Class: Brew::Vulns::Formula

Inherits:

Object

• Object
• Brew::Vulns::Formula

Defined in:

lib/brew/vulns/formula.rb

Instance Attribute Summary

• #dependencies ⇒ Object readonly

  Returns the value of attribute dependencies.

• #head_url ⇒ Object readonly

  Returns the value of attribute head_url.

• #name ⇒ Object readonly

  Returns the value of attribute name.

• #source_url ⇒ Object readonly

  Returns the value of attribute source_url.

• #version ⇒ Object readonly

  Returns the value of attribute version.

Class Method Summary

• .load_all ⇒ Object
• .load_from_brewfile(brewfile_path, include_deps: false) ⇒ Object
• .load_installed ⇒ Object
• .load_named(formula_names, include_deps: false) ⇒ Object
• .parse_brewfile(brewfile_path) ⇒ Object

Instance Method Summary

• #codeberg? ⇒ Boolean
• #github? ⇒ Boolean
• #gitlab? ⇒ Boolean
• #initialize(data) ⇒ Formula constructor

  A new instance of Formula.

• #repo_url ⇒ Object
• #supported_forge? ⇒ Boolean
• #tag ⇒ Object
• #to_osv_query ⇒ Object

Constructor Details

#initialize(data) ⇒ Formula

Returns a new instance of Formula.

# File 'lib/brew/vulns/formula.rb', line 11

def initialize(data)
  @name = data["name"] || data["full_name"]
  @version = data.dig("versions", "stable") || data["version"]
  @source_url = data.dig("urls", "stable", "url")
  @head_url = data.dig("urls", "head", "url")
  @dependencies = data["dependencies"] || []
end

Instance Attribute Details

#dependencies ⇒ Object (readonly)

Returns the value of attribute dependencies.

# File 'lib/brew/vulns/formula.rb', line 9

def dependencies
  @dependencies
end

#head_url ⇒ Object (readonly)

Returns the value of attribute head_url.

# File 'lib/brew/vulns/formula.rb', line 9

def head_url
  @head_url
end

#name ⇒ Object (readonly)

Returns the value of attribute name.

# File 'lib/brew/vulns/formula.rb', line 9

def name
  @name
end

#source_url ⇒ Object (readonly)

Returns the value of attribute source_url.

# File 'lib/brew/vulns/formula.rb', line 9

def source_url
  @source_url
end

#version ⇒ Object (readonly)

Returns the value of attribute version.

# File 'lib/brew/vulns/formula.rb', line 9

def version
  @version
end

Class Method Details

.load_all ⇒ Object

Raises:

• (Error)

# File 'lib/brew/vulns/formula.rb', line 53

def self.load_all
  json, status = Open3.capture2("brew", "info", "--json=v2", "--eval-all")
  raise Error, "brew info failed with status #{status.exitstatus}" unless status.success?

  data = JSON.parse(json)
  data["formulae"].map { |f| new(f) }
end

.load_from_brewfile(brewfile_path, include_deps: false) ⇒ Object

Raises:

• (Error)

# File 'lib/brew/vulns/formula.rb', line 99

def self.load_from_brewfile(brewfile_path, include_deps: false)
  raise Error, "Brewfile not found: #{brewfile_path}" unless File.exist?(brewfile_path)

  formula_names = parse_brewfile(brewfile_path)
  load_named(formula_names, include_deps: include_deps)
end

.load_installed ⇒ Object

Raises:

• (Error)

# File 'lib/brew/vulns/formula.rb', line 61

def self.load_installed
  json, status = Open3.capture2("brew", "info", "--json=v2", "--installed")
  raise Error, "brew info failed with status #{status.exitstatus}" unless status.success?

  data = JSON.parse(json)
  data["formulae"].map { |f| new(f) }
end

.load_named(formula_names, include_deps: false) ⇒ Object

Raises:

• (Error)

# File 'lib/brew/vulns/formula.rb', line 69

def self.load_named(formula_names, include_deps: false)
  return [] if formula_names.empty?

  json, status = Open3.capture2("brew", "info", "--json=v2", *formula_names)
  raise Error, "brew info failed with status #{status.exitstatus}" unless status.success?

  data = JSON.parse(json)
  formulae = data["formulae"].map { |f| new(f) }

  if include_deps
    dep_names = []
    formula_names.each do |name|
      deps_output, = Open3.capture2("brew", "deps", name)
      dep_names.concat(deps_output.split("\n").map(&:strip))
    end
    dep_names.uniq!
    dep_names -= formula_names

    if dep_names.any?
      deps_json, deps_status = Open3.capture2("brew", "info", "--json=v2", *dep_names)
      if deps_status.success?
        deps_data = JSON.parse(deps_json)
        formulae.concat(deps_data["formulae"].map { |f| new(f) })
      end
    end
  end

  formulae.uniq { |f| f.name }
end

.parse_brewfile(brewfile_path) ⇒ Object

Raises:

• (Error)

# File 'lib/brew/vulns/formula.rb', line 106

def self.parse_brewfile(brewfile_path)
  output, status = Open3.capture2("brew", "bundle", "list", "--file=#{brewfile_path}", "--formula")
  raise Error, "brew bundle list failed with status #{status.exitstatus}" unless status.success?

  output.split("\n").map(&:strip).reject(&:empty?)
end

Instance Method Details

#codeberg? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/brew/vulns/formula.rb', line 39

def codeberg?
  repo_url&.include?("codeberg.org")
end

#github? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/brew/vulns/formula.rb', line 31

def github?
  repo_url&.include?("github.com")
end

#gitlab? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/brew/vulns/formula.rb', line 35

def gitlab?
  repo_url&.include?("gitlab.com")
end

#repo_url ⇒ Object

# File 'lib/brew/vulns/formula.rb', line 19

def repo_url
  return @repo_url if defined?(@repo_url)

  @repo_url = extract_repo_url(source_url) || extract_repo_url(head_url)
end

#supported_forge? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/brew/vulns/formula.rb', line 43

def supported_forge?
  github? || gitlab? || codeberg?
end

#tag ⇒ Object

# File 'lib/brew/vulns/formula.rb', line 25

def tag
  return @tag if defined?(@tag)

  @tag = extract_tag_from_url(source_url)
end

#to_osv_query ⇒ Object

# File 'lib/brew/vulns/formula.rb', line 47

def to_osv_query
  return nil unless repo_url && tag

  { repo_url: repo_url, version: tag, name: name }
end