confidante 0.7.0 → 0.8.0.pre.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: c51e11159589482df003ad8da5d96ff83ebcd5df
-  data.tar.gz: d07ed58f51d0429aa4c56c40788ca1bd6265fe04
+SHA256:
+  metadata.gz: eac791f6bc6d2d5da5e472dd852d793ba095ccab5a9965b35002222b9bc767fc
+  data.tar.gz: 7a634749ab3199f2ddee0b15b0fa1b336c670f7900ac0aad28e6e45f730685d2
 SHA512:
-  metadata.gz: 26b25456ff78abefa582c9ad3ef01d5bbf97b094a0da620ce36b2bfa5dbeaa989f783e7d03a5c5eb8f195affb7b497bb7b5e0fe0166d3b2942f7dcbaf7537614
-  data.tar.gz: 63a246c169f06dcc2bec6dc23296660e212c3c89adf744489129f4eae0bdfd0c05d05711c22792c0c1246c08d8862d75510b287f00c1f419146cf5dc0a2bc634
+  metadata.gz: 6e66b57e08a8ed763acef4ea747ce54fb9d3a9fa3c4b6dd29ebe9e01329586f1183a66246abd57fe09e060f0112437fbbe7451f910a46e2aa88c300fab72bbbd
+  data.tar.gz: ac1d4abda58db4e8e6dba082958ae0941a18110e4bfdb7839d4fad20559e751c754699bbb160d51ac705763d19317dfd9b61ebe1693a7b33936c3074350af446

data/.circleci/config.yml

@@ -0,0 +1,56 @@
+version: 2
+jobs:
+  test:
+    working_directory: ~/confidante
+    docker:
+    - image: ruby:2.4.7
+    steps:
+    - checkout
+    - run: ./scripts/ci/steps/test.sh
+  prerelease:
+    working_directory: ~/confidante
+    docker:
+    - image: ruby:2.4.7
+    steps:
+    - checkout
+    - run: ./scripts/ci/common/install-git-crypt.sh
+    - run: ./scripts/ci/common/install-gpg-key.sh
+    - run: ./scripts/ci/common/configure-git.sh
+    - run: ./scripts/ci/common/configure-rubygems.sh
+    - run: ./scripts/ci/steps/prerelease.sh
+  release:
+    working_directory: ~/confidante
+    docker:
+    - image: ruby:2.4.7
+    steps:
+    - checkout
+    - run: ./scripts/ci/common/install-git-crypt.sh
+    - run: ./scripts/ci/common/install-gpg-key.sh
+    - run: ./scripts/ci/common/configure-git.sh
+    - run: ./scripts/ci/common/configure-rubygems.sh
+    - run: ./scripts/ci/steps/release.sh
+
+workflows:
+  version: 2
+  pipeline:
+    jobs:
+    - test
+    - prerelease:
+        requires:
+        - test
+        filters:
+          branches:
+            only: master
+    - hold:
+        type: approval
+        requires:
+        - prerelease
+        filters:
+          branches:
+            only: master
+    - release:
+        requires:
+        - hold
+        filters:
+          branches:
+            only: master

data/.git-crypt/.gitattributes

@@ -0,0 +1,4 @@
+# Do not edit this file.  To specify the files to encrypt, create your own
+# .gitattributes file in the directory where your files are.
+* !filter !diff
+*.gpg binary

data/.gitattributes

@@ -0,0 +1 @@
+config/secrets/** filter=git-crypt diff=git-crypt

data/.ruby-version

@@ -1 +1 @@
-2.3.1
+2.4.7

data/Gemfile.lock

@@ -1,52 +1,52 @@
 PATH
   remote: .
   specs:
-    confidante (0.7.0)
-      activesupport (>= 4.0.2)
+    confidante (0.8.0.pre.1)
+      activesupport (>= 5.2)
       hiera (~> 3.3, >= 3.3.1)
 
 GEM
   remote: https://rubygems.org/
   specs:
-    activesupport (5.1.4)
+    activesupport (5.2.3)
       concurrent-ruby (~> 1.0, >= 1.0.2)
-      i18n (~> 0.7)
+      i18n (>= 0.7, < 2)
       minitest (~> 5.1)
       tzinfo (~> 1.1)
-    concurrent-ruby (1.0.5)
+    concurrent-ruby (1.1.5)
     diff-lcs (1.3)
-    gem-release (0.7.4)
-    hiera (3.4.2)
-    i18n (0.9.1)
+    gem-release (2.0.4)
+    hiera (3.5.0)
+    i18n (1.7.0)
       concurrent-ruby (~> 1.0)
-    minitest (5.10.3)
-    rake (10.5.0)
-    rspec (3.6.0)
-      rspec-core (~> 3.6.0)
-      rspec-expectations (~> 3.6.0)
-      rspec-mocks (~> 3.6.0)
-    rspec-core (3.6.0)
-      rspec-support (~> 3.6.0)
-    rspec-expectations (3.6.0)
+    minitest (5.12.2)
+    rake (13.0.0)
+    rspec (3.9.0)
+      rspec-core (~> 3.9.0)
+      rspec-expectations (~> 3.9.0)
+      rspec-mocks (~> 3.9.0)
+    rspec-core (3.9.0)
+      rspec-support (~> 3.9.0)
+    rspec-expectations (3.9.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.6.0)
-    rspec-mocks (3.6.0)
+      rspec-support (~> 3.9.0)
+    rspec-mocks (3.9.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.6.0)
-    rspec-support (3.6.0)
+      rspec-support (~> 3.9.0)
+    rspec-support (3.9.0)
     thread_safe (0.3.6)
-    tzinfo (1.2.4)
+    tzinfo (1.2.5)
       thread_safe (~> 0.1)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  bundler (~> 1.14)
+  bundler (~> 2.0)
   confidante!
-  gem-release (~> 0.7)
-  rake (~> 10.0)
-  rspec (~> 3.0)
+  gem-release (~> 2.0)
+  rake (~> 13.0)
+  rspec (~> 3.9)
 
 BUNDLED WITH
-   1.16.0
+   2.0.2

data/README.md

@@ -35,6 +35,39 @@ release a new version, update the version number in `version.rb`, and then run
 git commits and tags, and push the `.gem` file to 
 [rubygems.org](https://rubygems.org).
 
+### Common Tasks
+
+#### Generating an SSH key pair
+
+To generate an SSH key pair:
+
+```
+ssh-keygen -m PEM -t rsa -b 4096 -C maintainers@infrablocks.io -N '' -f config/secrets/ci/ssh
+```
+
+#### Managing CircleCI keys
+
+To encrypt a GPG key for use by CircleCI:
+
+```bash
+openssl aes-256-cbc \
+  -e \
+  -md sha1 \
+  -in ./config/secrets/ci/gpg.private \
+  -out ./.circleci/gpg.private.enc \
+  -k "<passphrase>"
+```
+
+To check decryption is working correctly:
+
+```bash
+openssl aes-256-cbc \
+  -d \
+  -md sha1 \
+  -in ./.circleci/gpg.private.enc \
+  -k "<passphrase>"
+```
+
 ## Contributing
 
 Bug reports and pull requests are welcome on GitHub at 

data/Rakefile

@@ -1,6 +1,24 @@
-require 'bundler/gem_tasks'
 require 'rspec/core/rake_task'
 
 RSpec::Core::RakeTask.new(:spec)
 
 task :default => :spec
+
+namespace :version do
+  desc "Bump version for specified type (pre, major, minor patch)"
+  task :bump, [:type] do |_, args|
+    bump_version_for(args.type)
+  end
+end
+
+desc "Release gem"
+task :release do
+  sh "gem release --tag --push"
+end
+
+def bump_version_for(version_type)
+  sh "gem bump --version #{version_type} " +
+      "&& bundle install " +
+      "&& export LAST_MESSAGE=\"$(git log -1 --pretty=%B)\" " +
+      "&& git commit -a --amend -m \"${LAST_MESSAGE} [ci skip]\""
+end

data/confidante.gemspec

@@ -2,6 +2,7 @@
 lib = File.expand_path('../lib', __FILE__)
 $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 require 'confidante/version'
+require 'date'
 
 Gem::Specification.new do |spec|
   spec.name = 'confidante'
@@ -9,12 +10,12 @@ Gem::Specification.new do |spec|
   spec.authors = ['Toby Clemson']
   spec.email = ['tobyclemson@gmail.com']
 
-  spec.date = '2017-01-27'
+  spec.date = Date.today.to_s
   spec.summary = 'A configuration engine over hiera.'
   spec.description =
       'A configuration engine combining environment variables, programmatic ' +
           'overrides and the power of hiera.'
-  spec.homepage = 'https://github.com/tobyclemson/confidante'
+  spec.homepage = 'https://github.com/infrablocks/confidante'
   spec.license = 'MIT'
 
   spec.files = `git ls-files -z`.split("\x0").reject do |f|
@@ -24,13 +25,13 @@ Gem::Specification.new do |spec|
   spec.executables = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
 
-  spec.required_ruby_version = '>= 2.3'
+  spec.required_ruby_version = '>= 2.4.7'
 
   spec.add_dependency 'hiera', '~> 3.3', '>= 3.3.1'
-  spec.add_dependency 'activesupport', '>= 4.0.2'
+  spec.add_dependency 'activesupport', '>= 5.2'
 
-  spec.add_development_dependency 'bundler', '~> 1.14'
-  spec.add_development_dependency 'rake', '~> 10.0'
-  spec.add_development_dependency 'rspec', '~> 3.0'
-  spec.add_development_dependency 'gem-release', '~> 0.7'
+  spec.add_development_dependency 'bundler', '~> 2.0'
+  spec.add_development_dependency 'rake', '~> 13.0'
+  spec.add_development_dependency 'rspec', '~> 3.9'
+  spec.add_development_dependency 'gem-release', '~> 2.0'
 end

data/config/secrets/.unlocked

@@ -0,0 +1 @@
+true

data/config/secrets/ci/encryption.passphrase

@@ -0,0 +1 @@
+GRpGA9D6BvjzBzJhwU8CWk4ct34uRbMk8GQfr4n4pXNk8mAg

data/config/secrets/ci/gpg.private

@@ -0,0 +1,105 @@
+-----BEGIN PGP PRIVATE KEY BLOCK-----
+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+=Rqfy
+-----END PGP PRIVATE KEY BLOCK-----

data/config/secrets/ci/gpg.public

@@ -0,0 +1,51 @@
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+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+=wZdG
+-----END PGP PUBLIC KEY BLOCK-----

data/config/secrets/ci/ssh.private

@@ -0,0 +1,51 @@
+-----BEGIN RSA PRIVATE KEY-----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=
+-----END RSA PRIVATE KEY-----

data/config/secrets/ci/ssh.public

@@ -0,0 +1 @@
+ssh-rsa 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 maintainers@infrablocks.io

data/config/secrets/rubygems/credentials

@@ -0,0 +1,2 @@
+---
+:rubygems_api_key: 2937a6dcdc84dd7685848a67da4c394c

data/go

@@ -0,0 +1,56 @@
+#!/usr/bin/env bash
+
+[ -n "$GO_DEBUG" ] && set -x
+set -e
+
+project_dir="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+
+verbose="no"
+skip_checks="no"
+offline="no"
+
+missing_dependency="no"
+
+[ -n "$GO_DEBUG" ] && verbose="yes"
+[ -n "$GO_SKIP_CHECKS" ] && skip_checks="yes"
+[ -n "$GO_OFFLINE" ] && offline="yes"
+
+
+if [[ "$skip_checks" = "no" ]]; then
+    echo "Checking for system dependencies."
+    ruby_version="$(cat "$project_dir"/.ruby-version)"
+    if ! type ruby >/dev/null 2>&1 || ! ruby -v | grep -q "$ruby_version"; then
+        echo "This codebase requires Ruby $ruby_version."
+        missing_dependency="yes"
+    fi
+
+    if [[ "$missing_dependency" = "yes" ]]; then
+        echo "Please install missing dependencies to continue."
+        exit 1
+    fi
+
+    echo "All system dependencies present. Continuing."
+fi
+
+if [[ "$offline" = "no" ]]; then
+    echo "Installing bundler."
+    if [[ "$verbose" = "yes" ]]; then
+        gem install --no-document bundler
+    else
+        gem install --no-document bundler > /dev/null
+    fi
+
+    echo "Installing ruby dependencies."
+    if [[ "$verbose" = "yes" ]]; then
+        bundle install
+    else
+        bundle install > /dev/null
+    fi
+fi
+
+echo "Starting rake."
+if [[ "$verbose" = "yes" ]]; then
+    time bundle exec rake --verbose "$@"
+else
+    time bundle exec rake "$@"
+fi

data/lib/confidante/configuration.rb

@@ -2,6 +2,8 @@ require 'hiera'
 require 'active_support'
 require 'active_support/core_ext/hash/keys'
 
+require_relative 'converters'
+
 module Confidante
   class Configuration
     def initialize(opts = {})
@@ -14,32 +16,41 @@ module Confidante
         options[:hiera] = Hiera.new(config: 'config/hiera.yaml')
       end
 
+      unless options[:converters]
+        options[:converters] =
+            [Confidante::Converters::EvaluatingConverter.new]
+      end
+
       @overrides = options[:overrides]
       @scope = options[:scope]
       @hiera = options[:hiera]
+      @converters = options[:converters]
     end
 
     def for_overrides(overrides)
       Configuration.new(
           overrides: overrides,
           scope: @scope,
-          hiera: @hiera)
+          hiera: @hiera,
+          converters: @converters)
     end
 
     def for_scope(scope)
       Configuration.new(
           overrides: @overrides,
           scope: scope,
-          hiera: @hiera)
+          hiera: @hiera,
+          converters: @converters)
     end
 
     def method_missing(method, *args, &block)
-      @hiera.lookup(
-          method.to_s,
-          nil,
+      scope =
           {'cwd' => Dir.pwd}
               .merge(@scope.stringify_keys)
-              .merge({'overrides' => @overrides.to_h.stringify_keys}))
+              .merge({'overrides' => @overrides.to_h.stringify_keys})
+      @converters.inject(@hiera.lookup(method.to_s, nil, scope)) do |v, c|
+        c.convert(v)
+      end
     end
   end
 end

data/lib/confidante/converters/evaluating_converter.rb

@@ -0,0 +1,36 @@
+module Confidante
+  module Converters
+    class EvaluatingConverter
+      def convert(thing)
+        case thing
+        when Hash
+          convert_hash(thing)
+        when Array
+          convert_array(thing)
+        else
+          convert_item(thing)
+        end
+      end
+
+      private
+
+      def convert_hash(thing)
+        {}.tap do |h|
+          thing.each { |k, v| h[k.to_sym] = convert(v) }
+        end
+      end
+
+      def convert_array(thing)
+        thing.map { |v| convert(v) }
+      end
+
+      def convert_item(thing)
+        begin
+          eval(thing, binding)
+        rescue
+          thing
+        end
+      end
+    end
+  end
+end

data/lib/confidante/converters.rb

@@ -0,0 +1,6 @@
+require_relative 'converters/evaluating_converter'
+
+module Confidante
+  module Converters
+  end
+end

data/lib/confidante/version.rb

@@ -1,3 +1,3 @@
 module Confidante
-  VERSION = '0.7.0'
+  VERSION = '0.8.0.pre.1'
 end

data/lib/confidante.rb

@@ -1,4 +1,5 @@
 require 'confidante/version'
+require 'confidante/converters'
 require 'confidante/configuration'
 
 require 'hiera/backend/env_backend'

data/scripts/ci/common/configure-git.sh

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+
+[ -n "$DEBUG" ] && set -x
+set -e
+set -o pipefail
+
+git config --global user.email "circleci@infrablocks.io"
+git config --global user.name "Circle CI"

data/scripts/ci/common/configure-rubygems.sh

@@ -0,0 +1,16 @@
+#!/usr/bin/env bash
+
+[ -n "$DEBUG" ] && set -x
+set -e
+set -o pipefail
+
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+PROJECT_DIR="$( cd "$SCRIPT_DIR/../../.." && pwd )"
+
+cd "$PROJECT_DIR"
+
+git crypt unlock
+
+mkdir -p ~/.gem
+cp config/secrets/rubygems/credentials ~/.gem/credentials
+chmod 0600 ~/.gem/credentials

data/scripts/ci/common/install-git-crypt.sh

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+
+[ -n "$DEBUG" ] && set -x
+set -e
+set -o pipefail
+
+apt-get update
+apt-get install -y --no-install-recommends git ssh git-crypt

data/scripts/ci/common/install-gpg-key.sh

@@ -0,0 +1,19 @@
+#!/usr/bin/env bash
+
+[ -n "$DEBUG" ] && set -x
+set -e
+set -o pipefail
+
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+PROJECT_DIR="$( cd "$SCRIPT_DIR/../../.." && pwd )"
+
+cd "$PROJECT_DIR"
+
+set +e
+openssl version
+openssl aes-256-cbc \
+    -d \
+    -md sha1 \
+    -in ./.circleci/gpg.private.enc \
+    -k "${ENCRYPTION_PASSPHRASE}" | gpg --import -
+set -e

data/scripts/ci/steps/prerelease.sh

@@ -0,0 +1,16 @@
+#!/usr/bin/env bash
+
+[ -n "$DEBUG" ] && set -x
+set -e
+set -o pipefail
+
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+PROJECT_DIR="$( cd "$SCRIPT_DIR/../../.." && pwd )"
+
+cd "$PROJECT_DIR"
+
+./go version:bump[pre]
+./go release
+
+git status
+git push

data/scripts/ci/steps/release.sh

@@ -0,0 +1,18 @@
+#!/usr/bin/env bash
+
+[ -n "$DEBUG" ] && set -x
+set -e
+set -o pipefail
+
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+PROJECT_DIR="$( cd "$SCRIPT_DIR/../../.." && pwd )"
+
+cd "$PROJECT_DIR"
+
+git pull
+
+./go version:bump[minor]
+./go release
+
+git status
+git push

data/scripts/ci/steps/test.sh

@@ -0,0 +1,12 @@
+#!/usr/bin/env bash
+
+[ -n "$DEBUG" ] && set -x
+set -e
+set -o pipefail
+
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+PROJECT_DIR="$( cd "$SCRIPT_DIR/../../.." && pwd )"
+
+cd "$PROJECT_DIR"
+
+./go spec

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: confidante
 version: !ruby/object:Gem::Version
-  version: 0.7.0
+  version: 0.8.0.pre.1
 platform: ruby
 authors:
 - Toby Clemson
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2017-01-27 00:00:00.000000000 Z
+date: 2019-10-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: hiera
@@ -36,70 +36,70 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 4.0.2
+        version: '5.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 4.0.2
+        version: '5.2'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.14'
+        version: '2.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.14'
+        version: '2.0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '13.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '13.0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '3.9'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '3.9'
 - !ruby/object:Gem::Dependency
   name: gem-release
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '0.7'
+        version: '2.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '0.7'
+        version: '2.0'
 description: A configuration engine combining environment variables, programmatic
   overrides and the power of hiera.
 email:
@@ -108,6 +108,12 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".circleci/config.yml"
+- ".circleci/gpg.private.enc"
+- ".git-crypt/.gitattributes"
+- ".git-crypt/keys/default/0/41D2606F66C3FF28874362B61A16916844CE9D82.gpg"
+- ".git-crypt/keys/default/0/837D1812341A8C7F3E556D33623A196DE10A7326.gpg"
+- ".gitattributes"
 - ".gitignore"
 - ".rspec"
 - ".ruby-version"
@@ -120,12 +126,29 @@ files:
 - bin/console
 - bin/setup
 - confidante.gemspec
+- config/secrets/.unlocked
+- config/secrets/ci/encryption.passphrase
+- config/secrets/ci/gpg.private
+- config/secrets/ci/gpg.public
+- config/secrets/ci/ssh.private
+- config/secrets/ci/ssh.public
+- config/secrets/rubygems/credentials
+- go
 - lib/confidante.rb
 - lib/confidante/configuration.rb
+- lib/confidante/converters.rb
+- lib/confidante/converters/evaluating_converter.rb
 - lib/confidante/version.rb
 - lib/hiera/backend/env_backend.rb
 - lib/hiera/backend/overrides_backend.rb
-homepage: https://github.com/tobyclemson/confidante
+- scripts/ci/common/configure-git.sh
+- scripts/ci/common/configure-rubygems.sh
+- scripts/ci/common/install-git-crypt.sh
+- scripts/ci/common/install-gpg-key.sh
+- scripts/ci/steps/prerelease.sh
+- scripts/ci/steps/release.sh
+- scripts/ci/steps/test.sh
+homepage: https://github.com/infrablocks/confidante
 licenses:
 - MIT
 metadata: {}
@@ -137,15 +160,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '2.3'
+      version: 2.4.7
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ">"
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.5.1
+rubygems_version: 3.0.3
 signing_key: 
 specification_version: 4
 summary: A configuration engine over hiera.