Add support for on demand addon_pipeline in /api/collect endpoints

minecode/model_utils.py

@@ -30,6 +30,11 @@
 DEFAULT_PIPELINES = (
     'scan_single_package',
     'fingerprint_codebase',
+)
+
+# These are the list of supported addon pipelines to run when we scan a Package for
+# indexing.
+SUPPORTED_ADDON_PIPELINES = (
     'collect_symbols',
     'collect_source_strings',
     'inspect_elf_binaries',

minecode/tests/test_conan.py

@@ -98,7 +98,7 @@ def test_map_conan_package(self, mock_get_conan_recipe):
         package_count = packagedb.models.Package.objects.all().count()
         self.assertEqual(package_count, 0)
 
-        conan.map_conan_package(self.package_url1)
+        conan.map_conan_package(self.package_url1, ('test_pipelines'))
         package_count = packagedb.models.Package.objects.all().count()
         self.assertEqual(package_count, 1)
         package = packagedb.models.Package.objects.all().first()

minecode/tests/test_generic.py

@@ -49,7 +49,7 @@ def test_map_generic_package(self):
 
         purl = 'pkg:generic/test@1.0.0?download_url=http://example.com/test.tar.gz'
         package_url = PackageURL.from_string(purl)
-        error_msg = generic.map_generic_package(package_url)
+        error_msg = generic.map_generic_package(package_url, ('test_pipeline'))
 
         self.assertEqual('', error_msg)
         package_count = Package.objects.all().count()
@@ -65,7 +65,7 @@ def test_map_fetchcode_supported_package(self):
         self.assertEqual(0, package_count)
 
         purl = PackageURL.from_string("pkg:generic/udhcp@0.9.1")
-        error_msg = generic.map_fetchcode_supported_package(purl)
+        error_msg = generic.map_fetchcode_supported_package(purl, ('test_pipeline'))
 
         self.assertEqual('', error_msg)
         package_count = Package.objects.all().count()

minecode/tests/test_maven.py

@@ -720,7 +720,7 @@ def test_map_maven_package(self):
         package_count = packagedb.models.Package.objects.all().count()
         self.assertEqual(0, package_count)
         package_url = PackageURL.from_string(self.scan_package.purl)
-        maven_visitor.map_maven_package(package_url, packagedb.models.PackageContentType.BINARY)
+        maven_visitor.map_maven_package(package_url, packagedb.models.PackageContentType.BINARY, ('test_pipeline'))
         package_count = packagedb.models.Package.objects.all().count()
         self.assertEqual(1, package_count)
         package = packagedb.models.Package.objects.all().first()
@@ -732,7 +732,7 @@ def test_map_maven_package_custom_repo_url(self):
         self.assertEqual(0, package_count)
         custom_repo_purl = "pkg:maven/org.eclipse.core/runtime@20070801?repository_url=https://packages.atlassian.com/mvn/maven-atlassian-external/"
         package_url = PackageURL.from_string(custom_repo_purl)
-        maven_visitor.map_maven_package(package_url, packagedb.models.PackageContentType.BINARY)
+        maven_visitor.map_maven_package(package_url, packagedb.models.PackageContentType.BINARY, ('test_pipeline'))
         package_count = packagedb.models.Package.objects.all().count()
         self.assertEqual(1, package_count)
         package = packagedb.models.Package.objects.all().first()

minecode/tests/test_npm.py

@@ -199,7 +199,7 @@ def test_map_npm_package(self):
         package_count = packagedb.models.Package.objects.all().count()
         self.assertEqual(0, package_count)
         package_url = PackageURL.from_string(self.scan_package.purl)
-        npm.map_npm_package(package_url)
+        npm.map_npm_package(package_url, ('test_pipeline'))
         package_count = packagedb.models.Package.objects.all().count()
         self.assertEqual(1, package_count)
         package = packagedb.models.Package.objects.all().first()

minecode/visitors/conan.py

@@ -99,7 +99,7 @@ def get_download_info(conandata, version):
     return download_url, sha256
 
 
-def map_conan_package(package_url):
+def map_conan_package(package_url, pipelines):
     """
     Add a conan `package_url` to the PackageDB.
 
@@ -134,13 +134,13 @@ def map_conan_package(package_url):
 
     # Submit package for scanning
     if db_package:
-        add_package_to_scan_queue(db_package)
+        add_package_to_scan_queue(db_package, pipelines)
 
     return error
 
 
 @priority_router.route("pkg:conan/.*")
-def process_request(purl_str):
+def process_request(purl_str, **kwargs):
     """
     Process `priority_resource_uri` containing a conan Package URL (PURL) as a
     URI.
@@ -149,11 +149,16 @@ def process_request(purl_str):
     https://github.com/conan-io/conan-center-index and using it to create a new
     PackageDB entry. The package is then added to the scan queue afterwards.
     """
+    from minecode.model_utils import DEFAULT_PIPELINES
+
     package_url = PackageURL.from_string(purl_str)
+    addon_pipelines = kwargs.get('addon_pipelines', [])
+    pipelines = DEFAULT_PIPELINES + tuple(addon_pipelines)
+
     if not package_url.version:
         return
 
-    error_msg = map_conan_package(package_url)
+    error_msg = map_conan_package(package_url, pipelines)
 
     if error_msg:
         return error_msg

minecode/visitors/debian.py

@@ -332,7 +332,12 @@ def process_request(purl_str, **kwargs):
 
     Return an error string for errors that occur, or empty string if there is no error.
     """
+    from minecode.model_utils import DEFAULT_PIPELINES
+
     source_purl = kwargs.get("source_purl", None)
+    addon_pipelines = kwargs.get('addon_pipelines', [])
+    pipelines = DEFAULT_PIPELINES + tuple(addon_pipelines)
+
     try:
         package_url = PackageURL.from_string(purl_str)
         source_package_url = None
@@ -348,12 +353,13 @@ def process_request(purl_str, **kwargs):
         error = map_debian_metadata_binary_and_source(
             package_url=package_url, 
             source_package_url=source_package_url,
+            pipelines=pipelines,
         )
 
     return error
 
 
-def map_debian_package(debian_package, package_content):
+def map_debian_package(debian_package, package_content, pipelines):
     """
     Add a debian `package_url` to the PackageDB.
 
@@ -421,7 +427,7 @@ def map_debian_package(debian_package, package_content):
 
     # Submit package for scanning
     if db_package:
-        add_package_to_scan_queue(db_package)
+        add_package_to_scan_queue(db_package, pipelines)
 
     return db_package, error
 
@@ -501,13 +507,13 @@ def update_license_copyright_fields(package_from, package_to, replace=True):
             setattr(package_to, field, value)
 
 
-def map_debian_metadata_binary_and_source(package_url, source_package_url):
+def map_debian_metadata_binary_and_source(package_url, source_package_url, pipelines):
     """
     Get metadata for the binary and source release of the Debian package
     `package_url` and save it to the PackageDB.
 
     Return an error string for errors that occur, or empty string if there is no error.
-    """
+    """    
     error = ''
 
     if "repository_url" in package_url.qualifiers:
@@ -537,6 +543,7 @@ def map_debian_metadata_binary_and_source(package_url, source_package_url):
     binary_package, emsg = map_debian_package(
         debian_package,
         PackageContentType.BINARY,
+        pipelines,
     )
     if emsg:
         error += emsg
@@ -545,6 +552,7 @@ def map_debian_metadata_binary_and_source(package_url, source_package_url):
     source_package, emsg = map_debian_package(
         debian_package,
         PackageContentType.SOURCE_ARCHIVE,
+       pipelines,
     )
     if emsg:
         error += emsg

minecode/visitors/generic.py

@@ -26,7 +26,7 @@
 logger.setLevel(logging.INFO)
 
 
-def map_generic_package(package_url):
+def map_generic_package(package_url, pipelines):
     """
     Add a npm `package_url` to the PackageDB.
 
@@ -51,17 +51,22 @@ def map_generic_package(package_url):
 
     # Submit package for scanning
     if db_package:
-        add_package_to_scan_queue(db_package)
+        add_package_to_scan_queue(db_package, pipelines)
 
     return error
 
 
 @priority_router.route("pkg:generic/.*?download_url=.*")
-def process_request(purl_str):
+def process_request(purl_str, **kwargs):
     """
     Process `priority_resource_uri` containing a generic Package URL (PURL) with
     download_url as a qualifier
     """
+    from minecode.model_utils import DEFAULT_PIPELINES
+
+    addon_pipelines = kwargs.get('addon_pipelines', [])
+    pipelines = DEFAULT_PIPELINES + tuple(addon_pipelines)
+
     try:
         package_url = PackageURL.from_string(purl_str)
     except ValueError as e:
@@ -73,7 +78,7 @@ def process_request(purl_str):
         error = f'package_url {purl_str} does not contain a download_url qualifier'
         return error
 
-    error_msg = map_generic_package(package_url)
+    error_msg = map_generic_package(package_url, pipelines)
 
     if error_msg:
         return error_msg
@@ -91,7 +96,7 @@ def packagedata_from_dict(package_data):
     return PackageData.from_data(cleaned_package_data)
 
 
-def map_fetchcode_supported_package(package_url):
+def map_fetchcode_supported_package(package_url, pipelines):
     """
     Add a `package_url` supported by fetchcode to the PackageDB.
 
@@ -116,7 +121,7 @@ def map_fetchcode_supported_package(package_url):
 
     # Submit package for scanning
     if db_package:
-        add_package_to_scan_queue(db_package)
+        add_package_to_scan_queue(db_package, pipelines)
 
     return error
 
@@ -156,7 +161,7 @@ def map_fetchcode_supported_package(package_url):
 # Indexing some generic PURLs requires a GitHub API token.
 # Please add your GitHub API key to the `.env` file, for example: `GH_TOKEN=your-github-api`.
 @priority_router.route(*GENERIC_FETCHCODE_SUPPORTED_PURLS)
-def process_request_fetchcode_generic(purl_str):
+def process_request_fetchcode_generic(purl_str, **kwargs):
     """
     Process `priority_resource_uri` containing a generic Package URL (PURL)
     supported by fetchcode.
@@ -165,13 +170,18 @@ def process_request_fetchcode_generic(purl_str):
     https://github.com/nexB/fetchcode and using it to create a new
     PackageDB entry. The package is then added to the scan queue afterwards.
     """
+    from minecode.model_utils import DEFAULT_PIPELINES
+
+    addon_pipelines = kwargs.get('addon_pipelines', [])
+    pipelines = DEFAULT_PIPELINES + tuple(addon_pipelines)
+
     try:
         package_url = PackageURL.from_string(purl_str)
     except ValueError as e:
         error = f"error occurred when parsing {purl_str}: {e}"
         return error
 
-    error_msg = map_fetchcode_supported_package(package_url)
+    error_msg = map_fetchcode_supported_package(package_url, pipelines)
 
     if error_msg:
         return error_msg

minecode/visitors/github.py

@@ -186,21 +186,25 @@ def json_serial_date_obj(obj):
 # Indexing GitHub PURLs requires a GitHub API token.
 # Please add your GitHub API key to the `.env` file, for example: `GH_TOKEN=your-github-api`.
 @priority_router.route('pkg:github/.*')
-def process_request_dir_listed(purl_str):
+def process_request_dir_listed(purl_str, **kwargs):
     """
     Process `priority_resource_uri` containing a GitHub Package URL (PURL).
 
     This involves obtaining Package information for the PURL using
     https://github.com/nexB/fetchcode and using it to create a new
     PackageDB entry. The package is then added to the scan queue afterwards.
     """
+    from minecode.model_utils import DEFAULT_PIPELINES
+
+    addon_pipelines = kwargs.get('addon_pipelines', [])
+    pipelines = DEFAULT_PIPELINES + tuple(addon_pipelines)
     try:
         package_url = PackageURL.from_string(purl_str)
     except ValueError as e:
         error = f"error occurred when parsing {purl_str}: {e}"
         return error
 
-    error_msg = map_fetchcode_supported_package(package_url)
+    error_msg = map_fetchcode_supported_package(package_url, pipelines)
 
     if error_msg:
         return error_msg

minecode/visitors/gnu.py

@@ -22,7 +22,7 @@
 
 
 @priority_router.route("pkg:gnu/.*")
-def process_request(purl_str):
+def process_request(purl_str, **kwargs):
     """
     Process `priority_resource_uri` containing a GNU Package URL (PURL) as a
     URI.
@@ -31,11 +31,16 @@ def process_request(purl_str):
     https://github.com/nexB/fetchcode and using it to create a new
     PackageDB entry. The package is then added to the scan queue afterwards.
     """
+    from minecode.model_utils import DEFAULT_PIPELINES
+
+    addon_pipelines = kwargs.get('addon_pipelines', [])
+    pipelines = DEFAULT_PIPELINES + tuple(addon_pipelines)
+
     package_url = PackageURL.from_string(purl_str)
     if not package_url.version:
         return
 
-    error_msg = map_fetchcode_supported_package(package_url)
+    error_msg = map_fetchcode_supported_package(package_url, pipelines)
 
     if error_msg:
         return error_msg