Provide generic download script for Typescript projects

JohT · JohT · commit b81c15ddc5a5 · 2024-07-22T18:08:08.000+02:00
diff --git a/COMMANDS.md b/COMMANDS.md
@@ -24,6 +24,7 @@
     - [Start Neo4j Graph Database](#start-neo4j-graph-database)
     - [Setup jQAssistant Java Code Analyzer](#setup-jqassistant-java-code-analyzer)
     - [Download Maven Artifacts to analyze](#download-maven-artifacts-to-analyze)
+    - [Download Typescript project to analyze](#download-typescript-project-to-analyze)
     - [Reset the database and scan the java artifacts](#reset-the-database-and-scan-the-java-artifacts)
     - [Import git data](#import-git-data)
         - [Import aggregated git log](#import-aggregated-git-log)
@@ -221,6 +222,27 @@ to download a Maven artifact into the artifacts directory:
 - `-t <maven artifact type (optional, defaults to jar)>`
 - `-d <target directory for the downloaded file (optional, defaults to "artifacts")>`
 
+### Download Typescript project to analyze
+
+Use [downloadTypescriptProject.sh](./scripts/downloader/downloadTypescriptProject.sh) with the following options
+to download a Typescript project using git clone and prepare it for analysis:
+
+- `--url` Git clone URL (required)
+- `--version` Version of the project
+- `--tag` Tag to switch to after "git clone" (optional, default = version)
+- `--project` Name of the project/repository (optional, default = clone url file name without .git extension)
+- `--packageManager` One of "npm", "pnpm" or "yarn". (optional, default = "npm")
+
+Here is an example:
+
+```shell
+./../../downloadTypescriptProject.sh \
+  --url https://github.com/remix-run/react-router.git \
+  --version 6.24.0 \
+  --tag "react-router@6.24.0" \
+  --packageManager pnpm
+```
+
 ### Reset the database and scan the java artifacts
 
 Use [resetAndScan.sh](./scripts/resetAndScan.sh) to scan the local `artifacts` directory with the previously downloaded Java artifacts and write the data into the local Neo4J Graph database using jQAssistant. It also uses some jQAssistant "concepts" to
diff --git a/README.md b/README.md
@@ -178,9 +178,9 @@ The [Code Structure Analysis Pipeline](./.github/workflows/java-code-analysis.ym
   👉 Create a new Jupyter report script in the [scripts/reports](./scripts/reports/) directory. Take [OverviewJupyter.sh](./scripts/reports/OverviewJupyter.sh) as a reference for example.  
   👉 The script will automatically be included because of the directory and its name ending with "Jupyter.sh".
 
-- How can i add another code basis to be analyzed automatically?  
-  👉 Create a new download script in the [scripts/downloader](./scripts/downloader/) directory. Take for example [downloadAxonFramework.sh](./scripts/downloader/downloadAxonFramework.sh) as a reference.  
-  👉 Run the script separately before executing [analyze.sh](./scripts/analysis/analyze.sh) also in the [pipeline](./.github/workflows/java-code-analysis.yml).
+- How can i analyze a different code basis automatically?  
+  👉 Create a new download script like the ones in the [scripts/downloader](./scripts/downloader/) directory. Take for example [downloadAxonFramework.sh](./scripts/downloader/downloadAxonFramework.sh) as a reference for Java projects and [downloadReactRouter.sh](./scripts/downloader/downloadReactRouter.sh) as a reference for Typescript projects.
+  👉 After downloading, run [analyze.sh](./scripts/analysis/analyze.sh). You can find these steps also in the [pipeline](./.github/workflows/java-code-analysis.yml) as a reference.
 
 - How can i trigger a full re-scan of all artifacts?  
   👉 Delete the file `artifactsChangeDetectionHash.txt` in the `artifacts` directory.
diff --git a/scripts/downloader/downloadAntDesign.sh b/scripts/downloader/downloadAntDesign.sh
@@ -4,53 +4,26 @@
 # The source files are written into the "source" directory of the current analysis directory.
 # After scanning it with jQAssistant Typescript Plugin the resulting JSON will be moved into the "artifacts" directory.
 
-# Note: The #-framed blocks are those that are specific to this download.
-#       The other parts of the script can be reused/copied as a reference to write other download scripts.
-
 # Note: This script is meant to be started within the temporary analysis directory (e.g. "temp/AnalysisName/")
 
 # Fail on any error (errexit = exit on first error, errtrace = error inherited from sub-shell ,pipefail exist on errors within piped commands)
 set -o errexit -o errtrace -o pipefail
 
-# Get the analysis name from the middle part of the current file name (without prefix "download" and without extension)
-SCRIPT_FILE_NAME="$(basename -- "${BASH_SOURCE[0]}")"
-SCRIPT_FILE_NAME_WITHOUT_EXTENSION="${SCRIPT_FILE_NAME%%.*}"
-SCRIPT_FILE_NAME_WITHOUT_PREFIX_AND_EXTENSION="${SCRIPT_FILE_NAME_WITHOUT_EXTENSION##download}"
-ANALYSIS_NAME="${SCRIPT_FILE_NAME_WITHOUT_PREFIX_AND_EXTENSION}"
-SOURCE_DIRECTORY=${SOURCE_DIRECTORY:-"source"} # Get the source repository directory (defaults to "source")
-
-echo "download${ANALYSIS_NAME}: SCRIPT_FILE_NAME=${SCRIPT_FILE_NAME}"
-echo "download${ANALYSIS_NAME}: SCRIPT_FILE_NAME_WITHOUT_EXTENSION=${SCRIPT_FILE_NAME_WITHOUT_EXTENSION}"
-echo "download${ANALYSIS_NAME}: ANALYSIS_NAME=${ANALYSIS_NAME}"
-
 # Read the first input argument containing the version(s) of the artifact(s)
 if [ "$#" -ne 1 ]; then
-  echo "Error (download${ANALYSIS_NAME}): Usage: $0 <version>" >&2
+  echo "downloadAntDesign: Error: Usage: $0 <version>" >&2
   exit 1
 fi
-PROJECT_VERSION=$1
-echo "download${ANALYSIS_NAME}: PROJECT_VERSION=${PROJECT_VERSION}"
-
-# Create runtime logs directory if it hasn't existed yet
-mkdir -p ./runtime/logs
-
-################################################################
-# Download ant-design source files to be analyzed
-################################################################
-PROJECT_NAME="ant-design"
-FULL_PROJECT_NAME="${PROJECT_NAME}-${PROJECT_VERSION}"
-FULL_SOURCE_DIRECTORY="${SOURCE_DIRECTORY}/${FULL_PROJECT_NAME}"
-
-if [ ! -d "${FULL_SOURCE_DIRECTORY}" ] ; then # only clone if source doesn't exist
-  git clone --branch "${PROJECT_VERSION}" "https://github.com/ant-design/${PROJECT_NAME}.git" "${FULL_SOURCE_DIRECTORY}"
-fi
-(
-  cd "${FULL_SOURCE_DIRECTORY}" || exit
-  echo "download${ANALYSIS_NAME}: Installing dependencies..."
-  npm install --verbose || exit
-  echo "download${ANALYSIS_NAME}: Analyzing source..."
-  npx --yes @jqassistant/ts-lce >"./../../runtime/logs/jqassistant-typescript-scan-${PROJECT_NAME}.log" 2>&1 || exit
-)
-mkdir -p artifacts/typescript
-mv -nv "${FULL_SOURCE_DIRECTORY}/.reports/jqa/ts-output.json" "artifacts/typescript/${FULL_PROJECT_NAME}.json"
-################################################################
+projectVersion="${1}"
+echo "downloadAntDesign: projectVersion=${projectVersion}"
+
+## Get the directory of this script if not already set
+# Even if $BASH_SOURCE is made for Bourne-like shells it is also supported by others and therefore here the preferred solution. 
+# CDPATH reduces the scope of the cd command to potentially prevent unintended directory changes.
+# This way non-standard tools like readlink aren't needed.
+DOWNLOADER_SCRIPTS_DIR=${DOWNLOADER_SCRIPTS_DIR:-$( CDPATH=. cd -- "$(dirname -- "${BASH_SOURCE[0]}")" && pwd -P )}
+echo "downloadReactRouter: DOWNLOADER_SCRIPTS_DIR=${DOWNLOADER_SCRIPTS_DIR}"
+
+source "${DOWNLOADER_SCRIPTS_DIR}/downloadTypescriptProject.sh" \
+  --url https://github.com/ant-design/ant-design.git \
+  --version "${projectVersion}"
diff --git a/scripts/downloader/downloadReactRouter.sh b/scripts/downloader/downloadReactRouter.sh
@@ -4,55 +4,31 @@
 # The source files are written into the "source" directory of the current analysis directory.
 # After scanning it with jQAssistant Typescript Plugin the resulting JSON will be moved into the "artifacts" directory.
 
-# Note: The #-framed blocks are those that are specific to this download.
-#       The other parts of the script can be reused/copied as a reference to write other download scripts.
-
 # Note: This script is meant to be started within the temporary analysis directory (e.g. "temp/AnalysisName/")
+# Note: react-router uses pnpm as package manager which needs to be installed first
 
-# Note: react-router uses pnpm as package manager which needs to be installed
+# Requires downloadTypescriptProject.sh
 
 # Fail on any error (errexit = exit on first error, errtrace = error inherited from sub-shell ,pipefail exist on errors within piped commands)
 set -o errexit -o errtrace -o pipefail
 
-# Get the analysis name from the middle part of the current file name (without prefix "download" and without extension)
-SCRIPT_FILE_NAME="$(basename -- "${BASH_SOURCE[0]}")"
-SCRIPT_FILE_NAME_WITHOUT_EXTENSION="${SCRIPT_FILE_NAME%%.*}"
-SCRIPT_FILE_NAME_WITHOUT_PREFIX_AND_EXTENSION="${SCRIPT_FILE_NAME_WITHOUT_EXTENSION##download}"
-ANALYSIS_NAME="${SCRIPT_FILE_NAME_WITHOUT_PREFIX_AND_EXTENSION}"
-SOURCE_DIRECTORY=${SOURCE_DIRECTORY:-"source"} # Get the source repository directory (defaults to "source")
-
-echo "download${ANALYSIS_NAME}: SCRIPT_FILE_NAME=${SCRIPT_FILE_NAME}"
-echo "download${ANALYSIS_NAME}: SCRIPT_FILE_NAME_WITHOUT_EXTENSION=${SCRIPT_FILE_NAME_WITHOUT_EXTENSION}"
-echo "download${ANALYSIS_NAME}: ANALYSIS_NAME=${ANALYSIS_NAME}"
-
 # Read the first input argument containing the version(s) of the artifact(s)
 if [ "$#" -ne 1 ]; then
-  echo "Error (download${ANALYSIS_NAME}): Usage: $0 <version>" >&2
+  echo "downloadAntDesign: Error: Usage: $0 <version>" >&2
   exit 1
 fi
-PROJECT_VERSION=$1
-echo "download${ANALYSIS_NAME}: PROJECT_VERSION=${PROJECT_VERSION}"
-
-# Create runtime logs directory if it hasn't existed yet
-mkdir -p ./runtime/logs
-
-################################################################
-# Download react-router source files to be analyzed
-################################################################
-PROJECT_NAME="react-router"
-FULL_PROJECT_NAME="${PROJECT_NAME}-${PROJECT_VERSION}"
-FULL_SOURCE_DIRECTORY="${SOURCE_DIRECTORY}/${FULL_PROJECT_NAME}"
-
-if [ ! -d "${FULL_SOURCE_DIRECTORY}" ] ; then # only clone if source doesn't exist
-git clone --branch "react-router@${PROJECT_VERSION}" "https://github.com/remix-run/${PROJECT_NAME}.git" "${FULL_SOURCE_DIRECTORY}"
-fi
-(
-  cd "${FULL_SOURCE_DIRECTORY}" || exit
-  echo "download${ANALYSIS_NAME}: Installing dependencies..."
-  pnpm install --frozen-lockfile || exit
-  echo "download${ANALYSIS_NAME}: Analyzing source..."
-  npx --yes @jqassistant/ts-lce >"./../../runtime/logs/jqassistant-typescript-scan-${FULL_PROJECT_NAME}.log" 2>&1 || exit
-)
-mkdir -p artifacts/typescript
-mv -nv "${FULL_SOURCE_DIRECTORY}/.reports/jqa/ts-output.json" "artifacts/typescript/${FULL_PROJECT_NAME}.json"
-################################################################
+projectVersion="${1}"
+echo "downloadAntDesign: projectVersion=${projectVersion}"
+
+## Get the directory of this script if not already set
+# Even if $BASH_SOURCE is made for Bourne-like shells it is also supported by others and therefore here the preferred solution. 
+# CDPATH reduces the scope of the cd command to potentially prevent unintended directory changes.
+# This way non-standard tools like readlink aren't needed.
+DOWNLOADER_SCRIPTS_DIR=${DOWNLOADER_SCRIPTS_DIR:-$( CDPATH=. cd -- "$(dirname -- "${BASH_SOURCE[0]}")" && pwd -P )}
+echo "downloadReactRouter: DOWNLOADER_SCRIPTS_DIR=${DOWNLOADER_SCRIPTS_DIR}"
+
+source "${DOWNLOADER_SCRIPTS_DIR}/downloadTypescriptProject.sh" \
+  --url https://github.com/remix-run/react-router.git \
+  --version "${projectVersion}" \
+  --tag "react-router@${projectVersion}" \
+  --packageManager pnpm
diff --git a/scripts/downloader/downloadTypescriptProject.sh b/scripts/downloader/downloadTypescriptProject.sh
@@ -0,0 +1,168 @@
+#!/usr/bin/env bash
+
+# Downloads the given version of a Typescript project from a git repository using git clone.
+# The cloned project is then moved into the "source" directory of the current analysis directory 
+# where its dependencies are installed by the given package manager.
+# After scanning it with jQAssistant's Typescript Plugin, the resulting JSON will be moved into the "artifacts/typescript" directory.
+
+# Command line options:
+# --url             Git clone URL (required)
+# --version         Version of the project
+# --tag             Tag to switch to after "git clone" (optional, default = version)
+# --project         Name of the project/repository (optional, default = clone url file name without .git extension)
+# --packageManager  One of "npm", "pnpm" or "yarn". (optional, default = "npm")
+
+# Note: This script is meant to be started within the temporary analysis directory (e.g. "temp/AnalysisName/")
+
+# Fail on any error (errexit = exit on first error, errtrace = error inherited from sub-shell ,pipefail exist on errors within piped commands)
+set -o errexit -o errtrace -o pipefail
+
+# Overrideable Defaults
+SOURCE_DIRECTORY=${SOURCE_DIRECTORY:-"source"}
+echo "downloadTypescriptProject: SOURCE_DIRECTORY=${SOURCE_DIRECTORY}"
+
+# Display how this command is intended to be used including an example when wrong input parameters were detected
+usage() {
+  echo ""
+  echo "Usage: $0 \\"
+  echo "          --url <git-clone-url> \\"
+  echo "          --version <project version \\"
+  echo "          [ --tag <git-tag-for-that-version> (default=version) \\]"
+  echo "          [ --project <name-of-the-project> (default=url file name) \\]"
+  echo "          [ --packageManager <npm/pnpm/yarn> (default=npm) ]"
+  echo "Example: $0 \\"
+  echo "           --url https://github.com/ant-design/ant-design.git \\"
+  echo "           --version 5.19.3"
+  exit 1
+}
+
+# Default command line option values
+cloneUrl=""
+projectName=""
+projectVersion=""
+projectTag=""
+packageManager="npm"
+
+# Parse command line options
+while [[ $# -gt 0 ]]; do
+  key="${1}"
+  value="${2}"
+
+  case "${key}" in
+    --url)
+      cloneUrl="${value}"
+      shift
+      ;;
+    --project)
+      projectName="${value}"
+      shift
+      ;;
+    --version)
+      projectVersion="${value}"
+      shift
+      ;;
+    --tag)
+      projectTag="${value}"
+      shift
+      ;;
+    --packageManager)
+      packageManager="${value}"
+      shift
+      ;;
+    *)
+      echo "downloadTypescriptProject Error: Unknown option: ${key}"
+      usage
+      ;;
+  esac
+  shift
+done
+
+if [[ -z ${cloneUrl} ]]; then
+  echo "downloadTypescriptProject Error: Please specify an URL for git clone."
+  usage
+fi
+
+if ! curl --head --fail "${cloneUrl}" >/dev/null 2>&1; then
+  echo "downloadTypescriptProject Error: Invalid URL: ${cloneUrl}"
+  exit 1
+fi
+
+if [[ -z ${projectName} ]]; then
+  # When empty, infer the project name from the file name / last part of the clone url excluding the extension .git
+  projectName=$(basename -s .git "${cloneUrl}")
+fi
+
+if [[ -z ${projectVersion} ]]; then
+  echo "downloadTypescriptProject Error: Please specify a project version."
+  usage
+fi
+
+if [[ -z ${projectTag} ]]; then
+  # When empty, use the value of the option "version" as tag
+  projectTag="${projectVersion}"
+fi
+
+case "${packageManager}" in
+  npm|pnpm|yarn) 
+    echo "downloadTypescriptProject Using package manager ${packageManager}" 
+    ;;
+  *)
+    echo "downloadTypescriptProject Error: Unknown package manager: ${packageManager}"
+    usage
+    ;;
+esac
+
+if ! command -v "${packageManager}" &> /dev/null ; then
+    echo "downloadTypescriptProject Error: Package manager ${packageManager} could not be found"
+    exit 1
+fi
+
+if ! command -v "npx" &> /dev/null ; then
+    echo "downloadTypescriptProject Error: Command npx not found. It's needed to execute npm packages."
+    exit 1
+fi
+
+echo "downloadTypescriptProject: cloneUrl:       ${cloneUrl}"
+echo "downloadTypescriptProject: projectName:    ${projectName}"
+echo "downloadTypescriptProject: projectVersion: ${projectVersion}"
+echo "downloadTypescriptProject: projectTag:     ${projectTag}"
+echo "downloadTypescriptProject: packageManager: ${packageManager}"
+
+usePackageManagerToInstallDependencies() {
+  echo "downloadTypescriptProject: Installing dependencies using ${packageManager}..."
+  case "${packageManager}" in
+    npm)
+      # npm ci is not sufficient for projects like "ant-design" that rely on generating the package-lock
+      # Even if this is not standard, this is an acceptable solution for standard and edge cases.
+      npm install --ignore-scripts --verbose || exit
+      ;;
+    pnpm)
+      pnpm install --frozen-lockfile || exit
+      ;;
+    yarn)
+      yarn install --frozen-lockfile --ignore-scripts --non-interactive --verbose || exit
+      ;;
+  esac
+}
+
+# Create runtime logs directory if it hasn't existed yet
+mkdir -p ./runtime/logs
+
+# Download the project to be analyzed
+fullProjectName="${projectName}-${projectVersion}"
+fullSourceDirectory="${SOURCE_DIRECTORY}/${fullProjectName}"
+
+if [ ! -d "${fullSourceDirectory}" ] ; then # only clone if source doesn't exist
+  echo "downloadTypescriptProject: Cloning ${cloneUrl} with version ${projectVersion}..."
+  # A full clone is done since not only the source is scanned, but also the git log history.
+  git clone --branch "${projectTag}" "${cloneUrl}" "${fullSourceDirectory}"
+fi
+(
+  cd "${fullSourceDirectory}" || exit
+  usePackageManagerToInstallDependencies
+  echo "downloadTypescriptProject: Scanning Typescript source using @jqassistant/ts-lce..."
+  npx --yes @jqassistant/ts-lce >"./../../runtime/logs/jqassistant-typescript-scan-${projectName}.log" 2>&1 || exit
+)
+echo "downloadTypescriptProject: Moving scanned results into the artifacts/typescript directory..."
+mkdir -p artifacts/typescript
+mv -nv "${fullSourceDirectory}/.reports/jqa/ts-output.json" "artifacts/typescript/${fullProjectName}.json"
