security-advisories icon indicating copy to clipboard operation
security-advisories copied to clipboard

Published 20 hours ago verified publisher icon haskell

integration for `cabal`

Open MangoIV opened this issue 1 year ago • 5 comments

Summary

It would be nice to have a cabal integration, like cabal audit that can build a report for a cabal package, now that you can write plugins for cabal.

  • [x] printing human readable
  • [x] printing to json
  • [ ] instead of running in IO, use more fine grained stack to allow some nice changes in a clean way, e.g. outputting without colouring, cf. https://no-color.org/
  • [ ] querying for newer packages on hackage
  • [ ] Add option —dont-solve that compares against the parsed version range in the stanza instead of solving the project. This would be useful for e.g. libraries
  • [ ] pass through arguments from cabal and show cabal help text
  • [ ] both for URI parsing (for git clone and filepath parsing, be clever about creating directories and showing errors
  • [x] not planned ~~https://github.com/haskell/security-advisories/issues/166~~

MangoIV avatar Feb 04 '24 09:02 MangoIV