RubyGems - holepicker - Versions diffs - 0.3.1 → 0.3.2 - Mend

holepicker 0.3.1 → 0.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml +7 -0
data/Changelog.markdown +4 -0
data/Gemfile +1 -1
data/README.markdown +2 -0
data/lib/holepicker/data/data.json +28 -0
data/lib/holepicker/logger.rb +2 -2
data/lib/holepicker/version.rb +1 -1
metadata +19 -26
data/Gemfile.lock +0 -57

checksums.yaml ADDED Viewed

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 2826b6b1de9806c9805c0ce7252e814d84633f1b
+  data.tar.gz: c3077c33caf6d2db8b8023c73348e6ad22b505b8
+SHA512:
+  metadata.gz: 636fb3f588c1800e73d01c54e67d220a68335b02630c1c0aca19cd23acb9d986e8ca51445c648f095d3edc6759adc2e10494f8a5aa8eb2c836c15a085e44f371
+  data.tar.gz: 05a7864e92533a5cffb6b366e89b531510aa20618c88b55cbb952b3076b0b93c4d3dbc3bd8b6421b957ce6402f5f272f79520d32e5c5e5e442fbe0a9e3a34647

data/Changelog.markdown CHANGED Viewed

@@ -1,3 +1,7 @@
+#### Version 0.3.2 (24.03.2014)
+* fixed a problem with the new version of rainbow gem
 #### Version 0.3.1 (20.05.2013)
 * stdin option

data/Gemfile CHANGED Viewed

@@ -2,7 +2,7 @@ source "http://rubygems.org"
 gemspec
 gem 'coveralls'
-gem 'fakefs'
+gem 'fakefs', '0.4.2'
 gem 'mocha'
 gem 'rspec'
 gem 'webmock'

data/README.markdown CHANGED Viewed

@@ -128,4 +128,6 @@ Created by [Jakub Suder](http://psionides.eu), licensed under MIT License.
 Any feedback and help is welcome, if you have an idea how to improve this tool, let me know or send me an issue or a pull request.
+If you hear about a security update to a Ruby gem which I have missed, please send me a pull request with an update to the [json file](https://github.com/jsuder/holepicker/blob/master/lib/holepicker/data/data.json) (check out the documentation about the [file structure](https://github.com/jsuder/holepicker/wiki/JSON-structure)).
 And BTW, big thanks to all the smart people that find and fix all these issues - I hope you won't find much more, but please keep looking.

data/lib/holepicker/data/data.json CHANGED Viewed

@@ -1,6 +1,34 @@
 {
   "min_version": "0.1",
   "vulnerabilities": [
+    {
+      "gems": {
+        "rails": ["4.1.0.beta2", "4.0.3", "3.2.17"]
+      },
+      "url": "http://weblog.rubyonrails.org/2014/2/18/Rails_3_2_17_4_0_3_and_4_1_0_beta2_have_been_released/",
+      "date": "2014-02-18T19:17Z"
+    },
+    {
+      "gems": {
+        "rails": ["4.0.2", "3.2.16"]
+      },
+      "url": "http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/",
+      "date": "2013-12-03T19:05Z"
+    },
+    {
+      "gems": {
+        "rails": [ "3.2.15", "2.0" ]
+      },
+      "url": "http://weblog.rubyonrails.org/2013/10/16/Rails-3-2-15-has-been-released/",
+      "date": "2013-10-16T00:00Z"
+    },
+    {
+      "gems": {
+        "devise": ["3.0.1", "2.2.5"]
+      },
+      "url": "http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise/",
+      "date": "2013-08-02T18:33Z"
+    },
     {
       "gems": {
         "rails": ["3.2.13", "3.1.12", "2.3.18"]

data/lib/holepicker/logger.rb CHANGED Viewed

@@ -20,11 +20,11 @@ module HolePicker
     end
     def fail(message)
-      error(color ? message.color(:red) : message)
+      error(color ? Rainbow(message).red : message)
     end
     def success(message)
-      info(color ? message.color(:green) : message)
+      info(color ? Rainbow(message).green : message)
     end
   end

data/lib/holepicker/version.rb CHANGED Viewed

@@ -1,7 +1,7 @@
 require 'rubygems'
 module HolePicker
-  VERSION = "0.3.1"
+  VERSION = "0.3.2"
   def self.version
     ::Gem::Version.new(VERSION)

metadata CHANGED Viewed

@@ -1,48 +1,43 @@
 --- !ruby/object:Gem::Specification
 name: holepicker
 version: !ruby/object:Gem::Version
-  version: 0.3.1
-  prerelease:
+  version: 0.3.2
 platform: ruby
 authors:
 - Jakub Suder
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2013-05-20 00:00:00.000000000 Z
+date: 2014-03-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: json
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 1.7.7
+        version: '1.8'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 1.7.7
+        version: '1.8'
 - !ruby/object:Gem::Dependency
   name: rainbow
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 1.1.4
+        version: '2.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 1.1.4
+        version: '2.0'
 description:
 email: jakub.suder@gmail.com
 executables:
@@ -50,11 +45,12 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
-- MIT-LICENSE.txt
-- README.markdown
 - Changelog.markdown
 - Gemfile
-- Gemfile.lock
+- MIT-LICENSE.txt
+- README.markdown
+- bin/holepicker
+- lib/holepicker.rb
 - lib/holepicker/capistrano.rb
 - lib/holepicker/config_gemfile_finder.rb
 - lib/holepicker/config_reader.rb
@@ -72,30 +68,27 @@ files:
 - lib/holepicker/utils.rb
 - lib/holepicker/version.rb
 - lib/holepicker/vulnerability.rb
-- lib/holepicker.rb
-- bin/holepicker
 homepage: http://github.com/jsuder/holepicker
 licenses: []
+metadata: {}
 post_install_message:
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 1.8.25
+rubygems_version: 2.2.0
 signing_key:
-specification_version: 3
+specification_version: 4
 summary: A tool for checking gem versions in Gemfile.lock files for known vulnerabilities
 test_files: []

data/Gemfile.lock DELETED Viewed

@@ -1,57 +0,0 @@
-PATH
-  remote: .
-  specs:
-    holepicker (0.3.1)
-      json (>= 1.7.7)
-      rainbow (>= 1.1.4)
-GEM
-  remote: http://rubygems.org/
-  specs:
-    addressable (2.2.8)
-    colorize (0.5.8)
-    coveralls (0.6.2)
-      colorize
-      multi_json (~> 1.3)
-      rest-client
-      simplecov (>= 0.7)
-      thor
-    crack (0.3.2)
-    diff-lcs (1.1.3)
-    fakefs (0.4.2)
-    json (1.7.7)
-    metaclass (0.0.1)
-    mime-types (1.21)
-    mocha (0.13.2)
-      metaclass (~> 0.0.1)
-    multi_json (1.6.1)
-    rainbow (1.1.4)
-    rest-client (1.6.7)
-      mime-types (>= 1.16)
-    rspec (2.12.0)
-      rspec-core (~> 2.12.0)
-      rspec-expectations (~> 2.12.0)
-      rspec-mocks (~> 2.12.0)
-    rspec-core (2.12.2)
-    rspec-expectations (2.12.1)
-      diff-lcs (~> 1.1.3)
-    rspec-mocks (2.12.2)
-    simplecov (0.7.1)
-      multi_json (~> 1.0)
-      simplecov-html (~> 0.7.1)
-    simplecov-html (0.7.1)
-    thor (0.17.0)
-    webmock (1.8.7)
-      addressable (>= 2.2.7)
-      crack (>= 0.1.7)
-PLATFORMS
-  ruby
-DEPENDENCIES
-  coveralls
-  fakefs
-  holepicker!
-  mocha
-  rspec
-  webmock