Update spec fixtures

Update spec fixtures to use simplified `Gemfile` examples and update spec logic
to verify that all expected issues are present in engine-generated issues. Now
that we're correctly referencing the updated database, new vulnerabilities
may show up.

Author: dblandin

spec/cc/engine/bundler_audit/analyzer_spec.rb

@@ -15,15 +15,19 @@ module CC::Engine::BundlerAudit
 
         issues = analyze_directory(directory)
 
-        expect(issues).to eq(expected_issues("unpatched_versions"))
+        expected_issues("unpatched_versions").each do |expected_issue|
+          expect(issues).to include(expected_issue)
+        end
       end
 
       it "emits issues for insecure sources in Gemfile.lock" do
-        directory = fixture_directory("insecure_source")
+        directory = fixture_directory("insecure_sources")
 
         issues = analyze_directory(directory)
 
-        expect(issues).to eq(expected_issues("insecure_source"))
+        expected_issues("insecure_sources").each do |expected_issue|
+          expect(issues).to include(expected_issue)
+        end
       end
 
       it "logs to stderr when we encounter an unsupported vulnerability" do

spec/fixtures/insecure_source/Gemfile.lock

@@ -0,0 +1,7 @@
+source "http://rubygems.org"
+
+gem "rails", "~> 4.2.5.1"
+gem "devise", "~> 3.5.4"
+gem "jquery-rails", "~> 3.1.3"
+gem "uglifier", "~> 2.7.2"
+gem "simple_form", github: "plataformatec/simple_form"