Created
July 1, 2020 14:52
-
-
Save agrberg/eda6133d7147343b63b0814002294571 to your computer and use it in GitHub Desktop.
This simple bash script ensures that bundle-audit is updated and called before a push to Heroku. The goal is to ensure that a developer deploying the site is 100% aware of any vulerable gems and _must_ intentionally use `--no-verify` if they do not want to update gems.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env sh | |
| # This simple bash script ensures that bundle-audit is updated and called before a push to Heroku | |
| # The goal is to ensure that a developer deploying the site is 100% aware of any vulerable gems | |
| # and _must_ intentionally use `--no-verify` if they do not want to update gems. | |
| if [ "$1" = "heroku" ]; then | |
| bundle exec bundle-audit check --update | |
| fi |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment