bundler_signature_check 0.1.337
Sign up to get free protection for your applications and to get access to all the features.
- data/.gitignore +17 -0
- data/Gemfile +3 -0
- data/LICENSE.txt +22 -0
- data/README.md +17 -0
- data/Rakefile +1 -0
- data/bin/bundler_signature_check +45 -0
- data/bundler_signature_check.gemspec +26 -0
- data/lib/bundler_signature_check/version.rb +3 -0
- data/lib/bundler_signature_check.rb +5 -0
- data.tar.gz.sig +0 -0
- metadata +116 -0
- metadata.gz.sig +0 -0
data/.gitignore
ADDED
data/Gemfile
ADDED
data/LICENSE.txt
ADDED
@@ -0,0 +1,22 @@
|
|
1
|
+
Copyright (c) 2013, BBA Inc
|
2
|
+
|
3
|
+
MIT License
|
4
|
+
|
5
|
+
Permission is hereby granted, free of charge, to any person obtaining
|
6
|
+
a copy of this software and associated documentation files (the
|
7
|
+
"Software"), to deal in the Software without restriction, including
|
8
|
+
without limitation the rights to use, copy, modify, merge, publish,
|
9
|
+
distribute, sublicense, and/or sell copies of the Software, and to
|
10
|
+
permit persons to whom the Software is furnished to do so, subject to
|
11
|
+
the following conditions:
|
12
|
+
|
13
|
+
The above copyright notice and this permission notice shall be
|
14
|
+
included in all copies or substantial portions of the Software.
|
15
|
+
|
16
|
+
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
|
17
|
+
EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
|
18
|
+
MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
|
19
|
+
NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
|
20
|
+
LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
|
21
|
+
OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
|
22
|
+
WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
|
data/README.md
ADDED
@@ -0,0 +1,17 @@
|
|
1
|
+
# bundler_signature_check
|
2
|
+
|
3
|
+
Figure out which gems are signed given a Gemfile.lock, and tells you which --trust-policy is safe to use with bundler.
|
4
|
+
|
5
|
+
## Usage
|
6
|
+
|
7
|
+
Install:
|
8
|
+
|
9
|
+
$ gem install bundler_signature_check
|
10
|
+
|
11
|
+
Run (in the same directory as your Gemfile.lock):
|
12
|
+
|
13
|
+
$ bundler_signature_check
|
14
|
+
|
15
|
+
## Contributing
|
16
|
+
|
17
|
+
Contributions are welcome - fork and send a pull request.
|
data/Rakefile
ADDED
@@ -0,0 +1 @@
|
|
1
|
+
require "bundler/gem_tasks"
|
@@ -0,0 +1,45 @@
|
|
1
|
+
#!/usr/bin/env ruby
|
2
|
+
|
3
|
+
require 'rubygems'
|
4
|
+
require 'rubygems/security'
|
5
|
+
require 'bundler'
|
6
|
+
|
7
|
+
results = []
|
8
|
+
|
9
|
+
policies = Gem::Security::Policies.keys.reverse
|
10
|
+
|
11
|
+
runtime = Bundler.load
|
12
|
+
runtime.specs.each do |spec|
|
13
|
+
gem_path = "#{Bundler.rubygems.gem_dir}/cache/#{spec.full_name}.gem"
|
14
|
+
if !File.exists?(gem_path)
|
15
|
+
STDERR.puts "WARNING: #{spec.full_name} does not seem to be cached - maybe a git gem? Or you need to run `bundle install`"
|
16
|
+
results << {name: spec.full_name, policy: 'Unknown', warning: 'Gem missing from cache'}
|
17
|
+
else
|
18
|
+
last_error = nil
|
19
|
+
policies.each do |policy|
|
20
|
+
begin
|
21
|
+
gem = Bundler.rubygems.gem_from_path(gem_path, policy)
|
22
|
+
results << {name: spec.full_name, policy: policy, warning: last_error}
|
23
|
+
break
|
24
|
+
rescue Exception => e
|
25
|
+
last_error = e.message
|
26
|
+
end
|
27
|
+
end
|
28
|
+
end
|
29
|
+
end
|
30
|
+
|
31
|
+
# Pivot the results by security policy
|
32
|
+
(policies + ['Unknown']).each do |policy|
|
33
|
+
gems_in_policy = results.find_all { |r| r[:policy] == policy}
|
34
|
+
if gems_in_policy.any?
|
35
|
+
STDOUT.puts "#{policy}:"
|
36
|
+
gems_in_policy.each do |gem|
|
37
|
+
if gem[:warning]
|
38
|
+
STDOUT.puts " #{gem[:name]}: #{gem[:warning]}"
|
39
|
+
else
|
40
|
+
STDOUT.puts " #{gem[:name]}"
|
41
|
+
end
|
42
|
+
end
|
43
|
+
STDOUT.puts
|
44
|
+
end
|
45
|
+
end
|
@@ -0,0 +1,26 @@
|
|
1
|
+
# coding: utf-8
|
2
|
+
lib = File.expand_path('../lib', __FILE__)
|
3
|
+
$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
|
4
|
+
require 'bundler_signature_check/version'
|
5
|
+
|
6
|
+
Gem::Specification.new do |spec|
|
7
|
+
spec.name = "bundler_signature_check"
|
8
|
+
spec.version = BundlerSignatureCheck::VERSION
|
9
|
+
spec.authors = ["Bradley Buda"]
|
10
|
+
spec.email = ["brad@meldium.com"]
|
11
|
+
spec.description = %q{Figure out which gems are signed given a Gemfile.lock}
|
12
|
+
spec.summary = %q{Helps you determine which --trust-policy is safe to use with bundler}
|
13
|
+
spec.homepage = "https://github.com/meldium/bundler_signature_check"
|
14
|
+
spec.license = "MIT"
|
15
|
+
|
16
|
+
spec.files = `git ls-files`.split($/)
|
17
|
+
spec.executables = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
|
18
|
+
spec.test_files = spec.files.grep(%r{^(test|spec|features)/})
|
19
|
+
spec.require_paths = ["lib"]
|
20
|
+
|
21
|
+
spec.cert_chain = ['certs/brad-meldium-public.pem']
|
22
|
+
spec.signing_key = File.expand_path("~/.gem/brad-meldium-private.pem") if $0 =~ /gem\z/
|
23
|
+
|
24
|
+
spec.add_dependency "bundler", "~> 1.3"
|
25
|
+
spec.add_development_dependency "rake"
|
26
|
+
end
|
data.tar.gz.sig
ADDED
Binary file
|
metadata
ADDED
@@ -0,0 +1,116 @@
|
|
1
|
+
--- !ruby/object:Gem::Specification
|
2
|
+
name: bundler_signature_check
|
3
|
+
version: !ruby/object:Gem::Version
|
4
|
+
version: 0.1.337
|
5
|
+
prerelease:
|
6
|
+
platform: ruby
|
7
|
+
authors:
|
8
|
+
- Bradley Buda
|
9
|
+
autorequire:
|
10
|
+
bindir: bin
|
11
|
+
cert_chain:
|
12
|
+
- !binary |-
|
13
|
+
LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSURMakNDQWhhZ0F3SUJB
|
14
|
+
Z0lCQURBTkJna3Foa2lHOXcwQkFRVUZBREE5TVEwd0N3WURWUVFEREFSaWNt
|
15
|
+
RmsKTVJjd0ZRWUtDWkltaVpQeUxHUUJHUllIYldWc1pHbDFiVEVUTUJFR0Nn
|
16
|
+
bVNKb21UOGl4a0FSa1dBMk52YlRBZQpGdzB4TXpBek1ETXlNekV6TVRaYUZ3
|
17
|
+
MHhOREF6TURNeU16RXpNVFphTUQweERUQUxCZ05WQkFNTUJHSnlZV1F4CkZ6
|
18
|
+
QVZCZ29Ka2lhSmsvSXNaQUVaRmdkdFpXeGthWFZ0TVJNd0VRWUtDWkltaVpQ
|
19
|
+
eUxHUUJHUllEWTI5dE1JSUIKSWpBTkJna3Foa2lHOXcwQkFRRUZBQU9DQVE4
|
20
|
+
QU1JSUJDZ0tDQVFFQXRHOE0vaFZPejh6S2plVHovREFwZUh2Ngo5YjN4Y0lR
|
21
|
+
bUlhWjU2ZHpYYkZwdm5ZdVNybWh3WHFxL20vQ3haUTVNekM4UVN5dGV5cncz
|
22
|
+
T2k4aGRqM1picUNECnZEMTgreVA1ckRRcmtSTFpTdmNVL09mV1ZrOHo5T0VE
|
23
|
+
cnR0Vms4VlFxTmVNU3QvTGpxSWpYWjBCSTdJbkxSMjgKQndJOHBjcWhrbFJV
|
24
|
+
MXd3ZzdGaXNQWnE0THU2TE5vTWxXMjlUY203VEFxckRjM1dTN2xyL3IySmdI
|
25
|
+
ZDhIU283Nwp2Yk4vVFJSWVJpZmdvc2VzRGhiakgwZ3ZYaUtib09NaGxpRlZC
|
26
|
+
QWxJaGpxSEIwUjllUmc2a0dJbnJLZWFjdndtCiswM2ZIclNmM3JWMVkyUGVz
|
27
|
+
SHJISkhxcnZjNVBxekpTS0FYRmhyZ0Y4V3JEa3g2NWMwUENXSmxKRG9CZ25R
|
28
|
+
SUQKQVFBQm96a3dOekFKQmdOVkhSTUVBakFBTUIwR0ExVWREZ1FXQkJTTFRD
|
29
|
+
S3M2dnNZamtzc0Z6Ynl4R1JESG1YdwpwREFMQmdOVkhROEVCQU1DQkxBd0RR
|
30
|
+
WUpLb1pJaHZjTkFRRUZCUUFEZ2dFQkFCc1ZGY1c3SUNZQ1phVHJVUXJXCjhs
|
31
|
+
SEtOOG56T0RaamZBeWxXUnhxNWRtTjNvNDhOL0pnZy91SXBOdkZoclNUeDRK
|
32
|
+
aExvaVp1c0pjQXRFeWQ3UmoKem1FTUx1Y3JCbFdLMmhsNm0raGNMZFlkc1M4
|
33
|
+
L09jWlF3UlhZd2FJVmVQSTFsSHRnSXAwd1RjZDBXZnRwVEVLeAo2dGRCL1Zw
|
34
|
+
Y0MxZTBYUTVJbVc0V1J1R1Q5alhjS3AyRElsWnJyQWNwNXFBSi9iazNXaTh1
|
35
|
+
bjVxY0JOYWV0RFhjCi9SMkFoTHd3SzIwZFlCREZuVmVCWTJTQTV1bG40Zkg3
|
36
|
+
eGt5WVJFMWRoK1l4dy9CK2xaWERrSjBUVENCUWpZRjQKMHdoSi81OWljS2Jn
|
37
|
+
WFFqUEp1S21tZXNzcVR1REtaRUhxeFp2U3RROE1lblFidWVTWVNzaWgrdG1k
|
38
|
+
YVJDNW1UWApIZUU9Ci0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0K
|
39
|
+
date: 2013-03-03 00:00:00.000000000 Z
|
40
|
+
dependencies:
|
41
|
+
- !ruby/object:Gem::Dependency
|
42
|
+
name: bundler
|
43
|
+
requirement: !ruby/object:Gem::Requirement
|
44
|
+
none: false
|
45
|
+
requirements:
|
46
|
+
- - ~>
|
47
|
+
- !ruby/object:Gem::Version
|
48
|
+
version: '1.3'
|
49
|
+
type: :runtime
|
50
|
+
prerelease: false
|
51
|
+
version_requirements: !ruby/object:Gem::Requirement
|
52
|
+
none: false
|
53
|
+
requirements:
|
54
|
+
- - ~>
|
55
|
+
- !ruby/object:Gem::Version
|
56
|
+
version: '1.3'
|
57
|
+
- !ruby/object:Gem::Dependency
|
58
|
+
name: rake
|
59
|
+
requirement: !ruby/object:Gem::Requirement
|
60
|
+
none: false
|
61
|
+
requirements:
|
62
|
+
- - ! '>='
|
63
|
+
- !ruby/object:Gem::Version
|
64
|
+
version: '0'
|
65
|
+
type: :development
|
66
|
+
prerelease: false
|
67
|
+
version_requirements: !ruby/object:Gem::Requirement
|
68
|
+
none: false
|
69
|
+
requirements:
|
70
|
+
- - ! '>='
|
71
|
+
- !ruby/object:Gem::Version
|
72
|
+
version: '0'
|
73
|
+
description: Figure out which gems are signed given a Gemfile.lock
|
74
|
+
email:
|
75
|
+
- brad@meldium.com
|
76
|
+
executables:
|
77
|
+
- bundler_signature_check
|
78
|
+
extensions: []
|
79
|
+
extra_rdoc_files: []
|
80
|
+
files:
|
81
|
+
- .gitignore
|
82
|
+
- Gemfile
|
83
|
+
- LICENSE.txt
|
84
|
+
- README.md
|
85
|
+
- Rakefile
|
86
|
+
- bin/bundler_signature_check
|
87
|
+
- bundler_signature_check.gemspec
|
88
|
+
- lib/bundler_signature_check.rb
|
89
|
+
- lib/bundler_signature_check/version.rb
|
90
|
+
homepage: https://github.com/meldium/bundler_signature_check
|
91
|
+
licenses:
|
92
|
+
- MIT
|
93
|
+
post_install_message:
|
94
|
+
rdoc_options: []
|
95
|
+
require_paths:
|
96
|
+
- lib
|
97
|
+
required_ruby_version: !ruby/object:Gem::Requirement
|
98
|
+
none: false
|
99
|
+
requirements:
|
100
|
+
- - ! '>='
|
101
|
+
- !ruby/object:Gem::Version
|
102
|
+
version: '0'
|
103
|
+
required_rubygems_version: !ruby/object:Gem::Requirement
|
104
|
+
none: false
|
105
|
+
requirements:
|
106
|
+
- - ! '>='
|
107
|
+
- !ruby/object:Gem::Version
|
108
|
+
version: '0'
|
109
|
+
requirements: []
|
110
|
+
rubyforge_project:
|
111
|
+
rubygems_version: 1.8.23
|
112
|
+
signing_key:
|
113
|
+
specification_version: 3
|
114
|
+
summary: Helps you determine which --trust-policy is safe to use with bundler
|
115
|
+
test_files: []
|
116
|
+
has_rdoc:
|
metadata.gz.sig
ADDED
Binary file
|