Please consider removing the --token command-line option (providing the SCM access token) and changing it to use an environmental variable.
As such the token is visible in "ps" listings and similar.
https://github.com/snyk-tech-services/snyk-repo-diff uses example-secrets.sh for this reason.

I don't know if this is something that's needed generally, but I'm leaving this here for posterity. At least a one-liner documenting the calculation logic would be convenient if found in the README.md. For example like this, which calculates the amount of contributors in all repositories under and including the current working directory:
find . -name ".git" | xargs -I {} git --git-dir {} log --since="90 days ago" --pretty=format:%ae | sort | uniq | wc -l

With this oneliner for example, one can clearly see that you only calculate contributors on the default branch, not all branches.

But a caveat would be git submodules; in your current calculation logic you do not calculate code contributors in submodules within a repository, although that oneliner would do so..

It would be nice if the script at least warns about SNYK_TOKEN not being set.
It is mentioned in the docs, but took me quite some time to find it back after not having used the script.

the document does not mention that when there are spaces in a project name, brackets would be required
worth adding to the readme

Counting the unique email-addresses attached to commits doesn't seem to be a reliable method of counting active users in our case.

As an example; we have a user that has failed to set his/her default email-address (git config --global user.email).
That user is counted 20+ times because Git defaults to <user>@<hostname>, resulting in:

...
  snyk:count-output     '<user>@ip-XXX-XX-109-8.XX-XXXX-X.compute.internal' => {
  snyk:count-output       email: '<user>@ip-XXX-XX-109-8.eu-west-1.compute.internal',
  snyk:count-output       contributionsCount: 2,
  snyk:count-output       reposContributedTo: [Array]
  snyk:count-output     },
  snyk:count-output     '<user>@ip-XXX-XX-109-248.XX-XXXX-X.compute.internal' => {
  snyk:count-output       email: '<user>@ip-XXX-XX-109-248.XX-XXXX-X.compute.internal',
  snyk:count-output       contributionsCount: 1,
  snyk:count-output       reposContributedTo: [Array]
  snyk:count-output     },
  snyk:count-output     '<user>@ip-XXX-XX-109-244.XX-XXXX-X.compute.internal' => {
  snyk:count-output       email: '<user>@ip-XXX-XX-109-244.XX-XXXX-X.compute.internal',
  snyk:count-output       contributionsCount: 2,
  snyk:count-output       reposContributedTo: [Array]
...

I've created a PR that uses the user account's UUID that is available in the Bitbucket Cloud API and will attach that to this issue :)

Similar issue as #84.

retrieveMonitoredRepos and retrieveOrgsAndIntegrations in https://github.com/snyk-tech-services/snyk-scm-contributors-count/blob/main/src/lib/snyk/index.ts are calling /orgs endpoint with default limit which may not return all Organizations and thus results are incomplete. Also pagination is not supported by these functions currently.

Probably a similar fix as merged from #86 should be implemented to fix this.

Hi,

I'm facing issue when try to run script in my bitbucket cloud and return 401, like this:

I could see that bitbucket.org deprecated in your API auth using user and pass in your api.(https://bitbucket.org/blog/deprecating-atlassian-account-password-for-bitbucket-api-and-git-activity)

The retrieveMonitoredReposBySourceType in Snyk\Index.js does not specify a result limit or do any paging on the underlying Snyk REST API that retrieves monitored repos. This causes incomplete results when counting contributors, as it is only going back to count contributors in the source control for the first 10 monitored repos; 10 being the default page size of the underlying Snyk API.

The following is used to call the Snyk API (line 117):

/orgs/${orgs[i].id}/targets?origin=${SourceType[sourceType]}&version=${snykApiVersion}

Without a &limit parameter or paging logic, it will return only 10 results.

integration test

Azure Devops default URL is set to cloud, no local TFS option

When running this script on ADO, we get the following errors.

Job -yu5c341lgdj failed: TypeError [ERR_UNESCAPED_CHARACTERS]: Request path contains unescaped characters
Retrying job -yu5c341lgdj in 25ms!
Job -yu5c341lgdj failed: TypeError [ERR_UNESCAPED_CHARACTERS]: Request path contains unescaped characters
snyk:azure-devops-count Failed to retrieve repo list from Azure Devops.
snyk:azure-devops-count TypeError [ERR_UNESCAPED_CHARACTERS]: Request path contains unescaped characters +0ms
Failed to retrieve repo list from Azure Devops. Try running with DEBUG=snyk* snyk-contributor
snyk:azure-devops-count Fetching single repo contributor from Azure Devops. Project d38f51da-cd00-4a89-9721-ef5b5a5a500c - Repo

When contributing code using the web interface GitHub can hide their real email and instead [email protected] is used

[email protected] is also supported by GitHub - https://github.blog/2017-04-11-private-emails-now-more-private/

Both email forms can be used from any git tool as well.

In current version these contributions are not counted