fastlane-plugin-dependency_check_ios_analyzer 1.2.0 → 1.3.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +1 -1
- data/lib/fastlane/plugin/dependency_check_ios_analyzer/actions/dependency_check_ios_analyzer_action.rb +2 -1
- data/lib/fastlane/plugin/dependency_check_ios_analyzer/helper/analyzer_helper.rb +5 -0
- data/lib/fastlane/plugin/dependency_check_ios_analyzer/helper/configuration_helper.rb +1 -2
- data/lib/fastlane/plugin/dependency_check_ios_analyzer/version.rb +1 -1
- metadata +7 -7
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 4ca91d7cb9709334d1ee7aa8436c2ef1a1985a1de9393e0a6cc1257ffec271e5
|
|
4
|
+
data.tar.gz: ab94751e98a4850deb238b28a21a18d8b34ed460675e65af74a7c097957aa40d
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 4201b6e08dc559c8533ed7c4cb5210d409976447f9cac35bf27888526b43b42297076085da814e05b4e65e88f8364ff4aea406a3c35bdc1e3c5796e1f15a5afe
|
|
7
|
+
data.tar.gz: 9f35bf2a4cad561d4d32caedf2946dc9c475f6abb55fba0c033f5594d231af76d24af614470250bb98777c1d2fd75b70cb6d6cbb3847c81cddceb6999f0dcc61
|
data/README.md
CHANGED
|
@@ -20,7 +20,7 @@ This analyzer is considered experimental. While it may be useful and provide val
|
|
|
20
20
|
| `project_name` | The project's name | `DependencyCheck` |
|
|
21
21
|
| `output_directory` | The directory in which all reports will be stored | `dependency-check` |
|
|
22
22
|
| `output_types` | Comma separated list of the output types (e.g. `html`, `xml`, `csv`, `json`, `junit`, `sarif`, `all`) | `sarif` |
|
|
23
|
-
| `cli_version` | Overwrite the version of `DependencyCheck` analyzer | `
|
|
23
|
+
| `cli_version` | Overwrite the version of `DependencyCheck` analyzer | `10.0.3` |
|
|
24
24
|
| `verbose` | The file path to write verbose logging information | |
|
|
25
25
|
| `fail_on_cvss` | Specifies if the build should be failed if a CVSS score above a specified level is identified. Since the CVSS scores are 0-10, by default the build will never fail | `11` |
|
|
26
26
|
| `junit_fail_on_cvss` | Specifies the CVSS score that is considered a failure when generating the junit report | `0` |
|
|
@@ -109,9 +109,10 @@ module Fastlane
|
|
|
109
109
|
),
|
|
110
110
|
FastlaneCore::ConfigItem.new(
|
|
111
111
|
key: :cli_version,
|
|
112
|
-
description: 'Overwrite the version of DependencyCheck analyzer
|
|
112
|
+
description: 'Overwrite the version of DependencyCheck analyzer',
|
|
113
113
|
optional: true,
|
|
114
114
|
is_string: true,
|
|
115
|
+
default_value: '10.0.3',
|
|
115
116
|
type: String
|
|
116
117
|
),
|
|
117
118
|
FastlaneCore::ConfigItem.new(
|
|
@@ -21,6 +21,11 @@ module Fastlane
|
|
|
21
21
|
def self.analize_pods(bin_path:, params:)
|
|
22
22
|
return true if params[:skip_pods_analysis]
|
|
23
23
|
|
|
24
|
+
podfile_path = params[:project_path] ? "#{params[:project_path]}/Podfile" : 'Podfile'
|
|
25
|
+
podfile_exists = File.file?(podfile_path)
|
|
26
|
+
|
|
27
|
+
UI.user_error!('Could not find a Podfile path') if !podfile_exists && params[:pod_file_lock_path].nil?
|
|
28
|
+
|
|
24
29
|
path_to_report = "#{params[:output_directory]}/CocoaPods"
|
|
25
30
|
clean_reports_folder(path_to_report)
|
|
26
31
|
params[:pod_file_lock_path] = resolve_pods_dependencies(params)
|
|
@@ -10,8 +10,7 @@ module Fastlane
|
|
|
10
10
|
def self.install(params)
|
|
11
11
|
repo = 'https://github.com/jeremylong/DependencyCheck'
|
|
12
12
|
name = 'dependency-check'
|
|
13
|
-
|
|
14
|
-
base_url = "#{repo}/releases/download/v#{version}/#{name}-#{version}-release"
|
|
13
|
+
base_url = "#{repo}/releases/download/v#{params[:cli_version]}/#{name}-#{params[:cli_version]}-release"
|
|
15
14
|
bin_path = "#{params[:output_directory]}/#{name}/bin/#{name}.sh"
|
|
16
15
|
zip_path = "#{params[:output_directory]}/#{name}.zip"
|
|
17
16
|
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: fastlane-plugin-dependency_check_ios_analyzer
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.3.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Alexey Alter-Pesotskiy
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2024-08-24 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: curb
|
|
@@ -126,16 +126,16 @@ dependencies:
|
|
|
126
126
|
name: fasterer
|
|
127
127
|
requirement: !ruby/object:Gem::Requirement
|
|
128
128
|
requirements:
|
|
129
|
-
- -
|
|
129
|
+
- - ">="
|
|
130
130
|
- !ruby/object:Gem::Version
|
|
131
|
-
version: 0
|
|
131
|
+
version: '0'
|
|
132
132
|
type: :development
|
|
133
133
|
prerelease: false
|
|
134
134
|
version_requirements: !ruby/object:Gem::Requirement
|
|
135
135
|
requirements:
|
|
136
|
-
- -
|
|
136
|
+
- - ">="
|
|
137
137
|
- !ruby/object:Gem::Version
|
|
138
|
-
version: 0
|
|
138
|
+
version: '0'
|
|
139
139
|
- !ruby/object:Gem::Dependency
|
|
140
140
|
name: rubocop
|
|
141
141
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -224,7 +224,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
224
224
|
- !ruby/object:Gem::Version
|
|
225
225
|
version: '0'
|
|
226
226
|
requirements: []
|
|
227
|
-
rubygems_version: 3.
|
|
227
|
+
rubygems_version: 3.3.7
|
|
228
228
|
signing_key:
|
|
229
229
|
specification_version: 4
|
|
230
230
|
summary: Fastlane wrapper around the OWASP dependency-check iOS analyzers (Swift Package
|