bundler-audit



Licensed under the GPLv3 license.

Provides patch-level published-vulnerability verification for Bundler.

  • Checks for vulnerable versions of gems in Gemfile.lock.
  • Checks for insecure gem sources (http://).
  • Allows ignoring certain advisories that have been manually worked around.
  • Prints advisory information.
  • Does not require a network connection.

Changes Accepted Upstream

Comments

Copyright © 2017 - Jon Frisby - Powered by Octopress