sri 0.1.0 → 1.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e24ddf1e4de1a67fb34d4e3ba40afd3420bf4e7f3595abc106d1f7b7aeee2884
-  data.tar.gz: 3d31c02ea58afbd40725fe5933e63c3e36525c39360f91be5316f0129df43d32
+  metadata.gz: 6ea17f4b2d6c472826369e0a68b676aceea40d7484740243bf5c7f908821f483
+  data.tar.gz: 19f4ceee35a37e26d997d50d23e844119b1bc4ef3ff549d1f8360743ac0c72b9
 SHA512:
-  metadata.gz: 925301a5c5f76b47377cd800d8c80b7fc6cd1dcaf3f674ec9dde5fc8434b3731ce18e9aa0cf7509cf4d1e39162fdb688de99c745f41ab46e484aa75ccb4bf338
-  data.tar.gz: 2bb032b021dfa22f39627625dca169afd7f18823fac1cabc25714a4ae63763399a7b252643cbbe090c551ce8f6be02608089d90b27577cca0e7188d23db9bc3f
+  metadata.gz: cb40276b84511fa91202c73061f1a74a9915ca22633ff8ddd0620874141a035bf272d147e986a66218f69379f53cc12bf4509f1713862a87bb8d141cec0a713b
+  data.tar.gz: 2fcfb1b3c325355fa9879c3864d6e08b973ae8077156ff03f3ae71aa259da43564b71901a38e0b3bd332d5239369bbb207c50387df5c9f02906abb6787056e93

data/Gemfile.lock

@@ -2,16 +2,13 @@ PATH
   remote: .
   specs:
     sri (0.1.0)
+      clamp (~> 1.3.1)
 
 GEM
   remote: https://rubygems.org/
   specs:
-    coderay (1.1.2)
+    clamp (1.3.1)
     diff-lcs (1.3)
-    method_source (0.9.2)
-    pry (0.12.2)
-      coderay (~> 1.1.0)
-      method_source (~> 0.9.0)
     rake (10.5.0)
     rspec (3.9.0)
       rspec-core (~> 3.9.0)
@@ -32,7 +29,6 @@ PLATFORMS
 
 DEPENDENCIES
   bundler (~> 2.0)
-  pry
   rake (~> 10.0)
   rspec (~> 3.0)
   sri!

data/README.md

@@ -1,35 +1,41 @@
-# Sri
+# SRI Generator
 
-Welcome to your new gem! In this directory, you'll find the files you need to be able to package up your Ruby library into a gem. Put your Ruby code in the file `lib/sri`. To experiment with that code, run `bin/console` for an interactive prompt.
+A way to generate Sub-Resource Integrity hashes on the command-line*
 
-TODO: Delete this and the text above, and describe your gem
+\* As long as you have Ruby installed!
 
-## Installation
+## Install
 
-Add this line to your application's Gemfile:
+Install with:
 
-```ruby
-gem 'sri'
+```
+gem install sri
 ```
 
-And then execute:
-
-    $ bundle
+## Usage
 
-Or install it yourself as:
+This gem comes with an executable called `generate-sri`. You can run it like this:
 
-    $ gem install sri
+```
+generate-sri -h sha512 ~/path/to/a/file
+```
 
-## Usage
+Or like this:
 
-TODO: Write usage instructions here
+```
+cat ~/path/to/a/file | generate-sri -h sha512
+```
 
-## Development
+You may pass one of these through as the `-h` option:
 
-After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+* sha256
+* sha384
+* sha512
 
-To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+## Rationale
 
-## Contributing
+It is easier for me to remember "generate-sri" than it is to remember:
 
-Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/sri.
+```
+cat ~/path/to/a/file | openssl digst -sha384 -binary | base64
+```

data/exe/generate-sri

@@ -1,5 +1,23 @@
 #!/usr/bin/env ruby
 
 require 'sri'
+require 'clamp'
 
-puts %Q{integrity="sha512-#{SRI.from_file(ARGV[0])}"}
+Clamp do
+  option ["-h", "--hash"], "[sha256 | sha384 | sha512]", "hashing algorithm to use", required: true, attribute_name: :algorithm
+  parameter "[FILE]", "source file", optional: true
+
+  def execute
+    data = if file
+      File.read(file)
+    else
+      STDIN.read
+    end
+
+    puts SRI.generate_hash(algorithm, data)
+  end
+end
+
+
+
+# puts %Q{integrity="sha512-#{SRI.from_file(ARGV[0])}"}

data/lib/sri.rb

@@ -2,12 +2,17 @@ require "sri/version"
 require "openssl"
 
 module SRI
-  def self.from_file(file)
-    generate_hash(File.read(File.expand_path(file)))
-  end
+  def self.generate_hash(algorithm, content)
+    digest_class = case algorithm
+    when "sha256"
+      OpenSSL::Digest::SHA256
+    when "sha384"
+      OpenSSL::Digest::SHA384
+    when "sha512"
+      OpenSSL::Digest::SHA512
+    end
 
-  def self.generate_hash(content)
-    digest = OpenSSL::Digest::SHA512.new
+    digest = digest_class.new
     digest << content
     digest.base64digest
   end

data/lib/sri/version.rb

@@ -1,3 +1,3 @@
 module Sri
-  VERSION = "0.1.0"
+  VERSION = "1.0.0"
 end

data/sri.gemspec

@@ -19,6 +19,8 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
 
+  spec.add_dependency 'clamp', '~> 1.3.1'
+
   spec.add_development_dependency "bundler", "~> 2.0"
   spec.add_development_dependency "rake", "~> 10.0"
   spec.add_development_dependency "rspec", "~> 3.0"

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: sri
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 1.0.0
 platform: ruby
 authors:
 - Ryan Bigg
@@ -10,6 +10,20 @@ bindir: exe
 cert_chain: []
 date: 2019-12-19 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: clamp
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.3.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.3.1
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement