diff options
| author | Thom May <thom@may.lt> | 2016-01-21 12:34:46 +0000 |
|---|---|---|
| committer | Thom May <thom@may.lt> | 2016-01-21 12:34:46 +0000 |
| commit | 1e746d158f00859933bf3cd0e2bedc0768c1e727 (patch) | |
| tree | c6a38d1225f986ea5b3638c5ebb2f1265121b159 | |
| parent | b2287acca8df58079205979ab2ba956d0e281fe5 (diff) | |
| parent | 0b1ca6e6be2676b83a402aae39b27edaf9c4cc13 (diff) | |
| download | chef-1e746d158f00859933bf3cd0e2bedc0768c1e727.tar.gz | |
Merge pull request #4371 from chef/tm/bundle_audit
Ensure gem dependencies are secure
| -rw-r--r-- | .travis.yml | 1 | ||||
| -rw-r--r-- | Gemfile | 4 |
2 files changed, 4 insertions, 1 deletions
diff --git a/.travis.yml b/.travis.yml index a4d00b79a7..976debaace 100644 --- a/.travis.yml +++ b/.travis.yml @@ -20,6 +20,7 @@ echo '--color\n-fp' > .rspec; sudo sed -i -e 's/^Defaults\tsecure_path.*$//' /etc/sudoers; sudo -E $(which bundle) exec rake spec; bundle exec rake style; +bundle exec bundle-audit check --update; " env: @@ -28,10 +28,12 @@ group(:development, :test) do # for testing new chefstyle rules # gem 'chefstyle', github: 'chef/chefstyle' - gem "chefstyle", github: "chef/chefstyle", branch: "master" + gem "chefstyle", git: "https://github.com/chef/chefstyle.git", branch: "master" gem "ruby-shadow", platforms: :ruby unless RUBY_PLATFORM.downcase.match(/(aix|cygwin)/) + gem "bundler-audit", git: "https://github.com/rubysec/bundler-audit.git", ref: "4e32fca" + # For external tests # gem 'chef-zero', github: 'chef/chef-zero' # gem 'cheffish', github: 'chef/cheffish' |