Skip to content
This repository was archived by the owner on Sep 9, 2020. It is now read-only.

Warn on use of abbreviated sha1 commit hash #582

Closed
wants to merge 5 commits into from
Closed

Warn on use of abbreviated sha1 commit hash #582

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
5ef510e
Warn on use of abbreviated sha1 commit hash
zknill May 15, 2017
57a79c5
Update to accept valid bzr revision-id
zknill May 15, 2017
a26329b
Update variable naming and fix typo in comment
zknill May 16, 2017
aff9370
Regex improvements and reuse
zknill May 18, 2017
6099d48
Update to use raw string in regex
zknill May 18, 2017
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 15 additions & 1 deletion manifest.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,9 +6,11 @@ package dep

import (
"bytes"
"encoding/hex"
"fmt"
"io"
"reflect"
"regexp"
"sort"

"github.com/golang/dep/internal/gps"
Expand Down Expand Up @@ -50,6 +52,7 @@ func validateManifest(s string) ([]error, error) {
// Convert tree to a map
manifest := tree.ToMap()

bzrRevID := regexp.MustCompile(`.*-\d{14}-[a-z0-9]{16}`)
// Look for unknown fields and collect errors
for prop, val := range manifest {
switch prop {
Expand All @@ -67,8 +70,19 @@ func validateManifest(s string) ([]error, error) {
for key, value := range v.(map[string]interface{}) {
// Check if the key is valid
switch key {
case "name", "branch", "revision", "version", "source":
case "name", "branch", "version", "source":
// valid key
case "revision":
if valueStr, ok := value.(string); ok {
// Check if sha1 hash is abbreviated
_, err = hex.DecodeString(valueStr)
if err != nil || len(valueStr) != 40 {
// Check for valid bzr revision-id
if !bzrRevID.MatchString(valueStr) {
errs = append(errs, fmt.Errorf("revision %q should not be in abbreviated form", valueStr))
}
}
}
case "metadata":
// Check if metadata is of Map type
if reflect.TypeOf(value).Kind() != reflect.Map {
Expand Down
34 changes: 33 additions & 1 deletion manifest_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -206,9 +206,41 @@ func TestValidateManifest(t *testing.T) {
`,
want: []error{},
},
{
tomlString: `
[[dependencies]]
name = "github.com/foo/bar"
revision = "b86ad16"
`,
want: []error{errors.New("revision \"b86ad16\" should not be in abbreviated form")},
},
{
tomlString: `
[[dependencies]]
name = "github.com/foo/bar"
revision = "867f832e"
`,
want: []error{errors.New("revision \"867f832e\" should not be in abbreviated form")},
},
{
tomlString: `
[[dependencies]]
name = "bazaar.foobar.com/~bzr/trunk"
revision = "foo@bar.com-12345-wiuilyamo9ian0m7"
`,
want: []error{errors.New("revision \"foo@bar.com-12345-wiuilyamo9ian0m7\" should not be in abbreviated form")},
},
{
tomlString: `
[[dependencies]]
name = "bazaar.foobar.com/~bzr/trunk"
revision = "foo@bar.com-20161116211307-wiuilyamo9ian0m7"
`,
want: []error{},
},
}

// constains for error
// contains for error
contains := func(s []error, e error) bool {
for _, a := range s {
if a.Error() == e.Error() {
Expand Down