RubyGems - rubygems-update - Versions diffs - 3.3.10 → 3.3.11 - Mend

rubygems-update 3.3.10 → 3.3.11

Files changed (63) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +14 -0
data/Manifest.txt +14 -0
data/bundler/CHANGELOG.md +11 -0
data/bundler/exe/bundler +1 -1
data/bundler/lib/bundler/build_metadata.rb +3 -3
data/bundler/lib/bundler/cli/info.rb +1 -1
data/bundler/lib/bundler/cli/init.rb +1 -1
data/bundler/lib/bundler/cli/show.rb +1 -1
data/bundler/lib/bundler/cli.rb +1 -1
data/bundler/lib/bundler/installer.rb +2 -2
data/bundler/lib/bundler/man/bundle-config.1 +3 -3
data/bundler/lib/bundler/man/bundle-config.1.ronn +8 -6
data/bundler/lib/bundler/shared_helpers.rb +4 -4
data/bundler/lib/bundler/source/metadata.rb +1 -1
data/bundler/lib/bundler/templates/Executable +2 -4
data/bundler/lib/bundler/templates/Executable.bundler +1 -1
data/bundler/lib/bundler/templates/Executable.standalone +2 -4
data/bundler/lib/bundler/templates/newgem/github/workflows/main.yml.tt +1 -1
data/bundler/lib/bundler/templates/newgem/newgem.gemspec.tt +1 -1
data/bundler/lib/bundler/version.rb +1 -1
data/bundler/lib/bundler.rb +1 -1
data/lib/rubygems/commands/setup_command.rb +1 -1
data/lib/rubygems/ext/builder.rb +3 -0
data/lib/rubygems/ext/cargo_builder.rb +305 -0
data/lib/rubygems/ext/ext_conf_builder.rb +1 -1
data/lib/rubygems/ext.rb +1 -0
data/lib/rubygems/gemcutter_utilities.rb +34 -5
data/lib/rubygems/request.rb +1 -1
data/lib/rubygems/source/git.rb +1 -0
data/lib/rubygems.rb +2 -2
data/rubygems-update.gemspec +1 -1
data/setup.rb +1 -1
data/test/rubygems/helper.rb +5 -5
data/test/rubygems/test_gem.rb +1 -1
data/test/rubygems/test_gem_command_manager.rb +1 -1
data/test/rubygems/test_gem_commands_help_command.rb +1 -1
data/test/rubygems/test_gem_commands_push_command.rb +5 -0
data/test/rubygems/test_gem_commands_setup_command.rb +1 -1
data/test/rubygems/test_gem_commands_signin_command.rb +100 -11
data/test/rubygems/test_gem_dependency_installer.rb +2 -2
data/test/rubygems/test_gem_ext_builder.rb +1 -1
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/.gitignore +1 -0
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/Cargo.lock +374 -0
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/Cargo.toml +10 -0
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/build.rb +21 -0
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/custom_name.gemspec +10 -0
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/src/lib.rs +30 -0
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/.gitignore +1 -0
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.lock +374 -0
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.toml +10 -0
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/build.rb +21 -0
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/rust_ruby_example.gemspec +8 -0
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/src/lib.rs +42 -0
data/test/rubygems/test_gem_ext_cargo_builder.rb +148 -0
data/test/rubygems/test_gem_ext_cmake_builder.rb +2 -0
data/test/rubygems/test_gem_gemcutter_utilities.rb +4 -2
data/test/rubygems/test_gem_source_git.rb +1 -0
data/test/rubygems/test_gem_specification.rb +1 -1
data/test/rubygems/test_project_sanity.rb +1 -1
data/test/rubygems/test_require.rb +1 -1
data/test/test_changelog_generator.rb +1 -0
metadata +17 -3

data/lib/rubygems/ext/ext_conf_builder.rb CHANGED Viewed

@@ -39,7 +39,7 @@ class Gem::Ext::ExtConfBuilder < Gem::Ext::Builder
         # workaround for https://github.com/oracle/truffleruby/issues/2115
         siteconf_path = RUBY_ENGINE == "truffleruby" ? siteconf.path.dup : siteconf.path
         require "shellwords"
-        cmd = Gem.ruby.shellsplit << "-I" << File.expand_path("../../..", __FILE__) <<
+        cmd = Gem.ruby.shellsplit << "-I" << File.expand_path('../..', __dir__) <<
               "-r" << get_relative_path(siteconf_path, extension_dir) << File.basename(extension)
         cmd.push(*args)

data/lib/rubygems/ext.rb CHANGED Viewed

@@ -16,3 +16,4 @@ require_relative 'ext/configure_builder'
 require_relative 'ext/ext_conf_builder'
 require_relative 'ext/rake_builder'
 require_relative 'ext/cmake_builder'
+require_relative 'ext/cargo_builder'

data/lib/rubygems/gemcutter_utilities.rb CHANGED Viewed

@@ -163,12 +163,14 @@ module Gem::GemcutterUtilities
     key_name     = get_key_name(scope)
     scope_params = get_scope_params(scope)
+    mfa_params   = get_mfa_params(email, password)
+    all_params   = scope_params.merge(mfa_params)
     response = rubygems_api_request(:post, "api/v1/api_key",
                                     sign_in_host, scope: scope) do |request|
       request.basic_auth email, password
       request["OTP"] = otp if otp
-      request.body = URI.encode_www_form({ name: key_name }.merge(scope_params))
+      request.body = URI.encode_www_form({ name: key_name }.merge(all_params))
     end
     with_response response do |resp|
@@ -219,7 +221,7 @@ module Gem::GemcutterUtilities
   # +response+ text and no otp provided by options.
   def set_api_key(host, key)
-    if host == Gem::DEFAULT_HOST
+    if default_host?
       Gem.configuration.rubygems_api_key = key
     else
       Gem.configuration.set_api_key host, key
@@ -243,7 +245,7 @@ module Gem::GemcutterUtilities
   end
   def pretty_host(host)
-    if Gem::DEFAULT_HOST == host
+    if default_host?
       'RubyGems.org'
     else
       host
@@ -258,8 +260,8 @@ module Gem::GemcutterUtilities
     else
       say "Please select scopes you want to enable for the API key (y/n)"
       API_SCOPES.each do |scope|
-        selected = ask "#{scope} [y/N]: "
-        scope_params[scope] = true if selected =~ /^[yY](es)?$/
+        selected = ask_yes_no("#{scope}", false)
+        scope_params[scope] = true if selected
       end
       say "\n"
     end
@@ -267,6 +269,33 @@ module Gem::GemcutterUtilities
     scope_params
   end
+  def default_host?
+    self.host == Gem::DEFAULT_HOST
+  end
+  def get_mfa_params(email, password)
+    return {} unless default_host?
+    mfa_level = get_user_mfa_level(email, password)
+    params = {}
+    if mfa_level == "ui_only" || mfa_level == "ui_and_gem_signin"
+      selected = ask_yes_no("Would you like to enable MFA for this key? (strongly recommended)")
+      params["mfa"] = true if selected
+    end
+    params
+  end
+  def get_user_mfa_level(email, password)
+    response = rubygems_api_request(:get, "api/v1/profile/me.yaml") do |request|
+      request.basic_auth email, password
+    end
+    with_response response do |resp|
+      body = Gem::SafeYAML.load clean_text(resp.body)
+      body["mfa"]
+    end
+  end
   def get_key_name(scope)
     hostname = Socket.gethostname || "unknown-host"
     user = ENV["USER"] || ENV["USERNAME"] || "unknown-user"

data/lib/rubygems/request.rb CHANGED Viewed

@@ -39,7 +39,7 @@ class Gem::Request
   def cert_files; @connection_pool.cert_files; end
   def self.get_cert_files
-    pattern = File.expand_path("./ssl_certs/*/*.pem", File.dirname(__FILE__))
+    pattern = File.expand_path("./ssl_certs/*/*.pem", __dir__)
     Dir.glob(pattern)
   end

data/lib/rubygems/source/git.rb CHANGED Viewed

@@ -102,6 +102,7 @@ class Gem::Source::Git < Gem::Source
       success = system @git, 'reset', '--quiet', '--hard', rev_parse
       if @need_submodules
+        require "open3"
         _, status = Open3.capture2e(@git, 'submodule', 'update', '--quiet', '--init', '--recursive')
         success &&= status.success?

data/lib/rubygems.rb CHANGED Viewed

@@ -8,7 +8,7 @@
 require 'rbconfig'
 module Gem
-  VERSION = "3.3.10".freeze
+  VERSION = "3.3.11".freeze
 end
 # Must be first since it unloads the prelude from 1.9.2
@@ -112,7 +112,7 @@ require_relative 'rubygems/errors'
 # -The RubyGems Team
 module Gem
-  RUBYGEMS_DIR = File.dirname File.expand_path(__FILE__)
+  RUBYGEMS_DIR = __dir__
   # Taint support is deprecated in Ruby 2.7.
   # This allows switching ".untaint" to ".tap(&Gem::UNTAINT)",

data/rubygems-update.gemspec CHANGED Viewed

@@ -2,7 +2,7 @@
 Gem::Specification.new do |s|
   s.name = "rubygems-update"
-  s.version = "3.3.10"
+  s.version = "3.3.11"
   s.authors = ["Jim Weirich", "Chad Fowler", "Eric Hodel", "Luis Lavena", "Aaron Patterson", "Samuel Giddins", "André Arko", "Evan Phoenix", "Hiroshi SHIBATA"]
   s.email = ["", "", "drbrain@segment7.net", "luislavena@gmail.com", "aaron@tenderlovemaking.com", "segiddins@segiddins.me", "andre@arko.net", "evan@phx.io", "hsbt@ruby-lang.org"]

data/setup.rb CHANGED Viewed

@@ -16,7 +16,7 @@ if ENV['RUBYOPT'] or defined? Gem
   exec(*cmd)
 end
-Dir.chdir File.dirname(__FILE__)
+Dir.chdir __dir__
 $:.unshift File.expand_path('lib')
 require 'rubygems'

data/test/rubygems/helper.rb CHANGED Viewed

@@ -3,7 +3,7 @@
 require 'rubygems'
 # If bundler gemspec exists, add to stubs
-bundler_gemspec = File.expand_path("../../../bundler/bundler.gemspec", __FILE__)
+bundler_gemspec = File.expand_path('../../bundler/bundler.gemspec', __dir__)
 if File.exist?(bundler_gemspec)
   Gem::Specification.dirs.unshift File.dirname(bundler_gemspec)
   Gem::Specification.class_variable_set :@@stubs, nil
@@ -302,11 +302,15 @@ class Gem::TestCase < Test::Unit::TestCase
   # or <tt>i686-darwin8.10.1</tt> otherwise.
   def setup
+    @orig_hooks = {}
     @orig_env = ENV.to_hash
     @tmp = File.expand_path("tmp")
     FileUtils.mkdir_p @tmp
+    @tempdir = Dir.mktmpdir("test_rubygems_", @tmp)
+    @tempdir.tap(&Gem::UNTAINT)
     ENV['GEM_VENDOR'] = nil
     ENV['GEMRC'] = nil
     ENV['XDG_CACHE_HOME'] = nil
@@ -324,9 +328,6 @@ class Gem::TestCase < Test::Unit::TestCase
     # capture output
     Gem::DefaultUserInteraction.ui = Gem::MockGemUi.new
-    @tempdir = Dir.mktmpdir("test_rubygems_", @tmp)
-    @tempdir.tap(&Gem::UNTAINT)
     ENV["TMPDIR"] = @tempdir
     @orig_SYSTEM_WIDE_CONFIG_FILE = Gem::ConfigFile::SYSTEM_WIDE_CONFIG_FILE
@@ -426,7 +427,6 @@ class Gem::TestCase < Test::Unit::TestCase
       util_set_arch 'i686-darwin8.10.1'
     end
-    @orig_hooks = {}
     %w[post_install_hooks done_installing_hooks post_uninstall_hooks pre_uninstall_hooks pre_install_hooks pre_reset_hooks post_reset_hooks post_build_hooks].each do |name|
       @orig_hooks[name] = Gem.send(name).dup
     end

data/test/rubygems/test_gem.rb CHANGED Viewed

@@ -10,7 +10,7 @@ require 'rbconfig'
 class TestGem < Gem::TestCase
   PLUGINS_LOADED = [] # rubocop:disable Style/MutableConstant
-  PROJECT_DIR = File.expand_path('../../..', __FILE__).tap(&Gem::UNTAINT)
+  PROJECT_DIR = File.expand_path('../..', __dir__).tap(&Gem::UNTAINT)
   def setup
     super

data/test/rubygems/test_gem_command_manager.rb CHANGED Viewed

@@ -3,7 +3,7 @@ require_relative 'helper'
 require 'rubygems/command_manager'
 class TestGemCommandManager < Gem::TestCase
-  PROJECT_DIR = File.expand_path('../../..', __FILE__).tap(&Gem::UNTAINT)
+  PROJECT_DIR = File.expand_path('../..', __dir__).tap(&Gem::UNTAINT)
   def setup
     super

data/test/rubygems/test_gem_commands_help_command.rb CHANGED Viewed

@@ -11,7 +11,7 @@ class TestGemCommandsHelpCommand < Gem::TestCase
     @cmd = Gem::Commands::HelpCommand.new
-    load File.expand_path('../rubygems_plugin.rb', __FILE__) unless Gem::Commands.const_defined? :InterruptCommand
+    load File.expand_path('rubygems_plugin.rb', __dir__) unless Gem::Commands.const_defined? :InterruptCommand
   end
   def test_gem_help_bad

data/test/rubygems/test_gem_commands_push_command.rb CHANGED Viewed

@@ -435,6 +435,7 @@ class TestGemCommandsPushCommand < Gem::TestCase
     response_mfa_enabled = "You have enabled multifactor authentication but your request doesn't have the correct OTP code. Please check it and retry."
     response_success     = 'Successfully registered gem: freewill (1.0.0)'
+    response_profile     = "mfa: disabled\n"
     @fetcher.data["#{@host}/api/v1/gems"] = [
       [response_success, 200, "OK"],
@@ -445,6 +446,10 @@ class TestGemCommandsPushCommand < Gem::TestCase
       ["", 200, "OK"],
     ]
+    @fetcher.data["#{@host}/api/v1/profile/me.yaml"] = [
+      [response_profile, 200, "OK"],
+    ]
     @cmd.instance_variable_set :@scope, :push_rubygem
     @cmd.options[:args] = [@path]
     @cmd.options[:host] = @host

data/test/rubygems/test_gem_commands_setup_command.rb CHANGED Viewed

@@ -4,7 +4,7 @@ require_relative 'helper'
 require 'rubygems/commands/setup_command'
 class TestGemCommandsSetupCommand < Gem::TestCase
-  bundler_gemspec = File.expand_path("../../../bundler/lib/bundler/version.rb", __FILE__)
+  bundler_gemspec = File.expand_path('../../bundler/lib/bundler/version.rb', __dir__)
   if File.exist?(bundler_gemspec)
     BUNDLER_VERS = File.read(bundler_gemspec).match(/VERSION = "(#{Gem::Version::VERSION_PATTERN})"/)[1]
   else

data/test/rubygems/test_gem_commands_signin_command.rb CHANGED Viewed

@@ -92,31 +92,120 @@ class TestGemCommandsSigninCommand < Gem::TestCase
     user = ENV["USER"] || ENV["USERNAME"]
     assert_match "API Key name [#{Socket.gethostname}-#{user}", key_name_ui.output
-    assert_match "index_rubygems [y/N]", key_name_ui.output
-    assert_match "push_rubygem [y/N]", key_name_ui.output
-    assert_match "yank_rubygem [y/N]", key_name_ui.output
-    assert_match "add_owner [y/N]", key_name_ui.output
-    assert_match "remove_owner [y/N]", key_name_ui.output
-    assert_match "access_webhooks [y/N]", key_name_ui.output
-    assert_match "show_dashboard [y/N]", key_name_ui.output
+    assert_match "index_rubygems [yN]", key_name_ui.output
+    assert_match "push_rubygem [yN]", key_name_ui.output
+    assert_match "yank_rubygem [yN]", key_name_ui.output
+    assert_match "add_owner [yN]", key_name_ui.output
+    assert_match "remove_owner [yN]", key_name_ui.output
+    assert_match "access_webhooks [yN]", key_name_ui.output
+    assert_match "show_dashboard [yN]", key_name_ui.output
     assert_equal "name=test-key&push_rubygem=true", fetcher.last_request.body
     credentials = load_yaml_file Gem.configuration.credentials_path
     assert_equal api_key, credentials[:rubygems_api_key]
   end
-  # Utility method to capture IO/UI within the block passed
+  def test_execute_with_key_name_scope_and_mfa_level_of_ui_only
+    email     = 'you@example.com'
+    password  = 'secret'
+    api_key   = '1234'
+    fetcher   = Gem::RemoteFetcher.fetcher
+    mfa_level = "ui_only"
+    key_name_ui = Gem::MockGemUi.new "#{email}\n#{password}\ntest-key\n\ny\n\n\n\n\n\ny"
+    util_capture(key_name_ui, nil, api_key, fetcher, mfa_level) { @cmd.execute }
+    user = ENV["USER"] || ENV["USERNAME"]
+    assert_match "API Key name [#{Socket.gethostname}-#{user}", key_name_ui.output
+    assert_match "index_rubygems [yN]", key_name_ui.output
+    assert_match "push_rubygem [yN]", key_name_ui.output
+    assert_match "yank_rubygem [yN]", key_name_ui.output
+    assert_match "add_owner [yN]", key_name_ui.output
+    assert_match "remove_owner [yN]", key_name_ui.output
+    assert_match "access_webhooks [yN]", key_name_ui.output
+    assert_match "show_dashboard [yN]", key_name_ui.output
+    assert_match "Would you like to enable MFA for this key? (strongly recommended) [yn]", key_name_ui.output
+    assert_equal "name=test-key&push_rubygem=true&mfa=true", fetcher.last_request.body
+    credentials = load_yaml_file Gem.configuration.credentials_path
+    assert_equal api_key, credentials[:rubygems_api_key]
+  end
-  def util_capture(ui_stub = nil, host = nil, api_key = nil, fetcher = Gem::FakeFetcher.new)
-    api_key ||= 'a5fdbb6ba150cbb83aad2bb2fede64cf040453903'
-    response  = [api_key, 200, 'OK']
+  def test_execute_with_key_name_scope_and_mfa_level_of_gem_signin
     email     = 'you@example.com'
     password  = 'secret'
+    api_key   = '1234'
+    fetcher   = Gem::RemoteFetcher.fetcher
+    mfa_level = "ui_and_gem_signin"
+    key_name_ui = Gem::MockGemUi.new "#{email}\n#{password}\ntest-key\n\ny\n\n\n\n\n\ny"
+    util_capture(key_name_ui, nil, api_key, fetcher, mfa_level) { @cmd.execute }
+    user = ENV["USER"] || ENV["USERNAME"]
+    assert_match "API Key name [#{Socket.gethostname}-#{user}", key_name_ui.output
+    assert_match "index_rubygems [yN]", key_name_ui.output
+    assert_match "push_rubygem [yN]", key_name_ui.output
+    assert_match "yank_rubygem [yN]", key_name_ui.output
+    assert_match "add_owner [yN]", key_name_ui.output
+    assert_match "remove_owner [yN]", key_name_ui.output
+    assert_match "access_webhooks [yN]", key_name_ui.output
+    assert_match "show_dashboard [yN]", key_name_ui.output
+    assert_match "Would you like to enable MFA for this key? (strongly recommended) [yn]", key_name_ui.output
+    assert_equal "name=test-key&push_rubygem=true&mfa=true", fetcher.last_request.body
+    credentials = load_yaml_file Gem.configuration.credentials_path
+    assert_equal api_key, credentials[:rubygems_api_key]
+  end
+  def test_execute_on_gemserver_without_profile_me_endpoint
+    host = 'http://some-gemcutter-compatible-host.org'
+    email     = 'you@example.com'
+    password  = 'secret'
+    api_key   = '1234'
+    fetcher   = Gem::RemoteFetcher.fetcher
+    key_name_ui = Gem::MockGemUi.new "#{email}\n#{password}\ntest-key\n\ny\n\n\n\n\n\ny"
+    # Set the expected response for the Web-API supplied
+    ENV['RUBYGEMS_HOST']       = host
+    data_key                   = "#{ENV['RUBYGEMS_HOST']}/api/v1/api_key"
+    fetcher.data[data_key]     = [api_key, 200, 'OK']
+    use_ui key_name_ui do
+      @cmd.execute
+    end
+    user = ENV["USER"] || ENV["USERNAME"]
+    assert_match "API Key name [#{Socket.gethostname}-#{user}", key_name_ui.output
+    assert_match "index_rubygems [yN]", key_name_ui.output
+    assert_match "push_rubygem [yN]", key_name_ui.output
+    assert_match "yank_rubygem [yN]", key_name_ui.output
+    assert_match "add_owner [yN]", key_name_ui.output
+    assert_match "remove_owner [yN]", key_name_ui.output
+    assert_match "access_webhooks [yN]", key_name_ui.output
+    assert_match "show_dashboard [yN]", key_name_ui.output
+    assert_equal "name=test-key&push_rubygem=true", fetcher.last_request.body
+  end
+  # Utility method to capture IO/UI within the block passed
+  def util_capture(ui_stub = nil, host = nil, api_key = nil, fetcher = Gem::FakeFetcher.new, mfa_level = "disabled")
+    api_key        ||= 'a5fdbb6ba150cbb83aad2bb2fede64cf040453903'
+    response         = [api_key, 200, 'OK']
+    profile_response = [ "mfa: #{mfa_level}\n" , 200, 'OK']
+    email            = 'you@example.com'
+    password         = 'secret'
     # Set the expected response for the Web-API supplied
     ENV['RUBYGEMS_HOST']       = host || Gem::DEFAULT_HOST
     data_key                   = "#{ENV['RUBYGEMS_HOST']}/api/v1/api_key"
     fetcher.data[data_key]     = response
+    profile                    = "#{ENV['RUBYGEMS_HOST']}/api/v1/profile/me.yaml"
+    fetcher.data[profile]      = profile_response
     Gem::RemoteFetcher.fetcher = fetcher
     sign_in_ui = ui_stub || Gem::MockGemUi.new("#{email}\n#{password}\n\n\n\n\n\n\n\n\n")

data/test/rubygems/test_gem_dependency_installer.rb CHANGED Viewed

@@ -941,7 +941,7 @@ class TestGemDependencyInstaller < Gem::TestCase
   end
   def test_install_legacy_spec_with_nil_required_ruby_version
-    path = File.expand_path "../data/null-required-ruby-version.gemspec.rz", __FILE__
+    path = File.expand_path 'data/null-required-ruby-version.gemspec.rz', __dir__
     spec = Marshal.load Gem.read_binary(path)
     def spec.validate(*args); end
@@ -966,7 +966,7 @@ class TestGemDependencyInstaller < Gem::TestCase
   end
   def test_install_legacy_spec_with_nil_required_rubygems_version
-    path = File.expand_path "../data/null-required-rubygems-version.gemspec.rz", __FILE__
+    path = File.expand_path 'data/null-required-rubygems-version.gemspec.rz', __dir__
     spec = Marshal.load Gem.read_binary(path)
     def spec.validate(*args); end

data/test/rubygems/test_gem_ext_builder.rb CHANGED Viewed

@@ -291,7 +291,7 @@ install:
     File.open File.join(@spec.gem_dir, "extconf.rb"), "w" do |f|
       f.write <<-'RUBY'
         puts "IN EXTCONF"
-        extconf_args = File.join File.dirname(__FILE__), 'extconf_args'
+        extconf_args = File.join __dir__, 'extconf_args'
         File.open extconf_args, 'w' do |f|
           f.puts ARGV.inspect
         end

data/test/rubygems/test_gem_ext_cargo_builder/custom_name/.gitignore ADDED Viewed

	@@ -0,0 +1 @@
1	+ target/