hackerone-client 0.21.0 → 0.22.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.github/workflows/build.yml +6 -11
- data/CHANGELOG.md +4 -0
- data/CODEOWNERS +2 -0
- data/CODE_OF_CONDUCT.md +1 -1
- data/CONTRIBUTING.md +6 -3
- data/LICENSE.txt +1 -1
- data/README.md +3 -3
- data/SECURITY.md +31 -0
- data/SUPPORT.md +13 -0
- data/hackerone-client.gemspec +2 -1
- data/lib/hackerone/client/program.rb +3 -3
- data/lib/hackerone/client/version.rb +1 -1
- data/lib/hackerone/client.rb +3 -2
- metadata +12 -9
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 24b1250ad09669f3ad16458a5ba4b8be1e8837a2689d4ff524e332a0bf9dcc60
|
4
|
+
data.tar.gz: 3c8ac97e8ae5ec1281a6430384cec813fc7b2a39f14a3e0c4cb3c09f1a64b727
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: b2c6fe41d727782597aa91e079aee5fdd645c5f66db02dc92246708baa3dd479a0bfb32d56d42a5d82fc5cb900b22853c7c2ac78dec9be7a0bef4aab5b3647dd
|
7
|
+
data.tar.gz: 676f7421904ae3d02e1dc02c9cef27cb6ebcbbfe3c9cbab5f2448cf7ae365bcdd9ff9a599ecf348705ff6f3e93f39272e7c5dd258c91b23d47ff146486900aa1
|
data/.github/workflows/build.yml
CHANGED
@@ -7,30 +7,25 @@ jobs:
|
|
7
7
|
runs-on: ubuntu-latest
|
8
8
|
strategy:
|
9
9
|
matrix:
|
10
|
-
ruby: [ '2.
|
10
|
+
ruby: [ '2.6', '2.7', '3.0', '3.1', '3.2', '3.3']
|
11
11
|
steps:
|
12
12
|
- uses: actions/checkout@v2
|
13
13
|
- name: Set up Ruby ${{ matrix.ruby }}
|
14
|
-
uses: ruby/setup-ruby@v1
|
14
|
+
uses: ruby/setup-ruby@v1
|
15
15
|
with:
|
16
16
|
ruby-version: ${{ matrix.ruby }}
|
17
17
|
bundler-cache: true
|
18
18
|
- name: Build and test with Rake with Ruby ${{ matrix.ruby }}
|
19
|
-
run:
|
20
|
-
gem install bundler
|
21
|
-
bundle install --jobs 4 --retry 3
|
22
|
-
bundle exec rake spec
|
19
|
+
run: bundle exec rake spec
|
23
20
|
lint:
|
24
21
|
name: Rubocop
|
25
22
|
runs-on: ubuntu-latest
|
26
23
|
steps:
|
27
24
|
- uses: actions/checkout@v2
|
28
25
|
- name: Set up Ruby 2.6
|
29
|
-
uses:
|
26
|
+
uses: ruby/setup-ruby@v1
|
30
27
|
with:
|
31
28
|
ruby-version: 2.6
|
29
|
+
bundler-cache: true
|
32
30
|
- name: Run linters
|
33
|
-
run:
|
34
|
-
gem install bundler
|
35
|
-
bundle install --jobs 4 --retry 3
|
36
|
-
bundle exec rake rubocop
|
31
|
+
run: bundle exec rake rubocop
|
data/CHANGELOG.md
CHANGED
@@ -1,3 +1,7 @@
|
|
1
|
+
## [0.22.0] - 2024-01-10
|
2
|
+
|
3
|
+
[Update Faraday API call and deprecate support for Ruby <2.6](https://github.com/github/hackerone-client/pull/2) (@maclarel)
|
4
|
+
|
1
5
|
## [0.20.0] - 2020-10-21
|
2
6
|
|
3
7
|
[Add ability to lock a report](https://github.com/oreoshake/hackerone-client/pull/59) (@rzhade3)
|
data/CODEOWNERS
ADDED
data/CODE_OF_CONDUCT.md
CHANGED
@@ -55,7 +55,7 @@ further defined and clarified by project maintainers.
|
|
55
55
|
## Enforcement
|
56
56
|
|
57
57
|
Instances of abusive, harassing, or otherwise unacceptable behavior may be
|
58
|
-
reported by contacting the project team at
|
58
|
+
reported by contacting the project team at opensource@github.com. All
|
59
59
|
complaints will be reviewed and investigated and will result in a response that
|
60
60
|
is deemed necessary and appropriate to the circumstances. The project team is
|
61
61
|
obligated to maintain confidentiality with regard to the reporter of an incident.
|
data/CONTRIBUTING.md
CHANGED
@@ -1,13 +1,15 @@
|
|
1
1
|
## Contributing
|
2
2
|
|
3
|
-
[fork]: https://github.com/
|
4
|
-
[pr]: https://github.com/
|
3
|
+
[fork]: https://github.com/github/hackerone-client/fork
|
4
|
+
[pr]: https://github.com/github/hackerone-client/compare
|
5
5
|
[style]: https://github.com/styleguide/ruby
|
6
6
|
[code-of-conduct]: CODE_OF_CONDUCT.md
|
7
7
|
|
8
8
|
Hi there! We're thrilled that you'd like to contribute to this project. Your help is essential for keeping it great.
|
9
9
|
|
10
|
-
|
10
|
+
Contributions to this project are [released](https://help.github.com/articles/github-terms-of-service/#6-contributions-under-repository-license) to the public under the [project's open source license](LICENSE.txt).
|
11
|
+
|
12
|
+
Please note that this project is released with a [Contributor Code of Conduct](CODE_OF_CONDUCT.md). By participating in this project you agree to abide by its terms.
|
11
13
|
|
12
14
|
## Submitting a pull request
|
13
15
|
|
@@ -21,6 +23,7 @@ Please note that this project is released with a [Contributor Code of Conduct][c
|
|
21
23
|
|
22
24
|
Here are a few things you can do that will increase the likelihood of your pull request being accepted:
|
23
25
|
|
26
|
+
- Follow the [style guide][style].
|
24
27
|
- Write tests.
|
25
28
|
- Keep your change as focused as possible. If there are multiple changes you would like to make that are not dependent upon each other, consider submitting them as separate pull requests.
|
26
29
|
- Write a [good commit message](http://tbaggery.com/2008/04/19/a-note-about-git-commit-messages.html).
|
data/LICENSE.txt
CHANGED
data/README.md
CHANGED
@@ -1,6 +1,6 @@
|
|
1
1
|
# Hackerone::Client
|
2
2
|
|
3
|
-
A limited client library for interacting with HackerOne. Currently only supports a few operations:
|
3
|
+
A limited client library for interacting with HackerOne in Ruby. Currently only supports a few operations:
|
4
4
|
|
5
5
|
```ruby
|
6
6
|
client = HackerOne::Client::Api.new("github")
|
@@ -114,6 +114,6 @@ Setting this variable will make the client try to absorb errors, like a malforme
|
|
114
114
|
Bug reports and pull requests are welcome on GitHub at https://github.com/oreoshake/hackerone-client. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
|
115
115
|
|
116
116
|
|
117
|
-
## License
|
117
|
+
## License
|
118
118
|
|
119
|
-
|
119
|
+
This project is licensed under the terms of the MIT open source license. Please refer to [MIT](./LICENSE.txt) for the full terms.
|
data/SECURITY.md
ADDED
@@ -0,0 +1,31 @@
|
|
1
|
+
Thanks for helping make GitHub safe for everyone.
|
2
|
+
|
3
|
+
# Security
|
4
|
+
|
5
|
+
GitHub takes the security of our software products and services seriously, including all of the open source code repositories managed through our GitHub organizations, such as [GitHub](https://github.com/GitHub).
|
6
|
+
|
7
|
+
Even though [open source repositories are outside of the scope of our bug bounty program](https://bounty.github.com/index.html#scope) and therefore not eligible for bounty rewards, we will ensure that your finding gets passed along to the appropriate maintainers for remediation.
|
8
|
+
|
9
|
+
## Reporting Security Issues
|
10
|
+
|
11
|
+
If you believe you have found a security vulnerability in any GitHub-owned repository, please report it to us through coordinated disclosure.
|
12
|
+
|
13
|
+
**Please do not report security vulnerabilities through public GitHub issues, discussions, or pull requests.**
|
14
|
+
|
15
|
+
Instead, please send an email to opensource-security[@]github.com.
|
16
|
+
|
17
|
+
Please include as much of the information listed below as you can to help us better understand and resolve the issue:
|
18
|
+
|
19
|
+
* The type of issue (e.g., buffer overflow, SQL injection, or cross-site scripting)
|
20
|
+
* Full paths of source file(s) related to the manifestation of the issue
|
21
|
+
* The location of the affected source code (tag/branch/commit or direct URL)
|
22
|
+
* Any special configuration required to reproduce the issue
|
23
|
+
* Step-by-step instructions to reproduce the issue
|
24
|
+
* Proof-of-concept or exploit code (if possible)
|
25
|
+
* Impact of the issue, including how an attacker might exploit the issue
|
26
|
+
|
27
|
+
This information will help us triage your report more quickly.
|
28
|
+
|
29
|
+
## Policy
|
30
|
+
|
31
|
+
See [GitHub's Safe Harbor Policy](https://docs.github.com/en/github/site-policy/github-bug-bounty-program-legal-safe-harbor#1-safe-harbor-terms)
|
data/SUPPORT.md
ADDED
@@ -0,0 +1,13 @@
|
|
1
|
+
# Support
|
2
|
+
|
3
|
+
## How to file issues and get help
|
4
|
+
|
5
|
+
This project uses GitHub issues to track bugs and feature requests. Please search the existing issues before filing new issues to avoid duplicates. For new issues, file your bug or feature request as a new issue.
|
6
|
+
|
7
|
+
For help or questions about using this project, please file an issue on this repository.
|
8
|
+
|
9
|
+
- `hackerone-client` is not actively developed but is maintained by GitHub staff **AND THE COMMUNITY**. We will do our best to respond to support and community questions in a timely manner.
|
10
|
+
|
11
|
+
## GitHub Support Policy
|
12
|
+
|
13
|
+
Support for this project is limited to the resources listed above.
|
data/hackerone-client.gemspec
CHANGED
@@ -12,8 +12,9 @@ Gem::Specification.new do |spec|
|
|
12
12
|
spec.email = ["neil.matatall@gmail.com"]
|
13
13
|
|
14
14
|
spec.summary = %q{A limited client for the HackerOne API}
|
15
|
-
spec.homepage = "https://github.com/
|
15
|
+
spec.homepage = "https://github.com/github/hackerone-client"
|
16
16
|
spec.license = "MIT"
|
17
|
+
spec.required_ruby_version = ">= 2.6.0"
|
17
18
|
|
18
19
|
spec.files = `git ls-files -z`.split("\x0").reject do |f|
|
19
20
|
f.match(%r{^(test|spec|features)/})
|
@@ -78,9 +78,9 @@ module HackerOne
|
|
78
78
|
|
79
79
|
def balance
|
80
80
|
response_body = make_get_request(
|
81
|
-
|
82
|
-
|
83
|
-
|
81
|
+
"programs/#{id}/billing/balance"
|
82
|
+
)
|
83
|
+
BillingBalance.new(response_body).balance
|
84
84
|
end
|
85
85
|
|
86
86
|
private
|
data/lib/hackerone/client.rb
CHANGED
@@ -2,7 +2,8 @@
|
|
2
2
|
|
3
3
|
require "faraday"
|
4
4
|
require "json"
|
5
|
-
require "active_support
|
5
|
+
require "active_support"
|
6
|
+
require "active_support/core_ext/numeric/time"
|
6
7
|
require_relative "client/version"
|
7
8
|
require_relative "client/report"
|
8
9
|
require_relative "client/activity"
|
@@ -201,7 +202,7 @@ module HackerOne
|
|
201
202
|
end
|
202
203
|
|
203
204
|
@connection ||= Faraday.new(url: "https://api.hackerone.com/v1") do |faraday|
|
204
|
-
faraday.
|
205
|
+
faraday.request(:authorization, :basic, ENV["HACKERONE_TOKEN_NAME"], ENV["HACKERONE_TOKEN"])
|
205
206
|
faraday.adapter Faraday.default_adapter
|
206
207
|
end
|
207
208
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: hackerone-client
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.22.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Neil Matatall
|
8
|
-
autorequire:
|
8
|
+
autorequire:
|
9
9
|
bindir: exe
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2024-01-11 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: bundler
|
@@ -108,7 +108,7 @@ dependencies:
|
|
108
108
|
- - ">="
|
109
109
|
- !ruby/object:Gem::Version
|
110
110
|
version: '0'
|
111
|
-
description:
|
111
|
+
description:
|
112
112
|
email:
|
113
113
|
- neil.matatall@gmail.com
|
114
114
|
executables: []
|
@@ -121,6 +121,7 @@ files:
|
|
121
121
|
- ".rubocop.yml"
|
122
122
|
- ".travis.yml"
|
123
123
|
- CHANGELOG.md
|
124
|
+
- CODEOWNERS
|
124
125
|
- CODE_OF_CONDUCT.md
|
125
126
|
- CONTRIBUTING.md
|
126
127
|
- Gemfile
|
@@ -128,6 +129,8 @@ files:
|
|
128
129
|
- LICENSE.txt
|
129
130
|
- README.md
|
130
131
|
- Rakefile
|
132
|
+
- SECURITY.md
|
133
|
+
- SUPPORT.md
|
131
134
|
- bin/console
|
132
135
|
- bin/setup
|
133
136
|
- fixtures/vcr_cassettes/add_comment.yml
|
@@ -186,11 +189,11 @@ files:
|
|
186
189
|
- lib/hackerone/client/user.rb
|
187
190
|
- lib/hackerone/client/version.rb
|
188
191
|
- lib/hackerone/client/weakness.rb
|
189
|
-
homepage: https://github.com/
|
192
|
+
homepage: https://github.com/github/hackerone-client
|
190
193
|
licenses:
|
191
194
|
- MIT
|
192
195
|
metadata: {}
|
193
|
-
post_install_message:
|
196
|
+
post_install_message:
|
194
197
|
rdoc_options: []
|
195
198
|
require_paths:
|
196
199
|
- lib
|
@@ -198,15 +201,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
198
201
|
requirements:
|
199
202
|
- - ">="
|
200
203
|
- !ruby/object:Gem::Version
|
201
|
-
version:
|
204
|
+
version: 2.6.0
|
202
205
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
203
206
|
requirements:
|
204
207
|
- - ">="
|
205
208
|
- !ruby/object:Gem::Version
|
206
209
|
version: '0'
|
207
210
|
requirements: []
|
208
|
-
rubygems_version: 3.0.
|
209
|
-
signing_key:
|
211
|
+
rubygems_version: 3.0.9
|
212
|
+
signing_key:
|
210
213
|
specification_version: 4
|
211
214
|
summary: A limited client for the HackerOne API
|
212
215
|
test_files: []
|