Skip to content

feat:add new package(composer, greadle, maven, nuget, apt and yum)#1

Closed
Nugroho-00 wants to merge 1 commit intomulhamna:mainfrom
Nugroho-00:feat/add-packagev1
Closed

feat:add new package(composer, greadle, maven, nuget, apt and yum)#1
Nugroho-00 wants to merge 1 commit intomulhamna:mainfrom
Nugroho-00:feat/add-packagev1

Conversation

@Nugroho-00
Copy link
Copy Markdown
Contributor

@Nugroho-00 Nugroho-00 commented Apr 10, 2026

No description provided.

@mulhamna
Copy link
Copy Markdown
Owner

mulhamna commented Apr 10, 2026

@Nugroho-00

Ada beberapa hal yang perlu diaddress sebelum bisa di-merge:

Inline Comment — src/scanners/apt.js

Conflict alert: di branch lain yang juga mau di-merge ke main (review/pkgmap-cli-patch),
sudah ada apt.js dengan implementasi berbeda — pakai dpkg-query bukan apt list.
Kalau keduanya masuk, akan ada file conflict. Kita perlu align dulu mau pakai
implementasi yang mana. Will coordinate on this before merging.

Inline Comment — src/scanners/gradle.js (di bagian readdirSync)

readdirSync ini bisa sangat lambat kalau ~/.gradle/caches besar (dan biasanya memang
besar di mesin dev). Tidak ada timeout mechanism di sini. Pertimbangkan untuk wrap
dalam try-catch dengan manual time check, atau kasih warning ke user kalau proses
ini lama. Scanner lain pakai execSync dengan option timeout: 10000, tapi filesystem
walk tidak bisa di-timeout dengan cara yang sama.

Inline Comment — src/scanners/maven.js (sama, di bagian walkMavenRepo)

Sama seperti gradle.js — recursive walk di ~/.m2/repository bisa sangat lambat
kalau repo Maven-nya besar. Maven repos sering ratusan MB dengan ribuan artifacts.
Perlu ada proteksi supaya tidak block proses terlalu lama.

Inline Comment — src/scanners/nuget.js (di fungsi getNugetGlobalPackagesPath)

execSync di dalam fungsi ini tidak ada try-catch. Kalau dotnet nuget locals atau
nuget locals gagal (misalnya karena permission atau binary error), exception-nya
tidak tertangkap di level ini dan akan bubble up sebelum sampai ke outer try-catch
di fungsi scan(). Sebaiknya wrap bagian ini dengan try-catch sendiri.

nanti pull ulang ya

@mulhamna mulhamna mentioned this pull request Apr 13, 2026
Merged
mulhamna added a commit that referenced this pull request Apr 13, 2026
@mulhamna @Nugroho-00
feat: integrate PR #1 and prepare pkgmap v0.3.0 (#3)
29685d8 
* feat:add new package(composer, greadle, maven, nuget, apt and yum)

* chore: align lockfile package name

* ci: add npm publish workflow with version gate

* style: format new scanner files

---------

Co-authored-by: Nugroho-00 <snugroho211@gmail.com>
@github-actions github-actions Bot mentioned this pull request Apr 16, 2026
Merged
@mulhamna mulhamna closed this Apr 16, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Nugroho-00 @mulhamna