audit: allow checksum to be added/removed when changing download scheme

2020-11-16 19:37:57 -05:00 · 2020-11-16 19:37:57 -05:00 · d26567a65d
commit d26567a65d
parent 421853217f
2 changed files with 15 additions and 1 deletions
--- a/Library/Homebrew/dev-cmd/audit.rb
+++ b/Library/Homebrew/dev-cmd/audit.rb
@ -943,7 +943,8 @@ module Homebrew

      if current_version == newest_committed_version &&
         current_url == newest_committed_url &&
-         current_checksum != newest_committed_checksum
+         current_checksum != newest_committed_checksum &&
+         current_checksum.present? && newest_committed_checksum.present?
        problem(
          "stable sha256 changed without the url/version also changing; " \
          "please create an issue upstream to rule out malicious " \
--- a/Library/Homebrew/test/dev-cmd/audit_spec.rb
+++ b/Library/Homebrew/test/dev-cmd/audit_spec.rb
@ -717,6 +717,19 @@ module Homebrew

          it { is_expected.to be_nil }
        end
+
+        context "can be removed when switching schemes" do
+          before do
+            formula_gsub_origin_commit(
+              'url "https://brew.sh/foo-1.0.tar.gz"',
+              'url "https://foo.com/brew/bar.git", tag: "1.0", revision: "f5e00e485e7aa4c5baa20355b27e3b84a6912790"',
+            )
+            formula_gsub_origin_commit('sha256 "31cccfc6630528db1c8e3a06f6decf2a370060b982841cfab2b8677400a5092e"',
+                                       "")
+          end
+
+          it { is_expected.to be_nil }
+        end
      end

      context "revisions" do