Module: SPDX Private

Defined in:
brew/Library/Homebrew/utils/spdx.rb

Overview

This module is part of a private API. You should avoid using this module if possible, as it may be removed or be changed in the future.

Helper module for updating SPDX license data.

Constant Summary collapse

DATA_PATH =

This constant is part of a private API. You should avoid using this constant if possible, as it may be removed or be changed in the future.

(HOMEBREW_DATA_PATH/"spdx").freeze
API_URL =

This constant is part of a private API. You should avoid using this constant if possible, as it may be removed or be changed in the future.

"https://api.github.com/repos/spdx/license-list-data/releases/latest"

Class Method Summary collapse

Class Method Details

.deprecated_license?(license) ⇒ Boolean

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Returns:

  • (Boolean)


68
69
70
71
72
73
74
75
# File 'brew/Library/Homebrew/utils/spdx.rb', line 68

def deprecated_license?(license)
  return false if license == :public_domain
  return false unless valid_license?(license)

  license_data["licenses"].none? do |spdx_license|
    spdx_license["licenseId"] == license && !spdx_license["isDeprecatedLicenseId"]
  end
end

.download_latest_license_data!(to: DATA_PATH) ⇒ Object

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.



26
27
28
29
30
# File 'brew/Library/Homebrew/utils/spdx.rb', line 26

def download_latest_license_data!(to: DATA_PATH)
  data_url = "https://raw.githubusercontent.com/spdx/license-list-data/#{latest_tag}/json/"
  curl_download("#{data_url}licenses.json", to: to/"spdx_licenses.json", partial: false)
  curl_download("#{data_url}exceptions.json", to: to/"spdx_exceptions.json", partial: false)
end

.exception_dataObject

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.



18
19
20
# File 'brew/Library/Homebrew/utils/spdx.rb', line 18

def exception_data
  @exception_data ||= JSON.parse (DATA_PATH/"spdx_exceptions.json").read
end

.forbidden_licenses_include?(license, forbidden_licenses) ⇒ Boolean

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Returns:

  • (Boolean)


153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
# File 'brew/Library/Homebrew/utils/spdx.rb', line 153

def forbidden_licenses_include?(license, forbidden_licenses)
  return true if forbidden_licenses.key? license

  name, version, = license_version_info license

  forbidden_licenses.each do |_, license_info|
    forbidden_name, forbidden_version, forbidden_or_later = *license_info
    next unless forbidden_name == name

    return true if forbidden_or_later && forbidden_version <= version

    return true if forbidden_version == version
  end
  false
end

.latest_tagObject

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.



22
23
24
# File 'brew/Library/Homebrew/utils/spdx.rb', line 22

def latest_tag
  @latest_tag ||= GitHub.open_api(API_URL)["tag_name"]
end

.license_dataObject

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.



14
15
16
# File 'brew/Library/Homebrew/utils/spdx.rb', line 14

def license_data
  @license_data ||= JSON.parse (DATA_PATH/"spdx_licenses.json").read
end

.license_expression_to_string(license_expression, bracket: false, hash_type: nil) ⇒ Object

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.



83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
# File 'brew/Library/Homebrew/utils/spdx.rb', line 83

def license_expression_to_string(license_expression, bracket: false, hash_type: nil)
  case license_expression
  when String
    license_expression
  when :public_domain
    "Public Domain"
  when Hash
    expressions = []

    if license_expression.keys.length == 1
      hash_type = license_expression.keys.first
      if hash_type.is_a? String
        expressions.push "#{hash_type} with #{license_expression[hash_type][:with]}"
      else
        expressions += license_expression[hash_type].map do |license|
          license_expression_to_string license, bracket: true, hash_type: hash_type
        end
      end
    else
      bracket = false
      license_expression.each do |expression|
        expressions.push license_expression_to_string(Hash[*expression], bracket: true)
      end
    end

    operator = if hash_type == :any_of
      " or "
    else
      " and "
    end

    if bracket
      "(#{expressions.join operator})"
    else
      expressions.join operator
    end
  end
end

.license_version_info(license) ⇒ Object

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.



122
123
124
125
126
127
128
129
130
131
132
133
134
# File 'brew/Library/Homebrew/utils/spdx.rb', line 122

def license_version_info(license)
  return [license] if license == :public_domain

  match = license.match(/-(?<version>[0-9.]+)(?:-.*?)??(?<or_later>\+|-only|-or-later)?$/)
  return [license] if match.blank?

  license_name = license.split(match[0]).first
  or_later = match["or_later"].present? && %w[+ -or-later].include?(match["or_later"])

  # [name, version, later versions allowed?]
  # e.g. GPL-2.0-or-later --> ["GPL", "2.0", true]
  [license_name, match["version"], or_later]
end

.licenses_forbid_installation?(license_expression, forbidden_licenses) ⇒ Boolean

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Returns:

  • (Boolean)


136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
# File 'brew/Library/Homebrew/utils/spdx.rb', line 136

def licenses_forbid_installation?(license_expression, forbidden_licenses)
  case license_expression
  when String, Symbol
    forbidden_licenses_include? license_expression.to_s, forbidden_licenses
  when Hash
    key = license_expression.keys.first
    case key
    when :any_of
      license_expression[key].all? { |license| licenses_forbid_installation? license, forbidden_licenses }
    when :all_of
      license_expression[key].any? { |license| licenses_forbid_installation? license, forbidden_licenses }
    else
      forbidden_licenses_include? key, forbidden_licenses
    end
  end
end

.parse_license_expression(license_expression) ⇒ Object

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.



32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
# File 'brew/Library/Homebrew/utils/spdx.rb', line 32

def parse_license_expression(license_expression)
  licenses = []
  exceptions = []

  case license_expression
  when String, Symbol
    licenses.push license_expression
  when Hash, Array
    if license_expression.is_a? Hash
      license_expression = license_expression.map do |key, value|
        if key.is_a? String
          licenses.push key
          exceptions.push value[:with]
          next
        end
        value
      end.compact
    end

    license_expression.each do |license|
      sub_license, sub_exception = parse_license_expression license
      licenses += sub_license
      exceptions += sub_exception
    end
  end

  [licenses, exceptions]
end

.valid_license?(license) ⇒ Boolean

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Returns:

  • (Boolean)


61
62
63
64
65
66
# File 'brew/Library/Homebrew/utils/spdx.rb', line 61

def valid_license?(license)
  return true if license == :public_domain

  license = license.delete_suffix "+"
  license_data["licenses"].any? { |spdx_license| spdx_license["licenseId"] == license }
end

.valid_license_exception?(exception) ⇒ Boolean

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Returns:

  • (Boolean)


77
78
79
80
81
# File 'brew/Library/Homebrew/utils/spdx.rb', line 77

def valid_license_exception?(exception)
  exception_data["exceptions"].any? do |spdx_exception|
    spdx_exception["licenseExceptionId"] == exception && !spdx_exception["isDeprecatedLicenseId"]
  end
end