show-log.shをreport.shに置き換え、ログ解析機能を改善。README.mdとMakefileを更新して新しいスクリプトを反映。

Author: dash14

.github/workflows/test.yml

@@ -65,7 +65,7 @@ jobs:
 
       - name: Show logs
         if: always()
-        run: ./show-log.sh || true
+        run: ./report/report.sh || true
 
       - name: Run assertions
         run: ${{ matrix.assert_script }}

Makefile

@@ -47,7 +47,7 @@ test_restrict_mode: ## RESTRICTモードテスト
 	  --platform linux/arm64 \
 	  --progress=plain -f test/Dockerfile.restrict test/ \
 	  --load -t buildcage-test
-	@./show-log.sh || true
+	@./report/report.sh || true
 	@./test/assert-restrict-mode.sh
 	@$(MAKE) clean
 
@@ -61,6 +61,6 @@ test_audit_mode: ## AUDITモードテスト
 	  --platform linux/arm64 \
 	  --progress=plain -f test/Dockerfile.audit test/ \
 	  --load -t buildcage-test
-	@./show-log.sh || true
+	@./report/report.sh || true
 	@./test/assert-audit-mode.sh
 	@$(MAKE) clean

README.md

@@ -209,7 +209,7 @@ make test_restrict_mode
 
 ```bash
 # 全通信ログ
-./show-log.sh
+./report/report.sh
 
 # リアルタイムログ監視
 docker compose logs -f builder
@@ -242,11 +242,11 @@ docker compose logs -f builder
 │   ├── action.yml             # GitHub Action: dash14/buildcage/setup@main
 │   └── compose.action.yml     # GitHub Actions用Compose設定（imageタグ付き）
 ├── report/
-│   └── action.yml             # GitHub Action: dash14/buildcage/report@main
+│   ├── action.yml             # GitHub Action: dash14/buildcage/report@main
+│   └── report.sh              # ログ解析スクリプト
 ├── compose.yml                # Docker Compose設定
 ├── compose.test.yml           # テスト用オーバーライド設定
 ├── Makefile                   # 操作用コマンド集
-├── show-log.sh                # ログ解析スクリプト
 ├── docker/
 │   ├── Dockerfile             # マルチステージBuildKit + nginx + dnsmasq
 │   └── files/                 # Builderコンテナ設定ファイル
@@ -284,7 +284,7 @@ docker buildx build --builder buildcage --progress=plain -f test/Dockerfile.rest
 make clean
 make run_audit_mode
 docker buildx build --builder buildcage --no-cache --progress=plain -f test/Dockerfile.restrict test/
-./show-log.sh
+./report/report.sh
 
 # 必要ドメインを許可リストに追加
 make clean

report/action.yml

@@ -16,7 +16,7 @@ runs:
         COMPOSE_FILE: ${{ github.action_path }}/../setup/compose.action.yml
         FAIL_ON_BLOCKED: ${{ inputs.fail_on_blocked }}
       run: |
-        "${{ github.action_path }}/../show-log.sh" || {
+        "${{ github.action_path }}/report.sh" || {
           if [ "$FAIL_ON_BLOCKED" = "true" ]; then
             exit 1
           fi

report/report.sh

@@ -0,0 +1,65 @@
+#!/bin/bash
+
+LOGS=$(docker compose logs --no-log-prefix builder 2>/dev/null)
+
+echo ""
+echo "HTTP Proxy communication logs:"
+echo "======================================"
+echo "$LOGS" | grep -E '^\['
+echo ""
+
+# モード自動検出
+if echo "$LOGS" | grep -q '\[AUDIT\]'; then
+  MODE=audit
+elif echo "$LOGS" | grep -q '\[BLOCKED\]\|\[ALLOWED\]'; then
+  MODE=restrict
+else
+  echo "No proxy logs found."
+  exit 0
+fi
+
+echo "Accessed hosts summary:"
+echo "------------------------------------"
+
+if [ "$MODE" = "audit" ]; then
+  echo "🔍 Audited hosts (audit mode - all logged):"
+  echo "$LOGS" | \
+    grep '\[AUDIT\]' | \
+    grep -oE '"[^"]*"' | \
+    tr -d '"' | \
+    grep -v '^$' | \
+    sort | uniq -c | sort -rn | \
+    while read count host; do
+      echo "  $count x $host"
+    done
+else
+  echo "✅ Allowed hosts (proxied to real servers):"
+  echo "$LOGS" | \
+    grep '\[ALLOWED\]' | \
+    grep -oE '"[^"]*"' | \
+    tr -d '"' | \
+    grep -v '^$' | \
+    sort | uniq -c | sort -rn | \
+    while read count host; do
+      echo "  $count x $host"
+    done
+
+  echo ""
+  echo "❌ Blocked hosts (rejected):"
+  echo "$LOGS" | \
+    grep '\[BLOCKED\]' | \
+    grep -oE '"[^"]*"' | \
+    tr -d '"' | \
+    grep -v '^$' | \
+    sort | uniq -c | sort -rn | \
+    while read count host; do
+      echo "  $count x $host"
+    done
+
+  BLOCKED_COUNT=$(echo "$LOGS" | grep '\[BLOCKED\]' | wc -l)
+  if [ "$BLOCKED_COUNT" -gt 0 ]; then
+    echo ""
+    echo "⚠️  Warning: $BLOCKED_COUNT blocked connection(s) detected"
+    exit 1
+  fi
+fi