RubyGems - license_finder - Versions diffs - 1.0.0.0-java → 1.1.1-java - Mend

license_finder 1.0.0.0-java → 1.1.1-java

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (126) hide show

checksums.yaml +4 -4
data/.force-build +0 -0
data/.travis.yml +8 -7
data/CHANGELOG.rdoc +29 -1
data/Rakefile +2 -2
data/db/migrate/201311192003_reassociate_manual_approval.rb +2 -3
data/db/migrate/201403181732_rename_manual_fields.rb +10 -0
data/db/migrate/201403190028_add_manual_approvals.rb +22 -0
data/db/migrate/201403191419_add_timestamps_to_manual_approvals.rb +15 -0
data/db/migrate/201403191645_remove_license_aliases.rb +23 -0
data/features/cli.feature +21 -20
data/features/cocoapods_dependencies.feature +10 -0
data/features/configure_bundler_groups.feature +23 -0
data/features/configure_ignore_dependencies.feature +16 -0
data/features/{project_name.feature → configure_project_name.feature} +1 -1
data/features/{whitelist.feature → configure_whitelist.feature} +6 -6
data/features/manually_added.feature +19 -0
data/features/{approve_dependencies.feature → manually_approved.feature} +2 -2
data/features/manually_assigned_license.feature +16 -0
data/features/{text_report.feature → report_csv.feature} +2 -2
data/features/{html_report.feature → report_html.feature} +2 -2
data/features/step_definitions/cli_steps.rb +22 -32
data/features/step_definitions/cocoapod_steps.rb +8 -0
data/features/step_definitions/configure_bundler_groups_steps.rb +30 -0
data/features/step_definitions/configure_ignore_dependencies.rb +35 -0
data/features/step_definitions/{project_name_steps.rb → configure_project_name_steps.rb} +0 -0
data/features/step_definitions/configure_whitelist_steps.rb +45 -0
data/features/step_definitions/gradle_steps.rb +2 -2
data/features/step_definitions/manually_added_steps.rb +28 -0
data/features/step_definitions/manually_approved_steps.rb +24 -0
data/features/step_definitions/manually_assigned_license_steps.rb +34 -0
data/features/step_definitions/maven_steps.rb +2 -2
data/features/step_definitions/node_steps.rb +2 -2
data/features/step_definitions/python_steps.rb +1 -1
data/features/step_definitions/report_csv_steps.rb +20 -0
data/features/step_definitions/report_html_steps.rb +60 -0
data/features/step_definitions/shared_steps.rb +125 -104
data/{files/license_finder.yml → lib/data/license_finder.example.yml} +3 -0
data/lib/license_finder.rb +3 -2
data/lib/license_finder/cli.rb +94 -49
data/lib/license_finder/configuration.rb +21 -14
data/lib/license_finder/dependency_manager.rb +27 -19
data/lib/license_finder/license.rb +33 -19
data/lib/license_finder/license/definitions.rb +153 -104
data/lib/license_finder/license/matcher.rb +6 -1
data/lib/license_finder/license/none_matcher.rb +9 -0
data/lib/license_finder/license/text.rb +1 -0
data/lib/license_finder/package.rb +30 -6
data/lib/license_finder/package_managers/bower.rb +2 -2
data/lib/license_finder/package_managers/bower_package.rb +2 -2
data/lib/license_finder/package_managers/bundler.rb +9 -17
data/lib/license_finder/package_managers/bundler_package.rb +1 -1
data/lib/license_finder/package_managers/cocoa_pods.rb +35 -0
data/lib/license_finder/package_managers/cocoa_pods_package.rb +19 -0
data/lib/license_finder/package_managers/gradle.rb +9 -5
data/lib/license_finder/package_managers/gradle_package.rb +4 -4
data/lib/license_finder/package_managers/maven.rb +7 -3
data/lib/license_finder/package_managers/maven_package.rb +5 -5
data/lib/license_finder/package_managers/npm.rb +2 -2
data/lib/license_finder/package_managers/npm_package.rb +2 -2
data/lib/license_finder/package_managers/pip.rb +2 -2
data/lib/license_finder/package_managers/pip_package.rb +7 -11
data/lib/license_finder/package_saver.rb +12 -10
data/lib/license_finder/possible_license_file.rb +1 -1
data/lib/license_finder/possible_license_files.rb +11 -15
data/lib/license_finder/reports/formatted_report.rb +25 -6
data/lib/license_finder/reports/html_report.rb +2 -1
data/lib/license_finder/reports/reporter.rb +3 -3
data/lib/license_finder/tables.rb +6 -4
data/lib/license_finder/tables/dependency.rb +36 -16
data/lib/license_finder/tables/manual_approval.rb +13 -0
data/lib/license_finder/yml_to_sql.rb +12 -9
data/lib/templates/html_report.erb +68 -74
data/lib/templates/markdown_report.erb +20 -21
data/license_finder.gemspec +7 -7
data/readme.md +76 -79
data/spec/fixtures/Podfile +3 -0
data/spec/lib/license_finder/cli_spec.rb +71 -23
data/spec/lib/license_finder/configuration_spec.rb +61 -21
data/spec/lib/license_finder/dependency_manager_spec.rb +52 -33
data/spec/lib/license_finder/license/definitions_spec.rb +30 -14
data/spec/lib/license_finder/license_spec.rb +55 -12
data/spec/lib/license_finder/package_managers/bower_package_spec.rb +38 -19
data/spec/lib/license_finder/package_managers/bower_spec.rb +10 -16
data/spec/lib/license_finder/package_managers/bundler_package_spec.rb +39 -15
data/spec/lib/license_finder/package_managers/bundler_spec.rb +10 -22
data/spec/lib/license_finder/package_managers/cocoa_pods_package_spec.rb +44 -0
data/spec/lib/license_finder/package_managers/cocoa_pods_spec.rb +79 -0
data/spec/lib/license_finder/package_managers/gradle_package_spec.rb +4 -5
data/spec/lib/license_finder/package_managers/gradle_spec.rb +26 -20
data/spec/lib/license_finder/package_managers/maven_package_spec.rb +4 -5
data/spec/lib/license_finder/package_managers/maven_spec.rb +16 -19
data/spec/lib/license_finder/package_managers/npm_package_spec.rb +39 -19
data/spec/lib/license_finder/package_managers/npm_spec.rb +10 -16
data/spec/lib/license_finder/package_managers/pip_package_spec.rb +8 -8
data/spec/lib/license_finder/package_managers/pip_spec.rb +10 -16
data/spec/lib/license_finder/package_saver_spec.rb +27 -3
data/spec/lib/license_finder/possible_license_file_spec.rb +25 -23
data/spec/lib/license_finder/reports/detailed_text_report_spec.rb +6 -8
data/spec/lib/license_finder/reports/html_report_spec.rb +45 -44
data/spec/lib/license_finder/reports/markdown_report_spec.rb +8 -9
data/spec/lib/license_finder/reports/reporter_spec.rb +1 -1
data/spec/lib/license_finder/reports/text_report_spec.rb +6 -8
data/spec/lib/license_finder/tables/dependency_spec.rb +57 -41
data/spec/lib/license_finder/yml_to_sql_spec.rb +94 -92
data/spec/spec_helper.rb +1 -0
data/spec/support/stdout_helpers.rb +25 -0
metadata +86 -69
data/MIT.LICENSE +0 -20
data/features/ignore_bundle_groups.feature +0 -23
data/features/manually_managed_dependencies.feature +0 -19
data/features/set_license.feature +0 -10
data/features/step_definitions/approve_dependencies_steps.rb +0 -25
data/features/step_definitions/html_report_steps.rb +0 -62
data/features/step_definitions/ignore_bundle_groups_steps.rb +0 -29
data/features/step_definitions/manually_managed_steps.rb +0 -33
data/features/step_definitions/set_license_steps.rb +0 -20
data/features/step_definitions/text_report_steps.rb +0 -19
data/features/step_definitions/whitelist_steps.rb +0 -45
data/files/dependency_breakdown.png +0 -0
data/files/report_breakdown.png +0 -0
data/lib/license_finder/license_url.rb +0 -9
data/lib/license_finder/tables/license_alias.rb +0 -22
data/spec/lib/license_finder/license_url_spec.rb +0 -16
data/spec/lib/license_finder/tables/license_alias_spec.rb +0 -37
data/spec/support/silence_stdout.rb +0 -13

data/lib/license_finder/package_managers/cocoa_pods.rb ADDED

@@ -0,0 +1,35 @@
+require "json"
+module LicenseFinder
+  class CocoaPods
+    def self.current_packages
+      podfile = YAML.load_file(lockfile_path)
+      acknowledgements = JSON.parse(`plutil -convert json -o - #{Pathname.new('Pods/Pods-acknowledgements.plist').expand_path}`)["PreferenceSpecifiers"]
+      podfile["PODS"].map do |pod|
+        pod = pod.keys.first if pod.is_a?(Hash)
+        pod_name, pod_version = pod.scan(/(.*)\s\((.*)\)/).flatten
+        pod_acknowledgment = acknowledgements.detect { |hash| hash["Title"] == pod_name } || {}
+        CocoaPodsPackage.new(pod_name, pod_version, pod_acknowledgment["FooterText"])
+      end
+    end
+    def self.active?
+      package_path.exist?
+    end
+    private
+    def self.package_path
+      Pathname.new("Podfile")
+    end
+    def self.lockfile_path
+      Pathname.new("Podfile.lock")
+    end
+  end
+end

data/lib/license_finder/package_managers/cocoa_pods_package.rb ADDED

@@ -0,0 +1,19 @@
+module LicenseFinder
+  class CocoaPodsPackage < Package
+    attr_reader :name, :version
+    attr_reader :summary, :description, :homepage
+    def initialize(name, version, license_text)
+      @name = name
+      @version = version
+      @license_text = license_text
+    end
+    def groups; []; end
+    def children; []; end
+    def license
+      License.find_by_text(@license_text.to_s) || default_license
+    end
+  end
+end

data/lib/license_finder/package_managers/gradle.rb CHANGED

@@ -3,27 +3,31 @@ require "xmlsimple"
 module LicenseFinder
   class Gradle
     def self.current_packages
-      `gradle downloadLicenses`
+      `#{LicenseFinder.config.gradle_command} downloadLicenses`
-      xml = File.read('build/reports/license/dependency-license.xml')
+      xml = license_report.read
       options = {
         'GroupTags' => { 'dependencies' => 'dependency' }
       }
-      XmlSimple.xml_in(xml, options)["dependency"].map do |d|
+      XmlSimple.xml_in(xml, options).fetch('dependency', []).map do |d|
         d["license"].reject! { |l| l["name"] == "No license found" }
         GradlePackage.new(d)
       end
     end
     def self.active?
-      File.exists?(package_path)
+      package_path.exist?
     end
     private
+    def self.license_report
+      Pathname.new('build/reports/license/dependency-license.xml')
+    end
     def self.package_path
-      Pathname.new('build.gradle').expand_path
+      Pathname.new('build.gradle')
     end
   end
 end

data/lib/license_finder/package_managers/gradle_package.rb CHANGED

@@ -28,13 +28,13 @@ module LicenseFinder
       []
     end
-    def license_from_files
+    private
+    def licenses_from_files
       []
     end
-    private
-    def licenses_from_spec
+    def license_names_from_spec
       @gradle_dependency["license"].map { |l| l["name"] }
     end
   end

data/lib/license_finder/package_managers/maven.rb CHANGED

@@ -5,7 +5,7 @@ module LicenseFinder
     def self.current_packages
       `mvn license:download-licenses`
-      xml = File.read('target/generated-resources/licenses.xml')
+      xml = license_report.read
       options = {
         'GroupTags' => { 'licenses' => 'license', 'dependencies' => 'dependency' },
@@ -19,13 +19,17 @@ module LicenseFinder
     end
     def self.active?
-      File.exists?(package_path)
+      package_path.exist?
     end
     private
+    def self.license_report
+      Pathname.new('target/generated-resources/licenses.xml')
+    end
     def self.package_path
-      Pathname.new('pom.xml').expand_path
+      Pathname.new('pom.xml')
     end
   end
 end

data/lib/license_finder/package_managers/maven_package.rb CHANGED

@@ -32,14 +32,14 @@ module LicenseFinder
       []
     end
-    def license_from_files
-      []
-    end
     private
     attr_reader :mvn_dependency
-    def licenses_from_spec
+    def licenses_from_files
+      []
+    end
+    def license_names_from_spec
       mvn_dependency["licenses"].map { |l| l["name"] }
     end
   end

data/lib/license_finder/package_managers/npm.rb CHANGED

@@ -14,7 +14,7 @@ module LicenseFinder
     end
     def self.active?
-      File.exists?(package_path)
+      package_path.exist?
     end
     private
@@ -40,7 +40,7 @@ module LicenseFinder
     end
     def self.package_path
-      Pathname.new('package.json').expand_path
+      Pathname.new('package.json')
     end
   end
 end

data/lib/license_finder/package_managers/npm_package.rb CHANGED

@@ -40,8 +40,8 @@ module LicenseFinder
       node_module["path"]
     end
-    def licenses_from_spec
-      Package.extract_licenses_from_standard_spec(node_module)
+    def license_names_from_spec
+      Package.license_names_from_standard_spec(node_module)
     end
   end
 end

data/lib/license_finder/package_managers/pip.rb CHANGED

@@ -26,13 +26,13 @@ print "[" + ",".join(dists) + "]"
     end
     def self.active?
-      File.exists?(requirements_path)
+      requirements_path.exist?
     end
     private
     def self.requirements_path
-      Pathname.new('requirements.txt').expand_path
+      Pathname.new('requirements.txt')
     end
     def self.pypi_def(name, version)

data/lib/license_finder/package_managers/pip_package.rb CHANGED

@@ -33,19 +33,15 @@ module LicenseFinder
     attr_reader :install_path, :pypi_def
-    def licenses_from_spec
+    def license_names_from_spec
       license = pypi_def["license"]
-      if pypi_def["license"] && pypi_def["license"] != "UNKNOWN"
-        return [license]
-      else
-        classifiers = pypi_def.fetch("classifiers", [])
-        classifiers.map do |c|
-          if c.start_with?("License")
-            c.gsub(/^License.*::\s*(.*)$/, '\1')
-          end
-        end.compact
-      end
+      return [license] if license && license != "UNKNOWN"
+      pypi_def.
+        fetch("classifiers", []).
+        select { |c| c.start_with?("License") }.
+        map { |c| c.gsub(/^License.*::\s*(.*)$/, '\1') }
     end
   end
 end

data/lib/license_finder/package_saver.rb CHANGED

@@ -19,16 +19,18 @@ module LicenseFinder
     end
     def save
-      DB.transaction do
-        dependency.version = version.to_s
-        dependency.summary = summary
-        dependency.description = description
-        dependency.homepage = homepage
-        dependency.bundler_group_names = groups.map(&:to_s)
-        dependency.children_names = children
-        dependency.apply_better_license license
-        dependency.save_changes
-      end
+      dependency.version = version.to_s
+      dependency.summary = summary
+      dependency.description = description
+      dependency.homepage = homepage
+      dependency.bundler_group_names = groups.map(&:to_s)
+      dependency.children_names = children
+      dependency.apply_better_license license
+      # Only save *changed* dependencies. This ensures re-running
+      # `license_finder` won't always update the DB, and therefore won't always
+      # update the HTML/markdown reports with a new timestamp.
+      dependency.save_changes
       dependency
     end

data/lib/license_finder/possible_license_file.rb CHANGED

@@ -16,7 +16,7 @@ module LicenseFinder
     end
     def license
-      License.find_by_text(text).pretty_name
+      License.find_by_text(text)
     end
   end
 end

data/lib/license_finder/possible_license_files.rb CHANGED

@@ -1,18 +1,19 @@
 module LicenseFinder
   class PossibleLicenseFiles
-    LICENSE_FILE_NAMES = %w(LICENSE License Licence COPYING README Readme ReadMe)
+    CANDIDATE_FILE_NAMES = %w(LICENSE License Licence COPYING README Readme ReadMe)
+    CANDIDATE_PATH_WILDCARD = "*{#{CANDIDATE_FILE_NAMES.join(',')}}*"
     def self.find(install_path)
       new(install_path).find
     end
     def initialize(install_path)
-      @install_path = install_path
+      @install_path = Pathname(install_path)
     end
     def find
-      paths_for_license_files.map do |path|
-        get_file_for_path(path)
+      paths_of_candidate_files.map do |path|
+        file_at_path(path)
       end
     end
@@ -20,22 +21,17 @@ module LicenseFinder
     attr_reader :install_path
-    def paths_for_license_files
-      find_matching_files.map do |path|
-        File.directory?(path) ? paths_for_files_in_license_directory(path) : path
+    def paths_of_candidate_files
+      candidate_files_and_dirs.map do |path|
+        path.directory? ? path.children : path
       end.flatten.uniq
     end
-    def find_matching_files
-      Dir.glob(File.join(install_path, '**', "*{#{LICENSE_FILE_NAMES.join(',')}}*"))
+    def candidate_files_and_dirs
+      Pathname.glob(install_path.join('**', CANDIDATE_PATH_WILDCARD))
     end
-    def paths_for_files_in_license_directory(path)
-      entries_in_directory = Dir::entries(path).reject { |p| p.match(/^(\.){1,2}$/) }
-      entries_in_directory.map { |entry_name| File.join(path, entry_name) }
-    end
-    def get_file_for_path(path)
+    def file_at_path(path)
       PossibleLicenseFile.new(install_path, path)
     end
   end

data/lib/license_finder/reports/formatted_report.rb CHANGED

@@ -7,15 +7,34 @@ module LicenseFinder
     def grouped_dependencies
       find_name = lambda do |dep|
-        license = License.find_by_name(dep.license.name)
-        if license
-          license.pretty_name
-        else
-          dep.license.name
-        end
+        dep.license.name
       end
       dependencies.group_by(&find_name).sort_by { |_, group| group.size }.reverse
     end
+    def link_to_license(license)
+      link_to_maybe license.name, license.url
+    end
+    def link_to_dependency(dependency)
+      link_to_maybe dependency.name, dependency.homepage
+    end
+    def link_to_maybe(text, link)
+      if link && !link.empty?
+        %{<a href="#{link}">#{text}</a>}
+      else
+        text
+      end
+    end
+    def version_groups(dependency)
+      result = "v#{dependency.version}"
+      if dependency.bundler_groups.any?
+        result += " (#{dependency.bundler_groups.map(&:name).join(", ")})"
+      end
+      result
+    end
   end
 end

data/lib/license_finder/reports/html_report.rb CHANGED

@@ -1,3 +1,4 @@
 module LicenseFinder
-  class HtmlReport < FormattedReport; end
+  class HtmlReport < FormattedReport
+  end
 end

data/lib/license_finder/reports/reporter.rb CHANGED

@@ -3,7 +3,7 @@ module LicenseFinder
     extend self
     def write_reports
-      dependencies = Dependency.all
+      dependencies = Dependency.acknowledged
       artifacts = LicenseFinder.config.artifacts
       write_file artifacts.text_file,          TextReport.of(dependencies)
@@ -11,8 +11,8 @@ module LicenseFinder
       write_file artifacts.html_file,          HtmlReport.of(dependencies)
       write_file artifacts.markdown_file,      MarkdownReport.of(dependencies)
-      if LicenseFinder.config.artifacts.legacy_text_file.exist?
-        LicenseFinder.config.artifacts.legacy_text_file.delete
+      if artifacts.legacy_text_file.exist?
+        artifacts.legacy_text_file.delete
       end
     end

data/lib/license_finder/tables.rb CHANGED

@@ -1,7 +1,9 @@
-require 'rubygems'
 require 'sequel'
 require LicenseFinder::Platform.sqlite_load_path
-LicenseFinder::DB = Sequel.connect("#{LicenseFinder::Platform.sqlite_adapter}://#{LicenseFinder.config.artifacts.database_uri}")
-Sequel.extension :migration, :core_extensions
-Sequel::Migrator.run(LicenseFinder::DB, LicenseFinder::ROOT_PATH.join('../db/migrate'))
+module LicenseFinder
+  DB = Sequel.connect(Platform.sqlite_adapter + "://" + config.artifacts.database_uri)
+  Sequel.extension :migration, :core_extensions
+  Sequel::Migrator.run(DB, ROOT_PATH.join('../db/migrate'))
+end

data/lib/license_finder/tables/dependency.rb CHANGED

@@ -1,18 +1,23 @@
 module LicenseFinder
   class Dependency < Sequel::Model
     plugin :boolean_readers
-    many_to_one :license, class: LicenseAlias
+    plugin :composition
+    composition :license,
+      composer: ->(d) { License.find_by_name(d.license_name) },
+      decomposer: ->(d) { self.license_name = license.name }
+    one_to_one :manual_approval
     many_to_many :children, join_table: :ancestries, left_key: :parent_dependency_id, right_key: :child_dependency_id, class: self
     many_to_many :parents, join_table: :ancestries, left_key: :child_dependency_id, right_key: :parent_dependency_id, class: self
     many_to_many :bundler_groups
     dataset_module do
-      def managed
-        manually_managed.invert
+      def added_automatically
+        added_manually.invert
       end
-      def manually_managed
-        where(manual: true)
+      def added_manually
+        where(added_manually: true)
       end
       def obsolete(current)
@@ -21,7 +26,14 @@ module LicenseFinder
     end
     def self.unapproved
-      all.reject(&:approved?)
+      acknowledged.reject(&:approved?)
+    end
+    def self.acknowledged
+      ignored_dependencies = LicenseFinder.config.ignore_dependencies
+      all.reject do |dependency|
+        ignored_dependencies.include? dependency.name
+      end
     end
     def self.named(name)
@@ -36,25 +48,33 @@ module LicenseFinder
       update_association_collection(:children, names)
     end
-    def approve!
-      self.manually_approved = true
+    def approve!(approver = nil, notes = nil)
+      self.manual_approval = ManualApproval.new(approver: approver, notes: notes)
       save
     end
     def approved?
-      (license && license.whitelisted?) || manually_approved?
+      whitelisted? || approved_manually?
+    end
+    def whitelisted?
+      license.whitelisted?
+    end
+    def approved_manually?
+      !!manual_approval
     end
-    def set_license_manually!(license_name)
-      self.license = LicenseAlias.named(license_name)
-      self.license_manual = true
+    def set_license_manually!(license)
+      self.license = license
+      self.license_assigned_manually = true
       save
     end
-    def apply_better_license(license_name)
-      return if license_manual
-      if license.nil? || license.name != license_name
-        self.license = LicenseAlias.named(license_name)
+    def apply_better_license(other_license)
+      return if license_assigned_manually?
+      if license.name != other_license.name
+        self.license = other_license
       end
     end