dawnscanner 1.6.8 → 1.6.9

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: be00270c083b8265e402c4db5af3a5ea77097978
-  data.tar.gz: 1abf4048b91c6a0f8a4c3116880c4c11dbe58a60
+SHA256:
+  metadata.gz: 269664ca2d6f8f14993ab85be4b78b81bba739743f25b560cc2e5c724e7d40e2
+  data.tar.gz: 88a2ad2f4e4e9a130e349ccde068d857b1b3eab17b531855f09e0262b7914be0
 SHA512:
-  metadata.gz: 733ab01256a79072b93276bf4cd7b737effa5c46cbe0263c7a512dd1d2c52d0059d5d235cbc841aeac0c230b5df10eaf9cd3ab90cfa2d6f37861d7fcd759574e
-  data.tar.gz: 26e104ea9e588b0e3251e10897daa63cb8a92a165a7f558ff19498b48f931f2956f3e21147dcfc0307743f3c56bec191a47f4fd79c7daf22ba7459b953ccbd7f
+  metadata.gz: fa2a9f80292666ddfec7e62f3f75559dbbcf72f09b8787b7b67a31d2c89da87a0c51a9041bbf6958a6b51df0a29cd504b45e893a0a0949d0c63fcb611894bad5
+  data.tar.gz: d0a70f5255f423d5da629946efbc46531e2e7d881157a6a5800e9be7f11e1fa1dd6f5e64642a5fa103be9b138194693188f0d28da4c96bda8f541047c45302c9

data/Changelog.md

@@ -5,7 +5,17 @@ It supports [Sinatra](http://www.sinatrarb.com),
 [Padrino](http://www.padrinorb.com) and [Ruby on Rails](http://rubyonrails.org)
 frameworks.
 
-_latest update: Tue Nov  1 22:47:56 CET 2016_
+_latest update: mer 28 nov 2018, 11.03.53, CET_
+
+## Version 1.6.9 - codename: Tow Mater (2018-11-28)
+
+* Removed signing certificate. This will solve issue #233 and #229
+* Removed datamapper support. I will change to active\_record sooner or later.
+  This will solve issue #232 and issue #218
+
+## Version 1.6.8 - codename: Tow Mater (2017-04-07)
+
+* Update signing certficate
 
 ## Version 1.6.7 - codename: Tow Mater (2016-11-24)
 

data/README.md

@@ -12,11 +12,22 @@ box:
 * [Sinatra](http://www.sinatrarb.com)
 * [Padrino](http://www.padrinorb.com)
 
+## Quick update from November, 2018
+
+As you can see dawnscanner is on hold since more then an year. Sorry for that.
+It's life. I was overwhelmed by tons of stuff and I dedicated free time to
+Offensive Security certifications. True to be told, I'm starting OSCE journey
+really soon.
+
+The dawnscanner project will be updated soon with new security checks and
+kickstarted again.
+
+Paolo
+
 ---
 
 [![Gem Version](https://badge.fury.io/rb/dawnscanner.png)](http://badge.fury.io/rb/dawnscanner)
 [![Build Status](https://travis-ci.org/thesp0nge/dawnscanner.png?branch=master)](https://travis-ci.org/thesp0nge/dawnscanner)
-[![Dependency Status](https://gemnasium.com/thesp0nge/dawnscanner.png)](https://gemnasium.com/thesp0nge/dawnscanner)
 [![Coverage Status](https://coveralls.io/repos/thesp0nge/dawnscanner/badge.png)](https://coveralls.io/r/thesp0nge/dawnscanner)
 [![Code Triagers Badge](https://www.codetriage.com/thesp0nge/dawnscanner/badges/users.svg)](https://www.codetriage.com/thesp0nge/dawnscanner)
 [![Inline docs](http://inch-ci.org/github/thesp0nge/dawnscanner.png?branch=master)](http://inch-ci.org/github/thesp0nge/dawnscanner)
@@ -50,30 +61,11 @@ application.
 
 ## Installation
 
-dawnscanner rubygem is cryptographically signed. To be sure the gem you
-install hasn’t been tampered, you must first add ```paolo@dawnscanner.org```
-public signing certificate as trusted to your gem specific keyring.
-
-```
-$ gem cert --add <(curl -Ls https://raw.githubusercontent.com/thesp0nge/dawnscanner/master/certs/paolo_at_dawnscanner_dot_org.pem)
-```
-
 You can install latest dawnscanner version, fetching it from
 [Rubygems](https://rubygems.org) by typing:
 
 ```
-$ gem install dawnscanner -P MediumSecurity
-```
-
-The MediumSecurity trust profile will verify signed gems, but allow the
-installation of unsigned dependencies. This is necessary because not all of
-dawnscanner’s dependencies are signed, so we cannot use HighSecurity.
-
-In order to install a release candidate version, the gem install command line
-is the following:
-
-```
-$ gem install dawnscanner --pre -P MediumSecurity
+$ gem install dawnscanner 
 ```
 
 If you want to add dawn to your project Gemfile, you must add the following:
@@ -123,44 +115,47 @@ $ dawn -h
 Usage: dawn [options] target_directory
 
 Examples:
-  $ dawn a_sinatra_webapp_directory
-  $ dawn -C the_rails_blog_engine
-  $ dawn -C --json a_sinatra_webapp_directory
-  $ dawn --ascii-tabular-report my_rails_blog_ecommerce
-  $ dawn --html -F my_report.html my_rails_blog_ecommerce
-
-   -r, --rails          force dawn to consider the target a rails application
-   -s, --sinatra        force dawn to consider the target a sinatra application
-   -p, --padrino        force dawn to consider the target a padrino application
-   -G, --gem-lock       force dawn to scan only for vulnerabilities affecting dependencies in Gemfile.lock
-   -a, --ascii-tabular-report   cause dawn to format findings using table in ascii art
-   -j, --json                   cause dawn to format findings using json
-   -C, --count-only             dawn will only count vulnerabilities (useful for scripts)
-   -z, --exit-on-warn           dawn will return number of found vulnerabilities as exit code
-   -F, --file filename          tells dawn to write output to filename
-   -c, --config-file filename   tells dawn to load configuration from filename
+	$ dawn a_sinatra_webapp_directory
+	$ dawn -C the_rails_blog_engine
+	$ dawn -C --json a_sinatra_webapp_directory
+	$ dawn --ascii-tabular-report my_rails_blog_ecommerce
+	$ dawn --html -F my_report.html my_rails_blog_ecommerce
+
+   -G, --gem-lock				force dawn to scan only for vulnerabilities affecting dependencies in Gemfile.lock (DEPRECATED)
+   -d, --dependencies				force dawn to scan only for vulnerabilities affecting dependencies in Gemfile.lock
+
+Reporting
+
+   -a, --ascii-tabular-report			cause dawn to format findings using tables in ascii art (DEPRECATED)
+   -j, --json					cause dawn to format findings using json
+   -K, --console					cause dawn to format findings using plain ascii text
+   -C, --count-only				dawn will only count vulnerabilities (useful for scripts)
+   -z, --exit-on-warn				dawn will return number of found vulnerabilities as exit code
+   -F, --file filename				tells dawn to write output to filename
+   -c, --config-file filename			tells dawn to load configuration from filename
 
 Disable security check family
 
-       --disable-cve-bulletins  disable all CVE security checks
-       --disable-code-quality   disable all code quality checks
-       --disable-code-style     disable all code style checks
-       --disable-owasp-ror-cheatsheet   disable all Owasp Ruby on Rails cheatsheet checks
-       --disable-owasp-top-10           disable all Owasp Top 10 checks
+       --disable-cve-bulletins			disable all CVE security checks
+       --disable-code-quality			disable all code quality checks
+       --disable-code-style			disable all code style checks
+       --disable-owasp-ror-cheatsheet		disable all Owasp Ruby on Rails cheatsheet checks
+       --disable-owasp-top-10			disable all Owasp Top 10 checks
 
-Flags useful to query dawnscanner
+Flags useful to query Dawn
 
-       -S, --search-knowledge-base [check_name]   search check_name in the knowledge base
-           --list-knowledge-base                  list knowledge-base content
-           --list-known-families                  list security check families contained in dawn's knowledge base
-           --list-known-framework                 list ruby MVC frameworks supported by dawn
+   -S, --search-knowledge-base [check_name]	search check_name in the knowledge base
+       --list-knowledge-base			list knowledge-base content
+       --list-known-families			list security check families contained in dawn's knowledge base
+       --list-known-framework			list ruby MVC frameworks supported by dawn
+       --list-scan-registry			list past scan informations stored in scan registry 
 
 Service flags
 
-   -D, --debug                                  enters dawn debug mode
-   -V, --verbose                                the output will be more verbose
-   -v, --version                                show version information
-   -h, --help                                   show this help
+   -D, --debug					enters dawn debug mode
+   -V, --verbose				the output will be more verbose
+   -v, --version				show version information
+   -h, --help					show this help
 ```
 
 ### Rake task

data/VERSION

@@ -12,4 +12,4 @@
 # |   "Guido"       |  x.x.0  |
 # |   "Luigi"       |  x.x.0  |
 # | "Doc Hudson"    |  x.x.0  |
-1.6.8 - Tow Mater
+1.6.9 - Tow Mater

data/bin/dawn

@@ -13,10 +13,10 @@ LIST_KNOWN_FRAMEWORK  = %w(rails sinatra padrino)
 VALID_OUTPUT_FORMAT   = %w(console json csv html)
 
 # Datamapper stuff
-DataMapper.setup(:default, "sqlite3://#{Dawn::Core.registry_db_name}")
-DataMapper::Logger.new(Dawn::Core.sql_log_name, :debug)
-DataMapper.finalize
-DataMapper.auto_upgrade!
+#DataMapper.setup(:default, "sqlite3://#{Dawn::Core.registry_db_name}")
+#DataMapper::Logger.new(Dawn::Core.sql_log_name, :debug)
+#DataMapper.finalize
+#DataMapper.auto_upgrade!
 
 require 'logger'
 $logger = Logger.new(STDOUT)
@@ -31,13 +31,6 @@ opts    = GetoptLong.new(
   [ '--html',                   '-H',   GetoptLong::NO_ARGUMENT],
   [ '--console',                '-K',   GetoptLong::NO_ARGUMENT],
 
-  # MVC forcing
-  # Deprecated in 1.5.x
-  # To be removed in 2.0.0
-  [ '--rails',                  '-r',   GetoptLong::NO_ARGUMENT],
-  [ '--sinatra',                '-s',   GetoptLong::NO_ARGUMENT],
-  [ '--padrino',                '-p',   GetoptLong::NO_ARGUMENT],
-
   [ '--gem-lock',               '-G',   GetoptLong::REQUIRED_ARGUMENT], # Deprecated in 1.5.x - To be removed in 2.0.0
   [ '--dependencies',           '-d',   GetoptLong::REQUIRED_ARGUMENT],
 
@@ -125,12 +118,6 @@ opts.each do |opt, val|
     options[:output] = "tabular"
   when '--html'
     options[:output] = "html"
-  when '--rails'
-    options[:mvc]=:rails
-  when '--sinatra'
-    options[:mvc]=:sinatra
-  when '--padrino'
-    options[:mvc]=:padrino
   when '--file'
     options[:filename] = val
   when '--gem-lock'
@@ -193,25 +180,20 @@ target=ARGV.shift
 target = File.expand_path(".") if target == "."
 
 $logger.helo APPNAME, Dawn::VERSION
-r = Dawn::Registry.new
 
-unless Dir.exist?(Dawn::Core.registry_db_folder)
-  FileUtils.mkdir_p(Dawn::Core.registry_db_folder)
-  $logger.info "#{Dawn::Core.registry_db_folder} created" if Dir.exist?(Dawn::Core.registry_db_folder)
-end
+## It will be migrated to active record in 2019
+# r = Dawn::Registry.new
+
+# unless Dir.exist?(Dawn::Core.registry_db_folder)
+  # FileUtils.mkdir_p(Dawn::Core.registry_db_folder)
+  # $logger.info "#{Dawn::Core.registry_db_folder} created" if Dir.exist?(Dawn::Core.registry_db_folder)
+# end
 
 trap("INT") { $logger.die('[INTERRUPTED]') }
 $logger.die("missing target") if target.nil? && options[:gemfile_name].empty?
 $logger.die("invalid directory (#{target})") if options[:gemfile_name].empty?  &&! Dawn::Core.is_good_target?(target)
-$logger.die("if scanning Gemfile.lock file you must not force target MVC using one from -r, -s or -p flag") if ! options[:mvc].empty? && options[:gemfile_scan]
 $logger.debug("security check enabled: #{options[:enabled_checks]}") if options[:debug]
 
-# MVC flag deprecation warnings
-$logger.warn("the --rails is deprecated and it will be removed in version 2.0.0")   if options[:mvc] == :rails
-$logger.warn("the --sinatra is deprecated and it will be removed in version 2.0.0") if options[:mvc] == :sinatra
-$logger.warn("the --padrino is deprecated and it will be removed in version 2.0.0") if options[:mvc] == :padrino
-
-
 ## MVC auto detect.
 
 # Skipping MVC autodetect if it's already been done by guess_mvc when choosing
@@ -219,16 +201,10 @@ $logger.warn("the --padrino is deprecated and it will be removed in version 2.0.
 
 unless options[:gemfile_scan]
   begin
-    if options[:mvc].empty?
-      engine = Dawn::Core.detect_mvc(target)
-      $logger.debug("using #{engine.class.name} engine via autodect") if options[:debug]
-    else
-      engine = Dawn::Rails.new(target)      if options[:mvc] == :rails
-      engine = Dawn::Sinatra.new(target)    if options[:mvc] == :sinatra
-      engine = Dawn::Padrino.new(target)    if options[:mvc] == :padrino
-    end
+    engine = Dawn::Core.detect_mvc(target)
+    $logger.debug("using #{engine.class.name} engine via autodect") if options[:debug]
   rescue ArgumentError => e
-    r.do_save({:target=>File.basename(target), :scan_started=>DateTime.now, :scan_duration => 0, :issues_found=> -1, :output_dir=> "", :message=>e.message, :scan_status=>:failed})
+    # r.do_save({:target=>File.basename(target), :scan_started=>DateTime.now, :scan_duration => 0, :issues_found=> -1, :output_dir=> "", :message=>e.message, :scan_status=>:failed})
     $logger.die(e.message)
   end
 else
@@ -238,15 +214,15 @@ end
 
 if engine.nil?
   $logger.error("MVC detection failure. Please open an issue at https://github.com/thesp0nge/dawnscanner/issues")
-  r.do_save({:target=>File.basename(target), :message=>"MVC detection failure. Please open an issue at https://github.com/thesp0nge/dawnscanner/issues", :scan_status=>:failed})
-  $logger.die("ruby framework auto detect failed. Please force if rails, sinatra or padrino with -r, -s or -p flags")
+  # r.do_save({:target=>File.basename(target), :message=>"MVC detection failure. Please open an issue at https://github.com/thesp0nge/dawnscanner/issues", :scan_status=>:failed})
+  $logger.die('ruby framework auto detect failed.')
 end
 ## end MVC auto detect.
 
 if options[:exit_on_warn]
   Kernel.at_exit do
     if engine.count_vulnerabilities != 0
-      r.do_save({:target=>engine.target, :scan_started=>engine.scan_start, :scan_duration => engine.scan_time.round(3), :issues_found=>engine.vulnerabilities.count, :output_dir=>engine.output_dir_name, :scan_status=>:completed})
+      # r.do_save({:target=>engine.target, :scan_started=>engine.scan_start, :scan_duration => engine.scan_time.round(3), :issues_found=>engine.vulnerabilities.count, :output_dir=>engine.output_dir_name, :scan_status=>:completed})
       Kernel.exit(engine.count_vulnerabilities)
     end
   end
@@ -260,12 +236,12 @@ end
 $logger.warn "this is a development Dawn version" if Dawn::RELEASE == "(development)"
 
 if engine.nil?
-  r.do_save({:target=>File.basename(target), :message=>"missing target framework option", :scan_status=>:failed})
+  # r.do_save({:target=>File.basename(target), :message=>"missing target framework option", :scan_status=>:failed})
   $logger.die "missing target framework option"
 end
 
 if ! options[:gemfile_scan] && ! engine.can_apply?
-  r.do_save({:target=>File.basename(target), :message=>"nothing to do on #{target}", :scan_status=>:failed})
+  # r.do_save({:target=>File.basename(target), :message=>"nothing to do on #{target}", :scan_status=>:failed})
   $logger.die "nothing to do on #{target}"
 end
 
@@ -276,22 +252,22 @@ if options[:output] == "count"
   STDERR.puts (ret)? engine.vulnerabilities.count : "-1" unless options[:output] == "json"
   STDERR.puts (ret)? {:status=>"OK", :vulnerabilities_count=>engine.count_vulnerabilities}.to_json : {:status=>"KO", :vulnerabilities_count=>-1}.to_json if options[:output] == "json"
 
-  r.do_save({:target=>engine.target, :scan_started=>engine.scan_start, :scan_duration => engine.scan_time.round(3), :issues_found=>engine.vulnerabilities.count, :output_dir=>engine.output_dir_name, :scan_status=>:completed})
+  # r.do_save({:target=>engine.target, :scan_started=>engine.scan_start, :scan_duration => engine.scan_time.round(3), :issues_found=>engine.vulnerabilities.count, :output_dir=>engine.output_dir_name, :scan_status=>:completed})
   $logger.bye
   Kernel.exit(0)
 end
 
 Dawn::Reporter.new({:engine=>engine, :apply_all_code=>ret, :format=>options[:output].to_sym, :filename=>options[:filename]}).report
-if (r.do_save({:target=>File.basename(engine.target),
-           :scan_started=>engine.scan_start,
-           :scan_duration => engine.scan_time.round(3),
-           :issues_found=>engine.vulnerabilities.count,
-           :output_dir=>engine.output_dir_name,
-           :scan_status=>:completed}))
-  $logger.info "#{Dawn::Core.registry_db_name} updated with scan infos"
-else
-  r.errors.each do |error|
-    $logger.error error
-  end
-end
+#if (r.do_save({:target=>File.basename(engine.target),
+#           :scan_started=>engine.scan_start,
+#           :scan_duration => engine.scan_time.round(3),
+#           :issues_found=>engine.vulnerabilities.count,
+#           :output_dir=>engine.output_dir_name,
+#           :scan_status=>:completed}))
+#  $logger.info "#{Dawn::Core.registry_db_name} updated with scan infos"
+#else
+#  r.errors.each do |error|
+#    $logger.error error
+#  end
+#end
 $logger.bye

data/checksum/dawnscanner-1.6.8.gem.sha1

@@ -0,0 +1 @@
+7f56617eeab5f897c910d9bfbfd54425c4856fc1

data/dawnscanner.gemspec

@@ -10,17 +10,14 @@ Gem::Specification.new do |gem|
   gem.email         = ["paolo@dawnscanner.org"]
   gem.description   = %q{Dawnscanner is a security source code scanner for ruby powered code. It is especially designed for web applications, but it works also with general purpose ruby scripts. Dawn supports all major MVC frameworks like ruby on rails, padrino and sinatra; it provides more than 150 security checks with their own mitigation suggestion.}
   gem.summary       = %q{Dawnscanner is a security source code scanner for ruby powered code. It is crafted with love to make your sinatra, padrino and ruby on rails web applications secure.}
-  gem.homepage      = "http://dawnscanner.org"
+  gem.homepage      = "https://dawnscanner.org"
   gem.files         = `git ls-files`.split($/)
   gem.license       = "MIT"
   gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
   gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
   gem.require_paths = ["lib"]
 
-  gem.cert_chain  = ['certs/paolo_at_dawnscanner_dot_org.pem']
-  gem.signing_key = File.expand_path("~/.ssh/paolo_at_dawnscanner_dot_org_private_key.pem") if $0 =~ /gem\z/
-
-  gem.required_ruby_version = '>= 1.9.3'
+  gem.required_ruby_version = '>= 2.3.0'
 
   gem.add_dependency 'cvss'
   gem.add_dependency 'haml'
@@ -31,10 +28,9 @@ Gem::Specification.new do |gem|
   gem.add_dependency 'logger-colors'
   gem.add_dependency 'ptools'
   gem.add_dependency 'sqlite3'
-  gem.add_dependency 'dm-sqlite-adapter'
-  gem.add_dependency 'data_mapper'
+  # gem.add_dependency 'datamapper'
+  # gem.add_dependency 'dm-sqlite-adapter'
 
-  # Dependencies for code stats
   # To be added back in 1.5.5
   # gem.add_dependency 'code_metrics'
   # gem.add_dependency 'metric_fu-Saikuro'

data/lib/dawn/core.rb

@@ -24,9 +24,6 @@ module Dawn
       puts "\t$ dawn -C --json a_sinatra_webapp_directory"
       puts "\t$ dawn --ascii-tabular-report my_rails_blog_ecommerce"
       puts "\t$ dawn --html -F my_report.html my_rails_blog_ecommerce"
-      printf "\n   -r, --rails\t\t\t\t\tforce dawn to consider the target a rails application (DEPRECATED)"
-      printf "\n   -s, --sinatra\t\t\t\tforce dawn to consider the target a sinatra application (DEPRECATED)"
-      printf "\n   -p, --padrino\t\t\t\tforce dawn to consider the target a padrino application (DEPRECATED)"
       printf "\n   -G, --gem-lock\t\t\t\tforce dawn to scan only for vulnerabilities affecting dependencies in Gemfile.lock (DEPRECATED)"
       printf "\n   -d, --dependencies\t\t\t\tforce dawn to scan only for vulnerabilities affecting dependencies in Gemfile.lock"
       printf "\n\nReporting\n"

data/lib/dawn/kb/version_check.rb

@@ -41,7 +41,24 @@ module Dawn
         return debug_me_and_return_false("detected version #{@detected} found as is in safe array")      if is_detected_in_safe?
         return debug_me_and_return_false("detected version #{@detected} is higher than all version marked safe")  if is_detected_highest?
 
-        @safe.sort.each do |s|
+        check_versions = nil
+        @safe.each do |safe_version|
+
+          sva = version_string_to_array(safe_version)
+          dva = version_string_to_array(@detected)
+
+          next unless is_same_version?(sva[:version], dva[:version], true)
+          next unless sva[:version].count == dva[:version].count || is_beta_check?(sva[:beta], dva[:beta]) || is_rc_check?(sva[:rc], dva[:rc]) || is_pre_check?(sva[:pre], dva[:pre])
+
+          check_versions = [safe_version]
+          break
+        end
+
+        debug_me "vuln?: limited check_versions: #{check_versions.inspect}"
+        check_versions ||= @safe
+        debug_me "vuln?: fallback check_versions: #{check_versions.inspect}"
+
+        check_versions.sort.each do |s|
           debug_me "vuln?: evaluating #{@detected} against save version: #{s}"
 
           @save_minor_fix   = save_minor_fix

data/lib/dawn/version.rb

@@ -1,7 +1,7 @@
 module Dawn
-    VERSION = "1.6.8"
+    VERSION = "1.6.9"
     CODENAME = "Tow Mater"
-    RELEASE = "20170407"
-    BUILD = "3"
-    COMMIT = "gd5245d7"
+    RELEASE = "20181128"
+    BUILD = "8"
+    COMMIT = "g6b3135a"
 end

data/lib/dawnscanner.rb

@@ -10,7 +10,7 @@ require "dawn/reporter"
 require "dawn/logger"
 
 # Datamapper classes
-require 'data_mapper'
-require "dawn/registry"
+#require 'data_mapper'
+#require "dawn/registry"
 
 require "date"

data/spec/lib/kb/cve_2016_2098_spec.rb

@@ -32,8 +32,12 @@ describe "The CVE-2016-2098 vulnerability" do
     @check.dependencies = [{:name=>"actionpack", :version=>"5.0.0.1"}]
 		expect(@check.vuln?).to   eq(false)
 	end
-	it "is not reported when a fixed release is detected" do
+  it "is not reported when a fixed release is detected" do
     @check.dependencies = [{:name=>"actionpack", :version=>"3.2.22.2"}]
+    expect(@check.vuln?).to   eq(false)
+  end
+	it "is not reported when a higher release is detected" do
+    @check.dependencies = [{:name=>"actionpack", :version=>"3.2.22.5"}]
 		expect(@check.vuln?).to   eq(false)
 	end
 	it "is not reported when a fixed release is detected" do

metadata

@@ -1,36 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dawnscanner
 version: !ruby/object:Gem::Version
-  version: 1.6.8
+  version: 1.6.9
 platform: ruby
 authors:
 - Paolo Perego
 autorequire: 
 bindir: bin
-cert_chain:
-- |
-  -----BEGIN CERTIFICATE-----
-  MIIDfDCCAmSgAwIBAgIBATANBgkqhkiG9w0BAQUFADBCMQ4wDAYDVQQDDAVwYW9s
-  bzEbMBkGCgmSJomT8ixkARkWC2Rhd25zY2FubmVyMRMwEQYKCZImiZPyLGQBGRYD
-  b3JnMB4XDTE3MDQwNzE0MjU0M1oXDTE4MDQwNzE0MjU0M1owQjEOMAwGA1UEAwwF
-  cGFvbG8xGzAZBgoJkiaJk/IsZAEZFgtkYXduc2Nhbm5lcjETMBEGCgmSJomT8ixk
-  ARkWA29yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKY7klJMYUud
-  10+6gsb1R7Vvnn96BpVc6sPXxInmQeoaQCZ4lT04ARfya7M6E5NHQDjCtSxv2Nib
-  QX8gASLQ/zbg6fDXsUh/SACzguSqBMmwa1LcFs/cBtFuNjq8I/dPffHUVKw1OgzE
-  hkzzmfoYHtga/XptmC24HGdJs5bEGCYTwX6luXPJVAMSxQVx/ZXoHjoR2P/ZMobO
-  md7FSsd4Tk03z/MpkDF9jjMPb7DjMy2ke8VHMRzBurMldhmD2GLRBo+QAnTHrRNp
-  a3yXoWmTlnnxAlJUqSGn83n7r1roHasdT7KzhPmAQ42qh6FrjbkQl/jdJA2fl3I3
-  F0+emUMo9J8CAwEAAaN9MHswCQYDVR0TBAIwADALBgNVHQ8EBAMCBLAwHQYDVR0O
-  BBYEFGrgDWYLVLOvh1i9ValuYILfIy7rMCAGA1UdEQQZMBeBFXBhb2xvQGRhd25z
-  Y2FubmVyLm9yZzAgBgNVHRIEGTAXgRVwYW9sb0BkYXduc2Nhbm5lci5vcmcwDQYJ
-  KoZIhvcNAQEFBQADggEBAHnheFofuUUhycQUbvvo/QlilUWwm5ez9a8tnU3rAeGs
-  6VVsjSf5j30PeQWAVporY3wuPD6Tnqvx0qqOcEtcBJcNcdbqr8h/lLQe66PJnRjM
-  rcAIGSI/KtAfBYSQAP/d711jVjlZr69LjlQjvbV99i36ZDmKHGcrNBnsP49jMuPP
-  cLydkHKvReI6cjZchfO27r1oEVCcd9Z6OTB7StD2SGrXgjbXT6jWuKy9npS0GlCr
-  ZhbONaAaqfNoUhrLptHzm4FNkx1RXERL/HqIsA2pv/L1ZveOWLxrQgI3MuujkoVL
-  nyZ9QdMe5aRX2OoNvfso64jO/IXPlYx+XH8ag3EWRpo=
-  -----END CERTIFICATE-----
-date: 2017-04-07 00:00:00.000000000 Z
+cert_chain: []
+date: 2018-11-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: cvss
@@ -158,34 +136,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: dm-sqlite-adapter
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: data_mapper
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 - !ruby/object:Gem::Dependency
   name: coveralls
   requirement: !ruby/object:Gem::Requirement
@@ -296,7 +246,6 @@ files:
 - Roadmap.md
 - VERSION
 - bin/dawn
-- certs/paolo_at_dawnscanner_dot_org.pem
 - checksum/.placeholder
 - checksum/codesake-dawn-1.1.0.gem.sha512
 - checksum/codesake-dawn-1.1.0.rc1.gem.sha512
@@ -323,6 +272,7 @@ files:
 - checksum/dawnscanner-1.6.5.gem.sha1
 - checksum/dawnscanner-1.6.6.gem.sha1
 - checksum/dawnscanner-1.6.7.gem.sha1
+- checksum/dawnscanner-1.6.8.gem.sha1
 - code_of_conduct.md
 - dawnscanner.gemspec
 - doc/dawn_1_0_announcement.md
@@ -719,7 +669,7 @@ files:
 - support/bootstrap.js
 - support/bootstrap.min.css
 - support/codesake.css
-homepage: http://dawnscanner.org
+homepage: https://dawnscanner.org
 licenses:
 - MIT
 metadata: {}
@@ -731,7 +681,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 1.9.3
+      version: 2.3.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
@@ -739,7 +689,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.5.1
+rubygems_version: 2.7.7
 signing_key: 
 specification_version: 4
 summary: Dawnscanner is a security source code scanner for ruby powered code. It is

data/certs/paolo_at_dawnscanner_dot_org.pem

@@ -1,21 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIDfDCCAmSgAwIBAgIBATANBgkqhkiG9w0BAQUFADBCMQ4wDAYDVQQDDAVwYW9s
-bzEbMBkGCgmSJomT8ixkARkWC2Rhd25zY2FubmVyMRMwEQYKCZImiZPyLGQBGRYD
-b3JnMB4XDTE3MDQwNzE0MjU0M1oXDTE4MDQwNzE0MjU0M1owQjEOMAwGA1UEAwwF
-cGFvbG8xGzAZBgoJkiaJk/IsZAEZFgtkYXduc2Nhbm5lcjETMBEGCgmSJomT8ixk
-ARkWA29yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKY7klJMYUud
-10+6gsb1R7Vvnn96BpVc6sPXxInmQeoaQCZ4lT04ARfya7M6E5NHQDjCtSxv2Nib
-QX8gASLQ/zbg6fDXsUh/SACzguSqBMmwa1LcFs/cBtFuNjq8I/dPffHUVKw1OgzE
-hkzzmfoYHtga/XptmC24HGdJs5bEGCYTwX6luXPJVAMSxQVx/ZXoHjoR2P/ZMobO
-md7FSsd4Tk03z/MpkDF9jjMPb7DjMy2ke8VHMRzBurMldhmD2GLRBo+QAnTHrRNp
-a3yXoWmTlnnxAlJUqSGn83n7r1roHasdT7KzhPmAQ42qh6FrjbkQl/jdJA2fl3I3
-F0+emUMo9J8CAwEAAaN9MHswCQYDVR0TBAIwADALBgNVHQ8EBAMCBLAwHQYDVR0O
-BBYEFGrgDWYLVLOvh1i9ValuYILfIy7rMCAGA1UdEQQZMBeBFXBhb2xvQGRhd25z
-Y2FubmVyLm9yZzAgBgNVHRIEGTAXgRVwYW9sb0BkYXduc2Nhbm5lci5vcmcwDQYJ
-KoZIhvcNAQEFBQADggEBAHnheFofuUUhycQUbvvo/QlilUWwm5ez9a8tnU3rAeGs
-6VVsjSf5j30PeQWAVporY3wuPD6Tnqvx0qqOcEtcBJcNcdbqr8h/lLQe66PJnRjM
-rcAIGSI/KtAfBYSQAP/d711jVjlZr69LjlQjvbV99i36ZDmKHGcrNBnsP49jMuPP
-cLydkHKvReI6cjZchfO27r1oEVCcd9Z6OTB7StD2SGrXgjbXT6jWuKy9npS0GlCr
-ZhbONaAaqfNoUhrLptHzm4FNkx1RXERL/HqIsA2pv/L1ZveOWLxrQgI3MuujkoVL
-nyZ9QdMe5aRX2OoNvfso64jO/IXPlYx+XH8ag3EWRpo=
------END CERTIFICATE-----