Examples with YarnLockDependency com.synopsys.integration.detectable.detectables.yarn.parse.YarnLockDependency used on opensource projects

Example 1 with YarnLockDependency

use of com.synopsys.integration.detectable.detectables.yarn.parse.YarnLockDependency in project synopsys-detect by blackducksoftware.

the class YarnLockParserTest method testSkipIrrelevantStuff.

@Test
void testSkipIrrelevantStuff() {
    List<String> yarnLockText = Arrays.asList("#", "", "any-root-dep@1:", "  ignoredelement1", // must have a version to create an entry
    "  version: 1.0.0", "  ignoredelement2", "  dependencies:", "    some-peer: ^10.0.0", "  ignoredelement3", "#", "");
    YarnLockParser yarnLockParser = createYarnLockParser();
    YarnLock yarnLock = yarnLockParser.parseYarnLock(yarnLockText);
    Assertions.assertEquals(1, yarnLock.getEntries().size());
    YarnLockEntry first = yarnLock.getEntries().get(0);
    Assertions.assertEquals("1.0.0", first.getVersion());
    Assertions.assertEquals(1, first.getDependencies().size());
    YarnLockDependency dep = first.getDependencies().get(0);
    Assertions.assertEquals("some-peer", dep.getName());
    Assertions.assertEquals("^10.0.0", dep.getVersion());
    Assertions.assertFalse(dep.isOptional());
}

Example 2 with YarnLockDependency

use of com.synopsys.integration.detectable.detectables.yarn.parse.YarnLockDependency in project synopsys-detect by blackducksoftware.

the class YarnLockParserTest method assertEntry.

void assertEntry(YarnLock yarnLock, String idName, String idVersion, String resolvedVersion, YarnLockDependency... dependencies) {
    boolean found = false;
    for (YarnLockEntry entry : yarnLock.getEntries()) {
        for (YarnLockEntryId entryId : entry.getIds()) {
            if (entryId.getName().equals(idName) && entryId.getVersion().equals(idVersion)) {
                found = true;
                assertEquals(resolvedVersion, entry.getVersion(), "Yarn entry should have found correct resolved version.");
                assertEquals(dependencies.length, entry.getDependencies().size(), "Yarn entry should have found correct number of dependencies.");
                for (YarnLockDependency dependency : dependencies) {
                    boolean dFound = false;
                    for (YarnLockDependency entryDependency : entry.getDependencies()) {
                        if (entryDependency.getName().equals(dependency.getName()) && entryDependency.getVersion().equals(dependency.getVersion()) && entryDependency.isOptional() == dependency.isOptional()) {
                            dFound = true;
                            break;
                        }
                    }
                    assertTrue(dFound, "Could not find yarn dependency for entry " + idName + " with name " + dependency.getName() + " and version " + dependency.getVersion() + " and optional " + dependency.isOptional() + ".");
                }
            }
        }
    }
    assertTrue(found, "Could not find yarn lock entry with name " + idName + " and version " + idVersion + ".");
}

Example 3 with YarnLockDependency

use of com.synopsys.integration.detectable.detectables.yarn.parse.YarnLockDependency in project synopsys-detect by blackducksoftware.

the class YarnLockParserTest method testParsingNamesWithAtSymbolSlash.

@Test
void testParsingNamesWithAtSymbolSlash() {
    List<String> yarnLockText = new ArrayList<>();
    yarnLockText.add("# THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.");
    yarnLockText.add("# yarn lockfile v1");
    yarnLockText.add("");
    yarnLockText.add("");
    yarnLockText.add("\"@apollo/client@^3.1.3\", \"@apollo/client@^3.1.4\", \"@apollo/client@^3.3.6\":\n");
    yarnLockText.add("  version \"3.3.6\"\n");
    yarnLockText.add("  resolved \"https://registry.yarnpkg.com/@apollo/client/-/client-3.3.6.tgz#f359646308167f38d5bc498dfc2344c888400093\"\n");
    yarnLockText.add("  integrity sha512-XSm/STyNS8aHdDigLLACKNMHwI0qaQmEHWHtTP+jHe/E1wZRnn66VZMMgwKLy2V4uHISHfmiZ4KpUKDPeJAKqg==\n");
    yarnLockText.add("  dependencies:\n");
    yarnLockText.add("    \"@graphql-typed-document-node/core\" \"^3.0.0\"\n");
    YarnLockParser yarnLockParser = createYarnLockParser();
    YarnLock yarnLock = yarnLockParser.parseYarnLock(yarnLockText);
    YarnLockDependency dep = new YarnLockDependency("@graphql-typed-document-node/core", "^3.0.0", false);
    assertEntry(yarnLock, "@apollo/client", "^3.1.3", "3.3.6", dep);
}

Example 4 with YarnLockDependency

use of com.synopsys.integration.detectable.detectables.yarn.parse.YarnLockDependency in project synopsys-detect by blackducksoftware.

the class YarnTransformerTest method buildTestYarnLockResult.

@NotNull
private YarnLockResult buildTestYarnLockResult(List<NameVersion> workspacesThatAreDependencies, List<NameVersion> workspacesThatAreNotDependencies, boolean yarn1project) {
    PackageJson rawPackageJson = new PackageJson();
    rawPackageJson.dependencies = new HashMap<>();
    rawPackageJson.dependencies.put("foo", "fooFuzzyVersion-1.0");
    for (NameVersion workspace : workspacesThatAreDependencies) {
        rawPackageJson.dependencies.put(workspace.getName(), workspace.getVersion());
    }
    rawPackageJson.devDependencies.put("bar", "barFuzzyVersion-1.0");
    NullSafePackageJson packageJson = new NullSafePackageJson(rawPackageJson);
    // yarn.lock: foo and bar both depend on yarn
    List<YarnLockEntryId> yarnLockEntryIdsFoo = Collections.singletonList(new YarnLockEntryId("foo", "fooFuzzyVersion-1.0"));
    List<YarnLockEntryId> yarnLockEntryIdsBar = Collections.singletonList(new YarnLockEntryId("bar", "barFuzzyVersion-1.0"));
    List<YarnLockEntryId> yarnLockEntryIdsYarn = Collections.singletonList(new YarnLockEntryId("yarn", "^1.22.4"));
    List<YarnLockDependency> dependencyRefToYarn = Collections.singletonList(new YarnLockDependency("yarn", "^1.22.4", false));
    List<YarnLockEntry> yarnLockEntries = new LinkedList<>();
    if (!yarn1project) {
        List<YarnLockEntryId> projectEntryIds = Collections.singletonList(new YarnLockEntryId("project", "1.0.0"));
        List<YarnLockDependency> projectDependencies = new LinkedList<>();
        projectDependencies.add(new YarnLockDependency("foo", "fooFuzzyVersion-1.0", false));
        projectDependencies.add(new YarnLockDependency("bar", "barFuzzyVersion-1.0", false));
        for (NameVersion workspaceThatIsDependency : workspacesThatAreDependencies) {
            projectDependencies.add(new YarnLockDependency(workspaceThatIsDependency.getName(), workspaceThatIsDependency.getVersion(), false));
        }
        yarnLockEntries.add(new YarnLockEntry(false, projectEntryIds, "1.0.0", projectDependencies));
    }
    Collection<YarnWorkspace> workspacesByName = new LinkedList<>();
    List<NameVersion> allWorkspaces = new LinkedList<>(workspacesThatAreDependencies);
    allWorkspaces.addAll(workspacesThatAreNotDependencies);
    for (NameVersion workspace : allWorkspaces) {
        String workspaceDepName = workspace.getName() + WORKSPACE_DEP_SUFFIX;
        String workspaceDevDepName = workspace.getName() + "-dev" + WORKSPACE_DEP_SUFFIX;
        addWorkspacePackageJson(workspacesByName, workspace, workspaceDepName, workspaceDevDepName);
        if (!yarn1project) {
            addWorkspaceToYarnLockEntries(yarnLockEntries, workspace, workspaceDepName);
        }
        addDependencyOfWorkspaceToYarnLockEntries(yarnLockEntries, workspace, workspaceDepName);
        addDependencyOfWorkspaceToYarnLockEntries(yarnLockEntries, workspace, workspaceDevDepName);
    }
    yarnLockEntries.add(new YarnLockEntry(false, yarnLockEntryIdsFoo, "1.0", dependencyRefToYarn));
    yarnLockEntries.add(new YarnLockEntry(false, yarnLockEntryIdsBar, "1.0", dependencyRefToYarn));
    yarnLockEntries.add(new YarnLockEntry(false, yarnLockEntryIdsYarn, "1.22.5", new LinkedList<>()));
    String yarnLockVersion = null;
    if (!yarn1project) {
        yarnLockVersion = "4";
    }
    YarnLock yarnLock = new YarnLock(yarnLockVersion, yarn1project, yarnLockEntries);
    YarnWorkspaces workspaceData = new YarnWorkspaces(workspacesByName);
    return new YarnLockResult(packageJson, workspaceData, yarnLock);
}

Example 5 with YarnLockDependency

use of com.synopsys.integration.detectable.detectables.yarn.parse.YarnLockDependency in project synopsys-detect by blackducksoftware.

the class YarnLockDependencyMetaListSectionParser method makeDependencyOptional.

private void makeDependencyOptional(YarnLockEntryBuilder entryBuilder, String curDependencyName) {
    YarnLockDependency origDependency = entryBuilder.getDependencies().get(curDependencyName);
    if (origDependency == null) {
        logger.warn("Found metadata indicating dependency {} is optional, but it's not in the dependency list", curDependencyName);
        return;
    }
    logger.trace("Marking dependency {}:{} optional", origDependency.getName(), origDependency.getVersion());
    entryBuilder.getDependencies().remove(curDependencyName);
    YarnLockDependency replacementDependency = new YarnLockDependency(origDependency.getName(), origDependency.getVersion(), true);
    entryBuilder.getDependencies().put(curDependencyName, replacementDependency);
}