Trang chủ Khám phá Trợ giúp
Đăng nhập
Lawsun
/
ysjj-system
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Tree: fd8b323dce
Branches Tags
ysjj-system
/
node_modules
/
snyk
/
dist
/
scala
/
SnykSbtPlugin-0.1x.scala

SnykSbtPlugin-0.1x.scala 4.6 KB
Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132 
  1. package snyk
    2. 

  2. 

  3. import java.io.StringWriter
    4. 

  4. 

  5. import net.virtualvoid.sbt.graph.DependencyGraphKeys.moduleGraph
    6. 

  6. import net.virtualvoid.sbt.graph.{DependencyGraphPlugin, ModuleId}
    7. 

  7. import sbt._
    8. 

  8. import Keys._
    9. 

  9. import org.json4s._
    10. 

  10. 

  11. object SnykSbtPlugin extends AutoPlugin {
    12. 

  12.   val ConfigBlacklist: Set[String] =
    13. 

  13.     Set("windows", "universal", "universal-docs", "debian", "rpm", "universal-src", "docker", "linux", "web-assets", "web-plugin", "web-assets-test", "scalafix")
    14. 

  14. 

  15.   case class SnykModuleInfo(version: String, configurations: Set[String])
    16. 

  16. 

  17.   case class SnykProjectData(projectId: String,
    18. 

  18.                              modules: Map[String, SnykModuleInfo],
    19. 

  19.                              dependencies: Map[String, Set[String]]) {
    20. 

  20.     def merge(otherModules: Map[String, SnykModuleInfo], otherDeps: Map[String, Set[String]]): SnykProjectData = {
    21. 

  21.       val mergedModules = otherModules.foldLeft(modules) {
    22. 

  22.         case (acc, (moduleName, moduleInfo)) =>
    23. 

  23.           acc.get(moduleName) match {
    24. 

  24.             case Some(existing) =>
    25. 

  25.               acc + (moduleName -> SnykModuleInfo(
    26. 

  26.                 existing.version,
    27. 

  27.                 existing.configurations ++ moduleInfo.configurations
    28. 

  28.               ))
    29. 

  29.             case None =>
    30. 

  30.               acc + (moduleName -> moduleInfo)
    31. 

  31.           }
    32. 

  32.       }
    33. 

  33. 

  34.       val mergedDeps = dependencies ++ otherDeps
    35. 

  35. 

  36.       SnykProjectData(projectId, mergedModules, mergedDeps)
    37. 

  37.     }
    38. 

  38.   }
    39. 

  39. 

  40.   object autoImport {
    41. 

  41.     lazy val snykExtractProjectData = taskKey[SnykProjectData]("Extracts the dependency information for each project")
    42. 

  42.     lazy val snykRenderTree = taskKey[Unit]("Renders the dependency information for all projects")
    43. 

  43.   }
    44. 

  44. 

  45.   import autoImport._
    46. 

  46. 

  47.   override lazy val globalSettings = Seq(snykRenderTree := Def.taskDyn {
    48. 

  48.     val allProjs = buildStructure.value.allProjectRefs
    49. 

  49.     val filter = ScopeFilter(inProjects(allProjs: _*))
    50. 

  50. 

  51.     Def.task {
    52. 

  52.       val allProjectDatas = snykExtractProjectData.all(filter).value
    53. 

  53.       val writer = JsonWriter.streaming(new StringWriter())
    54. 

  54. 

  55.       writer.addJValue(
    56. 

  56.         JObject(
    57. 

  57.           allProjectDatas.toList.map {
    58. 

  58.             case SnykProjectData(projectId, modules, deps) =>
    59. 

  59.               projectId -> JObject(
    60. 

  60.                 "modules" -> JObject(
    61. 

  61.                   modules
    62. 

  62.                     .mapValues { moduleInfo =>
    63. 

  63.                       JObject(
    64. 

  64.                         List(
    65. 

  65.                           "version" -> JString(moduleInfo.version),
    66. 

  66.                           "configurations" -> JArray(moduleInfo.configurations.toList.map(JString))
    67. 

  67.                         )
    68. 

  68.                       )
    69. 

  69.                     }
    70. 

  70.                     .toList
    71. 

  71.                 ),
    72. 

  72.                 "dependencies" -> JObject(
    73. 

  73.                   deps.mapValues(vs => JArray(vs.toList.map(JString))).toList
    74. 

  74.                 )
    75. 

  75.               )
    76. 

  76.           }
    77. 

  77.         )
    78. 

  78.       )
    79. 

  79.       println("Snyk Output Start")
    80. 

  80.       println(writer.result.toString)
    81. 

  81.       println("Snyk Output End")
    82. 

  82.     }
    83. 

  83.   }.value)
    84. 

  84. 

  85.   override lazy val projectSettings = Seq(
    86. 

  86.     snykExtractProjectData := Def.taskDyn {
    87. 

  87.       def formatModuleId(m: ModuleId) = s"${m.organisation}:${m.name}"
    88. 

  88. 

  89.       val thisProjectId = formatModuleId((moduleGraph in Compile).value.roots.head.id)
    90. 

  90.       val thisProjectConfigs = thisProject.value.configurations.filterNot { c =>
    91. 

  91.         ConfigBlacklist.contains(c.name)
    92. 

  92.       }
    93. 

  93.       val filter = ScopeFilter(configurations = inConfigurations(thisProjectConfigs: _*))
    94. 

  94.       val configAndModuleGraph = Def.task {
    95. 

  95.         val graph = moduleGraph.value
    96. 

  96.         val configName = configuration.value.name
    97. 

  97. 

  98.         configName -> graph
    99. 

  99.       }
    100. 

  100. 

  101.       Def.task {
    102. 

  102.         val graphs = configAndModuleGraph.all(filter).value
    103. 

  103. 

  104.         graphs.foldLeft(SnykProjectData(thisProjectId, Map.empty, Map.empty)) {
    105. 

  105.           case (projectData, (configName, graph)) =>
    106. 

  106.             val modules = graph.modules.flatMap {
    107. 

  107.               case (moduleId, module) =>
    108. 

  108.                 if (module.isUsed) Some(formatModuleId(moduleId) -> SnykModuleInfo(moduleId.version, Set(configName)))
    109. 

  109.                 else None
    110. 

  110.             }
    111. 

  111. 

  112.             val depMap = graph.dependencyMap
    113. 

  113.             val dependencies = graph.modules.flatMap {
    114. 

  114.               case (moduleId, module) =>
    115. 

  115.                 if (module.isUsed)
    116. 

  116.                   depMap.get(moduleId).map { deps =>
    117. 

  117.                     formatModuleId(moduleId) -> deps.collect {
    118. 

  118.                       case dep if dep.isUsed => formatModuleId(dep.id)
    119. 

  119.                     }.toSet
    120. 

  120.                   } else None
    121. 

  121.             }
    122. 

  122. 

  123.             projectData.merge(modules, dependencies)
    124. 

  124.         }
    125. 

  125.       }
    126. 

  126.     }.value
    127. 

  127.   )
    128. 

  128. 

  129.   override def requires = sbt.plugins.JvmPlugin && DependencyGraphPlugin
    130. 

  130. 

  131.   override def trigger = allRequirements
    132. 

  132. }
    133.