Readme update

Author: abruno-

README.md

@@ -1,60 +1,65 @@
-# Allowlist dependencies
+# Allowlist Dependencies
 
-**NOTE**: _This repo isnt versioned. `master` branch is consumed by default, so every time `master` branch changes, all
-repositories will immediatly start consuming the new changes_
+> **Note:** This repository is not versioned. The `master` branch is consumed by default, so whenever the `master`
+> branch changes, all repositories will immediately start consuming the new changes.
 
-**If you need to add or update a library**
-,visit [Wiki.](https://sites.google.com/mercadolibre.com/mobile/arquitectura/allowlist)
+If you need to add or update a library, please visit
+the [Architecture Wiki](https://sites.google.com/mercadolibre.com/mobile/arquitectura/allowlist).
 
-### Android
+## Android Dependencies
 
-Android allowlist dependencies consist of a set of dependencies that are available for front-ends and high-level
-repositories to consume from the Mercadolibre-mobile group.
+Android allowlist dependencies consist of a set of libraries that are available for front-ends and low-level
+repositories to consume from the **MercadoLibre-mobile** group. Your Frontend should not be declared here nor consumed
+by any other FEnd.
 
-This set of dependencies is parsed in the form of a JSON text. The root level property should be called `whitelist`.
+These dependencies are defined in JSON format, and the root-level property is called `whitelist`.
 
-Each of the dependencies is a JSON Object that will be matched against each of the unresolved dependencies of the
-repository. The repository dependencies will be a string formed as `group:name:version`. The allowlist fields SUPPORTS
-regex expressions, so you can form match cases for groups in single strings.
+Each dependency is a JSON object that will be matched against the unresolved dependencies of the repository. Repository
+dependencies will be strings in the format `group:name:version`. The allowlist fields SUPPORT regex expressions, so you
+can define matching cases for groups in single strings.
 
-* Remember that this are regexes, so if you want to declare `com.example` it should be `com\\.example`
-* The repository will validate against unresolved dependencies. Thus, if declaring as version `4\\.\\+` it **
-will** match against a dependency `4.+` (it wont be for example the string `4.2.3`)
-* You can have expirable dependencies by adding the `expires` field. If no field is added, the dependency is
-  considered as non-expirable
-  * Warning: expires should not be on wednesday or thursday, as they are to close to the release trains and generate unforseable issues
-* If no group / name / version is provided, they will default to `.*` (any string)
+### Important Considerations:
 
-JSON Schema:
+- Remember these are **regexes**, so if you want to declare `com.example`, you should write it as `com\\.example`.
+- Validation is done against unresolved dependencies. If you declare a version as `4\\.\\+`, it **will** match
+  with `4.+` (but not strings like `4.2.3`).
+- The `expires` field its **optional**. If no field is added, the dependency is considered non-expirable.
+    - **Warning:** Expiring dependencies on Wednesdays or Thursdays will fail CI, as they are too close to release trains and
+      may cause unforeseen issues.
+- If no `group`, `name`, or `version` is provided, they will default to `.*` (any string).
+- **All dependencies and fields are sorted**
 
-```
+### Basic JSON Schema:
+
+```json
 {
   "whitelist": [
     {
       "description": "(optional) description",
       "expires": "yyyy-MM-dd",
-      "group": "group_regex",
-      "name": "name_regex",
-      "version": "version_regex"
-    },
-    ...
+      "group": "regex_group",
+      "name": "regex_name",
+      "version": "regex_version"
+    }
   ]
 }
 ```
 
-**How to test locally**: 
-If you want to try if its working correctly from your fork, just add this line to the \<MODULE-NAME\>/build.gradle:
+### How to test Locally (Android):
+
+If you want to verify that your changes work correctly from your fork, simply add this line to your `/<MODULE-NAME>/build.gradle`:
 
 ```
 ext["allowlistURL"] = "https://raw.githubusercontent.com/YOUR_GITHUB_USER/mobile-dependencies_whitelist/YOUR_GIT_BRANCH/android-whitelist.json"
 ```
 
-### iOS
+## iOS Dependencies
 
-iOS allowlist dependencies consist of a set of dependencies that are available for front-ends and high-level
-repositories to consume from the Mercadolibre-mobile group.
+iOS allowlist dependencies consist of a set of libraries that are available for front-ends and low-level
+repositories to consume from the **MercadoLibre-mobile** group. Your Frontend should not be declared here nor consumed
+by any other FEnd.
 
-This set of dependencies is parsed in the form of a JSON text. The root level property should be called `whitelist`.
+These dependencies are defined in JSON format, and the root-level property is called `whitelist`.
 
 Each of the dependencies is an object with the following properties:
 
@@ -66,43 +71,45 @@ Each of the dependencies is an object with the following properties:
 
 #### Optional
 
+- `description`: (optional) some relevant description
 - `expires`: You can have expirable dependencies by adding the `expires` field. If no field is added, the dependency is
   considered as non-expirable
-- `description`: (optional) some relevant description
 
 Example:
 
-```
+```json
 {
-	"whitelist": [
-   # This will match with 'MeliSDK' and version '~>5.+' (version must have ~>5.x)
+  "whitelist": [
     {
-		"name": "MeliSDK",
-		"version": "^~>5.[0-9]+$"
-	}, 
-   # This will match with 'MLRecommendations' for any version
+      "description": "# This will match with 'MeliSDK' and version '~>5.+' (version must have ~>5.x)",
+      "name": "MeliSDK",
+      "version": "^~>5.[0-9]+$"
+    },
     {
-		"name": "MLRecommendations",
-		"version": null
-	}]
+      "description": "# This will match with 'MLRecommendations' for any version",
+      "name": "MLRecommendations",
+      "version": null
+    }]
 }
 ```
 
 ## Support for Granular Dependencies:
 
-This functionality provides a more precise management of the scope of dependencies, giving us the ability to select specific consumers for each of them.
+This functionality provides a more precise management of the scope of dependencies, giving us the ability to select
+specific consumers for each of them.
 
-To activate the granularity feature, it is necessary to introduce a new block within the dependency definition, specifying which Mercado Libre projects will have access to it. This should be done as follows:
+To activate the granularity feature, it is necessary to introduce a new block within the dependency definition,
+specifying which Mercado Libre projects will have access to it. This should be done as follows:
 
+### Android Platform
 #### There are two types of granularity:
 
-* GroupId : You specify the group id of the project that will have access to the dependency. 
-  * Example: `com.mercadolibre.android.example`
+* GroupId : You specify the group id of the project that will have access to the dependency.
+    * Example: `com.mercadolibre.android.example`
 * GroupId:name : You specify the group id and the name of the project that will have access to the dependency.
-  * Example: `com.mercadolibre.android.exambple:exampleModule` 
+    * Example: `com.mercadolibre.android.example:exampleModule`
 
-### Android Platform
-```
+```json
 {
   "whitelist": [
     {
@@ -123,40 +130,43 @@ To activate the granularity feature, it is necessary to introduce a new block wi
 ```
 
 ### iOS Platform
-```
+
+```json
 {
   "whitelist": [
     {
+      "allows_granular_projects": [
+        "name_meli_lib",
+        "MLRecommendations"  # Example of a Mercado Libre Dependency Lib Name.
+      ],      
       "name": "MeliSDK",
       "version": "^~>5.[0-9]+$"
-      "allows_granular_projects": [ 
-            "name_meli_lib",
-            "MLRecommendations"  # Example of a Mercado Libre Dependency Lib Name .
-      ]
     },
     ...
   ]
 }
 ```
 
-
 ## Support for Transitive Dependencies (ONLY ANDROID):
 
-This functionality provides a more precise control over how it is possible to exclude transitive dependencies from our projects.
+This functionality provides more precise control over how transitive dependencies can be excluded from projects,
+allowing specific consumers to be selected for each one.
 
-This functionality provides a more precise management of the scope of dependencies, giving us the ability to select specific consumers for each of them.
+### Blocking Transitive Dependencies:
 
-To activate the transitivity feature, it is necessary to introduce a new block within the dependency definition, specifying two new keys:
-1. By default, all dependencies are enabled as transitive. To specify otherwise, it should be configured as false as follows:
-    ` "transitivity" = false `
-2. All dependencies that are not transitive should indicate the namespace of the dependency. This can be done as follows:
-   ` "namespace": "com.name.path.path" `
+To activate this feature, introduce a new block within the dependency definition with two keys:
 
-Both keys will be found within the ` "transitive_configuration" ` enclosure. Here's an example to visualize it more clearly:
+1. **namespace**: For non-transitive dependencies, you must specify the namespace:
+   `"namespace": "com.name.path.path"`
+2. **transitivity**: By default, all dependencies are transitive. To specify otherwise, set it to `false`:
+   `"transitivity": "false"`
 
+Both keys will be found within the `"transitive_configuration"` node. Here's an example to visualize it more
+clearly:
 
 ### Android Platform
-```
+
+```json
 {
   "whitelist": [
     {
@@ -165,19 +175,42 @@ Both keys will be found within the ` "transitive_configuration" ` enclosure. Her
       "version": "2\\.6\\.4",
       "transitive_configuration":
       {
-          "transitivity": false,
-          "namespace": "retrofit2"
+          "namespace": "retrofit2",
+          "transitivity": false
       }
     },
     ...
   ]
 }
 ```
 
-It's important to mention that if non-transitive dependency imports are found within classes, they will generate a blocker through the Gradle plugin, preventing the lintAndroid() task executed in CI or locally from completing successfully.
+If declared `non-transitive dependency` imports are found in your code, our plugin will **block** the build, preventing
+the `lintAndroid()` task from completing successfully in CI or locally.
+
+
+## Basic Continuous Integration (CI) Checks!!
+We have some basic checks placed in our CI to ensure that the allowlist is being used correctly. 
+The checks can be found [here](https://github.com/mercadolibre/mobile-dependencies_whitelist/blob/master/scripts/checks.sh)
+but basically, we are validating the following:
+
+1. **JSON Linter**:
+    - Uses the cmd `jsonlint <allowlist_file>` to check if the JSON file is well-formed.
+    - you can install it from [here](https://www.npmjs.com/package/jsonlint)
+2. **JSON Sorter Lint**:
+    - Uses the cmd `jsonsort <allowlist_file> --arrays` to ensure the content of the JSON file is properly sorted, including arrays.
+    - you can install it from [here](https://www.npmjs.com/package/json-sort-cli)
+3. **Expiration Date Validator**:
+    - Verify that the expiration dates in the JSON file are in the correct format (YYYY-MM-DD).
+    - Verify that the expiration date isn't a `Wednesdays` or `Thursdays`.
+4. **Key Names Validator**:
+    - Verify that your are using the proper key names in the JSON file.
+5. **Version Pattern Validator**:
+    - Verify that we aren't using dynamic versions for external libs.
+
+Some other checks could be performed, check the CI Error for more information.
 
+## Contexts Allowlist (Deprecated)
 
-# Contexts Allowlist [DEPRECATED]
+For more information, check
+the [new context allowlist](https://furydocs.io/mobile-apps/v1.5.2/guide/#/lang-en/metrics/02_crash-rate?id=contexts).
 
-For more information consult
-the [new context allowlist](https://furydocs.io/mobile-apps/v1.5.2/guide/#/lang-en/metrics/02_crash-rate?id=contexts)

scripts/checks.sh

@@ -1,8 +1,8 @@
 #!/bin/bash
 
-# check if enviroment $FILE is set
+# check if environment $FILE is set
 if [ -z "$FILE" ]; then
-  echo 'FILE enviroment variable is not set. for example you could use: export FILE=android-whitelist.json'
+  echo 'FILE environment variable is not set. for example you could use: export FILE=android-whitelist.json'
   exit 1;
 fi