RubyGems - cyclonedx-cocoapods - Versions diffs - 1.0.0 - Mend

cyclonedx-cocoapods 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (16) hide show

checksums.yaml +7 -0
data/CHANGELOG.md +21 -0
data/LICENSE +201 -0
data/NOTICE +5 -0
data/README.md +92 -0
data/exe/cyclonedx-cocoapods +23 -0
data/lib/cyclonedx/cocoapods/bom_builder.rb +158 -0
data/lib/cyclonedx/cocoapods/cli_runner.rb +224 -0
data/lib/cyclonedx/cocoapods/component.rb +37 -0
data/lib/cyclonedx/cocoapods/license.rb +44 -0
data/lib/cyclonedx/cocoapods/pod.rb +108 -0
data/lib/cyclonedx/cocoapods/pod_attributes.rb +72 -0
data/lib/cyclonedx/cocoapods/source.rb +59 -0
data/lib/cyclonedx/cocoapods/spdx-licenses.json +485 -0
data/lib/cyclonedx/cocoapods/version.rb +29 -0
metadata +132 -0

data/lib/cyclonedx/cocoapods/spdx-licenses.json ADDED Viewed

@@ -0,0 +1,485 @@
+[
+"0BSD",
+"AAL",
+"ADSL",
+"AFL-1.1",
+"AFL-1.2",
+"AFL-2.0",
+"AFL-2.1",
+"AFL-3.0",
+"AGPL-1.0",
+"AGPL-1.0-only",
+"AGPL-1.0-or-later",
+"AGPL-3.0",
+"AGPL-3.0-only",
+"AGPL-3.0-or-later",
+"AMDPLPA",
+"AML",
+"AMPAS",
+"ANTLR-PD",
+"APAFML",
+"APL-1.0",
+"APSL-1.0",
+"APSL-1.1",
+"APSL-1.2",
+"APSL-2.0",
+"Abstyles",
+"Adobe-2006",
+"Adobe-Glyph",
+"Afmparse",
+"Aladdin",
+"Apache-1.0",
+"Apache-1.1",
+"Apache-2.0",
+"Artistic-1.0",
+"Artistic-1.0-Perl",
+"Artistic-1.0-cl8",
+"Artistic-2.0",
+"BSD-1-Clause",
+"BSD-2-Clause",
+"BSD-2-Clause-FreeBSD",
+"BSD-2-Clause-NetBSD",
+"BSD-2-Clause-Patent",
+"BSD-2-Clause-Views",
+"BSD-3-Clause",
+"BSD-3-Clause-Attribution",
+"BSD-3-Clause-Clear",
+"BSD-3-Clause-LBNL",
+"BSD-3-Clause-No-Nuclear-License",
+"BSD-3-Clause-No-Nuclear-License-2014",
+"BSD-3-Clause-No-Nuclear-Warranty",
+"BSD-3-Clause-Open-MPI",
+"BSD-4-Clause",
+"BSD-4-Clause-UC",
+"BSD-Protection",
+"BSD-Source-Code",
+"BSL-1.0",
+"Bahyph",
+"Barr",
+"Beerware",
+"BitTorrent-1.0",
+"BitTorrent-1.1",
+"BlueOak-1.0.0",
+"Borceux",
+"CAL-1.0",
+"CAL-1.0-Combined-Work-Exception",
+"CATOSL-1.1",
+"CC-BY-1.0",
+"CC-BY-2.0",
+"CC-BY-2.5",
+"CC-BY-3.0",
+"CC-BY-3.0-AT",
+"CC-BY-4.0",
+"CC-BY-NC-1.0",
+"CC-BY-NC-2.0",
+"CC-BY-NC-2.5",
+"CC-BY-NC-3.0",
+"CC-BY-NC-4.0",
+"CC-BY-NC-ND-1.0",
+"CC-BY-NC-ND-2.0",
+"CC-BY-NC-ND-2.5",
+"CC-BY-NC-ND-3.0",
+"CC-BY-NC-ND-3.0-IGO",
+"CC-BY-NC-ND-4.0",
+"CC-BY-NC-SA-1.0",
+"CC-BY-NC-SA-2.0",
+"CC-BY-NC-SA-2.5",
+"CC-BY-NC-SA-3.0",
+"CC-BY-NC-SA-4.0",
+"CC-BY-ND-1.0",
+"CC-BY-ND-2.0",
+"CC-BY-ND-2.5",
+"CC-BY-ND-3.0",
+"CC-BY-ND-4.0",
+"CC-BY-SA-1.0",
+"CC-BY-SA-2.0",
+"CC-BY-SA-2.5",
+"CC-BY-SA-3.0",
+"CC-BY-SA-3.0-AT",
+"CC-BY-SA-4.0",
+"CC-PDDC",
+"CC0-1.0",
+"CDDL-1.0",
+"CDDL-1.1",
+"CDLA-Permissive-1.0",
+"CDLA-Sharing-1.0",
+"CECILL-1.0",
+"CECILL-1.1",
+"CECILL-2.0",
+"CECILL-2.1",
+"CECILL-B",
+"CECILL-C",
+"CERN-OHL-1.1",
+"CERN-OHL-1.2",
+"CERN-OHL-P-2.0",
+"CERN-OHL-S-2.0",
+"CERN-OHL-W-2.0",
+"CNRI-Jython",
+"CNRI-Python",
+"CNRI-Python-GPL-Compatible",
+"CPAL-1.0",
+"CPL-1.0",
+"CPOL-1.02",
+"CUA-OPL-1.0",
+"Caldera",
+"ClArtistic",
+"Condor-1.1",
+"Crossword",
+"CrystalStacker",
+"Cube",
+"D-FSL-1.0",
+"DOC",
+"DSDP",
+"Dotseqn",
+"ECL-1.0",
+"ECL-2.0",
+"EFL-1.0",
+"EFL-2.0",
+"EPICS",
+"EPL-1.0",
+"EPL-2.0",
+"EUDatagrid",
+"EUPL-1.0",
+"EUPL-1.1",
+"EUPL-1.2",
+"Entessa",
+"ErlPL-1.1",
+"Eurosym",
+"FSFAP",
+"FSFUL",
+"FSFULLR",
+"FTL",
+"Fair",
+"Frameworx-1.0",
+"FreeImage",
+"GFDL-1.1",
+"GFDL-1.1-invariants-only",
+"GFDL-1.1-invariants-or-later",
+"GFDL-1.1-no-invariants-only",
+"GFDL-1.1-no-invariants-or-later",
+"GFDL-1.1-only",
+"GFDL-1.1-or-later",
+"GFDL-1.2",
+"GFDL-1.2-invariants-only",
+"GFDL-1.2-invariants-or-later",
+"GFDL-1.2-no-invariants-only",
+"GFDL-1.2-no-invariants-or-later",
+"GFDL-1.2-only",
+"GFDL-1.2-or-later",
+"GFDL-1.3",
+"GFDL-1.3-invariants-only",
+"GFDL-1.3-invariants-or-later",
+"GFDL-1.3-no-invariants-only",
+"GFDL-1.3-no-invariants-or-later",
+"GFDL-1.3-only",
+"GFDL-1.3-or-later",
+"GL2PS",
+"GLWTPL",
+"GPL-1.0",
+"GPL-1.0+",
+"GPL-1.0-only",
+"GPL-1.0-or-later",
+"GPL-2.0",
+"GPL-2.0+",
+"GPL-2.0-only",
+"GPL-2.0-or-later",
+"GPL-2.0-with-GCC-exception",
+"GPL-2.0-with-autoconf-exception",
+"GPL-2.0-with-bison-exception",
+"GPL-2.0-with-classpath-exception",
+"GPL-2.0-with-font-exception",
+"GPL-3.0",
+"GPL-3.0+",
+"GPL-3.0-only",
+"GPL-3.0-or-later",
+"GPL-3.0-with-GCC-exception",
+"GPL-3.0-with-autoconf-exception",
+"Giftware",
+"Glide",
+"Glulxe",
+"HPND",
+"HPND-sell-variant",
+"HaskellReport",
+"Hippocratic-2.1",
+"IBM-pibs",
+"ICU",
+"IJG",
+"IPA",
+"IPL-1.0",
+"ISC",
+"ImageMagick",
+"Imlib2",
+"Info-ZIP",
+"Intel",
+"Intel-ACPI",
+"Interbase-1.0",
+"JPNIC",
+"JSON",
+"JasPer-2.0",
+"LAL-1.2",
+"LAL-1.3",
+"LGPL-2.0",
+"LGPL-2.0+",
+"LGPL-2.0-only",
+"LGPL-2.0-or-later",
+"LGPL-2.1",
+"LGPL-2.1+",
+"LGPL-2.1-only",
+"LGPL-2.1-or-later",
+"LGPL-3.0",
+"LGPL-3.0+",
+"LGPL-3.0-only",
+"LGPL-3.0-or-later",
+"LGPLLR",
+"LPL-1.0",
+"LPL-1.02",
+"LPPL-1.0",
+"LPPL-1.1",
+"LPPL-1.2",
+"LPPL-1.3a",
+"LPPL-1.3c",
+"Latex2e",
+"Leptonica",
+"LiLiQ-P-1.1",
+"LiLiQ-R-1.1",
+"LiLiQ-Rplus-1.1",
+"Libpng",
+"Linux-OpenIB",
+"MIT",
+"MIT-0",
+"MIT-CMU",
+"MIT-advertising",
+"MIT-enna",
+"MIT-feh",
+"MITNFA",
+"MPL-1.0",
+"MPL-1.1",
+"MPL-2.0",
+"MPL-2.0-no-copyleft-exception",
+"MS-PL",
+"MS-RL",
+"MTLL",
+"MakeIndex",
+"MirOS",
+"Motosoto",
+"MulanPSL-1.0",
+"MulanPSL-2.0",
+"Multics",
+"Mup",
+"NASA-1.3",
+"NBPL-1.0",
+"NCGL-UK-2.0",
+"NCSA",
+"NGPL",
+"NIST-PD",
+"NIST-PD-fallback",
+"NLOD-1.0",
+"NLPL",
+"NOSL",
+"NPL-1.0",
+"NPL-1.1",
+"NPOSL-3.0",
+"NRL",
+"NTP",
+"NTP-0",
+"Naumen",
+"Net-SNMP",
+"NetCDF",
+"Newsletr",
+"Nokia",
+"Noweb",
+"Nunit",
+"O-UDA-1.0",
+"OCCT-PL",
+"OCLC-2.0",
+"ODC-By-1.0",
+"ODbL-1.0",
+"OFL-1.0",
+"OFL-1.0-RFN",
+"OFL-1.0-no-RFN",
+"OFL-1.1",
+"OFL-1.1-RFN",
+"OFL-1.1-no-RFN",
+"OGC-1.0",
+"OGL-Canada-2.0",
+"OGL-UK-1.0",
+"OGL-UK-2.0",
+"OGL-UK-3.0",
+"OGTSL",
+"OLDAP-1.1",
+"OLDAP-1.2",
+"OLDAP-1.3",
+"OLDAP-1.4",
+"OLDAP-2.0",
+"OLDAP-2.0.1",
+"OLDAP-2.1",
+"OLDAP-2.2",
+"OLDAP-2.2.1",
+"OLDAP-2.2.2",
+"OLDAP-2.3",
+"OLDAP-2.4",
+"OLDAP-2.5",
+"OLDAP-2.6",
+"OLDAP-2.7",
+"OLDAP-2.8",
+"OML",
+"OPL-1.0",
+"OSET-PL-2.1",
+"OSL-1.0",
+"OSL-1.1",
+"OSL-2.0",
+"OSL-2.1",
+"OSL-3.0",
+"OpenSSL",
+"PDDL-1.0",
+"PHP-3.0",
+"PHP-3.01",
+"PSF-2.0",
+"Parity-6.0.0",
+"Parity-7.0.0",
+"Plexus",
+"PolyForm-Noncommercial-1.0.0",
+"PolyForm-Small-Business-1.0.0",
+"PostgreSQL",
+"Python-2.0",
+"QPL-1.0",
+"Qhull",
+"RHeCos-1.1",
+"RPL-1.1",
+"RPL-1.5",
+"RPSL-1.0",
+"RSA-MD",
+"RSCPL",
+"Rdisc",
+"Ruby",
+"SAX-PD",
+"SCEA",
+"SGI-B-1.0",
+"SGI-B-1.1",
+"SGI-B-2.0",
+"SHL-0.5",
+"SHL-0.51",
+"SISSL",
+"SISSL-1.2",
+"SMLNJ",
+"SMPPL",
+"SNIA",
+"SPL-1.0",
+"SSH-OpenSSH",
+"SSH-short",
+"SSPL-1.0",
+"SWL",
+"Saxpath",
+"Sendmail",
+"Sendmail-8.23",
+"SimPL-2.0",
+"Sleepycat",
+"Spencer-86",
+"Spencer-94",
+"Spencer-99",
+"StandardML-NJ",
+"SugarCRM-1.1.3",
+"TAPR-OHL-1.0",
+"TCL",
+"TCP-wrappers",
+"TMate",
+"TORQUE-1.1",
+"TOSL",
+"TU-Berlin-1.0",
+"TU-Berlin-2.0",
+"UCL-1.0",
+"UPL-1.0",
+"Unicode-DFS-2015",
+"Unicode-DFS-2016",
+"Unicode-TOU",
+"Unlicense",
+"VOSTROM",
+"VSL-1.0",
+"Vim",
+"W3C",
+"W3C-19980720",
+"W3C-20150513",
+"WTFPL",
+"Watcom-1.0",
+"Wsuipa",
+"X11",
+"XFree86-1.1",
+"XSkat",
+"Xerox",
+"Xnet",
+"YPL-1.0",
+"YPL-1.1",
+"ZPL-1.1",
+"ZPL-2.0",
+"ZPL-2.1",
+"Zed",
+"Zend-2.0",
+"Zimbra-1.3",
+"Zimbra-1.4",
+"Zlib",
+"blessing",
+"bzip2-1.0.5",
+"bzip2-1.0.6",
+"copyleft-next-0.3.0",
+"copyleft-next-0.3.1",
+"curl",
+"diffmark",
+"dvipdfm",
+"eCos-2.0",
+"eGenix",
+"etalab-2.0",
+"gSOAP-1.3b",
+"gnuplot",
+"iMatix",
+"libpng-2.0",
+"libselinux-1.0",
+"libtiff",
+"mpich2",
+"psfrag",
+"psutils",
+"wxWindows",
+"xinetd",
+"xpp",
+"zlib-acknowledgement",
+"GCC-exception-2.0",
+"openvpn-openssl-exception",
+"Nokia-Qt-exception-1.1",
+"GPL-3.0-linking-exception",
+"Fawkes-Runtime-exception",
+"u-boot-exception-2.0",
+"PS-or-PDF-font-exception-20170817",
+"gnu-javamail-exception",
+"LGPL-3.0-linking-exception",
+"DigiRule-FOSS-exception",
+"LLVM-exception",
+"Linux-syscall-note",
+"GPL-3.0-linking-source-exception",
+"Qwt-exception-1.0",
+"389-exception",
+"mif-exception",
+"eCos-exception-2.0",
+"CLISP-exception-2.0",
+"Bison-exception-2.2",
+"Libtool-exception",
+"LZMA-exception",
+"OpenJDK-assembly-exception-1.0",
+"Font-exception-2.0",
+"OCaml-LGPL-linking-exception",
+"GCC-exception-3.1",
+"Bootloader-exception",
+"SHL-2.0",
+"Classpath-exception-2.0",
+"Swift-exception",
+"Autoconf-exception-2.0",
+"FLTK-exception",
+"freertos-exception-2.0",
+"Universal-FOSS-exception-1.0",
+"WxWindows-exception-3.1",
+"OCCT-exception-1.0",
+"Autoconf-exception-3.0",
+"i2p-gpl-java-exception",
+"GPL-CC-1.0",
+"Qt-LGPL-exception-1.1",
+"SHL-2.1",
+"Qt-GPL-exception-1.0"
+]

data/lib/cyclonedx/cocoapods/version.rb ADDED Viewed

@@ -0,0 +1,29 @@
+# frozen_string_literal: true
+#
+# This file is part of CycloneDX CocoaPods
+#
+# Licensed under the Apache License, Version 2.0 (the “License”);
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#   http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an “AS IS” BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+# SPDX-License-Identifier: Apache-2.0
+# Copyright (c) OWASP Foundation. All Rights Reserved.
+#
+module CycloneDX
+  module CocoaPods
+    VERSION = '1.0.0'
+    DEPENDENCIES = {
+      cocoapods: '~> 1.10.1',
+      nokogiri: '~> 1.11.2'
+    }
+  end
+end

metadata ADDED Viewed

@@ -0,0 +1,132 @@
+--- !ruby/object:Gem::Specification
+name: cyclonedx-cocoapods
+version: !ruby/object:Gem::Version
+  version: 1.0.0
+platform: ruby
+authors:
+- José González
+autorequire:
+bindir: exe
+cert_chain: []
+date: 2022-08-12 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: cocoapods
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.10.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.10.1
+- !ruby/object:Gem::Dependency
+  name: nokogiri
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.11.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.11.2
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: equivalent-xml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.6.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.6.0
+description: CycloneDX is a lightweight software bill-of-material (SBOM) specification
+  designed for use in application security contexts and supply chain component analysis.
+  This Gem generates CycloneDX BOMs from CocoaPods projects.
+email:
+- jose.gonzalez@openinput.com
+executables:
+- cyclonedx-cocoapods
+extensions: []
+extra_rdoc_files: []
+files:
+- CHANGELOG.md
+- LICENSE
+- NOTICE
+- README.md
+- exe/cyclonedx-cocoapods
+- lib/cyclonedx/cocoapods/bom_builder.rb
+- lib/cyclonedx/cocoapods/cli_runner.rb
+- lib/cyclonedx/cocoapods/component.rb
+- lib/cyclonedx/cocoapods/license.rb
+- lib/cyclonedx/cocoapods/pod.rb
+- lib/cyclonedx/cocoapods/pod_attributes.rb
+- lib/cyclonedx/cocoapods/source.rb
+- lib/cyclonedx/cocoapods/spdx-licenses.json
+- lib/cyclonedx/cocoapods/version.rb
+homepage: https://github.com/CycloneDX/cyclonedx-cocoapods
+licenses:
+- Apache-2.0
+metadata:
+  homepage_uri: https://github.com/CycloneDX/cyclonedx-cocoapods
+  source_code_uri: https://github.com/CycloneDX/cyclonedx-cocoapods.git
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.4.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.3.7
+signing_key:
+specification_version: 4
+summary: CycloneDX software bill-of-material (SBOM) generation utility
+test_files: []