brakeman 4.1.1 → 4.2.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (72) hide show
  1. checksums.yaml +5 -5
  2. data/CHANGES.md +13 -0
  3. data/bundle/load.rb +3 -3
  4. data/bundle/ruby/2.3.0/gems/{ruby2ruby-2.4.0 → ruby2ruby-2.4.1}/History.rdoc +7 -0
  5. data/bundle/ruby/2.3.0/gems/{ruby2ruby-2.4.0 → ruby2ruby-2.4.1}/Manifest.txt +0 -0
  6. data/bundle/ruby/2.3.0/gems/{ruby2ruby-2.4.0 → ruby2ruby-2.4.1}/README.rdoc +0 -0
  7. data/bundle/ruby/2.3.0/gems/{ruby2ruby-2.4.0 → ruby2ruby-2.4.1}/Rakefile +0 -0
  8. data/bundle/ruby/2.3.0/gems/{ruby2ruby-2.4.0 → ruby2ruby-2.4.1}/bin/r2r_show +0 -0
  9. data/bundle/ruby/2.3.0/gems/{ruby2ruby-2.4.0 → ruby2ruby-2.4.1}/lib/ruby2ruby.rb +43 -2
  10. data/bundle/ruby/2.3.0/gems/{ruby2ruby-2.4.0 → ruby2ruby-2.4.1}/test/test_ruby2ruby.rb +5 -4
  11. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/History.rdoc +12 -0
  12. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/Manifest.txt +2 -0
  13. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/README.rdoc +5 -1
  14. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/Rakefile +1 -1
  15. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/bin/ruby_parse +0 -0
  16. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/bin/ruby_parse_extract_error +0 -0
  17. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/compare/normalize.rb +0 -0
  18. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/rp_extensions.rb +0 -0
  19. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/rp_stringscanner.rb +0 -0
  20. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby18_parser.rb +0 -0
  21. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby18_parser.y +0 -0
  22. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby19_parser.rb +1751 -1745
  23. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby19_parser.y +2 -2
  24. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby20_parser.rb +1717 -1717
  25. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby20_parser.y +2 -2
  26. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby21_parser.rb +1824 -1819
  27. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby21_parser.y +2 -2
  28. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby22_parser.rb +1838 -1846
  29. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby22_parser.y +2 -2
  30. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby23_parser.rb +1836 -1837
  31. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby23_parser.y +2 -2
  32. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby24_parser.rb +1836 -1837
  33. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby24_parser.y +2 -2
  34. data/bundle/ruby/2.3.0/gems/ruby_parser-3.11.0/lib/ruby25_parser.rb +6818 -0
  35. data/bundle/ruby/2.3.0/gems/ruby_parser-3.11.0/lib/ruby25_parser.y +2378 -0
  36. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby_lexer.rb +8 -2
  37. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby_lexer.rex +0 -0
  38. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby_lexer.rex.rb +0 -0
  39. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby_parser.rb +2 -0
  40. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby_parser.yy +4 -2
  41. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/lib/ruby_parser_extras.rb +2 -7
  42. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/test/test_ruby_lexer.rb +22 -0
  43. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/test/test_ruby_parser.rb +39 -0
  44. data/bundle/ruby/2.3.0/gems/{ruby_parser-3.10.1 → ruby_parser-3.11.0}/test/test_ruby_parser_extras.rb +0 -0
  45. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0/History.txt → sexp_processor-4.10.1/History.rdoc} +6 -0
  46. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/Manifest.txt +2 -2
  47. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0/README.txt → sexp_processor-4.10.1/README.rdoc} +0 -0
  48. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/Rakefile +1 -0
  49. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/lib/composite_sexp_processor.rb +0 -0
  50. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/lib/pt_testcase.rb +16 -9
  51. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/lib/sexp.rb +1 -2
  52. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/lib/sexp_processor.rb +1 -1
  53. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/lib/strict_sexp.rb +0 -0
  54. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/lib/unique.rb +0 -0
  55. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/test/test_composite_sexp_processor.rb +0 -0
  56. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/test/test_environment.rb +0 -0
  57. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/test/test_sexp.rb +0 -0
  58. data/bundle/ruby/2.3.0/gems/{sexp_processor-4.10.0 → sexp_processor-4.10.1}/test/test_sexp_processor.rb +0 -0
  59. data/lib/brakeman/app_tree.rb +1 -1
  60. data/lib/brakeman/checks/base_check.rb +2 -6
  61. data/lib/brakeman/checks/check_execute.rb +21 -3
  62. data/lib/brakeman/checks/check_redirect.rb +3 -1
  63. data/lib/brakeman/checks/check_sql.rb +2 -2
  64. data/lib/brakeman/checks/check_symbol_dos.rb +8 -0
  65. data/lib/brakeman/checks/check_unscoped_find.rb +17 -1
  66. data/lib/brakeman/processors/alias_processor.rb +5 -2
  67. data/lib/brakeman/processors/base_processor.rb +1 -5
  68. data/lib/brakeman/processors/erb_template_processor.rb +1 -1
  69. data/lib/brakeman/processors/library_processor.rb +9 -1
  70. data/lib/brakeman/version.rb +1 -1
  71. data/lib/ruby_parser/bm_sexp.rb +4 -0
  72. metadata +58 -56

There are too many changes on this page to be displayed.

The amount of changes on this page would crash your brower.

You can still verify the content by downloading the gem file manually.