dradis-nessus 4.16.0 → 4.18.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +6 -0
  3. data/Gemfile +1 -1
  4. data/lib/dradis/plugins/nessus/field_processor.rb +1 -3
  5. data/lib/dradis/plugins/nessus/gem_version.rb +1 -1
  6. data/lib/nessus/report_item.rb +13 -13
  7. data/lib/tasks/thorfile.rb +1 -1
  8. metadata +3 -7
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b395234d3a5e00289f233f901709db556539beecbd6347aefeef5a15a08a7211
4
- data.tar.gz: e5f896b5078c955ba59897a900ecfdb295c93f0cff274ebb6e8241d253f64074
3
+ metadata.gz: 55a51c2e26deccbd04f84c1257d31c6169ac2258c939b9f4da640bd7fc129b57
4
+ data.tar.gz: 553d96748a6ea977332d26399719707385eb7489e0ea8d1689f923cc1adf3b56
5
5
  SHA512:
6
- metadata.gz: 596d7a360c250a3ca2b194aeedf52ffffa4638daee27be5d43ed71e582d2344fcefe57dd6272e13992cf914b5715be7d1565c0a590bdfc878cc1a34f415c7fed
7
- data.tar.gz: ae9672b62e1e0d081bb0dea57f3600fddba8e3b45a8bd5a0253f780784be5dba95b40d6cc372c1a378e9d3df31e15eac2d70485885d25585f303f9e0c22d6a4f
6
+ metadata.gz: 65f0d5b1931ff7525d4b3d0192491537d3f69ed12e51a5c2c23c7722a285887eec5365295f3121609fe1fbf79f8a50a5b2a00a666df70566b7758b446b8be016
7
+ data.tar.gz: 855126cbb5f4c17fc1ac85ce665e04f9971675708b6ac1819bb085369c742545766c058d038d19c7d73f7a5eae51e3c57e71e62bc5fdbf41b5c3c80d2736a035
data/CHANGELOG.md CHANGED
@@ -1,3 +1,9 @@
1
+ v4.18.0 (September 2025)
2
+ - No changes
3
+
4
+ v4.17.0 (July 2025)
5
+ - Ignore entries that have blank values
6
+
1
7
  v4.16.0 (May 2025)
2
8
  - No changes
3
9
 
data/Gemfile CHANGED
@@ -16,7 +16,7 @@ gemspec
16
16
  # To use debugger
17
17
  # gem 'debugger'
18
18
 
19
- if Dir.exists?('../dradis-plugins')
19
+ if Dir.exist?('../dradis-plugins')
20
20
  gem 'dradis-plugins', path: '../dradis-plugins'
21
21
  else
22
22
  gem 'dradis-plugins', github: 'dradis/dradis-plugins'
data/lib/dradis/plugins/nessus/field_processor.rb CHANGED
@@ -16,9 +16,7 @@ module Dradis
16
16
  _, name = field.split('.')
17
17
 
18
18
  if name.end_with?('entries')
19
- # report_item.bid_entries
20
- # report_item.cve_entries
21
- # report_item.xref_entries
19
+ # bid_entries, cve_entries, cwe_entries, see_also_entries, xref_entries,
22
20
  entries = @nessus_object.try(name)
23
21
  if entries.any?
24
22
  entries.to_a.join("\n")
data/lib/dradis/plugins/nessus/gem_version.rb CHANGED
@@ -8,7 +8,7 @@ module Dradis
8
8
 
9
9
  module VERSION
10
10
  MAJOR = 4
11
- MINOR = 16
11
+ MINOR = 18
12
12
  TINY = 0
13
13
  PRE = nil
14
14
 
data/lib/nessus/report_item.rb CHANGED
@@ -19,16 +19,16 @@ module Nessus
19
19
  def supported_tags
20
20
  [
21
21
  # attributes
22
- :plugin_family, :plugin_id, :plugin_name, :port, :protocol, :svc_name, :severity,
22
+ :plugin_family, :plugin_id, :plugin_name, :port, :protocol, :svc_name, :severity,
23
23
  # simple tags
24
- :age_of_vuln, :cvss3_base_score, :cvss3_temporal_score, :cvss3_temporal_vector,
25
- :cvss3_vector, :cvss_base_score, :cvss3_impact_score, :cvss_temporal_score,
26
- :cvss_temporal_vector, :cvss_vector, :description, :exploit_available,
27
- :exploit_code_maturity, :exploit_framework_canvas, :exploit_framework_core,
28
- :exploitability_ease, :exploit_framework_metasploit,:metasploit_name,
29
- :patch_publication_date, :plugin_modification_date, :plugin_output,
30
- :plugin_publication_date, :plugin_type, :plugin_version, :product_coverage,
31
- :risk_factor, :solution, :synopsis, :threat_intensity_last_28, :threat_recency,
24
+ :age_of_vuln, :cvss3_base_score, :cvss3_temporal_score, :cvss3_temporal_vector,
25
+ :cvss3_vector, :cvss_base_score, :cvss3_impact_score, :cvss_temporal_score,
26
+ :cvss_temporal_vector, :cvss_vector, :description, :exploit_available,
27
+ :exploit_code_maturity, :exploit_framework_canvas, :exploit_framework_core,
28
+ :exploitability_ease, :exploit_framework_metasploit,:metasploit_name,
29
+ :patch_publication_date, :plugin_modification_date, :plugin_output,
30
+ :plugin_publication_date, :plugin_type, :plugin_version, :product_coverage,
31
+ :risk_factor, :solution, :synopsis, :threat_intensity_last_28, :threat_recency,
32
32
  :threat_sources_last_28, :vpr_score, :vuln_publication_date,
33
33
  # multiple tags
34
34
  :bid_entries, :cve_entries, :cwe_entries, :see_also_entries, :xref_entries,
@@ -53,7 +53,7 @@ module Nessus
53
53
  # attribute, simple descendent or collection that it maps to in the XML
54
54
  # tree.
55
55
  def method_missing(method, *args)
56
-
56
+
57
57
  # We could remove this check and return nil for any non-recognized tag.
58
58
  # The problem would be that it would make tricky to debug problems with
59
59
  # typos. For instance: <>.potr would return nil instead of raising an
@@ -102,8 +102,8 @@ module Nessus
102
102
  end
103
103
  end
104
104
 
105
- # older versions of Nessus use <vpr_score> while newer versions of Nessus
106
- # use <vulnerability_priority_rating>. This allows either tag to be
105
+ # older versions of Nessus use <vpr_score> while newer versions of Nessus
106
+ # use <vulnerability_priority_rating>. This allows either tag to be
107
107
  # pulled in to the vpr_score mapping
108
108
  if method_name == 'vpr_score'
109
109
  return @xml.at_xpath('./vulnerability_priority_rating | ./vpr_score')&.text
@@ -119,7 +119,7 @@ module Nessus
119
119
  }
120
120
  method_name = translations_table.fetch(method, nil)
121
121
  if method_name
122
- @xml.xpath("./#{method_name}").collect(&:text)
122
+ @xml.xpath("./#{method_name}").collect(&:text).reject(&:empty?)
123
123
  else
124
124
  # nothing found, the tag is valid but not present in this ReportItem
125
125
  return nil
data/lib/tasks/thorfile.rb CHANGED
@@ -7,7 +7,7 @@ class NessusTasks < Thor
7
7
  def upload(file_path)
8
8
  require 'config/environment'
9
9
 
10
- unless File.exists?(file_path)
10
+ unless File.exist?(file_path)
11
11
  $stderr.puts "** the file [#{file_path}] does not exist"
12
12
  exit(-1)
13
13
  end
metadata CHANGED
@@ -1,14 +1,13 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dradis-nessus
3
3
  version: !ruby/object:Gem::Version
4
- version: 4.16.0
4
+ version: 4.18.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Daniel Martin
8
- autorequire:
9
8
  bindir: bin
10
9
  cert_chain: []
11
- date: 2025-05-16 00:00:00.000000000 Z
10
+ date: 1980-01-02 00:00:00.000000000 Z
12
11
  dependencies:
13
12
  - !ruby/object:Gem::Dependency
14
13
  name: dradis-plugins
@@ -96,7 +95,6 @@ dependencies:
96
95
  version: 0.5.2
97
96
  description: This add-on allows you to upload and parse output produced from Tenable's
98
97
  Nessus Scanner into Dradis.
99
- email:
100
98
  executables: []
101
99
  extensions: []
102
100
  extra_rdoc_files: []
@@ -140,7 +138,6 @@ homepage: https://dradis.com/integrations/nessus.html
140
138
  licenses:
141
139
  - GPL-2
142
140
  metadata: {}
143
- post_install_message:
144
141
  rdoc_options: []
145
142
  require_paths:
146
143
  - lib
@@ -155,8 +152,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
155
152
  - !ruby/object:Gem::Version
156
153
  version: '0'
157
154
  requirements: []
158
- rubygems_version: 3.5.6
159
- signing_key:
155
+ rubygems_version: 3.6.9
160
156
  specification_version: 4
161
157
  summary: Nessus upload add-on for the Dradis Framework.
162
158
  test_files: