spandx 0.18.2 → 0.18.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +6 -2
  3. data/lib/spandx/spdx/catalogue.rb +2 -1
  4. data/lib/spandx/version.rb +1 -1
  5. data/spandx.gemspec +1 -1
  6. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 28d95986ecfe3d8616d52256ecf28003eb4cc6c28e30a6733e9e4e1012cf5375
4
- data.tar.gz: bd8f7c53dbfa43e13a2f1a4f54c7a2517e70f3e529b1792b18ce6ef9cc208091
3
+ metadata.gz: 81626f66bcff1fbe9a38a489f72e0f00bbd355f91ed43582e563a04089016e83
4
+ data.tar.gz: b5ed156f7c0b5f9972d2e8e564dd37666f1fa8acf5c26ae4192db2a4d6d68c2e
5
5
  SHA512:
6
- metadata.gz: b97733866a711008bebc338ff77e452696d5ae1f7c8b486fb13b08adc20c8fd2483cc288766920525057967889b3e42632abb0f6dd5cf03f273965ae27b0d1c8
7
- data.tar.gz: fa296185eacf57b16c7f9b54cd9d1b19c8bfa524ce3de6b256b007a1c9d9cf41c51eb7c99e10331265d48b415c94119c1e2097f10764c2d4f420eb91762cf1f9
6
+ metadata.gz: e81245600853fa6677deedd50ece29463a50736c44cb4503391e8777b31f3493c4d9405cc33bde47538d2f991befea153abdefe0b9cfe04954f0c73277c70005
7
+ data.tar.gz: 190c97f3ab8e9431a5ca52ffd4dfb524f6438997a8912288c8abd821e220dfbda149fe1107f0f63b6e8e5bff6258a312800654764073e1c929182175bc89a27c
data/CHANGELOG.md CHANGED
@@ -1,4 +1,4 @@
1
- Version 0.18.2
1
+ Version 0.18.3
2
2
 
3
3
  # Changelog
4
4
 
@@ -9,6 +9,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
9
9
 
10
10
  ## [Unreleased]
11
11
 
12
+ ## [0.18.3] - 2021-12-15
13
+ - fix(spdx): fallback to online catalogue when local catalogue is not available.
14
+
12
15
  ## [0.18.2] - 2021-06-05
13
16
  ### Fixed
14
17
  - fix(dpkg): detect package manager for related dependencies
@@ -237,7 +240,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
237
240
  ### Added
238
241
  - Provide ruby API to the latest SPDX catalogue.
239
242
 
240
- [Unreleased]: https://github.com/spandx/spandx/compare/v0.18.2...HEAD
243
+ [Unreleased]: https://github.com/spandx/spandx/compare/v0.18.3...HEAD
244
+ [0.18.3]: https://github.com/spandx/spandx/compare/v0.18.2...v0.18.3
241
245
  [0.18.2]: https://github.com/spandx/spandx/compare/v0.18.1...v0.18.2
242
246
  [0.18.1]: https://github.com/spandx/spandx/compare/v0.18.0...v0.18.1
243
247
  [0.18.0]: https://github.com/spandx/spandx/compare/v0.17.0...v0.18.0
data/lib/spandx/spdx/catalogue.rb CHANGED
@@ -37,7 +37,8 @@ module Spandx
37
37
  end
38
38
 
39
39
  def from_git
40
- from_json(Spandx.git[:spdx].read('json/licenses.json'))
40
+ json = Spandx.git[:spdx].read('json/licenses.json')
41
+ json ? from_json(json) : latest
41
42
  end
42
43
 
43
44
  def default
data/lib/spandx/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Spandx
4
- VERSION = '0.18.2'
4
+ VERSION = '0.18.3'
5
5
  end
data/spandx.gemspec CHANGED
@@ -11,7 +11,7 @@ Gem::Specification.new do |spec|
11
11
  spec.email = ['eldemcan@gmail.com', 'mo@mokhan.ca']
12
12
 
13
13
  spec.summary = 'A ruby interface to the SPDX catalogue.'
14
- spec.description = 'Spanx is a ruby API for interacting with the spdx.org software license catalogue. This gem includes a command line interface to scan a software project for the software licenses that are associated with each dependency in the project. Spandx also allows you to hook additional information for each dependency found. For instance, you can add plugin to Spandx to find and report vulnerabilities for the dependencies it found.'
14
+ spec.description = 'Spandx is a ruby API for interacting with the spdx.org software license catalogue. This gem includes a command line interface to scan a software project for the software licenses that are associated with each dependency in the project. Spandx also allows you to hook additional information for each dependency found. For instance, you can add plugin to Spandx to find and report vulnerabilities for the dependencies it found.'
15
15
  spec.homepage = 'https://spandx.github.io/'
16
16
  spec.license = 'MIT'
17
17
  spec.required_ruby_version = Gem::Requirement.new('>= 2.6.0')
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: spandx
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.18.2
4
+ version: 0.18.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Can Eldem
@@ -9,7 +9,7 @@ authors:
9
9
  autorequire:
10
10
  bindir: exe
11
11
  cert_chain: []
12
- date: 2021-06-05 00:00:00.000000000 Z
12
+ date: 2021-12-16 00:00:00.000000000 Z
13
13
  dependencies:
14
14
  - !ruby/object:Gem::Dependency
15
15
  name: addressable
@@ -367,7 +367,7 @@ dependencies:
367
367
  - - "~>"
368
368
  - !ruby/object:Gem::Version
369
369
  version: '3.7'
370
- description: Spanx is a ruby API for interacting with the spdx.org software license
370
+ description: Spandx is a ruby API for interacting with the spdx.org software license
371
371
  catalogue. This gem includes a command line interface to scan a software project
372
372
  for the software licenses that are associated with each dependency in the project.
373
373
  Spandx also allows you to hook additional information for each dependency found.
@@ -473,7 +473,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
473
473
  - !ruby/object:Gem::Version
474
474
  version: '0'
475
475
  requirements: []
476
- rubygems_version: 3.2.19
476
+ rubygems_version: 3.2.32
477
477
  signing_key:
478
478
  specification_version: 4
479
479
  summary: A ruby interface to the SPDX catalogue.