kustomizer 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 5b88c7e828be9c93ec00ef81cd1fa0b583f2772c6b621cfab5ce0e422418d49c
+  data.tar.gz: a08c5c25f4c234ea9b698d64e6f327a5e3a17147d1cf17c613471fcf0f32a7cf
+SHA512:
+  metadata.gz: 42ecbbe674b0b4f49c434457f99cc43084e4c6d432789d15ac4a3081e345a5dda6b459ca1db1f15057f2279f3b00454dd46e5d350a4c60fe0e391495c26d5952
+  data.tar.gz: dbb5dbbca1c1b1ae4e95584fb9601284b5f8c3f73a2b4ba15f02d4f1bf382634d87e86632ec7319e90761beb6de8ef8cc946909531718df4bfeff3a9793351fd

data/.gitignore

@@ -0,0 +1,11 @@
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+
+# rspec failure tracking
+.rspec_status

data/.rspec

@@ -0,0 +1,3 @@
+--format documentation
+--color
+--require spec_helper

data/Gemfile

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+source "https://rubygems.org"
+
+# Specify your gem's dependencies in kustomizer.gemspec
+gemspec
+
+gem "rake", "~> 13.0"
+gem "rspec", "~> 3.0"

data/Gemfile.lock

@@ -0,0 +1,36 @@
+PATH
+  remote: .
+  specs:
+    kustomizer (0.1.0)
+      accessory (~> 0.1.9)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    accessory (0.1.9)
+    diff-lcs (1.4.4)
+    rake (13.0.3)
+    rspec (3.10.0)
+      rspec-core (~> 3.10.0)
+      rspec-expectations (~> 3.10.0)
+      rspec-mocks (~> 3.10.0)
+    rspec-core (3.10.1)
+      rspec-support (~> 3.10.0)
+    rspec-expectations (3.10.1)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.10.0)
+    rspec-mocks (3.10.1)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.10.0)
+    rspec-support (3.10.1)
+
+PLATFORMS
+  x86_64-darwin-20
+
+DEPENDENCIES
+  kustomizer!
+  rake (~> 13.0)
+  rspec (~> 3.0)
+
+BUNDLED WITH
+   2.2.5

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2021 Levi Aul
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,111 @@
+# KustomizeR
+
+KustomizeR is a pure-Ruby implementation of [Kustomize](https://kustomize.io/), a
+Kubernetes configuration-management tool.
+
+KustomizeR exists to be used by other Ruby tooling, as an alternative to requiring
+the user to have the native Go version of Kustomize installed.
+
+## Roadmap
+
+KustomizeR is **not yet feature-complete**, i.e. it does not yet do everything
+that Kustomize does.
+
+Status of `kustomization.yaml` support:
+
+* [x] `bases`
+* [ ] `commonAnnotations`
+* [ ] `commonLabels`
+* [ ] `configMapGenerator` and `secretGenerator`
+* [ ] `crds`
+* [x] `generators` (see [Extending Kustomize](https://kubectl.docs.kubernetes.io/guides/extending_kustomize/))
+* [ ] `generatorOptions`
+* [x] `images`
+* [ ] `namePrefix` and `nameSuffix`
+* [x] `namespace`
+* [x] `patches`
+* [x] `patchesJson6902`
+* [ ] `patchesStrategicMerge`
+* [ ] `replicas`
+* [x] `resources`
+* [ ] `transformers` (see [Extending Kustomize](https://kubectl.docs.kubernetes.io/guides/extending_kustomize/))
+* [ ] `vars`
+
+Status of support for other features:
+
+* [ ] Resource loading
+  * [x] resource-config files on disk
+  * [x] `kustomization.yaml` files on disk
+  * [x] directories on disk (all resource-config files within)
+  * [x] directories on disk (`kustomization.yaml` file within)
+  * [ ] files/directories from git repo URLs
+
+* [ ] Automatic name suffixing of generated resources
+  * [x] Secrets
+  * [ ] ConfigMaps
+
+#### Differences from Kustomize
+
+* KustomizeR is **not yet feature-complete**. (KustomizeR will be bumped to
+  version 1.0 once it reaches feature parity with Kustomize.)
+
+* KustomizeR does not support loading Go plugins. Instead, KustomizeR supports
+  loading Ruby plugins. See [Plugin Development](#plugin-development) below.
+
+* KustomizeR is modular, and is intended to be loaded and used as a library,
+  rather than being spawned as a subprocess. Crucially, the load path for
+  plugins is under the caller's control, and so higher-level frameworks can
+  manage project-level KustomizeR plugins.
+
+* Some `kustomization.yaml` features have been temporarily extended in
+  non-compatible ways.
+  * `patchesJson6902` accepts an inline an `ops` array
+  * `patchesJson6902` accepts a `gsub` op
+
+(Before v1.0, these extensions will be moved to become built-in plugins, to
+allow for inter-compatibility with Kustomize, which could support them as
+external plugins.)
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'kustomizer'
+```
+
+And then execute:
+
+    $ bundle install
+
+Or install it yourself as:
+
+    $ gem install kustomizer
+
+## Usage
+
+```ruby
+require 'kustomize'
+k = Kustomize.load("./path/to/kustomization.yaml")
+
+k.emit # Array of Hashes (the final resource-configs)
+k.to_yaml_stream # String (merged YAML multi-document stream)
+```
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and the created tag, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+
+### Plugin Development
+
+TODO
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/tsutsu/kustomizer.
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/Rakefile

@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+task default: :spec

data/bin/console

@@ -0,0 +1,15 @@
+#!/usr/bin/env ruby
+# frozen_string_literal: true
+
+require "bundler/setup"
+require "kustomizer"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start(__FILE__)

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/kustomizer.gemspec

@@ -0,0 +1,28 @@
+# frozen_string_literal: true
+
+require_relative "lib/kustomize/version"
+
+Gem::Specification.new do |spec|
+  spec.name          = "kustomizer"
+  spec.version       = Kustomize::VERSION
+  spec.authors       = ["Levi Aul"]
+  spec.email         = ["levi@leviaul.com"]
+
+  spec.summary       = "Pure-ruby impl of Kubernetes kustomize"
+  spec.description   = "A pure-ruby implementation of the Kubernetes 'kustomize' command."
+  spec.homepage      = "https://github.com/tsutsu/kustomize"
+  spec.license       = "MIT"
+  spec.required_ruby_version = Gem::Requirement.new(">= 2.7.0")
+
+  spec.metadata["homepage_uri"] = spec.homepage
+  spec.metadata["source_code_uri"] = spec.homepage
+
+  spec.files = Dir.chdir(File.expand_path(__dir__)) do
+    `git ls-files -z`.split("\x0").reject { |f| f.match(%r{\A(?:test|spec|features)/}) }
+  end
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{\Aexe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_runtime_dependency "accessory", "~> 0.1.9"
+end

data/lib/kustomize.rb

@@ -0,0 +1,44 @@
+require 'pathname'
+
+require 'kustomize/version'
+require 'kustomize/session'
+
+require 'kustomize/emitter/file_emitter'
+require 'kustomize/emitter/directory_emitter'
+require 'kustomize/emitter/document_emitter/kustomization_document_emitter'
+
+module Kustomize
+  def self.load(rel_path_or_rc, session: Kustomize::Session.new, source_path: nil)
+    case rel_path_or_rc
+    when String, Pathname
+      load_path(rel_path_or_rc, session: session)
+    when Hash
+      load_doc(rel_path_or_rc, session: session, source_path: source_path)
+    else
+      raise ArgumentError, "must be a kustomization document or a path to one, instead got: #{rel_path_or_rc.inspect}"
+    end
+  end
+
+  def self.load_doc(rc, session: Kustomize::Session.new, source_path:)
+    Kustomize::Emitter::DocumentEmitter::KustomizationDocumentEmitter
+    .load(rc, source: source_path, session: session)
+  end
+
+  def self.load_path(rel_path, session: Kustomize::Session.new)
+    rel_path = Pathname.new(rel_path.to_s) unless rel_path.kind_of?(Pathname)
+
+    unless rel_path.exist?
+      raise Errno::ENOENT, rel_path.to_s
+    end
+
+    abs_path = rel_path.expand_path
+
+    if abs_path.file?
+      Kustomize::Emitter::FileEmitter.new(abs_path, session: session)
+    elsif abs_path.directory?
+      Kustomize::Emitter::DirectoryEmitter.new(abs_path, session: session)
+    else
+      raise Errno::EFTYPE, rel_path.to_s
+    end
+  end
+end

data/lib/kustomize/emitter.rb

@@ -0,0 +1,17 @@
+module Kustomize; end
+
+class Kustomize::Emitter
+  def input_emitters; []; end
+
+  def input_resources
+    self.input_emitters.flat_map(&:emit)
+  end
+
+  def emit
+    self.input_resources
+  end
+
+  def to_yaml_stream
+    self.emit.map(&:to_yaml).join("")
+  end
+end

data/lib/kustomize/emitter/directory_emitter.rb

@@ -0,0 +1,28 @@
+require 'kustomize/emitter'
+require 'kustomize/emitter/file_emitter'
+
+require 'kustomize/pathname_refinements'
+using Kustomize::PathnameRefinements
+
+class Kustomize::Emitter::DirectoryEmitter < Kustomize::Emitter
+  def initialize(source_path, session:)
+    @session = session
+    @source_path = source_path
+  end
+
+  def input_emitters
+    return @input_emitters if @input_emitters
+
+    maybe_ckf = @source_path.child_kustomization_file
+
+    @input_emitters =
+      if maybe_ckf.file?
+        ckf_emitter = Kustomize::Emitter::FileEmitter.new(maybe_ckf, session: @session)
+        [ckf_emitter]
+      else
+        @source_path.all_rc_files_within.flat_map do |rc_path|
+          Kustomize::Emitter::FileEmitter.new(rc_path, session: @session)
+        end
+      end
+  end
+end

data/lib/kustomize/emitter/document_emitter.rb

@@ -0,0 +1,18 @@
+require 'kustomize/emitter'
+
+class Kustomize::Emitter::DocumentEmitter < Kustomize::Emitter
+  def self.load(doc, source:, session:)
+    self.new(doc, source: source, session: session)
+  end
+
+  def initialize(doc, source: nil, session:)
+    @session = session
+
+    @doc = doc
+    @source = source
+  end
+
+  def emit
+    [@doc]
+  end
+end

data/lib/kustomize/emitter/document_emitter/kustomization_document_emitter.rb

@@ -0,0 +1,97 @@
+require 'kustomize/emitter/document_emitter'
+require 'kustomize/emitter/file_emitter'
+require 'kustomize/emitter/directory_emitter'
+require 'kustomize/emitter/plugin_emitter'
+
+require 'kustomize/transform/json_6902_patch_transform'
+require 'kustomize/transform/image_transform'
+require 'kustomize/transform/namespace_transform'
+require 'kustomize/transform/name_digest_autosuffix_transform'
+
+class Kustomize::Emitter::DocumentEmitter::KustomizationDocumentEmitter < Kustomize::Emitter::DocumentEmitter
+  def source_directory
+    @source[:path].parent
+  end
+
+  def input_emitters
+    return @input_emitters if @input_emitters
+
+    rc_pathspecs =
+      (@doc['bases'] || []) +
+      (@doc['resources'] || [])
+
+    gen_pathspecs =
+      (@doc['generators'] || [])
+
+    input_emitters = rc_pathspecs.map do |rel_path|
+      build_input_emitter(rel_path)
+    end
+
+    input_emitters += gen_pathspecs.map do |rel_path|
+      Kustomize::Emitter::PluginEmitter.new(
+        build_input_emitter(rel_path),
+        session: @session
+      )
+    end
+
+    @input_emitters = input_emitters
+  end
+
+  def build_input_emitter(rel_path)
+    abs_path = self.source_directory / rel_path
+
+    unless abs_path.exist?
+      raise Errno::ENOENT, abs_path.to_s
+    end
+
+    if abs_path.file?
+      Kustomize::Emitter::FileEmitter.new(abs_path, session: @session)
+    elsif abs_path.directory?
+      Kustomize::Emitter::DirectoryEmitter.new(abs_path, session: @session)
+    else
+      raise Errno::EFTYPE, abs_path.to_s
+    end
+  end
+  private :build_input_emitter
+
+  def json_6902_patch_transforms
+    ((@doc['patches'] || []) + (@doc['patchesJson6902'] || [])).map do |op_spec|
+      Kustomize::Transform::Json6902PatchTransform.create(self, op_spec)
+    end
+  end
+
+  def image_transforms
+    (@doc['images'] || []).map do |op_spec|
+      Kustomize::Transform::ImageTransform.create(op_spec)
+    end
+  end
+
+  def namespace_transforms
+    if new_ns = @doc['namespace']
+      [Kustomize::Transform::NamespaceTransform.create(new_ns)]
+    else
+      []
+    end
+  end
+
+  def name_digest_autosuffix_transforms
+    [Kustomize::Transform::NameDigestAutosuffixTransform.create(self)]
+  end
+
+  def transforms
+    return @transforms if @transforms
+
+    @transforms = [
+      self.namespace_transforms,
+      self.image_transforms,
+      self.name_digest_autosuffix_transforms,
+      self.json_6902_patch_transforms
+    ].flatten
+  end
+
+  def emit
+    self.input_resources.map do |rc|
+      self.transforms.inject(rc){ |doc, xform| xform.apply(doc) }
+    end
+  end
+end

data/lib/kustomize/emitter/file_emitter.rb

@@ -0,0 +1,38 @@
+require 'yaml'
+
+require 'kustomize/emitter'
+require 'kustomize/emitter/document_emitter'
+
+class Kustomize::Emitter::FileEmitter < Kustomize::Emitter
+  def initialize(source_path, session:)
+    @session = session
+    @source_path = source_path
+  end
+
+  def input_emitters
+    return @input_emitters if @input_emitters
+
+    source_docs = YAML.load_stream(@source_path.read)
+
+    @input_emitters = source_docs.map.with_index do |doc, i|
+      unless doc.has_key?('kind')
+        raise ArgumentError, "invalid Kubernetes resource-config document (missing attribute 'kind'): subdocument #{i} in #{target_path}"
+      end
+
+      doc_kind = doc['kind']
+
+      doc_klass =
+        begin
+          Kustomize::Emitter::DocumentEmitter.const_get(doc_kind + 'DocumentEmitter')
+        rescue NameError => e
+          Kustomize::Emitter::DocumentEmitter
+        end
+
+      doc_klass.load(
+        doc,
+        source: {path: @source_path, subdocument: i},
+        session: @session
+      )
+    end
+  end
+end

data/lib/kustomize/emitter/plugin_emitter.rb

@@ -0,0 +1,30 @@
+require 'kustomize/emitter'
+
+class Kustomize::Emitter::PluginEmitter < Kustomize::Emitter
+  def initialize(input_emitter, session:)
+    @session = session
+    @input_emitter = input_emitter
+  end
+
+  def source_directory
+    @source_path.parent
+  end
+
+  def input_emitters
+    [@input_emitter]
+  end
+
+  def plugin_instances
+    return @plugin_instances if @plugin_instances
+
+    @plugin_instances =
+      self.input_resources.map do |rc|
+        plugin_klass = @session.plugin_manager.get(rc['apiVersion'], rc['kind'])
+        plugin_klass.new(rc)
+      end
+  end
+
+  def emit
+    self.plugin_instances.flat_map(&:emit)
+  end
+end

data/lib/kustomize/json_6902_patch.rb

@@ -0,0 +1,29 @@
+require 'accessory'
+
+module Kustomize; end
+module Kustomize::Json6902Patch; end
+
+class Kustomize::Json6902Patch::Op
+  def self.create(...)
+    new(...)
+  end
+
+  class << self
+    private :new
+  end
+
+  def parse_lens(path)
+    lens_parts = path[1..-1].split("/").map do |e|
+      e = e.gsub('~1', '/')
+      if e == ":all"
+        Accessory::Access.all
+      elsif e.match?(/^\d+$/)
+        e.to_i
+      else
+        e
+      end
+    end
+
+    Accessory::Lens[*lens_parts]
+  end
+end

data/lib/kustomize/json_6902_patch/add_op.rb

@@ -0,0 +1,25 @@
+require 'kustomize/json_6902_patch'
+
+class Kustomize::Json6902Patch::AddOp < Kustomize::Json6902Patch::Op
+  def self.create(patch_spec)
+    new(
+      path: patch_spec['path'],
+      value: patch_spec['value']
+    )
+  end
+
+  def initialize(path:, value:)
+    @lens = parse_lens(path)
+    @new_value = value
+  end
+
+  def apply(rc)
+    @lens.update_in(rc) do |orig_value|
+      unless orig_value.nil?
+        raise ArgumentError, "cannot add value at #{@lens.inspect} -- value exists at target"
+      end
+
+      [:set, @new_value]
+    end
+  end
+end

data/lib/kustomize/json_6902_patch/gsub_op.rb

@@ -0,0 +1,31 @@
+require 'kustomize/json_6902_patch'
+
+class Kustomize::Json6902Patch::GsubOp < Kustomize::Json6902Patch::Op
+  def self.create(patch_spec)
+    self.new(
+      paths: patch_spec['paths'],
+      pattern: Regexp.new(patch_spec['pattern'], Regexp::EXTENDED),
+      replacement: patch_spec['replacement']
+    )
+  end
+
+  def initialize(paths:, pattern:, replacement:)
+    @lenses = paths.map{ |path| parse_lens(path) }
+    @pattern = pattern
+    @replacement = replacement
+  end
+
+  def apply(rc)
+    @lenses.inject(rc) do |doc, lens|
+      lens.update_in(doc) do |orig_value|
+        new_value = orig_value.gsub(@pattern, @replacement)
+
+        if new_value != orig_value
+          [:set, new_value]
+        else
+          :keep
+        end
+      end
+    end
+  end
+end

data/lib/kustomize/json_6902_patch/remove_op.rb

@@ -0,0 +1,18 @@
+require 'kustomize/json_6902_patch'
+
+class Kustomize::Json6902Patch::RemoveOp < Kustomize::Json6902Patch::Op
+  def self.create(patch_spec)
+    new(
+      path: patch_spec['path']
+    )
+  end
+
+  def initialize(path:)
+    @lens = parse_lens(path)
+  end
+
+  def apply(rc0)
+    _, rc1 = @lens.pop_in(rc0)
+    rc1
+  end
+end

data/lib/kustomize/json_6902_patch/replace_op.rb

@@ -0,0 +1,25 @@
+require 'kustomize/json_6902_patch'
+
+class Kustomize::Json6902Patch::ReplaceOp < Kustomize::Json6902Patch::Op
+  def self.create(patch_spec)
+    new(
+      path: patch_spec['path'],
+      value: patch_spec['value']
+    )
+  end
+
+  def initialize(path:, value:)
+    @lens = parse_lens(path)
+    @new_value = value
+  end
+
+  def apply(rc)
+    @lens.update_in(rc) do |orig_value|
+      if orig_value.nil?
+        raise ArgumentError, "cannot set value at #{@lens.inspect} -- target does not exist"
+      end
+
+      [:set, @new_value]
+    end
+  end
+end

data/lib/kustomize/pathname_refinements.rb

@@ -0,0 +1,46 @@
+require 'pathname'
+require 'yaml'
+
+module Kustomize; end
+
+module Kustomize::PathnameRefinements
+  RC_EXT_PAT = /\.(yaml|yml)$/i
+  KUSTOMIZATION_FILENAME = 'kustomization.yaml'
+  KUSTOMIZATION_FILENAME_PAT = /^kustomization\.(yaml|yml)$/i
+
+  refine ::Pathname do
+    def visible?
+      self.basename.to_s[0] != '.'
+    end
+
+    def resource_config_file?
+      self.file? and self.visible? and !!(self.basename.to_s =~ RC_EXT_PAT)
+    end
+
+    def kustomization_file?
+      self.file? and self.visible? and !!(self.basename.to_s =~ KUSTOMIZATION_FILENAME_PAT)
+    end
+
+    def child_kustomization_file
+      self / KUSTOMIZATION_FILENAME
+    end
+
+    def kustomization_dir?
+      self.directory? and self.child_kustomization_file.file?
+    end
+
+    def all_rc_files_within
+      self.all_rc_files_within_visit.flatten
+    end
+
+    def all_rc_files_within_visit
+      if self.resource_config_file?
+        [self]
+      elsif self.directory?
+        self.children.map{ |ch| ch.all_rc_files_within_visit }
+      else
+        []
+      end
+    end
+  end
+end

data/lib/kustomize/plugin.rb

@@ -0,0 +1,11 @@
+module Kustomize; end
+
+class Kustomize::Plugin
+  def initialize(rc)
+    @rc = rc
+  end
+
+  def emit
+    raise NotImplementedError, "Kustomize plugins must implement #emit"
+  end
+end

data/lib/kustomize/plugin_manager.rb

@@ -0,0 +1,31 @@
+require 'kustomize/plugin'
+
+class Kustomize::PluginManager
+  def initialize(session:)
+    @session = session
+    @instances = {}
+  end
+
+  def get(api_version, kind)
+    cache_key = [api_version, kind]
+    cached_inst = @instances[cache_key]
+    return cached_inst if cached_inst
+
+    @instances[cache_key] = self.load(api_version, kind)
+  end
+
+  def load(api_version, kind)
+      @session.load_paths
+      .each{ |prefix| puts(prefix / api_version / "#{kind.downcase}.rb") }
+
+    load_path =
+      @session.load_paths
+      .map{ |prefix| prefix / api_version / "#{kind.downcase}.rb" }
+      .find{ |f| f.file? }
+
+    raise ArgumentError, "unknown kustomize plugin #{kind}" unless load_path
+
+    Class.new(Kustomize::Plugin)
+    .tap{ |klass| klass.class_eval(load_path.read) }
+  end
+end

data/lib/kustomize/session.rb

@@ -0,0 +1,17 @@
+module Kustomize; end
+
+require 'kustomize/plugin_manager'
+
+class Kustomize::Session
+  def plugin_manager
+    return @plugin_manager if @plugin_manager
+    @plugin_manager = Kustomize::PluginManager.new(session: self)
+  end
+
+  def load_paths
+    return @load_paths if @load_paths
+    @load_paths = [
+      Pathname.new(__FILE__).expand_path.parent / 'plugin'
+    ]
+  end
+end

data/lib/kustomize/target_spec.rb

@@ -0,0 +1,45 @@
+module Kustomize; end
+
+class Kustomize::TargetSpec
+  def self.create(target_spec)
+    self.new(
+      api_group: target_spec['group'],
+      api_version: target_spec['version'],
+
+      kind: target_spec['kind'],
+
+      namespace: target_spec['namespace'],
+      name: target_spec['name']
+    )
+  end
+
+  def initialize(api_group: nil, api_version: nil, kind: nil, name: nil, namespace: nil)
+    @match_api_group = api_group
+    @match_api_version = api_version
+    @match_kind = kind
+    @match_namespace = namespace
+    @match_name = name
+  end
+
+  def get_name(rc)
+    rc.dig('spec', 'name')
+  end
+
+  def get_namespace(rc)
+    rc.dig('spec', 'namespace') || 'default'
+  end
+
+  def match?(rc)
+    if @match_api_group or @match_api_version
+      api_group, api_version = (rc['apiVersion'] || '/').split('/', 2)
+      return false if @match_api_group and api_group != @match_api_group
+      return false if @match_api_version and api_version != @match_api_version
+    end
+
+    return false if @match_kind and (rc['kind'] != @match_kind)
+    return false if @match_name and get_name(resource_doc) != @match_name
+    return false if @match_namespace and get_namespace(resource_doc) != @match_namespace
+
+    true
+  end
+end

data/lib/kustomize/transform.rb

@@ -0,0 +1,15 @@
+module Kustomize; end
+
+class Kustomize::Transform
+  def self.create(...)
+    new(...)
+  end
+
+  class << self
+    private :new
+  end
+
+  def apply(rc)
+    rc
+  end
+end

data/lib/kustomize/transform/image_transform.rb

@@ -0,0 +1,63 @@
+require 'accessory'
+
+require 'kustomize/transform/image_transform'
+
+class Kustomize::Transform::ImageTransform < Kustomize::Transform
+  include Accessory
+
+  def self.create(op_spec)
+    raise ArgumentError, "cannot specify both newTag and digest" if op_spec['newTag'] and op_spec['digest']
+
+    new(
+      name: op_spec['name'],
+      new_name: op_spec['newName'],
+      new_tag: op_spec['newTag'],
+      new_digest: op_spec['digest']
+    )
+  end
+
+  def initialize(name:, new_name: nil, new_tag: nil, new_digest: nil)
+    @name = name
+    @new_name = new_name
+    @new_tag = new_tag
+    @new_digest = new_digest
+  end
+
+  LENS_BY_KIND = {
+    "Deployment" => Lens["spec", "template", "spec", "containers", Access.all, "image"]
+  }
+
+  def apply(rc_doc)
+    lens = LENS_BY_KIND[rc_doc['kind']]
+    return rc_doc unless lens
+
+    lens.update_in(rc_doc) do |image_str|
+      image_parts = /^(.+?)([:@])(.+)$/.match(image_str)
+
+      image_parts = if image_parts
+        {name: image_parts[1], sigil: image_parts[2], ref: image_parts[3]}
+      else
+        {name: container['image'], sigil: ':', ref: 'latest'}
+      end
+
+      unless image_parts[:name] == @name
+        next(:keep)
+      end
+
+      if @new_name
+        image_parts[:name] = new_name
+      end
+
+      if @new_tag
+        image_parts[:sigil] = ':'
+        image_parts[:ref] = @new_tag
+      elsif @new_digest
+        image_parts[:sigil] = '@'
+        image_parts[:ref] = @new_digest
+      end
+
+      new_image_str = "#{image_parts[:name]}#{image_parts[:sigil]}#{image_parts[:ref]}"
+      [:set, new_image_str]
+    end
+  end
+end

data/lib/kustomize/transform/json_6902_patch_transform.rb

@@ -0,0 +1,54 @@
+require 'yaml'
+
+require 'kustomize/transform'
+require 'kustomize/target_spec'
+
+require 'kustomize/json_6902_patch/add_op'
+require 'kustomize/json_6902_patch/replace_op'
+require 'kustomize/json_6902_patch/remove_op'
+require 'kustomize/json_6902_patch/gsub_op'
+
+class Kustomize::Transform::Json6902PatchTransform < Kustomize::Transform
+  def self.create(kustomization_file, op_spec)
+    target = Kustomize::TargetSpec.create(op_spec['target'])
+
+    patch_part =
+      if op_spec['path']
+        path = kustomization_file.source_directory / op_spec['path']
+        YAML.load(file.read)
+      elsif op_spec['patch']
+        YAML.load(op_spec['patch'])
+      elsif op_spec['ops']
+        op_spec['ops']
+      else
+        []
+      end
+
+    patches = patch_part.map do |patch|
+      Kustomize::Json6902Patch
+      .const_get(patch['op'].capitalize + 'Op')
+      .create(patch)
+    end
+
+    self.new(
+      target: target,
+      patches: patches
+    )
+  end
+
+  def initialize(target:, patches:)
+    @target = target
+    @patches = patches
+  end
+
+  attr_reader :target
+  attr_reader :patches
+
+  def apply(resource_doc)
+    if @target.match?(resource_doc)
+      @patches.inject(resource_doc){ |doc, patch| patch.apply(doc) }
+    else
+      resource_doc
+    end
+  end
+end

data/lib/kustomize/transform/name_digest_autosuffix_transform.rb

@@ -0,0 +1,83 @@
+require 'json'
+require 'digest'
+require 'set'
+
+require 'accessory'
+require 'digest/base32'
+
+require 'kustomize/transform'
+require 'kustomize/emitter/document_emitter/kustomization_document_emitter'
+
+class Kustomize::Transform::NameDigestAutosuffixTransform < Kustomize::Transform
+  include Accessory
+
+  SUFFIX_JOINER = "-"
+
+  def self.create(kustomize_doc)
+    raise ArgumentError unless kustomize_doc.kind_of?(Kustomize::Emitter::DocumentEmitter::KustomizationDocumentEmitter)
+    self.new(kustomize_doc)
+  end
+
+  def initialize(kustomize_doc)
+    @kustomize_doc = kustomize_doc
+  end
+
+  SECRET_KINDS = Set[
+    'Secret',
+    'SealedSecret'
+  ]
+
+  def suffixes
+    return @suffixes if @suffixes
+
+    secret_docs =
+      @kustomize_doc.input_resources
+      .filter{ |rc| SECRET_KINDS.member?(rc['kind']) }
+
+    @suffixes =
+      secret_docs.map do |rc|
+        rc_kind = rc['kind']
+
+        secret_name = NAME_LENSES_BY_KIND[rc_kind].first.get_in(rc)
+        secret_content = CONTENT_LENSES_BY_KIND[rc_kind].get_in(rc)
+        content_hash_suffix = Digest::SHA256.base32digest(secret_content.to_json, :zbase32)[0, 8]
+
+        [secret_name, content_hash_suffix]
+      end.to_h
+  end
+
+  CONTENT_LENSES_BY_KIND = {
+    "Secret" => Lens["data"],
+    "SealedSecret" => Lens["spec", "encryptedData"]
+  }
+
+  NAME_LENSES_BY_KIND = {
+    "Deployment" => [
+      Lens["spec", "template", "spec", "containers", Access.all, "env", Access.all, "valueFrom", "secretKeyRef", "name"]
+    ],
+
+    "Secret" => [
+      Lens["metadata", "name"]
+    ],
+
+    "SealedSecret" => [
+      Lens["spec", "template", "metadata", "name"]
+    ]
+  }
+
+  def apply(rc_doc)
+    name_lenses = NAME_LENSES_BY_KIND[rc_doc['kind']]
+    return rc_doc unless name_lenses
+
+    name_lenses.inject(rc_doc) do |doc, lens|
+      lens.update_in(doc) do |orig_name|
+        if self.suffixes.has_key?(orig_name)
+          new_name = [orig_name, self.suffixes[orig_name]].join('-')
+          [:set, new_name]
+        else
+          :keep
+        end
+      end
+    end
+  end
+end

data/lib/kustomize/transform/namespace_transform.rb

@@ -0,0 +1,48 @@
+require 'accessory'
+
+require 'kustomize/transform'
+
+class Kustomize::Transform::NamespaceTransform < Kustomize::Transform
+  include Accessory
+
+  def initialize(new_ns)
+    @new_ns = new_ns
+  end
+
+  LENSES_FOR_ALL = [
+    Lens["metadata", "namespace"]
+  ]
+
+  LENSES_FOR_ALL_BLACKLIST_PAT = /^Cluster/
+
+  LENSES_FOR_KIND = {
+    "ClusterRoleBinding" => [
+      Lens["subjects", Access.all, "namespace"]
+    ],
+
+    "RoleBinding" => [
+      Lens["subjects", Access.all, "namespace"]
+    ],
+
+    "SealedSecret" => [
+      Lens["spec", "template", "metadata", "namespace"]
+    ]
+  }
+
+  def apply(rc_doc)
+    rc_kind = rc_doc['kind']
+    use_lenses = []
+
+    unless rc_kind =~ LENSES_FOR_ALL_BLACKLIST_PAT
+      use_lenses += LENSES_FOR_ALL
+    end
+
+    if lenses_for_doc_kind = LENSES_FOR_KIND[rc_kind]
+      use_lenses += lenses_for_doc_kind
+    end
+
+    use_lenses.inject(rc_doc) do |doc, lens|
+      lens.put_in(doc, @new_ns)
+    end
+  end
+end

data/lib/kustomize/version.rb

@@ -0,0 +1,3 @@
+module Kustomize
+  VERSION = "0.1.0"
+end

metadata

@@ -0,0 +1,92 @@
+--- !ruby/object:Gem::Specification
+name: kustomizer
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Levi Aul
+autorequire:
+bindir: exe
+cert_chain: []
+date: 2021-01-16 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: accessory
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.9
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.9
+description: A pure-ruby implementation of the Kubernetes 'kustomize' command.
+email:
+- levi@leviaul.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- kustomizer.gemspec
+- lib/kustomize.rb
+- lib/kustomize/emitter.rb
+- lib/kustomize/emitter/directory_emitter.rb
+- lib/kustomize/emitter/document_emitter.rb
+- lib/kustomize/emitter/document_emitter/kustomization_document_emitter.rb
+- lib/kustomize/emitter/file_emitter.rb
+- lib/kustomize/emitter/plugin_emitter.rb
+- lib/kustomize/json_6902_patch.rb
+- lib/kustomize/json_6902_patch/add_op.rb
+- lib/kustomize/json_6902_patch/gsub_op.rb
+- lib/kustomize/json_6902_patch/remove_op.rb
+- lib/kustomize/json_6902_patch/replace_op.rb
+- lib/kustomize/pathname_refinements.rb
+- lib/kustomize/plugin.rb
+- lib/kustomize/plugin_manager.rb
+- lib/kustomize/session.rb
+- lib/kustomize/target_spec.rb
+- lib/kustomize/transform.rb
+- lib/kustomize/transform/image_transform.rb
+- lib/kustomize/transform/json_6902_patch_transform.rb
+- lib/kustomize/transform/name_digest_autosuffix_transform.rb
+- lib/kustomize/transform/namespace_transform.rb
+- lib/kustomize/version.rb
+homepage: https://github.com/tsutsu/kustomize
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://github.com/tsutsu/kustomize
+  source_code_uri: https://github.com/tsutsu/kustomize
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.7.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.2.3
+signing_key:
+specification_version: 4
+summary: Pure-ruby impl of Kubernetes kustomize
+test_files: []