RubyGems - rubygems-update - Versions diffs - 3.4.10 → 3.5.22 - Mend

rubygems-update 3.4.10 → 3.5.22

Files changed (725) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +714 -4
data/CODE_OF_CONDUCT.md +79 -28
data/CONTRIBUTING.md +3 -3
data/Manifest.txt +128 -257
data/POLICIES.md +82 -13
data/README.md +1 -3
data/bundler/CHANGELOG.md +556 -2
data/bundler/README.md +1 -2
data/bundler/bundler.gemspec +4 -2
data/bundler/exe/bundle +5 -22
data/bundler/lib/bundler/build_metadata.rb +3 -3
data/bundler/lib/bundler/capistrano.rb +1 -1
data/bundler/lib/bundler/checksum.rb +254 -0
data/bundler/lib/bundler/ci_detector.rb +75 -0
data/bundler/lib/bundler/cli/add.rb +4 -4
data/bundler/lib/bundler/cli/binstubs.rb +5 -5
data/bundler/lib/bundler/cli/cache.rb +1 -1
data/bundler/lib/bundler/cli/check.rb +3 -3
data/bundler/lib/bundler/cli/common.rb +9 -1
data/bundler/lib/bundler/cli/config.rb +8 -7
data/bundler/lib/bundler/cli/console.rb +3 -2
data/bundler/lib/bundler/cli/doctor.rb +2 -2
data/bundler/lib/bundler/cli/exec.rb +1 -1
data/bundler/lib/bundler/cli/fund.rb +1 -1
data/bundler/lib/bundler/cli/gem.rb +44 -42
data/bundler/lib/bundler/cli/info.rb +2 -13
data/bundler/lib/bundler/cli/install.rb +18 -12
data/bundler/lib/bundler/cli/issue.rb +1 -1
data/bundler/lib/bundler/cli/lock.rb +33 -29
data/bundler/lib/bundler/cli/open.rb +5 -7
data/bundler/lib/bundler/cli/outdated.rb +23 -25
data/bundler/lib/bundler/cli/platform.rb +7 -5
data/bundler/lib/bundler/cli/plugin.rb +9 -15
data/bundler/lib/bundler/cli/pristine.rb +38 -30
data/bundler/lib/bundler/cli/show.rb +2 -2
data/bundler/lib/bundler/cli/update.rb +6 -5
data/bundler/lib/bundler/cli.rb +226 -291
data/bundler/lib/bundler/compact_index_client/cache.rb +55 -60
data/bundler/lib/bundler/compact_index_client/cache_file.rb +153 -0
data/bundler/lib/bundler/compact_index_client/gem_parser.rb +7 -3
data/bundler/lib/bundler/compact_index_client/parser.rb +84 -0
data/bundler/lib/bundler/compact_index_client/updater.rb +79 -81
data/bundler/lib/bundler/compact_index_client.rb +58 -80
data/bundler/lib/bundler/constants.rb +8 -1
data/bundler/lib/bundler/current_ruby.rb +5 -21
data/bundler/lib/bundler/definition.rb +341 -180
data/bundler/lib/bundler/dependency.rb +22 -13
data/bundler/lib/bundler/digest.rb +2 -2
data/bundler/lib/bundler/dsl.rb +100 -54
data/bundler/lib/bundler/endpoint_specification.rb +17 -2
data/bundler/lib/bundler/env.rb +4 -6
data/bundler/lib/bundler/environment_preserver.rb +5 -23
data/bundler/lib/bundler/errors.rb +74 -0
data/bundler/lib/bundler/feature_flag.rb +0 -1
data/bundler/lib/bundler/fetcher/base.rb +5 -3
data/bundler/lib/bundler/fetcher/compact_index.rb +21 -34
data/bundler/lib/bundler/fetcher/dependency.rb +1 -1
data/bundler/lib/bundler/fetcher/downloader.rb +15 -11
data/bundler/lib/bundler/fetcher/gem_remote_fetcher.rb +16 -0
data/bundler/lib/bundler/fetcher/index.rb +2 -3
data/bundler/lib/bundler/fetcher.rb +72 -58
data/bundler/lib/bundler/force_platform.rb +0 -2
data/bundler/lib/bundler/friendly_errors.rb +6 -6
data/bundler/lib/bundler/gem_helper.rb +5 -6
data/bundler/lib/bundler/gem_helpers.rb +21 -4
data/bundler/lib/bundler/gem_version_promoter.rb +43 -39
data/bundler/lib/bundler/graph.rb +9 -9
data/bundler/lib/bundler/index.rb +63 -33
data/bundler/lib/bundler/injector.rb +6 -8
data/bundler/lib/bundler/inline.rb +33 -12
data/bundler/lib/bundler/installer/gem_installer.rb +13 -12
data/bundler/lib/bundler/installer/parallel_installer.rb +19 -36
data/bundler/lib/bundler/installer/standalone.rb +16 -6
data/bundler/lib/bundler/installer.rb +29 -33
data/bundler/lib/bundler/lazy_specification.rb +31 -17
data/bundler/lib/bundler/lockfile_generator.rb +10 -1
data/bundler/lib/bundler/lockfile_parser.rb +110 -45
data/bundler/lib/bundler/man/bundle-add.1 +29 -41
data/bundler/lib/bundler/man/bundle-add.1.ronn +37 -14
data/bundler/lib/bundler/man/bundle-binstubs.1 +4 -16
data/bundler/lib/bundler/man/bundle-cache.1 +5 -26
data/bundler/lib/bundler/man/bundle-cache.1.ronn +2 -2
data/bundler/lib/bundler/man/bundle-check.1 +5 -12
data/bundler/lib/bundler/man/bundle-check.1.ronn +3 -0
data/bundler/lib/bundler/man/bundle-clean.1 +3 -10
data/bundler/lib/bundler/man/bundle-config.1 +21 -217
data/bundler/lib/bundler/man/bundle-config.1.ronn +9 -9
data/bundler/lib/bundler/man/bundle-console.1 +4 -22
data/bundler/lib/bundler/man/bundle-doctor.1 +4 -18
data/bundler/lib/bundler/man/bundle-exec.1 +13 -74
data/bundler/lib/bundler/man/bundle-exec.1.ronn +2 -3
data/bundler/lib/bundler/man/bundle-gem.1 +19 -49
data/bundler/lib/bundler/man/bundle-gem.1.ronn +11 -0
data/bundler/lib/bundler/man/bundle-help.1 +3 -7
data/bundler/lib/bundler/man/bundle-info.1 +5 -11
data/bundler/lib/bundler/man/bundle-info.1.ronn +3 -3
data/bundler/lib/bundler/man/bundle-init.1 +3 -12
data/bundler/lib/bundler/man/bundle-inject.1 +6 -19
data/bundler/lib/bundler/man/bundle-install.1 +29 -127
data/bundler/lib/bundler/man/bundle-install.1.ronn +3 -2
data/bundler/lib/bundler/man/bundle-list.1 +4 -19
data/bundler/lib/bundler/man/bundle-lock.1 +5 -29
data/bundler/lib/bundler/man/bundle-open.1 +7 -27
data/bundler/lib/bundler/man/bundle-outdated.1 +15 -63
data/bundler/lib/bundler/man/bundle-outdated.1.ronn +12 -8
data/bundler/lib/bundler/man/bundle-platform.1 +5 -27
data/bundler/lib/bundler/man/bundle-plugin.1 +24 -47
data/bundler/lib/bundler/man/bundle-plugin.1.ronn +12 -8
data/bundler/lib/bundler/man/bundle-pristine.1 +5 -16
data/bundler/lib/bundler/man/bundle-remove.1 +4 -14
data/bundler/lib/bundler/man/bundle-show.1 +3 -10
data/bundler/lib/bundler/man/bundle-update.1 +18 -137
data/bundler/lib/bundler/man/bundle-version.1 +3 -16
data/bundler/lib/bundler/man/bundle-viz.1 +4 -16
data/bundler/lib/bundler/man/bundle.1 +5 -44
data/bundler/lib/bundler/man/gemfile.5 +43 -294
data/bundler/lib/bundler/man/gemfile.5.ronn +23 -3
data/bundler/lib/bundler/match_metadata.rb +4 -0
data/bundler/lib/bundler/match_platform.rb +1 -1
data/bundler/lib/bundler/mirror.rb +3 -3
data/bundler/lib/bundler/plugin/api/source.rb +7 -5
data/bundler/lib/bundler/plugin/index.rb +9 -1
data/bundler/lib/bundler/plugin/installer/path.rb +18 -0
data/bundler/lib/bundler/plugin/installer.rb +37 -17
data/bundler/lib/bundler/plugin/source_list.rb +4 -4
data/bundler/lib/bundler/plugin.rb +13 -6
data/bundler/lib/bundler/remote_specification.rb +4 -0
data/bundler/lib/bundler/resolver/base.rb +12 -4
data/bundler/lib/bundler/resolver/candidate.rb +5 -17
data/bundler/lib/bundler/resolver/incompatibility.rb +1 -1
data/bundler/lib/bundler/resolver/package.rb +19 -1
data/bundler/lib/bundler/resolver/spec_group.rb +21 -6
data/bundler/lib/bundler/resolver.rb +174 -64
data/bundler/lib/bundler/retry.rb +2 -2
data/bundler/lib/bundler/ruby_dsl.rb +42 -7
data/bundler/lib/bundler/ruby_version.rb +18 -5
data/bundler/lib/bundler/rubygems_ext.rb +173 -71
data/bundler/lib/bundler/rubygems_gem_installer.rb +56 -57
data/bundler/lib/bundler/rubygems_integration.rb +35 -112
data/bundler/lib/bundler/runtime.rb +5 -10
data/bundler/lib/bundler/safe_marshal.rb +31 -0
data/bundler/lib/bundler/self_manager.rb +49 -11
data/bundler/lib/bundler/settings.rb +136 -49
data/bundler/lib/bundler/setup.rb +10 -1
data/bundler/lib/bundler/shared_helpers.rb +56 -17
data/bundler/lib/bundler/source/git/git_proxy.rb +91 -32
data/bundler/lib/bundler/source/git.rb +108 -39
data/bundler/lib/bundler/source/metadata.rb +17 -15
data/bundler/lib/bundler/source/path.rb +10 -20
data/bundler/lib/bundler/source/rubygems/remote.rb +1 -1
data/bundler/lib/bundler/source/rubygems.rb +87 -92
data/bundler/lib/bundler/source.rb +3 -1
data/bundler/lib/bundler/source_list.rb +26 -6
data/bundler/lib/bundler/spec_set.rb +112 -30
data/bundler/lib/bundler/stub_specification.rb +26 -4
data/bundler/lib/bundler/templates/Executable.bundler +1 -1
data/bundler/lib/bundler/templates/newgem/CODE_OF_CONDUCT.md.tt +77 -29
data/bundler/lib/bundler/templates/newgem/README.md.tt +7 -3
data/bundler/lib/bundler/templates/newgem/Rakefile.tt +8 -8
data/bundler/lib/bundler/templates/newgem/bin/console.tt +0 -4
data/bundler/lib/bundler/templates/newgem/ext/newgem/Cargo.toml.tt +1 -1
data/bundler/lib/bundler/templates/newgem/ext/newgem/extconf-c.rb.tt +5 -0
data/bundler/lib/bundler/templates/newgem/ext/newgem/newgem.c.tt +1 -1
data/bundler/lib/bundler/templates/newgem/ext/newgem/src/lib.rs.tt +4 -4
data/bundler/lib/bundler/templates/newgem/github/workflows/main.yml.tt +1 -1
data/bundler/lib/bundler/templates/newgem/newgem.gemspec.tt +5 -3
data/bundler/lib/bundler/templates/newgem/rubocop.yml.tt +0 -5
data/bundler/lib/bundler/templates/newgem/standard.yml.tt +1 -1
data/bundler/lib/bundler/ui/rg_proxy.rb +1 -1
data/bundler/lib/bundler/ui/shell.rb +25 -3
data/bundler/lib/bundler/ui/silent.rb +12 -1
data/bundler/lib/bundler/uri_credentials_filter.rb +2 -2
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/version.rb +1 -1
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool.rb +53 -6
data/bundler/lib/bundler/vendor/fileutils/lib/fileutils.rb +9 -21
data/bundler/lib/bundler/vendor/net-http-persistent/.document +1 -0
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/connection.rb +4 -3
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/pool.rb +23 -11
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/timed_stack_multi.rb +1 -1
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent.rb +102 -64
data/bundler/lib/bundler/vendor/pub_grub/.document +1 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/static_package_source.rb +1 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_solver.rb +9 -4
data/bundler/lib/bundler/vendor/securerandom/.document +1 -0
data/bundler/lib/bundler/vendor/securerandom/lib/random/formatter.rb +373 -0
data/bundler/lib/bundler/vendor/securerandom/lib/securerandom.rb +96 -0
data/bundler/lib/bundler/vendor/thor/.document +1 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/create_file.rb +3 -2
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/directory.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/empty_directory.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/file_manipulation.rb +8 -10
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/inject_into_file.rb +15 -4
data/bundler/lib/bundler/vendor/thor/lib/thor/actions.rb +15 -15
data/bundler/lib/bundler/vendor/thor/lib/thor/base.rb +140 -14
data/bundler/lib/bundler/vendor/thor/lib/thor/command.rb +13 -4
data/bundler/lib/bundler/vendor/thor/lib/thor/core_ext/hash_with_indifferent_access.rb +4 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/error.rb +16 -25
data/bundler/lib/bundler/vendor/thor/lib/thor/group.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/invocation.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/nested_context.rb +2 -2
data/bundler/lib/bundler/vendor/thor/lib/thor/parser/argument.rb +20 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/parser/arguments.rb +33 -17
data/bundler/lib/bundler/vendor/thor/lib/thor/parser/option.rb +27 -8
data/bundler/lib/bundler/vendor/thor/lib/thor/parser/options.rb +44 -6
data/bundler/lib/bundler/vendor/thor/lib/thor/rake_compat.rb +2 -2
data/bundler/lib/bundler/vendor/thor/lib/thor/runner.rb +40 -30
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/basic.rb +26 -150
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/color.rb +1 -46
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/column_printer.rb +29 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/html.rb +0 -45
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/table_printer.rb +134 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/terminal.rb +42 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/wrapped_printer.rb +38 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/shell.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/util.rb +8 -7
data/bundler/lib/bundler/vendor/thor/lib/thor/version.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor.rb +155 -8
data/bundler/lib/bundler/vendor/tsort/.document +1 -0
data/bundler/lib/bundler/vendor/tsort/lib/tsort.rb +3 -0
data/bundler/lib/bundler/vendor/uri/.document +1 -0
data/bundler/lib/bundler/vendor/uri/lib/uri/common.rb +258 -132
data/bundler/lib/bundler/vendor/uri/lib/uri/generic.rb +1 -0
data/bundler/lib/bundler/vendor/uri/lib/uri/rfc2396_parser.rb +2 -2
data/bundler/lib/bundler/vendor/uri/lib/uri/rfc3986_parser.rb +96 -32
data/bundler/lib/bundler/vendor/uri/lib/uri/version.rb +1 -1
data/bundler/lib/bundler/vendored_net_http.rb +23 -0
data/bundler/lib/bundler/vendored_persistent.rb +0 -4
data/bundler/lib/bundler/vendored_securerandom.rb +14 -0
data/bundler/lib/bundler/vendored_timeout.rb +12 -0
data/bundler/lib/bundler/vendored_uri.rb +18 -1
data/bundler/lib/bundler/version.rb +1 -1
data/bundler/lib/bundler/vlad.rb +1 -1
data/bundler/lib/bundler/yaml_serializer.rb +22 -13
data/bundler/lib/bundler.rb +108 -81
data/{bin → exe}/gem +2 -0
data/{bin → exe}/update_rubygems +8 -6
data/lib/rubygems/available_set.rb +6 -5
data/lib/rubygems/basic_specification.rb +81 -44
data/lib/rubygems/bundler_version_finder.rb +6 -6
data/lib/rubygems/ci_detector.rb +75 -0
data/lib/rubygems/command.rb +32 -36
data/lib/rubygems/command_manager.rb +13 -12
data/lib/rubygems/commands/build_command.rb +5 -13
data/lib/rubygems/commands/cert_command.rb +6 -6
data/lib/rubygems/commands/check_command.rb +10 -5
data/lib/rubygems/commands/cleanup_command.rb +15 -26
data/lib/rubygems/commands/contents_command.rb +21 -13
data/lib/rubygems/commands/dependency_command.rb +7 -8
data/lib/rubygems/commands/environment_command.rb +4 -5
data/lib/rubygems/commands/exec_command.rb +3 -7
data/lib/rubygems/commands/fetch_command.rb +17 -2
data/lib/rubygems/commands/generate_index_command.rb +40 -74
data/lib/rubygems/commands/help_command.rb +9 -8
data/lib/rubygems/commands/info_command.rb +2 -2
data/lib/rubygems/commands/install_command.rb +9 -20
data/lib/rubygems/commands/list_command.rb +3 -2
data/lib/rubygems/commands/lock_command.rb +2 -1
data/lib/rubygems/commands/mirror_command.rb +1 -0
data/lib/rubygems/commands/open_command.rb +2 -3
data/lib/rubygems/commands/outdated_command.rb +1 -0
data/lib/rubygems/commands/owner_command.rb +11 -10
data/lib/rubygems/commands/pristine_command.rb +41 -29
data/lib/rubygems/commands/push_command.rb +3 -2
data/lib/rubygems/commands/query_command.rb +5 -5
data/lib/rubygems/commands/rdoc_command.rb +4 -10
data/lib/rubygems/commands/rebuild_command.rb +264 -0
data/lib/rubygems/commands/search_command.rb +3 -2
data/lib/rubygems/commands/server_command.rb +1 -0
data/lib/rubygems/commands/setup_command.rb +41 -39
data/lib/rubygems/commands/signin_command.rb +1 -0
data/lib/rubygems/commands/signout_command.rb +1 -0
data/lib/rubygems/commands/sources_command.rb +15 -14
data/lib/rubygems/commands/specification_command.rb +16 -11
data/lib/rubygems/commands/stale_command.rb +3 -2
data/lib/rubygems/commands/uninstall_command.rb +25 -21
data/lib/rubygems/commands/unpack_command.rb +12 -13
data/lib/rubygems/commands/update_command.rb +26 -30
data/lib/rubygems/commands/which_command.rb +2 -1
data/lib/rubygems/commands/yank_command.rb +3 -2
data/lib/rubygems/compatibility.rb +5 -6
data/lib/rubygems/config_file.rb +95 -30
data/lib/rubygems/core_ext/kernel_gem.rb +2 -4
data/lib/rubygems/core_ext/kernel_require.rb +31 -50
data/lib/rubygems/core_ext/kernel_warn.rb +4 -5
data/lib/rubygems/core_ext/tcpsocket_init.rb +3 -1
data/lib/rubygems/defaults.rb +27 -10
data/lib/rubygems/dependency.rb +25 -30
data/lib/rubygems/dependency_installer.rb +39 -43
data/lib/rubygems/dependency_list.rb +3 -2
data/lib/rubygems/deprecate.rb +80 -75
data/lib/rubygems/doctor.rb +8 -7
data/lib/rubygems/errors.rb +6 -8
data/lib/rubygems/exceptions.rb +15 -5
data/lib/rubygems/ext/build_error.rb +1 -0
data/lib/rubygems/ext/builder.rb +24 -18
data/lib/rubygems/ext/cargo_builder.rb +10 -25
data/lib/rubygems/ext/configure_builder.rb +1 -0
data/lib/rubygems/ext/ext_conf_builder.rb +3 -4
data/lib/rubygems/ext/rake_builder.rb +5 -3
data/lib/rubygems/ext.rb +1 -0
data/lib/rubygems/gem_runner.rb +10 -5
data/lib/rubygems/gemcutter_utilities/webauthn_listener/response.rb +163 -0
data/lib/rubygems/gemcutter_utilities/webauthn_listener.rb +105 -0
data/lib/rubygems/gemcutter_utilities/webauthn_poller.rb +80 -0
data/lib/rubygems/gemcutter_utilities.rb +105 -43
data/lib/rubygems/gemspec_helpers.rb +19 -0
data/lib/rubygems/install_default_message.rb +1 -0
data/lib/rubygems/install_message.rb +1 -0
data/lib/rubygems/install_update_options.rb +20 -20
data/lib/rubygems/installer.rb +112 -85
data/lib/rubygems/installer_uninstaller_utils.rb +0 -2
data/lib/rubygems/local_remote_options.rb +15 -17
data/lib/rubygems/name_tuple.rb +8 -9
data/lib/rubygems/package/digest_io.rb +2 -1
data/lib/rubygems/package/file_source.rb +1 -0
data/lib/rubygems/package/io_source.rb +1 -0
data/lib/rubygems/package/old.rb +3 -2
data/lib/rubygems/package/source.rb +1 -0
data/lib/rubygems/package/tar_header.rb +64 -41
data/lib/rubygems/package/tar_reader/entry.rb +24 -24
data/lib/rubygems/package/tar_reader.rb +15 -10
data/lib/rubygems/package/tar_writer.rb +22 -19
data/lib/rubygems/package.rb +69 -47
data/lib/rubygems/package_task.rb +3 -2
data/lib/rubygems/path_support.rb +11 -11
data/lib/rubygems/platform.rb +73 -50
data/lib/rubygems/psych_tree.rb +1 -0
data/lib/rubygems/query_utils.rb +13 -15
data/lib/rubygems/rdoc.rb +1 -0
data/lib/rubygems/remote_fetcher.rb +30 -22
data/lib/rubygems/request/connection_pools.rb +3 -3
data/lib/rubygems/request/http_pool.rb +1 -0
data/lib/rubygems/request/https_pool.rb +1 -0
data/lib/rubygems/request.rb +29 -25
data/lib/rubygems/request_set/gem_dependency_api.rb +122 -124
data/lib/rubygems/request_set/lockfile/parser.rb +11 -10
data/lib/rubygems/request_set/lockfile/tokenizer.rb +22 -12
data/lib/rubygems/request_set/lockfile.rb +7 -11
data/lib/rubygems/request_set.rb +11 -9
data/lib/rubygems/requirement.rb +16 -10
data/lib/rubygems/resolver/activation_request.rb +5 -8
data/lib/rubygems/resolver/api_set/gem_parser.rb +7 -3
data/lib/rubygems/resolver/api_set.rb +16 -9
data/lib/rubygems/resolver/api_specification.rb +2 -1
data/lib/rubygems/resolver/best_set.rb +1 -28
data/lib/rubygems/resolver/composed_set.rb +2 -1
data/lib/rubygems/resolver/conflict.rb +5 -12
data/lib/rubygems/resolver/current_set.rb +1 -0
data/lib/rubygems/resolver/dependency_request.rb +1 -0
data/lib/rubygems/resolver/git_set.rb +1 -0
data/lib/rubygems/resolver/git_specification.rb +1 -0
data/lib/rubygems/resolver/index_set.rb +5 -4
data/lib/rubygems/resolver/index_specification.rb +3 -2
data/lib/rubygems/resolver/installed_specification.rb +2 -1
data/lib/rubygems/resolver/installer_set.rb +9 -7
data/lib/rubygems/resolver/local_specification.rb +2 -1
data/lib/rubygems/resolver/lock_set.rb +2 -1
data/lib/rubygems/resolver/lock_specification.rb +1 -0
data/lib/rubygems/resolver/requirement_list.rb +1 -0
data/lib/rubygems/resolver/set.rb +1 -0
data/lib/rubygems/resolver/source_set.rb +2 -0
data/lib/rubygems/resolver/spec_specification.rb +8 -0
data/lib/rubygems/resolver/specification.rb +1 -0
data/lib/rubygems/resolver/stats.rb +1 -0
data/lib/rubygems/resolver/vendor_set.rb +1 -0
data/lib/rubygems/resolver/vendor_specification.rb +1 -0
data/lib/rubygems/resolver.rb +11 -17
data/lib/rubygems/s3_uri_signer.rb +13 -11
data/lib/rubygems/safe_marshal/elements.rb +146 -0
data/lib/rubygems/safe_marshal/reader.rb +308 -0
data/lib/rubygems/safe_marshal/visitors/stream_printer.rb +31 -0
data/lib/rubygems/safe_marshal/visitors/to_ruby.rb +415 -0
data/lib/rubygems/safe_marshal/visitors/visitor.rb +74 -0
data/lib/rubygems/safe_marshal.rb +74 -0
data/lib/rubygems/safe_yaml.rb +14 -26
data/lib/rubygems/security/policies.rb +37 -38
data/lib/rubygems/security/policy.rb +8 -11
data/lib/rubygems/security/signer.rb +12 -3
data/lib/rubygems/security/trust_dir.rb +10 -11
data/lib/rubygems/security.rb +12 -25
data/lib/rubygems/security_option.rb +2 -1
data/lib/rubygems/shellwords.rb +3 -0
data/lib/rubygems/source/git.rb +10 -10
data/lib/rubygems/source/installed.rb +4 -3
data/lib/rubygems/source/local.rb +48 -48
data/lib/rubygems/source/lock.rb +2 -3
data/lib/rubygems/source/specific_file.rb +6 -4
data/lib/rubygems/source/vendor.rb +1 -2
data/lib/rubygems/source.rb +28 -22
data/lib/rubygems/source_list.rb +8 -8
data/lib/rubygems/spec_fetcher.rb +46 -56
data/lib/rubygems/specification.rb +252 -309
data/lib/rubygems/specification_policy.rb +120 -67
data/lib/rubygems/specification_record.rb +212 -0
data/lib/rubygems/stub_specification.rb +48 -22
data/lib/rubygems/text.rb +1 -2
data/lib/rubygems/uninstaller.rb +52 -32
data/lib/rubygems/update_suggestion.rb +6 -19
data/lib/rubygems/uri.rb +6 -6
data/lib/rubygems/uri_formatter.rb +1 -1
data/lib/rubygems/user_interaction.rb +23 -27
data/lib/rubygems/util/licenses.rb +297 -35
data/lib/rubygems/util/list.rb +4 -1
data/lib/rubygems/util.rb +9 -6
data/lib/rubygems/validator.rb +11 -10
data/lib/rubygems/vendor/molinillo/.document +1 -0
data/lib/rubygems/vendor/molinillo/lib/molinillo/delegates/resolution_state.rb +57 -0
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/delegates/specification_provider.rb +11 -11
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/action.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/add_edge_no_circular.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/add_vertex.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/delete_edge.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/detach_vertex_named.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/log.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/set_payload.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/tag.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph/vertex.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/dependency_graph.rb +2 -2
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/errors.rb +1 -1
data/lib/rubygems/vendor/molinillo/lib/molinillo/gem_metadata.rb +6 -0
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/modules/specification_provider.rb +2 -2
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/modules/ui.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/resolution.rb +4 -4
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/resolver.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo/state.rb +1 -1
data/lib/rubygems/{resolver → vendor}/molinillo/lib/molinillo.rb +2 -2
data/lib/rubygems/vendor/net-http/.document +1 -0
data/lib/rubygems/vendor/net-http/LICENSE.txt +22 -0
data/lib/rubygems/vendor/net-http/lib/net/http/backward.rb +40 -0
data/lib/rubygems/vendor/net-http/lib/net/http/exceptions.rb +34 -0
data/lib/rubygems/vendor/net-http/lib/net/http/generic_request.rb +414 -0
data/lib/rubygems/vendor/net-http/lib/net/http/header.rb +981 -0
data/lib/rubygems/vendor/net-http/lib/net/http/proxy_delta.rb +17 -0
data/lib/rubygems/vendor/net-http/lib/net/http/request.rb +88 -0
data/lib/rubygems/vendor/net-http/lib/net/http/requests.rb +425 -0
data/lib/rubygems/vendor/net-http/lib/net/http/response.rb +738 -0
data/lib/rubygems/vendor/net-http/lib/net/http/responses.rb +1174 -0
data/lib/rubygems/vendor/net-http/lib/net/http/status.rb +84 -0
data/lib/rubygems/vendor/net-http/lib/net/http.rb +2496 -0
data/lib/rubygems/vendor/net-http/lib/net/https.rb +23 -0
data/lib/rubygems/vendor/net-protocol/.document +1 -0
data/lib/rubygems/vendor/net-protocol/LICENSE.txt +22 -0
data/lib/rubygems/vendor/net-protocol/lib/net/protocol.rb +544 -0
data/lib/rubygems/vendor/optparse/.document +1 -0
data/lib/rubygems/vendor/optparse/lib/optparse/uri.rb +7 -0
data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse.rb +49 -27
data/lib/rubygems/vendor/resolv/.document +1 -0
data/lib/rubygems/vendor/resolv/LICENSE.txt +22 -0
data/lib/rubygems/vendor/resolv/lib/resolv.rb +3442 -0
data/lib/rubygems/vendor/securerandom/.document +1 -0
data/lib/rubygems/vendor/securerandom/LICENSE.txt +22 -0
data/lib/rubygems/vendor/securerandom/lib/random/formatter.rb +373 -0
data/lib/rubygems/vendor/securerandom/lib/securerandom.rb +96 -0
data/lib/rubygems/vendor/timeout/.document +1 -0
data/lib/rubygems/vendor/timeout/LICENSE.txt +22 -0
data/lib/rubygems/vendor/timeout/lib/timeout.rb +199 -0
data/lib/rubygems/vendor/tsort/.document +1 -0
data/lib/rubygems/vendor/tsort/LICENSE.txt +22 -0
data/lib/rubygems/{tsort → vendor/tsort}/lib/tsort.rb +5 -2
data/lib/rubygems/vendor/uri/.document +1 -0
data/lib/rubygems/vendor/uri/LICENSE.txt +22 -0
data/lib/rubygems/vendor/uri/lib/uri/common.rb +855 -0
data/lib/rubygems/vendor/uri/lib/uri/file.rb +100 -0
data/lib/rubygems/vendor/uri/lib/uri/ftp.rb +267 -0
data/lib/rubygems/vendor/uri/lib/uri/generic.rb +1588 -0
data/lib/rubygems/vendor/uri/lib/uri/http.rb +125 -0
data/lib/rubygems/vendor/uri/lib/uri/https.rb +23 -0
data/lib/rubygems/vendor/uri/lib/uri/ldap.rb +261 -0
data/lib/rubygems/vendor/uri/lib/uri/ldaps.rb +22 -0
data/lib/rubygems/vendor/uri/lib/uri/mailto.rb +293 -0
data/lib/rubygems/vendor/uri/lib/uri/rfc2396_parser.rb +539 -0
data/lib/rubygems/vendor/uri/lib/uri/rfc3986_parser.rb +183 -0
data/lib/rubygems/vendor/uri/lib/uri/version.rb +6 -0
data/lib/rubygems/vendor/uri/lib/uri/ws.rb +83 -0
data/lib/rubygems/vendor/uri/lib/uri/wss.rb +23 -0
data/lib/rubygems/vendor/uri/lib/uri.rb +104 -0
data/lib/rubygems/vendored_molinillo.rb +3 -0
data/lib/rubygems/vendored_net_http.rb +5 -0
data/lib/rubygems/vendored_optparse.rb +3 -0
data/lib/rubygems/vendored_securerandom.rb +4 -0
data/lib/rubygems/vendored_timeout.rb +5 -0
data/lib/rubygems/vendored_tsort.rb +3 -0
data/lib/rubygems/version.rb +38 -31
data/lib/rubygems/version_option.rb +3 -5
data/lib/rubygems/yaml_serializer.rb +98 -0
data/lib/rubygems.rb +99 -72
data/rubygems-update.gemspec +15 -8
data/setup.rb +4 -1
metadata +169 -267
data/lib/rubygems/indexer.rb +0 -427
data/lib/rubygems/mock_gem_ui.rb +0 -85
data/lib/rubygems/optparse/lib/optparse/uri.rb +0 -7
data/lib/rubygems/optparse.rb +0 -3
data/lib/rubygems/resolver/molinillo/lib/molinillo/delegates/resolution_state.rb +0 -57
data/lib/rubygems/resolver/molinillo/lib/molinillo/gem_metadata.rb +0 -6
data/lib/rubygems/resolver/molinillo.rb +0 -2
data/lib/rubygems/tsort.rb +0 -3
data/test/rubygems/alternate_cert.pem +0 -19
data/test/rubygems/alternate_cert_32.pem +0 -19
data/test/rubygems/alternate_key.pem +0 -27
data/test/rubygems/bad_rake.rb +0 -2
data/test/rubygems/bundler_test_gem.rb +0 -419
data/test/rubygems/ca_cert.pem +0 -77
data/test/rubygems/child_cert.pem +0 -19
data/test/rubygems/child_cert_32.pem +0 -19
data/test/rubygems/child_key.pem +0 -27
data/test/rubygems/client.pem +0 -107
data/test/rubygems/data/excon-0.7.7.gemspec.rz +0 -0
data/test/rubygems/data/gem-private_key.pem +0 -27
data/test/rubygems/data/gem-public_cert.pem +0 -20
data/test/rubygems/data/null-required-ruby-version.gemspec.rz +0 -0
data/test/rubygems/data/null-required-rubygems-version.gemspec.rz +0 -0
data/test/rubygems/data/pry-0.4.7.gemspec.rz +0 -0
data/test/rubygems/encrypted_private_key.pem +0 -30
data/test/rubygems/expired_cert.pem +0 -19
data/test/rubygems/fake_certlib/openssl.rb +0 -8
data/test/rubygems/foo/discover.rb +0 -1
data/test/rubygems/future_cert.pem +0 -19
data/test/rubygems/future_cert_32.pem +0 -19
data/test/rubygems/good_rake.rb +0 -2
data/test/rubygems/grandchild_cert.pem +0 -19
data/test/rubygems/grandchild_cert_32.pem +0 -19
data/test/rubygems/grandchild_key.pem +0 -27
data/test/rubygems/helper.rb +0 -1629
data/test/rubygems/installer_test_case.rb +0 -247
data/test/rubygems/invalid_client.pem +0 -49
data/test/rubygems/invalid_issuer_cert.pem +0 -20
data/test/rubygems/invalid_issuer_cert_32.pem +0 -20
data/test/rubygems/invalid_key.pem +0 -27
data/test/rubygems/invalid_signer_cert.pem +0 -19
data/test/rubygems/invalid_signer_cert_32.pem +0 -19
data/test/rubygems/invalidchild_cert.pem +0 -19
data/test/rubygems/invalidchild_cert_32.pem +0 -19
data/test/rubygems/invalidchild_key.pem +0 -27
data/test/rubygems/package/tar_test_case.rb +0 -174
data/test/rubygems/packages/Bluebie-legs-0.6.2.gem +0 -0
data/test/rubygems/packages/ascii_binder-0.1.10.1.gem +0 -0
data/test/rubygems/packages/ill-formatted-platform-1.0.0.10.gem +0 -0
data/test/rubygems/plugin/exception/rubygems_plugin.rb +0 -3
data/test/rubygems/plugin/load/rubygems_plugin.rb +0 -4
data/test/rubygems/plugin/standarderror/rubygems_plugin.rb +0 -3
data/test/rubygems/private3072_key.pem +0 -40
data/test/rubygems/private_ec_key.pem +0 -9
data/test/rubygems/private_key.pem +0 -27
data/test/rubygems/public3072_cert.pem +0 -25
data/test/rubygems/public_cert.pem +0 -20
data/test/rubygems/public_cert_32.pem +0 -19
data/test/rubygems/public_key.pem +0 -9
data/test/rubygems/rubygems/commands/crash_command.rb +0 -4
data/test/rubygems/rubygems_plugin.rb +0 -23
data/test/rubygems/sff/discover.rb +0 -1
data/test/rubygems/simple_gem.rb +0 -67
data/test/rubygems/specifications/bar-0.0.2.gemspec +0 -7
data/test/rubygems/specifications/foo-0.0.1-x86-mswin32.gemspec +0 -0
data/test/rubygems/specifications/rubyforge-0.0.1.gemspec +0 -12
data/test/rubygems/ssl_cert.pem +0 -80
data/test/rubygems/ssl_key.pem +0 -27
data/test/rubygems/test_bundled_ca.rb +0 -60
data/test/rubygems/test_config.rb +0 -27
data/test/rubygems/test_deprecate.rb +0 -157
data/test/rubygems/test_exit.rb +0 -17
data/test/rubygems/test_gem.rb +0 -1766
data/test/rubygems/test_gem_available_set.rb +0 -129
data/test/rubygems/test_gem_bundler_version_finder.rb +0 -126
data/test/rubygems/test_gem_command.rb +0 -400
data/test/rubygems/test_gem_command_manager.rb +0 -399
data/test/rubygems/test_gem_commands_build_command.rb +0 -737
data/test/rubygems/test_gem_commands_cert_command.rb +0 -865
data/test/rubygems/test_gem_commands_check_command.rb +0 -67
data/test/rubygems/test_gem_commands_cleanup_command.rb +0 -291
data/test/rubygems/test_gem_commands_contents_command.rb +0 -270
data/test/rubygems/test_gem_commands_dependency_command.rb +0 -227
data/test/rubygems/test_gem_commands_environment_command.rb +0 -167
data/test/rubygems/test_gem_commands_exec_command.rb +0 -851
data/test/rubygems/test_gem_commands_fetch_command.rb +0 -257
data/test/rubygems/test_gem_commands_generate_index_command.rb +0 -80
data/test/rubygems/test_gem_commands_help_command.rb +0 -93
data/test/rubygems/test_gem_commands_info_command.rb +0 -69
data/test/rubygems/test_gem_commands_install_command.rb +0 -1572
data/test/rubygems/test_gem_commands_list_command.rb +0 -32
data/test/rubygems/test_gem_commands_lock_command.rb +0 -66
data/test/rubygems/test_gem_commands_mirror.rb +0 -19
data/test/rubygems/test_gem_commands_open_command.rb +0 -97
data/test/rubygems/test_gem_commands_outdated_command.rb +0 -49
data/test/rubygems/test_gem_commands_owner_command.rb +0 -407
data/test/rubygems/test_gem_commands_pristine_command.rb +0 -707
data/test/rubygems/test_gem_commands_push_command.rb +0 -498
data/test/rubygems/test_gem_commands_query_command.rb +0 -857
data/test/rubygems/test_gem_commands_search_command.rb +0 -15
data/test/rubygems/test_gem_commands_server_command.rb +0 -19
data/test/rubygems/test_gem_commands_setup_command.rb +0 -474
data/test/rubygems/test_gem_commands_signin_command.rb +0 -258
data/test/rubygems/test_gem_commands_signout_command.rb +0 -30
data/test/rubygems/test_gem_commands_sources_command.rb +0 -533
data/test/rubygems/test_gem_commands_specification_command.rb +0 -276
data/test/rubygems/test_gem_commands_stale_command.rb +0 -42
data/test/rubygems/test_gem_commands_uninstall_command.rb +0 -521
data/test/rubygems/test_gem_commands_unpack_command.rb +0 -223
data/test/rubygems/test_gem_commands_update_command.rb +0 -835
data/test/rubygems/test_gem_commands_which_command.rb +0 -84
data/test/rubygems/test_gem_commands_yank_command.rb +0 -180
data/test/rubygems/test_gem_config_file.rb +0 -516
data/test/rubygems/test_gem_dependency.rb +0 -397
data/test/rubygems/test_gem_dependency_installer.rb +0 -1155
data/test/rubygems/test_gem_dependency_list.rb +0 -264
data/test/rubygems/test_gem_dependency_resolution_error.rb +0 -26
data/test/rubygems/test_gem_doctor.rb +0 -194
data/test/rubygems/test_gem_ext_builder.rb +0 -336
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/.gitignore +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/custom_name.gemspec +0 -8
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/Cargo.lock +0 -233
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/Cargo.toml +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/src/lib.rs +0 -27
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/lib/custom_name.rb +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/.gitignore +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.lock +0 -247
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.toml +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/rust_ruby_example.gemspec +0 -8
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/src/lib.rs +0 -51
data/test/rubygems/test_gem_ext_cargo_builder.rb +0 -166
data/test/rubygems/test_gem_ext_cargo_builder_link_flag_converter.rb +0 -33
data/test/rubygems/test_gem_ext_cargo_builder_unit.rb +0 -60
data/test/rubygems/test_gem_ext_cmake_builder.rb +0 -83
data/test/rubygems/test_gem_ext_configure_builder.rb +0 -79
data/test/rubygems/test_gem_ext_ext_conf_builder.rb +0 -229
data/test/rubygems/test_gem_ext_rake_builder.rb +0 -112
data/test/rubygems/test_gem_gem_runner.rb +0 -118
data/test/rubygems/test_gem_gemcutter_utilities.rb +0 -276
data/test/rubygems/test_gem_impossible_dependencies_error.rb +0 -59
data/test/rubygems/test_gem_indexer.rb +0 -380
data/test/rubygems/test_gem_install_update_options.rb +0 -207
data/test/rubygems/test_gem_installer.rb +0 -2463
data/test/rubygems/test_gem_local_remote_options.rb +0 -132
data/test/rubygems/test_gem_name_tuple.rb +0 -42
data/test/rubygems/test_gem_package.rb +0 -1190
data/test/rubygems/test_gem_package_old.rb +0 -90
data/test/rubygems/test_gem_package_tar_header.rb +0 -225
data/test/rubygems/test_gem_package_tar_reader.rb +0 -134
data/test/rubygems/test_gem_package_tar_reader_entry.rb +0 -297
data/test/rubygems/test_gem_package_tar_writer.rb +0 -330
data/test/rubygems/test_gem_package_task.rb +0 -117
data/test/rubygems/test_gem_path_support.rb +0 -138
data/test/rubygems/test_gem_platform.rb +0 -496
data/test/rubygems/test_gem_rdoc.rb +0 -136
data/test/rubygems/test_gem_remote_fetcher.rb +0 -1226
data/test/rubygems/test_gem_request.rb +0 -541
data/test/rubygems/test_gem_request_connection_pools.rb +0 -150
data/test/rubygems/test_gem_request_set.rb +0 -671
data/test/rubygems/test_gem_request_set_gem_dependency_api.rb +0 -845
data/test/rubygems/test_gem_request_set_lockfile.rb +0 -468
data/test/rubygems/test_gem_request_set_lockfile_parser.rb +0 -543
data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +0 -306
data/test/rubygems/test_gem_requirement.rb +0 -504
data/test/rubygems/test_gem_resolver.rb +0 -858
data/test/rubygems/test_gem_resolver_activation_request.rb +0 -42
data/test/rubygems/test_gem_resolver_api_set.rb +0 -209
data/test/rubygems/test_gem_resolver_api_specification.rb +0 -166
data/test/rubygems/test_gem_resolver_best_set.rb +0 -158
data/test/rubygems/test_gem_resolver_composed_set.rb +0 -43
data/test/rubygems/test_gem_resolver_conflict.rb +0 -81
data/test/rubygems/test_gem_resolver_dependency_request.rb +0 -82
data/test/rubygems/test_gem_resolver_git_set.rb +0 -187
data/test/rubygems/test_gem_resolver_git_specification.rb +0 -113
data/test/rubygems/test_gem_resolver_index_set.rb +0 -87
data/test/rubygems/test_gem_resolver_index_specification.rb +0 -92
data/test/rubygems/test_gem_resolver_installed_specification.rb +0 -46
data/test/rubygems/test_gem_resolver_installer_set.rb +0 -319
data/test/rubygems/test_gem_resolver_local_specification.rb +0 -43
data/test/rubygems/test_gem_resolver_lock_set.rb +0 -61
data/test/rubygems/test_gem_resolver_lock_specification.rb +0 -97
data/test/rubygems/test_gem_resolver_requirement_list.rb +0 -18
data/test/rubygems/test_gem_resolver_specification.rb +0 -62
data/test/rubygems/test_gem_resolver_vendor_set.rb +0 -81
data/test/rubygems/test_gem_resolver_vendor_specification.rb +0 -81
data/test/rubygems/test_gem_security.rb +0 -340
data/test/rubygems/test_gem_security_policy.rb +0 -535
data/test/rubygems/test_gem_security_signer.rb +0 -217
data/test/rubygems/test_gem_security_trust_dir.rb +0 -98
data/test/rubygems/test_gem_silent_ui.rb +0 -122
data/test/rubygems/test_gem_source.rb +0 -253
data/test/rubygems/test_gem_source_fetch_problem.rb +0 -36
data/test/rubygems/test_gem_source_git.rb +0 -309
data/test/rubygems/test_gem_source_installed.rb +0 -34
data/test/rubygems/test_gem_source_list.rb +0 -118
data/test/rubygems/test_gem_source_local.rb +0 -106
data/test/rubygems/test_gem_source_lock.rb +0 -112
data/test/rubygems/test_gem_source_specific_file.rb +0 -75
data/test/rubygems/test_gem_source_subpath_problem.rb +0 -49
data/test/rubygems/test_gem_source_vendor.rb +0 -29
data/test/rubygems/test_gem_spec_fetcher.rb +0 -337
data/test/rubygems/test_gem_specification.rb +0 -3811
data/test/rubygems/test_gem_stream_ui.rb +0 -224
data/test/rubygems/test_gem_stub_specification.rb +0 -277
data/test/rubygems/test_gem_text.rb +0 -102
data/test/rubygems/test_gem_uninstaller.rb +0 -674
data/test/rubygems/test_gem_unsatisfiable_dependency_error.rb +0 -30
data/test/rubygems/test_gem_update_suggestion.rb +0 -208
data/test/rubygems/test_gem_uri.rb +0 -39
data/test/rubygems/test_gem_uri_formatter.rb +0 -26
data/test/rubygems/test_gem_util.rb +0 -90
data/test/rubygems/test_gem_validator.rb +0 -42
data/test/rubygems/test_gem_version.rb +0 -302
data/test/rubygems/test_gem_version_option.rb +0 -164
data/test/rubygems/test_kernel.rb +0 -123
data/test/rubygems/test_project_sanity.rb +0 -20
data/test/rubygems/test_remote_fetch_error.rb +0 -19
data/test/rubygems/test_require.rb +0 -733
data/test/rubygems/test_rubygems.rb +0 -74
data/test/rubygems/utilities.rb +0 -393
data/test/rubygems/wrong_key_cert.pem +0 -19
data/test/rubygems/wrong_key_cert_32.pem +0 -19
data/test/test_changelog_generator.rb +0 -17
/data/{lib/rubygems/optparse → bundler/lib/bundler/vendor/connection_pool}/.document +0 -0
/data/{lib/rubygems/tsort → bundler/lib/bundler/vendor/fileutils}/.document +0 -0
/data/{lib/rubygems/tsort → bundler/lib/bundler/vendor/securerandom}/LICENSE.txt +0 -0
/data/lib/rubygems/{resolver → vendor}/molinillo/LICENSE +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/COPYING +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optionparser.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/ac.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/date.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/kwargs.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/shellwords.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/time.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/version.rb +0 -0

data/bundler/lib/bundler/dependency.rb CHANGED Viewed

@@ -7,20 +7,21 @@ require_relative "rubygems_ext"
 module Bundler
   class Dependency < Gem::Dependency
     attr_reader :autorequire
-    attr_reader :groups, :platforms, :gemfile, :path, :git, :github, :branch, :ref
+    attr_reader :groups, :platforms, :gemfile, :path, :git, :github, :branch, :ref, :glob
-    ALL_RUBY_VERSIONS = ((18..27).to_a + (30..33).to_a).freeze
+    ALL_RUBY_VERSIONS = (18..27).to_a.concat((30..34).to_a).freeze
     PLATFORM_MAP = {
-      :ruby => [Gem::Platform::RUBY, ALL_RUBY_VERSIONS],
-      :mri => [Gem::Platform::RUBY, ALL_RUBY_VERSIONS],
-      :rbx => [Gem::Platform::RUBY],
-      :truffleruby => [Gem::Platform::RUBY],
-      :jruby => [Gem::Platform::JAVA, [18, 19]],
-      :windows => [Gem::Platform::WINDOWS, ALL_RUBY_VERSIONS],
-      :mswin => [Gem::Platform::MSWIN,     ALL_RUBY_VERSIONS],
-      :mswin64 => [Gem::Platform::MSWIN64, ALL_RUBY_VERSIONS - [18]],
-      :mingw => [Gem::Platform::MINGW, ALL_RUBY_VERSIONS],
-      :x64_mingw => [Gem::Platform::X64_MINGW, ALL_RUBY_VERSIONS - [18, 19]],
+      ruby: [Gem::Platform::RUBY, ALL_RUBY_VERSIONS],
+      mri: [Gem::Platform::RUBY, ALL_RUBY_VERSIONS],
+      rbx: [Gem::Platform::RUBY],
+      truffleruby: [Gem::Platform::RUBY],
+      jruby: [Gem::Platform::JAVA, [18, 19]],
+      windows: [Gem::Platform::WINDOWS, ALL_RUBY_VERSIONS],
+      # deprecated
+      mswin: [Gem::Platform::MSWIN, ALL_RUBY_VERSIONS],
+      mswin64: [Gem::Platform::MSWIN64, ALL_RUBY_VERSIONS - [18]],
+      mingw: [Gem::Platform::MINGW, ALL_RUBY_VERSIONS],
+      x64_mingw: [Gem::Platform::X64_MINGW, ALL_RUBY_VERSIONS - [18, 19]],
     }.each_with_object({}) do |(platform, spec), hash|
       hash[platform] = spec[0]
       spec[1]&.each {|version| hash[:"#{platform}_#{version}"] = spec[0] }
@@ -38,6 +39,7 @@ module Bundler
       @github         = options["github"]
       @branch         = options["branch"]
       @ref            = options["ref"]
+      @glob           = options["glob"]
       @platforms      = Array(options["platforms"])
       @env            = options["env"]
       @should_include = options.fetch("should_include", true)
@@ -47,10 +49,13 @@ module Bundler
       @autorequire = Array(options["require"] || []) if options.key?("require")
     end
+    RUBY_PLATFORM_ARRAY = [Gem::Platform::RUBY].freeze
+    private_constant :RUBY_PLATFORM_ARRAY
     # Returns the platforms this dependency is valid for, in the same order as
     # passed in the `valid_platforms` parameter
     def gem_platforms(valid_platforms)
-      return [Gem::Platform::RUBY] if force_ruby_platform
+      return RUBY_PLATFORM_ARRAY if force_ruby_platform
       return valid_platforms if @platforms.empty?
       valid_platforms.select {|p| expanded_platforms.include?(GemHelpers.generic(p)) }
@@ -64,6 +69,10 @@ module Bundler
       @should_include && current_env? && current_platform?
     end
+    def gemspec_dev_dep?
+      type == :development
+    end
     def current_env?
       return true unless @env
       if @env.is_a?(Hash)

data/bundler/lib/bundler/digest.rb CHANGED Viewed

@@ -26,7 +26,7 @@ module Bundler
           end
           a, b, c, d, e = *words
           (16..79).each do |i|
-            w[i] = SHA1_MASK & rotate((w[i-3] ^ w[i-8] ^ w[i-14] ^ w[i-16]), 1)
+            w[i] = SHA1_MASK & rotate((w[i - 3] ^ w[i - 8] ^ w[i - 14] ^ w[i - 16]), 1)
           end
           0.upto(79) do |i|
             case i
@@ -50,7 +50,7 @@ module Bundler
           words.map!.with_index {|word, index| SHA1_MASK & (word + mutated[index]) }
         end
-        words.pack("N*").unpack("H*").first
+        words.pack("N*").unpack1("H*")
       end
       private

data/bundler/lib/bundler/dsl.rb CHANGED Viewed

@@ -18,9 +18,10 @@ module Bundler
     VALID_KEYS = %w[group groups git path glob name branch ref tag require submodules
                     platform platforms type source install_if gemfile force_ruby_platform].freeze
-    GITHUB_PULL_REQUEST_URL = %r{\Ahttps://github\.com/([A-Za-z0-9_\-\.]+/[A-Za-z0-9_\-\.]+)/pull/(\d+)\z}.freeze
+    GITHUB_PULL_REQUEST_URL = %r{\Ahttps://github\.com/([A-Za-z0-9_\-\.]+/[A-Za-z0-9_\-\.]+)/pull/(\d+)\z}
+    GITLAB_MERGE_REQUEST_URL = %r{\Ahttps://gitlab\.com/([A-Za-z0-9_\-\./]+)/-/merge_requests/(\d+)\z}
-    attr_reader :gemspecs
+    attr_reader :gemspecs, :gemfile
     attr_accessor :dependencies
     def initialize
@@ -41,20 +42,20 @@ module Bundler
     end
     def eval_gemfile(gemfile, contents = nil)
-      expanded_gemfile_path = Pathname.new(gemfile).expand_path(@gemfile && @gemfile.parent)
-      original_gemfile = @gemfile
-      @gemfile = expanded_gemfile_path
-      @gemfiles << expanded_gemfile_path
-      contents ||= Bundler.read_file(@gemfile.to_s)
-      instance_eval(contents.dup.tap {|x| x.untaint if RUBY_VERSION < "2.7" }, gemfile.to_s, 1)
-    rescue Exception => e # rubocop:disable Lint/RescueException
-      message = "There was an error " \
-        "#{e.is_a?(GemfileEvalError) ? "evaluating" : "parsing"} " \
-        "`#{File.basename gemfile.to_s}`: #{e.message}"
-      raise DSLError.new(message, gemfile, e.backtrace, contents)
-    ensure
-      @gemfile = original_gemfile
+      with_gemfile(gemfile) do |current_gemfile|
+        contents ||= Bundler.read_file(current_gemfile)
+        instance_eval(contents, current_gemfile, 1)
+      rescue GemfileEvalError => e
+        message = "There was an error evaluating `#{File.basename current_gemfile}`: #{e.message}"
+        raise DSLError.new(message, current_gemfile, e.backtrace, contents)
+      rescue GemfileError, InvalidArgumentError, InvalidOption, DeprecatedError, ScriptError => e
+        message = "There was an error parsing `#{File.basename current_gemfile}`: #{e.message}"
+        raise DSLError.new(message, current_gemfile, e.backtrace, contents)
+      rescue StandardError => e
+        raise unless e.backtrace_locations.first.path == current_gemfile
+        message = "There was an error parsing `#{File.basename current_gemfile}`: #{e.message}"
+        raise DSLError.new(message, current_gemfile, e.backtrace, contents)
+      end
     end
     def gemspec(opts = nil)
@@ -76,11 +77,11 @@ module Bundler
         @gemspecs << spec
-        gem spec.name, :name => spec.name, :path => path, :glob => glob
+        gem spec.name, name: spec.name, path: path, glob: glob
         group(development_group) do
           spec.development_dependencies.each do |dep|
-            gem dep.name, *(dep.requirement.as_list + [:type => :development])
+            gem dep.name, *(dep.requirement.as_list + [type: :development])
           end
         end
       when 0
@@ -102,39 +103,51 @@ module Bundler
       # if there's already a dependency with this name we try to prefer one
       if current = @dependencies.find {|d| d.name == dep.name }
-        deleted_dep = @dependencies.delete(current) if current.type == :development
+        if current.requirement != dep.requirement
+          current_requirement_open = current.requirements_list.include?(">= 0")
-        unless deleted_dep
-          if current.requirement != dep.requirement
-            return if dep.type == :development
+          gemspec_dep = [dep, current].find(&:gemspec_dev_dep?)
+          if gemspec_dep
+            gemfile_dep = [dep, current].find(&:runtime?)
+            unless current_requirement_open
+              Bundler.ui.warn "A gemspec development dependency (#{gemspec_dep.name}, #{gemspec_dep.requirement}) is being overridden by a Gemfile dependency (#{gemfile_dep.name}, #{gemfile_dep.requirement}).\n" \
+                              "This behaviour may change in the future. Please remove either of them, or make sure they both have the same requirement\n"
+            end
+          else
             update_prompt = ""
             if File.basename(@gemfile) == Injector::INJECTED_GEMS
-              if dep.requirements_list.include?(">= 0") && !current.requirements_list.include?(">= 0")
+              if dep.requirements_list.include?(">= 0") && !current_requirement_open
                 update_prompt = ". Gem already added"
               else
                 update_prompt = ". If you want to update the gem version, run `bundle update #{current.name}`"
-                update_prompt += ". You may also need to change the version requirement specified in the Gemfile if it's too restrictive." unless current.requirements_list.include?(">= 0")
+                update_prompt += ". You may also need to change the version requirement specified in the Gemfile if it's too restrictive." unless current_requirement_open
               end
             end
             raise GemfileError, "You cannot specify the same gem twice with different version requirements.\n" \
-                            "You specified: #{current.name} (#{current.requirement}) and #{dep.name} (#{dep.requirement})" \
-                             "#{update_prompt}"
-          elsif current.source != dep.source
-            return if dep.type == :development
-            raise GemfileError, "You cannot specify the same gem twice coming from different sources.\n" \
-                            "You specified that #{dep.name} (#{dep.requirement}) should come from " \
-                            "#{current.source || "an unspecified source"} and #{dep.source}\n"
-          else
-            Bundler.ui.warn "Your Gemfile lists the gem #{current.name} (#{current.requirement}) more than once.\n" \
-                            "You should probably keep only one of them.\n" \
-                            "Remove any duplicate entries and specify the gem only once.\n" \
-                            "While it's not a problem now, it could cause errors if you change the version of one of them later."
+                           "You specified: #{current.name} (#{current.requirement}) and #{dep.name} (#{dep.requirement})" \
+                           "#{update_prompt}"
           end
         end
+        # Always prefer the dependency from the Gemfile
+        if current.gemspec_dev_dep?
+          @dependencies.delete(current)
+        elsif dep.gemspec_dev_dep?
+          return
+        elsif current.source != dep.source
+          raise GemfileError, "You cannot specify the same gem twice coming from different sources.\n" \
+                          "You specified that #{dep.name} (#{dep.requirement}) should come from " \
+                          "#{current.source || "an unspecified source"} and #{dep.source}\n"
+        else
+          Bundler.ui.warn "Your Gemfile lists the gem #{current.name} (#{current.requirement}) more than once.\n" \
+                          "You should probably keep only one of them.\n" \
+                          "Remove any duplicate entries and specify the gem only once.\n" \
+                          "While it's not a problem now, it could cause errors if you change the version of one of them later."
+        end
       end
       @dependencies << dep
@@ -206,7 +219,7 @@ module Bundler
     end
     def github(repo, options = {})
-      raise ArgumentError, "GitHub sources require a block" unless block_given?
+      raise InvalidArgumentError, "GitHub sources require a block" unless block_given?
       github_uri  = @git_sources["github"].call(repo)
       git_options = normalize_hash(options).merge("uri" => github_uri)
       git_source  = @sources.add_git_source(git_options)
@@ -272,6 +285,16 @@ module Bundler
     private
+    def with_gemfile(gemfile)
+      expanded_gemfile_path = Pathname.new(gemfile).expand_path(@gemfile&.parent)
+      original_gemfile = @gemfile
+      @gemfile = expanded_gemfile_path
+      @gemfiles << expanded_gemfile_path
+      yield @gemfile.to_s
+    ensure
+      @gemfile = original_gemfile
+    end
     def add_git_sources
       git_source(:github) do |repo_name|
         if repo_name =~ GITHUB_PULL_REQUEST_URL
@@ -296,6 +319,20 @@ module Bundler
         repo_name ||= user_name
         "https://#{user_name}@bitbucket.org/#{user_name}/#{repo_name}.git"
       end
+      git_source(:gitlab) do |repo_name|
+        if repo_name =~ GITLAB_MERGE_REQUEST_URL
+          {
+            "git" => "https://gitlab.com/#{$1}.git",
+            "branch" => nil,
+            "ref" => "refs/merge-requests/#{$2}/head",
+            "tag" => nil,
+          }
+        else
+          repo_name = "#{repo_name}/#{repo_name}" unless repo_name.include?("/")
+          "https://gitlab.com/#{repo_name}.git"
+        end
+      end
     end
     def with_source(source)
@@ -397,13 +434,11 @@ module Bundler
     end
     def validate_keys(command, opts, valid_keys)
-      invalid_keys = opts.keys - valid_keys
-      git_source = opts.keys & @git_sources.keys.map(&:to_s)
-      if opts["branch"] && !(opts["git"] || opts["github"] || git_source.any?)
+      if opts["branch"] && !(opts["git"] || opts["github"] || (opts.keys & @git_sources.keys.map(&:to_s)).any?)
         raise GemfileError, %(The `branch` option for `#{command}` is not allowed. Only gems with a git source can specify a branch)
       end
+      invalid_keys = opts.keys - valid_keys
       return true unless invalid_keys.any?
       message = String.new
@@ -422,9 +457,13 @@ module Bundler
     def normalize_source(source)
       case source
       when :gemcutter, :rubygems, :rubyforge
-        Bundler::SharedHelpers.major_deprecation 2, "The source :#{source} is deprecated because HTTP " \
-          "requests are insecure.\nPlease change your source to 'https://" \
-          "rubygems.org' if possible, or 'http://rubygems.org' if not."
+        message =
+          "The source :#{source} is deprecated because HTTP requests are insecure.\n" \
+          "Please change your source to 'https://rubygems.org' if possible, or 'http://rubygems.org' if not."
+        removed_message =
+          "The source :#{source} is disallowed because HTTP requests are insecure.\n" \
+          "Please change your source to 'https://rubygems.org' if possible, or 'http://rubygems.org' if not."
+        Bundler::SharedHelpers.major_deprecation 2, message, removed_message: removed_message
         "http://rubygems.org"
       when String
         source
@@ -469,10 +508,17 @@ module Bundler
           "should come from that source"
         raise GemfileEvalError, msg
       else
-        Bundler::SharedHelpers.major_deprecation 2, "Your Gemfile contains multiple global sources. " \
+        message =
+          "Your Gemfile contains multiple global sources. " \
           "Using `source` more than once without a block is a security risk, and " \
           "may result in installing unexpected gems. To resolve this warning, use " \
           "a block to indicate which gems should come from the secondary source."
+        removed_message =
+          "Your Gemfile contains multiple global sources. " \
+          "Using `source` more than once without a block is a security risk, and " \
+          "may result in installing unexpected gems. To resolve this error, use " \
+          "a block to indicate which gems should come from the secondary source."
+        Bundler::SharedHelpers.major_deprecation 2, message, removed_message: removed_message
       end
     end
@@ -541,23 +587,23 @@ module Bundler
           return m unless backtrace && dsl_path && contents
-          trace_line = backtrace.find {|l| l.include?(dsl_path.to_s) } || trace_line
+          trace_line = backtrace.find {|l| l.include?(dsl_path) } || trace_line
           return m unless trace_line
-          line_numer = trace_line.split(":")[1].to_i - 1
-          return m unless line_numer
+          line_number = trace_line.split(":")[1].to_i - 1
+          return m unless line_number
           lines      = contents.lines.to_a
           indent     = " #  "
           indicator  = indent.tr("#", ">")
-          first_line = line_numer.zero?
-          last_line  = (line_numer == (lines.count - 1))
+          first_line = line_number.zero?
+          last_line  = (line_number == (lines.count - 1))
           m << "\n"
           m << "#{indent}from #{trace_line.gsub(/:in.*$/, "")}\n"
           m << "#{indent}-------------------------------------------\n"
-          m << "#{indent}#{lines[line_numer - 1]}" unless first_line
-          m << "#{indicator}#{lines[line_numer]}"
-          m << "#{indent}#{lines[line_numer + 1]}" unless last_line
+          m << "#{indent}#{lines[line_number - 1]}" unless first_line
+          m << "#{indicator}#{lines[line_number]}"
+          m << "#{indent}#{lines[line_number + 1]}" unless last_line
           m << "\n" unless m.end_with?("\n")
           m << "#{indent}-------------------------------------------\n"
         end
@@ -567,7 +613,7 @@ module Bundler
       def parse_line_number_from_description
         description = self.description
-        if dsl_path && description =~ /((#{Regexp.quote File.expand_path(dsl_path)}|#{Regexp.quote dsl_path.to_s}):\d+)/
+        if dsl_path && description =~ /((#{Regexp.quote File.expand_path(dsl_path)}|#{Regexp.quote dsl_path}):\d+)/
           trace_line = Regexp.last_match[1]
           description = description.sub(/\n.*\n(\.\.\.)? *\^~+$/, "").sub(/#{Regexp.quote trace_line}:\s*/, "").sub("\n", " - ")
         end

data/bundler/lib/bundler/endpoint_specification.rb CHANGED Viewed

@@ -92,9 +92,20 @@ module Bundler
       end
     end
+    # needed for `bundle fund`
+    def metadata
+      if @remote_specification
+        @remote_specification.metadata
+      elsif _local_specification
+        _local_specification.metadata
+      else
+        super
+      end
+    end
     def _local_specification
       return unless @loaded_from && File.exist?(local_specification_path)
-      eval(File.read(local_specification_path)).tap do |spec|
+      eval(File.read(local_specification_path), nil, local_specification_path).tap do |spec|
         spec.loaded_from = @loaded_from
       end
     end
@@ -125,7 +136,11 @@ module Bundler
         next unless v
         case k.to_s
         when "checksum"
-          @checksum = v.last
+          begin
+            @checksum = Checksum.from_api(v.last, @spec_fetcher.uri)
+          rescue ArgumentError => e
+            raise ArgumentError, "Invalid checksum for #{full_name}: #{e.message}"
+          end
         when "rubygems"
           @required_rubygems_version = Gem::Requirement.new(v)
         when "ruby"

data/bundler/lib/bundler/env.rb CHANGED Viewed

@@ -40,11 +40,11 @@ module Bundler
         out << "\n## Gemfile\n"
         gemfiles.each do |gemfile|
-          out << "\n### #{Pathname.new(gemfile).relative_path_from(SharedHelpers.pwd)}\n\n"
+          out << "\n### #{SharedHelpers.relative_path_to(gemfile)}\n\n"
           out << "```ruby\n" << read_file(gemfile).chomp << "\n```\n"
         end
-        out << "\n### #{Bundler.default_lockfile.relative_path_from(SharedHelpers.pwd)}\n\n"
+        out << "\n### #{SharedHelpers.relative_path_to(Bundler.default_lockfile)}\n\n"
         out << "```\n" << read_file(Bundler.default_lockfile).chomp << "\n```\n"
       end
@@ -69,9 +69,7 @@ module Bundler
     end
     def self.ruby_version
-      str = String.new(RUBY_VERSION)
-      str << "p#{RUBY_PATCHLEVEL}" if defined? RUBY_PATCHLEVEL
-      str << " (#{RUBY_RELEASE_DATE} revision #{RUBY_REVISION}) [#{Gem::Platform.local}]"
+      "#{RUBY_VERSION}p#{RUBY_PATCHLEVEL} (#{RUBY_RELEASE_DATE} revision #{RUBY_REVISION}) [#{Gem::Platform.local}]"
     end
     def self.git_version
@@ -122,7 +120,7 @@ module Bundler
         specs = Bundler.rubygems.find_name(name)
         out << ["  #{name}", "(#{specs.map(&:version).join(",")})"] unless specs.empty?
       end
-      if (exe = caller.last.split(":").first) && exe =~ %r{(exe|bin)/bundler?\z}
+      if (exe = caller_locations.last.absolute_path)&.match? %r{(exe|bin)/bundler?\z}
         shebang = File.read(exe).lines.first
         shebang.sub!(/^#!\s*/, "")
         unless shebang.start_with?(Gem.ruby, "/usr/bin/env ruby")

data/bundler/lib/bundler/environment_preserver.rb CHANGED Viewed

@@ -19,14 +19,7 @@ module Bundler
     BUNDLER_PREFIX = "BUNDLER_ORIG_"
     def self.from_env
-      new(env_to_hash(ENV), BUNDLER_KEYS)
-    end
-    def self.env_to_hash(env)
-      to_hash = env.to_hash
-      return to_hash unless Gem.win_platform?
-      to_hash.each_with_object({}) {|(k,v), a| a[k.upcase] = v }
+      new(ENV.to_hash, BUNDLER_KEYS)
     end
     # @param env [Hash]
@@ -39,18 +32,7 @@ module Bundler
     # Replaces `ENV` with the bundler environment variables backed up
     def replace_with_backup
-      unless Gem.win_platform?
-        ENV.replace(backup)
-        return
-      end
-      # Fallback logic for Windows below to workaround
-      # https://bugs.ruby-lang.org/issues/16798. Can be dropped once all
-      # supported rubies include the fix for that.
-      ENV.clear
-      backup.each {|k, v| ENV[k] = v }
+      ENV.replace(backup)
     end
     # @return [Hash]
@@ -58,9 +40,9 @@ module Bundler
       env = @original.clone
       @keys.each do |key|
         value = env[key]
-        if !value.nil? && !value.empty?
+        if !value.nil?
           env[@prefix + key] ||= value
-        elsif value.nil?
+        else
           env[@prefix + key] ||= INTENTIONALLY_NIL
         end
       end
@@ -72,7 +54,7 @@ module Bundler
       env = @original.clone
       @keys.each do |key|
         value_original = env[@prefix + key]
-        next if value_original.nil? || value_original.empty?
+        next if value_original.nil?
         if value_original == INTENTIONALLY_NIL
           env.delete(key)
         else

data/bundler/lib/bundler/errors.rb CHANGED Viewed

@@ -52,6 +52,49 @@ module Bundler
   class GemfileEvalError < GemfileError; end
   class MarshalError < StandardError; end
+  class ChecksumMismatchError < SecurityError
+    def initialize(lock_name, existing, checksum)
+      @lock_name = lock_name
+      @existing = existing
+      @checksum = checksum
+    end
+    def message
+      <<~MESSAGE
+        Bundler found mismatched checksums. This is a potential security risk.
+          #{@lock_name} #{@existing.to_lock}
+            from #{@existing.sources.join("\n    and ")}
+          #{@lock_name} #{@checksum.to_lock}
+            from #{@checksum.sources.join("\n    and ")}
+        #{mismatch_resolution_instructions}
+        To ignore checksum security warnings, disable checksum validation with
+          `bundle config set --local disable_checksum_validation true`
+      MESSAGE
+    end
+    def mismatch_resolution_instructions
+      removable, remote = [@existing, @checksum].partition(&:removable?)
+      case removable.size
+      when 0
+        msg = +"Mismatched checksums each have an authoritative source:\n"
+        msg << "  1. #{@existing.sources.reject(&:removable?).map(&:to_s).join(" and ")}\n"
+        msg << "  2. #{@checksum.sources.reject(&:removable?).map(&:to_s).join(" and ")}\n"
+        msg << "You may need to alter your Gemfile sources to resolve this issue.\n"
+      when 1
+        msg = +"If you trust #{remote.first.sources.first}, to resolve this issue you can:\n"
+        msg << removable.first.removal_instructions
+      when 2
+        msg = +"To resolve this issue you can either:\n"
+        msg << @checksum.removal_instructions
+        msg << "or if you are sure that the new checksum from #{@checksum.sources.first} is correct:\n"
+        msg << @existing.removal_instructions
+      end
+    end
+    status_code(37)
+  end
   class PermissionError < BundlerError
     def initialize(path, permission_type = :write)
       @path = path
@@ -172,4 +215,35 @@ module Bundler
     status_code(36)
   end
+  class InsecureInstallPathError < BundlerError
+    def initialize(name, path)
+      @name = name
+      @path = path
+    end
+    def message
+      "Bundler cannot reinstall #{@name} because there's a previous installation of it at #{@path} that is unsafe to remove.\n" \
+      "The parent of #{@path} is world-writable and does not have the sticky bit set, making it insecure to remove due to potential vulnerabilities.\n" \
+      "Please change the permissions of #{File.dirname(@path)} or choose a different install path."
+    end
+    status_code(38)
+  end
+  class CorruptBundlerInstallError < BundlerError
+    def initialize(loaded_spec)
+      @loaded_spec = loaded_spec
+    end
+    def message
+      "The running version of Bundler (#{Bundler::VERSION}) does not match the version of the specification installed for it (#{@loaded_spec.version}). " \
+      "This can be caused by reinstalling Ruby without removing previous installation, leaving around an upgraded default version of Bundler. " \
+      "Reinstalling Ruby from scratch should fix the problem."
+    end
+    status_code(39)
+  end
+  class InvalidArgumentError < BundlerError; status_code(40); end
 end

data/bundler/lib/bundler/feature_flag.rb CHANGED Viewed

@@ -37,7 +37,6 @@ module Bundler
     settings_flag(:plugins) { @bundler_version >= Gem::Version.new("1.14") }
     settings_flag(:print_only_version_number) { bundler_3_mode? }
     settings_flag(:setup_makes_kernel_gem_public) { !bundler_3_mode? }
-    settings_flag(:suppress_install_using_messages) { bundler_3_mode? }
     settings_flag(:update_requires_all_flag) { bundler_4_mode? }
     settings_option(:default_cli_command) { bundler_3_mode? ? :cli_help : :install }

data/bundler/lib/bundler/fetcher/base.rb CHANGED Viewed

@@ -6,12 +6,14 @@ module Bundler
       attr_reader :downloader
       attr_reader :display_uri
       attr_reader :remote
+      attr_reader :gem_remote_fetcher
-      def initialize(downloader, remote, display_uri)
+      def initialize(downloader, remote, display_uri, gem_remote_fetcher)
         raise "Abstract class" if self.class == Base
         @downloader = downloader
         @remote = remote
         @display_uri = display_uri
+        @gem_remote_fetcher = gem_remote_fetcher
       end
       def remote_uri
@@ -38,9 +40,9 @@ module Bundler
       private
-      def log_specs(debug_msg)
+      def log_specs(&block)
         if Bundler.ui.debug?
-          Bundler.ui.debug debug_msg
+          Bundler.ui.debug yield
         else
           Bundler.ui.info ".", false
         end