bradleybuda · December 14, 2015 11:28
diff --git a/Hello bundler_signature_check b/Hello bundler_signature_check
 $ gem cert --add <(curl -Ls https://gist.github.com/bradleybuda/5078798/raw/024ae8ebc085ef009dd0a3ce8c5fa433c5bcb1f1/brad-meldium-public.pem)
 Added '/CN=brad/DC=meldium/DC=com'

 # Ironically(?) bundler itself isn't signed
 $ gem install bundler --version=1.3.1 -P MediumSecurity
 Successfully installed bundler-1.3.1
 1 gem installed

 # But this snazzy new gem is!
 $ gem install bundler_signature_check -P HighSecurity
 Successfully installed bundler_signature_check-0.1.337
 1 gem installed

 $ cd ~/src/my-rails-app
 $ bundler_signature_check | less
 MediumSecurity:
  rake-10.0.3: Unsigned gem
  ace-rails-ap-2.0.0: Unsigned gem
  i18n-0.6.1: Unsigned gem
  ...

 LowSecurity:
  multi_json-1.6.1: Couldn't verify data signature: Untrusted Signing Chain Root: cert = '/CN=sferik/DC=gmail/DC=com', error = 'path "/Users/brad/.gem/trust/cert-f0d28c2182430599ebb06b92b03b7f32b98891e7.pem" does not exist'
  mime-types-1.21: Couldn't verify data signature: Untrusted Signing Chain Root: cert = '/CN=austin/DC=rubyforge/DC=org', error = 'path "/Users/brad/.gem/trust/cert-fce04dea165fb7d6b599e8cd43ffdfff2da63b15.pem" does not exist'
  ...

 Unknown:
  guard-minitest-1.0.0.alpha: Gem missing from cache
  pry-0.9.10: Gem missing from cache
  ...
	$ gem cert --add <(curl -Ls https://gist.github.com/bradleybuda/5078798/raw/024ae8ebc085ef009dd0a3ce8c5fa433c5bcb1f1/brad-meldium-public.pem)
	Added '/CN=brad/DC=meldium/DC=com'

	# Ironically(?) bundler itself isn't signed
	$ gem install bundler --version=1.3.1 -P MediumSecurity
	Successfully installed bundler-1.3.1
	1 gem installed

	# But this snazzy new gem is!
	$ gem install bundler_signature_check -P HighSecurity
	Successfully installed bundler_signature_check-0.1.337
	1 gem installed

	$ cd ~/src/my-rails-app
	$ bundler_signature_check \| less
	MediumSecurity:
	rake-10.0.3: Unsigned gem
	ace-rails-ap-2.0.0: Unsigned gem
	i18n-0.6.1: Unsigned gem
	...

	LowSecurity:
	multi_json-1.6.1: Couldn't verify data signature: Untrusted Signing Chain Root: cert = '/CN=sferik/DC=gmail/DC=com', error = 'path "/Users/brad/.gem/trust/cert-f0d28c2182430599ebb06b92b03b7f32b98891e7.pem" does not exist'
	mime-types-1.21: Couldn't verify data signature: Untrusted Signing Chain Root: cert = '/CN=austin/DC=rubyforge/DC=org', error = 'path "/Users/brad/.gem/trust/cert-fce04dea165fb7d6b599e8cd43ffdfff2da63b15.pem" does not exist'
	...

	Unknown:
	guard-minitest-1.0.0.alpha: Gem missing from cache
	pry-0.9.10: Gem missing from cache
	...