codez-tarantula 0.5.3 → 0.5.4

checksums.yaml

@@ -1,15 +1,7 @@
 ---
-!binary "U0hBMQ==":
-  metadata.gz: !binary |-
-    ODQxNDU0NGJhMWE5YzI2MjNlZjk0MmNkNzhmYzg0YzA0MDRmM2ZkZA==
-  data.tar.gz: !binary |-
-    Y2ExYTcwMTU3ZjYzNWY4YWYzNzQxM2FiNmU3MDNkMTJiNWFlYWJiZA==
+SHA1:
+  metadata.gz: 34d2f2f8bc74e380b9a60be1b49dae47f537dc01
+  data.tar.gz: 5cf354d6e9b7cae4a85f215ddc69958ad37196e6
 SHA512:
-  metadata.gz: !binary |-
-    ZmRlZTM3ZWRkNjMxYzQ5OGZkNTBkMjgwN2Q5NDM2OTE4NDc4NTZhZGE2OTU4
-    OTg1ZTRkZTdkYjg4NGQ5ZTYwZTM5OTZkMzg1Mjc4ZjhmZTgzMDg1NDIzOTUw
-    OGQxMWRkZTY5YmUzNmJhNTA0ZjA3NDJhNmFjOWNmNmEzYzQ2N2Q=
-  data.tar.gz: !binary |-
-    MDhjZGU5ZGUyNmRlNjJiOGFmMTc0Y2VmYzM0NjM3NGQwYjY2OTVlZTU0MWUz
-    ZDhjYmI2Y2MyZDRmYWM2ZjA0MjE1YTVhZmVkOGI0NjU3MjhmNjE3ZTIzZjUx
-    YjdkYmQwOTU3MzQxNGY5ZmQ1NWE5ZjIzOWM1ZGUzMTQxMWU3Zjk=
+  metadata.gz: e3d842e4412b28a32de8dbde9e646ed975520aa7ba3fa74321538c6ec8334f412c3a0e2162329d6522017abb46b047d2a7341d735831790ffef9f11f7e834e25
+  data.tar.gz: 7b8828dbe33d9243df426809dd588a1abc6eb9cf1f9df17c1948cf337a6d7c13c6db4e1981900ae5f7d4fdbad5edc3ba03335f52c69e37156a43b48a1d78ad9e

data/.gitignore

@@ -10,3 +10,5 @@ coverage
 Gemfile.lock
 .project
 .rvmrc
+.idea/
+tarantula.iml

data/CHANGELOG

@@ -1,3 +1,9 @@
+v0.5.4
+* Do not change values of hidden fields
+
+v0.5.3
+* Rails 4.1 compatibility
+
 v0.5.1
 * Rescue exceptions for Rails 3 integration tests and return them as 404/500 responses.
 
@@ -22,9 +28,9 @@ v0.1.8 Add timeouts for crawls to help really long builds [Rob Sanheim]
 
 v0.1.7 Minor clean up [Rob Sanheim]
 
-v0.1.6 
+v0.1.6
 	* add testing for all Rails versions 2.0.2 and up
-	* various clean up and housekeeping tasks; 
+	* various clean up and housekeeping tasks;
 	* start Ruby 1.9 work (but we need Hpricot)
 	* show 50 chars of URL, not 30
 	* ensure that ActiveRecord gets loaded correctly for the crawler, so that it can rescue RecordNotFound exceptions
@@ -40,7 +46,7 @@ v0.1.2 Remove dependency on Facets gem [Aaron Bedra]
 
 v0.1.1 Bugfix: Add ability to handle anchor tags that lack an href attribute #13 [Kevin Gisi]
 
-v0.1.0 
+v0.1.0
 * Improve the generated test template to include inline documentation and make the simple case simple [Jason Rudolph]
 * Update README to better serve first-time users [Jason Rudolph]
 * Update development dependencies declarations [Jason Rudolph]
@@ -48,7 +54,7 @@ v0.1.0
 ** Convert test suite to micronaut
 ** Replace Echoe with Jeweler for gem management
 ** Remove unused code
-    
+
 v0.0.8.1
 * Fix numerous installation and initial setup issues
 * Enhance rake tasks to support use of Tarantula in a continuous integration environment
@@ -59,7 +65,7 @@ v0.0.8.1
 ** Include example of adding a custom attack handler
 * Simplify design to address concerns about hard-to-read fonts
 
-v0.0.5 
+v0.0.5
 * Make sure we don't include Relevance::Tarantula into Object - will cause issues with Rails dependencies and is a bad idea in general
 * Update Rakefile for development dependencies
 * Other small clean up tasks

data/lib/relevance/tarantula/basic_attack.rb

@@ -17,11 +17,13 @@ module Relevance
       end
 
       def input(input_field)
+        return input_field['value'] if input_field['type'] == 'hidden'
+
         case input_field['name']
         when /amount/         then random_int
         when /_id$/           then random_whole_number
         when /uploaded_data/  then nil
-        when nil              then input['value']
+        when nil              then input_field['value']
         else
           random_int
         end

data/lib/relevance/tarantula/version.rb

@@ -1,5 +1,5 @@
 module Relevance
   module Tarantula
-    VERSION = "0.5.3"
+    VERSION = "0.5.4"
   end
 end

data/spec/relevance/tarantula/form_submission_spec.rb

@@ -1,7 +1,7 @@
 require "spec_helper"
 
 describe Relevance::Tarantula::FormSubmission do
-  
+
   describe "with a good form" do
     # TODO: add more from field types to this example form as needed
     before do
@@ -14,7 +14,7 @@ describe Relevance::Tarantula::FormSubmission do
           <select id="foo_opened_on_1i" name="foo[opened_on(1i)]">
             <option value="2003">2003</option>
             <option value="2004">2004</option>
-          </select> 
+          </select>
         </form>
       })
     end
@@ -29,7 +29,7 @@ describe Relevance::Tarantula::FormSubmission do
         response.content_type.should == "text/plain"
         response.body.should == "ActiveRecord::RecordNotFound"
       end
-      
+
       it "submits the form and logs response" do
         doc = Hpricot('<form action="/action" method="post"/>')
         form = make_form(doc.at('form'))
@@ -38,7 +38,7 @@ describe Relevance::Tarantula::FormSubmission do
         fs.expects(:log).with("Response 200 for #{fs}")
         fs.crawl
       end
-      
+
     end
 
     describe "with default attack" do
@@ -46,50 +46,50 @@ describe Relevance::Tarantula::FormSubmission do
         @form = make_form(@tag.at('form'))
         @fs = Relevance::Tarantula::FormSubmission.new(@form)
       end
-  
+
       it "can mutate text areas" do
         @fs.attack.stubs(:random_int).returns("42")
         @fs.mutate_text_areas(@form).should == {"comment" => "42"}
       end
-  
+
       it "can mutate selects" do
         Hpricot::Elements.any_instance.stubs(:sample).returns(stub(:[] => "2006-stub"))
         @fs.mutate_selects(@form).should == {"foo[opened_on(1i)]" => "2006-stub"}
       end
-  
+
       it "can mutate inputs" do
         @fs.attack.stubs(:random_int).returns("43")
-        @fs.mutate_inputs(@form).should == {"commit"=>"43", "secret"=>"43", "email"=>"43"}
+        @fs.mutate_inputs(@form).should == {"commit"=>"43", "secret"=>"secret", "email"=>"43"}
       end
 
       it "has a signature based on action and fields" do
         @fs.signature.should == ['/session', [
-          "comment", 
-          "commit", 
-          "email", 
-          "foo[opened_on(1i)]", 
+          "comment",
+          "commit",
+          "email",
+          "foo[opened_on(1i)]",
           "secret"],
           @fs.attack.name]
       end
-  
+
       it "has a friendly to_s" do
         @fs.to_s.should =~ %r{^/session post}
       end
     end
-    
+
     describe "with a custom attack" do
       before do
         @form = make_form(@tag.at('form'))
-        @attack = Relevance::Tarantula::Attack.new(:name => 'foo_name', 
-                                                   :input => 'foo_code', 
+        @attack = Relevance::Tarantula::Attack.new(:name => 'foo_name',
+                                                   :input => 'foo_code',
                                                    :output => 'foo_code')
         @fs = Relevance::Tarantula::FormSubmission.new(@form, @attack)
       end
-      
+
       it "can mutate text areas" do
         @fs.mutate_text_areas(@form).should == {"comment" => "foo_code"}
       end
-      
+
       it "can mutate selects" do
         Hpricot::Elements.any_instance.stubs(:sample).returns(stub(:[] => "2006-stub"))
         @fs.mutate_selects(@form).should == {"foo[opened_on(1i)]" => "2006-stub"}
@@ -101,10 +101,10 @@ describe Relevance::Tarantula::FormSubmission do
 
       it "has a signature based on action,  fields, and attack name" do
         @fs.signature.should == ['/session', [
-          "comment", 
-          "commit", 
-          "email", 
-          "foo[opened_on(1i)]", 
+          "comment",
+          "commit",
+          "email",
+          "foo[opened_on(1i)]",
           "secret"],
           "foo_name"
         ]
@@ -134,7 +134,7 @@ describe Relevance::Tarantula::FormSubmission do
       end
     end
   end
-  
+
   describe "with a crummy form" do
     before do
       @tag = Hpricot(%q{
@@ -143,7 +143,7 @@ describe Relevance::Tarantula::FormSubmission do
         </form>
       })
     end
-    
+
     describe "with default attack" do
       before do
         @form = make_form(@tag.at('form'))
@@ -167,5 +167,5 @@ describe Relevance::Tarantula::FormSubmission do
     end
 
   end
-  
+
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: codez-tarantula
 version: !ruby/object:Gem::Version
-  version: 0.5.3
+  version: 0.5.4
 platform: ruby
 authors:
 - Relevance, Inc.
@@ -9,104 +9,104 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-06-02 00:00:00.000000000 Z
+date: 2015-10-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: htmlentities
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 4.3.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 4.3.0
 - !ruby/object:Gem::Dependency
   name: hpricot
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 0.8.4
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 0.8.4
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 2.12.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 2.12.0
 - !ruby/object:Gem::Dependency
   name: rdoc
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 3.12.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 3.12.0
 - !ruby/object:Gem::Dependency
   name: log_buddy
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 0.6.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 0.6.0
 - !ruby/object:Gem::Dependency
   name: mocha
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 0.13.2
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 0.13.2
 - !ruby/object:Gem::Dependency
   name: rails
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: 2.3.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ! '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: 2.3.0
 description: Tarantula is a big fuzzy spider. It crawls your Rails 2.3 and 3.x applications,
@@ -117,9 +117,9 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- .autotest
-- .gitignore
-- .travis.yml
+- ".autotest"
+- ".gitignore"
+- ".travis.yml"
 - CHANGELOG
 - DSL_EXAMPLES.md
 - Gemfile
@@ -213,19 +213,18 @@ require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.2.2
+rubygems_version: 2.4.3
 signing_key: 
 specification_version: 4
 summary: A big hairy fuzzy spider that crawls your site, wreaking havoc
 test_files: []
-has_rdoc: