rails-audit 0.11.0 → 0.12.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +14 -1
- data/lib/rails-audit/version.rb +1 -1
- data/rails-audit.gemspec +1 -1
- metadata +5 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 47585bdb68c872f3a927a7f60df6f84779bf828e
|
|
4
|
+
data.tar.gz: d919b932217ffdc126730d033caca976f13afddb
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: c0eaddf424308f027b47da8c0118ca9ba2949d67e05bfe4aa79a8ec58d0281e33ea38674aad82f4ead07d65514c4910fe1da7a52000011d2a46a65b9e4ed842e
|
|
7
|
+
data.tar.gz: 493f9629a2f15f68bffa1caf8d767daba13324acd16bc94022d732fdb14d7c47f4d14de7aead879ae482563f062cfee594dec47eccae5ea6602aa5ddc2032872
|
data/README.md
CHANGED
|
@@ -1,3 +1,7 @@
|
|
|
1
|
+
[](http://badge.fury.io/rb/rails-audit)
|
|
2
|
+
[](https://gemnasium.com/cschramm/rails-audit)
|
|
3
|
+
[](https://codeclimate.com/github/cschramm/rails-audit)
|
|
4
|
+
|
|
1
5
|
# Rails Audit
|
|
2
6
|
|
|
3
7
|
Runs multiple audit and review tools to ensure quality and security of
|
|
@@ -12,7 +16,7 @@ Minor versions of the audit tools are fixed for a specific version of this gem.
|
|
|
12
16
|
Apart from bug fixes in those tools, the code audit results should thus not
|
|
13
17
|
vary if a specific version of this gem is included in a project's bundle.
|
|
14
18
|
|
|
15
|
-
##
|
|
19
|
+
## Configuration
|
|
16
20
|
|
|
17
21
|
Additional parameters can be passed to any audit's binary by using an .audit.yml
|
|
18
22
|
file. A configuration for cane could look like the following:
|
|
@@ -20,6 +24,13 @@ file. A configuration for cane could look like the following:
|
|
|
20
24
|
Cane:
|
|
21
25
|
Parameters: '--style-measure 120 --no-doc'
|
|
22
26
|
|
|
27
|
+
This can also be used to extend the command and e.g. redirect the output.
|
|
28
|
+
(WARNING: This hase obvious security implications!) Suppressing the
|
|
29
|
+
license_finder spinner, which is a good idea in CI, would work like this:
|
|
30
|
+
|
|
31
|
+
LicenseFinder:
|
|
32
|
+
Paramters: '>/dev/null'
|
|
33
|
+
|
|
23
34
|
The audits' names are camel cased in the configuration file. They may be
|
|
24
35
|
disabled like this:
|
|
25
36
|
|
|
@@ -34,6 +45,8 @@ To improve output to the expense of time concurreny can be disabled:
|
|
|
34
45
|
|
|
35
46
|
Concurrency: false
|
|
36
47
|
|
|
48
|
+
## Audits
|
|
49
|
+
|
|
37
50
|
### [Brakeman](http://brakemanscanner.org/)
|
|
38
51
|
|
|
39
52
|
Brakeman is a security scanner for Rails.
|
data/lib/rails-audit/version.rb
CHANGED
data/rails-audit.gemspec
CHANGED
|
@@ -33,5 +33,5 @@ Gem::Specification.new do |s|
|
|
|
33
33
|
s.add_runtime_dependency 'consistency_fail'
|
|
34
34
|
s.add_runtime_dependency 'license_finder'
|
|
35
35
|
s.add_runtime_dependency 'rails_best_practices', '~> 1.14.0'
|
|
36
|
-
s.add_runtime_dependency 'rubocop', '~> 0.
|
|
36
|
+
s.add_runtime_dependency 'rubocop', '~> 0.14.0'
|
|
37
37
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: rails-audit
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.12.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Christopher Schramm
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2013-
|
|
11
|
+
date: 2013-10-07 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: rake
|
|
@@ -128,14 +128,14 @@ dependencies:
|
|
|
128
128
|
requirements:
|
|
129
129
|
- - ~>
|
|
130
130
|
- !ruby/object:Gem::Version
|
|
131
|
-
version: 0.
|
|
131
|
+
version: 0.14.0
|
|
132
132
|
type: :runtime
|
|
133
133
|
prerelease: false
|
|
134
134
|
version_requirements: !ruby/object:Gem::Requirement
|
|
135
135
|
requirements:
|
|
136
136
|
- - ~>
|
|
137
137
|
- !ruby/object:Gem::Version
|
|
138
|
-
version: 0.
|
|
138
|
+
version: 0.14.0
|
|
139
139
|
description: "\n Runs multiple audit and review tools to ensure quality and security
|
|
140
140
|
of\n Rails projects\n "
|
|
141
141
|
email: cschramm@shakaweb.org
|
|
@@ -190,7 +190,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
190
190
|
version: '0'
|
|
191
191
|
requirements: []
|
|
192
192
|
rubyforge_project:
|
|
193
|
-
rubygems_version: 2.
|
|
193
|
+
rubygems_version: 2.0.7
|
|
194
194
|
signing_key:
|
|
195
195
|
specification_version: 4
|
|
196
196
|
summary: Runs multiple audit and review tools to ensure quality and security of Rails
|