RubyGems - ecosystems-bibliothecary - Versions diffs - 15.1.0 → 15.1.1 - Mend

ecosystems-bibliothecary 15.1.0 → 15.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +13 -0
data/README.md +4 -0
data/lib/bibliothecary/parsers/cpan.rb +186 -2
data/lib/bibliothecary/version.rb +1 -1
metadata +1 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 78f959cefcb80f16e6e56d087449ec23576dc7177b5f4a2f0448654f9d7dd022
-  data.tar.gz: fe94e344c4d43098281d613bfaf6168ec4464766fddedc61a97a9028f16f7174
+  metadata.gz: 49988f4a70c1d5dcf6b7c05bffba8d885b3e63f04545f0c524d32b46de0804f2
+  data.tar.gz: 121b4e75f934770b9967b0e3b2427ddc1dc6aaaa19f8ed0d72f1001e50d4d575
 SHA512:
-  metadata.gz: 51e844390f10db2667ef885ad5a0ce300d33b8845808b4f2511869c03512176ce196f8de51c04d11fcfc429ec106849aa5e090800a3ae3aa151f989e8cfe0270
-  data.tar.gz: 0f3a788b617189160bb45f9d73afc4e78ded47a010112a7369c28853a1dd842c3922e1dd7e22c2a62cf494ebaa6a550cf8e009c387e1c58fa27fe6f9bfedc724
+  metadata.gz: 227adbf47ce52d6a9bb70be154f0cc204f5f327b68adeb8c91fd2e668036359eebd07d3fb940f0d4eef00128af04fb2073304147b9285589917efef1b1d5d5cf
+  data.tar.gz: ca3b36ddfa71702dae9737500dcf09ad6a9e6c4daf5758738c793614bcdcbd730a50083d081ee45a899536b0f01c1bd7d4eef90117cc3c1aeee6063a780e0b3f

data/CHANGELOG.md CHANGED Viewed

@@ -13,6 +13,19 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ### Removed
+## [15.1.1]
+### Added
+- CPAN: cpanfile parser for Perl dependency declarations
+- CPAN: cpanfile.snapshot parser for Carton lockfiles
+- CPAN: Makefile.PL parser for ExtUtils::MakeMaker build scripts
+- CPAN: Build.PL parser for Module::Build scripts
+### Changed
+- CPAN: META.json and META.yml are now classified as lockfiles (they are generated, not hand-written)
 ## [15.1.0]
 ### Added

data/README.md CHANGED Viewed

@@ -106,6 +106,10 @@ All available config options are in: https://github.com/ecosyste-ms/bibliothecar
 - CPAN
   - META.json
   - META.yml
+  - cpanfile
+  - cpanfile.snapshot
+  - Makefile.PL
+  - Build.PL
 - CocoaPods
   - Podfile
   - Podfile.lock

data/lib/bibliothecary/parsers/cpan.rb CHANGED Viewed

@@ -11,13 +11,29 @@ module Bibliothecary
       def self.mapping
         {
           match_filename("META.json", case_insensitive: true) => {
-            kind: "manifest",
+            kind: "lockfile",
             parser: :parse_json_manifest,
           },
           match_filename("META.yml", case_insensitive: true) => {
-            kind: "manifest",
+            kind: "lockfile",
             parser: :parse_yaml_manifest,
           },
+          match_filename("cpanfile", case_insensitive: true) => {
+            kind: "manifest",
+            parser: :parse_cpanfile,
+          },
+          match_filename("cpanfile.snapshot", case_insensitive: true) => {
+            kind: "lockfile",
+            parser: :parse_cpanfile_snapshot,
+          },
+          match_filename("Makefile.PL", case_insensitive: true) => {
+            kind: "manifest",
+            parser: :parse_makefile_pl,
+          },
+          match_filename("Build.PL", case_insensitive: true) => {
+            kind: "manifest",
+            parser: :parse_build_pl,
+          },
         }
       end
@@ -35,6 +51,174 @@ module Bibliothecary
         dependencies = map_dependencies(manifest, "requires", "runtime", options.fetch(:filename, nil))
         ParserResult.new(dependencies: dependencies)
       end
+      def self.parse_cpanfile(file_contents, options: {})
+        filename = options.fetch(:filename, nil)
+        dependencies = []
+        current_phase = "runtime"
+        current_feature = nil
+        file_contents.each_line do |line|
+          line = line.strip
+          # Track phase changes: on 'test' => sub {
+          if line =~ /\bon\s+['"](\w+)['"]\s*=>/
+            current_phase = $1
+            next
+          end
+          # Track feature blocks: feature 'name', 'desc' => sub {
+          if line =~ /\bfeature\s+['"]([\w-]+)['"]/
+            current_feature = $1
+            next
+          end
+          # End of block - reset to defaults
+          if line =~ /^\s*\};\s*$/
+            current_phase = "runtime"
+            current_feature = nil
+            next
+          end
+          # Parse dependency declarations
+          # requires 'Module::Name', 'version';
+          # requires 'Module::Name';
+          # recommends 'Module::Name', 'version';
+          if line =~ /\b(requires|recommends|suggests|conflicts)\s+['"]([^'"]+)['"](?:\s*,\s*['"]?([^'";]+)['"]?)?/
+            dep_type = $1
+            name = $2
+            version = $3&.strip || "*"
+            # Map cpanfile phases to our types
+            type = case current_phase
+                   when "test" then "test"
+                   when "develop" then "develop"
+                   when "build" then "build"
+                   when "configure" then "build"
+                   else dep_type == "requires" ? "runtime" : dep_type
+                   end
+            dependencies << Dependency.new(
+              name: name,
+              requirement: version,
+              type: type,
+              platform: "cpan",
+              source: filename
+            )
+          end
+        end
+        ParserResult.new(dependencies: dependencies)
+      end
+      def self.parse_cpanfile_snapshot(file_contents, options: {})
+        filename = options.fetch(:filename, nil)
+        dependencies = []
+        file_contents.each_line do |line|
+          # Match distribution header: Module-Name-1.23
+          if (match = line.match(/^  (\S+)-v?([\d._]+)$/))
+            dist_name = match[1].gsub("-", "::")
+            version = match[2]
+            dependencies << Dependency.new(
+              name: dist_name,
+              requirement: version,
+              type: "runtime",
+              platform: "cpan",
+              source: filename
+            )
+          end
+        end
+        ParserResult.new(dependencies: dependencies)
+      end
+      # Parse Makefile.PL (ExtUtils::MakeMaker format)
+      # Looks for PREREQ_PM, BUILD_REQUIRES, TEST_REQUIRES, CONFIGURE_REQUIRES
+      def self.parse_makefile_pl(file_contents, options: {})
+        filename = options.fetch(:filename, nil)
+        dependencies = []
+        # Map of hash key names to dependency types
+        type_mapping = {
+          "PREREQ_PM" => "runtime",
+          "BUILD_REQUIRES" => "build",
+          "TEST_REQUIRES" => "test",
+          "CONFIGURE_REQUIRES" => "build",
+        }
+        type_mapping.each do |key, type|
+          deps = extract_perl_hash(file_contents, key)
+          deps.each do |name, version|
+            dependencies << Dependency.new(
+              name: name,
+              requirement: version,
+              type: type,
+              platform: "cpan",
+              source: filename
+            )
+          end
+        end
+        ParserResult.new(dependencies: dependencies)
+      end
+      # Parse Build.PL (Module::Build format)
+      # Looks for requires, build_requires, test_requires, configure_requires
+      def self.parse_build_pl(file_contents, options: {})
+        filename = options.fetch(:filename, nil)
+        dependencies = []
+        # Map of hash key names to dependency types
+        type_mapping = {
+          "requires" => "runtime",
+          "build_requires" => "build",
+          "test_requires" => "test",
+          "configure_requires" => "build",
+          "recommends" => "runtime",
+        }
+        type_mapping.each do |key, type|
+          deps = extract_perl_hash(file_contents, key)
+          deps.each do |name, version|
+            dependencies << Dependency.new(
+              name: name,
+              requirement: version,
+              type: type,
+              platform: "cpan",
+              source: filename
+            )
+          end
+        end
+        ParserResult.new(dependencies: dependencies)
+      end
+      # Extract a Perl hash from source code
+      # Handles patterns like: KEY => { 'Module' => '1.0', ... }
+      def self.extract_perl_hash(content, key)
+        deps = {}
+        # Match the hash assignment: KEY => { ... }
+        # Use word boundary to avoid matching configure_requires when looking for requires
+        pattern = /(?:^|[^\w])#{Regexp.escape(key)}\s*=>\s*\{([^{}]*(?:\{[^{}]*\}[^{}]*)*)\}/m
+        if (match = content.match(pattern))
+          hash_content = match[1]
+          # Extract 'Module::Name' => 'version' or 'Module::Name' => version patterns
+          hash_content.scan(/['"]([^'"]+)['"]\s*=>\s*['"]?([^'",}\s]+)['"]?/) do |name, version|
+            # Skip perl version requirements and non-module entries
+            next if name == "perl"
+            # Normalize version: 0 means any version
+            version = "*" if version == "0"
+            deps[name] = version
+          end
+        end
+        deps
+      end
     end
   end
 end

data/lib/bibliothecary/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Bibliothecary
-  VERSION = "15.1.0"
+  VERSION = "15.1.1"
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ecosystems-bibliothecary
 version: !ruby/object:Gem::Version
-  version: 15.1.0
+  version: 15.1.1
 platform: ruby
 authors:
 - Andrew Nesbitt