Skip to content

Commit

Permalink
Run bundler-audit on PRs (#23514)
Browse files Browse the repository at this point in the history
  • Loading branch information
@nschonni
nschonni committed Feb 18, 2023
1 parent b4cbfff commit de4b822
Show file tree
Hide file tree
Showing 3 changed files with 9 additions and 1 deletion.
3 changes: 3 additions & 0 deletions .bundler-audit.yml
View file
@@ -0,0 +1,3 @@
---
ignore:
- CVE-2015-9284 # Mitigation following https://github.com/omniauth/omniauth/wiki/Resolving-CVE-2015-9284#mitigating-in-rails-applications
2 changes: 1 addition & 1 deletion .codeclimate.yml
View file
Expand Up @@ -24,7 +24,7 @@ plugins:
brakeman:
enabled: true
bundler-audit:
enabled: true
enabled: false
eslint:
enabled: false
rubocop:
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/lint-ruby.yml
View file
Expand Up @@ -7,6 +7,7 @@ on:
- 'Gemfile*'
- '.rubocop*.yml'
- '.ruby-version'
- '.bundler-audit.yml'
- '**/*.rb'
- '**/*.rake'
- '.github/workflows/lint-ruby.yml'
Expand All @@ -16,6 +17,7 @@ on:
- 'Gemfile*'
- '.rubocop*.yml'
- '.ruby-version'
- '.bundler-audit.yml'
- '**/*.rb'
- '**/*.rake'
- '.github/workflows/lint-ruby.yml'
Expand All @@ -42,3 +44,6 @@ jobs:

- name: Run rubocop
run: bundle exec rubocop

- name: Run bundler-audit
run: bundle exec bundler-audit

0 comments on commit de4b822

Please sign in to comment.