snyk-nodejs-lockfile-parser
Version:
Generate a dep tree given a lockfile
90 lines • 4.04 kB
JavaScript
;
Object.defineProperty(exports, "__esModule", { value: true });
exports.getChildNode = exports.parsePkgJson = exports.getGraphDependencies = exports.getTopLevelDeps = exports.addPkgNodeToGraph = void 0;
const errors_1 = require("../errors");
const errors_2 = require("../errors");
const parsers_1 = require("../parsers");
const addPkgNodeToGraph = (depGraphBuilder, node, options) => {
return depGraphBuilder.addPkgNode({ name: node.name, version: node.version }, node.id, {
labels: Object.assign(Object.assign(Object.assign({ scope: node.isDev ? 'dev' : 'prod' }, (options.isCyclic && { pruned: 'cyclic' })), (options.isWorkspacePkg && { pruned: 'true' })), (node.missingLockFileEntry && { missingLockFileEntry: 'true' })),
});
};
exports.addPkgNodeToGraph = addPkgNodeToGraph;
/**
* Get top level dependencies from the given package json object which is parsed from a package.json file.
* This includes both prod dependencies and dev dependencies supposing includeDevDeps is supported.
*/
const getTopLevelDeps = (pkgJson, options) => {
const prodDeps = (0, exports.getGraphDependencies)(pkgJson.dependencies || {}, false);
const devDeps = options.includeDevDeps
? (0, exports.getGraphDependencies)(pkgJson.devDependencies || {}, true)
: {};
const optionalDeps = options.includeOptionalDeps
? (0, exports.getGraphDependencies)(pkgJson.optionalDependencies || {}, false)
: {};
const peerDeps = options.includePeerDeps
? (0, exports.getGraphDependencies)(pkgJson.peerDependencies || {}, false)
: {};
return Object.assign(Object.assign(Object.assign(Object.assign({}, prodDeps), devDeps), optionalDeps), peerDeps);
};
exports.getTopLevelDeps = getTopLevelDeps;
/**
* Converts dependencies parsed from the a lock file to a dependencies object required by the graph.
* For example, { 'mime-db': '~1.12.0' } will be converted to { 'mime-db': { version: '~1.12.0', isDev: true/false } }.
*/
const getGraphDependencies = (dependencies, isDev) => {
return Object.entries(dependencies).reduce((pnpmDeps, [name, semver]) => {
pnpmDeps[name] = { version: semver, isDev: isDev };
return pnpmDeps;
}, {});
};
exports.getGraphDependencies = getGraphDependencies;
function parsePkgJson(pkgJsonContent) {
try {
const parsedPkgJson = JSON.parse(pkgJsonContent);
if (!parsedPkgJson.name) {
parsedPkgJson.name = 'package.json';
}
return parsedPkgJson;
}
catch (e) {
throw new errors_1.InvalidUserInputError('package.json parsing failed with error ' + e.message);
}
}
exports.parsePkgJson = parsePkgJson;
const getChildNode = (name, depInfo, pkgs, strictOutOfSync, includeOptionalDeps) => {
const childNodeKey = `${name}@${depInfo.version}`;
let childNode;
if (!pkgs[childNodeKey]) {
if (strictOutOfSync && !/^file:/.test(depInfo.version)) {
throw new errors_2.OutOfSyncError(childNodeKey, parsers_1.LockfileType.yarn);
}
else {
childNode = {
id: childNodeKey,
name: name,
version: depInfo.version,
dependencies: {},
isDev: depInfo.isDev,
missingLockFileEntry: true,
};
}
}
else {
const depData = pkgs[childNodeKey];
const dependencies = (0, exports.getGraphDependencies)(depData.dependencies || {}, depInfo.isDev);
const optionalDependencies = includeOptionalDeps
? (0, exports.getGraphDependencies)(depData.optionalDependencies || {}, depInfo.isDev)
: {};
childNode = {
id: `${name}@${depData.version}`,
name: name,
version: depData.version,
dependencies: Object.assign(Object.assign({}, dependencies), optionalDependencies),
isDev: depInfo.isDev,
};
}
return childNode;
};
exports.getChildNode = getChildNode;
//# sourceMappingURL=util.js.map