Add option to read list of files from an input file

Author: Simon Siegert

README.md

@@ -6,22 +6,26 @@ Based on https://github.com/uber/py-find-injection.
 
 
 # Usage
-``` shell
+```
 $ python bin/pyInjection.py --help
-usage: pyInjection.py [-h] [-v] [-j] [-q] [files [files ...]]
+usage: pyInjection.py [-h] [-v] [-i INPUT] [-j] [-s] [-q] [files [files ...]]
 
 Look for patterns in python source files that might indicate SQL injection or
 other vulnerabilities
 
 positional arguments:
-  files          files to check or '-' for standard in
+  files                 files to check or '-' for standard in
 
 optional arguments:
-  -h, --help     show this help message and exit
-  -v, --version  show program's version number and exit
-  -j, --json     print output in JSON
-  -q, --quiet    Do not print error statistics
-
-Exit status is 0 if all files are okay, 1 if any files have an error. Errors
-are printed to standard out
+  -h, --help            show this help message and exit
+  -v, --version         show program's version number and exit
+  -i INPUT, --input INPUT
+                        path to a file containing a list of files to check,
+                        each file in a line
+  -j, --json            print output in JSON
+  -s, --stdin           read from standard in, passed files are ignored
+  -q, --quiet           do not print error statistics
+
+Exit status is 0 if all files are okay, 1 if any files have an error. Found
+vulnerabilities are printed to standard out
 ```

bin/pyInjection.py

@@ -6,7 +6,7 @@
 import sys
 import fileinput
 import json
-version_info = (0, 1, 3)
+version_info = (0, 1, 4)
 __version__ = '.'.join(map(str, version_info))
 
 
@@ -133,6 +133,7 @@ def create_parser():
     )
     parser.add_argument('-v', '--version', action='version', version='%(prog)s ' + __version__)
     parser.add_argument('files', nargs='*', help='files to check or \'-\' for standard in')
+    parser.add_argument('-i', '--input', help='path to a file containing a list of files to check, each file in a line')
     parser.add_argument('-j', '--json', action='store_true', help='print output in JSON')
     parser.add_argument('-s', '--stdin', action='store_true', help='read from standard in, passed files are ignored')
     parser.add_argument('-q', '--quiet', action='store_true', help='do not print error statistics')
@@ -144,8 +145,11 @@ def main():
     parser = create_parser()
     args = parser.parse_args()
 
-    if not (args.files or args.stdin):
+    if not (args.files or args.stdin or args.input):
         parser.error('incorrect number of arguments')
+    if args.input:
+        args.files = map(lambda x: x.strip('\n'),
+            open(args.input, 'r').readlines())
     if args.stdin:
         args.files = ['-']
 

setup.py

@@ -3,7 +3,7 @@
 
 setup(
     name="pyInjection",
-    version="0.1.3",
+    version="0.1.4",
     author="James Brown",
     author_email="jbrown@uber.com",
     url="https://github.com/simsieg/pyInjection",