bundler-stats 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 9376d8577f516583cb84e92692cb33f053601c8f
+  data.tar.gz: d39378395171a90216a9762eb03a52ac511b5e2d
+SHA512:
+  metadata.gz: 4dca024ba74426a410fd651219293e883c7b992dff4c9bee82aecc0c17c17e61dbcfd98ae97803829127cda9ee0d5b89fce2fab40b12712c10fdea65de9fb494
+  data.tar.gz: 2bcd652ce3a290611d40ef519f6490e3d2a2c7157ed75281985ddf582a30f3c5cb63ee716b3ace8658d5b018811fffb18f38587c133a59359bdb72fbc5df37cd

data/.gitignore

@@ -0,0 +1 @@
+Gemfile.lock

data/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+
+gemspec

data/Guardfile

@@ -0,0 +1,34 @@
+# A sample Guardfile
+# More info at https://github.com/guard/guard#readme
+
+## Uncomment and set this to only include directories you want to watch
+# directories %w(app lib config test spec features) \
+#  .select{|d| Dir.exists?(d) ? d : UI.warning("Directory #{d} does not exist")}
+
+## Note: if you are using the `directories` clause above and you are not
+## watching the project directory ('.'), then you will want to move
+## the Guardfile to a watched dir and symlink it back, e.g.
+#
+#  $ mkdir config
+#  $ mv Guardfile config/
+#  $ ln -s config/Guardfile .
+#
+# and, you'll have to watch "config/Guardfile" instead of "Guardfile"
+
+guard :bundler do
+  require 'guard/bundler'
+  require 'guard/bundler/verify'
+  helper = Guard::Bundler::Verify.new
+
+  files = ['Gemfile']
+  files += Dir['*.gemspec'] if files.any? { |f| helper.uses_gemspec?(f) }
+
+  # Assume files are symlinked from somewhere
+  files.each { |file| watch(helper.real_path(file)) }
+end
+
+guard :rspec, cmd: 'rspec' do
+  watch(%r{^spec/.+_spec\.rb$})
+  watch(%r{^lib/(.+)\.rb$})     { |m| "spec/lib/#{m[1]}_spec.rb" }
+  watch('spec/spec_helper.rb')  { "spec" }
+end

data/bin/bundle-stats

@@ -0,0 +1,11 @@
+#!/usr/bin/env ruby
+
+
+require 'rubygems'
+
+lib_dir = File.expand_path(File.join(File.dirname(__FILE__),'..','lib'))
+$LOAD_PATH << lib_dir unless $LOAD_PATH.include?(lib_dir)
+
+require 'bundler/stats/cli'
+
+Bundler::Stats::CLI.start

data/bundler-stats.gemspec

@@ -0,0 +1,38 @@
+# encoding: utf-8
+
+lib_dir = File.join(File.dirname(__FILE__),'lib')
+$LOAD_PATH << lib_dir unless $LOAD_PATH.include?(lib_dir)
+
+require 'bundler/stats/version'
+
+Gem::Specification.new do |gem|
+
+  gem.name    = "bundler-stats"
+  gem.version = Bundler::Stats::VERSION
+
+  gem.summary     = "Dependency investigation for Bundler"
+  gem.description = "Looks through your lockfile and tries to identify problematic use of dependencies"
+  gem.licenses    = "MIT"
+  gem.authors     = "Joseph Mastey"
+  gem.email       = "jmmastey@gmail.com"
+  gem.homepage    = "http://github.com/jmmastey/bundler-stats"
+
+  glob = lambda { |patterns| gem.files & Dir[*patterns] }
+
+  gem.files       = `git ls-files`.split($/)
+  gem.executables = glob['bin/*'].map { |path| File.basename(path) }
+  gem.default_executable = gem.executables.first if Gem::VERSION < '1.7.'
+
+  gem.extensions       = glob['ext/**/extconf.rb']
+  gem.test_files       = glob['{spec/{**/}*_spec.rb']
+  gem.extra_rdoc_files = glob['*.{txt,md}']
+
+  gem.require_paths = %w[ext lib].select { |dir| File.directory?(dir) }
+
+  gem.add_dependency "bundler", "~> 1.9"
+  gem.add_dependency "thor", "~> 0.19"
+
+  gem.add_development_dependency "rspec", "~> 3.4"
+  gem.add_development_dependency "guard", "~> 2.13"
+  gem.add_development_dependency "pry", "~> 0.10"
+end

data/lib/bundler/stats/calculator.rb

@@ -0,0 +1,54 @@
+require 'bundler'
+
+module Bundler
+  module Stats
+    class Calculator
+      attr_reader :parser, :tree, :gemfile, :remover
+
+      def initialize(gemfile_path, lockfile_path, options = {})
+        raise ArgumentError unless File.readable?(lockfile_path)
+        raise ArgumentError unless File.readable?(gemfile_path)
+
+        @gemfile = Bundler::Dsl.new.eval_gemfile(gemfile_path)
+
+        lock_contents = File.read(lockfile_path)
+        @parser = Bundler::LockfileParser.new(lock_contents)
+
+        skiplist = options.fetch(:skiplist, [])
+        @tree = Bundler::Stats::Tree.new(@parser, skiplist: skiplist)
+
+        @remover = Bundler::Stats::Remover.new(@tree, @gemfile)
+      end
+
+      def summarize(target)
+        @tree.summarize(target).merge({
+          potential_removals: @remover.potential_removals(target)
+        })
+      end
+
+      def stats
+        { summary: summary,
+          gems: gem_stats
+        }
+      end
+      alias_method :to_h, :stats
+
+      def summary
+        { total_gems: @gemfile.count,
+          unpinned_gems: unpinned_gems.count,
+        }
+      end
+
+      def unpinned_gems
+        @gemfile.reject { |dep| dep.specific? }
+      end
+
+      def gem_stats
+        stats = @gemfile.map do |gem|
+          @tree.summarize(gem.name)
+        end
+        stats.sort_by { |row| row[:total_dependencies] }
+      end
+    end
+  end
+end

data/lib/bundler/stats/cli.rb

@@ -0,0 +1,99 @@
+require 'json'
+require 'thor'
+require 'bundler'
+
+require 'bundler/stats'
+
+module Bundler
+  module Stats
+    class CLI < ::Thor
+      default_task :stats
+      map '--version' => :version, "-v" => :version
+
+      desc 'stats', 'Displays basic stats about the gems in your Gemfile'
+      method_option :format, aliases: "-f", description: "Output format, either JSON or text"
+      method_option :nofollow, description: "A comma delimited list of dependencies not to follow."
+      def stats
+        calculator = build_calculator(options)
+        stats = calculator.stats
+
+        if options[:format] =~ /json/i
+          say JSON.pretty_generate(stats)
+        else
+          draw_stats(stats[:gems], stats[:summary])
+        end
+      end
+
+      desc 'show TARGET', 'Prints the dependency tree for a single gem in your Gemfile'
+      method_option :format, aliases: "-f", description: "Output format, either JSON or text"
+      method_option :nofollow, description: "A comma delimited list of dependencies not to follow."
+      def show(target)
+        calculator = build_calculator(options)
+        stats = calculator.summarize(target)
+
+        if options[:format] =~ /json/i
+          say JSON.pretty_generate(stats)
+        else
+          draw_show(stats, target)
+        end
+      end
+
+      desc 'version', 'Prints the bundler-stats version'
+      def version
+        say "bundler-stats #{VERSION}"
+      end
+
+      private
+
+      def draw_stats(gem_stats, summary)
+        say "+------------------------------|-----------------|-----------------+"
+        say "| Name                         | Total Deps      | 1st Level Deps  |"
+        say "+------------------------------|-----------------|-----------------+"
+        gem_stats.each do |stat_line|
+          say "| %-28s | %-15s | %-15s |" % [stat_line[:name], stat_line[:total_dependencies], stat_line[:first_level_dependencies]]
+        end
+        say "+------------------------------|-----------------|-----------------+"
+        say ""
+        say "Declared Gems: %s, %s unpinned" % summary.values
+        say ""
+      end
+
+      def draw_show(stats, target)
+        say "bundle-stats for #{target}"
+        say ""
+        say "depended upon by (#{stats[:top_level_dependencies].count}) | #{stats[:top_level_dependencies].values.map(&:name).join(', ')}\n"
+        say "depends on (#{stats[:transitive_dependencies].count})      | #{stats[:transitive_dependencies].map(&:name).join(', ')}\n"
+        say "unique to this (#{stats[:potential_removals].count})   | #{stats[:potential_removals].map(&:name).join(', ')}\n"
+        say ""
+      end
+
+      def build_calculator(options)
+        if !options[:nofollow].nil?
+          skiplist = options[:nofollow].gsub(/\s+/, '').split(",")
+        else
+          skiplist = []
+        end
+
+        @calculator ||= Bundler::Stats::Calculator.new(gemfile_path, lockfile_path, skiplist: skiplist)
+      end
+
+      def gemfile_path
+        cwd = Pathname.new(".")
+        until cwd.realdirpath.root? do
+          return (cwd + "Gemfile") if File.exist?(cwd + "Gemfile")
+          cwd = cwd.parent
+        end
+        raise ArgumentError, "Couldn't find Gemfile in this directory or parents"
+      end
+
+      def lockfile_path
+        cwd = Pathname.new(".")
+        until cwd.realdirpath.root? do
+          return (cwd + "Gemfile.lock") if File.exist?(cwd + "Gemfile.lock")
+          cwd = cwd.parent
+        end
+        raise ArgumentError, "Couldn't find Gemfile in this directory or parents"
+      end
+    end
+  end
+end

data/lib/bundler/stats/remover.rb

@@ -0,0 +1,41 @@
+module Bundler
+  module Stats
+    class Remover
+      def initialize(tree, top_level)
+        @tree       = tree
+        @top_level  = top_level
+      end
+
+      def potential_removals(target)
+        candidates = @tree.transitive_dependencies(target)
+        candidates.reject do |candidate|
+          still_used?(candidate.name, deleted: target)
+        end
+      end
+
+      # TODO: woo naive algorithm
+      # TODO: circular dependencies would be an issue here
+      # TODO: also probably use something like transitive_dependencies
+      # to leverage the abilities in tree...
+      def still_used?(target, deleted: nil)
+        modified_tree = @tree.tree.clone
+        modified_tree.delete(deleted)
+
+        deps_to_check = (@top_level - [Gem::Dependency.new(deleted)])
+
+        while !deps_to_check.empty? do
+          candidate = deps_to_check.pop.name
+
+          next if candidate == deleted
+          next if candidate == "bundler"
+          return true if candidate == target
+
+          deps_to_check += modified_tree[candidate].dependencies
+        end
+
+        false
+      end
+    end
+  end
+end
+

data/lib/bundler/stats/tree.rb

@@ -0,0 +1,60 @@
+require 'pry'
+
+class Bundler::Stats::Tree
+  attr_accessor :tree
+
+  def initialize(parser, skiplist: [])
+    raise ArgumentError unless parser.respond_to?(:specs)
+
+    @parser   = parser
+    @tree     = specs_as_tree(@parser.specs)
+    @skiplist = skiplist
+  end
+
+  def summarize(target)
+    transitive_dependencies = transitive_dependencies(target)
+    { name: target,
+      total_dependencies: transitive_dependencies.count,
+      first_level_dependencies: first_level_dependencies(target).count,
+      top_level_dependencies: reverse_dependencies(target),
+      transitive_dependencies: transitive_dependencies,
+    }
+  end
+
+  def first_level_dependencies(target)
+    raise ArgumentError, "Unknown gem #{target}" unless @tree.has_key? target
+    @tree[target].dependencies
+  end
+
+  def transitive_dependencies(target)
+    raise ArgumentError, "Unknown gem #{target}" unless @tree.has_key? target
+
+    top_level = @tree[target].dependencies
+    all_level = top_level + top_level.inject([]) do |arr, dep|
+      # turns out bundler refuses to include itself in the dependency tree,
+      # which is sneaky
+      next arr if dep.name == "bundler"
+      next arr if @skiplist.include? dep.name
+
+      arr += transitive_dependencies(dep.name)
+    end
+
+    all_level.uniq { |d| d.name }
+  end
+
+  # TODO: this is a very stupid way to walk this tree
+  def reverse_dependencies(target)
+    @tree.select do |name, dep|
+      all_deps = transitive_dependencies(name)
+      all_deps.any? { |dep| dep.name == target }
+    end
+  end
+
+  private
+
+  def specs_as_tree(specs)
+    specs.each_with_object({}) do |spec, hash|
+      hash[spec.name] = spec
+    end
+  end
+end

data/lib/bundler/stats/version.rb

@@ -0,0 +1,6 @@
+module Bundler
+  module Stats
+    # bundler-stats version
+    VERSION = '0.0.1'
+  end
+end

data/lib/bundler/stats.rb

@@ -0,0 +1,4 @@
+require_relative 'stats/version'
+require_relative 'stats/tree'
+require_relative 'stats/remover'
+require_relative 'stats/calculator'

data/spec/lib/bundler/stats/calculator_spec.rb

@@ -0,0 +1,101 @@
+require 'bundler'
+require 'bundler/stats'
+
+describe Bundler::Stats::Calculator do
+  subject { described_class }
+  let(:gemfile_path) { File.join(File.dirname(__FILE__), "../../../test_gemfile") }
+  let(:lockfile_path) { File.join(File.dirname(__FILE__), "../../../test_gemfile.lock") }
+  let(:calculator) { subject.new(lockfile_path) }
+
+  context "#new" do
+    it "is displeased about unreadable lockfiles" do
+      expect { subject.new(gemfile_path, "/not/a/file/path") }.to raise_error(ArgumentError)
+    end
+
+    it "is displeased about unreadable gemfiles, too" do
+      expect { subject.new("/not/a/file/path", lockfile_path) }.to raise_error(ArgumentError)
+    end
+
+    it "creates a parser instance" do
+      target = subject.new(gemfile_path, lockfile_path)
+
+      expect(target.parser).to be_a(Bundler::LockfileParser)
+    end
+
+    it "creates a tree instance" do
+      target = subject.new(gemfile_path, lockfile_path)
+
+      expect(target.tree).to be_a(Bundler::Stats::Tree)
+    end
+
+    it "creates a parsed gemfile instance" do
+      target = subject.new(gemfile_path, lockfile_path)
+
+      expect(target.gemfile).to be_a(Array)
+    end
+
+    it "passes on the skiplist argument" do
+      allow(Bundler::Stats::Tree).to receive(:new) {}
+      # this sucks. break this dependency further
+      allow(Bundler::LockfileParser).to receive(:new) { "parser" }
+
+      target = subject.new(gemfile_path, lockfile_path, skiplist: "abc")
+
+      expect(Bundler::Stats::Tree).to have_received(:new).with("parser", skiplist: "abc")
+    end
+  end
+
+  describe "#stats" do
+    it "returns a hash with some keys" do
+      calculator = subject.new(gemfile_path, lockfile_path)
+
+      target = calculator.stats
+
+      expect(target).to be_a(Hash)
+      expect(target.keys).to eq([:summary, :gems])
+    end
+
+    it "asks for gem stats" do
+      calculator = subject.new(gemfile_path, lockfile_path)
+      allow(calculator).to receive(:gem_stats).and_return(rbis: 35)
+
+      target = calculator.stats
+
+      expect(calculator).to have_received(:gem_stats)
+      expect(target[:gems]).to eq(rbis: 35)
+    end
+
+    it "asks for a summary" do
+      calculator = subject.new(gemfile_path, lockfile_path)
+      allow(calculator).to receive(:summary).and_return(rbis: 35)
+
+      target = calculator.stats
+
+      expect(calculator).to have_received(:summary)
+      expect(target[:summary]).to eq(rbis: 35)
+    end
+  end
+
+  context "#gem_stats" do
+    it "includes entries for each gem" do
+      calculator = subject.new(gemfile_path, lockfile_path)
+
+      target = calculator.gem_stats
+
+      expect(target).to be_a(Array)
+      expect(target.length).to eq(calculator.gemfile.length)
+    end
+  end
+
+  context "#summary" do
+    it "is a hash" do
+      calculator = subject.new(gemfile_path, lockfile_path)
+
+      target = calculator.summary
+
+      expect(target).to be_a(Hash)
+      expect(target).to include(:total_gems)
+      expect(target).to include(:unpinned_gems)
+    end
+  end
+end

data/spec/lib/bundler/stats/remover_spec.rb

@@ -0,0 +1,106 @@
+require 'bundler'
+require 'bundler/stats'
+
+LazyLazySpec = Struct.new(:name, :dependencies)
+FakeLockfileParser = Struct.new(:specs)
+
+describe Bundler::Stats::Remover do
+  subject { described_class }
+
+  def dep(name)
+    Gem::Dependency.new(name)
+  end
+
+  let(:full_tree) do
+    { "rails"       => LazyLazySpec.new("rails", [ dep("actionpack"), dep("rack") ]),
+      "sass-rails"  => LazyLazySpec.new("sass-rails", [ dep("rails"), dep("rack") ]),
+      "actionpack"  => LazyLazySpec.new("actionpack", [ dep("actionview") ]),
+      "actionview"  => LazyLazySpec.new("actionview", []),
+      "rack"        => LazyLazySpec.new("rack", [dep("rack-test")]),
+      "rack-test"   => LazyLazySpec.new("rack-test", []),
+    }
+  end
+  let(:tree) { Bundler::Stats::Tree.new(FakeLockfileParser.new(full_tree.values)) }
+
+  let(:top_level) do
+    [ dep("rails"), dep("sass-rails") ]
+  end
+
+  context "#potential_removals" do
+    it "returns an empty array if this dependency has no children deps" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.potential_removals("rack-test")
+
+      expect(target).to eq([])
+    end
+
+    it "doesn't return any child dependencies that are also top level dependencies themselves" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.potential_removals("sass-rails")
+
+      expect(target).not_to include(dep("rails"))
+    end
+
+    it "returns only the direct dependencies that aren't used by any other dep" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.potential_removals("rails")
+
+      expect(target).to include(dep("actionpack"))
+      expect(target).not_to include(dep("rack"))
+    end
+
+    it "returns only the indirect dependencies that aren't used by any other dep" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.potential_removals("rails")
+
+      expect(target).to include(dep("actionview"))
+      expect(target).not_to include(dep("rack-test"))
+    end
+  end
+
+  context "#still_used?" do
+    it "returns false if the candidate isn't even in the tree" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.still_used?("action-pants", deleted: "rails")
+
+      expect(target).to be_falsy
+    end
+
+    it "returns true if the candidate is used directly by another dep" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.still_used?("rack", deleted: "rails")
+
+      expect(target).to be_truthy
+    end
+
+    it "returns true if the candidate is used indirectly by another dep" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.still_used?("rack-test", deleted: "rails")
+
+      expect(target).to be_truthy
+    end
+
+    it "returns false if the candidate is only used directly by the deleted dep" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.still_used?("actionpack", deleted: "rails")
+
+      expect(target).to be_falsy
+    end
+
+    it "returns false if the candidate is only used indirectly by the deleted dep" do
+      remover = subject.new(tree, top_level)
+
+      target = remover.still_used?("actionview", deleted: "rails")
+
+      expect(target).to be_falsy
+    end
+  end
+end

data/spec/lib/bundler/stats/tree_spec.rb

@@ -0,0 +1,144 @@
+require 'bundler'
+require 'bundler/stats'
+
+describe Bundler::Stats::Tree do
+  subject { described_class }
+  let(:lock_path) { File.join(File.dirname(__FILE__), "../../../test_gemfile.lock") }
+  let(:parser) { Bundler::LockfileParser.new(File.read(lock_path)) }
+  let(:tree) { subject.new(lock_path) }
+
+  context "#new" do
+    it "initializes only with a parsed lockfile" do
+      expect { subject.new("whatever") }.to raise_error(ArgumentError)
+    end
+
+    it "initializes properly with the lockfile parser" do
+      expect { subject.new(parser) }.not_to raise_error
+    end
+  end
+
+  context "#first_level_dependencies" do
+    it "errors for non-existent dependencies" do
+      tree = subject.new(parser)
+
+      expect { tree.first_level_dependencies("none") }.to raise_error(ArgumentError)
+    end
+
+    it "returns empty array for bottom-level dependencies" do
+      tree = subject.new(parser)
+
+      target = tree.first_level_dependencies("depth-four")
+
+      expect(target.length).to eq(0)
+    end
+
+    it "returns the set of dependencies for second-level deps" do
+      tree = subject.new(parser)
+
+      target = tree.first_level_dependencies("depth-three")
+
+      expect(target.length).to eq(1)
+    end
+
+    it "does not recurse any further than the first level" do
+      tree = subject.new(parser)
+
+      target = tree.first_level_dependencies("depth-one")
+
+      expect(target.length).to eq(2)
+    end
+  end
+
+  context "#transitive_dependencies" do
+    it "errors for non-existent dependencies" do
+      tree = subject.new(parser)
+
+      expect { tree.transitive_dependencies("none") }.to raise_error(ArgumentError)
+    end
+
+    it "returns empty array for bottom-level dependencies" do
+      tree = subject.new(parser)
+
+      target = tree.transitive_dependencies("depth-four")
+
+      expect(target.length).to eq(0)
+    end
+
+    it "returns the set of dependencies for second-level deps" do
+      tree = subject.new(parser)
+
+      target = tree.transitive_dependencies("depth-three")
+
+      expect(target.length).to eq(1)
+    end
+
+    it "returns a recursive list of those dependencies" do
+      tree = subject.new(parser)
+
+      target = tree.transitive_dependencies("depth-one")
+
+      expect(target.length).to eq(3)
+    end
+  end
+
+  context "#summarize" do
+    it "is a hash with some keys" do
+      tree = subject.new(parser)
+
+      target = tree.summarize("depth-one")
+
+      expect(target).to be_a(Hash)
+    end
+
+    it "calls for other methods to do the actual work" do
+      tree = subject.new(parser)
+      allow(tree).to receive(:first_level_dependencies) { [] }
+      allow(tree).to receive(:transitive_dependencies) { [] }
+      allow(tree).to receive(:reverse_dependencies) { [] }
+
+      target = tree.summarize("depth-one")
+
+      expect(tree).to have_received(:first_level_dependencies)
+      expect(tree).to have_received(:transitive_dependencies)
+      expect(tree).to have_received(:reverse_dependencies)
+    end
+  end
+
+  context "#reverse_dependencies" do
+    it "returns nothing for a top-level dependency" do
+      tree = subject.new(parser)
+
+      target = tree.reverse_dependencies("depth-one")
+
+      expect(target).to be_a(Hash)
+      expect(target).to be_empty
+    end
+
+    it "returns the parent dependency for a second-level dep" do
+      tree = subject.new(parser)
+
+      target = tree.reverse_dependencies("depth-two")
+
+      expect(target).to be_a(Hash)
+      expect(target).to include("depth-one")
+    end
+  end
+
+  context "skip lists" do
+    it "still includes the skipped entry" do
+      tree = subject.new(parser, skiplist: ["depth-three"])
+
+      target = tree.transitive_dependencies("depth-one")
+
+      expect(target.map(&:name)).to include("depth-three")
+    end
+
+    it "stops processing the children of skipped entries" do
+      tree = subject.new(parser, skiplist: ["depth-three"])
+
+      target = tree.transitive_dependencies("depth-one")
+
+      expect(target.map(&:name)).not_to include("depth-four")
+    end
+  end
+end

data/spec/test_gemfile

@@ -0,0 +1,64 @@
+source 'https://rubygems.org'
+# ruby '2.1.0', engine: 'rbx', engine_version: '2.2.10'
+
+gem 'rails', '4.2.0'
+gem 'sass-rails', '~> 4.0.2'
+gem 'uglifier', '>= 1.3.0'
+gem 'coffee-rails', '~> 4.0.0'
+gem 'jquery-rails'
+gem 'turbolinks'
+gem 'jquery-turbolinks'
+gem 'jbuilder'
+gem 'bootstrap-sass'
+gem 'devise'
+gem 'haml-rails'
+gem 'pg'
+gem 'rolify'
+gem 'state_machine'
+gem 'gravatar_image_tag'
+gem 'puma', ">= 2.0"
+gem 'omniauth-github'
+gem 'activerecord-session_store'
+gem 'will_paginate'
+gem 'will_paginate-bootstrap'
+# gem 'rack-mini-profiler'
+gem 'dotenv'
+
+gem 'mail', '~> 2.5.4' # workaround for http://stackoverflow.com/questions/25984067/argumenterror-method-sort-given-0-expected-1-when-sending-a-confirmation
+
+group :development do
+  gem 'foreman'
+  gem 'quiet_assets'
+  gem 'rubocop'
+  gem 'rubocop-rspec'
+end
+
+group :development, :test do
+  gem 'factory_girl_rails'
+  gem 'pry-rails', require: false
+  gem 'rspec-rails'
+  gem 'poltergeist'
+
+  # other test deps
+  gem 'rake'
+  gem 'capybara'
+  gem 'cucumber-rails', require: false
+  gem 'database_cleaner', '1.0.1'
+  gem 'email_spec'
+  gem 'spring'
+  gem 'spring-commands-rspec' # since we're using rspec
+
+  # guard stuff
+  gem 'guard-bundler'
+  gem 'guard-rails'
+  gem 'guard-rspec'
+  gem 'guard-cucumber'
+  gem 'rb-fchange', :require=>false
+  gem 'rb-fsevent', :require=>false
+  gem 'rb-inotify', :require=>false
+end
+
+group :production do
+  gem 'rails_12factor'
+  gem 'newrelic_rpm'
+end

data/spec/test_gemfile.lock

@@ -0,0 +1,407 @@
+GEM
+  remote: https://rubygems.org/
+  specs:
+    depth-one (1.1.1)
+      depth-two (2.2.2)
+      depth-three (3.3.3)
+    depth-two (2.2.2)
+    depth-three (3.3.3)
+      depth-four (4.4.4)
+    depth-four (4.4.4)
+    actionmailer (4.2.0)
+      actionpack (= 4.2.0)
+      actionview (= 4.2.0)
+      activejob (= 4.2.0)
+      mail (~> 2.5, >= 2.5.4)
+      rails-dom-testing (~> 1.0, >= 1.0.5)
+    actionpack (4.2.0)
+      actionview (= 4.2.0)
+      activesupport (= 4.2.0)
+      rack (~> 1.6.0)
+      rack-test (~> 0.6.2)
+      rails-dom-testing (~> 1.0, >= 1.0.5)
+      rails-html-sanitizer (~> 1.0, >= 1.0.1)
+    actionview (4.2.0)
+      activesupport (= 4.2.0)
+      builder (~> 3.1)
+      erubis (~> 2.7.0)
+      rails-dom-testing (~> 1.0, >= 1.0.5)
+      rails-html-sanitizer (~> 1.0, >= 1.0.1)
+    activejob (4.2.0)
+      activesupport (= 4.2.0)
+      globalid (>= 0.3.0)
+    activemodel (4.2.0)
+      activesupport (= 4.2.0)
+      builder (~> 3.1)
+    activerecord (4.2.0)
+      activemodel (= 4.2.0)
+      activesupport (= 4.2.0)
+      arel (~> 6.0)
+    activerecord-session_store (0.1.1)
+      actionpack (>= 4.0.0, < 5)
+      activerecord (>= 4.0.0, < 5)
+      railties (>= 4.0.0, < 5)
+    activesupport (4.2.0)
+      i18n (~> 0.7)
+      json (~> 1.7, >= 1.7.7)
+      minitest (~> 5.1)
+      thread_safe (~> 0.3, >= 0.3.4)
+      tzinfo (~> 1.1)
+    addressable (2.3.8)
+    arel (6.0.3)
+    ast (2.1.0)
+    astrolabe (1.3.1)
+      parser (~> 2.2)
+    autoprefixer-rails (5.2.1.3)
+      execjs
+      json
+    bcrypt (3.1.10)
+    bootstrap-sass (3.3.5)
+      autoprefixer-rails (>= 5.0.0.1)
+      sass (>= 3.2.19)
+    builder (3.2.2)
+    capybara (2.5.0)
+      mime-types (>= 1.16)
+      nokogiri (>= 1.3.3)
+      rack (>= 1.0.0)
+      rack-test (>= 0.5.4)
+      xpath (~> 2.0)
+    cliver (0.3.2)
+    coderay (1.1.0)
+    coffee-rails (4.0.1)
+      coffee-script (>= 2.2.0)
+      railties (>= 4.0.0, < 5.0)
+    coffee-script (2.4.1)
+      coffee-script-source
+      execjs
+    coffee-script-source (1.9.1.1)
+    cucumber (1.3.20)
+      builder (>= 2.1.2)
+      diff-lcs (>= 1.1.3)
+      gherkin (~> 2.12)
+      multi_json (>= 1.7.5, < 2.0)
+      multi_test (>= 0.1.2)
+    cucumber-rails (1.4.2)
+      capybara (>= 1.1.2, < 3)
+      cucumber (>= 1.3.8, < 2)
+      mime-types (>= 1.16, < 3)
+      nokogiri (~> 1.5)
+      rails (>= 3, < 5)
+    database_cleaner (1.0.1)
+    devise (3.5.2)
+      bcrypt (~> 3.0)
+      orm_adapter (~> 0.1)
+      railties (>= 3.2.6, < 5)
+      responders
+      thread_safe (~> 0.1)
+      warden (~> 1.2.3)
+    diff-lcs (1.2.5)
+    dotenv (2.0.2)
+    email_spec (1.6.0)
+      launchy (~> 2.1)
+      mail (~> 2.2)
+    erubis (2.7.0)
+    execjs (2.6.0)
+    factory_girl (4.5.0)
+      activesupport (>= 3.0.0)
+    factory_girl_rails (4.5.0)
+      factory_girl (~> 4.5.0)
+      railties (>= 3.0.0)
+    faraday (0.9.1)
+      multipart-post (>= 1.2, < 3)
+    ffi (1.9.10)
+    foreman (0.78.0)
+      thor (~> 0.19.1)
+    formatador (0.2.5)
+    gherkin (2.12.2)
+      multi_json (~> 1.3)
+    globalid (0.3.6)
+      activesupport (>= 4.1.0)
+    gravatar_image_tag (1.2.0)
+    guard (2.13.0)
+      formatador (>= 0.2.4)
+      listen (>= 2.7, <= 4.0)
+      lumberjack (~> 1.0)
+      nenv (~> 0.1)
+      notiffany (~> 0.0)
+      pry (>= 0.9.12)
+      shellany (~> 0.0)
+      thor (>= 0.18.1)
+    guard-bundler (2.1.0)
+      bundler (~> 1.0)
+      guard (~> 2.2)
+      guard-compat (~> 1.1)
+    guard-compat (1.2.1)
+    guard-cucumber (1.5.4)
+      cucumber (>= 1.3.0)
+      guard-compat (~> 1.0)
+      nenv (~> 0.1)
+    guard-rails (0.7.1)
+      guard (~> 2.11)
+      guard-compat (~> 1.0)
+    guard-rspec (4.6.4)
+      guard (~> 2.1)
+      guard-compat (~> 1.1)
+      rspec (>= 2.99.0, < 4.0)
+    haml (4.0.7)
+      tilt
+    haml-rails (0.9.0)
+      actionpack (>= 4.0.1)
+      activesupport (>= 4.0.1)
+      haml (>= 4.0.6, < 5.0)
+      html2haml (>= 1.0.1)
+      railties (>= 4.0.1)
+    hashie (3.4.2)
+    hike (1.2.3)
+    html2haml (2.0.0)
+      erubis (~> 2.7.0)
+      haml (~> 4.0.0)
+      nokogiri (~> 1.6.0)
+      ruby_parser (~> 3.5)
+    i18n (0.7.0)
+    jbuilder (2.3.1)
+      activesupport (>= 3.0.0, < 5)
+      multi_json (~> 1.2)
+    jquery-rails (4.0.5)
+      rails-dom-testing (~> 1.0)
+      railties (>= 4.2.0)
+      thor (>= 0.14, < 2.0)
+    jquery-turbolinks (2.1.0)
+      railties (>= 3.1.0)
+      turbolinks
+    json (1.8.3)
+    jwt (1.5.1)
+    launchy (2.4.3)
+      addressable (~> 2.3)
+    listen (3.0.3)
+      rb-fsevent (>= 0.9.3)
+      rb-inotify (>= 0.9)
+    loofah (2.0.3)
+      nokogiri (>= 1.5.9)
+    lumberjack (1.0.9)
+    mail (2.5.4)
+      mime-types (~> 1.16)
+      treetop (~> 1.4.8)
+    method_source (0.8.2)
+    mime-types (1.25.1)
+    mini_portile (0.6.2)
+    minitest (5.8.0)
+    multi_json (1.11.2)
+    multi_test (0.1.2)
+    multi_xml (0.5.5)
+    multipart-post (2.0.0)
+    nenv (0.2.0)
+    newrelic_rpm (3.13.0.299)
+    nokogiri (1.6.6.2)
+      mini_portile (~> 0.6.0)
+    notiffany (0.0.7)
+      nenv (~> 0.1)
+      shellany (~> 0.0)
+    oauth2 (1.0.0)
+      faraday (>= 0.8, < 0.10)
+      jwt (~> 1.0)
+      multi_json (~> 1.3)
+      multi_xml (~> 0.5)
+      rack (~> 1.2)
+    omniauth (1.2.2)
+      hashie (>= 1.2, < 4)
+      rack (~> 1.0)
+    omniauth-github (1.1.2)
+      omniauth (~> 1.0)
+      omniauth-oauth2 (~> 1.1)
+    omniauth-oauth2 (1.3.1)
+      oauth2 (~> 1.0)
+      omniauth (~> 1.2)
+    orm_adapter (0.5.0)
+    parser (2.2.2.6)
+      ast (>= 1.1, < 3.0)
+    pg (0.18.2)
+    poltergeist (1.6.0)
+      capybara (~> 2.1)
+      cliver (~> 0.3.1)
+      multi_json (~> 1.0)
+      websocket-driver (>= 0.2.0)
+    polyglot (0.3.5)
+    powerpack (0.1.1)
+    pry (0.10.1)
+      coderay (~> 1.1.0)
+      method_source (~> 0.8.1)
+      slop (~> 3.4)
+    pry-rails (0.3.4)
+      pry (>= 0.9.10)
+    puma (2.13.4)
+    quiet_assets (1.1.0)
+      railties (>= 3.1, < 5.0)
+    rack (1.6.4)
+    rack-test (0.6.3)
+      rack (>= 1.0)
+    rails (4.2.0)
+      actionmailer (= 4.2.0)
+      actionpack (= 4.2.0)
+      actionview (= 4.2.0)
+      activejob (= 4.2.0)
+      activemodel (= 4.2.0)
+      activerecord (= 4.2.0)
+      activesupport (= 4.2.0)
+      bundler (>= 1.3.0, < 2.0)
+      railties (= 4.2.0)
+      sprockets-rails
+    rails-deprecated_sanitizer (1.0.3)
+      activesupport (>= 4.2.0.alpha)
+    rails-dom-testing (1.0.7)
+      activesupport (>= 4.2.0.beta, < 5.0)
+      nokogiri (~> 1.6.0)
+      rails-deprecated_sanitizer (>= 1.0.1)
+    rails-html-sanitizer (1.0.2)
+      loofah (~> 2.0)
+    rails_12factor (0.0.3)
+      rails_serve_static_assets
+      rails_stdout_logging
+    rails_serve_static_assets (0.0.4)
+    rails_stdout_logging (0.0.4)
+    railties (4.2.0)
+      actionpack (= 4.2.0)
+      activesupport (= 4.2.0)
+      rake (>= 0.8.7)
+      thor (>= 0.18.1, < 2.0)
+    rainbow (2.0.0)
+    rake (10.4.2)
+    rb-fchange (0.0.6)
+      ffi
+    rb-fsevent (0.9.5)
+    rb-inotify (0.9.5)
+      ffi (>= 0.5.0)
+    responders (2.1.0)
+      railties (>= 4.2.0, < 5)
+    rolify (4.1.1)
+    rspec (3.3.0)
+      rspec-core (~> 3.3.0)
+      rspec-expectations (~> 3.3.0)
+      rspec-mocks (~> 3.3.0)
+    rspec-core (3.3.2)
+      rspec-support (~> 3.3.0)
+    rspec-expectations (3.3.1)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.3.0)
+    rspec-mocks (3.3.2)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.3.0)
+    rspec-rails (3.3.3)
+      actionpack (>= 3.0, < 4.3)
+      activesupport (>= 3.0, < 4.3)
+      railties (>= 3.0, < 4.3)
+      rspec-core (~> 3.3.0)
+      rspec-expectations (~> 3.3.0)
+      rspec-mocks (~> 3.3.0)
+      rspec-support (~> 3.3.0)
+    rspec-support (3.3.0)
+    rubocop (0.33.0)
+      astrolabe (~> 1.3)
+      parser (>= 2.2.2.5, < 3.0)
+      powerpack (~> 0.1)
+      rainbow (>= 1.99.1, < 3.0)
+      ruby-progressbar (~> 1.4)
+    rubocop-rspec (1.3.0)
+    ruby-progressbar (1.7.5)
+    ruby_parser (3.7.1)
+      sexp_processor (~> 4.1)
+    sass (3.2.19)
+    sass-rails (4.0.5)
+      railties (>= 4.0.0, < 5.0)
+      sass (~> 3.2.2)
+      sprockets (~> 2.8, < 3.0)
+      sprockets-rails (~> 2.0)
+    sexp_processor (4.6.0)
+    shellany (0.0.1)
+    slop (3.6.0)
+    spring (1.3.6)
+    spring-commands-rspec (1.0.4)
+      spring (>= 0.9.1)
+    sprockets (2.12.4)
+      hike (~> 1.2)
+      multi_json (~> 1.0)
+      rack (~> 1.0)
+      tilt (~> 1.1, != 1.3.0)
+    sprockets-rails (2.3.2)
+      actionpack (>= 3.0)
+      activesupport (>= 3.0)
+      sprockets (>= 2.8, < 4.0)
+    state_machine (1.2.0)
+    thor (0.19.1)
+    thread_safe (0.3.5)
+    tilt (1.4.1)
+    treetop (1.4.15)
+      polyglot
+      polyglot (>= 0.3.1)
+    turbolinks (2.5.3)
+      coffee-rails
+    tzinfo (1.2.2)
+      thread_safe (~> 0.1)
+    uglifier (2.7.2)
+      execjs (>= 0.3.0)
+      json (>= 1.8.0)
+    warden (1.2.3)
+      rack (>= 1.0)
+    websocket-driver (0.6.2)
+      websocket-extensions (>= 0.1.0)
+    websocket-extensions (0.1.2)
+    will_paginate (3.0.7)
+    will_paginate-bootstrap (1.0.1)
+      will_paginate (>= 3.0.3)
+    xpath (2.0.0)
+      nokogiri (~> 1.3)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  activerecord-session_store
+  bootstrap-sass
+  capybara
+  coffee-rails (~> 4.0.0)
+  cucumber-rails
+  database_cleaner (= 1.0.1)
+  devise
+  dotenv
+  email_spec
+  factory_girl_rails
+  foreman
+  gravatar_image_tag
+  guard-bundler
+  guard-cucumber
+  guard-rails
+  guard-rspec
+  haml-rails
+  jbuilder
+  jquery-rails
+  jquery-turbolinks
+  mail (~> 2.5.4)
+  newrelic_rpm
+  omniauth-github
+  pg
+  poltergeist
+  pry-rails
+  puma (>= 2.0)
+  quiet_assets
+  rails (= 4.2.0)
+  rails_12factor
+  rake
+  rb-fchange
+  rb-fsevent
+  rb-inotify
+  rolify
+  rspec-rails
+  rubocop
+  rubocop-rspec
+  sass-rails (~> 4.0.2)
+  spring
+  spring-commands-rspec
+  state_machine
+  turbolinks
+  uglifier (>= 1.3.0)
+  will_paginate
+  will_paginate-bootstrap
+  depth-one
+  depth-two
+  depth-three
+  depth-four

metadata

@@ -0,0 +1,131 @@
+--- !ruby/object:Gem::Specification
+name: bundler-stats
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Joseph Mastey
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-04-10 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.9'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.9'
+- !ruby/object:Gem::Dependency
+  name: thor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.19'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.19'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '3.4'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '3.4'
+- !ruby/object:Gem::Dependency
+  name: guard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '2.13'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '2.13'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.10'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.10'
+description: Looks through your lockfile and tries to identify problematic use of
+  dependencies
+email: jmmastey@gmail.com
+executables:
+- bundle-stats
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- Guardfile
+- bin/bundle-stats
+- bundler-stats.gemspec
+- lib/bundler/stats.rb
+- lib/bundler/stats/calculator.rb
+- lib/bundler/stats/cli.rb
+- lib/bundler/stats/remover.rb
+- lib/bundler/stats/tree.rb
+- lib/bundler/stats/version.rb
+- spec/lib/bundler/stats/calculator_spec.rb
+- spec/lib/bundler/stats/remover_spec.rb
+- spec/lib/bundler/stats/tree_spec.rb
+- spec/test_gemfile
+- spec/test_gemfile.lock
+homepage: http://github.com/jmmastey/bundler-stats
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.0.14
+signing_key: 
+specification_version: 4
+summary: Dependency investigation for Bundler
+test_files: []