brew/Library/Homebrew/rubocops/caveats.rb

# typed: strict
# frozen_string_literal: true

require "rubocops/extend/formula_cop"

module RuboCop
  module Cop
    module FormulaAudit
      # This cop ensures that caveats don't have problematic text or logic.
      #
      # ### Example
      #
      # ```ruby
      # # bad
      # def caveats
      #   if File.exist?("/etc/issue")
      #     "This caveat only when file exists that won't work with JSON API."
      #   end
      # end
      #
      # # good
      # def caveats
      #   "This caveat always works regardless of the JSON API."
      # end
      #
      # # bad
      # def caveats
      #   <<~EOS
      #     Use `setuid` to allow running the executable by non-root users.
      #   EOS
      # end
      #
      # # good
      # def caveats
      #   <<~EOS
      #     Use `sudo` to run the executable.
      #   EOS
      # end
      # ```
      class Caveats < FormulaCop
        sig { override.params(_formula_nodes: FormulaNodes).void }
        def audit_formula(_formula_nodes)
          caveats_strings.each do |n|
            if regex_match_group(n, /\bsetuid\b/i)
              problem "Instead of recommending `setuid` in the caveats, suggest `sudo`."
            end

            problem "Don't use ANSI escape codes in the caveats." if regex_match_group(n, /\e/)
          end

          return if formula_tap != "homebrew-core"

          # Forbid dynamic logic in caveats (only if/else/unless)
          caveats_method = find_method_def(@body, :caveats)
          return unless caveats_method

          dynamic_nodes = caveats_method.each_descendant.select do |descendant|
            descendant.type == :if
          end
          dynamic_nodes.each do |node|
            @offensive_node = node
            problem "Don't use dynamic logic (if/else/unless) in caveats."
          end
        end
      end
    end
  end
end
sorbet: Autobump sigils via Spoom Autogenerated by the [sorbet](https://github.com/Homebrew/brew/blob/master/.github/workflows/sorbet.yml) workflow. 2024-07-14 00:24:16 +00:00			`# typed: strict`
Add frozen_string_literal to all files. 2019-04-19 15:38:03 +09:00			`# frozen_string_literal: true`

Refactor FormulaCop as a mixin 2023-02-20 10:22:39 -08:00			`require "rubocops/extend/formula_cop"`
audit: Port audit_caveats method to rubocop and add tests 2017-05-22 13:09:49 +05:30
			`module RuboCop`
			`module Cop`
			`module FormulaAudit`
rubocops/caveats: check for dynamic caveats. This will avoid issues with the JSON API. 2025-06-19 10:13:32 +01:00			`# This cop ensures that caveats don't have problematic text or logic.`
Document `FormulaAudit::Caveats`. 2020-08-26 02:21:58 +02:00			`#`
Warn about undocumented non-private APIs. 2024-04-26 20:55:51 +02:00			`# ### Example`
Document `FormulaAudit::Caveats`. 2020-08-26 02:21:58 +02:00			`#`
Warn about undocumented non-private APIs. 2024-04-26 20:55:51 +02:00			# ```ruby
			`# # bad`
			`# def caveats`
rubocops/caveats: check for dynamic caveats. This will avoid issues with the JSON API. 2025-06-19 10:13:32 +01:00			`# if File.exist?("/etc/issue")`
			`# "This caveat only when file exists that won't work with JSON API."`
			`# end`
			`# end`
			`#`
			`# # good`
			`# def caveats`
			`# "This caveat always works regardless of the JSON API."`
			`# end`
			`#`
			`# # bad`
			`# def caveats`
Warn about undocumented non-private APIs. 2024-04-26 20:55:51 +02:00			`# <<~EOS`
chore: fix typos Signed-off-by: Rui Chen <rui@chenrui.dev> 2024-12-28 15:52:04 -05:00			# Use `setuid` to allow running the executable by non-root users.
Warn about undocumented non-private APIs. 2024-04-26 20:55:51 +02:00			`# EOS`
			`# end`
			`#`
			`# # good`
			`# def caveats`
			`# <<~EOS`
			# Use `sudo` to run the executable.
			`# EOS`
			`# end`
			# ```
Use exclude_from_registry instead 2023-02-20 18:10:59 -08:00			`class Caveats < FormulaCop`
Use struct for `#audit_formula` args Adding type signatures to `#audit_formula` methods in formula cops would lead to verbose, repetitive signatures across the existing ~63 instances. This reworks `#audit_formula` to use a `T::Struct` for its arguments, which allows us to use a one-line signature for these methods. 2024-07-07 15:18:29 -04:00			`sig { override.params(_formula_nodes: FormulaNodes).void }`
			`def audit_formula(_formula_nodes)`
audit: Port audit_caveats method to rubocop and add tests 2017-05-22 13:09:49 +05:30			`caveats_strings.each do \|n\|`
rubocops/caveats: Disallow ANSI escape codes Formula caveats text appears on formulae.brew.sh but escape characters, as used in ANSI escape codes, should not appear in HTML. This commit adds a RuboCop to disallow escape characters in the caveats text. 2023-01-16 01:24:23 -05:00			`if regex_match_group(n, /\bsetuid\b/i)`
audits: quote and reword problem description text 2025-05-30 16:42:32 -04:00			problem "Instead of recommending `setuid` in the caveats, suggest `sudo`."
rubocops/caveats: Disallow ANSI escape codes Formula caveats text appears on formulae.brew.sh but escape characters, as used in ANSI escape codes, should not appear in HTML. This commit adds a RuboCop to disallow escape characters in the caveats text. 2023-01-16 01:24:23 -05:00			`end`
Update to RuboCop 0.59.1. 2018-09-17 02:45:00 +02:00
rubocops/caveats: Disallow ANSI escape codes Formula caveats text appears on formulae.brew.sh but escape characters, as used in ANSI escape codes, should not appear in HTML. This commit adds a RuboCop to disallow escape characters in the caveats text. 2023-01-16 01:24:23 -05:00			`problem "Don't use ANSI escape codes in the caveats." if regex_match_group(n, /\e/)`
audit: Port audit_caveats method to rubocop and add tests 2017-05-22 13:09:49 +05:30			`end`
rubocops/caveats: check for dynamic caveats. This will avoid issues with the JSON API. 2025-06-19 10:13:32 +01:00
rubocops/caveats: only apply dynamic logic check to core. This doesn't really matter for non-API taps. 2025-06-23 08:58:34 +01:00			`return if formula_tap != "homebrew-core"`

rubocops/caveats: check for dynamic caveats. This will avoid issues with the JSON API. 2025-06-19 10:13:32 +01:00			`# Forbid dynamic logic in caveats (only if/else/unless)`
			`caveats_method = find_method_def(@body, :caveats)`
			`return unless caveats_method`

			`dynamic_nodes = caveats_method.each_descendant.select do \|descendant\|`
			`descendant.type == :if`
			`end`
			`dynamic_nodes.each do \|node\|`
			`@offensive_node = node`
			`problem "Don't use dynamic logic (if/else/unless) in caveats."`
			`end`
audit: Port audit_caveats method to rubocop and add tests 2017-05-22 13:09:49 +05:30			`end`
			`end`
			`end`
			`end`
			`end`