mirror of
https://github.com/aquasecurity/trivy.git
synced 2025-12-23 15:37:50 -08:00
6fd4c8951f
Co-authored-by: aprp <doelaudi@gmail.com> Co-authored-by: rahul2393 <rahulyadavsep92@gmail.com>
69 lines
1.4 KiB
Go
69 lines
1.4 KiB
Go
package remote
|
|
|
|
import (
|
|
"io/ioutil"
|
|
"net/url"
|
|
"os"
|
|
|
|
"golang.org/x/xerrors"
|
|
|
|
git "github.com/go-git/go-git/v5"
|
|
|
|
"github.com/aquasecurity/fanal/analyzer"
|
|
"github.com/aquasecurity/fanal/analyzer/config"
|
|
"github.com/aquasecurity/fanal/artifact"
|
|
"github.com/aquasecurity/fanal/artifact/local"
|
|
"github.com/aquasecurity/fanal/cache"
|
|
)
|
|
|
|
func NewArtifact(rawurl string, c cache.ArtifactCache, disabled []analyzer.Type, opt config.ScannerOption) (
|
|
artifact.Artifact, func(), error) {
|
|
cleanup := func() {}
|
|
|
|
u, err := newURL(rawurl)
|
|
if err != nil {
|
|
return nil, cleanup, err
|
|
}
|
|
|
|
tmpDir, err := ioutil.TempDir("", "fanal-remote")
|
|
if err != nil {
|
|
return nil, cleanup, err
|
|
}
|
|
|
|
_, err = git.PlainClone(tmpDir, false, &git.CloneOptions{
|
|
URL: u.String(),
|
|
Progress: os.Stdout,
|
|
Depth: 1,
|
|
})
|
|
if err != nil {
|
|
return nil, cleanup, xerrors.Errorf("git error: %w", err)
|
|
}
|
|
|
|
cleanup = func() {
|
|
_ = os.RemoveAll(tmpDir)
|
|
}
|
|
|
|
// JAR/WAR/EAR doesn't need to be analyzed in git repositories.
|
|
disabled = append(disabled, analyzer.TypeJar)
|
|
|
|
art, err := local.NewArtifact(tmpDir, c, disabled, opt)
|
|
if err != nil {
|
|
return nil, cleanup, xerrors.Errorf("fs artifact: %w", err)
|
|
}
|
|
return art, cleanup, nil
|
|
}
|
|
|
|
func newURL(rawurl string) (*url.URL, error) {
|
|
u, err := url.Parse(rawurl)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
// "https://" can be omitted
|
|
// e.g. github.com/aquasecurity/fanal
|
|
if u.Scheme == "" {
|
|
u.Scheme = "https"
|
|
}
|
|
|
|
return u, nil
|
|
}
|