RubyGems - yavdb - Versions diffs - 0.4.0 → 0.4.1 - Mend

yavdb 0.4.0 → 0.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

checksums.yaml +4 -4
data/.circleci/config.yml +7 -3
data/Gemfile.lock +1 -1
data/lib/yavdb/constants.rb +2 -0
data/lib/yavdb/sources/friends_of_php.rb +3 -3
data/lib/yavdb/sources/ruby_advisory.rb +1 -1
data/lib/yavdb/sources/snyk_io.rb +1 -1
data/lib/yavdb/utils/semver.rb +1 -1
data/lib/yavdb/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: ca645bf2ce6d083015c0c97363f5f46aab4e27cf
-  data.tar.gz: 1cff5ebc4091c93e0ed8d57c4b692ca3c7861b85
+  metadata.gz: 1be5fc747b3ec539e16cdb7d4ba3d83da0373cc5
+  data.tar.gz: c8895b7259b34b931f0df57f32cb045d45d9eb8e
 SHA512:
-  metadata.gz: a00a4a250b92d3d3cb2549a906124470002e62ddf4cde55f51e2d002ab97c6509d7d8ba52ada201d70ff4932a948e57262e36ca4c6749809911fc2671bb150b3
-  data.tar.gz: a4484eec314817c4344b6f3dd793369d37cffe297c98aeda0eb3b11e883d32a71e9f761df0e669cb1be4bc516b2816f8c3ee4e01c9b85522a394b30058547873
+  metadata.gz: 4e2b14ec2b6de43c1a41bc0cb71133a0c83f9caad00a3ff19b6193deb0ead7d971425f6b3ef6f4b2bb9fc304bc24e9f480d5cca88a9bec4836e337465fa94d07
+  data.tar.gz: 2813a004bb9fb2735e834e879ad842502eb22d4e9d70f0466f20408d51128dd7dd3dd0d02504e74730b0f07b02a755ccdf3aff3e01745d771042f528d18987da

data/.circleci/config.yml CHANGED Viewed

@@ -12,17 +12,21 @@ jobs:
       type: shell
       command: gem install bundler -v 1.16
+    - name: Prepare yavdb cache
+      type: shell
+      command: echo "$(date)" > /tmp/yavdb.cache.log
     - name: Restore gem cache
       type: cache-restore
       keys:
       - gem-yavdb-{{ checksum "Gemfile.lock" }}
-      - gem-yavdb
+      - gem-yavdb-
     - name: Restore yavdb cache
       type: cache-restore
       keys:
       - crawler-yavdb-cache-1
-      - crawler-yavdb-cache
+      - crawler-yavdb-cache-
     - name: Bundle Install
       type: shell
@@ -44,7 +48,7 @@ jobs:
     - name: Save yavdb cache
       type: cache-save
-      key: crawler-yavdb-cache-1
+      key: crawler-yavdb-cache-{{ checksum "/tmp/yavdb.cache.log" }}
       paths:
       - ~/.yavdb/cache

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    yavdb (0.4.0)
+    yavdb (0.4.1)
       json (~> 2.1)
       kramdown (~> 1.17)
       oga (~> 2.15)

data/lib/yavdb/constants.rb CHANGED Viewed

@@ -30,5 +30,7 @@ module YAVDB
     POSSIBLE_PACKAGE_MANAGERS = ['npm', 'rubygems', 'maven', 'nuget', 'packagist', 'pypi', 'go'].freeze
+    SEVERITIES = ['low', 'medium', 'high'].freeze
   end
 end

data/lib/yavdb/sources/friends_of_php.rb CHANGED Viewed

@@ -33,12 +33,12 @@ module YAVDB
         PACKAGE_MANAGER = 'packagist'.freeze
         def self.advisories
-          REPOSITORY_URLS.map do |url|
-            YAVDB::SourceTypes::GitRepo.search('*/*/*.yaml', url).map do |repo_path, file_paths|
+          REPOSITORY_URLS.map do |repository_url|
+            YAVDB::SourceTypes::GitRepo.search('*/*/*.yaml', repository_url).map do |repo_path, file_paths|
               Dir.chdir(repo_path) do
                 file_paths.map do |file_path|
                   advisory_hash = YAML.load_file(file_path)
-                  url           = "#{url}/blob/master/#{file_path}"
+                  url           = "#{repository_url}/blob/master/#{file_path}"
                   create(url, advisory_hash)
                 end
               end

data/lib/yavdb/sources/ruby_advisory.rb CHANGED Viewed

@@ -84,7 +84,7 @@ module YAVDB
           end
           def clean_version(versions)
-            versions&.map { |version| version.gsub(',', ' ') }
+            versions&.map { |version| version.tr(',', ' ') }
           end
           def references(advisory_hash)

data/lib/yavdb/sources/snyk_io.rb CHANGED Viewed

@@ -105,7 +105,7 @@ module YAVDB
                                   elsif ['maven', 'nuget', 'pypi'].include?(package_manager)
                                     [vulnerable_versions]
                                   else
-                                    [vulnerable_versions.gsub(',', ' ')]
+                                    [vulnerable_versions.tr(',', ' ')]
                                   end
             sidebar_data = parse_side_bar(advisory_page)

data/lib/yavdb/utils/semver.rb CHANGED Viewed

@@ -69,7 +69,7 @@ module YAVDB
         def split_versions(version)
           version
             .strip
-            .split(/,|\|\|/)
+            .split(%r{,|\|\|})
         end
       end

data/lib/yavdb/version.rb CHANGED Viewed

@@ -16,6 +16,6 @@
 module YAVDB
-  VERSION = '0.4.0'
+  VERSION = '0.4.1'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: yavdb
 version: !ruby/object:Gem::Version
-  version: 0.4.0
+  version: 0.4.1
 platform: ruby
 authors:
 - Rodrigo Fernandes
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-10-21 00:00:00.000000000 Z
+date: 2018-10-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler