feat: support multiple sources and create CacheHandler (#274)

Author: sdn4z

pyproject.toml

@@ -19,6 +19,7 @@ dependencies = [
     "pyparsing<4.0.0,>=3.2.3",
     "tomlkit<0.14.0,>=0.11.6",
     "tomli<3.0.0,>=2.2.1; python_version < \"3.13\"",
+    "pydantic>=2.11.7,<3.0.0",
 ]
 name = "twyn"
 description = "Security tool against dependency typosquatting attacks"

src/twyn/base/exceptions.py

@@ -15,3 +15,7 @@ def __init__(self, message: str = "") -> None:
     def show(self, file: Optional[IO[Any]] = None) -> None:
         logger.debug(self.format_message(), exc_info=True)
         logger.error(self.format_message(), exc_info=False)
+
+
+class PackageNormalizingError(TwynError):
+    """Exception for when it is not possible to normalize a package name."""

src/twyn/base/utils.py

@@ -1,6 +1,15 @@
 import re
 
+from twyn.base.exceptions import PackageNormalizingError
 
-def _normalize_packages(packages: set[str]) -> set[str]:
+
+def normalize_packages(packages: set[str]) -> set[str]:
     """Normalize dependency names according to PyPi https://packaging.python.org/en/latest/specifications/name-normalization/."""
-    return {re.sub(r"[-_.]+", "-", name).lower() for name in packages}
+    renamed_packages = {re.sub(r"[-_.]+", "-", name).lower() for name in packages}
+
+    pattern = re.compile(r"^([a-z0-9]|[a-z0-9][a-z0-9._-]*[a-z0-9])\Z")
+    for package in renamed_packages:
+        if not pattern.match(package):
+            raise PackageNormalizingError(f"Package name '{package}' does not match required pattern")
+
+    return renamed_packages

src/twyn/cli.py

@@ -15,7 +15,8 @@
 from twyn.config.config_handler import ConfigHandler
 from twyn.file_handler.file_handler import FileHandler
 from twyn.main import check_dependencies
-from twyn.trusted_packages.constants import TRUSTED_PACKAGES_FILE_PATH
+from twyn.trusted_packages.cache_handler import CacheHandler
+from twyn.trusted_packages.constants import CACHE_DIR
 
 logging.basicConfig(
     format="%(message)s",
@@ -154,13 +155,11 @@ def cache() -> None:
 
 @cache.command()
 def clear() -> None:
-    fp = FileHandler(TRUSTED_PACKAGES_FILE_PATH).file_path
-    if fp.exists():
-        fp.unlink()
-        fp.parent.rmdir()
-        logger.warning("Cache has been cleared")
-    else:
-        logger.warning("Could not clear cache. Cache file not found.")
+    """Clear cached trusted packages data."""
+    cache_handler = CacheHandler(CACHE_DIR)
+
+    cache_handler.clear_all()
+    click.echo(click.style("All cache cleared", fg="green"))
 
 
 if __name__ == "__main__":

src/twyn/file_handler/file_handler.py

@@ -3,7 +3,6 @@
 from pathlib import Path
 from typing import Protocol
 
-from twyn.base.exceptions import TwynError
 from twyn.file_handler.exceptions import PathIsNotFileError, PathNotFoundError
 
 logger = logging.getLogger("twyn")
@@ -13,6 +12,7 @@ class BaseFileHandler(Protocol):
     def read(self) -> str: ...
     def exists(self) -> bool: ...
     def write(self, data: str) -> None: ...
+    def delete(self, remove_parent_dir: bool) -> None: ...
 
 
 class FileHandler(BaseFileHandler):
@@ -36,7 +36,7 @@ def read(self) -> str:
     def exists(self) -> bool:
         try:
             self._raise_for_file_exists()
-        except TwynError:
+        except (PathNotFoundError, PathIsNotFileError):
             return False
         return True
 
@@ -49,3 +49,20 @@ def _raise_for_file_exists(self) -> None:
 
     def write(self, data: str) -> None:
         self.file_path.write_text(data)
+
+    def delete(self, delete_parent_dir: bool = False) -> None:
+        if not self.exists():
+            logger.info("File does not exist, nothing to delete")
+            return
+
+        self.file_path.unlink()
+        logger.info("Deleted file: %s", self.file_path)
+
+        if delete_parent_dir:
+            try:
+                self.file_path.parent.rmdir()
+                logger.info("Removed empty directory: %s", self.file_path.parent)
+            except OSError:
+                logger.exception(
+                    "Directory not empty or not enough permissions. Cannot be removed: %s", self.file_path.parent
+                )

src/twyn/main.py

@@ -9,12 +9,13 @@
     AvailableLoggingLevels,
     SelectorMethod,
 )
-from twyn.base.utils import _normalize_packages
+from twyn.base.utils import normalize_packages
 from twyn.config.config_handler import ConfigHandler
 from twyn.dependency_parser.dependency_selector import DependencySelector
 from twyn.file_handler.file_handler import FileHandler
 from twyn.similarity.algorithm import EditDistance, SimilarityThreshold
 from twyn.trusted_packages import TopPyPiReference
+from twyn.trusted_packages.cache_handler import CacheHandler
 from twyn.trusted_packages.selectors import AbstractSelector
 from twyn.trusted_packages.trusted_packages import (
     TrustedPackages,
@@ -39,15 +40,16 @@ def check_dependencies(
     )
     _set_logging_level(config.logging_level)
 
+    cache_handler = CacheHandler()
     trusted_packages = TrustedPackages(
-        names=TopPyPiReference(source=config.pypi_reference).get_packages(use_cache),
+        names=TopPyPiReference(source=config.pypi_reference, cache_handler=cache_handler).get_packages(use_cache),
         algorithm=EditDistance(),
         selector=get_candidate_selector(config.selector_method),
         threshold_class=SimilarityThreshold,
     )
-    normalized_allowlist_packages = _normalize_packages(config.allowlist)
+    normalized_allowlist_packages = normalize_packages(config.allowlist)
     dependencies = dependencies if dependencies else get_parsed_dependencies_from_file(config.dependency_file)
-    normalized_dependencies = _normalize_packages(dependencies)
+    normalized_dependencies = normalize_packages(dependencies)
 
     errors: list[TyposquatCheckResult] = []
     for dependency in track(normalized_dependencies, description="Processing..."):

src/twyn/trusted_packages/cache_handler.py

@@ -0,0 +1,124 @@
+import json
+import logging
+import os
+from datetime import datetime
+from hashlib import md5
+from pathlib import Path
+from typing import Optional
+
+from pydantic import BaseModel, ValidationError, field_validator
+
+from twyn.base.exceptions import PackageNormalizingError
+from twyn.base.utils import normalize_packages
+from twyn.file_handler.exceptions import PathIsNotFileError, PathNotFoundError
+from twyn.file_handler.file_handler import FileHandler
+from twyn.trusted_packages.constants import CACHE_DIR, TRUSTED_PACKAGES_MAX_RETENTION_DAYS
+
+logger = logging.getLogger("twyn")
+
+
+class CacheEntry(BaseModel):
+    saved_date: str
+    packages: set[str]
+
+    @field_validator("saved_date")
+    @classmethod
+    def validate_saved_date(cls, v: str) -> str:
+        try:
+            datetime.fromisoformat(v)
+        except (ValueError, TypeError) as e:
+            raise ValueError(f"Invalid saved_date format: {e}") from e
+        else:
+            return v
+
+    @field_validator("packages")
+    @classmethod
+    def validate_packages(cls, v: set[str]) -> set[str]:
+        try:
+            return normalize_packages(v)
+        except PackageNormalizingError as e:
+            raise ValueError(f"Failed to normalize packages: {e}") from e
+
+
+class CacheHandler:
+    """Cache class that provides basic read/write/delete operation for individual source cache files."""
+
+    def __init__(self, cache_dir: str = CACHE_DIR) -> None:
+        self.cache_dir = cache_dir
+
+    def write_entry(self, source: str, data: CacheEntry) -> None:
+        """Save cache entry to source-specific cache file."""
+        file_handler = self._get_file_handler(source)
+        # Ensure parent directory exists
+        file_handler.file_path.parent.mkdir(parents=True, exist_ok=True)
+        file_handler.write(data.model_dump_json())
+        logger.debug("Successfully wrote cache data to %s", file_handler.file_path)
+
+    def get_cache_entry(self, source: str) -> Optional[CacheEntry]:
+        """Retrieve cache entry from source-specific cache file."""
+        file_handler = self._get_file_handler(source)
+        try:
+            content = file_handler.read()
+        except (PathNotFoundError, PathIsNotFileError):
+            logger.debug("Cache file not found: %s", file_handler.file_path)
+            return None
+
+        try:
+            json_content = json.loads(content)
+        except json.JSONDecodeError as e:
+            logger.warning("Failed to decode JSON from cache file %s: %s", file_handler.file_path, e)
+            return None
+
+        if not json_content:
+            return None
+
+        try:
+            entry = CacheEntry(**json_content)
+            if not self.is_entry_outdated(entry):
+                return entry
+        except ValidationError:
+            logger.warning("Could not read cache for source %s. Cache is corrupt.", source)
+            self._clear_entry(source)
+
+        return None
+
+    def is_entry_outdated(self, entry: CacheEntry) -> bool:
+        """Check if a cache entry is outdated based on retention days."""
+        try:
+            saved_date = datetime.fromisoformat(entry.saved_date).date()
+            days_diff = (datetime.today().date() - saved_date).days
+        except (ValueError, AttributeError):
+            logger.warning("Invalid date format in cache entry")
+            return True
+        else:
+            return days_diff > TRUSTED_PACKAGES_MAX_RETENTION_DAYS
+
+    def clear_all(self) -> None:
+        """Delete all cache files in the cache directory."""
+        for root, _dirs, files in os.walk(self.cache_dir):
+            for file in files:
+                if file.endswith(".json"):
+                    FileHandler(os.path.join(root, file)).delete()
+
+        # Remove parent directory if it exists and is empty
+        cache_path = Path(self.cache_dir)
+        if cache_path.exists() and cache_path.is_dir():
+            try:
+                cache_path.rmdir()
+            except OSError:
+                logger.exception("Could not delete cache directory.")
+
+    def get_cache_file_path(self, source: str) -> str:
+        """Generate cache file path for a specific source."""
+        safe_filename = md5(source.encode()).hexdigest()
+        return str(Path(self.cache_dir) / f"{safe_filename}.json")
+
+    def _get_file_handler(self, source: str) -> FileHandler:
+        """Get file handler for a specific source cache file."""
+        cache_file_path = self.get_cache_file_path(source)
+        return FileHandler(cache_file_path)
+
+    def _clear_entry(self, source: str) -> None:
+        """Delete cache file for a specific source."""
+        file_handler = self._get_file_handler(source)
+        file_handler.delete(delete_parent_dir=False)

src/twyn/trusted_packages/constants.py

@@ -1,5 +1,5 @@
 # Cache configuration constants
-TRUSTED_PACKAGES_FILE_PATH = ".twyn/trusted_packages.json"
+CACHE_DIR = ".twyn"
 TRUSTED_PACKAGES_MAX_RETENTION_DAYS = 30