SNOW-160665 add wss.sh (#176)

sfc-gh-stakeda · web-flow · commit 7c033c165739 · 2020-05-18T17:45:09.000-07:00
diff --git a/.gitignore b/.gitignore
@@ -97,3 +97,8 @@ ENV/
 generated_version.py
 *coverage.xml
 parameters.py
+
+# WhiteSource Scan
+wss-*agent.config
+wss-unified-agent.jar
+whitesource/
diff --git a/.travis.yml b/.travis.yml
@@ -26,3 +26,4 @@ env:
   - secure: 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
   - secure: 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
   - secure: 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
+  - secure: X5LNF/HMGvKL9nArM6TlV2fuA930b5NECU95bJSsuemJEbEewPi8Fl/I8LF/y9EjEPAs2i+vV74Ywbg6rbAtLl7WEBbpKiQiUeQZcVgCVKra8m7ewh8d8v2Ss3v7kB8GR2pyHFbz2jgw6XuKXeI4aFVyFW51chxSmyEVde/4COIO8rlFXk6J2lIHHdFQ+5x88kPXVhx7DcvEXvTjDSrRVnNjLbh01uZ/GTY6W2RfWn1CI9AuaVVd8riyscEyca4u3W8idgJjvMuy7l1wZOVdnSfySex5heeguzCj/dkhuoBXhng5mzI/MBOpDUF3t69CUJM6ZSyJedHmri9FAtm6kjn2DWvydikcEPnlMyEpgSW1l6yeRfOkJC5MqsYgAaa7kmzuu8gbcjfQgH4K5ICqTSAGa0UYYGyd44op7imXzzuJoCF2jFKqV7vLitv7TYgw5Wx+/hAOrGAbtMeih+BxAqH0shA+EfMSwXcVj0qQl8VA9udRpQmrvGMeAs1e9n5xy4MkF4KosZiLrYljRE2KK0A7aTDidv7B5gzGtMJhwV0ZzZAXMUsocAMDPDk9YU+bJemgAyB0X+FmzizqHUxLQrfbjdJ0NSrLDXMjMvkUn2oL+6QedYpwP/l1QKlDgzwiyzJDuCRk/Tgyar9jvUh3MolOTmA99XUW9gbIGuUTP5o=
diff --git a/ci/wss.sh b/ci/wss.sh
@@ -0,0 +1,169 @@
+#!/usr/bin/env bash
+#
+# Run whitesource for components which need versioning
+set -e
+set -o pipefail
+
+THIS_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+
+[[ -z "$WHITESOURCE_API_KEY" ]] && echo "[WARNING] No WHITESOURCE_API_KEY is set. No WhiteSource scan will occur." && exit 0
+
+if [[ -z "$VIRTUAL_ENV" ]]; then
+    PY=
+    TMP_VENV=$(mktemp -d)
+    if which python3 >& /dev/null; then
+        PY=python3
+    elif which python3.7 >& /dev/null; then
+        PY=python3.7
+    elif which python3.6 >& /dev/null; then
+        PY=python3.6
+    elif which python3.5 >& /dev/null; then
+        PY=python3.5
+    elif which python >& /dev/null; then
+        if [[ "$(python -c 'import sys; print(sys.version_info.major)')" == "3" ]]; then
+            PY=python
+        fi
+    fi
+    [[ -z "$PY" ]] && echo "[ERROR] Failed to find Python3" && exit 1
+
+    echo "[INFO] Installing Python Virtualenv"
+    $PY -m venv $TMP_VENV >& /dev/null
+    source $TMP_VENV/bin/activate
+    IS_IN_CUSTOM_VENV=true
+else
+    echo "[INFO] Using Python Virtualenv $VIRTUAL_ENV"
+fi
+pip install -U pip virtualenv >& /dev/null
+
+export PRODUCT_NAME=SQLAlchemy
+export PROJECT_NAME=SQLAlchemy
+
+DATE=$(date +'%m-%d-%Y')
+
+SCAN_DIRECTORIES=$(cd $THIS_DIR/.. && pwd)
+
+rm -f wss-unified-agent.jar 
+curl -LO https://github.com/whitesource/unified-agent-distribution/releases/latest/download/wss-unified-agent.jar
+
+# whitesource will scan the folder and detect the corresponding configuration
+# configuration file wss-generated-file.config will be generated under ${SCAN_DIRECTORIES}
+# java -jar wss-unified-agent.jar -detect -d ${SCAN_DIRECTORIES}
+# SCAN_CONFIG="${SCAN_DIRECTORIES}/wss-generated-file.config"
+
+# SCAN_CONFIG is the path to your whitesource configuration file
+SCAN_CONFIG=wss-agent.config
+cat > $SCAN_CONFIG <<CONFIG
+###############################################################
+# WhiteSource Unified-Agent configuration file
+###############################################################
+# PYTHON SCAN MODE: setup.py
+###############################################################
+
+apiKey=
+#userKey is required if WhiteSource administrator has enabled "Enforce user level access" option
+#userKey=
+#requesterEmail=user@provider.com
+
+projectName=
+projectVersion=
+projectToken=
+#projectTag= key:value
+
+productName=
+productVersion=
+productToken=
+
+#projectPerFolder=true
+#projectPerFolderIncludes=
+#projectPerFolderExcludes=
+
+#wss.connectionTimeoutMinutes=60
+wss.url=https://saas.whitesourcesoftware.com/agent
+
+############
+# Policies #
+############
+checkPolicies=true
+forceCheckAllDependencies=false
+forceUpdate=false
+forceUpdate.failBuildOnPolicyViolation=false
+#updateInventory=false
+
+###########
+# General #
+###########
+#offline=false
+#updateType=APPEND
+#ignoreSourceFiles=true
+#scanComment=
+#failErrorLevel=ALL
+#requireKnownSha1=false
+
+#generateProjectDetailsJson=true
+#generateScanReport=true
+#scanReportTimeoutMinutes=10
+#scanReportFilenameFormat=
+
+#analyzeFrameworks=true
+#analyzeFrameworksReference=
+
+#updateEmptyProject=false
+
+#log.files.level=
+#log.files.maxFileSize=
+#log.files.maxFilesCount=
+#log.files.path=
+
+########################################
+# Package Manager Dependency resolvers #
+########################################
+resolveAllDependencies=false
+
+python.resolveDependencies=true
+python.ignoreSourceFiles=false
+python.ignorePipInstallErrors=true
+python.installVirtualenv=false # set this parameter to true if using virtualenv to build the project
+python.resolveHierarchyTree=false
+python.resolveSetupPyFiles=true
+python.runPipenvPreStep=false
+#python.IgnorePipenvInstallErrors=true
+python.resolveGlobalPackages=false  
+
+###########################################################################################
+# Includes/Excludes Glob patterns - Please use only one exclude line and one include line #
+###########################################################################################
+includes=**/*.egg **/*.whl **/*.py
+
+#Exclude file extensions or specific directories by adding **/*.<extension> or **/<excluded_dir>/**
+excludes=**/*sources.jar **/*javadoc.jar
+
+case.sensitive.glob=false
+followSymbolicLinks=true
+CONFIG
+
+echo "[INFO] Running wss.sh for ${PROJECT_NAME}-${PRODUCT_NAME} under ${SCAN_DIRECTORIES}"
+java -jar wss-unified-agent.jar -apiKey ${WHITESOURCE_API_KEY} \
+    -c ${SCAN_CONFIG} \
+    -project ${PROJECT_NAME} \
+    -product ${PRODUCT_NAME} \
+    -d ${SCAN_DIRECTORIES} \
+    -wss.url https://saas.whitesourcesoftware.com/agent \
+    -offline true
+
+if java -jar wss-unified-agent.jar -apiKey ${WHITESOURCE_API_KEY} \
+   -c ${SCAN_CONFIG} \
+   -project ${PROJECT_NAME} \
+   -product ${PRODUCT_NAME} \
+   -projectVersion baseline \
+   -requestFiles whitesource/update-request.txt \
+   -wss.url https://saas.whitesourcesoftware.com/agent ; then
+    echo "checkPolicies=false" >> ${SCAN_CONFIG}
+    java -jar wss-unified-agent.jar -apiKey ${WHITESOURCE_API_KEY} \
+        -c ${SCAN_CONFIG} \
+        -project ${PROJECT_NAME} \
+        -product ${PRODUCT_NAME} \
+        -projectVersion ${DATE} \
+        -requestFiles whitesource/update-request.txt \
+        -wss.url https://saas.whitesourcesoftware.com/agent
+fi
+[[ -n "$IS_IN_CUSTOM_VENV" ]] && deactivate || true
diff --git a/scripts/install.sh b/scripts/install.sh
@@ -4,6 +4,8 @@
 #
 set -o pipefail
 
+SCRIPTS_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+
 if [ "$TRAVIS_OS_NAME" == "osx" ]; then
     curl -O https://www.python.org/ftp/python/${PYTHON_VERSION}/python-${PYTHON_VERSION}-macosx10.9.pkg
     sudo installer -pkg python-${PYTHON_VERSION}-macosx10.9.pkg -target /
@@ -23,6 +25,9 @@ else
     openssl aes-256-cbc -k "$super_secret_password" -in parameters.py.enc -out test/parameters.py -d
 fi
 
+if [ "$TRAVIS_OS_NAME" != "osx" ]; then
+    $SCRIPTS_DIR/../ci/wss.sh
+fi
 source ./venv/bin/activate
 pip install '.[development]'
 pip list --format=columns
