feat: support multiple sources and create CacheHandler

Author: sdn4z

pyproject.toml

@@ -19,6 +19,7 @@ dependencies = [
     "pyparsing<4.0.0,>=3.2.3",
     "tomlkit<0.14.0,>=0.11.6",
     "tomli<3.0.0,>=2.2.1; python_version < \"3.13\"",
+    "pydantic>=2.11.7,<3.0.0",
 ]
 name = "twyn"
 description = "Security tool against dependency typosquatting attacks"

src/twyn/base/exceptions.py

@@ -15,3 +15,7 @@ def __init__(self, message: str = "") -> None:
     def show(self, file: Optional[IO[Any]] = None) -> None:
         logger.debug(self.format_message(), exc_info=True)
         logger.error(self.format_message(), exc_info=False)
+
+
+class PackageNormalizingError(TwynError):
+    """Exception for when it is not possible to normalize a package name."""

src/twyn/base/utils.py

@@ -1,6 +1,15 @@
 import re
 
+from twyn.base.exceptions import PackageNormalizingError
 
-def _normalize_packages(packages: set[str]) -> set[str]:
+
+def normalize_packages(packages: set[str]) -> set[str]:
     """Normalize dependency names according to PyPi https://packaging.python.org/en/latest/specifications/name-normalization/."""
-    return {re.sub(r"[-_.]+", "-", name).lower() for name in packages}
+    renamed_packages = {re.sub(r"[-_.]+", "-", name).lower() for name in packages}
+
+    pattern = re.compile(r"^([a-z0-9]|[a-z0-9][a-z0-9._-]*[a-z0-9])\Z")
+    for package in renamed_packages:
+        if not pattern.match(package):
+            raise PackageNormalizingError(f"Package name '{package}' does not match required pattern")
+
+    return renamed_packages

src/twyn/cli.py

@@ -15,6 +15,7 @@
 from twyn.config.config_handler import ConfigHandler
 from twyn.file_handler.file_handler import FileHandler
 from twyn.main import check_dependencies
+from twyn.trusted_packages.cache_handler import CacheHandler
 from twyn.trusted_packages.constants import TRUSTED_PACKAGES_FILE_PATH
 
 logging.basicConfig(
@@ -154,13 +155,7 @@ def cache() -> None:
 
 @cache.command()
 def clear() -> None:
-    fp = FileHandler(TRUSTED_PACKAGES_FILE_PATH).file_path
-    if fp.exists():
-        fp.unlink()
-        fp.parent.rmdir()
-        logger.warning("Cache has been cleared")
-    else:
-        logger.warning("Could not clear cache. Cache file not found.")
+    CacheHandler(FileHandler(TRUSTED_PACKAGES_FILE_PATH)).clear()
 
 
 if __name__ == "__main__":

src/twyn/file_handler/file_handler.py

@@ -3,7 +3,6 @@
 from pathlib import Path
 from typing import Protocol
 
-from twyn.base.exceptions import TwynError
 from twyn.file_handler.exceptions import PathIsNotFileError, PathNotFoundError
 
 logger = logging.getLogger("twyn")
@@ -13,6 +12,7 @@ class BaseFileHandler(Protocol):
     def read(self) -> str: ...
     def exists(self) -> bool: ...
     def write(self, data: str) -> None: ...
+    def delete(self, remove_parent_dir: bool) -> None: ...
 
 
 class FileHandler(BaseFileHandler):
@@ -36,7 +36,7 @@ def read(self) -> str:
     def exists(self) -> bool:
         try:
             self._raise_for_file_exists()
-        except TwynError:
+        except (PathNotFoundError, PathIsNotFileError):
             return False
         return True
 
@@ -49,3 +49,20 @@ def _raise_for_file_exists(self) -> None:
 
     def write(self, data: str) -> None:
         self.file_path.write_text(data)
+
+    def delete(self, delete_parent_dir: bool = False) -> None:
+        if not self.exists():
+            logger.info("File does not exist, nothing to delete")
+            return
+
+        self.file_path.unlink()
+        logger.info("Deleted file: %s", self.file_path)
+
+        if delete_parent_dir:
+            try:
+                self.file_path.parent.rmdir()
+                logger.info("Removed empty directory: %s", self.file_path.parent)
+            except OSError:
+                logger.exception(
+                    "Directory not empty or not enough permissions. Cannot be removed: %s", self.file_path.parent
+                )

src/twyn/main.py

@@ -9,12 +9,14 @@
     AvailableLoggingLevels,
     SelectorMethod,
 )
-from twyn.base.utils import _normalize_packages
+from twyn.base.utils import normalize_packages
 from twyn.config.config_handler import ConfigHandler
 from twyn.dependency_parser.dependency_selector import DependencySelector
 from twyn.file_handler.file_handler import FileHandler
 from twyn.similarity.algorithm import EditDistance, SimilarityThreshold
 from twyn.trusted_packages import TopPyPiReference
+from twyn.trusted_packages.cache_handler import CacheHandler
+from twyn.trusted_packages.constants import TRUSTED_PACKAGES_FILE_PATH
 from twyn.trusted_packages.selectors import AbstractSelector
 from twyn.trusted_packages.trusted_packages import (
     TrustedPackages,
@@ -39,15 +41,16 @@ def check_dependencies(
     )
     _set_logging_level(config.logging_level)
 
+    cache_handler = CacheHandler(FileHandler(TRUSTED_PACKAGES_FILE_PATH))
     trusted_packages = TrustedPackages(
-        names=TopPyPiReference(source=config.pypi_reference).get_packages(use_cache),
+        names=TopPyPiReference(source=config.pypi_reference, cache_handler=cache_handler).get_packages(use_cache),
         algorithm=EditDistance(),
         selector=get_candidate_selector(config.selector_method),
         threshold_class=SimilarityThreshold,
     )
-    normalized_allowlist_packages = _normalize_packages(config.allowlist)
+    normalized_allowlist_packages = normalize_packages(config.allowlist)
     dependencies = dependencies if dependencies else get_parsed_dependencies_from_file(config.dependency_file)
-    normalized_dependencies = _normalize_packages(dependencies)
+    normalized_dependencies = normalize_packages(dependencies)
 
     errors: list[TyposquatCheckResult] = []
     for dependency in track(normalized_dependencies, description="Processing..."):

src/twyn/trusted_packages/cache_handler.py

@@ -0,0 +1,126 @@
+import json
+import logging
+from datetime import datetime
+from functools import cached_property
+from typing import Any, Optional
+
+from pydantic import BaseModel, ValidationError, field_validator
+
+from twyn.base.exceptions import PackageNormalizingError
+from twyn.base.utils import normalize_packages
+from twyn.file_handler.exceptions import PathIsNotFileError, PathNotFoundError
+from twyn.file_handler.file_handler import FileHandler
+from twyn.trusted_packages.constants import TRUSTED_PACKAGES_MAX_RETENTION_DAYS
+
+logger = logging.getLogger("twyn")
+
+
+class CacheEntry(BaseModel):
+    saved_date: str
+    packages: set[str]
+
+    @field_validator("saved_date")
+    @classmethod
+    def validate_saved_date(cls, v: str) -> str:
+        try:
+            datetime.fromisoformat(v)
+        except (ValueError, TypeError) as e:
+            raise ValueError(f"Invalid saved_date format: {e}") from e
+        else:
+            return v
+
+    @field_validator("packages")
+    @classmethod
+    def validate_packages(cls, v: set[str]) -> set[str]:
+        try:
+            return normalize_packages(v)
+        except PackageNormalizingError as e:
+            raise ValueError(f"Failed to normalize packages: {e}") from e
+
+
+class CacheContent(BaseModel):
+    entries: dict[str, CacheEntry]
+
+    def get_entry(self, source: str) -> Optional[CacheEntry]:
+        return self.entries.get(source, None)
+
+    def add_or_modify_entry(self, source: str, data: CacheEntry) -> None:
+        self.entries[source] = data
+
+
+class CacheHandler:
+    """Cache class that provides basic read/write/delete operation for the caching system, as well as integrity validation checks."""
+
+    def __init__(self, file_handler: FileHandler) -> None:
+        self._file_handler = file_handler
+        self._content: Optional[CacheContent] = None
+
+    @cached_property
+    def content(self) -> CacheContent:
+        """Get all cache content."""
+        content = self._read()
+        try:
+            if content:
+                return CacheContent(**content)
+        except ValidationError:
+            logger.exception("Could not read cache. Cache is corrupt.")
+
+        return CacheContent(entries={})
+
+    def exists(self) -> bool:
+        """Check if cache file exists."""
+        return self._file_handler.exists()
+
+    def is_entry_outdated(self, entry: CacheEntry) -> bool:
+        """Check if a cache entry is outdated based on retention days."""
+        try:
+            saved_date = datetime.fromisoformat(entry.saved_date).date()
+            days_diff = (datetime.today().date() - saved_date).days
+        except (ValueError, AttributeError):
+            logger.warning("Invalid date format in cache entry")
+            return True
+        else:
+            return days_diff > TRUSTED_PACKAGES_MAX_RETENTION_DAYS
+
+    def write_entry(self, source: str, data: CacheEntry) -> None:
+        """Given a source and a CacheEntry, saves to contents to cache."""
+        self.content.add_or_modify_entry(source, data)
+        self._write(json.loads(self.content.model_dump_json()))
+
+    def get_cache_entry(self, source: str) -> Optional[CacheEntry]:
+        """Retrieve cache contents from a given source."""
+        entry = self.content.get_entry(source)
+        if entry and not self.is_entry_outdated(entry):
+            return entry
+        return None
+
+    def clear(self) -> None:
+        """Delete cache file and its parent directory if empty."""
+        self._file_handler.delete(delete_parent_dir=True)
+
+    def _read(self) -> dict[str, Any]:
+        """Read and parse cache file as JSON."""
+        try:
+            content = self._file_handler.read()
+        except (PathNotFoundError, PathIsNotFileError):
+            logger.info("Cache file not found")
+            return {}
+
+        try:
+            return json.loads(content)
+        except json.JSONDecodeError as e:
+            logger.warning("Failed to decode JSON from cache file: %s", e)
+            return {}
+
+    def _write(self, data: dict[str, Any]) -> None:
+        """Write data to cache file as JSON."""
+        try:
+            json_content = json.dumps(data)
+        except (TypeError, ValueError):
+            logger.exception("Failed to serialize data to JSON")
+            return None
+
+        # Ensure parent directory exists
+        self._file_handler.file_path.parent.mkdir(parents=True, exist_ok=True)
+        self._file_handler.write(json_content)
+        logger.debug("Successfully wrote cache data to %s", self._file_handler.file_path)