Xin LI
82d92b51c5
bundler-audit provides patch-level verification for Bundled Ruby applications by auditing Gemfile.lock against a database of known vulnerabilities. Also add rubygem-bundle-audit as a wrapper gem that depends on rubygem-bundler-audit, for developers who reference "bundle-audit" instead of "bundler-audit".
13 lines
661 B
Plaintext
13 lines
661 B
Plaintext
bundle-audit is a simple wrapper gem for bundler-audit. It was created to
|
|
provide an easy way to include bundler-audit functionality for developers
|
|
who might mistakenly require "bundle-audit" instead of "bundler-audit".
|
|
|
|
This gem essentially just requires bundler-audit, which is the actual
|
|
security auditing tool for Ruby applications. It provides patch-level
|
|
verification for bundled Ruby applications by checking for known
|
|
vulnerabilities in gem dependencies.
|
|
|
|
The wrapper serves as a convenience for developers and ensures that
|
|
both "bundle-audit" and "bundler-audit" references work correctly
|
|
in Ruby applications that need security auditing capabilities.
|