{"id":18924238,"url":"https://github.com/itaybre/cocoapods-protected-dependencies","last_synced_at":"2025-10-06T05:20:27.732Z","repository":{"id":62555904,"uuid":"339499858","full_name":"itaybre/cocoapods-protected-dependencies","owner":"itaybre","description":"Protect your project from using dependencies from undesired sources","archived":false,"fork":false,"pushed_at":"2021-02-16T19:17:00.000Z","size":9,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-10-01T00:56:53.006Z","etag":null,"topics":["cocoapods","security"],"latest_commit_sha":null,"homepage":"","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/itaybre.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2021-02-16T18:58:34.000Z","updated_at":"2021-02-17T12:41:04.000Z","dependencies_parsed_at":"2022-11-03T05:45:26.410Z","dependency_job_id":null,"html_url":"https://github.com/itaybre/cocoapods-protected-dependencies","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/itaybre/cocoapods-protected-dependencies","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/itaybre%2Fcocoapods-protected-dependencies","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/itaybre%2Fcocoapods-protected-dependencies/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/itaybre%2Fcocoapods-protected-dependencies/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/itaybre%2Fcocoapods-protected-dependencies/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/itaybre","download_url":"https://codeload.github.com/itaybre/cocoapods-protected-dependencies/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/itaybre%2Fcocoapods-protected-dependencies/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":278561277,"owners_count":26006954,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-06T02:00:05.630Z","response_time":65,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cocoapods","security"],"created_at":"2024-11-08T11:06:16.771Z","updated_at":"2025-10-06T05:20:27.712Z","avatar_url":"https://github.com/itaybre.png","language":"Ruby","funding_links":[],"categories":[],"sub_categories":[],"readme":"# cocoapods-protected-dependencies\n\nProtect your project from using depenencies from undesired sources (Dependency Confusion).\n\n## Installation\n\n1. Add to your `Gemfile`\n\n    ``` bash\n    gem 'cocoapods-protected-dependencies'\n    ```\n\n2. Add to `Podfile`\n\n    ``` bash\n    plugin 'cocoapods-protected-dependencies'\n    ```\n\n3. Run \n    ``` bash\n    bundle install\n    ```\n\n## Update\n\nRun\n``` bash\nbundle update cocoapods-protected-dependencies\n```\n\n## Usage\n\nThis plugin hooks the depenency resolver, this ways `pod install`, `pod update`, `pod lib lint` are all protected from using incorrect sources, no special command is needed.\n\nThe only requirement is creating a configuration file `protected-specs.yml`\n\n## Configuration File Format\n\nThe configuration is an array of sources which contain a `name` attribute, `source` and a `regex` or an array of strings.\n\nExample with regular expression:\n``` yml\n- name: 'My Source'\n  source: git@github.com:itaybre/my_repo_specs.git\n  regex: (IT|UY)*\n```\nThis will allow any dependency from `my_repo_specs` that start with IT or UY.\n\nExample with array of dependencies:\n``` yml\n- name: 'My Source'\n  source: git@github.com:itaybre/my_repo_specs.git\n  libs: \n    - ITDemoProject\n    - UYVulnerable\n```\nThis configuration will only allow the dependencies `ITDemoProject` and `UYVulnerable`.","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fitaybre%2Fcocoapods-protected-dependencies","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fitaybre%2Fcocoapods-protected-dependencies","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fitaybre%2Fcocoapods-protected-dependencies/lists"}