@lunanoir/dep-lens 0.1.0

package/dist/utils.js

@@ -0,0 +1,169 @@
+import { PALETTE } from './ui/theme.js';
+export const SORT_COLUMNS = [
+    'name',
+    'version',
+    'license',
+    'category',
+    'dependencyType',
+    'riskScore',
+    'commercialUse',
+];
+const CATEGORY_ORDER = {
+    Permissive: 0,
+    WeakCopyleft: 1,
+    StrongCopyleft: 2,
+    Unknown: 3,
+};
+const COMMERCIAL_ORDER = {
+    yes: 0,
+    caution: 1,
+    restricted: 2,
+    review: 3,
+};
+/**
+ * Case-insensitive filter over package name, license, and category, with an
+ * optional exact category restriction (used by the TUI quick filters).
+ */
+export function filterPackages(packages, query, category = null) {
+    const needle = query.trim().toLowerCase();
+    return packages.filter((pkg) => {
+        if (category !== null && pkg.category !== category) {
+            return false;
+        }
+        if (needle.length === 0) {
+            return true;
+        }
+        return (pkg.name.toLowerCase().includes(needle) ||
+            pkg.license.toLowerCase().includes(needle) ||
+            pkg.category.toLowerCase().includes(needle));
+    });
+}
+/** Stable sort by the given column; ties are broken by package name. */
+export function sortPackages(packages, column, descending) {
+    const sorted = [...packages].sort((a, b) => {
+        let cmp;
+        switch (column) {
+            case 'riskScore':
+                cmp = a.riskScore - b.riskScore;
+                break;
+            case 'category':
+                cmp = CATEGORY_ORDER[a.category] - CATEGORY_ORDER[b.category];
+                break;
+            case 'commercialUse':
+                cmp = COMMERCIAL_ORDER[a.commercialUse] - COMMERCIAL_ORDER[b.commercialUse];
+                break;
+            case 'dependencyType':
+                cmp = a.dependencyType.localeCompare(b.dependencyType);
+                break;
+            default:
+                cmp = a[column].localeCompare(b[column]);
+                break;
+        }
+        if (descending) {
+            cmp = -cmp;
+        }
+        // Ties always fall back to ascending name order, regardless of direction.
+        if (cmp === 0) {
+            cmp = a.name.localeCompare(b.name);
+        }
+        return cmp;
+    });
+    return sorted;
+}
+/** Percentage with one decimal, e.g. "42.9". Returns "0.0" for empty sets. */
+export function percent(part, total) {
+    if (total === 0) {
+        return '0.0';
+    }
+    return ((part / total) * 100).toFixed(1);
+}
+/**
+ * Calculate a weighted health score (0-100) for the project.
+ * Permissive: 1.0, Weak: 0.5, Unknown: 0.2, Strong: 0.0
+ */
+export function calculateHealthScore(summary) {
+    if (summary.total === 0)
+        return 100;
+    const weighted = summary.permissive * 1.0 +
+        summary.weakCopyleft * 0.5 +
+        summary.unknown * 0.2 +
+        summary.strongCopyleft * 0.0;
+    return Math.round((weighted / summary.total) * 100);
+}
+/** Truncate to width, marking cut-off text with a two-dot ASCII ellipsis. */
+export function truncate(text, width) {
+    if (text.length <= width) {
+        return text;
+    }
+    return width <= 2 ? text.slice(0, width) : `${text.slice(0, width - 2)}..`;
+}
+/** Truncate then right-pad to an exact column width. */
+export function pad(text, width) {
+    return truncate(text, width).padEnd(width);
+}
+/** Dim horizontal rule used to separate sections, e.g. "──────────". */
+export function buildSectionDivider(width) {
+    return '─'.repeat(Math.max(0, width));
+}
+const SEGMENT_STYLE = [
+    { category: 'Permissive', char: '#', color: PALETTE.good },
+    { category: 'WeakCopyleft', char: '=', color: PALETTE.ok },
+    { category: 'StrongCopyleft', char: '!', color: PALETTE.bad },
+    { category: 'Unknown', char: '?', color: PALETTE.unknown },
+];
+/**
+ * Build a stacked horizontal ratio bar for the summary line. `progress`
+ * (0..1) scales the filled portion so the bar can grow as an entrance
+ * animation. Widths are distributed by largest remainder so they always sum
+ * to the filled width. Distinct fill characters keep the bar readable on
+ * monochrome terminals.
+ */
+export function buildRatioSegments(summary, width, progress = 1) {
+    const counts = {
+        Permissive: summary.permissive,
+        WeakCopyleft: summary.weakCopyleft,
+        StrongCopyleft: summary.strongCopyleft,
+        Unknown: summary.unknown,
+    };
+    const filled = Math.round(width * Math.min(Math.max(progress, 0), 1));
+    if (summary.total === 0 || filled === 0) {
+        return [];
+    }
+    const exact = SEGMENT_STYLE.map((style) => ({
+        style,
+        value: (counts[style.category] / summary.total) * filled,
+    }));
+    const widths = exact.map((entry) => Math.floor(entry.value));
+    let remaining = filled - widths.reduce((sum, w) => sum + w, 0);
+    const order = exact
+        .map((entry, index) => ({ index, frac: entry.value - Math.floor(entry.value) }))
+        .sort((a, b) => b.frac - a.frac);
+    for (const { index } of order) {
+        if (remaining <= 0) {
+            break;
+        }
+        const current = widths[index] ?? 0;
+        widths[index] = current + 1;
+        remaining -= 1;
+    }
+    return SEGMENT_STYLE.map((style, index) => ({
+        category: style.category,
+        char: style.char,
+        color: style.color,
+        width: widths[index] ?? 0,
+    })).filter((segment) => segment.width > 0);
+}
+/**
+ * Packages that violate a --fail-on policy. "gpl" matches every strong
+ * copyleft license (GPL-2.0, GPL-3.0, AGPL-3.0); "agpl" matches AGPL only.
+ * Dual-licensed packages classified as permissive (e.g. "GPL-2.0 OR MIT")
+ * do not violate either policy.
+ */
+export function violations(report, failOn) {
+    return report.packages.filter((pkg) => {
+        if (failOn === 'agpl') {
+            return pkg.category === 'StrongCopyleft' && pkg.license.toUpperCase().includes('AGPL');
+        }
+        return pkg.category === 'StrongCopyleft';
+    });
+}

package/package.json

@@ -0,0 +1,52 @@
+{
+  "name": "@lunanoir/dep-lens",
+  "version": "0.1.0",
+  "description": "Dependency license scanner across npm, Cargo, Go, Python, Ruby, PHP, Java, Dart, and C/C++ with commercial risk reporting",
+  "type": "module",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/lunanoir21/dep-lens.git"
+  },
+  "bin": {
+    "dep-lens": "dist/cli.js"
+  },
+  "files": [
+    "dist",
+    "!dist/test"
+  ],
+  "engines": {
+    "node": ">=18.18"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "keywords": [
+    "license",
+    "spdx",
+    "compliance",
+    "dependencies",
+    "npm",
+    "cargo",
+    "cli"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "test": "tsc && node --test \"dist/test/**/*.test.js\""
+  },
+  "dependencies": {
+    "ink": "^5.2.1",
+    "react": "^18.3.1"
+  },
+  "optionalDependencies": {
+    "@lunanoir/dep-lens-darwin-arm64": "0.1.0",
+    "@lunanoir/dep-lens-darwin-x64": "0.1.0",
+    "@lunanoir/dep-lens-linux-x64": "0.1.0",
+    "@lunanoir/dep-lens-win32-x64": "0.1.0"
+  },
+  "devDependencies": {
+    "@types/node": "^20.14.0",
+    "@types/react": "^18.3.3",
+    "typescript": "^5.5.0"
+  }
+}