实现示例type SwiftDep = { name: string; url: string; version: string } const allowHosts = new Set<string>(['github.com','git.example.com']) function validUrl(u: string): boolean { try { const x = new URL(u); return x.protocol === 'https:' && allowHosts.has(x.host) } catch { return false } } function semverLike(v: string): boolean { return /^(\d+\.\d+\.\d+)(?:[-A-Za-z0-9_.]+)?$/.test(v) } function evaluate(list: SwiftDep[]): { ok: boolean; errors: string[] } { const errors: string[] = [] for (const d of list) { if (!d.name || !validUrl(d.url) || !semverLike(d.version)) errors.push(d.name) } return { ok: errors.length === 0, errors } } 审计与CI门禁审计来源域与版本;不合规阻断并输出修复建议。变更需审批并归档。
投稿
微信公众账号
微信扫一扫加关注
评论 返回
顶部
发表评论 取消回复