gradle-android-manifest-lock-plugin

A Gradle plugin for providing .lock file support for AndroidManifest. Useful to control what's introduced by 3rd party dependencies into your Manifest.

MIT License

Stars
3
View Code on GitHub
Ecosystems: Kotlin

gradle-android-manifest-lock-plugin

A gradle Gradle to control what Permissions, SDK-level, and other PlayStore listing-sensitive settings is added into the Android Manifest

Usage

Apply the plugin at the any Android (application or library) module:

plugins {
    id("io.github.gmazzo.android.manifest.lock") version "<latest>" 
}

The androidManifestLock task will be added to the build, and automatically bind to check. When run, an src/main/AndroidManifest.lock (default location) file will be created with a content similar to:

main:
  namespace: io.github.gmazzo.android.manifest.lock.demo
  minSDK: 24
  targetSDK: 34
  permissions:
    - android.permission.ACCESS_NETWORK_STATE
    - android.permission.FOREGROUND_SERVICE
    - android.permission.RECEIVE_BOOT_COMPLETED
    - android.permission.WAKE_LOCK
    - io.github.gmazzo.android.manifest.lock.demo.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
  features:
    - glEsVersion: 0x00020000
      required: true
  libraries:
    - org.apache.http.legacy:
        required: false
  exports:
    activity:
      - io.github.gmazzo.android.manifest.lock.demo.MainActivity
    service:
      - androidx.work.impl.background.systemjob.SystemJobService
    receiver:
      - androidx.work.impl.diagnostics.DiagnosticsReceiver
variants:
  debug:
    permissions:
      - android.permission.POST_NOTIFICATIONS
      - android.permission.READ_EXTERNAL_STORAGE
      - android.permission.WRITE_EXTERNAL_STORAGE
    exports:
      activity:
        - leakcanary.internal.activity.LeakActivity
      activity-alias:
        - leakcanary.internal.activity.LeakLauncherActivity
  release:
    permissions:
      - android.permission.INTERNET
fingerprint: 25d1dd4e3d17990162837964cdd8d992

You can later commit this file to keep track and detect unnoticed changes (by introducing/bumping a 3rd party dependency for instance).

Configuration

Changing the location of the lock file

android {
    manifestLock {
        lockFile = layout.projectDirectory.file("android.lock")
    }
}

Failing if lock has changes on CI

android {
    manifestLock {
        failOnLockChange = providers.environmentVariable("CI").map { it.toBoolean() }.orElse(false)
    }
}
Badges
Extracted from project README
Gradle Plugin Portal Build Status Coverage Users