fastlane-plugin-dependency_check_ios_analyzer 1.2.0 → 1.3.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: c06462529dc4a9da9de21f9fd5938d10e4f06f24b1abf276909ed34ac912a8a8
4
- data.tar.gz: 2559be96b847adc94bdb499f075e301d230270f5d1cf590a350086b349b4a6fb
3
+ metadata.gz: 4ca91d7cb9709334d1ee7aa8436c2ef1a1985a1de9393e0a6cc1257ffec271e5
4
+ data.tar.gz: ab94751e98a4850deb238b28a21a18d8b34ed460675e65af74a7c097957aa40d
5
5
  SHA512:
6
- metadata.gz: 91951c418666a3c12b06daa19f0658813937236cbf57eec539fbb3819f639c16baf34b36bdf2f46a8dffb2612002912c910f376ff318e3366e538f14e774ef26
7
- data.tar.gz: eab3a9e6e24e0d5992227810a4b4a7c0ee0b273105d3db9d7dfad39de03a92fca77d66d3a8b54cfff11e8c9a30e8a311c164f1975a16f97ae0a16ddaec23e151
6
+ metadata.gz: 4201b6e08dc559c8533ed7c4cb5210d409976447f9cac35bf27888526b43b42297076085da814e05b4e65e88f8364ff4aea406a3c35bdc1e3c5796e1f15a5afe
7
+ data.tar.gz: 9f35bf2a4cad561d4d32caedf2946dc9c475f6abb55fba0c033f5594d231af76d24af614470250bb98777c1d2fd75b70cb6d6cbb3847c81cddceb6999f0dcc61
data/README.md CHANGED
@@ -20,7 +20,7 @@ This analyzer is considered experimental. While it may be useful and provide val
20
20
  | `project_name` | The project's name | `DependencyCheck` |
21
21
  | `output_directory` | The directory in which all reports will be stored | `dependency-check` |
22
22
  | `output_types` | Comma separated list of the output types (e.g. `html`, `xml`, `csv`, `json`, `junit`, `sarif`, `all`) | `sarif` |
23
- | `cli_version` | Overwrite the version of `DependencyCheck` analyzer | `6.2.2` |
23
+ | `cli_version` | Overwrite the version of `DependencyCheck` analyzer | `10.0.3` |
24
24
  | `verbose` | The file path to write verbose logging information | |
25
25
  | `fail_on_cvss` | Specifies if the build should be failed if a CVSS score above a specified level is identified. Since the CVSS scores are 0-10, by default the build will never fail | `11` |
26
26
  | `junit_fail_on_cvss` | Specifies the CVSS score that is considered a failure when generating the junit report | `0` |
@@ -109,9 +109,10 @@ module Fastlane
109
109
  ),
110
110
  FastlaneCore::ConfigItem.new(
111
111
  key: :cli_version,
112
- description: 'Overwrite the version of DependencyCheck analyzer. Not recommended',
112
+ description: 'Overwrite the version of DependencyCheck analyzer',
113
113
  optional: true,
114
114
  is_string: true,
115
+ default_value: '10.0.3',
115
116
  type: String
116
117
  ),
117
118
  FastlaneCore::ConfigItem.new(
@@ -21,6 +21,11 @@ module Fastlane
21
21
  def self.analize_pods(bin_path:, params:)
22
22
  return true if params[:skip_pods_analysis]
23
23
 
24
+ podfile_path = params[:project_path] ? "#{params[:project_path]}/Podfile" : 'Podfile'
25
+ podfile_exists = File.file?(podfile_path)
26
+
27
+ UI.user_error!('Could not find a Podfile path') if !podfile_exists && params[:pod_file_lock_path].nil?
28
+
24
29
  path_to_report = "#{params[:output_directory]}/CocoaPods"
25
30
  clean_reports_folder(path_to_report)
26
31
  params[:pod_file_lock_path] = resolve_pods_dependencies(params)
@@ -10,8 +10,7 @@ module Fastlane
10
10
  def self.install(params)
11
11
  repo = 'https://github.com/jeremylong/DependencyCheck'
12
12
  name = 'dependency-check'
13
- version = params[:cli_version] ? params[:cli_version] : '6.2.2'
14
- base_url = "#{repo}/releases/download/v#{version}/#{name}-#{version}-release"
13
+ base_url = "#{repo}/releases/download/v#{params[:cli_version]}/#{name}-#{params[:cli_version]}-release"
15
14
  bin_path = "#{params[:output_directory]}/#{name}/bin/#{name}.sh"
16
15
  zip_path = "#{params[:output_directory]}/#{name}.zip"
17
16
 
@@ -1,5 +1,5 @@
1
1
  module Fastlane
2
2
  module DependencyCheckIosAnalyzer
3
- VERSION = '1.2.0'
3
+ VERSION = '1.3.0'
4
4
  end
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: fastlane-plugin-dependency_check_ios_analyzer
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.2.0
4
+ version: 1.3.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Alexey Alter-Pesotskiy
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-02-02 00:00:00.000000000 Z
11
+ date: 2024-08-24 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: curb
@@ -126,16 +126,16 @@ dependencies:
126
126
  name: fasterer
127
127
  requirement: !ruby/object:Gem::Requirement
128
128
  requirements:
129
- - - '='
129
+ - - ">="
130
130
  - !ruby/object:Gem::Version
131
- version: 0.8.3
131
+ version: '0'
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
- - - '='
136
+ - - ">="
137
137
  - !ruby/object:Gem::Version
138
- version: 0.8.3
138
+ version: '0'
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: rubocop
141
141
  requirement: !ruby/object:Gem::Requirement
@@ -224,7 +224,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
224
224
  - !ruby/object:Gem::Version
225
225
  version: '0'
226
226
  requirements: []
227
- rubygems_version: 3.2.15
227
+ rubygems_version: 3.3.7
228
228
  signing_key:
229
229
  specification_version: 4
230
230
  summary: Fastlane wrapper around the OWASP dependency-check iOS analyzers (Swift Package