RubyGems - hibp-client - Versions diffs - 0.1.0 → 0.1.1 - Mend

hibp-client 0.1.0 → 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b0cfa93448ab5ba699ccf06ac4ca9804fcaa5effd45eb2f76c8a44002efd37f8
-  data.tar.gz: 4e62ca0302d615f411069604503823bc45224090ae6dd8c9ddce49b9a4181e22
+  metadata.gz: 84ccd66e330884154b8984ffe576d04a352c949927ca20620dde9a16c1951bc2
+  data.tar.gz: 727b750b4507f5db31f2640b1f7802f5486a2092ecd3829ae4a5de80aac8bc85
 SHA512:
-  metadata.gz: d3dd01fbe7202f178cd86927e17d5f54b1b6976b9afbaaa3432c0c1989c405fe58ff836ee1daab0a810bbf38bc18f85ec3da7ba19a90fd5d90fd73bb99a21ede
-  data.tar.gz: 52460687b7e9c93413bc2397827adcac2cbd23af7b7d99173e8a43cd34aeae26f0bee47c8d5603d31def57b1ad78e632f6ed4a9aee094cede44a30018f9512d0
+  metadata.gz: 4c061ecaaf20e07a69169517b848d4cdf515723d45508120c89de9f552fa0e23e658c0a52ab7ac39f8715ad1a74745ef002528102bf6f6ff5bd30eb2861f1350
+  data.tar.gz: 8d0562c84adf765357b5e532311ccd685a22de1842754cbc4b832213d09f0fb075bf5a14a6156d752cd5b9b6cb9250dcb035091937ed9743f06aa79c10d0f2e1

data/.travis.yml CHANGED

@@ -1,13 +1,17 @@
----
 sudo: false
 language: ruby
 cache: bundler
 before_install: gem install bundler
 rvm:
-  - 2.6
-  - 2.5
-  - 2.4
-  - 2.3
+- 2.6
+- 2.5
+- 2.4
+- 2.3
+deploy:
+  provider: rubygems
+  api_key:
+    secure: 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
+  gem: hibp-client
+  on:
+    tags: true
+    repo: Warshavski/hibp-client

data/Gemfile CHANGED

@@ -5,7 +5,7 @@ source 'https://rubygems.org'
 # Specify your gem's dependencies in hibp.gemspec
 group :development, :test do
-  gem 'webmock', '~>1.24.0'
+  gem 'webmock', '~>2.3.2'
 end
 gemspec

data/README.md CHANGED

@@ -1,6 +1,6 @@
-# Hibp
+# Hibp-client
-[![Build Status](https://travis-ci.com/Warshavski/hibp.svg?branch=master)](https://travis-ci.com/Warshavski/hibp)
+[![Build Status](https://travis-ci.com/Warshavski/hibp-client.svg?branch=master)](https://travis-ci.com/Warshavski/hibp-client)
 A simple Ruby client for interacting with [Have I Been Pwned](https://haveibeenpwned.com/) REST API.
@@ -11,7 +11,7 @@ This gem based on [API v3](https://haveibeenpwned.com/API/v3)
 Add this line to your application's Gemfile:
 ```ruby
-gem 'hibp'
+gem 'hibp-client'
 ```
 And then execute:
@@ -20,7 +20,7 @@ And then execute:
 Or install it yourself as:
-    $ gem install hibp
+    $ gem install hibp-client
 ## Usage
@@ -50,6 +50,79 @@ client = Hibp::Client.new('api-key')
 ### Breaches
+#### Breach model
+```ruby
+Hibp::Models::Breach
+```
+A "breach" is an instance of a system having been compromised by an attacker and the data disclosed.
+For example, Adobe was a breach, Gawker was a breach etc.
+A "breach" is an incident where data is inadvertently exposed in a vulnerable system, usually due to insufficient access controls or security weaknesses in the software.
+- `name [String]` - A name representing the breach which is unique across all other breaches.
+                    This value never changes and may be used to name dependent assets (such as images) but should not be shown directly to end users(see the "title" attribute instead).
+- `title [String]` - A descriptive title for the breach suitable for displaying to end users.
+                     It's unique across all breaches but individual values may change in the future
+                     (i.e. if another breach occurs against an organisation already in the system).
+                     If a stable value is required to reference the breach, refer to the "Name" attribute instead.
+- `domain [String]` - The domain of the primary website the breach occurred on.
+                      This may be used for identifying other assets external systems may have for the site.
+- `breach_data [Date]` - The date (with no time) the breach originally occurred on in ISO 8601 format.
+                         This is not always accurate — frequently breaches are discovered and reported long after the original incident.
+                         Use this attribute as a guide only.
+- `added_date [DateTime]` - The date and time (precision to the minute) the breach was added to the system in ISO 8601 format.
+- `modified_date [DateTime]` - The date and time (precision to the minute) the breach was modified in ISO 8601 format.
+                               This will only differ from the AddedDate attribute if other attributes
+                               represented here are changed or data in the breach itself is changed
+                               (i.e. additional data is identified and loaded).
+                               It is always either equal to or greater then the AddedDate attribute, never less than.
+- `pwn_count [Integer]` - The total number of accounts loaded into the system.
+                This is usually less than the total number reported by the media due to
+                duplication or other data integrity issues in the source data.
+- `description [String]` - Contains an overview of the breach represented in HTML markup.
+                           The description may include markup such as emphasis and strong tags as well as hyperlinks.
+- `data_classes [Array<String>]` - This attribute describes the nature of the data compromised in the breach and
+                                   contains an alphabetically ordered string array of impacted data classes.
+- `is_verified [Boolean]` - Indicates that the breach is considered unverified.
+                            An unverified breach may not have been hacked from the indicated website.
+                            An unverified breach is still loaded into HIBP when there's
+                            sufficient confidence that a significant portion of the data is legitimate.
+                            (<b>alias</b> `verified?`)
+- `is_fabricated [Boolean]` - Indicates that the breach is considered fabricated.
+                              A fabricated breach is unlikely to have been hacked from the
+                              indicated website and usually contains a large amount of manufactured data.
+                              However, it still contains legitimate email addresses and asserts that
+                              the account owners were compromised in the alleged breach.
+                              (<b>alias</b> `fabricated?`)
+- `is_sensitive [Boolean]` - Indicates if the breach is considered sensitive.
+                             The public API will not return any accounts for a breach flagged as sensitive.
+                             (<b>alias</b> `sensitive?`)
+- `is_retired [Boolean]` - Indicates if the breach has been retired.
+                           This data has been permanently removed and will not be returned by the API.
+                           (<b>alias</b> `retired?`)
+- `is_spam_list [Boolean]` - Indicates if the breach is considered a spam list.
+                             This flag has no impact on any other attributes but
+                             it means that the data has not come as a result of a security compromise.
+                             (<b>alias</b> `spam_list?`)
+- `logo_path [String]` - A URI that specifies where a logo for the breached service can be found.
+                         Logos are always in PNG format.
 #### Getting all breached sites in the system
 ```ruby
@@ -57,13 +130,14 @@ client = Hibp::Client.new
 # Return the details of each breach in the system.
 #
-# => Array<Hibp::Breach>
+# => Array<Hibp::Models::Breach>
 #
 client.breaches.fetch
 # Return the details of each breach associated with a specific domain.
 #
-# => Array<Hibp::Breach>
+# => Array<Hibp::Models::Breach>
+#
 client.breaches.where(domain: 'adobe.com').fetch
 ```
@@ -74,7 +148,7 @@ client = Hibp::Client.new
 # Return the details of a single breach, by breach name.
 #
-# => Hibp::Breach
+# => Hibp::Models::Breach
 #
 client.breach('000webhost').fetch
 ```
@@ -103,31 +177,71 @@ client = Hibp::Client.new('api-key')
 # Get all breaches for an account across all domains.
 #
-# => Array<Hibp::Breach>
+# => Array<Hibp::Models::Breach>
 #
 client.account_breaches('example@email.com').fetch
 # Get all breaches for an account across a specific domain.
 #
-# => Array<Hibp::Breach>
+# => Array<Hibp::Models::Breach>
 #
 client.account_breaches('example@email.com').where(domain: 'adobe.com').fetch
 # Get all breaches info for an account with detailed information.
 #
-# => Array<Hibp::Breach>
+# => Array<Hibp::Models::Breach>
 #
 client.account_breaches('example@email.com').where(truncate: false).fetch
 # Returns breaches that have been flagged as "unverified"
 #
-# => Array<Hibp::Breach>
+# => Array<Hibp::Models::Breach>
 #
 client.account_breaches('example@email.com').where(unverified: true).fetch
 ```
 ### Pastes
+#### Paste model
+A "paste" is information that has been "pasted" to a publicly facing
+website designed to share content such as Pastebin.
+These services are favoured by hackers due to the ease of anonymously
+sharing information and they're frequently the first place a breach appears.
+<b>NOTE</b> : In the future, these attributes may expand without the API being versioned.
+```ruby
+Hibp::Models::Paste
+```
+- `source [String]` - The paste service the record was retrieved from.
+                      Current values are:
+    - Pastebin
+    - Pastie
+    - Slexy
+    - Ghostbin
+    - QuickLeak
+    - JustPaste
+    - AdHocUrl
+    - PermanentOptOut
+    - OptOut
+- `id [String]` - The ID of the paste as it was given at the source service.
+                  Combined with the "Source" attribute, this can be used to resolve the URL of the paste.
+- `title [String]` - The title of the paste as observed on the source site.
+                    This may be null.
+- `date [String]` -  The date and time (precision to the second) that the paste was posted.
+                     This is taken directly from the paste site when this information is
+                     available but may be null if no date is published.
+- `email_count [Integer]` - The number of emails that were found when processing the paste.
+                            Emails are extracted by using the regular expression:
+                            \b+(?!^.{256})[a-zA-Z0-9\.\-_\+]+@[a-zA-Z0-9\.\-_]+\.[a-zA-Z]+\b
 #### Getting all pastes for an account
 ```ruby
@@ -136,13 +250,25 @@ client = Hibp::Client.new('api-key')
 # Return any pastes that contain the given email address
 #
-# => Array<Hibp::Paste>
+# => Array<Hibp::Models::Paste>
 #
 client.pastes('example@email.com').fetch
 ```
 ### Passwords
+#### Password model
+Represents password by the suffix of and a count of how many times it appears in the data set
+```ruby
+Hibp::Models::Password
+```
+- `suffix [String]` - Password suffix(password hash without first five symbols)
+- `occurrences [Integer]` - Count of how many times suffix appears in the data set
 #### Getting passwords suffixes by range
 ```ruby
@@ -150,7 +276,7 @@ client = Hibp::Client.new
 # Get all suffixes of every hash beginning with the specified prefix, and a count of how many times it appears in the data set.
 #
-# => Array<Hibp::Password>
+# => Array<Hibp::Models::Password>
 #
 client.passwords('password').fetch
@@ -178,7 +304,7 @@ To install this gem onto your local machine, run `bundle exec rake install`. To
 ## Contributing
-Bug reports and pull requests are welcome on GitHub at https://github.com/warshavski/hibp. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
+Bug reports and pull requests are welcome on GitHub at https://github.com/warshavski/hibp-client. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
 ## License

data/hibp.gemspec CHANGED

@@ -28,10 +28,10 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
-  spec.add_dependency('faraday', '>= 0.9.1')
+  spec.add_dependency('faraday', '>= 0.17.3')
   spec.add_dependency('oj', '>= 3.6.13')
   spec.add_development_dependency 'bundler'
-  spec.add_development_dependency 'rake', '~> 10.0'
+  spec.add_development_dependency 'rake', '>= 12.3.3'
   spec.add_development_dependency 'rspec', '~> 3.0'
 end

data/lib/hibp/request.rb CHANGED

@@ -42,7 +42,7 @@ module Hibp
       end
       @parser ? @parser.parse_response(response) : response.body
-    rescue Faraday::ClientError::ResourceNotFound
+    rescue Faraday::ResourceNotFound
       nil
     rescue StandardError => e
       handle_error(e)
@@ -76,7 +76,7 @@ module Hibp
     end
     def parsable_error?(error)
-      error.is_a?(Faraday::Error::ClientError) && error.response
+      error.is_a?(Faraday::ClientError) && error.response
     end
     def parse_error(error)

data/lib/hibp/version.rb CHANGED

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Hibp
-  VERSION = '0.1.0'
+  VERSION = '0.1.1'
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: hibp-client
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
 platform: ruby
 authors:
 - Warshavski
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2019-07-28 00:00:00.000000000 Z
+date: 2020-05-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: faraday
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.9.1
+        version: 0.17.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.9.1
+        version: 0.17.3
 - !ruby/object:Gem::Dependency
   name: oj
   requirement: !ruby/object:Gem::Requirement
@@ -56,16 +56,16 @@ dependencies:
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: 12.3.3
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: 12.3.3
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
@@ -134,8 +134,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project:
-rubygems_version: 2.7.6
+rubygems_version: 3.0.3
 signing_key:
 specification_version: 4
 summary: A simple tool to check if an account(email address and username) has been