crev-to-vet converter that converts a proof db into audits.toml

crev-dev · Sep 5, 2023 · b707474 · b707474
1 parent 20845de
commit b707474
Show file tree

Hide file tree

Showing 7 changed files with 513 additions and 20 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -6,6 +6,7 @@ members = [
 	"crev-data",
 	"crev-wot",
 	"crev-lib",
+	"crevette",
 ]
 
 [workspace.package]

diff --git a/crev-lib/src/local.rs b/crev-lib/src/local.rs
@@ -1094,35 +1094,31 @@ impl Local {
                 continue;
             }
 
-            let url = match git2::Repository::open(&path) {
-                Ok(repo) => Self::url_for_repo(&repo),
-                Err(_) => continue,
-            };
-
-            match url {
-                Ok(url) => {
-                    let _ = self
-                        .get_fetch_source_for_url(Url::new_git(url))
-                        .map(|fetch_source| {
-                            db.import_from_iter(
-                                proofs_iter_for_path(path.clone())
-                                    .map(move |p| (p, fetch_source.clone())),
-                            );
-                        })
-                        .map_err(|e| warn!("{}", e));
-                }
+            let url = match Self::url_for_repo_at_path(&path) {
+                Ok(url) => url,
                 Err(e) => {
-                    error!("in {}: {}", path.display(), e);
+                    warn!("repo at {}: {e}", path.display());
+                    continue;
                 }
-            }
+            };
+
+            let _ = self
+                .get_fetch_source_for_url(Url::new_git(url))
+                .map(|fetch_source| {
+                    db.import_from_iter(
+                        proofs_iter_for_path(path.clone()).map(move |p| (p, fetch_source.clone())),
+                    );
+                })
+                .map_err(|e| warn!("{}", e));
         }
 
         self.fetch_all_ids_recursively(fetched_urls, &mut db)?;
 
         Ok(())
     }
 
-    fn url_for_repo(repo: &git2::Repository) -> Result<String> {
+    pub fn url_for_repo_at_path(repo: &Path) -> Result<String> {
+        let repo = git2::Repository::open(repo)?;
         let remote = repo.find_remote("origin")?;
         let url = remote
             .url()

diff --git a/crevette/Cargo.toml b/crevette/Cargo.toml
@@ -0,0 +1,19 @@
+[package]
+name = "crevette"
+description = "Converter for using cargo-crev reviews with cargo-vet"
+keywords = ["cargo-vet", "crev2vet", "cargo-crev", "exporter", "supply-chain-security"]
+categories = ["development-tools"]
+authors.workspace = true
+edition.workspace = true
+license.workspace = true
+repository.workspace = true
+rust-version.workspace = true
+version.workspace = true
+
+[dependencies]
+crev-lib.workspace = true
+crev-data.workspace = true
+crev-wot.workspace = true
+semver.workspace = true
+serde.workspace = true
+toml_edit = { version = "0.19.14", features = ["serde"] }
diff --git a/crevette/src/bin/crevette.rs b/crevette/src/bin/crevette.rs
@@ -0,0 +1,26 @@
+use crevette::Crevette;
+use std::error::Error as _;
+use std::process::ExitCode;
+
+fn main() -> ExitCode {
+    match Crevette::new().and_then(|c| c.convert_into_repo()) {
+        Ok(res) => {
+            println!(
+                "Wrote '{}'\nRun `cargo crev publish` to upload the file to {}\nThen run `cargo vet import yourname {}`\n",
+                res.local_path.display(),
+                res.repo_git_url.as_deref().unwrap_or("your git repo (not configured yet?)"),
+                res.repo_https_url.as_deref().unwrap_or("https://<your repo URL>/audits.toml"),
+            );
+            ExitCode::SUCCESS
+        }
+        Err(e) => {
+            eprintln!("error: {e}");
+            let mut source = e.source();
+            while let Some(e) = source {
+                eprintln!("  {e}");
+                source = e.source();
+            }
+            ExitCode::FAILURE
+        }
+    }
+}