Skip to content

fix normalixer of Models.Component.properties with CDX-1.2 #153

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Aug 4, 2022
Merged

fix normalixer of Models.Component.properties with CDX-1.2 #153

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 11 additions & 0 deletions HISTORY.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,17 @@ All notable changes to this project will be documented in this file.

## unreleased

## 1.3.1 - 2022-08-04

* Fixed
* JSON- and XML-Normalizer no longer render `Models.Component.properties`
with [_CycloneDX_ Specification][CycloneDX-specification]-1.2.
([#152] via [#153])
* XML-Normalizer now has the correct order/position of rendered `Models.Component.properties`. (via [#153])

[#152]: https://github.com/CycloneDX/cyclonedx-javascript-library/issues/152
[#153]: https://github.com/CycloneDX/cyclonedx-javascript-library/pull/153

## 1.3.0 - 2022-08-03

* Changed
Expand Down
6 changes: 3 additions & 3 deletions src/serialize/json/normalize.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -280,11 +280,11 @@ export class ComponentNormalizer extends Base {
externalReferences: data.externalReferences.size > 0
? this._factory.makeForExternalReference().normalizeRepository(data.externalReferences, options)
: undefined,
properties: spec.supportsProperties(data) && data.properties.size > 0
? this._factory.makeForProperty().normalizeRepository(data.properties, options)
: undefined,
components: data.components.size > 0
? this.normalizeRepository(data.components, options)
: undefined,
properties: data.properties.size > 0
? this._factory.makeForProperty().normalizeRepository(data.properties, options)
: undefined
}
: undefined
Expand Down
16 changes: 8 additions & 8 deletions src/serialize/xml/normalize.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -344,18 +344,18 @@ export class ComponentNormalizer extends Base {
.normalizeRepository(data.externalReferences, options, 'reference')
}
: undefined
const components: SimpleXml.Element | undefined = data.components.size > 0
const properties: SimpleXml.Element | undefined = spec.supportsProperties(data) && data.properties.size > 0
? {
type: 'element',
name: 'components',
children: this.normalizeRepository(data.components, options, 'component')
name: 'properties',
children: this._factory.makeForProperty().normalizeRepository(data.properties, options, 'property')
}
: undefined
const properties: SimpleXml.Element | undefined = data.properties.size > 0
const components: SimpleXml.Element | undefined = data.components.size > 0
? {
type: 'element',
name: 'properties',
children: this._factory.makeForProperty().normalizeRepository(data.properties, options, 'property')
name: 'components',
children: this.normalizeRepository(data.components, options, 'component')
}
: undefined
return {
Expand All @@ -381,8 +381,8 @@ export class ComponentNormalizer extends Base {
makeOptionalTextElement(data.purl, 'purl'),
swid,
extRefs,
components,
properties
properties,
components
].filter(isNotUndefined)
}
}
Expand Down
50 changes: 28 additions & 22 deletions src/spec.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,28 +37,21 @@ export class UnsupportedFormatError extends Error {
}

export interface Protocol {
readonly version: Version

version: Version
supportsFormat: (f: Format | any) => boolean

supportsComponentType: (ct: ComponentType | any) => boolean

supportsHashAlgorithm: (ha: HashAlgorithm | any) => boolean

supportsHashValue: (hv: HashContent | any) => boolean

supportsExternalReferenceType: (ert: ExternalReferenceType | any) => boolean

readonly supportsDependencyGraph: boolean

readonly supportsToolReferences: boolean

readonly requiresComponentVersion: boolean
supportsDependencyGraph: boolean
supportsToolReferences: boolean
requiresComponentVersion: boolean
supportsProperties: (model: any) => boolean
}

/**
* @internal This class was never intended to be public,
* but it is a helper to get the exact spec-versions implemented according to {@see Protocol}.
* @internal This class was never intended to be public, but
* it is a helper to get the exact spec-versions implemented according to {@see Protocol}.
*/
class Spec implements Protocol {
readonly #version: Version
Expand All @@ -70,6 +63,7 @@ class Spec implements Protocol {
readonly #supportsDependencyGraph: boolean
readonly #supportsToolReferences: boolean
readonly #requiresComponentVersion: boolean
readonly #supportsProperties: boolean

constructor (
version: Version,
Expand All @@ -80,7 +74,8 @@ class Spec implements Protocol {
externalReferenceTypes: Iterable<ExternalReferenceType>,
supportsDependencyGraph: boolean,
supportsToolReferences: boolean,
requiresComponentVersion: boolean
requiresComponentVersion: boolean,
supportsProperties: boolean
) {
this.#version = version
this.#formats = new Set(formats)
Expand All @@ -91,6 +86,7 @@ class Spec implements Protocol {
this.#supportsDependencyGraph = supportsDependencyGraph
this.#supportsToolReferences = supportsToolReferences
this.#requiresComponentVersion = requiresComponentVersion
this.#supportsProperties = supportsProperties
}

get version (): Version {
Expand Down Expand Up @@ -129,6 +125,11 @@ class Spec implements Protocol {
get requiresComponentVersion (): boolean {
return this.#requiresComponentVersion
}

supportsProperties (): boolean {
// currently a global allow/deny -- might work based on input, in the future
return this.#supportsProperties
}
}

/** Specification v1.2 */
Expand Down Expand Up @@ -182,7 +183,8 @@ export const Spec1dot2: Readonly<Protocol> = Object.freeze(new Spec(
],
true,
false,
true
true,
false
))

/** Specification v1.3 */
Expand Down Expand Up @@ -236,6 +238,7 @@ export const Spec1dot3: Readonly<Protocol> = Object.freeze(new Spec(
],
true,
false,
true,
true
))

Expand Down Expand Up @@ -291,11 +294,14 @@ export const Spec1dot4: Readonly<Protocol> = Object.freeze(new Spec(
],
true,
true,
false
false,
true
))

export const SpecVersionDict = Object.freeze(Object.fromEntries([
[Version.v1dot2, Spec1dot2],
[Version.v1dot3, Spec1dot3],
[Version.v1dot4, Spec1dot4]
]) as { [key in Version]?: Readonly<Protocol> })
export const SpecVersionDict: { readonly [key in Version]?: Readonly<Protocol> } = Object.freeze(
Object.fromEntries([
[Version.v1dot2, Spec1dot2],
[Version.v1dot3, Spec1dot3],
[Version.v1dot4, Spec1dot4]
])
)
16 changes: 1 addition & 15 deletions tests/_data/normalizeResults/json_sortedLists_spec1.2.json
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

30 changes: 0 additions & 30 deletions tests/_data/normalizeResults/xml_sortedLists_spec1.2.json
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

16 changes: 1 addition & 15 deletions tests/_data/serializeResults/json_complex_spec1.2.json.bin
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

5 changes: 0 additions & 5 deletions tests/_data/serializeResults/xml_complex_spec1.2.xml.bin
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.