/
pnpm-auditer.ts
122 lines (112 loc) · 3.36 KB
/
pnpm-auditer.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
import type { PNPMAuditReport } from "audit-types";
import { blue, yellow } from "./colors";
import { reportAudit, runProgram } from "./common";
import type { AuditCiConfig } from "./config";
import Model, { type Summary } from "./model";
async function runPnpmAudit(
config: AuditCiConfig
): Promise<PNPMAuditReport.AuditResponse> {
const {
directory,
registry,
_pnpm,
"skip-dev": skipDevelopmentDependencies,
} = config;
const pnpmExec = _pnpm || "pnpm";
let stdoutBuffer: any = {};
function outListener(data: any) {
stdoutBuffer = { ...stdoutBuffer, ...data };
}
const stderrBuffer: any[] = [];
function errorListener(line: any) {
stderrBuffer.push(line);
}
const arguments_ = ["audit", "--json"];
if (registry) {
console.warn(yellow, "PNPM audit does not support the registry flag yet.");
}
if (skipDevelopmentDependencies) {
arguments_.push("--prod");
}
const options = { cwd: directory };
await runProgram(pnpmExec, arguments_, options, outListener, errorListener);
if (stderrBuffer.length > 0) {
throw new Error(
`Invocation of pnpm audit failed:\n${stderrBuffer.join("\n")}`
);
}
return stdoutBuffer;
}
function printReport(
parsedOutput: PNPMAuditReport.Audit,
levels: AuditCiConfig["levels"],
reportType: "full" | "important" | "summary",
outputFormat: "text" | "json"
) {
const printReportObject = (text, object) => {
if (outputFormat === "text") {
console.log(blue, text);
}
console.log(JSON.stringify(object, undefined, 2));
};
switch (reportType) {
case "full":
printReportObject("PNPM audit report JSON:", parsedOutput);
break;
case "important": {
const { advisories, metadata } = parsedOutput;
const relevantAdvisoryLevels = Object.keys(advisories).filter(
(advisory) => levels[advisories[advisory].severity]
);
const relevantAdvisories = {};
for (const advisory of relevantAdvisoryLevels) {
relevantAdvisories[advisory] = advisories[advisory];
}
const keyFindings = {
advisories: relevantAdvisories,
metadata: metadata,
};
printReportObject("PNPM audit report results:", keyFindings);
break;
}
case "summary":
printReportObject("PNPM audit report summary:", parsedOutput.metadata);
break;
default:
throw new Error(
`Invalid report type: ${reportType}. Should be \`['important', 'full', 'summary']\`.`
);
}
}
export function report(
parsedOutput: PNPMAuditReport.Audit,
config: AuditCiConfig,
reporter: (
summary: Summary,
config: AuditCiConfig,
audit?: PNPMAuditReport.Audit
) => Summary
) {
const {
levels,
"report-type": reportType,
"output-format": outputFormat,
} = config;
printReport(parsedOutput, levels, reportType, outputFormat);
const model = new Model(config);
const summary = model.load(parsedOutput);
return reporter(summary, config, parsedOutput);
}
/**
* Audit your PNPM project!
*
* @returns Returns the audit report summary on resolve, `Error` on rejection.
*/
export async function audit(config: AuditCiConfig, reporter = reportAudit) {
const parsedOutput = await runPnpmAudit(config);
if ("error" in parsedOutput) {
const { code, summary } = parsedOutput.error;
throw new Error(`code ${code}: ${summary}`);
}
return report(parsedOutput, config, reporter);
}