dependency_spy 0.2.1 → 0.2.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/Gemfile.lock +7 -7
  3. data/lib/dependency_spy/cli.rb +1 -1
  4. data/lib/dependency_spy/dtos/dependency.rb +22 -14
  5. data/lib/dependency_spy/formatters/json.rb +5 -8
  6. data/lib/dependency_spy/formatters/yaml.rb +6 -9
  7. data/lib/dependency_spy/version.rb +1 -1
  8. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 9f030500e1a11360c755835f62e47553281b984e
4
- data.tar.gz: b0ae90d2d68163339e1ce192bc985ece81c8c7a6
3
+ metadata.gz: 4fd249e65300f9e7f1e49970446831638f66d54e
4
+ data.tar.gz: f2f0ebc11c4b96b704d27e13c94a05f0497bd5ac
5
5
  SHA512:
6
- metadata.gz: 411c49d84c1cde518b6e4aa16171ab99a8b6fcfc3bd7fb0e225015396df9815217465038ca2fa25eaf2aa0b526fc0614632cf89973228a6b243d99acada45b45
7
- data.tar.gz: 92470f0a04d0c663d0126b08123cad76b43c22a8640d8e5372f7897ddc419caa10fb779ed795124304d0b1ded5a4159a16e0504ee8bbd64044c4274fdb1638d7
6
+ metadata.gz: ef6365eaa9e9155dce4cd67b61bc9227f2231e39a9a1a7b2c77c38780243bdabd93d9cc84e2621a67dec3cd8b16d83539734e16200781480c6e99c7ef761f91f
7
+ data.tar.gz: 21277d4f3760c7abe502695be22e3ac7ee7a42b90079c1bab8daf67568a43966bdec6648646c3560fda2397d1b8962b51206ef2f7b69e9ac148ad416ae9bbd8b
data/Gemfile.lock CHANGED
@@ -1,7 +1,7 @@
1
1
  PATH
2
2
  remote: .
3
3
  specs:
4
- dependency_spy (0.2.1)
4
+ dependency_spy (0.2.2)
5
5
  bibliothecary (~> 6.3)
6
6
  semantic_range (~> 2.1)
7
7
  thor (~> 0.20)
@@ -23,15 +23,15 @@ GEM
23
23
  citrus (3.0.2)
24
24
  codacy-coverage (2.1.0)
25
25
  simplecov
26
- commander (4.4.6)
27
- highline (~> 1.7.2)
26
+ commander (4.4.7)
27
+ highline (~> 2.0.0)
28
28
  deb_control (0.0.1)
29
29
  diff-lcs (1.3)
30
30
  docile (1.3.1)
31
31
  ethon (0.11.0)
32
32
  ffi (>= 1.3.0)
33
33
  ffi (1.9.25)
34
- highline (1.7.10)
34
+ highline (2.0.0)
35
35
  jaro_winkler (1.5.1)
36
36
  json (2.1.0)
37
37
  kramdown (1.17.0)
@@ -61,14 +61,14 @@ GEM
61
61
  diff-lcs (>= 1.2.0, < 2.0)
62
62
  rspec-support (~> 3.8.0)
63
63
  rspec-support (3.8.0)
64
- rubocop (0.59.2)
64
+ rubocop (0.60.0)
65
65
  jaro_winkler (~> 1.5.1)
66
66
  parallel (~> 1.10)
67
67
  parser (>= 2.5, != 2.5.1.1)
68
68
  powerpack (~> 0.1)
69
69
  rainbow (>= 2.2.2, < 4.0)
70
70
  ruby-progressbar (~> 1.7)
71
- unicode-display_width (~> 1.0, >= 1.0.1)
71
+ unicode-display_width (~> 1.4.0)
72
72
  rubocop-rspec (1.30.0)
73
73
  rubocop (>= 0.58.0)
74
74
  ruby-ll (2.1.2)
@@ -89,7 +89,7 @@ GEM
89
89
  typhoeus (1.3.0)
90
90
  ethon (>= 0.9.0)
91
91
  unicode-display_width (1.4.0)
92
- yavdb (0.4.0)
92
+ yavdb (0.4.1)
93
93
  json (~> 2.1)
94
94
  kramdown (~> 1.17)
95
95
  oga (~> 2.15)
data/lib/dependency_spy/cli.rb CHANGED
@@ -62,7 +62,7 @@ module DependencySpy
62
62
  end
63
63
 
64
64
  has_vulnerabilities =
65
- manifests.any? { |manifest| manifest.dependencies.any? { |dependency| dependency.vulnerabilities.any? } }
65
+ manifests.any? { |manifest| manifest[:dependencies]&.any? { |dependency| dependency[:vulnerabilities]&.any? } }
66
66
 
67
67
  exit(1) if has_vulnerabilities
68
68
  end
data/lib/dependency_spy/dtos/dependency.rb CHANGED
@@ -26,21 +26,25 @@ module DependencySpy
26
26
  def to_map
27
27
  map = {}
28
28
  members.each do |m|
29
- next unless self[m] && (
30
- (self[m].is_a?(String) && !self[m].empty?) ||
31
- (self[m].is_a?(Array) && self[m].any?))
32
-
33
- map[m.to_s] = self[m] if self[m]
29
+ if !self[m] ||
30
+ (self[m].is_a?(String) && self[m].empty?) ||
31
+ (self[m].is_a?(Array) && self[m].none?)
32
+ next
33
+ elsif self[m].is_a?(Struct)
34
+ map[m.to_s] = self[m].to_map
35
+ else
36
+ map[m.to_s] = self[m]
37
+ end
34
38
  end
35
39
  map
36
40
  end
37
41
 
38
- def to_json(*attrs)
39
- to_map.to_json(*attrs)
42
+ def to_json(*args)
43
+ to_map.to_json(*args)
40
44
  end
41
45
 
42
- def to_yaml(*attrs)
43
- to_map.to_yaml(*attrs)
46
+ def to_yaml(*args)
47
+ to_map.to_yaml(*args)
44
48
  end
45
49
 
46
50
  end
@@ -55,11 +59,15 @@ module DependencySpy
55
59
  def to_map
56
60
  map = {}
57
61
  members.each do |m|
58
- next unless self[m] && (
59
- (self[m].is_a?(String) && !self[m].empty?) ||
60
- (self[m].is_a?(Array) && self[m].any?))
61
-
62
- map[m.to_s] = self[m] if self[m]
62
+ if !self[m] ||
63
+ (self[m].is_a?(String) && self[m].empty?) ||
64
+ (self[m].is_a?(Array) && self[m].none?)
65
+ next
66
+ elsif self[m].is_a?(Struct)
67
+ map[m.to_s] = self[m].to_map
68
+ else
69
+ map[m.to_s] = self[m]
70
+ end
63
71
  end
64
72
  map
65
73
  end
data/lib/dependency_spy/formatters/json.rb CHANGED
@@ -20,18 +20,15 @@ module DependencySpy
20
20
 
21
21
  def self.format(manifests)
22
22
  filtered_manifests = manifests.map do |manifest|
23
- manifest[:dependencies] = manifest[:dependencies].map do |dependency|
24
- next unless dependency[:vulnerabilities].any?
25
-
26
- dependency[:vulnerabilities] = dependency[:vulnerabilities].map(&:to_map)
27
- dependency
28
- end.reject(&:nil?).map(&:to_map)
29
- manifest
23
+ vulnerable_dependencies = manifest[:dependencies]
24
+ .select { |dependency| dependency[:vulnerabilities].any? }
25
+ manifest_copy = Marshal.load(Marshal.dump(manifest))
26
+ manifest_copy[:dependencies] = vulnerable_dependencies
27
+ manifest_copy
30
28
  end
31
29
 
32
30
  filtered_manifests
33
31
  .reject { |m| m[:dependencies].nil? }
34
- .map(&:to_map)
35
32
  .map(&:to_json)
36
33
  end
37
34
 
data/lib/dependency_spy/formatters/yaml.rb CHANGED
@@ -20,19 +20,16 @@ module DependencySpy
20
20
 
21
21
  def self.format(manifests)
22
22
  filtered_manifests = manifests.map do |manifest|
23
- manifest[:dependencies] = manifest[:dependencies].map do |dependency|
24
- next unless dependency[:vulnerabilities].any?
25
-
26
- dependency[:vulnerabilities] = dependency[:vulnerabilities].map(&:to_map)
27
- dependency
28
- end.reject(&:nil?).map(&:to_map)
29
- manifest
23
+ vulnerable_dependencies = manifest[:dependencies]
24
+ .select { |dependency| dependency[:vulnerabilities].any? }
25
+ manifest_copy = Marshal.load(Marshal.dump(manifest))
26
+ manifest_copy[:dependencies] = vulnerable_dependencies
27
+ manifest_copy
30
28
  end
31
29
 
32
30
  filtered_manifests
33
31
  .reject { |m| m[:dependencies].nil? }
34
- .map(&:to_map)
35
- .map(&:to_yaml)
32
+ .map(&:to_json)
36
33
  end
37
34
 
38
35
  end
data/lib/dependency_spy/version.rb CHANGED
@@ -16,6 +16,6 @@
16
16
 
17
17
  module DependencySpy
18
18
 
19
- VERSION = '0.2.1'
19
+ VERSION = '0.2.2'
20
20
 
21
21
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependency_spy
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.2.1
4
+ version: 0.2.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Rodrigo Fernandes
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2018-10-21 00:00:00.000000000 Z
11
+ date: 2018-10-28 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: bundler