UNPKG

dependency-guardian

Version:

A powerful dependency management and analysis tool for Node.js projects

github.com/1oridevs/Dep-Guard

1oridevs/Dep-Guard

100 lines (82 loc) 2.55 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
const axios = require('axios'); const logger = require('../utils/logger'); const cache = require('../utils/cache'); class LicenseChecker { constructor() { this.cache = cache; this.spdxLicenses = null; } async init() { if (!this.spdxLicenses) { await this.loadSPDXLicenses(); } } async loadSPDXLicenses() { const cacheKey = 'spdx-licenses'; const cached = this.cache.get(cacheKey); if (cached) { this.spdxLicenses = cached; return; } try { const response = await axios.get('https://raw.githubusercontent.com/spdx/license-list-data/master/json/licenses.json'); this.spdxLicenses = response.data.licenses.reduce((acc, license) => { acc[license.licenseId] = license; return acc; }, {}); this.cache.set(cacheKey, this.spdxLicenses, 86400); // Cache for 24 hours } catch (error) { logger.error('Failed to load SPDX licenses:', error); this.spdxLicenses = {}; } } async checkLicense(packageName, version) { const cacheKey = `license-${packageName}@${version}`; const cached = this.cache.get(cacheKey); if (cached) { return cached; } try { const response = await axios.get(`https://registry.npmjs.org/${packageName}/${version}`); const license = response.data.license; const result = await this.validateLicense(license); this.cache.set(cacheKey, result); return result; } catch (error) { logger.debug(`Failed to check license for ${packageName}:`, error); return { name: 'UNKNOWN', valid: false, url: null }; } } async validateLicense(license) { await this.init(); if (!license) { return { name: 'UNLICENSED', valid: false, url: null }; } // Handle license objects if (typeof license === 'object') { license = license.type || 'UNKNOWN'; } const spdxLicense = this.spdxLicenses[license]; return { name: license, valid: !!spdxLicense, url: spdxLicense ? spdxLicense.reference : null }; } async isLicenseAllowed(license, allowedLicenses) { if (!license || !allowedLicenses) { return false; } const validation = await this.validateLicense(license); return validation.valid && allowedLicenses.includes(validation.name); } } module.exports = new LicenseChecker();