Sha256: 1414cf1584efec551d7b34ecd443e8cd33217a95b909426da608fe2a620b7e77
Contents?: true
Size: 1.92 KB
Versions: 1
Compression:
Stored size: 1.92 KB
Contents
module RubyAudit
class CLI < Bundler::Audit::CLI
desc 'check', 'Checks Ruby and RubyGems for insecure versions'
method_option :ignore, type: :array, aliases: '-i'
method_option :no_update, type: :boolean, aliases: '-n'
method_option :verbose, type: :boolean, aliases: '-v'
def check
update unless options[:no_update]
check_for_stale_database
scanner = Scanner.new
vulnerable = false
scanner.scan(ignore: options[:ignore]) do |result|
vulnerable = true
print_advisory result.gem, result.advisory
end
if vulnerable
say 'Vulnerabilities found!', :red
exit 1
else
say 'No vulnerabilities found', :green
end
end
# Copied from bundler-audit master. Not present in 0.4.0.
desc 'update', 'Updates the ruby-advisory-db'
def update
say 'Updating ruby-advisory-db ...'
case Database.update!
when true
say 'Updated ruby-advisory-db', :green
when false
say 'Failed updating ruby-advisory-db!', :red
exit 1
when nil
say 'Skipping update', :yellow
end
puts "ruby-advisory-db: #{Database.new.size} advisories"
end
desc 'version', 'Prints the ruby-audit version'
def version
database = Database.new
puts "#{File.basename($PROGRAM_NAME)} #{VERSION} "\
"(advisories: #{database.size})"
end
private
def check_for_stale_database
database = Database.new
if database.size == 89
# bundler-audit 0.4.0 comes bundled with an old verison of
# ruby-advisory-db that has 89 advisories and NO advisories for Ruby
# or RubyGems. If #size == 89, the database has never been updated.
say 'The database must be updated before using RubyAudit', :red
exit 1
elsif database.stale
say 'The database has not been updated in over 7 days', :yellow
end
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| ruby_audit-1.0.0 | lib/ruby_audit/cli.rb |