lib/danger/commands/init.rb in danger-4.2.2 vs lib/danger/commands/init.rb in danger-4.3.0
- old
+ new
@@ -175,11 +175,11 @@
ui.wait_for_return
end
def uses_travis
danger = "bundle exec danger".yellow
- config = YAML.load(File.read(".travis.yml"))
+ config = YAML.load(File.read(".travis.yml")) # rubocop:disable Security/YAMLLoad
if config.kind_of?(Hash) && config["script"]
ui.say "Add " + "- ".yellow + danger + " as a new step in the " + "script".yellow + " section of your .travis.yml file."
else
ui.say "I'd recommend adding " + "before_script: ".yellow + danger + " to the script section of your .travis.yml file."
end
@@ -188,10 +188,10 @@
ui.say "You shouldn't use " + "after_success, after_failure, after_script".red + " as they cannot fail your builds."
end
def uses_circle
danger = "- bundle exec danger".yellow
- config = YAML.load(File.read("circle.yml"))
+ config = YAML.load(File.read("circle.yml")) # rubocop:disable Security/YAMLLoad
if config.kind_of?(Hash) && config["test"]
if config["test"]["post"]
ui.say "Add " + danger + " as a new step in the " + "test:post:".yellow + " section of your circle.yml file."
else