| Age | Commit message (Collapse) | Author |
|---|
|
I would like there to be more discussion before making this change.
This reverts commit f16ffd2a9ee5d29c7c0ae672c17bd129240adbb5.
|
|
also delete extra closing parenthesis in two problem messages
Closes #38824.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #38810.
Signed-off-by: Xu Cheng <xucheng@me.com>
|
|
Without this, `brew audit <some formula>` may ask people to change:
system "./script.sh foo-*"
into:
system "./script.sh", "foo-*"
These are not the same. In the first example the shell expansion occurs
while it doesn’t in the second one, breaking the build.
Closes #38540.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #38302.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #38209.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
It was failing to recognize the URL without an ending slash.
Closes #37808.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
- including all apache.org subdomains
- for `homepage` as well
Closes #37778.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #37696
Closes #37703
Closes #37735.
Signed-off-by: Xu Cheng <xucheng@me.com>
|
|
"ftpmirror.gnu.org" must have a protocol prefix of "http", not
"https".
Closes #37567.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #37523.
Signed-off-by: Xu Cheng <xucheng@me.com>
|
|
|
|
Closes #37164.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #37356.
Signed-off-by: Xu Cheng <xucheng@me.com>
|
|
Closes #37355.
Signed-off-by: Xu Cheng <xucheng@me.com>
|
|
Closes #37313.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
|
|
Closes #37174.
Signed-off-by: Xu Cheng <xucheng@me.com>
|
|
|
|
It's used in `audit_text`
Closes #37139.
Signed-off-by: Xu Cheng <xucheng@me.com>
|
|
Closes #36959.
Signed-off-by: Xu Cheng <xucheng@me.com>
|
|
|
|
Extends the audit checks to GnuPG, a significant chunk of Freedesktop
domains, and Github Pages. I’ve somewhat hardened my stance towards
Github Pages from the last time we extended this, hence the new
inclusion - I did a pretty thorough check through the Homebrew formulae
that use Github Pages for homepage links and found very few places
where enforcing SSL/TLS would cause issues - I think a wider
enforcement is worthwhile.
I’ve also fixed the capitalisation of the taps, if only because at the
moment it disagrees with what ` puts formula.tap ` outputs (We get
Homebrew/homebrew-head-only rather than homebrew/homebrew-head-only for
example).
Closes #36719.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #36892.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #36794.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
See
https://github.com/Homebrew/homebrew/pull/36629#discussion_r24293912
amongst other recent examples. The example formula isn’t as strongly
policed as the ` brew create ` default, this tries to do something
about that.
Closes #36639.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Currently the bot is failing certain devel-only formulae because it
thinks having ` devel ` defined with an added ` head ` defined
as well = a head-only formula.
```
==> audit problems
docker-machine:
* Head-only (no stable download)
```
This is a pretty simple fix for that problem:
```
==> brew style docker-machine
1 file inspected, no offenses detected
```
Closes #36197.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #36094.
|
|
|
|
I don’t know how maintainers are going to feel about this, to be
honest. If it’s too clunky, perhaps we could externalise the entire two
main blocks here and then require that file into the audit instead?
Basically, I’m pushing changes here to better detect a wide-array of
SSL/TLS available links that either have no auto-redirect in place or
is a common linking error in formulae. I haven’t spotted any false
positives yet, but obviously, feel free to try and break the changes
and I’ll fix as necessary ;).
IMO, this would allow us gradual updates without having to mass-update
everything at once and stress the bot and inform users they have
hundreds of updates pending when really it’s just style/basic changes.
Closes #35551.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
|
|
Closes #35465.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
Closes #35459.
Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
|
|
This reverts commit 8fe14451842dea92bca04116ba043421b4f44a6b.
Conflicts:
Library/Homebrew/cmd/audit.rb
|
|
|
|
|
|
Match the parens properly and only interpolate once.
Closes #35288.
Closes #35291.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
This deprecates URLs that begin with the following fake URL schemes:
bzr://
cvs://
hg://
fossil://
svn+http://
Despite their appearance, they are not actually accepted by the
corresponding tools. They exist only as hints to the download strategy
detection code, and are stripped from the URL before the URL is handed
off to the VCS program.
This is not documented, and may lead one to believe it is a valid URL
that can be used elsewhere, when it actually only works inside Homebrew.
We have a better mechanism for specifying the download strategy that is
straightforward and explicit:
:using => :hg
Recommend that instead.
Closes #35114.
|
|
|
|
|
