{"id":46116835,"url":"https://github.com/scanoss/ado-code-scan","last_synced_at":"2026-03-01T23:31:16.607Z","repository":{"id":242710357,"uuid":"806523218","full_name":"scanoss/ado-code-scan","owner":"scanoss","description":"Azure DevOps Code Scan Extension Task","archived":false,"fork":false,"pushed_at":"2026-02-10T11:50:01.000Z","size":1778,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":3,"default_branch":"main","last_synced_at":"2026-02-10T16:18:18.824Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://marketplace.visualstudio.com/items?itemName=SCANOSS.scanoss-code-scan","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/scanoss.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2024-05-27T11:08:02.000Z","updated_at":"2026-02-10T11:34:22.000Z","dependencies_parsed_at":"2024-11-11T11:29:18.864Z","dependency_job_id":"41e8f5ec-28e7-477d-a187-5a8e0bc408e0","html_url":"https://github.com/scanoss/ado-code-scan","commit_stats":null,"previous_names":["scanoss/ado-code-scan"],"tags_count":21,"template":false,"template_full_name":null,"purl":"pkg:github/scanoss/ado-code-scan","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/scanoss%2Fado-code-scan","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/scanoss%2Fado-code-scan/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/scanoss%2Fado-code-scan/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/scanoss%2Fado-code-scan/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/scanoss","download_url":"https://codeload.github.com/scanoss/ado-code-scan/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/scanoss%2Fado-code-scan/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29987698,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-01T22:42:38.399Z","status":"ssl_error","status_checked_at":"2026-03-01T22:41:51.863Z","response_time":124,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-03-01T23:31:16.019Z","updated_at":"2026-03-01T23:31:16.602Z","avatar_url":"https://github.com/scanoss.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Azure DevOps Code Scan Task\nThe SCANOSS Code Scan task enhances your software development process by automatically scanning your code for security vulnerabilities and license compliance with configurable policies.\n\n# Usage\n\n### Installation Instructions\nTo install the SCANOSS Code Scan task, please consult the Visual Studio Marketplace guide [here](https://marketplace.visualstudio.com/items?itemName=SCANOSS.scanoss-code-scan).  \n\n### Detailed Information\nFor more detailed usage instructions, please refer to the [OVERVIEW.md](OVERVIEW.md) document.\n\n\n# Development Guide\n\nThis guide provides step-by-step instructions for deploying a new package for your project. Ensure all steps are followed to maintain version consistency and successful deployment.\n\n### Prerequisites\n\n- **Node.js**: Ensure Node.js and npm are installed.\n- **Azure DevOps Extension Tool (tfx)**: Install the TFS cross-platform command-line interface (`tfx`).\n- **jq**: Install `jq` for JSON processing.\n\n### Installation\nRun the following command to install the project dependencies:\n\n``` bash\nmake install\n```\n\n\n\n### Tests\nBefore building the app, run test suites.\n``` bash\nmake test\n```\n\n\n# Publish\n\n## Development\n\n### Update Version for Publishing\n\nTo streamline the app versioning process for development:\n\n1. Update the version in the **package.json** file.\n\n### Building the App for Development\n\nTo build the app for a development environment:\n\n```bash\nmake package_dev\n```\n\n### macOS (ARM64) Building for Development \nFor macOS users with ARM64 architecture, run the following command:\n```bash\nmake package_dev_mac_arm64\n```\nFor more details see the following [issue](https://github.com/microsoft/tfs-cli/issues/414).\n\n\n### Publish the App to Development\n\n1. Generate a publishing token. For instructions on how to generate the token, refer to [Publish from the Command Line](https://learn.microsoft.com/en-us/azure/devops/extend/publish/command-line?view=azure-devops).\n\n2. Publish the app using the following command:\n```\ntfx extension publish --manifest-globs vss-extension-dev.json --publisher SCANOSS --token $MSFT_PERSONAL_ACCESS_TOKEN\n```\n\n\n## Production\n\n### Update Version for Publishing\n\n1. Ensure that the version in the **package.json** file is updated.\n\n2. Build the app with the following command:\n```bash\nmake upgrade_version\n```\n\n### Build the App for Production\n\nTo build the app for the production environment, run:\n```bash\nmake package\n```\n\n### Publish the App to Production\n\n1. Generate a publishing token. For instructions on how to generate the token, refer to [Publish from the Command Line](https://learn.microsoft.com/en-us/azure/devops/extend/publish/command-line?view=azure-devops).\n\n2. Publish the app using the following command:\n```\ntfx extension publish --manifest-globs vss-extension.json vss-extension-release.json --publisher SCANOSS --token $MSFT_PERSONAL_ACCESS_TOKEN\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fscanoss%2Fado-code-scan","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fscanoss%2Fado-code-scan","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fscanoss%2Fado-code-scan/lists"}