bonnie_bundler 2.2.0 → 3.0.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/.github/gitleaks.toml +268 -0
- data/.github/workflows/main.yml +31 -0
- data/.travis.yml +2 -2
- data/Gemfile.lock +74 -75
- data/LICENSE.txt +201 -0
- data/README.md +12 -0
- data/bonnie-bundler.gemspec +4 -4
- data/lib/bonnie_bundler.rb +0 -1
- data/lib/measures/elm_parser.rb +7 -1
- data/lib/measures/loading/cql_loader.rb +234 -100
- data/lib/measures/loading/exceptions.rb +4 -4
- data/lib/measures/loading/loader.rb +18 -24
- data/lib/models/cql_measure.rb +25 -0
- data/lib/util/vsac_api.rb +13 -13
- data/notice.md +9 -0
- data/test/fixtures/CMSAWA_v5_6_Artifacts.zip +0 -0
- data/test/fixtures/CMSAWA_v5_6_Artifacts_missing_component.zip +0 -0
- data/test/fixtures/CMSAWA_v5_6_Artifacts_missing_composite_files.zip +0 -0
- data/test/fixtures/CMSAWA_v5_6_Artifacts_missing_file.zip +0 -0
- data/test/fixtures/TOB2_v5_5_Artifacts.zip +0 -0
- data/test/fixtures/not_mat_export.zip +0 -0
- data/test/fixtures/vcr_cassettes/load_composite_measure.yml +7305 -0
- data/test/fixtures/vcr_cassettes/load_composite_measure_with_missing_component.yml +6923 -0
- data/test/fixtures/vcr_cassettes/load_composite_measure_with_missing_composite_files.yml +57 -0
- data/test/fixtures/vcr_cassettes/load_composite_measure_with_missing_file.yml +5938 -0
- data/test/fixtures/vcr_cassettes/multi_library_webcalls.yml +156 -167
- data/test/fixtures/vcr_cassettes/valid_vsac_response.yml +216 -191
- data/test/fixtures/vcr_cassettes/valid_vsac_response_158.yml +112 -116
- data/test/fixtures/vcr_cassettes/valid_vsac_response_158_update.yml +121 -125
- data/test/fixtures/vcr_cassettes/valid_vsac_response_hospice.yml +523 -447
- data/test/fixtures/vcr_cassettes/valid_vsac_response_includes_draft.yml +388 -356
- data/test/fixtures/vcr_cassettes/valid_vsac_response_pvc_unused_libraries.yml +969 -2079
- data/test/fixtures/vcr_cassettes/valid_vsac_response_special_characters.yml +5408 -0
- data/test/fixtures/vcr_cassettes/vs_loading_500_response.yml +26 -510
- data/test/fixtures/vcr_cassettes/vs_loading_empty_concept_list.yml +26 -26
- data/test/fixtures/vcr_cassettes/vs_loading_release.yml +106 -106
- data/test/fixtures/vcr_cassettes/vs_loading_version.yml +106 -106
- data/test/test_helper.rb +1 -1
- data/test/unit/composite_cql_loader_test.rb +102 -0
- data/test/unit/cql_loader_test.rb +38 -6
- data/test/unit/get_value_sets_from_measure_model_test.rb +34 -0
- data/test/unit/load_mat_export_test.rb +15 -9
- data/test/unit/measure_complexity_test.rb +1 -1
- data/test/unit/measure_diff_test.rb +4 -4
- data/test/unit/storing_mat_export_package_test.rb +1 -2
- data/test/unit/value_set_loading_test.rb +16 -16
- data/test/unit/vsac_api_auth_test.rb +7 -31
- data/test/unit/vsac_api_test.rb +6 -6
- data/test/vcr_setup.rb +4 -6
- metadata +35 -14
- data/lib/measures/loading/base_loader_definition.rb +0 -61
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
|
-
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
2
|
+
SHA256:
|
3
|
+
metadata.gz: 327ca5f0f9c6e8b7d15aec442443fcf5cf74162967fc814a8edd80e2804dacf9
|
4
|
+
data.tar.gz: 0f8b190e0a145f8b188b1d0d707c17a5fdbcaefac8573c7244e825a5f2d80a51
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: c94fc587d3a98914a9f9dd7cbb71025b9b56c1cd563f92f17b048f2e03286206890ff80609cdabd24a226d6086a63e6d4e849908f51a7d5afda8b8d5980cd3d3
|
7
|
+
data.tar.gz: 33ded10c16749888bb8658e6a4bdb5f8b30d48317f98779377d19a516a30c1aecfd02b6d4be4c9d8ef34ba1493bf76c21acf33d05f637645f5c75ed326c95863
|
@@ -0,0 +1,268 @@
|
|
1
|
+
title = "gitleaks config"
|
2
|
+
|
3
|
+
[[rules]]
|
4
|
+
description = "AWS Manager ID"
|
5
|
+
regex = '''(A3T[A-Z0-9]|AKIA|AGPA|AIDA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16}'''
|
6
|
+
tags = ["key", "AWS"]
|
7
|
+
|
8
|
+
[[rules]]
|
9
|
+
description = "AWS cred file info"
|
10
|
+
regex = '''(?i)(aws_access_key_id|aws_secret_access_key)(.{0,20})?=.[0-9a-zA-Z\/+]{20,40}'''
|
11
|
+
tags = ["AWS"]
|
12
|
+
|
13
|
+
[[rules]]
|
14
|
+
description = "AWS Secret Key"
|
15
|
+
regex = '''(?i)aws(.{0,20})?(?-i)['\"][0-9a-zA-Z\/+]{40}['\"]'''
|
16
|
+
tags = ["key", "AWS"]
|
17
|
+
|
18
|
+
[[rules]]
|
19
|
+
description = "AWS MWS key"
|
20
|
+
regex = '''amzn\.mws\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}'''
|
21
|
+
tags = ["key", "AWS", "MWS"]
|
22
|
+
|
23
|
+
[[rules]]
|
24
|
+
description = "Facebook Secret Key"
|
25
|
+
regex = '''(?i)(facebook|fb)(.{0,20})?(?-i)['\"][0-9a-f]{32}['\"]'''
|
26
|
+
tags = ["key", "Facebook"]
|
27
|
+
|
28
|
+
[[rules]]
|
29
|
+
description = "Facebook Client ID"
|
30
|
+
regex = '''(?i)(facebook|fb)(.{0,20})?['\"][0-9]{13,17}['\"]'''
|
31
|
+
tags = ["key", "Facebook"]
|
32
|
+
|
33
|
+
[[rules]]
|
34
|
+
description = "Twitter Secret Key"
|
35
|
+
regex = '''(?i)twitter(.{0,20})?['\"][0-9a-z]{35,44}['\"]'''
|
36
|
+
tags = ["key", "Twitter"]
|
37
|
+
|
38
|
+
[[rules]]
|
39
|
+
description = "Twitter Client ID"
|
40
|
+
regex = '''(?i)twitter(.{0,20})?['\"][0-9a-z]{18,25}['\"]'''
|
41
|
+
tags = ["client", "Twitter"]
|
42
|
+
|
43
|
+
[[rules]]
|
44
|
+
description = "Github"
|
45
|
+
regex = '''(?i)github(.{0,20})?(?-i)['\"][0-9a-zA-Z]{35,40}['\"]'''
|
46
|
+
tags = ["key", "Github"]
|
47
|
+
|
48
|
+
[[rules]]
|
49
|
+
description = "LinkedIn Client ID"
|
50
|
+
regex = '''(?i)linkedin(.{0,20})?(?-i)['\"][0-9a-z]{12}['\"]'''
|
51
|
+
tags = ["client", "LinkedIn"]
|
52
|
+
|
53
|
+
[[rules]]
|
54
|
+
description = "LinkedIn Secret Key"
|
55
|
+
regex = '''(?i)linkedin(.{0,20})?['\"][0-9a-z]{16}['\"]'''
|
56
|
+
tags = ["secret", "LinkedIn"]
|
57
|
+
|
58
|
+
[[rules]]
|
59
|
+
description = "Slack"
|
60
|
+
regex = '''xox[baprs]-([0-9a-zA-Z]{10,48})?'''
|
61
|
+
tags = ["key", "Slack"]
|
62
|
+
|
63
|
+
[[rules]]
|
64
|
+
description = "EC"
|
65
|
+
regex = '''-----BEGIN EC PRIVATE KEY-----'''
|
66
|
+
tags = ["key", "EC"]
|
67
|
+
|
68
|
+
|
69
|
+
[[rules]]
|
70
|
+
description = "Google API key"
|
71
|
+
regex = '''AIza[0-9A-Za-z\\-_]{35}'''
|
72
|
+
tags = ["key", "Google"]
|
73
|
+
|
74
|
+
|
75
|
+
[[rules]]
|
76
|
+
description = "Heroku API key"
|
77
|
+
regex = '''(?i)heroku(.{0,20})?['"][0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}['"]'''
|
78
|
+
tags = ["key", "Heroku"]
|
79
|
+
|
80
|
+
[[rules]]
|
81
|
+
description = "MailChimp API key"
|
82
|
+
regex = '''(?i)(mailchimp|mc)(.{0,20})?['"][0-9a-f]{32}-us[0-9]{1,2}['"]'''
|
83
|
+
tags = ["key", "Mailchimp"]
|
84
|
+
|
85
|
+
[[rules]]
|
86
|
+
description = "Mailgun API key"
|
87
|
+
regex = '''(?i)(mailgun|mg)(.{0,20})?['"][0-9a-z]{32}['"]'''
|
88
|
+
tags = ["key", "Mailgun"]
|
89
|
+
|
90
|
+
[[rules]]
|
91
|
+
description = "PayPal Braintree access token"
|
92
|
+
regex = '''access_token\$production\$[0-9a-z]{16}\$[0-9a-f]{32}'''
|
93
|
+
tags = ["key", "Paypal"]
|
94
|
+
|
95
|
+
[[rules]]
|
96
|
+
description = "Picatic API key"
|
97
|
+
regex = '''sk_live_[0-9a-z]{32}'''
|
98
|
+
tags = ["key", "Picatic"]
|
99
|
+
|
100
|
+
[[rules]]
|
101
|
+
description = "Slack Webhook"
|
102
|
+
regex = '''https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}'''
|
103
|
+
tags = ["key", "slack"]
|
104
|
+
|
105
|
+
[[rules]]
|
106
|
+
description = "Stripe API key"
|
107
|
+
regex = '''(?i)stripe(.{0,20})?['\"][sk|rk]_live_[0-9a-zA-Z]{24}'''
|
108
|
+
tags = ["key", "Stripe"]
|
109
|
+
|
110
|
+
[[rules]]
|
111
|
+
description = "Square access token"
|
112
|
+
regex = '''sq0atp-[0-9A-Za-z\-_]{22}'''
|
113
|
+
tags = ["key", "square"]
|
114
|
+
|
115
|
+
[[rules]]
|
116
|
+
description = "Square OAuth secret"
|
117
|
+
regex = '''sq0csp-[0-9A-Za-z\\-_]{43}'''
|
118
|
+
tags = ["key", "square"]
|
119
|
+
|
120
|
+
[[rules]]
|
121
|
+
description = "Twilio API key"
|
122
|
+
regex = '''(?i)twilio(.{0,20})?['\"][0-9a-f]{32}['\"]'''
|
123
|
+
tags = ["key", "twilio"]
|
124
|
+
|
125
|
+
[[rules]]
|
126
|
+
description = "Env Var"
|
127
|
+
regex = '''(?i)(apikey|secret|key|api|password|pass|pw|host)=[0-9a-zA-Z-_.{}]{4,120}'''
|
128
|
+
|
129
|
+
[[rules.whitelist]]
|
130
|
+
regex='''Key\='''
|
131
|
+
description = "Reference to repo for sonarqube"
|
132
|
+
file = '''(?i)jenkinsfile'''
|
133
|
+
|
134
|
+
[[rules.whitelist]]
|
135
|
+
regex='''config.s3.aws_secret_access_key'''
|
136
|
+
description = "variable placeholder"
|
137
|
+
file = '''s3_connector.py'''
|
138
|
+
|
139
|
+
[[rules.whitelist]]
|
140
|
+
regex='''key=os\.path\.dirname'''
|
141
|
+
description = "env var whitelist"
|
142
|
+
|
143
|
+
[[rules.whitelist]]
|
144
|
+
regex='''.*os\.getenv.*|.*key=os\.environ\.get'''
|
145
|
+
|
146
|
+
|
147
|
+
[[rules.whitelist]]
|
148
|
+
regex='''.*(?i)(s3secretkey|ENV_VAR|test_token|test\/key|testkey|Bearer|key.pem|key-specification|hadoop.*|Key=None|HOST=minio|KEY=S3AccessKey|api_url(),data.*|key=_file_mmset_sort_key)'''
|
149
|
+
#[[rules]]
|
150
|
+
# description = "Port"
|
151
|
+
# regex = '''(?i)port(.{0,4})?[0-9]{1,10}'''
|
152
|
+
# [[rules.whitelist]]
|
153
|
+
# regex = '''(?i)port '''
|
154
|
+
# description = "ignore export "
|
155
|
+
|
156
|
+
|
157
|
+
|
158
|
+
#[[rules]]
|
159
|
+
# description = "Email"
|
160
|
+
# regex = '''[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,4}'''
|
161
|
+
# tags = ["email"]
|
162
|
+
# [[rules.whitelist]]
|
163
|
+
# file = '''(?i)bashrc'''
|
164
|
+
# description = "ignore bashrc emails"
|
165
|
+
|
166
|
+
|
167
|
+
[[rules]]
|
168
|
+
description = "Generic Credential"
|
169
|
+
regex = '''(?i)(dbpasswd|dbuser|dbname|dbhost|api_key|apikey|secret|key|api|password|user|guid|hostname|pw|auth)(.{0,20})?['|"]([0-9a-zA-Z-_\/+!{}/=]{4,120})['|"]'''
|
170
|
+
tags = ["key", "API", "generic"]
|
171
|
+
# ignore leaks with specific identifiers like slack and aws
|
172
|
+
[[rules.whitelist]]
|
173
|
+
regex = '''xox[baprs]-([0-9a-zA-Z]{10,48})'''
|
174
|
+
description = "ignore slack"
|
175
|
+
[[rules.whitelist]]
|
176
|
+
description = "MailChimp API key"
|
177
|
+
regex = '''(?i)(.{0,20})?['"][0-9a-f]{32}-us[0-9]{1,2}['"]'''
|
178
|
+
[[rules.whitelist]]
|
179
|
+
description = "AWS Manager ID"
|
180
|
+
regex = '''(A3T[A-Z0-9]|AKIA|AGPA|AIDA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16}'''
|
181
|
+
[[rules.whitelist]]
|
182
|
+
regex='''(dns_secret_key|dns_access_key)'''
|
183
|
+
description = "Ignore credstash secrets in Terraform files"
|
184
|
+
|
185
|
+
[[rules.whitelist]]
|
186
|
+
regex='''(linkKey)'''
|
187
|
+
description = "Ignore references to linkkey in scala files"
|
188
|
+
file = '''(?i)\.scala'''
|
189
|
+
|
190
|
+
[[rules.whitelist]]
|
191
|
+
regex='''(linkNum)'''
|
192
|
+
description = "Ignore references to linknum is input.json. Not sensitive"
|
193
|
+
file = '''(?i)input\.json'''
|
194
|
+
|
195
|
+
[[rules.whitelist]]
|
196
|
+
regex='''(link_key)'''
|
197
|
+
description = "Ignore references to this in json files. Not sensitive"
|
198
|
+
file = '''(?i)\.json'''
|
199
|
+
|
200
|
+
[[rules.whitelist]]
|
201
|
+
regex='''keys \"position\", \"category\"'''
|
202
|
+
description = "Config information, not sensitive"
|
203
|
+
file = '''(cost_attribution_rules_from_xlsx.pyi|codes_to_config.py)'''
|
204
|
+
|
205
|
+
[[rules.whitelist]]
|
206
|
+
regex='''(json_name)'''
|
207
|
+
description = "google protoobuf descriptor"
|
208
|
+
file = '''(protos/google/protobuf/descriptor.proto)'''
|
209
|
+
[[rules.whitelist]]
|
210
|
+
regex='''KEY \=.*'''
|
211
|
+
description = "Delta deleter script, can ignore"
|
212
|
+
file = '''(claims-api-submitter/deletion/delta_deleter.py)'''
|
213
|
+
|
214
|
+
[[rules.whitelist]]
|
215
|
+
regex = '''secret=os.getenv\(\"AWS_SECRET_ACCESS_KEY\"'''
|
216
|
+
description = "claims deleter key reference"
|
217
|
+
file = '''claims-api-submitter/tests/integration_tests/test_claims_api_deleter.py'''
|
218
|
+
|
219
|
+
[[rules.whitelist]]
|
220
|
+
regex = '''key\": \"testkey\"'''
|
221
|
+
|
222
|
+
[[rules.whitelist]]
|
223
|
+
regex='''.*os\.getenv.*'''
|
224
|
+
|
225
|
+
[[rules.whitelist]]
|
226
|
+
regex='''.*(?i)(s3secretkey|ENV_VAR|test_token|test_cookie|test\/key|testkey|Bearer|helper|max_user_ip|keywords|randomly|sslcert|disable|none|\"api_token\"|dry_run_url|API_TOKEN = \"submissions?_api_token\"|KEY_ID = \"AWS_ACCESS_KEY_ID\".*|key=None|api\(\"test\"|api_url()|key prefix|GET response|bad_format|key=_file_mmset_sort_key|KEYS = \[.*|no_submission_key|)'''
|
227
|
+
|
228
|
+
[[rules.whitelist]]
|
229
|
+
regex='''.*(?i)(user=\"hadoop\"|key=None)'''
|
230
|
+
|
231
|
+
|
232
|
+
[[rules]]
|
233
|
+
description = "High Entropy"
|
234
|
+
regex = '''[0-9a-zA-Z-_!{}/=]{4,120}'''
|
235
|
+
fileNameRegex = '''(?i)(dump.sql|high-entropy-misc.txt)$'''
|
236
|
+
tags = ["entropy"]
|
237
|
+
[[rules.Entropies]]
|
238
|
+
Min = "4.3"
|
239
|
+
Max = "7.0"
|
240
|
+
[[rules.whitelist]]
|
241
|
+
description = "ignore public ssh key and pems"
|
242
|
+
file = '''(pem|ppk|env)$'''
|
243
|
+
path = '''(.*)?ssh'''
|
244
|
+
|
245
|
+
|
246
|
+
[[rules]]
|
247
|
+
description = "Potential bash var"
|
248
|
+
regex='''(?i)(=)([0-9a-zA-Z-_!{}=]{4,120})'''
|
249
|
+
tags = ["key", "bash", "API", "generic"]
|
250
|
+
[[rules.Entropies]]
|
251
|
+
Min = "3.5"
|
252
|
+
Max = "4.5"
|
253
|
+
Group = "1"
|
254
|
+
|
255
|
+
[[rules]]
|
256
|
+
description = "WP-Config"
|
257
|
+
regex='''define(.{0,20})?(DB_CHARSET|NONCE_SALT|LOGGED_IN_SALT|AUTH_SALT|NONCE_KEY|DB_HOST|DB_PASSWORD|AUTH_KEY|SECURE_AUTH_KEY|LOGGED_IN_KEY|DB_NAME|DB_USER)(.{0,20})?['|"].{10,120}['|"]'''
|
258
|
+
tags = ["key", "API", "generic"]
|
259
|
+
|
260
|
+
[[rules]]
|
261
|
+
description = "Files with keys and credentials"
|
262
|
+
fileNameRegex = '''(?i)(id_rsa|passwd|id_rsa.pub|pgpass|pem|key|shadow)'''
|
263
|
+
|
264
|
+
[whitelist]
|
265
|
+
description = "image whitelists"
|
266
|
+
files = ['''(.*?)(jpg|gif|doc|pdf|bin|CMS31v4_SimpleXML.xml|CMS31v4.xml|vsac_auth_bad_credentials.yml|swagger_generator.rb|sonar.properties|sonar-project.properties|build.sbt|sonar-project-benelevel-eligibility-filter.properties)$''']
|
267
|
+
|
268
|
+
|
@@ -0,0 +1,31 @@
|
|
1
|
+
name: Github Secret Scanner
|
2
|
+
|
3
|
+
on: [push]
|
4
|
+
|
5
|
+
jobs:
|
6
|
+
build:
|
7
|
+
|
8
|
+
runs-on: ubuntu-latest
|
9
|
+
timeout-minutes: 5
|
10
|
+
env:
|
11
|
+
REPO: https://github.com/projecttacoma/bonnie_bundler
|
12
|
+
REMOTE_EXCLUDES_URL: https://raw.githubusercontent.com/projecttacoma/bonnie_bundler/master/.github/gitleaks.toml
|
13
|
+
GITLEAKS_VERSION: v4.3.0
|
14
|
+
steps:
|
15
|
+
- name: Execute Gitleaks
|
16
|
+
run: |
|
17
|
+
#wget ${REMOTE_EXCLUDES_URL} -O gitleaks.toml
|
18
|
+
curl -H 'Authorization: token ${{ secrets.ACCESS_TOKEN_GITLEAKS }}' ${REMOTE_EXCLUDES_URL} -o gitleaks.toml
|
19
|
+
wget https://github.com/zricethezav/gitleaks/releases/download/${GITLEAKS_VERSION}/gitleaks-linux-amd64 -O gitleaks
|
20
|
+
chmod +x gitleaks
|
21
|
+
echo ${GITHUB_SHA}
|
22
|
+
echo "gitleaks --repo=${REPO} -v --pretty --redact --commit=${GITHUB_SHA} --config=gitleaks.toml"
|
23
|
+
./gitleaks --repo=${REPO} -v --pretty --redact --commit=${GITHUB_SHA} --config=gitleaks.toml --access-token=${{ secrets.ACCESS_TOKEN_GITLEAKS }}
|
24
|
+
- name: Slack notification
|
25
|
+
if: failure()
|
26
|
+
env:
|
27
|
+
SLACK_WEBHOOK_GITLEAKS: ${{ secrets.SLACK_WEBHOOK_GITLEAKS }}
|
28
|
+
uses: Ilshidur/action-slack@master
|
29
|
+
with:
|
30
|
+
args: 'Potential Secrets found in: https://github.com/{{ GITHUB_REPOSITORY }}/commit/{{ GITHUB_SHA }} Link to build with full gitleaks output: https://github.com/{{ GITHUB_REPOSITORY }}/commit/{{ GITHUB_SHA }}/checks'
|
31
|
+
|
data/.travis.yml
CHANGED
@@ -1,9 +1,9 @@
|
|
1
1
|
language: ruby
|
2
2
|
rvm:
|
3
|
-
- "2.3.
|
3
|
+
- "2.3.8"
|
4
4
|
services: mongodb
|
5
5
|
script:
|
6
|
-
- bundle exec bundle-audit check --update
|
6
|
+
- bundle exec bundle-audit check --update --ignore CVE-2020-5267 CVE-2020-8166 CVE-2020-8164 CVE-2020-15169 CVE-2020-8163 CVE-2020-8167 CVE-2020-8165 CVE-2020-8184 CVE-2020-8161 CVE-2020-10663 CVE-2019-15587 CVE-2020-7595 CVE-2019-13117 CVE-2019-16782 CVE-2020-8130 CVE-2019-16892
|
7
7
|
- bundle exec rake
|
8
8
|
notifications:
|
9
9
|
email:
|
data/Gemfile.lock
CHANGED
@@ -1,15 +1,15 @@
|
|
1
1
|
PATH
|
2
2
|
remote: .
|
3
3
|
specs:
|
4
|
-
bonnie_bundler (
|
4
|
+
bonnie_bundler (3.0.0)
|
5
5
|
diffy (~> 3.0.0)
|
6
|
-
health-data-standards (~> 4.
|
6
|
+
health-data-standards (~> 4.3.2)
|
7
7
|
hqmf2js (~> 1.4)
|
8
8
|
hquery-patient-api (~> 1.1)
|
9
9
|
mongoid (~> 5.0)
|
10
10
|
quality-measure-engine (~> 3.2)
|
11
|
-
rails (
|
12
|
-
roo (~>
|
11
|
+
rails (>= 4.2, < 6.0)
|
12
|
+
roo (~> 2.7)
|
13
13
|
rubyzip (~> 1.2, >= 1.2.1)
|
14
14
|
simplexml_parser (~> 1.0)
|
15
15
|
zip-zip (~> 0.3)
|
@@ -17,36 +17,36 @@ PATH
|
|
17
17
|
GEM
|
18
18
|
remote: https://rubygems.org/
|
19
19
|
specs:
|
20
|
-
actionmailer (4.2.
|
21
|
-
actionpack (= 4.2.
|
22
|
-
actionview (= 4.2.
|
23
|
-
activejob (= 4.2.
|
20
|
+
actionmailer (4.2.11.1)
|
21
|
+
actionpack (= 4.2.11.1)
|
22
|
+
actionview (= 4.2.11.1)
|
23
|
+
activejob (= 4.2.11.1)
|
24
24
|
mail (~> 2.5, >= 2.5.4)
|
25
25
|
rails-dom-testing (~> 1.0, >= 1.0.5)
|
26
|
-
actionpack (4.2.
|
27
|
-
actionview (= 4.2.
|
28
|
-
activesupport (= 4.2.
|
26
|
+
actionpack (4.2.11.1)
|
27
|
+
actionview (= 4.2.11.1)
|
28
|
+
activesupport (= 4.2.11.1)
|
29
29
|
rack (~> 1.6)
|
30
30
|
rack-test (~> 0.6.2)
|
31
31
|
rails-dom-testing (~> 1.0, >= 1.0.5)
|
32
32
|
rails-html-sanitizer (~> 1.0, >= 1.0.2)
|
33
|
-
actionview (4.2.
|
34
|
-
activesupport (= 4.2.
|
33
|
+
actionview (4.2.11.1)
|
34
|
+
activesupport (= 4.2.11.1)
|
35
35
|
builder (~> 3.1)
|
36
36
|
erubis (~> 2.7.0)
|
37
37
|
rails-dom-testing (~> 1.0, >= 1.0.5)
|
38
38
|
rails-html-sanitizer (~> 1.0, >= 1.0.3)
|
39
|
-
activejob (4.2.
|
40
|
-
activesupport (= 4.2.
|
39
|
+
activejob (4.2.11.1)
|
40
|
+
activesupport (= 4.2.11.1)
|
41
41
|
globalid (>= 0.3.0)
|
42
|
-
activemodel (4.2.
|
43
|
-
activesupport (= 4.2.
|
42
|
+
activemodel (4.2.11.1)
|
43
|
+
activesupport (= 4.2.11.1)
|
44
44
|
builder (~> 3.1)
|
45
|
-
activerecord (4.2.
|
46
|
-
activemodel (= 4.2.
|
47
|
-
activesupport (= 4.2.
|
45
|
+
activerecord (4.2.11.1)
|
46
|
+
activemodel (= 4.2.11.1)
|
47
|
+
activesupport (= 4.2.11.1)
|
48
48
|
arel (~> 6.0)
|
49
|
-
activesupport (4.2.
|
49
|
+
activesupport (4.2.11.1)
|
50
50
|
i18n (~> 0.7)
|
51
51
|
minitest (~> 5.1)
|
52
52
|
thread_safe (~> 0.3, >= 0.3.4)
|
@@ -55,7 +55,7 @@ GEM
|
|
55
55
|
public_suffix (>= 2.0.2, < 4.0)
|
56
56
|
arel (6.0.4)
|
57
57
|
awesome_print (1.2.0)
|
58
|
-
bson (4.
|
58
|
+
bson (4.4.2)
|
59
59
|
builder (3.2.3)
|
60
60
|
bundler-audit (0.6.0)
|
61
61
|
bundler (~> 1.2)
|
@@ -65,41 +65,42 @@ GEM
|
|
65
65
|
coffee-script-source
|
66
66
|
execjs
|
67
67
|
coffee-script-source (1.12.2)
|
68
|
-
concurrent-ruby (1.
|
68
|
+
concurrent-ruby (1.1.5)
|
69
69
|
crack (0.4.3)
|
70
70
|
safe_yaml (~> 1.0.0)
|
71
|
-
crass (1.0.
|
72
|
-
delayed_job (4.1.
|
73
|
-
activesupport (>= 3.0, < 5.
|
71
|
+
crass (1.0.4)
|
72
|
+
delayed_job (4.1.5)
|
73
|
+
activesupport (>= 3.0, < 5.3)
|
74
74
|
delayed_job_mongoid (2.3.0)
|
75
75
|
delayed_job (>= 3.0, < 5)
|
76
76
|
mongoid (>= 3.0, < 7)
|
77
77
|
mongoid-compatibility (>= 0.4.0)
|
78
78
|
diffy (3.0.7)
|
79
79
|
docile (1.1.3)
|
80
|
-
domain_name (0.5.
|
80
|
+
domain_name (0.5.20180417)
|
81
81
|
unf (>= 0.0.5, < 1.0.0)
|
82
82
|
erubis (2.7.0)
|
83
83
|
execjs (2.7.0)
|
84
|
-
globalid (0.4.
|
84
|
+
globalid (0.4.2)
|
85
85
|
activesupport (>= 4.2.0)
|
86
86
|
hashdiff (0.3.6)
|
87
|
-
health-data-standards (4.
|
88
|
-
activesupport (~> 4.2.
|
87
|
+
health-data-standards (4.3.5)
|
88
|
+
activesupport (~> 4.2.11)
|
89
89
|
builder (~> 3.1)
|
90
90
|
erubis (~> 2.7.0)
|
91
91
|
highline (~> 1.7.0)
|
92
92
|
log4r (~> 1.1.10)
|
93
93
|
memoist (~> 0.9.1)
|
94
|
+
mongo (~> 2.4.3)
|
94
95
|
mongoid (~> 5.0.0)
|
95
96
|
mongoid-tree (~> 2.0.0)
|
96
|
-
nokogiri (~> 1.
|
97
|
+
nokogiri (~> 1.10.3)
|
97
98
|
protected_attributes (~> 1.0.5)
|
98
|
-
rest-client (~>
|
99
|
+
rest-client (~> 2.0.1)
|
99
100
|
rubyzip (~> 1.2.1)
|
100
101
|
uuid (~> 2.3.7)
|
101
102
|
zip-zip (~> 0.3)
|
102
|
-
highline (1.7.
|
103
|
+
highline (1.7.10)
|
103
104
|
hike (1.2.3)
|
104
105
|
hqmf2js (1.4.0)
|
105
106
|
health-data-standards (~> 4.0)
|
@@ -114,24 +115,26 @@ GEM
|
|
114
115
|
uglifier (~> 2.7)
|
115
116
|
http-cookie (1.0.3)
|
116
117
|
domain_name (~> 0.5)
|
117
|
-
i18n (0.9.
|
118
|
+
i18n (0.9.5)
|
118
119
|
concurrent-ruby (~> 1.0)
|
119
120
|
json (2.1.0)
|
120
121
|
libv8 (3.16.14.19)
|
121
122
|
log4r (1.1.10)
|
122
|
-
loofah (2.2.
|
123
|
+
loofah (2.2.3)
|
123
124
|
crass (~> 1.0.2)
|
124
125
|
nokogiri (>= 1.5.9)
|
125
126
|
macaddr (1.7.1)
|
126
127
|
systemu (~> 2.6.2)
|
127
|
-
mail (2.7.
|
128
|
+
mail (2.7.1)
|
128
129
|
mini_mime (>= 0.1.1)
|
129
130
|
memoist (0.9.3)
|
130
131
|
method_source (0.8.2)
|
131
|
-
mime-types (2.
|
132
|
-
|
133
|
-
|
134
|
-
|
132
|
+
mime-types (3.2.2)
|
133
|
+
mime-types-data (~> 3.2015)
|
134
|
+
mime-types-data (3.2019.0331)
|
135
|
+
mini_mime (1.0.1)
|
136
|
+
mini_portile2 (2.4.0)
|
137
|
+
minitest (5.11.3)
|
135
138
|
mongo (2.4.3)
|
136
139
|
bson (>= 4.2.1, < 5.0.0)
|
137
140
|
mongoid (5.0.2)
|
@@ -139,15 +142,15 @@ GEM
|
|
139
142
|
mongo (~> 2.1)
|
140
143
|
origin (~> 2.1)
|
141
144
|
tzinfo (>= 0.3.37)
|
142
|
-
mongoid-compatibility (0.5.
|
145
|
+
mongoid-compatibility (0.5.1)
|
143
146
|
activesupport
|
144
147
|
mongoid (>= 2.0)
|
145
148
|
mongoid-tree (2.0.1)
|
146
149
|
mongoid (>= 4.0, < 6.0)
|
147
|
-
multi_json (1.
|
150
|
+
multi_json (1.13.1)
|
148
151
|
netrc (0.11.0)
|
149
|
-
nokogiri (1.
|
150
|
-
mini_portile2 (~> 2.
|
152
|
+
nokogiri (1.10.4)
|
153
|
+
mini_portile2 (~> 2.4.0)
|
151
154
|
origin (2.3.1)
|
152
155
|
protected_attributes (1.0.9)
|
153
156
|
activemodel (>= 4.0.1, < 5.0)
|
@@ -163,45 +166,43 @@ GEM
|
|
163
166
|
mongoid (~> 5.0)
|
164
167
|
rubyzip (~> 1.0)
|
165
168
|
zip-zip (~> 0.3)
|
166
|
-
rack (1.6.
|
169
|
+
rack (1.6.11)
|
167
170
|
rack-test (0.6.3)
|
168
171
|
rack (>= 1.0)
|
169
|
-
rails (4.2.
|
170
|
-
actionmailer (= 4.2.
|
171
|
-
actionpack (= 4.2.
|
172
|
-
actionview (= 4.2.
|
173
|
-
activejob (= 4.2.
|
174
|
-
activemodel (= 4.2.
|
175
|
-
activerecord (= 4.2.
|
176
|
-
activesupport (= 4.2.
|
172
|
+
rails (4.2.11.1)
|
173
|
+
actionmailer (= 4.2.11.1)
|
174
|
+
actionpack (= 4.2.11.1)
|
175
|
+
actionview (= 4.2.11.1)
|
176
|
+
activejob (= 4.2.11.1)
|
177
|
+
activemodel (= 4.2.11.1)
|
178
|
+
activerecord (= 4.2.11.1)
|
179
|
+
activesupport (= 4.2.11.1)
|
177
180
|
bundler (>= 1.3.0, < 2.0)
|
178
|
-
railties (= 4.2.
|
181
|
+
railties (= 4.2.11.1)
|
179
182
|
sprockets-rails
|
180
183
|
rails-deprecated_sanitizer (1.0.3)
|
181
184
|
activesupport (>= 4.2.0.alpha)
|
182
|
-
rails-dom-testing (1.0.
|
183
|
-
activesupport (>= 4.2.0
|
185
|
+
rails-dom-testing (1.0.9)
|
186
|
+
activesupport (>= 4.2.0, < 5.0)
|
184
187
|
nokogiri (~> 1.6)
|
185
188
|
rails-deprecated_sanitizer (>= 1.0.1)
|
186
189
|
rails-html-sanitizer (1.0.4)
|
187
190
|
loofah (~> 2.2, >= 2.2.2)
|
188
|
-
railties (4.2.
|
189
|
-
actionpack (= 4.2.
|
190
|
-
activesupport (= 4.2.
|
191
|
+
railties (4.2.11.1)
|
192
|
+
actionpack (= 4.2.11.1)
|
193
|
+
activesupport (= 4.2.11.1)
|
191
194
|
rake (>= 0.8.7)
|
192
195
|
thor (>= 0.18.1, < 2.0)
|
193
196
|
rake (12.0.0)
|
194
197
|
ref (2.0.0)
|
195
|
-
rest-client (
|
198
|
+
rest-client (2.0.2)
|
196
199
|
http-cookie (>= 1.0.2, < 2.0)
|
197
|
-
mime-types (>= 1.16, <
|
198
|
-
netrc (~> 0.
|
199
|
-
roo (
|
200
|
-
nokogiri
|
201
|
-
rubyzip
|
202
|
-
|
203
|
-
ruby-ole (1.2.12.1)
|
204
|
-
rubyzip (1.2.1)
|
200
|
+
mime-types (>= 1.16, < 4.0)
|
201
|
+
netrc (~> 0.8)
|
202
|
+
roo (2.8.2)
|
203
|
+
nokogiri (~> 1)
|
204
|
+
rubyzip (>= 1.2.1, < 2.0.0)
|
205
|
+
rubyzip (1.2.2)
|
205
206
|
safe_yaml (1.0.4)
|
206
207
|
simplecov (0.8.2)
|
207
208
|
docile (~> 1.1.0)
|
@@ -212,8 +213,6 @@ GEM
|
|
212
213
|
health-data-standards (~> 4.0)
|
213
214
|
tilt (~> 1.4)
|
214
215
|
slop (3.5.0)
|
215
|
-
spreadsheet (1.1.5)
|
216
|
-
ruby-ole (>= 1.0)
|
217
216
|
sprockets (2.12.5)
|
218
217
|
hike (~> 1.2)
|
219
218
|
multi_json (~> 1.0)
|
@@ -227,18 +226,18 @@ GEM
|
|
227
226
|
therubyracer (0.12.3)
|
228
227
|
libv8 (~> 3.16.14.15)
|
229
228
|
ref
|
230
|
-
thor (0.20.
|
229
|
+
thor (0.20.3)
|
231
230
|
thread_safe (0.3.6)
|
232
231
|
tilt (1.4.1)
|
233
|
-
tzinfo (1.2.
|
232
|
+
tzinfo (1.2.5)
|
234
233
|
thread_safe (~> 0.1)
|
235
234
|
uglifier (2.7.2)
|
236
235
|
execjs (>= 0.3.0)
|
237
236
|
json (>= 1.8.0)
|
238
237
|
unf (0.1.4)
|
239
238
|
unf_ext
|
240
|
-
unf_ext (0.0.7.
|
241
|
-
uuid (2.3.
|
239
|
+
unf_ext (0.0.7.6)
|
240
|
+
uuid (2.3.9)
|
242
241
|
macaddr (~> 1.0)
|
243
242
|
vcr (3.0.3)
|
244
243
|
webmock (3.0.1)
|
@@ -264,4 +263,4 @@ DEPENDENCIES
|
|
264
263
|
webmock
|
265
264
|
|
266
265
|
BUNDLED WITH
|
267
|
-
1.
|
266
|
+
1.17.1
|