package-audit 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (25) hide show
  1. checksums.yaml +4 -4
  2. data/lib/package/audit/cli.rb +22 -22
  3. data/lib/package/audit/command_service.rb +6 -6
  4. data/lib/package/audit/const/cmd.rb +3 -3
  5. data/lib/package/audit/formatter/risk.rb +1 -1
  6. data/lib/package/audit/formatter/version.rb +1 -1
  7. data/lib/package/audit/formatter/version_date.rb +1 -1
  8. data/lib/package/audit/formatter/vulnerability.rb +1 -1
  9. data/lib/package/audit/npm/node_collection.rb +5 -5
  10. data/lib/package/audit/npm/vulnerability_finder.rb +3 -2
  11. data/lib/package/audit/npm/yarn_lock_parser.rb +9 -5
  12. data/lib/package/audit/package.rb +5 -5
  13. data/lib/package/audit/printer.rb +5 -5
  14. data/lib/package/audit/risk_calculator.rb +1 -1
  15. data/lib/package/audit/ruby/bundler_specs.rb +15 -8
  16. data/lib/package/audit/ruby/gem_collection.rb +15 -11
  17. data/lib/package/audit/ruby/vulnerability_finder.rb +3 -2
  18. data/lib/package/audit/util/summary_printer.rb +2 -2
  19. data/lib/package/audit/version.rb +1 -1
  20. data/sig/package/audit/npm/vulnerability_finder.rbs +2 -1
  21. data/sig/package/audit/npm/yarn_lock_parser.rbs +1 -0
  22. data/sig/package/audit/ruby/bundler_specs.rbs +2 -2
  23. data/sig/package/audit/ruby/gem_collection.rbs +8 -4
  24. data/sig/package/audit/ruby/vulnerability_finder.rbs +3 -0
  25. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 55535a9ef08ce99d8cdacbfe15e0ec11e770f4803e4ef212d9ff4565111c89a6
4
- data.tar.gz: 3f1efc9489c0ac9139f94bb7ed66d8ccee255e9c61f79440c899c0dcc4cd5885
3
+ metadata.gz: b01c3c377fec4245b836119f812bbacc6ceac724ed3c64da348f0b97481fd2a1
4
+ data.tar.gz: ceec2dc5e451fbe9ece1b915e35f790ed2ef60efb18fb3130ccc876e1eb7237c
5
5
  SHA512:
6
- metadata.gz: 9c7ee67ccfadae05b1ec3a7e53d77ed8d977ae43bd54bbc0b95dee86e33ddceb87592089abc7a1410dba71c00802cc6172c3849d23e789878a9e8e14a1de2d96
7
- data.tar.gz: 4ff43ca9c9e7bc410b545cde33b77798bfe71d40ebf92874235a695fb1862b2fa826849ce62f67cab831dfa22b987506248754e0a03b3827612e17b12df3f9be
6
+ metadata.gz: '0438ecb657dcaf116dc0048b89a9de474785d88e868f68f306521e917045651b525f49c8a6b802fda8401e8ff795f02b79c0be627fd337dc5eff4dcd48eaf128'
7
+ data.tar.gz: 38f68c6e7251196f2a526d4affcbb1487760615dd6947a3bd11b20f6ed0f791bac762a1327741b7c31e72ffa6a6b44471fdcfa98c0e0135d5d77b1751729ce80
data/lib/package/audit/cli.rb CHANGED
@@ -1,11 +1,11 @@
1
- require_relative './const/time'
2
- require_relative './version'
3
- require_relative './util/summary_printer'
4
- require_relative './ruby/bundler_specs'
5
- require_relative './printer'
6
- require_relative './ruby/gem_collection'
7
- require_relative './npm/node_collection'
8
- require_relative './command_service'
1
+ require_relative 'const/time'
2
+ require_relative 'version'
3
+ require_relative 'util/summary_printer'
4
+ require_relative 'ruby/bundler_specs'
5
+ require_relative 'printer'
6
+ require_relative 'ruby/gem_collection'
7
+ require_relative 'npm/node_collection'
8
+ require_relative 'command_service'
9
9
 
10
10
  require 'json'
11
11
  require 'thor'
@@ -17,44 +17,44 @@ module Package
17
17
 
18
18
  map '--version' => :version
19
19
 
20
- desc 'report', 'Show a report of potentially deprecated, outdated or vulnerable packages'
20
+ desc 'report [DIR]', 'Show a report of potentially deprecated, outdated or vulnerable packages'
21
21
  method_option :csv, type: :boolean, default: false, desc: 'Output using comma separated values (CSV)'
22
22
  method_option :'exclude-headers', type: :boolean, default: false, desc: 'Hide headers if when using CSV'
23
23
 
24
- def report
25
- within_rescue_block do
26
- exit CommandService.new(Dir.pwd, options).all
27
- end
24
+ def report(dir = Dir.pwd)
25
+ # within_rescue_block do
26
+ exit CommandService.new(dir, options).all
27
+ # end
28
28
  end
29
29
 
30
- desc 'deprecated',
30
+ desc 'deprecated [DIR]',
31
31
  "Show packages with no updates by author for at least #{Const::Time::YEARS_ELAPSED_TO_BE_OUTDATED} years"
32
32
  method_option :csv, type: :boolean, default: false, desc: 'Output using comma separated values (CSV)'
33
33
  method_option :'exclude-headers', type: :boolean, default: false, desc: 'Hide headers if when using CSV'
34
34
 
35
- def deprecated
35
+ def deprecated(dir = Dir.pwd)
36
36
  within_rescue_block do
37
- exit CommandService.new(Dir.pwd, options).deprecated
37
+ exit CommandService.new(dir, options).deprecated
38
38
  end
39
39
  end
40
40
 
41
- desc 'outdated', 'Show packages that are out of date'
41
+ desc 'outdated [DIR]', 'Show packages that are out of date'
42
42
  method_option :csv, type: :boolean, default: false, desc: 'Output using comma separated values (CSV)'
43
43
  method_option :'exclude-headers', type: :boolean, default: false, desc: 'Hide headers if when using CSV'
44
44
 
45
- def outdated
45
+ def outdated(dir = Dir.pwd)
46
46
  within_rescue_block do
47
- exit CommandService.new(Dir.pwd, options).outdated
47
+ exit CommandService.new(dir, options).outdated
48
48
  end
49
49
  end
50
50
 
51
- desc 'vulnerable', 'Show packages and their dependencies that have security vulnerabilities'
51
+ desc 'vulnerable [DIR]', 'Show packages and their dependencies that have security vulnerabilities'
52
52
  method_option :csv, type: :boolean, default: false, desc: 'Output using comma separated values (CSV)'
53
53
  method_option :'exclude-headers', type: :boolean, default: false, desc: 'Hide headers if when using CSV'
54
54
 
55
- def vulnerable
55
+ def vulnerable(dir = Dir.pwd)
56
56
  within_rescue_block do
57
- exit CommandService.new(Dir.pwd, options).vulnerable
57
+ exit CommandService.new(dir, options).vulnerable
58
58
  end
59
59
  end
60
60
 
data/lib/package/audit/command_service.rb CHANGED
@@ -1,5 +1,5 @@
1
- require_relative './const/cmd'
2
- require_relative './const/file'
1
+ require_relative 'const/cmd'
2
+ require_relative 'const/file'
3
3
 
4
4
  module Package
5
5
  module Audit
@@ -16,7 +16,7 @@ module Package
16
16
  pkgs = []
17
17
 
18
18
  if ruby?
19
- gems = Ruby::GemCollection.all
19
+ gems = Ruby::GemCollection.new(@dir).all
20
20
  pkgs += gems
21
21
  Printer.new(gems, @options).print(Const::Fields::REPORT)
22
22
 
@@ -52,7 +52,7 @@ module Package
52
52
  pkgs = []
53
53
 
54
54
  if ruby?
55
- gems = Ruby::GemCollection.vulnerable
55
+ gems = Ruby::GemCollection.new(@dir).vulnerable
56
56
  pkgs += gems
57
57
  Printer.new(gems, @options).print(Const::Fields::VULNERABLE)
58
58
 
@@ -88,7 +88,7 @@ module Package
88
88
  pkgs = []
89
89
 
90
90
  if ruby?
91
- gems = Ruby::GemCollection.outdated
91
+ gems = Ruby::GemCollection.new(@dir).outdated
92
92
  pkgs += gems
93
93
  Printer.new(gems, @options).print(Const::Fields::OUTDATED)
94
94
 
@@ -122,7 +122,7 @@ module Package
122
122
  pkgs = []
123
123
 
124
124
  if ruby?
125
- gems = Ruby::GemCollection.deprecated
125
+ gems = Ruby::GemCollection.new(@dir).deprecated
126
126
  pkgs += gems
127
127
  Printer.new(gems, @options).print(Const::Fields::OUTDATED)
128
128
 
data/lib/package/audit/const/cmd.rb CHANGED
@@ -2,14 +2,14 @@ module Package
2
2
  module Audit
3
3
  module Const
4
4
  module Cmd
5
- BUNDLE_AUDIT = 'bundle exec bundle-audit check --update'
6
- BUNDLE_AUDIT_JSON = 'bundle exec bundle-audit check --update --quiet --format json'
5
+ BUNDLE_AUDIT = 'bundle-audit check --update'
6
+ BUNDLE_AUDIT_JSON = 'bundle-audit check --update --quiet --format json %s'
7
7
 
8
8
  NPM_AUDIT = 'npm audit'
9
9
  NPM_AUDIT_JSON = 'npm audit --json'
10
10
 
11
11
  YARN_AUDIT = 'yarn audit'
12
- YARN_AUDIT_JSON = 'yarn audit --json'
12
+ YARN_AUDIT_JSON = 'yarn audit --json --cwd %s'
13
13
  end
14
14
  end
15
15
  end
data/lib/package/audit/formatter/risk.rb CHANGED
@@ -1,4 +1,4 @@
1
- require_relative './base'
1
+ require_relative 'base'
2
2
  require_relative '../util/bash_color'
3
3
 
4
4
  module Package
data/lib/package/audit/formatter/version.rb CHANGED
@@ -1,4 +1,4 @@
1
- require_relative './base'
1
+ require_relative 'base'
2
2
  require_relative '../util/bash_color'
3
3
 
4
4
  module Package
data/lib/package/audit/formatter/version_date.rb CHANGED
@@ -1,4 +1,4 @@
1
- require_relative './base'
1
+ require_relative 'base'
2
2
  require_relative '../const/time'
3
3
  require_relative '../util/bash_color'
4
4
 
data/lib/package/audit/formatter/vulnerability.rb CHANGED
@@ -1,4 +1,4 @@
1
- require_relative './base'
1
+ require_relative 'base'
2
2
  require_relative '../enum/vulnerability_type'
3
3
  require_relative '../util/bash_color'
4
4
 
data/lib/package/audit/npm/node_collection.rb CHANGED
@@ -1,6 +1,6 @@
1
- require_relative './yarn_lock_parser'
2
- require_relative './npm_meta_data'
3
- require_relative './vulnerability_finder'
1
+ require_relative 'yarn_lock_parser'
2
+ require_relative 'npm_meta_data'
3
+ require_relative 'vulnerability_finder'
4
4
  require_relative '../duplicate_package_merger'
5
5
 
6
6
  module Package
@@ -17,7 +17,7 @@ module Package
17
17
 
18
18
  def all
19
19
  implicit_pkgs = fetch_from_lock_file
20
- vulnerable_pkgs = VulnerabilityFinder.new(implicit_pkgs).run
20
+ vulnerable_pkgs = VulnerabilityFinder.new(@dir, implicit_pkgs).run
21
21
  pkgs = NpmMetaData.new(vulnerable_pkgs + implicit_pkgs).fetch.filter(&:risk?)
22
22
  DuplicatePackageMerger.new(pkgs).run
23
23
  end
@@ -36,7 +36,7 @@ module Package
36
36
 
37
37
  def vulnerable
38
38
  implicit_pkgs = fetch_from_lock_file
39
- vulnerable_pkgs = VulnerabilityFinder.new(implicit_pkgs).run
39
+ vulnerable_pkgs = VulnerabilityFinder.new(@dir, implicit_pkgs).run
40
40
  pkgs = NpmMetaData.new(vulnerable_pkgs).fetch
41
41
  DuplicatePackageMerger.new(pkgs).run
42
42
  end
data/lib/package/audit/npm/vulnerability_finder.rb CHANGED
@@ -7,13 +7,14 @@ module Package
7
7
  class VulnerabilityFinder
8
8
  AUDIT_ADVISORY_REGEX = /^{"type":"auditAdvisory".*$/
9
9
 
10
- def initialize(pkgs)
10
+ def initialize(dir, pkgs)
11
+ @dir = dir
11
12
  @pkg_hash = pkgs.to_h { |pkg| [pkg.name, pkg] }
12
13
  @vuln_hash = {}
13
14
  end
14
15
 
15
16
  def run
16
- json_string_lines = `#{Const::Cmd::YARN_AUDIT_JSON}`
17
+ json_string_lines = `#{format(Const::Cmd::YARN_AUDIT_JSON, @dir)}`
17
18
  array = json_string_lines.scan(AUDIT_ADVISORY_REGEX)
18
19
 
19
20
  vulnerability_json_array = JSON.parse("[#{array.join(',')}]", symbolize_names: true)
data/lib/package/audit/npm/yarn_lock_parser.rb CHANGED
@@ -3,7 +3,8 @@ module Package
3
3
  module Npm
4
4
  class YarnLockParser
5
5
  def initialize(yarn_lock_path)
6
- @yarn_lock_path = File.read(yarn_lock_path)
6
+ @yarn_lock_file = File.read(yarn_lock_path)
7
+ @yarn_lock_path = yarn_lock_path
7
8
  end
8
9
 
9
10
  def fetch(default_deps, dev_deps)
@@ -22,17 +23,20 @@ module Package
22
23
 
23
24
  def fetch_package_block(dep_name, expected_version)
24
25
  regex = /#{Regexp.escape(dep_name)}@#{Regexp.escape(expected_version)}.*?:.*?(\n\n|\z)/m
25
- blocks = @yarn_lock_path.match(regex)
26
+ blocks = @yarn_lock_file.match(regex)
26
27
  if blocks.nil? || blocks[0].nil?
27
- raise NoMatchingPatternError, "Unable to find #{dep_name} in #{@yarn_lock_path}"
28
+ raise NoMatchingPatternError, "Unable to find \"#{dep_name}\" in #{@yarn_lock_path}"
28
29
  end
29
30
 
30
31
  blocks[0] || ''
31
32
  end
32
33
 
33
34
  def fetch_package_version(dep_name, pkg_block)
34
- version = pkg_block.match(/version "(.*?)"/)&.[](1)
35
- raise NoMatchingPatternError, "Unable to find #{dep_name} version in #{@yarn_lock_path}" if version.nil?
35
+ version = pkg_block.match(/version"?\s*"(.*?)"/)&.captures&.[](0)
36
+ if version.nil?
37
+ raise NoMatchingPatternError,
38
+ "Unable to find the version of \"#{dep_name}\" in #{@yarn_lock_path}"
39
+ end
36
40
 
37
41
  version || '0.0.0.0'
38
42
  end
data/lib/package/audit/package.rb CHANGED
@@ -1,8 +1,8 @@
1
- require_relative './risk'
2
- require_relative './risk_calculator'
3
- require_relative './enum/environment'
4
- require_relative './enum/risk_type'
5
- require_relative './enum/risk_explanation'
1
+ require_relative 'risk'
2
+ require_relative 'risk_calculator'
3
+ require_relative 'enum/environment'
4
+ require_relative 'enum/risk_type'
5
+ require_relative 'enum/risk_explanation'
6
6
 
7
7
  module Package
8
8
  module Audit
data/lib/package/audit/printer.rb CHANGED
@@ -1,8 +1,8 @@
1
- require_relative './const/fields'
2
- require_relative './formatter/risk'
3
- require_relative './formatter/version'
4
- require_relative './formatter/version_date'
5
- require_relative './formatter/vulnerability'
1
+ require_relative 'const/fields'
2
+ require_relative 'formatter/risk'
3
+ require_relative 'formatter/version'
4
+ require_relative 'formatter/version_date'
5
+ require_relative 'formatter/vulnerability'
6
6
 
7
7
  module Package
8
8
  module Audit
data/lib/package/audit/risk_calculator.rb CHANGED
@@ -1,4 +1,4 @@
1
- require_relative './const/time'
1
+ require_relative 'const/time'
2
2
 
3
3
  module Package
4
4
  module Audit
data/lib/package/audit/ruby/bundler_specs.rb CHANGED
@@ -1,6 +1,6 @@
1
1
  require_relative '../package'
2
- require_relative './gem_meta_data'
3
- require_relative './vulnerability_finder'
2
+ require_relative 'gem_meta_data'
3
+ require_relative 'vulnerability_finder'
4
4
 
5
5
  require 'bundler'
6
6
 
@@ -8,16 +8,23 @@ module Package
8
8
  module Audit
9
9
  module Ruby
10
10
  class BundlerSpecs
11
- def self.all
12
- Bundler.ui.silence { Bundler.definition.resolve }
11
+ def self.all(dir)
12
+ Bundler.with_unbundled_env do
13
+ ENV['BUNDLE_GEMFILE'] = "#{dir}/Gemfile"
14
+ Bundler.ui.silence { Bundler.definition.resolve }
15
+ end
13
16
  end
14
17
 
15
- def self.gemfile
16
- current_dependencies = Bundler.ui.silence do
17
- Bundler.load.dependencies.to_h { |dep| [dep.name, dep] }
18
+ def self.gemfile(dir)
19
+ current_dependencies = Bundler.with_unbundled_env do
20
+ ENV['BUNDLE_GEMFILE'] = "#{dir}/Gemfile"
21
+ Bundler.reset!
22
+ Bundler.ui.silence do
23
+ Bundler.load.dependencies.to_h { |dep| [dep.name, dep] }
24
+ end
18
25
  end
19
26
 
20
- gemfile_specs, = all.partition do |spec|
27
+ gemfile_specs, = all(dir).partition do |spec|
21
28
  current_dependencies.key? spec.name
22
29
  end
23
30
  gemfile_specs
data/lib/package/audit/ruby/gem_collection.rb CHANGED
@@ -1,35 +1,39 @@
1
- require_relative './bundler_specs'
2
- require_relative './../enum/risk_type'
1
+ require_relative 'bundler_specs'
2
+ require_relative '../enum/risk_type'
3
3
  require_relative '../duplicate_package_merger'
4
4
 
5
5
  module Package
6
6
  module Audit
7
7
  module Ruby
8
8
  class GemCollection
9
- def self.all
10
- specs = BundlerSpecs.gemfile
9
+ def initialize(dir)
10
+ @dir = dir
11
+ end
12
+
13
+ def all
14
+ specs = BundlerSpecs.gemfile(@dir)
11
15
  pkgs = specs.map { |spec| Package.new(spec.name, spec.version) }
12
- vulnerable_pkgs = VulnerabilityFinder.new.run
16
+ vulnerable_pkgs = VulnerabilityFinder.new(@dir).run
13
17
  pkgs = GemMetaData.new(pkgs + vulnerable_pkgs).fetch.filter(&:risk?)
14
18
  DuplicatePackageMerger.new(pkgs).run
15
19
  end
16
20
 
17
- def self.deprecated
18
- specs = BundlerSpecs.gemfile
21
+ def deprecated
22
+ specs = BundlerSpecs.gemfile(@dir)
19
23
  pkgs = specs.map { |spec| Package.new(spec.name, spec.version) }
20
24
  pkgs = GemMetaData.new(pkgs).fetch.filter(&:deprecated?)
21
25
  DuplicatePackageMerger.new(pkgs).run
22
26
  end
23
27
 
24
- def self.outdated(include_implicit: false)
25
- specs = include_implicit ? BundlerSpecs.all : BundlerSpecs.gemfile
28
+ def outdated(include_implicit: false)
29
+ specs = include_implicit ? BundlerSpecs.all(@dir) : BundlerSpecs.gemfile(@dir)
26
30
  pkgs = specs.map { |spec| Package.new(spec.name, spec.version) }
27
31
  pkgs = GemMetaData.new(pkgs).fetch.filter(&:outdated?)
28
32
  DuplicatePackageMerger.new(pkgs).run
29
33
  end
30
34
 
31
- def self.vulnerable
32
- pkgs = VulnerabilityFinder.new.run
35
+ def vulnerable
36
+ pkgs = VulnerabilityFinder.new(@dir).run
33
37
  pkgs = GemMetaData.new(pkgs).fetch.filter(&:vulnerable?)
34
38
  DuplicatePackageMerger.new(pkgs).run
35
39
  end
data/lib/package/audit/ruby/vulnerability_finder.rb CHANGED
@@ -5,12 +5,13 @@ module Package
5
5
  module Audit
6
6
  module Ruby
7
7
  class VulnerabilityFinder
8
- def initialize
8
+ def initialize(dir)
9
+ @dir = dir
9
10
  @vuln_hash = {}
10
11
  end
11
12
 
12
13
  def run
13
- json_result = `#{Const::Cmd::BUNDLE_AUDIT_JSON}`
14
+ json_result = `#{format(Const::Cmd::BUNDLE_AUDIT_JSON, @dir)}`
14
15
  vulnerability_json_array = JSON.parse(json_result, symbolize_names: true)[:results]
15
16
  vulnerability_json_array.each do |vulnerability_json|
16
17
  update_meta_data(vulnerability_json)
data/lib/package/audit/util/summary_printer.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  require_relative '../const/time'
2
- require_relative './bash_color'
2
+ require_relative 'bash_color'
3
3
 
4
4
  module Package
5
5
  module Audit
@@ -8,7 +8,7 @@ module Package
8
8
  def self.report
9
9
  printf("\n%<info>s\n%<cmd>s\n\n",
10
10
  info: Util::BashColor.blue('To show how risk is calculated run:'),
11
- cmd: Util::BashColor.magenta(' > bundle exec package-audit risk'))
11
+ cmd: Util::BashColor.magenta(' > package-audit risk'))
12
12
  end
13
13
 
14
14
  def self.deprecated
data/lib/package/audit/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  module Package
2
2
  module Audit
3
- VERSION = '0.2.0'
3
+ VERSION = '0.3.0'
4
4
  end
5
5
  end
data/sig/package/audit/npm/vulnerability_finder.rbs CHANGED
@@ -4,10 +4,11 @@ module Package
4
4
  class VulnerabilityFinder
5
5
  AUDIT_ADVISORY_REGEX: Regexp
6
6
 
7
+ @dir: String
7
8
  @pkg_hash: Hash[String, Package]
8
9
  @vuln_hash: Hash[String?, Package]
9
10
 
10
- def initialize: (Array[Package]) -> void
11
+ def initialize: (String, Array[Package]) -> void
11
12
 
12
13
  def run: -> Array[Package]
13
14
 
data/sig/package/audit/npm/yarn_lock_parser.rbs CHANGED
@@ -2,6 +2,7 @@ module Package
2
2
  module Audit
3
3
  module Npm
4
4
  class YarnLockParser
5
+ @yarn_lock_file: String
5
6
  @yarn_lock_path: String
6
7
 
7
8
  def initialize: (String) -> void
data/sig/package/audit/ruby/bundler_specs.rbs CHANGED
@@ -2,9 +2,9 @@ module Package
2
2
  module Audit
3
3
  module Ruby
4
4
  class BundlerSpecs
5
- def self.all: -> untyped
5
+ def self.all: (String) -> untyped
6
6
 
7
- def self.gemfile: -> untyped
7
+ def self.gemfile: (String) -> untyped
8
8
  end
9
9
  end
10
10
  end
data/sig/package/audit/ruby/gem_collection.rbs CHANGED
@@ -2,13 +2,17 @@ module Package
2
2
  module Audit
3
3
  module Ruby
4
4
  class GemCollection
5
- def self.all: -> Array[Package]
5
+ @dir: String
6
6
 
7
- def self.deprecated: -> Array[Package]
7
+ def initialize: (String) -> void
8
8
 
9
- def self.outdated: (?include_implicit: bool) -> Array[Package]
9
+ def all: -> Array[Package]
10
10
 
11
- def self.vulnerable: -> Array[Package]
11
+ def deprecated: -> Array[Package]
12
+
13
+ def outdated: (?include_implicit: bool) -> Array[Package]
14
+
15
+ def vulnerable: -> Array[Package]
12
16
  end
13
17
  end
14
18
  end
data/sig/package/audit/ruby/vulnerability_finder.rbs CHANGED
@@ -2,8 +2,11 @@ module Package
2
2
  module Audit
3
3
  module Ruby
4
4
  class VulnerabilityFinder
5
+ @dir: String
5
6
  @vuln_hash: Hash[String?, Package]
6
7
 
8
+ def initialize: (String) -> void
9
+
7
10
  def run: -> Array[Package]
8
11
 
9
12
  private
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: package-audit
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.2.0
4
+ version: 0.3.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Vadim Kononov
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2023-05-03 00:00:00.000000000 Z
11
+ date: 2023-07-05 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: bundler-audit