feat: implement CMake dependency scanning by rjaegers · Pull Request #1 · brenocq/cmake-dependency-submission

rjaegers · 2023-07-20T14:17:21Z

Dear repository owner, I had an idea of creating a GitHub Action to scan CMakeList files for FetchContent usage and submit that to the GitHub Dependency Submission API. After a quick Google I came across your initial efforts to implement such an action.

I have taken the liberty to fork your efforts and implemented the actual scanning. I have added a 'glob' mode and a 'configure' mode. Details are in the updated README.md. The first mode globs for CMake files and the second mode actually asks CMake what files it saw during a configure step.

I hope we can team-up to get this Action deployed in the GitHub ecosystem.

Please let me know your thoughts. Thanks in advance for taking the time for the initial effort and taking the time to look at this, rather big, PR!

Some details might need to be changed before this PR can be merged, like some repository references. And I have some future ideas to make the Action even more useful. But that's for a later stage.

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…ncy-submission

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

rjaegers added 30 commits July 17, 2023 20:23

build: add devcontainer

d73081e

refactor: remove trailing spaces

602e84c

refactor: couple main to detector and add tests

5b13b05

ci: update actions

be18181

ci: update test.yml

54b7030

build: update dist folder

62141b0

build: update dist folder

778774e

refactor: improved dection robustness

904e0af

chore: update dependencies

100e0d3

chore: remove quotes from quoted arguments

f4773f4

chore: revert to es2019 for compatibility

5b7afd4

chore: fix build

1724327

feat: support multiple CMake files

14c6dc3

chore: fix glob path

ac5524b

feat: add dependency submission

27dc41a

build: enable dependency scanner

47a58a8

build: fix build

6e5a1fe

chore: check with commit sha

6713d67

ci: add additional dependency

ebd5aa9

chore: adhere to purl spec

388b300

feat: determine correct purl type

d8661bc

refactor: add file to BuildTarget

cfc915e

feat: couple correct file to BuildTargets

a7eebeb

chore: try out different types

169d0f6

build: fix build

d2f1be6

chore: try out different types

dd0378d

chore: try out different types

b61825b

chore: restore type

73ab3fa

docs: update README.md

c547f0a

ci: try-out permission claim

d0ba98e

dependabot bot and others added 30 commits November 21, 2023 07:41

build(deps-dev): bump @types/jest from 29.5.5 to 29.5.8 (#25)

d941131

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps): bump actions/setup-node from 3 to 4 (#23)

413ed5e

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps): bump undici from 5.22.1 to 5.26.3 (#18)

9787eb3

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps-dev): bump @babel/traverse from 7.22.8 to 7.23.2 (#19)

ecfd5c9

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps): bump actions/checkout from 4.1.0 to 4.1.1 (#20)

1fcd1b1

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps-dev): bump @vercel/ncc from 0.38.0 to 0.38.1 (#22)

dc4e0ae

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps-dev): bump typescript from 5.2.2 to 5.3.2 (#26)

74043ac

build(deps-dev): bump @types/jest from 29.5.8 to 29.5.10 (#27)

bb5e24a

build(deps-dev): bump @types/jest from 29.5.10 to 29.5.11 (#28)

11dccb6

build(deps-dev): bump typescript from 5.3.2 to 5.3.3 (#29)

44b6c15

build(deps-dev): bump ts-jest from 29.1.1 to 29.1.2 (#33)

7486a76

build(deps-dev): bump @types/jest from 29.5.11 to 29.5.12 (#34)

617409f

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps): bump glob from 10.3.10 to 10.3.12 (#40)

ba9d88e

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps): bump undici from 5.26.3 to 5.28.4 (#41)

78ee9cd

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps-dev): bump typescript from 5.3.3 to 5.4.5 (#43)

9492013

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps): bump actions/checkout from 4.1.1 to 4.1.3 (#44)

f1a754b

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

chore: update action to node20

609c578

Merge branch 'main' of https://github.com/philips-forks/cmake-depende…

8ea70d1

…ncy-submission

chore: update dist

d02af79

chore: update dist

12f1412

chore: make sure ncc is installed globally

3f1819a

chore: update to depencency-submission-toolkit 2.0.4

21cb730

chore: update packageurl-js to 1.2.1

eec05c1

build(deps): bump actions/checkout from 4.1.3 to 4.1.5 (#47)

0218480

build(deps): bump glob from 10.3.12 to 10.3.15 (#46)

7231790

build(deps): bump actions/checkout from 4.1.5 to 4.1.7 (#53)

0ec687d

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps): bump glob from 10.3.15 to 11.0.0 (#58)

3176452

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#60)

7c311b1

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps-dev): bump @vercel/ncc from 0.38.1 to 0.38.3 (#74)

98a4b68

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

build(deps): bump cross-spawn from 7.0.3 to 7.0.6 (#75)

d1e9641

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: implement CMake dependency scanning#1

feat: implement CMake dependency scanning#1
rjaegers wants to merge 99 commits intobrenocq:mainfrom
philips-forks:main

rjaegers commented Jul 20, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

rjaegers commented Jul 20, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant