cocoapods-downloader 1.6.2 → 1.6.3

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 20f16f6bb4e3cc9aa727c6a112b18667e583292c3b2acc931597809f7ff1b26b
4
- data.tar.gz: b58a2541b4a8210e8357b92cf9f532a061f39585a619484efa8ea6c83a39585a
3
+ metadata.gz: 552e14f661a129b219df83f3db56753d10be764ad6e6e3b304e8f8249ee13c1b
4
+ data.tar.gz: 47c19e50a1d7ea407552c99052834f037a7bc72b56ad86d100194a45014731f7
5
5
  SHA512:
6
- metadata.gz: 976e976c7c981b75242914f8be32f8c2be30e30e23d2a4c61bd7a1ea10d41cdee46c74768f1af849515a6743d5d3020dec90597ffe196eea0e48d5b2fd6c425e
7
- data.tar.gz: 147b35462c7f4c988635de9e37a0a787e0a3709c410f83788121c303ddeac0eabc34643fe4eae0fdcb72c483bc3245399c9714e7dac6284c92a2a6eb9d4b394b
6
+ metadata.gz: '09adf719b95b1f6973515377a5b0f96522e03c6d778ae2440a99f0787eedb5dd637163e80a371735bdd40dd2fd8ba237296116581e86ca7243e9c990153d884f'
7
+ data.tar.gz: e2b21b9bc0c0feb48be075ab70c8e178a66f4fe35851e8df28e079ae7aa7d7887c249a6ce414e4b5ad30bdbe80a3822774ce235b926c321114548e2e00c3da0b
@@ -3,6 +3,6 @@ module Pod
3
3
  # @return [String] Downloader’s version, following
4
4
  # [semver](http://semver.org).
5
5
  #
6
- VERSION = '1.6.2'.freeze
6
+ VERSION = '1.6.3'.freeze
7
7
  end
8
8
  end
@@ -23,9 +23,15 @@ module Pod
23
23
  def self.preprocess_options(options)
24
24
  return options unless options[:branch]
25
25
 
26
+ input = [options[:git], options[:commit]].map(&:to_s)
27
+ invalid = input.compact.any? { |value| value.start_with?('--') || value.include?(' --') }
28
+ raise DownloaderError, "Provided unsafe input for git #{options}." if invalid
29
+
26
30
  command = ['ls-remote',
31
+ '--',
27
32
  options[:git],
28
33
  options[:branch]]
34
+
29
35
  output = Git.execute_command('git', command)
30
36
  match = commit_from_ls_remote output, options[:branch]
31
37
 
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: cocoapods-downloader
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.6.2
4
+ version: 1.6.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Eloy Duran
@@ -9,7 +9,7 @@ authors:
9
9
  autorequire:
10
10
  bindir: bin
11
11
  cert_chain: []
12
- date: 2022-03-28 00:00:00.000000000 Z
12
+ date: 2022-04-01 00:00:00.000000000 Z
13
13
  dependencies: []
14
14
  description:
15
15
  email: