All Versions
16
Latest Version
Avg Release Cycle
226 days
Latest Release
1090 days ago

Changelog History
Page 2

  • v0.3.1 Changes

    April 20, 2014
    • โž• Added thor ~> 0.18 as a dependency.
    • No longer rely on the vendored version of thor within bundler.
    • โšก๏ธ Store the timestamp of when data/ruby-advisory-db was last updated in data/ruby-advisory-db.ts.
    • ๐Ÿ’Ž Use data/ruby-advisory-db.ts instead of the creation time of the dataruby-advisory-db directory, which is always the install time of the rubygem.

  • v0.3.0 Changes

    November 01, 2013
    • โž• Added {Bundler::Audit::Database.update!} which uses git to download [ruby-advisory-db] to ~/.local/share/ruby-advisory-db.
    • {Bundler::Audit::Database.path} now returns the path to either ~/.local/share/ruby-advisory-db or the vendored copy, depending on which is more recent.
    CLI
    • โž• Added the bundler-audit update sub-command.

  • v0.2.0 Changes

    August 27, 2013
    • ๐Ÿ’Ž Require RubyGems >= 1.8.0. Prior versions of RubyGems could not correctly parse approximate version requirements (~> 1.2.3).
    • โšก๏ธ Updated the [ruby-advisory-db].
    • โž• Added {Bundler::Audit::Advisory#unaffected_versions}.
    • โž• Added {Bundler::Audit::Advisory#unaffected?}.
    • โž• Added {Bundler::Audit::Advisory#patched?}.
    • ๐Ÿ“‡ Renamed Advisory#cve to {Bundler::Audit::Advisory#id}.

  • v0.1.2 Changes

    February 18, 2013
    • Require [bundler] ~> 1.2.
    • ๐Ÿ’Ž Vendor a full copy of the [ruby-advisory-db].
    • โž• Added {Bundler::Audit::Advisory#path} for debugging purposes.
    • โž• Added {Bundler::Audit::Advisory#to_s} for debugging purposes.
    CLI
    • ๐Ÿ”’ Simply parse the Gemfile.lock instead of loading the bundle (@grosser).
    • Exit with non-zero status on failure (@grosser).

  • v0.1.1 Changes

    February 12, 2013
    • ๐Ÿ›  Fixed a Ruby 1.8 syntax error.

  • v0.1.0 Changes

    February 12, 2013
    • ๐ŸŽ‰ Initial release:
      • Checks for vulnerable versions of gems in Gemfile.lock.
      • Prints advisory information.
      • Does not require a network connection.
    Advisories

    ๐Ÿ’Ž [ruby-advisory-db]: https://github.com/rubysec/ruby-advisory-db#readme