Oct. 14, 2020 - Rubocop Upgrade

Force Rubocop minimum of 0.9

Mar 30 2020

Changes:

• Lock down gem dependencies due to API changes
• Added additional generators for editor, browser & eslint configs

July 23, 2019 - Bundle Audit Ignore CVE

We need to be able to ignore certain CVE's at times where a fix in the gem is not quick enough and we have a way to mitigate the issue or the issue simply does not apply to us.

Add a BUNDLE_AUDIT_INGORE ENVAR that takes a comma-delimited string of CVE's for the repo to ignore.

Jun, 24, 2019 - ESLint Support

Adds ESLint with ES6 support

BugFix Default Task

Defined the default task outside any namespaces.

Simply return from the method if the DISABLE_BUNDLE_AUDIT is set

Dec. 11, 2018 - Bundle Audit Bypass

Create our own wrapper task which performs the same steps. But will short circuit if the correct environment variable is found.

The environment variable can be defined within Travis itself allowing us to apply this bypass without any code changes.

While bundle audit is disabled the suite will output a warning label explaining that bundle audit is disabled and should be re-enabled.

Dec 3 2018 - Enforce alias_method over alias

• Update to enforce the use of alias_method in all cases instead of alias

Oct. 25, 2018 - Bugfixes and improvements

Fixes

• Change check exception to a warning
• Fix list of false positives
• Update Readme to cleaner flow
• Cleanup rake tasks
• Fix issue in Rubocop config

Additions

• Changelog
• Railtie for rake tasks

Jun 8, 2018 (AM)

• Add validators for RVM, precommit generator (#8)
• BUGFIX: Use bash for pre-commit script since it will not run in a POSIX sh shell (#9)
• BUGFIX: Use current rvm to access ruby version (#10, #11)
• BUGFIX: Remove rspec from gemspec dev dependencies (#13)
• SECURITY: Upgrade loofah gem (resolves CVE-2018-8048) (#12)
• SECURITY: Upgrade rails-html-sanitizer gem (resolves CVE-2018-3741) (#14)

Cleanup Requirements

Certain gems are not required, resolves issue caused by RVM