aikido-zen 1.0.1.beta.2-x86_64-linux-musl → 1.0.1.beta.3-x86_64-linux-musl

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 3b975d1cf066459dd7add2fb6e3f4a79a484a493483707b71cfb091530c36ee5
-  data.tar.gz: 9d27bb0177727cb6bc8c53e0787b64a9f39ae4ed11a8a7e836f1512d55bb4a00
+  metadata.gz: 747a2be35e7d6180aff8615f722e4cf56a49d2ea00111c9ee9f9254cdb1d2c28
+  data.tar.gz: 59827934aa689a6c4d816b405b4156c367d9abc1f7fa7f91198fdbc1eb710386
 SHA512:
-  metadata.gz: ebe980a4af97c73068a9fafc61b00c401a0bdccbe880539dffee6409efa944a728ba953e032f854632feecd58bad6b2239c4fc3fc5ab6b2e9b32f9b7463fe63a
-  data.tar.gz: 8f9efcfb32b9b36e8860878d45a7fefdf2ba5408a6e54c32de64e1c0e12201b60c40e639096512df0e3a268caba181d3cbe216bca3535a741e6829ded04f02d7
+  metadata.gz: 5bf49ee5333043729fb8a880c6b47530f52a2d3be940cd93ba1ecef382745b4f2f7fb9a1a532d6270d66ae74bd1b8e3d56fd2950074fdcb2d85c645e675354ec
+  data.tar.gz: f6639be5ad203993e269b7e80e640a57c5df86b207031370b18844cd20b01aa3c8d097de67133b317a915b2716e5bdae3bf61d6f2030d14c41b62fb206373bfd

data/README.md

@@ -61,7 +61,7 @@ See list above for supported database drivers.
 * ✅ [`curb`](https://github.com/taf2/curb) 0.x (0.2.3+), 1.x
 * ✅ [`patron`](https://github.com/toland/patron) 0.x (0.6.4+)
 * ✅ [`typhoeus`](https://github.com/typhoeus/typhoeus) 0.x (0.5.0+), 1.x
-* ✅ [`async-http`](https://github.com/igrigorik/em-http-request) 0.x (0.70.0+)
+* ✅ [`async-http`](https://github.com/socketry/async-http) 0.x (0.70.0+)
 * ✅ [`em-http-request`](https://github.com/igrigorik/em-http-request) 1.x
 
 ## Installation

data/lib/aikido/zen/api_client.rb

@@ -111,7 +111,7 @@ module Aikido::Zen
     # @raise [Aikido::Zen::NetworkError] if an error occurs trying to make the
     #   request.
     private def request(request, base_url: @config.api_endpoint)
-      Net::HTTP.start(base_url.host, base_url.port, http_settings) do |http|
+      Net::HTTP.start(base_url.host, base_url.port, http_settings(base_url)) do |http|
         response = http.request(request)
 
         case response
@@ -127,8 +127,11 @@ module Aikido::Zen
       raise NetworkError.new(request, err)
     end
 
-    private def http_settings
-      @http_settings ||= {use_ssl: true, max_retries: 2}.merge(@config.api_timeouts)
+    private def http_settings(base_url)
+      @http_settings ||= {
+        use_ssl: base_url.scheme == "https",
+        max_retries: 2
+      }.merge(@config.api_timeouts)
     end
 
     private def default_headers

data/lib/aikido/zen/context/rails_request.rb

@@ -12,7 +12,9 @@ module Aikido::Zen
 
   # @!visibility private
   Context::RAILS_REQUEST_BUILDER = ->(env) do
-    delegate = ActionDispatch::Request.new(env)
+    # Duplicate the Rack environment to prevent unexpected modifications from
+    # breaking Rails routing.
+    delegate = ActionDispatch::Request.new(env.dup)
     request = Aikido::Zen::Request.new(
       delegate, framework: "rails", router: Rails.router
     )

data/lib/aikido/zen/internals.rb

@@ -7,12 +7,6 @@ module Aikido::Zen
   module Internals
     extend FFI::Library
 
-    class << self
-      # @return [String] the name of the extension we're loading, which we can
-      #   use in error messages to identify the architecture.
-      attr_accessor :libzen_name
-    end
-
     def self.libzen_names
       lib_name = "libzen-v#{LIBZEN_VERSION}"
       lib_ext = FFI::Platform::LIBSUFFIX
@@ -40,17 +34,24 @@ module Aikido::Zen
       names
     end
 
+    # @return [String] the name of the extension we're loading, which we can
+    # use in error messages.
+    def self.libzen_name
+      # The most generic platform library name.
+      libzen_names.last
+    end
+
     # Load the most specific library
     def self.load_libzen
-      libzen_names.each do |libzen_name|
-        libzen_path = File.expand_path(libzen_name, __dir__)
+      libzen_names.each do |name|
+        path = File.expand_path(name, __dir__)
         begin
-          return ffi_lib(libzen_path)
+          return ffi_lib(path)
         rescue LoadError
           # empty
         end
       end
-      raise LoadError, "Could not load libzen"
+      raise LoadError, "Zen could not load its native extension #{libzen_name}"
     end
 
     begin
@@ -68,11 +69,11 @@ module Aikido::Zen
       # :nocov:
 
       # Emit an $stderr warning at startup.
-      warn "Zen could not load its binary extension #{libzen_name}: #{err}"
+      warn "Zen could not load its native extension #{libzen_name}: #{err}"
 
       def self.detect_sql_injection(query, *)
         attempt = format("%p for SQL injection", query)
-        raise InternalsError.new(attempt, "loading", Internals.libzen_name)
+        raise InternalsError.new(attempt, "loading", libzen_name)
       end
 
       # :nocov:

data/lib/aikido/zen/rails_engine.rb

@@ -34,8 +34,8 @@ module Aikido::Zen
       # Allow the logger to be configured before checking if disabled? so we can
       # let the user know that the agent is disabled.
       logger = ::Rails.logger
-      logger = ActiveSupport::TaggedLogging.new(logger) unless logger.respond_to?(:tagged)
-      app.config.zen.logger = logger.tagged("aikido")
+      logger = logger.tagged("aikido") if logger.respond_to?(:tagged)
+      app.config.zen.logger = logger
 
       app.config.zen.request_builder = Aikido::Zen::Context::RAILS_REQUEST_BUILDER
 

data/lib/aikido/zen/request/rails_router.rb

@@ -29,6 +29,11 @@ module Aikido::Zen
     end
 
     private def recognize_in_route_set(request, route_set, prefix: nil)
+      # ActionDispatch::Journey::Router#recognize modifies the Rack environment.
+      # This is correct for Rails routing, but it is not expected to be used in
+      # Rack middleware, and using it here can break Rails routing.
+      #
+      # To avoid this, the Rack environment is duplicated when building request.
       route_set.router.recognize(request) do |route, _|
         app = route.app
         next unless app.matches?(request)

data/lib/aikido/zen/sinks/async_http.rb

@@ -8,7 +8,7 @@ module Aikido::Zen
     module Async
       module HTTP
         def self.load_sinks!
-          if Gem.loaded_specs["async-http"]
+          if Aikido::Zen.satisfy "async-http", ">= 0.70.0"
             require "async/http"
 
             ::Async::HTTP::Client.prepend(Async::HTTP::ClientExtensions)

data/lib/aikido/zen/sinks/curb.rb

@@ -7,7 +7,7 @@ module Aikido::Zen
   module Sinks
     module Curl
       def self.load_sinks!
-        if Gem.loaded_specs["curb"]
+        if Aikido::Zen.satisfy "curb", ">= 0.2.3"
           require "curb"
 
           ::Curl::Easy.prepend(Curl::EasyExtensions)

data/lib/aikido/zen/sinks/em_http.rb

@@ -8,7 +8,7 @@ module Aikido::Zen
     module EventMachine
       module HttpRequest
         def self.load_sinks!
-          if Gem.loaded_specs["em-http-request"]
+          if Aikido::Zen.satisfy "em-http-request", ">= 1.0"
             require "em-http-request"
 
             ::EventMachine::HttpRequest.use(EventMachine::HttpRequest::Middleware)

data/lib/aikido/zen/sinks/excon.rb

@@ -7,7 +7,7 @@ module Aikido::Zen
   module Sinks
     module Excon
       def self.load_sinks!
-        if Gem.loaded_specs["excon"]
+        if Aikido::Zen.satisfy "excon", ">= 0.50.0"
           require "excon"
 
           ::Excon::Connection.prepend(ConnectionExtensions)

data/lib/aikido/zen/sinks/http.rb

@@ -7,7 +7,7 @@ module Aikido::Zen
   module Sinks
     module HTTP
       def self.load_sinks!
-        if Gem.loaded_specs["http"]
+        if Aikido::Zen.satisfy "http", ">= 1.0"
           require "http"
 
           ::HTTP::Client.prepend(ClientExtensions)

data/lib/aikido/zen/sinks/httpclient.rb

@@ -7,7 +7,7 @@ module Aikido::Zen
   module Sinks
     module HTTPClient
       def self.load_sinks!
-        if Gem.loaded_specs["httpclient"]
+        if Aikido::Zen.satisfy "httpclient", ">= 2.0"
           require "httpclient"
 
           ::HTTPClient.prepend(HTTPClient::HTTPClientExtensions)

data/lib/aikido/zen/sinks/httpx.rb

@@ -7,7 +7,7 @@ module Aikido::Zen
   module Sinks
     module HTTPX
       def self.load_sinks!
-        if Gem.loaded_specs["httpx"]
+        if Aikido::Zen.satisfy "httpx", ">= 1.1.3"
           require "httpx"
 
           ::HTTPX::Session.prepend(HTTPX::SessionExtensions)

data/lib/aikido/zen/sinks/mysql2.rb

@@ -4,7 +4,7 @@ module Aikido::Zen
   module Sinks
     module Mysql2
       def self.load_sinks!
-        if Gem.loaded_specs["mysql2"]
+        if Aikido::Zen.satisfy "mysql2"
           require "mysql2"
 
           ::Mysql2::Client.prepend(ClientExtensions)

data/lib/aikido/zen/sinks/patron.rb

@@ -7,7 +7,7 @@ module Aikido::Zen
   module Sinks
     module Patron
       def self.load_sinks!
-        if Gem.loaded_specs["patron"]
+        if Aikido::Zen.satisfy "patron", ">= 0.6.4"
           require "patron"
 
           ::Patron::Session.prepend(SessionExtensions)

data/lib/aikido/zen/sinks/pg.rb

@@ -4,7 +4,7 @@ module Aikido::Zen
   module Sinks
     module PG
       def self.load_sinks!
-        if Gem.loaded_specs["pg"]
+        if Aikido::Zen.satisfy "pg", ">= 1.0"
           require "pg"
 
           ::PG::Connection.prepend(PG::ConnectionExtensions)

data/lib/aikido/zen/sinks/sqlite3.rb

@@ -4,7 +4,7 @@ module Aikido::Zen
   module Sinks
     module SQLite3
       def self.load_sinks!
-        if Gem.loaded_specs["sqlite3"]
+        if Aikido::Zen.satisfy "sqlite3", ">= 1.0"
           require "sqlite3"
 
           ::SQLite3::Database.prepend(DatabaseExtensions)

data/lib/aikido/zen/sinks/trilogy.rb

@@ -4,7 +4,7 @@ module Aikido::Zen
   module Sinks
     module Trilogy
       def self.load_sinks!
-        if Gem.loaded_specs["trilogy"]
+        if Aikido::Zen.satisfy "trilogy", ">= 2.0"
           require "trilogy"
 
           ::Trilogy.prepend(TrilogyExtensions)

data/lib/aikido/zen/version.rb

@@ -2,7 +2,7 @@
 
 module Aikido
   module Zen
-    VERSION = "1.0.1.beta.2"
+    VERSION = "1.0.1.beta.3"
 
     # The version of libzen_internals that we build against.
     LIBZEN_VERSION = "0.1.39"

data/lib/aikido/zen.rb

@@ -38,7 +38,31 @@ module Aikido
 
       # IMPORTANT: Any files that load sinks or start the Aikido Agent
       # should be required here only.
-      require_relative "zen/rails_engine" if defined?(::Rails)
+
+      if Aikido::Zen.satisfy "rails", ">= 7.0"
+        require_relative "zen/rails_engine"
+      end
+
+      if Aikido::Zen::Sinks.registry.empty?
+        warn "Zen could not find any supported libraries or frameworks. Visit https://github.com/AikidoSec/firewall-ruby for more information."
+      end
+    end
+
+    # @!visibility private
+    # Returns whether the loaded gem specification satisfies the listed requirements.
+    #
+    # Returns false if the gem specification is not loaded.
+    #
+    # @param name [String] the gem name
+    # @param requirements [Array<String>] a variable number of gem requirement strings
+    #
+    # @return [Boolean] true if the gem specification is loaded and all gem requirements are satisfied
+    def self.satisfy(name, *requirements)
+      spec = Gem.loaded_specs[name]
+
+      return false if spec.nil?
+
+      Gem::Requirement.new(*requirements).satisfied_by?(spec.version)
     end
 
     # @return [Aikido::Zen::Config] the agent configuration.

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aikido-zen
 version: !ruby/object:Gem::Version
-  version: 1.0.1.beta.2
+  version: 1.0.1.beta.3
 platform: x86_64-linux-musl
 authors:
 - Aikido Security
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2025-07-30 00:00:00.000000000 Z
+date: 2025-08-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: concurrent-ruby