ghastoolkit 0.12.2

GitHub Advanced Security Toolkit in Rust
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147

use crate::{
    Dependency,
    supplychain::{License, Licenses},
};

/// List of Dependencies
#[derive(Debug, Clone, Default)]
pub struct Dependencies {
    dependencies: Vec<Dependency>,
}

impl Iterator for Dependencies {
    type Item = Dependency;

    fn next(&mut self) -> Option<Self::Item> {
        self.dependencies.pop()
    }
}

impl Dependencies {
    /// Create a new list of dependencies
    ///
    /// # Example
    ///
    /// ```rust
    /// use ghastoolkit::{Dependency, Dependencies};
    ///
    /// let mut dependencies = Dependencies::new();
    ///
    /// dependencies.push(Dependency::from("pkg:cargo/ghastoolkit-rs@0.2.0"));
    ///
    /// for dependency in dependencies {
    ///     println!("{}", dependency);
    ///     // Do something with the dependency
    /// }
    /// ```
    pub fn new() -> Self {
        Self {
            dependencies: Vec::new(),
        }
    }

    /// Push a new dependency to the list
    pub fn push(&mut self, dependency: Dependency) {
        self.dependencies.push(dependency);
    }

    /// Extend the list of dependencies with a new list of dependencies
    pub fn extend(&mut self, dependencies: Vec<Dependency>) {
        self.dependencies.extend(dependencies);
    }

    /// Get the length of the list of dependencies
    pub fn len(&self) -> usize {
        self.dependencies.len()
    }

    /// Check if the list of dependencies is empty
    pub fn is_empty(&self) -> bool {
        self.dependencies.is_empty()
    }

    /// Check if the list contains a particular Dependency
    pub fn contains(&self, dependency: &Dependency) -> bool {
        self.dependencies.contains(dependency)
    }

    /// Find a dependency by name
    pub fn find_by_name(&self, name: &str) -> Option<Dependency> {
        self.dependencies.iter().find(|d| d.name == name).cloned()
    }

    /// Find a list of dependencies by names
    pub fn find_by_names(&self, names: &[&str]) -> Vec<Dependency> {
        self.dependencies
            .iter()
            .filter(|d| names.contains(&d.name.as_str()))
            .cloned()
            .collect()
    }

    /// Find a list of dependencies by license
    pub fn find_by_license(&self, license: &License) -> Vec<Dependency> {
        // TODO(geekmasher): support for wildcard licenses
        self.dependencies
            .iter()
            .filter(|d| d.licenses.contains(license))
            .cloned()
            .collect()
    }

    /// Find a list of dependencies by licenses
    pub fn find_by_licenses(&self, licenses: &Licenses) -> Vec<Dependency> {
        // TODO(geekmasher): the clone here is not great, but it's a quick fix for now
        self.dependencies
            .iter()
            .filter(|d| {
                d.licenses
                    .clone()
                    .into_iter()
                    .any(|l| licenses.contains(&l))
            })
            .cloned()
            .collect()
    }
}

#[cfg(test)]
mod tests {
    use crate::{Dependencies, Dependency, supplychain::License};

    #[test]
    fn test_find_by_name() {
        let mut deps = Dependencies::new();
        deps.extend(vec![
            Dependency::from("pkg:cargo/ghastoolkit-rs@0.2.0"),
            Dependency::from("pkg:pip/ghastoolkit@0.12.0"),
        ]);

        assert_eq!(deps.len(), 2);

        let dep = deps
            .find_by_name("ghastoolkit-rs")
            .expect("Failed to find dependency by name");

        assert_eq!(dep.name, "ghastoolkit-rs");
        assert_eq!(dep.version, Some("0.2.0".to_string()));
    }

    #[test]
    fn test_find_by_license() {
        let mut deps = Dependencies::new();
        deps.extend(vec![
            Dependency::from(("pkg:cargo/ghastoolkit-rs@0.2.0", "MIT")),
            Dependency::from(("pkg:pip/ghastoolkit@0.12.0", "Apache-2.0")),
        ]);
        assert_eq!(deps.len(), 2);

        let deps_license = deps.find_by_license(&License::MIT);
        assert_eq!(deps_license.len(), 1);
        let dep = deps_license
            .first()
            .expect("Failed to find dependency by license");
        assert_eq!(dep.name, "ghastoolkit-rs");
        assert_eq!(dep.manager, "cargo");
    }
}