Move commands to internal package

Signed-off-by: Adolfo García Veytia (Puerco) <adolfo.garcia@uservers.net>

Author: puerco

cmd/baseline.go

@@ -1,211 +1 @@
 package main
-
-import (
-	"fmt"
-	"log"
-	"os"
-	"path/filepath"
-	"strings"
-	"text/template"
-
-	"gopkg.in/yaml.v3"
-)
-
-// Struct for representing each entry
-type Criterion struct {
-	ID                    string            `yaml:"id"`
-	MaturityLevel         int               `yaml:"maturity_level"`
-	Category              string            `yaml:"category"`
-	CriterionText         string            `yaml:"criterion"`
-	Rationale             string            `yaml:"rationale"`
-	Implementation        string            `yaml:"implementation"`
-	Details               string            `yaml:"details"`
-	ControlMappings       map[string]string `yaml:"control_mappings"`
-	SecurityInsightsValue string            `yaml:"security_insights_value"`
-}
-
-// Struct for holding the entire YAML structure
-type Baseline struct {
-	Categories map[string]Category
-	Lexicon    []LexiconEntry
-}
-
-type Category struct {
-	CategoryName string      `yaml:"category"`
-	Description  string      `yaml:"description"`
-	Criteria     []Criterion `yaml:"criteria"`
-}
-
-type LexiconEntry struct {
-	Term       string   `yaml:"term"`
-	Definition string   `yaml:"definition"`
-	Synonyms   []string `yaml:"synonyms"`
-	References []string `yaml:"references"`
-}
-
-func hardcodedCategories() []string {
-	return []string{
-		"AC",
-		"BR",
-		"DO",
-		"GV",
-		"LE",
-		"QA",
-		"SA",
-		"VM",
-	}
-}
-
-func filename(name string) string {
-	return filepath.Join(ContentDir, fmt.Sprintf("OSPS-%s.yaml", name))
-}
-
-func newBaseline() (Baseline, error) {
-	lexicon, err := newLexicon()
-	if err != nil {
-		return Baseline{}, fmt.Errorf("error reading lexicon: %w", err)
-	}
-	b := Baseline{
-		Categories: make(map[string]Category),
-		Lexicon:    lexicon,
-	}
-	var failed bool
-	for _, categoryName := range hardcodedCategories() {
-		category, err := newCategory(categoryName)
-		if err != nil {
-			failed = true
-			log.Printf("error reading category %s: %s", categoryName, err.Error())
-		}
-		b.Categories[categoryName] = category
-	}
-	if failed {
-		return b, fmt.Errorf("error setting up baseline")
-	}
-	return b, b.validate()
-}
-
-func (b Baseline) validate() error {
-	var entryIDs []string
-	var failed bool
-	for _, category := range b.Categories {
-		for _, entry := range category.Criteria {
-			if contains(entryIDs, entry.ID) {
-				failed = true
-				log.Printf("duplicate ID for 'criterion' for %s", entry.ID)
-			}
-			if entry.ID == "" {
-				failed = true
-				log.Printf("missing ID for 'criterion' %s", entry.ID)
-			}
-			if entry.CriterionText == "" {
-				failed = true
-				log.Printf("missing 'criterion' text for %s", entry.ID)
-			}
-			// For after all fields are populated:
-			// if entry.Rationale == "" {
-			// 	failed = true
-			// 	log.Printf("missing 'rationale' for %s", entry.ID)
-			// }
-			// if entry.Details == "" {
-			// 	failed = true
-			// 	log.Printf("missing 'details' for %s", entry.ID)
-			// }
-			entryIDs = append(entryIDs, entry.ID)
-		}
-	}
-	if failed {
-		return fmt.Errorf("error validating baseline")
-	}
-	return nil
-}
-
-func contains(list []string, term string) bool {
-	for _, item := range list {
-		if item == term {
-			return true
-		}
-	}
-	return false
-}
-
-func newCategory(categoryName string) (Category, error) {
-	file, err := os.Open(filename(categoryName))
-	if err != nil {
-		return Category{}, fmt.Errorf("error opening file: %v", err)
-	}
-	defer file.Close()
-
-	var category Category
-
-	decoder := yaml.NewDecoder(file)
-	decoder.KnownFields(true)
-	if err := decoder.Decode(&category); err != nil {
-		return category, fmt.Errorf("error decoding YAML: %v", err)
-	}
-	return category, nil
-}
-
-func newLexicon() ([]LexiconEntry, error) {
-	file, err := os.Open(LexiconPath)
-	if err != nil {
-		return nil, fmt.Errorf("error opening file: %v", err)
-	}
-	defer file.Close()
-
-	var lexicon []LexiconEntry
-
-	decoder := yaml.NewDecoder(file)
-	decoder.KnownFields(true)
-	if err := decoder.Decode(&lexicon); err != nil {
-		return nil, fmt.Errorf("error decoding YAML: %v", err)
-	}
-	return lexicon, nil
-}
-
-func (b *Baseline) Generate() error {
-	// Open or create the output file
-	oDir := filepath.Dir(OutputPath)
-	err := os.MkdirAll(oDir, os.ModePerm)
-	if err != nil {
-		return fmt.Errorf("error creating output directory %s: %w", oDir, err)
-	}
-	outputFile, err := os.Create(OutputPath)
-	if err != nil {
-		return fmt.Errorf("error creating output file %s: %w", OutputPath, err)
-	}
-	defer outputFile.Close()
-
-	// Read the markdown template from the external file
-	templateContent, err := os.ReadFile(TemplatePath)
-	if err != nil {
-		return fmt.Errorf("error reading template file: %w", err)
-	}
-
-	// Create and parse the template
-	tmpl, err := template.New("baseline").Funcs(template.FuncMap{
-		// Template function to remove newlines and collapse text
-		"collapseNewlines": func(s string) string {
-			return strings.ReplaceAll(s, "\n", " ")
-		},
-		"addLinks": func(s string) string {
-			return addLinksTemplateFunction(s)
-		},
-		"asLink": func(s string) string {
-			return asLinkTemplateFunction(s)
-		},
-		"subtract": func(a, b int) int {
-			return a - b
-		},
-	}).Parse(string(templateContent))
-	if err != nil {
-		return fmt.Errorf("error parsing template: %w", err)
-	}
-
-	// Execute the template and write to the output file
-	err = tmpl.Execute(outputFile, b)
-	if err != nil {
-		return fmt.Errorf("error executing template: %w", err)
-	}
-
-	return nil
-}

cmd/internal/cmd/compile.go

@@ -0,0 +1,101 @@
+// SPDX-FileCopyrightText: Copyright 2025 The OSPS Authors
+// SPDX-License-Identifier: Apache-2.0
+
+package cmd
+
+import (
+	"errors"
+	"fmt"
+	"os"
+
+	"github.com/ossf/security-baseline/pkg/baseline"
+	"github.com/spf13/cobra"
+)
+
+type compileOptions struct {
+	outPath      string
+	baselinePath string
+	templatePath string
+}
+
+// Validate the options in context with arguments
+func (o *compileOptions) Validate() error {
+	errs := []error{}
+
+	if o.outPath == "" {
+		errs = append(errs, errors.New("output path not specified"))
+	}
+
+	if o.baselinePath == "" {
+		errs = append(errs, errors.New("baseline path not specified"))
+	}
+	return errors.Join(errs...)
+}
+
+func (o *compileOptions) AddFlags(cmd *cobra.Command) {
+	cmd.PersistentFlags().StringVarP(
+		&o.baselinePath, "baseline", "b", "../baseline", "path to directory containing the baseline YAML data",
+	)
+
+	cmd.PersistentFlags().StringVarP(
+		&o.outPath, "output", "o", "", "path to output file (defaults to STDOUT)",
+	)
+
+	cmd.PersistentFlags().StringVarP(
+		&o.templatePath, "template", "t", "template.md", "path to the markdown template file",
+	)
+}
+
+// addCompile adds the compile subcommand to the parent command
+func addCompile(parentCmd *cobra.Command) {
+	opts := compileOptions{}
+	compileCmd := &cobra.Command{
+		Use:           "compile [file]",
+		Short:         "Compile a YAML file of security criteria",
+		SilenceUsage:  false,
+		SilenceErrors: true,
+		PreRunE: func(_ *cobra.Command, args []string) error {
+			if opts.outPath != "" && len(args) > 1 && opts.outPath != args[1] {
+				return fmt.Errorf("output path specified twice")
+			}
+
+			if len(args) > 1 {
+				opts.outPath = args[1]
+			}
+			return nil
+		},
+		RunE: func(cmd *cobra.Command, args []string) error {
+			if err := opts.Validate(); err != nil {
+				return err
+			}
+
+			cmd.SilenceUsage = true
+
+			loader := baseline.NewLoader()
+			loader.DataPath = opts.baselinePath
+
+			bline, err := loader.Load()
+			if err != nil {
+				return err
+			}
+
+			// Generate the rendered version
+			gen := baseline.NewGenerator()
+			gen.TemplatePath = opts.templatePath
+
+			if err := gen.ExportMarkdown(bline, opts.outPath); err != nil {
+				return fmt.Errorf("writing mardown render: %w", err)
+			}
+
+			fmt.Fprintf(os.Stderr, "\nBaseline rendered to %s:\n\nCategories:\n", opts.outPath)
+			for c := range bline.Categories {
+				fmt.Fprintf(os.Stderr, " OSPS-%s: %d criteria\n", c, len(bline.Categories[c].Criteria))
+			}
+			fmt.Fprintf(os.Stderr, "\n+ %d lexicon entries\n", len(bline.Lexicon))
+
+			return nil
+		},
+	}
+	opts.AddFlags(compileCmd)
+	parentCmd.AddCommand(compileCmd)
+}

cmd/internal/cmd/root.go

@@ -0,0 +1,19 @@
+// SPDX-FileCopyrightText: Copyright 2025 The OSPS Authors
+// SPDX-License-Identifier: Apache-2.0
+
+package cmd
+
+import "github.com/spf13/cobra"
+
+func Execute() error {
+	rootCmd := &cobra.Command{
+		Use:  "baseline-compiler",
+		Long: `Baseline Compiler reads the Basline YAML and outputs it as a markdown document.`,
+		Run: func(cmd *cobra.Command, args []string) {
+			cmd.Help() //nolint
+		},
+	}
+	addCompile(rootCmd)
+
+	return rootCmd.Execute()
+}