update

ldmonster · ldmonster · commit ebfa55f12c46 · 2026-01-26T16:45:47.000+03:00
Signed-off-by: Pavel Okhlopkov &lt;pavel.okhlopkov@flant.com&gt;
diff --git a/pkg/linters/module/README.md b/pkg/linters/module/README.md
@@ -144,22 +144,42 @@ Validates the `oss.yaml` file containing open-source software attribution.
 - ✅ Valid YAML structure
 - ✅ At least one project is described
 - ✅ Each project has required fields:
-  - `name` - Project name
-  - `description` - Project description
-  - `link` - Valid project URL
-  - `license` - Valid license identifier
-  - `logo` (optional) - Valid logo URL
+  - `id` - Project identifier (must not be empty)
+  - `version` - Project version (must not be empty, should be valid semver)
+  - `name` - Project name (must not be empty)
+  - `description` - Project description (must not be empty)
+  - `link` - Valid project URL (must not be empty, must be valid URL)
+  - `license` - Valid license identifier (must not be empty)
+  - `logo` (optional) - Valid logo URL (must be valid URL if provided)
+
+**Error Messages:**
+- `Module should have oss.yaml` - File is missing from module root
+- `Invalid oss.yaml: <error>` - File exists but contains invalid YAML or structure
+- `no projects described` - File exists but contains an empty list
+- `id must not be empty` - Project entry is missing the `id` field
+- `version must not be empty. Please fill in the parameter and configure CI (werf files for module images) to use these setting. See ADR "platform-security/2026-01-21-oss-yaml-werf.md"` - Project entry is missing the `version` field
+- `version must be valid semver: <error>` (Warning) - Version is provided but not in valid semantic versioning format
+- `name must not be empty` - Project entry is missing the `name` field
+- `description must not be empty` - Project entry is missing the `description` field
+- `link must not be empty` - Project entry is missing the `link` field
+- `link URL is malformed ("<url>")` - Link is provided but is not a valid URL
+- `License must not be empty` - Project entry is missing the `license` field
+- `project logo URL is malformed ("<url>")` - Logo is provided but is not a valid URL
 
 **Example:**
 ```yaml
 # oss.yaml
-- name: nginx
+- id: nginx/nginx
+  version: 1.25.3
+  name: nginx
   description: High performance web server
   link: https://nginx.org/
   license: BSD-2-Clause
   logo: https://nginx.org/nginx.png
 
-- name: prometheus
+- id: prometheus/prometheus
+  version: 2.48.0
+  name: prometheus
   description: Monitoring system and time series database
   link: https://prometheus.io/
   license: Apache-2.0
diff --git a/pkg/linters/module/rules/oss_library.go b/pkg/linters/module/rules/oss_library.go
@@ -26,6 +26,7 @@ import (
 	"k8s.io/utils/ptr"
 	"sigs.k8s.io/yaml"
 
+	"github.com/Masterminds/semver/v3"
 	"github.com/deckhouse/dmt/pkg"
 	"github.com/deckhouse/dmt/pkg/errors"
 )
@@ -59,11 +60,7 @@ func (r *OSSRule) OssModuleRule(moduleRoot string, errorList *errors.LintRuleErr
 		errorList = errorList.WithMaxLevel(ptr.To(pkg.Ignored))
 	}
 
-	if errs := verifyOssFile(moduleRoot); len(errs) > 0 {
-		for _, err := range errs {
-			errorList.WithFilePath(moduleRoot).Error(ossFileErrorMessage(err))
-		}
-	}
+	verifyOssFile(moduleRoot, errorList)
 }
 
 func ossFileErrorMessage(err error) string {
@@ -74,85 +71,74 @@ func ossFileErrorMessage(err error) string {
 	return fmt.Sprintf("Invalid %s: %s", ossFilename, err.Error())
 }
 
-func verifyOssFile(moduleRoot string) []error {
+func verifyOssFile(moduleRoot string, errorList *errors.LintRuleErrorsList) {
 	projects, err := readOssFile(moduleRoot)
 	if err != nil {
-		return []error{err}
+		errorList.Error(err.Error())
+
+		return
 	}
 
 	if len(projects) == 0 {
-		return []error{fmt.Errorf("no projects described")}
+		errorList.Error("no projects described")
+
+		return
 	}
 
-	var errs []error
 	for i, p := range projects {
-		err = assertOssProject(i+1, &p)
-		if err != nil {
-			errs = append(errs, err)
-		}
+		assertOssProject(i+1, &p, errorList)
 	}
-
-	return errs
 }
 
-func assertOssProject(i int, p *ossProject) error {
-	var complaints []string
-
+func assertOssProject(i int, p *ossProject, errorList *errors.LintRuleErrorsList) {
 	// prefix to make it easier navigate among errors
 	prefix := fmt.Sprintf("#%d", i)
 
 	// Id
-
 	if strings.TrimSpace(p.Id) == "" {
-		complaints = append(complaints, "id must not be empty")
+		errorList.WithObjectID("index=" + prefix + ";").Error("id must not be empty")
+	} else {
+		prefix = fmt.Sprintf("#%d (id=%s)", i, p.Id)
 	}
 
 	// Version
-
 	if strings.TrimSpace(p.Version) == "" {
-		complaints = append(complaints, "version must not be empty. Please fill in the parameter and configure CI (werf files for module images) to use these setting. See ADR \"platform-security/2026-01-21-oss-yaml-werf.md\"")
+		errorList.WithObjectID("index=" + prefix + ";").Error("version must not be empty. Please fill in the parameter and configure CI (werf files for module images) to use these setting. See ADR \"platform-security/2026-01-21-oss-yaml-werf.md\"")
+	} else {
+		_, err := semver.NewVersion(p.Version)
+		if err != nil {
+			errorList.WithObjectID("index=" + prefix + ";").Warn(fmt.Sprintf("version must be valid semver: %v", err))
+		}
 	}
-	// Name
 
+	// Name
 	if strings.TrimSpace(p.Name) == "" {
-		complaints = append(complaints, "name must not be empty")
-	} else {
-		prefix = fmt.Sprintf("#%d (name=%s)", i, p.Name)
+		errorList.WithObjectID("index=" + prefix + ";").Error("name must not be empty")
 	}
 
 	// Description
-
 	if strings.TrimSpace(p.Description) == "" {
-		complaints = append(complaints, "description must not be empty")
+		errorList.WithObjectID("index=" + prefix + ";").Error("description must not be empty")
 	}
 
 	// Link
-
 	if strings.TrimSpace(p.Link) == "" {
-		complaints = append(complaints, "link must not be empty")
+		errorList.WithObjectID("index=" + prefix + ";").Error("link must not be empty")
 	} else if _, err := url.ParseRequestURI(p.Link); err != nil {
-		complaints = append(complaints, fmt.Sprintf("link URL is malformed (%q)", p.Link))
+		errorList.WithObjectID("index=" + prefix + ";").Error(fmt.Sprintf("link URL is malformed (%q)", p.Link))
 	}
 
 	// License
-
 	if strings.TrimSpace(p.License) == "" {
-		complaints = append(complaints, "License must not be empty")
+		errorList.WithObjectID("index=" + prefix + ";").Error("License must not be empty")
 	}
 
 	// Logo
-
 	if strings.TrimSpace(p.Logo) != "" {
 		if _, err := url.ParseRequestURI(p.Logo); err != nil {
-			complaints = append(complaints, fmt.Sprintf("project logo URL is malformed (%q)", p.Logo))
+			errorList.WithObjectID("index=" + prefix + ";").Error(fmt.Sprintf("project logo URL is malformed (%q)", p.Logo))
 		}
 	}
-
-	if len(complaints) > 0 {
-		return fmt.Errorf("%s: %s", prefix, strings.Join(complaints, "; "))
-	}
-
-	return nil
 }
 
 func readOssFile(moduleRoot string) ([]ossProject, error) {
diff --git a/pkg/linters/module/rules/oss_library_test.go b/pkg/linters/module/rules/oss_library_test.go
