codesake-dawn 1.0.2 → 1.0.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/Changelog.md +5 -0
- data/README.md +16 -0
- data/doc/dawn_1_0_announcement.md +13 -0
- data/lib/codesake/dawn/railtie.rb +9 -0
- data/lib/codesake/dawn/tasks.rb +27 -0
- data/lib/codesake/dawn/version.rb +2 -2
- data/lib/tasks/codesake-dawn_tasks.rake +1 -0
- metadata +6 -4
- data/lib/tasks/dawn.rake +0 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 55e45f0694c9d8e0b4e0475e3cee65a259ed12c3
|
4
|
+
data.tar.gz: e9361f5ffc986c29e65d7e366c4ab48c726450d0
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 5abf4f9ad44b51c2c5d4fb4fe4d091fcc22455e2dd69ce1a978a1dd971c443ff929f01be40cf0ba49990b283e85eb8906aa45d581eeedcf6a4692be25a8c5d42
|
7
|
+
data.tar.gz: 39230e2a742133875462018cbc768690f3992a2e5edf76038380f415e587648123aa92f2e2cc1ea74649559091e4340e87d5f0b560ea11518dbb3426b3a468b0
|
data/Changelog.md
CHANGED
@@ -7,6 +7,11 @@ frameworks.
|
|
7
7
|
|
8
8
|
_latest update: Fri Jan 24 07:57:58 CET 2014_
|
9
9
|
|
10
|
+
## Version 1.0.3 - codename: Lightning McQueen (2014-02-13)
|
11
|
+
|
12
|
+
* Fixing issue #37. Now the rake task is successfully loaded when you require
|
13
|
+
the 'codesake/dawn/tasks' path. The task is dawn:run.
|
14
|
+
|
10
15
|
## Version 1.0.2 - codename: Lightning McQueen (2014-01-27)
|
11
16
|
|
12
17
|
* Fixing issue #27. With rainbow gem version 2.0.0 there is an exception while
|
data/README.md
CHANGED
@@ -139,6 +139,22 @@ $ dawn -C --output json a_sinatra_webapp_directory
|
|
139
139
|
-h, --help show this help
|
140
140
|
```
|
141
141
|
|
142
|
+
### Rake task
|
143
|
+
|
144
|
+
To include Codesake::Dawn in your rake task list, you simply have to put this line in your ```Rakefile```
|
145
|
+
|
146
|
+
```
|
147
|
+
require 'codesake/dawn/tasks'
|
148
|
+
```
|
149
|
+
|
150
|
+
Then executing ```$ rake -T``` you will have a ```dawn:run``` task you want to execute.
|
151
|
+
|
152
|
+
```
|
153
|
+
$ rake -T (ruby-2.0.0-p353@engage)
|
154
|
+
rake dawn:run # Execute codesake-dawn on the current directory
|
155
|
+
...
|
156
|
+
```
|
157
|
+
|
142
158
|
### Codesake::Dawn security scan in action
|
143
159
|
|
144
160
|
As output, Codesake::Dawn will put all security checks that are failed during the scan.
|
@@ -43,6 +43,10 @@ Paolo - paolo@codesake.com
|
|
43
43
|
|
44
44
|
## Twitter announcement
|
45
45
|
|
46
|
+
### version 1.0.2
|
47
|
+
|
48
|
+
@dawnscanner version 1.0.2 is out. It fixes an annoying bug whit rainbow gem 2.0.0 #sinatra #padrino #rubyonrails #security #scanner
|
49
|
+
|
46
50
|
### version 1.0.1
|
47
51
|
|
48
52
|
@dawnscanner version 1.0.1 is out. It fixes two minor issues about #owasp #rubyonrails #cheatsheet #sinatra #padrino #security #scanner
|
@@ -53,6 +57,15 @@ Paolo - paolo@codesake.com
|
|
53
57
|
|
54
58
|
## Linkedin announcement
|
55
59
|
|
60
|
+
### version 1.0.2
|
61
|
+
@dawnscanner version 1.0.2 is out. Read the announcement online. Codesake::Dawn makes security code review fun for ruby developers, it scans 142 CVE bulletins and future release will be able to scan custom ruby code for XSS, SQL Injections and business logic flaws. It supports Sinatra, Padrino and Ruby on Rails MVC framework out of the box.
|
62
|
+
|
63
|
+
|
64
|
+
https://twitter.com/rubygems/status/427768158284677120
|
65
|
+
|
66
|
+
$ gem install codesake-dawn
|
67
|
+
$ have fun
|
68
|
+
|
56
69
|
### version 1.0.1
|
57
70
|
@dawnscanner version 1.0.1 is out. Read the announcement online. Codesake::Dawn makes security code review fun for ruby developers, it scans 142 CVE bulletins and future release will be able to scan custom ruby code for XSS, SQL Injections and business logic flaws. It supports Sinatra, Padrino and Ruby on Rails MVC framework out of the box.
|
58
71
|
|
@@ -0,0 +1,27 @@
|
|
1
|
+
require 'rake'
|
2
|
+
|
3
|
+
namespace :dawn do
|
4
|
+
|
5
|
+
task :require do
|
6
|
+
begin
|
7
|
+
require 'codesake-dawn'
|
8
|
+
rescue LoadError => e
|
9
|
+
if defined?(Rails)
|
10
|
+
Rake::Task['dawn:require_environment'].invoke
|
11
|
+
else
|
12
|
+
raise e
|
13
|
+
end
|
14
|
+
end
|
15
|
+
end
|
16
|
+
task :require_environment do
|
17
|
+
if defined?(Rails)
|
18
|
+
Rake::Task['environment'].invoke
|
19
|
+
end
|
20
|
+
require 'codesake-dawn'
|
21
|
+
end
|
22
|
+
|
23
|
+
desc 'Execute codesake-dawn on the current directory'
|
24
|
+
task :run do
|
25
|
+
system "dawn ."
|
26
|
+
end
|
27
|
+
end
|
@@ -0,0 +1 @@
|
|
1
|
+
load(File.expand_path(File.join(File.dirname(__FILE__), '../codesake/dawn/tasks.rb')))
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: codesake-dawn
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.0.
|
4
|
+
version: 1.0.3
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Paolo Perego
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2014-
|
11
|
+
date: 2014-02-13 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: codesake-commons
|
@@ -396,10 +396,12 @@ files:
|
|
396
396
|
- lib/codesake/dawn/knowledge_base.rb
|
397
397
|
- lib/codesake/dawn/padrino.rb
|
398
398
|
- lib/codesake/dawn/rails.rb
|
399
|
+
- lib/codesake/dawn/railtie.rb
|
399
400
|
- lib/codesake/dawn/sinatra.rb
|
401
|
+
- lib/codesake/dawn/tasks.rb
|
400
402
|
- lib/codesake/dawn/utils.rb
|
401
403
|
- lib/codesake/dawn/version.rb
|
402
|
-
- lib/tasks/
|
404
|
+
- lib/tasks/codesake-dawn_tasks.rake
|
403
405
|
- spec/lib/dawn/codesake_knowledgebase_spec.rb
|
404
406
|
- spec/lib/dawn/codesake_padrino_engine_disabled.rb
|
405
407
|
- spec/lib/dawn/codesake_rails_engine_disabled.rb
|
@@ -448,7 +450,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
448
450
|
version: '0'
|
449
451
|
requirements: []
|
450
452
|
rubyforge_project:
|
451
|
-
rubygems_version: 2.1
|
453
|
+
rubygems_version: 2.2.1
|
452
454
|
signing_key:
|
453
455
|
specification_version: 4
|
454
456
|
summary: dawn is a security static source code analyzer for sinatra, padrino and ruby
|
data/lib/tasks/dawn.rake
DELETED