Detect dependencies from build.gradle files

JonoYang · JonoYang · commit d981a1c831e2 · 2022-01-12T15:29:44.000-08:00
* Create parser for dependency info from build.gradle files

Signed-off-by: Jono Yang &lt;jyang@nexb.com&gt;
diff --git a/src/packagedcode/__init__.py b/src/packagedcode/__init__.py
@@ -107,7 +107,8 @@
     msi.MsiInstallerPackage,
     windows.MicrosoftUpdateManifest,
     pubspec.PubspecYaml,
-    pubspec.PubspecLock
+    pubspec.PubspecLock,
+    build.BuildGradle,
 ]
 
 PACKAGE_MANIFESTS_BY_TYPE = {
diff --git a/src/packagedcode/build.py b/src/packagedcode/build.py
@@ -9,9 +9,16 @@
 
 from collections import defaultdict
 import ast
+import io
+import json
 import logging
 import os
 
+from packageurl import PackageURL
+from pygments import highlight
+from pygments.formatter import Formatter
+from pygments.lexers import GroovyLexer
+from pygments.token import Token
 import attr
 
 from commoncode import filetype
@@ -257,3 +264,100 @@ def compute_normalized_license(self):
 
         if detected_licenses:
             return combine_expressions(detected_licenses)
+
+
+class BuildGradleFormatter(Formatter):
+    def format(self, tokens, outfile):
+        quoted = lambda x: (x.startswith('"') and x.endswith('"')) or (x.startswith("'") and value.endswith("'"))
+        start_dependencies_block = False
+        lines = []
+        current_dep_line = []
+        for ttype, value in tokens:
+            if not start_dependencies_block:
+                if ttype == Token.Name and value == 'dependencies':
+                    # If we are at the start of the 'dependencies' code block,
+                    # we continue executing the rest of the dependency
+                    # collection code within this for-loop
+                    start_dependencies_block = True
+                    continue
+                else:
+                    # If we do not see the 'dependencies' block yet, we continue
+                    # and do not execute the code within this for-loop.
+                    continue
+
+            if ttype == Token.Name:
+                current_dep_line.append(value)
+            elif ttype in (Token.Literal.String.Single, Token.Literal.String.Double,):
+                if quoted(value):
+                    value = value[1:-1]
+                current_dep_line.append(value)
+            elif ttype == Token.Text and value == '\n' and current_dep_line:
+                # If we are looking at the end of a dependency declaration line,
+                # append the info from the line we are looking at to our main collection
+                # of dependency info and reset `current_dep_line` so we can
+                # start collecting info for the next line
+                lines.append(current_dep_line)
+                current_dep_line = []
+            elif ttype == Token.Operator and value == '}':
+                # we are at the end of the dependencies block, so we can back out
+                # and return the data we collected
+                break
+            else:
+                # Ignore all other tokens and values that we do not care for
+                continue
+        json.dump(lines, outfile)
+
+
+def build_package(cls, dependencies):
+    package_dependencies = []
+    for dependency_line in dependencies:
+        if len(dependency_line) != 2:
+            continue
+
+        dependency_type, dependency = dependency_line
+        namespace, name, version = dependency.split(':')
+
+        is_runtime = True
+        is_optional = False
+        if 'test' in dependency_type:
+            is_runtime = False
+            is_optional = True
+
+        package_dependencies.append(
+            models.DependentPackage(
+                purl=PackageURL(
+                    type='build.gradle',
+                    namespace=namespace,
+                    name=name,
+                    version=version
+                ).to_string(),
+                scope='dependencies',
+                requirement=version,
+                is_runtime=is_runtime,
+                is_optional=is_optional,
+            )
+        )
+
+    yield cls(
+        dependencies=package_dependencies,
+    )
+
+
+@attr.s()
+class BuildGradle(BaseBuildManifestPackage, models.PackageManifest):
+    file_patterns = ('build.gradle',)
+    extensions = ('.gradle',)
+    # TODO: Not sure what the default type should be, change this to something
+    # more appropriate later
+    default_type = 'build.gradle'
+
+    @classmethod
+    def recognize(cls, location):
+        if not cls.is_manifest(location):
+            return
+        with io.open(location, encoding='utf-8') as loc:
+            file_contents = loc.read()
+        dependencies = highlight(
+            file_contents, GroovyLexer(), BuildGradleFormatter())
+        dependencies = json.loads(dependencies)
+        return build_package(cls, dependencies)

Original file line number	Diff line number	Diff line change
`@@ -107,7 +107,8 @@`
`107`	`107`	`msi.MsiInstallerPackage,`
`108`	`108`	`windows.MicrosoftUpdateManifest,`
`109`	`109`	`pubspec.PubspecYaml,`
`110`		`- pubspec.PubspecLock`
	`110`	`+ pubspec.PubspecLock,`
	`111`	`+ build.BuildGradle,`
`111`	`112`	`]`
`112`	`113`
`113`	`114`	`PACKAGE_MANIFESTS_BY_TYPE = {`