Class: Bundler::Audit::CLI

Inherits:

Thor

• Object
• Thor
• Bundler::Audit::CLI

Defined in:

lib/bundler/audit/cli.rb

Instance Method Summary

• #check ⇒ Object
• #print_advisory(gem, advisory) ⇒ Object protected
• #print_warning(message) ⇒ Object protected
• #say(string = "", color = nil) ⇒ Object protected
• #version ⇒ Object

Instance Method Details

#check ⇒ Object

# File 'lib/bundler/audit/cli.rb', line 37

def check
  scanner    = Scanner.new
  vulnerable = false

  scanner.scan(:ignore => options.ignore) do |result|
    vulnerable = true

    case result
    when Scanner::InsecureSource
      print_warning "Insecure Source URI found: #{result.source}"
    when Scanner::UnpatchedGem
      print_advisory result.gem, result.advisory
    end
  end

  if vulnerable
    say "Unpatched versions found!", :red
    exit 1
  else
    say "No unpatched versions found", :green
  end
end

#print_advisory(gem, advisory) ⇒ Object (protected)

# File 'lib/bundler/audit/cli.rb', line 78

def print_advisory(gem, advisory)
  say "Name: ", :red
  say gem.name

  say "Version: ", :red
  say gem.version

  say "Advisory: ", :red
  say advisory.id

  say "Criticality: ", :red
  case advisory.criticality
  when :low    then say "Low"
  when :medium then say "Medium", :yellow
  when :high   then say "High", [:red, :bold]
  else              say "Unknown"
  end

  say "URL: ", :red
  say advisory.url

  if options.verbose?
    say "Description:", :red
    say

    print_wrapped advisory.description, :indent => 2
    say
  else

    say "Title: ", :red
    say advisory.title
  end

  unless advisory.patched_versions.empty?
    say "Solution: upgrade to ", :red
    say advisory.patched_versions.join(', ')
  else
    say "Solution: ", :red
    say "remove or disable this gem until a patch is available!", [:red, :bold]
  end

  say
end

#print_warning(message) ⇒ Object (protected)

# File 'lib/bundler/audit/cli.rb', line 74

def print_warning(message)
  say message, :yellow
end

#say(string = "", color = nil) ⇒ Object (protected)

# File 'lib/bundler/audit/cli.rb', line 69

def say(string="", color=nil)
  color = nil unless $stdout.tty?
  super(string, color)
end

#version ⇒ Object

# File 'lib/bundler/audit/cli.rb', line 61

def version
  database = Database.new

  puts "#{File.basename($0)} #{VERSION} (advisories: #{database.size})"
end