brakeman 4.4.0 → 4.5.0

data/lib/brakeman/parsers/slim_embedded.rb

@@ -0,0 +1,44 @@
+# Fake filters for Slim
+module Slim
+  class Embedded
+    class TiltEngine
+      def on_slim_embedded(engine, body, attrs)
+        # Override this method to avoid Slim trying to load sass/scss and failing
+        case engine
+        when :sass, :scss, :coffee
+          tilt_engine = nil # Doesn't really matter, ignored below
+        else
+          # Original Slim code
+          tilt_engine = Tilt[engine] || raise(Temple::FilterError, "Tilt engine #{engine} is not available.")
+        end
+
+        tilt_options = options[engine.to_sym] || {}
+        tilt_options[:default_encoding] ||= 'utf-8'
+
+        [:multi, tilt_render(tilt_engine, tilt_options, collect_text(body)), collect_newlines(body)]
+      end
+    end
+
+    class SassEngine
+      protected
+
+      def tilt_render(tilt_engine, tilt_options, text)
+        [:dynamic,
+         "BrakemanFilter.render(#{text.inspect}, #{self.class})"]
+      end
+    end
+
+    class CoffeeEngine < TiltEngine
+      protected
+
+      def tilt_render(tilt_engine, tilt_options, text)
+        [:dynamic,
+         "BrakemanFilter.render(#{text.inspect}, #{self.class})"]
+      end
+    end
+
+    # Override the engine for CoffeeScript, because Slim doesn't have
+    # one, it just uses Tilt's
+    register :coffee, JavaScriptEngine, engine: CoffeeEngine
+  end
+end

data/lib/brakeman/parsers/template_parser.rb

@@ -75,7 +75,7 @@ module Brakeman
 
     def parse_haml path, text
       Brakeman.load_brakeman_dependency 'haml'
-      Brakeman.load_brakeman_dependency 'sass'
+      require_relative 'haml_embedded'
 
       Haml::Engine.new(text,
                        :filename => path,
@@ -83,13 +83,11 @@ module Brakeman
     rescue Haml::Error => e
       tracker.error e, ["While compiling HAML in #{path}"] << e.backtrace
       nil
-    rescue Sass::SyntaxError => e
-      tracker.error e, "While processing #{path}"
-      nil
     end
 
     def parse_slim path, text
       Brakeman.load_brakeman_dependency 'slim'
+      require_relative 'slim_embedded'
 
       Slim::Template.new(path,
                          :disable_capture => true,

data/lib/brakeman/processors/alias_processor.rb

@@ -66,7 +66,11 @@ class Brakeman::AliasProcessor < Brakeman::SexpProcessor
         end
       end
     rescue => err
-      @tracker.error err if @tracker
+      if @tracker
+        @tracker.error err
+      else
+        raise err
+      end
     end
 
     result = replace(exp)
@@ -585,6 +589,24 @@ class Brakeman::AliasProcessor < Brakeman::SexpProcessor
     exp
   end
 
+  def process_hash exp
+    exp = process_default(exp)
+
+    # Handle { **kw }
+    if node_type? exp, :hash
+      if exp.any? { |e| node_type? e, :kwsplat and node_type? e.value, :hash }
+        kwsplats, rest = exp.partition { |e| node_type? e, :kwsplat and node_type? e.value, :hash }
+        exp = Sexp.new.concat(rest).line(exp)
+
+        kwsplats.each do |e|
+          exp = process_hash_merge! exp, e.value
+        end
+      end
+    end
+
+    exp
+  end
+
   #Merge values into hash when processing
   #
   # h.merge! :something => "value"

data/lib/brakeman/processors/lib/call_conversion_helper.rb

@@ -40,6 +40,10 @@ module Brakeman
       else
         original_exp
       end
+    rescue Encoding::CompatibilityError => e
+      # If the two strings are different encodings, we can't join them.
+      Brakeman.debug e.inspect
+      original_exp
     end
 
     def math_op op, lhs, rhs, original_exp = nil

data/lib/brakeman/processors/slim_template_processor.rb

@@ -8,6 +8,7 @@ class Brakeman::SlimTemplateProcessor < Brakeman::TemplateProcessor
   OUTPUT_BUFFER = s(:ivar, :@output_buffer)
   TEMPLE_UTILS = s(:colon2, s(:colon3, :Temple), :Utils)
   ATTR_MERGE = s(:call, s(:call, s(:array), :reject, s(:block_pass, s(:lit, :empty?))), :join, s(:str, " "))
+  EMBEDDED_FILTER = s(:const, :BrakemanFilter)
 
   def process_call exp
     target = exp.target
@@ -44,6 +45,21 @@ class Brakeman::SlimTemplateProcessor < Brakeman::TemplateProcessor
     end
   end
 
+  def normalize_output arg
+    arg = super(arg)
+
+    if embedded_filter? arg
+      super(arg.first_arg)
+    else
+      arg
+    end
+  end
+
+  # Handle our "fake" embedded filters
+  def embedded_filter? arg
+    call? arg and arg.method == :render and arg.target == EMBEDDED_FILTER
+  end
+
   #Slim likes to interpolate output into strings then pass them to safe_concat.
   #Better to pull those values out directly.
   def process_inside_interp exp

data/lib/brakeman/processors/template_alias_processor.rb

@@ -27,9 +27,9 @@ class Brakeman::TemplateAliasProcessor < Brakeman::AliasProcessor
         return
       end
 
-      super name, args, @called_from.dup.add_template_render(@template.name, line, @file_name)
+      super name, args, @called_from.dup.add_template_render(@template.name, line, @file_name), line
     else
-      super name, args, Brakeman::RenderPath.new.add_template_render(@template.name, line, @file_name)
+      super name, args, Brakeman::RenderPath.new.add_template_render(@template.name, line, @file_name), line
     end
   end
 

data/lib/brakeman/scanner.rb

@@ -1,5 +1,6 @@
 begin
   Brakeman.load_brakeman_dependency 'ruby_parser'
+  Brakeman.load_brakeman_dependency 'ruby_parser/legacy'
   require 'ruby_parser/bm_sexp.rb'
   require 'ruby_parser/bm_sexp_processor.rb'
   require 'brakeman/processor'
@@ -118,7 +119,7 @@ class Brakeman::Scanner
     path = "config/#{file}"
 
     if @app_tree.exists?(path)
-      @processor.process_config(parse_ruby(@app_tree.read(path)), path)
+      @processor.process_config(parse_ruby_file(path), path)
     end
 
   rescue => e
@@ -132,9 +133,9 @@ class Brakeman::Scanner
   def process_gems
     gem_files = {}
     if @app_tree.exists? "Gemfile"
-      gem_files[:gemfile] = { :src => parse_ruby(@app_tree.read("Gemfile")), :file => "Gemfile" }
+      gem_files[:gemfile] = { :src => parse_ruby_file("Gemfile"), :file => "Gemfile" }
     elsif @app_tree.exists? "gems.rb"
-      gem_files[:gemfile] = { :src => parse_ruby(@app_tree.read("gems.rb")), :file => "gems.rb" }
+      gem_files[:gemfile] = { :src => parse_ruby_file("gems.rb"), :file => "gems.rb" }
     end
 
     if @app_tree.exists? "Gemfile.lock"
@@ -144,7 +145,7 @@ class Brakeman::Scanner
     end
 
     if @app_tree.gemspec
-      gem_files[:gemspec] = { :src => parse_ruby(@app_tree.read(@app_tree.gemspec)), :file => @app_tree.gemspec }
+      gem_files[:gemspec] = { :src => parse_ruby_file(@app_tree.gemspec), :file => @app_tree.gemspec }
     end
 
     if not gem_files.empty?
@@ -214,10 +215,9 @@ class Brakeman::Scanner
   #Adds parsed information to tracker.routes
   def process_routes
     if @app_tree.exists?("config/routes.rb")
-      begin
-        @processor.process_routes parse_ruby(@app_tree.read("config/routes.rb"))
-      rescue => e
-        tracker.error e.exception(e.message + "\nWhile processing routes.rb"), e.backtrace
+      if routes_sexp = parse_ruby_file("config/routes.rb")
+        @processor.process_routes routes_sexp
+      else
         Brakeman.notify "[Notice] Error while processing routes - assuming all public controller methods are actions."
         options[:assume_all_routes] = true
       end
@@ -316,8 +316,9 @@ class Brakeman::Scanner
     tracker.index_call_sites
   end
 
-  def parse_ruby input
-    RubyParser.new.parse input
+  def parse_ruby_file path
+    fp = Brakeman::FileParser.new(self.tracker, @app_tree)
+    fp.parse_ruby(@app_tree.read(path), path)
   end
 end
 

data/lib/brakeman/tracker.rb

@@ -61,7 +61,11 @@ class Brakeman::Tracker
     Brakeman.debug exception
     Brakeman.debug backtrace
 
-    @errors << { :error => exception.to_s.gsub("\n", " "), :backtrace => backtrace }
+    @errors << {
+      :exception => exception,
+      :error => exception.to_s.gsub("\n", " "),
+      :backtrace => backtrace
+    }
   end
 
   #Run a set of checks on the current information. Results will be stored

data/lib/brakeman/tracker/config.rb

@@ -122,22 +122,22 @@ module Brakeman
       current_version ||= rails_version
       return false unless current_version
 
-      version = current_version.split(".").map!(&:to_i)
-      low_version = low_version.split(".").map!(&:to_i)
-      high_version = high_version.split(".").map!(&:to_i)
+      version = current_version.split(".").map! { |v| convert_version_number v }
+      low_version = low_version.split(".").map! { |v| convert_version_number v }
+      high_version = high_version.split(".").map! { |v| convert_version_number v }
 
       version.each_with_index do |v, i|
-        if v < low_version.fetch(i, 0)
+        if lower? v, low_version.fetch(i, 0)
           return false
-        elsif v > low_version.fetch(i, 0)
+        elsif higher? v, low_version.fetch(i, 0)
           break
         end
       end
 
       version.each_with_index do |v, i|
-        if v > high_version.fetch(i, 0)
+        if higher? v, high_version.fetch(i, 0)
           return false
-        elsif v < high_version.fetch(i, 0)
+        elsif lower? v, high_version.fetch(i, 0)
           break
         end
       end
@@ -150,5 +150,30 @@ module Brakeman
         @rails[:action_controller][:session]
     end
 
+    private
+
+    def convert_version_number value
+      if value.match(/\A\d+\z/)
+        value.to_i
+      else
+        value
+      end
+    end
+
+    def lower? lhs, rhs
+      if lhs.class == rhs.class
+        lhs < rhs
+      else
+        false
+      end
+    end
+
+    def higher? lhs, rhs
+      if lhs.class == rhs.class
+        lhs > rhs
+      else
+        false
+      end
+    end
   end
 end

data/lib/brakeman/util.rb

@@ -94,11 +94,21 @@ module Brakeman::Util
   # end
   # names #["bob"]
   def hash_iterate hash
+    hash = remove_kwsplat(hash)
+
     1.step(hash.length - 1, 2) do |i|
       yield hash[i], hash[i + 1]
     end
   end
 
+  def remove_kwsplat exp
+    if exp.any? { |e| node_type? e, :kwsplat }
+      exp.reject { |e| node_type? e, :kwsplat }
+    else
+      exp
+    end
+  end
+
   #Insert value into Hash Sexp
   def hash_insert hash, key, value
     index = 1
@@ -264,6 +274,13 @@ module Brakeman::Util
     node_type? exp, :const, :colon2, :colon3
   end
 
+  def kwsplat? exp
+    exp.is_a? Sexp and
+      exp.node_type == :hash and
+      exp[1].is_a? Sexp and
+      exp[1].node_type == :kwsplat
+  end
+
   #Check if _exp_ is a Sexp.
   def sexp? exp
     exp.is_a? Sexp

data/lib/brakeman/version.rb

@@ -1,3 +1,3 @@
 module Brakeman
-  Version = "4.4.0"
+  Version = "4.5.0"
 end

metadata

@@ -1,15 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: brakeman
 version: !ruby/object:Gem::Version
-  version: 4.4.0
+  version: 4.5.0
 platform: ruby
 authors:
 - Justin Collins
 autorequire: 
 bindir: bin
-cert_chain:
-- brakeman-public_cert.pem
-date: 2019-01-17 00:00:00.000000000 Z
+cert_chain: []
+date: 2019-03-16 00:00:00.000000000 Z
 dependencies: []
 description: Brakeman detects security vulnerabilities in Ruby on Rails applications
   via static analysis.
@@ -105,256 +104,92 @@ files:
 - bundle/ruby/2.5.0/gems/highline-1.7.10/lib/highline/system_extensions.rb
 - bundle/ruby/2.5.0/gems/highline-1.7.10/lib/highline/version.rb
 - bundle/ruby/2.5.0/gems/highline-1.7.10/setup.rb
-- bundle/ruby/2.5.0/gems/ruby2ruby-2.4.1/History.rdoc
-- bundle/ruby/2.5.0/gems/ruby2ruby-2.4.1/Manifest.txt
-- bundle/ruby/2.5.0/gems/ruby2ruby-2.4.1/README.rdoc
-- bundle/ruby/2.5.0/gems/ruby2ruby-2.4.1/lib/ruby2ruby.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/History.rdoc
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/Manifest.txt
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/README.rdoc
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/compare/normalize.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/rp_extensions.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/rp_stringscanner.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby18_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby18_parser.y
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby19_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby19_parser.y
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby20_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby20_parser.y
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby21_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby21_parser.y
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby22_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby22_parser.y
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby23_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby23_parser.y
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby24_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby24_parser.y
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby25_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby25_parser.y
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby_lexer.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby_lexer.rex
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby_lexer.rex.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby_parser.rb
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby_parser.yy
-- bundle/ruby/2.5.0/gems/ruby_parser-3.12.0/lib/ruby_parser_extras.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/CHANGES.md
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/Gemfile
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/LICENSE.txt
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/README.md
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/bundle_install_all_ruby_versions.sh
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/deep.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/libyaml_checker.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/load.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/parse/date.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/parse/hexadecimal.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/parse/sexagesimal.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/psych_handler.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/psych_resolver.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/resolver.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/safe_to_ruby_visitor.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/syck_hack.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/syck_node_monkeypatch.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/syck_resolver.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/transform.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/transform/to_boolean.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/transform/to_date.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/transform/to_float.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/transform/to_integer.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/transform/to_nil.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/transform/to_symbol.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/transform/transformation_map.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/lib/safe_yaml/version.rb
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/run_specs_all_ruby_versions.sh
-- bundle/ruby/2.5.0/gems/safe_yaml-1.0.4/safe_yaml.gemspec
-- bundle/ruby/2.5.0/gems/sass-3.4.25/CODE_OF_CONDUCT.md
-- bundle/ruby/2.5.0/gems/sass-3.4.25/CONTRIBUTING.md
-- bundle/ruby/2.5.0/gems/sass-3.4.25/MIT-LICENSE
-- bundle/ruby/2.5.0/gems/sass-3.4.25/README.md
-- bundle/ruby/2.5.0/gems/sass-3.4.25/REVISION
-- bundle/ruby/2.5.0/gems/sass-3.4.25/VERSION
-- bundle/ruby/2.5.0/gems/sass-3.4.25/VERSION_DATE
-- bundle/ruby/2.5.0/gems/sass-3.4.25/VERSION_NAME
-- bundle/ruby/2.5.0/gems/sass-3.4.25/extra/sass-spec-ref.sh
-- bundle/ruby/2.5.0/gems/sass-3.4.25/extra/update_watch.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/init.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/cache_stores.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/cache_stores/base.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/cache_stores/chain.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/cache_stores/filesystem.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/cache_stores/memory.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/cache_stores/null.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/callbacks.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/css.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/deprecation.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/engine.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/environment.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/error.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/exec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/exec/base.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/exec/sass_convert.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/exec/sass_scss.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/features.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/importers.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/importers/base.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/importers/deprecated_path.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/importers/filesystem.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/logger.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/logger/base.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/logger/delayed.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/logger/log_level.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/media.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/plugin.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/plugin/compiler.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/plugin/configuration.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/plugin/generic.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/plugin/merb.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/plugin/rack.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/plugin/rails.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/plugin/staleness_checker.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/railtie.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/repl.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/root.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/css_lexer.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/css_parser.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/css_variable_warning.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/functions.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/lexer.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/parser.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/funcall.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/interpolation.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/list_literal.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/literal.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/map_literal.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/operation.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/selector.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/string_interpolation.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/unary_operation.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/tree/variable.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/arg_list.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/base.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/bool.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/color.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/helpers.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/list.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/map.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/null.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/number.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/script/value/string.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/scss.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/scss/css_parser.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/scss/parser.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/scss/rx.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/scss/static_parser.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/selector.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/selector/abstract_sequence.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/selector/comma_sequence.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/selector/pseudo.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/selector/sequence.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/selector/simple.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/selector/simple_sequence.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/shared.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/source/map.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/source/position.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/source/range.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/stack.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/supports.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/at_root_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/charset_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/comment_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/content_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/css_import_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/debug_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/directive_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/each_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/error_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/extend_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/for_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/function_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/if_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/import_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/keyframe_rule_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/media_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/mixin_def_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/mixin_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/prop_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/return_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/root_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/rule_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/supports_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/trace_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/variable_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/base.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/check_nesting.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/convert.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/cssize.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/deep_copy.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/extend.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/perform.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/set_options.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/visitors/to_css.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/warn_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/tree/while_node.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/util.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/util/cross_platform_random.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/util/multibyte_string_scanner.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/util/normalized_map.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/util/ordered_hash.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/util/subset_map.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/util/test.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/lib/sass/version.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/rails/init.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/CHANGELOG.md
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/CONTRIBUTING.md
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/Gemfile
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/Guardfile
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/LICENSE
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/README.md
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/Rakefile
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/Vagrantfile
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/adapter.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/adapters/bsd.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/adapters/darwin.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/adapters/linux.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/adapters/polling.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/adapters/windows.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/directory_record.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/listener.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/turnstile.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/lib/listen/version.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/listen.gemspec
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/adapter_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/adapters/bsd_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/adapters/darwin_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/adapters/linux_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/adapters/polling_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/adapters/windows_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/directory_record_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/listener_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen/turnstile_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/listen_spec.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/spec_helper.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/support/adapter_helper.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/support/directory_record_helper.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/support/fixtures_helper.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/support/listeners_helper.rb
-- bundle/ruby/2.5.0/gems/sass-3.4.25/vendor/listen/spec/support/platform_helper.rb
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/History.rdoc
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/Manifest.txt
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/README.rdoc
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/lib/composite_sexp_processor.rb
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/lib/pt_testcase.rb
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/lib/sexp.rb
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/lib/sexp_processor.rb
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/lib/strict_sexp.rb
-- bundle/ruby/2.5.0/gems/sexp_processor-4.11.0/lib/unique.rb
+- bundle/ruby/2.5.0/gems/ruby2ruby-2.4.2/History.rdoc
+- bundle/ruby/2.5.0/gems/ruby2ruby-2.4.2/Manifest.txt
+- bundle/ruby/2.5.0/gems/ruby2ruby-2.4.2/README.rdoc
+- bundle/ruby/2.5.0/gems/ruby2ruby-2.4.2/lib/ruby2ruby.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/History.rdoc
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/Manifest.txt
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/README.rdoc
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/compare/normalize.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/debugging.md
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/rp_extensions.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/rp_stringscanner.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby20_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby20_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby21_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby21_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby22_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby22_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby23_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby23_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby24_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby24_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby25_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby25_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby26_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby26_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby_lexer.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby_lexer.rex
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby_lexer.rex.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby_parser.yy
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/lib/ruby_parser_extras.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/tools/munge.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-3.13.0/tools/ripper.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/History.rdoc
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/Manifest.txt
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/README.rdoc
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby18_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby18_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby19_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby19_parser.y
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_lexer.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_lexer.rex
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_lexer.rex.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_parser.rb
+- bundle/ruby/2.5.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_parser_extras.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/CHANGES.md
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/Gemfile
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/LICENSE.txt
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/README.md
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/bundle_install_all_ruby_versions.sh
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/deep.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/libyaml_checker.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/load.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/parse/date.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/parse/hexadecimal.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/parse/sexagesimal.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/psych_handler.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/psych_resolver.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/resolver.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/safe_to_ruby_visitor.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/store.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/syck_hack.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/syck_node_monkeypatch.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/syck_resolver.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_boolean.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_date.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_float.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_integer.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_nil.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_symbol.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/transformation_map.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/lib/safe_yaml/version.rb
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/run_specs_all_ruby_versions.sh
+- bundle/ruby/2.5.0/gems/safe_yaml-1.0.5/safe_yaml.gemspec
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/History.rdoc
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/Manifest.txt
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/README.rdoc
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/lib/composite_sexp_processor.rb
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/lib/pt_testcase.rb
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/lib/sexp.rb
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/lib/sexp_processor.rb
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/lib/strict_sexp.rb
+- bundle/ruby/2.5.0/gems/sexp_processor-4.12.0/lib/unique.rb
 - bundle/ruby/2.5.0/gems/slim-4.0.1/CHANGES
 - bundle/ruby/2.5.0/gems/slim-4.0.1/Gemfile
 - bundle/ruby/2.5.0/gems/slim-4.0.1/LICENSE
@@ -387,60 +222,60 @@ files:
 - bundle/ruby/2.5.0/gems/slim-4.0.1/lib/slim/translator.rb
 - bundle/ruby/2.5.0/gems/slim-4.0.1/lib/slim/version.rb
 - bundle/ruby/2.5.0/gems/slim-4.0.1/slim.gemspec
-- bundle/ruby/2.5.0/gems/temple-0.8.0/CHANGES
-- bundle/ruby/2.5.0/gems/temple-0.8.0/EXPRESSIONS.md
-- bundle/ruby/2.5.0/gems/temple-0.8.0/Gemfile
-- bundle/ruby/2.5.0/gems/temple-0.8.0/LICENSE
-- bundle/ruby/2.5.0/gems/temple-0.8.0/README.md
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/engine.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/erb/engine.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/erb/parser.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/erb/template.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/erb/trimming.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/exceptions.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filter.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/code_merger.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/control_flow.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/dynamic_inliner.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/encoding.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/eraser.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/escapable.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/multi_flattener.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/remove_bom.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/static_analyzer.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/static_merger.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/string_splitter.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/filters/validator.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/generator.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/generators/array.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/generators/array_buffer.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/generators/erb.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/generators/rails_output_buffer.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/generators/string_buffer.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/grammar.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/html/attribute_merger.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/html/attribute_remover.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/html/attribute_sorter.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/html/dispatcher.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/html/fast.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/html/filter.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/html/pretty.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/html/safe.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/map.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/mixins/dispatcher.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/mixins/engine_dsl.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/mixins/grammar_dsl.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/mixins/options.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/mixins/template.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/parser.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/static_analyzer.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/templates.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/templates/rails.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/templates/tilt.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/utils.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/lib/temple/version.rb
-- bundle/ruby/2.5.0/gems/temple-0.8.0/temple.gemspec
+- bundle/ruby/2.5.0/gems/temple-0.8.1/CHANGES
+- bundle/ruby/2.5.0/gems/temple-0.8.1/EXPRESSIONS.md
+- bundle/ruby/2.5.0/gems/temple-0.8.1/Gemfile
+- bundle/ruby/2.5.0/gems/temple-0.8.1/LICENSE
+- bundle/ruby/2.5.0/gems/temple-0.8.1/README.md
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/engine.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/erb/engine.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/erb/parser.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/erb/template.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/erb/trimming.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/exceptions.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filter.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/code_merger.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/control_flow.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/dynamic_inliner.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/encoding.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/eraser.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/escapable.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/multi_flattener.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/remove_bom.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/static_analyzer.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/static_merger.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/string_splitter.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/filters/validator.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/generator.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/generators/array.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/generators/array_buffer.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/generators/erb.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/generators/rails_output_buffer.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/generators/string_buffer.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/grammar.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/html/attribute_merger.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/html/attribute_remover.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/html/attribute_sorter.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/html/dispatcher.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/html/fast.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/html/filter.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/html/pretty.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/html/safe.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/map.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/mixins/dispatcher.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/mixins/engine_dsl.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/mixins/grammar_dsl.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/mixins/options.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/mixins/template.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/parser.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/static_analyzer.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/templates.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/templates/rails.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/templates/tilt.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/utils.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/lib/temple/version.rb
+- bundle/ruby/2.5.0/gems/temple-0.8.1/temple.gemspec
 - bundle/ruby/2.5.0/gems/terminal-table-1.8.0/Gemfile
 - bundle/ruby/2.5.0/gems/terminal-table-1.8.0/History.rdoc
 - bundle/ruby/2.5.0/gems/terminal-table-1.8.0/LICENSE.txt
@@ -502,15 +337,15 @@ files:
 - bundle/ruby/2.5.0/gems/tilt-2.0.9/lib/tilt/wikicloth.rb
 - bundle/ruby/2.5.0/gems/tilt-2.0.9/lib/tilt/yajl.rb
 - bundle/ruby/2.5.0/gems/tilt-2.0.9/tilt.gemspec
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/CHANGELOG.md
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/MIT-LICENSE.txt
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/README.md
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/data/display_width.marshal.gz
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/lib/unicode/display_width.rb
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/lib/unicode/display_width/constants.rb
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/lib/unicode/display_width/index.rb
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/lib/unicode/display_width/no_string_ext.rb
-- bundle/ruby/2.5.0/gems/unicode-display_width-1.4.1/lib/unicode/display_width/string_ext.rb
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/CHANGELOG.md
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/MIT-LICENSE.txt
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/README.md
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/data/display_width.marshal.gz
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/lib/unicode/display_width.rb
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/lib/unicode/display_width/constants.rb
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/lib/unicode/display_width/index.rb
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/lib/unicode/display_width/no_string_ext.rb
+- bundle/ruby/2.5.0/gems/unicode-display_width-1.5.0/lib/unicode/display_width/string_ext.rb
 - lib/brakeman.rb
 - lib/brakeman/app_tree.rb
 - lib/brakeman/call_index.rb
@@ -593,9 +428,11 @@ files:
 - lib/brakeman/format/style.css
 - lib/brakeman/messages.rb
 - lib/brakeman/options.rb
+- lib/brakeman/parsers/haml_embedded.rb
 - lib/brakeman/parsers/rails2_erubis.rb
 - lib/brakeman/parsers/rails2_xss_plugin_erubis.rb
 - lib/brakeman/parsers/rails3_erubis.rb
+- lib/brakeman/parsers/slim_embedded.rb
 - lib/brakeman/parsers/template_parser.rb
 - lib/brakeman/processor.rb
 - lib/brakeman/processors/alias_processor.rb
@@ -673,9 +510,9 @@ files:
 - lib/brakeman/warning_codes.rb
 - lib/ruby_parser/bm_sexp.rb
 - lib/ruby_parser/bm_sexp_processor.rb
-homepage: http://brakemanscanner.org
+homepage: https://brakemanscanner.org
 licenses:
-- Nonstandard
+- Brakeman Public Use License
 metadata: {}
 post_install_message: 
 rdoc_options: []
@@ -685,7 +522,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 2.3.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="