forked from ukutaht/safe_ruby
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsafe_ruby.gemspec
More file actions
30 lines (25 loc) · 1.22 KB
/
safe_ruby.gemspec
File metadata and controls
30 lines (25 loc) · 1.22 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
# Copyright (c) 2018 Uku Taht
# frozen_string_literal: true
lib = File.expand_path('lib', __dir__)
$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
require 'safe_ruby/version'
Gem::Specification.new do |s|
s.required_ruby_version = '>= 2.7'
s.name = 'safe_ruby'
s.version = SafeRuby::VERSION
s.authors = ['Jérôme Arbez-Gindre', 'Uku Taht']
s.email = 'jeromearbezgindre@gmail.com'
s.summary = 'Run untrusted ruby code in a safe environment'
s.description = 'Evaluates ruby code by writing it to a tempfile and spawning a child ' \
'process. Uses a allowlist of methods and constants to keep, for example ' \
'one cannot run system commands in the environment created by this gem. ' \
'The environment created by the untrusted code does not leak out into ' \
'the parent process.'
s.homepage = 'https://gitlab.com/defmastership/safe_ruby/'
s.license = 'MIT'
s.executables = `git ls-files -- bin/*`.split("\n").map { |f| File.basename(f) }
s.files = `git ls-files`.split("\n")
s.require_paths = ['lib']
s.add_dependency('childprocess', '~> 5')
s.metadata['rubygems_mfa_required'] = 'true'
end