mirror of
https://github.com/anchore/syft.git
synced 2026-02-12 02:26:42 +01:00
60 lines
1.5 KiB
Go
60 lines
1.5 KiB
Go
package elixir
|
|
|
|
import (
|
|
"bufio"
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"regexp"
|
|
|
|
"github.com/anchore/syft/internal/log"
|
|
"github.com/anchore/syft/syft/artifact"
|
|
"github.com/anchore/syft/syft/file"
|
|
"github.com/anchore/syft/syft/pkg"
|
|
"github.com/anchore/syft/syft/pkg/cataloger/generic"
|
|
)
|
|
|
|
// integrity check
|
|
var _ generic.Parser = parseMixLock
|
|
|
|
var mixLockDelimiter = regexp.MustCompile(`[%{}\n" ,:]+`)
|
|
|
|
// parseMixLock parses a mix.lock and returns the discovered Elixir packages.
|
|
func parseMixLock(_ context.Context, _ file.Resolver, _ *generic.Environment, reader file.LocationReadCloser) ([]pkg.Package, []artifact.Relationship, error) {
|
|
r := bufio.NewReader(reader)
|
|
|
|
var packages []pkg.Package
|
|
for {
|
|
line, err := r.ReadString('\n')
|
|
switch {
|
|
case errors.Is(io.EOF, err):
|
|
return packages, nil, nil
|
|
case err != nil:
|
|
return nil, nil, fmt.Errorf("failed to parse mix.lock file: %w", err)
|
|
}
|
|
tokens := mixLockDelimiter.Split(line, -1)
|
|
if len(tokens) < 6 {
|
|
continue
|
|
}
|
|
name, version, hash, hashExt := tokens[1], tokens[4], tokens[5], tokens[len(tokens)-2]
|
|
|
|
if name == "" {
|
|
log.WithFields("path", reader.RealPath).Debug("skipping empty package name from mix.lock file")
|
|
continue
|
|
}
|
|
|
|
packages = append(packages,
|
|
newPackage(
|
|
pkg.ElixirMixLockEntry{
|
|
Name: name,
|
|
Version: version,
|
|
PkgHash: hash,
|
|
PkgHashExt: hashExt,
|
|
},
|
|
reader.Location.WithAnnotation(pkg.EvidenceAnnotationKey, pkg.PrimaryEvidenceAnnotation),
|
|
),
|
|
)
|
|
}
|
|
}
|