1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
|
# --
# Copyright (C) 2001-2021 OTRS AG, https://otrs.com/
# --
# This software comes with ABSOLUTELY NO WARRANTY. For details, see
# the enclosed file COPYING for license information (GPL). If you
# did not receive this file, see https://www.gnu.org/licenses/gpl-3.0.txt.
# --
package Kernel::System::Console::Command::Dev::Code::CPANAudit;
use strict;
use warnings;
use CPAN::Audit;
use File::Basename;
use FindBin qw($Bin);
use parent qw(Kernel::System::Console::BaseCommand);
our @ObjectDependencies = ();
sub Configure {
my ( $Self, %Param ) = @_;
$Self->Description('Scan CPAN dependencies in Kernel/cpan-lib and in the system for known vulnerabilities.');
return;
}
sub Run {
my ( $Self, %Param ) = @_;
my $Audit = CPAN::Audit->new(
no_color => 1,
no_corelist => 0,
ascii => 0,
verbose => 0,
quiet => 0,
interactive => 0,
);
my @PathsToScan;
# We need to pass an explicit list of paths to be scanned by CPAN::Audit, otherwise it will fallback to @INC which
# includes our complete tree, with article storage, cache, temp files, etc. It can result in a downgraded
# performance if this command is run often.
# Please see bug#14666 for more information.
PATH:
for my $Path (@INC) {
next PATH if $Path && $Path eq '.'; # Current folder
next PATH if $Path && $Path eq dirname($Bin); # OTRS home folder
next PATH if $Path && $Path eq dirname($Bin) . '/Custom'; # Custom folder
push @PathsToScan, $Path;
}
# Workaround for CPAN::Audit::Installed. It does not use the passed param(s), but @ARGV instead.
local @ARGV = @PathsToScan;
return $Audit->command('installed') == 0 ? $Self->ExitCodeOk() : $Self->ExitCodeError();
}
1;
|
