security 0.1.0 → 0.1.5

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: f878a3070c6bc072f8bf7e0dfe17a8db85dec7b32685353498a642ea76c95176
+  data.tar.gz: '02093024c12b425b231eadbe56963433929e1844870dedeab1fda5f31b1c4a2b'
+SHA512:
+  metadata.gz: 7afe1f89bd8fda3701c8f31bb80b669107debea3ed191250a19d091fca665bc7b4572311f42b99a744b9a9c3a86657ca1d813420016fe07059bc4643a163c3de
+  data.tar.gz: eacec975d67c63faef11e7b20d4bd2c361d2daa5607ff7852fb2410bb0e71ba8e0926d75d2b158f733f423290648ca33ca91f522022ef987de64e41b2e16eea5

data/Gemfile

@@ -1,3 +1,5 @@
-source :rubygems
+# frozen_string_literal: true
+
+source 'https://rubygems.org'
 
 gemspec

data/Gemfile.lock

@@ -1,18 +1,58 @@
 PATH
   remote: .
   specs:
-    security (0.1.0)
+    security (0.1.5)
 
 GEM
-  remote: http://rubygems.org/
+  remote: https://rubygems.org/
   specs:
-    rake (0.9.2.2)
-    rspec (0.6.4)
+    ast (2.4.2)
+    diff-lcs (1.4.4)
+    parallel (1.20.1)
+    parser (3.0.0.0)
+      ast (~> 2.4.1)
+    rainbow (3.0.0)
+    rake (12.3.3)
+    regexp_parser (2.1.1)
+    rexml (3.2.4)
+    rspec (3.10.0)
+      rspec-core (~> 3.10.0)
+      rspec-expectations (~> 3.10.0)
+      rspec-mocks (~> 3.10.0)
+    rspec-core (3.10.1)
+      rspec-support (~> 3.10.0)
+    rspec-expectations (3.10.1)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.10.0)
+    rspec-github (2.3.1)
+      rspec-core (~> 3.0)
+    rspec-mocks (3.10.2)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.10.0)
+    rspec-support (3.10.2)
+    rubocop (1.12.0)
+      parallel (~> 1.10)
+      parser (>= 3.0.0.0)
+      rainbow (>= 2.2.2, < 4.0)
+      regexp_parser (>= 1.8, < 3.0)
+      rexml
+      rubocop-ast (>= 1.2.0, < 2.0)
+      ruby-progressbar (~> 1.7)
+      unicode-display_width (>= 1.4.0, < 3.0)
+    rubocop-ast (1.4.1)
+      parser (>= 2.7.1.5)
+    ruby-progressbar (1.11.0)
+    unicode-display_width (2.0.0)
 
 PLATFORMS
-  ruby
+  x86_64-darwin-19
 
 DEPENDENCIES
-  rake (~> 0.9.2)
-  rspec (~> 0.6.1)
+  rake (~> 12.3, >= 12.3.3)
+  rspec
+  rspec-github
+  rubocop
   security!
+
+BUNDLED WITH
+   2.2.8

data/{LICENSE → LICENSE.md}

@@ -1,4 +1,4 @@
-Copyright (c) 2012 Mattt Thompson (http://mattt.me/)
+Copyright (c) 2012 – 2021 The Fastlane Community Contributors
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/README.md

@@ -1,24 +1,27 @@
 # Security
-**Library for interacting with the Mac OS X Keychain**
 
-> This library currently only implements the necessary commands for password management for [Cupertino](https://github.com/mattt/cupertino). As such, some methods are stubbed out to raise `NotImplementedError`.
+[![Build Status][build status badge]][build status]
+[![Gem](https://img.shields.io/gem/v/security.svg?style=flat)](https://rubygems.org/gems/security)
+[![License](https://img.shields.io/badge/license-MIT-green.svg?style=flat)](https://github.com/fastlane-community/security/blob/main/LICENSE.md)
+
+**A library for interacting with the macOS Keychain**
+
+> This library provides only a subset of `security` subcommands,
+> and is not intended for general use.
 
 ## Usage
 
 ```ruby
-Security::Keychain::default_keychain.filename #=> "/Users/johnnyappleseed/Library/Keychains/login.keychain"
+require 'security'
+
+Security::Keychain::default_keychain.filename #=> "/Users/jappleseed/Library/Keychains/login.keychain"
 
 Security::InternetPassword.find(server: "itunesconnect.apple.com").password #=> "p4ssw0rd"
 ```
 
-## Contact
-
-Mattt Thompson
-
-- http://github.com/mattt
-- http://twitter.com/mattt
-- m@mattt.me
-
 ## License
 
-Security is available under the MIT license. See the LICENSE file for more info.
+MIT
+
+[build status]: https://github.com/mattt/Security/actions?query=workflow%3ACI
+[build status badge]: https://github.com/mattt/Security/workflows/CI/badge.svg

data/Rakefile

@@ -1,10 +1,10 @@
-require "bundler"
-Bundler.setup
+# frozen_string_literal: true
 
-gemspec = eval(File.read("security.gemspec"))
+require 'bundler'
+Bundler.setup
 
-task :build => "#{gemspec.full_name}.gem"
+require 'bundler/gem_tasks'
 
-file "#{gemspec.full_name}.gem" => gemspec.files + ["security.gemspec"] do
-  system "gem build security.gemspec"
+task :default do
+  system 'rake -T'
 end

data/lib/security.rb

@@ -1,7 +1,6 @@
-module Security
-  VERSION = "0.1.0"
-end
+# frozen_string_literal: true
 
+require 'security/version'
 require 'security/keychain'
 require 'security/certificate'
 require 'security/password'

data/lib/security/certificate.rb

@@ -1,4 +1,7 @@
+# frozen_string_literal: true
+
 module Security
+  # :nodoc:
   class Certificate
     private_class_method :new
 
@@ -16,4 +19,4 @@ module Security
       end
     end
   end
-end
+end

data/lib/security/keychain.rb

@@ -1,6 +1,11 @@
+# frozen_string_literal: true
+
+require 'shellwords'
+
 module Security
+  # :nodoc:
   class Keychain
-    DOMAINS = [:user, :system, :common, :dynamic]
+    DOMAINS = %i[user system common dynamic].freeze
 
     attr_reader :filename
 
@@ -9,19 +14,19 @@ module Security
     end
 
     def info
-      system %{security show-keychain-info "#{@filename}"}
+      system %(security show-keychain-info #{@filename.shellescape})
     end
 
     def lock
-      system %{security lock-keychain "#{@filename}"}
+      system %(security lock-keychain #{@filename.shellescape})
     end
 
     def unlock(password)
-      system %{security unlock-keychain -p #{password} "#{@filename}"}
+      system %(security unlock-keychain -p #{password.shellescape} #{@filename.shellescape})
     end
 
     def delete
-      system %{security delete-keychain "#{@filename}"}
+      system %(security delete-keychain #{@filename.shellescape})
     end
 
     class << self
@@ -32,30 +37,30 @@ module Security
       def list(domain = :user)
         raise ArgumentError "Invalid domain #{domain}, expected one of: #{DOMAINS}" unless DOMAINS.include?(domain)
 
-        keychains_from_command('list-keychains', domain)
+        keychains_from_output(`security list-keychains -d #{domain}`)
       end
 
       def lock
-        system %{security lock-keychain -a}
+        system %(security lock-keychain -a)
       end
 
       def unlock(password)
-        system %{security unlock-keychain -p #{password}}
+        system %(security unlock-keychain -p #{password.shellescape})
       end
 
       def default_keychain
-        keychains_from_command('default-keychain').first
+        keychains_from_output(`security default-keychain`).first
       end
 
       def login_keychain
-        keychains_from_command('login-keychain').first
+        keychains_from_output(`security login-keychain`).first
       end
 
       private
 
-      def keychains_from_command(command, *args)
-        `security #{[command, *args].compact.join(' ')}`.split(/\n/).collect{|line| new(line.strip.gsub(/^\"|\"$/, ""))}
+      def keychains_from_output(output)
+        output.split(/\n/).collect { |line| new(line.strip.gsub(/^"|"$/, '')) }
       end
-    end    
+    end
   end
 end

data/lib/security/password.rb

@@ -1,4 +1,9 @@
+# frozen_string_literal: true
+
+require 'shellwords'
+
 module Security
+  # :nodoc:
   class Password
     attr_reader :keychain, :attributes, :password
 
@@ -7,24 +12,30 @@ module Security
     def initialize(keychain, attributes, password)
       @keychain = Keychain.new(keychain)
       @attributes = attributes
-      @password = password 
+      @password = password
     end
 
     class << self
       private
 
       def password_from_output(output)
-        return nil if /^security\: / === output 
+        return nil if output.match?(/^security: /)
 
-        keychain, attributes, password = nil, {}, nil
+        keychain = nil
+        attributes = {}
+        password = nil
         output.split(/\n/).each do |line|
           case line
-          when /^keychain\: \"(.+)\"/
-            keychain = $1
-          when /\"(\w{4})\".+\=\"(.+)\"/
-            attributes[$1] = $2
-          when /^password\: \"(.+)\"/
-            password = $1
+          when /^keychain: "(.+)"/
+            keychain = Regexp.last_match(1)
+          when /"(\w{4})".+="(.+)"/
+            attributes[Regexp.last_match(1)] = Regexp.last_match(2)
+          when /"(\w{4})"<blob>=0x([[:xdigit:]]+)/
+            attributes[Regexp.last_match(1)] = decode_hex_blob(Regexp.last_match(2))
+          when /^password: "(.+)"/
+            password = Regexp.last_match(1)
+          when /^password: 0x([[:xdigit:]]+)/
+            password = decode_hex_blob(Regexp.last_match(1))
           end
         end
 
@@ -33,19 +44,23 @@ module Security
 
       def flags_for_options(options = {})
         flags = options.dup
-        flags[:a] ||= options.delete(:account)
-        flags[:c] ||= options.delete(:creator)
-        flags[:C] ||= options.delete(:type)
-        flags[:D] ||= options.delete(:kind)
-        flags[:G] ||= options.delete(:value)
-        flags[:j] ||= options.delete(:comment)
-        flags[:s] ||= options.delete(:service) || options.delete(:server)
-
-        flags.delete_if{|k,v| v.nil?}.collect{|k, v| "-#{k} #{v}".strip}.join(" ")
+        flags[:a] ||= flags.delete(:account)
+        flags[:c] ||= flags.delete(:creator)
+        flags[:C] ||= flags.delete(:type)
+        flags[:D] ||= flags.delete(:kind)
+        flags[:G] ||= flags.delete(:value)
+        flags[:j] ||= flags.delete(:comment)
+
+        flags.delete_if { |_k, v| v.nil? }.collect { |k, v| "-#{k} #{v.shellescape}".strip }.join(' ')
+      end
+
+      def decode_hex_blob(string)
+        [string].pack('H*').force_encoding('UTF-8')
       end
     end
   end
 
+  # :nodoc:
   class GenericPassword < Password
     class << self
       def add(service, account, password, options = {})
@@ -57,31 +72,35 @@ module Security
       end
 
       def find(options)
-        options[:g] = ''
-
-        password_from_output(`security 2>&1 find-generic-password #{flags_for_options(options)}`)
+        password_from_output(`security 2>&1 find-generic-password -g #{flags_for_options(options)}`)
       end
 
       def delete(options)
         system "security delete-generic-password #{flags_for_options(options)}"
       end
+
+      private
+
+      def flags_for_options(options = {})
+        options[:s] ||= options.delete(:service)
+        super(options)
+      end
     end
   end
 
+  # :nodoc:
   class InternetPassword < Password
     class << self
       def add(server, account, password, options = {})
         options[:a] = account
         options[:s] = server
         options[:w] = password
-        
+
         system "security add-internet-password #{flags_for_options(options)}"
       end
 
       def find(options)
-        options[:g] = ''
-
-        password_from_output(`security 2>&1 find-internet-password #{flags_for_options(options)}`)
+        password_from_output(`security 2>&1 find-internet-password -g #{flags_for_options(options)}`)
       end
 
       def delete(options)
@@ -91,6 +110,7 @@ module Security
       private
 
       def flags_for_options(options = {})
+        options[:s] ||= options.delete(:server)
         options[:p] ||= options.delete(:path)
         options[:P] ||= options.delete(:port)
         options[:r] ||= options.delete(:protocol)

data/lib/security/version.rb

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+
+# :nodoc:
+module Security
+  VERSION = '0.1.5'
+end

data/security.gemspec

@@ -1,22 +1,26 @@
-# -*- encoding: utf-8 -*-
-$:.push File.expand_path("../lib", __FILE__)
-require "security"
+# frozen_string_literal: true
+
+$LOAD_PATH.push File.expand_path('lib', __dir__)
+require 'security'
 
 Gem::Specification.new do |s|
-  s.name        = "security"
-  s.authors     = ["Mattt Thompson"]
-  s.email       = "m@mattt.me"
-  s.homepage    = "http://mattt.me"
+  s.name        = 'security'
+  s.authors     = ['Josh Holtz', 'Mattt']
+  s.email       = 'me@joshholtz.com'
+  s.homepage    = 'https://github.com/fastlane-community/security'
   s.version     = Security::VERSION
   s.platform    = Gem::Platform::RUBY
-  s.summary     = "Security"
-  s.description = "Library for interacting with the Mac OS X Keychain"
-
-  s.add_development_dependency "rspec", "~> 0.6.1"
-  s.add_development_dependency "rake",  "~> 0.9.2"
+  s.license     = 'MIT'
+  s.summary     = 'Interact with the macOS Keychain'
 
-  s.files         = Dir["./**/*"].reject { |file| file =~ /\.\/(bin|log|pkg|script|spec|test|vendor)/ }
+  s.files         = Dir['./**/*'].reject { |file| file =~ %r{\./(bin|log|pkg|script|spec|test|vendor)} }
   s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
-  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
-  s.require_paths = ["lib"]
+  s.executables   = `git ls-files -- bin/*`.split("\n").map { |f| File.basename(f) }
+  s.require_paths = ['lib']
+  s.required_ruby_version = '>= 2.4.0'
+
+  s.add_development_dependency 'rake', '~> 12.3', '>= 12.3.3'
+  s.add_development_dependency 'rspec'
+  s.add_development_dependency 'rspec-github'
+  s.add_development_dependency 'rubocop'
 end

data/spec/certificate_spec.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+describe Certificate do
+  describe '#find' do
+    it 'should raise NotImplementedError' do
+      expect { Certificate.find }.to raise_error(NotImplementedError)
+    end
+  end
+
+  describe '#initialize' do
+    it 'should raise NoMethodError' do
+      expect { Certificate.new }.to raise_error(NoMethodError, /private method/)
+    end
+  end
+end

data/spec/keychain_spec.rb

@@ -0,0 +1,48 @@
+# frozen_string_literal: true
+
+require 'tempfile'
+
+describe Keychain do
+  describe '#login_keychain' do
+    subject { Keychain.login_keychain }
+
+    it 'should be located in the user home directory' do
+      expect(subject.filename).to be == File.expand_path('~/Library/Keychains/login.keychain-db')
+    end
+  end
+
+  describe '#create' do
+    let(:password) { 'p4ssw0rd!' }
+
+    it 'should raise NotImplementedError' do
+      Tempfile.open('example.keychain-db') do |tmp|
+        expect { Keychain.create(tmp.path, password) }.to raise_error(NotImplementedError)
+      end
+    end
+  end
+
+  describe '#list' do
+    describe 'when passing no arguments' do
+      it 'should list keychains in user domain' do
+        expect(Keychain.list).to satisfy { |keychains|
+          keychains.map(&:filename) == Keychain.list(:user).map(&:filename)
+        }
+      end
+    end
+
+    describe 'when passing a valid domain' do
+      it 'should not raise an error' do
+        expect { Keychain.list(:user) }.not_to raise_error
+        expect { Keychain.list(:system) }.not_to raise_error
+        expect { Keychain.list(:common) }.not_to raise_error
+        expect { Keychain.list(:dynamic) }.not_to raise_error
+      end
+    end
+
+    describe 'when passing an invalid domain' do
+      it 'should raise an error' do
+        expect { Keychain.list(:invalid) }.to raise_error(NoMethodError) # FIXME
+      end
+    end
+  end
+end

data/spec/password_spec.rb

@@ -0,0 +1,102 @@
+# frozen_string_literal: true
+
+describe GenericPassword do
+  let(:keychain) { Keychain.login_keychain } # FIXME: we should create a temporary keychain for tests
+
+  describe '#add' do
+    let(:service) { 'com.example.service' }
+    let(:account) { 'jappleseed' }
+    let(:password) { 'p4ssw0rd!' }
+    let(:comment) { 'Some comment' }
+
+    around(:example) do |example|
+      GenericPassword.add(service, account, password, comment: comment)
+      example.run
+      GenericPassword.delete({ service: service, account: account })
+    end
+
+    it 'should be added to the keychain' do
+      entry = GenericPassword.find({ account: account })
+      expect(entry.keychain.filename).to be == keychain.filename
+      expect(entry.attributes).to include({
+                                            'acct' => account,
+                                            'svce' => service,
+                                            'icmt' => comment
+                                          })
+      expect(entry.password).to be == password
+    end
+  end
+end
+
+describe InternetPassword do
+  let(:keychain) { Keychain.login_keychain } # FIXME: we should create a temporary keychain for tests
+
+  describe '#add' do
+    let(:server) { 'example.com' }
+    let(:account) { 'jappleseed@example.com' }
+
+    describe 'ascii password' do
+      let(:password) { 'p4ssw0rd!' }
+      let(:comment) { 'Some comment' }
+
+      around(:example) do |example|
+        InternetPassword.add(server, account, password, comment: comment)
+        example.run
+        InternetPassword.delete({ server: server, account: account })
+      end
+
+      it 'should be added to the keychain' do
+        entry = InternetPassword.find({ account: account })
+        expect(entry.keychain.filename).to be == keychain.filename
+        expect(entry.attributes).to include({
+                                              'acct' => account,
+                                              'srvr' => server,
+                                              'icmt' => comment
+                                            })
+        expect(entry.password).to be == password
+      end
+    end
+
+    describe 'ascii password with backslash' do
+      let(:password) { 'p4ssw\0rd!' }
+
+      around(:example) do |example|
+        InternetPassword.add(server, account, password)
+        example.run
+        InternetPassword.delete({ server: server, account: account })
+      end
+
+      it 'should be added to the keychain' do
+        entry = InternetPassword.find({ account: account })
+        expect(entry.keychain.filename).to be == keychain.filename
+        expect(entry.attributes).to include({
+                                              'acct' => account,
+                                              'srvr' => server
+                                            })
+        expect(entry.password).to be == password
+      end
+    end
+
+    describe 'non-ascii password' do
+      let(:password) { '•••p4ssw0rd!••' }
+      let(:comment) { '•••Some comment•••' }
+
+      around(:example) do |example|
+        InternetPassword.add(server, account, password, comment: comment)
+        example.run
+        InternetPassword.delete({ server: server, account: account })
+      end
+
+      it 'should be added to the keychain' do
+        entry = InternetPassword.find({ account: account })
+        expect(entry.keychain.filename).to be == keychain.filename
+        expect(entry.attributes).to include({
+                                              'acct' => account,
+                                              'srvr' => server,
+                                              'icmt' => comment
+                                            })
+        expect(entry.password).to be == password
+      end
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,106 @@
+# frozen_string_literal: true
+
+require_relative '../lib/security'
+
+# rubocop:disable Style/MixinUsage
+include Security
+# rubocop:enable Style/MixinUsage
+
+# This file was generated by the `rspec --init` command. Conventionally, all
+# specs live under a `spec` directory, which RSpec adds to the `$LOAD_PATH`.
+# The generated `.rspec` file contains `--require spec_helper` which will cause
+# this file to always be loaded, without a need to explicitly require it in any
+# files.
+#
+# Given that it is always loaded, you are encouraged to keep this file as
+# light-weight as possible. Requiring heavyweight dependencies from this file
+# will add to the boot time of your test suite on EVERY test run, even for an
+# individual file that may not need all of that loaded. Instead, consider making
+# a separate helper file that requires the additional dependencies and performs
+# the additional setup, and require it from the spec files that actually need
+# it.
+#
+# See http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
+RSpec.configure do |config|
+  # rspec-expectations config goes here. You can use an alternate
+  # assertion/expectation library such as wrong or the stdlib/minitest
+  # assertions if you prefer.
+  config.expect_with :rspec do |expectations|
+    # This option will default to `true` in RSpec 4. It makes the `description`
+    # and `failure_message` of custom matchers include text for helper methods
+    # defined using `chain`, e.g.:
+    #     be_bigger_than(2).and_smaller_than(4).description
+    #     # => "be bigger than 2 and smaller than 4"
+    # ...rather than:
+    #     # => "be bigger than 2"
+    expectations.include_chain_clauses_in_custom_matcher_descriptions = true
+  end
+
+  # rspec-mocks config goes here. You can use an alternate test double
+  # library (such as bogus or mocha) by changing the `mock_with` option here.
+  config.mock_with :rspec do |mocks|
+    # Prevents you from mocking or stubbing a method that does not exist on
+    # a real object. This is generally recommended, and will default to
+    # `true` in RSpec 4.
+    mocks.verify_partial_doubles = true
+  end
+
+  # This option will default to `:apply_to_host_groups` in RSpec 4 (and will
+  # have no way to turn it off -- the option exists only for backwards
+  # compatibility in RSpec 3). It causes shared context metadata to be
+  # inherited by the metadata hash of host groups and examples, rather than
+  # triggering implicit auto-inclusion in groups with matching metadata.
+  config.shared_context_metadata_behavior = :apply_to_host_groups
+
+  # The settings below are suggested to provide a good initial experience
+  # with RSpec, but feel free to customize to your heart's content.
+  #   # This allows you to limit a spec run to individual examples or groups
+  #   # you care about by tagging them with `:focus` metadata. When nothing
+  #   # is tagged with `:focus`, all examples get run. RSpec also provides
+  #   # aliases for `it`, `describe`, and `context` that include `:focus`
+  #   # metadata: `fit`, `fdescribe` and `fcontext`, respectively.
+  #   config.filter_run_when_matching :focus
+  #
+  #   # Allows RSpec to persist some state between runs in order to support
+  #   # the `--only-failures` and `--next-failure` CLI options. We recommend
+  #   # you configure your source control system to ignore this file.
+  #   config.example_status_persistence_file_path = "spec/examples.txt"
+  #
+  #   # Limits the available syntax to the non-monkey patched syntax that is
+  #   # recommended. For more details, see:
+  #   #   - http://rspec.info/blog/2012/06/rspecs-new-expectation-syntax/
+  #   #   - http://www.teaisaweso.me/blog/2013/05/27/rspecs-new-message-expectation-syntax/
+  #   #   - http://rspec.info/blog/2014/05/notable-changes-in-rspec-3/#zero-monkey-patching-mode
+  #   config.disable_monkey_patching!
+  #
+  #   # This setting enables warnings. It's recommended, but in some cases may
+  #   # be too noisy due to issues in dependencies.
+  #   config.warnings = true
+  #
+  #   # Many RSpec users commonly either run the entire suite or an individual
+  #   # file, and it's useful to allow more verbose output when running an
+  #   # individual spec file.
+  #   if config.files_to_run.one?
+  #     # Use the documentation formatter for detailed output,
+  #     # unless a formatter has already been configured
+  #     # (e.g. via a command-line flag).
+  #     config.default_formatter = "doc"
+  #   end
+  #
+  #   # Print the 10 slowest examples and example groups at the
+  #   # end of the spec run, to help surface which specs are running
+  #   # particularly slow.
+  #   config.profile_examples = 10
+  #
+  #   # Run specs in random order to surface order dependencies. If you find an
+  #   # order dependency and want to debug it, you can fix the order by providing
+  #   # the seed, which is printed after each run.
+  #   #     --seed 1234
+  #   config.order = :random
+  #
+  #   # Seed global randomization in this process using the `--seed` CLI option.
+  #   # Setting this allows you to use `--seed` to deterministically reproduce
+  #   # test failures related to randomization by passing the same `--seed` value
+  #   # as the one that triggered the failure.
+  #   Kernel.srand config.seed
+end

metadata

@@ -1,82 +1,124 @@
 --- !ruby/object:Gem::Specification
 name: security
 version: !ruby/object:Gem::Version
-  version: 0.1.0
-  prerelease: 
+  version: 0.1.5
 platform: ruby
 authors:
-- Mattt Thompson
-autorequire: 
+- Josh Holtz
+- Mattt
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2012-07-21 00:00:00.000000000Z
+date: 2021-03-25 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12.3'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 12.3.3
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12.3'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 12.3.3
 - !ruby/object:Gem::Dependency
   name: rspec
-  requirement: &70146585209620 !ruby/object:Gem::Requirement
-    none: false
+  requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 0.6.1
+        version: '0'
   type: :development
   prerelease: false
-  version_requirements: *70146585209620
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: rake
-  requirement: &70146585208880 !ruby/object:Gem::Requirement
-    none: false
+  name: rspec-github
+  requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 0.9.2
+        version: '0'
   type: :development
   prerelease: false
-  version_requirements: *70146585208880
-description: Library for interacting with the Mac OS X Keychain
-email: m@mattt.me
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description:
+email: me@joshholtz.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- ./Gemfile
-- ./Gemfile.lock
-- ./lib/security/certificate.rb
-- ./lib/security/keychain.rb
-- ./lib/security/password.rb
-- ./lib/security.rb
-- ./LICENSE
-- ./Rakefile
-- ./README.md
-- ./security.gemspec
-homepage: http://mattt.me
-licenses: []
-post_install_message: 
+- "./Gemfile"
+- "./Gemfile.lock"
+- "./LICENSE.md"
+- "./README.md"
+- "./Rakefile"
+- "./lib/security.rb"
+- "./lib/security/certificate.rb"
+- "./lib/security/keychain.rb"
+- "./lib/security/password.rb"
+- "./lib/security/version.rb"
+- "./security.gemspec"
+- spec/certificate_spec.rb
+- spec/keychain_spec.rb
+- spec/password_spec.rb
+- spec/spec_helper.rb
+homepage: https://github.com/fastlane-community/security
+licenses:
+- MIT
+metadata: {}
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
-      segments:
-      - 0
-      hash: -2439538555440614710
+      version: 2.4.0
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
-      segments:
-      - 0
-      hash: -2439538555440614710
 requirements: []
-rubyforge_project: 
-rubygems_version: 1.8.15
-signing_key: 
-specification_version: 3
-summary: Security
-test_files: []
+rubygems_version: 3.0.3
+signing_key:
+specification_version: 4
+summary: Interact with the macOS Keychain
+test_files:
+- spec/certificate_spec.rb
+- spec/keychain_spec.rb
+- spec/password_spec.rb
+- spec/spec_helper.rb