From 77a0bd4118cb82bfef290e5ce6ee1b662420facc Mon Sep 17 00:00:00 2001
From: Brandon Siegel <brandon.siegel@microsoft.com>
Date: Wed, 30 Jan 2019 16:01:00 -0800
Subject: [PATCH] Publish HTML dependency report (#4257)

* Generate HTML report via Jinja2

* Publish HTML report from Azure Pipelines

* Add badge for dependencies
---
 .azure-pipelines/client.yml |  10 +-
 README.rst                  |   3 +
 scripts/analyze_deps.py     | 173 +++++++++++++++-----------
 scripts/deps.html.j2        | 238 ++++++++++++++++++++++++++++++++++++
 4 files changed, 349 insertions(+), 75 deletions(-)
 create mode 100644 scripts/deps.html.j2

diff --git a/.azure-pipelines/client.yml b/.azure-pipelines/client.yml
index 9b6018f9cd4e..28bc0b4bf81d 100644
--- a/.azure-pipelines/client.yml
+++ b/.azure-pipelines/client.yml
@@ -17,15 +17,15 @@ jobs:
     inputs:
       versionSpec: 3.6
 
+  - script: |
+     pip install wheel setuptools pathlib Jinja2
+    displayName: 'Prep Environment'
+
   - task: PythonScript@0
     displayName: 'Analyze dependencies'
     inputs:
       scriptPath: 'scripts/analyze_deps.py'
-      arguments: '--verbose --out "$(Build.ArtifactStagingDirectory)/dependencies.txt"'
-
-  - script: |
-     pip install wheel setuptools pathlib
-    displayName: 'Prep Environment'
+      arguments: '--verbose --out "$(Build.ArtifactStagingDirectory)/dependencies.html"'
 
   - task: PythonScript@0
     displayName: 'Generate Packages'
diff --git a/README.rst b/README.rst
index 894eaa5ac05a..722359e5e8d5 100644
--- a/README.rst
+++ b/README.rst
@@ -13,6 +13,9 @@ Microsoft Azure SDK for Python
 .. image:: https://ci.appveyor.com/api/projects/status/m51hrgewcxknxhsd/branch/master?svg=true
     :target: https://ci.appveyor.com/project/lmazuel/azure-sdk-for-python/branch/master
 
+.. image:: https://img.shields.io/badge/dependencies-analyzed-blue.svg
+    :target: https://azuresdkartifacts.blob.core.windows.net/azure-sdk-for-python/dependencies/dependencies.html
+
 This project provides a set of Python packages that make it easy to
 access Management (Virtual Machines, ...) or Runtime (ServiceBus using HTTP, Batch, Monitor) components of
 `Microsoft Azure <https://azure.microsoft.com/>`_
diff --git a/scripts/analyze_deps.py b/scripts/analyze_deps.py
index 95ea88a8062d..db37af6b3efc 100755
--- a/scripts/analyze_deps.py
+++ b/scripts/analyze_deps.py
@@ -2,7 +2,9 @@
 from __future__ import print_function
 import argparse
 import ast
+from datetime import datetime
 import glob
+import io
 import os
 import re
 import sys
@@ -26,6 +28,7 @@ def locate_wheels(base_dir):
     return sorted(wheels)
 
 def get_lib_deps(base_dir):
+    packages = {}
     dependencies = {}
     for lib_dir in locate_libs(base_dir):
         try:
@@ -33,7 +36,13 @@ def get_lib_deps(base_dir):
             if should_skip_lib(lib_name):
                 continue
             setup_path = os.path.join(lib_dir, 'setup.py')
-            requires = parse_setup(setup_path)
+            version, requires = parse_setup(setup_path)
+
+            packages[lib_name] = {
+                'version': version,
+                'source': lib_dir
+            }
+
             for req in requires:
                 req_parts = re.split('([<>~=]+)', req, 1)
                 req_name = req_parts[0]
@@ -46,13 +55,14 @@ def get_lib_deps(base_dir):
                 dependencies[req_name][spec].append(lib_name)
         except:
             print('Failed to parse %s' % (setup_path))
-    return dependencies
+    return packages, dependencies
 
 def get_wheel_deps(wheel_dir):
     from wheel.pkginfo import read_pkg_info_bytes
     from wheel.wheelfile import WheelFile
 
     requires_dist_re = re.compile(r"""^(?P<name>\S+)(\s\((?P<spec>.+)\))?$""")
+    packages = {}
     dependencies = {}
     for whl_path in locate_wheels(wheel_dir):
         try:
@@ -61,6 +71,12 @@ def get_wheel_deps(wheel_dir):
                 lib_name = pkg_info.get('Name')
                 if should_skip_lib(lib_name):
                     continue
+
+                packages[lib_name] = {
+                    'version': pkg_info.get('Version'),
+                    'source': whl_path
+                }
+
                 requires = pkg_info.get_all('Requires-Dist')
                 for req in requires:
                     parsed = requires_dist_re.match(req.split(';')[0].strip())
@@ -73,7 +89,7 @@ def get_wheel_deps(wheel_dir):
                     dependencies[req_name][spec].append(lib_name)
         except:
             print('Failed to parse METADATA from %s' % (whl_path))
-    return dependencies
+    return packages, dependencies
 
 def parse_setup(setup_filename):
     mock_setup = textwrap.dedent('''\
@@ -105,13 +121,14 @@ def setup(*args, **kwargs):
     os.chdir(current_dir)
     _, kwargs = global_vars['__setup_calls__'][0]
 
+    version = kwargs['version']
     requires = []
     if 'install_requires' in kwargs:
         requires += kwargs['install_requires']
     if 'extras_require' in kwargs:
         for extra in kwargs['extras_require'].values():
             requires += extra
-    return requires
+    return version, requires
 
 def dict_compare(d1, d2):
     d1_keys = set(d1.keys())
@@ -122,17 +139,13 @@ def dict_compare(d1, d2):
     modified = {o : (d1[o], d2[o]) for o in intersect_keys if d1[o] != d2[o]}
     return added, removed, modified
 
-class Logger(object):
-    def __init__(self, path):
-        self.terminal = sys.stdout
-        self.log = open(path, 'a')
-
-    def write(self, message):
-        self.terminal.write(message)
-        self.log.write(message)
-
-    def flush(self):
-        pass
+def render_report(output_path, report_context):
+    env = Environment(
+        loader=FileSystemLoader(os.path.dirname(os.path.realpath(__file__)))
+    )
+    template = env.get_template('deps.html.j2')
+    with io.open(output_path, 'w', encoding='utf-8') as output:
+        output.write(template.render(report_context))
 
 if __name__ == '__main__':
     base_dir = os.path.dirname(os.path.dirname(os.path.realpath(__file__)))
@@ -148,54 +161,59 @@ def flush(self):
     ''')
     parser.add_argument('--verbose', help='verbose output', action='store_true')
     parser.add_argument('--freeze', help='freeze dependencies after analyzing (otherwise, validate dependencies against frozen list)', action='store_true')
-    parser.add_argument('--out', metavar='FILE', help='write log output to FILE in addition to stdout')
+    parser.add_argument('--out', metavar='FILE', help='write HTML-formatted report to FILE')
     parser.add_argument('--wheeldir', metavar='DIR', help='analyze wheels in DIR rather than source packages in this repository')
     args = parser.parse_args()
 
     if args.out:
-        sys.stdout = Logger(args.out)
+        try:
+            from jinja2 import Environment, FileSystemLoader
+        except:
+            print("Jinja2 is required to render the dependency report. Please install with 'pip install Jinja2' to use this option.")
+            sys.exit(1)
 
     if args.wheeldir:
-        dependencies = get_wheel_deps(args.wheeldir)
+        packages, dependencies = get_wheel_deps(args.wheeldir)
     else:
-        dependencies = get_lib_deps(base_dir)
+        packages, dependencies = get_lib_deps(base_dir)
 
     if args.verbose:
-        print('Requirements discovered:')
+        print('Packages analyzed:')
+        for package in sorted(packages.keys()):
+            info = packages[package]
+            print("%s %s" % (package, info['version']))
+            print("  from %s" % (info['source']))
+
+        print('\n\nRequirements discovered:')
         for requirement in sorted(dependencies.keys()):
             specs = dependencies[requirement]
             libs = []
+            print('\n%s' % (requirement))
             for spec in specs.keys():
-                friendly_spec = ' (%s)' % (spec) if spec != '' else ''
+                print('%s' % (spec if spec else '(any)'))
                 for lib in specs[spec]:
-                    libs.append('  * %s%s' % (lib, friendly_spec))
-
-            if len(libs) > 0:
-                print('\n%s' % (requirement))
-                for lib in libs:
-                    print(lib)
+                    print('  * %s' % (lib))
 
-    consistent = True
+    inconsistent = []
     for requirement in sorted(dependencies.keys()):
         specs = dependencies[requirement]
         num_specs = len(specs)
         if num_specs == 1:
             continue
-        consistent = False
-        if not args.verbose:
-            break
 
-        print("\n\nRequirement '%s' has %s unique specifiers:" % (requirement, num_specs))
-        for spec in sorted(specs.keys()):
-            libs = specs[spec]
-            friendly_spec = '(none)' if spec == '' else spec
-            print("\n  '%s'" % (friendly_spec))
-            print('  ' + ('-' * (len(friendly_spec) + 2)))
-            for lib in sorted(libs):
-                print('    * %s' % (lib))
+        inconsistent.append(requirement)
+        if args.verbose:
+            print("\n\nRequirement '%s' has %s unique specifiers:" % (requirement, num_specs))
+            for spec in sorted(specs.keys()):
+                libs = specs[spec]
+                friendly_spec = '(none)' if spec == '' else spec
+                print("\n  '%s'" % (friendly_spec))
+                print('  ' + ('-' * (len(friendly_spec) + 2)))
+                for lib in sorted(libs):
+                    print('    * %s' % (lib))
 
     exitcode = 0
-    if not consistent:
+    if inconsistent:
         if not args.verbose:
             print('\n\nIncompatible dependency versions detected in libraries, run this script with --verbose for details')
         else:
@@ -228,37 +246,52 @@ def flush(self):
                 spec = ''.join(req_parts[1:])
                 frozen[req_name] = [spec]
     except:
-        print('Unable to open shared_requirements.txt, shared requirements will not be validated')
-        sys.exit(exitcode)
+        print('Unable to open shared_requirements.txt, shared requirements have not been validated')
     
-    flat_deps = {req: sorted(dependencies[req].keys()) for req in dependencies}
-    missing_reqs, new_reqs, changed_reqs = dict_compare(frozen, flat_deps)
-    if args.verbose and len(missing_reqs) > 0:
-        print('\nThe following requirements are frozen but do not exist in any current library:')
-        for missing_req in missing_reqs:
-            [spec] = frozen[missing_req]
-            print('  * %s' % (missing_req + spec))
-    if len(new_reqs) > 0:
-        exitcode = 1
-        if args.verbose:
-            for new_req in new_reqs:
-                for spec in dependencies[new_req]:
-                    libs = dependencies[new_req][spec]
-                    print("\nRequirement '%s' is declared in the following libraries but has not been frozen:" % (new_req + spec))
-                    for lib in libs:
-                        print("  * %s" % (lib))
-    if len(changed_reqs) > 0:
-        exitcode = 1
-        if args.verbose:
-            for changed_req in changed_reqs:
-                [frozen_spec] = frozen[changed_req]
-                for current_spec in dependencies[changed_req]:
-                    if frozen_spec == current_spec:
-                        continue
-                    libs = dependencies[changed_req][current_spec]
-                    print("\nThe following libraries declare requirement '%s' which does not match the frozen requirement '%s':" % (changed_req + current_spec, changed_req + frozen_spec))
-                    for lib in libs:
-                        print("  * %s" % (lib))
+    missing_reqs, new_reqs, changed_reqs = {}, {}, {}
+    if frozen:
+        flat_deps = {req: sorted(dependencies[req].keys()) for req in dependencies}
+        missing_reqs, new_reqs, changed_reqs = dict_compare(frozen, flat_deps)
+        if args.verbose and len(missing_reqs) > 0:
+            print('\nThe following requirements are frozen but do not exist in any current library:')
+            for missing_req in missing_reqs:
+                [spec] = frozen[missing_req]
+                print('  * %s' % (missing_req + spec))
+        if len(new_reqs) > 0:
+            exitcode = 1
+            if args.verbose:
+                for new_req in new_reqs:
+                    for spec in dependencies[new_req]:
+                        libs = dependencies[new_req][spec]
+                        print("\nRequirement '%s' is declared in the following libraries but has not been frozen:" % (new_req + spec))
+                        for lib in libs:
+                            print("  * %s" % (lib))
+        if len(changed_reqs) > 0:
+            exitcode = 1
+            if args.verbose:
+                for changed_req in changed_reqs:
+                    [frozen_spec] = frozen[changed_req]
+                    for current_spec in dependencies[changed_req]:
+                        if frozen_spec == current_spec:
+                            continue
+                        libs = dependencies[changed_req][current_spec]
+                        print("\nThe following libraries declare requirement '%s' which does not match the frozen requirement '%s':" % (changed_req + current_spec, changed_req + frozen_spec))
+                        for lib in libs:
+                            print("  * %s" % (lib))
+    
+    if args.out:
+        render_report(args.out, {
+            'changed_reqs': changed_reqs,
+            'curtime': datetime.utcnow(),
+            'dependencies': dependencies,
+            'env': os.environ,
+            'frozen': frozen,
+            'inconsistent': inconsistent,
+            'missing_reqs': missing_reqs,
+            'new_reqs': new_reqs,
+            'packages': packages,
+            'repo_name': 'azure-sdk-for-python'
+        })
 
     if exitcode == 0:
         print('All library dependencies validated against frozen requirements')
diff --git a/scripts/deps.html.j2 b/scripts/deps.html.j2
new file mode 100644
index 000000000000..af62917c826d
--- /dev/null
+++ b/scripts/deps.html.j2
@@ -0,0 +1,238 @@
+{% set branch    = env.get('SYSTEM_PULLREQUEST_SOURCEBRANCH') if env.get('SYSTEM_PULLREQUEST_SOURCEBRANCH') else env.get('BUILD_SOURCEBRANCHNAME') %}
+{% set build     = env.get('BUILD_BUILDNUMBER') %}
+{% set build_url = '%s%s/_build/results?buildId=%s' % (env.get('SYSTEM_TEAMFOUNDATIONCOLLECTIONURI'), env.get('SYSTEM_TEAMPROJECT'), env.get('BUILD_BUILDID')) %}
+{% set commit    = env.get('BUILD_SOURCEVERSION') %}
+{% set isfork    = env.get('SYSTEM_PULLREQUEST_ISFORK') == 'True' %}
+{% set rel_url   = env.get('RELEASE_RELEASEWEBURL') %}
+{% set release   = env.get('RELEASE_RELEASENAME') %}
+{% set repo      = env.get('BUILD_REPOSITORY_NAME') if isfork else ('Azure/' + repo_name) %}
+<!DOCTYPE html>
+<html>
+  <head>
+    <title>{{ repo_name|capitalize }} Dependency Report</title>
+    <meta charset="UTF-8"/>
+    <style>
+      body {
+          font-family: Verdana, sans-serif;
+          font-size: 14px;
+          text-size-adjust: none;
+      }
+      table {
+          border-spacing: 0px;
+          width: 65%;
+          font-size: 14px;
+      }
+      table.condensed tr td {
+          padding: 7px 15px;
+      }
+      th, td {
+          padding: 15px;
+          border-bottom: 1px solid #ddd;
+          vertical-align:top;
+      }
+      tr:nth-child(even) {
+          background-color: #f2f2f2;
+      }
+      th {
+          background-color: #2E7CAF;
+          color: white;
+          font-weight: 300;
+          text-align: left;
+      }
+      th.inconsistent {
+        background-color: #FF0000;
+      }
+      td.version {
+          width: 75px;
+      }
+      .tooltip {
+          position: relative;
+          display: inline-block;
+          border-bottom: 1px dotted black;
+      }
+      .tooltip .tooltiptext {
+          visibility: hidden;
+          background-color: black;
+          color: #fff;
+          white-space: nowrap;
+          text-align: left;
+          padding: 5px;
+          font-size: 14px;
+          position: absolute;
+          z-index: 1;
+          margin-top: 7px;
+          top: 100%;
+          left: 0%;
+      }
+      .tooltip .tooltiptext::after {
+          content: " ";
+          position: absolute;
+          bottom: 100%;  /* At the top of the tooltip */
+          left: 5%;
+          margin-left: -5px;
+          border-width: 5px;
+          border-style: solid;
+          border-color: transparent transparent black transparent;
+      }
+      .tooltip:hover .tooltiptext {
+          visibility: visible;
+      }
+      
+      .success {
+          color: #00CC00;
+      }
+      .fail {
+          color: #CC0000;
+      }
+      
+      @media only screen and (max-width: 1350px) {
+          body, table {
+              font-size: 25px;
+          }
+          table {
+              width: 95%;
+          }
+          td.version {
+              width: 35px;
+          }
+      }
+    </style>
+          <style>
          .commit-tease,
          .user-profile-mini-avatar,
          .avatar,
          .vcard-details,
          .signup-prompt-bg {
            display: none !IMPORTANT;
          }
        </style>
         <script>
          document.addEventListener('DOMContentLoaded', function() {
            this.querySelectorAll('a').forEach(anchor => {
              anchor.addEventListener('click', e => {
                e.preventDefault();

                const redact = new URLSearchParams(window.location.search).get('redact');
                const hasExistingParams = anchor.href.includes('?');
                window.location.href = anchor.href + (hasExistingParams ? `&redact=${redact}` : `?redact=${redact}`);
              });
            });
          });
        </script>
 </head>
+  <body>
+    <center>
+      <h1>{{ repo_name|capitalize }} Dependency Report</h1>
+      <h3>
+        Generated at {{ curtime.replace(microsecond=0).isoformat() }}Z
+        {% if release %}
+        for release <a href="{{ rel_url }}">{{ release }}</a>
+        {% elif build %}
+        for build <a href="{{ build_url }}">{{ build }}</a>
+        {% if branch %}
+        <br/>from branch <a href="/{{ repo }}/tree/{{ branch }}">{{ branch }}</a>
+        {% if isfork %}
+        in repo <a href="/{{ repo }}">{{ repo }}</a>
+        {% endif %}
+        {% endif %}
+        {% if commit %}
+        (<a href="/{{ repo }}/commit/{{ commit }}">{{ commit[:7] }}</a>)
+        {% endif %}
+        {% endif %}
+      </h3>
+      <p>This report scanned the <a href="#packages">packages</a> listed in the first table below.<br/>
+         Package <a href="#dependencies">dependencies</a> have been analyzed to determine if any packages declare inconsistent dependency versions.<br/>
+         Declared dependencies have then been validated against those in the <a href="#lockfile">lockfile</a> (if present).</p>
+    <a name="packages"/>
+    <table class="condensed">
+      <thead>
+        <tr><th colspan="3"><strong>Packages Scanned for this Report</strong></th></tr>
+        <tr><th>Package Analyzed</th><th>Package Version</th><th>Package Source</th></tr>
+      </thead>
+      <tbody>
+      {% for name, info in packages|dictsort %}
+      <tr>
+        <td>{{ name }}</td>
+        <td>{{ info.version }}</td>
+        <td>{{ info.source }}</td>
+      </tr>
+      {% endfor %}
+      </tbody>
+    </table>
+    <br/><br/><hr/><br/><br/>
+    <a name="dependencies"/>
+    {% for dep_name, requirements in dependencies|dictsort %}
+    <a name="dep_{{ dep_name }}"/>
+    <table>
+      <thead>
+        {% if loop.index == 1 %}
+        <tr><th colspan="2"><strong>Dependencies Discovered in Packages</strong></th></tr>
+        {% endif %}
+        <tr>
+        {% if dep_name in inconsistent %}
+          <th colspan="2" class="inconsistent"><strong>Inconsistent Dependency:</strong> {{ dep_name }}</th></tr>
+        {% else %}
+          <th colspan="2"><strong>Dependency:</strong> {{ dep_name }}</th></tr>
+        {% endif %}
+      </thead>
+      <tbody>
+      {% for requirement, packages in requirements|dictsort %}
+      <tr>
+        <td class="version">{{ requirement if requirement else '(any)' }}</td>
+        <td>
+          {% for package_name in packages|sort %}
+          {{ package_name }}<br/>
+          {% endfor %}
+        </td>
+      </tr>
+      {% endfor %}
+      </tbody>
+    </table>
+    <br/>
+    {% endfor %}
+    <br/><br/><hr/><br/><br/>
+    <a name="lockfile"/>
+    <table class="condensed">
+      <thead>
+        <tr><th colspan="3"><strong>Dependencies Frozen in Lockfile</strong></th></tr>
+        {% if frozen %}
+        <tr><th>Dependency</th><th>Frozen Version</th><th>Dependency State</th></tr>
+        {% endif %}
+      </thead>
+      <tbody>
+      {% for name, versions in frozen|dictsort %}
+      <tr>
+        <td><a href="#dep_{{ name }}">{{ name }}</a></td>
+        <td>{{ versions[0] if versions[0] else '(any)' }}</td>
+        {% if name in missing_reqs %}
+        <td>⚠️ No packages reference this dependency</td>
+        {% elif name in changed_reqs %}
+        <td><div class="tooltip">❌ One or more packages reference a different version of this dependency
+               <span class="tooltiptext">
+               {% for spec, libs in dependencies[name]|dictsort %}
+               {% if spec != versions[0] %}
+               {% for package in libs|sort %}
+               {{ package }} ({{ spec }})
+               <br/>
+               {% endfor %}
+               {% endif %}
+               {% endfor %}
+               </span>
+               </div>
+        </td>
+        {% else %}
+        <td>✅ All packages validated against this dependency and version</td>
+        {% endif %}
+      </tr>
+      {% endfor %}
+      {% if not frozen %}
+      <tr><td colspan="2">Unable to open shared_requirements.txt, shared requirements have not been validated</td></tr>
+      {% endif %}
+      </tbody>
+    </table>
+    {% if frozen and new_reqs %}
+    <br/>
+    {% for name in new_reqs|sort %}
+    <table class="condensed">
+      <thead>
+        {% if loop.index == 1 %}
+        <tr><th colspan="2" class="inconsistent"><strong>Dependencies Missing from Lockfile</strong></th></tr>
+        {% endif %}
+        <tr><th colspan="2" class="inconsistent"><strong>Missing Dependency:</strong> <a href="#dep_{{ name }}">{{ name }}</a></th></tr>
+      </thead>
+      <tbody>
+      {% for requirement, packages in dependencies[name]|dictsort %}
+      <tr>
+        <td class="version">{{ requirement if requirement else '(any)' }}</td>
+        <td>
+          {% for package_name in packages|sort %}
+          {{ package_name }}<br/>
+          {% endfor %}
+        </td>
+      </tr>
+      {% endfor %}
+      </tbody>
+    </table>
+    {% endfor %}
+    {% endif %}
+    </center>
+  </body>
+</html>