bundler-security 0.1.0 → 0.1.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- checksums.yaml.gz.sig +0 -0
- data.tar.gz.sig +0 -0
- data/Gemfile.lock +2 -2
- data/lib/bundler/security/version.rb +1 -1
- data/lib/bundler/security/voting/versions/local.rb +9 -4
- metadata +1 -1
- metadata.gz.sig +0 -0
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 7a5bb1e10cf82faeb0a992b5481f286a9c7a03d986aba17f37f6759497c29168
|
4
|
+
data.tar.gz: 5e575779b11879ae2ec75332c18db501f5b1a9848bb772f06e63f9d6ddc5746e
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 2d8924f3b81e1a8d5bf4b8fe8633cd666c5c927f852fe8e9e3d14910bcd4314e267b8b54129436a2cab11c051251fe559f117679536e44e325b0465faddf932d
|
7
|
+
data.tar.gz: 984270178ddb816a90bb157b42e229e94a1616bce896885b9b9e41f685aa86319cbf22aa6564581f3fc846dd6de279d0471c3e915ffcc318cde29debcc2f8fca
|
checksums.yaml.gz.sig
CHANGED
Binary file
|
data.tar.gz.sig
CHANGED
Binary file
|
data/Gemfile.lock
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
PATH
|
2
2
|
remote: .
|
3
3
|
specs:
|
4
|
-
|
4
|
+
bundler-security (0.1.1)
|
5
5
|
|
6
6
|
GEM
|
7
7
|
remote: https://rubygems.org/
|
@@ -13,7 +13,7 @@ PLATFORMS
|
|
13
13
|
|
14
14
|
DEPENDENCIES
|
15
15
|
bundler
|
16
|
-
|
16
|
+
bundler-security!
|
17
17
|
rake
|
18
18
|
|
19
19
|
BUNDLED WITH
|
@@ -34,10 +34,15 @@ module Bundler
|
|
34
34
|
# @param definition [Bundler::Definition] definition for your source
|
35
35
|
def build_install(definition)
|
36
36
|
requested_specs = definition.requested_specs
|
37
|
-
|
38
|
-
|
39
|
-
|
40
|
-
|
37
|
+
# Support case without Gemfile.lock
|
38
|
+
if definition.locked_gems
|
39
|
+
locked_specs = definition.locked_gems.specs
|
40
|
+
introduced = requested_specs.map(&:name) - locked_specs.map(&:name)
|
41
|
+
introduced_specs = requested_specs.select { |spec| introduced.include?(spec.name) }
|
42
|
+
introduced_specs.concat(locked_specs)
|
43
|
+
else
|
44
|
+
introduced_specs = requested_specs
|
45
|
+
end
|
41
46
|
|
42
47
|
introduced_specs.each_with_object({}) do |spec, hash|
|
43
48
|
next if skip?(spec.source)
|
metadata
CHANGED
metadata.gz.sig
CHANGED
Binary file
|