bibliothecary 13.0.1 → 14.0.0

data/lib/bibliothecary/parsers/pub.rb

@@ -24,20 +24,23 @@ module Bibliothecary
 
       def self.parse_yaml_manifest(file_contents, options: {})
         manifest = YAML.load file_contents
-        map_dependencies(manifest, "dependencies", "runtime", options.fetch(:filename, nil)) +
-          map_dependencies(manifest, "dev_dependencies", "development", options.fetch(:filename, nil))
+        dependencies = map_dependencies(manifest, "dependencies", "runtime", options.fetch(:filename, nil)) +
+                       map_dependencies(manifest, "dev_dependencies", "development", options.fetch(:filename, nil))
+        ParserResult.new(dependencies: dependencies)
       end
 
       def self.parse_yaml_lockfile(file_contents, options: {})
         manifest = YAML.load file_contents
-        manifest.fetch("packages", []).map do |name, dep|
+        dependencies = manifest.fetch("packages", []).map do |name, dep|
           Dependency.new(
             name: name,
             requirement: dep["version"],
             type: "runtime",
-            source: options.fetch(:filename, nil)
+            source: options.fetch(:filename, nil),
+            platform: platform_name
           )
         end
+        ParserResult.new(dependencies: dependencies)
       end
     end
   end

data/lib/bibliothecary/parsers/pypi.rb

@@ -81,8 +81,9 @@ module Bibliothecary
 
       def self.parse_pipfile(file_contents, options: {})
         manifest = Tomlrb.parse(file_contents)
-        map_dependencies(manifest["packages"], "runtime", options.fetch(:filename, nil)) +
-          map_dependencies(manifest["dev-packages"], "develop", options.fetch(:filename, nil))
+        dependencies = map_dependencies(manifest["packages"], "runtime", options.fetch(:filename, nil)) +
+                       map_dependencies(manifest["dev-packages"], "develop", options.fetch(:filename, nil))
+        ParserResult.new(dependencies: dependencies)
       end
 
       def self.parse_pyproject(file_contents, options: {})
@@ -114,11 +115,15 @@ module Bibliothecary
 
         # Poetry normalizes names in lockfiles but doesn't provide the original, so we need to keep
         # track of the original name so the dep is connected between manifest+lockfile.
-        deps.map do |dep|
+        dependencies = deps.map do |dep|
           normalized_name = normalize_name(dep.name)
-          Dependency.new(**dep.to_h, name: normalized_name,
-                                     original_name: normalized_name == dep.name ? nil : dep.name)
+          Dependency.new(
+            **dep.to_h,
+            name: normalized_name,
+            original_name: normalized_name == dep.name ? nil : dep.name
+          )
         end
+        ParserResult.new(dependencies: dependencies)
       end
 
       def self.map_dependencies(packages, type, source = nil)
@@ -133,6 +138,7 @@ module Bibliothecary
             # https://python-poetry.org/docs/dependency-specification/#multiple-constraints-dependencies
             package_info.map do |info|
               Dependency.new(
+                platform: platform_name,
                 name: name,
                 requirement: map_requirements(info),
                 type: type,
@@ -142,6 +148,7 @@ module Bibliothecary
             end
           else
             Dependency.new(
+              platform: platform_name,
               name: name,
               requirement: map_requirements(package_info),
               type: type,
@@ -175,7 +182,7 @@ module Bibliothecary
           group = "runtime" if group == "default"
           deps += map_dependencies(dependencies, group, options.fetch(:filename, nil))
         end
-        deps
+        ParserResult.new(dependencies: deps)
       end
 
       def self.parse_poetry_lock(file_contents, options: {})
@@ -206,16 +213,17 @@ module Bibliothecary
               original_name: normalized_name == package["name"] ? nil : package["name"],
               requirement: map_requirements(package),
               type: group,
-              source: options.fetch(:filename, nil)
+              source: options.fetch(:filename, nil),
+              platform: platform_name
             )
           end
         end
-        deps
+        ParserResult.new(dependencies: deps)
       end
 
       def self.parse_setup_py(file_contents, options: {})
         match = file_contents.match(INSTALL_REGEXP)
-        return [] unless match
+        return ParserResult.new(dependencies: []) unless match
 
         deps = []
         match[1].gsub(/',(\s)?'/, "\n").split("\n").each do |line|
@@ -228,10 +236,11 @@ module Bibliothecary
             name: match[1],
             requirement: match[-1],
             type: "runtime",
-            source: options.fetch(:filename, nil)
+            source: options.fetch(:filename, nil),
+            platform: platform_name
           )
         end
-        deps
+        ParserResult.new(dependencies: deps)
       end
 
       # While the thing in the repo that PyPI is using might be either in
@@ -241,16 +250,18 @@ module Bibliothecary
       NoEggSpecified = Class.new(ArgumentError)
 
       def self.parse_dependency_tree_json(file_contents, options: {})
-        JSON.parse(file_contents)
+        dependencies = JSON.parse(file_contents)
           .map do |pkg|
             Dependency.new(
               name: pkg.dig("package", "package_name"),
               requirement: pkg.dig("package", "installed_version"),
               type: "runtime",
-              source: options.fetch(:filename, nil)
+              source: options.fetch(:filename, nil),
+              platform: platform_name
             )
           end
           .uniq
+        ParserResult.new(dependencies: dependencies)
       end
 
       # Parses a requirements.txt file, following the
@@ -282,12 +293,14 @@ module Bibliothecary
               name: match[1],
               requirement: match[-1],
               type: type,
-              source: options.fetch(:filename, nil)
+              source: options.fetch(:filename, nil),
+              platform: platform_name
             )
           end
         end
 
-        deps.uniq
+        dependencies = deps.uniq
+        ParserResult.new(dependencies: dependencies)
       end
 
       def self.parse_requirements_txt_url(url, type = nil, source = nil)
@@ -303,7 +316,8 @@ module Bibliothecary
           name: name,
           requirement: requirement,
           type: type,
-          source: source
+          source: source,
+          platform: platform_name
         )
       end
 

data/lib/bibliothecary/parsers/rubygems.rb

@@ -37,7 +37,7 @@ module Bibliothecary
       add_multi_parser(Bibliothecary::MultiParsers::Spdx)
 
       def self.parse_gemfile_lock(file_contents, options: {})
-        file_contents.lines(chomp: true).map do |line|
+        dependencies = file_contents.lines(chomp: true).map do |line|
           match = line.match(NAME_VERSION_4)
           bundler_match = line.match(BUNDLED_WITH)
           next unless match || bundler_match
@@ -49,22 +49,26 @@ module Bibliothecary
               name: name,
               requirement: version,
               type: "runtime",
-              source: options.fetch(:filename, nil)
+              source: options.fetch(:filename, nil),
+              platform: platform_name
             )
           else
             parse_bundler(file_contents, options.fetch(:filename, nil))
           end
         end.compact
+        ParserResult.new(dependencies: dependencies)
       end
 
       def self.parse_gemfile(file_contents, options: {})
         manifest = Gemnasium::Parser.send(:gemfile, file_contents)
-        parse_ruby_manifest(manifest, options.fetch(:filename, nil))
+        dependencies = parse_ruby_manifest(manifest, platform_name, options.fetch(:filename, nil))
+        ParserResult.new(dependencies: dependencies)
       end
 
       def self.parse_gemspec(file_contents, options: {})
         manifest = Gemnasium::Parser.send(:gemspec, file_contents)
-        parse_ruby_manifest(manifest, options.fetch(:filename, nil))
+        dependencies = parse_ruby_manifest(manifest, platform_name, options.fetch(:filename, nil))
+        ParserResult.new(dependencies: dependencies)
       end
 
       def self.parse_bundler(file_contents, source = nil)
@@ -77,7 +81,8 @@ module Bibliothecary
           name: "bundler",
           requirement: version,
           type: "runtime",
-          source: source
+          source: source,
+          platform: platform_name
         )
       end
     end

data/lib/bibliothecary/parsers/shard.rb

@@ -24,13 +24,15 @@ module Bibliothecary
 
       def self.parse_yaml_lockfile(file_contents, options: {})
         manifest = YAML.load file_contents
-        map_dependencies(manifest, "shards", "runtime", options.fetch(:filename, nil))
+        dependencies = map_dependencies(manifest, "shards", "runtime", options.fetch(:filename, nil))
+        Bibliothecary::ParserResult.new(dependencies: dependencies)
       end
 
       def self.parse_yaml_manifest(file_contents, options: {})
         manifest = YAML.load file_contents
-        map_dependencies(manifest, "dependencies", "runtime", options.fetch(:filename, nil)) +
-          map_dependencies(manifest, "development_dependencies", "runtime", options.fetch(:filename, nil))
+        dependencies = map_dependencies(manifest, "dependencies", "runtime", options.fetch(:filename, nil)) +
+                       map_dependencies(manifest, "development_dependencies", "runtime", options.fetch(:filename, nil))
+        Bibliothecary::ParserResult.new(dependencies: dependencies)
       end
 
       def self.map_dependencies(hash, key, type, source = nil)
@@ -39,7 +41,8 @@ module Bibliothecary
             name: name,
             requirement: requirement["version"],
             type: type,
-            source: source
+            source: source,
+            platform: platform_name
           )
         end
       end

data/lib/bibliothecary/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Bibliothecary
-  VERSION = "13.0.1"
+  VERSION = "14.0.0"
 end

data/lib/bibliothecary.rb

@@ -2,6 +2,7 @@
 
 require "bibliothecary/version"
 require "bibliothecary/dependency"
+require "bibliothecary/parser_result"
 require "bibliothecary/analyser"
 require "bibliothecary/configuration"
 require "bibliothecary/runner"

data/lib/sdl_parser.rb

@@ -5,15 +5,17 @@ require "sdl4r"
 class SdlParser
   attr_reader :contents, :type
 
-  def initialize(type, contents, source = nil)
+  def initialize(type, contents, platform, source = nil)
     @contents = contents
     @type = type || "runtime"
+    @platform = platform
     @source = source
   end
 
   def dependencies
     parse.children("dependency").inject([]) do |deps, dep|
       deps.push(Bibliothecary::Dependency.new(
+                  platform: @platform,
                   name: dep.value,
                   requirement: dep.attribute("version") || ">= 0",
                   type: type,

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: bibliothecary
 version: !ruby/object:Gem::Version
-  version: 13.0.1
+  version: 14.0.0
 platform: ruby
 authors:
 - Andrew Nesbitt
 bindir: bin
 cert_chain: []
-date: 2025-07-03 00:00:00.000000000 Z
+date: 2025-07-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: commander
@@ -177,6 +177,7 @@ files:
 - lib/bibliothecary/multi_parsers/dependencies_csv.rb
 - lib/bibliothecary/multi_parsers/json_runtime.rb
 - lib/bibliothecary/multi_parsers/spdx.rb
+- lib/bibliothecary/parser_result.rb
 - lib/bibliothecary/parsers/bower.rb
 - lib/bibliothecary/parsers/cargo.rb
 - lib/bibliothecary/parsers/cocoapods.rb