RubyGems - dccscr - Versions diffs - 0.2.3 → 0.2.4 - Mend

dccscr 0.2.3 → 0.2.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 261894021f66c455747ff0bf23dae30fa2a1e6f81c49eec8ca5259452c5ee394
-  data.tar.gz: fc290c6ac35dfd3f9448350b56af6483a29247b5d633b217e1e0d2af9c87f541
+  metadata.gz: 19f7a39dba0aaf6a38390ec0231123337295fc09ed67688f2385570c7a0e2e68
+  data.tar.gz: 2cb39e932916aa6f64c3e6bda49d7e92fdda67b3714172098db1a06bb3c09f05
 SHA512:
-  metadata.gz: 0064c33c1810b27a0221a833c9269c70eed53f60206a4ce1d0f9b25fbe0b15dda1532e6e73bb0e91628d8243ab500f48ad9899e3f61c5f788eebf12ee3c2977e
-  data.tar.gz: 30faf367d582d3ad191977cca89d8337df665fde843709af991b3e5eba408c6f71f9de396fe9d44f11b0fe074cdfa7989833371f092229b2c04c684ab3bb5bd6
+  metadata.gz: a2beaade232b0aace980995067f07b0cf50791d640cac99ee6bec6151a0a09f2c1d937ae432ec04e64b66974853971b9ca2f32d5397df7f92f206c8ec0b4ea96
+  data.tar.gz: 793bd0cf0c5d45a488e53e8c3382f87c3ad5428ccd7c3af31d6ff81fac57951d2c684e20e2b7d4ecdb6cf651c449b06e295e6dc2c978d3cd808338f3ae628a92

data/.gitlab-ci.yml CHANGED Viewed

@@ -1,9 +1,16 @@
 image: ruby:2.7.3
-before_script:
+example_job:
+  before_script:
   - gem install bundler -v 2.2.17
   - bundle install
-example_job:
   script:
-    - bundle exec rake
+  - bundle exec rake
+stages:
+- test
+sast:
+  stage: test
+include:
+- template: Security/SAST.gitlab-ci.yml
+- template: Security/Dependency-Scanning.gitlab-ci.yml
+- template: Security/Secret-Detection.gitlab-ci.yml
+- template: Security/License-Scanning.gitlab-ci.yml

data/.rubocop.yml CHANGED Viewed

@@ -26,6 +26,9 @@ Style/HashConversion:
 Style/SpecialGlobalVars:
   Enabled: false
+Style/SignalException:
+  Enabled: false
 Style/StringLiterals:
   Enabled: true
   EnforcedStyle: single_quotes

data/Gemfile CHANGED Viewed

@@ -6,9 +6,9 @@ source 'https://rubygems.org'
 gemspec
 gem 'rake', '~> 13.0'
+gem 'rubocop-rake'
 gem 'minitest', '~> 5.0'
+gem 'rubocop-minitest'
 gem 'rubocop', '~> 1.7'
-gem 'rubocop-rake'
-gem 'rubocop-minitest'

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,8 @@
 PATH
   remote: .
   specs:
-    dccscr (0.2.3)
+    dccscr (0.2.4)
+      shellwords (~> 0.1)
 GEM
   remote: https://rubygems.org/
@@ -31,6 +32,7 @@ GEM
     rubocop-rake (0.6.0)
       rubocop (~> 1.0)
     ruby-progressbar (1.11.0)
+    shellwords (0.1.0)
     unicode-display_width (2.0.0)
 PLATFORMS

data/dccscr.gemspec CHANGED Viewed

@@ -26,8 +26,8 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{\Aexe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
-  # Uncomment to register a new dependency of your gem
-  # spec.add_dependency 'example-gem', '~> 1.0'
+  # ec.add_dependency 'shell',      '~> 0.8'
+  spec.add_dependency 'shellwords', '~> 0.1'
   # For more information and examples about making a new gem, checkout our
   # guide at: https://bundler.io/guides/creating_gem.html

data/lib/dccscr/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module DCCSCR
-  VERSION = '0.2.3'
+  VERSION = '0.2.4'
 end

data/lib/dccscr/whitelist.rb CHANGED Viewed

@@ -3,6 +3,7 @@
 require 'json'
 require 'yaml'
 require 'tmpdir'
+require 'shellwords'
 module DCCSCR
   # Class to download the dccscr_whitelist repo and store greylist entries.
@@ -27,10 +28,9 @@ module DCCSCR
       end
       if clone
-        raise('path exists and is not empty') unless Dir.empty?(@path)
-        `git clone #{clone_options} #{@repo.inspect} #{@path.inspect}`
-        $?.success? || raise('error cloning repo')
+        clone_options = Shellwords.join(Shellwords.split(clone_options).map { |w| Shellwords.escape(w) })
+        system "git clone #{clone_options} -- #{@repo.inspect} #{@path.inspect}"
+        $?.success? || fail('error cloning repo')
       end
       @entries = {}

metadata CHANGED Viewed

@@ -1,15 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: dccscr
 version: !ruby/object:Gem::Version
-  version: 0.2.3
+  version: 0.2.4
 platform: ruby
 authors:
 - Frank J. Cameron
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2021-08-07 00:00:00.000000000 Z
-dependencies: []
+date: 2021-08-08 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: shellwords
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.1'
 description:
 email:
 - fjc@fastmail.net