RubyGems - capistrano-bundle_audit - Versions diffs - 0.0.3 → 0.0.4 - Mend

capistrano-bundle_audit 0.0.3 → 0.0.4

Files changed (4) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 8d3a3a901717f79d9080dee97f2c95c1a7f7caea
-  data.tar.gz: ecaa49ed99b0543bee2ae57c9dcdafc921c00412
+  metadata.gz: 23384e1c5777c2351cf90b0fc1b83d85dc88dc15
+  data.tar.gz: 906873a8fb48257d58635502b714f61d7add24d4
 SHA512:
-  metadata.gz: 56b899afe426b298c4b150d75214e5df47b2b5cbe771d9a713a7ee0993a6ac8300e26a54d801bb2cfba06a26f94a87c13f53f99a90febcb6e851b6ca6c305121
-  data.tar.gz: 2ebfb880fe8a8182f95a8a0c22e045db5d1d2cfcee7cd840c636d1b2cf7bff4671b4b7ac7ab9cc91da0671f0aae0fe91fe74707421be83c16146028a608fda33
+  metadata.gz: 4630ced90db7ce3a5cc2faeb9208ffefa50c436cde41f39d8cc6d646d157d8032284755574dfed612028206b4d679d281963107edbdf854e039ad998cbafecc9
+  data.tar.gz: 6d4e76a4448f7d605f1777c73bc817500e90e39abe8ab0f7973a023bab3afeb95c4dd2b69db0c4dbaa66dfb640720f9fb691202664024cf3e5c13bfec7176e8a

data/lib/capistrano/bundle_audit/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Capistrano
   module BundleAudit
-    VERSION = "0.0.3"
+    VERSION = "0.0.4"
   end
 end

data/lib/capistrano/tasks/bundle_audit.rake CHANGED Viewed

@@ -22,7 +22,10 @@ namespace :deploy do
               # bundle-audit includes failures for both gem vulnerabilities
               # and insecure gem sources, and offers no way to distinguish those cases.
               # unfortunately, we only want to fail when vulnerable gems are required.
-              if bundle_audit_output =~ /Name:/
+              # This should only fail if there is a bundle-audit output AND it has
+              # a solution available to upgrade. If no solution is available deploy
+              # will still be allowed.
+              if bundle_audit_output =~ /Solution: upgrade to/
                 fail "Bundle audit failed; update your vulnerable dependencies before deploying"
               end
             end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: capistrano-bundle_audit
 version: !ruby/object:Gem::Version
-  version: 0.0.3
+  version: 0.0.4
 platform: ruby
 authors:
 - Chris Beer
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2014-09-25 00:00:00.000000000 Z
+date: 2015-01-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: capistrano
@@ -102,7 +102,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.2.2
+rubygems_version: 2.4.5
 signing_key:
 specification_version: 4
 summary: Audit a project's gem dependencies before deployment