Sha256: 5032cb7565db2dad121a3960a555f96eab9d437d6f42d287b01e75a398e26cc7
Contents?: true
Size: 1.11 KB
Versions: 6
Compression:
Stored size: 1.11 KB
Contents
# frozen_string_literal: true
require "bundler"
require "bundler/audit"
require "bundler/audit/scanner"
require "set"
module BundleUpdateInteractive
class Report
attr_reader :withheld_gems, :updatable_gems
def initialize(current_lockfile:, withheld_gems:, updatable_gems:)
@current_lockfile = current_lockfile
@withheld_gems = withheld_gems.freeze
@updatable_gems = updatable_gems.freeze
end
def empty?
withheld_gems.empty? && updatable_gems.empty?
end
def all_gems
@all_gems ||= withheld_gems.merge(updatable_gems)
end
def scan_for_vulnerabilities!
return false if all_gems.empty?
Bundler::Audit::Database.update!(quiet: true)
audit_report = Bundler::Audit::Scanner.new.report
vulnerable_gem_names = Set.new(audit_report.vulnerable_gems.map(&:name))
all_gems.each do |name, gem|
exact_deps = current_lockfile && current_lockfile[name].exact_dependencies
gem.vulnerable = (vulnerable_gem_names & [name, *Array(exact_deps)]).any?
end
true
end
private
attr_reader :current_lockfile
end
end
Version data entries
6 entries across 6 versions & 1 rubygems