This repository is private.
All pages are served over SSL and all pushing and pulling is done over SSH.
No one may fork, clone, or view it unless they are added as a member.
Every repository with this icon (
) is private.
Every repository with this icon (
) is private.
This repository is public.
Anyone may fork, clone, or view it.
Every repository with this icon () is public.
Every repository with this icon (
) is public.
safegem /
| name | age | message | |
|---|---|---|---|
 |
.gitignore | Tue Feb 10 20:28:43 -0800 2009 | |
| |
README | Sun Mar 29 20:46:09 -0700 2009 | |
| |
Rakefile | Wed Apr 01 14:45:04 -0700 2009 | |
| |
VERSION.yml | Wed Apr 08 17:36:15 -0700 2009 | |
 |
bin/ | Wed Apr 08 17:35:40 -0700 2009 | |
| |
lib/ | Sat Mar 28 23:35:38 -0700 2009 | |
| |
safegem.gemspec | Wed Apr 08 17:36:18 -0700 2009 | |
| |
test/ | Sat Mar 28 18:09:45 -0700 2009 |
README
SafeGem: GitHub's Safe Gem Eval Web Service ------------------------------------------- Help make GitHub's gem build process more secure and robust! SafeGem is a Sinatra app that safely converts Ruby gemspecs into YAML gemspecs. It works as follows: 1) Receives a request with the repo location and the ruby gemspec 2) Returns immediately and schedules the following via EM.defer: 1) Makes a shallow clone of the repo and chdir's to that repo 2) Evals the spec in a separate thread with a higher $SAFE level 3) Converts spec to YAML 4) Posts the YAML to the specified callback Goals ----- * Lower the $SAFE level to allow methods like Dir.glob, but without compromising security.
