capistrano-bundle_audit 0.0.4 → 0.0.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/capistrano/bundle_audit/version.rb +1 -1
  3. data/lib/capistrano/tasks/bundle_audit.rake +9 -1
  4. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 23384e1c5777c2351cf90b0fc1b83d85dc88dc15
4
- data.tar.gz: 906873a8fb48257d58635502b714f61d7add24d4
3
+ metadata.gz: ca42a3f923f09faf37b1e4cb274d53524176a3ca
4
+ data.tar.gz: 3d3132fb283a947522ec726cdc90b8df7bb76ed0
5
5
  SHA512:
6
- metadata.gz: 4630ced90db7ce3a5cc2faeb9208ffefa50c436cde41f39d8cc6d646d157d8032284755574dfed612028206b4d679d281963107edbdf854e039ad998cbafecc9
7
- data.tar.gz: 6d4e76a4448f7d605f1777c73bc817500e90e39abe8ab0f7973a023bab3afeb95c4dd2b69db0c4dbaa66dfb640720f9fb691202664024cf3e5c13bfec7176e8a
6
+ metadata.gz: cf4b39f01a537d92fbd525db06ba6ae989566c6787d71a7d7777ff7d197a9d015dd77b90860ae665e008bc25f16d1c5fb1d3d6aa1353ba040b3701f691368e72
7
+ data.tar.gz: 2a070fc5abcd49788407d180c5d2b05f761ee28b1fb1810b668d914b832d839a1be75ed3394b241cc61aa36cff71851c178af1f1083961ac5d474f1532424ff3
data/lib/capistrano/bundle_audit/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  module Capistrano
2
2
  module BundleAudit
3
- VERSION = "0.0.4"
3
+ VERSION = "0.0.5"
4
4
  end
5
5
  end
data/lib/capistrano/tasks/bundle_audit.rake CHANGED
@@ -1,3 +1,4 @@
1
+ require 'shellwords'
1
2
  require 'tmpdir'
2
3
 
3
4
  namespace :deploy do
@@ -17,7 +18,7 @@ namespace :deploy do
17
18
  # Get the latest vulnerability information
18
19
  execute "bundle-audit update &> /dev/null"
19
20
 
20
- bundle_audit_output = capture "bundle-audit"
21
+ bundle_audit_output = capture "bundle-audit #{"--ignore #{Shellwords.join(fetch(:bundle_audit_ignore))}" unless fetch(:bundle_audit_ignore).empty? }"
21
22
 
22
23
  # bundle-audit includes failures for both gem vulnerabilities
23
24
  # and insecure gem sources, and offers no way to distinguish those cases.
@@ -37,3 +38,10 @@ namespace :deploy do
37
38
 
38
39
  after 'deploy:updating', 'deploy:check:bundle_audit' unless ENV['SKIP_BUNDLE_AUDIT']
39
40
  end
41
+
42
+ namespace :load do
43
+ task :defaults do
44
+ set :bundle_audit_ignore, %W{#{ENV['BUNDLE_AUDIT_IGNORES']}}
45
+ set :skip_bundle_audit, !!ENV['SKIP_BUNDLE_AUDIT']
46
+ end
47
+ end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: capistrano-bundle_audit
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.0.4
4
+ version: 0.0.5
5
5
  platform: ruby
6
6
  authors:
7
7
  - Chris Beer
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2015-01-30 00:00:00.000000000 Z
11
+ date: 2015-04-01 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: capistrano