add cmd to exclude repos

cmd/root.go

@@ -38,6 +38,7 @@ const (
 	purgeCacheFlag     = "purge-cache"
 	softExitFlag       = "soft-exit"
 	orgFlag            = "organization"
+	excludeReposFlag   = "exclude-repos"
 )
 
 // ENV keys.
@@ -130,6 +131,7 @@ func init() {
 		tagsUsage                    = "tags to use when SBOMs are uploaded to Dependency Track (optional)"
 		purgeCacheUsage              = "whether to purge gradle and go caches after a successful run (default: false)"
 		orgFlagUsage                 = "used when using organization github app"
+		excludeReposFlagUsage        = "used to exclude repos from gathering on org mode"
 		softExitUsage                = "used on cleanup to exit soft without crashing"
 	)
 
@@ -149,6 +151,7 @@ func init() {
 	rootCmd.PersistentFlags().BoolP(softExitFlag, "s", false, softExitUsage)
 
 	rootCmd.PersistentFlags().StringP(orgFlag, "g", "", orgFlagUsage)
+	rootCmd.PersistentFlags().StringSliceP(excludeReposFlag, "x", nil, excludeReposFlagUsage)
 }
 
 func initConfig() {

cmd/util.go

@@ -72,6 +72,13 @@ func createAppFromCLI(cmd *cobra.Command, verbose bool) (*app.App, error) {
 
 	options = append(options, app.WithTags(tags))
 
+	excludeRepos, err := cmd.Flags().GetStringSlice(excludeReposFlag)
+	if err != nil {
+		return nil, fmt.Errorf(errTemplate, excludeReposFlag)
+	}
+
+	options = append(options, app.WithExcludedRepos(excludeRepos))
+
 	orgName, err := cmd.Flags().GetString(orgFlag)
 	if err != nil {
 		log.Warn("github app org won't be used as no org set")

internal/app/app.go

@@ -27,7 +27,7 @@ import (
 
 type App struct {
 	outputFile                                   string
-	tags                                         []string
+	tags, excludedRepos                          []string
 	githubUsername, githubAPIToken, organization string // TODO Move later on to a separate GitHub client
 	dependencyTrackClient                        *dtrack.DependencyTrackClient
 	purgeCache, softExit                         bool
@@ -40,7 +40,7 @@ type SBOMsFromFilesystemConfig struct {
 }
 
 type options struct {
-	tags                                         []string
+	tags, excludedRepos                          []string
 	githubUsername, githubAPIToken, organization string // TODO Move later on to a separate GitHub client
 	dependencyTrackClient                        *dtrack.DependencyTrackClient
 	purgeCache, softExit                         bool
@@ -112,6 +112,14 @@ func WithTags(tags []string) Option {
 	}
 }
 
+func WithExcludedRepos(excludedRepos []string) Option {
+	return func(options *options) error {
+		options.excludedRepos = excludedRepos
+
+		return nil
+	}
+}
+
 func WithOrganization(orgName string) Option {
 	return func(options *options) error {
 		options.organization = orgName
@@ -134,7 +142,7 @@ func New(outputFile string, opts ...Option) (*App, error) {
 
 	app.githubUsername = options.githubUsername
 	app.githubAPIToken = options.githubAPIToken
-
+	app.excludedRepos = options.excludedRepos
 	app.tags = options.tags
 
 	app.purgeCache = options.purgeCache
@@ -193,10 +201,22 @@ func (a App) SBOMsFromOrganization(organizationURL string, delayAmount uint16) {
 	*/
 
 	collectSBOMsFromRepositories := func(repositoryURLs []string, apiToken string) {
+		repoMap := make(map[string]bool)
+		for _, repo := range a.excludedRepos {
+			repoMap[repo] = true
+		}
+
 		if apiToken != a.githubAPIToken && apiToken != "" {
 			a.githubAPIToken = apiToken
 		}
 		for idx, repositoryURL := range repositoryURLs {
+			parts := strings.Split(strings.TrimRight(repositoryURL, "/"), "/")
+			repoName := parts[len(parts)-1]
+
+			if repoMap[repoName] {
+				log.Infof("%s is in the exclude list, skipping", repoName)
+				continue
+			}
 			if idx == 0 {
 				a.sbomsFromRepositoryInternal(ctx, repositoryURL)
 				continue