vile-bundler-audit

Audit your Gemfile for known vulernabilities and insecure sources.

Usage no npm install needed!

<script type="module">
  import vileBundlerAudit from 'https://cdn.skypack.dev/vile-bundler-audit';
</script>

README

vile-bundler-audit Circle CI score-badge coverage-badge dependency-badge

A Vile plugin for auditing your Gemfile for known vulnerabilities and insecure sources (via bundler-audit).

Requirements

Installation

Currently, you need to have bundler-audit installed manually.

Example:

npm i vile-bundler-audit
gem install bundler-audit

Usage

vile a -p bundler-audit

Config

bundler-audit:
  config:
    update_db: true # defaults to false
    ignore_advisories: [ ".." ]

Versioning

This project uses Semver.

Licensing

This project is licensed under the MPL-2.0 license.

Any contributions made to this project are made under the current license.

Contributions

Current list of Contributors.

Any contributions are welcome and appreciated!

All you need to do is submit a Pull Request.

  1. Please consider tests and code quality before submitting.
  2. Please try to keep commits clean, atomic and well explained (for others).

Issues

Current issue tracker is on GitHub.

Even if you are uncomfortable with code, an issue or question is welcome.

Code Of Conduct

By participating in this project you agree to our Code of Conduct.

Maintainers

Architecture

This project is currently written in Ruby and JavaScript.

  • bin houses any shell based scripts
  • src is es6+ syntax compiled with Babel
  • lib generated js library
  • lib_ruby ruby shim code

Developing

cd vile-bundler-audit
npm install
gem install rspec
npm run dev
npm test-all