ossa-scanner 0.1.30__tar.gz → 0.1.31__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (22) hide show
  1. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/PKG-INFO +1 -1
  2. ossa_scanner-0.1.31/ossa_scanner/__init__.py +1 -0
  3. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/scanner.py +1 -1
  4. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/utils/package_manager.py +8 -11
  5. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner.egg-info/PKG-INFO +1 -1
  6. ossa_scanner-0.1.30/ossa_scanner/__init__.py +0 -1
  7. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/LICENSE +0 -0
  8. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/README.md +0 -0
  9. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/cli.py +0 -0
  10. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/uploader.py +0 -0
  11. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/utils/__init__.py +0 -0
  12. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/utils/downloader.py +0 -0
  13. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/utils/hash_calculator.py +0 -0
  14. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/utils/os_detection.py +0 -0
  15. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/utils/swhid_calculator.py +0 -0
  16. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner.egg-info/SOURCES.txt +0 -0
  17. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner.egg-info/dependency_links.txt +0 -0
  18. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner.egg-info/entry_points.txt +0 -0
  19. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner.egg-info/requires.txt +0 -0
  20. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner.egg-info/top_level.txt +0 -0
  21. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/setup.cfg +0 -0
  22. {ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/setup.py +0 -0
{ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: ossa_scanner
3
- Version: 0.1.30
3
+ Version: 0.1.31
4
4
  Summary: Open Source Software Advisory generator for Core and Base Linux Packages.
5
5
  Home-page: https://github.com/oscarvalenzuelab/ossa_scanner
6
6
  Author: Oscar Valenzuela
ossa_scanner-0.1.31/ossa_scanner/__init__.py ADDED
@@ -0,0 +1 @@
1
+ __version__ = "0.1.31"
{ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/scanner.py RENAMED
@@ -25,7 +25,7 @@ class Scanner:
25
25
  def process_package(self, package):
26
26
  try:
27
27
  print(f"Processing package: {package}")
28
- package_info = get_package_info(self.pm_type, package)
28
+ package_info = get_package_info(self.pm_type, package, self.temp_dir)
29
29
  source_files = download_source(self.pm_type, package, self.temp_dir)
30
30
  self.save_package_report(package, package_info, source_files)
31
31
  except Exception as e:
{ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner/utils/package_manager.py RENAMED
@@ -46,7 +46,7 @@ def list_packages(package_manager):
46
46
  return package_list
47
47
 
48
48
 
49
- def get_package_info(package_manager, package_name):
49
+ def get_package_info(package_manager, package_name, output_dir):
50
50
  if package_manager == 'apt':
51
51
  cmd = ['apt-cache', 'show', package_name]
52
52
  elif package_manager in ['yum', 'dnf']:
@@ -65,7 +65,7 @@ def get_package_info(package_manager, package_name):
65
65
  elif package_manager in ['yum', 'dnf']:
66
66
  return parse_yum_info(output)
67
67
  elif package_manager == 'apt':
68
- return parse_apt_info(output, package_name)
68
+ return parse_apt_info(output, package_name, output_dir)
69
69
  except subprocess.CalledProcessError as e:
70
70
  print(f"Command failed: {e}")
71
71
  return None
@@ -129,7 +129,7 @@ def parse_yum_info(output):
129
129
  info["summary"] = line.split(":", 1)[1].strip()
130
130
  return info
131
131
 
132
- def parse_apt_info(output, package_name):
132
+ def parse_apt_info(output, package_name, output_dir):
133
133
  info = {}
134
134
  lines = output.splitlines()
135
135
  for line in lines:
@@ -141,16 +141,13 @@ def parse_apt_info(output, package_name):
141
141
  info["licenses"] = line.split(":", 1)[1].strip()
142
142
 
143
143
  if "licenses" not in info:
144
- info["licenses"] = apt_get_license_from_source(package_name)
144
+ info["licenses"] = apt_get_license_from_source(package_name, output_dir)
145
145
  if info["licenses"]:
146
146
  info["licenses"] = extract_spdx_ids(info["licenses"])
147
147
  severity = license_classificaton(info["licenses"])
148
148
  else:
149
149
  severity = "Informational"
150
150
 
151
- print(package_name, info)
152
- exit()
153
-
154
151
  # Ensure all keys are present even if data is missing
155
152
  return {
156
153
  "licenses": info.get("licenses", "NOASSERTION"),
@@ -159,10 +156,10 @@ def parse_apt_info(output, package_name):
159
156
  "severity": severity,
160
157
  }
161
158
 
162
- def apt_get_license_from_source(package_name):
159
+ def apt_get_license_from_source(package_name, output_dir):
163
160
  try:
164
- subprocess.run(["apt-get", "source", package_name], check=True, capture_output=True, text=True)
165
- source_dirs = [d for d in os.listdir() if d.startswith(package_name) and os.path.isdir(d)]
161
+ subprocess.run(["apt-get", "source", package_name, '-d', output_dir], check=True, capture_output=True, text=True)
162
+ source_dirs = [d for d in os.listdir(output_dir) if d.startswith(package_name) and os.path.isdir(d)]
166
163
  if not source_dirs:
167
164
  return "NOASSERTION"
168
165
  package_dir = source_dirs[0]
@@ -173,7 +170,7 @@ def apt_get_license_from_source(package_name):
173
170
  for line in f:
174
171
  if re.search(r"(?i)license:", line):
175
172
  licenses.append(line.split(":", 1)[1].strip())
176
- shutil.rmtree(package_dir, ignore_errors=True)
173
+ shutil.rmtree(output_dir, ignore_errors=True)
177
174
  return ", ".join(set(licenses)) if licenses else "NOASSERTION"
178
175
  except subprocess.CalledProcessError as e:
179
176
  print(f"Error fetching source package: {e}")
{ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/ossa_scanner.egg-info/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: ossa_scanner
3
- Version: 0.1.30
3
+ Version: 0.1.31
4
4
  Summary: Open Source Software Advisory generator for Core and Base Linux Packages.
5
5
  Home-page: https://github.com/oscarvalenzuelab/ossa_scanner
6
6
  Author: Oscar Valenzuela
ossa_scanner-0.1.30/ossa_scanner/__init__.py DELETED
@@ -1 +0,0 @@
1
- __version__ = "0.1.30"
{ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/LICENSE RENAMED
File without changes
{ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/README.md RENAMED
File without changes
{ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/setup.cfg RENAMED
File without changes
{ossa_scanner-0.1.30 → ossa_scanner-0.1.31}/setup.py RENAMED
File without changes