diff --git a/.ruby-version b/.ruby-version index 57cf282..860487c 100644 --- a/.ruby-version +++ b/.ruby-version @@ -1 +1 @@ -2.6.5 +2.7.1 diff --git a/.travis.yml b/.travis.yml index 1eb4194..7a83541 100644 --- a/.travis.yml +++ b/.travis.yml @@ -1,9 +1,9 @@ language: ruby cache: bundler rvm: - - 2.4.9 - - 2.5.7 - - 2.6.5 + - 2.5.8 + - 2.6.6 + - 2.7.1 branches: only: - master diff --git a/CHANGELOG.md b/CHANGELOG.md index 7b9a967..3f09b6d 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -5,25 +5,28 @@ This project adheres to [Semantic Versioning](http://semver.org/). ## [Unreleased] +## [1.3.0] - 2020-07-01 + ### Added -* Added 2.5 and 2.6 to the Travis matrix +* Added Ruby 2.5, 2.6, and 2.7 to the Travis matrix +* Added the ability to ignore an advisory by its GHSA identifier ### Changed -* Bumped the Ruby version for development to 2.6.5 -* Bumped the Travis matrix to 2.4.9 -* Bumped the Bundler version for development to 1.17 or 2.0 -* Bumped the Pry version for development to 0.12 +* Bumped the bundler-audit version to 0.7 +* Bumped the Ruby version for development to 2.7.1 +* Bumped the Pry version for development to 0.13 * Bumped the Rake version for development to 13 * Bumped the Rspec version for development to 3.9 -* Bumped the RuboCop version for development to 0.76 +* Bumped the RuboCop version for development to 0.86 * Bumped the Timecop verison for development to 0.9 * RuboCop fixes ### Removed -* Removed 2.1, 2.2, and 2.3 from the Travis matrix +* Removed Ruby 2.1 through 2.4 from the Travis matrix +* Removed the explicit Bundler dependency for development, since it is now included with RubyGems ## [1.2.0] - 2017-09-21 @@ -63,7 +66,8 @@ This project adheres to [Semantic Versioning](http://semver.org/). * Initial Release -[Unreleased]: https://github.com/civisanalytics/ruby_audit/compare/v1.2.0...HEAD +[Unreleased]: https://github.com/civisanalytics/ruby_audit/compare/v1.3.0...HEAD +[1.3.0]: https://github.com/civisanalytics/ruby_audit/compare/v1.2.0...v1.3.0 [1.2.0]: https://github.com/civisanalytics/ruby_audit/compare/v1.1.0...v1.2.0 [1.1.0]: https://github.com/civisanalytics/ruby_audit/compare/v1.0.1...v1.1.0 [1.0.1]: https://github.com/civisanalytics/ruby_audit/compare/v1.0.0...v1.0.1 diff --git a/lib/ruby_audit/scanner.rb b/lib/ruby_audit/scanner.rb index 02a6fb5..c540308 100644 --- a/lib/ruby_audit/scanner.rb +++ b/lib/ruby_audit/scanner.rb @@ -59,9 +59,7 @@ def scan_inner(specs, type, options = {}) specs.each do |spec| @database.send("check_#{type}".to_sym, spec) do |advisory| - unless ignore.intersect?(advisory.identifiers.to_set) - yield UnpatchedGem.new(spec, advisory) - end + yield UnpatchedGem.new(spec, advisory) unless ignore.intersect?(advisory.identifiers.to_set) end end end diff --git a/lib/ruby_audit/version.rb b/lib/ruby_audit/version.rb index 09a17a8..acfa1ff 100644 --- a/lib/ruby_audit/version.rb +++ b/lib/ruby_audit/version.rb @@ -1,3 +1,3 @@ module RubyAudit - VERSION = '1.2.0'.freeze + VERSION = '1.3.0'.freeze end diff --git a/ruby_audit.gemspec b/ruby_audit.gemspec index bb94e87..b850228 100644 --- a/ruby_audit.gemspec +++ b/ruby_audit.gemspec @@ -23,10 +23,9 @@ Gem::Specification.new do |spec| spec.require_paths = ['lib'] spec.add_dependency 'bundler-audit', '~> 0.7.0' - spec.add_development_dependency 'bundler', '>= 1.17', '< 2.1' - spec.add_development_dependency 'pry', '~> 0.12.2' + spec.add_development_dependency 'pry', '~> 0.13.0' spec.add_development_dependency 'rake', '~> 13.0' spec.add_development_dependency 'rspec', '~> 3.9' - spec.add_development_dependency 'rubocop', '~> 0.76.0' + spec.add_development_dependency 'rubocop', '~> 0.86.0' spec.add_development_dependency 'timecop', '~> 0.9.1' end