As part of my work on brewex.io, I want to get the mix project information, like name, version, deps and etc, the user wants to deploy.
I want this information to be able to provide some automated deploy script for the user, like the elixir build image the project requires, and server run command after the project is deployed on the server.
I don’t want to eval the file inside my server because it opens major security risks.
My first thought was to parse the mix.exs file, but then I understand it will be hard and almost impossible to cover all the ways ppl can define it.
My second thought is to run the project inside a temporary docker container and try to get the data from it. But I want to think there is a better solution than this.