Skip to content

Instantly share code, notes, and snippets.

@jasonm

jasonm/gist:4946169

Created February 13, 2013 17:08
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save jasonm/4946169 to your computer and use it in GitHub Desktop.
Save jasonm/4946169 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
gistfile1.md

So this is nascent thing, linking CVEs to rubygems https://twitter.com/jm/status/301735569527033856

Service idea:

  • Send your Gemfile.lock to a service, get emailed when a pertinent CVE becomes known
  • Easy tie-in via GitHub OAuth and their webhook push API
  • Almost-as-easy tie-in for other platforms (storage and deploy) via after-commit hooks (efficient via etags)
@jasonm
Copy link
Author

jasonm commented Feb 13, 2013

by "storage and deploy platforms" i basically mean bitbucket, gitlab, heroku

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment