Contributing¶

Getting started¶

Fork the repository

Clone your fork:

git clone https://github.com/YOUR_USERNAME/crossfire.git
cd crossfire

Set up the development environment:

python3 -m venv .venv
source .venv/bin/activate
pip install -e ".[dev]"
pre-commit install

Verify everything works:

pytest
ruff check crossfire/ tests/
mypy crossfire/

Development workflow¶

Create a branch from main
Make your changes
Add tests for new functionality
Run the full check suite:
```
pre-commit run --all-files
pytest -v
```
Commit and open a Pull Request

Code style¶

Python 3.10+ with type annotations
Formatted with ruff (line-length 100)
Type checked with mypy (strict mode)
Structured logging via logging.getLogger("crossfire.<module>")
Fail-fast by default, lenient by opt-in (--skip-invalid)

Tests¶

Tests live in tests/ and use pytest
Test fixtures go in tests/fixtures/
Run a single test file: pytest tests/test_loader.py -v
Run a single test: pytest tests/test_loader.py::TestLoadJson::test_load_array -v

Adding a format adapter¶

Crossfire uses a plugin system for format adapters. To add support for a new tool:

Create crossfire/plugins/your_tool.py

Implement the RuleAdapter protocol:

class YourToolAdapter:
    @property
    def name(self) -> str:
        return "your_tool"

    def can_load(self, path: str) -> bool:
        # Check extension + content sniffing (read max 2KB)
        ...

    def load(self, path: str) -> list[dict[str, object]]:
        # Return dicts with at least "name" and "pattern" keys
        ...

Register it in crossfire/plugins/__init__.py (_register_builtin_adapters)
Add a test fixture in tests/fixtures/
Add tests in tests/test_plugins.py

See crossfire/plugins/gitleaks.py for a reference implementation.

Pull request guidelines¶

Keep PRs focused on a single change
Include tests for new functionality
Update CHANGELOG.md for user-visible changes
Ensure all checks pass (pre-commit run --all-files)