Class: Dependabot::SecurityAdvisory

Inherits:

Object

Object
Dependabot::SecurityAdvisory

show all

Defined in:: lib/dependabot/security_advisory.rb

Instance Attribute Summary collapse

#package_manager ⇒ Object readonly

Returns the value of attribute package_manager.
#safe_versions ⇒ Object readonly

Returns the value of attribute safe_versions.
#vulnerable_versions ⇒ Object readonly

Returns the value of attribute vulnerable_versions.

Instance Method Summary collapse

#initialize(vulnerable_versions: [], safe_versions: [], package_manager:) ⇒ SecurityAdvisory constructor

A new instance of SecurityAdvisory.
#vulnerable?(version) ⇒ Boolean

Constructor Details

#initialize(vulnerable_versions: [], safe_versions: [], package_manager:) ⇒ `SecurityAdvisory`

# File 'lib/dependabot/security_advisory.rb', line 9

def initialize(vulnerable_versions: [], safe_versions: [], package_manager:)
  @vulnerable_versions = vulnerable_versions || []
  @safe_versions = safe_versions || []
  @package_manager = package_manager

  convert_string_version_requirements
  check_version_requirements
end

Instance Attribute Details

#package_manager ⇒ `Object` (readonly)

Returns the value of attribute package_manager.



7
8
9

# File 'lib/dependabot/security_advisory.rb', line 7

def package_manager
  @package_manager
end

#safe_versions ⇒ `Object` (readonly)

Returns the value of attribute safe_versions.



7
8
9

# File 'lib/dependabot/security_advisory.rb', line 7

def safe_versions
  @safe_versions
end

#vulnerable_versions ⇒ `Object` (readonly)

Returns the value of attribute vulnerable_versions.



7
8
9

# File 'lib/dependabot/security_advisory.rb', line 7

def vulnerable_versions
  @vulnerable_versions
end

Instance Method Details

#vulnerable?(version) ⇒ `Boolean`

# File 'lib/dependabot/security_advisory.rb', line 18

def vulnerable?(version)
  unless version.is_a?(version_class)
    raise ArgumentError, "must be a #{version_class}"
  end

  in_safe_range =
    safe_versions.
    any? { |r| r.satisfied_by?(version_class.new(version)) }

  # If version is known safe for this advisory, it's not vulnerable
  return false if in_safe_range

  in_vulnerable_range =
    vulnerable_versions.
    any? { |r| r.satisfied_by?(version_class.new(version)) }

  # If in the vulnerable range and not known safe, it's vulnerable
  return true if in_vulnerable_range

  # If a vulnerable range present but not met, it's not vulnerable
  return false if vulnerable_versions.any?

  # Finally, if no vulnerable range provided, but a safe range provided,
  # and this versions isn't included (checked earler), it's vulnerable
  safe_versions.any?
end

Class: Dependabot::SecurityAdvisory

Instance Attribute Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(vulnerable_versions: [], safe_versions: [], package_manager:) ⇒ SecurityAdvisory

Instance Attribute Details

#package_manager ⇒ Object (readonly)

#safe_versions ⇒ Object (readonly)

#vulnerable_versions ⇒ Object (readonly)

Instance Method Details

#vulnerable?(version) ⇒ Boolean

#initialize(vulnerable_versions: [], safe_versions: [], package_manager:) ⇒ `SecurityAdvisory`

#package_manager ⇒ `Object` (readonly)

#safe_versions ⇒ `Object` (readonly)

#vulnerable_versions ⇒ `Object` (readonly)

#vulnerable?(version) ⇒ `Boolean`