brakeman 2.4.2 → 2.4.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. data.tar.gz.sig +2 -0
  2. data/CHANGES +4 -0
  3. data/lib/brakeman/version.rb +1 -1
  4. metadata +210 -156
  5. metadata.gz.sig +0 -0
  6. checksums.yaml +0 -7
@@ -0,0 +1,2 @@
1
+ K*ӯ���J��j�]\-M6��,ς��3�Wq�*���V".����!q�5�j<���m�Tw�C�s�A�@��}[����DϠ��B�.�cp��� ���oѹGڄ:� �;VX�}0��U��^euR���B��jcU��z��s��1�DГ��
2
+ ��
data/CHANGES CHANGED
@@ -1,3 +1,7 @@
1
+ # 2.4.3
2
+
3
+ No changes. 2.4.2 gem release was unsigned, 2.4.3 is signed.
4
+
1
5
  # 2.4.2
2
6
 
3
7
  * Remove `rescue Exception`
@@ -1,3 +1,3 @@
1
1
  module Brakeman
2
- Version = "2.4.2"
2
+ Version = "2.4.3"
3
3
  end
metadata CHANGED
@@ -1,186 +1,228 @@
1
- --- !ruby/object:Gem::Specification
1
+ --- !ruby/object:Gem::Specification
2
2
  name: brakeman
3
- version: !ruby/object:Gem::Version
4
- version: 2.4.2
3
+ version: !ruby/object:Gem::Version
4
+ hash: 25
5
+ prerelease:
6
+ segments:
7
+ - 2
8
+ - 4
9
+ - 3
10
+ version: 2.4.3
5
11
  platform: ruby
6
- authors:
12
+ authors:
7
13
  - Justin Collins
8
14
  autorequire:
9
15
  bindir: bin
10
- cert_chain:
11
- - brakeman-public_cert.pem
12
- date: 2014-03-21 00:00:00.000000000 Z
13
- dependencies:
14
- - !ruby/object:Gem::Dependency
16
+ cert_chain:
17
+ - |
18
+ -----BEGIN CERTIFICATE-----
19
+ MIIDLjCCAhagAwIBAgIBADANBgkqhkiG9w0BAQUFADA9MQwwCgYDVQQDDANnZW0x
20
+ GDAWBgoJkiaJk/IsZAEZFghicmFrZW1hbjETMBEGCgmSJomT8ixkARkWA29yZzAe
21
+ Fw0xMzEyMTIwMDMxNTdaFw0xNDEyMTIwMDMxNTdaMD0xDDAKBgNVBAMMA2dlbTEY
22
+ MBYGCgmSJomT8ixkARkWCGJyYWtlbWFuMRMwEQYKCZImiZPyLGQBGRYDb3JnMIIB
23
+ IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCHmXCaAcZ4bVjijKoyQFx4N
24
+ dyN7B7bqY8wOXy6f/UZ6mdC8IRAj82KaWQjNE2LT/ObFUWpCRyLdrwjkDjdFDyOT
25
+ mZCZkiOeEy2ZxYGfxXMI/xg24c8r5Xmh16ErsYuprRcg+/KZ6s4UjseBNTARmBK4
26
+ IHcqIdnoWbYa3BWHoflJPaJUIaU+/yTclzFQHpswU7ka8ftIAWeoDQo22gasP/4N
27
+ HtJvAIyg1DcWPLcn0qbZmdehg8HZv8C+2MuLKX/2qZG9eseegMqMlHHabwwEy9Vv
28
+ f/t/+ltLjC0CRa2TqZ2EuQ5EEzbOsqAftaZJFmwv9Ut1UhjmdvR5RfN6dWMQ5QID
29
+ AQABozkwNzALBgNVHQ8EBAMCBLAwHQYDVR0OBBYEFPyEKeRy09i8qSr+9KFbeTqw
30
+ kMCSMAkGA1UdEwQCMAAwDQYJKoZIhvcNAQEFBQADggEBALEk8/Wnl2VAqchxWlbg
31
+ RN0MkVUWMf8L0xxUiVKo5QeL4NBViALMBrU6IS4y6zyn+FoULAMEawUjZlZf4Hcg
32
+ S9unev3p+RTWUyksAnA27wHZs/NRIkW34s1ZI5NNE/xyu4ULOQjfh1wOjlWzyHu9
33
+ 0t41/CtpgNPM2uAjG3RIqlp7QKXlby50cQqWJQCgTH3JNjMhmROEhTsI6COoApvd
34
+ Ce7Br39yjeoarvekq0wCXBYakUBw/DdZCG7mFZ6xgh01eqnZUsNd8vM+6V6v23Vu
35
+ jk2tMjFT4L1dA3MEsz3+MP144PDhPCh7tPe6yy81BOvyYTVkKzrAkgKwHD1CuvsH
36
+ bdw=
37
+ -----END CERTIFICATE-----
38
+
39
+ date: 2014-03-23 00:00:00 Z
40
+ dependencies:
41
+ - !ruby/object:Gem::Dependency
15
42
  name: ruby_parser
16
- requirement: !ruby/object:Gem::Requirement
17
- requirements:
18
- - - "~>"
19
- - !ruby/object:Gem::Version
20
- version: 3.4.0
21
- type: :runtime
22
43
  prerelease: false
23
- version_requirements: !ruby/object:Gem::Requirement
24
- requirements:
25
- - - "~>"
26
- - !ruby/object:Gem::Version
44
+ requirement: &id001 !ruby/object:Gem::Requirement
45
+ none: false
46
+ requirements:
47
+ - - ~>
48
+ - !ruby/object:Gem::Version
49
+ hash: 23
50
+ segments:
51
+ - 3
52
+ - 4
53
+ - 0
27
54
  version: 3.4.0
28
- - !ruby/object:Gem::Dependency
29
- name: ruby2ruby
30
- requirement: !ruby/object:Gem::Requirement
31
- requirements:
32
- - - "~>"
33
- - !ruby/object:Gem::Version
34
- version: 2.0.5
35
55
  type: :runtime
56
+ version_requirements: *id001
57
+ - !ruby/object:Gem::Dependency
58
+ name: ruby2ruby
36
59
  prerelease: false
37
- version_requirements: !ruby/object:Gem::Requirement
38
- requirements:
39
- - - "~>"
40
- - !ruby/object:Gem::Version
60
+ requirement: &id002 !ruby/object:Gem::Requirement
61
+ none: false
62
+ requirements:
63
+ - - ~>
64
+ - !ruby/object:Gem::Version
65
+ hash: 5
66
+ segments:
67
+ - 2
68
+ - 0
69
+ - 5
41
70
  version: 2.0.5
42
- - !ruby/object:Gem::Dependency
43
- name: terminal-table
44
- requirement: !ruby/object:Gem::Requirement
45
- requirements:
46
- - - "~>"
47
- - !ruby/object:Gem::Version
48
- version: '1.4'
49
71
  type: :runtime
72
+ version_requirements: *id002
73
+ - !ruby/object:Gem::Dependency
74
+ name: terminal-table
50
75
  prerelease: false
51
- version_requirements: !ruby/object:Gem::Requirement
52
- requirements:
53
- - - "~>"
54
- - !ruby/object:Gem::Version
55
- version: '1.4'
56
- - !ruby/object:Gem::Dependency
57
- name: fastercsv
58
- requirement: !ruby/object:Gem::Requirement
59
- requirements:
60
- - - "~>"
61
- - !ruby/object:Gem::Version
62
- version: '1.5'
76
+ requirement: &id003 !ruby/object:Gem::Requirement
77
+ none: false
78
+ requirements:
79
+ - - ~>
80
+ - !ruby/object:Gem::Version
81
+ hash: 7
82
+ segments:
83
+ - 1
84
+ - 4
85
+ version: "1.4"
63
86
  type: :runtime
87
+ version_requirements: *id003
88
+ - !ruby/object:Gem::Dependency
89
+ name: fastercsv
64
90
  prerelease: false
65
- version_requirements: !ruby/object:Gem::Requirement
66
- requirements:
67
- - - "~>"
68
- - !ruby/object:Gem::Version
69
- version: '1.5'
70
- - !ruby/object:Gem::Dependency
71
- name: highline
72
- requirement: !ruby/object:Gem::Requirement
73
- requirements:
74
- - - "~>"
75
- - !ruby/object:Gem::Version
76
- version: 1.6.20
91
+ requirement: &id004 !ruby/object:Gem::Requirement
92
+ none: false
93
+ requirements:
94
+ - - ~>
95
+ - !ruby/object:Gem::Version
96
+ hash: 5
97
+ segments:
98
+ - 1
99
+ - 5
100
+ version: "1.5"
77
101
  type: :runtime
102
+ version_requirements: *id004
103
+ - !ruby/object:Gem::Dependency
104
+ name: highline
78
105
  prerelease: false
79
- version_requirements: !ruby/object:Gem::Requirement
80
- requirements:
81
- - - "~>"
82
- - !ruby/object:Gem::Version
106
+ requirement: &id005 !ruby/object:Gem::Requirement
107
+ none: false
108
+ requirements:
109
+ - - ~>
110
+ - !ruby/object:Gem::Version
111
+ hash: 39
112
+ segments:
113
+ - 1
114
+ - 6
115
+ - 20
83
116
  version: 1.6.20
84
- - !ruby/object:Gem::Dependency
85
- name: erubis
86
- requirement: !ruby/object:Gem::Requirement
87
- requirements:
88
- - - "~>"
89
- - !ruby/object:Gem::Version
90
- version: '2.6'
91
117
  type: :runtime
118
+ version_requirements: *id005
119
+ - !ruby/object:Gem::Dependency
120
+ name: erubis
92
121
  prerelease: false
93
- version_requirements: !ruby/object:Gem::Requirement
94
- requirements:
95
- - - "~>"
96
- - !ruby/object:Gem::Version
97
- version: '2.6'
98
- - !ruby/object:Gem::Dependency
99
- name: haml
100
- requirement: !ruby/object:Gem::Requirement
101
- requirements:
102
- - - ">="
103
- - !ruby/object:Gem::Version
104
- version: '3.0'
105
- - - "<"
106
- - !ruby/object:Gem::Version
107
- version: '5.0'
122
+ requirement: &id006 !ruby/object:Gem::Requirement
123
+ none: false
124
+ requirements:
125
+ - - ~>
126
+ - !ruby/object:Gem::Version
127
+ hash: 15
128
+ segments:
129
+ - 2
130
+ - 6
131
+ version: "2.6"
108
132
  type: :runtime
133
+ version_requirements: *id006
134
+ - !ruby/object:Gem::Dependency
135
+ name: haml
109
136
  prerelease: false
110
- version_requirements: !ruby/object:Gem::Requirement
111
- requirements:
137
+ requirement: &id007 !ruby/object:Gem::Requirement
138
+ none: false
139
+ requirements:
112
140
  - - ">="
113
- - !ruby/object:Gem::Version
114
- version: '3.0'
115
- - - "<"
116
- - !ruby/object:Gem::Version
117
- version: '5.0'
118
- - !ruby/object:Gem::Dependency
119
- name: sass
120
- requirement: !ruby/object:Gem::Requirement
121
- requirements:
122
- - - "~>"
123
- - !ruby/object:Gem::Version
124
- version: '3.0'
141
+ - !ruby/object:Gem::Version
142
+ hash: 7
143
+ segments:
144
+ - 3
145
+ - 0
146
+ version: "3.0"
147
+ - - <
148
+ - !ruby/object:Gem::Version
149
+ hash: 31
150
+ segments:
151
+ - 5
152
+ - 0
153
+ version: "5.0"
125
154
  type: :runtime
155
+ version_requirements: *id007
156
+ - !ruby/object:Gem::Dependency
157
+ name: sass
126
158
  prerelease: false
127
- version_requirements: !ruby/object:Gem::Requirement
128
- requirements:
129
- - - "~>"
130
- - !ruby/object:Gem::Version
131
- version: '3.0'
132
- - !ruby/object:Gem::Dependency
133
- name: slim
134
- requirement: !ruby/object:Gem::Requirement
135
- requirements:
136
- - - ">="
137
- - !ruby/object:Gem::Version
138
- version: 1.3.6
139
- - - "<"
140
- - !ruby/object:Gem::Version
141
- version: '3.0'
159
+ requirement: &id008 !ruby/object:Gem::Requirement
160
+ none: false
161
+ requirements:
162
+ - - ~>
163
+ - !ruby/object:Gem::Version
164
+ hash: 7
165
+ segments:
166
+ - 3
167
+ - 0
168
+ version: "3.0"
142
169
  type: :runtime
170
+ version_requirements: *id008
171
+ - !ruby/object:Gem::Dependency
172
+ name: slim
143
173
  prerelease: false
144
- version_requirements: !ruby/object:Gem::Requirement
145
- requirements:
174
+ requirement: &id009 !ruby/object:Gem::Requirement
175
+ none: false
176
+ requirements:
146
177
  - - ">="
147
- - !ruby/object:Gem::Version
178
+ - !ruby/object:Gem::Version
179
+ hash: 23
180
+ segments:
181
+ - 1
182
+ - 3
183
+ - 6
148
184
  version: 1.3.6
149
- - - "<"
150
- - !ruby/object:Gem::Version
151
- version: '3.0'
152
- - !ruby/object:Gem::Dependency
153
- name: multi_json
154
- requirement: !ruby/object:Gem::Requirement
155
- requirements:
156
- - - "~>"
157
- - !ruby/object:Gem::Version
158
- version: '1.2'
185
+ - - <
186
+ - !ruby/object:Gem::Version
187
+ hash: 7
188
+ segments:
189
+ - 3
190
+ - 0
191
+ version: "3.0"
159
192
  type: :runtime
193
+ version_requirements: *id009
194
+ - !ruby/object:Gem::Dependency
195
+ name: multi_json
160
196
  prerelease: false
161
- version_requirements: !ruby/object:Gem::Requirement
162
- requirements:
163
- - - "~>"
164
- - !ruby/object:Gem::Version
165
- version: '1.2'
166
- description: Brakeman detects security vulnerabilities in Ruby on Rails applications
167
- via static analysis.
197
+ requirement: &id010 !ruby/object:Gem::Requirement
198
+ none: false
199
+ requirements:
200
+ - - ~>
201
+ - !ruby/object:Gem::Version
202
+ hash: 11
203
+ segments:
204
+ - 1
205
+ - 2
206
+ version: "1.2"
207
+ type: :runtime
208
+ version_requirements: *id010
209
+ description: Brakeman detects security vulnerabilities in Ruby on Rails applications via static analysis.
168
210
  email: gem@brakeman.org
169
- executables:
211
+ executables:
170
212
  - brakeman
171
213
  extensions: []
214
+
172
215
  extra_rdoc_files: []
173
- files:
216
+
217
+ files:
218
+ - bin/brakeman
174
219
  - CHANGES
220
+ - WARNING_TYPES
175
221
  - FEATURES
176
222
  - README.md
177
- - WARNING_TYPES
178
- - bin/brakeman
179
- - lib/brakeman.rb
180
223
  - lib/brakeman/app_tree.rb
181
224
  - lib/brakeman/brakeman.rake
182
225
  - lib/brakeman/call_index.rb
183
- - lib/brakeman/checks.rb
184
226
  - lib/brakeman/checks/base_check.rb
185
227
  - lib/brakeman/checks/check_basic_auth.rb
186
228
  - lib/brakeman/checks/check_content_tag.rb
@@ -232,6 +274,7 @@ files:
232
274
  - lib/brakeman/checks/check_validation_regex.rb
233
275
  - lib/brakeman/checks/check_without_protection.rb
234
276
  - lib/brakeman/checks/check_yaml_parsing.rb
277
+ - lib/brakeman/checks.rb
235
278
  - lib/brakeman/differ.rb
236
279
  - lib/brakeman/format/style.css
237
280
  - lib/brakeman/options.rb
@@ -265,7 +308,6 @@ files:
265
308
  - lib/brakeman/processors/slim_template_processor.rb
266
309
  - lib/brakeman/processors/template_alias_processor.rb
267
310
  - lib/brakeman/processors/template_processor.rb
268
- - lib/brakeman/report.rb
269
311
  - lib/brakeman/report/ignore/config.rb
270
312
  - lib/brakeman/report/ignore/interactive.rb
271
313
  - lib/brakeman/report/initializers/faster_csv.rb
@@ -289,6 +331,7 @@ files:
289
331
  - lib/brakeman/report/templates/template_overview.html.erb
290
332
  - lib/brakeman/report/templates/view_warnings.html.erb
291
333
  - lib/brakeman/report/templates/warning_overview.html.erb
334
+ - lib/brakeman/report.rb
292
335
  - lib/brakeman/rescanner.rb
293
336
  - lib/brakeman/scanner.rb
294
337
  - lib/brakeman/tracker.rb
@@ -296,30 +339,41 @@ files:
296
339
  - lib/brakeman/version.rb
297
340
  - lib/brakeman/warning.rb
298
341
  - lib/brakeman/warning_codes.rb
342
+ - lib/brakeman.rb
299
343
  - lib/ruby_parser/bm_sexp.rb
300
344
  - lib/ruby_parser/bm_sexp_processor.rb
301
345
  homepage: http://brakemanscanner.org
302
- licenses:
346
+ licenses:
303
347
  - MIT
304
- metadata: {}
305
348
  post_install_message:
306
349
  rdoc_options: []
307
- require_paths:
350
+
351
+ require_paths:
308
352
  - lib
309
- required_ruby_version: !ruby/object:Gem::Requirement
310
- requirements:
353
+ required_ruby_version: !ruby/object:Gem::Requirement
354
+ none: false
355
+ requirements:
311
356
  - - ">="
312
- - !ruby/object:Gem::Version
313
- version: '0'
314
- required_rubygems_version: !ruby/object:Gem::Requirement
315
- requirements:
357
+ - !ruby/object:Gem::Version
358
+ hash: 3
359
+ segments:
360
+ - 0
361
+ version: "0"
362
+ required_rubygems_version: !ruby/object:Gem::Requirement
363
+ none: false
364
+ requirements:
316
365
  - - ">="
317
- - !ruby/object:Gem::Version
318
- version: '0'
366
+ - !ruby/object:Gem::Version
367
+ hash: 3
368
+ segments:
369
+ - 0
370
+ version: "0"
319
371
  requirements: []
372
+
320
373
  rubyforge_project:
321
- rubygems_version: 2.2.2
374
+ rubygems_version: 1.8.15
322
375
  signing_key:
323
- specification_version: 4
376
+ specification_version: 3
324
377
  summary: Security vulnerability scanner for Ruby on Rails.
325
378
  test_files: []
379
+
Binary file
checksums.yaml DELETED
@@ -1,7 +0,0 @@
1
- ---
2
- SHA1:
3
- metadata.gz: fa10d1e40ad21da6e7335bf11387cf68af65f9bf
4
- data.tar.gz: 8a7d730a72e848072e145c779bc48054d1dbefce
5
- SHA512:
6
- metadata.gz: fdcb48dfaec2e78d0b4fea0a4fa0816ec2036c66c6fa89f3c0b1436f492249ee35851ead8ccaab4db5427360be2aaafc26a6508e951ce2572ddf0abd6ef45b93
7
- data.tar.gz: 3ce802f6bcd0111c00ea4f6d3ad64213068b7cd09a1aa3f565413e68d535a4b47d87c69334d14aaf68183f197fe69c42a53afc03a3c4ead0e452f544925bb18b