Licensed under the GPLv3 license.

Provides patch-level published-vulnerability verification for Bundler.

  • Checks for vulnerable versions of gems in Gemfile.lock.
  • Checks for insecure gem sources (http://).
  • Allows ignoring certain advisories that have been manually worked around.
  • Prints advisory information.
  • Does not require a network connection.

Changes Accepted Upstream


Copyright © 2022 - Jon Frisby - Powered by Octopress