github_webhook 1.1.1 → 1.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/.ruby-version +1 -1
  3. data/.travis.yml +5 -3
  4. data/github_webhook.gemspec +0 -1
  5. data/lib/github_webhook/processor.rb +2 -2
  6. data/lib/github_webhook/version.rb +1 -1
  7. metadata +3 -18
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b600d6f9819bb2733a770802f9b7d9bf3c6ce0494f5efd5331a3c837449138e9
4
- data.tar.gz: 2508562d1d07536d4269a8d9a2887e11a5fb777d8def729e1a7874e04a818b23
3
+ metadata.gz: ba52e52d6ecd813fe9e3731a334463f2555d07f11564609d7136f18d6744db07
4
+ data.tar.gz: 0ade3cbfce18c1dfc075344169023225a058edf6f38e2d52990d82c596efdb87
5
5
  SHA512:
6
- metadata.gz: bab9275ab482493469fff0e8b161d320626b514303e4370fff55929beb2ed30aac8f2eaf6c21410834f4c38d56c4e633e3ce7ef768a04c1cf1bae02a3f5e4413
7
- data.tar.gz: 5359dd0bc8f338a19d95ca06f2b8c0c340f02f2ccd49aebae4d8eae7cce27a85dc8f300524551ee298a3cbe49e5f6aec71ad4a87f4cebfd7dd44d6101386074e
6
+ metadata.gz: be9d65ebb4baaaf423d4cdc74a1458af5f7a0af21af6d6043df04c0b4ef9a7e41a6f927fd1bdf28e0c57ae11b6be72c9c96262670f178082ec1a640695fa2e78
7
+ data.tar.gz: 49aecdaa55646ecb5cc045b036ebe0cf5525d3aa25959fda16f0cd5e01453fbc015803ea502ec0a783ddf3a69ee60ac0600c2a9d3c33b723906a361db2be1223
data/.ruby-version CHANGED
@@ -1 +1 @@
1
- 2.4.2
1
+ 2.6.6
data/.travis.yml CHANGED
@@ -1,8 +1,10 @@
1
1
  language: ruby
2
2
  rvm:
3
- - 2.4.2
4
- - 2.3.5
5
- - 2.2.8
3
+ - 2.6.3
4
+ - 2.5.3
5
+ - 2.4.6
6
+ - 2.3.7
7
+ - 2.2.10
6
8
  gemfile:
7
9
  - gemfiles/rails_4.2.gemfile
8
10
  - gemfiles/rails_5.0.gemfile
data/github_webhook.gemspec CHANGED
@@ -22,7 +22,6 @@ Gem::Specification.new do |spec|
22
22
  spec.add_dependency "activesupport", ">= 4"
23
23
  spec.add_dependency "railties", ">= 4"
24
24
 
25
- spec.add_development_dependency "bundler", "~> 1.5"
26
25
  spec.add_development_dependency "rake", "~> 10.1"
27
26
  spec.add_development_dependency "rspec", "~> 2.14"
28
27
  spec.add_development_dependency "codeclimate-test-reporter", "~> 1.0"
data/lib/github_webhook/processor.rb CHANGED
@@ -82,7 +82,7 @@ module GithubWebhook::Processor
82
82
  secret = webhook_secret(json_body)
83
83
 
84
84
  expected_signature = "sha1=#{OpenSSL::HMAC.hexdigest(HMAC_DIGEST, secret, request_body)}"
85
- if signature_header != expected_signature
85
+ unless ActiveSupport::SecurityUtils.secure_compare(signature_header, expected_signature)
86
86
  GithubWebhook.logger && GithubWebhook.logger.warn("[GithubWebhook::Processor] signature "\
87
87
  "invalid, actual: #{signature_header}, expected: #{expected_signature}")
88
88
  raise SignatureError
@@ -91,7 +91,7 @@ module GithubWebhook::Processor
91
91
 
92
92
  def check_github_event!
93
93
  unless GITHUB_EVENTS.include?(request.headers['X-GitHub-Event'])
94
- raise UnsupportedGithubEventError.new("#{request.headers['X-GitHub-Event']} is not a whiltelisted GitHub event. See https://developer.github.com/v3/activity/events/types/")
94
+ raise UnsupportedGithubEventError.new("#{request.headers['X-GitHub-Event']} is not a whitelisted GitHub event. See https://developer.github.com/v3/activity/events/types/")
95
95
  end
96
96
  end
97
97
 
data/lib/github_webhook/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module GithubWebhook
2
- VERSION = "1.1.1"
2
+ VERSION = "1.1.2"
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: github_webhook
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.1.1
4
+ version: 1.1.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Sebastien Saunier
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2018-08-22 00:00:00.000000000 Z
11
+ date: 2020-04-05 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: rack
@@ -52,20 +52,6 @@ dependencies:
52
52
  - - ">="
53
53
  - !ruby/object:Gem::Version
54
54
  version: '4'
55
- - !ruby/object:Gem::Dependency
56
- name: bundler
57
- requirement: !ruby/object:Gem::Requirement
58
- requirements:
59
- - - "~>"
60
- - !ruby/object:Gem::Version
61
- version: '1.5'
62
- type: :development
63
- prerelease: false
64
- version_requirements: !ruby/object:Gem::Requirement
65
- requirements:
66
- - - "~>"
67
- - !ruby/object:Gem::Version
68
- version: '1.5'
69
55
  - !ruby/object:Gem::Dependency
70
56
  name: rake
71
57
  requirement: !ruby/object:Gem::Requirement
@@ -166,8 +152,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
166
152
  - !ruby/object:Gem::Version
167
153
  version: '0'
168
154
  requirements: []
169
- rubyforge_project:
170
- rubygems_version: 2.7.6
155
+ rubygems_version: 3.0.3
171
156
  signing_key:
172
157
  specification_version: 4
173
158
  summary: Process GitHub Webhooks in your Rails app (Controller mixin)