bundler_audit_notifier 0.0.2 → 0.0.7
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/app/controllers/bundler_audit_issues_controller.rb +17 -0
- data/app/views/bundler_audit_issues_mailer/vulnerability_email.html.erb +1 -1
- data/lib/bundler_audit_notifier.rb +1 -0
- data/lib/generators/bundler_audit_notifier/bundler_audit_notifier_generator.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b03380d456fbced6f980ed440aba6dab76c1ff64df758c9c01a027b853dba4fe
|
|
4
|
+
data.tar.gz: d217dcd33669a7a8c4bf137d41fb7bbc9885dcf37af7f7b3b0c6c86d74d5db1f
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 0b1f9056a5307b5e519ffa0356cabc9846362167dcff090859c788752cb2efc782b99aaa5f8a2ea6a6cf906d5ef385d2581d5bc6d9bd8642f55123999e4f9091
|
|
7
|
+
data.tar.gz: 0e49a1985f9728f9da180045a481b91910f9ed9fb1bd78bc5f73f741e928f565e159845da5ae6d11029d7ceec5f13519064f0539f57204a7933eddce5e0adf4d
|
|
@@ -1,4 +1,6 @@
|
|
|
1
1
|
class BundlerAuditIssuesController < ActionController::Base
|
|
2
|
+
before_action :authenticate, only: [:ignore]
|
|
3
|
+
|
|
2
4
|
def ignore
|
|
3
5
|
@bundler_audit_issue = BundlerAuditIssue.where(token: params[:token]).first
|
|
4
6
|
@bundler_audit_issue.ignore = true
|
|
@@ -6,8 +8,23 @@ class BundlerAuditIssuesController < ActionController::Base
|
|
|
6
8
|
render :ignore
|
|
7
9
|
end
|
|
8
10
|
end
|
|
11
|
+
|
|
9
12
|
private
|
|
10
13
|
|
|
14
|
+
def authenticate
|
|
15
|
+
if params[:token].present?
|
|
16
|
+
bundler_audit_issue = BundlerAuditIssue.where(token: params[:token]).first
|
|
17
|
+
if bundler_audit_issue
|
|
18
|
+
::Rails.logger.info("Authorized accesss to api for bundler audit issue: #{params[:token]}")
|
|
19
|
+
return true
|
|
20
|
+
else
|
|
21
|
+
::Rails.logger.warn("Unauthorized accesss to api for bundler audit issue: #{params[:token]}")
|
|
22
|
+
head :unauthorized
|
|
23
|
+
return false
|
|
24
|
+
end
|
|
25
|
+
end
|
|
26
|
+
end
|
|
27
|
+
|
|
11
28
|
def bundler_audit_issue_params
|
|
12
29
|
params.require(:bundler_audit_issue).permit(:name, :version, :advisory, :token, :criticality, :url, :title, :solution, :ignore)
|
|
13
30
|
end
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
# Run this command to generate migration: rails generate bundler_audit_notifier
|
|
1
|
+
# Run this command to generate migration: rails generate bundler_audit_notifier:bundler_audit_notifier
|
|
2
2
|
require "rails/generators/active_record"
|
|
3
3
|
require "rails/generators"
|
|
4
4
|
module BundlerAuditNotifier
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: bundler_audit_notifier
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.0.
|
|
4
|
+
version: 0.0.7
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Marley Stipich
|
|
@@ -170,7 +170,7 @@ metadata: {}
|
|
|
170
170
|
post_install_message:
|
|
171
171
|
rdoc_options: []
|
|
172
172
|
require_paths:
|
|
173
|
-
-
|
|
173
|
+
- lib
|
|
174
174
|
required_ruby_version: !ruby/object:Gem::Requirement
|
|
175
175
|
requirements:
|
|
176
176
|
- - ">="
|