aquaproj · plobsing · Jun 12, 2024 · Jun 18, 2024 · Jun 18, 2024 · Jun 18, 2024
diff --git a/pkg/cli/info.go b/pkg/cli/info.go
@@ -14,8 +14,15 @@ func (r *Runner) newInfoCommand() *cli.Command {
 		Usage: "Show information",
 		Description: `Show information.
 e.g.
-$ aqua info`,
+$ aqua info
+
+See also subcommands
+$ aqua info help
+`,
 		Action: r.info,
+		Subcommands: []*cli.Command{
+			r.newPackageInfoCommand(),
+		},
 	}
 }
 

diff --git a/pkg/cli/package_info.go b/pkg/cli/package_info.go
@@ -0,0 +1,31 @@
+package cli //nolint:dupl
+
+import (
+	"fmt"
+	"net/http"
+
+	"github.com/aquaproj/aqua/v2/pkg/config"
+	"github.com/aquaproj/aqua/v2/pkg/controller"
+	"github.com/urfave/cli/v2"
+)
+
+func (r *Runner) newPackageInfoCommand() *cli.Command {
+	return &cli.Command{
+		Name: "package",
+		Usage: "Show package defintions",
+		Description: `Show definition of packages.
+e.g.
+$ aqua info package sigstore/cosign`,
+		Action: r.packageInfoAction,
+	}
+}
+
+func (r *Runner) packageInfoAction(c *cli.Context) error {
+	param := &config.Param{}
+	if err := r.setParam(c, "info-package", param); err != nil {
+		return fmt.Errorf("parse the command line arguments: %w", err)
+	}
+
+	ctrl := controller.InitializePackageInfoCommandController(c.Context, param, http.DefaultClient, r.Runtime)
+	return ctrl.PackageInfo(c.Context, param, r.LogE, c.Args().Slice()...)
+}
diff --git a/pkg/controller/packageinfo/controller.go b/pkg/controller/packageinfo/controller.go
@@ -0,0 +1,127 @@
+package packageinfo
+
+import (
+	"errors"
+	"encoding/json"
+	"strings"
+	"fmt"
+	"io"
+	"os"
+	"context"
+
+	"github.com/aquaproj/aqua/v2/pkg/config"
+	"github.com/aquaproj/aqua/v2/pkg/config/registry"
+	"github.com/spf13/afero"
+	"github.com/aquaproj/aqua/v2/pkg/checksum"
+	"github.com/aquaproj/aqua/v2/pkg/config/aqua"
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	errMissingPackages = errors.New("could not find all packages")
+)
+
+type Controller struct {
+	stdout            io.Writer
+	configFinder      ConfigFinder
+	configReader      ConfigReader
+	registryInstaller RegistryInstaller
+	fs                afero.Fs
+}
+
+type ConfigReader interface {
+	Read(logE *logrus.Entry, configFilePath string, cfg *aqua.Config) error
+}
+
+type RegistryInstaller interface {
+	InstallRegistries(ctx context.Context, logE *logrus.Entry, cfg *aqua.Config, cfgFilePath string, checksums *checksum.Checksums) (map[string]*registry.Config, error)
+}
+
+type ConfigFinder interface {
+	Find(wd, configFilePath string, globalConfigFilePaths ...string) (string, error)
+	Finds(wd, configFilePath string) []string
+}
+
+func New(configFinder ConfigFinder, configReader ConfigReader, registInstaller RegistryInstaller, fs afero.Fs) *Controller {
+	return &Controller{
+		stdout:            os.Stdout,
+		configFinder:      configFinder,
+		configReader:      configReader,
+		registryInstaller: registInstaller,
+		fs:                fs,
+	}
+}
+
+func (c *Controller) PackageInfo(ctx context.Context, param *config.Param, logE *logrus.Entry, args ...string) error {
+	cfgFilePath, err := c.configFinder.Find(param.PWD, param.ConfigFilePath, param.GlobalConfigFilePaths...)
+	if err != nil {
+		return err
+	}
+
+	cfg := &aqua.Config{}
+	if err := c.configReader.Read(logE, cfgFilePath, cfg); err != nil {
+		return err
+	}
+
+	var checksums *checksum.Checksums
+	if cfg.ChecksumEnabled(param.EnforceChecksum, param.Checksum) {
+		checksums = checksum.New()
+		checksumFilePath, err := checksum.GetChecksumFilePathFromConfigFilePath(c.fs, cfgFilePath)
+		if err != nil {
+			return err
+		}
+		if err := checksums.ReadFile(c.fs, checksumFilePath); err != nil {
+			return fmt.Errorf("read a checksum JSON: %w", err)
+		}
+		defer func() {
+			if err := checksums.UpdateFile(c.fs, checksumFilePath); err != nil {
+				logE.WithError(err).Error("update a checksum file")
+			}
+		}()
+	}
+
+	registryContents, err := c.registryInstaller.InstallRegistries(ctx, logE, cfg, cfgFilePath, checksums)
+	if err != nil {
+		return err
+	}
+
+	packageInfoByNameByRegistry := make(map[string]map[string]*registry.PackageInfo)
+	for registryName, registryConfig := range registryContents {
+		packageInfoByNameByRegistry[registryName]= registryConfig.PackageInfos.ToMap(logE)
+	}
+
+	encoder := json.NewEncoder(c.stdout)
+	encoder.SetIndent("", "  ")
+
+	missingPackages := false
+	for _, name := range args {
+		registryName, pkgName := registryAndPackage(name)
+		pkgInfo, ok := packageInfoByNameByRegistry[registryName][pkgName]
+		if !ok {
+			logE.WithFields(logrus.Fields {
+				"registry_name": registryName,
+				"package_name": pkgName,
+			}).Error("no such registry or package")
+			missingPackages = true
+			continue
+		}
+
+		if err := encoder.Encode(pkgInfo); err != nil {
+			return fmt.Errorf("encode info as JSON and output it to stdout: %w", err)
+		}
+	}
+
+	if missingPackages {
+		return errMissingPackages
+	}
+
+	return nil
+}
+
+func registryAndPackage(name string) (string, string) {
+	r, p, ok := strings.Cut(name, ",")
+	if ok {
+		return r, p
+	}
+	return "standard", name
+}
diff --git a/pkg/controller/wire.go b/pkg/controller/wire.go
@@ -14,6 +14,7 @@ import (
 	finder "github.com/aquaproj/aqua/v2/pkg/config-finder"
 	reader "github.com/aquaproj/aqua/v2/pkg/config-reader"
 	"github.com/aquaproj/aqua/v2/pkg/controller/allowpolicy"
+	"github.com/aquaproj/aqua/v2/pkg/controller/packageinfo"
 	"github.com/aquaproj/aqua/v2/pkg/controller/cp"
 	"github.com/aquaproj/aqua/v2/pkg/controller/denypolicy"
 	cexec "github.com/aquaproj/aqua/v2/pkg/controller/exec"
@@ -886,6 +887,60 @@ func InitializeInfoCommandController(ctx context.Context, param *config.Param, r
 	return &info.Controller{}
 }
 
+func InitializePackageInfoCommandController(ctx context.Context, param *config.Param, httpClient *http.Client, rt *runtime.Runtime) *packageinfo.Controller {
+	wire.Build(
+		packageinfo.New,
+		wire.NewSet(
+			finder.NewConfigFinder,
+			wire.Bind(new(packageinfo.ConfigFinder), new(*finder.ConfigFinder)),
+		),
+		wire.NewSet(
+			github.New,
+			wire.Bind(new(github.RepositoriesService), new(*github.RepositoriesServiceImpl)),
+			wire.Bind(new(download.GitHubContentAPI), new(*github.RepositoriesServiceImpl)),
+		),
+		wire.NewSet(
+			registry.New,
+			wire.Bind(new(packageinfo.RegistryInstaller), new(*registry.Installer)),
+		),
+		wire.NewSet(
+			download.NewGitHubContentFileDownloader,
+			wire.Bind(new(registry.GitHubContentFileDownloader), new(*download.GitHubContentFileDownloader)),
+		),
+		wire.NewSet(
+			reader.New,
+			wire.Bind(new(packageinfo.ConfigReader), new(*reader.ConfigReader)),
+		),
+		afero.NewOsFs,
+		download.NewHTTPDownloader,
+		wire.NewSet(
+			cosign.NewVerifier,
+			wire.Bind(new(installpackage.CosignVerifier), new(*cosign.Verifier)),
+			wire.Bind(new(registry.CosignVerifier), new(*cosign.Verifier)),
+		),
+		wire.NewSet(
+			exec.New,
+			wire.Bind(new(cosign.Executor), new(*exec.Executor)),
+			wire.Bind(new(slsa.CommandExecutor), new(*exec.Executor)),
+		),
+		wire.NewSet(
+			download.NewDownloader,
+			wire.Bind(new(download.ClientAPI), new(*download.Downloader)),
+		),
+		wire.NewSet(
+			slsa.New,
+			wire.Bind(new(installpackage.SLSAVerifier), new(*slsa.Verifier)),
+			wire.Bind(new(registry.SLSAVerifier), new(*slsa.Verifier)),
+		),
+		wire.NewSet(
+			slsa.NewExecutor,
+			wire.Bind(new(slsa.Executor), new(*slsa.ExecutorImpl)),
+		),
+
+	)
+	return &packageinfo.Controller{}
+}
+
 func InitializeRemoveCommandController(ctx context.Context, param *config.Param, httpClient *http.Client, rt *runtime.Runtime) *remove.Controller {
 	wire.Build(
 		remove.New,

diff --git a/pkg/controller/wire_gen.go b/pkg/controller/wire_gen.go