npm - ios-app-review-plugin - Versions diffs - 1.0.0 - Mend

ios-app-review-plugin 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (205) hide show

package/.claude/settings.local.json +42 -0
package/.github/actions/ios-review/action.yml +106 -0
package/.github/workflows/ci.yml +103 -0
package/.github/workflows/publish.yml +57 -0
package/CHANGELOG.md +66 -0
package/CONTRIBUTING.md +175 -0
package/LICENSE +21 -0
package/README.md +205 -0
package/bitrise/step.sh +128 -0
package/bitrise/step.yml +101 -0
package/dist/analyzer.d.ts.map +1 -0
package/dist/analyzers/asc-iap.d.ts.map +1 -0
package/dist/analyzers/asc-metadata.d.ts.map +1 -0
package/dist/analyzers/asc-screenshots.d.ts.map +1 -0
package/dist/analyzers/asc-version.d.ts.map +1 -0
package/dist/analyzers/code-scanner.d.ts.map +1 -0
package/dist/analyzers/deprecated-api.d.ts.map +1 -0
package/dist/analyzers/entitlements.d.ts.map +1 -0
package/dist/analyzers/index.d.ts.map +1 -0
package/dist/analyzers/info-plist.d.ts.map +1 -0
package/dist/analyzers/privacy.d.ts.map +1 -0
package/dist/analyzers/private-api.d.ts.map +1 -0
package/dist/analyzers/security.d.ts.map +1 -0
package/dist/analyzers/ui-ux.d.ts.map +1 -0
package/dist/asc/auth.d.ts.map +1 -0
package/dist/asc/client.d.ts.map +1 -0
package/dist/asc/endpoints/apps.d.ts.map +1 -0
package/dist/asc/endpoints/iap.d.ts.map +1 -0
package/dist/asc/endpoints/screenshots.d.ts.map +1 -0
package/dist/asc/endpoints/versions.d.ts.map +1 -0
package/dist/asc/errors.d.ts.map +1 -0
package/dist/asc/index.d.ts.map +1 -0
package/dist/asc/types.d.ts.map +1 -0
package/dist/badge/generator.d.ts.map +1 -0
package/dist/badge/index.d.ts.map +1 -0
package/dist/badge/types.d.ts.map +1 -0
package/dist/cache/file-cache.d.ts.map +1 -0
package/dist/cache/index.d.ts.map +1 -0
package/dist/cache/types.d.ts.map +1 -0
package/dist/cli/commands/help.d.ts.map +1 -0
package/dist/cli/commands/scan.d.ts.map +1 -0
package/dist/cli/commands/version.d.ts.map +1 -0
package/dist/cli/index.d.ts.map +1 -0
package/dist/cli/types.d.ts.map +1 -0
package/dist/git/diff.d.ts.map +1 -0
package/dist/git/index.d.ts.map +1 -0
package/dist/git/types.d.ts.map +1 -0
package/dist/guidelines/database.d.ts.map +1 -0
package/dist/guidelines/index.d.ts.map +1 -0
package/dist/guidelines/matcher.d.ts.map +1 -0
package/dist/guidelines/types.d.ts.map +1 -0
package/dist/history/comparator.d.ts.map +1 -0
package/dist/history/index.d.ts.map +1 -0
package/dist/history/store.d.ts.map +1 -0
package/dist/history/types.d.ts.map +1 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +994 -0
package/dist/parsers/index.d.ts.map +1 -0
package/dist/parsers/plist.d.ts.map +1 -0
package/dist/parsers/xcodeproj.d.ts.map +1 -0
package/dist/progress/index.d.ts.map +1 -0
package/dist/progress/reporter.d.ts.map +1 -0
package/dist/progress/types.d.ts.map +1 -0
package/dist/reports/html.d.ts.map +1 -0
package/dist/reports/index.d.ts.map +1 -0
package/dist/reports/json.d.ts.map +1 -0
package/dist/reports/markdown.d.ts.map +1 -0
package/dist/reports/types.d.ts.map +1 -0
package/dist/rules/engine.d.ts.map +1 -0
package/dist/rules/index.d.ts.map +1 -0
package/dist/rules/loader.d.ts.map +1 -0
package/dist/rules/types.d.ts.map +1 -0
package/dist/types/index.d.ts.map +1 -0
package/docs/ANALYZERS.md +237 -0
package/docs/API.md +308 -0
package/docs/BADGES.md +130 -0
package/docs/CI_CD.md +283 -0
package/docs/CLI.md +140 -0
package/docs/REPORTS.md +212 -0
package/docs/ROADMAP.md +267 -0
package/docs/RULES.md +182 -0
package/docs/SECURITY.md +89 -0
package/docs/TROUBLESHOOTING.md +227 -0
package/docs/tutorials/ASC_SETUP.md +188 -0
package/docs/tutorials/CI_INTEGRATION.md +292 -0
package/docs/tutorials/CUSTOM_RULES.md +291 -0
package/docs/tutorials/GETTING_STARTED.md +226 -0
package/docs/video-scripts/01-introduction.md +106 -0
package/docs/video-scripts/02-cli-usage.md +120 -0
package/docs/video-scripts/03-ci-integration.md +198 -0
package/eslint.config.js +33 -0
package/examples/.ios-review-rules.json +82 -0
package/examples/bitrise-workflow.yml +129 -0
package/examples/fastlane-lane.rb +71 -0
package/examples/github-action.yml +147 -0
package/fastlane/Fastfile.example +114 -0
package/fastlane/README.md +99 -0
package/jest.config.js +36 -0
package/package.json +65 -0
package/scripts/benchmark.ts +112 -0
package/scripts/debug-parser.ts +37 -0
package/scripts/debug-pbxproj.ts +36 -0
package/scripts/debug-specific.ts +47 -0
package/scripts/test-analyze.ts +67 -0
package/scripts/xcode-cloud-review.sh +167 -0
package/src/analyzer.ts +227 -0
package/src/analyzers/asc-iap.ts +300 -0
package/src/analyzers/asc-metadata.ts +326 -0
package/src/analyzers/asc-screenshots.ts +310 -0
package/src/analyzers/asc-version.ts +368 -0
package/src/analyzers/code-scanner.ts +408 -0
package/src/analyzers/deprecated-api.ts +390 -0
package/src/analyzers/entitlements.ts +345 -0
package/src/analyzers/index.ts +12 -0
package/src/analyzers/info-plist.ts +409 -0
package/src/analyzers/privacy.ts +376 -0
package/src/analyzers/private-api.ts +377 -0
package/src/analyzers/security.ts +327 -0
package/src/analyzers/ui-ux.ts +509 -0
package/src/asc/auth.ts +204 -0
package/src/asc/client.ts +258 -0
package/src/asc/endpoints/apps.ts +115 -0
package/src/asc/endpoints/iap.ts +171 -0
package/src/asc/endpoints/screenshots.ts +164 -0
package/src/asc/endpoints/versions.ts +174 -0
package/src/asc/errors.ts +109 -0
package/src/asc/index.ts +108 -0
package/src/asc/types.ts +369 -0
package/src/badge/generator.ts +48 -0
package/src/badge/index.ts +2 -0
package/src/badge/types.ts +5 -0
package/src/cache/file-cache.ts +75 -0
package/src/cache/index.ts +2 -0
package/src/cache/types.ts +10 -0
package/src/cli/commands/help.ts +41 -0
package/src/cli/commands/scan.ts +44 -0
package/src/cli/commands/version.ts +12 -0
package/src/cli/index.ts +92 -0
package/src/cli/types.ts +17 -0
package/src/git/diff.ts +21 -0
package/src/git/index.ts +2 -0
package/src/git/types.ts +5 -0
package/src/guidelines/database.ts +344 -0
package/src/guidelines/index.ts +4 -0
package/src/guidelines/matcher.ts +84 -0
package/src/guidelines/types.ts +28 -0
package/src/history/comparator.ts +114 -0
package/src/history/index.ts +3 -0
package/src/history/store.ts +135 -0
package/src/history/types.ts +40 -0
package/src/index.ts +1113 -0
package/src/parsers/index.ts +3 -0
package/src/parsers/plist.ts +253 -0
package/src/parsers/xcodeproj.ts +265 -0
package/src/progress/index.ts +2 -0
package/src/progress/reporter.ts +65 -0
package/src/progress/types.ts +9 -0
package/src/reports/html.ts +322 -0
package/src/reports/index.ts +20 -0
package/src/reports/json.ts +92 -0
package/src/reports/markdown.ts +187 -0
package/src/reports/types.ts +26 -0
package/src/rules/engine.ts +121 -0
package/src/rules/index.ts +3 -0
package/src/rules/loader.ts +83 -0
package/src/rules/types.ts +25 -0
package/src/types/index.ts +247 -0
package/tests/analyzer.test.ts +142 -0
package/tests/analyzers/asc-iap.test.ts +228 -0
package/tests/analyzers/asc-metadata.test.ts +210 -0
package/tests/analyzers/asc-screenshots.test.ts +135 -0
package/tests/analyzers/asc-version.test.ts +259 -0
package/tests/analyzers/code-scanner.test.ts +745 -0
package/tests/analyzers/deprecated-api.test.ts +286 -0
package/tests/analyzers/entitlements.test.ts +411 -0
package/tests/analyzers/info-plist.test.ts +148 -0
package/tests/analyzers/privacy.test.ts +623 -0
package/tests/analyzers/private-api.test.ts +255 -0
package/tests/analyzers/security.test.ts +300 -0
package/tests/analyzers/ui-ux.test.ts +357 -0
package/tests/asc/auth.test.ts +189 -0
package/tests/asc/client.test.ts +207 -0
package/tests/asc/endpoints.test.ts +1359 -0
package/tests/badge/generator.test.ts +73 -0
package/tests/cache/file-cache.test.ts +124 -0
package/tests/cli/cli-index.test.ts +510 -0
package/tests/cli/commands.test.ts +67 -0
package/tests/cli/scan.test.ts +152 -0
package/tests/git/diff.test.ts +69 -0
package/tests/guidelines/matcher.test.ts +209 -0
package/tests/history/comparator.test.ts +272 -0
package/tests/history/store.test.ts +200 -0
package/tests/integration/cli.test.ts +95 -0
package/tests/integration/e2e.test.ts +130 -0
package/tests/parsers/plist.test.ts +240 -0
package/tests/parsers/xcodeproj.test.ts +289 -0
package/tests/progress/reporter.test.ts +117 -0
package/tests/reports/html.test.ts +176 -0
package/tests/reports/json.test.ts +235 -0
package/tests/reports/markdown.test.ts +196 -0
package/tests/rules/engine.test.ts +229 -0
package/tests/rules/loader.test.ts +187 -0
package/tests/setup.ts +15 -0
package/tsconfig.json +27 -0
package/tsconfig.test.json +9 -0

package/src/analyzers/private-api.ts ADDED Viewed

@@ -0,0 +1,377 @@
+import * as fs from 'fs/promises';
+import * as path from 'path';
+import fg from 'fast-glob';
+import type {
+  Analyzer,
+  AnalysisResult,
+  AnalyzerOptions,
+  Issue,
+  XcodeProject,
+} from '../types/index.js';
+/**
+ * A private API pattern to detect
+ */
+interface PrivateAPIPattern {
+  id: string;
+  title: string;
+  description: string;
+  pattern: RegExp;
+  severity: 'error' | 'warning';
+  suggestion: string;
+  fileTypes: string[];
+}
+/**
+ * Known private/undocumented frameworks that cause rejection
+ */
+const PRIVATE_FRAMEWORKS = [
+  'GraphicsServices',
+  'BackBoardServices',
+  'SpringBoardServices',
+  'ChatKit',
+  'MobileInstallation',
+  'AppSupport',
+  'TelephonyUtilities',
+  'FrontBoard',
+  'XCTest', // Not private but shouldn't ship in production
+  'UIKitCore', // Direct access (vs UIKit) can indicate private usage
+  'TextInput',
+  'Celestial',
+  'IOMobileFramebuffer',
+  'BluetoothManager',
+  'WirelessDiagnostics',
+];
+/**
+ * Known private URL schemes that cause rejection
+ */
+const PRIVATE_URL_SCHEMES = [
+  { scheme: 'cydia://', description: 'Cydia URL scheme (jailbreak-related)' },
+  { scheme: 'prefs://', description: 'Private preferences URL scheme (use UIApplication.openSettingsURLString)' },
+  { scheme: 'tel-prompt://', description: 'Private telephone prompt scheme' },
+  { scheme: 'app-prefs://', description: 'Private app preferences URL scheme' },
+  { scheme: 'dbapi://', description: 'Private debug API URL scheme' },
+];
+/**
+ * Patterns for detecting private API usage
+ */
+const PRIVATE_API_PATTERNS: PrivateAPIPattern[] = [
+  // Known private selectors with underscore prefix
+  {
+    id: 'private-underscore-selector',
+    title: 'Private selector access',
+    description: 'Accessing a selector that starts with underscore indicates private API usage.',
+    pattern: /NSSelectorFromString\(\s*["'`]_\w+[^"'`]*["'`]\s*\)/g,
+    severity: 'error',
+    suggestion: 'Remove usage of private selectors. Use only public APIs.',
+    fileTypes: ['.swift', '.m', '.mm'],
+  },
+  // NSClassFromString with private classes
+  {
+    id: 'private-class-from-string',
+    title: 'Private class access via NSClassFromString',
+    description: 'Accessing a private class by name using NSClassFromString.',
+    pattern: /NSClassFromString\(\s*["'`](?:_UI\w+|_NS\w+|UIStatusBar\w*Internal|_CK\w+|_MF\w+)["'`]\s*\)/g,
+    severity: 'error',
+    suggestion: 'Do not use private classes. Use only documented public APIs.',
+    fileTypes: ['.swift', '.m', '.mm'],
+  },
+  // performSelector with private selectors
+  {
+    id: 'private-perform-selector',
+    title: 'performSelector with private selector',
+    description: 'Using performSelector with a selector starting with underscore.',
+    pattern: /perform(?:Selector|#selector)\s*\(\s*(?:NSSelectorFromString\(\s*)?["'`]_\w+/g,
+    severity: 'error',
+    suggestion: 'Do not call private selectors. Use documented public APIs.',
+    fileTypes: ['.swift', '.m', '.mm'],
+  },
+  // valueForKey accessing private properties
+  {
+    id: 'private-value-for-key',
+    title: 'Accessing private property via valueForKey',
+    description: 'Using valueForKey/setValue to access properties starting with underscore.',
+    pattern: /(?:value|setValue)\s*\(\s*(?:forKey|forKeyPath)\s*:\s*["'`]_\w+["'`]\s*\)/g,
+    severity: 'warning',
+    suggestion: 'Avoid accessing private properties via KVC. Use public APIs.',
+    fileTypes: ['.swift', '.m', '.mm'],
+  },
+  // dlopen for private frameworks
+  {
+    id: 'private-dlopen',
+    title: 'Dynamic loading of framework',
+    description: 'Using dlopen to dynamically load frameworks may indicate private API access.',
+    pattern: /dlopen\s*\(\s*["'`][^"'`]*(?:PrivateFrameworks|private)[^"'`]*["'`]/gi,
+    severity: 'error',
+    suggestion: 'Do not load private frameworks. Use only public frameworks.',
+    fileTypes: ['.swift', '.m', '.mm', '.c', '.cpp'],
+  },
+  // dlsym usage (suspicious in iOS apps)
+  {
+    id: 'private-dlsym',
+    title: 'Dynamic symbol lookup (dlsym)',
+    description: 'Using dlsym to look up symbols dynamically may indicate private API usage.',
+    pattern: /dlsym\s*\(/g,
+    severity: 'warning',
+    suggestion: 'Avoid dlsym in iOS apps. Use documented public APIs directly.',
+    fileTypes: ['.swift', '.m', '.mm', '.c', '.cpp'],
+  },
+  // objc_msgSend with private selectors
+  {
+    id: 'private-objc-msgsend',
+    title: 'Direct objc_msgSend call',
+    description: 'Direct objc_msgSend usage may be used to call private APIs.',
+    pattern: /objc_msgSend\s*\(/g,
+    severity: 'warning',
+    suggestion: 'Avoid direct objc_msgSend calls. Use standard method invocations.',
+    fileTypes: ['.m', '.mm', '.c', '.cpp'],
+  },
+  // IOKit private APIs
+  {
+    id: 'private-iokit',
+    title: 'IOKit private API usage',
+    description: 'IOKit APIs are mostly private on iOS and can cause rejection.',
+    pattern: /\b(?:IOServiceGetMatchingService|IORegistryEntryCreateCFProperties|IOMasterPort|IOServiceMatching)\b/g,
+    severity: 'error',
+    suggestion: 'IOKit is a private framework on iOS. Use public APIs (e.g., UIDevice) instead.',
+    fileTypes: ['.swift', '.m', '.mm', '.c', '.cpp'],
+  },
+  // Private status bar manipulation
+  {
+    id: 'private-statusbar',
+    title: 'Private status bar API',
+    description: 'Accessing private UIStatusBar APIs.',
+    pattern: /\b_(?:setStatusBarHidden|setStatusBarStyle|statusBarHeight|statusBarWindow)\b/g,
+    severity: 'error',
+    suggestion: 'Use the public UIViewController status bar appearance APIs.',
+    fileTypes: ['.swift', '.m', '.mm'],
+  },
+  // Accessing app container paths that suggest sandbox escape
+  {
+    id: 'private-sandbox-escape',
+    title: 'Potential sandbox escape',
+    description: 'Accessing file paths outside the app sandbox.',
+    pattern: /["'`]\/(?:var\/mobile|private\/var\/(?!mobile\/Containers)|Applications\/|usr\/lib\/)[^"'`]*["'`]/g,
+    severity: 'error',
+    suggestion: 'Apps must operate within their sandbox. Use FileManager APIs for app directories.',
+    fileTypes: ['.swift', '.m', '.mm'],
+  },
+];
+/**
+ * Analyzer that detects usage of private iOS APIs
+ */
+export class PrivateAPIAnalyzer implements Analyzer {
+  name = 'Private API Scanner';
+  description = 'Detects usage of private iOS APIs that cause App Store rejection';
+  async analyze(project: XcodeProject, options: AnalyzerOptions): Promise<AnalysisResult> {
+    const startTime = Date.now();
+    const targets = options.targetName
+      ? project.targets.filter((t) => t.name === options.targetName)
+      : project.targets.filter((t) => t.type === 'application');
+    let sourceFiles: string[] = [];
+    for (const target of targets) {
+      sourceFiles.push(...target.sourceFiles);
+    }
+    if (sourceFiles.length === 0) {
+      sourceFiles = await this.findSourceFiles(options.basePath);
+    }
+    // Filter to changed files for incremental scanning
+    if (options.changedFiles) {
+      const changedSet = new Set(options.changedFiles);
+      sourceFiles = sourceFiles.filter((f) => changedSet.has(f));
+    }
+    const issues = await this.scanFiles(sourceFiles);
+    return {
+      analyzer: this.name,
+      passed: issues.filter((i) => i.severity === 'error').length === 0,
+      issues,
+      duration: Date.now() - startTime,
+    };
+  }
+  /**
+   * Scan a specific path for private API usage
+   */
+  async scanPath(scanPath: string): Promise<AnalysisResult> {
+    const startTime = Date.now();
+    const stats = await fs.stat(scanPath);
+    const files = stats.isDirectory()
+      ? await this.findSourceFiles(scanPath)
+      : [scanPath];
+    const issues = await this.scanFiles(files);
+    return {
+      analyzer: this.name,
+      passed: issues.filter((i) => i.severity === 'error').length === 0,
+      issues,
+      duration: Date.now() - startTime,
+    };
+  }
+  private async findSourceFiles(basePath: string): Promise<string[]> {
+    return fg(['**/*.swift', '**/*.m', '**/*.mm', '**/*.h', '**/*.c', '**/*.cpp'], {
+      cwd: basePath,
+      absolute: true,
+      ignore: [
+        '**/Pods/**',
+        '**/Carthage/**',
+        '**/build/**',
+        '**/DerivedData/**',
+        '**/*.generated.swift',
+        '**/Tests/**',
+        '**/UITests/**',
+      ],
+    });
+  }
+  private async scanFiles(files: string[]): Promise<Issue[]> {
+    const issues: Issue[] = [];
+    const seenIssues = new Set<string>();
+    for (const file of files) {
+      const ext = path.extname(file);
+      try {
+        const content = await fs.readFile(file, 'utf-8');
+        const lines = content.split('\n');
+        // Check for private framework imports
+        this.checkPrivateFrameworks(content, lines, file, issues, seenIssues);
+        // Check for private URL schemes
+        this.checkPrivateURLSchemes(content, file, issues, seenIssues);
+        // Check regex patterns
+        for (const apiPattern of PRIVATE_API_PATTERNS) {
+          if (!apiPattern.fileTypes.includes(ext)) continue;
+          apiPattern.pattern.lastIndex = 0;
+          let match: RegExpExecArray | null;
+          while ((match = apiPattern.pattern.exec(content)) !== null) {
+            const lineNumber = content.substring(0, match.index).split('\n').length;
+            const issueKey = `${apiPattern.id}:${file}:${lineNumber}`;
+            if (seenIssues.has(issueKey)) continue;
+            seenIssues.add(issueKey);
+            // Skip commented lines
+            const line = lines[lineNumber - 1] ?? '';
+            const trimmed = line.trim();
+            if (trimmed.startsWith('//') || trimmed.startsWith('*') || trimmed.startsWith('/*')) {
+              continue;
+            }
+            issues.push({
+              id: apiPattern.id,
+              title: apiPattern.title,
+              description: `${apiPattern.description}\n\nFound: \`${match[0].substring(0, 60)}\``,
+              severity: apiPattern.severity,
+              filePath: file,
+              lineNumber,
+              category: 'private-api',
+              guideline: 'Guideline 2.5.1 - Use of Non-Public APIs',
+              suggestion: apiPattern.suggestion,
+            });
+            const count = issues.filter((i) => i.id === apiPattern.id && i.filePath === file).length;
+            if (count >= 5) break;
+          }
+        }
+      } catch {
+        // Skip files that can't be read
+      }
+    }
+    return issues;
+  }
+  private checkPrivateFrameworks(
+    content: string,
+    lines: string[],
+    file: string,
+    issues: Issue[],
+    seenIssues: Set<string>
+  ): void {
+    for (const framework of PRIVATE_FRAMEWORKS) {
+      const importPatterns = [
+        new RegExp(`import\\s+${framework}\\b`, 'g'),
+        new RegExp(`#import\\s*<${framework}/`, 'g'),
+        new RegExp(`@import\\s+${framework}\\b`, 'g'),
+      ];
+      for (const pattern of importPatterns) {
+        let match: RegExpExecArray | null;
+        while ((match = pattern.exec(content)) !== null) {
+          const lineNumber = content.substring(0, match.index).split('\n').length;
+          const issueKey = `private-framework-${framework}:${file}:${lineNumber}`;
+          if (seenIssues.has(issueKey)) continue;
+          seenIssues.add(issueKey);
+          const line = lines[lineNumber - 1] ?? '';
+          const trimmed = line.trim();
+          if (trimmed.startsWith('//') || trimmed.startsWith('*') || trimmed.startsWith('/*')) {
+            continue;
+          }
+          issues.push({
+            id: `private-framework-${framework.toLowerCase()}`,
+            title: `Private framework: ${framework}`,
+            description: `Importing private/undocumented framework \`${framework}\` will cause App Store rejection.\n\nFound: \`${match[0]}\``,
+            severity: 'error',
+            filePath: file,
+            lineNumber,
+            category: 'private-api',
+            guideline: 'Guideline 2.5.1 - Use of Non-Public APIs',
+            suggestion: `Remove the \`${framework}\` import. Use only public Apple frameworks.`,
+          });
+        }
+      }
+    }
+  }
+  private checkPrivateURLSchemes(
+    content: string,
+    file: string,
+    issues: Issue[],
+    seenIssues: Set<string>
+  ): void {
+    for (const urlScheme of PRIVATE_URL_SCHEMES) {
+      const pattern = new RegExp(`["'\`]${urlScheme.scheme.replace('://', '://')}`, 'gi');
+      let match: RegExpExecArray | null;
+      while ((match = pattern.exec(content)) !== null) {
+        const lineNumber = content.substring(0, match.index).split('\n').length;
+        const issueKey = `private-url-scheme:${urlScheme.scheme}:${file}:${lineNumber}`;
+        if (seenIssues.has(issueKey)) continue;
+        seenIssues.add(issueKey);
+        issues.push({
+          id: 'private-url-scheme',
+          title: `Private URL scheme: ${urlScheme.scheme}`,
+          description: `${urlScheme.description}\n\nFound: \`${match[0]}\``,
+          severity: 'error',
+          filePath: file,
+          lineNumber,
+          category: 'private-api',
+          guideline: 'Guideline 2.5.1 - Use of Non-Public APIs',
+          suggestion: 'Use only public URL schemes documented by Apple.',
+        });
+      }
+    }
+  }
+}