gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-22 15:16:33 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
e79e73d636d6fc08b05dd22ec3d7dd7c1a028458
trivy/pkg/commands/clean/run.go
Teppei Fukuda 672e886aed fix(cli): clean --all deletes only relevant dirs (#7704) 
Signed-off-by: knqyf263 <knqyf263@gmail.com>
2024-10-10 11:02:06 +00:00

116 lines
3.1 KiB
Go
Raw Blame History

package clean
import (
"context"
"golang.org/x/xerrors"
"github.com/aquasecurity/trivy/pkg/cache"
"github.com/aquasecurity/trivy/pkg/db"
"github.com/aquasecurity/trivy/pkg/flag"
"github.com/aquasecurity/trivy/pkg/javadb"
"github.com/aquasecurity/trivy/pkg/log"
"github.com/aquasecurity/trivy/pkg/policy"
"github.com/aquasecurity/trivy/pkg/vex/repo"
)
func Run(ctx context.Context, opts flag.Options) error {
ctx, cancel := context.WithTimeout(ctx, opts.Timeout)
defer cancel()
if !opts.CleanAll && !opts.CleanScanCache && !opts.CleanVulnerabilityDB && !opts.CleanJavaDB &&
!opts.CleanChecksBundle && !opts.CleanVEXRepositories {
return xerrors.New("no clean option is specified")
}
if opts.CleanAll {
opts.CleanScanCache = true
opts.CleanVulnerabilityDB = true
opts.CleanJavaDB = true
opts.CleanChecksBundle = true
opts.CleanVEXRepositories = true
}
if opts.CleanScanCache {
if err := cleanScanCache(ctx, opts); err != nil {
return xerrors.Errorf("failed to remove scan cache : %w", err)
}
}
if opts.CleanVulnerabilityDB {
if err := cleanVulnerabilityDB(ctx, opts); err != nil {
return xerrors.Errorf("vuln db clean error: %w", err)
}
}
if opts.CleanJavaDB {
if err := cleanJavaDB(ctx, opts); err != nil {
return xerrors.Errorf("java db clean error: %w", err)
}
}
if opts.CleanChecksBundle {
if err := cleanCheckBundle(opts); err != nil {
return xerrors.Errorf("check bundle clean error: %w", err)
}
}
if opts.CleanVEXRepositories {
if err := cleanVEXRepositories(opts); err != nil {
return xerrors.Errorf("VEX repositories clean error: %w", err)
}
}
return nil
}
func cleanScanCache(ctx context.Context, opts flag.Options) error {
log.InfoContext(ctx, "Removing scan cache...")
c, cleanup, err := cache.New(opts.CacheOpts())
if err != nil {
return xerrors.Errorf("failed to instantiate cache client: %w", err)
}
defer cleanup()
if err = c.Clear(); err != nil {
return xerrors.Errorf("clear scan cache: %w", err)
}
return nil
}
func cleanVulnerabilityDB(ctx context.Context, opts flag.Options) error {
log.InfoContext(ctx, "Removing vulnerability database...")
if err := db.NewClient(db.Dir(opts.CacheDir), true).Clear(ctx); err != nil {
return xerrors.Errorf("clear vulnerability database: %w", err)
}
return nil
}
func cleanJavaDB(ctx context.Context, opts flag.Options) error {
log.InfoContext(ctx, "Removing Java database...")
if err := javadb.Clear(ctx, opts.CacheDir); err != nil {
return xerrors.Errorf("clear Java database: %w", err)
}
return nil
}
func cleanCheckBundle(opts flag.Options) error {
log.Info("Removing check bundle...")
c, err := policy.NewClient(opts.CacheDir, true, opts.MisconfOptions.ChecksBundleRepository)
if err != nil {
return xerrors.Errorf("failed to instantiate check client: %w", err)
}
if err := c.Clear(); err != nil {
return xerrors.Errorf("clear check bundle: %w", err)
}
return nil
}
func cleanVEXRepositories(opts flag.Options) error {
log.Info("Removing VEX repositories...")
if err := repo.NewManager(opts.CacheDir).Clear(); err != nil {
return xerrors.Errorf("clear VEX repositories: %w", err)
}
return nil
}
Reference in New Issue View Git Blame Copy Permalink