brakeman-lib 4.1.0 → 4.1.1

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGES.md +5 -0
  3. data/lib/brakeman/checks/check_divide_by_zero.rb +2 -0
  4. data/lib/brakeman/checks/check_permit_attributes.rb +2 -2
  5. data/lib/brakeman/version.rb +1 -1
  6. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 25a56e16b745a1e4aff57461dc3b346db0c20a16
4
- data.tar.gz: 998d68b4ab7e3ed1b288357ef101639eecc5c5bd
3
+ metadata.gz: 52f1866bbb46d9c31465b38923c8b3af801b3d13
4
+ data.tar.gz: ba9389b8a21a103ca0a68b237e642ad0a7638074
5
5
  SHA512:
6
- metadata.gz: 623b9942d544ffa2671eef833f9cefebff610f1a1574f2e55b1c60336eb327b26f20413f900db982940c21f53d0ab91576afd0b1b0bb009dec9165392019d9dd
7
- data.tar.gz: f3efcb07b4535768e48353bd72c36718137222ad8aeae2262b6fa69c88aef1899be5be6fbe28cd467c5bc43543b6924773ed5d3d73d6d439495e6fe17e64c457
6
+ metadata.gz: 55209544e41fadfc1d042116fa93d5cd583ce08913401003d05d58f6e9975f8b75b9f541e200a7dcc29ae78ae6b60c43457317222292bf7c78e29c5c1d05c543
7
+ data.tar.gz: 68934d7abc0916646abf934d2f329b5157c0f92df6b588b501611e98c3f5c1c45405d6329b56fd9aa5338df66daae98011104469af0da0f6e4a203a88afe15dd
data/CHANGES.md CHANGED
@@ -1,3 +1,8 @@
1
+ # 4.1.1
2
+
3
+ * Remove check for use of `permit` with `*_id` keys
4
+ * Avoid duplicate warnings about permitted attributes
5
+
1
6
  # 4.1.0
2
7
 
3
8
  * Process models as root sexp instead of each sexp
data/lib/brakeman/checks/check_divide_by_zero.rb CHANGED
@@ -12,6 +12,8 @@ class Brakeman::CheckDivideByZero < Brakeman::BaseCheck
12
12
  end
13
13
 
14
14
  def check_division result
15
+ return unless original? result
16
+
15
17
  call = result[:call]
16
18
 
17
19
  denominator = call.first_arg
data/lib/brakeman/checks/check_permit_attributes.rb CHANGED
@@ -19,14 +19,14 @@ class Brakeman::CheckPermitAttributes < Brakeman::BaseCheck
19
19
  end
20
20
 
21
21
  def check_permit result
22
+ return unless original? result
23
+
22
24
  call = result[:call]
23
25
 
24
26
  call.each_arg do |arg|
25
27
  if symbol? arg
26
28
  if SUSPICIOUS_KEYS.key? arg.value
27
29
  warn_on_permit_key result, arg
28
- elsif arg.value.match /_id$/
29
- warn_on_permit_key result, arg, :medium
30
30
  end
31
31
  end
32
32
  end
data/lib/brakeman/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Brakeman
2
- Version = "4.1.0"
2
+ Version = "4.1.1"
3
3
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: brakeman-lib
3
3
  version: !ruby/object:Gem::Version
4
- version: 4.1.0
4
+ version: 4.1.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Justin Collins
@@ -9,7 +9,7 @@ autorequire:
9
9
  bindir: bin
10
10
  cert_chain:
11
11
  - brakeman-public_cert.pem
12
- date: 2017-12-14 00:00:00.000000000 Z
12
+ date: 2017-12-19 00:00:00.000000000 Z
13
13
  dependencies:
14
14
  - !ruby/object:Gem::Dependency
15
15
  name: minitest