From 1cf254085379f61a5e253d9cd60e931fdd8e80fb Mon Sep 17 00:00:00 2001 From: Phill Date: Mon, 9 Dec 2024 10:33:08 +0000 Subject: [PATCH] feat: dep-graph json output file When both `--print-deps` and `--json-file-output` are being used produce a depGraph object in the resulting JSON file. Does not attempt to fix any existing `--json` output formats to reduce the potential of breaking changes. This allows CLI users to see the dependency graph that was resolved by the plugin code and scanned. --- src/lib/snyk-test/legacy.ts | 5 +++ .../acceptance/cli-json-file-output.spec.ts | 42 +++++++++++++++++++ 2 files changed, 47 insertions(+) diff --git a/src/lib/snyk-test/legacy.ts b/src/lib/snyk-test/legacy.ts index e82b587f44..c0c36ae97e 100644 --- a/src/lib/snyk-test/legacy.ts +++ b/src/lib/snyk-test/legacy.ts @@ -165,6 +165,7 @@ export interface LegacyVulnApiResult extends BasicResultData { filesystemPolicy?: boolean; uniqueCount?: any; remediation?: RemediationChanges; + depGraph?: depGraphLib.DepGraphData; } export interface BaseImageRemediation { @@ -452,6 +453,10 @@ function convertTestDepGraphResultToLegacy( remediation: result.remediation, }; + if (options['print-deps'] && options['json-file-output']) { + legacyRes.depGraph = depGraph.toJSON(); + } + return legacyRes; } diff --git a/test/jest/acceptance/cli-json-file-output.spec.ts b/test/jest/acceptance/cli-json-file-output.spec.ts index ec01fa175b..5c0b5ef9d8 100644 --- a/test/jest/acceptance/cli-json-file-output.spec.ts +++ b/test/jest/acceptance/cli-json-file-output.spec.ts @@ -4,6 +4,7 @@ import { createProjectFromWorkspace } from '../util/createProject'; import { runSnykCLI } from '../util/runSnykCLI'; import { humanFileSize } from '../../utils'; import { getServerPort } from '../util/getServerPort'; +import * as depGraphLib from '@snyk/dep-graph'; jest.setTimeout(1000 * 60); @@ -112,4 +113,45 @@ describe('test --json-file-output', () => { expect(fileExists).toBeFalsy(); expect(code).toEqual(0); }); + + describe('print-deps and json-file-output', () => { + it('saves JSON output to file with depGraph when --print-deps and --json-file-output are being used', async () => { + const project = await createProjectFromWorkspace('maven-app'); + const outputPath = 'json-file-output.json'; + + const { code } = await runSnykCLI( + `test --print-deps --json-file-output=${outputPath}`, + { + cwd: project.path(), + env, + }, + ); + + expect(code).toEqual(0); + const json = await project.readJSON(outputPath); + expect(json.depGraph).toBeTruthy(); + const depGraph = depGraphLib.createFromJSON(json.depGraph); + expect(depGraph.getPkgs()).toContainEqual({ + name: 'axis:axis', + version: '1.4', + }); + }); + + it('saves JSON output to file without a depGraph when --print-deps is not used', async () => { + const project = await createProjectFromWorkspace('maven-app'); + const outputPath = 'json-file-output.json'; + + const { code } = await runSnykCLI( + `test --json-file-output=${outputPath}`, + { + cwd: project.path(), + env, + }, + ); + + expect(code).toEqual(0); + const json = await project.readJSON(outputPath); + expect(json.depGraph).toBeUndefined(); + }); + }); });