RubyGems - jt-audit - Versions diffs - 1.1.1 - Mend

jt-audit 1.1.1

Files changed (3) hide show

checksums.yaml ADDED Viewed

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: b4d8334d00bdfe65205ef516270b439a8b64e495c5d7516335ca5c41ef9107f0
+  data.tar.gz: '0283d65852d4d2c52b7cbd8479e5a66b8a5783419d80a632f010a85f6c568265'
+SHA512:
+  metadata.gz: 64a3d232029235ec4ba25bc5051def659e63c7ee47d5a6db0d438be8a1bc1b83501681a56e4b26b0a8ff6f6745b3decb4aa436e7e3fb42efda1a4f0995da4c2e
+  data.tar.gz: 312b6766c2f99ba5e62970fe901e5e5afb8073e4d3c602d49cdf4104649a8c100f4cd2cccdae3c246bc470eee16e50ab28f015d506cfed330b80ac1150575d74

data/lib/jt-audit.rb ADDED Viewed

@@ -0,0 +1,12 @@
+CriticalSecurityIncidentException = Class.new(Exception)
+MSG = <<~MSG
+  You are a subject to dependency confusion.
+  This example was created by maciej@mensfeld.pl.
+  Reach out to be me by email for more details.
+  This code is NOT malicious and does NOT collect any data.
+  This code does NOT contact any external hosts.
+MSG
+raise(CriticalSecurityIncidentException, MSG)

metadata ADDED Viewed

@@ -0,0 +1,50 @@
+--- !ruby/object:Gem::Specification
+name: jt-audit
+version: !ruby/object:Gem::Version
+  version: 1.1.1
+platform: ruby
+authors:
+- Maciej Mensfeld
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2023-04-07 00:00:00.000000000 Z
+dependencies: []
+description: |2
+      This package illustrates dependency confusion case by raising a critical security error.
+      It does not extract any data and does not contact any hosts.
+      You are a subject to dependency confusion.
+      This example was created by maciej@mensfeld.pl.
+      Reach out to be me by email for more details.
+email:
+- maciej@mensfeld.pl
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/jt-audit.rb
+homepage: https://mensfeld.pl
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://mensfeld.pl
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.2
+signing_key:
+specification_version: 4
+summary: NON-tracking dependency confusion POC.
+test_files: []