pii_safe_schema 1.3.4 → 1.4.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.github/CODEOWNERS +2 -1
- data/.github/workflows/default.yml +6 -1
- data/.github/workflows/stale.yml +20 -0
- data/.ruby-version +1 -1
- data/CHANGELOG.md +13 -1
- data/lib/pii_safe_schema/migration_generator.rb +1 -3
- data/lib/pii_safe_schema/version.rb +1 -1
- data/pii_safe_schema.gemspec +2 -3
- metadata +10 -31
- data/.github/workflows/licenses.yml +0 -46
- data/.github/workflows/security-check.yml +0 -30
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 733e5ad6453cc621ff61ea9e6f2a1f5cfbe2b478044a7d3ccaa8f2fe8f44413e
|
4
|
+
data.tar.gz: c4856a469688c26252dfb984baab69624d5294da612469302a9e6a82a6e0a107
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: fa90c42d3f2d0707da7e3ab97199c5c4529ae5e9cbb51a1362935a7d8362ea3814efe69058b47732ae96918447f968a7978fb9a0c7bde18e2e27326fec7c24bb
|
7
|
+
data.tar.gz: 4ee1d2527f53f0b3674e1d6742d434936bec3baf841a74323194b62b64992608b37ea3ee8846cb872539f0574eb9ff2845af0febba269b9bf93d8d20404caa7e
|
data/.github/CODEOWNERS
CHANGED
@@ -1 +1,2 @@
|
|
1
|
-
* @wealthsimple/security
|
1
|
+
* @wealthsimple/platform-security
|
2
|
+
.github/workflows/* @wealthsimple/developer-tools @wealthsimple/platform-security
|
@@ -17,15 +17,20 @@ jobs:
|
|
17
17
|
preflight_check:
|
18
18
|
name: Preflight Check
|
19
19
|
runs-on: ubuntu-latest
|
20
|
+
strategy:
|
21
|
+
matrix:
|
22
|
+
ruby-version: [2.7.5, 3.0.3]
|
20
23
|
steps:
|
21
24
|
# Need to fetch all refs, so we can check if the version has been bumped
|
22
25
|
- uses: actions/checkout@v2
|
23
26
|
with:
|
24
27
|
fetch-depth: 0
|
25
28
|
|
26
|
-
-
|
29
|
+
- name: Set up Ruby ${{ matrix.ruby-version }}
|
30
|
+
uses: ruby/setup-ruby@v1
|
27
31
|
with:
|
28
32
|
bundler-cache: true
|
33
|
+
ruby-version: ${{ matrix.ruby-version }}
|
29
34
|
|
30
35
|
- name: Lint
|
31
36
|
uses: wealthsimple/toolbox-script@v1
|
@@ -0,0 +1,20 @@
|
|
1
|
+
name: 'Close stale PRs'
|
2
|
+
on:
|
3
|
+
schedule:
|
4
|
+
- cron: '30 6 * * *' # 6:30 am UTC: 1:30 am EST
|
5
|
+
|
6
|
+
jobs:
|
7
|
+
stale:
|
8
|
+
runs-on: ubuntu-latest
|
9
|
+
steps:
|
10
|
+
- uses: actions/stale@v4
|
11
|
+
with:
|
12
|
+
days-before-stale: 30
|
13
|
+
days-before-close: 30
|
14
|
+
stale-pr-message: >
|
15
|
+
This issue has been automatically marked as stale because it has not had
|
16
|
+
recent activity. It will be closed if no further activity occurs.
|
17
|
+
close-pr-message: >
|
18
|
+
This issue has been automatically closed because it has had no activity
|
19
|
+
for over 90 days. Please re-open if you feel this was done in error.
|
20
|
+
exempt-pr-labels: 'dependabot,depfu,dependencies,security'
|
data/.ruby-version
CHANGED
@@ -1 +1 @@
|
|
1
|
-
2.7.
|
1
|
+
2.7.5
|
data/CHANGELOG.md
CHANGED
@@ -4,6 +4,18 @@ All notable changes to this project will be documented in this file.
|
|
4
4
|
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
|
5
5
|
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
|
6
6
|
|
7
|
+
## 1.4.1 - 2022-04-14
|
8
|
+
### Changed
|
9
|
+
- Fixing lint issues
|
10
|
+
|
11
|
+
## 1.4.0 - 2021-12-31
|
12
|
+
### Changed
|
13
|
+
- Add Ruby 3.0.x support
|
14
|
+
|
15
|
+
## 1.3.5 - 2021-03-15
|
16
|
+
### Changed
|
17
|
+
- Add support for Rails 7
|
18
|
+
|
7
19
|
## 1.3.4 - 2021-10-21
|
8
20
|
### Changed
|
9
21
|
- Switched to Github Actions
|
@@ -40,7 +52,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
40
52
|
- Added MIT License
|
41
53
|
|
42
54
|
## 1.0.4 - 2019-4-16
|
43
|
-
### Fixed
|
55
|
+
### Fixed
|
44
56
|
- converted any hyphens to underscores for consistency.
|
45
57
|
|
46
58
|
## 1.0.3
|
@@ -9,14 +9,13 @@ module PiiSafeSchema
|
|
9
9
|
|
10
10
|
private
|
11
11
|
|
12
|
-
# rubocop:disable Metrics/AbcSize
|
13
12
|
def generate_migration_for(table, columns)
|
14
13
|
generator = ActiveRecord::Generators::MigrationGenerator.new(
|
15
14
|
["change_comments_in_#{table}"],
|
16
15
|
)
|
17
16
|
generated_lines = generate_migration_lines(table, columns)
|
18
17
|
migration_file = generator.create_migration_file
|
19
|
-
file_lines = File.
|
18
|
+
file_lines = File.read(migration_file).split("\n")
|
20
19
|
change_line = file_lines.find_index { |i| /def change/.match(i) }
|
21
20
|
new_contents = file_lines[0..change_line] + generated_lines + file_lines[change_line + 1..]
|
22
21
|
|
@@ -26,7 +25,6 @@ module PiiSafeSchema
|
|
26
25
|
end
|
27
26
|
migration_file
|
28
27
|
end
|
29
|
-
# rubocop:enable Metrics/AbcSize
|
30
28
|
|
31
29
|
def generate_migration_lines(table, columns)
|
32
30
|
migration_lines = columns.map do |c|
|
data/pii_safe_schema.gemspec
CHANGED
@@ -21,9 +21,8 @@ Gem::Specification.new do |s|
|
|
21
21
|
s.executables = s.files.grep(%r{^exe/}) { |f| File.basename(f) }
|
22
22
|
s.require_paths = ['lib']
|
23
23
|
|
24
|
-
s.add_dependency 'activesupport', '>= 5', '< 7'
|
25
24
|
s.add_dependency 'colorize'
|
26
|
-
s.add_dependency 'rails', '>= 5', '<
|
25
|
+
s.add_dependency 'rails', '>= 5', '< 8'
|
27
26
|
|
28
27
|
s.add_development_dependency 'bundler', '>= 1.16'
|
29
28
|
s.add_development_dependency 'bundler-audit'
|
@@ -31,7 +30,7 @@ Gem::Specification.new do |s|
|
|
31
30
|
s.add_development_dependency 'git'
|
32
31
|
s.add_development_dependency 'guard-rspec'
|
33
32
|
s.add_development_dependency 'pry'
|
34
|
-
s.add_development_dependency 'rails', '>= 5
|
33
|
+
s.add_development_dependency 'rails', '>= 5', '< 8'
|
35
34
|
s.add_development_dependency 'rake', '>= 10.0'
|
36
35
|
s.add_development_dependency 'rspec', '< 4', '>= 3.0'
|
37
36
|
s.add_development_dependency 'rspec-collection_matchers'
|
metadata
CHANGED
@@ -1,35 +1,15 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: pii_safe_schema
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.4.1
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Alexi Garrow
|
8
8
|
autorequire:
|
9
9
|
bindir: exe
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2022-05-18 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
|
-
- !ruby/object:Gem::Dependency
|
14
|
-
name: activesupport
|
15
|
-
requirement: !ruby/object:Gem::Requirement
|
16
|
-
requirements:
|
17
|
-
- - ">="
|
18
|
-
- !ruby/object:Gem::Version
|
19
|
-
version: '5'
|
20
|
-
- - "<"
|
21
|
-
- !ruby/object:Gem::Version
|
22
|
-
version: '7'
|
23
|
-
type: :runtime
|
24
|
-
prerelease: false
|
25
|
-
version_requirements: !ruby/object:Gem::Requirement
|
26
|
-
requirements:
|
27
|
-
- - ">="
|
28
|
-
- !ruby/object:Gem::Version
|
29
|
-
version: '5'
|
30
|
-
- - "<"
|
31
|
-
- !ruby/object:Gem::Version
|
32
|
-
version: '7'
|
33
13
|
- !ruby/object:Gem::Dependency
|
34
14
|
name: colorize
|
35
15
|
requirement: !ruby/object:Gem::Requirement
|
@@ -53,7 +33,7 @@ dependencies:
|
|
53
33
|
version: '5'
|
54
34
|
- - "<"
|
55
35
|
- !ruby/object:Gem::Version
|
56
|
-
version: '
|
36
|
+
version: '8'
|
57
37
|
type: :runtime
|
58
38
|
prerelease: false
|
59
39
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -63,7 +43,7 @@ dependencies:
|
|
63
43
|
version: '5'
|
64
44
|
- - "<"
|
65
45
|
- !ruby/object:Gem::Version
|
66
|
-
version: '
|
46
|
+
version: '8'
|
67
47
|
- !ruby/object:Gem::Dependency
|
68
48
|
name: bundler
|
69
49
|
requirement: !ruby/object:Gem::Requirement
|
@@ -154,20 +134,20 @@ dependencies:
|
|
154
134
|
requirements:
|
155
135
|
- - ">="
|
156
136
|
- !ruby/object:Gem::Version
|
157
|
-
version: 5
|
137
|
+
version: '5'
|
158
138
|
- - "<"
|
159
139
|
- !ruby/object:Gem::Version
|
160
|
-
version: '
|
140
|
+
version: '8'
|
161
141
|
type: :development
|
162
142
|
prerelease: false
|
163
143
|
version_requirements: !ruby/object:Gem::Requirement
|
164
144
|
requirements:
|
165
145
|
- - ">="
|
166
146
|
- !ruby/object:Gem::Version
|
167
|
-
version: 5
|
147
|
+
version: '5'
|
168
148
|
- - "<"
|
169
149
|
- !ruby/object:Gem::Version
|
170
|
-
version: '
|
150
|
+
version: '8'
|
171
151
|
- !ruby/object:Gem::Dependency
|
172
152
|
name: rake
|
173
153
|
requirement: !ruby/object:Gem::Requirement
|
@@ -324,8 +304,7 @@ files:
|
|
324
304
|
- ".github/CODEOWNERS"
|
325
305
|
- ".github/PULL_REQUEST_TEMPLATE.md"
|
326
306
|
- ".github/workflows/default.yml"
|
327
|
-
- ".github/workflows/
|
328
|
-
- ".github/workflows/security-check.yml"
|
307
|
+
- ".github/workflows/stale.yml"
|
329
308
|
- ".gitignore"
|
330
309
|
- ".rspec"
|
331
310
|
- ".rubocop.yml"
|
@@ -369,7 +348,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
369
348
|
- !ruby/object:Gem::Version
|
370
349
|
version: '0'
|
371
350
|
requirements: []
|
372
|
-
rubygems_version: 3.1.
|
351
|
+
rubygems_version: 3.1.6
|
373
352
|
signing_key:
|
374
353
|
specification_version: 4
|
375
354
|
summary: Schema migration tool for checking and adding comments on PII columns.
|
@@ -1,46 +0,0 @@
|
|
1
|
-
name: Save licenses report
|
2
|
-
|
3
|
-
on:
|
4
|
-
push:
|
5
|
-
branches:
|
6
|
-
- main
|
7
|
-
- master
|
8
|
-
workflow_dispatch:
|
9
|
-
|
10
|
-
concurrency:
|
11
|
-
group: licenses-${{ github.ref }}
|
12
|
-
cancel-in-progress: true
|
13
|
-
|
14
|
-
jobs:
|
15
|
-
license_report:
|
16
|
-
name: Push license report to S3
|
17
|
-
runs-on: ubuntu-latest
|
18
|
-
steps:
|
19
|
-
- uses: actions/checkout@v2
|
20
|
-
|
21
|
-
- name: Configure AWS Credentials
|
22
|
-
uses: aws-actions/configure-aws-credentials@v1
|
23
|
-
with:
|
24
|
-
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
|
25
|
-
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
|
26
|
-
aws-region: us-east-1
|
27
|
-
role-to-assume: ${{ secrets.ACTIONS_GITHUB_INTSVC_ROLE_TO_ASSUME }}
|
28
|
-
role-skip-session-tagging: true
|
29
|
-
role-duration-seconds: 900
|
30
|
-
|
31
|
-
- uses: ruby/setup-ruby@v1
|
32
|
-
with:
|
33
|
-
bundler-cache: true
|
34
|
-
env:
|
35
|
-
BUNDLE_GEMS__CONTRIBSYS__COM:
|
36
|
-
${{ secrets.BUNDLE_GEMS__CONTRIBSYS__COM }}
|
37
|
-
BUNDLE_NEXUS__IAD__W10EXTERNAL__COM:
|
38
|
-
${{ secrets.BUNDLE_NEXUS__IAD__W10EXTERNAL__COM }}
|
39
|
-
BUNDLE_GITHUB__COM:
|
40
|
-
${{ secrets.WOLFBOT_GITHUB_ACTIONS_TOKEN }}:x-oauth-basic
|
41
|
-
|
42
|
-
- name: Build and Push Report
|
43
|
-
uses: wealthsimple/toolbox-script@v1
|
44
|
-
with:
|
45
|
-
script: toolbox.licensed.run()
|
46
|
-
|
@@ -1,30 +0,0 @@
|
|
1
|
-
name: Security Check
|
2
|
-
|
3
|
-
on:
|
4
|
-
schedule:
|
5
|
-
- cron: '15 11 * * *' # 11:15 am UTC: 6:15 am EST / 7:15 am EDT
|
6
|
-
|
7
|
-
concurrency:
|
8
|
-
group: security-${{ github.ref }}
|
9
|
-
cancel-in-progress: true
|
10
|
-
|
11
|
-
jobs:
|
12
|
-
security_check:
|
13
|
-
name: Security Check
|
14
|
-
runs-on: ubuntu-latest
|
15
|
-
steps:
|
16
|
-
- uses: actions/checkout@v2
|
17
|
-
- uses: ruby/setup-ruby@v1
|
18
|
-
with:
|
19
|
-
bundler-cache: true
|
20
|
-
env:
|
21
|
-
BUNDLE_GEMS__CONTRIBSYS__COM:
|
22
|
-
${{ secrets.BUNDLE_GEMS__CONTRIBSYS__COM }}
|
23
|
-
BUNDLE_NEXUS__IAD__W10EXTERNAL__COM:
|
24
|
-
${{ secrets.BUNDLE_NEXUS__IAD__W10EXTERNAL__COM }}
|
25
|
-
BUNDLE_GITHUB__COM:
|
26
|
-
${{ secrets.WOLFBOT_GITHUB_ACTIONS_TOKEN }}:x-oauth-basic
|
27
|
-
- name: Security Check
|
28
|
-
uses: wealthsimple/toolbox-script@v1
|
29
|
-
with:
|
30
|
-
script: toolbox.ruby.security.run();
|