Documentation
¶
Overview ¶
Package packageslockjson extracts packages.lock.json files.
Index ¶
- Constants
- type Extractor
- func (e Extractor) Extract(ctx context.Context, input *extractor.ScanInput) ([]*extractor.Inventory, error)
- func (e Extractor) FileRequired(path string, mode fs.FileMode) bool
- func (e Extractor) Name() string
- func (e Extractor) ToCPEs(i *extractor.Inventory) ([]string, error)
- func (e Extractor) ToPURL(i *extractor.Inventory) (*purl.PackageURL, error)
- func (e Extractor) Version() int
- type PackageInfo
- type PackagesLockJSON
Constants ¶
View Source
const (
// Name is the unique name of this extractor.
Name = "dotnet/packageslockjson"
)
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Extractor ¶
type Extractor struct{}
Extractor extracts packages from inside a packages.lock.json.
func (Extractor) Extract ¶
func (e Extractor) Extract(ctx context.Context, input *extractor.ScanInput) ([]*extractor.Inventory, error)
Extract returns a list of dependencies in a packages.lock.json file.
func (Extractor) FileRequired ¶
FileRequired returns true if the specified file is marked executable.
func (Extractor) ToCPEs ¶
ToCPEs is not applicable as this extractor does not infer CPEs from the Inventory.
type PackageInfo ¶
type PackageInfo struct {
// Resolved is the resolved version for this dependency.
Resolved string `json:"resolved"`
Dependencies map[string]string `json:"dependencies"`
}
PackageInfo represents a single package's info, including its resolved version, and its dependencies
type PackagesLockJSON ¶
type PackagesLockJSON struct {
Dependencies map[string]map[string]PackageInfo `json:"dependencies"`
}
PackagesLockJSON represents the `packages.lock.json` file generated from running `dotnet restore --use-lock-file`. The schema path we care about is: "dependencies" -> target framework moniker -> package name -> package info
Source Files
Click to show internal directories.
Click to hide internal directories.