safedep/vet
1
0
Fork 0
mirror of https://github.com/safedep/vet.git synced 2025-12-11 01:01:10 -06:00
Code Issues Packages Projects Releases 68 Wiki Activity
vet/pkg/parser/terraform.go

57 lines
1.5 KiB
Go
Raw Blame History

package parser
import (
"fmt"
"github.com/hashicorp/hcl/v2/hclparse"
"github.com/hashicorp/hcl/v2/hclsyntax"
"github.com/safedep/vet/pkg/common/logger"
"github.com/safedep/vet/pkg/models"
)
func parseTerraformLockfile(path string, config *ParserConfig) (*models.PackageManifest, error) {
parser := hclparse.NewParser()
hclFile, diags := parser.ParseHCLFile(path)
if diags.HasErrors() {
return nil, fmt.Errorf("failed to parse lockfile: %v", diags)
}
body, ok := hclFile.Body.(*hclsyntax.Body)
if !ok {
return nil, fmt.Errorf("failed to assert body as hclsyntax.Body")
}
manifest := models.NewPackageManifestFromLocal(path, models.EcosystemTerraform)
for _, block := range body.Blocks {
if block.Type != "provider" {
continue
}
if len(block.Labels) == 0 {
logger.Warnf("Terraform parser: provider block has no labels")
continue
}
providerName := block.Labels[0] // The provider name is the first label
providerVersion := "0.0.0"
if versionAttr, exists := block.Body.Attributes["version"]; exists {
versionVal, diags := versionAttr.Expr.Value(nil)
if diags.HasErrors() {
return nil, fmt.Errorf("failed to extract version: %v", diags)
}
providerVersion = versionVal.AsString()
}
pkgdetails := models.NewPackageDetail(models.EcosystemTerraform, providerName, providerVersion)
packageModel := models.Package{
PackageDetails: pkgdetails,
Depth: 0,
}
manifest.AddPackage(&packageModel)
}
return manifest, nil
}
Reference in New Issue View Git Blame Copy Permalink