brakeman 5.2.1 → 6.1.2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGES.md +83 -0
- data/README.md +3 -3
- data/bundle/load.rb +13 -15
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/Changelog.md +24 -0
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/Gemfile +2 -5
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/README.md +38 -3
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/highline.gemspec +3 -1
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/io_console_compatible.rb +1 -1
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/menu.rb +0 -0
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/question/answer_converter.rb +2 -5
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/question.rb +23 -13
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/question_asker.rb +3 -1
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/style.rb +0 -0
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/terminal/io_console.rb +1 -1
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/terminal/unix_stty.rb +6 -4
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/terminal.rb +7 -5
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/version.rb +1 -1
- data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline.rb +18 -5
- data/bundle/ruby/3.3.0/gems/parallel-1.24.0/lib/parallel/version.rb +4 -0
- data/bundle/ruby/{2.7.0/gems/parallel-1.21.0 → 3.3.0/gems/parallel-1.24.0}/lib/parallel.rb +151 -7
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/NEWS.md +100 -2
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/README.md +10 -1
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/attribute.rb +14 -9
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/document.rb +1 -1
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/element.rb +3 -3
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/entity.rb +25 -15
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/formatters/pretty.rb +2 -2
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/namespace.rb +8 -4
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parsers/xpathparser.rb +136 -86
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/rexml.rb +3 -1
- data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/text.rb +6 -4
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/History.rdoc +76 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/Manifest.txt +4 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/README.rdoc +9 -6
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/compare/normalize.rb +1 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/gauntlet.md +19 -18
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby20_parser.rb +10956 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby20_parser.y +64 -53
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby21_parser.rb +10981 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby21_parser.y +64 -53
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby22_parser.rb +11122 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby22_parser.y +64 -53
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby23_parser.rb +11163 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby23_parser.y +64 -53
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby24_parser.rb +11212 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby24_parser.y +64 -53
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby25_parser.rb +11212 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby25_parser.y +64 -53
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby26_parser.rb +11234 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby26_parser.y +64 -53
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby27_parser.rb +12963 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby27_parser.y +81 -67
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby30_parser.rb +13316 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby30_parser.y +210 -174
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby31_parser.rb +13649 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1/lib/ruby3_parser.yy → 3.3.0/gems/ruby_parser-3.20.3/lib/ruby31_parser.y} +255 -189
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby32_parser.rb +13601 -0
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby32_parser.y +3543 -0
- data/bundle/ruby/3.3.0/gems/ruby_parser-3.20.3/lib/ruby3_parser.yy +3635 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby_lexer.rb +26 -11
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby_lexer.rex.rb +1 -1
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby_lexer_strings.rb +2 -2
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby_parser.rb +4 -0
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby_parser.yy +81 -67
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby_parser_extras.rb +90 -24
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/tools/munge.rb +8 -2
- data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/tools/ripper.rb +14 -12
- data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/History.rdoc +25 -0
- data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/lib/pt_testcase.rb +9 -5
- data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/lib/sexp.rb +8 -2
- data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/lib/sexp_processor.rb +1 -1
- data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/lib/strict_sexp.rb +6 -5
- data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/commonmarker.rb +11 -1
- data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/csv.rb +1 -1
- data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/pandoc.rb +23 -15
- data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/redcarpet.rb +5 -2
- data/bundle/ruby/3.3.0/gems/tilt-2.0.11/lib/tilt/rst-pandoc.rb +23 -0
- data/bundle/ruby/3.3.0/gems/tilt-2.0.11/lib/tilt/sass.rb +78 -0
- data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/template.rb +12 -1
- data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt.rb +2 -1
- data/lib/brakeman/app_tree.rb +9 -2
- data/lib/brakeman/checks/base_check.rb +2 -3
- data/lib/brakeman/checks/check_basic_auth.rb +4 -2
- data/lib/brakeman/checks/check_basic_auth_timing_attack.rb +2 -1
- data/lib/brakeman/checks/check_content_tag.rb +16 -9
- data/lib/brakeman/checks/check_cookie_serialization.rb +2 -1
- data/lib/brakeman/checks/check_create_with.rb +4 -2
- data/lib/brakeman/checks/check_cross_site_scripting.rb +6 -3
- data/lib/brakeman/checks/check_csrf_token_forgery_cve.rb +2 -1
- data/lib/brakeman/checks/check_default_routes.rb +6 -3
- data/lib/brakeman/checks/check_deserialize.rb +2 -1
- data/lib/brakeman/checks/check_detailed_exceptions.rb +4 -2
- data/lib/brakeman/checks/check_digest_dos.rb +2 -1
- data/lib/brakeman/checks/check_divide_by_zero.rb +2 -1
- data/lib/brakeman/checks/check_dynamic_finders.rb +2 -1
- data/lib/brakeman/checks/check_eol_ruby.rb +4 -1
- data/lib/brakeman/checks/check_escape_function.rb +2 -1
- data/lib/brakeman/checks/check_evaluation.rb +2 -1
- data/lib/brakeman/checks/check_execute.rb +6 -3
- data/lib/brakeman/checks/check_file_access.rb +2 -1
- data/lib/brakeman/checks/check_file_disclosure.rb +2 -1
- data/lib/brakeman/checks/check_filter_skipping.rb +2 -1
- data/lib/brakeman/checks/check_force_ssl.rb +2 -1
- data/lib/brakeman/checks/check_forgery_setting.rb +4 -2
- data/lib/brakeman/checks/check_header_dos.rb +2 -1
- data/lib/brakeman/checks/check_i18n_xss.rb +2 -1
- data/lib/brakeman/checks/check_jruby_xml.rb +2 -1
- data/lib/brakeman/checks/check_json_encoding.rb +2 -1
- data/lib/brakeman/checks/check_json_entity_escape.rb +4 -2
- data/lib/brakeman/checks/check_json_parsing.rb +4 -2
- data/lib/brakeman/checks/check_link_to.rb +2 -1
- data/lib/brakeman/checks/check_link_to_href.rb +4 -2
- data/lib/brakeman/checks/check_mail_to.rb +2 -1
- data/lib/brakeman/checks/check_mass_assignment.rb +6 -3
- data/lib/brakeman/checks/check_mime_type_dos.rb +2 -1
- data/lib/brakeman/checks/check_model_attr_accessible.rb +2 -1
- data/lib/brakeman/checks/check_model_attributes.rb +4 -2
- data/lib/brakeman/checks/check_model_serialize.rb +2 -1
- data/lib/brakeman/checks/check_nested_attributes.rb +2 -1
- data/lib/brakeman/checks/check_nested_attributes_bypass.rb +2 -1
- data/lib/brakeman/checks/check_number_to_currency.rb +4 -2
- data/lib/brakeman/checks/check_page_caching_cve.rb +2 -1
- data/lib/brakeman/checks/check_pathname.rb +48 -0
- data/lib/brakeman/checks/check_permit_attributes.rb +2 -1
- data/lib/brakeman/checks/check_quote_table_name.rb +2 -1
- data/lib/brakeman/checks/check_ransack.rb +53 -0
- data/lib/brakeman/checks/check_redirect.rb +67 -31
- data/lib/brakeman/checks/check_regex_dos.rb +2 -1
- data/lib/brakeman/checks/check_render.rb +10 -3
- data/lib/brakeman/checks/check_render_dos.rb +2 -1
- data/lib/brakeman/checks/check_render_inline.rb +4 -2
- data/lib/brakeman/checks/check_response_splitting.rb +2 -1
- data/lib/brakeman/checks/check_reverse_tabnabbing.rb +2 -1
- data/lib/brakeman/checks/check_route_dos.rb +2 -1
- data/lib/brakeman/checks/check_safe_buffer_manipulation.rb +2 -1
- data/lib/brakeman/checks/check_sanitize_config_cve.rb +120 -0
- data/lib/brakeman/checks/check_sanitize_methods.rb +6 -3
- data/lib/brakeman/checks/check_secrets.rb +2 -1
- data/lib/brakeman/checks/check_select_tag.rb +2 -1
- data/lib/brakeman/checks/check_select_vulnerability.rb +2 -1
- data/lib/brakeman/checks/check_send.rb +2 -1
- data/lib/brakeman/checks/check_session_manipulation.rb +2 -1
- data/lib/brakeman/checks/check_session_settings.rb +8 -6
- data/lib/brakeman/checks/check_simple_format.rb +4 -2
- data/lib/brakeman/checks/check_single_quotes.rb +2 -1
- data/lib/brakeman/checks/check_skip_before_filter.rb +4 -2
- data/lib/brakeman/checks/check_sprockets_path_traversal.rb +2 -1
- data/lib/brakeman/checks/check_sql.rb +8 -5
- data/lib/brakeman/checks/check_sql_cves.rb +4 -2
- data/lib/brakeman/checks/check_ssl_verify.rb +2 -1
- data/lib/brakeman/checks/check_strip_tags.rb +6 -3
- data/lib/brakeman/checks/check_symbol_dos.rb +2 -1
- data/lib/brakeman/checks/check_symbol_dos_cve.rb +2 -1
- data/lib/brakeman/checks/check_template_injection.rb +2 -1
- data/lib/brakeman/checks/check_translate_bug.rb +2 -1
- data/lib/brakeman/checks/check_unsafe_reflection.rb +9 -3
- data/lib/brakeman/checks/check_unsafe_reflection_methods.rb +2 -1
- data/lib/brakeman/checks/check_unscoped_find.rb +10 -1
- data/lib/brakeman/checks/check_validation_regex.rb +2 -1
- data/lib/brakeman/checks/check_verb_confusion.rb +2 -1
- data/lib/brakeman/checks/check_weak_hash.rb +6 -3
- data/lib/brakeman/checks/check_weak_rsa_key.rb +112 -0
- data/lib/brakeman/checks/check_without_protection.rb +2 -1
- data/lib/brakeman/checks/check_xml_dos.rb +2 -1
- data/lib/brakeman/checks/check_yaml_parsing.rb +4 -2
- data/lib/brakeman/checks/eol_check.rb +4 -2
- data/lib/brakeman/options.rb +5 -1
- data/lib/brakeman/processors/alias_processor.rb +121 -24
- data/lib/brakeman/processors/gem_processor.rb +2 -2
- data/lib/brakeman/processors/lib/find_all_calls.rb +1 -0
- data/lib/brakeman/processors/lib/module_helper.rb +31 -1
- data/lib/brakeman/processors/lib/rails3_config_processor.rb +1 -1
- data/lib/brakeman/processors/library_processor.rb +6 -0
- data/lib/brakeman/report/ignore/interactive.rb +2 -2
- data/lib/brakeman/report/pager.rb +1 -1
- data/lib/brakeman/report/report_codeclimate.rb +1 -1
- data/lib/brakeman/report/report_csv.rb +2 -0
- data/lib/brakeman/report/report_github.rb +1 -1
- data/lib/brakeman/report/report_junit.rb +2 -2
- data/lib/brakeman/report/report_table.rb +5 -5
- data/lib/brakeman/report/report_text.rb +2 -0
- data/lib/brakeman/report/templates/controller_warnings.html.erb +2 -0
- data/lib/brakeman/report/templates/ignored_warnings.html.erb +2 -0
- data/lib/brakeman/report/templates/model_warnings.html.erb +2 -0
- data/lib/brakeman/report/templates/security_warnings.html.erb +2 -0
- data/lib/brakeman/report/templates/view_warnings.html.erb +2 -0
- data/lib/brakeman/rescanner.rb +3 -1
- data/lib/brakeman/scanner.rb +105 -44
- data/lib/brakeman/tracker/config.rb +81 -34
- data/lib/brakeman/tracker/controller.rb +14 -10
- data/lib/brakeman/tracker.rb +2 -2
- data/lib/brakeman/util.rb +20 -4
- data/lib/brakeman/version.rb +1 -1
- data/lib/brakeman/warning.rb +5 -2
- data/lib/brakeman/warning_codes.rb +6 -0
- data/lib/brakeman.rb +8 -5
- metadata +395 -419
- data/bundle/ruby/2.7.0/gems/highline-2.0.3/appveyor.yml +0 -37
- data/bundle/ruby/2.7.0/gems/parallel-1.21.0/lib/parallel/processor_count.rb +0 -45
- data/bundle/ruby/2.7.0/gems/parallel-1.21.0/lib/parallel/version.rb +0 -4
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby20_parser.rb +0 -7128
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby21_parser.rb +0 -7182
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby22_parser.rb +0 -7228
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby23_parser.rb +0 -7237
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby24_parser.rb +0 -7268
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby25_parser.rb +0 -7268
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby26_parser.rb +0 -7287
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby27_parser.rb +0 -8517
- data/bundle/ruby/2.7.0/gems/ruby_parser-3.18.1/lib/ruby30_parser.rb +0 -8751
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/History.rdoc +0 -6
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/Manifest.txt +0 -19
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/README.rdoc +0 -54
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby18_parser.rb +0 -5794
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby18_parser.y +0 -1909
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby19_parser.rb +0 -6186
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby19_parser.y +0 -2117
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_lexer.rb +0 -1412
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_lexer.rex +0 -179
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_lexer.rex.rb +0 -323
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_parser.rb +0 -30
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_parser_extras.rb +0 -1388
- data/bundle/ruby/2.7.0/gems/ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy.rb +0 -5
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/CHANGES.md +0 -154
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/Gemfile +0 -11
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/LICENSE.txt +0 -22
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/README.md +0 -191
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/bundle_install_all_ruby_versions.sh +0 -11
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/deep.rb +0 -34
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/libyaml_checker.rb +0 -36
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/load.rb +0 -181
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/parse/date.rb +0 -37
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/parse/hexadecimal.rb +0 -12
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/parse/sexagesimal.rb +0 -26
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/psych_handler.rb +0 -99
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/psych_resolver.rb +0 -52
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/resolver.rb +0 -94
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/safe_to_ruby_visitor.rb +0 -29
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/store.rb +0 -39
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/syck_hack.rb +0 -36
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/syck_node_monkeypatch.rb +0 -43
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/syck_resolver.rb +0 -38
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_boolean.rb +0 -21
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_date.rb +0 -13
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_float.rb +0 -33
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_integer.rb +0 -26
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_nil.rb +0 -18
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/to_symbol.rb +0 -17
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform/transformation_map.rb +0 -47
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/transform.rb +0 -41
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml/version.rb +0 -3
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/lib/safe_yaml.rb +0 -94
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/run_specs_all_ruby_versions.sh +0 -38
- data/bundle/ruby/2.7.0/gems/safe_yaml-1.0.5/safe_yaml.gemspec +0 -19
- data/bundle/ruby/2.7.0/gems/tilt-2.0.10/lib/tilt/rst-pandoc.rb +0 -18
- data/bundle/ruby/2.7.0/gems/tilt-2.0.10/lib/tilt/sass.rb +0 -52
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/CHANGES.txt +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/MIT-LICENSE +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/README.txt +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/contrib/erubis +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/contrib/erubis-run.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/contrib/inline-require +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/context.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/converter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/ec.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/ecpp.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/ejava.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/ejavascript.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/enhanced.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/eperl.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/ephp.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/eruby.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/escheme.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine/optimized.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/engine.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/enhancer.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/error.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/evaluator.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/generator.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/helper.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/helpers/rails_form_helper.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/helpers/rails_helper.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/local-setting.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/main.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/preprocessing.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/tiny.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis/util.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/lib/erubis.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/erubis-2.7.0/setup.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/CHANGELOG.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/FAQ.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/Gemfile +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/MIT-LICENSE +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/README.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/REFERENCE.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/TODO +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/haml.gemspec +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/attribute_builder.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/attribute_compiler.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/attribute_parser.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/buffer.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/compiler.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/engine.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/error.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/escapable.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/exec.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/filters.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/generator.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/helpers/action_view_extensions.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/helpers/action_view_mods.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/helpers/action_view_xss_mods.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/helpers/safe_erubi_template.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/helpers/safe_erubis_template.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/helpers/xss_mods.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/helpers.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/options.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/parser.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/plugin.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/railtie.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/sass_rails_filter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/template/options.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/template.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/temple_engine.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/temple_line_counter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/util.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml/version.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/lib/haml.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/yard/default/fulldoc/html/css/common.sass +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/haml-5.2.2/yard/default/layout/html/footer.erb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/AUTHORS +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/COPYING +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/LICENSE +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/TODO +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/builtin_styles.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/color_scheme.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/compatibility.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/custom_errors.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/import.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/list.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/list_renderer.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/menu/item.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/paginator.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/simulate.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/statement.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/string.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/string_extensions.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/template_renderer.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/terminal/ncurses.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/highline-2.0.3 → 3.3.0/gems/highline-3.0.1}/lib/highline/wrapper.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/parallel-1.21.0 → 3.3.0/gems/parallel-1.24.0}/MIT-LICENSE.txt +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/LICENSE.txt +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/attlistdecl.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/cdata.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/child.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/comment.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/doctype.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/dtd/attlistdecl.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/dtd/dtd.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/dtd/elementdecl.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/dtd/entitydecl.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/dtd/notationdecl.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/encoding.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/formatters/default.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/formatters/transitive.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/functions.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/instruction.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/light/node.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/node.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/output.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parent.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parseexception.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parsers/baseparser.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parsers/lightparser.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parsers/pullparser.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parsers/sax2parser.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parsers/streamparser.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parsers/treeparser.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/parsers/ultralightparser.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/quickpath.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/sax2listener.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/security.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/source.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/streamlistener.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/undefinednamespaceexception.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/validation/relaxng.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/validation/validation.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/validation/validationexception.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/xmldecl.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/xmltokens.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/xpath.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml/xpath_parser.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/rexml-3.2.5 → 3.3.0/gems/rexml-3.2.6}/lib/rexml.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/ruby2ruby-2.4.4/History.rdoc +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/ruby2ruby-2.4.4/Manifest.txt +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/ruby2ruby-2.4.4/README.rdoc +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/ruby2ruby-2.4.4/lib/ruby2ruby.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/debugging.md +0 -0
- /data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/rp_extensions.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/rp_stringscanner.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/ruby_parser-3.18.1 → 3.3.0/gems/ruby_parser-3.20.3}/lib/ruby_lexer.rex +0 -0
- /data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/Manifest.txt +0 -0
- /data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/README.rdoc +0 -0
- /data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/lib/composite_sexp_processor.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/lib/sexp_matcher.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/sexp_processor-4.16.0 → 3.3.0/gems/sexp_processor-4.17.1}/lib/unique.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/CHANGES +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/Gemfile +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/LICENSE +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/README.jp.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/README.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/code_attributes.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/command.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/controls.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/do_inserter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/embedded.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/end_inserter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/engine.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/erb_converter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/filter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/grammar.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/include.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/interpolation.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/logic_less/context.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/logic_less/filter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/logic_less.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/parser.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/smart/escaper.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/smart/filter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/smart/parser.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/smart.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/splat/builder.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/splat/filter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/template.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/translator.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim/version.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/lib/slim.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/slim-4.1.0/slim.gemspec +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/CHANGES +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/EXPRESSIONS.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/Gemfile +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/LICENSE +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/README.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/engine.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/erb/engine.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/erb/parser.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/erb/template.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/erb/trimming.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/exceptions.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/code_merger.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/control_flow.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/dynamic_inliner.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/encoding.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/eraser.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/escapable.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/multi_flattener.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/remove_bom.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/static_analyzer.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/static_merger.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/string_splitter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/filters/validator.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/generator.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/generators/array.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/generators/array_buffer.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/generators/erb.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/generators/rails_output_buffer.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/generators/string_buffer.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/grammar.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/html/attribute_merger.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/html/attribute_remover.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/html/attribute_sorter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/html/dispatcher.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/html/fast.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/html/filter.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/html/pretty.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/html/safe.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/map.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/mixins/dispatcher.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/mixins/engine_dsl.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/mixins/grammar_dsl.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/mixins/options.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/mixins/template.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/parser.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/static_analyzer.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/templates/rails.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/templates/tilt.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/templates.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/utils.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple/version.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/lib/temple.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/temple-0.8.2/temple.gemspec +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/Gemfile +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/History.rdoc +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/LICENSE.txt +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/Manifest +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/README.rdoc +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/Todo.rdoc +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table/cell.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table/import.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table/row.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table/separator.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table/style.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table/table.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table/table_helper.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table/version.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/lib/terminal-table.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/terminal-table-1.8.0/terminal-table.gemspec +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/COPYING +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/asciidoc.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/babel.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/bluecloth.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/builder.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/coffee.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/creole.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/dummy.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/erb.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/erubi.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/erubis.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/etanni.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/haml.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/kramdown.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/less.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/liquid.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/livescript.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/mapping.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/markaby.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/maruku.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/nokogiri.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/plain.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/prawn.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/radius.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/rdiscount.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/rdoc.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/redcloth.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/sigil.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/string.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/typescript.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/wikicloth.rb +0 -0
- /data/bundle/ruby/{2.7.0/gems/tilt-2.0.10 → 3.3.0/gems/tilt-2.0.11}/lib/tilt/yajl.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/CHANGELOG.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/MIT-LICENSE.txt +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/README.md +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/data/display_width.marshal.gz +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/lib/unicode/display_width/constants.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/lib/unicode/display_width/index.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/lib/unicode/display_width/no_string_ext.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/lib/unicode/display_width/string_ext.rb +0 -0
- /data/bundle/ruby/{2.7.0 → 3.3.0}/gems/unicode-display_width-1.8.0/lib/unicode/display_width.rb +0 -0
@@ -5,6 +5,7 @@
|
|
5
5
|
<th>Confidence</th>
|
6
6
|
<th>Controller</th>
|
7
7
|
<th>Warning Type</th>
|
8
|
+
<th>CWE ID</th>
|
8
9
|
<th>Message</th>
|
9
10
|
</tr>
|
10
11
|
</thead>
|
@@ -14,6 +15,7 @@
|
|
14
15
|
<td><%= warning['Confidence']%></td>
|
15
16
|
<td><%= warning['Controller']%></td>
|
16
17
|
<td><%= warning['Warning Type']%></td>
|
18
|
+
<td><%= warning['CWE ID']%></td>
|
17
19
|
<td><%= warning['Message']%></td>
|
18
20
|
</tr>
|
19
21
|
<% end %>
|
@@ -6,6 +6,7 @@
|
|
6
6
|
<th>Confidence</th>
|
7
7
|
<th>File</th>
|
8
8
|
<th>Warning Type</th>
|
9
|
+
<th>CWE ID</th>
|
9
10
|
<th>Message</th>
|
10
11
|
<th>Note</th>
|
11
12
|
</tr>
|
@@ -16,6 +17,7 @@
|
|
16
17
|
<td><%= warning['Confidence']%></td>
|
17
18
|
<td><%= warning['File']%></td>
|
18
19
|
<td><%= warning['Warning Type']%></td>
|
20
|
+
<td><%= warning['CWE ID']%></td>
|
19
21
|
<td><%= warning['Message']%></td>
|
20
22
|
<td><%= warning['Note']%></td>
|
21
23
|
</tr>
|
@@ -5,6 +5,7 @@
|
|
5
5
|
<th>Confidence</th>
|
6
6
|
<th>Model</th>
|
7
7
|
<th>Warning Type</th>
|
8
|
+
<th>CWE ID</th>
|
8
9
|
<th>Message</th>
|
9
10
|
</tr>
|
10
11
|
</thead>
|
@@ -14,6 +15,7 @@
|
|
14
15
|
<td><%= warning['Confidence']%></td>
|
15
16
|
<td><%= warning['Model']%></td>
|
16
17
|
<td><%= warning['Warning Type']%></td>
|
18
|
+
<td><%= warning['CWE ID']%></td>
|
17
19
|
<td><%= warning['Message']%></td>
|
18
20
|
</tr>
|
19
21
|
<% end %>
|
@@ -6,6 +6,7 @@
|
|
6
6
|
<th>Class</th>
|
7
7
|
<th>Method</th>
|
8
8
|
<th>Warning Type</th>
|
9
|
+
<th>CWE ID</th>
|
9
10
|
<th>Message</th>
|
10
11
|
</tr>
|
11
12
|
</thead>
|
@@ -16,6 +17,7 @@
|
|
16
17
|
<td><%= warning['Class']%></td>
|
17
18
|
<td><%= warning['Method']%></td>
|
18
19
|
<td><%= warning['Warning Type']%></td>
|
20
|
+
<td><%= warning['CWE ID']%></td>
|
19
21
|
<td><%= warning['Message']%></td>
|
20
22
|
</tr>
|
21
23
|
<% end %>
|
@@ -5,6 +5,7 @@
|
|
5
5
|
<th>Confidence</th>
|
6
6
|
<th>Template</th>
|
7
7
|
<th>Warning Type</th>
|
8
|
+
<th>CWE ID</th>
|
8
9
|
<th>Message</th>
|
9
10
|
</tr>
|
10
11
|
</thead>
|
@@ -27,6 +28,7 @@
|
|
27
28
|
<% end %>
|
28
29
|
</td>
|
29
30
|
<td><%= warning['Warning Type']%></td>
|
31
|
+
<td><%= warning['CWE ID']%></td>
|
30
32
|
<td><%= warning['Message']%></td>
|
31
33
|
</tr>
|
32
34
|
<% end %>
|
data/lib/brakeman/rescanner.rb
CHANGED
@@ -6,7 +6,7 @@ require 'brakeman/differ'
|
|
6
6
|
class Brakeman::Rescanner < Brakeman::Scanner
|
7
7
|
include Brakeman::Util
|
8
8
|
KNOWN_TEMPLATE_EXTENSIONS = Brakeman::TemplateParser::KNOWN_TEMPLATE_EXTENSIONS
|
9
|
-
SCAN_ORDER = [:
|
9
|
+
SCAN_ORDER = [:gemfile, :config, :initializer, :lib, :routes, :template,
|
10
10
|
:model, :controller]
|
11
11
|
|
12
12
|
#Create new Rescanner to scan changed files
|
@@ -332,6 +332,8 @@ class Brakeman::Rescanner < Brakeman::Scanner
|
|
332
332
|
:routes
|
333
333
|
when /\/config\/.+\.(rb|yml)/
|
334
334
|
:config
|
335
|
+
when /\.ruby-version/
|
336
|
+
:config
|
335
337
|
when /Gemfile|gems\./
|
336
338
|
:gemfile
|
337
339
|
else
|
data/lib/brakeman/scanner.rb
CHANGED
@@ -1,6 +1,5 @@
|
|
1
1
|
begin
|
2
2
|
Brakeman.load_brakeman_dependency 'ruby_parser'
|
3
|
-
Brakeman.load_brakeman_dependency 'ruby_parser/legacy'
|
4
3
|
require 'ruby_parser/bm_sexp.rb'
|
5
4
|
require 'ruby_parser/bm_sexp_processor.rb'
|
6
5
|
require 'brakeman/processor'
|
@@ -31,6 +30,7 @@ class Brakeman::Scanner
|
|
31
30
|
end
|
32
31
|
|
33
32
|
@processor = processor || Brakeman::Processor.new(@app_tree, options)
|
33
|
+
@show_timing = tracker.options[:debug] || tracker.options[:show_timing]
|
34
34
|
end
|
35
35
|
|
36
36
|
#Returns the Tracker generated from the scan
|
@@ -38,35 +38,89 @@ class Brakeman::Scanner
|
|
38
38
|
@processor.tracked_events
|
39
39
|
end
|
40
40
|
|
41
|
+
def process_step description
|
42
|
+
Brakeman.notify "#{description}...".ljust(40)
|
43
|
+
|
44
|
+
if @show_timing
|
45
|
+
start_t = Time.now
|
46
|
+
yield
|
47
|
+
duration = Time.now - start_t
|
48
|
+
|
49
|
+
Brakeman.notify "(#{description}) Duration: #{duration} seconds"
|
50
|
+
else
|
51
|
+
yield
|
52
|
+
end
|
53
|
+
end
|
54
|
+
|
55
|
+
def process_step_file description
|
56
|
+
if @show_timing
|
57
|
+
Brakeman.notify "Processing #{description}"
|
58
|
+
|
59
|
+
start_t = Time.now
|
60
|
+
yield
|
61
|
+
duration = Time.now - start_t
|
62
|
+
|
63
|
+
Brakeman.notify "(#{description}) Duration: #{duration} seconds"
|
64
|
+
else
|
65
|
+
yield
|
66
|
+
end
|
67
|
+
end
|
68
|
+
|
41
69
|
#Process everything in the Rails application
|
42
70
|
def process
|
43
|
-
|
44
|
-
|
45
|
-
|
46
|
-
|
47
|
-
|
48
|
-
|
49
|
-
|
50
|
-
|
51
|
-
|
52
|
-
|
53
|
-
|
54
|
-
|
55
|
-
|
56
|
-
|
57
|
-
|
58
|
-
|
59
|
-
|
60
|
-
|
61
|
-
|
62
|
-
|
63
|
-
|
64
|
-
|
65
|
-
|
66
|
-
|
67
|
-
|
68
|
-
|
69
|
-
|
71
|
+
process_step 'Processing gems' do
|
72
|
+
process_gems
|
73
|
+
end
|
74
|
+
|
75
|
+
process_step 'Processing configuration' do
|
76
|
+
guess_rails_version
|
77
|
+
process_config
|
78
|
+
end
|
79
|
+
|
80
|
+
process_step 'Parsing files' do
|
81
|
+
parse_files
|
82
|
+
end
|
83
|
+
|
84
|
+
process_step 'Detecting file types' do
|
85
|
+
detect_file_types
|
86
|
+
end
|
87
|
+
|
88
|
+
process_step 'Processing initializers' do
|
89
|
+
process_initializers
|
90
|
+
end
|
91
|
+
|
92
|
+
process_step 'Processing libs' do
|
93
|
+
process_libs
|
94
|
+
end
|
95
|
+
|
96
|
+
process_step 'Processing routes' do
|
97
|
+
process_routes
|
98
|
+
end
|
99
|
+
|
100
|
+
process_step 'Processing templates' do
|
101
|
+
process_templates
|
102
|
+
end
|
103
|
+
|
104
|
+
process_step 'Processing data flow in templates' do
|
105
|
+
process_template_data_flows
|
106
|
+
end
|
107
|
+
|
108
|
+
process_step 'Processing models' do
|
109
|
+
process_models
|
110
|
+
end
|
111
|
+
|
112
|
+
process_step 'Processing controllers' do
|
113
|
+
process_controllers
|
114
|
+
end
|
115
|
+
|
116
|
+
process_step 'Processing data flow in controllers' do
|
117
|
+
process_controller_data_flows
|
118
|
+
end
|
119
|
+
|
120
|
+
process_step 'Indexing call sites' do
|
121
|
+
index_call_sites
|
122
|
+
end
|
123
|
+
|
70
124
|
tracker
|
71
125
|
end
|
72
126
|
|
@@ -138,7 +192,7 @@ class Brakeman::Scanner
|
|
138
192
|
|
139
193
|
if @app_tree.exists? ".ruby-version"
|
140
194
|
if version = @app_tree.file_path(".ruby-version").read[/(\d\.\d.\d+)/]
|
141
|
-
tracker.config.set_ruby_version version
|
195
|
+
tracker.config.set_ruby_version version, @app_tree.file_path(".ruby-version"), 1
|
142
196
|
end
|
143
197
|
end
|
144
198
|
|
@@ -215,8 +269,9 @@ class Brakeman::Scanner
|
|
215
269
|
#Adds parsed information to tracker.initializers
|
216
270
|
def process_initializers
|
217
271
|
track_progress @file_list[:initializers] do |init|
|
218
|
-
|
219
|
-
|
272
|
+
process_step_file init[:path] do
|
273
|
+
process_initializer init
|
274
|
+
end
|
220
275
|
end
|
221
276
|
end
|
222
277
|
|
@@ -235,8 +290,9 @@ class Brakeman::Scanner
|
|
235
290
|
end
|
236
291
|
|
237
292
|
track_progress @file_list[:libs] do |lib|
|
238
|
-
|
239
|
-
|
293
|
+
process_step_file lib.path do
|
294
|
+
process_lib lib
|
295
|
+
end
|
240
296
|
end
|
241
297
|
end
|
242
298
|
|
@@ -267,8 +323,9 @@ class Brakeman::Scanner
|
|
267
323
|
#Adds processed controllers to tracker.controllers
|
268
324
|
def process_controllers
|
269
325
|
track_progress @file_list[:controllers] do |controller|
|
270
|
-
|
271
|
-
|
326
|
+
process_step_file controller.path do
|
327
|
+
process_controller controller
|
328
|
+
end
|
272
329
|
end
|
273
330
|
end
|
274
331
|
|
@@ -276,9 +333,10 @@ class Brakeman::Scanner
|
|
276
333
|
controllers = tracker.controllers.sort_by { |name, _| name.to_s }
|
277
334
|
|
278
335
|
track_progress controllers, "controllers" do |name, controller|
|
279
|
-
|
280
|
-
|
281
|
-
|
336
|
+
process_step_file name do
|
337
|
+
controller.src.each do |file, src|
|
338
|
+
@processor.process_controller_alias name, src, nil, file
|
339
|
+
end
|
282
340
|
end
|
283
341
|
end
|
284
342
|
|
@@ -301,8 +359,9 @@ class Brakeman::Scanner
|
|
301
359
|
templates = @file_list[:templates].sort_by { |t| t[:path] }
|
302
360
|
|
303
361
|
track_progress templates, "templates" do |template|
|
304
|
-
|
305
|
-
|
362
|
+
process_step_file template[:path] do
|
363
|
+
process_template template
|
364
|
+
end
|
306
365
|
end
|
307
366
|
end
|
308
367
|
|
@@ -314,8 +373,9 @@ class Brakeman::Scanner
|
|
314
373
|
templates = tracker.templates.sort_by { |name, _| name.to_s }
|
315
374
|
|
316
375
|
track_progress templates, "templates" do |name, template|
|
317
|
-
|
318
|
-
|
376
|
+
process_step_file name do
|
377
|
+
@processor.process_template_alias template
|
378
|
+
end
|
319
379
|
end
|
320
380
|
end
|
321
381
|
|
@@ -324,8 +384,9 @@ class Brakeman::Scanner
|
|
324
384
|
#Adds the processed models to tracker.models
|
325
385
|
def process_models
|
326
386
|
track_progress @file_list[:models] do |model|
|
327
|
-
|
328
|
-
|
387
|
+
process_step_file model[:path] do
|
388
|
+
process_model model[:path], model[:ast]
|
389
|
+
end
|
329
390
|
end
|
330
391
|
end
|
331
392
|
|
@@ -20,9 +20,7 @@ module Brakeman
|
|
20
20
|
|
21
21
|
def default_protect_from_forgery?
|
22
22
|
if version_between? "5.2.0.beta1", "9.9.9"
|
23
|
-
if @rails.dig(:action_controller, :default_protect_from_forgery) == Sexp.new(:
|
24
|
-
return false
|
25
|
-
else
|
23
|
+
if @rails.dig(:action_controller, :default_protect_from_forgery) == Sexp.new(:true)
|
26
24
|
return true
|
27
25
|
end
|
28
26
|
end
|
@@ -129,8 +127,9 @@ module Brakeman
|
|
129
127
|
@rails_version
|
130
128
|
end
|
131
129
|
|
132
|
-
def set_ruby_version version
|
130
|
+
def set_ruby_version version, file, line
|
133
131
|
@ruby_version = extract_version(version)
|
132
|
+
add_gem :ruby, @ruby_version, file, line
|
134
133
|
end
|
135
134
|
|
136
135
|
def extract_version version
|
@@ -166,7 +165,7 @@ module Brakeman
|
|
166
165
|
# then this will set
|
167
166
|
#
|
168
167
|
# rails[:action_controller][:perform_caching] = value
|
169
|
-
def set_rails_config value
|
168
|
+
def set_rails_config value:, path:, overwrite: false
|
170
169
|
config = self.rails
|
171
170
|
|
172
171
|
path[0..-2].each do |o|
|
@@ -182,51 +181,99 @@ module Brakeman
|
|
182
181
|
config = option
|
183
182
|
end
|
184
183
|
|
185
|
-
config[path.last]
|
184
|
+
if overwrite || config[path.last].nil?
|
185
|
+
config[path.last] = value
|
186
|
+
end
|
186
187
|
end
|
187
188
|
|
188
189
|
# Load defaults based on config.load_defaults value
|
189
190
|
# as documented here: https://guides.rubyonrails.org/configuring.html#results-of-config-load-defaults
|
190
191
|
def load_rails_defaults
|
191
|
-
return unless
|
192
|
+
return unless node_type? tracker.config.rails[:load_defaults], :lit, :str
|
193
|
+
|
194
|
+
version = tracker.config.rails[:load_defaults].value.to_s
|
195
|
+
|
196
|
+
unless version.match? /^\d+\.\d+$/
|
197
|
+
Brakeman.debug "[Notice] Unknown version: #{tracker.config.rails[:load_defaults]}"
|
198
|
+
return
|
199
|
+
end
|
192
200
|
|
193
|
-
version = tracker.config.rails[:load_defaults].value
|
194
201
|
true_value = Sexp.new(:true)
|
195
202
|
false_value = Sexp.new(:false)
|
196
203
|
|
197
|
-
if version >= 5.0
|
198
|
-
set_rails_config(true_value, :action_controller, :per_form_csrf_tokens)
|
199
|
-
set_rails_config(true_value, :action_controller, :forgery_protection_origin_check)
|
200
|
-
set_rails_config(true_value, :active_record, :belongs_to_required_by_default)
|
204
|
+
if version >= '5.0'
|
205
|
+
set_rails_config(value: true_value, path: [:action_controller, :per_form_csrf_tokens])
|
206
|
+
set_rails_config(value: true_value, path: [:action_controller, :forgery_protection_origin_check])
|
207
|
+
set_rails_config(value: true_value, path: [:active_record, :belongs_to_required_by_default])
|
201
208
|
# Note: this may need to be changed, because ssl_options is a Hash
|
202
|
-
set_rails_config(true_value, :ssl_options, :hsts, :subdomains)
|
209
|
+
set_rails_config(value: true_value, path: [:ssl_options, :hsts, :subdomains])
|
210
|
+
end
|
211
|
+
|
212
|
+
if version >= '5.1'
|
213
|
+
set_rails_config(value: false_value, path: [:assets, :unknown_asset_fallback])
|
214
|
+
set_rails_config(value: true_value, path: [:action_view, :form_with_generates_remote_forms])
|
215
|
+
end
|
216
|
+
|
217
|
+
if version >= '5.2'
|
218
|
+
set_rails_config(value: true_value, path: [:active_record, :cache_versioning])
|
219
|
+
set_rails_config(value: true_value, path: [:action_dispatch, :use_authenticated_cookie_encryption])
|
220
|
+
set_rails_config(value: true_value, path: [:active_support, :use_authenticated_message_encryption])
|
221
|
+
set_rails_config(value: true_value, path: [:active_support, :use_sha1_digests])
|
222
|
+
set_rails_config(value: true_value, path: [:action_controller, :default_protect_from_forgery])
|
223
|
+
set_rails_config(value: true_value, path: [:action_view, :form_with_generates_ids])
|
203
224
|
end
|
204
225
|
|
205
|
-
if version >=
|
206
|
-
set_rails_config(
|
207
|
-
set_rails_config(
|
226
|
+
if version >= '6.0'
|
227
|
+
set_rails_config(value: Sexp.new(:lit, :zeitwerk), path: [:autoloader])
|
228
|
+
set_rails_config(value: false_value, path: [:action_view, :default_enforce_utf8])
|
229
|
+
set_rails_config(value: true_value, path: [:action_dispatch, :use_cookies_with_metadata])
|
230
|
+
set_rails_config(value: false_value, path: [:action_dispatch, :return_only_media_type_on_content_type])
|
231
|
+
set_rails_config(value: Sexp.new(:str, 'ActionMailer::MailDeliveryJob'), path: [:action_mailer, :delivery_job])
|
232
|
+
set_rails_config(value: true_value, path: [:active_job, :return_false_on_aborted_enqueue])
|
233
|
+
set_rails_config(value: Sexp.new(:lit, :active_storage_analysis), path: [:active_storage, :queues, :analysis])
|
234
|
+
set_rails_config(value: Sexp.new(:lit, :active_storage_purge), path: [:active_storage, :queues, :purge])
|
235
|
+
set_rails_config(value: true_value, path: [:active_storage, :replace_on_assign_to_many])
|
236
|
+
set_rails_config(value: true_value, path: [:active_record, :collection_cache_versioning])
|
208
237
|
end
|
209
238
|
|
210
|
-
if version >=
|
211
|
-
set_rails_config(true_value, :
|
212
|
-
set_rails_config(
|
213
|
-
set_rails_config(
|
214
|
-
set_rails_config(
|
215
|
-
set_rails_config(true_value, :
|
216
|
-
set_rails_config(
|
239
|
+
if version >= '6.1'
|
240
|
+
set_rails_config(value: true_value, path: [:action_controller, :urlsafe_csrf_tokens])
|
241
|
+
set_rails_config(value: Sexp.new(:lit, :lax), path: [:action_dispatch, :cookies_same_site_protection])
|
242
|
+
set_rails_config(value: Sexp.new(:lit, 308), path: [:action_dispatch, :ssl_default_redirect_status])
|
243
|
+
set_rails_config(value: false_value, path: [:action_view, :form_with_generates_remote_forms])
|
244
|
+
set_rails_config(value: true_value, path: [:action_view, :preload_links_header])
|
245
|
+
set_rails_config(value: Sexp.new(:lit, 0.15), path: [:active_job, :retry_jitter])
|
246
|
+
set_rails_config(value: true_value, path: [:active_record, :has_many_inversing])
|
247
|
+
set_rails_config(value: false_value, path: [:active_record, :legacy_connection_handling])
|
248
|
+
set_rails_config(value: true_value, path: [:active_storage, :track_variants])
|
217
249
|
end
|
218
250
|
|
219
|
-
if version >=
|
220
|
-
|
221
|
-
|
222
|
-
|
223
|
-
|
224
|
-
set_rails_config(
|
225
|
-
set_rails_config(true_value, :
|
226
|
-
set_rails_config(Sexp.new(:lit, :
|
227
|
-
set_rails_config(
|
228
|
-
set_rails_config(
|
229
|
-
set_rails_config(
|
251
|
+
if version >= '7.0'
|
252
|
+
video_args =
|
253
|
+
Sexp.new(:str, "-vf 'select=eq(n\\,0)+eq(key\\,1)+gt(scene\\,0.015),loop=loop=-1:size=2,trim=start_frame=1' -frames:v 1 -f image2")
|
254
|
+
hash_class = s(:colon2, s(:colon2, s(:const, :OpenSSL), :Digest), :SHA256)
|
255
|
+
|
256
|
+
set_rails_config(value: true_value, path: [:action_controller, :raise_on_open_redirects])
|
257
|
+
set_rails_config(value: true_value, path: [:action_controller, :wrap_parameters_by_default])
|
258
|
+
set_rails_config(value: Sexp.new(:lit, :json), path: [:action_dispatch, :cookies_serializer])
|
259
|
+
set_rails_config(value: false_value, path: [:action_dispatch, :return_only_request_media_type_on_content_type])
|
260
|
+
set_rails_config(value: Sexp.new(:lit, 5), path: [:action_mailer, :smtp_timeout])
|
261
|
+
set_rails_config(value: false_value, path: [:action_view, :apply_stylesheet_media_default])
|
262
|
+
set_rails_config(value: true_value, path: [:ction_view, :button_to_generates_button_tag])
|
263
|
+
set_rails_config(value: true_value, path: [:active_record, :automatic_scope_inversing])
|
264
|
+
set_rails_config(value: false_value, path: [:active_record, :partial_inserts])
|
265
|
+
set_rails_config(value: true_value, path: [:active_record, :verify_foreign_keys_for_fixtures])
|
266
|
+
set_rails_config(value: true_value, path: [:active_storage, :multiple_file_field_include_hidden])
|
267
|
+
set_rails_config(value: Sexp.new(:lit, :vips), path: [:active_storage, :variant_processor])
|
268
|
+
set_rails_config(value: video_args, path: [:active_storage, :video_preview_arguments])
|
269
|
+
set_rails_config(value: Sexp.new(:lit, 7.0), path: [:active_support, :cache_format_version])
|
270
|
+
set_rails_config(value: true_value, path: [:active_support, :disable_to_s_conversion])
|
271
|
+
set_rails_config(value: true_value, path: [:active_support, :executor_around_test_case])
|
272
|
+
set_rails_config(value: hash_class, path: [:active_support, :hash_digest_class])
|
273
|
+
set_rails_config(value: Sexp.new(:lit, :thread), path: [:active_support, :isolation_level])
|
274
|
+
set_rails_config(value: hash_class, path: [:active_support, :key_generator_hash_digest_class])
|
275
|
+
set_rails_config(value: true_value, path: [:active_support, :remove_deprecated_time_with_zone_name])
|
276
|
+
set_rails_config(value: true_value, path: [:active_support, :use_rfc4122_namespaced_uuids])
|
230
277
|
end
|
231
278
|
end
|
232
279
|
end
|
@@ -120,16 +120,20 @@ module Brakeman
|
|
120
120
|
filter[:methods] << a[1] if a.node_type == :lit
|
121
121
|
end
|
122
122
|
|
123
|
-
|
124
|
-
|
125
|
-
|
126
|
-
|
127
|
-
|
128
|
-
|
129
|
-
|
130
|
-
|
131
|
-
|
132
|
-
|
123
|
+
options = args.last
|
124
|
+
|
125
|
+
if hash? options
|
126
|
+
# Probably only one option,
|
127
|
+
# but this also avoids issues with kwsplats
|
128
|
+
hash_iterate(options) do |option, value|
|
129
|
+
case value.node_type
|
130
|
+
when :array
|
131
|
+
filter[option.value] = value.sexp_body.map {|v| v[1] }
|
132
|
+
when :lit, :str
|
133
|
+
filter[option.value] = value[1]
|
134
|
+
else
|
135
|
+
Brakeman.debug "[Notice] Unknown before_filter value: #{option} => #{value}"
|
136
|
+
end
|
133
137
|
end
|
134
138
|
else
|
135
139
|
filter[:all] = true
|
data/lib/brakeman/tracker.rb
CHANGED
@@ -245,7 +245,7 @@ class Brakeman::Tracker
|
|
245
245
|
end
|
246
246
|
|
247
247
|
# Not in any included modules, check the parent
|
248
|
-
@method_cache[cache_key] = find_method(method_name, klass.parent)
|
248
|
+
@method_cache[cache_key] = find_method(method_name, klass.parent, method_type)
|
249
249
|
end
|
250
250
|
end
|
251
251
|
|
@@ -371,7 +371,7 @@ class Brakeman::Tracker
|
|
371
371
|
end
|
372
372
|
end
|
373
373
|
|
374
|
-
@models.delete
|
374
|
+
@models.delete(model_name)
|
375
375
|
end
|
376
376
|
|
377
377
|
#Clear information related to model
|
data/lib/brakeman/util.rb
CHANGED
@@ -265,15 +265,31 @@ module Brakeman::Util
|
|
265
265
|
false
|
266
266
|
end
|
267
267
|
|
268
|
-
|
269
|
-
|
268
|
+
# Only return true when accessing request headers via request.env[...]
|
269
|
+
def request_headers? exp
|
270
|
+
return unless sexp? exp
|
271
|
+
|
272
|
+
if exp[1] == REQUEST_ENV
|
273
|
+
if exp.method == :[]
|
274
|
+
if string? exp.first_arg
|
275
|
+
# Only care about HTTP headers, which are prefixed by 'HTTP_'
|
276
|
+
exp.first_arg.value.start_with?('HTTP_'.freeze)
|
277
|
+
else
|
278
|
+
true # request.env[something]
|
279
|
+
end
|
280
|
+
else
|
281
|
+
false # request.env.something
|
282
|
+
end
|
283
|
+
else
|
284
|
+
false
|
285
|
+
end
|
270
286
|
end
|
271
287
|
|
272
|
-
#Check if exp is params, cookies, or
|
288
|
+
#Check if exp is params, cookies, or request_headers
|
273
289
|
def request_value? exp
|
274
290
|
params? exp or
|
275
291
|
cookies? exp or
|
276
|
-
|
292
|
+
request_headers? exp
|
277
293
|
end
|
278
294
|
|
279
295
|
def constant? exp
|
data/lib/brakeman/version.rb
CHANGED
data/lib/brakeman/warning.rb
CHANGED
@@ -5,7 +5,7 @@ require 'brakeman/messages'
|
|
5
5
|
|
6
6
|
#The Warning class stores information about warnings
|
7
7
|
class Brakeman::Warning
|
8
|
-
attr_reader :called_from, :check, :class, :confidence, :controller,
|
8
|
+
attr_reader :called_from, :check, :class, :confidence, :controller, :cwe_id,
|
9
9
|
:line, :method, :model, :template, :user_input, :user_input_type,
|
10
10
|
:warning_code, :warning_set, :warning_type
|
11
11
|
|
@@ -31,6 +31,7 @@ class Brakeman::Warning
|
|
31
31
|
:class => :@class,
|
32
32
|
:code => :@code,
|
33
33
|
:controller => :@controller,
|
34
|
+
:cwe_id => :@cwe_id,
|
34
35
|
:file => :@file,
|
35
36
|
:gem_info => :@gem_info,
|
36
37
|
:line => :@line,
|
@@ -219,6 +220,7 @@ class Brakeman::Warning
|
|
219
220
|
def to_row type = :warning
|
220
221
|
@row = { "Confidence" => TEXT_CONFIDENCE[self.confidence],
|
221
222
|
"Warning Type" => self.warning_type.to_s,
|
223
|
+
"CWE ID" => self.cwe_id,
|
222
224
|
"Message" => self.message }
|
223
225
|
|
224
226
|
case type
|
@@ -302,7 +304,8 @@ class Brakeman::Warning
|
|
302
304
|
:render_path => render_path,
|
303
305
|
:location => self.location(false),
|
304
306
|
:user_input => (@user_input && self.format_user_input(false)),
|
305
|
-
:confidence => self.confidence_name
|
307
|
+
:confidence => self.confidence_name,
|
308
|
+
:cwe_id => cwe_id
|
306
309
|
}
|
307
310
|
end
|
308
311
|
|
@@ -125,6 +125,12 @@ module Brakeman::WarningCodes
|
|
125
125
|
:eol_ruby => 121,
|
126
126
|
:pending_eol_rails => 122,
|
127
127
|
:pending_eol_ruby => 123,
|
128
|
+
:CVE_2022_32209 => 124,
|
129
|
+
:pathname_traversal => 125,
|
130
|
+
:insecure_rsa_padding_mode => 126,
|
131
|
+
:missing_rsa_padding_mode => 127,
|
132
|
+
:small_rsa_key_size => 128,
|
133
|
+
:ransack_search => 129,
|
128
134
|
|
129
135
|
:custom_check => 9090,
|
130
136
|
}
|
data/lib/brakeman.rb
CHANGED
@@ -128,9 +128,8 @@ module Brakeman
|
|
128
128
|
|
129
129
|
#Load configuration file
|
130
130
|
if config = config_file(custom_location, app_path)
|
131
|
-
require '
|
132
|
-
|
133
|
-
options = SafeYAML.load_file config, :deserialize_symbols => true
|
131
|
+
require 'yaml'
|
132
|
+
options = YAML.safe_load_file config, permitted_classes: [Symbol], symbolize_names: true
|
134
133
|
|
135
134
|
if options
|
136
135
|
options.each { |k, v| options[k] = Set.new v if v.is_a? Array }
|
@@ -493,10 +492,14 @@ module Brakeman
|
|
493
492
|
end
|
494
493
|
|
495
494
|
tracker = run(options)
|
495
|
+
new_report = JSON.parse(tracker.report.to_json, symbolize_names: true)
|
496
496
|
|
497
|
-
new_results =
|
497
|
+
new_results = new_report[:warnings]
|
498
|
+
obsolete_ignored = tracker.unused_fingerprints
|
498
499
|
|
499
|
-
Brakeman::Differ.new(new_results, previous_results).diff
|
500
|
+
Brakeman::Differ.new(new_results, previous_results).diff.tap do |diff|
|
501
|
+
diff[:obsolete] = obsolete_ignored
|
502
|
+
end
|
500
503
|
end
|
501
504
|
|
502
505
|
def self.load_brakeman_dependency name, allow_fail = false
|