Dependency insight for Gradle and Maven

org.openrewrite.java.dependencies.DependencyInsight

Finds dependencies, including transitive dependencies, in both Gradle and Maven projects. Matches within all Gradle dependency configurations and Maven scopes.

Recipe source

GitHub, Issue Tracker, Maven Central

groupId: org.openrewrite.recipe
artifactId: rewrite-java-dependencies
version: 1.7.0

Options

Type Name Description Example

Type	Name	Description	Example
`String`	groupIdPattern	Group ID glob pattern used to match dependencies.	`com.fasterxml.jackson*`
`String`	artifactIdPattern	Artifact ID glob pattern used to match dependencies.	`jackson-*`
`String`	version	Optional. Match only dependencies with the specified version. Node-style version selectors may be used. All versions are searched by default.	`1.x`

String

groupIdPattern

Group ID glob pattern used to match dependencies.

com.fasterxml.jackson*

String

artifactIdPattern

Artifact ID glob pattern used to match dependencies.

jackson-*

String

version

Optional. Match only dependencies with the specified version. Node-style version selectors may be used. All versions are searched by default.

1.x

Data Tables (Only available on the Moderne platform)

Dependencies in use

Direct and transitive dependencies in use.

Column Name Description

Column Name	Description
Project name	The name of the project that contains the dependency.
Source set	The source set that contains the dependency.
Group	The first part of a dependency coordinate `com.google.guava:guava:VERSION`.
Artifact	The second part of a dependency coordinate `com.google.guava:guava:VERSION`.
Version	The resolved version.
Dated snapshot version	The resolved dated snapshot version or `null` if this dependency is not a snapshot.
Scope	Dependency scope. This will be `compile` if the dependency is direct and a scope is not explicitly specified in the POM.
Depth	How many levels removed from a direct dependency. This will be 0 for direct dependencies.

Project name

The name of the project that contains the dependency.

Source set

The source set that contains the dependency.

Group

The first part of a dependency coordinate com.google.guava:guava:VERSION.

Artifact

The second part of a dependency coordinate com.google.guava:guava:VERSION.

Version

The resolved version.

Dated snapshot version

The resolved dated snapshot version or null if this dependency is not a snapshot.

Scope

Dependency scope. This will be compile if the dependency is direct and a scope is not explicitly specified in the POM.

Depth

How many levels removed from a direct dependency. This will be 0 for direct dependencies.

Usage

This recipe has required configuration parameters. Recipes with required configuration parameters cannot be activated directly. To activate this recipe you must create a new recipe which fills in the required parameters. In your rewrite.yml create a new recipe with a unique name. For example: com.yourorg.DependencyInsightExample. Here's how you can define and customize such a recipe within your rewrite.yml:

rewrite.yml

---
type: specs.openrewrite.org/v1beta/recipe
name: com.yourorg.DependencyInsightExample
displayName: Dependency insight for Gradle and Maven example
recipeList:
  - org.openrewrite.java.dependencies.DependencyInsight:
      groupIdPattern: com.fasterxml.jackson*
      artifactIdPattern: jackson-*
      version: 1.x

Now that com.yourorg.DependencyInsightExample has been defined activate it and take a dependency on org.openrewrite.recipe:rewrite-java-dependencies:1.7.0 in your build file:

Add the following to your build.gradle file:

build.gradle

plugins {
    id("org.openrewrite.rewrite") version("6.12.0")
}

rewrite {
    activeRecipe("com.yourorg.DependencyInsightExample")
}

repositories {
    mavenCentral()
}

dependencies {
    rewrite("org.openrewrite.recipe:rewrite-java-dependencies:1.7.0")
}

Run gradle rewriteRun to run the recipe.

Add the following to your pom.xml file:

pom.xml

<project>
  <build>
    <plugins>
      <plugin>
        <groupId>org.openrewrite.maven</groupId>
        <artifactId>rewrite-maven-plugin</artifactId>
        <version>5.29.0</version>
        <configuration>
          <activeRecipes>
            <recipe>com.yourorg.DependencyInsightExample</recipe>
          </activeRecipes>
        </configuration>
        <dependencies>
          <dependency>
            <groupId>org.openrewrite.recipe</groupId>
            <artifactId>rewrite-java-dependencies</artifactId>
            <version>1.7.0</version>
          </dependency>
        </dependencies>
      </plugin>
    </plugins>
  </build>
</project>

Run mvn rewrite:run to run the recipe.

You will need to have configured the Moderne CLI on your machine before you can run the following command.

shell

mod run . --recipe DependencyInsightExample

See how this recipe works across multiple open-source repositories

The community edition of the Moderne platform enables you to easily run recipes across thousands of open-source repositories.

Please contact Moderne for more information about safely running the recipes on your own codebase in a private SaaS.

Contributors

Sam Snyder, Jonathan Schnéider, Mike Solomon, Tim te Beek

PreviousChange Gradle or Maven dependency NextDependency report

Last updated 1 day ago