holepicker 0.3.1 → 0.3.2

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml ADDED
@@ -0,0 +1,7 @@
1
+ ---
2
+ SHA1:
3
+ metadata.gz: 2826b6b1de9806c9805c0ce7252e814d84633f1b
4
+ data.tar.gz: c3077c33caf6d2db8b8023c73348e6ad22b505b8
5
+ SHA512:
6
+ metadata.gz: 636fb3f588c1800e73d01c54e67d220a68335b02630c1c0aca19cd23acb9d986e8ca51445c648f095d3edc6759adc2e10494f8a5aa8eb2c836c15a085e44f371
7
+ data.tar.gz: 05a7864e92533a5cffb6b366e89b531510aa20618c88b55cbb952b3076b0b93c4d3dbc3bd8b6421b957ce6402f5f272f79520d32e5c5e5e442fbe0a9e3a34647
data/Changelog.markdown CHANGED
@@ -1,3 +1,7 @@
1
+ #### Version 0.3.2 (24.03.2014)
2
+
3
+ * fixed a problem with the new version of rainbow gem
4
+
1
5
  #### Version 0.3.1 (20.05.2013)
2
6
 
3
7
  * stdin option
data/Gemfile CHANGED
@@ -2,7 +2,7 @@ source "http://rubygems.org"
2
2
  gemspec
3
3
 
4
4
  gem 'coveralls'
5
- gem 'fakefs'
5
+ gem 'fakefs', '0.4.2'
6
6
  gem 'mocha'
7
7
  gem 'rspec'
8
8
  gem 'webmock'
data/README.markdown CHANGED
@@ -128,4 +128,6 @@ Created by [Jakub Suder](http://psionides.eu), licensed under MIT License.
128
128
 
129
129
  Any feedback and help is welcome, if you have an idea how to improve this tool, let me know or send me an issue or a pull request.
130
130
 
131
+ If you hear about a security update to a Ruby gem which I have missed, please send me a pull request with an update to the [json file](https://github.com/jsuder/holepicker/blob/master/lib/holepicker/data/data.json) (check out the documentation about the [file structure](https://github.com/jsuder/holepicker/wiki/JSON-structure)).
132
+
131
133
  And BTW, big thanks to all the smart people that find and fix all these issues - I hope you won't find much more, but please keep looking.
@@ -1,6 +1,34 @@
1
1
  {
2
2
  "min_version": "0.1",
3
3
  "vulnerabilities": [
4
+ {
5
+ "gems": {
6
+ "rails": ["4.1.0.beta2", "4.0.3", "3.2.17"]
7
+ },
8
+ "url": "http://weblog.rubyonrails.org/2014/2/18/Rails_3_2_17_4_0_3_and_4_1_0_beta2_have_been_released/",
9
+ "date": "2014-02-18T19:17Z"
10
+ },
11
+ {
12
+ "gems": {
13
+ "rails": ["4.0.2", "3.2.16"]
14
+ },
15
+ "url": "http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/",
16
+ "date": "2013-12-03T19:05Z"
17
+ },
18
+ {
19
+ "gems": {
20
+ "rails": [ "3.2.15", "2.0" ]
21
+ },
22
+ "url": "http://weblog.rubyonrails.org/2013/10/16/Rails-3-2-15-has-been-released/",
23
+ "date": "2013-10-16T00:00Z"
24
+ },
25
+ {
26
+ "gems": {
27
+ "devise": ["3.0.1", "2.2.5"]
28
+ },
29
+ "url": "http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise/",
30
+ "date": "2013-08-02T18:33Z"
31
+ },
4
32
  {
5
33
  "gems": {
6
34
  "rails": ["3.2.13", "3.1.12", "2.3.18"]
@@ -20,11 +20,11 @@ module HolePicker
20
20
  end
21
21
 
22
22
  def fail(message)
23
- error(color ? message.color(:red) : message)
23
+ error(color ? Rainbow(message).red : message)
24
24
  end
25
25
 
26
26
  def success(message)
27
- info(color ? message.color(:green) : message)
27
+ info(color ? Rainbow(message).green : message)
28
28
  end
29
29
  end
30
30
 
@@ -1,7 +1,7 @@
1
1
  require 'rubygems'
2
2
 
3
3
  module HolePicker
4
- VERSION = "0.3.1"
4
+ VERSION = "0.3.2"
5
5
 
6
6
  def self.version
7
7
  ::Gem::Version.new(VERSION)
metadata CHANGED
@@ -1,48 +1,43 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: holepicker
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.3.1
5
- prerelease:
4
+ version: 0.3.2
6
5
  platform: ruby
7
6
  authors:
8
7
  - Jakub Suder
9
8
  autorequire:
10
9
  bindir: bin
11
10
  cert_chain: []
12
- date: 2013-05-20 00:00:00.000000000 Z
11
+ date: 2014-03-24 00:00:00.000000000 Z
13
12
  dependencies:
14
13
  - !ruby/object:Gem::Dependency
15
14
  name: json
16
15
  requirement: !ruby/object:Gem::Requirement
17
- none: false
18
16
  requirements:
19
- - - ! '>='
17
+ - - ~>
20
18
  - !ruby/object:Gem::Version
21
- version: 1.7.7
19
+ version: '1.8'
22
20
  type: :runtime
23
21
  prerelease: false
24
22
  version_requirements: !ruby/object:Gem::Requirement
25
- none: false
26
23
  requirements:
27
- - - ! '>='
24
+ - - ~>
28
25
  - !ruby/object:Gem::Version
29
- version: 1.7.7
26
+ version: '1.8'
30
27
  - !ruby/object:Gem::Dependency
31
28
  name: rainbow
32
29
  requirement: !ruby/object:Gem::Requirement
33
- none: false
34
30
  requirements:
35
- - - ! '>='
31
+ - - ~>
36
32
  - !ruby/object:Gem::Version
37
- version: 1.1.4
33
+ version: '2.0'
38
34
  type: :runtime
39
35
  prerelease: false
40
36
  version_requirements: !ruby/object:Gem::Requirement
41
- none: false
42
37
  requirements:
43
- - - ! '>='
38
+ - - ~>
44
39
  - !ruby/object:Gem::Version
45
- version: 1.1.4
40
+ version: '2.0'
46
41
  description:
47
42
  email: jakub.suder@gmail.com
48
43
  executables:
@@ -50,11 +45,12 @@ executables:
50
45
  extensions: []
51
46
  extra_rdoc_files: []
52
47
  files:
53
- - MIT-LICENSE.txt
54
- - README.markdown
55
48
  - Changelog.markdown
56
49
  - Gemfile
57
- - Gemfile.lock
50
+ - MIT-LICENSE.txt
51
+ - README.markdown
52
+ - bin/holepicker
53
+ - lib/holepicker.rb
58
54
  - lib/holepicker/capistrano.rb
59
55
  - lib/holepicker/config_gemfile_finder.rb
60
56
  - lib/holepicker/config_reader.rb
@@ -72,30 +68,27 @@ files:
72
68
  - lib/holepicker/utils.rb
73
69
  - lib/holepicker/version.rb
74
70
  - lib/holepicker/vulnerability.rb
75
- - lib/holepicker.rb
76
- - bin/holepicker
77
71
  homepage: http://github.com/jsuder/holepicker
78
72
  licenses: []
73
+ metadata: {}
79
74
  post_install_message:
80
75
  rdoc_options: []
81
76
  require_paths:
82
77
  - lib
83
78
  required_ruby_version: !ruby/object:Gem::Requirement
84
- none: false
85
79
  requirements:
86
- - - ! '>='
80
+ - - '>='
87
81
  - !ruby/object:Gem::Version
88
82
  version: '0'
89
83
  required_rubygems_version: !ruby/object:Gem::Requirement
90
- none: false
91
84
  requirements:
92
- - - ! '>='
85
+ - - '>='
93
86
  - !ruby/object:Gem::Version
94
87
  version: '0'
95
88
  requirements: []
96
89
  rubyforge_project:
97
- rubygems_version: 1.8.25
90
+ rubygems_version: 2.2.0
98
91
  signing_key:
99
- specification_version: 3
92
+ specification_version: 4
100
93
  summary: A tool for checking gem versions in Gemfile.lock files for known vulnerabilities
101
94
  test_files: []
data/Gemfile.lock DELETED
@@ -1,57 +0,0 @@
1
- PATH
2
- remote: .
3
- specs:
4
- holepicker (0.3.1)
5
- json (>= 1.7.7)
6
- rainbow (>= 1.1.4)
7
-
8
- GEM
9
- remote: http://rubygems.org/
10
- specs:
11
- addressable (2.2.8)
12
- colorize (0.5.8)
13
- coveralls (0.6.2)
14
- colorize
15
- multi_json (~> 1.3)
16
- rest-client
17
- simplecov (>= 0.7)
18
- thor
19
- crack (0.3.2)
20
- diff-lcs (1.1.3)
21
- fakefs (0.4.2)
22
- json (1.7.7)
23
- metaclass (0.0.1)
24
- mime-types (1.21)
25
- mocha (0.13.2)
26
- metaclass (~> 0.0.1)
27
- multi_json (1.6.1)
28
- rainbow (1.1.4)
29
- rest-client (1.6.7)
30
- mime-types (>= 1.16)
31
- rspec (2.12.0)
32
- rspec-core (~> 2.12.0)
33
- rspec-expectations (~> 2.12.0)
34
- rspec-mocks (~> 2.12.0)
35
- rspec-core (2.12.2)
36
- rspec-expectations (2.12.1)
37
- diff-lcs (~> 1.1.3)
38
- rspec-mocks (2.12.2)
39
- simplecov (0.7.1)
40
- multi_json (~> 1.0)
41
- simplecov-html (~> 0.7.1)
42
- simplecov-html (0.7.1)
43
- thor (0.17.0)
44
- webmock (1.8.7)
45
- addressable (>= 2.2.7)
46
- crack (>= 0.1.7)
47
-
48
- PLATFORMS
49
- ruby
50
-
51
- DEPENDENCIES
52
- coveralls
53
- fakefs
54
- holepicker!
55
- mocha
56
- rspec
57
- webmock