add support Swift Package Manager #4926

DmitriyLewen · 2023-08-02T08:30:46Z

Description

Add support for finding vulnerabilities for Swift Package Manager (Package.swift files).
Use GHSA as datasource.

The text was updated successfully, but these errors were encountered:

DmitriyLewen · 2023-08-03T03:50:09Z

Package.swift files can contains branches, version ranges, etc...
But there is Package.resolved file - https://github.com/apple/swift-package-manager/blob/main/Documentation/Usage.md#resolving-versions-packageresolved-file
This is lock file for Swift.

File is created after every swift package command.

Use this file to find dependencies.

DmitriyLewen added kind/feature Categorizes issue or PR as related to a new feature. scan/vulnerability Issues relating to vulnerability scanning labels Aug 2, 2023

DmitriyLewen self-assigned this Aug 2, 2023

knqyf263 added this to the v0.45.0 milestone Aug 2, 2023

DmitriyLewen mentioned this issue Aug 3, 2023

feat: add Package.resolved swift files support #4932

Merged

10 tasks

knqyf263 closed this as completed in #4932 Aug 23, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

add support Swift Package Manager #4926

add support Swift Package Manager #4926

DmitriyLewen commented Aug 2, 2023

DmitriyLewen commented Aug 3, 2023

add support Swift Package Manager #4926

add support Swift Package Manager #4926

Comments

DmitriyLewen commented Aug 2, 2023

Description

DmitriyLewen commented Aug 3, 2023