license_finder 5.5.2 → 5.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8b3e60f771b7ea17a43da24443ac40c0b24c1444d668aa5783f342dcd7c03f2c
-  data.tar.gz: 4fb2305add20d2af539714e949acb0a4d0025c148a18a1bbd0fd7e1d63b7af5d
+  metadata.gz: 6265bc6c40071582ff338579c90cef91431722b4eb3f8926ed99b8e95b651cd0
+  data.tar.gz: c9a797ef497cabb668299216bd332848f991539bee726afedd7e0abcbf897318
 SHA512:
-  metadata.gz: a3cd9fb22c3b3ec5dd6203c81d6b77f70dbdcbd691e7408c24bad5e89d47dc3a2ba25aa5c96e3025425a63d4a7a94bc12dcc5229d924b56e92a7e34e4e629a6d
-  data.tar.gz: 3b5e854bd9c1b1c8dd041fe233e5217c2436d26e02ad295486b3ba166c0996732d4266923797ae0d756f33036f0ebd9e2f656e518adfaad092aa0321b3ac76f9
+  metadata.gz: 0bbc661bf9b969a3e5deacde655e948877424baa2c602198740b35f9bbf3785392310012ab1a62229ba3012612a46ba47e6078e63701961d48cd0b9e98e29a69
+  data.tar.gz: b1c6470777caa3adc876c16d04344d97b07356309e1ae6245b15800f8dbdc6d466bd7bbfd1be58106ca5a5071dc06bd1d4cc878d09b9c47229da9e90b067a76e

data/CONTRIBUTING.md

@@ -89,6 +89,8 @@ To successfully run the test suite, you will need the following installed:
 - Carthage (requires homebrew)
 - Mix (requires Elixir)
 - Conan
+- NuGet
+- dotnet
 
 The [LicenseFinder docker image](https://hub.docker.com/r/licensefinder/license_finder/) already contains these dependencies.
 

data/Dockerfile

@@ -2,10 +2,10 @@ FROM ubuntu:xenial
 
 # Versioning
 ENV PIP_INSTALL_VERSION 10.0.1
-ENV GO_LANG_VERSION 1.11
+ENV GO_LANG_VERSION 1.11.2
 ENV MAVEN_VERSION 3.5.3
 ENV SBT_VERSION 1.1.1
-ENV GRADLE_VERSION 4.2
+ENV GRADLE_VERSION 4.10
 ENV RUBY_VERSION 2.5.1
 ENV MIX_VERSION 1.0
 
@@ -35,10 +35,10 @@ RUN npm install -g bower && \
 #install java 8
 #http://askubuntu.com/questions/521145/how-to-install-oracle-java-on-ubuntu-14-04
 RUN cd /tmp && \
-    wget --quiet --no-cookies --no-check-certificate --header "Cookie: gpw_e24=http%3A%2F%2Fwww.oracle.com%2F; oraclelicense=accept-securebackup-cookie" http://download.oracle.com/otn-pub/java/jdk/8u191-b12/2787e4a523244c269598db4e85c51e0c/jdk-8u191-linux-x64.tar.gz -O jdk-8.tgz && \
+    wget --quiet --no-cookies --no-check-certificate --header "Cookie: gpw_e24=http%3A%2F%2Fwww.oracle.com%2F; oraclelicense=accept-securebackup-cookie" http://download.oracle.com/otn-pub/java/jdk/8u192-b12/750e1c8617c5452694857ad95c3ee230/jdk-8u192-linux-x64.tar.gz -O jdk-8.tgz && \
     tar xf /tmp/jdk-8.tgz && \
     mkdir -p /usr/lib/jvm && \
-    mv jdk1.8.0_191 /usr/lib/jvm/oracle_jdk8 && \
+    mv jdk1.8.0_192 /usr/lib/jvm/oracle_jdk8 && \
     rm /tmp/jdk-8.tgz
 
 ENV J2SDKDIR=/usr/lib/jvm/oracle_jdk8
@@ -106,7 +106,8 @@ ENV LANGUAGE=en_US:en
 ENV LC_ALL=en_US.UTF-8
 
 #install rvm
-RUN curl -sSL https://rvm.io/mpapis.asc | gpg --import && \
+RUN gpg --keyserver hkp://keys.gnupg.net --recv-keys 409B6B1796C275462A1703113804BB82D39DC0E3 7D2BAF1CF37B13E2069D6956105BD0E739499BDB && \
+    curl -sSL https://rvm.io/mpapis.asc | gpg --import && \
     curl -sSL https://get.rvm.io | sudo bash -s stable --ruby=$RUBY_VERSION
 ENV PATH=/usr/local/rvm/bin:$PATH
 
@@ -138,6 +139,12 @@ RUN apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys 3FA7E03280
   curl -o /usr/local/bin/nuget.exe https://dist.nuget.org/win-x86-commandline/latest/nuget.exe &&\
   echo "alias nuget=\"mono /usr/local/bin/nuget.exe\"" >> ~/.bash_aliases
 
+# install dotnet core
+RUN wget -q https://packages.microsoft.com/config/ubuntu/16.04/packages-microsoft-prod.deb &&\
+  sudo dpkg -i packages-microsoft-prod.deb &&\
+  sudo apt-get update &&\
+  sudo apt-get install -y dotnet-runtime-2.1
+
 # install license_finder
 COPY . /LicenseFinder
 RUN bash -lc "cd /LicenseFinder && bundle install -j4 && rake install"

data/README.md

@@ -3,7 +3,7 @@
 [![Code Climate](https://codeclimate.com/github/pivotal-legacy/LicenseFinder.png)](https://codeclimate.com/github/pivotal-legacy/LicenseFinder)
 
 Build status
-* Ruby 2.3.7 [![Ruby 2.3.7 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.3.7/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
+* Ruby 2.3.3 [![Ruby 2.3.3 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.3.3/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
 * Ruby 2.4.4 [![Ruby 2.4.4 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.4.4/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
 * Ruby 2.5.1 [![Ruby 2.5.1 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-2.5.1/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
 * JRuby 9.1.17.0 [![JRuby 9.1.17.0 build status](https://norsk.cf-app.com/api/v1/teams/main/pipelines/LicenseFinder/jobs/ruby-jruby-9.1.17.0/badge)](https://norsk.cf-app.com/teams/main/pipelines/LicenseFinder)
@@ -54,7 +54,7 @@ report.
 
 ## Installation
 
-License Finder requires Ruby 1.9.3 or greater to run. If you have an older
+License Finder requires Ruby 2.3.3 or greater to run. If you have an older
 version of Ruby installed, you can update via Homebrew:
 
 ```sh

data/Rakefile

@@ -6,33 +6,42 @@ Bundler::GemHelper.install_tasks
 require './lib/license_finder/platform'
 require 'rspec/core/rake_task'
 
-desc 'Run all specs in spec/'
-task :spec do
-  RSpec::Core::RakeTask.new(:spec) do |t|
+namespace :spec do
+  desc 'Run test tagged \'focus\''
+  RSpec::Core::RakeTask.new(:focus) do |t|
     t.fail_on_error = true
     t.pattern = './spec/**/*_spec.rb'
-    t.rspec_opts = %w[--color]
+    t.rspec_opts = %w[--color --tag focus]
   end
 end
 
-desc 'Only run cocoapods specs'
-RSpec::Core::RakeTask.new('spec:cocoapods') do |t|
+desc 'Run all specs in spec/'
+RSpec::Core::RakeTask.new(:spec) do |t|
   t.fail_on_error = true
-  t.pattern = './spec/lib/license_finder/package_managers/cocoa_pods_*spec.rb'
+  t.pattern = './spec/**/*_spec.rb'
   t.rspec_opts = %w[--color]
 end
 
-desc 'Run all specs in features/'
-task :features do
-  RSpec::Core::RakeTask.new(:features) do |t|
+namespace :features do
+  desc 'Run test tagged \'focus\''
+  RSpec::Core::RakeTask.new(:focus) do |t|
     t.fail_on_error = true
     t.pattern = './features/**/*_spec.rb'
-    opts = %w[--color --format d]
+    opts = %w[--color --format d --tag focus]
     opts += LicenseFinder::Platform.darwin? ? [] : %w[--tag ~ios]
     t.rspec_opts = opts
   end
 end
 
+desc 'Run all specs in features/'
+RSpec::Core::RakeTask.new(:features) do |t|
+  t.fail_on_error = true
+  t.pattern = './features/**/*_spec.rb'
+  opts = %w[--color --format d]
+  opts += LicenseFinder::Platform.darwin? ? [] : %w[--tag ~ios]
+  t.rspec_opts = opts
+end
+
 desc 'Check for non-Ruby development dependencies.'
 task :check_dependencies do
   require './lib/license_finder'
@@ -54,7 +63,7 @@ task :update_pipeline, [:slack_url, :slack_channel] do |_, args|
     puts 'Warning: You should provide slack channel and url to receive slack notifications on build failures'
   end
 
-  ruby_versions = %w[2.5.1 2.4.4 2.3.7 jruby-9.1.17.0 jruby-9.2.0.0]
+  ruby_versions = %w[2.5.1 2.4.4 2.3.3 jruby-9.1.17.0 jruby-9.2.0.0]
 
   params = []
   params << "ruby_versions=#{ruby_versions.join(',')}"
@@ -77,7 +86,8 @@ task :update_release_pipeline do
   system(cmd)
 end
 
+task default: %i[spec features]
 task spec: :check_dependencies
 task features: :check_dependencies
-
-task default: %i[spec features]
+task 'spec:focus': :check_dependencies
+task 'features:focus': :check_dependencies

data/lib/license_finder/cli/main.rb

@@ -16,7 +16,9 @@ module LicenseFinder
         'text' => TextReport,
         'html' => HtmlReport,
         'markdown' => MarkdownReport,
-        'csv' => CsvReport
+        'csv' => CsvReport,
+        'xml' => XmlReport,
+        'json' => JsonReport
       }.freeze
 
       class_option :go_full_version, desc: 'Whether dependency version should include full version. Only meaningful if used with a Go project. Defaults to false.'

data/lib/license_finder/package.rb

@@ -2,6 +2,7 @@
 
 require 'license_finder/package_utils/licensing'
 require 'license_finder/package_utils/license_files'
+require 'license_finder/package_utils/notice_files'
 
 module LicenseFinder
   # Super-class that adapts data from different package management
@@ -149,6 +150,10 @@ module LicenseFinder
       LicenseFiles.find(install_path, logger: logger)
     end
 
+    def notice_files
+      NoticeFiles.find(install_path, logger: logger)
+    end
+
     def package_manager
       'unknown'
     end

data/lib/license_finder/package_manager.rb

@@ -80,7 +80,10 @@ module LicenseFinder
         _stdout, stderr, status = Dir.chdir(project_path) { Cmd.run(self.class.prepare_command) }
         unless status.success?
           log_errors stderr
-          raise "Prepare command '#{self.class.prepare_command}' failed" unless @prepare_no_fail
+
+          error_message = "Prepare command '#{self.class.prepare_command}' failed\n#{stderr}"
+
+          raise error_message unless @prepare_no_fail
         end
       else
         logger.debug self.class, 'no prepare step provided', color: :red
@@ -117,7 +120,11 @@ module LicenseFinder
 
     def log_to_file(contents)
       FileUtils.mkdir_p @log_directory
-      log_file = File.join(@log_directory, "prepare_#{self.class.package_management_command || 'errors'}.log")
+
+      # replace whitespace with underscores and remove slashes
+      log_file_name = self.class.package_management_command&.gsub(/\s/, '_')&.gsub(%r{/}, '')
+      log_file = File.join(@log_directory, "prepare_#{log_file_name || 'errors'}.log")
+
       File.open(log_file, 'w') do |f|
         f.write("Prepare command \"#{self.class.prepare_command}\" failed with:\n")
         f.write("#{contents}\n\n")
@@ -145,6 +152,7 @@ require 'license_finder/package_managers/carthage'
 require 'license_finder/package_managers/gradle'
 require 'license_finder/package_managers/rebar'
 require 'license_finder/package_managers/nuget'
+require 'license_finder/package_managers/dotnet'
 require 'license_finder/package_managers/dep'
 require 'license_finder/package_managers/conan'
 require 'license_finder/package_managers/sbt'

data/lib/license_finder/package_managers/dotnet.rb

@@ -0,0 +1,82 @@
+# frozen_string_literal: true
+
+require 'pathname'
+require 'json'
+
+module LicenseFinder
+  class Dotnet < PackageManager
+    class AssetFile
+      def initialize(path)
+        @manifest = JSON.parse(File.read(path))
+      end
+
+      def dependencies
+        libs = @manifest.fetch('libraries').reject do |_, v|
+          v.fetch('type') == 'project'
+        end
+
+        libs.keys.map do |name|
+          parts = name.split('/')
+          PackageMetadata.new(parts[0], parts[1], possible_spec_paths(name))
+        end
+      end
+
+      def possible_spec_paths(package_key)
+        lib = @manifest.fetch('libraries').fetch(package_key)
+        spec_filename = lib.fetch('files').find { |f| f.end_with?('.nuspec') }
+        return [] if spec_filename.nil?
+
+        @manifest.fetch('packageFolders').keys.map do |root|
+          Pathname(root).join(lib.fetch('path'), spec_filename).to_s
+        end
+      end
+    end
+
+    class PackageMetadata
+      attr_reader :name, :version, :possible_spec_paths
+
+      def initialize(name, version, possible_spec_paths)
+        @name = name
+        @version = version
+        @possible_spec_paths = possible_spec_paths
+      end
+
+      def read_license_urls
+        possible_spec_paths.flat_map do |path|
+          Nuget.nuspec_license_urls(File.read(path)) if File.exist? path
+        end.compact
+      end
+
+      def ==(other)
+        other.name == name && other.version == version && other.possible_spec_paths == possible_spec_paths
+      end
+    end
+
+    def possible_package_paths
+      paths = Dir[project_path.join('**/*.csproj')]
+      paths.map { |p| Pathname(p) }
+    end
+
+    def current_packages
+      package_metadatas = asset_files
+                          .flat_map { |path| AssetFile.new(path).dependencies }
+                          .uniq { |d| [d.name, d.version] }
+
+      package_metadatas.map do |d|
+        NugetPackage.new(d.name, d.version, spec_licenses: d.read_license_urls)
+      end
+    end
+
+    def asset_files
+      Dir[project_path.join('**/project.assets.json')]
+    end
+
+    def self.package_management_command
+      'dotnet'
+    end
+
+    def self.prepare_command
+      "#{package_management_command} restore"
+    end
+  end
+end

data/lib/license_finder/package_managers/go_modules.rb

@@ -21,9 +21,16 @@ module LicenseFinder
     end
 
     def current_packages
-      sum_file_paths.uniq.map do |file_path|
-        read_sum(file_path)
-      end.flatten
+      info_output, _stderr, _status = Cmd.run("GO111MODULE=on go list -m -mod=vendor -f '{{.Path}},{{.Version}},{{.Dir}}' all")
+      packages_info = info_output.split("\n")
+      packages = packages_info.map do |package|
+        name, version, install_path = package.split(',')
+        read_package(install_path, name, version)
+      end
+      packages.reject do |package|
+        Pathname(package.install_path).cleanpath == Pathname(project_path).cleanpath
+      end
+      # binding.pry
     end
 
     private
@@ -36,20 +43,7 @@ module LicenseFinder
       Dir[project_path.join(PACKAGES_FILE)]
     end
 
-    def read_sum(file_path)
-      contents = File.read(file_path)
-      contents.each_line.map do |line|
-        line.include?('go.mod') ? nil : read_package(file_path, line)
-      end.compact
-    end
-
-    def read_package(file_path, line)
-      parts = line.split(' ')
-      install_path = File.dirname(file_path)
-
-      name = parts[0]
-      version = parts[1]
-
+    def read_package(install_path, name, version)
       info = {
         'ImportPath' => name,
         'InstallPath' => install_path,

data/lib/license_finder/package_managers/go_workspace.rb

@@ -2,6 +2,9 @@
 
 require 'json'
 module LicenseFinder
+  class GoWorkspacePackageManagerError < ::StandardError
+  end
+
   class GoWorkspace < PackageManager
     Submodule = Struct.new :install_path, :revision
     ENVRC_REGEXP = /GOPATH|GO15VENDOREXPERIMENT/
@@ -77,9 +80,9 @@ module LicenseFinder
         # with status code 1. Setting GOPATH to nil removes those warnings.
         orig_gopath = ENV['GOPATH']
         ENV['GOPATH'] = nil
-        val, _stderr, status = Cmd.run('go list -f "{{join .Deps \"\n\"}}" ./...')
+        val, stderr, status = Cmd.run('go list -f "{{join .Deps \"\n\"}}" ./...')
         ENV['GOPATH'] = orig_gopath
-        raise 'go list failed' unless status.success?
+        raise GoWorkspacePackageManagerError, "go list failed:\n#{stderr}" unless status.success?
 
         # Select non-standard packages. `go list std` returns the list of standard
         # dependencies. We then filter those dependencies out of the full list of

data/lib/license_finder/package_managers/gradle.rb

@@ -48,6 +48,13 @@ module LicenseFinder
       alternate_build_file = build_file_from_settings(project_path)
       return alternate_build_file if alternate_build_file
 
+      build_gradle_file
+    end
+
+    def build_gradle_file
+      kotlin_gradle_path = project_path.join('build.gradle.kts')
+      return kotlin_gradle_path if File.exist? kotlin_gradle_path
+
       project_path.join('build.gradle')
     end
 

data/lib/license_finder/package_managers/npm.rb

@@ -14,7 +14,7 @@ module LicenseFinder
     end
 
     def self.prepare_command
-      'npm install'
+      'npm install --no-save'
     end
 
     def possible_package_paths

data/lib/license_finder/package_managers/nuget.rb

@@ -63,8 +63,7 @@ module LicenseFinder
       file = files.first
       Zip::File.open file do |zipfile|
         content = zipfile.read(dep.name + '.nuspec')
-        xml = REXML::Document.new(content)
-        REXML::XPath.match(xml, '//metadata//licenseUrl').map(&:get_text).map(&:to_s)
+        Nuget.nuspec_license_urls(content)
       end
     end
 
@@ -97,5 +96,12 @@ module LicenseFinder
 
       'which mono && ls /usr/local/bin/nuget.exe'
     end
+
+    def self.nuspec_license_urls(specfile_content)
+      xml = REXML::Document.new(specfile_content)
+      REXML::XPath.match(xml, '//metadata//licenseUrl')
+                  .map(&:get_text)
+                  .map(&:to_s)
+    end
   end
 end

data/lib/license_finder/package_utils/notice_files.rb

@@ -0,0 +1,40 @@
+# frozen_string_literal: true
+
+require 'license_finder/package_utils/possible_license_file'
+
+module LicenseFinder
+  class NoticeFiles
+    CANDIDATE_FILE_NAMES = %w[NOTICE Notice].freeze
+    CANDIDATE_PATH_WILDCARD = "*{#{CANDIDATE_FILE_NAMES.join(',')}}*"
+
+    def self.find(install_path, options = {})
+      new(install_path).find(options)
+    end
+
+    def initialize(install_path)
+      @install_path = install_path ? Pathname(install_path) : nil
+    end
+
+    def find(options = {})
+      paths_of_candidate_files
+        .map { |path| PossibleLicenseFile.new(path, options) } # Not really possible license files, but that class has all we need.
+    end
+
+    private
+
+    attr_reader :install_path
+
+    def paths_of_candidate_files
+      candidate_files_and_dirs
+        .flat_map { |path| path.directory? ? path.children : path }
+        .reject(&:directory?)
+        .uniq
+    end
+
+    def candidate_files_and_dirs
+      return [] if install_path.nil?
+
+      Pathname.glob(install_path.join('**', CANDIDATE_PATH_WILDCARD))
+    end
+  end
+end

data/lib/license_finder/packages/merged_package.rb

@@ -15,7 +15,7 @@ module LicenseFinder
                    :groups, :whitelisted, :blacklisted, :manual_approval, :install_path, :licenses, :approved_manually?,
                    :approved_manually!, :approved?, :whitelisted!, :whitelisted?, :blacklisted!, :blacklisted?, :hash,
                    :activations, :missing, :license_names_from_spec, :decided_licenses, :licensing, :decide_on_license,
-                   :license_files, :package_manager, :missing?, :log_activation
+                   :license_files, :package_manager, :missing?, :log_activation, :notice_files
 
     def aggregate_paths
       @aggregate_paths.map { |p| p.expand_path.to_s }

data/lib/license_finder/project_finder.rb

@@ -23,7 +23,6 @@ module LicenseFinder
       is_active_project = active_project?(potential_project_path)
       return unless is_active_project
 
-      remove_nested(potential_project_path, all_paths)
       potential_project_path.to_s
     end
 

data/lib/license_finder/report.rb

@@ -28,3 +28,5 @@ require 'license_finder/reports/diff_report'
 require 'license_finder/reports/merged_report'
 require 'license_finder/reports/html_report'
 require 'license_finder/reports/markdown_report'
+require 'license_finder/reports/xml_report'
+require 'license_finder/reports/json_report'

data/lib/license_finder/reports/csv_report.rb

@@ -3,7 +3,7 @@ require 'csv'
 module LicenseFinder
   class CsvReport < Report
     COMMA_SEP = ','.freeze
-    AVAILABLE_COLUMNS = %w[name version authors licenses license_links approved summary description homepage install_path package_manager groups].freeze
+    AVAILABLE_COLUMNS = %w[name version authors licenses license_links approved summary description homepage install_path package_manager groups texts notice].freeze
     MISSING_DEPENDENCY_TEXT = 'This package is not installed. Please install to determine licenses.'.freeze
 
     def initialize(dependencies, options)
@@ -28,6 +28,14 @@ module LicenseFinder
       end
     end
 
+    def format_texts(dep)
+      dep.license_files.map { |file| file.text.split(/[\n\r]+/).join("\\@NL") }.join("\\@NL").force_encoding("ISO-8859-1").encode("UTF-8")
+    end
+
+    def format_notice(dep)
+      dep.notice_files.map { |file| file.text.split(/[\n\r]+/).join("\\@NL") }.join("\\@NL").force_encoding("ISO-8859-1").encode("UTF-8")
+    end
+
     def format_name(dep)
       dep.name
     end

data/lib/license_finder/reports/json_report.rb

@@ -0,0 +1,28 @@
+require 'csv'
+
+module LicenseFinder
+  class JsonReport < CsvReport
+    def initialize(dependencies, options)
+      super(dependencies, options)
+    end
+
+    def to_s
+      {dependencies: build_deps}.to_json
+    end
+
+    private
+
+    def build_deps
+      sorted_dependencies.map do |dep|
+        @columns.inject({}) do |memo, column|
+          memo[column] = send("format_#{column}", dep)
+          memo
+        end
+      end
+    end
+
+    def format_licenses(dep)
+      dep.missing? ? [] : dep.licenses.map(&:name)
+    end
+  end
+end

data/lib/license_finder/reports/templates/xml_report.erb

@@ -0,0 +1,19 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<licenseSummary>
+  <dependencies>
+    <% sorted_dependencies.each do |dependency| -%>
+      <dependency>
+        <packageName><%= dependency.name %></packageName>
+        <version><%= dependency.version %></version>
+        <licenses>
+          <% dependency.licenses.each do |license| -%>
+            <license>
+              <name><%= license.name %></name>
+              <url><%= license.url %></url>
+            </license>
+          <% end -%>
+        </licenses>
+      </dependency>
+    <% end -%>
+  </dependencies>
+</licenseSummary>

data/lib/license_finder/reports/xml_report.rb

@@ -0,0 +1,19 @@
+require 'license_finder/reports/erb_report'
+
+module LicenseFinder
+  class XmlReport < ErbReport
+    ROOT_PATH = Pathname.new(__FILE__).dirname
+    TEMPLATE_PATH = ROOT_PATH.join('templates')
+
+    def to_s(filename = TEMPLATE_PATH.join("#{template_name}.erb"))
+      template = ERB.new(filename.read, nil, '-')
+      template.result(binding)
+    end
+
+    private
+
+    def template_name
+      'xml_report'
+    end
+  end
+end

data/lib/license_finder/scanner.rb

@@ -3,7 +3,7 @@
 module LicenseFinder
   class Scanner
     PACKAGE_MANAGERS = [GoModules, GoDep, GoWorkspace, Go15VendorExperiment, Glide, Gvt, Govendor, Dep, Bundler, NPM, Pip,
-                        Yarn, Bower, Maven, Gradle, CocoaPods, Rebar, Nuget, Carthage, Mix, Conan, Sbt, Cargo].freeze
+                        Yarn, Bower, Maven, Gradle, CocoaPods, Rebar, Nuget, Carthage, Mix, Conan, Sbt, Cargo, Dotnet].freeze
 
     def initialize(config = { project_path: Pathname.new('') })
       @config = config

data/lib/license_finder/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module LicenseFinder
-  VERSION = '5.5.2'
+  VERSION = '5.6.0'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: license_finder
 version: !ruby/object:Gem::Version
-  version: 5.5.2
+  version: 5.6.0
 platform: ruby
 authors:
 - Ryan Collins
@@ -27,7 +27,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-10-17 00:00:00.000000000 Z
+date: 2018-12-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -379,6 +379,7 @@ files:
 - lib/license_finder/package_managers/cocoa_pods.rb
 - lib/license_finder/package_managers/conan.rb
 - lib/license_finder/package_managers/dep.rb
+- lib/license_finder/package_managers/dotnet.rb
 - lib/license_finder/package_managers/glide.rb
 - lib/license_finder/package_managers/go_15vendorexperiment.rb
 - lib/license_finder/package_managers/go_dep.rb
@@ -401,6 +402,7 @@ files:
 - lib/license_finder/package_utils/license_files.rb
 - lib/license_finder/package_utils/licensing.rb
 - lib/license_finder/package_utils/maven_dependency_finder.rb
+- lib/license_finder/package_utils/notice_files.rb
 - lib/license_finder/package_utils/possible_license_file.rb
 - lib/license_finder/package_utils/sbt_dependency_finder.rb
 - lib/license_finder/packages/bower_package.rb
@@ -428,12 +430,15 @@ files:
 - lib/license_finder/reports/diff_report.rb
 - lib/license_finder/reports/erb_report.rb
 - lib/license_finder/reports/html_report.rb
+- lib/license_finder/reports/json_report.rb
 - lib/license_finder/reports/markdown_report.rb
 - lib/license_finder/reports/merged_report.rb
 - lib/license_finder/reports/templates/bootstrap.css
 - lib/license_finder/reports/templates/html_report.erb
 - lib/license_finder/reports/templates/markdown_report.erb
+- lib/license_finder/reports/templates/xml_report.erb
 - lib/license_finder/reports/text_report.rb
+- lib/license_finder/reports/xml_report.rb
 - lib/license_finder/scanner.rb
 - lib/license_finder/shared_helpers/cmd.rb
 - lib/license_finder/shared_helpers/common_path.rb
@@ -459,8 +464,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.7.7
+rubygems_version: 3.0.0
 signing_key: 
 specification_version: 4
 summary: Audit the OSS licenses of your application's dependencies.