{"id":20124036,"url":"https://github.com/testableapple/fastlane-plugin-dependency_check_ios_analyzer","last_synced_at":"2026-03-01T03:32:22.363Z","repository":{"id":39896838,"uuid":"363509635","full_name":"testableapple/fastlane-plugin-dependency_check_ios_analyzer","owner":"testableapple","description":"Fastlane wrapper around the OWASP dependency-check iOS analyzers (Swift Package Manager and CocoaPods) 🚀","archived":false,"fork":false,"pushed_at":"2024-08-26T03:32:51.000Z","size":48,"stargazers_count":3,"open_issues_count":1,"forks_count":3,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-01-14T11:29:09.495Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://alteral.github.io/fastlane_plugins","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/testableapple.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2021-05-01T21:22:15.000Z","updated_at":"2024-12-11T02:44:14.000Z","dependencies_parsed_at":"2025-05-06T17:51:05.999Z","dependency_job_id":null,"html_url":"https://github.com/testableapple/fastlane-plugin-dependency_check_ios_analyzer","commit_stats":null,"previous_names":["alteral/fastlane-plugin-dependency_check_ios_analyzer"],"tags_count":7,"template":false,"template_full_name":null,"purl":"pkg:github/testableapple/fastlane-plugin-dependency_check_ios_analyzer","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/testableapple%2Ffastlane-plugin-dependency_check_ios_analyzer","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/testableapple%2Ffastlane-plugin-dependency_check_ios_analyzer/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/testableapple%2Ffastlane-plugin-dependency_check_ios_analyzer/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/testableapple%2Ffastlane-plugin-dependency_check_ios_analyzer/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/testableapple","download_url":"https://codeload.github.com/testableapple/fastlane-plugin-dependency_check_ios_analyzer/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/testableapple%2Ffastlane-plugin-dependency_check_ios_analyzer/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29959372,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-01T01:47:18.291Z","status":"online","status_checked_at":"2026-03-01T02:00:07.437Z","response_time":124,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-13T19:47:28.283Z","updated_at":"2026-03-01T03:32:22.343Z","avatar_url":"https://github.com/testableapple.png","language":"Ruby","funding_links":[],"categories":[],"sub_categories":[],"readme":"# fastlane-plugin-dependency_check_ios_analyzer\n\n[![fastlane Plugin Badge](https://rawcdn.githack.com/fastlane/fastlane/master/fastlane/assets/plugin-badge.svg)](https://rubygems.org/gems/fastlane-plugin-dependency_check_ios_analyzer)\n\n## About dependency_check_ios_analyzer\n\nFastlane wrapper around the [OWASP dependency-check](https://jeremylong.github.io/DependencyCheck) iOS analyzers ([Swift Package Manager](https://jeremylong.github.io/DependencyCheck/analyzers/swift.html) and [CocoaPods](https://jeremylong.github.io/DependencyCheck/analyzers/cocoapods.html)).\n\nThis analyzer is considered experimental. While it may be useful and provide valid results more testing must be completed to ensure that the false negative/false positive rates are acceptable.\n\n## Parameters\n\n| **Key** | **Description** | **Default** |\n| ------- |---------------- | ----------- |\n| `skip_spm_analysis` | Skip analysis of `SPM` dependencies | `false` |\n| `skip_pods_analysis` | Skip analysis of `CocoaPods` dependencies | `false` |\n| `spm_checkouts_path` | Path to Swift Packages, if resolved | |\n| `pod_file_lock_path` | Path to the `Podfile.lock` file, if exists | |\n| `project_path` | Path to the directory that contains an Xcode project, workspace or package. Defaults to the `root` | |\n| `project_name` | The project's name | `DependencyCheck` |\n| `output_directory` | The directory in which all reports will be stored | `dependency-check` |\n| `output_types` | Comma separated list of the output types (e.g. `html`, `xml`, `csv`, `json`, `junit`, `sarif`, `all`) | `sarif` |\n| `cli_version` | Overwrite the version of `DependencyCheck` analyzer | `10.0.3` |\n| `verbose` | The file path to write verbose logging information | |\n| `fail_on_cvss` | Specifies if the build should be failed if a CVSS score above a specified level is identified. Since the CVSS scores are 0-10, by default the build will never fail | `11` |\n| `junit_fail_on_cvss` | Specifies the CVSS score that is considered a failure when generating the junit report | `0` |\n| `keep_binary_on_exit` | Keep `DependencyCheck` binary and data on exit | `true` |\n| `suppression` | Path to [suppression file](https://jeremylong.github.io/DependencyCheck/general/suppression.html) | |\n\n## Requirements\n\n* [Xcode](https://developer.apple.com/downloads)\n* [Xcode Command Line Tools](http://railsapps.github.io/xcode-command-line-tools.html)\n\n## Getting Started\n\nTo get started with `dependency_check_ios_analyzer`, add it to your project by running:\n\n```bash\n$ fastlane add_plugin dependency_check_ios_analyzer\n```\n\n## Usage\n\n```ruby\ndependency_check_ios_analyzer(\n  project_name: 'SampleProject',\n  output_types: 'html, junit',\n  fail_on_cvss: 7\n)\n```\n\n## How to read the reports\n\n* [Docs](https://jeremylong.github.io/DependencyCheck/general/thereport.html)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftestableapple%2Ffastlane-plugin-dependency_check_ios_analyzer","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftestableapple%2Ffastlane-plugin-dependency_check_ios_analyzer","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftestableapple%2Ffastlane-plugin-dependency_check_ios_analyzer/lists"}