bundle-safe-update 1.0.14 → 1.0.17

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 92790321156e4545484b954c3f7f0b011172948695a3b7bc7ca74ca0917a3e80
-  data.tar.gz: 2616e43947f8e60e1a5ef20b261724edd0fa63637e31db95a5ba37efa8182700
+  metadata.gz: 1e2c1175b765d499a14621f62e2b048d1f196f357d792f0dbb9443b3c6bc0b08
+  data.tar.gz: cb7f143f09d8e7e474466ae2a551b5cf453b68f3b994395e9d8d0d89e710aac1
 SHA512:
-  metadata.gz: 3cb9bdd4de67e98f238653e60d78552d23e454f3e75fcc654954fd1f65bd328e54b7d9376beead9cb9b2135e4eedc9b70fce2401776929f7715482b34ecc97ed
-  data.tar.gz: 4c6ecef10d7c4cdb566d502a52d097b2e99d5d60119f13e752aabe7634acf0235f915969a522152ea9de3db48cb57877b9aacb022604e3ea0405ce0d31285b64
+  metadata.gz: f49ddd5c31cd89ffa1c9c83f1e0f97a99045699d4393e693b8e8df890fc4d8529e35e9c7a6d59a4ebc20b14616a2981e7477fee34984ff3c2080cf42ec5f092f
+  data.tar.gz: e77c37ec34fa77ea04ae72b91c451abf90edf10d9e051617240d3c7cc45973ea3acd08bdc8929aacbd1a860c767acb6a21a4fea75bed6662ccfbb5550e277130

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    bundle-safe-update (1.0.14)
+    bundle-safe-update (1.0.17)
 
 GEM
   remote: https://rubygems.org/
@@ -102,7 +102,7 @@ CHECKSUMS
   addressable (2.8.8) sha256=7c13b8f9536cf6364c03b9d417c19986019e28f7c00ac8132da4eb0fe393b057
   ast (2.4.3) sha256=954615157c1d6a382bc27d690d973195e79db7f55e9765ac7c481c60bdb4d383
   bigdecimal (3.3.1) sha256=eaa01e228be54c4f9f53bf3cc34fe3d5e845c31963e7fcc5bedb05a4e7d52218
-  bundle-safe-update (1.0.14)
+  bundle-safe-update (1.0.17)
   crack (1.0.1) sha256=ff4a10390cd31d66440b7524eb1841874db86201d5b70032028553130b6d4c7e
   date (3.5.1) sha256=750d06384d7b9c15d562c76291407d89e368dda4d4fff957eb94962d325a0dc0
   diff-lcs (1.6.2) sha256=9ae0d2cba7d4df3075fe8cd8602a8604993efc0dfa934cff568969efb1909962

data/README.md

@@ -1,5 +1,9 @@
 # bundle-safe-update
 
+[![CI](https://github.com/dsablic/bundle-safe-update/actions/workflows/ci.yml/badge.svg)](https://github.com/dsablic/bundle-safe-update/actions/workflows/ci.yml)
+[![Gem Version](https://badge.fury.io/rb/bundle-safe-update.svg)](https://badge.fury.io/rb/bundle-safe-update)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+
 A CLI tool that enforces a minimum release age for Ruby gems during updates, preventing installation of gem versions that are "too new" (e.g., less than 14 days old). This helps protect against supply chain attacks by ensuring gems have had time for community review.
 
 ## Installation

data/docs/plans/2026-02-18-readme-badges-design.md

@@ -0,0 +1,21 @@
+# README Badges Design
+
+**Date:** 2026-02-18
+
+## Summary
+
+Add three standard badges to the README.md for the `bundle-safe-update` gem.
+
+## Badges
+
+Insert immediately after the `# bundle-safe-update` heading, before the description paragraph:
+
+```markdown
+[![CI](https://github.com/dsablic/bundle-safe-update/actions/workflows/ci.yml/badge.svg)](https://github.com/dsablic/bundle-safe-update/actions/workflows/ci.yml)
+[![Gem Version](https://badge.fury.io/rb/bundle-safe-update.svg)](https://badge.fury.io/rb/bundle-safe-update)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+```
+
+- **CI**: GitHub Actions status for the `CI` workflow on `master`
+- **Gem Version**: Current published version from RubyGems via badge.fury.io
+- **License**: Static MIT badge via shields.io

data/lib/bundle_safe_update/cli/output.rb

@@ -130,10 +130,10 @@ module BundleSafeUpdate
         puts
         if lock_only
           puts(cyan("Updating lock file for #{gem_names.length} gem(s): #{gem_names.join(', ')}"))
-          puts(cyan("Running: bundle lock --update #{gem_names.join(' ')}"))
+          puts(cyan("Running: bundle lock --conservative --update #{gem_names.join(' ')}"))
         else
           puts(cyan("Updating #{gem_names.length} gem(s): #{gem_names.join(', ')}"))
-          puts(cyan("Running: bundle update #{gem_names.join(' ')}"))
+          puts(cyan("Running: bundle update --conservative #{gem_names.join(' ')}"))
         end
       end
 

data/lib/bundle_safe_update/cli.rb

@@ -126,9 +126,9 @@ module BundleSafeUpdate
 
     def update_command(gem_names, lock_only)
       if lock_only
-        %w[bundle lock --update] + gem_names
+        %w[bundle lock --conservative --update] + gem_names
       else
-        %w[bundle update] + gem_names
+        %w[bundle update --conservative] + gem_names
       end
     end
 

data/lib/bundle_safe_update/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module BundleSafeUpdate
-  VERSION = '1.0.14'
+  VERSION = '1.0.17'
 end

metadata

@@ -1,13 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: bundle-safe-update
 version: !ruby/object:Gem::Version
-  version: 1.0.14
+  version: 1.0.17
 platform: ruby
 authors:
 - Denis Sablic
+autorequire:
 bindir: exe
 cert_chain: []
-date: 1980-01-02 00:00:00.000000000 Z
+date: 2026-03-02 00:00:00.000000000 Z
 dependencies: []
 description: A CLI tool that prevents installation of gem versions that are too new
   (e.g., <14 days old), helping protect against supply chain attacks.
@@ -28,6 +29,7 @@ files:
 - bin/install-hooks
 - bin/setup
 - bundle-safe-update.gemspec
+- docs/plans/2026-02-18-readme-badges-design.md
 - exe/bundle-safe-update
 - lib/bundle_safe_update.rb
 - lib/bundle_safe_update/audit_checker.rb
@@ -50,6 +52,7 @@ metadata:
   rubygems_mfa_required: 'true'
   source_code_uri: https://github.com/dsablic/bundle-safe-update
   changelog_uri: https://github.com/dsablic/bundle-safe-update/releases
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -64,7 +67,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 4.0.6
+rubygems_version: 3.5.22
+signing_key:
 specification_version: 4
 summary: Enforce minimum release age for Ruby gems during updates
 test_files: []