Skip to content

OSS Diff

Jump to bottom
Gabe Stocco edited this page Jun 4, 2021 · 1 revision

Compares two packages using a standard diff/patch view.

USAGE:
Diff the given packages:
  oss-diff --format text [options] "package-url package-url-2"

  -d, --download-directory    the directory to download the packages to.
  -c, --use-cache             (Default: false) Do not download the package if it is already present in the destination
                              directory and do not delete the package after processing.
  -w, --crawl-archives        (Default: true) Crawl into archives found in packages.
  -B, --context-before        (Default: 0) Number of previous lines to give as context.
  -A, --context-after         (Default: 0) Number of subsequent lines to give as context.
  -C, --context               (Default: 0) Number of lines to give as context. Overwrites Before and After options. -1 to
                              print all.
  -a, --added-only            (Default: false) Only show added lines (and requested context).
  -r, --removed-only          (Default: false) Only show removed lines (and requested context).
  -f, --format                (Default: text) Choose output format. (text|sarifv1|sarifv2)
  -o, --output-location       Output location. Don't specify for console output.
  --help                      Display this help screen.
  --version                   Display version information.

The package-url specifier is described at https://github.com/package-url/purl-spec:
  pkg:cargo/rand                The latest version of Rand (via crates.io)
  pkg:cocoapods/AFNetworking    The latest version of AFNetworking (via cocoapods.org)
  pkg:composer/Smarty/Smarty    The latest version of Smarty (via Composer/ Packagist)
  pkg:cpan/Apache-ACEProxy      The latest version of Apache::ACEProxy (via cpan.org)
  pkg:cran/ACNE@0.8.0           Version 0.8.0 of ACNE (via cran.r-project.org)
  pkg:gem/rubytree@*            All versions of RubyTree (via rubygems.org)
  pkg:golang/sigs.k8s.io/yaml   The latest version of sigs.k8s.io/yaml (via proxy.golang.org)
  pkg:github/Microsoft/DevSkim  The latest release of DevSkim (via GitHub)
  pkg:hackage/a50@*             All versions of a50 (via hackage.haskell.org)
  pkg:maven/org.apdplat/deep-qa The latest version of org.apdplat.deep-qa (via repo1.maven.org)
  pkg:npm/express               The latest version of Express (via npm.org)
  pkg:nuget/Newtonsoft.JSON     The latest version of Newtonsoft.JSON (via nuget.org)
  pkg:pypi/django@1.11.1        Version 1.11.1 fo Django (via pypi.org)
  pkg:ubuntu/zerofree           The latest version of zerofree from Ubuntu (via packages.ubuntu.com)
  pkg:vsm/MLNET/07              The latest version of MLNET.07 (from marketplace.visualstudio.com)
  pkg:url/foo@1.0?url=<URL>     The direct URL <URL>
Clone this wiki locally