes
• Maintained backward compatibility with string[] format
• Introduced {from, to} format for custom target paths
• Enhanced copy plugin for both configuration types
• Added automatic target directory creation

📝 Example Configuration:

{
  'copy': [
    'public',                       
    {                              
      'from': 'assets',
      'to': 'static'
    }
  ]
}

🔍 Details:
• Basic mode preserves existing string[] functionality
• Advanced mode enables precise path control
• Directories are created automatically as needed
• Both modes can be mixed in the same config"

Summary by CodeRabbit

• 新功能

  • 引入了 CopyConfig 枚举，支持基本和高级的文件复制配置。
  • 更新了 CopyPlugin，支持更灵活的源-目标路径关系，确保高级配置下的路径有效性。

• 修复

  • 增强了错误处理，确保在高级配置下创建目标目录。

[coderabbitai]

Walkthrough

该拉取请求引入了一个新的枚举类型 CopyConfig，用于表示文件复制的不同配置，支持基本字符串和包含 from 和 to 字段的高级配置。Config 结构体中的 copy 字段类型从 Vec<String> 修改为 Vec<CopyConfig>。同时，CopyPlugin 的实现也进行了相应的修改，以支持这两种配置类型，更新了文件复制的逻辑和路径处理。

Changes

文件路径	更改摘要
crates/mako/src/config.rs	新增枚举 CopyConfig，并将 Config 结构体中的 copy 字段类型更新为 Vec<CopyConfig>。
crates/mako/src/plugins/copy.rs	修改 CopyPlugin 的实现，更新 watch 和 copy 方法以支持 Basic 和 Advanced 配置类型。

Possibly related PRs

• fix(win): copy don't work under windows #1587: 此PR修改了 CopyPlugin 中的 copy 函数，以使用新函数 win_path 处理源路径，这与主PR中引入的文件复制配置处理相关。

Suggested reviewers

• sorrycc

Poem

在兔子洞中忙碌跳，
复制文件不再烦恼。
基本高级皆可选，
配置灵活乐无穷。
兔子欢跳庆新生，
代码更新真有趣！ 🐰✨

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 3

🧹 Outside diff range and nitpick comments (1)

crates/mako/src/plugins/copy.rs (1)

71-77: 在复制前验证源路径是否存在

在复制操作中，如果源路径不存在，copy函数可能会失败。建议在复制前检查源路径的存在性，并在不存在时提供有意义的错误消息或跳过复制。

示例修改：

match config {
    CopyConfig::Basic(src) => {
        let src = context.root.join(src);
+       if !src.exists() {
+           eprintln!("Source path {:?} does not exist", src);
+           continue;
+       }
        debug!("copy {:?} to {:?}", src, dest);
        copy(&src, dest)?;
    }
    // 其他分支...
}

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 89d7c53 and a3ddec7.

📒 Files selected for processing (2)

• crates/mako/src/config.rs (2 hunks)
• crates/mako/src/plugins/copy.rs (4 hunks)

🔇 Additional comments (1)

crates/mako/src/config.rs (1)

147-147: 确保所有使用config.copy的代码已更新

Config结构体中的copy字段类型从Vec<String>更改为Vec<CopyConfig>，这可能影响到依赖此字段的其他代码。请确认所有使用config.copy的代码都已更新以适应新的类型。

生成以下脚本以查找所有使用config.copy的代码位置：

✅ Verification successful

Let me check the implementation in the copy plugin to verify if it's already compatible with the new type.

---

代码已正确适配新的类型变更

从代码实现来看，crates/mako/src/plugins/copy.rs中的代码已经完全适配了Vec<CopyConfig>的新类型，正确处理了CopyConfig::Basic和CopyConfig::Advanced两种情况。没有发现其他使用config.copy的地方需要更新。

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# 描述：查找所有使用`config.copy`的代码，确保兼容新的类型

rg 'config\.copy' --glob '!crates/mako/src/config.rs'

Length of output: 225

---

Script:

#!/bin/bash
# Check the implementation in copy.rs to see how config.copy is used
rg -A 10 'config\.copy' crates/mako/src/plugins/copy.rs

Length of output: 1012

[coderabbitai]

🛠️ Refactor suggestion

建议检查源路径是否存在

当前代码在处理src之前未检查其是否存在，可能会在源路径不存在时引发错误。建议在处理之前添加对src存在性的验证，并在不存在时进行适当的错误处理或日志记录。

示例修改：

for config in context.config.copy.iter() {
    let src = match config {
        CopyConfig::Basic(src) => context.root.join(src),
        CopyConfig::Advanced { from, .. } => context.root.join(from),
    };

+   if !src.exists() {
+       eprintln!("Source path {:?} does not exist", src);
+       continue;
+   }

    if src.exists() {
        debug!("watch {:?}", src);
        // ...
    }
}

Committable suggestion skipped: line range outside the PR's diff.

[coderabbitai]

⚠️ Potential issue

防止目标路径的目录遍历漏洞

在处理CopyConfig::Advanced配置时，to字段可能包含恶意路径（如../），导致文件复制到意外的位置。建议对目标路径进行规范化和验证，确保目标路径位于预期的目标目录中，防止潜在的安全问题。

示例修改：

let target = dest.join(to.trim_start_matches("/"));

+ let target = target.canonicalize()?;
+ let dest_canonical = dest.canonicalize()?;
+ if !target.starts_with(&dest_canonical) {
+     return Err(anyhow!("Invalid target path: {:?}", target));
+ }

if !target.exists() {
    fs::create_dir_all(&target)?;
}

Committable suggestion skipped: line range outside the PR's diff.

[coderabbitai]

🛠️ Refactor suggestion

为CopyConfig添加配置验证

CopyConfig中的from和to字段直接来自用户配置，可能包含非法或不安全的路径。建议在配置解析时添加路径验证，确保路径不存在注入风险并且指向合法的位置。

[coderabbitai]

Actionable comments posted: 1

🧹 Outside diff range and nitpick comments (1)

crates/mako/src/plugins/copy.rs (1)

71-78: 建议优化基础配置的错误处理

基础配置的处理逻辑过于简单，建议添加更详细的错误处理和日志记录。

建议修改如下：

 CopyConfig::Basic(src) => {
     let src = context.root.join(src);
+    debug!("正在处理基础复制配置");
+    if !src.exists() {
+        debug!("源路径不存在: {:?}", src);
+        continue;
+    }
     debug!("copy {:?} to {:?}", src, dest);
     copy(&src, dest)?;
 }

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between a3ddec7 and 464b49c.

📒 Files selected for processing (1)

• crates/mako/src/plugins/copy.rs (4 hunks)

🔇 Additional comments (2)

crates/mako/src/plugins/copy.rs (2)

34-39: 建议在处理源路径之前进行验证

这段代码在处理配置时缺少对源路径的预先验证。虽然后续有exists()检查，但建议在匹配过程中就进行更全面的验证。

建议修改如下：

 for config in context.config.copy.iter() {
     let src = match config {
         CopyConfig::Basic(src) => context.root.join(src),
         CopyConfig::Advanced { from, .. } => context.root.join(from),
     };
+    
+    if !src.exists() {
+        debug!("跳过不存在的源路径: {:?}", src);
+        continue;
+    }

---

79-96: 🛠️ Refactor suggestion

建议增强高级配置的路径处理和安全性

当前的路径验证逻辑可以进一步加强，同时建议添加更多的安全检查。

建议修改如下：

 CopyConfig::Advanced { from, to } => {
     let src = context.root.join(from);
+    if !src.exists() {
+        debug!("源路径不存在: {:?}", src);
+        continue;
+    }
     let target = dest.join(to.trim_start_matches("/"));
 
     let target = target.canonicalize()?;
     let dest_canonical = dest.canonicalize()?;
     if !target.starts_with(&dest_canonical) {
-        return Err(anyhow!("Invalid target path: {:?}", target));
+        return Err(anyhow!("目标路径不安全: {:?}", target));
     }
 
+    // 验证目标路径不包含特殊字符
+    if to.contains("..") {
+        return Err(anyhow!("目标路径包含非法字符: {:?}", to));
+    }
+
     if !target.exists() {
+        debug!("创建目标目录: {:?}", target);
         fs::create_dir_all(&target)?;
     }
 
     debug!("copy {:?} to {:?}", src, target);
     copy(&src, &target)?;
 }

Likely invalid or redundant comment.

[coderabbitai]

⚠️ Potential issue

路径规范化可能导致错误

使用canonicalize()进行路径规范化时，如果路径不存在会导致错误。建议在这种情况下使用更健壮的处理方式。

建议添加错误处理：

-    let target = target.canonicalize()?;
-    let dest_canonical = dest.canonicalize()?;
+    let target = target.canonicalize().map_err(|e| {
+        anyhow!("无法规范化目标路径 {:?}: {}", target, e)
+    })?;
+    let dest_canonical = dest.canonicalize().map_err(|e| {
+        anyhow!("无法规范化输出目录 {:?}: {}", dest, e)
+    })?;

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	let target = target.canonicalize()?;
	let dest_canonical = dest.canonicalize()?;
	if !target.starts_with(&dest_canonical) {
	return Err(anyhow!("Invalid target path: {:?}", target));
	}
	let target = target.canonicalize().map_err(|e| {
	anyhow!("无法规范化目标路径 {:?}: {}", target, e)
	})?;
	let dest_canonical = dest.canonicalize().map_err(|e| {
	anyhow!("无法规范化输出目录 {:?}: {}", dest, e)
	})?;
	if !target.starts_with(&dest_canonical) {
	return Err(anyhow!("Invalid target path: {:?}", target));
	}