gems-validator 0.5.1 → 0.5.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: f6d23660bc52918624510a7edfee7023db5e26d4dfb0cca83cf2251a0db959c8
-  data.tar.gz: dda664cba9cb19f6e263bf525ac8f5a0f426ab840ca7ba35252873d4c8d70c6f
+  metadata.gz: 4b9f31046e93b86cd1e09e7a139d7e634638fdb4a8848a4bc860eb9ea042edd4
+  data.tar.gz: 717b9561e79d99f8b477cc72c67d1ffacacc9dd5d664b494badfe174c7ae9607
 SHA512:
-  metadata.gz: 1787422c64451e75086da0c7bd09be6119a2a94fbfbff5fe2f2364fc0d532862912ac0bc80b337b4284c571643f700bf10b7fa34828e9f869ed7013d246607ea
-  data.tar.gz: fefa9335637533e8c6c7a15dcd57d9dbd6909533026fcd63dfbe724f76eb598469585eb5e5cd1bfb2479ef33f3cd6d46e81f6e59dbeebf8dabdbde49cf93d036
+  metadata.gz: f25449645161dffe8ca47218244ea1fe32324a7cf90bc7c6f9da06e48b141d27de30bbbaa66ba8cdce6b8dde25c0394d3456a1cf7a1c8ff7ad62cf17afb7bbd7
+  data.tar.gz: c8b69f7269b05bae72ea0f9a53c44548b900ebd6ecb7f18305ca8cb73f93371b8193c74faefbceff186a6510105f2dec0507fc91f9c69ebe20bdc83d52ffd0c5

data/lib/gems-validator/audit-service.rb

@@ -10,18 +10,21 @@ module GemsValidator
 
     def is_a_vulnerable_gem?(gem_name)
       gem_vulnerabilities = @read_file["results"].select { |item| item["gem"]["name"] == gem_name }
-      generate_messages(gem_vulnerabilities)
+      unless gem_vulnerabilities.empty?
+        generate_messages(gem_vulnerabilities)
+      end
     end
 
     private
-    def generate_messages(gem_vulnerabilities)
-      if (gem_vulnerabilities.empty?)
-        return Bundler.ui.confirm "[GemsValidator::Success] - A gem não apresenta nenhum vulnerabilidade!"
-      end
+    def get_translate_criticality(criticality)
+      translate_default_criticalities = { "critical" => "crítica", "high" => "alta", "medium" => "média", "low" => "baixa" }
+      translate_default_criticalities[criticality] || 'não definido'
+    end
 
+    def generate_messages(gem_vulnerabilities)
       GemsValidator::OutputMessage.warn("A gem #{gem_vulnerabilities[0]["gem"]["name"]} na versao #{gem_vulnerabilities[0]["gem"]["version"]} apresenta #{gem_vulnerabilities.size} vulnerabilidade#{gem_vulnerabilities.size > 1 ? "s" : ""}")
       gem_vulnerabilities.map.with_index do |vulnerability, number|
-        GemsValidator::OutputMessage.warn("* #{vulnerability["advisory"]["title"]} \n                               Nivel: #{vulnerability["advisory"]["criticality"]} \n                               URL da issue: #{vulnerability["advisory"]["url"]}")
+        GemsValidator::OutputMessage.warn("*   Título: #{vulnerability["advisory"]["title"]} \n                               Nível: #{get_translate_criticality(vulnerability["advisory"]["criticality"])} \n                               URL: #{vulnerability["advisory"]["url"]}")
       end
     end
     

data/lib/gems-validator/output-message.rb

@@ -3,7 +3,7 @@
 module GemsValidator
   class OutputMessage
     def self.error(message)
-      Bundler.ui.error("[GemsValidator::Error] - #{message}")
+      Bundler::GemspecError.new("[GemsValidator::Error] - #{message}")
     end
   
     def self.warn(message)

data/lib/gems-validator/validate.rb

@@ -11,7 +11,7 @@ module GemsValidator
           is_allowed?
           GemsValidator::OutputMessage.success("A gem #{@gem.name} está homologada e pode ser instalada!")
         rescue => error
-          raise GemsValidator::OutputMessage.error("Não foi possível instalar a gem #{@gem.name}. Motivo: #{error.to_s}")
+          GemsValidator::OutputMessage.error("Não foi possível instalar a gem #{@gem.name}. Motivo: #{error.to_s}")
         end
       end
 

data/lib/gems-validator/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module GemsValidator
-  VERSION = "0.5.1"
+  VERSION = "0.5.4"
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: gems-validator
 version: !ruby/object:Gem::Version
-  version: 0.5.1
+  version: 0.5.4
 platform: ruby
 authors:
 - henriquesml