Skip to content

Comments

feat: validate referenced entry content types in entries audit#2424

Merged
cs-raj merged 2 commits intov2-beta-devfrom
feat/DX-3800-beta
Feb 24, 2026
Merged

feat: validate referenced entry content types in entries audit#2424
cs-raj merged 2 commits intov2-beta-devfrom
feat/DX-3800-beta

Conversation

@cs-raj
Copy link
Contributor

@cs-raj cs-raj commented Feb 23, 2026

feat(audit): Validate reference content types against schema in entries audit

Problem

The entries audit only verified that referenced entry UIDs exist in the export. It did not validate that the referenced entry's content type matched the schema's reference_to. This allowed invalid references to pass audit, e.g.:

  • Reference fields: A field with reference_to: ["ct1"] could reference ct2 entries and pass
  • JSON RTE: A field with reference_to: ["ct1", "sys_assets"] could embed ct2 entries and pass

These invalid references could cause import failures.

Solution

Add content-type validation so that when a reference exists in entryMetaData, the audit also checks that the referenced entry's content type is allowed by reference_to. Invalid references are now reported and can be fixed.

Changes

Area Change
Helper Added isRefContentTypeAllowed(refCtUid, referenceTo, config?) to centralize the content-type check
Audit – reference fields In validateReferenceValues, when ref exists, validate content type and report if invalid
Audit – JSON RTE In jsonRefCheck, when ref exists, validate content type and report if invalid
Fix – reference fields In fixMissingReferences, filter out refs with invalid content type and record in missingRefs
Fix – JSON RTE In jsonRefCheck, return null when CT invalid in fix mode so fix path removes the embed

Edge Cases Handled

Case Handling
reference_to undefined/null Skip check (no restriction)
reference_to string Normalize to [reference_to]
reference_to empty array No refs allowed; invalid if ref present
refCtUid undefined Skip check (cannot determine)
refCtUid in skipRefs (e.g. sys_assets) Allow
Reference as string "blt..." Use refExist.ctUid from metadata
Reference as { uid, _content_type_uid } Prefer _content_type_uid, fallback refExist.ctUid
JSON RTE attrs Use content-type-uid (kebab-case)

Testing

  • Unit tests: 7 for isRefContentTypeAllowed, 3 for validateReferenceValues, 1 for JSON RTE audit, 1 for fixMissingReferences, 1 for jsonRefCheck fix mode
  • TDD: Tests written first, then implementation
  • All 140 unit tests pass

Files Changed

  • packages/contentstack-audit/src/modules/entries.ts – implementation
  • packages/contentstack-audit/test/unit/modules/entries.test.ts – unit tests

@cs-raj cs-raj requested a review from a team as a code owner February 23, 2026 16:19
sunil-lakshman
sunil-lakshman approved these changes Feb 24, 2026
View reviewed changes
Copy link
Contributor

@sunil-lakshman sunil-lakshman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@cs-raj cs-raj merged commit 3b3556e into v2-beta-dev Feb 24, 2026
10 checks passed
@cs-raj cs-raj deleted the feat/DX-3800-beta branch February 24, 2026 06:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sunil-lakshman sunil-lakshman sunil-lakshman approved these changes

@harshithad0703 harshithad0703 Awaiting requested review from harshithad0703

@aman19K aman19K Awaiting requested review from aman19K

@naman-contentstack naman-contentstack Awaiting requested review from naman-contentstack

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cs-raj @sunil-lakshman