bundler-integrity 1.0.5 → 1.0.8
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/bin/bundler-integrity +12 -4
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 00cc30a3f6624a8be18b70db551aeff6756edeae8a05021f4cb968e5537f8d08
|
|
4
|
+
data.tar.gz: 2d73415b0ec00141532f5eebfc22aea4b707e184eab8c19efde383b8ac3ae8e5
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: '0900264d32cdd43254f0c6f3bca5c941ac1de7f75244d71c465d13565a73967639faf507109f95ebcfbe7d18016b63237460bf537e12cb781ad93b2494c2d220'
|
|
7
|
+
data.tar.gz: e9ad419b9d619a69b338a3557acd47c14bbc3dc141c8aafdbcf77220ee83a4f0ce4fdf14c5eb93cc4dcbd12aea74bfe29fed540168d5f28501e1266f66491ae0
|
data/bin/bundler-integrity
CHANGED
|
@@ -39,10 +39,16 @@ deps.specs.each do |spec|
|
|
|
39
39
|
"#{spec.name}-#{spec.version}-#{spec.platform}.gem"
|
|
40
40
|
end
|
|
41
41
|
|
|
42
|
-
details =
|
|
42
|
+
details = ''
|
|
43
|
+
|
|
44
|
+
begin
|
|
45
|
+
details = URI.parse("https://rubygems.org/#{intel_path}").read
|
|
46
|
+
rescue OpenURI::HTTPError => e
|
|
47
|
+
raise e unless e.message.include?('404')
|
|
48
|
+
end
|
|
43
49
|
|
|
44
50
|
if details.empty?
|
|
45
|
-
puts "\033[0;33m[WARN]\033[0m #{full_name} was not found in RubyGems. Maybe external source?"
|
|
51
|
+
puts "\033[0;33m[WARN]\033[0m #{full_name} was not found in RubyGems. Maybe external source or private gem?"
|
|
46
52
|
next
|
|
47
53
|
end
|
|
48
54
|
|
|
@@ -87,5 +93,7 @@ deps.specs.each do |spec|
|
|
|
87
93
|
end
|
|
88
94
|
end
|
|
89
95
|
|
|
90
|
-
|
|
91
|
-
puts "\033[0;32m[OK]\033[0m
|
|
96
|
+
unless PRINT_EXPORT
|
|
97
|
+
puts "\033[0;32m[OK]\033[0m Congratulations, you're safe and sound!"
|
|
98
|
+
puts "\033[0;32m[OK]\033[0m Maciej Mensfeld and the WhiteSource team wishes you a good day!"
|
|
99
|
+
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: bundler-integrity
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.8
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Maciej Mensfeld
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-05-
|
|
11
|
+
date: 2022-05-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies: []
|
|
13
13
|
description: "Gem to verify integrity of packages installed via Bundler.\n\n It allows
|
|
14
14
|
to detect packages that were tampered with or replaced via cache poison or replaced.\n\n
|