tjh.dev
nixpkgs mirror (for testing)
github.com/NixOS/nixpkgs
nix
bundlerUpdateScript: don't run bundler-audit
Blocking updates on security warnings doesn't make sense; if an updated
gem has dependencies with security warnings, then it's likely for the
un-updated gem to have even more of them.
+2
-3
+2
-3
pkgs/development/ruby-modules/bundler-update-script/default.nix
+2
-3
pkgs/development/ruby-modules/bundler-update-script/default.nix
···
1
-
{ runtimeShell, lib, writeScript, bundix, bundler, bundler-audit, coreutils, git, nix }:
1
+
{ runtimeShell, lib, writeScript, bundix, bundler, coreutils, git, nix }:
2
2
3
3
attrPath:
4
4
5
5
let
6
6
updateScript = writeScript "bundler-update-script" ''
7
7
#!${runtimeShell}
8
-
PATH=${lib.makeBinPath [ bundler bundler-audit bundix coreutils git nix ]}
8
+
PATH=${lib.makeBinPath [ bundler bundix coreutils git nix ]}
9
9
set -o errexit
10
10
set -o nounset
11
11
set -o pipefail
···
19
19
cd "$gemdir"
20
20
21
21
bundler lock --update
22
-
bundler-audit check --update
23
22
bundix
24
23
'';
25
24
in [ updateScript attrPath ]