RubyGems - holepicker - Versions diffs - 0.1 → 0.1.1 - Mend

holepicker 0.1 → 0.1.1

Files changed (6) hide show

data/Gemfile +3 -0
data/Gemfile.lock +14 -0
data/README.markdown +3 -2
data/lib/holepicker/online_database.rb +1 -2
data/lib/holepicker/version.rb +1 -1
metadata +3 -3

data/Gemfile CHANGED Viewed

@@ -1,2 +1,5 @@
 source "http://rubygems.org"
 gemspec
+gem 'mocha'
+gem 'rspec'

data/Gemfile.lock CHANGED Viewed

@@ -8,11 +8,25 @@ PATH
 GEM
   remote: http://rubygems.org/
   specs:
+    diff-lcs (1.1.3)
     json (1.7.7)
+    metaclass (0.0.1)
+    mocha (0.13.2)
+      metaclass (~> 0.0.1)
     rainbow (1.1.4)
+    rspec (2.12.0)
+      rspec-core (~> 2.12.0)
+      rspec-expectations (~> 2.12.0)
+      rspec-mocks (~> 2.12.0)
+    rspec-core (2.12.2)
+    rspec-expectations (2.12.1)
+      diff-lcs (~> 1.1.3)
+    rspec-mocks (2.12.2)
 PLATFORMS
   ruby
 DEPENDENCIES
   holepicker!
+  mocha
+  rspec

data/README.markdown CHANGED Viewed

@@ -2,6 +2,7 @@
 HolePicker is a Ruby gem for quickly checking all your `Gemfile.lock` files for gem versions with known vulnerabilities.
+[![Build Status](https://travis-ci.org/jsuder/holepicker.png?branch=master)](https://travis-ci.org/jsuder/holepicker)
 ## The story
@@ -10,13 +11,13 @@ The beginning of 2013 was a [really bad time](http://www.kalzumeus.com/2013/01/3
 ## Details
-The idea is that there is a [JSON file](https://github.com/psionides/holepicker/blob/master/lib/holepicker/data/data.json)\* stored in this repository that lists all the recent security-related updates to popular gems: date of the release, URL of the announcement, and a list of affected gems and updated versions. HolePicker provides a command line tool that **downloads the latest data file from GitHub every time**, scans your `Gemfile.lock` files and checks if they contain vulnerable gem versions.
+The idea is that there is a [JSON file](https://github.com/jsuder/holepicker/blob/master/lib/holepicker/data/data.json)\* stored in this repository that lists all the recent security-related updates to popular gems: date of the release, URL of the announcement, and a list of affected gems and updated versions. HolePicker provides a command line tool that **downloads the latest data file from GitHub every time**, scans your `Gemfile.lock` files and checks if they contain vulnerable gem versions.
 The reason I've done it this way is to make it easier to run the checks against the very latest version of the vulnerability list. It's kind of important to be sure that you haven't missed any last minute updates, and it would be annoying to have to check for new gem versions every time you want to run the tool (and you might not even remember to do that).
 If for some reason you don't want to download the JSON file every time, you can use the [`-o` option](#full-option-list). Also, the JSON file specifies the minimum compatible gem version that it can work with, so if new kind of information is added to the file that requires the gem to be updated in order to parse it, the gem will let you know.
-Of course the whole system still relies on me manually adding entries to the JSON file and pushing it to GitHub. I'll try to do that quickly, my trusty [@rails_bot](https://github.com/psionides/rails-retweeter-bot) notifies me pretty quickly when something really bad is happening. If for some reason I don't update the list in time, by all means please send me a pull request.
+Of course the whole system still relies on me manually adding entries to the JSON file and pushing it to GitHub. I'll try to do that quickly, my trusty [@rails_bot](https://github.com/jsuder/rails-retweeter-bot) notifies me pretty quickly when something really bad is happening. If for some reason I don't update the list in time, by all means please send me a pull request.
 (\*) YAML obviously wouldn't be appropriate, if you know what I mean.

data/lib/holepicker/online_database.rb CHANGED Viewed

@@ -4,8 +4,7 @@ require 'net/http'
 module HolePicker
   class OnlineDatabase < Database
-    # TODO temporary link
-    URL='http://pastie.org/pastes/6183429/download?key=qryhowarb9i7hoqqyvy0q'
+    URL='https://raw.github.com/jsuder/holepicker/master/lib/holepicker/data/data.json'
     def self.load
       puts "Fetching list of vulnerabilities..."

data/lib/holepicker/version.rb CHANGED Viewed

@@ -1,7 +1,7 @@
 require 'rubygems'
 module HolePicker
-  VERSION = "0.1"
+  VERSION = "0.1.1"
   def self.version
     ::Gem::Version.new(VERSION)

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: holepicker
 version: !ruby/object:Gem::Version
-  version: '0.1'
+  version: 0.1.1
   prerelease:
 platform: ruby
 authors:
@@ -9,7 +9,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2013-02-16 00:00:00.000000000 Z
+date: 2013-02-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: json
@@ -67,7 +67,7 @@ files:
 - lib/holepicker/vulnerability.rb
 - lib/holepicker.rb
 - bin/holepicker
-homepage: http://github.com/psionides/holepicker
+homepage: http://github.com/jsuder/holepicker
 licenses: []
 post_install_message:
 rdoc_options: []