bridgetown-content-security-policy 1.1.0 → 2.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 12b56bfe7c0ab61d060c3a9b1267e51f4298d8b6be18b8f94c310170213f102b
-  data.tar.gz: 546b68954773e45cb3c3917917bf8b250763b37f9164a4d88780f8788ba47927
+  metadata.gz: '01187babccb4805b3932c7d8c0fbefb349fecf45e829108b44538dfb3c8f7fe4'
+  data.tar.gz: b8770f4cfb4740c2c7cbaa5ca3daa78d82ec8f5e2ff29e864428bd5ebaf40052
 SHA512:
-  metadata.gz: 8da299814926c78b587739fd1b16e64f1e757043aad12c18e38897213224b2b82b2961b73ce8b79ebe8fcb9a23e5f1316b758e26e7ee08104bda6028a0fe633f
-  data.tar.gz: 5c94a309e87eaa1a91363fed59cf0a392fce7945d946bdafd0e80ffb2fb8e5a44828338ee332c46b4c8ab76dce4d33753538606a6ce34012cde863e4c004d4f5
+  metadata.gz: be9c1dd319f104c400cfcd08ae25318a95ecc6591af0a903dd212ef00fb2659d32e36d2b7c4208fd363124d835646b41f9efc7171336e800d9cf6406017b2460
+  data.tar.gz: 65819b692aaf3b25e6f03bea50cbe2807a320e9f4ac85d00f35567c4710bbcb34fb05d5205b9cb967f87784fd8ab43edc65093cb3b2b7953f8086e27ff3f1898

data/.github/workflows/tests.yml

@@ -0,0 +1,32 @@
+name: Tests
+
+on:
+  pull_request:
+    branches:
+      - "*"
+  push:
+    branches:
+      - main
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        ruby_version: [2.7.7, 3.0.5, 3.1.3, 3.2.0]
+        bridgetown_version: [1.2.0]
+    continue-on-error: ${{ endsWith(matrix.ruby, 'head') || matrix.ruby == 'debug' }}
+    # Has to be top level to cache properly
+    env:
+      BUNDLE_JOBS: 3
+      BUNDLE_PATH: "vendor/bundle"
+      BRIDGETOWN_VERSION: ${{ matrix.bridgetown_version }}
+    steps:
+      - uses: actions/checkout@master
+      - name: Setup Ruby
+        uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: ${{ matrix.ruby_version }}
+          bundler-cache: true
+      - name: Test with Rake
+        run: script/cibuild

data/CHANGELOG.md

@@ -1,5 +1,16 @@
 # main
 
+# 2.0.0 / 25-01-2023
+
+* Restrict support to Bridgetown v1.2 and newer.
+* Initialize plugin using the new Ruby DSL in Bridgetown v1.2.
+
+# 1.2.0 / 23-01-2023
+
+* Require Bridgetown 1.0 or newer.
+* Require Ruby 2.7 or newer.
+* Remove BrowserSync permission as Bridgetown no longer uses it.
+
 # 1.1.0 / 08-06-2021
 
 * Change location of CSP config file to `config/`.

data/Gemfile

@@ -5,13 +5,8 @@ gemspec
 
 gem "bridgetown", ENV["BRIDGETOWN_VERSION"] if ENV["BRIDGETOWN_VERSION"]
 
-group :development, :test do
-  gem "byebug"
-end
-
 group :test do
   gem "minitest"
   gem "minitest-profile"
   gem "minitest-reporters"
-  gem "shoulda"
 end

data/README.md

@@ -1,5 +1,8 @@
 # Bridgetown Content Security Policy
 
+[![Tests](https://github.com/ayushn21/bridgetown-content-security-policy/actions/workflows/tests.yml/badge.svg?branch=main)](https://github.com/ayushn21/bridgetown-content-security-policy/actions/workflows/tests.yml)
+[![Gem Version](https://badge.fury.io/rb/bridgetown-content-security-policy.svg)](https://badge.fury.io/rb/bridgetown-content-security-policy)
+
 A Bridgetown plugin to include a [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy) as a meta tag on all your pages.
 
 ## Installation
@@ -43,3 +46,9 @@ Add the appropriate CSP tag in the `head` tag of **_your layout file_** to inclu
 4. Commit your changes (`git commit -am 'Add some feature'`)
 5. Push to the branch (`git push origin my-new-feature`)
 6. Create a new Pull Request
+
+## License
+
+Bridgetown Content Security Policy is released under the [MIT License](https://opensource.org/licenses/MIT).
+
+Copyright © 2021 [Ayush Newatia](https://twitter.com/ayushn21)

data/Rakefile

@@ -9,4 +9,5 @@ Rake::TestTask.new(:test) do |test|
   test.libs << "lib" << "test"
   test.pattern = "test/**/test_*.rb"
   test.verbose = true
+  test.warning = false
 end

data/bridgetown-content-security-policy.gemspec

@@ -16,12 +16,12 @@ Gem::Specification.new do |spec|
   spec.require_paths = ["lib"]
   spec.metadata      = {}
 
-  spec.required_ruby_version = ">= 2.5.0"
+  spec.required_ruby_version = ">= 2.7.0"
 
-  spec.add_dependency "bridgetown", ">= 0.18", "< 2.0"
+  spec.add_dependency "bridgetown", ">= 1.2.0", "< 2.0"
 
   spec.add_development_dependency "bundler"
-  spec.add_development_dependency "nokogiri", "~> 1.6"
-  spec.add_development_dependency "rake", "~> 12.0"
-  spec.add_development_dependency "rubocop-bridgetown", "~> 0.2"
+  spec.add_development_dependency "nokogiri"
+  spec.add_development_dependency "rake"
+  spec.add_development_dependency "rubocop-bridgetown"
 end

data/bridgetown.automation.rb

@@ -10,9 +10,6 @@ create_file "config/content_security_policy.config.rb" do
       policy.default_src :self
       policy.img_src     :self, :data
       policy.object_src  :none
-
-      # Allow BrowserSync in development
-      policy.script_src  :self, :unsafe_inline if Bridgetown.environment.development?
   end
 
   # All other policies with inherit from :default
@@ -39,6 +36,7 @@ create_file "config/content_security_policy.config.rb" do
   RUBY
 end
 
-say_status :content_security_policy, "All done! Please add {% content_security_policy %} to the head tag in your layouts."
-say_status :content_security_policy, "Please see the new content_security_policy.rb file for details"
+say_status :content_security_policy, "All done! Add `init :\"bridgetown-content-security-policy\"` to your `config/initializers.rb`"
+say_status :content_security_policy, "Add <% content_security_policy %> to the head tag in your layouts to render the CSP."
+say_status :content_security_policy, "See the new content_security_policy.rb file for details"
 say_status :content_security_policy, "More info available at: https://github.com/ayushn21/bridgetown-content-security-policy"

data/lib/bridgetown-content-security-policy/builder.rb

@@ -22,12 +22,8 @@ module BridgetownContentSecurityPolicy
         render tag.context["page"]["content_security_policy"]
       end
 
-      helper "_csp" do |policy_name|
-        render policy_name
-      end
-
-      helper "content_security_policy", helpers_scope: true do
-        _csp view.page.data.content_security_policy
+      helper "content_security_policy" do
+        render helpers.view.page.data.content_security_policy
       end
     end
 

data/lib/bridgetown-content-security-policy/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module BridgetownContentSecurityPolicy
-  VERSION = "1.1.0"
+  VERSION = "2.0.0"
 end

data/lib/bridgetown-content-security-policy.rb

@@ -4,4 +4,6 @@ require "bridgetown"
 require "bridgetown-content-security-policy/policy"
 require "bridgetown-content-security-policy/builder"
 
-BridgetownContentSecurityPolicy::Builder.register
+Bridgetown.initializer :"bridgetown-content-security-policy" do |config|
+  config.builder BridgetownContentSecurityPolicy::Builder
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: bridgetown-content-security-policy
 version: !ruby/object:Gem::Version
-  version: 1.1.0
+  version: 2.0.0
 platform: ruby
 authors:
 - Ayush Newatia
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-06-08 00:00:00.000000000 Z
+date: 2023-01-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bridgetown
@@ -16,7 +16,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0.18'
+        version: 1.2.0
     - - "<"
       - !ruby/object:Gem::Version
         version: '2.0'
@@ -26,7 +26,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0.18'
+        version: 1.2.0
     - - "<"
       - !ruby/object:Gem::Version
         version: '2.0'
@@ -48,50 +48,51 @@ dependencies:
   name: nokogiri
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.6'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.6'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '12.0'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '12.0'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rubocop-bridgetown
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.2'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.2'
-description: 
+        version: '0'
+description:
 email: ayush@hey.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/workflows/tests.yml"
 - ".gitignore"
 - ".rubocop.yml"
 - CHANGELOG.md
@@ -109,7 +110,7 @@ homepage: https://github.com/ayushn21/bridgetown-content-security-policy
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -117,15 +118,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.5.0
+      version: 2.7.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.4
-signing_key: 
+rubygems_version: 3.2.33
+signing_key:
 specification_version: 4
 summary: Add a content security policy to your website using a convenient Ruby DSL
 test_files: []