#!/usr/bin/env ruby
# frozen_string_literal: true

require 'optparse'
require 'json'
require './rhel_rpm_to_cve'
require './rhel_security_api_client'

ARGV << '-h' if ARGV.empty?

data_file = './rpm-to-cve.xml'

options = {}

parser = OptionParser.new do |parser|
  parser.banner = 'Usage: rpm_pkg_audit.rb [options]'
  parser.on('-p', '--pkg PKGNAME', 'Takes a base pkg name and returns cves from redhats security API.') do |pkg|
    options[:pkg] = pkg
  end
  parser.on('-l', '--list', 'List packages in the XML datafile.') do |list|
    options[:list] = list
  end
  parser.on('-x', '--xmlpkg PKGNAME', 'The pkg name you want to audit from xml file rpm-to-cve.xml') do |xmlpkg|
    options[:xmlpkg] = xmlpkg
  end
  parser.on('-r', '--refresh', 'Refresh rpm-to-cve.xml file with latest pkgs and cves') do |_refresh|
    options[:refresh] = true
  end
end

parser.parse!

if options[:pkg]
  pkg_name = options[:pkg]
elsif options[:xmlpkg]
  xmlpkg_name = options[:xmlpkg]
end

rpm_auditer = RhelRpmToCve.new(filepath: data_file)
rhel_api_client = RhelSecurityApiClient.new

if xmlpkg_name
  json = rpm_auditer.cves_per_pkg_name(xmlpkg_name).to_json
  puts JSON.pretty_generate(JSON.parse(json))
elsif pkg_name
  params = { params: { package: pkg_name } }
  json_response = rhel_api_client.request('/cve.json', params)
  cve_pkgs_and_adv = rhel_api_client.cve_pkg_adv(json_response)
  puts JSON.pretty_generate(cve_pkgs_and_adv)
elsif options[:refresh]
  rpm_auditer.refresh_rpm_to_cve_file('./rpm-to-cve.xml')
else options.key?(:list)
  puts rpm_auditer.list_pkg_names.sort
end