ey-hmac 2.0.1 → 2.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 4bf59e1087a2bb852ce1369afa06913660f30c2e
-  data.tar.gz: 93441d3b60b6a85ec126c0451c804b747a722b96
+SHA256:
+  metadata.gz: 780a6fcc90418a0389166a31e520337dced06873038bb0a9e71a6f3b70996835
+  data.tar.gz: 073f26a6c11bd06036e23a49b50e8ffea15ca70c608d05e0e7be1a0b7547cda7
 SHA512:
-  metadata.gz: 5a9898ab08b0f02936a94bafd16e58565df0f74de3e79636647823769e1b73cbd97f99ab5e938a1379f4e12441bc1fa3ff6a7dd63ef7dbca7f74ee0ff178a8e8
-  data.tar.gz: ea32437e299a19a3a712e06f2532a32dfd89a5d03c7f3a6a8ad5983fb88d9e73ed7a92f732cc3e0a9b194c55e8393b2092784ee58e7bdde5bbc6b9ce129f6045
+  metadata.gz: f0b5f2b1827e7a180b35ffa2d3b2e2918a470d008735dbb5b5b79430ac2201c7d58a5abcf124f5ee69119ab83b2b882f9802b70e0f00208df130f9974fc82e2f
+  data.tar.gz: 8d5b959e371034a6a436f7bfec4602e4e477a9830b6d67a6fc2e23378d5002fb2fbbd3714a635b8efe579bcf4f07316176be42ae90985317a86f72e2d7c57a15

data/.github/workflows/ruby.yml

@@ -0,0 +1,35 @@
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+# This workflow will download a prebuilt Ruby version, install dependencies and run tests with Rake
+# For more information see: https://github.com/marketplace/actions/setup-ruby-jruby-and-truffleruby
+
+name: Ruby
+
+on:
+  push:
+    branches: [ master ]
+  pull_request:
+    branches: [ master ]
+
+jobs:
+  test:
+
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        ruby-version: ['2.5', '2.6', '2.7', '3.0']
+
+    steps:
+    - uses: actions/checkout@v2
+    - name: Set up Ruby
+    # To automatically get bug fixes and new Ruby versions for ruby/setup-ruby,
+    # change this to (see https://github.com/ruby/setup-ruby#versioning):
+    # uses: ruby/setup-ruby@v1
+      uses: ruby/setup-ruby@473e4d8fe5dd94ee328fdfca9f8c9c7afc9dae5e
+      with:
+        ruby-version: ${{ matrix.ruby-version }}
+        bundler-cache: true # runs 'bundle install' and caches installed gems automatically
+    - name: Run tests
+      run: bundle exec rspec

data/CHANGELOG.md

@@ -0,0 +1,68 @@
+# Change Log
+
+## [v2.2.0](https://github.com/engineyard/hmac/tree/v2.2.0) (2017-01-09)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v2.1.0...v2.2.0)
+
+**Closed issues:**
+
+- :sha512 and :sha384 [\#4](https://github.com/engineyard/hmac/issues/4)
+
+**Merged pull requests:**
+
+- use Base64\#strict\_encode64 when signing requests [\#5](https://github.com/engineyard/hmac/pull/5) ([lanej](https://github.com/lanej))
+
+## [v2.1.0](https://github.com/engineyard/hmac/tree/v2.1.0) (2015-12-03)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v2.0.2...v2.1.0)
+
+**Merged pull requests:**
+
+- add optional server-side HMAC TTL to prevent replay attacks [\#3](https://github.com/engineyard/hmac/pull/3) ([hudon](https://github.com/hudon))
+
+## [v2.0.2](https://github.com/engineyard/hmac/tree/v2.0.2) (2015-09-17)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v2.0.1...v2.0.2)
+
+## [v2.0.1](https://github.com/engineyard/hmac/tree/v2.0.1) (2015-09-17)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v2.0.0...v2.0.1)
+
+**Merged pull requests:**
+
+- update faraday usage in the readme [\#2](https://github.com/engineyard/hmac/pull/2) ([svarks](https://github.com/svarks))
+
+## [v2.0.0](https://github.com/engineyard/hmac/tree/v2.0.0) (2014-08-09)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v1.0.0...v2.0.0)
+
+## [v1.0.0](https://github.com/engineyard/hmac/tree/v1.0.0) (2014-04-29)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.1.3...v1.0.0)
+
+## [v0.1.3](https://github.com/engineyard/hmac/tree/v0.1.3) (2014-04-29)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.1.2...v0.1.3)
+
+## [v0.1.2](https://github.com/engineyard/hmac/tree/v0.1.2) (2014-04-01)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.1.1...v0.1.2)
+
+**Merged pull requests:**
+
+- Fix deprecated usage of Digest::Digest. [\#1](https://github.com/engineyard/hmac/pull/1) ([ericlathrop](https://github.com/ericlathrop))
+
+## [v0.1.1](https://github.com/engineyard/hmac/tree/v0.1.1) (2014-02-19)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.1.0...v0.1.1)
+
+## [v0.1.0](https://github.com/engineyard/hmac/tree/v0.1.0) (2014-02-18)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.0.5...v0.1.0)
+
+## [v0.0.5](https://github.com/engineyard/hmac/tree/v0.0.5) (2013-10-18)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.0.4...v0.0.5)
+
+## [v0.0.4](https://github.com/engineyard/hmac/tree/v0.0.4) (2013-02-08)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.0.3...v0.0.4)
+
+## [v0.0.3](https://github.com/engineyard/hmac/tree/v0.0.3) (2013-02-06)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.0.2...v0.0.3)
+
+## [v0.0.2](https://github.com/engineyard/hmac/tree/v0.0.2) (2013-02-05)
+[Full Changelog](https://github.com/engineyard/hmac/compare/v0.0.1...v0.0.2)
+
+## [v0.0.1](https://github.com/engineyard/hmac/tree/v0.0.1) (2013-02-05)
+
+
+\* *This Change Log was automatically generated by [github_changelog_generator](https://github.com/skywinder/Github-Changelog-Generator)*

data/Gemfile

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 source 'https://rubygems.org'
 
 # Specify your gem's dependencies in ey-hmac.gemspec
@@ -10,11 +12,11 @@ end
 
 group(:rack) do
   gem 'rack'
-  gem 'rack-test'
   gem 'rack-client'
+  gem 'rack-test'
 end
 
 group(:faraday) do
-  gem 'faraday', '~> 0.9'
+  gem 'faraday', '~> 1.3'
   gem 'faraday_middleware'
 end

data/ey-hmac.gemspec

@@ -1,21 +1,25 @@
-# -*- encoding: utf-8 -*-
-require File.expand_path('../lib/ey-hmac/version', __FILE__)
+# frozen_string_literal: true
+
+require 'English'
+require File.expand_path('lib/ey-hmac/version', __dir__)
 
 Gem::Specification.new do |gem|
-  gem.name          = "ey-hmac"
+  gem.name          = 'ey-hmac'
   gem.version       = Ey::Hmac::VERSION
-  gem.authors       = ["Josh Lane & Jason Hansen"]
-  gem.email         = ["jlane@engineyard.com"]
-  gem.description   = %q{Lightweight HMAC signing libraries and middleware for Farday and Rack}
-  gem.summary       = %q{Lightweight HMAC signing libraries and middleware for Farday and Rack}
-  gem.homepage      = ""
+  gem.authors       = ['Josh Lane']
+  gem.email         = ['me@joshualane.com']
+  gem.description   = 'Lightweight HMAC signing libraries and middleware for Farday and Rack'
+  gem.summary       = 'Lightweight HMAC signing libraries and middleware for Farday and Rack'
+  gem.homepage      = ''
 
-  gem.files         = `git ls-files`.split($/)
-  gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
+  gem.files         = `git ls-files`.split($INPUT_RECORD_SEPARATOR)
+  gem.executables   = gem.files.grep(%r{^bin/}).map { |f| File.basename(f) }
   gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
-  gem.require_paths = ["lib"]
-  gem.license       = "MIT"
+  gem.require_paths = ['lib']
+  gem.license       = 'MIT'
+
+  gem.required_ruby_version = '>= 2.5'
 
-  gem.add_development_dependency "rake"
-  gem.add_development_dependency "bundler", "~> 1.3"
+  gem.add_development_dependency 'bundler', '~> 2.3'
+  gem.add_development_dependency 'rake'
 end

data/lib/ey-hmac/adapter/faraday.rb

@@ -4,21 +4,29 @@ class Ey::Hmac::Adapter::Faraday < Ey::Hmac::Adapter
   end
 
   def content_type
-    %w[CONTENT-TYPE CONTENT_TYPE Content-Type Content_Type].inject(nil) { |r,h| r || request[:request_headers][h] }
+    @content_type ||= find_header(
+      *%w[CONTENT-TYPE CONTENT_TYPE Content-Type Content_Type]
+    )
   end
 
   def content_digest
-    if existing = %w[CONTENT-DIGEST CONTENT_DIGEST Content-Digest Content_Digest].inject(nil) { |r,h| r || request[:request_headers][h] }
-      existing
-    elsif body
-      digestable = if body.respond_to?(:rewind)
-                     body.rewind
-                     body.read.tap { |_| body.rewind }
-                   else
-                     body.to_s
-                   end
-
-      request[:request_headers]['Content-Digest'] = Digest::MD5.hexdigest(digestable)
+    @content_digest ||= find_header(
+      *%w[CONTENT-DIGEST CONTENT_DIGEST Content-Digest Content_Digest]
+    )
+  end
+
+  def set_content_digest
+    return if content_digest
+
+    digestable = if body.respond_to?(:rewind)
+                   body.rewind
+                   body.read.tap { |_| body.rewind }
+                 else
+                   body.to_s
+                 end
+
+    if digestable && digestable != ""
+      @content_digest = request[:request_headers]['Content-Digest'] = Digest::MD5.hexdigest(digestable)
     end
   end
 
@@ -29,8 +37,13 @@ class Ey::Hmac::Adapter::Faraday < Ey::Hmac::Adapter
   end
 
   def date
-    existing = %w[DATE Date].inject(nil) { |r,h| r || request[h] }
-    existing || (request[:request_headers]['Date'] = Time.now.httpdate)
+    find_header(*%w[DATE Date])
+  end
+
+  def set_date
+    unless date
+      request[:request_headers]['Date'] = Time.now.httpdate
+    end
   end
 
   def path
@@ -38,7 +51,8 @@ class Ey::Hmac::Adapter::Faraday < Ey::Hmac::Adapter
   end
 
   def sign!(key_id, key_secret)
-    %w[CONTENT-TYPE CONTENT_TYPE Content-Type Content_Type].inject(nil) { |r,h| request[:request_headers][h] }
+    set_content_digest
+    set_date
 
     if options[:version]
       request[:request_headers]['X-Signature-Version'] = options[:version]
@@ -48,6 +62,14 @@ class Ey::Hmac::Adapter::Faraday < Ey::Hmac::Adapter
   end
 
   def authorization_signature
-    %w[Authorization AUTHORIZATION].inject(nil){|r, h| r || request[:request_headers][h]}
+    find_header(*%w[Authorization AUTHORIZATION])
+  end
+
+  private
+
+  def find_header(*keys)
+    value = nil
+    keys.find { |k| value = request[:request_headers][k] }
+    value
   end
 end

data/lib/ey-hmac/adapter/rack.rb

@@ -3,10 +3,7 @@ require 'rack'
 class Ey::Hmac::Adapter::Rack < Ey::Hmac::Adapter
   def initialize(request, options)
     super
-    @request = if request.is_a?(Hash)
-                 ::Rack::Request.new(request)
-               else request
-               end
+    @request = request.is_a?(Hash) ? ::Rack::Request.new(request) : request
   end
 
   def method
@@ -18,10 +15,12 @@ class Ey::Hmac::Adapter::Rack < Ey::Hmac::Adapter
   end
 
   def content_digest
-    if existing = request.env['HTTP_CONTENT_DIGEST']
-      existing
-    elsif digest = body && Digest::MD5.hexdigest(body)
-      request.env['HTTP_CONTENT_DIGEST'] = digest
+    request.env['HTTP_CONTENT_DIGEST']
+  end
+
+  def set_content_digest
+    if body
+      request.env['HTTP_CONTENT_DIGEST'] = Digest::MD5.hexdigest(body)
     end
   end
 
@@ -36,7 +35,11 @@ class Ey::Hmac::Adapter::Rack < Ey::Hmac::Adapter
   end
 
   def date
-    request.env['HTTP_DATE'] ||= Time.now.httpdate
+    request.env['HTTP_DATE']
+  end
+
+  def set_date
+    request.env['HTTP_DATE'] = Time.now.httpdate
   end
 
   def path
@@ -44,6 +47,9 @@ class Ey::Hmac::Adapter::Rack < Ey::Hmac::Adapter
   end
 
   def sign!(key_id, key_secret)
+    set_date
+    set_content_digest
+
     if options[:version]
       request.env['HTTP_X_SIGNATURE_VERSION'] = options[:version]
     end

data/lib/ey-hmac/adapter.rb

@@ -10,6 +10,7 @@ class Ey::Hmac::Adapter
 
   # @param [Object] request signer-specific request implementation
   # @option options [Integer] :version signature version
+  # @option options [Integer] :ttl (nil) duration during which HMAC is valid after signed date
   # @option options [String] :authorization_header ('Authorization') Authorization header key.
   # @option options [String] :server ('EyHmac') service name prefixed to {#authorization}. set to {#service}
   # @option options [Symbol] :sign_with (:sha_256) outgoing signature digest algorithm. See {OpenSSL::Digest#new}
@@ -17,6 +18,7 @@ class Ey::Hmac::Adapter
   def initialize(request, options={})
     @request, @options = request, options
 
+    @ttl                  = options[:ttl]
     @authorization_header = options[:authorization_header] || 'Authorization'
     @service              = options[:service] || 'EyHmac'
     @sign_with            = options[:sign_with] || :sha256
@@ -35,7 +37,9 @@ class Ey::Hmac::Adapter
   # @param [String] signature digest hash function. Defaults to #sign_with
   # @return [String] HMAC signature of {#request}
   def signature(key_secret, digest = self.sign_with)
-    Base64.encode64(OpenSSL::HMAC.digest(OpenSSL::Digest.new(digest.to_s), key_secret, canonicalize)).strip
+    Base64.strict_encode64(
+      OpenSSL::HMAC.digest(
+        OpenSSL::Digest.new(digest.to_s), key_secret, canonicalize)).strip
   end
 
   # @param [String] key_id public HMAC key
@@ -110,26 +114,30 @@ class Ey::Hmac::Adapter
 
   # @see Ey::Hmac#authenticate!
   def authenticated!(&block)
-    unless authorization_match = AUTHORIZATION_REGEXP.match(authorization_signature)
-      raise(Ey::Hmac::MissingAuthorization, "Failed to parse authorization_signature #{authorization_signature}")
-    end
-
-    key_id          = authorization_match[1]
-    signature_value = authorization_match[2]
+    key_id, signature_value = check_signature!
+    key_secret = block.call(key_id)
 
-    unless key_secret = block.call(key_id)
-      raise(Ey::Hmac::MissingSecret, "Failed to find secret matching #{key_id.inspect}")
+    unless key_secret
+      raise Ey::Hmac::MissingSecret,
+        "Failed to find secret matching #{key_id.inspect}"
     end
 
-    calculated_signatures = self.accept_digests.map { |ad| signature(key_secret, ad) }
+    check_ttl!
 
-    unless calculated_signatures.any? { |cs| secure_compare(signature_value, cs) }
-      raise(Ey::Hmac::SignatureMismatch, "Calculated signature #{signature_value} does not match #{calculated_signatures.inspect} using #{canonicalize.inspect}")
+    calculated_signatures = accept_digests.map { |ad| signature(key_secret, ad) }
+    matching_signature = calculated_signatures.any? { |cs| secure_compare(signature_value, cs) }
+
+    unless matching_signature
+      raise Ey::Hmac::SignatureMismatch,
+        "Calculated signature #{signature_value} does not match #{calculated_signatures.inspect} using #{canonicalize.inspect}"
     end
+
     true
   end
   alias authenticate! authenticated!
 
+  protected
+
   # Constant time string comparison.
   # pulled from https://github.com/rack/rack/blob/master/lib/rack/utils.rb#L399
   def secure_compare(a, b)
@@ -141,4 +149,27 @@ class Ey::Hmac::Adapter
     b.each_byte { |v| r |= v ^ l[i+=1] }
     r == 0
   end
+
+  def check_ttl!
+    if @ttl && date
+      expiry       = Time.parse(date).to_i + @ttl
+      current_time = Time.now.to_i
+
+      unless expiry > current_time
+        raise Ey::Hmac::ExpiredHmac,
+          "Signature has expired passed #{expiry}. Current time is #{current_time}"
+      end
+    end
+  end
+
+  def check_signature!
+    authorization_match = AUTHORIZATION_REGEXP.match(authorization_signature)
+
+    unless authorization_match
+      raise Ey::Hmac::MissingAuthorization,
+        "Failed to parse authorization_signature #{authorization_signature}"
+    end
+
+    [authorization_match[1], authorization_match[2]]
+  end
 end

data/lib/ey-hmac/version.rb

@@ -1,5 +1,5 @@
 module Ey
   module Hmac
-    VERSION = "2.0.1"
+    VERSION = "2.3.0"
   end
 end

data/lib/ey-hmac.rb

@@ -3,6 +3,7 @@ require "ey-hmac/version"
 require 'base64'
 require 'digest/md5'
 require 'openssl'
+require 'time'
 
 module Ey
   module Hmac
@@ -11,6 +12,7 @@ module Ey
     MissingSecret        = Class.new(Error)
     MissingAuthorization = Class.new(Error)
     SignatureMismatch    = Class.new(Error)
+    ExpiredHmac          = Class.new(Error)
 
     autoload :Adapter, "ey-hmac/adapter"
     autoload :Faraday, "ey-hmac/faraday"
@@ -21,12 +23,10 @@ module Ey
     end
 
     def self.default_adapter
-      @default_adapter ||= begin
-                             if defined?(Rack) || defined?(Rails)
-                               Ey::Hmac::Adapter::Rack
-                             elsif defined?(Faraday)
-                               Ey::Hmac::Adapter::Rails
-                             end
+      @default_adapter ||= if defined?(::Rack) || defined?(::Rails)
+                             Ey::Hmac::Adapter::Rack
+                           elsif defined?(::Faraday)
+                             Ey::Hmac::Adapter::Faraday
                            end
     end
 

data/spec/faraday_spec.rb

@@ -38,8 +38,7 @@ describe "faraday" do
     end
 
     it "signs and reads a request" do
-      request = Faraday::Request.new.tap { |r|
-        r.method  = :get
+      request = Faraday::Request.create(:get) { |r|
         r.path    = "/auth"
         r.body    = "{1: 2}"
         r.headers = {"Content-Type" => "application/xml"}
@@ -49,8 +48,8 @@ describe "faraday" do
 
       Ey::Hmac.sign!(request, key_id, key_secret, adapter: adapter)
 
-      expect(request[:request_headers]['Authorization']).to        start_with("EyHmac")
-      expect(request[:request_headers]['Content-Digest']).to       eq(Digest::MD5.hexdigest(request[:body]))
+      expect(request[:request_headers]['Authorization']).to start_with("EyHmac")
+      expect(request[:request_headers]['Content-Digest']).to eq(Digest::MD5.hexdigest(request[:body]))
       expect(Time.parse(request[:request_headers]['Date'])).not_to be_nil
 
       yielded = false
@@ -65,8 +64,7 @@ describe "faraday" do
     end
 
     it "does not set Content-Digest if body is nil" do
-      request = Faraday::Request.new.tap { |r|
-        r.method  = :get
+      request = Faraday::Request.create(:get) { |r|
         r.path    = "/auth"
         r.body    = nil
         r.headers = {"Content-Type" => "application/xml"}
@@ -92,8 +90,7 @@ describe "faraday" do
     end
 
     it "does not set Content-Digest if body is empty" do
-      request = Faraday::Request.new.tap do |r|
-        r.method = :get
+      request = Faraday::Request.create(:get) do |r|
         r.path = "/auth"
         r.body = ""
         r.headers = {"Content-Type" => "application/xml"}
@@ -118,8 +115,7 @@ describe "faraday" do
 
     context "with a request" do
       let!(:request) do
-        Faraday::Request.new.tap do |r|
-          r.method = :get
+        Faraday::Request.create(:get) do |r|
           r.path = "/auth"
           r.body = "{1: 2}"
           r.headers = {"Content-Type" => "application/xml"}

data/spec/shared/authenticated.rb

@@ -51,5 +51,25 @@ shared_examples_for "authentication" do
         end).to be_falsey
       }.to raise_exception(Ey::Hmac::MissingAuthorization)
     end
+
+    context "when the server specifies an HMAC TTL" do
+      it "should not authenticate expired hmac" do
+        Ey::Hmac.sign!(request, key_id, key_secret, adapter: adapter)
+        expect {
+          Ey::Hmac.authenticate!(request, adapter: adapter, ttl: 0) do |auth_id|
+            (auth_id == key_id) && key_secret
+          end
+        }.to raise_exception(Ey::Hmac::ExpiredHmac)
+      end
+
+      it "should authenticate non-expired hmac" do
+        Ey::Hmac.sign!(request, key_id, key_secret, adapter: adapter)
+        expect {
+          Ey::Hmac.authenticate!(request, adapter: adapter, ttl: 100) do |auth_id|
+            (auth_id == key_id) && key_secret
+          end
+        }.to_not raise_exception
+      end
+    end
   end
 end

data/spec/spec_helper.rb

@@ -1,6 +1,7 @@
 require File.expand_path("../../lib/ey-hmac", __FILE__)
 
 Bundler.require(:test)
+require 'securerandom'
 
 Dir[File.expand_path("../{support,shared}/*.rb", __FILE__)].each{|f| require(f)}
 

metadata

@@ -1,52 +1,53 @@
 --- !ruby/object:Gem::Specification
 name: ey-hmac
 version: !ruby/object:Gem::Version
-  version: 2.0.1
+  version: 2.3.0
 platform: ruby
 authors:
-- Josh Lane & Jason Hansen
-autorequire: 
+- Josh Lane
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-09-17 00:00:00.000000000 Z
+date: 2022-02-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: rake
+  name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '2.3'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '2.3'
 - !ruby/object:Gem::Dependency
-  name: bundler
+  name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.3'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.3'
+        version: '0'
 description: Lightweight HMAC signing libraries and middleware for Farday and Rack
 email:
-- jlane@engineyard.com
+- me@joshualane.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/workflows/ruby.yml"
 - ".gitignore"
-- ".travis.yml"
+- CHANGELOG.md
 - Gemfile
 - LICENSE.txt
 - README.md
@@ -67,7 +68,7 @@ homepage: ''
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -75,16 +76,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: '2.5'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.4.5
-signing_key: 
+rubygems_version: 3.1.6
+signing_key:
 specification_version: 4
 summary: Lightweight HMAC signing libraries and middleware for Farday and Rack
 test_files:

data/.travis.yml

@@ -1,7 +0,0 @@
----
-language: ruby
-rvm:
-  - 1.9.3
-  - 2.0.0
-
-script: bundle exec rspec