use the term `update` instead of `upgrade` to match bundle command - Githubissues

rubysec / bundler-audit

Patch-level verification for Bundler

GNU General Public License v3.0

2.69k stars 228 forks source link

use the term `update` instead of `upgrade` to match bundle command #394

Closed olleicua closed 3 months ago

olleicua commented 3 months ago

Description

When I run bundler-audit and it finds a vulnerability it gives output like:

Name: some-gem
Version: x.x.1
CVE: CVE-XXX
Criticality: Unknown
URL: https://some.url
Title: Vulnerability Title
Solution: upgrade to '>= x.x.2'

Given that I can't always remember whether the command is bundle update or bundle upgrade (and it turns out its the former) it would be nice if this was changed to:

Name: some-gem
Version: x.x.1
CVE: CVE-XXX
Criticality: Unknown
URL: https://some.url
Title: Vulnerability Title
Solution: update to '>= x.x.2'

olleicua commented 3 months ago

Thanks!