Version 2.8.0 (#74)

* chore: project - update README

Add more badges

Signed-off-by: Pierre-Yves Lapersonne <[email protected]>

* #68] [Feature] Split dry-run scripts into modules #71

Signed-off-by: Pierre-Yves Lapersonne <[email protected]>

* [#70] [Change] Project - Update copyright #72

Signed-off-by: Pierre-Yves Lapersonne <[email protected]>

* [#69] [Doc] Improve README #73 

Signed-off-by: Pierre-Yves Lapersonne <[email protected]>

---------

Signed-off-by: Pierre-Yves Lapersonne <[email protected]>

Author: pylapp

CHANGELOG.md

@@ -1,16 +1,33 @@
 # CHANGELOG
 
+## Version 2.8.0
+
+### Features
+
+- [#68](https://github.com/Orange-OpenSource/floss-toolbox/issues/68) Project - Split dry run
+
+### Changes
+
+- [#70](https://github.com/Orange-OpenSource/floss-toolbox/issues/70) Project - Update copyright
+- [#69](https://github.com/Orange-OpenSource/floss-toolbox/issues/69) Project - Improve README
+
+## Version 2.7.1
+
+### Changes
+
+- [#63](https://github.com/Orange-OpenSource/floss-toolbox/issues/63) Add missing files
+
 ## Version 2.7.0
 
 ### Features
 
-- [#2](https://github.com/Orange-OpenSource/floss-toolbox/issues/2)  Package manager - Extract from files downloaded dependencies
+- [#2](https://github.com/Orange-OpenSource/floss-toolbox/issues/2) Package manager - Extract from files downloaded dependencies
 
 ## Version 2.6.0
 
 ### Features
 
-- [#57](https://github.com/Orange-OpenSource/floss-toolbox/issues/57)  Look for leaks and vulnerabilities with exclusion of projects
+- [#57](https://github.com/Orange-OpenSource/floss-toolbox/issues/57) Look for leaks and vulnerabilities with exclusion of projects
 
 ## Version 2.5.0
 

README.md

@@ -3,6 +3,10 @@
 [![Versions](https://img.shields.io/github/v/release/Orange-OpenSource/floss-toolbox?label=Last%20version&style=for-the-badge)](https://github.com/Orange-OpenSource/floss-toolbox/releases)
 [![Still maintained](https://img.shields.io/maintenance/yes/2023?style=for-the-badge)](https://github.com/Orange-OpenSource/floss-toolbox/issues?q=is%3Aissue+is%3Aclosed)
 
+[![Shell](https://img.shields.io/badge/-Shell-89e051?style=for-the-badge)](https://github.com/Orange-OpenSource/floss-toolbox/search?l=shell)
+[![Python](https://img.shields.io/badge/-Python-3572A5?style=for-the-badge)](https://github.com/Orange-OpenSource/floss-toolbox/search?l=python)
+[![Ruby](https://img.shields.io/badge/-Ruby-701516?style=for-the-badge)](https://github.com/Orange-OpenSource/floss-toolbox/search?l=ruby)
+
 # FLOSS Toolbox
 
 Toolbox to help developers and open source referents to have cleaner projects in _GitHub_ organizations, and more.
@@ -34,6 +38,64 @@ To be sure you have a ready-to-run project, you can run the dry-run command:
 bash dry-run.sh
 ```
 
+Table of Contents
+=================
+   * [The diver of source code and commits](#the-diver-of-source-code-and-commits)
+      * [Input file](#file-of-words)
+      * [Features](#features)
+         * [Find contributors in files](#find-contributors-in-files)
+         * [Find contributors in Git log](#find-contributors-in-git-log)
+         * [Find credentials in sources](#find-credentials-in-sources)
+         * [Find missing signed-off fields](#find-credentials-in-sources)
+         * [Find credits](#find-credits)
+         * [List conributors from Git history](#list-contributors-from-git-history)
+		 * [Extract email adress from Git history](#extract-email-address-from-git-history)
+    * [Play with GitHub web API](#play-with-github-web-api)
+      * [Prerequisites](#prerequisites)
+      * [Prepare project](#prepare-project)
+      * [Third party elements](#third-party-elements)
+      * [Features](#features-1)
+         * [Display usages](#display-usage)
+         * [Get all members of organization](#get-all-members-of-organization)
+         * [Get members of organization with 2FA disabled](#get-members-of-organization-with-2fa-disabled)
+         * [Get members of organization with "company" field undefined](#get-members-of-organization-with-company-field-undefined)
+         * [Get projects which don't have any assigned team](#get-projects-which-dont-have-any-assigned-team)
+         * [Get users which have undefined or hidden email](#get-users-which-have-undefined-or-hidden-email)
+         * [Get users which may have not suitable fullname](#get-users-which-maye-have-not-suitable-fullname)
+         * [Get repositories with undefined licenses](#get-repositories-with-undefined-licenses)
+         * [Get repositories which seems to be unconform (i.e. missing files)](#get-repositories-which-seems-to-be-unconform-ie-missing-files)
+         * [Get repositories which seems to be empty or have not enough files](#get-repositories-which-seems-to-be-empty-or-have-not-enough-files)
+         * [Define users permissions for all projects to "push"](#define-users-permissions-for-all-projects-to-push)
+         * [Define teams permissions for all projects to "push"](#define-teams-permissions-for-all-projects-to-push)
+    * [Play with GitHub CLI (GH)](#play-with-github-cli-gh)
+      * [Prerequisites](#prerequisites-1)
+      * [Prepare project](#prepare-project-1)
+      * [Third party elements](#third-party-elements-1)
+      * [Features](#features-2)
+         * [Make a backup of organization repositories](#make-a-backup-of-organization-repositories)
+         * [Check if there are vulnerabilities alerts in organisation repositories](#check-if-there-are-vulnerabilities-alerts-in-organisation-repositories)
+         * [Check if there are leaks in organisation repositories (using gitleaks)](#check-if-there-are-leaks-in-organisation-repositories-using-gitleaks)			
+    * [Play with GitLab web API](#play-with-gitlab-web-api)
+      * [Prerequisites](#prerequisites-2)
+      * [Prepare projects](#prepare-project-2)									
+      * [Features](#features-3)			
+	     * [Make a backup of organization repositories](#make-a-backup-of-organization-repositories-1)			
+	     * [Check if there are leaks in organisation repositories (using gitleaks)](#check-if-there-are-leaks-in-organisation-repositories-using-gitleaks-1)			
+    * [Licenses inventory](#licenses-inventory)			
+	  * [Disclaimer](#disclaimer)			
+	  * [Prerequisites](#prerequisites-3)			
+	  * [Fill the configuration file](#fill-the-configuration-file)			
+	  * [Run the tool](#run-the-tool)
+	  * [Run the tests](#run-the-tests)
+	  * [Managed platforms and environments](#managed-platforms)
+	     * [Go with go.mod](#go-language)
+	     * [Gradle with build.gradle(.kts)](#gradle-environment)
+	     * [Rust with Cargo.lock](#rust-environment)		 
+	     * [JavaScript / Node.js with package.json](#javascriptnodejs-environment)
+	     * [Swift with Package.swift](#swift--spm-environment)
+	     * [Dart / Flutter with pubspec.yaml](#dart--flutter-environment)		 		 		 
+   * [Notes](#notes)
+
 # The "diver" of source code and commits
 
 ## File of words
@@ -404,7 +466,7 @@ Then the Shell script will pick configuration details from the Ruby configuratio
 
 The Python code will process JSON data, the Shell script will previously make a CURL request to to GraphQL API.
 
-You need to define in the _configuration.rb_ files the Github organisation at **GITHUB_ORGANIZATION_NAME** and also your GitHub personal token at ** GITHUB_PERSONAL_ACCESS_TOKEN**.
+You need to define in the _configuration.rb_ files the Github organisation at **GITHUB_ORGANIZATION_NAME** and also your GitHub personal token at **GITHUB_PERSONAL_ACCESS_TOKEN**.
 
 **You should also have your _git_ environment ready i.e. add your SSH private key if you clone by SSH for example. _gh_ must be installed, and python3 be ready.**
 
@@ -430,7 +492,7 @@ The [gitleaks](https://github.com/zricethezav/gitleaks) tool will be used to loo
 brew install gitleaks
 ```
 
-You need to define in the _configuration.rb_ files the Github organisation at **GITHUB_ORGANIZATION_NAME** and also your GitHub personal token at ** GITHUB_PERSONAL_ACCESS_TOKEN**.
+You need to define in the _configuration.rb_ files the Github organisation at **GITHUB_ORGANIZATION_NAME** and also your GitHub personal token at **GITHUB_PERSONAL_ACCESS_TOKEN**.
 
 **You should also have your _git_ environment ready i.e. add your SSH private key if you clone by SSH for example. _gh_ must be installed, and _python3_ be ready. Obviously _gitleaks_ must be installed**
 

toolbox/LicensesInventory/dry-run.sh

@@ -0,0 +1,203 @@
+#!/bin/bash
+# Software Name: floss-toolbox
+# SPDX-FileCopyrightText: Copyright (c) 2020-2023 Orange
+# SPDX-License-Identifier: Apache-2.0
+#
+# This software is distributed under the Apache 2.0 license.
+#
+# Author: Pierre-Yves LAPERSONNE <pierreyves(dot)lapersonne(at)orange(dot)com> et al.
+
+# Since...............: 10/03/2023
+# Description.........: Make a dry-run of the LicensesIventory module to check if everything is ready to use
+# Version.............: 1.0.0
+
+set -eu
+
+# Couts
+# -----
+
+NUMBER_OF_CHECKS=0
+NUMBER_OF_SUCCESS=0
+NUMBER_OF_WARNINGS=0
+NUMBER_OF_ERRORS=0
+
+# Utils
+# -----
+
+# $1 - File name to test
+CheckIfFileExists(){
+    if [ ! -f "$1" ]; then
+        echo "⛔  ERROR: The file '$1' does not exist"
+        NUMBER_OF_ERRORS=$((NUMBER_OF_ERRORS+1))
+    else
+        echo "✅  Cool! The file '$1' exists"
+        NUMBER_OF_SUCCESS=$((NUMBER_OF_SUCCESS+1))
+    fi
+    NUMBER_OF_CHECKS=$((NUMBER_OF_CHECKS+1))
+}
+
+# $1 - FiDirectory name to test
+CheckIfDirectoryExists(){
+    if [ ! -d "$1" ]; then
+        echo "⛔  ERROR: The directory '$1' does not exist"
+        NUMBER_OF_ERRORS=$((NUMBER_OF_ERRORS+1))        
+    else
+        echo "✅  Cool! The directory '$1' exists"    
+        NUMBER_OF_SUCCESS=$((NUMBER_OF_SUCCESS+1))  
+    fi
+    NUMBER_OF_CHECKS=$((NUMBER_OF_CHECKS+1))
+}
+
+# $1 - Runtime name
+# $2 - Command to check runtime
+# $3 - Expected / suggested version
+CheckIfRuntimeExists(){
+    runtime_version=`$2`
+    if [ $? != "0" ]; then # Exist status != 0 so runtime version check failed ; we assume the runtime is missing
+        echo "❌  WARNING: It seems '$1' is not ready"
+        NUMBER_OF_ERRORS=$((NUMBER_OF_ERRORS+1))        
+    else 
+        echo "✅  Cool! '$1' is available"
+        echo -e "\t🔎  You should check if the version is at least '$3'"
+        NUMBER_OF_SUCCESS=$((NUMBER_OF_SUCCESS+1))
+    fi
+    NUMBER_OF_CHECKS=$((NUMBER_OF_CHECKS+1))
+}
+
+# $1 - Ruby configuration file
+# $2 - Key to test
+CheckIfConfigurationKeyDefined(){
+    CONFIG_KEY=`cat $1 | grep $2 | cut -d= -f2 | tr -d '"' | sed 's/ //g'`
+    if [ "$CONFIG_KEY" == "" ]; then
+        echo "❔  WARNING: It seems '$2' is not defined in $1"
+        NUMBER_OF_WARNINGS=$((NUMBER_OF_WARNINGS+1))
+    else
+        echo "✅  Cool! '$2' is defined"
+        NUMBER_OF_SUCCESS=$((NUMBER_OF_SUCCESS+1))
+    fi
+    NUMBER_OF_CHECKS=$((NUMBER_OF_CHECKS+1))
+}
+
+# $1 - The name of the Python module to test
+CheckIfPythonModuleInstalled(){
+    if [ "$#" -ne 1 ]; then
+        echo "❌  WARNING: It seems '$1' is not ready"
+        NUMBER_OF_ERRORS=$((NUMBER_OF_ERRORS+1))  
+    else
+        python3 -c "import $1"
+        result=$?
+        if [ $result == "0" ]; then
+            echo "✅  Cool! Python module '$1' is available"
+            NUMBER_OF_SUCCESS=$((NUMBER_OF_SUCCESS+1))
+        else
+            echo "❌  WARNING: It seems Python modyle '$1' is not installed"
+            NUMBER_OF_ERRORS=$((NUMBER_OF_ERRORS+1))  
+        fi
+    fi
+    NUMBER_OF_CHECKS=$((NUMBER_OF_CHECKS+1))
+}
+# Licenses Inventory tool
+# -----------------------
+
+echo -e "\n------------------------------------------"
+echo "Assertions for the Licenses Inventory tool"
+echo "------------------------------------------"
+
+echo -e "\nCheck if main folders exist..."
+CheckIfDirectoryExists "./sources"
+CheckIfDirectoryExists "./tests"
+
+echo -e "\nCheck sources files..."
+CheckIfFileExists "./sources/common/__init__.py"
+CheckIfFileExists "./sources/common/datas.py"
+CheckIfFileExists "./sources/common/files.py"
+CheckIfFileExists "./sources/common/filters.py"
+CheckIfFileExists "./sources/common/names.py"
+CheckIfFileExists "./sources/configuration/__init__.py"
+CheckIfFileExists "./sources/configuration/config.py"
+CheckIfFileExists "./sources/dependencies/__init__.py"
+CheckIfFileExists "./sources/dependencies/dependencies.py"
+CheckIfFileExists "./sources/dependencies/parsings.py"
+CheckIfFileExists "./sources/search/__init__.py"
+CheckIfFileExists "./sources/search/downloads.py"
+CheckIfFileExists "./sources/search/parsings.py"
+CheckIfFileExists "./sources/search/search.py"
+CheckIfFileExists "./sources/__init__.py"
+CheckIfFileExists "./sources/main.py"
+CheckIfFileExists "./config.ini"
+
+echo -e "\nCheck integration test files..."
+CheckIfFileExists "./tests/integrationtests/data/gradle/dependency_github.gradle"
+CheckIfFileExists "./tests/integrationtests/data/gradle/dependency_maven_central.gradle"
+CheckIfFileExists "./tests/integrationtests/data/gradle/license_github.json"
+CheckIfFileExists "./tests/integrationtests/data/gradle/license_maven_central.pom"
+CheckIfFileExists "./tests/integrationtests/data/gradle/version_maven_central.json"
+CheckIfFileExists "./tests/integrationtests/data/package_json/license_package_json.html"
+CheckIfFileExists "./tests/integrationtests/data/package_json/package.json"
+CheckIfFileExists "./tests/integrationtests/data/roast/Cargo.lock"
+CheckIfFileExists "./tests/integrationtests/data/config.ini"
+CheckIfFileExists "./tests/integrationtests/test_search.py"
+
+echo -e "\nCheck unit test files..."
+CheckIfFileExists "./tests/unittests/data/config/config_no_data.ini"
+CheckIfFileExists "./tests/unittests/data/config/config.ini"
+CheckIfFileExists "./tests/unittests/data/get_content_by_name/my_gradle_file.txt"
+CheckIfFileExists "./tests/unittests/data/get_content_by_name/package.json"
+CheckIfFileExists "./tests/unittests/data/gradle/license_github.json"
+CheckIfFileExists "./tests/unittests/data/gradle/license_maven_central.pom"
+CheckIfFileExists "./tests/unittests/data/gradle/version.json"
+CheckIfFileExists "./tests/unittests/data/package_json/license_package_json.html"
+CheckIfFileExists "./tests/unittests/data/roast/license_roast.json"
+CheckIfFileExists "./tests/unittests/data/dependency_a.txt"
+CheckIfFileExists "./tests/unittests/data/dependency_b.txt"
+CheckIfFileExists "./tests/unittests/data/filename_by_name.test"
+CheckIfFileExists "./tests/unittests/data/files_read.txt"
+CheckIfFileExists "./tests/unittests/test_config.py"
+CheckIfFileExists "./tests/unittests/test_dependency.py"
+CheckIfFileExists "./tests/unittests/test_files_check_the_directory.py"
+CheckIfFileExists "./tests/unittests/test_files_get_the_filenames_by_name.py"
+CheckIfFileExists "./tests/unittests/test_files_write_and_read.py"
+CheckIfFileExists "./tests/unittests/test_filter.py"
+CheckIfFileExists "./tests/unittests/test_parsing_download.py"
+CheckIfFileExists "./tests/unittests/test_parsing.py"
+
+# Runtimes and tools
+# ------------------
+
+echo -e "\n-----------------------"
+echo "Assertions for runtimes"
+echo "-----------------------"
+
+echo -e "\nCheck for Python3..."
+CheckIfRuntimeExists "Python3" "python3 --version" "3.8.5"
+
+echo -e "\nCheck for Python modules"
+CheckIfPythonModuleInstalled "requests"
+CheckIfPythonModuleInstalled "xmltodict"
+CheckIfPythonModuleInstalled "pytest"
+
+# Units tests
+# -----------
+
+echo -e "\n----------------------------------"
+echo "Run of LicensesInventory unit test"
+echo "----------------------------------"
+
+echo -e "\nRunning integration tests..."
+python3 -m pytest ./tests/integrationtests/*.py
+
+echo -e "\nRunning unit tests..."
+python3 -m pytest ./tests/unittests/*.py
+
+# Conclusion
+# ----------
+
+echo -e "\n----------"
+echo "Conclusion"
+echo "----------"
+
+echo -e "\nDry-run done! See the logs above to check all points controls."
+echo -e "\tNumber of controls.......: $NUMBER_OF_CHECKS"
+echo -e "\tNumber of success........: $NUMBER_OF_SUCCESS"
+echo -e "\tNumber of warnings.......: $NUMBER_OF_WARNINGS"
+echo -e "\tNumber of errors.........: $NUMBER_OF_ERRORS"

toolbox/LicensesInventory/sources/__init__.py

@@ -1,7 +1,7 @@
 #!/usr/bin/env python3
 # -*- coding: utf-8 -*-
 # Software Name: floss-toolbox
-# SPDX-FileCopyrightText: Copyright (c) 2023 Orange
+# SPDX-FileCopyrightText: Copyright (c) 2020-2023 Orange
 # SPDX-License-Identifier: Apache-2.0
 #
 # This software is distributed under the Apache 2.0 license.

toolbox/LicensesInventory/sources/common/__init__.py

@@ -1,7 +1,7 @@
 #!/usr/bin/env python3
 # -*- coding: utf-8 -*-
 # Software Name: floss-toolbox
-# SPDX-FileCopyrightText: Copyright (c) 2023 Orange
+# SPDX-FileCopyrightText: Copyright (c) 2020-2023 Orange
 # SPDX-License-Identifier: Apache-2.0
 #
 # This software is distributed under the Apache 2.0 license.

toolbox/LicensesInventory/sources/common/datas.py

@@ -1,7 +1,7 @@
 #!/usr/bin/env python3
 # -*- coding: utf-8 -*-
 # Software Name: floss-toolbox
-# SPDX-FileCopyrightText: Copyright (c) 2023 Orange
+# SPDX-FileCopyrightText: Copyright (c) 2020-2023 Orange
 # SPDX-License-Identifier: Apache-2.0
 #
 # This software is distributed under the Apache 2.0 license.

toolbox/LicensesInventory/sources/common/files.py

@@ -1,7 +1,7 @@
 #!/usr/bin/env python3
 # -*- coding: utf-8 -*-
 # Software Name: floss-toolbox
-# SPDX-FileCopyrightText: Copyright (c) 2023 Orange
+# SPDX-FileCopyrightText: Copyright (c) 2020-2023 Orange
 # SPDX-License-Identifier: Apache-2.0
 #
 # This software is distributed under the Apache 2.0 license.

toolbox/LicensesInventory/sources/common/names.py

@@ -1,7 +1,7 @@
 #!/usr/bin/env python3
 # -*- coding: utf-8 -*-
 # Software Name: floss-toolbox
-# SPDX-FileCopyrightText: Copyright (c) 2023 Orange
+# SPDX-FileCopyrightText: Copyright (c) 2020-2023 Orange
 # SPDX-License-Identifier: Apache-2.0
 #
 # This software is distributed under the Apache 2.0 license.

toolbox/LicensesInventory/sources/configuration/__init__.py

@@ -1,7 +1,7 @@
 #!/usr/bin/env python3
 # -*- coding: utf-8 -*-
 # Software Name: floss-toolbox
-# SPDX-FileCopyrightText: Copyright (c) 2023 Orange
+# SPDX-FileCopyrightText: Copyright (c) 2020-2023 Orange
 # SPDX-License-Identifier: Apache-2.0
 #
 # This software is distributed under the Apache 2.0 license.

toolbox/LicensesInventory/sources/configuration/config.py

@@ -1,7 +1,7 @@
 #!/usr/bin/env python3
 # -*- coding: utf-8 -*-
 # Software Name: floss-toolbox
-# SPDX-FileCopyrightText: Copyright (c) 2023 Orange
+# SPDX-FileCopyrightText: Copyright (c) 2020-2023 Orange
 # SPDX-License-Identifier: Apache-2.0
 #
 # This software is distributed under the Apache 2.0 license.