RubyGems - rubion - Versions diffs - 0.3.13 → 0.3.14 - Mend

rubion 0.3.13 → 0.3.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7e44746a0b8ff53ccdc236e43a182d060ace64e38790450f10c04fb4d09550ed
-  data.tar.gz: 9c05871fdf57aef1e1e2ff82bc2c58015eb18865c999afc3ae13b46ccb0c2341
+  metadata.gz: f69e93b8534eeaf2045d43f775aec23a72ccf97335ebca9fd8bcb323375dfdca
+  data.tar.gz: 4d96785c60788e1933a566e8483a79c7ae98f93d301f94b97923ec4c80026af1
 SHA512:
-  metadata.gz: 3bee4acf0c1d91670bd811eb2c01c1e4d2192616ba3ce49a7b27f1e1577b8daed57fb35bb0c9a7f77dce0afe6f0698cadcc64ce2145e1ca38bc583afbadfa5ba
-  data.tar.gz: f9092694ecd11f85b03fecd7e3021ae6d0e3904022c7384d0c161f35aaf703887b4162a35162fd39c2af45f912221e981c1c0d91538d979b7cceaf08543794cc
+  metadata.gz: b64a88b924fe46d2979c06a520aa8458661ad8d06d374c9fe9fa945730b05d1f93e26073a5ef69779ae87e88c840d617ea016be52df356a4ba7753f2c4d1f5a5
+  data.tar.gz: cccf29d1fe83443774d4b83421edbb086d1f22e1b557f9b413918c90464da4501a95f4f866374d9861cb78fc1e2b4a869ee92f70ddd4666587a0df352dde7f0f

data/README.md CHANGED Viewed

@@ -187,6 +187,9 @@ Package Versions:
 | typescript        | 4.7.0  | 5/24/2022                 | 5.1.0   | 5/25/2023                | 1 year           | 12                |
 +------------------+---------+--------------------------+---------+--------------------------+------------------+-------------------+
 ```
+![aaaScreenshot 2025-11-15 at 2 54 24 pm](https://github.com/user-attachments/assets/9ce27e07-9c95-44ea-a96c-ec9537234d06)
+<img width="1333" height="741" alt="Screenshot 2025-11-15 at 2 54 34 pm" src="https://github.com/user-attachments/assets/22759b64-776f-4c9d-9bbb-3b70adead02e" />
 ### Direct Dependencies Only (with --exclude-dependencies)

data/lib/rubion/scanner.rb CHANGED Viewed

@@ -105,18 +105,38 @@ module Rubion
       # Exit code 1 is expected when vulnerabilities exist, so we still parse the output
       # Exit code 0 means no vulnerabilities found
       # Any other exit code or error means the command failed
-      if status.exitstatus == 1 || status.success?
+      if status.exitstatus.nil? || status.exitstatus == 127 || stderr.include?('command not found') || stdout.include?('command not found')
+        # Command not found - try to install bundler-audit automatically
+        install_bundler_audit_and_retry
+      elsif status.exitstatus == 1 || status.success? || (!stdout.empty? && (stdout.include?('vulnerabilities found') || stdout.include?('Name:')))
         # Exit code 1 (vulnerabilities found) or 0 (no vulnerabilities) - parse output
+        # Also try to parse if output looks valid even if exit code is unexpected
         parse_bundler_audit_output(stdout)
-      elsif !stdout.empty? && (stdout.include?('vulnerabilities found') || stdout.include?('Name:'))
-        # Try to parse if output looks valid even if exit code is unexpected
-        parse_bundler_audit_output(stdout)
-      elsif status.exitstatus.nil?
-        # Command not found or failed to execute
-        raise "bundle-audit command failed or is not installed. Error: #{stderr}"
       else
         # Unexpected exit code
-        raise "bundle-audit failed with exit code #{status.exitstatus}. Output: #{stdout}#{stderr.empty? ? '' : "\nError: #{stderr}"}"
+        raise "bundle-audit failed with exit code #{status.exitstatus}. Output: #{stdout}#{unless stderr.empty?
+                                                                                             "\nError: #{stderr}"
+                                                                                           end}"
+      end
+    end
+    def install_bundler_audit_and_retry
+      puts "\n  ⚠️  bundle-audit is not installed."
+      print '  Attempting to install bundler-audit... '
+      $stdout.flush
+      _install_stdout, install_stderr, install_status = Open3.capture3('gem install bundler-audit 2>&1')
+      if install_status.success?
+        puts "✓ Successfully installed bundler-audit\n"
+        puts "  Retrying gem vulnerability check...\n\n"
+        # Retry the check after installation
+        check_gem_vulnerabilities
+      else
+        puts '✗ Failed to install bundler-audit'
+        raise "bundle-audit is not installed and automatic installation failed.\n" \
+              "Please install it manually by running: gem install bundler-audit\n" \
+              "Installation error: #{install_stderr}"
       end
     end
@@ -131,7 +151,9 @@ module Rubion
         raise "bundle outdated command failed or is not available. Error: #{stderr}"
       else
         # Command failed with non-zero exit code
-        raise "bundle outdated failed with exit code #{status.exitstatus}. Output: #{stdout}#{stderr.empty? ? '' : "\nError: #{stderr}"}"
+        raise "bundle outdated failed with exit code #{status.exitstatus}. Output: #{stdout}#{unless stderr.empty?
+                                                                                                "\nError: #{stderr}"
+                                                                                              end}"
       end
     end
@@ -146,7 +168,9 @@ module Rubion
         raise "#{@package_manager} audit command failed or is not available. Error: #{stderr}"
       elsif !status.success? && status.exitstatus != 1
         # Exit code 1 is expected when vulnerabilities are found, other non-zero codes are errors
-        raise "#{@package_manager} audit failed with exit code #{status.exitstatus}. Output: #{stdout}#{stderr.empty? ? '' : "\nError: #{stderr}"}"
+        raise "#{@package_manager} audit failed with exit code #{status.exitstatus}. Output: #{stdout}#{unless stderr.empty?
+                                                                                                          "\nError: #{stderr}"
+                                                                                                        end}"
       end
       begin
@@ -177,7 +201,9 @@ module Rubion
         raise "npm outdated command failed or is not available. Error: #{stderr}"
       elsif !status.success? && status.exitstatus != 1
         # Exit code 1 is expected when packages are outdated, other non-zero codes are errors
-        raise "npm outdated failed with exit code #{status.exitstatus}. Output: #{stdout}#{stderr.empty? ? '' : "\nError: #{stderr}"}"
+        raise "npm outdated failed with exit code #{status.exitstatus}. Output: #{stdout}#{unless stderr.empty?
+                                                                                             "\nError: #{stderr}"
+                                                                                           end}"
       end
       begin
@@ -198,7 +224,9 @@ module Rubion
         raise "yarn outdated command failed or is not available. Error: #{stderr}"
       elsif !status.success? && status.exitstatus != 1
         # Exit code 1 is expected when packages are outdated, other non-zero codes are errors
-        raise "yarn outdated failed with exit code #{status.exitstatus}. Output: #{stdout}#{stderr.empty? ? '' : "\nError: #{stderr}"}"
+        raise "yarn outdated failed with exit code #{status.exitstatus}. Output: #{stdout}#{unless stderr.empty?
+                                                                                              "\nError: #{stderr}"
+                                                                                            end}"
       end
       begin

data/lib/rubion/version.rb CHANGED Viewed

@@ -1,6 +1,6 @@
 # frozen_string_literal: true
 module Rubion
-  VERSION = "0.3.13"
+  VERSION = "0.3.14"
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rubion
 version: !ruby/object:Gem::Version
-  version: 0.3.13
+  version: 0.3.14
 platform: ruby
 authors:
 - bipashant