UNPKG

@cyclonedx/cdxgen

Version:

Creates CycloneDX Software Bill of Materials (SBOM) from source or container image

github.com/cyclonedx/cdxgen

CycloneDX/cdxgen

53 lines (51 loc) 1.61 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
function buildNSCache(components) { const typePurlsCache = {}; for (const comp of components) { if (!comp.purl || !comp.properties) { continue; } const nsProps = comp.properties.filter((p) => p.name === "Namespaces"); if (nsProps.length) { const nsList = nsProps[0].value?.split("\n"); for (const ns of nsList) { const sns = ns.split("$")[0]; if (!typePurlsCache[sns]) { typePurlsCache[sns] = new Set(); } typePurlsCache[sns].add(comp.purl); } } } return typePurlsCache; } export function findPurlLocations(components, semanticsSlice) { const purlLocationsSet = {}; if (!semanticsSlice || !Object.keys(semanticsSlice).length) { return {}; } const typePurlsCache = buildNSCache(components); for (const key of Object.keys(semanticsSlice)) { if (key === "config" || !key.endsWith(".scala")) { continue; } const values = semanticsSlice[key]; const usedTypes = values?.usedTypes || []; for (const t of usedTypes) { const simpleType = t.split("$")[0]; const matchPurls = typePurlsCache[simpleType]; if (matchPurls) { for (const apurl of Array.from(matchPurls)) { if (!purlLocationsSet[apurl]) { purlLocationsSet[apurl] = new Set(); } purlLocationsSet[apurl].add(values.sourceFile || key); } } } } const purlLocationMap = {}; for (const apurl of Object.keys(purlLocationsSet)) { purlLocationMap[apurl] = Array.from(purlLocationsSet[apurl]).sort(); } return { purlLocationMap }; }