claws-scan 0.7.3 → 0.7.5

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: f15bd23a5e2ccdc04f377f54a4677eb06544c37eb1dd9f42e92f839e253c03a0
-  data.tar.gz: 6e353d3efc9cd6df847ca00115e4825db51849e93dc67ef3bd9ebb929d87b8ac
+  metadata.gz: '088da1fb246e5843261993812e1b89125eba56e5892628516969d496048fef7e'
+  data.tar.gz: 82c7a7674fa590a5feda1511f4b3f43970401ec5b2c9898f7c7c859e0805d0df
 SHA512:
-  metadata.gz: 74852855d340e5de4e3fe8ea435e53206483ff21b3b52a19ecb97855646e2d9012ab6b410a173be63b022da292506235b8e2f346dc2e1ce44436d8688317350a
-  data.tar.gz: 1a88c82829b81082cef734cd46b101f1c207daeffebe5b4862322536127eebd67526f6a31fc7844587092e579b06fb175e62438c02b0fb072d4bfd6db0fe1f10
+  metadata.gz: 6385a23ac3b074ded87e7b761e4fdd25a7b19770b63b460ee1192664972b9da20dfabc8f6e80e94f327e3b2a6016bce5d996c02dcefae8831ae9bd43d4d10abd
+  data.tar.gz: 46adc628c3b02d052d601540d9421e01c70f343a41982593795c149b448ecffdde64c6fc704a6526a5c014237047b5518d72373cc0e05d5197e67d53b0682776

data/.policy.yml

@@ -0,0 +1,3 @@
+remote: Betterment/policy-bot-config
+path: security-policy.yml
+ref: main

data/CONTRIBUTING.md

@@ -0,0 +1,40 @@
+# Contributing to Claws
+
+Thank you for your interest in contributing to this project! We welcome contributions of all kinds: issues, bug reports, new rules, and pull requests. For just about everything, opening an issue is fine. Opening a pull request would be even better.
+
+## 🔮 Before You Start
+
+Please [search existing issues](https://github.com/betterment/claws/issues) before opening a new one. This helps avoid duplicates and ensures discussions stay organized.
+
+## 🐛 Reporting Bugs
+
+If you encounter a bug, please [open an issue](https://github.com/betterment/claws/issues) and include:
+
+- A clear description of the problem
+- Steps to reproduce the bug
+- Your configuration file (if applicable)
+- A **minimal reproducible example**
+
+## 💡 Suggesting or Adding a New Rule
+
+Have an idea for a new rule? Great! You can:
+
+- [Open an issue](https://github.com/betterment/claws/issues) to discuss it, or
+- Jump straight in with a [pull request](https://github.com/betterment/claws/pulls)
+
+Please explain the motivation behind the rule, its intended use cases, and provide examples if possible.
+
+## 🚀 Submitting Pull Requests
+
+We love pull requests!! Before submitting:
+
+1. Ensure your code follows the existing style and passes all tests.
+2. Include tests for any new features or rules. Every rule requires a test.
+3. Update documentation if needed.
+4. Link the related issue in the PR description (if applicable).
+
+Thank you for helping make this project better!
+
+## 🔐 Reporting Security Issues
+
+If you discover a security vulnerability, **please do not open a public issue**. Instead, refer to our [responsible disclosure guidelines](https://www.betterment.com/legal/security#disclosure) for how to report it.

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    claws-scan (0.7.3)
+    claws-scan (0.7.5)
       equation (~> 0.6)
       pry
       slop (~> 4.9)

data/README.md

@@ -488,7 +488,7 @@ Tips:
 * eval a test expression: e 'expression'
 * ^D to exit
 
-From: /Users/omar/src/unbungle/lib/application.rb:194 Application#enter_debug:
+From: /Users/omar/src/claws/lib/application.rb:194 Application#enter_debug:
 
     184: def enter_debug(result:, expression:, values:)
     185:   @debug_values = values
@@ -553,5 +553,8 @@ Since this rule is functioning as desired, we don't need to dig any further. But
 
 ## Writing Tests
 
-Rules should have corresponding specs that contain sample Workflows that exercise all the different ways to trigger their expressions. See [specs](./specs/rules/) for more info. More docs on the topic TBD :~)
+Rules should have corresponding specs that contain sample Workflows that exercise all the different ways to trigger their expressions. See [specs](./specs/rules/) for more info.
 
+## Contributing
+
+Check [CONTRIBUTING.md](CONTRIBUTING.md)

data/lib/claws/rule/unpinned_action.rb

@@ -12,7 +12,6 @@ module Claws
         $step.meta.action != null &&
         (
           $step.meta.action.version == null ||
-          contains(["main", "master"], $step.meta.action.version) ||
           !($step.meta.action.version =~ "^[a-fA-F0-9]{40}$")
         ) &&
         !contains($data.trusted_authors, $step.meta.action.author) &&
@@ -21,8 +20,7 @@ module Claws
 
       def data
         {
-          "trusted_authors": configuration.fetch("trusted_authors", []),
-          "loose": configuration.fetch("loose_validation", false)
+          "trusted_authors": configuration.fetch("trusted_authors", [])
         }
       end
     end

data/lib/claws/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Claws
-  VERSION = "0.7.3"
+  VERSION = "0.7.5"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: claws-scan
 version: !ruby/object:Gem::Version
-  version: 0.7.3
+  version: 0.7.5
 platform: ruby
 authors:
 - Omar
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-04-30 00:00:00.000000000 Z
+date: 2025-05-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: equation
@@ -74,9 +74,11 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
+- ".policy.yml"
 - ".rspec"
 - ".rubocop.yml"
 - ".ruby-version"
+- CONTRIBUTING.md
 - Gemfile
 - Gemfile.lock
 - README.md
@@ -144,7 +146,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.19
+rubygems_version: 3.4.20
 signing_key:
 specification_version: 4
 summary: Analyzes your Github Actions