scanoss 0.7.5 → 0.7.8

package/build/module/src/cli/bin/cli-bin.js

@@ -0,0 +1,67 @@
+#!/usr/bin/env node
+import { program } from 'commander';
+import { depHandler } from '../commands/dep';
+import { wfpHandler } from '../commands/wfp';
+import { scanHandler } from '../commands/scan';
+function CLIErrorHandler(e) {
+    console.error(' ');
+    console.error(e);
+    process.exit(1);
+}
+async function main() {
+    program
+        .version("0.6.2")
+        .description('The SCANOSS JS package provides a simple, easy to consume module for interacting with SCANOSS APIs/Engine.');
+    program
+        .command('scan <source>')
+        .description('Scan a folder/file')
+        .option('-w, --wfp', 'Scan a .wfp file instead of a folder')
+        .option('-H, --hpsm', 'Scan using winnowing high precision matching')
+        .option('-x, --extract', 'Extract compressed files before launch scan in folder <<zip_name>>-unzipped')
+        .option('   --extract-overwrite', 'Overwrite folder when decompressing if exists')
+        .option('   --extract-deep <number>', 'Sets uncompress recursion level')
+        .option('   --extract-suffix <suffix>', 'Sets suffix for the folder name')
+        .option('-c, --concurrency <number>', 'Number of concurrent connections to use while scanning (optional -default 10)')
+        .option('-n, --ignore <ignore>', 'Ignore components specified in the SBOM file')
+        .option('-o, --output <filename>', 'Output result file name (optional - default stdout)')
+        .option('-f, --format <format>', 'Result output format. {JSON, HTML} Default: JSON')
+        .option('-F, --flags <flags>', 'Scanning engine flags (1: disable snippet matching, 2 enable snippet ids, 4: disable dependencies, 8: disable licenses, 16: disable copyrights,32: disable vulnerabilities, 64: disable quality, 128: disable cryptography,256: disable best match, 512: Report identified files)')
+        .option('-P, --post-size <postsize>', 'Number of kilobytes to limit the post to while scanning (optional - default 64)')
+        .option('-R, --max-retry <retry>', 'Max number of retries for each POST (optional -default 5)')
+        .option('-M, --timeout <timeout>', 'Timeout (in seconds) for API communication (optional -default 120)')
+        .option('-D, --dependencies', 'Add dependency scanning')
+        .option('-a, --apiurl <apiurl>', 'SCANOSS API URL (optional - default: https://osskb.org/api/scan/direct)')
+        .option('-a, --api2url <api2url>', 'SCANOSS gRPC API 2.0 URL (optional - default: scanoss.com)')
+        .option('-k, --key <key>', 'SCANOSS API Key token (optional - not required for default OSSKB URL)')
+        .option('--ignore-cert-errors', 'Ignore self signed certificate errors')
+        .option('--ca-cert <cert>', 'Specify a path for a cert used in SSL/TLS connection')
+        .option('--proxy <proxy>', 'Use proxy')
+        .option('-v, --verbose', 'Makes scan operation verbose')
+        .action((source, options) => { scanHandler(source, options).catch((e) => { CLIErrorHandler(e); }); })
+        .addHelpText('after', `
+  Examples:
+    $ scanoss-js scan -o scan-output.json <source-folder>`);
+    program
+        .command('dep <source>')
+        .description('Scan for dependencies')
+        .option('-o, --output <filename>', 'Output result file name (optional - default stdout)')
+        .option('-a, --grpc-host <host>', 'SCANOSS GRPC HOST (optional - default: scanoss.com)')
+        .option('-p, --grpc-port <port>', 'SCANOSS GRPC PORT  (optional - default: 443)')
+        .action((source, options) => { depHandler(source, options).catch((e) => { CLIErrorHandler(e); }); });
+    program
+        .command('wfp <source>')
+        .description('Generates fingerprints for a folder/file')
+        .option('-H, --hpsm', 'Scan using winnowing high precision matching')
+        .option('-o, --output <filename>', 'Output result file name (optional - default stdout)')
+        .option('-p, --block-size <size>', 'Maximum size in Kb for each fingerprint block (optional - default 64Kb)')
+        .action((source, options) => { wfpHandler(source, options).catch((e) => { CLIErrorHandler(e); }); });
+    await program.parseAsync(process.argv);
+}
+try {
+    main();
+}
+catch (e) {
+    console.error(e);
+    process.exit(1);
+}
+//# sourceMappingURL=data:application/json;base64,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

package/build/module/src/cli/commands/dep.d.ts

@@ -0,0 +1 @@
+export declare function depHandler(rootPath: string, options: any): Promise<void>;

package/build/module/src/cli/commands/dep.js

@@ -0,0 +1,32 @@
+import fs from "fs";
+import { DependencyScanner } from "../../sdk/Dependencies/DependencyScanner";
+import { DependencyScannerCfg } from "../../sdk/Dependencies/DependencyScannerCfg";
+import { Tree } from "../../sdk/tree/Tree";
+import { DependencyFilter } from '../../sdk/tree/Filters/DependencyFilter';
+import { isFolder } from "./helpers";
+export async function depHandler(rootPath, options) {
+    rootPath = rootPath.replace(/\/$/, ''); // Remove trailing slash if exists
+    rootPath = rootPath.replace(/^\./, process.env.PWD); // Convert relative path to absolute path.
+    const pathIsFolder = await isFolder(rootPath);
+    const dependencyScannerCfg = new DependencyScannerCfg();
+    if (options.grpcHost)
+        dependencyScannerCfg.DEFAULT_GRPC_HOST = options.grpcHost;
+    if (options.grpcPort)
+        dependencyScannerCfg.DEFAULT_GRPC_PORT = options.grpcPort;
+    const dependencyScanner = new DependencyScanner(dependencyScannerCfg);
+    let fileList = [];
+    fileList.push(rootPath);
+    if (pathIsFolder) {
+        const tree = new Tree(rootPath);
+        tree.build();
+        fileList = tree.getFileList(new DependencyFilter(""));
+    }
+    const results = await dependencyScanner.scan(fileList);
+    if (options.output) {
+        fs.promises.writeFile(options.output, JSON.stringify(results, null, 2));
+    }
+    else {
+        console.log(JSON.stringify(results, null, 2));
+    }
+}
+//# sourceMappingURL=data:application/json;base64,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

package/build/module/src/cli/commands/helpers.d.ts

@@ -0,0 +1,2 @@
+export declare const isFolder: (path: string) => Promise<boolean>;
+export declare function getProjectNameFromPath(path: string): string;

package/build/module/src/cli/commands/helpers.js

@@ -0,0 +1,19 @@
+import pathLib from 'path';
+import fs from 'fs';
+// Async function that verify if a path is a folder. If the path is not valid the promise will be rejected
+export const isFolder = (path) => {
+    return new Promise((resolve, reject) => {
+        fs.stat(path, (err, stats) => {
+            if (err) {
+                reject(err);
+            }
+            else {
+                resolve(stats.isDirectory());
+            }
+        });
+    });
+};
+export function getProjectNameFromPath(path) {
+    return pathLib.basename(path, pathLib.extname(path));
+}
+//# sourceMappingURL=data:application/json;base64,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

package/build/module/src/cli/commands/scan.d.ts

@@ -0,0 +1 @@
+export declare function scanHandler(rootPath: string, options: any): Promise<void>;

package/build/module/src/cli/commands/scan.js

@@ -0,0 +1,135 @@
+import fs from 'fs';
+import { Scanner } from '../../sdk/scanner/Scanner';
+import { SbomMode, ScannerEvents, WinnowingMode } from '../../sdk/scanner/ScannerTypes';
+import { ScannerCfg } from '../../sdk/scanner/ScannerCfg';
+import { Tree } from '../../sdk/tree/Tree';
+import cliProgress from 'cli-progress';
+import { getProjectNameFromPath, isFolder } from './helpers';
+import { DependencyScannerCfg } from '../../sdk/Dependencies/DependencyScannerCfg';
+import { DependencyScanner } from '../../sdk/Dependencies/DependencyScanner';
+import { ScanFilter } from '../../sdk/tree/Filters/ScanFilter';
+import { DependencyFilter } from '../../sdk/tree/Filters/DependencyFilter';
+import { Report } from '../../sdk/Report/Report';
+import { DataProviderManager } from '../../sdk/DataLayer/DataProviderManager';
+import { ComponentDataProvider } from '../../sdk/DataLayer/DataProviders/ComponentDataProvider';
+import { DependencyDataProvider } from '../../sdk/DataLayer/DataProviders/DependencyDataProvider';
+import { LicenseDataProvider } from '../../sdk/DataLayer/DataProviders/LicenseDataProvider';
+import { SummaryDataProvider } from '../../sdk/DataLayer/DataProviders/SummaryDataProvider';
+import { DecompressionFilter } from '../../sdk/tree/Filters/DecompressionFilter';
+import { DecompressionManager } from '../../sdk/Decompress/DecompressionManager';
+export async function scanHandler(rootPath, options) {
+    rootPath = rootPath.replace(/\/$/, ''); // Remove trailing slash if exists
+    rootPath = rootPath.replace(/^\./, process.env.PWD); // Convert relative path to absolute path.
+    const pathIsFolder = await isFolder(rootPath);
+    const projectName = getProjectNameFromPath(rootPath);
+    // Create dependency scanner and set parameters
+    const dependencyScannerCfg = new DependencyScannerCfg();
+    if (options.api2url)
+        dependencyScannerCfg.DEFAULT_GRPC_HOST = options.api2url;
+    const dependencyScanner = new DependencyScanner(dependencyScannerCfg);
+    let dependencyInput = [];
+    // Create scanner and set connections parameters
+    const scannerCfg = new ScannerCfg();
+    if (options.concurrency)
+        scannerCfg.CONCURRENCY_LIMIT = parseInt(options.concurrency);
+    if (options.postSize)
+        scannerCfg.WFP_FILE_MAX_SIZE = parseInt(options.postSize) * 1024;
+    if (options.apiurl)
+        scannerCfg.API_URL = options.apiurl;
+    if (options.key)
+        scannerCfg.API_KEY = options.key;
+    if (options.timeout)
+        scannerCfg.TIMEOUT = options.timeout * 1000;
+    if (options.maxRetry)
+        scannerCfg.MAX_RETRIES_FOR_RECOVERABLES_ERRORS = options.maxRetry;
+    if (options.proxy)
+        scannerCfg.PROXY = options.proxy;
+    if (options.caCert)
+        scannerCfg.CA_CERT = options.caCert;
+    if (options.ignoreCertErrors)
+        scannerCfg.IGNORE_CERT_ERRORS = true;
+    const scanner = new Scanner(scannerCfg);
+    let scannerInput = { fileList: [] };
+    scannerInput.folderRoot = rootPath + '/'; // This will remove the project root path from the results.
+    if (options.flags)
+        scannerInput.engineFlags = options.flags;
+    if (!options.wfp) {
+        if (pathIsFolder) {
+            console.error('Reading directory...  ');
+            const tree = new Tree(rootPath);
+            tree.build();
+            if (options.extract) {
+                const archives = tree.getFileList(new DecompressionFilter(""));
+                console.error("Searching archives files...");
+                if (archives.length) {
+                    console.error("Extracting archives...");
+                    const decompressionManager = new DecompressionManager(options.extractDeep, options.extractSuffix, options.extractOverwrite);
+                    await decompressionManager.decompress(archives);
+                    console.error("Reindexing files...");
+                    tree.build();
+                }
+                else
+                    console.error("No archives found.");
+            }
+            scannerInput.fileList = tree.getFileList(new ScanFilter(""));
+            dependencyInput = tree.getFileList(new DependencyFilter(""));
+        }
+        else {
+            scannerInput.fileList = [rootPath];
+            dependencyInput = [rootPath];
+        }
+    }
+    else {
+        const winnowing = fs.readFileSync(rootPath, { encoding: 'utf-8' });
+        scannerInput.fileList.length = [...winnowing.matchAll(/file=/g)].length;
+    }
+    if (!options.verbose) {
+        const optBar1 = { format: 'Scan Progress: [{bar}] {percentage}% | Scanned {value} files of {total}' };
+        const bar1 = new cliProgress.SingleBar(optBar1, cliProgress.Presets.shades_classic);
+        bar1.start(scannerInput.fileList.length, 0);
+        scanner.on(ScannerEvents.DISPATCHER_NEW_DATA, (dispResp) => {
+            bar1.increment(dispResp.getFilesScanned().length);
+        });
+        scanner.on(ScannerEvents.SCAN_DONE, async (resultPath) => { bar1.stop(); });
+    }
+    else {
+        scanner.on(ScannerEvents.SCANNER_LOG, (logText) => console.error(logText));
+    }
+    if (options.wfp)
+        scannerInput.wfpPath = rootPath;
+    if (options.hpsm)
+        scannerInput.winnowingMode = WinnowingMode.FULL_WINNOWING_HPSM;
+    if (options.ignore) {
+        scannerInput.sbom = fs.readFileSync(options.ignore, 'utf-8');
+        scannerInput.sbomMode = SbomMode.SBOM_IGNORE;
+    }
+    // Dependency scanner
+    let pDependencyScanner = Promise.resolve({});
+    if (options.dependencies) {
+        pDependencyScanner = dependencyScanner.scan(dependencyInput);
+    }
+    //Launch parallel scanners
+    const pScanner = scanner.scan([scannerInput]);
+    const [scannerResultPath, depResults] = await Promise.all([pScanner, pDependencyScanner]);
+    const scannerResults = JSON.parse(await fs.promises.readFile(scannerResultPath, 'utf-8'));
+    //TODO Unify results.json and dependency.json. What happens with result.json that includes dependencies?
+    const scannersResults = {
+        scanner: scannerResults,
+        ...(options.dependencies && { dependencies: depResults })
+    };
+    let scannerResultsString = JSON.stringify(scannersResults, null, 2);
+    if (options.format && options.format.toLowerCase() === "html") {
+        const dataProviderManager = new DataProviderManager();
+        dataProviderManager.addDataProvider(new ComponentDataProvider(scannersResults.scanner, scannersResults.dependencies));
+        dataProviderManager.addDataProvider(new DependencyDataProvider(scannersResults.dependencies));
+        dataProviderManager.addDataProvider(new LicenseDataProvider(scannersResults.scanner, scannersResults.dependencies));
+        dataProviderManager.addDataProvider(new SummaryDataProvider(projectName, new Date(), scannersResults.scanner));
+        const report = new Report(dataProviderManager);
+        scannerResultsString = await report.getHTML();
+    }
+    if (options.output)
+        await fs.promises.writeFile(options.output, scannerResultsString);
+    else
+        console.log(scannerResultsString);
+}
+//# sourceMappingURL=data:application/json;base64,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

package/build/module/src/cli/commands/wfp.d.ts

@@ -0,0 +1 @@
+export declare function wfpHandler(rootPath: string, options: any): Promise<void>;

package/build/module/src/cli/commands/wfp.js

@@ -0,0 +1,48 @@
+import fs from 'fs';
+import cliProgress from 'cli-progress';
+import { isFolder } from './helpers';
+import { ScannerEvents, WinnowingMode } from '../../sdk/scanner/ScannerTypes';
+import { WfpCalculator } from '../../sdk/scanner/WfpProvider/WfpCalculator/WfpCalculator';
+import { Tree } from '../../sdk/tree/Tree';
+import { DependencyFilter } from '../../sdk/tree/Filters/DependencyFilter';
+export async function wfpHandler(rootPath, options) {
+    rootPath = rootPath.replace(/\/$/, ''); // Remove trailing slash if exists
+    rootPath = rootPath.replace(/^\./, process.env.PWD); // Convert relative path to absolute path.
+    const pathIsFolder = await isFolder(rootPath);
+    const wfpCalculator = new WfpCalculator();
+    let filesToFingerprint = [];
+    if (pathIsFolder) {
+        const tree = new Tree(rootPath);
+        tree.build();
+        filesToFingerprint = tree.getFileList(new DependencyFilter(""));
+    }
+    else {
+        filesToFingerprint.push(rootPath);
+    }
+    const optBar1 = { format: 'Fingerprinting Progress: [{bar}] {percentage}% | Fingerprinted {value} files of {total}' };
+    const bar1 = new cliProgress.SingleBar(optBar1, cliProgress.Presets.shades_classic);
+    bar1.start(filesToFingerprint.length, 0);
+    let fingerprints = '';
+    wfpCalculator.on(ScannerEvents.WINNOWING_NEW_CONTENT, (fingerprintPackage) => {
+        bar1.increment(fingerprintPackage.getNumberFilesFingerprinted());
+        fingerprints = fingerprints.concat(fingerprintPackage.getContent());
+    });
+    if (options.verbose)
+        wfpCalculator.on(ScannerEvents.WINNOWER_LOG, (log) => {
+            console.error(log);
+        });
+    wfpCalculator.on(ScannerEvents.WINNOWING_FINISHED, () => {
+        bar1.stop();
+        if (options.output) {
+            fs.writeFileSync(options.output, fingerprints);
+        }
+        else {
+            console.log(fingerprints);
+        }
+    });
+    const wfpInput = { fileList: filesToFingerprint, folderRoot: rootPath };
+    if (options.hpsm)
+        wfpInput.winnowingMode = WinnowingMode.FULL_WINNOWING_HPSM;
+    wfpCalculator.start(wfpInput);
+}
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoid2ZwLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vLi4vLi4vLi4vc3JjL2NsaS9jb21tYW5kcy93ZnAudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBQUEsT0FBTyxFQUFFLE1BQU0sSUFBSSxDQUFDO0FBRXBCLE9BQU8sV0FBVyxNQUFNLGNBQWMsQ0FBQztBQUV2QyxPQUFPLEVBQUUsUUFBUSxFQUFFLE1BQU0sV0FBVyxDQUFDO0FBQ3JDLE9BQU8sRUFBRSxhQUFhLEVBQUUsYUFBYSxFQUFFLE1BQU0sZ0NBQWdDLENBQUM7QUFFOUUsT0FBTyxFQUFFLGFBQWEsRUFBRSxNQUFNLDJEQUEyRCxDQUFDO0FBRTFGLE9BQU8sRUFBRSxJQUFJLEVBQUUsTUFBTSxxQkFBcUIsQ0FBQztBQUMzQyxPQUFPLEVBQUUsZ0JBQWdCLEVBQUUsTUFBTSx5Q0FBeUMsQ0FBQztBQUczRSxNQUFNLENBQUMsS0FBSyxVQUFVLFVBQVUsQ0FBQyxRQUFnQixFQUFFLE9BQVk7SUFFN0QsUUFBUSxHQUFHLFFBQVEsQ0FBQyxPQUFPLENBQUMsS0FBSyxFQUFFLEVBQUUsQ0FBQyxDQUFDLENBQUUsa0NBQWtDO0lBQzNFLFFBQVEsR0FBRyxRQUFRLENBQUMsT0FBTyxDQUFDLEtBQUssRUFBRSxPQUFPLENBQUMsR0FBRyxDQUFDLEdBQUcsQ0FBQyxDQUFDLENBQUUsMENBQTBDO0lBQ2hHLE1BQU0sWUFBWSxHQUFHLE1BQU0sUUFBUSxDQUFDLFFBQVEsQ0FBQyxDQUFDO0lBQzlDLE1BQU0sYUFBYSxHQUFHLElBQUksYUFBYSxFQUFFLENBQUM7SUFFMUMsSUFBSSxrQkFBa0IsR0FBYSxFQUFFLENBQUM7SUFDdEMsSUFBSSxZQUFZLEVBQUU7UUFDaEIsTUFBTSxJQUFJLEdBQUcsSUFBSSxJQUFJLENBQUMsUUFBUSxDQUFDLENBQUM7UUFDaEMsSUFBSSxDQUFDLEtBQUssRUFBRSxDQUFDO1FBQ2Isa0JBQWtCLEdBQUcsSUFBSSxDQUFDLFdBQVcsQ0FBQyxJQUFJLGdCQUFnQixDQUFDLEVBQUUsQ0FBQyxDQUFDLENBQUM7S0FDakU7U0FBTTtRQUNMLGtCQUFrQixDQUFDLElBQUksQ0FBQyxRQUFRLENBQUMsQ0FBQTtLQUNsQztJQUdELE1BQU0sT0FBTyxHQUFHLEVBQUUsTUFBTSxFQUFFLHlGQUF5RixFQUFFLENBQUM7SUFDdEgsTUFBTSxJQUFJLEdBQUcsSUFBSSxXQUFXLENBQUMsU0FBUyxDQUFDLE9BQU8sRUFBRSxXQUFXLENBQUMsT0FBTyxDQUFDLGNBQWMsQ0FBQyxDQUFDO0lBQ3BGLElBQUksQ0FBQyxLQUFLLENBQUMsa0JBQWtCLENBQUMsTUFBTSxFQUFFLENBQUMsQ0FBQyxDQUFDO0lBRXpDLElBQUksWUFBWSxHQUFHLEVBQUUsQ0FBQztJQUN0QixhQUFhLENBQUMsRUFBRSxDQUFDLGFBQWEsQ0FBQyxxQkFBcUIsRUFBRSxDQUFDLGtCQUFzQyxFQUFFLEVBQUU7UUFDL0YsSUFBSSxDQUFDLFNBQVMsQ0FBQyxrQkFBa0IsQ0FBQywyQkFBMkIsRUFBRSxDQUFDLENBQUM7UUFDakUsWUFBWSxHQUFHLFlBQVksQ0FBQyxNQUFNLENBQUUsa0JBQWtCLENBQUMsVUFBVSxFQUFFLENBQUUsQ0FBQztJQUN4RSxDQUFDLENBQUMsQ0FBQztJQUVILElBQUksT0FBTyxDQUFDLE9BQU87UUFDakIsYUFBYSxDQUFDLEVBQUUsQ0FBQyxhQUFhLENBQUMsWUFBWSxFQUFFLENBQUMsR0FBVyxFQUFFLEVBQUU7WUFDM0QsT0FBTyxDQUFDLEtBQUssQ0FBQyxHQUFHLENBQUMsQ0FBQztRQUNyQixDQUFDLENBQUMsQ0FBQztJQUVMLGFBQWEsQ0FBQyxFQUFFLENBQUMsYUFBYSxDQUFDLGtCQUFrQixFQUFFLEdBQUcsRUFBRTtRQUN0RCxJQUFJLENBQUMsSUFBSSxFQUFFLENBQUM7UUFDWixJQUFHLE9BQU8sQ0FBQyxNQUFNLEVBQUU7WUFDakIsRUFBRSxDQUFDLGFBQWEsQ0FBQyxPQUFPLENBQUMsTUFBTSxFQUFFLFlBQVksQ0FBQyxDQUFDO1NBQ2hEO2FBQU07WUFDTCxPQUFPLENBQUMsR0FBRyxDQUFDLFlBQVksQ0FBQyxDQUFDO1NBQzNCO0lBQ0gsQ0FBQyxDQUFDLENBQUM7SUFFSCxNQUFNLFFBQVEsR0FBc0IsRUFBQyxRQUFRLEVBQUUsa0JBQWtCLEVBQUUsVUFBVSxFQUFFLFFBQVEsRUFBQyxDQUFBO0lBQ3hGLElBQUcsT0FBTyxDQUFDLElBQUk7UUFBRSxRQUFRLENBQUMsYUFBYSxHQUFHLGFBQWEsQ0FBQyxtQkFBbUIsQ0FBQztJQUM1RSxhQUFhLENBQUMsS0FBSyxDQUFDLFFBQVEsQ0FBQyxDQUFDO0FBR2hDLENBQUMifQ==

package/build/module/src/index.d.ts

@@ -0,0 +1,14 @@
+export * from './sdk/scanner/Scanner';
+export * from './sdk/scanner/ScannerTypes';
+export * from './sdk/scanner/ScannerCfg';
+export * from './sdk/scanner/WfpProvider/WfpCalculator/WfpCalculator';
+export * from './sdk/Dependencies/DependencyTypes';
+export * from './sdk/Dependencies/DependencyScannerCfg';
+export * from './sdk/Dependencies/DependencyScanner';
+export * from './sdk/DataLayer/DataLayerTypes';
+export * from './sdk/DataLayer/DataProviderManager';
+export * from './sdk/DataLayer/DataProviders/LicenseDataProvider';
+export * from './sdk/DataLayer/DataProviders/SummaryDataProvider';
+export * from './sdk/DataLayer/DataProviders/DependencyDataProvider';
+export * from './sdk/DataLayer/DataProviders/ComponentDataProvider';
+export * from './sdk/Decompress/DecompressionManager';

package/build/module/src/index.js

@@ -0,0 +1,19 @@
+// *** Code scanner exports *** //
+export * from './sdk/scanner/Scanner';
+export * from './sdk/scanner/ScannerTypes';
+export * from './sdk/scanner/ScannerCfg';
+export * from './sdk/scanner/WfpProvider/WfpCalculator/WfpCalculator';
+// *** Dependency scanner exports *** //
+export * from './sdk/Dependencies/DependencyTypes';
+export * from './sdk/Dependencies/DependencyScannerCfg';
+export * from './sdk/Dependencies/DependencyScanner';
+// *** Data layers export *** //
+export * from './sdk/DataLayer/DataLayerTypes';
+export * from './sdk/DataLayer/DataProviderManager';
+export * from './sdk/DataLayer/DataProviders/LicenseDataProvider';
+export * from './sdk/DataLayer/DataProviders/SummaryDataProvider';
+export * from './sdk/DataLayer/DataProviders/DependencyDataProvider';
+export * from './sdk/DataLayer/DataProviders/ComponentDataProvider';
+// *** Unzip *** //
+export * from './sdk/Decompress/DecompressionManager';
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi9zcmMvaW5kZXgudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBQUEsa0NBQWtDO0FBQ2xDLGNBQWMsdUJBQXVCLENBQUM7QUFDdEMsY0FBYyw0QkFBNEIsQ0FBQztBQUMzQyxjQUFjLDBCQUEwQixDQUFDO0FBQ3pDLGNBQWMsdURBQXVELENBQUM7QUFFdEUsd0NBQXdDO0FBQ3hDLGNBQWMsb0NBQW9DLENBQUM7QUFDbkQsY0FBYyx5Q0FBeUMsQ0FBQztBQUN4RCxjQUFjLHNDQUFzQyxDQUFDO0FBR3JELGdDQUFnQztBQUNoQyxjQUFjLGdDQUFnQyxDQUFDO0FBQy9DLGNBQWMscUNBQXFDLENBQUM7QUFDcEQsY0FBYyxtREFBbUQsQ0FBQztBQUNsRSxjQUFjLG1EQUFtRCxDQUFDO0FBQ2xFLGNBQWMsc0RBQXNELENBQUM7QUFDckUsY0FBYyxxREFBcUQsQ0FBQztBQUVwRSxtQkFBbUI7QUFDbkIsY0FBYyx1Q0FBdUMsQ0FBQyJ9

package/build/module/src/sdk/DataLayer/DataLayerTypes.d.ts

@@ -0,0 +1,108 @@
+/*************  Component interface definition  *************/
+export interface ComponentDataLayer {
+    key: string;
+    purls: string[];
+    name: string;
+    vendor: string;
+    url: string;
+    health: Health;
+    versions: Version[];
+}
+export interface Version {
+    version: string;
+    licenses: string[];
+    copyrights: Copyright[];
+    cryptography: Cryptography[];
+    quality: Quality;
+}
+export interface Copyright {
+    name: string;
+    source: string;
+}
+export interface Cryptography {
+    algorithm: string;
+    strength: string;
+}
+export interface Quality {
+    scoreAvg: number;
+    count: number;
+    sum: number;
+}
+export interface Health {
+    creation_date: string;
+    issues: number;
+    last_push: string;
+    last_update: string;
+    watchers: number;
+    country: string;
+    stars: number;
+    forks: number;
+}
+/*************  Component interface definition  *************/
+/*************  Dependency interface definition  *************/
+export interface DependencyDataLayer {
+    file: string;
+    dependencies: Dependency[];
+}
+export interface License {
+    name: string;
+    spdxid: string;
+}
+export interface Dependency {
+    purl: string;
+    component: string;
+    version: string;
+    licenses: License[];
+}
+/*************  Dependency interface definition  *************/
+/*************  Vulnerability interface definition  *************/
+export interface Vulnerability {
+    id: string;
+    cve: string;
+    url: string;
+    summary: string;
+    severity: string;
+    published: string;
+    modified: string;
+    source: string;
+}
+export interface VulnerabilityDataLayer {
+    purl: string;
+    vulnerability: Vulnerability[];
+}
+/*************  Vulnerability interface definition  *************/
+/*************  License interface definition  *************/
+export interface LicenseDataLayer {
+    label: string;
+    value: number;
+    components: Array<LicenseComponent>;
+    incompatibleWith: Array<string>;
+    hasIncompatibles: Array<string>;
+    copyleft: boolean;
+}
+export interface LicenseComponent {
+    purl: string;
+    name: string;
+    versions: Array<string>;
+    url: string;
+    vendor: string;
+}
+/*************  License interface definition  *************/
+export interface SummaryDataLayer {
+    projectName: string;
+    timestamp: Date;
+    matchedFiles: number;
+    noMatchFiles: number;
+    totalFiles: number;
+}
+export interface IDataLayers {
+    licenses: LicenseDataLayer[];
+    component: ComponentDataLayer[];
+    dependencies: DependencyDataLayer[];
+    vulnerabilities: VulnerabilityDataLayer[];
+    summary: SummaryDataLayer;
+}
+export interface DataProvider {
+    getData(): IDataLayers;
+    getLayerName(): string;
+}

package/build/module/src/sdk/DataLayer/DataLayerTypes.js

@@ -0,0 +1,5 @@
+;
+;
+;
+export {};
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiRGF0YUxheWVyVHlwZXMuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi8uLi8uLi9zcmMvc2RrL0RhdGFMYXllci9EYXRhTGF5ZXJUeXBlcy50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiQUFzQkMsQ0FBQztBQUtELENBQUM7QUFNRCxDQUFDIn0=

package/build/module/src/sdk/DataLayer/DataProviderManager.d.ts

@@ -0,0 +1,7 @@
+import { DataProvider, IDataLayers } from './DataLayerTypes';
+export declare class DataProviderManager {
+    private dataLayersProviders;
+    constructor();
+    addDataProvider(l: DataProvider): void;
+    generateData(): IDataLayers;
+}

package/build/module/src/sdk/DataLayer/DataProviderManager.js

@@ -0,0 +1,21 @@
+export class DataProviderManager {
+    constructor() {
+        this.dataLayersProviders = [];
+    }
+    addDataProvider(l) {
+        this.dataLayersProviders.push(l);
+    }
+    generateData() {
+        let dataLayer = {
+            component: null,
+            dependencies: null,
+            vulnerabilities: null,
+            summary: null,
+            licenses: null
+        };
+        for (const layer of this.dataLayersProviders)
+            Object.assign(dataLayer, layer.getData());
+        return dataLayer;
+    }
+}
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiRGF0YVByb3ZpZGVyTWFuYWdlci5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uLy4uLy4uLy4uL3NyYy9zZGsvRGF0YUxheWVyL0RhdGFQcm92aWRlck1hbmFnZXIudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBRUEsTUFBTSxPQUFPLG1CQUFtQjtJQUc5QjtRQUNFLElBQUksQ0FBQyxtQkFBbUIsR0FBRyxFQUFFLENBQUM7SUFDaEMsQ0FBQztJQUVNLGVBQWUsQ0FBQyxDQUFlO1FBQ3BDLElBQUksQ0FBQyxtQkFBbUIsQ0FBQyxJQUFJLENBQUMsQ0FBQyxDQUFDLENBQUE7SUFDbEMsQ0FBQztJQUVNLFlBQVk7UUFFakIsSUFBSSxTQUFTLEdBQWdCO1lBQzNCLFNBQVMsRUFBRSxJQUFJO1lBQ2YsWUFBWSxFQUFFLElBQUk7WUFDbEIsZUFBZSxFQUFFLElBQUk7WUFDckIsT0FBTyxFQUFFLElBQUk7WUFDYixRQUFRLEVBQUUsSUFBSTtTQUNmLENBQUM7UUFFRixLQUFLLE1BQU0sS0FBSyxJQUFJLElBQUksQ0FBQyxtQkFBbUI7WUFBRSxNQUFNLENBQUMsTUFBTSxDQUFDLFNBQVMsRUFBRSxLQUFLLENBQUMsT0FBTyxFQUFFLENBQUMsQ0FBQztRQUN4RixPQUFPLFNBQVMsQ0FBQztJQUNuQixDQUFDO0NBQ0YifQ==

package/build/module/src/sdk/DataLayer/DataProviders/ComponentDataProvider.d.ts

@@ -0,0 +1,13 @@
+import { DataProvider, IDataLayers } from '../DataLayerTypes';
+import { ScannerResults } from '../../scanner/ScannerTypes';
+import { IDependencyResponse } from '../../Dependencies/DependencyTypes';
+export declare class ComponentDataProvider implements DataProvider {
+    private scanRawResults;
+    private componentList;
+    private dependencies;
+    constructor(scanRawResults: ScannerResults, dependencies?: IDependencyResponse);
+    getLayerName(): string;
+    getData(): IDataLayers;
+    private parseComponentsFromDependencies;
+    private parseComponentsFromScanner;
+}