Skip to content

v1.1.0

Latest

Choose a tag to compare

@crleonard crleonard released this 05 Jul 08:10

Swift Package Audit v1.1.0

This release adds optional package license checks, making it easier to review Swift package dependencies against your project’s license policy.

What’s New

  • Added swift-package-audit scan --licenses
  • Added GitHub-hosted package license lookup using GitHub repository license metadata
  • Added license policy configuration in SwiftPackageAudit.yml
  • Added diagnostics for:
    • denied licenses
    • unknown licenses
    • failed license lookups
  • Added license check output to text, Markdown, PR comment, and JSON reports
  • Added JSON schema documentation for licenseChecks

License Policy Configuration

Projects can now configure license rules:

licenses:
  allow:
    - MIT
    - Apache-2.0
  deny:
    - AGPL-3.0-only
  requireKnownLicense: false
  exceptions:
    InternalPackage: Proprietary