RubyGems - brakeman - Versions diffs - 0.5.0 → 0.5.1 - Mend

brakeman 0.5.0 → 0.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

data/README.md +12 -10
data/lib/processors/lib/rails2_route_processor.rb +2 -2
data/lib/version.rb +1 -1
metadata +3 -3

data/README.md CHANGED

@@ -17,39 +17,41 @@ From source:
 # Usage
-    brakeman app_path
+    brakeman [app_path]
+It is simplest to run brakeman from the root directory of the Rails application. A path may also be supplied.
 # Options
 To specify an output file for the results:
-    brakeman -o output_file app_path
+    brakeman -o output_file
 The output format is determined by the file extension or by using the `-f` option. Current options are: `text`, `html`, `csv`, and `tabs`.
 To suppress informational warnings and just output the report:
-    brakeman -q app_path
+    brakeman -q
 To see all kinds of debugging information:
-    brakeman -d app_path
+    brakeman -d
 Specific checks can be skipped, if desired. The name needs to be the correct case. For example, to skip looking for default routes (`DefaultRoutes`):
-    brakeman -x DefaultRoutes app_path
+    brakeman -x DefaultRoutes
 Multiple checks should be separated by a comma:
-    brakeman -x DefaultRoutes,Redirect app_path
+    brakeman -x DefaultRoutes,Redirect
 To do the opposite and only run a certain set of tests:
-    brakeman -t SQL,ValidationRegex app_path
+    brakeman -t SQL,ValidationRegex
 To indicate certain methods are "safe":
-    brakeman -s benign_method,totally_safe app_path
+    brakeman -s benign_method,totally_safe
 By default, brakeman will assume that unknown methods involving untrusted data are dangerous. For example, this would cause a warning (Rails 2):
@@ -57,7 +59,7 @@ By default, brakeman will assume that unknown methods involving untrusted data a
 To only raise warnings only when untrusted data is being directly used:
-    brakeman -r app_path
+    brakeman -r
 # Warning information
@@ -79,7 +81,7 @@ There are three levels of confidence:
 To only get warnings above a given confidence level:
-    brakeman -w3 app_path
+    brakeman -w3
 The `-w` switch takes a number from 1 to 3, with 1 being low (all warnings) and 3 being high (only highest confidence warnings).

data/lib/processors/lib/rails2_route_processor.rb CHANGED

@@ -116,7 +116,7 @@ class RoutesProcessor < BaseProcessor
         process_collection value
       when :has_one
         save_controller = current_controller
-        process_resource value[1..-1]
+        process_resource value[1..-1] #Verify this is proper behavior
         self.current_controller = save_controller
       when :has_many
         save_controller = current_controller
@@ -164,7 +164,7 @@ class RoutesProcessor < BaseProcessor
       process_resource_options exp[-1]
     else
       exp.each do |argument|
-        if argument.node_type == :lit
+        if sexp? argument and argument.node_type == :lit
           self.current_controller = pluralize(exp[0][1].to_s)
           add_resource_routes
           process_resource_options exp[-1]

data/lib/version.rb CHANGED

	@@ -1 +1 @@
1	- Version = "0.5.0"
1	+ Version = "0.5.1"

metadata CHANGED

@@ -5,8 +5,8 @@ version: !ruby/object:Gem::Version
   segments:
   - 0
   - 5
-  - 0
-  version: 0.5.0
+  - 1
+  version: 0.5.1
 platform: ruby
 authors:
 - Justin Collins
@@ -14,7 +14,7 @@ autorequire:
 bindir: bin
 cert_chain: []
-date: 2011-06-08 00:00:00 -07:00
+date: 2011-06-17 00:00:00 -07:00
 default_executable:
 dependencies:
 - !ruby/object:Gem::Dependency