capistrano-bundle_audit 0.1.0 → 0.4.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/capistrano-bundle_audit.gemspec +3 -2
- data/lib/capistrano/bundle_audit/version.rb +1 -1
- data/lib/capistrano/tasks/bundle_audit.rake +5 -3
- metadata +25 -12
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
|
-
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
2
|
+
SHA256:
|
|
3
|
+
metadata.gz: 27cd72db6ebf66b373872b72a8e87362d3d8674abded82b96fef73185eebdf16
|
|
4
|
+
data.tar.gz: c432b42cac41cf4742b9ac0bad2a50da7cf13f868b42655efd73f674047643b9
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 61ca67bf6418d1df1120eb1c51626506bf461931becab3e280f59169dd8b84fd49aa2e2fc27808ef0e64133120da371334e6b6f5a36e5f6165f4ae8878161b9b
|
|
7
|
+
data.tar.gz: 8095065fab426243284fabc367e481382651eb307d60f087c01f1be96afc019274f1bc99af6401ba5266b660c8d83fed9b2e5733895771770ab7f4e3de42cd5e
|
|
@@ -18,8 +18,9 @@ Gem::Specification.new do |spec|
|
|
|
18
18
|
spec.require_paths = ["lib"]
|
|
19
19
|
|
|
20
20
|
spec.add_dependency "capistrano", "~> 3.0"
|
|
21
|
+
spec.add_dependency 'capistrano-bundler', ">= 1.4"
|
|
21
22
|
spec.add_dependency "bundler-audit", "~> 0.5"
|
|
22
23
|
|
|
23
|
-
spec.add_development_dependency "bundler", "
|
|
24
|
-
spec.add_development_dependency "rake", "
|
|
24
|
+
spec.add_development_dependency "bundler", ">= 1.6"
|
|
25
|
+
spec.add_development_dependency "rake", ">= 10.0"
|
|
25
26
|
end
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
require 'bundler'
|
|
1
2
|
require 'shellwords'
|
|
2
3
|
require 'tmpdir'
|
|
3
4
|
|
|
@@ -5,7 +6,8 @@ namespace :deploy do
|
|
|
5
6
|
namespace :check do
|
|
6
7
|
desc "Audit the Gemfile.lock for known vulnerabilities"
|
|
7
8
|
task :bundle_audit do
|
|
8
|
-
|
|
9
|
+
|
|
10
|
+
on primary(:app), in: :sequence do |host|
|
|
9
11
|
|
|
10
12
|
# Download the relevant files and run bundle-audit on them locally
|
|
11
13
|
Dir.mktmpdir do |dir|
|
|
@@ -22,7 +24,7 @@ namespace :deploy do
|
|
|
22
24
|
# bundle-audit includes failures for both gem vulnerabilities
|
|
23
25
|
# and insecure gem sources, and offers no way to distinguish those cases.
|
|
24
26
|
# unfortunately, we only want to fail when vulnerable gems are required.
|
|
25
|
-
# This should only fail if there is a bundle-audit output AND it has
|
|
27
|
+
# This should only fail if there is a bundle-audit output AND it has
|
|
26
28
|
# a solution available to upgrade. If no solution is available deploy
|
|
27
29
|
# will still be allowed.
|
|
28
30
|
if bundle_audit_output =~ /Solution: upgrade to/
|
|
@@ -39,7 +41,7 @@ namespace :deploy do
|
|
|
39
41
|
end
|
|
40
42
|
end
|
|
41
43
|
|
|
42
|
-
after '
|
|
44
|
+
after 'bundler:install', 'deploy:check:bundle_audit' unless ENV['SKIP_BUNDLE_AUDIT']
|
|
43
45
|
end
|
|
44
46
|
|
|
45
47
|
namespace :load do
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: capistrano-bundle_audit
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.4.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Chris Beer
|
|
8
|
-
autorequire:
|
|
8
|
+
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2021-03-01 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: capistrano
|
|
@@ -24,6 +24,20 @@ dependencies:
|
|
|
24
24
|
- - "~>"
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
26
|
version: '3.0'
|
|
27
|
+
- !ruby/object:Gem::Dependency
|
|
28
|
+
name: capistrano-bundler
|
|
29
|
+
requirement: !ruby/object:Gem::Requirement
|
|
30
|
+
requirements:
|
|
31
|
+
- - ">="
|
|
32
|
+
- !ruby/object:Gem::Version
|
|
33
|
+
version: '1.4'
|
|
34
|
+
type: :runtime
|
|
35
|
+
prerelease: false
|
|
36
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
37
|
+
requirements:
|
|
38
|
+
- - ">="
|
|
39
|
+
- !ruby/object:Gem::Version
|
|
40
|
+
version: '1.4'
|
|
27
41
|
- !ruby/object:Gem::Dependency
|
|
28
42
|
name: bundler-audit
|
|
29
43
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -42,31 +56,31 @@ dependencies:
|
|
|
42
56
|
name: bundler
|
|
43
57
|
requirement: !ruby/object:Gem::Requirement
|
|
44
58
|
requirements:
|
|
45
|
-
- - "
|
|
59
|
+
- - ">="
|
|
46
60
|
- !ruby/object:Gem::Version
|
|
47
61
|
version: '1.6'
|
|
48
62
|
type: :development
|
|
49
63
|
prerelease: false
|
|
50
64
|
version_requirements: !ruby/object:Gem::Requirement
|
|
51
65
|
requirements:
|
|
52
|
-
- - "
|
|
66
|
+
- - ">="
|
|
53
67
|
- !ruby/object:Gem::Version
|
|
54
68
|
version: '1.6'
|
|
55
69
|
- !ruby/object:Gem::Dependency
|
|
56
70
|
name: rake
|
|
57
71
|
requirement: !ruby/object:Gem::Requirement
|
|
58
72
|
requirements:
|
|
59
|
-
- - "
|
|
73
|
+
- - ">="
|
|
60
74
|
- !ruby/object:Gem::Version
|
|
61
75
|
version: '10.0'
|
|
62
76
|
type: :development
|
|
63
77
|
prerelease: false
|
|
64
78
|
version_requirements: !ruby/object:Gem::Requirement
|
|
65
79
|
requirements:
|
|
66
|
-
- - "
|
|
80
|
+
- - ">="
|
|
67
81
|
- !ruby/object:Gem::Version
|
|
68
82
|
version: '10.0'
|
|
69
|
-
description:
|
|
83
|
+
description:
|
|
70
84
|
email:
|
|
71
85
|
- cabeer@stanford.edu
|
|
72
86
|
executables: []
|
|
@@ -86,7 +100,7 @@ homepage: ''
|
|
|
86
100
|
licenses:
|
|
87
101
|
- Apache 2
|
|
88
102
|
metadata: {}
|
|
89
|
-
post_install_message:
|
|
103
|
+
post_install_message:
|
|
90
104
|
rdoc_options: []
|
|
91
105
|
require_paths:
|
|
92
106
|
- lib
|
|
@@ -101,9 +115,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
101
115
|
- !ruby/object:Gem::Version
|
|
102
116
|
version: '0'
|
|
103
117
|
requirements: []
|
|
104
|
-
|
|
105
|
-
|
|
106
|
-
signing_key:
|
|
118
|
+
rubygems_version: 3.2.3
|
|
119
|
+
signing_key:
|
|
107
120
|
specification_version: 4
|
|
108
121
|
summary: Audit a project's gem dependencies before deployment
|
|
109
122
|
test_files: []
|