chore: bring in spicedb and update compilation

[tstirrat15]

Description

This PR is part of unifying the composable schema package into the tooling for a better developer experience. The key changes are:

1. Dependency update — Updates SpiceDB dependency, bringing in a newer version of the schema compilation library.
2. Decoder refactor (internal/decode/decoder.go) — Significant rewrite of the schema decoder, along with updated tests. This simplifies the decoding logic.
3. Validate command simplification (internal/cmd/validate.go) — Major simplification of the validation logic, cutting roughly half the code. Tests were also reworked
4. New tests — Added 8 new .zed and .yaml test files for edge cases like:
   - Import errors in composable schemas
   - Nonexistent imports
   - Nested composable schemas
   - External schemas with escaping/errors

Testing

Unit tests

[tstirrat15]

Current TODOs and notes:

• This code depends on feat: update DevContext and LSP to support composable schemas spicedb#2965. It should be run locally against that with go.work, and that PR should also be tested against spicedb-vscode.

• Merge feat: update DevContext and LSP to support composable schemas spicedb#2965 and then go get that SHA to make this reference that code.
• Validation tests are failing. My best guess is that one if not all of the failures have to do with the DirFS() that's being handed to the DevContext in the validate command - it needs to match the dir of the validation file, not the invocation dir.
• Need to check whether validations against just schemas are pointing their warnings at the correct lines (this should be captured in a test, but should also be validated)
• It needs a test of a schema that imports another schema and there's a validation warning/error in that other schema to see whether it points at the correct file and line within that file
• This should be hand-tested against a few things as well - validation files in the example repo, some composable schema stuff, etc.

[codecov-commenter]

Codecov Report

❌ Patch coverage is 80.13245% with 30 lines in your changes missing coverage. Please review.
✅ Project coverage is 42.13%. Comparing base (2a8c2f1) to head (665577c).

Files with missing lines	Patch %	Lines
internal/decode/decoder.go	79.76%	12 Missing and 5 partials ⚠️
internal/cmd/validate.go	79.66%	10 Missing and 2 partials ⚠️
internal/cmd/import.go	66.66%	0 Missing and 1 partial ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #635      +/-   ##
==========================================
+ Coverage   41.66%   42.13%   +0.47%     
==========================================
  Files          38       38              
  Lines        6128     6064      -64     
==========================================
+ Hits         2553     2555       +2     
+ Misses       3319     3252      -67     
- Partials      256      257       +1     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[miparnisari]

FYI devtools was deprecated

[miparnisari]

FYI big change: removing the flag

[miparnisari]

I don't know who would want to validate more than one schema file at once, but 🤷‍♀️

[miparnisari]

FYI this is what allows us to validate composable schemas

[miparnisari]

FYI this is what lets zed know which file contained error so it can print the contents of the context of the error

[tstirrat15]

I'm pretty sure we can get this through the DeveloperError as well, but that can be future work.

[miparnisari]

🤔 Path is a field of DeveloperError

[tstirrat15]

See comments

[tstirrat15]

Why remove this?

[miparnisari]

we can detect the extension of the file, i don't see the need to pass in the file type by hand

[tstirrat15]

Right, my thought was just to give folks the option to do so - make the heuristics dumber (and the code simpler and more predictable) and then give folks an escape hatch where they can tell zed how to treat the file.

I'm open to disagreement with that take, though.

[tstirrat15]

I think we can use os.DirFS here as well - I'd think that you should be able to open one FS from another. Then we don't need to deal with IsLocal questions.

[tstirrat15]

Why the change back to a decoder struct? What's the state that's being held in the decoder object?

[miparnisari]

the decoder holds the fs

[tstirrat15]

I'm pretty sure we can get this through the DeveloperError as well, but that can be future work.

[tstirrat15]

Why necessary?

Does this fix the relation something: schema issue?

My thought was that we can do a relatively naive yaml parse and let the user force it if they want to.

[miparnisari]

Why necessary?

this code was already there, no?

Does this fix the relation something: schema issue?

that was fixed in an old PR, and the test schema with relation named schema still passes

[tstirrat15]

See comments

[tstirrat15]

I don't think this assertion is necessary so I'd rather not assert it.

[tstirrat15]

This change means we don't need to post-hoc check whether it's a schema file we're looking at for the purposes of offsets

[tstirrat15]

Using DirFS here ensures that we don't have traversal issues (gosec) and also means that we don't have to validate locality otherwise.

[miparnisari]

Suggested change

	validateCmd.Flags().String("type", "", "the type of the validated file. valid options are \"zed\" and \"yaml\"")
	validateCmd.Flags().String("type", "", "the type of the validated file. use this when zed cannot auto-detect the format of the file properly. valid options are \"zed\" and \"yaml\"")