Class: Pod::Command::Whitelist

Inherits:

Pod::Command

• Object
• Pod::Command
• Pod::Command::Whitelist

Defined in:

lib/cocoapods-whitelist/command/whitelist.rb

Class Method Summary

• .options ⇒ Object

Instance Method Summary

• #get_podspec_specifications ⇒ Object
• #get_whitelist ⇒ Object
• #initialize(argv) ⇒ Whitelist constructor

  A new instance of Whitelist.

• #parse_whitelist(raw_whitelist) ⇒ Object
• #run ⇒ Object
• #show_error_message(message) ⇒ Object
• #show_result_message ⇒ Object
• #validate! ⇒ Object
• #validate_dependencies(podspec, whitelist, parentName = nil) ⇒ Object

  Checks the dependencies the project contains are in the whitelist.

Constructor Details

#initialize(argv) ⇒ Whitelist

Returns a new instance of Whitelist.

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 33

def initialize(argv)
  @whitelist_url = argv ? argv.option('config', DEFAULT_WHITELIST_URL) : DEFAULT_WHITELIST_URL
  @pospec_path = argv ? argv.option('podspec') : nil
  @fail_on_error = argv ? argv.flag?('fail-on-error') : false
  @failure = false
  super
end

Class Method Details

.options ⇒ Object

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 26

def self.options
  [ ['--config=CONFIG', 'Config file or URL for the blacklist'],
    ['--podspec=PODSPEC', 'Podspec file to be lint'],
    ['--fail-on-error', 'Raise an exception in case of error']
  ].concat(super)
end

Instance Method Details

#get_podspec_specifications ⇒ Object

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 129

def get_podspec_specifications
  if @pospec_path
    return [Pod::Specification.from_file(@pospec_path)]
  end

  # Search .podspec in current directory
  podspecs = Dir.glob("./*.podspec")

  if podspecs.count == 0
    # Search .podspec in parent directory.
    # Some projects has Podfile into a subdirectory ("Example"), and run "pod install" from there.
    podspecs = Dir.glob("../*.podspec")
  end

  return podspecs.map { |path|  Pod::Specification.from_file(path) }
end

#get_whitelist ⇒ Object

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 110

def get_whitelist
  begin
    open(@whitelist_url) { |io|
      buffer = io.read
      parse_whitelist(buffer)
    }
  rescue OpenURI::HTTPError => e
    status = e.io.status.join(' ')
    raise "Failed to fetch whitelist from '#{@whitelist_url}'.\n Error: #{status}"
  end
end

#parse_whitelist(raw_whitelist) ⇒ Object

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 122

def parse_whitelist(raw_whitelist)
  json = JSON.parse(raw_whitelist)
  return json["whitelist"].map { |dependencyJson|
    AllowedDependency.new(dependencyJson["name"], dependencyJson["version"])
  }
end

#run ⇒ Object

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 45

def run
  whitelist = get_whitelist
  specifications = get_podspec_specifications

  if specifications.empty?
      UI.puts "No Podspec found".yellow
      return
  end

  specifications.map do |specification|
    validate_dependencies(JSON.parse(specification.to_json), whitelist)
  end

  show_result_message
end

#show_error_message(message) ⇒ Object

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 146

def show_error_message(message)
  if @fail_on_error
    UI.puts message.red
  else
    UI.puts message.yellow
  end
end

#show_result_message ⇒ Object

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 61

def show_result_message
  return unless @failure
  message = "Please check your dependencies.\nYou can see the allowed dependencies at #{@whitelist_url}"
  if @fail_on_error
    raise Informative.new(message)
  else
    UI.puts message.yellow
  end
end

#validate! ⇒ Object

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 41

def validate!
  help! "A whitelist file or URL is needed." unless @whitelist_url
end

#validate_dependencies(podspec, whitelist, parentName = nil) ⇒ Object

Checks the dependencies the project contains are in the whitelist

# File 'lib/cocoapods-whitelist/command/whitelist.rb', line 72

def validate_dependencies(podspec, whitelist, parentName = nil)
  pod_name = parentName ? "#{parentName}/#{podspec['name']}" : podspec['name']
  UI.puts "Verifying dependencies in #{pod_name}"

  dependencies = podspec["dependencies"] ? podspec["dependencies"] : []
  not_allowed = []

  dependencies.each do |name, versions|
    # Skip subspec dependency
    next if parentName && name.start_with?("#{parentName}/")

    allowedDependency = whitelist.select { |item|
       name == item.name && (versions.empty? || !item.version || versions.grep(/#{item.version}/).any?)
    }

    if allowedDependency.empty?
      not_allowed.push("#{name} (#{versions.join(", ")})")
      next
    end
  end

  if not_allowed.any?
    severity = @fail_on_error ? "Error" : "Warning"
    show_error_message(" #{severity}: Found dependencies not allowed:")
    not_allowed.each {|dependency| show_error_message("  - #{dependency}")}
    @failure = true
  else
    UI.puts " OK".green
  end

  # Validate subspecs dependencies
  if podspec["subspecs"]
    podspec["subspecs"].each do |subspec|
      validate_dependencies(subspec, whitelist, pod_name)
    end
  end
end