UNPKG

check-licenses

Version:

Check the licenses for the packages that you are using

github.com/franciscop/check-licenses

franciscop/check-licenses

165 lines (139 loc) 5.29 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
#!/usr/bin/env node import { exists, list, read, swear } from "files"; import meow from "meow"; import chalk from "chalk"; import { fileURLToPath } from "node:url"; import licenses from "./src/licenses.js"; import checkNodeVersion from "./src/checkNodeVersion.js"; import findDependencies from "./src/findDependencies.js"; const cli = meow( ` A simple tool to check all the licenses in your dependencies: $ npx check-licenses $ npx check-licenses --list $ npx --yes check-licenses # CI, automated Options --list, -l Show a list of all of the dependencies instead of the summary Examples $ npx check-licenses MIT ————————————————— 1328 ISC ————————————————— 113 CC0-1.0 ————————————— 36 BSD-3-Clause ———————— 36 Apache-2.0 —————————— 5 BSD-2-Clause ———————— 3 Zlib ———————————————— 1 CC-BY-3.0 ——————————— 1 GPL-2.0 ————————————— 1 $ npx check-licenses --list ... test-exclude@5.2.3 ———————————— ISC text-table@0.2.0 —————————————— MIT textarea-caret@3.0.2 —————————— MIT throat@4.1.0 —————————————————— MIT through@2.3.8 ————————————————— Apache-2.0 + MIT through2@2.0.5 ———————————————— MIT thunky@1.1.0 —————————————————— MIT timers-browserify@2.0.11 —————— MIT ... # Grab all of the GPL licenses $ npx check-licenses --list | grep GPL `, { importMeta: import.meta, flags: { list: { type: "boolean", alias: "l", default: false } }, } ); const unique = (value, index, self) => self.indexOf(value) === index; const pkgLicense = (pkg) => { let license = pkg.licenses || pkg.license || []; // { type: 'MIT' } => 'MIT' if (license.type) { license = license.type; } // Convert any kind of license to an array of licenses if (Array.isArray(license)) { // [{ type: 'MIT' }, 'ISC'] => ['MIT', 'ISC'] license = license.filter(Boolean).map((lic) => lic.type || lic); // ['MIT', 'ISC'] => 'MIT OR ISC' license = license.join(" OR "); } // '(MIT OR ISC)' => 'MIT OR ISC' license = license.replace(/\(/g, "").replace(/\)/g, ""); return license .split(/\W+(?:OR|AND)\W+/gi) // https://stackoverflow.com/q/21419530/938236 .filter(Boolean) .filter(unique); }; const fileLicense = async (pkg) => { const licFile = await list(pkg.path) // .map((file) => file.replace(process.cwd() + "/", "")) .find((file) => /licen(s|c)e/i.test(file.split("/").pop())); if (!licFile) return []; const text = await read(licFile); const found = licenses.find((lic) => lic.regex.test(text)); if (found) return [found.identifier]; return []; }; (async () => { checkNodeVersion("12.17.0"); // Find all the required dependencies const packages = await findDependencies(process.cwd()); if (!packages.length) { return console.log("No production dependencies! 🥳"); } const pkgs = await swear(packages).map(async (pkg) => { if (pkg.missing) { return { ...pkg, all: ["missing"] }; } const pkgSrc = pkg.path + "/package.json"; // Can find a package.json const info = await read(pkgSrc).then((data) => JSON.parse(data)); // We have a better name to display if we find the package.json: // console.log(pkg, info); pkg.name = info.name; pkg.version = info.version; pkg.package = pkgLicense(info); pkg.file = await fileLicense(pkg); pkg.all = [...pkg.package, ...pkg.file].filter(unique).sort(); return pkg; }); if (cli.flags.list) { pkgs .map((pkg) => { const title = pkg.id.length >= 39 ? pkg.id.slice(0, 38) + "…" : pkg.id; const dots = chalk.gray(title.padEnd(40, "—").replace(title, "")); let licenses = pkg.all.join(chalk.bold.magenta(" + ")); if (licenses === "missing") { licenses = chalk.gray("missing"); } return `${title} ${dots} ${licenses}`; }) .map((line) => console.log(line)); } else { Object.entries( pkgs .map((pkg) => pkg.all) .flat() .reduce((all, name) => ({ ...all, [name]: (all[name] || 0) + 1 }), {}) ) .sort((p1, p2) => p2[1] - p1[1]) .forEach(([key, value]) => { let title = key.length >= 19 ? key.slice(0, 18) + "…" : key; const dots = chalk.gray(title.padEnd(20, "—").replace(title, "")); const licenses = value; if (title === "missing") { title = chalk.dim("missing"); } console.log(`${title} ${dots} ${licenses}`); }); } const missingOptional = pkgs.filter((pkg) => pkg.missing).length; if (missingOptional) { console.warn( chalk`\n{yellow Warning}: missing package.json from {bold.italic ${missingOptional} optional} packages` ); } })().catch((error) => { console.log(chalk`{red.bold Error:} ${error.message.trim()}`); });