org.openrewrite.gradle.security.UseHttpsForRepositories Maven / Gradle / Ivy
/*
* Copyright 2022 the original author or authors.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* https://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.openrewrite.gradle.security;
import org.openrewrite.ExecutionContext;
import org.openrewrite.Recipe;
import org.openrewrite.TreeVisitor;
import org.openrewrite.gradle.util.ChangeStringLiteral;
import org.openrewrite.groovy.GroovyVisitor;
import org.openrewrite.groovy.tree.G;
import org.openrewrite.internal.ListUtils;
import org.openrewrite.java.MethodMatcher;
import org.openrewrite.java.search.UsesMethod;
import org.openrewrite.java.tree.J;
import java.time.Duration;
import java.util.Collections;
import java.util.Set;
public class UseHttpsForRepositories extends Recipe {
private static final MethodMatcher REPO_URL = new MethodMatcher("MavenArtifactRepositorySpec url(..)");
@Override
public String getDisplayName() {
return "Use HTTPS for repositories";
}
@Override
public String getDescription() {
return "Use HTTPS for repository urls";
}
@Override
public Set getTags() {
return Collections.singleton("security");
}
@Override
public Duration getEstimatedEffortPerOccurrence() {
return Duration.ofMinutes(5);
}
@Override
protected TreeVisitor, ExecutionContext> getSingleSourceApplicableTest() {
return new UsesMethod<>(REPO_URL);
}
@Override
public GroovyVisitor getVisitor() {
return new GroovyVisitor() {
private J.Literal fixupLiteralIfNeeded(J.Literal arg) {
String url = (String) arg.getValue();
//noinspection HttpUrlsUsage
if (url != null && url.startsWith("http://")) {
String newUrl = url.replaceAll("^http://(.*)", "https://$1");
return ChangeStringLiteral.withStringValue(arg, newUrl);
}
return arg;
}
@Override
public J visitMethodInvocation(J.MethodInvocation method, ExecutionContext ctx) {
J.MethodInvocation m = (J.MethodInvocation) super.visitMethodInvocation(method, ctx);
if (REPO_URL.matches(method)) {
m = m.withArguments(ListUtils.mapFirst(m.getArguments(), arg -> {
if (arg instanceof J.Literal) {
return fixupLiteralIfNeeded((J.Literal) arg);
} else if (arg instanceof G.GString) {
G.GString garg = (G.GString) arg;
return garg.withStrings(ListUtils.mapFirst(garg.getStrings(),
lit -> lit instanceof J.Literal ? fixupLiteralIfNeeded((J.Literal) lit) : lit));
}
return arg;
}));
}
return m;
}
};
}
}