| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: ruby3.3-rubygem-bundler-audit | Distribution: openSUSE Tumbleweed |
| Version: 0.9.2 | Vendor: openSUSE |
| Release: 1.2 | Build date: Mon Nov 4 17:22:27 2024 |
| Group: Unspecified | Build host: reproducible |
| Size: 176101 | Source RPM: rubygem-bundler-audit-0.9.2-1.2.src.rpm |
| Packager: http://bugs.opensuse.org | |
| Url: https://github.com/rubysec/bundler-audit#readme | |
| Summary: Patch-level verification for Bundler | |
bundler-audit provides patch-level verification for Bundled apps.
GPL-3.0-or-later
* Mon Nov 04 2024 Dan Čermák <dan.cermak@posteo.net>
- New upstream release 0.9.2, see bundled ChangeLog.md
* Thu Aug 04 2022 Stephan Kulow <coolo@suse.com>
updated to version 0.9.1
see installed ChangeLog.md
[#]## 0.9.1 / 2022-05-19
[#]### CLI
* Improve the readability of the suggested gem versions to upgrade to
(pull #331).
[#]### Rake Task
* Fixed a regression introduced in 0.9.0 where the `bundler:audit` rake task
was not exiting with an error status code if vulnerabilities were found.
Now when the `bundler-audit` command fails, the rake task will also exit with
the `bundler-audit` command's error code.
* If the `bundler-audit` command could not be found for some reason raise the
{Bundler::Audit::Task::CommandNotFound} exception.
* Tue Jan 25 2022 Stephan Kulow <coolo@suse.com>
updated to version 0.9.0.1
see installed ChangeLog.md
[#]## 0.9.0.1 / 2021-08-31
* Add a workaround for Psych < 3.1.0 to support running on Ruby < 2.6.
(issue #319)
[#]## 0.9.0 / 2021-08-31
* Load advisory metadata using `YAML.safe_load`. (issue #302)
* Explicitly permit the `Date` class for Psych >= 4.0.0 and Ruby >= 3.1.0.
* Added {Bundler::Audit::Advisory#to_h}. (pull #310)
* Added {Bundler::Audit::Database#commit_id}.
[#]### CLI
* Added the `--config` option. (pull #306)
* Added the `junit` output format (ex: `--format junit`). (pull #314)
* Add missing output for CVSSv3 criticality information. (pull #302)
* Include criticality information in the JSON output as well. (pull #310)
* `bundle-audit stats` now prints the commit ID of the ruby-advisory-db.
* Fixed a deprecation warning from Thor. (issue #317)
[#]### Rake Task
* Add the `bundle:audit:update` task for updating the [ruby-advisory-db].
(pull #296)
* Aliased `bundle:audit` to `bundle:audit:check`.
* Aliased `bundler:audit:*` to `bundle:audit:*`.
* Rake tasks now execute `bundle-audit` command as a subprocess to ensure
isolation.
* Thu Jun 24 2021 Stephan Kulow <coolo@suse.com>
updated to version 0.8.0
see installed ChangeLog.md
[#]## 0.8.0 / 2021-03-10
* No longer vendor [ruby-advisory-db].
* Added {Bundler::Audit::Configuration}.
* Supports loading YAML configuration data from a `.bundler-audit.yml` file.
* Added {Bundler::Audit::Results}.
* Added {Bundler::Audit::Report}.
* Added {Bundler::Audit::CLI::Formats}.
* Added {Bundler::Audit::CLI::Formats::Text}.
* Added {Bundler::Audit::CLI::Formats::JSON}.
* Added {Bundler::Audit::Database::DEFAULT_PATH}.
* Added {Bundler::Audit::Database.exists?}.
* Added {Bundler::Audit::Database#git?}.
* Added {Bundler::Audit::Database#update!}.
* Will raise a {Bundler::Audit::Database::UpdateFailed UpdateFailed}
exception, if the `git pull` command fails.
* Added {Bundler::Audit::Database#last_updated_at}.
* Added {Bundler::Audit::Scanner#report}.
* {Bundler::Audit::Database::USER_PATH} is now `Gem.user_home` aware.
* `Gem.user_home` will try to infer `HOME`, even if it is not set.
* {Bundler::Audit::Database#download} will now raise a
{Bundler::Audit::Database::DownloadFailed DownloadFailed} exception, if the
`git clone` command fails.
* {Bundler::Audit::Scanner#initialize}:
* Now accepts an additional `database` and `config_dot_file` arguments.
* Will now raise a `Bundler::GemfileLockNotFound` exception,
if the given `Gemfile.lock` file cannot be found.
* {Bundler::Audit::Scanner#scan_sources} will now ignore any source with a
`127.0.0.0/8` or `::1/128` IP address.
* {Bundler::Audit::Scanner#scan_specs} will ignore any advisories listed in
{Bundler::Audit::Configuration#ignore}, which is loaded from the
`.bundler-audit.yml` file.
* Deprecated {Bundler::Audit::Database.update!} in favor of
{Bundler::Audit::Database#update! #update!}.
* Removed `Bundler::Audit::Database::VENDORED_PATH`.
* Removed `Bundler::Audit::Database::VENDORED_TIMESTAMP`.
[#]### CLI
* Require [thor] ~> 1.0.
* Added `bundler-audit stats`.
* Added `bundler-audit download`.
* `bundler-audit check`:
* Now accepts a optional `DIR` argument for the project directory.
* `bundler-audit check` will now print an explicit error message and exit,
if the given `DIR` does not exist.
* Will now auto-download [ruby-advisory-db] to ensure the latest advisory
information is used on first run.
* Now supports a `--database` option for specifying a path
to an alternative [ruby-advisory-db] copy.
* Now supports a `--gemfile-lock` option for specifying a
custom `Gemfile.lock` file within the project directory.
* Now supports a `--format` option for specifying the
desired format. `text` and `json` are supported, but other custom formats
can be loaded. See {Bundler::Audit::CLI::Formats}.
* Now supports a `--output` option for writing the report output to a file.
* Prints both CVE and GHSA IDs.
* Print all error messages to stderr.
* No longer print number of advisories in `bundler-audit version`.
* Fri Sep 25 2020 Stephan Kulow <coolo@suse.com>
updated to version 0.7.0.1
see installed ChangeLog.md
[#]## 0.7.0.1 / 2020-06-12
* Forgot to populate `data/ruby-advisory-db`.
[#]## 0.7.0 / 2020-06-12
* Require [thor] >= 0.18, < 2.
* Added {Bundler::Audit::Advisory#ghsa} (@rschultheis).
* Added {Bundler::Audit::Advisory#cvss_v3} (@ahamlin-nr).
* Added {Bundler::Audit::Advisory#identifiers} (@rschultheis).
* Updated {Bundler::Audit::Advisory#criticality} ranges (@reedloden).
* Avoid rebasing the ruby-advisory-db when updating (@nicknovitski).
* Fixed issue with Bundler 2.x where source URIs are no longer parsed as
`URI::HTTP` objects, but as `Bundler::URI::HTTP` objects. (@milgner)
* Sat Mar 02 2019 Stephan Kulow <coolo@suse.com>
- updated to version 0.6.1
see installed ChangeLog.md
[#]## 0.6.1 / 2019-01-17
* Require bundler `>= 1.2.0, < 3` to support [bundler] 2.0.
* Thu Aug 03 2017 coolo@suse.com
- updated to version 0.6.0
see installed ChangeLog.md
* Mon Feb 29 2016 coolo@suse.com
- updated to version 0.5.0
see installed ChangeLog.md
[#]## 0.5.0 / 2015-02-28
* Added {Bundler::Audit::Task}.
* Added {Bundler::Audit::Advisory#date}.
* Added {Bundler::Audit::Advisory#cve_id}.
* Added {Bundler::Audit::Advisory#osvdb_id}.
* Allow insecure gem sources (`http://` and `git://`), if they are hosted on a
private network.
[#]### CLI
* Added the `--update` option to `bundle-audit check`.
* `bundle-audit update` now returns a non-zero exit status on error.
* `bundle-audit update` only updates `~/.local/share/ruby-advisory-db`, if it is a git
repository.
* Thu Aug 20 2015 astieger@suse.com
- update to 0.4.0:
* Require ruby >= 1.9.3 due to i18n gem deprecating < 1.9.3.
* Added {Bundler::Audit::Advisory#osvdb}.
* Resolve the IP addresses of gem sources and ignore intranet
gem sources.
* Use ISO8601 date format when querying the git timestamp of
ruby-advisory-db.
* Print the CVE or OSVDB id.
* No longer print "Unpatched versions found!" when an insecure
gem source is detected.
* Mon Jun 29 2015 coolo@suse.com
- adapt to proper gem packaging
/etc/alternatives/bundle-audit /etc/alternatives/bundle-audit-0.9.2 /etc/alternatives/bundle-audit.ruby3.3 /etc/alternatives/bundler-audit /etc/alternatives/bundler-audit-0.9.2 /etc/alternatives/bundler-audit.ruby3.3 /usr/bin/bundle-audit /usr/bin/bundle-audit-0.9.2 /usr/bin/bundle-audit.ruby3.3 /usr/bin/bundle-audit.ruby3.3-0.9.2 /usr/bin/bundler-audit /usr/bin/bundler-audit-0.9.2 /usr/bin/bundler-audit.ruby3.3 /usr/bin/bundler-audit.ruby3.3-0.9.2 /usr/lib64/ruby/gems/3.3.0/build_info /usr/lib64/ruby/gems/3.3.0/cache/bundler-audit-0.9.2.gem /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2 /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.document /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.github /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.github/FUNDING.yml /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.github/ISSUE_TEMPLATE /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.github/ISSUE_TEMPLATE/bug-report.md /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.github/ISSUE_TEMPLATE/feature-request.md /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.github/workflows /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.github/workflows/ruby.yml /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.gitignore /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.rspec /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.rubocop.yml /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/.yardopts /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/COPYING.txt /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/ChangeLog.md /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/Gemfile /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/README.md /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/Rakefile /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/bin /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/bin/bundle-audit /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/bin/bundler-audit /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/bundler-audit.gemspec /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/gemspec.yml /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/advisory.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/formats /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/formats.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/formats/json.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/formats/junit.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/formats/text.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/thor_ext /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/thor_ext/shell /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/thor_ext/shell/basic /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/cli/thor_ext/shell/basic/say_error.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/configuration.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/database.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/report.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/results /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/results.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/results/insecure_source.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/results/result.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/results/unpatched_gem.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/scanner.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/task.rb /usr/lib64/ruby/gems/3.3.0/gems/bundler-audit-0.9.2/lib/bundler/audit/version.rb /usr/lib64/ruby/gems/3.3.0/specifications/bundler-audit-0.9.2.gemspec /usr/share/doc/packages/ruby3.3-rubygem-bundler-audit /usr/share/doc/packages/ruby3.3-rubygem-bundler-audit/COPYING.txt /usr/share/doc/packages/ruby3.3-rubygem-bundler-audit/ChangeLog.md /usr/share/doc/packages/ruby3.3-rubygem-bundler-audit/README.md
Generated by rpm2html 1.8.1
Fabrice Bellet, Fri Jan 24 23:52:04 2025