File: pkgjs-audit

package info (click to toggle)
pkg-js-tools 0.15.23
  • links: PTS, VCS
  • area: main
  • in suites: trixie
  • size: 1,980 kB
  • sloc: perl: 4,921; sh: 842; makefile: 36; javascript: 22
file content (109 lines) | stat: -rwxr-xr-x 2,116 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
 
#!/bin/bash

set -e

function usage()
{
cat <<EOF
Usage:
pkgjs-audit <installed-module>
# OR #
pkgjs-audit -s <module> <version>

Unless -s option is used, pkgjs-audit searches for a pkgjs-lock.json file, if
not found, it builds a temporary package-lock.json file using
(dev)dependencies.
Then it launches a "npm audit" using these files. This permits one to check
vulnerabilities in case of bundled package.

If <module> is given, pkgjs-audit uses installed module, else it launch audit
using current directory.

Options:
 -s: just query npmjs.org registry with a module name and its version

Copyright (C) Yadd <yadd@debian.org>

Licensed under GPL-2+ (see /usr/share/common-licenses/GPL-2)
EOF
}
function version()
{
echo `perl -MDebian::PkgJs::Version -e 'print $VERSION'`
}

if test "$1" = "--version"; then
	version
	exit
fi
PKGONLY=0
while getopts 'vhs' opt; do
	case $opt in
		h)
			usage
			exit
			;;
		v)
			version
			exit
			;;
		s)
			PKGONLY=1
			;;
		*)
			echo "Unknown option $opt" >&2
			exit 1
			;;
	esac
done
shift $((OPTIND-1))

PKG="$1"

if [ "$PKGONLY" == "1" ]; then
	VER="$2"
	if [ "$VER" == "" ]; then
		echo "Missing version" >&2
		usage
		exit 1
	fi
	perl -MDebian::PkgJs::SimpleAudit -e "print advisories('$PKG','$VER')";
	exit
fi
DIR=`mktemp -d`
if test "$PKG" != ""; then
	NPATH=`nodepath $PKG || true`
	if test "$NPATH" = ""; then
		echo "$PKG not found" >&2
		exit 1
	fi
else
	if test -e package.json -o -e package.yaml; then
		NPATH='.'
	else
		echo "Not in a module directory" >&2
		exit 1
	fi
fi
if test -e "$NPATH/pkgjs-lock.json"; then
	cp "$NPATH/pkgjs-lock.json" "$DIR/package-lock.json"
	cp "$NPATH"/package.* "$DIR/"
else
	echo "No pkgjs-lock found, generate it"
	cp "$NPATH"/package.* "$DIR/"
	RET=`cd "$DIR"; perl -MDebian::PkgJs::PackageLock -e 'exit not buildPackageLock(".","package-lock.json")' || echo NOPKGLOCK`
fi
(
	cd $DIR;
	echo "# Testing package"
	perl -MDebian::PkgJs::SimpleAudit -e 'print advisories(".")';
	echo
	echo "# Testing dependencies"
	if [ "$RET" == "NOPKGLOCK" ]; then
		echo "No dependencies found";
		exit
	fi
	npm audit
)
rm -rf "$DIR"
exit