* Generate NOTICE file for the project.
*
* Scans all installed packages in node_modules/.bun, matches them against
* the direct dependencies listed in packages/opencode/package.json, and
* produces a NOTICE file grouped by license type.
*
* Usage:
* bun run script/generate-notice.ts # default: reads from node_modules/.bun
* bun run script/generate-notice.ts --output NOTICE
*/
import { readdirSync, readFileSync, writeFileSync, existsSync } from "node:fs"
import { join, dirname } from "node:path"
const PROJECT_ROOT = join(import.meta.dir, "..")
const BUN_MODULES = join(PROJECT_ROOT, "node_modules", ".bun")
const PACKAGE_JSON = join(PROJECT_ROOT, "packages", "opencode", "package.json")
const OUTPUT = join(PROJECT_ROOT, "NOTICE")
const LICENSE_OVERRIDES: Record<string, string> = {
"@openauthjs/openauth": "MIT",
"@deveco-codegenie/mcp-bridge": "MIT",
"@deveco-codegenie/mcp-bridge-darwin-arm64": "MIT",
"@deveco-codegenie/mcp-bridge-darwin-x64": "MIT",
"@deveco-codegenie/mcp-bridge-win32-x64": "MIT",
}
const WORKSPACE_SCOPE = ["@opencode-ai/plugin", "@opencode-ai/script", "@opencode-ai/sdk"]
interface PkgInfo {
name: string
version: string
license: string
publisher: string
repository: string
}
function readJSON(path: string): any {
return JSON.parse(readFileSync(path, "utf-8"))
}
function normalizeLicense(lic: string): string {
if (lic.toLowerCase() === "apache-2.0") return "Apache-2.0"
return lic
}
function extractAuthor(author: any): string {
if (!author) return ""
if (typeof author === "string") return author
return author.name || ""
}
function extractRepo(repo: any): string {
if (!repo) return ""
if (typeof repo === "string") return repo
return repo.url || ""
}
function findPkgJson(dir: string): string | null {
const nm = join(dir, "node_modules")
if (!existsSync(nm)) return null
const stack: string[] = [nm]
while (stack.length) {
const current = stack.pop()!
try {
const entries = readdirSync(current, { withFileTypes: true })
for (const entry of entries) {
if (entry.isDirectory()) {
stack.push(join(current, entry.name))
} else if (entry.name === "package.json") {
const fullPath = join(current, entry.name)
try {
const pkg = readJSON(fullPath)
if (pkg.name && pkg.version) return fullPath
} catch {
}
}
}
} catch {
}
if (current.split("/").length - nm.split("/").length > 5) continue
}
return null
}
function collectAllPackages(): Map<string, PkgInfo> {
const packages = new Map<string, PkgInfo>()
if (!existsSync(BUN_MODULES)) {
console.error(`Error: ${BUN_MODULES} not found. Run "bun install" first.`)
process.exit(1)
}
const entries = readdirSync(BUN_MODULES)
for (const entry of entries) {
const entryPath = join(BUN_MODULES, entry)
const pkgJsonPath = findPkgJson(entryPath)
if (!pkgJsonPath) continue
try {
const pkg = readJSON(pkgJsonPath)
const name: string = pkg.name ?? ""
const ver: string = pkg.version ?? ""
if (!name || !ver) continue
const licRaw: unknown = pkg.license ?? "UNKNOWN"
let lic: string = "UNKNOWN"
if (typeof licRaw === "object" && licRaw !== null && "type" in licRaw) lic = (licRaw as { type: string }).type
else if (Array.isArray(licRaw)) lic = licRaw.join(" AND ")
else if (typeof licRaw === "string") lic = licRaw
const key = `${name}@${ver}`
if (!packages.has(key)) {
packages.set(key, {
name,
version: ver,
license: normalizeLicense(lic),
publisher: extractAuthor(pkg.author),
repository: extractRepo(pkg.repository),
})
}
} catch {
}
}
return packages
}
function getDirectDeps(): string[] {
const pkg = readJSON(PACKAGE_JSON)
const deps: Record<string, string> = pkg.dependencies ?? {}
return Object.keys(deps)
}
function matchDirectDeps(
allPkgs: Map<string, PkgInfo>,
directNames: string[],
): Map<string, PkgInfo> {
const result = new Map<string, PkgInfo>()
for (const depName of directNames) {
if (WORKSPACE_SCOPE.includes(depName)) continue
let best: PkgInfo | null = null
let bestKey = ""
for (const [key, info] of allPkgs) {
if (info.name !== depName) continue
if (!best || key > bestKey) {
best = info
bestKey = key
}
}
if (best) {
const override = LICENSE_OVERRIDES[depName]
if (override) best.license = normalizeLicense(override)
result.set(depName, best)
} else {
console.warn(` Warning: ${depName} not found in node_modules`)
}
}
return result
}
function formatPkg(info: PkgInfo): string {
const pub = info.publisher
if (pub) {
return ` - ${info.name} (${info.version}) - Copyright (c) ${pub}`
}
return ` - ${info.name} (${info.version})`
}
function generateNotice(deps: Map<string, PkgInfo>): string {
const lines: string[] = []
lines.push("NOTICE")
lines.push("")
lines.push("DevEco Code CLI")
lines.push("Copyright (c) 2025-present DevEco Code Contributors")
lines.push("")
lines.push("This project is licensed under the MIT License.")
lines.push("")
lines.push("===================================================================")
lines.push("THIRD-PARTY SOFTWARE NOTICES AND INFORMATION")
lines.push("===================================================================")
lines.push("")
lines.push("This project uses third-party software components. The following")
lines.push("is a list of these components and their license information.")
lines.push("")
const byLicense = new Map<string, PkgInfo[]>()
for (const info of deps.values()) {
const lic = info.license
if (!byLicense.has(lic)) byLicense.set(lic, [])
byLicense.get(lic)!.push(info)
}
const order = ["MIT", "Apache-2.0", "BSD-3-Clause", "ISC"]
for (const lic of byLicense.keys()) {
if (!order.includes(lic)) order.push(lic)
}
const fullLicenseNames: Record<string, string> = {
MIT: "MIT License",
"Apache-2.0": "Apache License 2.0",
"BSD-3-Clause": "BSD 3-Clause License",
ISC: "ISC License",
}
let first = true
for (const lic of order) {
const pkgs = byLicense.get(lic)
if (!pkgs?.length) continue
if (!first) {
lines.push("-------------------------------------------------------------------")
lines.push("")
}
first = false
const title = fullLicenseNames[lic] ?? lic
lines.push(`${title}`)
lines.push("")
lines.push(`The following components are licensed under the ${title}:`)
lines.push("")
pkgs.sort((a, b) => a.name.localeCompare(b.name))
for (const p of pkgs) {
lines.push(formatPkg(p))
}
lines.push("")
}
return lines.join("\n")
}
function main() {
const outputArg = process.argv.find((a) => a.startsWith("--output="))
const outputPath = outputArg ? outputArg.split("=")[1] : OUTPUT
console.log("Scanning installed packages...")
const allPkgs = collectAllPackages()
console.log(` Found ${allPkgs.size} total packages`)
console.log("Matching direct dependencies...")
const directNames = getDirectDeps()
const matched = matchDirectDeps(allPkgs, directNames)
console.log(` Matched ${matched.size} / ${directNames.length} direct dependencies`)
console.log("Generating NOTICE...")
const content = generateNotice(matched)
writeFileSync(outputPath, content, "utf-8")
console.log(` Written to ${outputPath}`)
const byLic = new Map<string, number>()
for (const info of matched.values()) {
byLic.set(info.license, (byLic.get(info.license) ?? 0) + 1)
}
console.log("\nLicense summary:")
for (const [lic, count] of byLic) {
console.log(` ${lic}: ${count}`)
}
console.log(` Total: ${matched.size}`)
}
main()
