RubyGems - rubygems-update - Versions diffs - 2.7.11 → 3.0.9 - Mend

rubygems-update 2.7.11 → 3.0.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (359) hide show

checksums.yaml +4 -4
data/.rubocop.yml +67 -0
data/.travis.yml +24 -18
data/CODE_OF_CONDUCT.md +10 -8
data/CONTRIBUTING.md +148 -0
data/History.txt +458 -8
data/MAINTAINERS.txt +1 -0
data/Manifest.txt +16 -9
data/POLICIES.md +92 -0
data/README.md +53 -26
data/Rakefile +77 -211
data/{UPGRADING.rdoc → UPGRADING.md} +31 -32
data/appveyor.yml +20 -45
data/bin/gem +1 -2
data/bin/update_rubygems +2 -3
data/bundler/CHANGELOG.md +65 -0
data/bundler/bundler.gemspec +7 -1
data/bundler/lib/bundler/build_metadata.rb +1 -1
data/bundler/lib/bundler/cli/add.rb +15 -5
data/bundler/lib/bundler/cli/binstubs.rb +8 -2
data/bundler/lib/bundler/cli/doctor.rb +47 -1
data/bundler/lib/bundler/cli/install.rb +8 -5
data/bundler/lib/bundler/cli/list.rb +41 -5
data/bundler/lib/bundler/cli/outdated.rb +7 -1
data/bundler/lib/bundler/cli/pristine.rb +4 -0
data/bundler/lib/bundler/cli/remove.rb +18 -0
data/bundler/lib/bundler/cli.rb +63 -21
data/bundler/lib/bundler/definition.rb +15 -16
data/bundler/lib/bundler/dependency.rb +2 -2
data/bundler/lib/bundler/dsl.rb +19 -3
data/bundler/lib/bundler/feature_flag.rb +7 -0
data/bundler/lib/bundler/gem_version_promoter.rb +4 -2
data/bundler/lib/bundler/injector.rb +168 -9
data/bundler/lib/bundler/installer/parallel_installer.rb +5 -0
data/bundler/lib/bundler/installer.rb +29 -6
data/bundler/lib/bundler/plugin/events.rb +61 -0
data/bundler/lib/bundler/plugin.rb +10 -3
data/bundler/lib/bundler/resolver.rb +2 -2
data/bundler/lib/bundler/rubygems_gem_installer.rb +7 -0
data/bundler/lib/bundler/runtime.rb +8 -2
data/bundler/lib/bundler/settings/validator.rb +23 -0
data/bundler/lib/bundler/settings.rb +24 -3
data/bundler/lib/bundler/shared_helpers.rb +19 -3
data/bundler/lib/bundler/source/metadata.rb +2 -3
data/bundler/lib/bundler/source.rb +9 -9
data/bundler/lib/bundler/templates/newgem/lib/newgem.rb.tt +1 -0
data/bundler/lib/bundler/version.rb +1 -1
data/bundler/lib/bundler.rb +26 -8
data/bundler/man/bundle-add.ronn +13 -2
data/bundler/man/bundle-config.ronn +21 -0
data/bundler/man/bundle-install.ronn +1 -1
data/bundler/man/bundle-list.ronn +19 -1
data/bundler/man/bundle-outdated.ronn +4 -0
data/bundler/man/bundle-remove.ronn +23 -0
data/bundler/man/bundle-update.ronn +1 -1
data/bundler/man/bundle.ronn +3 -0
data/lib/rubygems/available_set.rb +1 -1
data/lib/rubygems/basic_specification.rb +12 -12
data/lib/rubygems/bundler_version_finder.rb +3 -3
data/lib/rubygems/command.rb +22 -15
data/lib/rubygems/command_manager.rb +22 -5
data/lib/rubygems/commands/build_command.rb +41 -7
data/lib/rubygems/commands/cert_command.rb +45 -24
data/lib/rubygems/commands/check_command.rb +1 -1
data/lib/rubygems/commands/cleanup_command.rb +14 -7
data/lib/rubygems/commands/contents_command.rb +14 -15
data/lib/rubygems/commands/dependency_command.rb +17 -17
data/lib/rubygems/commands/environment_command.rb +20 -1
data/lib/rubygems/commands/fetch_command.rb +2 -3
data/lib/rubygems/commands/generate_index_command.rb +2 -3
data/lib/rubygems/commands/help_command.rb +12 -13
data/lib/rubygems/commands/info_command.rb +33 -0
data/lib/rubygems/commands/install_command.rb +21 -17
data/lib/rubygems/commands/list_command.rb +0 -1
data/lib/rubygems/commands/lock_command.rb +3 -4
data/lib/rubygems/commands/open_command.rb +16 -10
data/lib/rubygems/commands/owner_command.rb +21 -7
data/lib/rubygems/commands/pristine_command.rb +23 -16
data/lib/rubygems/commands/push_command.rb +19 -8
data/lib/rubygems/commands/query_command.rb +24 -24
data/lib/rubygems/commands/rdoc_command.rb +3 -4
data/lib/rubygems/commands/search_command.rb +0 -1
data/lib/rubygems/commands/server_command.rb +1 -2
data/lib/rubygems/commands/setup_command.rb +86 -48
data/lib/rubygems/commands/signin_command.rb +2 -1
data/lib/rubygems/commands/signout_command.rb +2 -2
data/lib/rubygems/commands/sources_command.rb +11 -12
data/lib/rubygems/commands/specification_command.rb +7 -7
data/lib/rubygems/commands/uninstall_command.rb +50 -18
data/lib/rubygems/commands/unpack_command.rb +16 -7
data/lib/rubygems/commands/update_command.rb +28 -23
data/lib/rubygems/commands/which_command.rb +5 -8
data/lib/rubygems/commands/yank_command.rb +1 -2
data/lib/rubygems/compatibility.rb +1 -21
data/lib/rubygems/config_file.rb +36 -36
data/lib/rubygems/core_ext/kernel_require.rb +6 -6
data/lib/rubygems/core_ext/kernel_warn.rb +45 -0
data/lib/rubygems/defaults.rb +31 -19
data/lib/rubygems/dependency.rb +15 -15
data/lib/rubygems/dependency_installer.rb +30 -33
data/lib/rubygems/dependency_list.rb +9 -10
data/lib/rubygems/deprecate.rb +2 -3
data/lib/rubygems/doctor.rb +5 -6
data/lib/rubygems/errors.rb +3 -3
data/lib/rubygems/exceptions.rb +11 -8
data/lib/rubygems/ext/build_error.rb +0 -1
data/lib/rubygems/ext/builder.rb +50 -23
data/lib/rubygems/ext/cmake_builder.rb +2 -2
data/lib/rubygems/ext/configure_builder.rb +2 -3
data/lib/rubygems/ext/ext_conf_builder.rb +8 -7
data/lib/rubygems/ext/rake_builder.rb +16 -18
data/lib/rubygems/ext.rb +0 -1
data/lib/rubygems/gem_runner.rb +2 -2
data/lib/rubygems/gemcutter_utilities.rb +46 -12
data/lib/rubygems/indexer.rb +19 -12
data/lib/rubygems/install_default_message.rb +0 -1
data/lib/rubygems/install_message.rb +0 -1
data/lib/rubygems/install_update_options.rb +3 -29
data/lib/rubygems/installer.rb +97 -55
data/lib/rubygems/installer_test_case.rb +2 -16
data/lib/rubygems/local_remote_options.rb +5 -4
data/lib/rubygems/mock_gem_ui.rb +3 -4
data/lib/rubygems/name_tuple.rb +4 -4
data/lib/rubygems/package/digest_io.rb +3 -4
data/lib/rubygems/package/file_source.rb +3 -4
data/lib/rubygems/package/io_source.rb +1 -2
data/lib/rubygems/package/old.rb +8 -16
data/lib/rubygems/package/source.rb +0 -1
data/lib/rubygems/package/tar_header.rb +13 -4
data/lib/rubygems/package/tar_reader/entry.rb +20 -4
data/lib/rubygems/package/tar_reader.rb +2 -4
data/lib/rubygems/package/tar_test_case.rb +2 -8
data/lib/rubygems/package/tar_writer.rb +13 -15
data/lib/rubygems/package.rb +90 -63
data/lib/rubygems/package_task.rb +0 -1
data/lib/rubygems/path_support.rb +16 -6
data/lib/rubygems/platform.rb +4 -5
data/lib/rubygems/psych_tree.rb +1 -1
data/lib/rubygems/rdoc.rb +2 -313
data/lib/rubygems/remote_fetcher.rb +29 -82
data/lib/rubygems/request/connection_pools.rb +24 -13
data/lib/rubygems/request/http_pool.rb +3 -4
data/lib/rubygems/request/https_pool.rb +1 -3
data/lib/rubygems/request.rb +17 -16
data/lib/rubygems/request_set/gem_dependency_api.rb +46 -49
data/lib/rubygems/request_set/lockfile/parser.rb +18 -29
data/lib/rubygems/request_set/lockfile/tokenizer.rb +9 -9
data/lib/rubygems/request_set/lockfile.rb +12 -12
data/lib/rubygems/request_set.rb +52 -25
data/lib/rubygems/requirement.rb +32 -21
data/lib/rubygems/resolver/activation_request.rb +6 -6
data/lib/rubygems/resolver/api_set.rb +5 -6
data/lib/rubygems/resolver/api_specification.rb +2 -3
data/lib/rubygems/resolver/best_set.rb +5 -6
data/lib/rubygems/resolver/composed_set.rb +5 -6
data/lib/rubygems/resolver/conflict.rb +5 -5
data/lib/rubygems/resolver/current_set.rb +1 -2
data/lib/rubygems/resolver/dependency_request.rb +4 -4
data/lib/rubygems/resolver/git_set.rb +5 -6
data/lib/rubygems/resolver/git_specification.rb +4 -5
data/lib/rubygems/resolver/index_set.rb +5 -6
data/lib/rubygems/resolver/index_specification.rb +3 -4
data/lib/rubygems/resolver/installed_specification.rb +3 -4
data/lib/rubygems/resolver/installer_set.rb +12 -12
data/lib/rubygems/resolver/local_specification.rb +1 -2
data/lib/rubygems/resolver/lock_set.rb +5 -6
data/lib/rubygems/resolver/lock_specification.rb +7 -8
data/lib/rubygems/resolver/requirement_list.rb +1 -1
data/lib/rubygems/resolver/set.rb +2 -2
data/lib/rubygems/resolver/source_set.rb +4 -5
data/lib/rubygems/resolver/spec_specification.rb +1 -2
data/lib/rubygems/resolver/specification.rb +10 -7
data/lib/rubygems/resolver/stats.rb +1 -1
data/lib/rubygems/resolver/vendor_set.rb +4 -5
data/lib/rubygems/resolver/vendor_specification.rb +2 -3
data/lib/rubygems/resolver.rb +14 -16
data/lib/rubygems/s3_uri_signer.rb +183 -0
data/lib/rubygems/safe_yaml.rb +18 -10
data/lib/rubygems/security/policies.rb +1 -2
data/lib/rubygems/security/policy.rb +25 -25
data/lib/rubygems/security/signer.rb +72 -24
data/lib/rubygems/security/trust_dir.rb +10 -10
data/lib/rubygems/security.rb +21 -22
data/lib/rubygems/security_option.rb +0 -1
data/lib/rubygems/server.rb +21 -21
data/lib/rubygems/source/git.rb +9 -10
data/lib/rubygems/source/installed.rb +3 -4
data/lib/rubygems/source/local.rb +7 -7
data/lib/rubygems/source/lock.rb +4 -4
data/lib/rubygems/source/specific_file.rb +5 -5
data/lib/rubygems/source/vendor.rb +2 -3
data/lib/rubygems/source.rb +16 -25
data/lib/rubygems/source_list.rb +2 -2
data/lib/rubygems/source_local.rb +0 -1
data/lib/rubygems/spec_fetcher.rb +5 -6
data/lib/rubygems/specification.rb +219 -558
data/lib/rubygems/specification_policy.rb +407 -0
data/lib/rubygems/stub_specification.rb +12 -17
data/lib/rubygems/test_case.rb +161 -75
data/lib/rubygems/test_utilities.rb +20 -35
data/lib/rubygems/text.rb +6 -6
data/lib/rubygems/uninstaller.rb +38 -27
data/lib/rubygems/uri_formatter.rb +1 -2
data/lib/rubygems/user_interaction.rb +37 -89
data/lib/rubygems/util/licenses.rb +27 -1
data/lib/rubygems/util/list.rb +1 -1
data/lib/rubygems/util.rb +32 -14
data/lib/rubygems/validator.rb +4 -5
data/lib/rubygems/version.rb +15 -15
data/lib/rubygems/version_option.rb +2 -3
data/lib/rubygems.rb +71 -102
data/rubygems-update.gemspec +43 -0
data/setup.rb +2 -8
data/test/rubygems/ca_cert.pem +74 -65
data/test/rubygems/client.pem +103 -45
data/test/rubygems/rubygems_plugin.rb +0 -1
data/test/rubygems/simple_gem.rb +1 -1
data/test/rubygems/ssl_cert.pem +78 -17
data/test/rubygems/ssl_key.pem +25 -13
data/test/rubygems/test_bundled_ca.rb +1 -1
data/test/rubygems/test_config.rb +7 -2
data/test/rubygems/test_gem.rb +205 -132
data/test/rubygems/test_gem_bundler_version_finder.rb +4 -0
data/test/rubygems/test_gem_command.rb +0 -1
data/test/rubygems/test_gem_command_manager.rb +18 -3
data/test/rubygems/test_gem_commands_build_command.rb +220 -15
data/test/rubygems/test_gem_commands_cert_command.rb +69 -8
data/test/rubygems/test_gem_commands_check_command.rb +1 -1
data/test/rubygems/test_gem_commands_cleanup_command.rb +27 -1
data/test/rubygems/test_gem_commands_contents_command.rb +1 -2
data/test/rubygems/test_gem_commands_dependency_command.rb +33 -34
data/test/rubygems/test_gem_commands_environment_command.rb +1 -0
data/test/rubygems/test_gem_commands_fetch_command.rb +0 -1
data/test/rubygems/test_gem_commands_generate_index_command.rb +0 -1
data/test/rubygems/test_gem_commands_help_command.rb +7 -4
data/test/rubygems/test_gem_commands_info_command.rb +44 -0
data/test/rubygems/test_gem_commands_install_command.rb +79 -12
data/test/rubygems/test_gem_commands_lock_command.rb +0 -1
data/test/rubygems/test_gem_commands_open_command.rb +29 -0
data/test/rubygems/test_gem_commands_outdated_command.rb +0 -1
data/test/rubygems/test_gem_commands_owner_command.rb +93 -57
data/test/rubygems/test_gem_commands_pristine_command.rb +65 -30
data/test/rubygems/test_gem_commands_push_command.rb +54 -0
data/test/rubygems/test_gem_commands_query_command.rb +102 -100
data/test/rubygems/test_gem_commands_search_command.rb +0 -1
data/test/rubygems/test_gem_commands_server_command.rb +0 -1
data/test/rubygems/test_gem_commands_setup_command.rb +50 -15
data/test/rubygems/test_gem_commands_signin_command.rb +1 -1
data/test/rubygems/test_gem_commands_sources_command.rb +0 -1
data/test/rubygems/test_gem_commands_specification_command.rb +2 -3
data/test/rubygems/test_gem_commands_stale_command.rb +3 -2
data/test/rubygems/test_gem_commands_uninstall_command.rb +161 -8
data/test/rubygems/test_gem_commands_unpack_command.rb +17 -1
data/test/rubygems/test_gem_commands_update_command.rb +19 -2
data/test/rubygems/test_gem_commands_which_command.rb +0 -1
data/test/rubygems/test_gem_commands_yank_command.rb +0 -1
data/test/rubygems/test_gem_config_file.rb +4 -2
data/test/rubygems/test_gem_dependency.rb +0 -1
data/test/rubygems/test_gem_dependency_installer.rb +8 -5
data/test/rubygems/test_gem_dependency_list.rb +6 -7
data/test/rubygems/test_gem_dependency_resolution_error.rb +0 -1
data/test/rubygems/test_gem_doctor.rb +1 -2
data/test/rubygems/test_gem_ext_builder.rb +10 -23
data/test/rubygems/test_gem_ext_cmake_builder.rb +5 -4
data/test/rubygems/test_gem_ext_configure_builder.rb +3 -3
data/test/rubygems/test_gem_ext_ext_conf_builder.rb +8 -9
data/test/rubygems/test_gem_ext_rake_builder.rb +20 -5
data/test/rubygems/test_gem_gem_runner.rb +0 -1
data/test/rubygems/test_gem_gemcutter_utilities.rb +32 -6
data/test/rubygems/test_gem_impossible_dependencies_error.rb +0 -1
data/test/rubygems/test_gem_indexer.rb +16 -10
data/test/rubygems/test_gem_install_update_options.rb +1 -20
data/test/rubygems/test_gem_installer.rb +154 -119
data/test/rubygems/test_gem_local_remote_options.rb +3 -3
data/test/rubygems/test_gem_name_tuple.rb +0 -1
data/test/rubygems/test_gem_package.rb +77 -31
data/test/rubygems/test_gem_package_old.rb +0 -1
data/test/rubygems/test_gem_package_tar_header.rb +42 -2
data/test/rubygems/test_gem_package_tar_reader.rb +0 -1
data/test/rubygems/test_gem_package_tar_reader_entry.rb +11 -0
data/test/rubygems/test_gem_package_tar_writer.rb +43 -7
data/test/rubygems/test_gem_package_task.rb +2 -2
data/test/rubygems/test_gem_path_support.rb +28 -11
data/test/rubygems/test_gem_platform.rb +4 -5
data/test/rubygems/test_gem_rdoc.rb +1 -136
data/test/rubygems/test_gem_remote_fetcher.rb +241 -141
data/test/rubygems/test_gem_request.rb +9 -9
data/test/rubygems/test_gem_request_connection_pools.rb +24 -3
data/test/rubygems/test_gem_request_set.rb +5 -5
data/test/rubygems/test_gem_request_set_gem_dependency_api.rb +82 -64
data/test/rubygems/test_gem_request_set_lockfile.rb +1 -2
data/test/rubygems/test_gem_request_set_lockfile_parser.rb +4 -9
data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +1 -1
data/test/rubygems/test_gem_requirement.rb +24 -4
data/test/rubygems/test_gem_resolver.rb +13 -17
data/test/rubygems/test_gem_resolver_activation_request.rb +0 -1
data/test/rubygems/test_gem_resolver_api_set.rb +0 -1
data/test/rubygems/test_gem_resolver_api_specification.rb +0 -1
data/test/rubygems/test_gem_resolver_best_set.rb +0 -1
data/test/rubygems/test_gem_resolver_composed_set.rb +0 -1
data/test/rubygems/test_gem_resolver_conflict.rb +0 -1
data/test/rubygems/test_gem_resolver_dependency_request.rb +0 -1
data/test/rubygems/test_gem_resolver_git_set.rb +0 -1
data/test/rubygems/test_gem_resolver_git_specification.rb +0 -1
data/test/rubygems/test_gem_resolver_index_set.rb +0 -1
data/test/rubygems/test_gem_resolver_index_specification.rb +0 -1
data/test/rubygems/test_gem_resolver_installed_specification.rb +0 -1
data/test/rubygems/test_gem_resolver_installer_set.rb +2 -3
data/test/rubygems/test_gem_resolver_local_specification.rb +0 -1
data/test/rubygems/test_gem_resolver_lock_set.rb +0 -1
data/test/rubygems/test_gem_resolver_lock_specification.rb +0 -1
data/test/rubygems/test_gem_resolver_requirement_list.rb +0 -1
data/test/rubygems/test_gem_resolver_specification.rb +1 -2
data/test/rubygems/test_gem_resolver_vendor_set.rb +0 -1
data/test/rubygems/test_gem_resolver_vendor_specification.rb +0 -1
data/test/rubygems/test_gem_security.rb +1 -3
data/test/rubygems/test_gem_security_policy.rb +5 -6
data/test/rubygems/test_gem_security_signer.rb +4 -3
data/test/rubygems/test_gem_security_trust_dir.rb +1 -2
data/test/rubygems/test_gem_server.rb +4 -4
data/test/rubygems/test_gem_source.rb +0 -13
data/test/rubygems/test_gem_source_fetch_problem.rb +0 -1
data/test/rubygems/test_gem_source_git.rb +0 -1
data/test/rubygems/test_gem_source_installed.rb +0 -1
data/test/rubygems/test_gem_source_lock.rb +0 -1
data/test/rubygems/test_gem_source_vendor.rb +0 -1
data/test/rubygems/test_gem_spec_fetcher.rb +0 -1
data/test/rubygems/test_gem_specification.rb +366 -198
data/test/rubygems/test_gem_stream_ui.rb +15 -32
data/test/rubygems/test_gem_stub_specification.rb +0 -2
data/test/rubygems/test_gem_text.rb +4 -0
data/test/rubygems/test_gem_uninstaller.rb +42 -3
data/test/rubygems/test_gem_unsatisfiable_dependency_error.rb +0 -1
data/test/rubygems/test_gem_uri_formatter.rb +0 -1
data/test/rubygems/test_gem_util.rb +31 -11
data/test/rubygems/test_gem_validator.rb +0 -1
data/test/rubygems/test_gem_version.rb +11 -11
data/test/rubygems/test_gem_version_option.rb +0 -1
data/test/rubygems/test_remote_fetch_error.rb +0 -1
data/test/rubygems/test_require.rb +67 -52
data/util/CL2notes +1 -2
data/util/ci +20 -12
data/util/cops/deprecations.rb +52 -0
data/util/create_certs.rb +6 -7
data/util/create_certs.sh +27 -0
data/util/create_encrypted_key.rb +4 -5
data/util/patch_with_prs.rb +1 -1
data/util/rubocop +8 -0
data/util/update_bundled_ca_certificates.rb +12 -13
data/util/update_changelog.rb +1 -1
metadata +61 -51
data/.autotest +0 -71
data/.document +0 -5
data/CONTRIBUTING.rdoc +0 -130
data/CVE-2013-4287.txt +0 -35
data/CVE-2013-4363.txt +0 -45
data/CVE-2015-3900.txt +0 -40
data/POLICIES.rdoc +0 -74
data/test/rubygems/fix_openssl_warnings.rb +0 -13

metadata CHANGED Viewed

@@ -1,12 +1,18 @@
 --- !ruby/object:Gem::Specification
 name: rubygems-update
 version: !ruby/object:Gem::Version
-  version: 2.7.11
+  version: 3.0.9
 platform: ruby
 authors:
 - Jim Weirich
 - Chad Fowler
 - Eric Hodel
+- Luis Lavena
+- Aaron Patterson
+- Samuel Giddins
+- André Arko
+- Evan Phoenix
+- Hiroshi SHIBATA
 autorequire:
 bindir: bin
 cert_chain: []
@@ -18,118 +24,115 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.1'
+        version: '3.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.1'
-- !ruby/object:Gem::Dependency
-  name: hoe-seattlerb
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '1.2'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '1.2'
+        version: '3.0'
 - !ruby/object:Gem::Dependency
   name: rdoc
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.0'
+        version: '6.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.0'
+        version: '6.0'
 - !ruby/object:Gem::Dependency
-  name: ZenTest
+  name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.5'
+        version: '12.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.5'
+        version: '12.0'
 - !ruby/object:Gem::Dependency
-  name: rake
+  name: minitest
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.5'
+        version: '5.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.5'
+        version: '5.0'
 - !ruby/object:Gem::Dependency
-  name: minitest
+  name: simplecov
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.0'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.0'
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: hoe
+  name: rubocop
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.15'
+        version: 0.60.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.15'
-description: ''
+        version: 0.60.0
+description: |-
+  A package (also known as a library) contains a set of functionality
+    that can be invoked by a Ruby program, such as reading and parsing an XML file. We call
+    these packages 'gems' and RubyGems is a tool to install, create, manage and load these
+    packages in your Ruby environment. RubyGems is also a client for RubyGems.org, a public
+    repository of Gems that allows you to publish a Gem that can be shared and used by other
+    developers. See our guide on publishing a Gem at guides.rubygems.org
 email:
-- rubygems-developers@rubyforge.org
+- ''
+- ''
+- drbrain@segment7.net
+- luislavena@gmail.com
+- aaron@tenderlovemaking.com
+- segiddins@segiddins.me
+- andre@arko.net
+- evan@phx.io
+- hsbt@ruby-lang.org
 executables:
 - update_rubygems
 extensions: []
 extra_rdoc_files:
-- CODE_OF_CONDUCT.md
-- CONTRIBUTING.rdoc
-- CVE-2013-4287.txt
-- CVE-2013-4363.txt
-- CVE-2015-3900.txt
 - History.txt
 - LICENSE.txt
 - MAINTAINERS.txt
 - MIT.txt
 - Manifest.txt
-- POLICIES.rdoc
 - README.md
-- UPGRADING.rdoc
+- UPGRADING.md
+- POLICIES.md
+- CODE_OF_CONDUCT.md
+- CONTRIBUTING.md
 - bundler/CHANGELOG.md
 - bundler/CODE_OF_CONDUCT.md
 - bundler/CONTRIBUTING.md
@@ -137,23 +140,19 @@ extra_rdoc_files:
 - bundler/README.md
 - hide_lib_for_update/note.txt
 files:
-- ".autotest"
-- ".document"
+- ".rubocop.yml"
 - ".travis.yml"
 - CODE_OF_CONDUCT.md
-- CONTRIBUTING.rdoc
-- CVE-2013-4287.txt
-- CVE-2013-4363.txt
-- CVE-2015-3900.txt
+- CONTRIBUTING.md
 - History.txt
 - LICENSE.txt
 - MAINTAINERS.txt
 - MIT.txt
 - Manifest.txt
-- POLICIES.rdoc
+- POLICIES.md
 - README.md
 - Rakefile
-- UPGRADING.rdoc
+- UPGRADING.md
 - appveyor.yml
 - bin/gem
 - bin/update_rubygems
@@ -194,6 +193,7 @@ files:
 - bundler/lib/bundler/cli/platform.rb
 - bundler/lib/bundler/cli/plugin.rb
 - bundler/lib/bundler/cli/pristine.rb
+- bundler/lib/bundler/cli/remove.rb
 - bundler/lib/bundler/cli/show.rb
 - bundler/lib/bundler/cli/update.rb
 - bundler/lib/bundler/cli/viz.rb
@@ -244,6 +244,7 @@ files:
 - bundler/lib/bundler/plugin/api.rb
 - bundler/lib/bundler/plugin/api/source.rb
 - bundler/lib/bundler/plugin/dsl.rb
+- bundler/lib/bundler/plugin/events.rb
 - bundler/lib/bundler/plugin/index.rb
 - bundler/lib/bundler/plugin/installer.rb
 - bundler/lib/bundler/plugin/installer/git.rb
@@ -400,6 +401,7 @@ files:
 - bundler/man/bundle-package.ronn
 - bundler/man/bundle-platform.ronn
 - bundler/man/bundle-pristine.ronn
+- bundler/man/bundle-remove.ronn
 - bundler/man/bundle-show.ronn
 - bundler/man/bundle-update.ronn
 - bundler/man/bundle-viz.ronn
@@ -422,6 +424,7 @@ files:
 - lib/rubygems/commands/fetch_command.rb
 - lib/rubygems/commands/generate_index_command.rb
 - lib/rubygems/commands/help_command.rb
+- lib/rubygems/commands/info_command.rb
 - lib/rubygems/commands/install_command.rb
 - lib/rubygems/commands/list_command.rb
 - lib/rubygems/commands/lock_command.rb
@@ -450,6 +453,7 @@ files:
 - lib/rubygems/config_file.rb
 - lib/rubygems/core_ext/kernel_gem.rb
 - lib/rubygems/core_ext/kernel_require.rb
+- lib/rubygems/core_ext/kernel_warn.rb
 - lib/rubygems/defaults.rb
 - lib/rubygems/dependency.rb
 - lib/rubygems/dependency_installer.rb
@@ -551,6 +555,7 @@ files:
 - lib/rubygems/resolver/stats.rb
 - lib/rubygems/resolver/vendor_set.rb
 - lib/rubygems/resolver/vendor_specification.rb
+- lib/rubygems/s3_uri_signer.rb
 - lib/rubygems/safe_yaml.rb
 - lib/rubygems/security.rb
 - lib/rubygems/security/policies.rb
@@ -571,6 +576,7 @@ files:
 - lib/rubygems/source_specific_file.rb
 - lib/rubygems/spec_fetcher.rb
 - lib/rubygems/specification.rb
+- lib/rubygems/specification_policy.rb
 - lib/rubygems/ssl_certs/.document
 - lib/rubygems/ssl_certs/rubygems.org/GlobalSignRootCA.pem
 - lib/rubygems/ssl_certs/rubygems.org/GlobalSignRootCA_R3.pem
@@ -589,6 +595,7 @@ files:
 - lib/rubygems/version.rb
 - lib/rubygems/version_option.rb
 - lib/ubygems.rb
+- rubygems-update.gemspec
 - setup.rb
 - test/rubygems/alternate_cert.pem
 - test/rubygems/alternate_cert_32.pem
@@ -606,7 +613,6 @@ files:
 - test/rubygems/encrypted_private_key.pem
 - test/rubygems/expired_cert.pem
 - test/rubygems/fake_certlib/openssl.rb
-- test/rubygems/fix_openssl_warnings.rb
 - test/rubygems/foo/discover.rb
 - test/rubygems/future_cert.pem
 - test/rubygems/future_cert_32.pem
@@ -658,6 +664,7 @@ files:
 - test/rubygems/test_gem_commands_fetch_command.rb
 - test/rubygems/test_gem_commands_generate_index_command.rb
 - test/rubygems/test_gem_commands_help_command.rb
+- test/rubygems/test_gem_commands_info_command.rb
 - test/rubygems/test_gem_commands_install_command.rb
 - test/rubygems/test_gem_commands_list_command.rb
 - test/rubygems/test_gem_commands_lock_command.rb
@@ -774,10 +781,13 @@ files:
 - test/rubygems/wrong_key_cert_32.pem
 - util/CL2notes
 - util/ci
+- util/cops/deprecations.rb
 - util/create_certs.rb
+- util/create_certs.sh
 - util/create_encrypted_key.rb
 - util/generate_spdx_license_list.rb
 - util/patch_with_prs.rb
+- util/rubocop
 - util/update_bundled_ca_certificates.rb
 - util/update_changelog.rb
 homepage: https://rubygems.org
@@ -796,7 +806,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 1.8.7
+      version: 2.3.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
@@ -807,5 +817,5 @@ rubyforge_project:
 rubygems_version: 2.7.6.2
 signing_key:
 specification_version: 4
-summary: ''
+summary: RubyGems is a package management framework for Ruby.
 test_files: []

data/.autotest DELETED Viewed

@@ -1,71 +0,0 @@
-# -*- ruby -*-
-Gem.refresh
-require 'autotest/restart'
-require 'autotest/isolate'
-Autotest.add_hook :run_command do |_, cmd|
-  cmd.sub! ' -e ', ' -we '
-end
-Autotest.add_hook :initialize do |at|
-  at.testlib = ''
-  at.failed_results_re = /^\s+\d+\) (?:Failure|Error):\n(.*?):/
-  at.completed_re = /\d+ tests, \d+ assertions, \d+ failures, \d+ errors/
-  at.add_exception %r%/\.git/%
-  at.add_exception %r%\.rbc$%
-  at.add_exception %r%test/rubygems/rubygems%
-  at.find_directories.clear
-  at.find_directories.push 'lib', 'test'
-  at.add_mapping %r%^lib/rubygems.rb$% do |_, m|
-    "test/rubygems/test_gem.rb"
-  end
-  at.add_mapping %r%^lib/rubygems/(.*).rb$% do |_, m|
-    "test/rubygems/test_gem_#{m[1].gsub '/', '_'}.rb"
-  end
-  args = ARGV.reject { |a| a =~ /^-/ }
-  at.find_directories = args unless args.empty?
-  def at.handle_results results
-    results = results.gsub(/\e\[\d+m/, '') # strip ascii color
-    failed = results.scan(self.failed_results_re).map { |m, k|
-      /(?<k>\w+)#(?<m>\w+)/ =~ m
-      [m, k]
-    }
-    completed = results[self.completed_re]
-    if completed then
-      completed = completed.scan(/(\d+) (\w+)/).map { |v, k| [k, v.to_i] }
-      self.latest_results = Hash[*completed.flatten]
-      self.files_to_test  = consolidate_failures failed
-      color = failed.empty? ? :green : :red
-      hook color unless $TESTING
-    else
-      self.latest_results = nil
-    end
-    self.tainted = true unless self.files_to_test.empty?
-  end
-  def at.path_to_classname s
-    sep = File::SEPARATOR
-    f = s.sub(/^test#{sep}rubygems#{sep}/, '').sub(/\.rb$/, '').split sep
-    f = f.map { |path| path.split(/_|(\d+)/).map { |seg| seg.capitalize }.join }
-    f.join('::').
-      gsub('Rdoc', 'RDoc').
-      gsub('GemDependencyApi', 'GemDependencyAPI')
-  end
-end

data/.document DELETED Viewed

@@ -1,5 +0,0 @@
-README
-LICENSE.txt
-GPL.txt
-lib
-release_notes

data/CONTRIBUTING.rdoc DELETED Viewed

@@ -1,130 +0,0 @@
-= How to contribute
-Community involvement is essential to RubyGems. We want to keep it as easy
-as possible to contribute changes. There are a few guidelines that we need
-contributors to follow to reduce the time it takes to get changes merged in.
-== Guidelines
-1. New features should be coupled with tests.
-2. Ensure that your code blends well with ours:
-   * No trailing whitespace
-   * Match indentation (two spaces)
-   * Match coding style (+if+, +elsif+, +when+ need trailing +then+)
-3. If any new files are added or existing files removed in a commit or PR, please update the +Manifest.txt+ accordingly.
-4. Don't modify the history file or version number.
-5. If you have any questions, just ask on IRC in #rubygems on Freenode or file
-   an issue here: http://github.com/rubygems/rubygems/issues
-For more information and ideas on how to contribute to RubyGems ecosystem, see
-here: http://guides.rubygems.org/contributing/
-== Getting Started
-    $ gem install hoe
-    $ rake newb
-To run commands like <tt>gem install</tt> from the repo:
-    $ ruby -Ilib bin/gem install
-== Issues
-RubyGems uses labels to track all issues and pull requests. In order to provide
-guidance to the community this is documentation of how labels are used in the
-rubygems repository.
-=== Contribution
-These labels are made to guide contributors to issue/pull requests that they
-can help with. That are marked with a light gray <tt>contribution: *</tt>
-* *small* - The issue described here will take a small amount of work to resolve,
-  and is a good option for a new contributor
-* *unclaimed* - The issue has not been claimed for work, and is awaiting willing
-  volunteers!
-=== Type
-Most Issues or pull requests will have a light green <tt>type: *</tt> label,
-which describes the type of the issue or pull request.
-* <b>bug report</b> - An issue describing a bug in rubygems. This would be something
-  that is broken, confusing, unexpected behavior etc.
-* <b>bug fix</b> - A pull request that fixes a bug report.
-* <b>feature request</b> - An issue describing a request for a new feature or
-  enhancement.
-* <b>feature implementation</b> - A pull request implementing a feature request.
-* *question* - An issue that is a more of a question than a call for specific
-  changes in the codebase.
-* *cleanup* - Generally for a pull request that improves the code base without
-  fixing a bug or implementing a feature.
-* <b>major bump</b> - This issue or pull request requires a major version bump
-* *administrative* - This issue relates to administrative tasks that need to
-  take place as it relates to rubygems
-* *documentation* - This issue relates to improving the documentation for
-  in this repo. Note that much of the rubygems documentation is here:
-  https://github.com/rubygems/guides
-=== Workflow / Status
-The light yellow <tt>status: *</tt> labels that indicate the state of an
-issue, where it is in the process from being submitted to being closed.
-These are listed in rough  progression order from submitted to closed.
-* *triage* - This is an issue or pull request that needs to be properly
-  labeled by by a maintainer.
-* *confirmed* - This issue/pull request has been accepted as valid, but
-  is not yet immediately ready for work.
-* <b>ready</b> - An issue that is available for collaboration. This issue
-  should have existing discussion on the problem, and a description of how to go
-  about solving it.
-* <b>working</b> - An issue that has a specific invidual assigned to and planning
-  to do work on it.
-* <b>user feedback required</b> - The issue/pull request is blocked pending more
-  feedback from an end user
-* <b>blocked / backlog</b> - the issue/pull request is currently unable to move forward
-  because of some specific reason, generally this will be a reason that is outside
-  RubyGems or needs feedback from some specific individual or group, and it may
-  be a while before something it is resolved.
-=== Closed Reason
-Reasons are why an issue / pull request was closed without being worked on or
-accepted. There should also be more detailed information in the comments. The
-closed reason labels are maroon <tt>closed: *</tt>.
-* *duplicate* - This is a duplicate of an existing bug. The comments must
-  reference the existing issue.
-* *abandonded* - This is an issue/pull request that has aged off, is no longer
-  applicable or similar.
-* *declined* - An issue that won't be fixed/implemented or a pull request that
-  is not accepted.
-* *deprecated* - An issue/pull request that no longer applies to the actively
-  maintained codebase.
-* *discussion* - An issue/pull that is no longer about a concrete change, and
-  is instead being used for discussion.
-=== Categories
-These are aspects of the codebase, or what general area the issue or pull
-request pertains too. Not all issues will have a category. All categorized
-issues have a blue <tt>category: *</tt> label.
-* *gemspec* - related to the gem specification itself
-* *API* - related to the public supported rubygems API. This is the code API,
-  not a network related API.
-* *command* - related to something in <tt>Gem::Commands</tt>
-* *install* - related to gem installations
-* *documentation* - related to updating / fixing / clarifying documentation or
-  guides
-=== Platforms
-If an issue or pull request pertains to only one platform, then it should have
-an appropriate purple <tt>platform: *</tt> label. Current platform labels:
-*windows*, *java*, *osx*, *linux*

data/CVE-2013-4287.txt DELETED Viewed

@@ -1,35 +0,0 @@
-= Algorithmic complexity vulnerability in RubyGems 2.0.7 and older
-RubyGems validates versions with a regular expression that is vulnerable to
-denial of service due to backtracking.  For specially crafted RubyGems
-versions attackers can cause denial of service through CPU consumption.
-RubyGems versions 2.0.7 and older, 2.1.0.rc.1 and 2.1.0.rc.2 are vulnerable.
-Ruby versions 1.9.0 through 2.0.0p247 are vulnerable as they contain embedded
-versions of RubyGems.
-It does not appear to be possible to exploit this vulnerability by installing a
-gem for RubyGems 1.8.x or 2.0.x.  Vulnerable uses of RubyGems API include
-packaging a gem (through `gem build`, Gem::Package or Gem::PackageTask),
-sending user input to Gem::Version.new, Gem::Version.correct? or use of the
-Gem::Version::VERSION_PATTERN or Gem::Version::ANCHORED_VERSION_PATTERN
-constants.
-Notably, users of bundler that install gems from git are vulnerable if a
-malicious author changes the gemspec to an invalid version.
-The vulnerability can be fixed by changing the first grouping to an atomic
-grouping in Gem::Version::VERSION_PATTERN in lib/rubygems/version.rb.  For
-RubyGems 2.0.x:
-  -  VERSION_PATTERN = '[0-9]+(\.[0-9a-zA-Z]+)*(-[0-9A-Za-z-]+(\.[0-9A-Za-z-]+)*)?' # :nodoc:
-  +  VERSION_PATTERN = '[0-9]+(?>\.[0-9a-zA-Z]+)*(-[0-9A-Za-z-]+(\.[0-9A-Za-z-]+)*)?' # :nodoc:
-For RubyGems 1.8.x:
-  -  VERSION_PATTERN = '[0-9]+(\.[0-9a-zA-Z]+)*' # :nodoc:
-  +  VERSION_PATTERN = '[0-9]+(?>\.[0-9a-zA-Z]+)*' # :nodoc:
-This vulnerability was discovered by Damir Sharipov <dammer2k@gmail.com>

data/CVE-2013-4363.txt DELETED Viewed

@@ -1,45 +0,0 @@
-= Algorithmic complexity vulnerability in RubyGems 2.1.4 and older
-The patch for CVE-2013-4287 was insufficiently verified so the combined
-regular expression for verifying gem version remains vulnerable following
-CVE-2013-4287.
-RubyGems validates versions with a regular expression that is vulnerable to
-denial of service due to backtracking.  For specially crafted RubyGems
-versions attackers can cause denial of service through CPU consumption.
-RubyGems versions 2.1.4 and older are vulnerable.
-Ruby versions 1.9.0 through 2.0.0p247 are vulnerable as they contain embedded
-versions of RubyGems.
-It does not appear to be possible to exploit this vulnerability by installing a
-gem for RubyGems 1.8.x or newer.  Vulnerable uses of RubyGems API include
-packaging a gem (through `gem build`, Gem::Package or Gem::PackageTask),
-sending user input to Gem::Version.new, Gem::Version.correct? or use of the
-Gem::Version::VERSION_PATTERN or Gem::Version::ANCHORED_VERSION_PATTERN
-constants.
-Notably, users of bundler that install gems from git are vulnerable if a
-malicious author changes the gemspec to an invalid version.
-The vulnerability can be fixed by changing the "*" repetition to a "?"
-repetition in Gem::Version::ANCHORED_VERSION_PATTERN in
-lib/rubygems/version.rb.  For RubyGems 2.1.x:
-  -  ANCHORED_VERSION_PATTERN = /\A\s*(#{VERSION_PATTERN})*\s*\z/ # :nodoc:
-  +  ANCHORED_VERSION_PATTERN = /\A\s*(#{VERSION_PATTERN})?\s*\z/ # :nodoc:
-For RubyGems 2.0.x:
-  -  ANCHORED_VERSION_PATTERN = /\A\s*(#{VERSION_PATTERN})*\s*\z/ # :nodoc:
-  +  ANCHORED_VERSION_PATTERN = /\A\s*(#{VERSION_PATTERN})?\s*\z/ # :nodoc:
-For RubyGems 1.8.x:
-  -  ANCHORED_VERSION_PATTERN = /\A\s*(#{VERSION_PATTERN})*\s*\z/ # :nodoc:
-  +  ANCHORED_VERSION_PATTERN = /\A\s*(#{VERSION_PATTERN})?\s*\z/ # :nodoc:
-This vulnerability was discovered by Alexander Cherepanov <cherepan@mccme.ru>

data/CVE-2015-3900.txt DELETED Viewed

@@ -1,40 +0,0 @@
-= Request hijacking vulnerability in RubyGems 2.4.6 and earlier
-RubyGems provides the ability of a domain to direct clients to a separate
-host that is used to fetch gems and make API calls against. This mechanism
-is implemented via DNS, specificly a SRV record _rubygems._tcp under the
-original requested domain.
-For example, this is the one that users who use rubygems.org see:
-  > dig _rubygems._tcp.rubygems.org SRV
-  ;; ANSWER SECTION:
-  _rubygems._tcp.rubygems.org. 600 IN	SRV	0 1 80 api.rubygems.org.
-RubyGems did not validate the hostname returned in the SRV record before
-sending requests to it.
-This left clients open to a DNS hijack attack, whereby an attacker could
-return a SRV of their choosing and get the client to use it. For example:
-  > dig _rubygems._tcp.rubygems.org SRV
-  ;; ANSWER SECTION:
-  _rubygems._tcp.rubygems.org. 600 IN	SRV	0 1 80 gems.nottobetrusted.wtf
-The fix, detailed at https://github.com/rubygems/rubygems/commit/6bbee35,
-shows that we validate the record now to be under the original domain. This
-restricts the client to be using the original trust/security domain as they
-would have otherwise.
-RubyGems versions between 2.0 and 2.4.6 are vulnerable.
-RubyGems version 2.0.16, 2.2.4, and 2.4.7 have been released that fix this
-issue.
-Ruby versions 1.9.0 through 2.2.0 are vulnerable as they contain embedded
-versions of RubyGems.
-This vulnerability was reported by Jonathan Claudius <JClaudius@trustwave.com>.