Skip to content

Create new model for dependencies #447

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
JonoYang opened this issue Jun 14, 2022 · 10 comments
Closed

Create new model for dependencies #447

JonoYang opened this issue Jun 14, 2022 · 10 comments
Milestone
v32.0.0

Comments

@JonoYang
Copy link
Member

scancode-toolkit has a new model called DependentPackage, which models the dependencies detected for a Package from a package manifest. The DependentPackage data shows up in the scancode JSON results in the top-level Dependencies field. We should create a new model, DiscoveredDependency (or some other name) to represent this in scancode.io
@tdruez
Copy link
Contributor

tdruez commented Jun 14, 2022

@JonoYang I remember you had committed a new model for the dependencies but we decided to postpone after the toolkit upgrade.
Could you start a new branch with this new model? This would be a good base for discussion.

JonoYang added a commit that referenced this issue Jun 14, 2022
@JonoYang
Create model for DiscoveredDependency #447
3437881 
Signed-off-by: Jono Yang <[email protected]>
@JonoYang
Copy link
Member Author

@tdruez I started a new branch with the DiscoveredDependency model I had from earlier. The only change I made from my original commit is that I increased the size of the package_uid related fields to 1024.

JonoYang added a commit that referenced this issue Jul 21, 2022
@JonoYang
Update scan_for_application_packages #436 #444 #447
8963d7f 
    * Update scan_for_application_packages to save detected Package data to the CodebaseResource it is from, then iterate through the CodebaseResources with Package data and use the proper Package handler to process the Package data
    * Create DiscoveredDependency model
    * Add package_data JSON field to CodebaseResource

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 21, 2022
@JonoYang
Add has_single_resource to Project #436 #447
f60f6c2 
    * Increase field sizes in DiscoveredDependency

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 21, 2022
@JonoYang
Add codebase argument to CodebaseResource.save #447
51ed7ce 
Signed-off-by: Jono Yang <[email protected]>
@tdruez tdruez mentioned this issue Jul 22, 2022
Closed
JonoYang added a commit that referenced this issue Jul 22, 2022
@JonoYang
Create initial Project dependency view #447
d647390 
Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 23, 2022
@JonoYang
Update test expectations #447
8e618de 
Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 26, 2022
@JonoYang
Show dependency stats in project detail #447
1ec4b42 
Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 26, 2022
@JonoYang
Show dependency stats in project detail #447
3f03d96 
Signed-off-by: Jono Yang <[email protected]>
@JonoYang JonoYang mentioned this issue Jul 27, 2022
Closed
JonoYang added a commit that referenced this issue Jul 27, 2022
@JonoYang
Remove update_from_data method #447
4f21bac 
    * We never run into the situation where we are updating a DiscoveredDependency when scanning packages
    * Clean up migrations

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 27, 2022
@JonoYang
Remove update_from_data method #447
6a8be49 
    * We never run into the situation where we are updating a DiscoveredDependency when scanning packages
    * Clean up migrations

Signed-off-by: Jono Yang <[email protected]>
@JonoYang JonoYang mentioned this issue Jul 27, 2022
Open
@pombredanne pombredanne added this to the v32.0.0 milestone Jul 28, 2022
JonoYang added a commit that referenced this issue Jul 28, 2022
@JonoYang
Store filenames with extensions in name field #467
e19b544 
    * Update scancode-toolkit to 31.0.0rc3 #447
    * Update expected test results

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 28, 2022
@JonoYang
Store filenames with extensions in name field #467
adf8d77 
    * Update scancode-toolkit to 31.0.0rc3 #447
    * Update expected test results
    * Update code formatting

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 28, 2022
@JonoYang
Store filenames with extensions in name field #467
56b948b 
    * Update scancode-toolkit to 31.0.0rc3 #447
    * Update expected test results
    * Update code formatting

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 28, 2022
@JonoYang
Remove dependencies from DiscoveredPackage #447
d8fe7c3 
    * This is to reflect the changes made to the Package model in scancode-toolkit
    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 28, 2022
@JonoYang
Remove dependencies from DiscoveredPackage #447
199c5a7 
    * This is to reflect the changes made to the Package model in scancode-toolkit
    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>
@JonoYang JonoYang mentioned this issue Jul 29, 2022
Closed
JonoYang added a commit that referenced this issue Jul 30, 2022
@JonoYang
Update model field attributes #447
7629d55 
    * purl and dependency_uid are the only required fields on DiscoveredDependency
    * Update migrations
    * Check for created DiscoveredDependency in tests

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Jul 30, 2022
@JonoYang
Re-add update_or_create_dependencies #447
472eb07 
    * Create DiscoveredDependencies in load_codebase pipeline
    * Update tests to check for DiscoveredDependencies
    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 1, 2022
@JonoYang
Add more fields to dependency API summary #447
f9a1d71 
    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 2, 2022
@JonoYang
Use scancode.io specific package adder #447
cd2f566 
    * This will fail until scancode-toolkit 31.0.0rc4 is released
    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 2, 2022
@JonoYang
Update test expectations #447
053e311 
Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 2, 2022
@JonoYang
Update CHANGELOG.rst #447
80a9745 
Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 2, 2022
@JonoYang
Don't save resource instance after add #447
75bd938 
Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 2, 2022
@JonoYang
Update scancode-toolkit version #447
0faa61b 
Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 26, 2022
@JonoYang
Create donut chart for package type #447
483228e 
Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 26, 2022
@JonoYang
Consolidate migrations #447
984a0a8 
    * Update DiscoveredDependency ordering
    * Update daglib test expectations

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 27, 2022
@JonoYang
Update dependency JSON ordering #447
00f803e 
    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 27, 2022
@JonoYang
Update dependency JSON ordering #447
40862fe 
    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>
tdruez added a commit that referenced this issue Aug 29, 2022
@tdruez
Set proper discovereddependencies related_name #447
5d8cd43 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 29, 2022
@tdruez
Fix template indentation #447
01a4648 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 29, 2022
@tdruez
Refactor update_from_data method into a UpdateFromDataMixin #447
dba4891 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 29, 2022
@tdruez
Fix the ProjectSerializer fields #447
45b0e3b 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 29, 2022
@tdruez
Fix test_scanpipe_api_project_detail unit test #447
fa24ca1 
Signed-off-by: Thomas Druez <[email protected]>
JonoYang added a commit that referenced this issue Aug 30, 2022
@JonoYang
Update dependency tabs #447
87cb66b 
    * Only show links in dependency for_package tab or dependency datafile_resource tab if there is a value

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 30, 2022
@JonoYang
Use UpdateFromDataMixin #447
f4fc4d1 
    * Use UpdateFromDataMixin in DiscoveredDependency
    * Create test for DiscoveredDependency.update_from_data()

Signed-off-by: Jono Yang <[email protected]>
JonoYang added a commit that referenced this issue Aug 30, 2022
@JonoYang
Use UpdateFromDataMixin #447
0fa6783 
    * Use UpdateFromDataMixin in DiscoveredDependency
    * Create test for DiscoveredDependency.update_from_data()

Signed-off-by: Jono Yang <[email protected]>
tdruez added a commit that referenced this issue Aug 31, 2022
@tdruez
Fix formatting #447
89d41be 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 31, 2022
@JonoYang @tdruez
Implement DiscoveredDependency model (#486)
6c26874 
* Implement package assembly in scancode.io #447

Signed-off-by: Jono Yang <[email protected]>

* Minor formatting changes for consistency #447

Signed-off-by: Thomas Druez <[email protected]>

* Create DiscoveredPackages before other models #447

Signed-off-by: Jono Yang <[email protected]>

* Revert "Create DiscoveredPackages before other models #447"

This reverts commit c9b8bed.

Sorting Packages, Dependencies, and Resources from DatafileHandler.assemble() will never work. The code needs to be changed in scancode-toolkit.

Signed-off-by: Jono Yang <[email protected]>

* Update migration #444

Signed-off-by: Jono Yang <[email protected]>

* Return package_uids in for_packages #444

    * This is so we are consistent with scancode-toolkit JSON output
    * Update expected test results

Signed-off-by: Jono Yang <[email protected]>

* Create directory Resources in docker pipeline #485

    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>

* Implement package assembly in scancode.io #447

Signed-off-by: Jono Yang <[email protected]>

* Implement package assembly in scancode.io #447

Signed-off-by: Jono Yang <[email protected]>

* Create DiscoveredDependency model #447

    * Create new dependency list and detail views
    * Update assemble_packages() to create DiscoveredDependencies
    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>

* Update fields on DiscoveredDependency #447

    * Remove for_package_uid and replace with ForeignKey for_package
    * Remove datafile_path and replace with ForeignKey datafile_resource
    * Create properties for the two removed fields
    * Update dependency views to link to datafile_resource
    * Update expected test results

Signed-off-by: Jono Yang <[email protected]>

* Properly pluralize verbose name #447

Signed-off-by: Jono Yang <[email protected]>

* Create new argument for create_from_data #447

    * Add strip_datafile_path_root to DiscoveredDependency.create_from_data
    * This argument strips the root path segment from `datafile_path` before using the path to look up the corresponding CodebaseResource
    * This is used in the case where we are importing a scan from scancode-toolkit, where the root path segments are not stripped by default
    * Update expected test results

Signed-off-by: Jono Yang <[email protected]>

* Update prefetch_related #447

    * Used cached_property for DiscoveredDependency properties

Signed-off-by: Jono Yang <[email protected]>

* Prefetch related models in output code #447

Signed-off-by: Jono Yang <[email protected]>

* Import scancode.io 30.2.0 scans in load_codebase

    * Order DiscoveredDependencies by is_runtime, is_optional, is_resolved, and dependency_uid
    * Do not show dependency_uid value in DiscoveredDependency list view

Signed-off-by: Jono Yang <[email protected]>

* Revert changes for importing old scancode.io scans

Signed-off-by: Jono Yang <[email protected]>

* Regen migrations for DiscoveredDependency #447

Signed-off-by: Jono Yang <[email protected]>

* Migrate DiscoveredPackage.dependencies #447

    * Create migrations to generate new DiscoveredDependency objects from DiscoveredPackage.dependencies before removing the dependencies field

Signed-off-by: Jono Yang <[email protected]>

* Update test expectations #447

Signed-off-by: Jono Yang <[email protected]>

* Remove accidentally committed files #447

Signed-off-by: Jono Yang <[email protected]>

* Update migration logic #447

    * Remove unnecessary else from DiscoveredDependency properties

Signed-off-by: Jono Yang <[email protected]>

* Add PackageURLMixin to DiscoveredDependency #447

Signed-off-by: Jono Yang <[email protected]>

* Set DiscoveredDependencies purl fields #447

    * Create migration that populates purl fields for existing DiscoveredDependencies

Signed-off-by: Jono Yang <[email protected]>

* Store purl values in purl fields #447

    * Do not store dependency_uid in purl fields

Signed-off-by: Jono Yang <[email protected]>

* Remove purl field from DiscoveredDependency #447

    * We are already storing this info in the purl fields
    * Create purl property on DiscoveredDependency for compatibility

Signed-off-by: Jono Yang <[email protected]>

* Update DependencyFilterSet #447

    * Add search and purl fields

Signed-off-by: Jono Yang <[email protected]>

* Don't show DiscoveredDependencies purl fields #447

Signed-off-by: Jono Yang <[email protected]>

* Update package detail view dependencies tab #447

Signed-off-by: Jono Yang <[email protected]>

* Add package_type to dependency serializer #511

    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>

* Update expected test results

Signed-off-by: Jono Yang <[email protected]>

* Add dependency table column #447

Signed-off-by: Jono Yang <[email protected]>

* Use tabset in dependency detail view #447

    * Add package_type property to DiscoveredDependency

Signed-off-by: Jono Yang <[email protected]>

* Update dependency list view #447

    * Use updated table header include
    * Update dependency presentation in package detail view
    * Show package uid on hover on for package tab

Signed-off-by: Jono Yang <[email protected]>

* Set DiscoveredDependency serializer fields #511

    * Update DiscoveredDependency ordering

Signed-off-by: Jono Yang <[email protected]>

* Create donut chart for package type #447

Signed-off-by: Jono Yang <[email protected]>

* Consolidate migrations #447

    * Update DiscoveredDependency ordering
    * Update daglib test expectations

Signed-off-by: Jono Yang <[email protected]>

* Update dependency JSON ordering #447

    * Update test expectations

Signed-off-by: Jono Yang <[email protected]>

* Set proper discovereddependencies related_name #447

Signed-off-by: Thomas Druez <[email protected]>

* Fix template indentation #447

Signed-off-by: Thomas Druez <[email protected]>

* Refactor update_from_data method into a UpdateFromDataMixin #447

Signed-off-by: Thomas Druez <[email protected]>

* Fix the ProjectSerializer fields #447

Signed-off-by: Thomas Druez <[email protected]>

* Fix test_scanpipe_api_project_detail unit test #447

Signed-off-by: Thomas Druez <[email protected]>

* Add HTML title for list views #506

Signed-off-by: Thomas Druez <[email protected]>

* Update dependency tabs #447

    * Only show links in dependency for_package tab or dependency datafile_resource tab if there is a value

Signed-off-by: Jono Yang <[email protected]>

* Use UpdateFromDataMixin #447

    * Use UpdateFromDataMixin in DiscoveredDependency
    * Create test for DiscoveredDependency.update_from_data()

Signed-off-by: Jono Yang <[email protected]>

* Fix formatting #447

Signed-off-by: Thomas Druez <[email protected]>

Signed-off-by: Jono Yang <[email protected]>
Signed-off-by: Thomas Druez <[email protected]>
Co-authored-by: Thomas Druez <[email protected]>
@tdruez
Copy link
Contributor

tdruez commented Aug 31, 2022

PR merged.
Thanks @JonoYang for the implementation 👍

@tdruez tdruez closed this as completed Aug 31, 2022
@tdruez tdruez reopened this Aug 31, 2022
@tdruez
Copy link
Contributor

tdruez commented Aug 31, 2022

Actually getting an issue when applying the migrations on a production database.

web_1     | Running migrations:
web_1     |   Applying scanpipe.0022_rename_dependencies_discoveredpackage_dependencies_data_and_more... OK
web_1     | Traceback (most recent call last):
web_1     |   File "/app/./manage.py", line 6, in <module>
web_1     |     command_line()
web_1     |   File "/app/scancodeio/__init__.py", line 45, in command_line
web_1     |     execute_from_command_line(sys.argv)
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/core/management/__init__.py", line 446, in execute_from_command_line
web_1     |     utility.execute()
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/core/management/__init__.py", line 440, in execute
web_1     |     self.fetch_command(subcommand).run_from_argv(self.argv)
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/core/management/base.py", line 402, in run_from_argv
web_1     |     self.execute(*args, **cmd_options)
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/core/management/base.py", line 448, in execute
web_1     |     output = self.handle(*args, **options)
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/core/management/base.py", line 96, in wrapped
web_1     |     res = handle_func(*args, **kwargs)
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/core/management/commands/migrate.py", line 349, in handle
web_1     |     post_migrate_state = executor.migrate(
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/db/migrations/executor.py", line 135, in migrate
web_1     |     state = self._migrate_all_forwards(
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/db/migrations/executor.py", line 167, in _migrate_all_forwards
web_1     |     state = self.apply_migration(
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/db/migrations/executor.py", line 252, in apply_migration
web_1     |     state = migration.apply(state, schema_editor)
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/db/migrations/migration.py", line 130, in apply
web_1     |     operation.database_forwards(
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/db/migrations/operations/special.py", line 193, in database_forwards
web_1     |     self.code(from_state.apps, schema_editor)
web_1     |   File "/app/scanpipe/migrations/0023_migrate_dependencies.py", line 33, in migrate_dependencies_to_discovereddependencies
web_1     |     DiscoveredDependency.objects.create(
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/db/models/manager.py", line 85, in manager_method
web_1     |     return getattr(self.get_queryset(), name)(*args, **kwargs)
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/db/models/query.py", line 669, in create
web_1     |     obj = self.model(**kwargs)
web_1     |   File "/usr/local/lib/python3.9/site-packages/django/db/models/base.py", line 585, in __init__
web_1     |     raise TypeError(
web_1     | TypeError: DiscoveredDependency() got unexpected keyword arguments: 'requirement'

tdruez added a commit that referenced this issue Aug 31, 2022
@tdruez
Fix data migration to support previous dependency_data structure #447
92179c7 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 31, 2022
@tdruez
Consolidate the migrations for DiscoveredDependency model #447
d2424ec 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 31, 2022
@tdruez
Add default value for pop() #447
6f0a6b6 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 31, 2022
@tdruez
Add encode=True for the PackageURL to_dict() #447
fc90c6b 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 31, 2022
@tdruez
Raised the max_length for extracted_requirement to 256 #447
ab006c1 
Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 31, 2022
@tdruez
Add missing PackageURLQuerySetMixin to DiscoveredDependencyQuerySet #447
d118ceb 


Signed-off-by: Thomas Druez <[email protected]>
tdruez added a commit that referenced this issue Aug 31, 2022
@tdruez
Fix DiscoveredDependencies migration issues #447 (#514)
2cb2a21 
Signed-off-by: Thomas Druez <[email protected]>
@tdruez
Copy link
Contributor

tdruez commented Aug 31, 2022

Migration issues fixed in #514

@JonoYang JonoYang mentioned this issue Aug 31, 2022
Closed
@JonoYang
Copy link
Member Author

Closing this now that #486 and #514 has been merged.

tdruez added a commit that referenced this issue Oct 27, 2022
@tdruez
Add DiscoveredDependency model in data models docs #447
e417f53 
Signed-off-by: Thomas Druez <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v32.0.0
Development

No branches or pull requests
3 participants
@tdruez @pombredanne @JonoYang