yavdb 0.5.3 → 0.5.4
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.circleci/config.yml +1 -0
- data/.rubocop.yml +15 -1
- data/.rubocop_todo.yml +13 -0
- data/Gemfile.lock +13 -10
- data/lib/yavdb/sources/snyk_io.rb +4 -3
- data/lib/yavdb/version.rb +1 -1
- data/yavdb.gemspec +3 -2
- metadata +21 -6
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 579f19a0f075cfd1f37b9f35301e339630644378c9cac5b3491b327b833b5563
|
4
|
+
data.tar.gz: f4a50061c122eb3436a68fe14d0134d363a218c7b51c96f66402e9dea6e7e852
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 2e96b1a8eb461ab36192a544dcb382b092d019955182c3b465ce011259b5eb94c0632239b4e5a23795d4d7c90a18d6c4620ac07184c930f495fc679aa9a43dda
|
7
|
+
data.tar.gz: 65a3d00c830c77818fb16195ea5f3148390d37812a9b479e56ecc82df0779c6156933414e343e8fd5b647c02a26c035b045e2ab46edfb95dee754125d26afd87
|
data/.circleci/config.yml
CHANGED
data/.rubocop.yml
CHANGED
@@ -1,3 +1,9 @@
|
|
1
|
+
inherit_from: .rubocop_todo.yml
|
2
|
+
|
3
|
+
require:
|
4
|
+
- rubocop-performance
|
5
|
+
- rubocop-rspec
|
6
|
+
|
1
7
|
AllCops:
|
2
8
|
# Include common Ruby source files.
|
3
9
|
Include:
|
@@ -168,7 +174,7 @@ Metrics/BlockLength:
|
|
168
174
|
Enabled: true
|
169
175
|
Max: 51
|
170
176
|
Exclude:
|
171
|
-
- "spec
|
177
|
+
- "spec/**/*"
|
172
178
|
|
173
179
|
Metrics/ClassLength:
|
174
180
|
Enabled: false
|
@@ -202,6 +208,14 @@ Metrics/ParameterLists:
|
|
202
208
|
Performance/RedundantBlockCall:
|
203
209
|
Enabled: true
|
204
210
|
|
211
|
+
RSpec/ExampleLength:
|
212
|
+
Enabled: true
|
213
|
+
Max: 15
|
214
|
+
|
215
|
+
RSpec/MultipleExpectations:
|
216
|
+
Enabled: true
|
217
|
+
Max: 14
|
218
|
+
|
205
219
|
Security/MarshalLoad:
|
206
220
|
Enabled: true
|
207
221
|
Exclude:
|
data/.rubocop_todo.yml
ADDED
@@ -0,0 +1,13 @@
|
|
1
|
+
# This configuration was generated by
|
2
|
+
# `rubocop --auto-gen-config`
|
3
|
+
# on 2019-10-09 19:40:20 +0300 using RuboCop version 0.75.0.
|
4
|
+
# The point is for the user to remove these configuration records
|
5
|
+
# one by one as the offenses are removed from the code base.
|
6
|
+
# Note that changes in the inspected code, or installation of new
|
7
|
+
# versions of RuboCop, may require this file to be generated again.
|
8
|
+
|
9
|
+
# Offense count: 1
|
10
|
+
# Configuration parameters: Max.
|
11
|
+
RSpec/ExampleLength:
|
12
|
+
Exclude:
|
13
|
+
- 'spec/crawler_spec.rb'
|
data/Gemfile.lock
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
PATH
|
2
2
|
remote: .
|
3
3
|
specs:
|
4
|
-
yavdb (0.5.
|
4
|
+
yavdb (0.5.4)
|
5
5
|
execjs (~> 2.7)
|
6
6
|
json (~> 2.2)
|
7
7
|
kramdown (~> 2.1)
|
@@ -50,13 +50,13 @@ GEM
|
|
50
50
|
json (2.2.0)
|
51
51
|
kramdown (2.1.0)
|
52
52
|
librariesio-gem-parser (1.0.0)
|
53
|
-
libv8 (3.16.14.19)
|
53
|
+
libv8 (3.16.14.19-x86_64-linux)
|
54
54
|
oga (2.15)
|
55
55
|
ast
|
56
56
|
ruby-ll (~> 2.1)
|
57
57
|
ox (2.11.0)
|
58
|
-
parallel (1.
|
59
|
-
parser (2.6.
|
58
|
+
parallel (1.18.0)
|
59
|
+
parser (2.6.5.0)
|
60
60
|
ast (~> 2.4.0)
|
61
61
|
rainbow (3.0.0)
|
62
62
|
rake (12.3.3)
|
@@ -76,15 +76,17 @@ GEM
|
|
76
76
|
rspec-support (3.8.2)
|
77
77
|
rspec_junit_formatter (0.4.1)
|
78
78
|
rspec-core (>= 2, < 4, != 2.12.0)
|
79
|
-
rubocop (0.
|
79
|
+
rubocop (0.75.0)
|
80
80
|
jaro_winkler (~> 1.5.1)
|
81
81
|
parallel (~> 1.10)
|
82
82
|
parser (>= 2.6)
|
83
83
|
rainbow (>= 2.2.2, < 4.0)
|
84
84
|
ruby-progressbar (~> 1.7)
|
85
85
|
unicode-display_width (>= 1.4.0, < 1.7)
|
86
|
-
rubocop-
|
87
|
-
rubocop (>= 0.
|
86
|
+
rubocop-performance (1.5.0)
|
87
|
+
rubocop (>= 0.71.0)
|
88
|
+
rubocop-rspec (1.36.0)
|
89
|
+
rubocop (>= 0.68.1)
|
88
90
|
ruby-ll (2.1.2)
|
89
91
|
ansi
|
90
92
|
ast
|
@@ -122,10 +124,11 @@ DEPENDENCIES
|
|
122
124
|
rake (~> 12.3)
|
123
125
|
rspec (~> 3.8)
|
124
126
|
rspec_junit_formatter (~> 0.4)
|
125
|
-
rubocop (~> 0.
|
126
|
-
rubocop-
|
127
|
+
rubocop (~> 0.75)
|
128
|
+
rubocop-performance (~> 1.5.0)
|
129
|
+
rubocop-rspec (~> 1.36)
|
127
130
|
simplecov
|
128
131
|
yavdb!
|
129
132
|
|
130
133
|
BUNDLED WITH
|
131
|
-
|
134
|
+
2.0.2
|
@@ -66,7 +66,7 @@ module YAVDB
|
|
66
66
|
page_vuln_urls = snykio
|
67
67
|
.css('table tbody tr td span a')
|
68
68
|
.map { |anchor| anchor.get('href') }
|
69
|
-
.map { |link| link if
|
69
|
+
.map { |link| link if %r{\/vuln\/.+}.match?(link) }.compact
|
70
70
|
|
71
71
|
next_urls = if page_vuln_urls.any?
|
72
72
|
next_url = snykio.css('a.pagination__next')
|
@@ -99,8 +99,9 @@ module YAVDB
|
|
99
99
|
affected_package = advisory_page.css('.custom-package-name').text
|
100
100
|
affected_package = advisory_page.css('.header__lede .breadcrumbs__list-item__link').text if affected_package.empty?
|
101
101
|
|
102
|
-
vulnerable_versions = advisory_page.css('.custom-affected-versions')
|
103
|
-
|
102
|
+
vulnerable_versions = (advisory_page.css('.custom-affected-versions') ||
|
103
|
+
advisory_page.css('.header__lede strong').drop(1).first).text.strip
|
104
|
+
vulnerable_versions = if vulnerable_versions.empty? || vulnerable_versions == 'ALL' || vulnerable_versions == '(,)'
|
104
105
|
['*']
|
105
106
|
elsif ['maven', 'nuget', 'pypi'].include?(package_manager)
|
106
107
|
[vulnerable_versions]
|
data/lib/yavdb/version.rb
CHANGED
data/yavdb.gemspec
CHANGED
@@ -32,8 +32,9 @@ Gem::Specification.new do |spec|
|
|
32
32
|
|
33
33
|
# Linters
|
34
34
|
spec.add_development_dependency 'dependency_spy'
|
35
|
-
spec.add_development_dependency 'rubocop', ['~> 0.
|
36
|
-
spec.add_development_dependency 'rubocop-
|
35
|
+
spec.add_development_dependency 'rubocop', ['~> 0.75']
|
36
|
+
spec.add_development_dependency 'rubocop-performance', ['~> 1.5.0']
|
37
|
+
spec.add_development_dependency 'rubocop-rspec', ['~> 1.36']
|
37
38
|
|
38
39
|
# Runtime
|
39
40
|
spec.add_runtime_dependency 'execjs', ['~> 2.7']
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: yavdb
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.5.
|
4
|
+
version: 0.5.4
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Rodrigo Fernandes
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2019-
|
11
|
+
date: 2019-11-17 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: codacy-coverage
|
@@ -100,28 +100,42 @@ dependencies:
|
|
100
100
|
requirements:
|
101
101
|
- - "~>"
|
102
102
|
- !ruby/object:Gem::Version
|
103
|
-
version: '0.
|
103
|
+
version: '0.75'
|
104
104
|
type: :development
|
105
105
|
prerelease: false
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
107
107
|
requirements:
|
108
108
|
- - "~>"
|
109
109
|
- !ruby/object:Gem::Version
|
110
|
-
version: '0.
|
110
|
+
version: '0.75'
|
111
|
+
- !ruby/object:Gem::Dependency
|
112
|
+
name: rubocop-performance
|
113
|
+
requirement: !ruby/object:Gem::Requirement
|
114
|
+
requirements:
|
115
|
+
- - "~>"
|
116
|
+
- !ruby/object:Gem::Version
|
117
|
+
version: 1.5.0
|
118
|
+
type: :development
|
119
|
+
prerelease: false
|
120
|
+
version_requirements: !ruby/object:Gem::Requirement
|
121
|
+
requirements:
|
122
|
+
- - "~>"
|
123
|
+
- !ruby/object:Gem::Version
|
124
|
+
version: 1.5.0
|
111
125
|
- !ruby/object:Gem::Dependency
|
112
126
|
name: rubocop-rspec
|
113
127
|
requirement: !ruby/object:Gem::Requirement
|
114
128
|
requirements:
|
115
129
|
- - "~>"
|
116
130
|
- !ruby/object:Gem::Version
|
117
|
-
version: '1.
|
131
|
+
version: '1.36'
|
118
132
|
type: :development
|
119
133
|
prerelease: false
|
120
134
|
version_requirements: !ruby/object:Gem::Requirement
|
121
135
|
requirements:
|
122
136
|
- - "~>"
|
123
137
|
- !ruby/object:Gem::Version
|
124
|
-
version: '1.
|
138
|
+
version: '1.36'
|
125
139
|
- !ruby/object:Gem::Dependency
|
126
140
|
name: execjs
|
127
141
|
requirement: !ruby/object:Gem::Requirement
|
@@ -251,6 +265,7 @@ files:
|
|
251
265
|
- ".gitignore"
|
252
266
|
- ".rspec"
|
253
267
|
- ".rubocop.yml"
|
268
|
+
- ".rubocop_todo.yml"
|
254
269
|
- ".ruby-version"
|
255
270
|
- CODE_OF_CONDUCT.md
|
256
271
|
- CONTRIBUTING.md
|