update class-parser.php

Author: afragen

composer.lock

@@ -341,15 +341,26 @@ protected function parse_readme_contents( $contents ) {
 		if ( ! empty( $headers['license'] ) ) {
 			// Handle the many cases of "License: GPLv2 - http://..."
 			if ( empty( $headers['license_uri'] ) && preg_match( '!(https?://\S+)!i', $headers['license'], $url ) ) {
-				$headers['license_uri'] = $url[1];
-				$headers['license']     = trim( str_replace( $url[1], '', $headers['license'] ), " -*\t\n\r\n" );
+				$headers['license_uri'] = trim( $url[1], " -*\t\n\r\n(" );
+				$headers['license']     = trim( str_replace( $url[1], '', $headers['license'] ), " -*\t\n\r\n(" );
 			}
+
 			$this->license = $headers['license'];
 		}
 		if ( ! empty( $headers['license_uri'] ) ) {
 			$this->license_uri = $headers['license_uri'];
 		}
 
+		// Validate the license specified.
+		if ( ! $this->license ) {
+			$this->warnings['license_missing'] = true;
+		} else {
+			$license_error = $this->validate_license( $this->license );
+			if ( true !== $license_error ) {
+				$this->warnings[ $license_error ] = $this->license;
+			}
+		}
+
 		// Parse the short description.
 		while ( ( $line = array_shift( $contents ) ) !== null ) {
 			$trimmed = trim( $line );
@@ -919,4 +930,95 @@ protected function parse_markdown( $text ) {
 		return $markdown->transform( $text );
 	}
 
+	/**
+	 * Validate whether the license specified appears to be valid or not.
+	 *
+	 * NOTE: This does not require a SPDX license to be specified, but it should be a valid license nonetheless.
+	 *
+	 * @param string $license The specified license.
+	 * @return string|bool True if it looks good, error code on failure.
+	 */
+	public function validate_license( $license ) {
+		/*
+		 * This is a shortlist of keywords that are expected to be found in a valid license field.
+		 * See https://www.gnu.org/licenses/license-list.en.html for possible compatible licenses.
+		 */
+		$probably_compatible = [
+			'GPL', 'General Public License',
+			// 'GNU 2', 'GNU Public', 'GNU Version 2' explicitely not included, as it's not a specific license.
+			'MIT',
+			'ISC',
+			'Expat',
+			'Apache 2', 'Apache License 2',
+			'X11', 'Modified BSD', 'New BSD', '3 Clause BSD', 'BSD 3',
+			'FreeBSD', 'Simplified BSD', '2 Clause BSD', 'BSD 2',
+			'MPL', 'Mozilla Public License',
+			strrev( 'LPFTW' ), strrev( 'kcuf eht tahw od' ), // To avoid some code scanners..
+			'Public Domain', 'CC0', 'Unlicense',
+			'CC BY', // Note: BY-NC & BY-ND are a no-no. See below.
+			'zlib',
+		];
+
+		/*
+		 * This is a shortlist of keywords that are likely related to a non-GPL  compatible license.
+		 * See https://www.gnu.org/licenses/license-list.en.html for possible explanations.
+		 */
+		$probably_incompatible = [
+			'4 Clause BSD', 'BSD 4 Clause', 
+			'Apache 1',
+			'CC BY-NC', 'CC-NC', 'NonCommercial',
+			'CC BY-ND', 'NoDerivative',
+			'EUPL',
+			'OSL',
+			'Personal use', 'without permission', 'without prior auth', 'you may not',
+			'Proprietery', 'proprietary',
+		];
+
+		$sanitize_license = static function( $license ) {
+			$license = strtolower( $license );
+
+			// Localised or verbose licences.
+			$license = str_replace( 'licence', 'license', $license );
+			$license = str_replace( 'clauses', 'clause', $license ); // BSD
+			$license = str_replace( 'creative commons', 'cc', $license );
+
+			// If it looks like a full GPL statement, trim it back, for this function.
+			if ( 0 === stripos( $license, 'GNU GENERAL PUBLIC LICENSE Version 2, June 1991 Copyright (C) 1989' ) ) {
+				$license = 'gplv2';
+			}
+
+			// Replace 'Version 9' & v9 with '9' for simplicity.
+			$license = preg_replace( '/(version |v)([0-9])/i', '$2', $license );
+
+			// Remove unexpected characters
+			$license = preg_replace( '/(\s*[^a-z0-9. ]+\s*)/i', '', $license );
+
+			// Remove all spaces
+			$license = preg_replace( '/\s+/', '', $license );
+
+			return $license;
+		};
+
+		$probably_compatible   = array_map( $sanitize_license, $probably_compatible );
+		$probably_incompatible = array_map( $sanitize_license, $probably_incompatible );
+		$license               = $sanitize_license( $license );
+
+		// First check to see if it's most probably an incompatible license.
+		foreach ( $probably_incompatible as $match ) {
+			if ( str_contains( $license, $match ) ) {
+				return 'invalid_license';
+			}
+		}
+
+		// Check to see if it's likely compatible.
+		foreach ( $probably_compatible as $match ) {
+			if ( str_contains( $license, $match ) ) {
+				return true;
+			}
+		}
+
+		// If we've made it this far, it's neither likely incompatible, or likely compatible, so unknown.
+		return 'unknown_license';
+	}
+
 }

vendor/afragen/wordpress-plugin-readme-parser/class-parser.php

@@ -57,19 +57,19 @@
             "source": {
                 "type": "git",
                 "url": "https://github.com/afragen/wordpress-plugin-readme-parser.git",
-                "reference": "a3b49da55b77137399fe13e812b430d702551b8f"
+                "reference": "c3758599348148be684b3c4ad1105d09b6230d51"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/afragen/wordpress-plugin-readme-parser/zipball/a3b49da55b77137399fe13e812b430d702551b8f",
-                "reference": "a3b49da55b77137399fe13e812b430d702551b8f",
+                "url": "https://api.github.com/repos/afragen/wordpress-plugin-readme-parser/zipball/c3758599348148be684b3c4ad1105d09b6230d51",
+                "reference": "c3758599348148be684b3c4ad1105d09b6230d51",
                 "shasum": ""
             },
             "require": {
                 "erusev/parsedown": "^1.7",
                 "php": ">=5.4"
             },
-            "time": "2024-04-15T15:05:48+00:00",
+            "time": "2024-04-30T13:39:49+00:00",
             "default-branch": true,
             "type": "library",
             "installation-source": "dist",

vendor/composer/installed.json

@@ -3,7 +3,7 @@
         'name' => 'afragen/git-updater',
         'pretty_version' => 'dev-develop',
         'version' => 'dev-develop',
-        'reference' => '70efdcb8cddb934fa3f31156549743aa695faa51',
+        'reference' => '101673e9e1293e8c79da570c5e6c2347d63bff34',
         'type' => 'wordpress-plugin',
         'install_path' => __DIR__ . '/../../',
         'aliases' => array(),
@@ -13,7 +13,7 @@
         'afragen/git-updater' => array(
             'pretty_version' => 'dev-develop',
             'version' => 'dev-develop',
-            'reference' => '70efdcb8cddb934fa3f31156549743aa695faa51',
+            'reference' => '101673e9e1293e8c79da570c5e6c2347d63bff34',
             'type' => 'wordpress-plugin',
             'install_path' => __DIR__ . '/../../',
             'aliases' => array(),
@@ -33,7 +33,7 @@
         'afragen/wordpress-plugin-readme-parser' => array(
             'pretty_version' => 'dev-master',
             'version' => 'dev-master',
-            'reference' => 'a3b49da55b77137399fe13e812b430d702551b8f',
+            'reference' => 'c3758599348148be684b3c4ad1105d09b6230d51',
             'type' => 'library',
             'install_path' => __DIR__ . '/../afragen/wordpress-plugin-readme-parser',
             'aliases' => array(