-
bundler-advise can be configured, but bundler-patch does not surface a way to redirect where bundler-advise's checkout path is located.
-
## Description
There seems to be a problem with updating ruby-advisory-db.
## Steps To Reproduce
Run `bundle exec bundle-audit check --update`
## Expected Behavior
It should do what it …
-
https://github.com/rubymem/ruby-mem-advisory-db seems interesting, would adding it (maybe with an opt-in flag) be a good idea ?
-
If you visit:
http://www.ruby-doc.org/
You will see:
"There was 1 Ruby vulnerability reports in the last 14 days. 1 undetermined. Most recent: CVE-2013-1656. [See details](http://web.nvd.nist.gov/v…
-
Please check https://github.com/rubysec/ruby-advisory-db/blob/master/LICENSE.txt .
Determine and enable the detection of correct license expression for the above LICENSE.
-
Add an API for interacting with the database.
- Searching for advisories by CVE or gem.
- Testing if a `Gem::Version` is vulnerable.
- Downloading and updating a copy of the database.
-
**What happened**:
Grype is reporting a (very old) vulnerability in the `webrick` ruby gem despite running a version with the fix:
```
> docker run --rm -it -v /var/run/docker.sock:/var/run/docke…
-
I noticed that a significant fraction of the commit history of this project looks like automated changes on the part of the `rake sync_github_advisories` task. Yesterday, while the maintainers were de…
-
@knutsenm @jbirdjavi @dbenton9 @twinge @Omicron7
This morning, working on OneApp, I got:
```
$ bundle exec bundle audit check --update --ignore CVE-2015-9284
Updating ruby-advisory-db ...
Fr…
-
I tried a bundle_audit:update and got:
Updating ruby-advisory-db ...
From https://github.com/rubysec/ruby-advisory-db
* branch master -> FETCH_HEAD
Updating be85e28..614dea0
error…