 8319c8f9b9
			
		
	
	
		8319c8f9b9
		
			
		
	
	
	
	
		
			
			- This was failing but only in CI because the annotations require "errors" and "warnings" hash elements. Since formulae have this despite formulae not having warnings (probably for compatibility with casks), I decided to reinstate `errors` and `warnings` hash for Casks _right at the end_ and we can clean this up another time (famous last words).
		
			
				
	
	
		
			111 lines
		
	
	
		
			3.4 KiB
		
	
	
	
		
			Ruby
		
	
	
	
	
	
			
		
		
	
	
			111 lines
		
	
	
		
			3.4 KiB
		
	
	
	
		
			Ruby
		
	
	
	
	
	
| # typed: false
 | |
| # frozen_string_literal: true
 | |
| 
 | |
| require "utils/github/actions"
 | |
| 
 | |
| module Cask
 | |
|   class Cmd
 | |
|     # Cask implementation of the `brew audit` command.
 | |
|     #
 | |
|     # @api private
 | |
|     class Audit < AbstractCommand
 | |
|       extend T::Sig
 | |
| 
 | |
|       def self.parser
 | |
|         super do
 | |
|           switch "--[no-]download",
 | |
|                  description: "Audit the downloaded file"
 | |
|           switch "--[no-]appcast",
 | |
|                  description: "Audit the appcast",
 | |
|                  replacement: false
 | |
|           switch "--[no-]token-conflicts",
 | |
|                  description: "Audit for token conflicts"
 | |
|           switch "--[no-]signing",
 | |
|                  description: "Audit for signed apps, which is required on ARM"
 | |
|           switch "--[no-]strict",
 | |
|                  description: "Run additional, stricter style checks"
 | |
|           switch "--[no-]online",
 | |
|                  description: "Run additional, slower style checks that require a network connection"
 | |
|           switch "--new-cask",
 | |
|                  description: "Run various additional style checks to determine if a new cask is eligible " \
 | |
|                               "for Homebrew. This should be used when creating new casks and implies " \
 | |
|                               "`--strict` and `--online`"
 | |
|         end
 | |
|       end
 | |
| 
 | |
|       sig { void }
 | |
|       def run
 | |
|         casks = args.named.flat_map do |name|
 | |
|           next name if File.exist?(name)
 | |
|           next Tap.fetch(name).cask_files if name.count("/") == 1
 | |
| 
 | |
|           name
 | |
|         end
 | |
|         casks = casks.map { |c| CaskLoader.load(c, config: Config.from_args(args)) }
 | |
|         any_named_args = casks.any?
 | |
|         casks = Cask.to_a if casks.empty?
 | |
| 
 | |
|         results = self.class.audit_casks(
 | |
|           *casks,
 | |
|           download:        args.download?,
 | |
|           online:          args.online?,
 | |
|           strict:          args.strict?,
 | |
|           signing:         args.signing?,
 | |
|           new_cask:        args.new_cask?,
 | |
|           token_conflicts: args.token_conflicts?,
 | |
|           quarantine:      args.quarantine?,
 | |
|           any_named_args:  any_named_args,
 | |
|           language:        args.language,
 | |
|           only:            [],
 | |
|           except:          [],
 | |
|         )
 | |
| 
 | |
|         failed_casks = results.reject { |_, result| result[:errors].empty? }.map(&:first)
 | |
|         return if failed_casks.empty?
 | |
| 
 | |
|         raise CaskError, "audit failed for casks: #{failed_casks.join(" ")}"
 | |
|       end
 | |
| 
 | |
|       def self.audit_casks(
 | |
|         *casks,
 | |
|         download:,
 | |
|         online:,
 | |
|         strict:,
 | |
|         signing:,
 | |
|         new_cask:,
 | |
|         token_conflicts:,
 | |
|         quarantine:,
 | |
|         any_named_args:,
 | |
|         language:,
 | |
|         only:,
 | |
|         except:
 | |
|       )
 | |
|         options = {
 | |
|           audit_download:        download,
 | |
|           audit_online:          online,
 | |
|           audit_strict:          strict,
 | |
|           audit_signing:         signing,
 | |
|           audit_new_cask:        new_cask,
 | |
|           audit_token_conflicts: token_conflicts,
 | |
|           quarantine:            quarantine,
 | |
|           language:              language,
 | |
|           any_named_args:        any_named_args,
 | |
|           only:                  only,
 | |
|           except:                except,
 | |
|         }.compact
 | |
| 
 | |
|         options[:quarantine] = true if options[:quarantine].nil?
 | |
| 
 | |
|         Homebrew.auditing = true
 | |
| 
 | |
|         require "cask/auditor"
 | |
| 
 | |
|         casks.to_h do |cask|
 | |
|           odebug "Auditing Cask #{cask}"
 | |
|           [cask.sourcefile_path, { errors: Auditor.audit(cask, **options), warnings: [] }]
 | |
|         end
 | |
|       end
 | |
|     end
 | |
|   end
 | |
| end
 |