Class ComposerLockAnalyzer
- java.lang.Object
-
- org.owasp.dependencycheck.analyzer.AbstractAnalyzer
-
- org.owasp.dependencycheck.analyzer.AbstractFileTypeAnalyzer
-
- org.owasp.dependencycheck.analyzer.ComposerLockAnalyzer
-
- All Implemented Interfaces:
java.io.FileFilter,Analyzer,FileTypeAnalyzer
public class ComposerLockAnalyzer extends AbstractFileTypeAnalyzer
Used to analyze a composer.lock file for a composer PHP app.- Author:
- colezlaw
-
-
Field Summary
Fields Modifier and Type Field Description static java.lang.StringDEPENDENCY_ECOSYSTEMA descriptor for the type of dependencies processed or added by this analyzer.
-
Constructor Summary
Constructors Constructor Description ComposerLockAnalyzer()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description protected voidanalyzeDependency(Dependency dependency, Engine engine)Entry point for the analyzer.AnalysisPhasegetAnalysisPhase()Returns the phase this analyzer should run under.protected java.lang.StringgetAnalyzerEnabledSettingKey()Gets the key to determine whether the analyzer is enabled.protected java.io.FileFiltergetFileFilter()Returns the FileFilter.java.lang.StringgetName()Returns the analyzer's name.protected voidprepareFileTypeAnalyzer(Engine engine)Initializes the analyzer.-
Methods inherited from class org.owasp.dependencycheck.analyzer.AbstractFileTypeAnalyzer
accept, getFilesMatched, newHashSet, prepareAnalyzer, setFilesMatched
-
Methods inherited from class org.owasp.dependencycheck.analyzer.AbstractAnalyzer
analyze, close, closeAnalyzer, getSettings, initialize, isEnabled, prepare, setEnabled, supportsParallelProcessing
-
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
-
Methods inherited from interface org.owasp.dependencycheck.analyzer.Analyzer
analyze, close, initialize, isEnabled, prepare, supportsParallelProcessing
-
-
-
-
Field Detail
-
DEPENDENCY_ECOSYSTEM
public static final java.lang.String DEPENDENCY_ECOSYSTEM
A descriptor for the type of dependencies processed or added by this analyzer.- See Also:
- Constant Field Values
-
-
Method Detail
-
getFileFilter
protected java.io.FileFilter getFileFilter()
Returns the FileFilter.- Specified by:
getFileFilterin classAbstractFileTypeAnalyzer- Returns:
- the FileFilter
-
prepareFileTypeAnalyzer
protected void prepareFileTypeAnalyzer(Engine engine) throws InitializationException
Initializes the analyzer.- Specified by:
prepareFileTypeAnalyzerin classAbstractFileTypeAnalyzer- Parameters:
engine- a reference to the dependency-check engine- Throws:
InitializationException- thrown if an exception occurs getting an instance of SHA1
-
analyzeDependency
protected void analyzeDependency(Dependency dependency, Engine engine) throws AnalysisException
Entry point for the analyzer.- Specified by:
analyzeDependencyin classAbstractAnalyzer- Parameters:
dependency- the dependency to analyzeengine- the engine scanning- Throws:
AnalysisException- if there's a failure during analysis
-
getAnalyzerEnabledSettingKey
protected java.lang.String getAnalyzerEnabledSettingKey()
Gets the key to determine whether the analyzer is enabled.- Specified by:
getAnalyzerEnabledSettingKeyin classAbstractAnalyzer- Returns:
- the key specifying whether the analyzer is enabled
-
getName
public java.lang.String getName()
Returns the analyzer's name.- Returns:
- the analyzer's name
-
getAnalysisPhase
public AnalysisPhase getAnalysisPhase()
Returns the phase this analyzer should run under.- Returns:
- the analysis phase
-
-