appdefender 0.4.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 88a6cdc262aa7c7161a6f1b8dc58cf895580bf03f4c27d8cf3f91189e5850892
+  data.tar.gz: 0b1baf553d4898f3f6c8bd532a91c9f5007f0e4cfeb23d1895c4b1ca8bdb8b73
+SHA512:
+  metadata.gz: f1a123edde99bd9322c13bbf57815736605fba82df225ef7897999d112bec4fd34de1732e7e136d600c9105f0a33744ef327962fab47ae729e3306f1ea7566c7
+  data.tar.gz: a2cadbba456573f047f23dd47cfe03750f9e5f9a4b4b1f8cdc61cd40ccc1c3d87c599e9f03315c5428cc3543cb3942861f10041503aceaddafe3446ee36f477a

data/Gemfile

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+source "https://rubygems.org"
+
+gemspec
+
+gem "rake", "~> 13.0"

data/LICENSE

@@ -0,0 +1 @@
+Copyright (c) 2023 Extrinsec LLC.  All Rights Reserved

data/README.md

@@ -0,0 +1,63 @@
+<a href="https://www.extrinsec.com">
+  <picture>
+    <source media="(prefers-color-scheme: dark)" srcset="https://cdn.extrinsec.com/images/logos/logo-exsec-dark.png#gh-dark-mod-only">
+    <source media="(prefers-color-scheme: light)" srcset="https://cdn.extrinsec.com/images/logos/logo-exsec-light.png#gh-light-mode-only">
+    <img alt="Learn more about how Extrinsec secures and protects your Ruby applications"/>
+  </picture>
+</a>
+
+Real time serverless security platform for [Ruby](https://www.ruby-lang.org).
+
+```ruby
+# set required environment variable ES_POLICY_GROUP_NAME as provided or configured in your app, e.g.
+# ENV["ES_POLICY_GROUP_NAME"] = "observeAll.ability";
+
+# load the appdefender module
+require 'appdefender'
+```
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'appdefender'
+```
+
+And then execute:
+
+```console
+$ bundle install
+```
+
+Or install it yourself as:
+
+```console
+$ gem install appDefender
+```
+
+It is recommended that you register an account on https://app.extrinsec.com/ and configure your own policy rules for the best protection.
+
+## Features
+
+- Quick and simple setup
+- **Observe**, **Deny** or **Grant** any combination of the following
+  - outbound network data
+  - read/write tmp or app directories
+  - create/spawn child processes
+- Option to terminate process for policy violations
+- Ability to whitelist domains
+- Fast & Reliable, no wrapping or monkey-patching of your code
+- Easy collaboration between dev and ops teams with role based access
+- View all events centrally in the web application
+
+## Docs & Community
+
+- [Website](https://www.extrinsec.com/)
+- [App](https://app.extrinsec.com/)
+- [FAQ](https://www.extrinsec.com/faq)
+- Community Support
+
+## License
+
+© Copyright 2023 Extrinsec LLC, all rights reserved.

data/Rakefile

@@ -0,0 +1,4 @@
+# frozen_string_literal: true
+
+require "bundler/gem_tasks"
+task default: %i[]

data/appdefender.gemspec

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+require_relative "lib/appdefender/version"
+
+Gem::Specification.new do |spec|
+  spec.name          = "appdefender"
+  spec.version       = AppDefender::VERSION
+  spec.authors       = ["Extrinsec LLC"]
+  spec.email         = ["support@extrinsec.com"]
+
+  spec.summary       = "Real time serverless protection"
+  spec.description   = "see README.md"
+  spec.homepage      = "https://www.extrinsec.com"
+  spec.license       = "Nonstandard"
+  spec.required_ruby_version = ">= 2.4.0"
+
+  # spec.metadata["allowed_push_host"] = "https://rubygems.org"
+  spec.metadata["github_repo"] = "ssh://github.com/extrinsec/mono"
+
+  spec.metadata["homepage_uri"] = spec.homepage
+
+  spec.files = Dir['lib/**/*'] + %w(appdefender.gemspec Gemfile LICENSE Rakefile README.md)
+  spec.require_paths = ["lib"]
+
+  spec.add_dependency "ffi", "1.15.5"
+end

data/lib/appdefender/version.rb

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+module AppDefender
+  VERSION = "0.4.0"
+end

data/lib/appdefender/version.rb.in

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+module AppDefender
+  VERSION = "${PKG_VERSION}"
+end

data/lib/appdefender.rb

@@ -0,0 +1,45 @@
+# frozen_string_literal: true
+
+require 'ffi'
+require 'json'
+require 'rbconfig'
+
+require_relative 'appdefender/version'
+
+module AppDefenderCLib
+  extend FFI::Library
+
+  # set environment variables
+  ENV['ES_RUNTIME_LANGUAGE'] = 'RUBY'
+  ENV['ES_RUNTIME_LANGUAGE_VERSION'] = RUBY_VERSION
+  ENV['ES_APP_DIR'] = Dir.pwd
+  ENV['ES_SDK_VERSION'] = AppDefender::VERSION
+
+  arch = RbConfig::CONFIG['host_cpu']
+  libc = RbConfig::CONFIG['host_os'] == 'linux-musl' ? 'musl' : 'gnu'
+  puts("[INFO] [appDefender] Ruby SDK loading: #{__dir__}/libcore.#{arch}.#{libc}.so")
+  ffi_lib (__dir__ + "/libcore.#{arch}.#{libc}.so")
+end
+
+module AppDefender
+  def self.supported()
+    raise '"[ERROR] appDefender SDK cannot be used together with the appDefender AWS Lambda extension."' if ENV['AWS_LAMBDA_EXEC_WRAPPER'] && ENV['AWS_LAMBDA_EXEC_WRAPPER'].include?("extrinsec-appdefender")
+    provider_envs = [
+      'AWS_EXECUTION_ENV',        # AWS Lambda
+      'K_SERVICE',                # Google Cloud Functions
+      'FUNCTION_TARGET',          # Google Cloud Functions
+      'FUNCTIONS_WORKER_RUNTIME', # Azure
+    ]
+    archs = ["x86_64", "arm64", "aarch64" ]
+    RbConfig::CONFIG['host_os'] =~ /linux/ && archs.include?(RbConfig::CONFIG['host_cpu']) && provider_envs.any? {|env| !ENV[env].nil? && !ENV[env].empty? }
+  end
+
+  if !supported()
+    err_msg = '"[ERROR] [appDefender] only Linux x64/arm64 systems on AWS Lambdas, Google Cloud Functions, or Azure Functions are supported."'
+    puts(err_msg)
+    raise err_msg
+  else
+    puts("[INFO] [appDefender] Ruby SDK version: " + AppDefender::VERSION)
+    include AppDefenderCLib;
+  end
+end

metadata

@@ -0,0 +1,71 @@
+--- !ruby/object:Gem::Specification
+name: appdefender
+version: !ruby/object:Gem::Version
+  version: 0.4.0
+platform: ruby
+authors:
+- Extrinsec LLC
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2023-02-08 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: ffi
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 1.15.5
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 1.15.5
+description: see README.md
+email:
+- support@extrinsec.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- appdefender.gemspec
+- lib/appdefender.rb
+- lib/appdefender/version.rb
+- lib/appdefender/version.rb.in
+- lib/libcore.aarch64.gnu.so
+- lib/libcore.aarch64.musl.so
+- lib/libcore.x86_64.gnu.so
+- lib/libcore.x86_64.musl.so
+homepage: https://www.extrinsec.com
+licenses:
+- Nonstandard
+metadata:
+  github_repo: ssh://github.com/extrinsec/mono
+  homepage_uri: https://www.extrinsec.com
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.4.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.6
+signing_key: 
+specification_version: 4
+summary: Real time serverless protection
+test_files: []