RubyGems - holepicker - Versions diffs - 0.3.1 → 0.3.2 - Mend

holepicker 0.3.1 → 0.3.2

Files changed (9) hide show

checksums.yaml +7 -0
data/Changelog.markdown +4 -0
data/Gemfile +1 -1
data/README.markdown +2 -0
data/lib/holepicker/data/data.json +28 -0
data/lib/holepicker/logger.rb +2 -2
data/lib/holepicker/version.rb +1 -1
metadata +19 -26
data/Gemfile.lock +0 -57

checksums.yaml ADDED Viewed

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 2826b6b1de9806c9805c0ce7252e814d84633f1b
+  data.tar.gz: c3077c33caf6d2db8b8023c73348e6ad22b505b8
+SHA512:
+  metadata.gz: 636fb3f588c1800e73d01c54e67d220a68335b02630c1c0aca19cd23acb9d986e8ca51445c648f095d3edc6759adc2e10494f8a5aa8eb2c836c15a085e44f371
+  data.tar.gz: 05a7864e92533a5cffb6b366e89b531510aa20618c88b55cbb952b3076b0b93c4d3dbc3bd8b6421b957ce6402f5f272f79520d32e5c5e5e442fbe0a9e3a34647

data/Changelog.markdown CHANGED Viewed

@@ -1,3 +1,7 @@
+#### Version 0.3.2 (24.03.2014)
+* fixed a problem with the new version of rainbow gem
 #### Version 0.3.1 (20.05.2013)
 * stdin option

data/Gemfile CHANGED Viewed

@@ -2,7 +2,7 @@ source "http://rubygems.org"
 gemspec
 gem 'coveralls'
-gem 'fakefs'
+gem 'fakefs', '0.4.2'
 gem 'mocha'
 gem 'rspec'
 gem 'webmock'

data/README.markdown CHANGED Viewed

@@ -128,4 +128,6 @@ Created by [Jakub Suder](http://psionides.eu), licensed under MIT License.
 Any feedback and help is welcome, if you have an idea how to improve this tool, let me know or send me an issue or a pull request.
+If you hear about a security update to a Ruby gem which I have missed, please send me a pull request with an update to the [json file](https://github.com/jsuder/holepicker/blob/master/lib/holepicker/data/data.json) (check out the documentation about the [file structure](https://github.com/jsuder/holepicker/wiki/JSON-structure)).
 And BTW, big thanks to all the smart people that find and fix all these issues - I hope you won't find much more, but please keep looking.

data/lib/holepicker/data/data.json CHANGED Viewed

@@ -1,6 +1,34 @@
 {
   "min_version": "0.1",
   "vulnerabilities": [
+    {
+      "gems": {
+        "rails": ["4.1.0.beta2", "4.0.3", "3.2.17"]
+      },
+      "url": "http://weblog.rubyonrails.org/2014/2/18/Rails_3_2_17_4_0_3_and_4_1_0_beta2_have_been_released/",
+      "date": "2014-02-18T19:17Z"
+    },
+    {
+      "gems": {
+        "rails": ["4.0.2", "3.2.16"]
+      },
+      "url": "http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/",
+      "date": "2013-12-03T19:05Z"
+    },
+    {
+      "gems": {
+        "rails": [ "3.2.15", "2.0" ]
+      },
+      "url": "http://weblog.rubyonrails.org/2013/10/16/Rails-3-2-15-has-been-released/",
+      "date": "2013-10-16T00:00Z"
+    },
+    {
+      "gems": {
+        "devise": ["3.0.1", "2.2.5"]
+      },
+      "url": "http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise/",
+      "date": "2013-08-02T18:33Z"
+    },
     {
       "gems": {
         "rails": ["3.2.13", "3.1.12", "2.3.18"]

data/lib/holepicker/logger.rb CHANGED Viewed

@@ -20,11 +20,11 @@ module HolePicker
     end
     def fail(message)
-      error(color ? message.color(:red) : message)
+      error(color ? Rainbow(message).red : message)
     end
     def success(message)
-      info(color ? message.color(:green) : message)
+      info(color ? Rainbow(message).green : message)
     end
   end

data/lib/holepicker/version.rb CHANGED Viewed

@@ -1,7 +1,7 @@
 require 'rubygems'
 module HolePicker
-  VERSION = "0.3.1"
+  VERSION = "0.3.2"
   def self.version
     ::Gem::Version.new(VERSION)

metadata CHANGED Viewed

@@ -1,48 +1,43 @@
 --- !ruby/object:Gem::Specification
 name: holepicker
 version: !ruby/object:Gem::Version
-  version: 0.3.1
-  prerelease:
+  version: 0.3.2
 platform: ruby
 authors:
 - Jakub Suder
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2013-05-20 00:00:00.000000000 Z
+date: 2014-03-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: json
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 1.7.7
+        version: '1.8'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 1.7.7
+        version: '1.8'
 - !ruby/object:Gem::Dependency
   name: rainbow
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 1.1.4
+        version: '2.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: 1.1.4
+        version: '2.0'
 description:
 email: jakub.suder@gmail.com
 executables:
@@ -50,11 +45,12 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
-- MIT-LICENSE.txt
-- README.markdown
 - Changelog.markdown
 - Gemfile
-- Gemfile.lock
+- MIT-LICENSE.txt
+- README.markdown
+- bin/holepicker
+- lib/holepicker.rb
 - lib/holepicker/capistrano.rb
 - lib/holepicker/config_gemfile_finder.rb
 - lib/holepicker/config_reader.rb
@@ -72,30 +68,27 @@ files:
 - lib/holepicker/utils.rb
 - lib/holepicker/version.rb
 - lib/holepicker/vulnerability.rb
-- lib/holepicker.rb
-- bin/holepicker
 homepage: http://github.com/jsuder/holepicker
 licenses: []
+metadata: {}
 post_install_message:
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 1.8.25
+rubygems_version: 2.2.0
 signing_key:
-specification_version: 3
+specification_version: 4
 summary: A tool for checking gem versions in Gemfile.lock files for known vulnerabilities
 test_files: []

data/Gemfile.lock DELETED Viewed

@@ -1,57 +0,0 @@
-PATH
-  remote: .
-  specs:
-    holepicker (0.3.1)
-      json (>= 1.7.7)
-      rainbow (>= 1.1.4)
-GEM
-  remote: http://rubygems.org/
-  specs:
-    addressable (2.2.8)
-    colorize (0.5.8)
-    coveralls (0.6.2)
-      colorize
-      multi_json (~> 1.3)
-      rest-client
-      simplecov (>= 0.7)
-      thor
-    crack (0.3.2)
-    diff-lcs (1.1.3)
-    fakefs (0.4.2)
-    json (1.7.7)
-    metaclass (0.0.1)
-    mime-types (1.21)
-    mocha (0.13.2)
-      metaclass (~> 0.0.1)
-    multi_json (1.6.1)
-    rainbow (1.1.4)
-    rest-client (1.6.7)
-      mime-types (>= 1.16)
-    rspec (2.12.0)
-      rspec-core (~> 2.12.0)
-      rspec-expectations (~> 2.12.0)
-      rspec-mocks (~> 2.12.0)
-    rspec-core (2.12.2)
-    rspec-expectations (2.12.1)
-      diff-lcs (~> 1.1.3)
-    rspec-mocks (2.12.2)
-    simplecov (0.7.1)
-      multi_json (~> 1.0)
-      simplecov-html (~> 0.7.1)
-    simplecov-html (0.7.1)
-    thor (0.17.0)
-    webmock (1.8.7)
-      addressable (>= 2.2.7)
-      crack (>= 0.1.7)
-PLATFORMS
-  ruby
-DEPENDENCIES
-  coveralls
-  fakefs
-  holepicker!
-  mocha
-  rspec
-  webmock