bundler_audit_notifier 0.0.3 → 0.0.8

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. checksums.yaml +4 -4
  2. data/app/controllers/bundler_audit_issues_controller.rb +18 -0
  3. data/app/views/bundler_audit_issues_mailer/vulnerability_email.html.erb +1 -1
  4. data/lib/bundler_audit_notifier.rb +1 -0
  5. data/lib/generators/bundler_audit_notifier/bundler_audit_notifier_generator.rb +1 -1
  6. metadata +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 5fa81b767c13971152a6a57b0216df1cc2f1376f22e39f6e05eb331c63b72238
4
- data.tar.gz: a2b9889413309bd81c7498e5ce5f7b7c21713de7283c5254541b350f319b51f1
3
+ metadata.gz: 459ffda5725eef00038a050640aec90b2be3c784e4768b82fa80c8b767839889
4
+ data.tar.gz: aa07a50baae00da87df16f6996e54ed5d4bf13a6d4e36dbccb59122194cb184f
5
5
  SHA512:
6
- metadata.gz: f2e5e1fd334bdbb48779afc68607181f7b63903203c416b2f9c4fa94a26872fb557c17bf60de598cfceded8a2aad63e944d847154eed7ca93ced62092e2a644b
7
- data.tar.gz: 1905425df58f5782fdd0fe80c0cf1aaf8642bda6e8060f31e65ee2f359c0754821ac7fc554f4baadcb7b2573bbffb2f85e0c1a59780a794d0199275f628383e1
6
+ metadata.gz: 3794240d3224bfc795d797226dce784b051265668e79c86f9c66f54436cf63500068b24dddf9e0c708a1186ad8d517b555b5a7325c92a7e47d91cf730f5155e5
7
+ data.tar.gz: 698e7fc2cc5ecbbb4b689cca13df44b09e9fe21970825fa9e935886bf0a2e4227368a4cc5c7b5bc54c8ae41614b2b0c69a9d74cbf2d8a758d6b9f0f0df0c2848
data/app/controllers/bundler_audit_issues_controller.rb CHANGED
@@ -1,13 +1,31 @@
1
1
  class BundlerAuditIssuesController < ActionController::Base
2
+ before_action :authenticate, only: [:ignore]
3
+
2
4
  def ignore
3
5
  @bundler_audit_issue = BundlerAuditIssue.where(token: params[:token]).first
4
6
  @bundler_audit_issue.ignore = true
7
+ @bundler_audit_issue.token = nil
5
8
  if @bundler_audit_issue.save!
6
9
  render :ignore
7
10
  end
8
11
  end
12
+
9
13
  private
10
14
 
15
+ def authenticate
16
+ if params[:token].present?
17
+ bundler_audit_issue = BundlerAuditIssue.where(token: params[:token]).first
18
+ if bundler_audit_issue
19
+ ::Rails.logger.info("Authorized accesss to api for bundler audit issue: #{params[:token]}")
20
+ return true
21
+ else
22
+ ::Rails.logger.warn("Unauthorized accesss to api for bundler audit issue: #{params[:token]}")
23
+ head :unauthorized
24
+ return false
25
+ end
26
+ end
27
+ end
28
+
11
29
  def bundler_audit_issue_params
12
30
  params.require(:bundler_audit_issue).permit(:name, :version, :advisory, :token, :criticality, :url, :title, :solution, :ignore)
13
31
  end
data/app/views/bundler_audit_issues_mailer/vulnerability_email.html.erb CHANGED
@@ -5,7 +5,7 @@
5
5
  </head>
6
6
  <body>
7
7
  <h1>Vulnerabilities: </h1>
8
- <%= @vulnerabilities.each do |line| %>
8
+ <% @vulnerabilities.each do |line| %>
9
9
  <ul>
10
10
  <li> Name: <%= line[:name].to_s.html_safe %></li>
11
11
  <li> Version: <%= line[:version].to_s.html_safe %></li>
data/lib/bundler_audit_notifier.rb CHANGED
@@ -2,6 +2,7 @@
2
2
  require "active_support"
3
3
  require 'rake'
4
4
  require "bundler_audit_notifier/engine"
5
+ require "auditer_script"
5
6
 
6
7
  module BundlerAuditNotifier
7
8
  def self.audit_parse
data/lib/generators/bundler_audit_notifier/bundler_audit_notifier_generator.rb CHANGED
@@ -1,4 +1,4 @@
1
- # Run this command to generate migration: rails generate bundler_audit_notifier
1
+ # Run this command to generate migration: rails generate bundler_audit_notifier:bundler_audit_notifier
2
2
  require "rails/generators/active_record"
3
3
  require "rails/generators"
4
4
  module BundlerAuditNotifier
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: bundler_audit_notifier
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.0.3
4
+ version: 0.0.8
5
5
  platform: ruby
6
6
  authors:
7
7
  - Marley Stipich