mirror of
https://github.com/tw93/Mole.git
synced 2026-02-04 19:44:44 +00:00
318 lines
12 KiB
Bash
318 lines
12 KiB
Bash
#!/bin/bash
|
|
# Application Data Cleanup Module
|
|
set -euo pipefail
|
|
# Args: $1=target_dir, $2=label
|
|
clean_ds_store_tree() {
|
|
local target="$1"
|
|
local label="$2"
|
|
[[ -d "$target" ]] || return 0
|
|
local file_count=0
|
|
local total_bytes=0
|
|
local spinner_active="false"
|
|
if [[ -t 1 ]]; then
|
|
MOLE_SPINNER_PREFIX=" "
|
|
start_inline_spinner "Cleaning Finder metadata..."
|
|
spinner_active="true"
|
|
fi
|
|
local -a exclude_paths=(
|
|
-path "*/Library/Application Support/MobileSync" -prune -o
|
|
-path "*/Library/Developer" -prune -o
|
|
-path "*/.Trash" -prune -o
|
|
-path "*/node_modules" -prune -o
|
|
-path "*/.git" -prune -o
|
|
-path "*/Library/Caches" -prune -o
|
|
)
|
|
local -a find_cmd=("command" "find" "$target")
|
|
if [[ "$target" == "$HOME" ]]; then
|
|
find_cmd+=("-maxdepth" "5")
|
|
fi
|
|
find_cmd+=("${exclude_paths[@]}" "-type" "f" "-name" ".DS_Store" "-print0")
|
|
while IFS= read -r -d '' ds_file; do
|
|
local size
|
|
size=$(get_file_size "$ds_file")
|
|
total_bytes=$((total_bytes + size))
|
|
((file_count++))
|
|
if [[ "$DRY_RUN" != "true" ]]; then
|
|
rm -f "$ds_file" 2> /dev/null || true
|
|
fi
|
|
if [[ $file_count -ge $MOLE_MAX_DS_STORE_FILES ]]; then
|
|
break
|
|
fi
|
|
done < <("${find_cmd[@]}" 2> /dev/null || true)
|
|
if [[ "$spinner_active" == "true" ]]; then
|
|
stop_section_spinner
|
|
fi
|
|
if [[ $file_count -gt 0 ]]; then
|
|
local size_human
|
|
size_human=$(bytes_to_human "$total_bytes")
|
|
if [[ "$DRY_RUN" == "true" ]]; then
|
|
echo -e " ${YELLOW}${ICON_DRY_RUN}${NC} $label ${YELLOW}($file_count files, $size_human dry)${NC}"
|
|
else
|
|
echo -e " ${GREEN}${ICON_SUCCESS}${NC} $label ${GREEN}($file_count files, $size_human)${NC}"
|
|
fi
|
|
local size_kb=$(((total_bytes + 1023) / 1024))
|
|
((files_cleaned += file_count))
|
|
((total_size_cleaned += size_kb))
|
|
((total_items++))
|
|
note_activity
|
|
fi
|
|
}
|
|
# Orphaned app data (60+ days inactive). Env: ORPHAN_AGE_THRESHOLD, DRY_RUN
|
|
# Usage: scan_installed_apps "output_file"
|
|
scan_installed_apps() {
|
|
local installed_bundles="$1"
|
|
# Cache installed app scan briefly to speed repeated runs.
|
|
local cache_file="$HOME/.cache/mole/installed_apps_cache"
|
|
local cache_age_seconds=300 # 5 minutes
|
|
if [[ -f "$cache_file" ]]; then
|
|
local cache_mtime=$(get_file_mtime "$cache_file")
|
|
local current_time
|
|
current_time=$(get_epoch_seconds)
|
|
local age=$((current_time - cache_mtime))
|
|
if [[ $age -lt $cache_age_seconds ]]; then
|
|
debug_log "Using cached app list (age: ${age}s)"
|
|
if [[ -r "$cache_file" ]] && [[ -s "$cache_file" ]]; then
|
|
if cat "$cache_file" > "$installed_bundles" 2> /dev/null; then
|
|
return 0
|
|
else
|
|
debug_log "Warning: Failed to read cache, rebuilding"
|
|
fi
|
|
else
|
|
debug_log "Warning: Cache file empty or unreadable, rebuilding"
|
|
fi
|
|
fi
|
|
fi
|
|
debug_log "Scanning installed applications (cache expired or missing)"
|
|
local -a app_dirs=(
|
|
"/Applications"
|
|
"/System/Applications"
|
|
"$HOME/Applications"
|
|
# Homebrew Cask locations
|
|
"/opt/homebrew/Caskroom"
|
|
"/usr/local/Caskroom"
|
|
# Setapp applications
|
|
"$HOME/Library/Application Support/Setapp/Applications"
|
|
)
|
|
# Temp dir avoids write contention across parallel scans.
|
|
local scan_tmp_dir=$(create_temp_dir)
|
|
local pids=()
|
|
local dir_idx=0
|
|
for app_dir in "${app_dirs[@]}"; do
|
|
[[ -d "$app_dir" ]] || continue
|
|
(
|
|
local -a app_paths=()
|
|
while IFS= read -r app_path; do
|
|
[[ -n "$app_path" ]] && app_paths+=("$app_path")
|
|
done < <(find "$app_dir" -name '*.app' -maxdepth 3 -type d 2> /dev/null)
|
|
local count=0
|
|
for app_path in "${app_paths[@]:-}"; do
|
|
local plist_path="$app_path/Contents/Info.plist"
|
|
[[ ! -f "$plist_path" ]] && continue
|
|
local bundle_id=$(/usr/libexec/PlistBuddy -c "Print :CFBundleIdentifier" "$plist_path" 2> /dev/null || echo "")
|
|
if [[ -n "$bundle_id" ]]; then
|
|
echo "$bundle_id"
|
|
((count++))
|
|
fi
|
|
done
|
|
) > "$scan_tmp_dir/apps_${dir_idx}.txt" &
|
|
pids+=($!)
|
|
((dir_idx++))
|
|
done
|
|
# Collect running apps and LaunchAgents to avoid false orphan cleanup.
|
|
(
|
|
local running_apps=$(run_with_timeout 5 osascript -e 'tell application "System Events" to get bundle identifier of every application process' 2> /dev/null || echo "")
|
|
echo "$running_apps" | tr ',' '\n' | sed -e 's/^ *//;s/ *$//' -e '/^$/d' > "$scan_tmp_dir/running.txt"
|
|
# Fallback: lsappinfo is more reliable than osascript
|
|
if command -v lsappinfo > /dev/null 2>&1; then
|
|
run_with_timeout 3 lsappinfo list 2> /dev/null | grep -o '"CFBundleIdentifier"="[^"]*"' | cut -d'"' -f4 >> "$scan_tmp_dir/running.txt" 2> /dev/null || true
|
|
fi
|
|
) &
|
|
pids+=($!)
|
|
(
|
|
run_with_timeout 5 find ~/Library/LaunchAgents /Library/LaunchAgents \
|
|
-name "*.plist" -type f 2> /dev/null |
|
|
xargs -I {} basename {} .plist > "$scan_tmp_dir/agents.txt" 2> /dev/null || true
|
|
) &
|
|
pids+=($!)
|
|
debug_log "Waiting for ${#pids[@]} background processes: ${pids[*]}"
|
|
if [[ ${#pids[@]} -gt 0 ]]; then
|
|
for pid in "${pids[@]}"; do
|
|
wait "$pid" 2> /dev/null || true
|
|
done
|
|
fi
|
|
debug_log "All background processes completed"
|
|
cat "$scan_tmp_dir"/*.txt >> "$installed_bundles" 2> /dev/null || true
|
|
safe_remove "$scan_tmp_dir" true
|
|
sort -u "$installed_bundles" -o "$installed_bundles"
|
|
ensure_user_dir "$(dirname "$cache_file")"
|
|
cp "$installed_bundles" "$cache_file" 2> /dev/null || true
|
|
local app_count=$(wc -l < "$installed_bundles" 2> /dev/null | tr -d ' ')
|
|
debug_log "Scanned $app_count unique applications"
|
|
}
|
|
# Sensitive data patterns that should never be treated as orphaned
|
|
# These patterns protect security-critical application data
|
|
readonly ORPHAN_NEVER_DELETE_PATTERNS=(
|
|
"*1password*" "*1Password*"
|
|
"*keychain*" "*Keychain*"
|
|
"*bitwarden*" "*Bitwarden*"
|
|
"*lastpass*" "*LastPass*"
|
|
"*keepass*" "*KeePass*"
|
|
"*dashlane*" "*Dashlane*"
|
|
"*enpass*" "*Enpass*"
|
|
"*ssh*" "*gpg*" "*gnupg*"
|
|
"com.apple.keychain*"
|
|
)
|
|
|
|
# Cache file for mdfind results (Bash 3.2 compatible, no associative arrays)
|
|
ORPHAN_MDFIND_CACHE_FILE=""
|
|
|
|
# Usage: is_bundle_orphaned "bundle_id" "directory_path" "installed_bundles_file"
|
|
is_bundle_orphaned() {
|
|
local bundle_id="$1"
|
|
local directory_path="$2"
|
|
local installed_bundles="$3"
|
|
|
|
# 1. Fast path: check protection list (in-memory, instant)
|
|
if should_protect_data "$bundle_id"; then
|
|
return 1
|
|
fi
|
|
|
|
# 2. Fast path: check sensitive data patterns (in-memory, instant)
|
|
local bundle_lower
|
|
bundle_lower=$(echo "$bundle_id" | LC_ALL=C tr '[:upper:]' '[:lower:]')
|
|
for pattern in "${ORPHAN_NEVER_DELETE_PATTERNS[@]}"; do
|
|
# shellcheck disable=SC2053
|
|
if [[ "$bundle_lower" == $pattern ]]; then
|
|
return 1
|
|
fi
|
|
done
|
|
|
|
# 3. Fast path: check installed bundles file (file read, fast)
|
|
if grep -Fxq "$bundle_id" "$installed_bundles" 2> /dev/null; then
|
|
return 1
|
|
fi
|
|
|
|
# 4. Fast path: hardcoded system components
|
|
case "$bundle_id" in
|
|
loginwindow | dock | systempreferences | systemsettings | settings | controlcenter | finder | safari)
|
|
return 1
|
|
;;
|
|
esac
|
|
|
|
# 5. Fast path: 60-day modification check (stat call, fast)
|
|
if [[ -e "$directory_path" ]]; then
|
|
local last_modified_epoch=$(get_file_mtime "$directory_path")
|
|
local current_epoch
|
|
current_epoch=$(get_epoch_seconds)
|
|
local days_since_modified=$(((current_epoch - last_modified_epoch) / 86400))
|
|
if [[ $days_since_modified -lt ${ORPHAN_AGE_THRESHOLD:-60} ]]; then
|
|
return 1
|
|
fi
|
|
fi
|
|
|
|
# 6. Slow path: mdfind fallback with file-based caching (Bash 3.2 compatible)
|
|
# This catches apps installed in non-standard locations
|
|
if [[ -n "$bundle_id" ]] && [[ "$bundle_id" =~ ^[a-zA-Z0-9._-]+$ ]] && [[ ${#bundle_id} -ge 5 ]]; then
|
|
# Initialize cache file if needed
|
|
if [[ -z "$ORPHAN_MDFIND_CACHE_FILE" ]]; then
|
|
ORPHAN_MDFIND_CACHE_FILE=$(mktemp "${TMPDIR:-/tmp}/mole_mdfind_cache.XXXXXX")
|
|
register_temp_file "$ORPHAN_MDFIND_CACHE_FILE"
|
|
fi
|
|
|
|
# Check cache first (grep is fast for small files)
|
|
if grep -Fxq "FOUND:$bundle_id" "$ORPHAN_MDFIND_CACHE_FILE" 2> /dev/null; then
|
|
return 1
|
|
fi
|
|
if grep -Fxq "NOTFOUND:$bundle_id" "$ORPHAN_MDFIND_CACHE_FILE" 2> /dev/null; then
|
|
# Already checked, not found - continue to return 0
|
|
:
|
|
else
|
|
# Query mdfind with strict timeout (2 seconds max)
|
|
local app_exists
|
|
app_exists=$(run_with_timeout 2 mdfind "kMDItemCFBundleIdentifier == '$bundle_id'" 2> /dev/null | head -1 || echo "")
|
|
if [[ -n "$app_exists" ]]; then
|
|
echo "FOUND:$bundle_id" >> "$ORPHAN_MDFIND_CACHE_FILE"
|
|
return 1
|
|
else
|
|
echo "NOTFOUND:$bundle_id" >> "$ORPHAN_MDFIND_CACHE_FILE"
|
|
fi
|
|
fi
|
|
fi
|
|
|
|
# All checks passed - this is an orphan
|
|
return 0
|
|
}
|
|
# Orphaned app data sweep.
|
|
clean_orphaned_app_data() {
|
|
if ! ls "$HOME/Library/Caches" > /dev/null 2>&1; then
|
|
stop_section_spinner
|
|
echo -e " ${YELLOW}${ICON_WARNING}${NC} Skipped: No permission to access Library folders"
|
|
return 0
|
|
fi
|
|
start_section_spinner "Scanning installed apps..."
|
|
local installed_bundles=$(create_temp_file)
|
|
scan_installed_apps "$installed_bundles"
|
|
stop_section_spinner
|
|
local app_count=$(wc -l < "$installed_bundles" 2> /dev/null | tr -d ' ')
|
|
echo -e " ${GREEN}${ICON_SUCCESS}${NC} Found $app_count active/installed apps"
|
|
local orphaned_count=0
|
|
local total_orphaned_kb=0
|
|
start_section_spinner "Scanning orphaned app resources..."
|
|
# CRITICAL: NEVER add LaunchAgents or LaunchDaemons (breaks login items/startup apps).
|
|
local -a resource_types=(
|
|
"$HOME/Library/Caches|Caches|com.*:org.*:net.*:io.*"
|
|
"$HOME/Library/Logs|Logs|com.*:org.*:net.*:io.*"
|
|
"$HOME/Library/Saved Application State|States|*.savedState"
|
|
"$HOME/Library/WebKit|WebKit|com.*:org.*:net.*:io.*"
|
|
"$HOME/Library/HTTPStorages|HTTP|com.*:org.*:net.*:io.*"
|
|
"$HOME/Library/Cookies|Cookies|*.binarycookies"
|
|
)
|
|
orphaned_count=0
|
|
for resource_type in "${resource_types[@]}"; do
|
|
IFS='|' read -r base_path label patterns <<< "$resource_type"
|
|
if [[ ! -d "$base_path" ]]; then
|
|
continue
|
|
fi
|
|
if ! ls "$base_path" > /dev/null 2>&1; then
|
|
continue
|
|
fi
|
|
local -a file_patterns=()
|
|
IFS=':' read -ra pattern_arr <<< "$patterns"
|
|
for pat in "${pattern_arr[@]}"; do
|
|
file_patterns+=("$base_path/$pat")
|
|
done
|
|
if [[ ${#file_patterns[@]} -gt 0 ]]; then
|
|
for item_path in "${file_patterns[@]}"; do
|
|
local iteration_count=0
|
|
for match in $item_path; do
|
|
[[ -e "$match" ]] || continue
|
|
((iteration_count++))
|
|
if [[ $iteration_count -gt $MOLE_MAX_ORPHAN_ITERATIONS ]]; then
|
|
break
|
|
fi
|
|
local bundle_id=$(basename "$match")
|
|
bundle_id="${bundle_id%.savedState}"
|
|
bundle_id="${bundle_id%.binarycookies}"
|
|
if is_bundle_orphaned "$bundle_id" "$match" "$installed_bundles"; then
|
|
local size_kb
|
|
size_kb=$(get_path_size_kb "$match")
|
|
if [[ -z "$size_kb" || "$size_kb" == "0" ]]; then
|
|
continue
|
|
fi
|
|
safe_clean "$match" "Orphaned $label: $bundle_id"
|
|
((orphaned_count++))
|
|
((total_orphaned_kb += size_kb))
|
|
fi
|
|
done
|
|
done
|
|
fi
|
|
done
|
|
stop_section_spinner
|
|
if [[ $orphaned_count -gt 0 ]]; then
|
|
local orphaned_mb=$(echo "$total_orphaned_kb" | awk '{printf "%.1f", $1/1024}')
|
|
echo " ${GREEN}${ICON_SUCCESS}${NC} Cleaned $orphaned_count items (~${orphaned_mb}MB)"
|
|
note_activity
|
|
fi
|
|
rm -f "$installed_bundles"
|
|
}
|