I asked EasyFind to search for every file/folder named Sparkle.framework.
I copied the results and paste them in a text window of TextEdit.
I saved this document as "sparkle inside.txt" on the Desktop then I ran this stripped version of the script :
#script stripped
set theSource to (path to desktop as text) & "sparkle inside.txt"
set theAppList to read file theSource
set infoFilePath to "/Contents/info.plist"
set sparkleAppsList to {}
--set theAppList to do shell script "find " & defaultAppsFolder & " -name Sparkle.framework | awk -F'/' '{print $3}'"
set theAppList to paragraphs of theAppList
repeat with i from 1 to number of items in theAppList
set theApp to text of item i of theAppList
set this_item to theApp
set f to this_item & infoFilePath as string
tell application "System Events"
if exists property list file f then
set thePlist to contents of property list file f
set theValue to value of thePlist
try
if exists SUFeedURL of theValue then
set thisSUFeedURL to SUFeedURL of theValue as text
if thisSUFeedURL contains "http:" then
set theResultString to "Application : " & my theApp & " : " & thisSUFeedURL as text
set end of my sparkleAppsList to theResultString & "
"
end if
end if
end try
end if
end tell
end repeat
display dialog "The following apps do not use secure https connections for the Sparkle updater:
" & sparkleAppsList as string buttons "OK" default button "OK" with title "Sparkle Framework Vulnerability Check"
#EOF