diff options
| author | Mike McQuaid | 2016-10-30 13:29:47 -0400 |
|---|---|---|
| committer | GitHub | 2016-10-30 13:29:47 -0400 |
| commit | 20c8c5958ec2491d85156acde5e57e745ae95874 (patch) | |
| tree | 0af5317ca0b6f2fee800c46f38832a019e3ae969 /Library | |
| parent | 90e5de91150e8c4c09929213bd6994fc5d4b5772 (diff) | |
| parent | 337810bf3ee19aed4cc1bac3489bf269ead246fd (diff) | |
| download | brew-20c8c5958ec2491d85156acde5e57e745ae95874.tar.bz2 | |
Merge pull request #1367 from MikeMcQuaid/audit-check-master-branch
audit: check for master branch tar/zipballs.
Diffstat (limited to 'Library')
| -rw-r--r-- | Library/Homebrew/dev-cmd/audit.rb | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/Library/Homebrew/dev-cmd/audit.rb b/Library/Homebrew/dev-cmd/audit.rb index 3095372a2..a6ca1f7cb 100644 --- a/Library/Homebrew/dev-cmd/audit.rb +++ b/Library/Homebrew/dev-cmd/audit.rb @@ -1290,6 +1290,11 @@ class ResourceAuditor problem "Please use https:// for #{u}" end + # Check for master branch GitHub archives. + urls.grep(%r{^https://github\.com/.*archive/master\.(tar\.gz|zip)$}) do + problem "Use versioned rather than branch tarballs for stable checksums." + end + # Use new-style archive downloads urls.each do |u| next unless u =~ %r{https://.*github.*/(?:tar|zip)ball/} && u !~ /\.git$/ |