Fetch Feature Flag with call to Feature Flag Gateway Api #6398
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
brew42
force-pushed
the
feature/CSENG-68_AddFFG
branch
8 times, most recently
from
ee6339b to
0583fce
Compare
brew42
force-pushed
the
feature/CSENG-68_AddFFG
branch
6 times, most recently
from
980cd8c to
7102dbb
Compare
brew42
changed the title
brew42
force-pushed
the
feature/CSENG-68_AddFFG
branch
from
7102dbb to
08bcc34
Compare
| package featureflaggateway | ||
|
|
||
| // FeatureFlagRequest request body for feature flag request. | ||
| type FeatureFlagRequest struct { |
There was a problem hiding this comment.
We should consider moving these classes to the pkg folder in the feature-flag-gateway repo so they can be reused wherever this service is used.
snyk-abedonik
approved these changes
Dec 30, 2025
chore:[CSENG-68] correct ffg path in fake server chore:[CSENG-68] update ffg hidden end point chore: [CSENG-68] plug in ffg call chore: [CSENG-68] update package chore: [CSENG-68] correct org chore: code tidy for CSENG-68 chore: update to use makeRequest chore: update tap tests [CSENG-68] chore: remove status check for CSENG-68 chore: implement ffg for otel [CSENG-68] chore: correct go mod [CSENG-68] chore: revert to standard http client lib [CSENG-68] chore: correct ffg unit test [CSENG-68] chore: lint service [CSENG-68] chore: update fake server end point
brew42
force-pushed
the
feature/CSENG-68_AddFFG
branch
from
08bcc34 to
70dbb05
Compare
PeterSchafer
reviewed
Jan 5, 2026
| package main | ||
|
|
||
| // !!! This import needs to be the first import, please do not change this !!! | ||
| import _ "github.com/snyk/go-application-framework/pkg/networking/fips_enable" |
Collaborator
There was a problem hiding this comment.
Issue: Please watch out for this import. It must remain the first import.
PeterSchafer
reviewed
Jan 5, 2026
| disable_analytics_flag string = "DISABLE_ANALYTICS" | ||
| debug_level_flag string = "log-level" | ||
| integrationNameFlag string = "integration-name" | ||
| showMavenBuildScopeFlag string = "show-maven-build-scope" |
Collaborator
There was a problem hiding this comment.
Issue: The CLI tries to enforce a separation of concerns between the application and product lines. This means that feature flag like this, which is SCA related should live in the related extension.
PeterSchafer
reviewed
Jan 5, 2026
| globalLogger.Print("Failed to fetch feature flags", err) | ||
| return constants.SNYK_EXIT_CODE_ERROR | ||
| } | ||
| apiToken := globalConfiguration.GetString(configuration.AUTHENTICATION_TOKEN) |
Collaborator
There was a problem hiding this comment.
Issue: This should not be required. Authentication is handled by the network stack.
PeterSchafer
reviewed
Jan 5, 2026
| cliAnalytics.GetInstrumentation().SetCategory(instrumentation.DetermineCategory(os.Args, globalEngine)) | ||
| cliAnalytics.GetInstrumentation().SetStage(instrumentation.DetermineStage(cliAnalytics.IsCiEnvironment())) | ||
| cliAnalytics.GetInstrumentation().SetStatus(analytics.Success) | ||
| cliAnalytics.GetInstrumentation().AddExtension(showMavenBuildScopeFlag, |
Collaborator
There was a problem hiding this comment.
Similar to the previous comment, something like this should live in the Extension.
PeterSchafer
reviewed
Jan 5, 2026
| return exitCode | ||
| } | ||
|
|
||
| func IsFeatureEnabled( |
Collaborator
PeterSchafer
reviewed
Jan 5, 2026
| return nil, fmt.Errorf("base URL is nil") | ||
| } | ||
|
|
||
| client := &http.Client{ |
Collaborator
There was a problem hiding this comment.
Issue: Please use the GAF network stack it will take care of authentication, user-agent ...
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pull Request Submission Checklist
are release-note ready, emphasizing
what was changed, not how.
What does this PR do?
Adds a call to feature flag gateway api to fetch the 'show-maven-build-scope'
Pass this feature flag to the maven plugin -> Plugin call to feature flag gateway from src/lib/snyk-test/index.js and pass flags to src/lib/plugins/get-single-plugin-result.ts where the mvn plugin is invoked with feature flag.
Added Feature Flag Gateway server to cliv2 in order to fetch the feature flag for otel.
Where should the reviewer start?
src/lib/feature-flag-gateway/index.ts
Implement post call to feature flag gateway and added wrapper
Company id is fetched from config (getOrganizationId) and not from options.
src/lib/snyk-test/index.js
Call Feature Flag Gateway and set flag in featureFlags
src/lib/plugins/get-single-plugin-result.ts
Update to pass feature flag to maven plugin
cliv2/cmd/cliv2/main.go
Added call to feature flag gateway service to fetch the 'show-maven-build-scope' flag
cliv2/internal/feature-flag-gateway
Implement service to call the feature flag gateway evaluate api
How should this be manually tested?
Run sbom generation for org with and without the show-maven-build-scope feature flag enabled in flipt.
cli/binary-releases/snyk-macos-arm64 sbom --format cyclonedx1.6+json --debugRun sbom generation for user authenticated with group service account token. Confirm default organization is passed to feature flag call scope is generated as expected.
cli/binary-releases/snyk-macos-arm64 auth <token>Flag enabled - sbom output contains scope
Flag disabled - sbom output does not contain scope
What's the product update that needs to be communicated to CLI users?
Sbom generated output will contain maven scope information for those organizations with the 'show-maven-build-scope' feature flag enabled