contrast-agent 6.6.1 → 6.6.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 0ba6de8e82da25931f2fd6d90f515451c33521c02c0fd00e0120ea05701bdc23
-  data.tar.gz: 953297f4f0908bcdcf4791f91869dcf69312f44fe05e743e1e681ce9d3aa9b6f
+  metadata.gz: 15953528d5e347bd018a0e448e2653107c782481cc3df1e6513fc52641d52900
+  data.tar.gz: c7bec86c862f372a1e2e3804a129cef4eb2d7ebc18115c7b829ba31080d4553f
 SHA512:
-  metadata.gz: f7e96583d53e23400fd53fd24aed86c728e0d9b8d79a17179cc1bb96a50ad002e047805b10cea0eaa362802c494ff0b45463a16b53a008e9921723cd9e6e43f9
-  data.tar.gz: f3c7c2a5b575233f4f8d3e9058b281352133625ab42d50b3c6590c7178728ceda8c494953890a0d50e1413ad5f1e50c04595cc035d5f3ed247611f3a1401095e
+  metadata.gz: b7de9ceb2ed80201d5c74aea212b652c86999b58c20693c5e2d1e233684c1ee54f1d2f56a3cdba20e374b22f35b89d231eec3a486325f7dde183a3ac0c9e114f
+  data.tar.gz: ce3fa2a7ae5021eb60978696254f7b0331f5d7c1d75bb697d423403e7fe2071aea5b66660875afe555a3ad101e8a121b546a3f9d5c7423833bc21a10c8cb4406

data/lib/contrast/agent/inventory/database_config.rb

@@ -31,7 +31,7 @@ module Contrast
           # Contrast::Api::Dtm::ArchitectureComponent, but have different names for their fields.
           #
           # @param activity_or_update [Contrast::Api::Dtm::Activity, Contrast::Agent::Reporting::ApplicationUpdate]
-          # @param hash_or_str [Hash, String] the database connection information
+          # @param hash_or_str [Hash, String, #configuration_hash] the database connection information
           def append_db_config activity_or_update, hash_or_str = active_record_config
             arr = build_from_db_config(hash_or_str)
             return unless arr&.any?
@@ -82,6 +82,11 @@ module Contrast
           def build_from_db_config hash_or_str
             return unless hash_or_str
 
+            # we need to handle types of HashConfig, which != Hash
+            # for example ActiveRecord::DatabaseConfigurations::HashConfig is type of active_record config
+            # but the method is not handling it properly
+            # so we need to handle it here and extract the hash
+            hash_or_str = hash_or_str.configuration_hash if hash_or_str.cs__respond_to?(:configuration_hash)
             if hash_or_str.is_a?(Hash)
               build_from_db_hash(hash_or_str)
             else

data/lib/contrast/agent/inventory/policy/datastores.rb

@@ -13,9 +13,8 @@ module Contrast
         # in which database operations occur. It is responsible for deciding if
         # the given invocation is worth reporting or not.
         module DataStores
+          extend Contrast::Components::Logger::InstanceMethods
           class << self
-            extend Contrast::Components::Logger::InstanceMethods
-
             # The key used in policy.json to indicate the database type to
             # report.
             DATA_STORE_MARKER = 'data_store'

data/lib/contrast/agent/protect/rule/default_scanner.rb

@@ -20,11 +20,16 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
   # :STATE_INSIDE_BLOCK_COMMENT # inside a commend that will end with a closing tag
   # :STATE_SKIP_NEXT_CHARACTER
 
+  # @param query [String] the query being executed
+  # @param index [Integer] the index of the input in the query
+  # @param input [String] the input value provided by the user
+  # @return [Array<Integer>, nil] the boundary overrun by the input or nil if no overrun
   def crosses_boundary query, index, input
     last_boundary = 0
-    token_boundaries(query).each do |boundary|
+    scan_token_boundaries(query).each do |boundary|
       if boundary > index
-        return last_boundary, boundary if boundary < index + input.length
+        # We should report the previous and overrun boundary if the input crosses one.
+        return last_boundary, boundary if boundary < (index + input.length)
 
         break
       end
@@ -33,10 +38,10 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     nil
   end
 
-  def token_boundaries query
-    @_token_boundaries ||= scan_token_boundaries(query)
-  end
+  private
 
+  # @param query [String] the query being executed
+  # @return [Array<Integer>] the boundaries of the query
   def scan_token_boundaries query
     boundaries = []
     return boundaries unless query && !query.empty?
@@ -73,6 +78,11 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     boundaries
   end
 
+  # @param boundaries [Array<Integer>] the indexes of the state changes in the query
+  # @param current_state [Symbol] the state of the query
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param query [String] the query being executed
   def process_state boundaries, current_state, char, index, query
     case current_state
     when :STATE_EXPECTING_TOKEN
@@ -88,6 +98,10 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     end
   end
 
+  # @param boundaries [Array<Integer>] the indexes of the state changes in the query
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param query [String] the query being executed
   def process_expecting_token boundaries, char, index, query
     if char == Contrast::Utils::ObjectShare::SINGLE_QUOTE
       boundaries << index
@@ -112,6 +126,10 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     end
   end
 
+  # @param boundaries [Array<Integer>] the indexes of the state changes in the query
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param query [String] the query being executed
   def process_inside_token boundaries, char, index, query
     if char == Contrast::Utils::ObjectShare::SINGLE_QUOTE
       boundaries << index
@@ -133,6 +151,10 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     end
   end
 
+  # @param boundaries [Array<Integer>] the indexes of the state changes in the query
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param _query [String] the query being executed
   def process_number boundaries, char, index, _query
     if char.match?(Contrast::Utils::ObjectShare::DIGIT_REGEXP) || char == Contrast::Utils::ObjectShare::PERIOD
       :STATE_INSIDE_NUMBER
@@ -142,6 +164,10 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     end
   end
 
+  # @param boundaries [Array<Integer>] the indexes of the state changes in the query
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param query [String] the query being executed
   def process_double_quote boundaries, char, index, query
     if escape_char?(char)
       :STATE_SKIP_NEXT_CHARACTER
@@ -159,6 +185,10 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     end
   end
 
+  # @param boundaries [Array<Integer>] the indexes of the state changes in the query
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param query [String] the query being executed
   def process_single_quote boundaries, char, index, query
     if escape_char?(char)
       :STATE_SKIP_NEXT_CHARACTER
@@ -176,18 +206,24 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     end
   end
 
+  # @param query [String] the query being executed
+  # @param index [Integer] the location of the character in the query
   def double_quote? query, index
     return false unless index >= 0 && index < query.length
 
     query[index] == Contrast::Utils::ObjectShare::DOUBLE_QUOTE
   end
 
+  # @param query [String] the query being executed
+  # @param index [Integer] the location of the character in the query
   def single_quote? query, index
     return false unless index >= 0 && index < query.length
 
     query[index] == Contrast::Utils::ObjectShare::SINGLE_QUOTE
   end
 
+  # @param query [String] the query being executed
+  # @param index [Integer] the location of the character in the query
   def find_escape_sequence_boundary query, index
     idx = index
     while idx < query.length
@@ -199,6 +235,8 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     idx
   end
 
+  # @param query [String] the query being executed
+  # @param index [Integer] the location of the character in the query
   def find_block_comment_boundary query, index
     idx = index
     while idx < query.length
@@ -210,6 +248,8 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     idx
   end
 
+  # @param query [String] the query being executed
+  # @param index [Integer] the location of the character in the query
   def find_new_line_boundary query, index
     idx = index
     while idx < query.length
@@ -222,12 +262,17 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
     idx
   end
 
+  # @param char [String] the character being evaluated
   def operator? char
     char.match?(OPERATOR_PATTERN)
   end
 
   # @note: Any class extending this module should override these methods as needed
   # Are the current and subsequent characters both '-' ?
+  #
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param query [String] the query being executed
   def start_line_comment? char, index, query
     return false unless char == Contrast::Utils::ObjectShare::DASH
     return false unless (query.length - 2) >= index
@@ -237,6 +282,10 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
 
   # Is the current character / sequence of characters the start of a block comment
   # We assume '/*' starts the comment by default
+  #
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param query [String] the query being executed
   def start_block_comment? char, index, query
     return false unless char == Contrast::Utils::ObjectShare::SLASH
     return false unless (query.length - 2) >= index
@@ -246,6 +295,10 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
 
   # Is the current character / sequence of characters the end of a block comment
   # We assume '*/' ends the comment by default
+  #
+  # @param char [String] the character being evaluated
+  # @param index [Integer] the location of the character in the query
+  # @param query [String] the query being executed
   def end_block_comment? char, index, query
     return false unless char == Contrast::Utils::ObjectShare::ASTERISK
     return false unless (query.length - 2) >= index
@@ -267,18 +320,24 @@ class Contrast::Agent::Protect::Rule::DefaultScanner # rubocop:disable Style/Cla
 
   # Is the character provided an escape character?
   # By default, we'll assume
+  #
+  # @param char [String] the character being evaluated
   def escape_char? char
     char == Contrast::Utils::ObjectShare::BACK_SLASH
   end
 
   # Is this the start of a string escape sequence?
   # Since escape sequences aren't supported, the answer is always false
+  #
+  # @param _char [String] the character being evaluated
   def escape_sequence_start? _char
     false
   end
 
   # Is this the end of a string escape sequence?
   # Since escape sequences aren't supported, the answer is always false
+  #
+  # @param _char [String] the character being evaluated
   def escape_sequence_end? _char
     false
   end

data/lib/contrast/agent/protect/rule/sql_sample_builder.rb

@@ -65,8 +65,8 @@ module Contrast
             #   if one exists, in the case of multiple inputs being found to violate the protection criteria
             # @param result [Contrast::Api::Dtm::AttackResult, nil] previous attack result for this rule, if one exists,
             #   in the case of multiple inputs being found to violate the protection criteria
-            # @query_string [string] he value of the input which may be an attack
-            # @kwargs [Hash] key - value pairs of context individual rules need to build out details to send
+            # @param query_string [String] the value of the input which may be an attack
+            # @param kwargs [Hash] key - value pairs of context individual rules need to build out details to send
             #   to the Service to tell the story of the attack
             # @return [Contrast::Api::Dtm::AttackResult] the result from this attack
             def build_attack_with_match context, input_analysis_result, result, query_string, **kwargs
@@ -86,14 +86,12 @@ module Contrast
               ss = StringScanner.new(query_string)
               length = attack_string.length
               while ss.scan_until(regexp)
-                # the pos of StringScanner is at the end of the regexp (input string),
-                # we need the beginning
+                # the pos of StringScanner is at the end of the regexp (input string), we need the beginning
                 idx = ss.pos - attack_string.length
                 last_boundary, boundary = scanner.crosses_boundary(query_string, idx, input_analysis_result.value)
                 next unless last_boundary && boundary
 
                 result ||= build_attack_result(context)
-
                 record_match(idx, length, boundary, last_boundary, kwargs)
                 append_match(context, input_analysis_result, result, query_string, **kwargs)
               end

data/lib/contrast/agent/reporting/reporting_events/preflight_message.rb

@@ -27,8 +27,8 @@ module Contrast
 
         def initialize
           @app_language = Contrast::Utils::ObjectShare::RUBY
-          @app_name = ::Contrast::APP_CONTEXT.app_name
-          @app_version = ::Contrast::APP_CONTEXT.app_version
+          @app_name = ::Contrast::APP_CONTEXT.name # rubocop:disable Security/Module/Name
+          @app_version = ::Contrast::APP_CONTEXT.version
           @routes = []
         end
 

data/lib/contrast/agent/reporting/reporting_utilities/endpoints.rb

@@ -153,7 +153,7 @@ module Contrast
           def app_name
             return @_app_name unless @_app_name.nil?
 
-            @_app_name = ::Contrast::APP_CONTEXT.app_name
+            @_app_name = ::Contrast::APP_CONTEXT.name # rubocop:disable Security/Module/Name
           end
 
           # @return [String,nil]

data/lib/contrast/agent/reporting/reporting_utilities/headers.rb

@@ -18,12 +18,12 @@ module Contrast
         CONTENT_TYPE = 'application/json'
 
         def initialize
-          @app_name = Base64.strict_encode64(Contrast::APP_CONTEXT.app_name)
+          @app_name = Base64.strict_encode64(Contrast::APP_CONTEXT.name) # rubocop:disable Security/Module/Name
           @api_key = Contrast::API.api_key
           @agent_version = [RUBY, Contrast::Agent::VERSION].join(SPACE)
           @app_language = RUBY
           @app_path = Base64.strict_encode64(Contrast::APP_CONTEXT.path)
-          @app_version = Contrast::APP_CONTEXT.app_version
+          @app_version = Contrast::APP_CONTEXT.version
           @authorization = Base64.strict_encode64("#{ Contrast::API.user_name }:#{ Contrast::API.service_key }")
           @server_name = Base64.strict_encode64(Contrast::APP_CONTEXT.server_name)
           @server_path = Base64.strict_encode64(Contrast::APP_CONTEXT.server_path)

data/lib/contrast/agent/reporting/reporting_utilities/response_handler_utils.rb

@@ -107,7 +107,7 @@ module Contrast
           suspend_reporting(message, ready_after, error_message) if mode == @_mode.resending
           return unless mode == @_mode.disabled
 
-          stop_reporting(message, application: Contrast::APP_CONTEXT.app_name, error_message: error_message)
+          stop_reporting(message, application: Contrast::APP_CONTEXT.name, error_message: error_message) # rubocop:disable Security/Module/Name
         rescue StandardError => e
           logger.debug('Could not handle Response error information', error: e)
         end

data/lib/contrast/agent/version.rb

@@ -3,6 +3,6 @@
 
 module Contrast
   module Agent
-    VERSION = '6.6.1'
+    VERSION = '6.6.4'
   end
 end

data/lib/contrast/api/decorators/message.rb

@@ -52,7 +52,7 @@ module Contrast
 
           def build event
             msg = new
-            msg.app_name      = ::Contrast::APP_CONTEXT.app_name
+            msg.app_name      = ::Contrast::APP_CONTEXT.name # rubocop:disable Security/Module/Name
             msg.app_path      = ::Contrast::APP_CONTEXT.path
             msg.app_language  = Contrast::Utils::ObjectShare::RUBY
             msg.client_id     = ::Contrast::APP_CONTEXT.client_id

data/lib/contrast/components/app_context.rb

@@ -6,6 +6,7 @@ require 'contrast/api/decorators/agent_startup'
 require 'contrast/api/decorators/application_startup'
 require 'contrast/utils/object_share'
 require 'contrast/components/app_context_extend'
+require 'contrast/config/base_configuration'
 
 module Contrast
   module Components
@@ -18,15 +19,66 @@ module Contrast
       class Interface
         include Contrast::Components::AppContextExtend
         include Contrast::Components::ComponentBase
-        include Contrast::Components::Logger::InstanceMethods
+        include Contrast::Config::BaseConfiguration
 
         DEFAULT_APP_NAME    = 'rails'
         DEFAULT_APP_PATH    = '/'
         DEFAULT_SERVER_NAME = 'localhost'
         DEFAULT_SERVER_PATH = '/'
 
-        def initialize
+        # @return [String]
+        attr_reader :version
+        # @return [String]
+        attr_reader :language
+        # @return [String]
+        attr_reader :group
+        # @return [String]
+        attr_reader :tags
+        # @return [String]
+        attr_reader :code
+        # @return [String]
+        attr_reader :metadata
+
+        def initialize hsh = {}
           original_pid
+          return unless hsh
+
+          @_name = hsh[:name]
+          @version = hsh[:version]
+          @language = hsh[:language]
+          @_path = hsh[:path]
+          @group = hsh[:group]
+          @tags = hsh[:tags]
+          @code = hsh[:code]
+          @metadata = hsh[:metadata]
+          @_session_id = hsh[:session_id]
+          @_session_metadata = hsh[:session_metadata]
+        end
+
+        # @return [String, Contrast::Utils::ObjectShare::EMPTY_STRING]
+        def session_id
+          @_session_id ||= Contrast::Utils::ObjectShare::EMPTY_STRING
+        end
+
+        # Set session_id
+        #
+        # @param id [String]
+        # @return [String]
+        def session_id= id
+          @_session_id = id
+        end
+
+        # @return [String, Contrast::Utils::ObjectShare::EMPTY_STRING]
+        def session_metadata
+          @_session_metadata ||= Contrast::Utils::ObjectShare::EMPTY_STRING
+        end
+
+        # Set session_metadata
+        #
+        # @param meta [String]
+        # @return [String]
+        def session_metadata= meta
+          @_session_metadata = meta
         end
 
         def server_type
@@ -37,9 +89,8 @@ module Contrast
           end
         end
 
-        def app_name
-          @_app_name ||= begin
-            tmp = ::Contrast::CONFIG.root.application.name # rubocop:disable Security/Module/Name
+        def name
+          @_name ||= begin
             tmp = Contrast::Agent.framework_manager.app_name unless Contrast::Utils::StringUtils.present?(tmp)
             tmp = File.basename(Dir.pwd) unless Contrast::Utils::StringUtils.present?(tmp)
             Contrast::Utils::StringUtils.truncate(tmp, DEFAULT_APP_NAME)
@@ -48,13 +99,16 @@ module Contrast
           end
         end
 
-        def app_version
-          @_app_version ||= Contrast::CONFIG.root.application.version
+        # Set application name
+        #
+        # @param app_name [String] application name
+        # @return [String]
+        def name= app_name
+          @_name = app_name
         end
 
         def path
           @_path ||= begin
-            tmp = ::Contrast::CONFIG.root.application.path
             tmp = Contrast::Agent.framework_manager.application_root unless Contrast::Utils::StringUtils.present?(tmp)
             Contrast::Utils::StringUtils.truncate(tmp, DEFAULT_APP_PATH)
           rescue StandardError

data/lib/contrast/components/app_context_extend.rb

@@ -18,13 +18,13 @@ module Contrast
 
       def build_agent_startup_message
         msg = Contrast::Api::Dtm::AgentStartup.build(server_name, server_path, server_type)
-        logger.info('Application context',
-                    server_name: msg.server_name,
-                    server_path: msg.server_path,
-                    server_type: msg.server_type,
-                    application_name: app_name,
-                    application_path: path,
-                    application_language: Contrast::Utils::ObjectShare::RUBY)
+        Contrast::CONFIG.proto_logger.info('Application context',
+                                           server_name: msg.server_name,
+                                           server_path: msg.server_path,
+                                           server_type: msg.server_type,
+                                           application_name: name, # rubocop:disable Security/Module/Name
+                                           application_path: path,
+                                           application_language: Contrast::Utils::ObjectShare::RUBY)
 
         msg
       end
@@ -42,7 +42,7 @@ module Contrast
       end
 
       def client_id
-        @_client_id ||= [app_name, pgid].join('-')
+        @_client_id ||= [name, pgid].join('-') # rubocop:disable Security/Module/Name
       end
 
       def app_and_server_information

data/lib/contrast/config/root_configuration.rb

@@ -4,6 +4,8 @@
 require 'contrast/components/agent'
 require 'contrast/components/inventory'
 require 'contrast/components/protect'
+require 'contrast/components/app_context'
+
 module Contrast
   module Config
     # The base of the Common Configuration settings.
@@ -14,7 +16,7 @@ module Contrast
       attr_writer :api
       # @return [Contrast::Components::Agent::Interface]
       attr_writer :agent
-      # @return [Contrast::Config::ApplicationConfiguration]
+      # @return [Contrast::Components::AppContext::Interface]
       attr_writer :application
       # @return [Contrast::Config::ServerConfiguration]
       attr_writer :server
@@ -36,7 +38,7 @@ module Contrast
         @api = Contrast::Components::Api::Interface.new(hsh[:api])
         @enable = hsh[:enable]
         @agent = Contrast::Components::Agent::Interface.new(hsh[:agent])
-        @application = Contrast::Config::ApplicationConfiguration.new(hsh[:application])
+        @application = Contrast::Components::AppContext::Interface.new(hsh[:application])
         @server = Contrast::Config::ServerConfiguration.new(hsh[:server])
         @assess = Contrast::Config::AssessConfiguration.new(hsh[:assess])
         @inventory = Contrast::Components::Inventory::Interface.new(hsh[:inventory])
@@ -54,9 +56,9 @@ module Contrast
         @agent ||= Contrast::Components::Agent::Interface.new
       end
 
-      # @return [Contrast::Config::ApplicationConfiguration]
+      # @return [Contrast::Components::AppContext::Interface]
       def application
-        @application ||= Contrast::Config::ApplicationConfiguration.new
+        @application ||= Contrast::Components::AppContext::Interface.new
       end
 
       # @return [Contrast::Config::ServerConfiguration]

data/lib/contrast/config.rb

@@ -18,7 +18,6 @@ require 'contrast/config/protect_rule_configuration'
 require 'contrast/config/protect_rules_configuration'
 
 require 'contrast/config/ruby_configuration'
-require 'contrast/config/application_configuration'
 require 'contrast/config/server_configuration'
 require 'contrast/config/assess_configuration'
 require 'contrast/config/root_configuration'

data/lib/contrast/utils/log_utils.rb

@@ -182,7 +182,7 @@ module Contrast
                          else
                            DEFAULT_METADATA
                          end
-        app_name = ::Contrast::APP_CONTEXT.app_name
+        app_name = ::Contrast::APP_CONTEXT.name # rubocop:disable Security/Module/Name
         attach_request_and_sender_info(message, sender_info)
         message << "request=#{ context.request.url } "
         message << "requestMethod=#{ request_method } "

data/lib/contrast/utils/net_http_base.rb

@@ -38,7 +38,7 @@ module Contrast
         return unless net_http_client.started?
 
         logger.debug("Starting #{ service_name } connection test")
-        return unless connection_verified?(net_http_client)
+        return unless connection_verified?(net_http_client, url)
 
         logger.debug('Client verified', service: service_name, url: url)
         net_http_client
@@ -49,18 +49,17 @@ module Contrast
 
       # Validates connection with assigned domain.
       # If connection is running, SSL certificate of the endpoint is valid, Ip address is resolvable
-      # and response is received without peer's reset or refuse of connection,
-      # then validation returns true. Error handling is in place so that the work of the agent will continue as
-      # normal without Telemetry.
+      # and response is received without peer's reset or refuse of connection, then validation returns true.
       #
       # @param client [Net::HTTP]
+      # @param url [String]
       # @return [Boolean] true | false
-      def connection_verified? client
+      def connection_verified? client, url
         return @_connection_verified unless @_connection_verified.nil?
         return false if client.nil?
 
         ipaddr = get_ipaddr(client)
-        response = client.request(Net::HTTP::Get.new(client.address))
+        response = client.request(Net::HTTP::Get.new(url))
         verify_cert = client.address.to_s.include?('localhost') ||
             OpenSSL::SSL.verify_certificate_identity(client.peer_cert, client.address)
         resolved = resolved?(client.address, ipaddr)

data/lib/contrast/utils/string_utils.rb

@@ -1,15 +1,11 @@
 # Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
 # frozen_string_literal: true
 
-require 'contrast/components/logger'
-
 module Contrast
   module Utils
     # Utilities for encoding and normalizing strings
-    class StringUtils
+    module StringUtils
       class << self
-        include Contrast::Components::Logger::InstanceMethods
-
         UTF8 = 'utf-8'
         HTTP_PREFIX = 'HTTP_'
 
@@ -61,7 +57,7 @@ module Contrast
           # We were unable to switch the String to a UTF-8 format.
           # Return non-nil so as not to throw an exception later when trying
           # to do regexp or other compares on the String
-          logger.trace('Unable to cast String to UTF-8 format', e, value: str)
+          Contrast::CONFIG.proto_logger.trace('Unable to cast String to UTF-8 format', e, value: str)
 
           Contrast::Utils::ObjectShare::EMPTY_STRING
         end

data/lib/contrast.rb

@@ -81,7 +81,7 @@ module Contrast
   AGENT = CONFIG.root.agent
   LOGGER = AGENT.logger
   CONTRAST_SERVICE = Contrast::Components::ContrastService::Interface.new
-  APP_CONTEXT = Contrast::Components::AppContext::Interface.new
+  APP_CONTEXT = CONFIG.root.application
 end
 
 module Contrast

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: contrast-agent
 version: !ruby/object:Gem::Version
-  version: 6.6.1
+  version: 6.6.4
 platform: ruby
 authors:
 - galen.palmer@contrastsecurity.com
@@ -13,7 +13,7 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2022-07-13 00:00:00.000000000 Z
+date: 2022-07-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -665,22 +665,22 @@ executables:
 - contrast_service
 extensions:
 - ext/cs__common/extconf.rb
-- ext/cs__assess_fiber_track/extconf.rb
-- ext/cs__assess_string/extconf.rb
+- ext/cs__tests/extconf.rb
 - ext/cs__assess_module/extconf.rb
-- ext/cs__assess_test/extconf.rb
-- ext/cs__assess_kernel/extconf.rb
-- ext/cs__assess_yield_track/extconf.rb
+- ext/cs__assess_array/extconf.rb
 - ext/cs__assess_hash/extconf.rb
+- ext/cs__assess_basic_object/extconf.rb
+- ext/cs__assess_regexp/extconf.rb
 - ext/cs__os_information/extconf.rb
+- ext/cs__assess_test/extconf.rb
+- ext/cs__assess_string/extconf.rb
 - ext/cs__contrast_patch/extconf.rb
-- ext/cs__assess_marshal_module/extconf.rb
-- ext/cs__assess_regexp/extconf.rb
-- ext/cs__assess_array/extconf.rb
-- ext/cs__scope/extconf.rb
-- ext/cs__assess_basic_object/extconf.rb
-- ext/cs__tests/extconf.rb
 - ext/cs__assess_string_interpolation/extconf.rb
+- ext/cs__scope/extconf.rb
+- ext/cs__assess_marshal_module/extconf.rb
+- ext/cs__assess_fiber_track/extconf.rb
+- ext/cs__assess_yield_track/extconf.rb
+- ext/cs__assess_kernel/extconf.rb
 extra_rdoc_files: []
 files:
 - ".clang-format"
@@ -1193,7 +1193,6 @@ files:
 - lib/contrast/components/settings.rb
 - lib/contrast/config.rb
 - lib/contrast/config/api_proxy_configuration.rb
-- lib/contrast/config/application_configuration.rb
 - lib/contrast/config/assess_configuration.rb
 - lib/contrast/config/assess_rules_configuration.rb
 - lib/contrast/config/base_configuration.rb

data/lib/contrast/config/application_configuration.rb

@@ -1,57 +0,0 @@
-# Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
-# frozen_string_literal: true
-
-require 'contrast/utils/object_share'
-
-module Contrast
-  module Config
-    # Common Configuration settings. Those in this section pertain to the
-    # application identification functionality of the Agent.
-    class ApplicationConfiguration
-      include Contrast::Config::BaseConfiguration
-
-      # @return [String]
-      attr_accessor :name
-      # @return [String]
-      attr_accessor :version
-      # @return [String]
-      attr_accessor :language
-      # @return [String]
-      attr_accessor :path
-      # @return [String]
-      attr_accessor :group
-      # @return [String]
-      attr_accessor :tags
-      # @return [String]
-      attr_accessor :code
-      # @return [String]
-      attr_accessor :metadata
-      attr_writer :session_id, :session_metadata
-
-      def initialize hsh = {}
-        return unless hsh
-
-        @name = hsh[:name]
-        @version = hsh[:version]
-        @language = hsh[:language]
-        @path = hsh[:path]
-        @group = hsh[:group]
-        @tags = hsh[:tags]
-        @code = hsh[:code]
-        @metadata = hsh[:metadata]
-        @session_id = hsh[:session_id]
-        @session_metadata = hsh[:session_metadata]
-      end
-
-      # @return [String, Contrast::Utils::ObjectShare::EMPTY_STRING]
-      def session_id
-        @session_id ||= Contrast::Utils::ObjectShare::EMPTY_STRING
-      end
-
-      # @return [String, Contrast::Utils::ObjectShare::EMPTY_STRING]
-      def session_metadata
-        @session_metadata ||= Contrast::Utils::ObjectShare::EMPTY_STRING
-      end
-    end
-  end
-end