mirror of
https://github.com/aquasecurity/trivy.git
synced 2026-02-02 06:43:13 +08:00
69 lines
3.3 KiB
Go
69 lines
3.3 KiB
Go
package poetry
|
|
|
|
import ftypes "github.com/aquasecurity/trivy/pkg/fanal/types"
|
|
|
|
var (
|
|
// docker run --name poetry --rm -it python@sha256:e1141f10176d74d1a0e87a7c0a0a5a98dd98ec5ac12ce867768f40c6feae2fd9 sh
|
|
// apk add curl
|
|
// curl -sSL https://install.python-poetry.org | POETRY_VERSION=1.1.7 python3 -
|
|
// export PATH=/root/.local/bin:$PATH
|
|
// poetry new normal && cd normal
|
|
// poetry add pypi@2.1
|
|
// poetry show -a | awk '{gsub(/\(!\)/, ""); printf("{ID: \""$1"@"$2"\", Name: \""$1"\", Version: \""$2"\"},\n") }'
|
|
poetryNormal = []ftypes.Package{
|
|
{ID: "pypi@2.1", Name: "pypi", Version: "2.1"},
|
|
}
|
|
|
|
// docker run --name poetry --rm -it python@sha256:e1141f10176d74d1a0e87a7c0a0a5a98dd98ec5ac12ce867768f40c6feae2fd9 sh
|
|
// apk add curl
|
|
// curl -sSL https://install.python-poetry.org | POETRY_VERSION=1.1.7 python3 -
|
|
// export PATH=/root/.local/bin:$PATH
|
|
// poetry new web && cd web
|
|
// poetry add pluggy@0.13.1 -E pre-commit,tox
|
|
// poetry add flask@1.0.3
|
|
// poetry add pytest@5.4.3 --dev
|
|
// poetry show -a | awk '{gsub(/\(!\)/, ""); printf("{ID: \""$1"@"$2"\", Name: \""$1"\", Version: \""$2"\"},\n") }'
|
|
// mark dev deps
|
|
poetryFlask = []ftypes.Package{
|
|
{ID: "atomicwrites@1.4.1", Name: "atomicwrites", Version: "1.4.1", Dev: true},
|
|
{ID: "attrs@25.1.0", Name: "attrs", Version: "25.1.0", Dev: true},
|
|
{ID: "click@8.1.8", Name: "click", Version: "8.1.8"},
|
|
{ID: "colorama@0.4.6", Name: "colorama", Version: "0.4.6"},
|
|
{ID: "flask@1.0.3", Name: "flask", Version: "1.0.3"},
|
|
{ID: "itsdangerous@2.2.0", Name: "itsdangerous", Version: "2.2.0"},
|
|
{ID: "jinja2@3.1.5", Name: "jinja2", Version: "3.1.5"},
|
|
{ID: "markupsafe@3.0.2", Name: "markupsafe", Version: "3.0.2"},
|
|
{ID: "more-itertools@10.6.0", Name: "more-itertools", Version: "10.6.0", Dev: true},
|
|
{ID: "packaging@24.2", Name: "packaging", Version: "24.2", Dev: true},
|
|
{ID: "pluggy@0.13.1", Name: "pluggy", Version: "0.13.1", Dev: false},
|
|
{ID: "py@1.11.0", Name: "py", Version: "1.11.0", Dev: true},
|
|
{ID: "pytest@5.4.3", Name: "pytest", Version: "5.4.3", Dev: true},
|
|
{ID: "wcwidth@0.2.13", Name: "wcwidth", Version: "0.2.13", Dev: true},
|
|
{ID: "werkzeug@3.1.3", Name: "werkzeug", Version: "3.1.3"},
|
|
}
|
|
|
|
// cat poetry.lock | grep "\[package.dependencies\]" -B 3 -A 8 - it might help to complete this slice
|
|
poetryFlaskDeps = []ftypes.Dependency{
|
|
{ID: "click@8.1.8", DependsOn: []string{"colorama@0.4.6"}},
|
|
{ID: "flask@1.0.3", DependsOn: []string{"click@8.1.8", "itsdangerous@2.2.0", "jinja2@3.1.5", "werkzeug@3.1.3"}},
|
|
{ID: "jinja2@3.1.5", DependsOn: []string{"markupsafe@3.0.2"}},
|
|
{ID: "pytest@5.4.3", DependsOn: []string{"colorama@0.4.6", "pluggy@0.13.1"}},
|
|
{ID: "werkzeug@3.1.3", DependsOn: []string{"markupsafe@3.0.2"}},
|
|
}
|
|
|
|
// use instruction above with `POETRY_VERSION=2.0.1`
|
|
|
|
poetryV2FlaskDeps = []ftypes.Dependency{
|
|
{ID: "click@8.1.8", DependsOn: []string{"colorama@0.4.6"}},
|
|
{ID: "flask@1.0.3", DependsOn: []string{"click@8.1.8", "itsdangerous@2.2.0", "jinja2@3.1.5", "werkzeug@3.1.3"}},
|
|
{ID: "jinja2@3.1.5", DependsOn: []string{"markupsafe@3.0.2"}},
|
|
{
|
|
ID: "pytest@5.4.3", DependsOn: []string{
|
|
"atomicwrites@1.4.1", "attrs@25.1.0", "colorama@0.4.6", "more-itertools@10.6.0", "packaging@24.2",
|
|
"pluggy@0.13.1", "py@1.11.0", "wcwidth@0.2.13",
|
|
},
|
|
},
|
|
{ID: "werkzeug@3.1.3", DependsOn: []string{"markupsafe@3.0.2"}},
|
|
}
|
|
)
|