name.remal.gradle_plugins.toolkit.build_logic.github-submit-dependencies.gradle Maven / Gradle / Ivy
import static java.nio.charset.StandardCharsets.UTF_8
import groovy.json.JsonGenerator
import groovy.json.JsonOutput
import groovy.transform.EqualsAndHashCode
import groovy.transform.TupleConstructor
import java.net.http.HttpRequest
allprojects {
pluginManager.withPlugin('java') {
project.apply plugin: 'reporting-base'
Task githubSubmitDependencies = tasks.create('githubSubmitDependencies') { Task task ->
task.group = 'documentation'
SetProperty lazyDependenciesToSubmitSet = project.objects.setProperty(DependencyToSubmit.class)
task.ext.dependenciesToSubmit = lazyDependenciesToSubmitSet
task.inputs.property('dependenciesToSubmit', lazyDependenciesToSubmitSet)
File reportFile = project.file("${project.reporting.baseDir}/${task.name}.json")
task.ext.reportFile = reportFile
task.outputs.file(reportFile).withPropertyName('reportFile')
doFirst { reportFile.delete() }
Closure nullIfEmpty = { String string ->
return string != null && string.isEmpty() ? null : string
}
Closure nullIfJar = { String string ->
return string != null && string == 'jar' ? null : string
}
Closure isExcludedCategory = { ResolvedDependencyResult resolvedDependency ->
return isPlatformDependency(resolvedDependency) || isDocumentationDependency(resolvedDependency) || isVerificationDependency(resolvedDependency)
}
Collection configurationsNotToTrack = [
'excludeFromClassesRelocation',
'excludeFromForcedClassesRelocation',
]
Closure processConfiguration = { Configuration conf, boolean isBuildscript = false ->
lazyDependenciesToSubmitSet.addAll(
provider {
if (configurationsNotToTrack.contains(conf.name)) {
return []
}
if (!conf.canSafelyBeResolved()) return []
Collection resolvedArtifacts = conf.resolvedConfiguration.resolvedArtifacts
Set result = [].toSet()
Closure processResolvedDependency = {
ResolvedDependencyResult resolvedDependency,
DependencyToSubmitScope scope,
DependencyToSubmitRelationship relationship ->
ModuleComponentIdentifier id = resolvedDependency.selected.id.with { id ->
if (id instanceof ModuleComponentIdentifier) {
return id
} else {
return null
}
}
if (id == null) return
if (isPlatformDependency(resolvedDependency)) {
result.add(
new DependencyToSubmit(
nullIfEmpty(id.group),
nullIfEmpty(id.module),
nullIfEmpty(id.version),
null,
null,
scope,
relationship
)
)
} else {
Collection dependencyArtifacts = resolvedArtifacts.findAll { it.id.componentIdentifier == id }
dependencyArtifacts.forEach { dependencyArtifact ->
result.add(
new DependencyToSubmit(
nullIfEmpty(id.group),
nullIfEmpty(id.module),
nullIfEmpty(id.version),
nullIfEmpty(dependencyArtifact.classifier),
nullIfEmpty(nullIfJar(dependencyArtifact.extension)),
scope,
relationship
)
)
}
}
}
DependencyToSubmitScope scope = DependencyToSubmitScope.DEVELOPMENT
if (isBuildscript) {
// do nothing
} else if (['runtimeClasspath', 'relocateClasses'].contains(conf.name)) {
scope = DependencyToSubmitScope.RUNTIME
}
conf.incoming.resolutionResult
.root
.dependencies
.collect { (DependencyResult) it }
.findAll { !it.constraint }
.findAll { it instanceof ResolvedDependencyResult }
.collect { (ResolvedDependencyResult) it }
.findAll { !isExcludedCategory(it) }
.forEach { processResolvedDependency(it, scope, DependencyToSubmitRelationship.DIRECT) }
conf.incoming.resolutionResult
.allDependencies
.collect { (DependencyResult) it }
.findAll { !it.constraint }
.findAll { it instanceof ResolvedDependencyResult }
.collect { (ResolvedDependencyResult) it }
.findAll { !isExcludedCategory(it) }
.findAll { !it.selected.selectionReason.expected }
.forEach { processResolvedDependency(it, scope, DependencyToSubmitRelationship.INDIRECT) }
return result
}
)
}
project.buildscript.configurations.all { processConfiguration(it, true) }
project.configurations.all { processConfiguration(it) }
ListProperty lazyDependenciesToSubmit = project.objects.listProperty(DependencyToSubmit.class)
lazyDependenciesToSubmit.set(
provider {
lazyDependenciesToSubmitSet.get()
.findAll { it.version != null && !it.version.isEmpty() }
.toSorted()
.groupBy { it.toString() }
.values()
.toList()
.collect { it.get(0) }
}
)
JsonGenerator jsonGenerator = new JsonGenerator.Options()
.excludeNulls()
.excludeFieldsByName('contentHash', 'originalClassName')
.build()
doLast {
Closure encodeUrlPart = { String string ->
if (string == null) return ''
return URLEncoder.encode(string, UTF_8)
.replace("+", "%20")
.replace("*", "%2A")
.replace("%7E", "~");
}
Map resolved = [:]
lazyDependenciesToSubmit.get().forEach { DependencyToSubmit dep ->
String packageUrl = "pkg:maven/${encodeUrlPart(dep.group)}/${encodeUrlPart(dep.name)}@${encodeUrlPart(dep.version)}"
if (dep.classifier) {
if (!packageUrl.contains('?')) {
packageUrl += '?'
} else {
packageUrl += '&'
}
packageUrl += "packaging=${encodeUrlPart(dep.classifier)}"
}
resolved.put(
dep.toString(),
[
package_url: packageUrl,
relationship: dep.relationship?.name()?.toLowerCase(),
scope: dep.scope?.name()?.toLowerCase(),
]
)
}
Map manifests = [:]
manifests.put(
rootProject.relativePath(project.buildFile),
[
name: rootProject.relativePath(project.buildFile),
file: [
source_location: rootProject.relativePath(project.buildFile),
],
resolved: resolved,
]
)
String runId = [
'github-actions-run',
project.property('github-actions-run-id'),
project.property('github-actions-run-attempt'),
project.property('github-actions-job'),
project.property('github-actions-job-index'),
].collect { it ?: '' }.join('-')
Map requestBody = [
version: System.currentTimeMillis(),
job: [
id: runId,
correlator: project.path,
],
sha: project.property('git-sha'),
ref: project.property('git-ref'),
detector: [
name: 'name.remal.gradle-plugins.toolkit',
version: '0.68.0',
url: 'https://github.com/remal-gradle-plugins/toolkit',
],
manifests: manifests,
scanned: new Date(),
]
String jsonContent = jsonGenerator.toJson(requestBody)
reportFile.parentFile.mkdirs()
reportFile.setText(JsonOutput.prettyPrint(jsonContent), 'UTF-8')
Map responseJson = project.sendGitHubRestApiRequest(
"dependency-graph/snapshots",
'POST',
HttpRequest.BodyPublishers.ofString(jsonContent, UTF_8)
)
if (responseJson.message) {
println responseJson.message
} else {
println responseBodyJson
}
}
}
if (project.isBuildSrcProject) {
if (gradle.startParameter.taskNames.contains(githubSubmitDependencies.name)
|| (gradle.parent && gradle.parent.startParameter.taskNames.contains(githubSubmitDependencies.name))
) {
project.rootProject.tasks.named('build') {
dependsOn(githubSubmitDependencies)
}
}
}
}
}
@TupleConstructor
@EqualsAndHashCode
class DependencyToSubmit implements Serializable, Comparable {
String group
String name
String version
String classifier
String type
DependencyToSubmitScope scope
DependencyToSubmitRelationship relationship
String toString() {
String group = this.group ?: ''
String name = this.name ?: ''
String version = this.version ?: ''
String classifier = this.classifier ?: ''
String type = this.type ?: ''
return "$group:$name:$version:$classifier@$type"
.replaceFirst(/:?@(jar)?$/, '')
}
private static final Comparator scopeComparator = Comparator.nullsLast(Comparator.naturalOrder())
private static final Comparator relationshipComparator = Comparator.nullsLast(Comparator.naturalOrder())
@Override
int compareTo(DependencyToSubmit other) {
int result = toString() <=> other.toString()
if (result == 0) result = scopeComparator.compare(scope, other.scope)
if (result == 0) result = relationshipComparator.compare(relationship, other.relationship)
return result
}
}
enum DependencyToSubmitScope {
RUNTIME,
DEVELOPMENT,
}
enum DependencyToSubmitRelationship {
DIRECT,
INDIRECT,
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy