github_webhook 1.1.1 → 1.1.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/.ruby-version +1 -1
  3. data/.travis.yml +5 -3
  4. data/github_webhook.gemspec +0 -1
  5. data/lib/github_webhook/processor.rb +2 -2
  6. data/lib/github_webhook/version.rb +1 -1
  7. metadata +3 -18
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b600d6f9819bb2733a770802f9b7d9bf3c6ce0494f5efd5331a3c837449138e9
4
- data.tar.gz: 2508562d1d07536d4269a8d9a2887e11a5fb777d8def729e1a7874e04a818b23
3
+ metadata.gz: ba52e52d6ecd813fe9e3731a334463f2555d07f11564609d7136f18d6744db07
4
+ data.tar.gz: 0ade3cbfce18c1dfc075344169023225a058edf6f38e2d52990d82c596efdb87
5
5
  SHA512:
6
- metadata.gz: bab9275ab482493469fff0e8b161d320626b514303e4370fff55929beb2ed30aac8f2eaf6c21410834f4c38d56c4e633e3ce7ef768a04c1cf1bae02a3f5e4413
7
- data.tar.gz: 5359dd0bc8f338a19d95ca06f2b8c0c340f02f2ccd49aebae4d8eae7cce27a85dc8f300524551ee298a3cbe49e5f6aec71ad4a87f4cebfd7dd44d6101386074e
6
+ metadata.gz: be9d65ebb4baaaf423d4cdc74a1458af5f7a0af21af6d6043df04c0b4ef9a7e41a6f927fd1bdf28e0c57ae11b6be72c9c96262670f178082ec1a640695fa2e78
7
+ data.tar.gz: 49aecdaa55646ecb5cc045b036ebe0cf5525d3aa25959fda16f0cd5e01453fbc015803ea502ec0a783ddf3a69ee60ac0600c2a9d3c33b723906a361db2be1223
data/.ruby-version CHANGED
@@ -1 +1 @@
1
- 2.4.2
1
+ 2.6.6
data/.travis.yml CHANGED
@@ -1,8 +1,10 @@
1
1
  language: ruby
2
2
  rvm:
3
- - 2.4.2
4
- - 2.3.5
5
- - 2.2.8
3
+ - 2.6.3
4
+ - 2.5.3
5
+ - 2.4.6
6
+ - 2.3.7
7
+ - 2.2.10
6
8
  gemfile:
7
9
  - gemfiles/rails_4.2.gemfile
8
10
  - gemfiles/rails_5.0.gemfile
data/github_webhook.gemspec CHANGED
@@ -22,7 +22,6 @@ Gem::Specification.new do |spec|
22
22
  spec.add_dependency "activesupport", ">= 4"
23
23
  spec.add_dependency "railties", ">= 4"
24
24
 
25
- spec.add_development_dependency "bundler", "~> 1.5"
26
25
  spec.add_development_dependency "rake", "~> 10.1"
27
26
  spec.add_development_dependency "rspec", "~> 2.14"
28
27
  spec.add_development_dependency "codeclimate-test-reporter", "~> 1.0"
data/lib/github_webhook/processor.rb CHANGED
@@ -82,7 +82,7 @@ module GithubWebhook::Processor
82
82
  secret = webhook_secret(json_body)
83
83
 
84
84
  expected_signature = "sha1=#{OpenSSL::HMAC.hexdigest(HMAC_DIGEST, secret, request_body)}"
85
- if signature_header != expected_signature
85
+ unless ActiveSupport::SecurityUtils.secure_compare(signature_header, expected_signature)
86
86
  GithubWebhook.logger && GithubWebhook.logger.warn("[GithubWebhook::Processor] signature "\
87
87
  "invalid, actual: #{signature_header}, expected: #{expected_signature}")
88
88
  raise SignatureError
@@ -91,7 +91,7 @@ module GithubWebhook::Processor
91
91
 
92
92
  def check_github_event!
93
93
  unless GITHUB_EVENTS.include?(request.headers['X-GitHub-Event'])
94
- raise UnsupportedGithubEventError.new("#{request.headers['X-GitHub-Event']} is not a whiltelisted GitHub event. See https://developer.github.com/v3/activity/events/types/")
94
+ raise UnsupportedGithubEventError.new("#{request.headers['X-GitHub-Event']} is not a whitelisted GitHub event. See https://developer.github.com/v3/activity/events/types/")
95
95
  end
96
96
  end
97
97
 
data/lib/github_webhook/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module GithubWebhook
2
- VERSION = "1.1.1"
2
+ VERSION = "1.1.2"
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: github_webhook
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.1.1
4
+ version: 1.1.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Sebastien Saunier
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2018-08-22 00:00:00.000000000 Z
11
+ date: 2020-04-05 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: rack
@@ -52,20 +52,6 @@ dependencies:
52
52
  - - ">="
53
53
  - !ruby/object:Gem::Version
54
54
  version: '4'
55
- - !ruby/object:Gem::Dependency
56
- name: bundler
57
- requirement: !ruby/object:Gem::Requirement
58
- requirements:
59
- - - "~>"
60
- - !ruby/object:Gem::Version
61
- version: '1.5'
62
- type: :development
63
- prerelease: false
64
- version_requirements: !ruby/object:Gem::Requirement
65
- requirements:
66
- - - "~>"
67
- - !ruby/object:Gem::Version
68
- version: '1.5'
69
55
  - !ruby/object:Gem::Dependency
70
56
  name: rake
71
57
  requirement: !ruby/object:Gem::Requirement
@@ -166,8 +152,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
166
152
  - !ruby/object:Gem::Version
167
153
  version: '0'
168
154
  requirements: []
169
- rubyforge_project:
170
- rubygems_version: 2.7.6
155
+ rubygems_version: 3.0.3
171
156
  signing_key:
172
157
  specification_version: 4
173
158
  summary: Process GitHub Webhooks in your Rails app (Controller mixin)