Liz.Nuke is the Nuke-Addon for liz which allows you to analyze your projects or solutions using the convenience of Nuke i.e. in your CI/CD pipelines.
Because Nuke basically is just a console-application the normal process of adding a NuGet-Package applies
# using the Package Manager
> Install-Package Liz.Nuke
# using the .NET CLI
> dotnet add package Liz.NukeThe Addin adds a new static Tasks-Class containing the following method:
Task<IEnumerable<PackageReference>> ExtractLicensesAsync(Configure<ExtractLicensesSettings> configureSettings)This method can be used to analyze your solution or project according to the provided settings.
The settings contain the following options which can be set according to your needs
| Name | Description |
|---|---|
TargetFile |
The target file that needs to be analyzed - can be a .csproj, .fsproj or sln file |
IncludeTransitiveDependencies |
Whether or not to include transitive (dependencies of dependencies) dependencies Default: false |
SuppressPrintDetails |
Whether or not to suppress printing details of analyzed package-references and license-information Default: false |
SuppressPrintIssues |
Whether or not to suppress printing found issues of analyzed package-references and license-information Default: false |
LicenseTypeDefinitions |
A list of LicenseTypeDefinitions that describe license-types by providing inclusive/exclusive license-text snippets |
LicenseTypeDefinitionsFilePath |
A path to a JSON-file (local or remote - remote will be downloaded automatically if available) containing a list of LicenseTypeDefinitions that describe license-types by providing inclusive/exclusive license-text snippets If both LicenseTypeDefinitions and LicenseTypeDefinitionsFilePath are given those two will be merged |
UrlToLicenseTypeMapping |
A mapping from license-url (key) to license-type (value) for licenses whose license-type could not be determined |
UrlToLicenseTypeMappingFilePath |
A path to a JSON-file (local or remote - remote will be downloaded automatically if available) containing a mapping from license-url (key) to license-type (value) for licenses whose license-type could not be determined If both UrlToLicenseTypeMapping and UrlToLicenseTypeMappingFilePath are given, those two will be merged, ignoring any duplicate keys |
LicenseTypeWhitelist |
A list of license-types, which are the only ones allowed, when validating the determined license-types. Any license-type which is not in the whitelist will cause the validation to fail. This option is mutually exclusive with LicenseTypeBlacklist and LicenseTypeBlacklistFilePath |
LicenseTypeWhitelistFilePath |
A path to a JSON-File (local or remote - remote will be downloaded automatically if available) containing a list of license-types, which are the only ones allowed, when validating the determined license-types. Any license-type which is not in the whitelist will cause the validation to fail. This option is mutually exclusive with LicenseTypeBlacklist and LicenseTypeBlacklistFilePath If both LicenseTypeWhitelist and LicenseTypeWhitelistFilePath are given, those two will be merged |
LicenseTypeBlacklist |
A list of license-types, which are the only ones disallowed, when validating the determined license-types. Any license-type that is the same as within that blacklist will cause the validation to fail. Any other license-type is allowed. This option is mutually exclusive with LicenseTypeWhitelist and LicenseTypeWhitelistFilePath |
LicenseTypeBlacklistFilePath |
A path to a JSON-File (local or remote - remote will be downloaded automatically if available) containing a list of license-types, which are the only ones disallowed, when validating the determined license-types. Any license-type that is the same as within that blacklist will cause the validation to fail. Any other license-type is allowed. This option is mutually exclusive with LicenseTypeWhitelist and LicenseTypeWhitelistFilePath If both LicenseTypeBlacklist and LicenseTypeBlacklistFilePath are given, those two will be merged |
ExportLicenseTextsDirectory |
A path to a directory to where the determined license-texts will be exported Each license-text will be written to an individual file with the file-name being: <package-name>-<package-version>.txt. If the license-text is the content of a website, the contents will be written into an ".html" file instead |
ExportJsonFile |
A path to a JSON-file to which the determined license- and package-information will be exported. All the information will be written to a single JSON-file. If the file already exists it will be overwritten. |
RequestTimeout |
The timeout for a request (i.e. to get the license text from a website). After this amount of time a request will be considered as failed and aborted. This defaults to 10 seconds |
ProjectExclusionGlobs |
A list of glob-patterns to exclude certain projects. A project will be excluded when it matches at least one glob-pattern. The pattern will be matched against absolute path of the project-file. All available patterns can be found here |
ProjectExclusionGlobsFilePath |
A path to a JSON-File (local or remote - remote will be downloaded automatically if available) containing a list of glob-patterns to exclude certain projects. A project will be excluded when it matches at least one glob-pattern The pattern will be matched against the absolute path of the project-file. All available patterns can be found here If both ProjectExclusionGlobs and ProjectExclusionGlobsFilePath are given, those two will be merged. |
PackageExclusionGlobs |
A list of glob-patterns to exclude certain packages. A package will be excluded when it matches at least one glob-pattern. The pattern will be matched against the name of the package. All available patterns can be found here |
PackageExclusionGlobsFilePath |
A path to a JSON-File (local or remote - remote will be downloaded automatically if available) containing a list of glob-patterns to exclude certain packages. A package will be excluded when it matches at least one glob-pattern The pattern will be matched against the name of the package. All available patterns can be found here If both PackageExclusionGlobs and PackageExclusionGlobsFilePath are given, those two will be merged. |
To support the Nuke-specific way of configuring the settings in a Fluent-API way, following extensions were added as well:
| Name | Description |
|---|---|
SetTargetFile |
Sets the TargetFile Property to the given value |
SetIncludeTransitiveDependencies |
Sets the IncludeTransitiveDependencies property to the given value |
EnableIncludeTransitiveDependencies |
Sets the IncludeTransitiveDependencies property to true |
DisableIncludeTransitiveDependencies |
Sets the IncludeTransitiveDependencies property to false |
ToggleIncludeTransitiveDependencies |
Toggles the IncludeTransitiveDependencies property |
ResetIncludeTransitiveDependencies |
Sets the IncludeTransitiveDependencies property to default |
SetSuppressPrintDetails |
Sets the SuppressPrintDetails property to the given value |
EnableSuppressPrintDetails |
Sets the SuppressPrintDetails property to true |
DisableSuppressPrintDetails |
Sets the SuppressPrintDetails property to false |
ToggleSuppressPrintDetails |
Toggles the SuppressPrintDetails property |
ResetSuppressPrintDetails |
Sets the SuppressPrintDetails property to default |
SetSuppressPrintIssues |
Sets the SuppressPrintIssues property to the given value |
EnableSuppressPrintIssues |
Sets the SuppressPrintIssues property to true |
DisableSuppressPrintIssues |
Sets the SuppressPrintIssues property to false |
ToggleSuppressPrintIssues |
Toggles the SuppressPrintIssues property |
ResetSuppressPrintIssues |
Sets the SuppressPrintIssues property to default |
SetLicenseTypeDefinitions |
Sets the LicenseTypeDefinitions property to the given value |
SetLicenseTypeDefinitionsFilePath |
Set the SetLicenseTypeDefinitionsFilePath property to the given value |
SetUrlToLicenseTypeMapping |
Sets the UrlToLicenseTypeMapping property to the given value |
SetUrlToLicenseTypeMappingFilePath |
Sets the UrlToLicenseTypeMappingFilePath property to the given value |
SetLicenseTypeWhitelist |
Sets the LicenseTypeWhitelist property to the given value |
SetLicenseTypeWhitelistFilePath |
Sets the LicenseTypeWhitelistFilePath property to the given value |
SetLicenseTypeBlacklist |
Sets the LicenseTypeBlacklist property to the given value |
SetLicenseTypeBlacklistFilePath |
Sets the LicenseTypeBlacklistFilePath property to the given value |
SetExportLicenseTextsDirectory |
Sets the ExportLicenseTextsDirectory property to the given value |
SetExportJsonFileDirectory |
Sets the ExportJsonFile property to the given value |
SetRequestTimeout |
Sets the RequestTimeout property to the given value |
SetProjectExclusionGlobs |
Sets the ProjectExclusionGlobs property to the given value |
SetProjectExclusionGlobsFilePath |
Sets the ProjectExclusionGlobsFilePath property to the given value |
SetPackageExclusionGlobs |
Sets the PackageExclusionGlobs property to the given value |
SetPackageExclusionGlobsFilePath |
Sets the PackageExclusionGlobsFilePath property to the given value |
Target ExtractLicenses => _ => _
.Executes(async () =>
{
var targetFile = (AbsolutePath)"path/to/project.csproj";
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetTargetFile(targetFile)
.EnableIncludeTransitiveDependencies());
});liz will try to guess license-types by their license-text when no license-type could be determined yet. To cover a wide variety of license-types there are already lots of definitions added in the source by default. But if you want to add a definition by yourself, you can do it, like so:
/*
* this will add the license-type "LIZ-1.0" for every license-text that contains the string
* "LIZ PUBLIC LICENSE 1.0"
*/
var definition1 = new LicenseTypeDefinition("LIZ-1.0", "LIZ PUBLIC LICENSE 1.0");
/*
* a bit more advanced - the license-type "LIZ-2.0" will be added, when:
* - the license-text contains "LIZ PUBLIC LICENSE" AND "v2.0"
* - the license-text NOT contains "Version 1"
*/
var definition2 = new LicenseTypeDefinition("LIZ-2.0", "LIZ PUBLIC LICENSE", "v2.0")
{
ExclusiveTextSnippets = new []{ "Version 1" }
};
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeDefinitions(new List<LicenseTypeDefinition>{ definition1, definition2 });You can also reference a JSON-file containing the license-type-definitions in the settings, like so:
example JSON-file:
[
{
"type": "LIZ-1.0",
"inclusiveText": [ "LIZ PUBLIC LICENSE 1.0" ]
},
{
"type": "LIZ-2.0",
"inclusiveText": [ "LIZ PUBLIC LICENSE", "v2.0" ],
"exlusiveText": [ "Version 1" ]
}
]example usage:
// path to a file
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeDefinitionsFilePath("path/to/file.json"));
// or even a path to a remote file
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeDefinitionsFilePath("http://path/to/file.json"));liz will try to guess license-types by their license-url when no license-type could be determined yet.
To cover a wide variety of license-types there are already lots of mappings added (i.e. for choosealicense.com and opensource.org) in the source by default.
But if you want to add a mapping by yourself, you can do it, like so:
/*
* this will add the license-type "LIZ-1.0" for every license-url which is exact "https://liz.com/license"
*/
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetUrlToLicenseTypeMapping(new Dictionary<string, string>{ { "https://liz.com/license", "LIZ-1.0" } });You can also reference a JSON-file containing the mappings in the settings, like so:
example JSON-file:
{
"https://liz.com/license": "LIZ-1.0"
}example usage:
// path to a file
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetUrlToLicenseTypeMappingFilePath("path/to/file.json"));
// or even a path to a remote file
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetUrlToLicenseTypeMappingFilePath("http://path/to/file.json"));liz will validate the license-types of the determined package-references for you, if you provide a whitelist or blacklist.
What is the difference between a whitelist and a blacklist?
- whitelist: any license-type that is not explicitly referenced in the whitelist is not allowed
- blacklist: any license-type that is explicitly referenced in the blacklist is not allowed
// this will specifically only allow "MIT" and "Unlicense" licenses
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeWhitelist(new List<string>{ "MIT", "Unlicense" });You can also reference a JSON-file containing a list of whitelisted license-types:
example JSON-file:
[
"MIT",
"Unlicense"
]example usage:
// path to a file
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeWhitelistFilePath("path/to/file.json");
// or even a path to a remote file
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeWhitelistFilePath("http://path/to/file.json");// this will specifically disallow "GPL-3.0" licenses
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeBlacklist(new List<string>{ "GPL-3.0" });You can also reference a JSON-file containing a list of blacklisted license-types:
example JSON-file:
[
"GPL-3.0"
]example usage:
// path to a file
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeBlacklistFilePath("path/to/file.json");
// or even a path to a remote file
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetLicenseTypeBlacklistFilePath("http://path/to/file.json");If you want to for instance exclude all the test-projects when you're scanning a whole solution, you can use something like the following:
// this will specifically disallow any project that ends with "Tests.csproj"
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetProjectExclusionGlobs(new List<string>{ "*/**/*Tests.csproj" }));If you want to for instance exclude all the packages of your company, you can use something like the following:
// this will specifically disallow any project that ends with "Tests.csproj"
await ExtractLicensesTasks.ExtractLicensesAsync(settings => settings
.SetPackageExclusionGlobs(new List<string>{ "YourCompany*" }));