RubyGems - aikido-zen - Versions diffs - 1.0.3 → 1.0.4 - Mend

aikido-zen 1.0.3 → 1.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml +4 -4
data/lib/aikido/zen/rails_engine.rb +18 -10
data/lib/aikido/zen/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9d138177952c1fa50bb1d06c44d913d4a5817cc6b574f2a0d081272871ad2d39
-  data.tar.gz: 536b5ad28b140bdd59294ed50bf0d37fabd77d77e099623a4c2c6b9f4592f7df
+  metadata.gz: d6f84d6263b1e3a0465611f20c4c25b953370179330d3be5472d18d246fe44a8
+  data.tar.gz: 8c212fec6db284434786644d20e3c4301b0612b6d2127be5f968db6dd254bd9e
 SHA512:
-  metadata.gz: 7455ec6799d1ce449ebc52c2f747d53b3baf6e3595141df760b159598c77b2894b54a8e6748f9cb19a0e30d1c75b466c924174e69474ee35efb7492d20967d2b
-  data.tar.gz: 221d50d4537a2f1008784b4edf05b5b7d847cf398f43c7e3ce4a71b30e44d96c1b2dd0423321c324c723ce80c8af61c929a8783cf01d8e05810c180056ccbb1f
+  metadata.gz: 427092eaa22f0ca613e34016d19ebebace148dd3b9111189f65077d11cbac3d425e28ac7e60755dd2414b56c245d0bacb5a422e9d06a861068ef705a97a62a8a
+  data.tar.gz: bda45c8553f65d296e6e65d2371bf6b32613fd960e29e51200db812198d0a3505ba99c0bc00698844b369b4f0d4417c445b9d1f8c6b7aa541c6b8ce99dad81a5

data/lib/aikido/zen/rails_engine.rb CHANGED Viewed

@@ -9,16 +9,24 @@ module Aikido::Zen
       config.zen = Aikido::Zen.config
     end
-    initializer "aikido.add_middleware" do |app|
-      app.middleware.insert_before 0, Aikido::Zen::Middleware::ForkDetector
-      app.middleware.use Aikido::Zen::Middleware::ContextSetter
-      app.middleware.use Aikido::Zen::Middleware::AllowedAddressChecker
-      app.middleware.use Aikido::Zen::Middleware::AttackProtector
-      app.middleware.use Aikido::Zen::Middleware::AttackWaveProtector
-      # Request Tracker stats do not consider failed request or 40x, so the middleware
-      # must be the last one wrapping the request.
-      app.middleware.use Aikido::Zen::Middleware::RequestTracker
+    initializer "aikido.add_middleware", after: :load_config_initializers do |app|
+      # The midleware to be inserted in order. The first middleware is the existing
+      # middleware to use as an anchor point.
+      middleware = [
+        ::Rails::Rack::Logger,
+        Aikido::Zen::Middleware::ForkDetector,
+        Aikido::Zen::Middleware::ContextSetter,
+        Aikido::Zen::Middleware::AllowedAddressChecker,
+        Aikido::Zen::Middleware::AttackProtector,
+        Aikido::Zen::Middleware::AttackWaveProtector,
+        # Request Tracker stats do not consider failed requests, so the middleware
+        # must be the last one wrapping the request.
+        Aikido::Zen::Middleware::RequestTracker
+      ]
+      middleware.each_cons(2) do |existing_middleware, additional_middleware|
+        app.middleware.insert_after(existing_middleware, additional_middleware)
+      end
       ActiveSupport.on_load(:action_controller) do
         # Due to how Rails sets up its middleware chain, the routing is evaluated

data/lib/aikido/zen/version.rb CHANGED Viewed

@@ -2,7 +2,7 @@
 module Aikido
   module Zen
-    VERSION = "1.0.3"
+    VERSION = "1.0.4"
     # The version of libzen_internals that we build against.
     LIBZEN_VERSION = "0.1.48"

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aikido-zen
 version: !ruby/object:Gem::Version
-  version: 1.0.3
+  version: 1.0.4
 platform: ruby
 authors:
 - Aikido Security
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2025-12-16 00:00:00.000000000 Z
+date: 2025-12-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: concurrent-ruby