full_metal_body 0.1.0 → 0.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +10 -0
- data/lib/full_metal_body/version.rb +1 -1
- metadata +63 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d1cbd62a760bad67c2e5033722c4c05df8b1819bd9ebaa06b1e702c848d9e652
|
|
4
|
+
data.tar.gz: 9adfe6ec229e0e6a3b2893d4269d0e2343810106e08eb1afca4ee74313c385a5
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 999c34d0a213dde0659a22de835eec7255604308c05b1f913e81c3c4d307118a14adf361024c8311da0d991a410458d6da08f797f974d68100dd2181f50c8dac
|
|
7
|
+
data.tar.gz: 72a2942d9104617493a16977333e3ae7694b5f2e52d9f0db46e396dd683778b04388afca3d06ed4224633e36f58b8a6f0f5a10c72e894a1b9721058dd331952e
|
data/README.md
CHANGED
|
@@ -84,6 +84,7 @@ articles:
|
|
|
84
84
|
* [Modify ApplicationController](#modifyapplicationcontroller)
|
|
85
85
|
* [Creating a whitelist template](#creatingawhitelisttemplate)
|
|
86
86
|
* [If you want to allow all parameters](#ifyouwanttoallowallparameters)
|
|
87
|
+
* [Disable the unknown parameter count check](#disabletheunknownparameterscountcheck)
|
|
87
88
|
* [Development](#development)
|
|
88
89
|
* [Preparation](#preparation)
|
|
89
90
|
* [Test](#test)
|
|
@@ -193,6 +194,15 @@ graphql:
|
|
|
193
194
|
However, although all keys are allowed, to prevent attacks,
|
|
194
195
|
the type will be inferred from the value and the input value will be validated with the default rules for that type.
|
|
195
196
|
|
|
197
|
+
### Disable the unknown parameter count check
|
|
198
|
+
|
|
199
|
+
FullMetalBody allows up to three unknown parameters by default.
|
|
200
|
+
This is to allow room for errors in case unexpected parameters remain even after the whitelist is complete, but
|
|
201
|
+
When the whitelist is in the process of being created, more than three parameters will be detected and an error will occur immediately.
|
|
202
|
+
|
|
203
|
+
Therefore, it is recommended to disable the whitelist while it is being created.
|
|
204
|
+
To disable it, set the environment variable `ENV['USE_WHITELIST_COUNT_CHECK']` to `0`.
|
|
205
|
+
|
|
196
206
|
## Development
|
|
197
207
|
|
|
198
208
|
Please clone the repository and start development.
|
metadata
CHANGED
|
@@ -1,14 +1,15 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: full_metal_body
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.2.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Toyoaki Oko
|
|
8
|
+
- tokai3594
|
|
8
9
|
autorequire:
|
|
9
10
|
bindir: bin
|
|
10
11
|
cert_chain: []
|
|
11
|
-
date:
|
|
12
|
+
date: 2025-08-22 00:00:00.000000000 Z
|
|
12
13
|
dependencies:
|
|
13
14
|
- !ruby/object:Gem::Dependency
|
|
14
15
|
name: rails
|
|
@@ -16,7 +17,7 @@ dependencies:
|
|
|
16
17
|
requirements:
|
|
17
18
|
- - "<"
|
|
18
19
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 7.
|
|
20
|
+
version: 7.2.0
|
|
20
21
|
- - ">="
|
|
21
22
|
- !ruby/object:Gem::Version
|
|
22
23
|
version: 6.0.0
|
|
@@ -26,7 +27,7 @@ dependencies:
|
|
|
26
27
|
requirements:
|
|
27
28
|
- - "<"
|
|
28
29
|
- !ruby/object:Gem::Version
|
|
29
|
-
version: 7.
|
|
30
|
+
version: 7.2.0
|
|
30
31
|
- - ">="
|
|
31
32
|
- !ruby/object:Gem::Version
|
|
32
33
|
version: 6.0.0
|
|
@@ -72,9 +73,66 @@ dependencies:
|
|
|
72
73
|
- - ">="
|
|
73
74
|
- !ruby/object:Gem::Version
|
|
74
75
|
version: '0'
|
|
76
|
+
- !ruby/object:Gem::Dependency
|
|
77
|
+
name: concurrent-ruby
|
|
78
|
+
requirement: !ruby/object:Gem::Requirement
|
|
79
|
+
requirements:
|
|
80
|
+
- - '='
|
|
81
|
+
- !ruby/object:Gem::Version
|
|
82
|
+
version: 1.3.4
|
|
83
|
+
type: :development
|
|
84
|
+
prerelease: false
|
|
85
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
86
|
+
requirements:
|
|
87
|
+
- - '='
|
|
88
|
+
- !ruby/object:Gem::Version
|
|
89
|
+
version: 1.3.4
|
|
90
|
+
- !ruby/object:Gem::Dependency
|
|
91
|
+
name: mutex_m
|
|
92
|
+
requirement: !ruby/object:Gem::Requirement
|
|
93
|
+
requirements:
|
|
94
|
+
- - ">="
|
|
95
|
+
- !ruby/object:Gem::Version
|
|
96
|
+
version: '0'
|
|
97
|
+
type: :development
|
|
98
|
+
prerelease: false
|
|
99
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
100
|
+
requirements:
|
|
101
|
+
- - ">="
|
|
102
|
+
- !ruby/object:Gem::Version
|
|
103
|
+
version: '0'
|
|
104
|
+
- !ruby/object:Gem::Dependency
|
|
105
|
+
name: bigdecimal
|
|
106
|
+
requirement: !ruby/object:Gem::Requirement
|
|
107
|
+
requirements:
|
|
108
|
+
- - ">="
|
|
109
|
+
- !ruby/object:Gem::Version
|
|
110
|
+
version: '0'
|
|
111
|
+
type: :development
|
|
112
|
+
prerelease: false
|
|
113
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
114
|
+
requirements:
|
|
115
|
+
- - ">="
|
|
116
|
+
- !ruby/object:Gem::Version
|
|
117
|
+
version: '0'
|
|
118
|
+
- !ruby/object:Gem::Dependency
|
|
119
|
+
name: drb
|
|
120
|
+
requirement: !ruby/object:Gem::Requirement
|
|
121
|
+
requirements:
|
|
122
|
+
- - ">="
|
|
123
|
+
- !ruby/object:Gem::Version
|
|
124
|
+
version: '0'
|
|
125
|
+
type: :development
|
|
126
|
+
prerelease: false
|
|
127
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
128
|
+
requirements:
|
|
129
|
+
- - ">="
|
|
130
|
+
- !ruby/object:Gem::Version
|
|
131
|
+
version: '0'
|
|
75
132
|
description: FullMetalBody is an input validation tool for ruby on rails.
|
|
76
133
|
email:
|
|
77
134
|
- chariderpato@gmail.com
|
|
135
|
+
- t-shinohara@rhizome-e.com
|
|
78
136
|
executables: []
|
|
79
137
|
extensions: []
|
|
80
138
|
extra_rdoc_files: []
|
|
@@ -122,7 +180,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
122
180
|
- !ruby/object:Gem::Version
|
|
123
181
|
version: '0'
|
|
124
182
|
requirements: []
|
|
125
|
-
rubygems_version: 3.3.
|
|
183
|
+
rubygems_version: 3.3.27
|
|
126
184
|
signing_key:
|
|
127
185
|
specification_version: 4
|
|
128
186
|
summary: FullMetalBody is an input validation tool for ruby on rails.
|