dradis-nessus 3.14.0 → 3.19.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.gitignore +2 -0
- data/CHANGELOG.md +20 -0
- data/lib/dradis/plugins/nessus/field_processor.rb +7 -5
- data/lib/dradis/plugins/nessus/gem_version.rb +1 -1
- data/spec/dradis/plugins/nessus/field_processor_spec.rb +24 -10
- metadata +3 -3
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 9e4b5a3cdebabb59b26755acf3624a14c28670faef76e4d648b38261f24c4891
|
4
|
+
data.tar.gz: c364618a66ab415956adc699362a7f0e5efdfc290694b2812ae7da0e61817b34
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: e891eb742d02d760e544b560da9324961e633f18d93b9c95b7ef93d225a89db52961f5d96233f57476fc782ff70f3d7cf82e1118c0ba160bc81f5ce4ae4c5786
|
7
|
+
data.tar.gz: a2a772c327447c473b383c4140db5c88ca175291185ed106e60d4c816cce6171424703da7e63afe94245c61d0e40200f4ca814f7a157451798462fe15db1f898
|
data/.gitignore
CHANGED
data/CHANGELOG.md
CHANGED
@@ -1,3 +1,23 @@
|
|
1
|
+
## Dradis Framework 3.19 (September, 2020) ##
|
2
|
+
|
3
|
+
* No changes.
|
4
|
+
|
5
|
+
## Dradis Framework 3.18 (July, 2020) ##
|
6
|
+
|
7
|
+
* No changes.
|
8
|
+
|
9
|
+
## Dradis Framework 3.17 (May, 2020) ##
|
10
|
+
|
11
|
+
* No changes.
|
12
|
+
|
13
|
+
## Dradis Framework 3.16 (February, 2020) ##
|
14
|
+
|
15
|
+
* No changes.
|
16
|
+
|
17
|
+
## Dradis Framework 3.15 (November, 2019) ##
|
18
|
+
|
19
|
+
* Fixed bullet points formatting to handle internal text column widths
|
20
|
+
|
1
21
|
## Dradis Framework 3.14 (August, 2019) ##
|
2
22
|
|
3
23
|
* No changes.
|
@@ -28,7 +28,7 @@ module Dradis
|
|
28
28
|
else
|
29
29
|
output = @nessus_object.try(name) || 'n/a'
|
30
30
|
|
31
|
-
if field == 'report_item.description' && output =~
|
31
|
+
if field == 'report_item.description' && output =~ /^\s+-/
|
32
32
|
format_bullet_point_lists(output)
|
33
33
|
else
|
34
34
|
output
|
@@ -39,15 +39,17 @@ module Dradis
|
|
39
39
|
private
|
40
40
|
def format_bullet_point_lists(input)
|
41
41
|
input.split("\n").map do |paragraph|
|
42
|
-
if paragraph =~
|
43
|
-
|
42
|
+
if paragraph =~ /(.*)\s+:\s*$/m
|
43
|
+
$1 + ':'
|
44
|
+
elsif paragraph =~ /^\s+-\s+(.*)$/m
|
45
|
+
'* ' + $1.gsub(/\s{3,}/, ' ').gsub(/\n/, ' ')
|
44
46
|
else
|
45
47
|
paragraph
|
46
48
|
end
|
47
|
-
end.join("\n
|
49
|
+
end.join("\n")
|
48
50
|
end
|
49
51
|
end
|
50
52
|
|
51
53
|
end
|
52
54
|
end
|
53
|
-
end
|
55
|
+
end
|
@@ -3,25 +3,39 @@ require 'ostruct'
|
|
3
3
|
|
4
4
|
describe Dradis::Plugins::Nessus::FieldProcessor do
|
5
5
|
|
6
|
-
describe
|
7
|
-
context
|
8
|
-
|
9
|
-
doc = Nokogiri::XML(
|
6
|
+
describe '%report_item.description% field formatting' do
|
7
|
+
context 'bullet points' do
|
8
|
+
before do
|
9
|
+
doc = Nokogiri::XML(
|
10
|
+
File.read('spec/fixtures/files/report_item-with-list.xml')
|
11
|
+
)
|
10
12
|
processor = described_class.new(data: doc.root)
|
11
13
|
|
12
|
-
value = processor.value(field: 'report_item.description')
|
13
|
-
|
14
|
+
@value = processor.value(field: 'report_item.description')
|
15
|
+
end
|
16
|
+
|
17
|
+
it 'converts Nessus broken lists into Textile bullet-point lists' do
|
18
|
+
expect(@value).to_not be_empty
|
19
|
+
|
20
|
+
expect(@value).to include(
|
21
|
+
'* A denial of service vulnerability exists relating to '\
|
22
|
+
'the \'mod_dav\' module as it relates to MERGE requests.'
|
23
|
+
)
|
24
|
+
end
|
14
25
|
|
15
|
-
|
26
|
+
it 'does not add unnecessary newlines to list items' do
|
27
|
+
expect(@value).to include("vulnerabilities:\n\n* A flaw exists")
|
16
28
|
end
|
17
29
|
end
|
18
30
|
end
|
19
31
|
|
20
|
-
it
|
21
|
-
doc = Nokogiri::XML(
|
32
|
+
it 'Recasted severity values appear in the Evidence' do
|
33
|
+
doc = Nokogiri::XML(
|
34
|
+
File.read('spec/fixtures/files/report_item-with-list.xml')
|
35
|
+
)
|
22
36
|
processor = described_class.new(data: doc.root)
|
23
37
|
value = processor.value(field: 'evidence.severity')
|
24
38
|
expect(value).to_not be_empty
|
25
|
-
expect(value).to include(
|
39
|
+
expect(value).to include('2')
|
26
40
|
end
|
27
41
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dradis-nessus
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 3.
|
4
|
+
version: 3.19.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Daniel Martin
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2020-09-04 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dradis-plugins
|
@@ -158,7 +158,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
158
158
|
- !ruby/object:Gem::Version
|
159
159
|
version: '0'
|
160
160
|
requirements: []
|
161
|
-
rubygems_version: 3.0.
|
161
|
+
rubygems_version: 3.0.1
|
162
162
|
signing_key:
|
163
163
|
specification_version: 4
|
164
164
|
summary: Nessus upload add-on for the Dradis Framework.
|