dependency_spy 0.4.0 → 0.4.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/.circleci/config.yml +2 -2
- data/.rubocop.yml +4 -4
- data/.ruby-version +1 -1
- data/Gemfile.lock +19 -21
- data/dependency_spy.gemspec +4 -4
- data/lib/dependency_spy.rb +2 -3
- data/lib/dependency_spy/semver.rb +1 -0
- data/lib/dependency_spy/version.rb +1 -1
- metadata +10 -10
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
|
-
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
2
|
+
SHA256:
|
3
|
+
metadata.gz: bd76c3bfcbdcc405ea294b2005b889bb58ec929743debec07993c7779d564d98
|
4
|
+
data.tar.gz: 9ce10481a76d8dbb4381a3acacf76ece5dbfc0e1d9b82bece3dbef121ce1db2f
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: bf1d350bbbe04a198ae7623b93bfbc8f03efa912a4d81de2025fdb434a6fd5ba2a3dd0b3faf0b23f5070b5d05b7d4d8612ae0fe48229a884712111be6a62784d
|
7
|
+
data.tar.gz: 791adfff9cfc910ddd0fdf78bbf96d65c55e93c6f4b51fd8a947cc3eedac0fbe76e8462b72f1314df151aa44999bee5b4b5117dc44bcc09111c3cdfa915557a5
|
data/.circleci/config.yml
CHANGED
@@ -4,7 +4,7 @@ jobs:
|
|
4
4
|
build-lint-test:
|
5
5
|
working_directory: ~/dependency_spy
|
6
6
|
docker:
|
7
|
-
- image: circleci/ruby:2.
|
7
|
+
- image: circleci/ruby:2.5.5
|
8
8
|
steps:
|
9
9
|
- checkout
|
10
10
|
|
@@ -26,7 +26,7 @@ jobs:
|
|
26
26
|
|
27
27
|
- name: Vulnerable dependencies
|
28
28
|
type: shell
|
29
|
-
command: bundle exec depspy check --files Gemfile,Gemfile.lock
|
29
|
+
command: bundle exec bin/depspy check --files Gemfile,Gemfile.lock
|
30
30
|
|
31
31
|
- name: Rubocop
|
32
32
|
type: shell
|
data/.rubocop.yml
CHANGED
@@ -57,7 +57,7 @@ AllCops:
|
|
57
57
|
DefaultFormatter: progress
|
58
58
|
UseCache: false
|
59
59
|
DisplayCopNames: false
|
60
|
-
TargetRubyVersion: 2.
|
60
|
+
TargetRubyVersion: 2.5.5
|
61
61
|
|
62
62
|
Gemspec/OrderedDependencies:
|
63
63
|
Enabled: true
|
@@ -94,18 +94,18 @@ Layout/EmptyLinesAroundModuleBody:
|
|
94
94
|
Layout/ExtraSpacing:
|
95
95
|
Enabled: true
|
96
96
|
|
97
|
-
Layout/
|
97
|
+
Layout/IndentFirstArgument:
|
98
98
|
Enabled: true
|
99
99
|
EnforcedStyle: consistent
|
100
100
|
IndentationWidth: 2
|
101
101
|
|
102
|
-
Layout/
|
102
|
+
Layout/IndentFirstArrayElement:
|
103
103
|
Enabled: true
|
104
104
|
|
105
105
|
Layout/IndentAssignment:
|
106
106
|
Enabled: true
|
107
107
|
|
108
|
-
Layout/
|
108
|
+
Layout/IndentFirstHashElement:
|
109
109
|
Enabled: true
|
110
110
|
|
111
111
|
Layout/MultilineHashBraceLayout:
|
data/.ruby-version
CHANGED
@@ -1 +1 @@
|
|
1
|
-
2.
|
1
|
+
2.5.5
|
data/Gemfile.lock
CHANGED
@@ -1,10 +1,10 @@
|
|
1
1
|
PATH
|
2
2
|
remote: .
|
3
3
|
specs:
|
4
|
-
dependency_spy (0.4.
|
5
|
-
bibliothecary (~> 6.
|
6
|
-
colorize (
|
7
|
-
semantic_range (~> 2.
|
4
|
+
dependency_spy (0.4.1)
|
5
|
+
bibliothecary (~> 6.6)
|
6
|
+
colorize (= 0.8.1)
|
7
|
+
semantic_range (~> 2.2)
|
8
8
|
thor (~> 0.20)
|
9
9
|
yavdb (~> 0.5)
|
10
10
|
|
@@ -13,7 +13,7 @@ GEM
|
|
13
13
|
specs:
|
14
14
|
ansi (1.5.0)
|
15
15
|
ast (2.4.0)
|
16
|
-
bibliothecary (6.
|
16
|
+
bibliothecary (6.6.0)
|
17
17
|
commander
|
18
18
|
deb_control
|
19
19
|
librariesio-gem-parser
|
@@ -33,21 +33,20 @@ GEM
|
|
33
33
|
ethon (0.12.0)
|
34
34
|
ffi (>= 1.3.0)
|
35
35
|
execjs (2.7.0)
|
36
|
-
ffi (1.
|
37
|
-
highline (2.0.
|
36
|
+
ffi (1.11.0)
|
37
|
+
highline (2.0.2)
|
38
38
|
jaro_winkler (1.5.2)
|
39
|
-
json (2.
|
39
|
+
json (2.2.0)
|
40
40
|
kramdown (1.17.0)
|
41
41
|
librariesio-gem-parser (1.0.0)
|
42
|
-
libv8 (3.16.14.19)
|
42
|
+
libv8 (3.16.14.19-x86_64-linux)
|
43
43
|
oga (2.15)
|
44
44
|
ast
|
45
45
|
ruby-ll (~> 2.1)
|
46
46
|
ox (2.10.0)
|
47
|
-
parallel (1.
|
48
|
-
parser (2.6.
|
47
|
+
parallel (1.17.0)
|
48
|
+
parser (2.6.3.0)
|
49
49
|
ast (~> 2.4.0)
|
50
|
-
powerpack (0.1.2)
|
51
50
|
rainbow (3.0.0)
|
52
51
|
rake (12.3.2)
|
53
52
|
ref (2.0.0)
|
@@ -59,22 +58,21 @@ GEM
|
|
59
58
|
rspec-expectations (>= 2.99.0.beta1)
|
60
59
|
rspec-core (3.8.0)
|
61
60
|
rspec-support (~> 3.8.0)
|
62
|
-
rspec-expectations (3.8.
|
61
|
+
rspec-expectations (3.8.3)
|
63
62
|
diff-lcs (>= 1.2.0, < 2.0)
|
64
63
|
rspec-support (~> 3.8.0)
|
65
64
|
rspec-mocks (3.8.0)
|
66
65
|
diff-lcs (>= 1.2.0, < 2.0)
|
67
66
|
rspec-support (~> 3.8.0)
|
68
67
|
rspec-support (3.8.0)
|
69
|
-
rubocop (0.
|
68
|
+
rubocop (0.69.0)
|
70
69
|
jaro_winkler (~> 1.5.1)
|
71
70
|
parallel (~> 1.10)
|
72
|
-
parser (>= 2.
|
73
|
-
powerpack (~> 0.1)
|
71
|
+
parser (>= 2.6)
|
74
72
|
rainbow (>= 2.2.2, < 4.0)
|
75
73
|
ruby-progressbar (~> 1.7)
|
76
|
-
unicode-display_width (
|
77
|
-
rubocop-rspec (1.
|
74
|
+
unicode-display_width (>= 1.4.0, < 1.7)
|
75
|
+
rubocop-rspec (1.33.0)
|
78
76
|
rubocop (>= 0.60.0)
|
79
77
|
ruby-ll (2.1.2)
|
80
78
|
ansi
|
@@ -82,7 +80,7 @@ GEM
|
|
82
80
|
ruby-progressbar (1.10.0)
|
83
81
|
sdl4r (0.9.11)
|
84
82
|
semantic_interval (0.1.0)
|
85
|
-
semantic_range (2.1
|
83
|
+
semantic_range (2.2.1)
|
86
84
|
simplecov (0.16.1)
|
87
85
|
docile (~> 1.1)
|
88
86
|
json (>= 1.8, < 3)
|
@@ -96,8 +94,8 @@ GEM
|
|
96
94
|
citrus (~> 3.0, > 3.0)
|
97
95
|
typhoeus (1.3.1)
|
98
96
|
ethon (>= 0.9.0)
|
99
|
-
unicode-display_width (1.
|
100
|
-
yavdb (0.5.
|
97
|
+
unicode-display_width (1.6.0)
|
98
|
+
yavdb (0.5.1)
|
101
99
|
execjs (~> 2.7.0)
|
102
100
|
json (~> 2.1)
|
103
101
|
kramdown (~> 1.17)
|
data/dependency_spy.gemspec
CHANGED
@@ -20,7 +20,7 @@ Gem::Specification.new do |spec|
|
|
20
20
|
spec.executables = ['dependency_spy', 'depspy']
|
21
21
|
spec.require_paths = ['lib']
|
22
22
|
|
23
|
-
spec.required_ruby_version = '>= 2.
|
23
|
+
spec.required_ruby_version = '>= 2.5.5'
|
24
24
|
|
25
25
|
# Development
|
26
26
|
spec.add_development_dependency 'codacy-coverage'
|
@@ -34,9 +34,9 @@ Gem::Specification.new do |spec|
|
|
34
34
|
spec.add_development_dependency 'rubocop-rspec', ['~> 1.29']
|
35
35
|
|
36
36
|
# Runtime
|
37
|
-
spec.add_runtime_dependency 'bibliothecary', ['~> 6.
|
38
|
-
spec.add_runtime_dependency 'colorize', ['
|
39
|
-
spec.add_runtime_dependency 'semantic_range', ['~> 2.
|
37
|
+
spec.add_runtime_dependency 'bibliothecary', ['~> 6.6']
|
38
|
+
spec.add_runtime_dependency 'colorize', ['0.8.1']
|
39
|
+
spec.add_runtime_dependency 'semantic_range', ['~> 2.2']
|
40
40
|
spec.add_runtime_dependency 'thor', ['~> 0.20']
|
41
41
|
spec.add_runtime_dependency 'yavdb', ['~> 0.5']
|
42
42
|
end
|
data/lib/dependency_spy.rb
CHANGED
@@ -40,13 +40,12 @@ module DependencySpy
|
|
40
40
|
path = File.expand_path(path)
|
41
41
|
package_managers = find_platform(platform)
|
42
42
|
file_list = if !files.nil?
|
43
|
-
files.split(',')
|
43
|
+
files.split(',').map { |f| "#{path}/#{f}" }
|
44
44
|
elsif File.file?(path)
|
45
45
|
path = File.dirname(path)
|
46
46
|
[File.basename(path)]
|
47
47
|
else
|
48
|
-
|
49
|
-
cmd.split("\n").sort
|
48
|
+
Bibliothecary.load_file_info_list(path).map(&:full_path)
|
50
49
|
end
|
51
50
|
manifests = package_managers.map { |pm| pm.analyse(path, file_list) }.flatten.compact
|
52
51
|
manifests.map do |manifest|
|
@@ -42,6 +42,7 @@ module DependencySpy
|
|
42
42
|
private
|
43
43
|
|
44
44
|
def parse(version_or_range, loose = false)
|
45
|
+
version_or_range = '>= 0.0.0' if version_or_range == '*'
|
45
46
|
return version_or_range if version_or_range.is_a?(SemanticRange::Range) ||
|
46
47
|
version_or_range.is_a?(SemanticRange::Version)
|
47
48
|
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependency_spy
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.4.
|
4
|
+
version: 0.4.1
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Rodrigo Fernandes
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2019-
|
11
|
+
date: 2019-05-17 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: codacy-coverage
|
@@ -114,26 +114,26 @@ dependencies:
|
|
114
114
|
requirements:
|
115
115
|
- - "~>"
|
116
116
|
- !ruby/object:Gem::Version
|
117
|
-
version: '6.
|
117
|
+
version: '6.6'
|
118
118
|
type: :runtime
|
119
119
|
prerelease: false
|
120
120
|
version_requirements: !ruby/object:Gem::Requirement
|
121
121
|
requirements:
|
122
122
|
- - "~>"
|
123
123
|
- !ruby/object:Gem::Version
|
124
|
-
version: '6.
|
124
|
+
version: '6.6'
|
125
125
|
- !ruby/object:Gem::Dependency
|
126
126
|
name: colorize
|
127
127
|
requirement: !ruby/object:Gem::Requirement
|
128
128
|
requirements:
|
129
|
-
- -
|
129
|
+
- - '='
|
130
130
|
- !ruby/object:Gem::Version
|
131
131
|
version: 0.8.1
|
132
132
|
type: :runtime
|
133
133
|
prerelease: false
|
134
134
|
version_requirements: !ruby/object:Gem::Requirement
|
135
135
|
requirements:
|
136
|
-
- -
|
136
|
+
- - '='
|
137
137
|
- !ruby/object:Gem::Version
|
138
138
|
version: 0.8.1
|
139
139
|
- !ruby/object:Gem::Dependency
|
@@ -142,14 +142,14 @@ dependencies:
|
|
142
142
|
requirements:
|
143
143
|
- - "~>"
|
144
144
|
- !ruby/object:Gem::Version
|
145
|
-
version: '2.
|
145
|
+
version: '2.2'
|
146
146
|
type: :runtime
|
147
147
|
prerelease: false
|
148
148
|
version_requirements: !ruby/object:Gem::Requirement
|
149
149
|
requirements:
|
150
150
|
- - "~>"
|
151
151
|
- !ruby/object:Gem::Version
|
152
|
-
version: '2.
|
152
|
+
version: '2.2'
|
153
153
|
- !ruby/object:Gem::Dependency
|
154
154
|
name: thor
|
155
155
|
requirement: !ruby/object:Gem::Requirement
|
@@ -232,7 +232,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
232
232
|
requirements:
|
233
233
|
- - ">="
|
234
234
|
- !ruby/object:Gem::Version
|
235
|
-
version: 2.
|
235
|
+
version: 2.5.5
|
236
236
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
237
237
|
requirements:
|
238
238
|
- - ">="
|
@@ -240,7 +240,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
240
240
|
version: '0'
|
241
241
|
requirements: []
|
242
242
|
rubyforge_project:
|
243
|
-
rubygems_version: 2.
|
243
|
+
rubygems_version: 2.7.6.2
|
244
244
|
signing_key:
|
245
245
|
specification_version: 4
|
246
246
|
summary: Finds known vulnerabilities in your dependencies
|