bundler-integrity 1.0.1 → 1.0.2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/bin/bundler-integrity +7 -1
- metadata +1 -1
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 713f00a37d2a4a1412b2a078dc65d9cd7479da389006cd5fd386d7873fa278d2
|
|
4
|
+
data.tar.gz: 5aba7a5ab8952a6f78242c79d66bf9146f541033a0366e62e65980be57670bbd
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 6633eeb32a8a06647f6c72133463c657e66d9077d7ca4ecc204cf5531d9b47b03c27d4f353f65ee643c72a1352cd92b732cd8769fe4cdb736ef76b07d7646395
|
|
7
|
+
data.tar.gz: e8a4525871f677f93257dafad4db1bf70291bf0b049660d77f757947a66595876daeffaa414a20db8acb53654fdd830d031b1d1fa16c0a901b44b35369ee5490
|
data/bin/bundler-integrity
CHANGED
|
@@ -25,6 +25,9 @@ deps = ::Bundler::Definition
|
|
|
25
25
|
|
|
26
26
|
|
|
27
27
|
deps.specs.each do |spec|
|
|
28
|
+
# Ignore git based, etc
|
|
29
|
+
next unless spec.source.is_a?(Bundler::Source::Rubygems)
|
|
30
|
+
|
|
28
31
|
intel_path = "api/v1/versions/#{spec.name}.json"
|
|
29
32
|
|
|
30
33
|
full_name = if spec.platform.to_s == 'ruby'
|
|
@@ -35,7 +38,10 @@ deps.specs.each do |spec|
|
|
|
35
38
|
|
|
36
39
|
details = URI.parse("https://rubygems.org/#{intel_path}").read
|
|
37
40
|
|
|
38
|
-
|
|
41
|
+
if details.empty?
|
|
42
|
+
puts "\033[0;33m[WARN]\033[0m #{full_name} was not found in RubyGems. Maybe external source?"
|
|
43
|
+
next
|
|
44
|
+
end
|
|
39
45
|
|
|
40
46
|
version = JSON.parse(details).find do |version|
|
|
41
47
|
version.fetch('number') == spec.version.to_s &&
|