INSIGHTS-528 cli opa validation: Support multiple rules that return v…

…alues in OPA (#221)

* INSIGHTS-528 cli opa validation: Support multiple rules that return values in OPA

* INSIGHTS-528 cli opa validation: Support multiple rules that return values in OPA

pkg/opavalidation/opavalidation_test.go

@@ -88,3 +88,9 @@ func TestRunWithLibs(t *testing.T) {
 	assert.Len(t, ais, 1)
 	assert.Equal(t, "Label is missing", ais[0].Title)
 }
+
+func TestMultipleRules(t *testing.T) {
+	ais, err := opavalidation.Run("test/multipleRules.rego", "testdata/pod1.yaml", opavalidation.ExpectActionItemOptions{}, fwrego.InsightsInfo{}, "", "")
+	assert.NoError(t, err)
+	assert.Len(t, ais, 0)
+}

pkg/opavalidation/test/multipleRules.rego

@@ -0,0 +1,15 @@
+package fairwinds
+foo := {"s": "foo"}
+envMaxReplicasDeployments[actionItem] {
+    print(foo.s)
+    input.kind == "Deployment"
+    env_suffix := array.reverse(split(input.metadata.namespace, "-"))[0]
+    replicas := input.spec.replicas
+    actionItem := {
+      "title": "Non-production environment replica count exceeds maximum",
+      "description": sprintf("The Deployment %v in the %v environment replicas exceed the maximum replica count for this environment.", [input.metadata.name, env_suffix]),
+      "severity": 0.5,
+      "remediation": "Reduce the number of replicas",
+      "category": "Reliability"
+    }
+}

pkg/opavalidation/utils.go

@@ -22,8 +22,12 @@ func arrayFromRegoOutput(results rego.ResultSet) []interface{} {
 
 	for _, result := range results {
 		for _, pack := range result.Bindings["results"].(map[string]interface{}) {
-			for _, outputArray := range pack.(map[string]interface{}) {
-				returnSet = append(returnSet, outputArray.([]interface{})...)
+			if _, ok := pack.(map[string]interface{}); ok {
+				for _, outputArray := range pack.(map[string]interface{}) {
+					if _, ok := outputArray.([]interface{}); ok {
+						returnSet = append(returnSet, outputArray.([]interface{})...)
+					}
+				}
 			}
 		}
 	}