From e8e18088da936d65932fa6a52fc49e981e8a6317 Mon Sep 17 00:00:00 2001
From: Alban Peignier <alban.peignier@af83.com>
Date: Mon, 5 Nov 2018 17:16:01 +0100
Subject: [PATCH] Integrate bundler-audit and update nokogiri in gemspec

---
 Gemfile.lock       | 11 ++++++++---
 Rakefile           | 11 ++++++++++-
 codifligne.gemspec |  3 ++-
 3 files changed, 20 insertions(+), 5 deletions(-)

diff --git a/Gemfile.lock b/Gemfile.lock
index 396730e..8d62d13 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -2,7 +2,7 @@ PATH
   remote: .
   specs:
     codifligne (0.0.2)
-      nokogiri (>= 1.8.2)
+      nokogiri (>= 1.8.5)
 
 GEM
   remote: https://rubygems.org/
@@ -10,12 +10,15 @@ GEM
     addressable (2.5.2)
       public_suffix (>= 2.0.2, < 4.0)
     awesome_print (1.8.0)
+    bundler-audit (0.6.0)
+      bundler (~> 1.2)
+      thor (~> 0.18)
     crack (0.4.3)
       safe_yaml (~> 1.0.0)
     diff-lcs (1.3)
     hashdiff (0.3.7)
     mini_portile2 (2.3.0)
-    nokogiri (1.8.2)
+    nokogiri (1.8.5)
       mini_portile2 (~> 2.3.0)
     public_suffix (3.0.2)
     rake (12.3.0)
@@ -33,6 +36,7 @@ GEM
       rspec-support (~> 3.7.0)
     rspec-support (3.7.1)
     safe_yaml (1.0.4)
+    thor (0.20.0)
     webmock (1.22.6)
       addressable (>= 2.3.6)
       crack (>= 0.3.2)
@@ -44,10 +48,11 @@ PLATFORMS
 DEPENDENCIES
   awesome_print
   bundler
+  bundler-audit
   codifligne!
   rake
   rspec
   webmock (~> 1.22.6)
 
 BUNDLED WITH
-   1.16.1
+   1.16.4
diff --git a/Rakefile b/Rakefile
index f7b74d9..4ea1fa6 100644
--- a/Rakefile
+++ b/Rakefile
@@ -10,4 +10,13 @@ begin
 rescue LoadError
 end
 
-Bundler::GemHelper.install_tasks
\ No newline at end of file
+Bundler::GemHelper.install_tasks
+
+namespace :ci do
+  desc "Check security aspects"
+  task :check_security do
+    sh "bundle exec bundle-audit check --update"
+  end
+end
+
+task :ci => [:spec, "ci:check_security"]
diff --git a/codifligne.gemspec b/codifligne.gemspec
index a5d0022..1e3cb60 100644
--- a/codifligne.gemspec
+++ b/codifligne.gemspec
@@ -16,11 +16,12 @@ Gem::Specification.new do |s|
   s.files = Dir["{app,config,db,lib}/**/*", "MIT-LICENSE", "Rakefile", "README.markdown"]
   s.required_ruby_version = '>= 2.0.0'
 
-  s.add_dependency "nokogiri", ">=1.8.2"
+  s.add_dependency "nokogiri", ">=1.8.5"
 
   s.add_development_dependency "awesome_print"
   s.add_development_dependency "bundler"
   s.add_development_dependency "rake"
   s.add_development_dependency "webmock"
   s.add_development_dependency "rspec"
+  s.add_development_dependency "bundler-audit"
 end