Add SPDX license identifier to each file (#651)

Add SPDX license short header to every source file. Also add any missing
copyrights if necessary.

Signed-off-by: Eric Brown <[email protected]>

.gitignore

@@ -1,3 +1,6 @@
+# Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
+
 # Byte-compiled / optimized / DLL files
 __pycache__/
 *.py[cod]

.pre-commit-config.yaml

@@ -1,3 +1,5 @@
+# Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 exclude: ^(docs|tests|mkdocs.yml)
 repos:
 

.readthedocs.yaml

@@ -1,3 +1,5 @@
+# Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 version: 2
 
 build:

docs/requirements.txt

@@ -1,3 +1,5 @@
+# Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 mkdocs
 mkdocstrings[python]
 mkdocs-material

mkdocs.yml

@@ -1,3 +1,5 @@
+# Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 site_name: Precli Documentation
 repo_url: https://github.com/securesauce/precli/
 edit_uri: blob/main/docs/

precli/__init__.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from datetime import datetime
 from importlib import metadata
 

precli/__main__.py

@@ -1,4 +1,6 @@
 #!/usr/bin/env python
+# Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from precli.cli import main
 
 main.main()

precli/cli/main.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import argparse
 import logging
 import os

precli/core/argument.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from typing import Optional
 
 from tree_sitter import Node

precli/core/artifact.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from typing import Optional
 
 

precli/core/call.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from typing import Optional
 
 from tree_sitter import Node

precli/core/comparison.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from tree_sitter import Node
 
 

precli/core/config.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from precli.core.level import Level
 
 

precli/core/cwe.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 
 
 class Cwe:

precli/core/fix.py

@@ -1,4 +1,5 @@
 # Copyright 2023 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from typing import Optional
 
 from precli.core.location import Location

precli/core/kind.py

@@ -1,4 +1,5 @@
 # Copyright 2023 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import enum
 
 

precli/core/level.py

@@ -1,4 +1,5 @@
 # Copyright 2023 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import enum
 
 

precli/core/linecache.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import linecache
 
 

precli/core/loader.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import sys
 from importlib.metadata import entry_points
 

precli/core/location.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from typing import Optional
 
 from tree_sitter import Node

precli/core/metrics.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 
 
 class Metrics:

precli/core/redos.py

@@ -1,5 +1,6 @@
 # Copyright 2024 Secure Sauce LLC
 # Copyright 2019 Duo Security
+# SPDX-License-Identifier: BUSL-1.1
 import collections
 import itertools
 import sys

precli/core/result.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from typing import Optional
 
 from precli.core.artifact import Artifact

precli/core/run.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import datetime
 import io
 import logging

precli/core/status.py

@@ -1,4 +1,5 @@
 # Copyright 2023 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import enum
 
 

precli/core/suppression.py

@@ -1,4 +1,5 @@
 # Copyright 2023 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from typing import Optional
 
 from precli.core.location import Location

precli/core/symtab.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import sys
 from typing import Optional
 

precli/core/tool.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 class Tool:
     def __init__(
         self,

precli/core/utils.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 
 
 def is_str(value) -> bool:

precli/parsers/go.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import ast
 import re
 from typing import Optional

precli/parsers/java.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import re
 from typing import Optional
 

precli/parsers/node_types.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 
 
 class NodeTypes:

precli/parsers/python.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import builtins
 import codecs
 import importlib

precli/renderers/detailed.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from rich import box
 from rich import syntax
 from rich.table import Table

precli/renderers/json.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import pathlib
 import sys
 import urllib.parse as urlparse

precli/renderers/markdown.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 import logging
 import sys
 

precli/renderers/plain.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 from rich.padding import Padding
 
 from precli.core.level import Level

precli/rules/go/stdlib/crypto_weak_cipher.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Use of a Broken or Risky Cryptographic Algorithm in `crypto` Package
 

precli/rules/go/stdlib/crypto_weak_hash.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Reversible One Way Hash in `crypto` Package
 

precli/rules/go/stdlib/crypto_weak_key.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Inadequate Encryption Strength Using Weak Keys in `crypto` Package
 

precli/rules/go/stdlib/syscall_setuid_root.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Execution with Unnecessary Privileges using `syscall` Package
 

precli/rules/java/stdlib/java_net_insecure_cookie.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
 

precli/rules/java/stdlib/java_security_weak_hash.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Reversible One Way Hash in `java.security` Package
 

precli/rules/java/stdlib/java_security_weak_key.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Inadequate Encryption Strength Using Weak Keys in `java.security` Package
 

precli/rules/java/stdlib/java_security_weak_random.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Use of Cryptographically Weak Pseudo-Random Number Generator `SHA1PRNG`
 

precli/rules/java/stdlib/javax_crypto_weak_cipher.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Use of a Broken or Risky Cryptographic Algorithm in `javax.crypto` Package
 

precli/rules/java/stdlib/javax_servlet_http_insecure_cookie.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
 

precli/rules/python/stdlib/argparse_sensitive_info.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Invocation of Process Using Visible Sensitive Information in `argparse`
 

precli/rules/python/stdlib/assert.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Improper Check Using `assert` Function
 

precli/rules/python/stdlib/crypt_weak_hash.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Reversible One Way Hash in `crypt` Module
 

precli/rules/python/stdlib/ftplib_cleartext.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Cleartext Transmission of Sensitive Information in the `ftplib` Module
 

precli/rules/python/stdlib/ftplib_no_timeout.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Synchronous Access of `FTP` without Timeout
 

precli/rules/python/stdlib/ftplib_unverified_context.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Improper Certificate Validation Using `ftplib`
 

precli/rules/python/stdlib/hashlib_improper_prng.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Improper Randomness for Cryptographic `hashlib` Functions
 

precli/rules/python/stdlib/hashlib_weak_hash.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Reversible One Way Hash in `hashlib` Module
 

precli/rules/python/stdlib/hmac_timing_attack.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 Observable Timing Discrepancy in `hmac` Module
 

precli/rules/python/stdlib/hmac_weak_hash.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Reversible One Way Hash in `hmac` Module
 

precli/rules/python/stdlib/hmac_weak_key.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Insufficient `hmac` Key Size
 

precli/rules/python/stdlib/http_server_unrestricted_bind.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Binding to an Unrestricted IP Address in `http.server` Module
 

precli/rules/python/stdlib/http_url_secret.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Use of HTTP Request Method With Sensitive Query Strings
 

precli/rules/python/stdlib/imaplib_cleartext.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Cleartext Transmission of Sensitive Information in the `imaplib` Module
 

precli/rules/python/stdlib/imaplib_no_timeout.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Synchronous Access of `IMAP4` without Timeout
 

precli/rules/python/stdlib/imaplib_unverified_context.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Improper Certificate Validation Using `imaplib`
 

precli/rules/python/stdlib/json_load.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Deserialization of Untrusted Data in the `json` Module
 

precli/rules/python/stdlib/logging_insecure_listen_config.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Code Injection in Logging Config
 

precli/rules/python/stdlib/marshal_load.py

@@ -1,4 +1,5 @@
 # Copyright 2024 Secure Sauce LLC
+# SPDX-License-Identifier: BUSL-1.1
 r"""
 # Deserialization of Untrusted Data in the `marshal` Module