feat: implement safe system path testing standards and enhance Remove-StaleFiles function

danstis · danstis · commit 5b058fc40610 · 2025-08-05T18:29:44.000+10:00
diff --git a/CLAUDE.md b/CLAUDE.md
@@ -89,6 +89,37 @@ When writing PowerShell code in this module, follow these standards:
 - **Ensure correct spelling and grammar in comments**
 - **Use en-GB spelling:** "colour" not "color", "realise" not "realize", "centre" not "center"
 
+## Testing Standards
+
+### Safe System Path Testing
+When writing tests for functions that interact with system paths (like Remove-StaleFiles):
+
+- **NEVER use real system paths in tests:** Avoid testing with actual system directories like `'C:\'`, `'/'`, `'/etc'`, `'C:\Windows'`, etc.
+- **Always use mocks for system path detection:** Use `InModuleScope` with `Mock` to simulate system path behaviour safely
+- **Use TestDrive for file operations:** Create test files and directories within Pester's `$TestDrive` for safe, isolated testing
+- **Mock internal functions when needed:** For functions like `Test-SystemPath`, extract them as standalone functions if they need to be mocked
+
+#### Example Safe System Path Testing Pattern:
+```powershell
+It 'Should prevent execution on system paths' {
+    # Mock the system path detection function
+    InModuleScope PSF {
+        Mock Test-SystemPath { return $true }
+    }
+    
+    # Test with safe mock directory - the mock ensures any path is treated as a system path
+    { Remove-StaleFiles -Path $MockSystemPath -Age 10 -ErrorAction Stop } | 
+        Should -Throw -ExpectedMessage '*system directory*'
+}
+```
+
+#### Never Do This:
+```powershell
+# DANGEROUS - Never test with real system paths
+{ Remove-StaleFiles -Path 'C:\' -Age 10 } | Should -Throw
+{ Remove-StaleFiles -Path '/' -Age 10 } | Should -Throw
+```
+
 ## Key Constraints
 
 - No external dependencies beyond standard PowerShell modules
diff --git a/functions/Remove-StaleFiles.ps1 b/functions/Remove-StaleFiles.ps1
@@ -1,3 +1,91 @@
+function Test-SystemPath {
+	<#
+	.SYNOPSIS
+		Tests if a given path is a system directory that should be protected from bulk deletion.
+	.DESCRIPTION
+		This function checks if the specified path matches known system directories that should not be processed
+		by Remove-StaleFiles for safety reasons. It checks against Windows system paths (drive roots, Program Files,
+		Windows directory) and Unix/Linux system paths (/, /etc, /bin, etc.).
+	.PARAMETER TestPath
+		The path to test for system directory status.
+	.OUTPUTS
+		[bool] Returns $true if the path is a system directory, $false otherwise.
+	#>
+	param(
+		[string] $TestPath
+	)
+
+	# Resolve to absolute path.
+	$FullPath = $ExecutionContext.SessionState.Path.GetUnresolvedProviderPathFromPSPath($TestPath)
+
+	# Get blocked paths using system variables where available.
+	$BlockedPaths = @()
+
+	# Windows system paths
+	if ($IsWindows -or $env:OS -eq 'Windows_NT') {
+		# Drive roots (C:\, D:\, etc.).
+		$BlockedPaths += Get-PSDrive -PSProvider FileSystem | ForEach-Object { $_.Root }
+
+		# System directories using environment variables.
+		if ($env:SystemRoot) { $BlockedPaths += $env:SystemRoot }
+		if ($env:ProgramFiles) { $BlockedPaths += $env:ProgramFiles }
+		if ($env:ProgramData) { $BlockedPaths += $env:ProgramData }
+		if ($env:ProgramW6432) { $BlockedPaths += $env:ProgramW6432 }
+		if (${env:ProgramFiles(x86)}) { $BlockedPaths += ${env:ProgramFiles(x86)} }
+
+		# .NET system directory.
+		try {
+			$BlockedPaths += [Environment]::SystemDirectory
+		} catch { }
+	}
+
+	# Unix/Linux system paths.
+	if ($IsLinux -or $IsMacOS -or (!$IsWindows -and $env:OS -ne 'Windows_NT')) {
+		$BlockedPaths += @(
+			'/',
+			'/etc',
+			'/bin',
+			'/sbin',
+			'/usr',
+			'/boot',
+			'/sys',
+			'/proc'
+		)
+	}
+
+	# macOS additional paths.
+	if ($IsMacOS) {
+		$BlockedPaths += @(
+			'/System',
+			'/Applications'
+		)
+	}
+
+	# Check if the test path matches or is a parent of any blocked path.
+	foreach ($BlockedPath in $BlockedPaths) {
+		if (-not $BlockedPath) { continue }
+
+		try {
+			$ResolvedBlockedPath = $ExecutionContext.SessionState.Path.GetUnresolvedProviderPathFromPSPath($BlockedPath)
+
+			# Normalise paths for comparison (handle trailing separators).
+			$NormalisedTestPath = $FullPath.TrimEnd([System.IO.Path]::DirectorySeparatorChar, [System.IO.Path]::AltDirectorySeparatorChar)
+			$NormalisedBlockedPath = $ResolvedBlockedPath.TrimEnd([System.IO.Path]::DirectorySeparatorChar, [System.IO.Path]::AltDirectorySeparatorChar)
+
+			# Check for exact match.
+			if ($NormalisedTestPath -eq $NormalisedBlockedPath) {
+				return $true
+			}
+		}
+		catch {
+			# If path resolution fails, skip this check.
+			continue
+		}
+	}
+
+	return $false
+}
+
 function Remove-StaleFiles {
 	<#
 	.SYNOPSIS
@@ -58,102 +146,27 @@ function Remove-StaleFiles {
 	$StartTime = Get-Date
 
 	# Set up logging - use appropriate temp directory for the platform.
-	$TempDir = [System.IO.Path]::GetTempPath()
-	$LogDir = Join-Path $TempDir 'PSF-Module/Logs'
-	$LogName = 'RemoveStaleFiles'
+	$TempDirectory = [System.IO.Path]::GetTempPath()
+	$LogDirectory = Join-Path $TempDirectory 'PSF-Module/Logs'
+	$LogFileName = 'RemoveStaleFiles'
 	$DateSuffix = Get-Date -Format 'yyyy-MM-dd'
-	$LogPath = Join-Path $LogDir ('{0}-{1}.log' -f $LogName, $DateSuffix)
+	$LogPath = Join-Path $LogDirectory ('{0}-{1}.log' -f $LogFileName, $DateSuffix)
 
 	function Write-StaleFileLog {
 		param(
 			[string] $Message,
 			[string] $Level = 'INFO'
 		)
 
-		if (-not (Test-Path $LogDir)) {
-			$null = New-Item -Path $LogDir -ItemType Directory -Force
+		if (-not (Test-Path $LogDirectory)) {
+			$null = New-Item -Path $LogDirectory -ItemType Directory -Force
 		}
 
-		$Timestamp = Get-Date -Format 'yyyy-MM-dd HH:mm:ss'
-		$LogEntry = '{0} [{1}] {2}' -f $Timestamp, $Level, $Message
-		$LogEntry | Out-File -FilePath $LogPath -Append -Encoding UTF8
+		$TimeStamp = Get-Date -Format 'yyyy-MM-dd HH:mm:ss'
+		$LogEntry = '{0} [{1}] {2}' -f $TimeStamp, $Level, $Message
+		$null = $LogEntry | Out-File -FilePath $LogPath -Append -Encoding UTF8
 	}
 
-	function Test-SystemPath {
-		param(
-			[string] $TestPath
-		)
-
-		# Resolve to absolute path.
-		$FullPath = $ExecutionContext.SessionState.Path.GetUnresolvedProviderPathFromPSPath($TestPath)
-
-		# Get blocked paths using system variables where available.
-		$BlockedPaths = @()
-
-		# Windows system paths
-		if ($IsWindows -or $env:OS -eq 'Windows_NT') {
-			# Drive roots (C:\, D:\, etc.).
-			$BlockedPaths += Get-PSDrive -PSProvider FileSystem | ForEach-Object { $_.Root }
-
-			# System directories using environment variables.
-			if ($env:SystemRoot) { $BlockedPaths += $env:SystemRoot }
-			if ($env:ProgramFiles) { $BlockedPaths += $env:ProgramFiles }
-			if ($env:ProgramData) { $BlockedPaths += $env:ProgramData }
-			if ($env:ProgramW6432) { $BlockedPaths += $env:ProgramW6432 }
-			if (${env:ProgramFiles(x86)}) { $BlockedPaths += ${env:ProgramFiles(x86)} }
-
-			# .NET system directory.
-			try {
-				$BlockedPaths += [Environment]::SystemDirectory
-			} catch { }
-		}
-
-		# Unix/Linux system paths.
-		if ($IsLinux -or $IsMacOS -or (!$IsWindows -and $env:OS -ne 'Windows_NT')) {
-			$BlockedPaths += @(
-				'/',
-				'/etc',
-				'/bin',
-				'/sbin',
-				'/usr',
-				'/boot',
-				'/sys',
-				'/proc'
-			)
-		}
-
-		# macOS additional paths.
-		if ($IsMacOS) {
-			$BlockedPaths += @(
-				'/System',
-				'/Applications'
-			)
-		}
-
-		# Check if the test path matches or is a parent of any blocked path.
-		foreach ($BlockedPath in $BlockedPaths) {
-			if (-not $BlockedPath) { continue }
-
-			try {
-				$ResolvedBlockedPath = $ExecutionContext.SessionState.Path.GetUnresolvedProviderPathFromPSPath($BlockedPath)
-
-				# Normalize paths for comparison (handle trailing separators).
-				$NormalizedTestPath = $FullPath.TrimEnd([System.IO.Path]::DirectorySeparatorChar, [System.IO.Path]::AltDirectorySeparatorChar)
-				$NormalizedBlockedPath = $ResolvedBlockedPath.TrimEnd([System.IO.Path]::DirectorySeparatorChar, [System.IO.Path]::AltDirectorySeparatorChar)
-
-				# Check for exact match.
-				if ($NormalizedTestPath -eq $NormalizedBlockedPath) {
-					return $true
-				}
-			}
-			catch {
-				# If path resolution fails, skip this check.
-				continue
-			}
-		}
-
-		return $false
-	}
 
 	function Clear-OldLogs {
 		param(
@@ -164,7 +177,7 @@ function Remove-StaleFiles {
 
 		if (Test-Path $LogDirectory) {
 			$CutoffDate = (Get-Date).AddDays(-$RetentionDays)
-			Get-ChildItem -Path $LogDirectory -Filter ('{0}-*.log' -f $LogPrefix) |
+			$null = Get-ChildItem -Path $LogDirectory -Filter ('{0}-*.log' -f $LogPrefix) |
 				Where-Object { $_.LastWriteTime -lt $CutoffDate } |
 				ForEach-Object {
 					try {
@@ -179,7 +192,7 @@ function Remove-StaleFiles {
 	}
 
 	# Clean up old logs.
-	Clear-OldLogs -LogDirectory $LogDir -LogPrefix $LogName -RetentionDays $LogRetentionDays
+	Clear-OldLogs -LogDirectory $LogDirectory -LogPrefix $LogFileName -RetentionDays $LogRetentionDays
 
 	# Log function start.
 	$LogParams = @(
@@ -264,14 +277,14 @@ function Remove-StaleFiles {
 	if ($Files.Count -gt 0) {
 		Write-Information ('  Files: {0}' -f $Files.Count)
 		if ($VerbosePreference -eq 'Continue') {
-			$Files | ForEach-Object { Write-Verbose ('    {0} ({1})' -f $_.FullName, (Get-Date $_.LastWriteTime -Format 'yyyy-MM-dd HH:mm:ss')) }
+			$null = $Files | ForEach-Object { Write-Verbose ('    {0} ({1})' -f $_.FullName, (Get-Date $_.LastWriteTime -Format 'yyyy-MM-dd HH:mm:ss')) }
 		}
 	}
 
 	if ($Directories.Count -gt 0) {
 		Write-Information ('  Directories: {0}' -f $Directories.Count)
 		if ($VerbosePreference -eq 'Continue') {
-			$Directories | ForEach-Object { Write-Verbose ('    {0} ({1})' -f $_.FullName, (Get-Date $_.LastWriteTime -Format 'yyyy-MM-dd HH:mm:ss')) }
+			$null = $Directories | ForEach-Object { Write-Verbose ('    {0} ({1})' -f $_.FullName, (Get-Date $_.LastWriteTime -Format 'yyyy-MM-dd HH:mm:ss')) }
 		}
 	}
 
diff --git a/tests/Remove-StaleFiles.Tests.ps1 b/tests/Remove-StaleFiles.Tests.ps1
