feat: add dynamic option

luotianqi777 · luotianqi777 · commit 2beef7ecd630 · 2026-01-15T10:42:03.000+08:00
diff --git a/cmd/config/config.go b/cmd/config/config.go
@@ -41,6 +41,7 @@ type OptionalConfig struct {
 	ProgressBar bool   `json:"progress"`
 	TLSVerify   bool   `json:"tls"`
 	Proxy       string `json:"proxy"`
+	Dynamic     bool   `json:"dynamic"`
 }
 
 type RepoConfig struct {
diff --git a/config.json b/config.json
@@ -48,7 +48,11 @@
 
     // 全局http代理
     // global proxy for http requests, eg: http://127.0.0.1:7890
-    "proxy": ""
+    "proxy": "",
+
+    // 允许动态命令
+    // allow dynamic command, eg: mvn
+    "dynamic": false
 
   },
 
diff --git a/opensca/sca/golang/gomod.go b/opensca/sca/golang/gomod.go
@@ -9,6 +9,7 @@ import (
 	"sort"
 	"strings"
 
+	"github.com/xmirrorsecurity/opensca-cli/v3/cmd/config"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/model"
 )
 
@@ -131,6 +132,10 @@ func ParseGosum(file *model.File) *model.DepGraph {
 // GoModGraph 调用 go mod graph 解析依赖
 func GoModGraph(ctx context.Context, modfile *model.File) *model.DepGraph {
 
+	if !config.Conf().Optional.Dynamic {
+		return nil
+	}
+
 	_, err := exec.LookPath("go")
 	if err != nil {
 		return nil
diff --git a/opensca/sca/golang/sca.go b/opensca/sca/golang/sca.go
@@ -4,6 +4,7 @@ import (
 	"context"
 	"path/filepath"
 
+	"github.com/xmirrorsecurity/opensca-cli/v3/cmd/config"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/model"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/sca/filter"
 )
@@ -44,12 +45,14 @@ func (sca Sca) Sca(ctx context.Context, parent *model.File, files []*model.File,
 	}
 
 	// 尝试调用 go mod graph
-	for dir, f := range gomod {
-		graph := GoModGraph(ctx, f)
-		if graph != nil && len(graph.Children) > 0 {
-			call(f, graph)
-			delete(gomod, dir)
-			delete(gosum, dir)
+	if config.Conf().Optional.Dynamic {
+		for dir, f := range gomod {
+			graph := GoModGraph(ctx, f)
+			if graph != nil && len(graph.Children) > 0 {
+				call(f, graph)
+				delete(gomod, dir)
+				delete(gosum, dir)
+			}
 		}
 	}
 
diff --git a/opensca/sca/groovy/gradle.go b/opensca/sca/groovy/gradle.go
@@ -11,6 +11,7 @@ import (
 	"regexp"
 	"strings"
 
+	"github.com/xmirrorsecurity/opensca-cli/v3/cmd/config"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/logs"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/model"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/sca/filter"
@@ -115,6 +116,10 @@ type gradleDep struct {
 
 func GradleTree(ctx context.Context, dir *model.File) []*model.DepGraph {
 
+	if !config.Conf().Optional.Dynamic {
+		return nil
+	}
+
 	if dir == nil {
 		return nil
 	}
diff --git a/opensca/sca/java/mvn.go b/opensca/sca/java/mvn.go
@@ -13,6 +13,7 @@ import (
 	"strings"
 	"sync"
 
+	"github.com/xmirrorsecurity/opensca-cli/v3/cmd/config"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/common"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/logs"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/model"
@@ -516,6 +517,10 @@ func DownloadPomFromRepo(dep PomDependency, do func(r io.Reader), repos ...commo
 // pom: pom文件信息
 func MvnTree(ctx context.Context, pom *Pom) *model.DepGraph {
 
+	if !config.Conf().Optional.Dynamic {
+		return nil
+	}
+
 	if pom == nil {
 		return nil
 	}
diff --git a/opensca/sca/python/env.go b/opensca/sca/python/env.go
@@ -10,6 +10,7 @@ import (
 	"path/filepath"
 	"strings"
 
+	"github.com/xmirrorsecurity/opensca-cli/v3/cmd/config"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/common"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/logs"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/model"
@@ -123,6 +124,9 @@ func pipenvGraph(ctx context.Context, dir string) *model.DepGraph {
 }
 
 func runCmd(ctx context.Context, dir string, cmd string, args ...string) ([]byte, bool) {
+	if !config.Conf().Optional.Dynamic {
+		return nil, false
+	}
 	c := exec.CommandContext(ctx, cmd, args...)
 	c.Dir = dir
 	out, err := c.CombinedOutput()
diff --git a/opensca/sca/python/setup.go b/opensca/sca/python/setup.go
@@ -10,6 +10,7 @@ import (
 	"regexp"
 	"strings"
 
+	"github.com/xmirrorsecurity/opensca-cli/v3/cmd/config"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/logs"
 	"github.com/xmirrorsecurity/opensca-cli/v3/opensca/model"
 )
@@ -72,6 +73,10 @@ type setupDep struct {
 
 func ParseSetupPyWithPython(file *model.File) *model.DepGraph {
 
+	if !config.Conf().Optional.Dynamic {
+		return nil
+	}
+
 	if _, err := exec.LookPath("python"); err != nil {
 		return nil
 	}

Original file line number	Diff line number	Diff line change
`@@ -41,6 +41,7 @@ type OptionalConfig struct {`
`41`	`41`	ProgressBar bool `json:"progress"`
`42`	`42`	TLSVerify bool `json:"tls"`
`43`	`43`	Proxy string `json:"proxy"`
	`44`	+ Dynamic bool `json:"dynamic"`
`44`	`45`	`}`
`45`	`46`
`46`	`47`	`type RepoConfig struct {`