build_box 0.0.2

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 4f8916fe0f7eddb619d61671068806e61f696fa1
+  data.tar.gz: 0b6f84b6bce70a390a7888fff8ee0714a99af635
+SHA512:
+  metadata.gz: c9bf87e8142525f5bd05de7b3dfbf659f37e4fb582b5d734d547ab98ffa919bceff801ac6bec883e82637feb1b58b662d8c233f15e5aa99ea98d0ce8cf993a81
+  data.tar.gz: 89babefa1438bc4af2f5a8fbf9ba46674c945430046ad4eb5843e14b8be3bcc709950c995df432d436c6afbfc3e85d3ed70c032165390f40594da3149a2ca450

data/.gitignore

@@ -0,0 +1,19 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp
+*.sublime-project
+*.sublime-workspace

data/.rspec

@@ -0,0 +1,2 @@
+--color
+--format progress

data/Gemfile

@@ -0,0 +1,10 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in build_box.gemspec
+gemspec
+
+group :development, :test do
+  gem 'rspec'
+  gem 'simplecov', :require => false
+  gem 'pry'
+end

data/Gemfile.lock

@@ -0,0 +1,43 @@
+PATH
+  remote: .
+  specs:
+    build_box (0.0.1)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    coderay (1.1.0)
+    diff-lcs (1.2.5)
+    docile (1.1.3)
+    method_source (0.8.2)
+    multi_json (1.9.3)
+    pry (0.9.12.6)
+      coderay (~> 1.0)
+      method_source (~> 0.8)
+      slop (~> 3.4)
+    rake (10.3.1)
+    rspec (2.14.1)
+      rspec-core (~> 2.14.0)
+      rspec-expectations (~> 2.14.0)
+      rspec-mocks (~> 2.14.0)
+    rspec-core (2.14.8)
+    rspec-expectations (2.14.5)
+      diff-lcs (>= 1.1.3, < 2.0)
+    rspec-mocks (2.14.6)
+    simplecov (0.8.2)
+      docile (~> 1.1.0)
+      multi_json
+      simplecov-html (~> 0.8.0)
+    simplecov-html (0.8.0)
+    slop (3.5.0)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  build_box!
+  bundler (~> 1.5)
+  pry
+  rake
+  rspec
+  simplecov

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2014 Rafael Vettori
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,63 @@
+# BuildBox
+
+BuidBolx try apply security in execution your ruby code when unknown source.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'build_box'
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install build_box
+
+## Set It Up
+
+Remove all the bad methods and classes I can think of. But maybe you need more:
+
+```ruby
+Sandrbox.configure do |config|
+  config.bad_constants << :Rails
+  config.bad_constants << :ActiveRecord
+  config.timeout = 3 # default seconds by execution
+end
+```
+
+## How To Use It
+
+```ruby
+require 'build_box'
+
+# good execution
+result = nil
+result = BuildBox.perform(' 1 + 2 ');
+result.output # => 3
+result.error? # => false
+result.error # => nil
+
+# bad execution
+result = BuildBox.perform(' 1 + nil ');
+result.output # => nil
+result.error? # => true
+result.error # => "exception message"
+
+# execution should be failures
+BuildBox.perform('`rm -rf /`').output # => "NameError: undefined local variable or method ``' for Kernel:Module"
+BuildBox.perform('exec("rm -rf /")').output # => "NameError: undefined local variable or method `exec' for main:Object" 
+BuildBox.perform('Kernel.exec("rm -rf /")').output # => "NameError: undefined local variable or method `exec' for Kernel:Module"BuildBox.perform(['require "open3"']).output # => ["NameError: undefined local variable or method `require' for main:Object"]
+
+
+```
+
+## Contributing
+
+1. Fork it ( http://github.com/<my-github-username>/build_box/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create new Pull Request

data/Rakefile

@@ -0,0 +1 @@
+require "bundler/gem_tasks"

data/build_box.gemspec

@@ -0,0 +1,23 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'build_box/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "build_box"
+  spec.version       = BuildBox::VERSION
+  spec.authors       = ["Rafael Vettori"]
+  spec.email         = ["rafael.vettori@gmail.com"]
+  spec.summary       = %q{BuidBolx try apply security in execution your ruby code when unknown source.}
+  spec.description   = ""
+  spec.homepage      = ""
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files`.split($/)
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.5"
+  spec.add_development_dependency "rake"
+end

data/lib/build_box/config.rb

@@ -0,0 +1,58 @@
+require 'build_box/options/option'
+
+module BuildBox
+  
+  module Config
+    extend self
+    extend Options
+
+    option :bad_methods, :default => [
+      [:Object, :abort],
+      [:Kernel, :abort],
+      [:Object, :autoload],
+      [:Kernel, :autoload],
+      [:Object, :autoload?],
+      [:Kernel, :autoload?],
+      [:Object, :callcc],
+      [:Kernel, :callcc],
+      [:Object, :exit],
+      [:Kernel, :exit],
+      [:Object, :exit!],
+      [:Kernel, :exit!],
+      [:Object, :at_exit],
+      [:Kernel, :at_exit],
+      [:Object, :exec],
+      [:Kernel, :exec],
+      [:Object, :fork],
+      [:Kernel, :fork],
+      [:Object, :load],
+      [:Kernel, :load],
+      [:Object, :open],
+      [:Kernel, :open],
+      [:Object, :set_trace_func],
+      [:Kernel, :set_trace_func],
+      [:Object, :spawn],
+      [:Kernel, :spawn],
+      [:Object, :syscall],
+      [:Kernel, :syscall],
+      [:Object, :system],
+      [:Kernel, :system],
+      [:Object, :test],
+      [:Kernel, :test],
+      [:Object, :remove_method],
+      [:Kernel, :remove_method],
+      [:Object, :require],
+      [:Kernel, :require],
+      [:Object, :require_relative],
+      [:Kernel, :require_relative],
+      [:Object, :undef_method],
+      [:Kernel, :undef_method],
+      [:Object, "`".to_sym],
+      [:Kernel, "`".to_sym],
+      [:Class, "`".to_sym]
+    ]
+    option :bad_constants, :default => [:Continuation, :Open3, :File, :Dir, :IO, :BuildBox, :Process, :Thread, :Fiber, :Gem, :Net, :ThreadGroup, :SystemExit, :SignalException, :Interrupt, :FileTest, :Signal]
+   
+    option :timeout, :default => 3 
+  end
+end

data/lib/build_box/options/option.rb

@@ -0,0 +1,70 @@
+# Shamelessly stolen from Mongoid!
+module BuildBox #:nodoc
+  module Config
+
+    # Encapsulates logic for setting options.
+    module Options
+
+      # Get the defaults or initialize a new empty hash.
+      #
+      # @example Get the defaults.
+      #   options.defaults
+      #
+      # @return [ Hash ] The default options.
+      def defaults
+        @defaults ||= {}
+      end
+
+      # Define a configuration option with a default.
+      #
+      # @example Define the option.
+      #   Options.option(:persist_in_safe_mode, :default => false)
+      #
+      # @param [ Symbol ] name The name of the configuration option.
+      # @param [ Hash ] options Extras for the option.
+      #
+      # @option options [ Object ] :default The default value.
+      def option(name, options = {})
+        defaults[name] = settings[name] = options[:default]
+
+        class_eval <<-RUBY
+          def #{name}
+            settings[#{name.inspect}]
+          end
+
+          def #{name}=(value)
+            settings[#{name.inspect}] = value
+          end
+
+          def #{name}?
+            #{name}
+          end
+          
+          def reset_#{name}
+            settings[#{name.inspect}] = defaults[#{name.inspect}]
+          end
+        RUBY
+      end
+
+      # Reset the configuration options to the defaults.
+      #
+      # @example Reset the configuration options.
+      #   config.reset
+      #
+      # @return [ Hash ] The defaults.
+      def reset
+        settings.replace(defaults)
+      end
+
+      # Get the settings or initialize a new empty hash.
+      #
+      # @example Get the settings.
+      #   options.settings
+      #
+      # @return [ Hash ] The setting options.
+      def settings
+        @settings ||= {}
+      end
+    end
+  end
+end

data/lib/build_box/perform.rb

@@ -0,0 +1,84 @@
+class BuildBox::Perform
+
+  attr_accessor :output, :error, :code, :unbound_methods, :unbound_constants
+
+  def initialize(code)
+    self.unbound_methods   = []
+    self.unbound_constants = []
+    self.code = code
+    evaluate
+  end
+
+  private
+
+  def evaluate
+    t = Thread.new do
+      $SAFE = 2
+      begin
+        BuildBox.config.bad_methods.each {|meth| remove_method(meth.first, meth.last)}
+        BuildBox.config.bad_constants.each {|const| remove_constant(const)}
+        @output = eval(@code, TOPLEVEL_BINDING, "build_box")
+        @error  = nil
+      rescue Exception => e
+        @error = "#{e.class}: #{e.to_s}"
+      ensure
+        restore_constants
+        restore_methods
+      end
+    end
+
+    timeout = t.join(BuildBox.config.timeout)
+    if timeout.nil?
+      @output = "BuildBoxError: execution expired"
+      @error = true
+    end
+  end
+
+  def remove_method(klass, method)
+    const = Object.const_get(klass.to_s)
+    if const.methods.include?(method) || const.instance_methods.include?(method)
+      self.unbound_methods << [const, const.method(method).unbind]
+      metaclass = class << const; self; end
+
+      message = if const == Object
+      "undefined local variable or method `#{method}' for main:Object"
+    else
+      "undefined local variable or method `#{method}' for #{klass}:#{const.class}"
+    end
+
+    metaclass.send(:define_method, method) do |*args|
+      raise NameError, message
+    end
+
+    const.send(:define_method, method) do |*args|
+      raise NameError, message
+    end
+  end
+end
+
+def restore_methods
+  self.unbound_methods.each do |unbound|
+    klass = unbound.first
+    method = unbound.last
+
+    metaclass = class << klass; self; end
+
+    metaclass.send(:define_method, method.name) do |*args|
+      method.bind(klass).call(*args)
+    end
+
+    klass.send(:define_method, method.name) do |*args|
+      method.bind(klass).call(*args)
+    end
+  end
+end
+
+def remove_constant(constant)
+  self.unbound_constants << Object.send(:remove_const, constant) if Object.const_defined?(constant)
+end
+
+def restore_constants
+  self.unbound_constants.each {|const| Object.const_set(const.to_s.to_sym, const) unless Object.const_defined?(const.to_s.to_sym)}
+end
+
+end # BuildBox::Perform

data/lib/build_box/response.rb

@@ -0,0 +1,32 @@
+class BuildBox::Response
+
+  attr_accessor :output, :error, :old_constants
+
+  def initialize(code)
+    evaluate(code)
+  end
+
+  def error?
+    !@error.nil?
+  end
+
+  # private
+
+  def evaluate(code)
+    preserve_namespace
+    result  = BuildBox::Perform.new(code)
+    @output = result.output
+    @error  = result.error
+    restore_namespace
+  end
+
+  def preserve_namespace
+    self.old_constants = Object.constants
+  end
+  
+  def restore_namespace
+    (Object.constants - self.old_constants).each {|bad_constant| Object.send(:remove_const, bad_constant)}
+  end
+
+
+end

data/lib/build_box/version.rb

@@ -0,0 +1,3 @@
+module BuildBox
+  VERSION = "0.0.2"
+end

data/lib/build_box.rb

@@ -0,0 +1,18 @@
+require "build_box/version"
+require "build_box/config"
+require "build_box/response"
+require "build_box/perform"
+
+module BuildBox
+  extend self
+
+  def configure
+    block_given? ? yield(BuildBox::Config) : BuildBox::Config
+  end
+  alias :config :configure
+
+  def perform(code)
+    BuildBox::Response.new(code)
+  end
+
+end

data/spec/build_box_spec.rb

@@ -0,0 +1,140 @@
+require 'spec_helper'
+
+describe "BuildBox" do
+
+  describe ".perform" do
+    let(:correct_code){ '3+2+1'}
+    let(:wrong_code){ '3+2+nil'}
+
+    it "return result object" do
+      expect(BuildBox.config).to receive(:bad_methods).and_return([])
+      expect(BuildBox.config).to receive(:bad_constants).and_return([])
+      result = BuildBox.perform(correct_code)
+      expect(result).to be_a(BuildBox::Response)
+      expect(result).to_not be_nil
+    end
+
+    it "correct code syntax" do
+      expect(BuildBox.config).to receive(:bad_methods).and_return([])
+      expect(BuildBox.config).to receive(:bad_constants).and_return([])
+      result = BuildBox.perform(correct_code)
+      expect(result.error?).to be_false
+      expect(result.output).to eql(6)
+    end
+
+    it "wrong code syntax" do
+      expect(BuildBox.config).to receive(:bad_methods).and_return([])
+      expect(BuildBox.config).to receive(:bad_constants).and_return([])
+      result = BuildBox.perform(wrong_code)
+      expect(result.error?).to be_true
+      expect(result.error).to_not be_empty
+    end
+
+    it 'allows constants to be used after uninitializing them' do
+      expect(BuildBox.config).to receive(:bad_methods).and_return([])
+      expect(BuildBox.config).to receive(:bad_constants).and_return([:Net])
+      result = BuildBox.perform(' Net.methods')
+      expect(result.error?).to be_true
+      expect(Object.const_get(:Net)).to_not raise_error
+    end
+
+    it 'allows methods to be called after removing them' do
+      expect(BuildBox.config).to receive(:bad_methods).and_return([[:Kernel, :exit]])
+      expect(BuildBox.config).to receive(:bad_constants).and_return([])
+      BuildBox.perform(['a = 1 + 1'])
+      Kernel.methods.should include(:exit)
+    end
+
+    it 'waits timeout for perform code' do
+      BuildBox.config.timeout = 0.1
+      expect(BuildBox.config).to receive(:bad_methods).and_return([[:Kernel, :exit]])
+      expect(BuildBox.config).to receive(:bad_constants).and_return([])
+      result = BuildBox.perform('sleep 0.2')
+      expect(result.error?).to be_true
+    end
+
+    it 'removes previous class definitions and methods between calls' do
+      expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+      expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([])
+      BuildBox.perform("class Foo \n def test \n 'hi' \n end \n end")
+      expect(BuildBox.perform('Foo.new.test').error?).to  be_true
+      expect(BuildBox.perform('Foo.new.test').error).to  eql("NameError: uninitialized constant Foo")
+    end
+
+    context 'unsafe commands' do
+      it 'does not exit' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([])
+        expect(BuildBox.perform('exit')).to be_error
+      end
+
+      it 'does not exit for kernel' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([])
+        expect(BuildBox.perform('Kernel.exit').error).to eql("NameError: undefined local variable or method `exit' for Kernel:Module")
+      end
+
+      it 'does not exec' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([])
+        expect(BuildBox.perform('exec("ps")').error).to eql("SecurityError: Insecure operation - exec")
+      end
+
+      it 'does not exec for kernel' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([])
+        expect(BuildBox.perform('Kernel.exec("ps")').error).to eql("SecurityError: Insecure operation - exec")
+      end
+
+      it 'does not `' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([])
+        expect(BuildBox.perform('`ls`').error).to eql("SecurityError: Insecure operation - `")
+      end
+
+      it 'does not implement File' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([:File])
+        expect(BuildBox.perform('File').error).to eql("NameError: uninitialized constant File")
+      end
+
+      it 'does not implement Dir' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([:Dir])
+        expect(BuildBox.perform('Dir').error).to eql("NameError: uninitialized constant Dir")
+      end
+
+      it 'does not implement IO' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([:IO])
+        expect(BuildBox.perform('IO').error).to eql("NameError: uninitialized constant IO")
+      end
+
+      it 'does not implement Open3' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([:Open3])
+        expect(BuildBox.perform('Open3').error).to eql("NameError: uninitialized constant Open3")
+      end
+
+      it 'does not implement Open3 even after requiring it' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([:Open3])
+        expect(BuildBox.perform('require "open3"; Open3').error).to eql("SecurityError: Insecure operation - require")
+      end
+
+      it 'does not allow you to manually call protected BuildBox methods' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([:BuildBox])
+        expect(BuildBox.perform('BuildBox.inspect').error).to eql("NameError: uninitialized constant BuildBox")
+      end
+
+      it 'does not allow you to manually call children of removed classes' do
+        expect(BuildBox.config).to receive(:bad_methods).at_least(:once).and_return([])
+        expect(BuildBox.config).to receive(:bad_constants).at_least(:once).and_return([:BuildBox])
+        expect(BuildBox.perform('BuildBox::Config.inspect').error).to eql("NameError: uninitialized constant BuildBox")
+      end
+    end
+
+  end # .perform
+
+end

data/spec/spec_helper.rb

@@ -0,0 +1,27 @@
+# This file was generated by the `rspec --init` command. Conventionally, all
+# specs live under a `spec` directory, which RSpec adds to the `$LOAD_PATH`.
+# Require this file using `require "spec_helper"` to ensure that it is only
+# loaded once.
+#
+# See http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
+require 'pry'
+require 'simplecov'
+# SimpleCov.start
+
+# ENV['BUILD_BOX_ENV'] = 'test'
+
+# Dir[File.expand_path("../../", __FILE__) + "/lib/**/*.rb"].each { |f|  require f }
+require File.join(File.expand_path("../../", __FILE__), "lib", "build_box")
+
+RSpec.configure do |config|
+  config.treat_symbols_as_metadata_keys_with_true_values = true
+  config.run_all_when_everything_filtered = true
+  config.filter_run :focus
+
+  # Run specs in random order to surface order dependencies. If you find an
+  # order dependency and want to debug it, you can fix the order by providing
+  # the seed, which is printed after each run.
+  #     --seed 1234
+  # config.order = 'random'
+  config.color_enabled = true
+end

metadata

@@ -0,0 +1,91 @@
+--- !ruby/object:Gem::Specification
+name: build_box
+version: !ruby/object:Gem::Version
+  version: 0.0.2
+platform: ruby
+authors:
+- Rafael Vettori
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-05-05 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: ''
+email:
+- rafael.vettori@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.md
+- Rakefile
+- build_box.gemspec
+- lib/build_box.rb
+- lib/build_box/config.rb
+- lib/build_box/options/option.rb
+- lib/build_box/perform.rb
+- lib/build_box/response.rb
+- lib/build_box/version.rb
+- spec/build_box_spec.rb
+- spec/spec_helper.rb
+homepage: ''
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.0
+signing_key: 
+specification_version: 4
+summary: BuidBolx try apply security in execution your ruby code when unknown source.
+test_files:
+- spec/build_box_spec.rb
+- spec/spec_helper.rb
+has_rdoc: