manticore 0.7.0-java → 0.9.0-java

data/lib/manticore/version.rb

@@ -1,3 +1,3 @@
 module Manticore
-  VERSION = "0.7.0"
+  VERSION = "0.9.0"
 end

data/lib/manticore.rb

@@ -5,7 +5,11 @@ require "cgi"
 require_relative "./manticore_jars.rb"
 require_relative "./org/manticore/manticore-ext"
 
-org.manticore.Manticore.new.load(JRuby.runtime, false)
+if defined? JRuby::Util.load_ext
+  JRuby::Util.load_ext 'org.manticore.Manticore'
+else
+  org.manticore.Manticore.new.load(JRuby.runtime, false)
+end
 
 require_relative "./manticore/version"
 
@@ -13,7 +17,27 @@ require_relative "./manticore/version"
 # with the beauty of Ruby.
 module Manticore
   # General base class for all Manticore exceptions
-  class ManticoreException < StandardError; end
+  class ManticoreException < StandardError
+    def initialize(arg = nil)
+      case arg
+      when nil
+        @_cause = nil
+        super()
+      when java.lang.Throwable
+        @_cause = arg
+        super(arg.message)
+      else
+        @_cause = nil
+        super(arg)
+      end
+    end
+
+    # @return cause which is likely to be a Java exception
+    # @overload Exception#cause
+    def cause
+      @_cause || super
+    end
+  end
 
   # Exception thrown if you attempt to read from a closed Response stream
   class StreamClosedException < ManticoreException; end
@@ -43,6 +67,7 @@ module Manticore
 
   require_relative "./manticore/java_extensions"
   require_relative "./manticore/client/proxies"
+  require_relative "./manticore/client/trust_strategies"
   require_relative "./manticore/client"
   require_relative "./manticore/response"
   require_relative "./manticore/stubbed_response"

data/lib/manticore_jars.rb

@@ -1,8 +1,18 @@
 # this is a generated file, to avoid over-writing it just delete this comment
-require "jar_dependencies"
+begin
+  require 'jar_dependencies'
+rescue LoadError
+  require 'commons-logging/commons-logging/1.2/commons-logging-1.2.jar'
+  require 'commons-codec/commons-codec/1.15/commons-codec-1.15.jar'
+  require 'org/apache/httpcomponents/httpcore/4.4.14/httpcore-4.4.14.jar'
+  require 'org/apache/httpcomponents/httpclient/4.5.13/httpclient-4.5.13.jar'
+  require 'org/apache/httpcomponents/httpmime/4.5.13/httpmime-4.5.13.jar'
+end
 
-require_jar("commons-logging", "commons-logging", "1.2")
-require_jar("org.apache.httpcomponents", "httpmime", "4.5.2")
-require_jar("commons-codec", "commons-codec", "1.10")
-require_jar("org.apache.httpcomponents", "httpclient", "4.5.2")
-require_jar("org.apache.httpcomponents", "httpcore", "4.4.4")
+if defined? Jars
+  require_jar 'commons-logging', 'commons-logging', '1.2'
+  require_jar 'commons-codec', 'commons-codec', '1.15'
+  require_jar 'org.apache.httpcomponents', 'httpcore', '4.4.14'
+  require_jar 'org.apache.httpcomponents', 'httpclient', '4.5.13'
+  require_jar 'org.apache.httpcomponents', 'httpmime', '4.5.13'
+end

data/manticore.gemspec

@@ -19,6 +19,8 @@ Gem::Specification.new do |spec|
   spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
   spec.require_paths = ["lib"]
 
+  spec.required_ruby_version = '>= 2.3' # JRuby >= 9.1
+
   private_key = File.expand_path("~/.gemcert/gem-private_key.pem")
   if File.exists? private_key
     spec.signing_key = private_key
@@ -27,13 +29,11 @@ Gem::Specification.new do |spec|
 
   spec.add_dependency "openssl_pkcs8_pure"
 
-  spec.add_development_dependency "bundler"
-  spec.add_development_dependency "rake"
   spec.add_development_dependency "jar-dependencies", "~> 0.4.1"
 
-  spec.requirements << "jar org.apache.httpcomponents:httpclient, '~> 4.5.0'"
-  spec.requirements << "jar org.apache.httpcomponents:httpmime,   '~> 4.5.0'"
+  spec.requirements << "jar org.apache.httpcomponents:httpclient, '~> 4.5.13'"
+  spec.requirements << "jar org.apache.httpcomponents:httpmime,   '~> 4.5.13'"
   spec.requirements << "jar commons-logging:commons-logging,      '~> 1.2'"
   spec.requirements << "jar commons-codec:commons-codec,          '~> 1.9'"
-  spec.requirements << "jar org.apache.httpcomponents:httpcore,   '~> 4.4.4'"
+  spec.requirements << "jar org.apache.httpcomponents:httpcore,   '~> 4.4.14'"
 end

data/spec/manticore/client_spec.rb

@@ -1,12 +1,11 @@
 # encoding: utf-8
 require "spec_helper"
 
-java_import "org.apache.http.entity.mime.MultipartEntityBuilder"
-java_import "org.apache.http.entity.ContentType"
-
 describe Manticore::Client do
   let(:client) { Manticore::Client.new }
 
+  after { client.close }
+
   it "fetches a URL and return a response" do
     expect(client.get(local_server)).to be_a Manticore::Response
   end
@@ -96,7 +95,7 @@ describe Manticore::Client do
 
   describe "ignore_ssl_validation (deprecated option)" do
     context "when on" do
-      let(:client) { Manticore::Client.new ssl: {verify: false} }
+      let(:client) { Manticore::Client.new ssl: { verify: false } }
 
       it "does not break on SSL validation errors" do
         expect { client.get("https://localhost:55444/").body }.to_not raise_exception
@@ -104,7 +103,7 @@ describe Manticore::Client do
     end
 
     context "when off" do
-      let(:client) { Manticore::Client.new ssl: {verify: true} }
+      let(:client) { Manticore::Client.new ssl: { verify: true } }
 
       it "breaks on SSL validation errors" do
         expect { client.get("https://localhost:55444/").call }.to raise_exception(Manticore::ClientProtocolException)
@@ -130,7 +129,13 @@ describe Manticore::Client do
         let(:client) { Manticore::Client.new :ssl => {:verify => :strict} }
 
         it "breaks on SSL validation errors" do
-          expect { client.get("https://localhost:55444/").call }.to raise_exception(Manticore::ClientProtocolException)
+          begin
+            client.get("https://localhost:55445/").body
+          rescue Manticore::ClientProtocolException => e
+            expect( e.cause ).to be_a javax.net.ssl.SSLHandshakeException
+          else
+            fail "exception not raised"
+          end
         end
       end
 
@@ -142,6 +147,29 @@ describe Manticore::Client do
         end
       end
 
+      context "when on and custom trust strategy is given" do
+        # let(:custom_trust_strategy) { Proc.new {|chain,type| true } }
+        let(:client) { Manticore::Client.new :ssl => {:verify => :strict, :trust_strategy => custom_trust_strategy} }
+        context 'and trust strategy approves the cert chain' do
+          let(:custom_trust_strategy) { Proc.new { |chain,type| true } }
+          it "verifies the request and succeed" do
+            expect { client.get("https://localhost:55444/").body }.to_not raise_exception
+          end
+        end
+        context 'and trust strategy does not approve the cert chain' do
+          let(:custom_trust_strategy) { Proc.new { |chain,type| false } }
+          it "breaks on SSL validation errors" do
+            begin
+              client.get("https://localhost:55445/").body
+            rescue Manticore::ClientProtocolException => e
+              expect( e.cause ).to be_a javax.net.ssl.SSLHandshakeException
+            else
+              fail "exception not raised"
+            end
+          end
+        end
+      end
+
       context "when the client specifies a protocol list" do
         let(:client) { Manticore::Client.new :ssl => {verify: :strict, truststore: File.expand_path("../../ssl/truststore.jks", __FILE__), truststore_password: "test123", protocols: ["TLSv1", "TLSv1.1", "TLSv1.2"]} }
 
@@ -151,10 +179,10 @@ describe Manticore::Client do
       end
 
       context "when on and custom trust store is given with the wrong password" do
-        let(:client) { Manticore::Client.new :ssl => {verify: :strict, truststore: File.expand_path("../../ssl/truststore.jks", __FILE__), truststore_password: "wrongpass"} }
+        let(:ssl_opts) { { verify: :strict, truststore: File.expand_path("../../ssl/truststore.jks", __FILE__), truststore_password: "wrongpass" } }
 
         it "fails to load the keystore" do
-          expect { client.get("https://localhost:55444/").body }.to raise_exception(Java::JavaIo::IOException)
+          expect { Manticore::Client.new(:ssl => ssl_opts) }.to raise_exception(Java::JavaIo::IOException)
         end
       end
 
@@ -187,7 +215,7 @@ describe Manticore::Client do
         let(:client) {
           Manticore::Client.new(
             :ssl => {
-              verify: :strict,
+              verify: :default,
               ca_file: File.expand_path("../../ssl/root-ca.crt", __FILE__),
               client_cert: OpenSSL::X509::Certificate.new(File.read(File.expand_path("../../ssl/client.crt", __FILE__))),
               client_key: OpenSSL::PKey::RSA.new(File.read(File.expand_path("../../ssl/client.key", __FILE__))),
@@ -204,7 +232,7 @@ describe Manticore::Client do
         let(:client) {
           Manticore::Client.new(
             :ssl => {
-              verify: :strict,
+              verify: :default,
               ca_file: File.expand_path("../../ssl/root-ca.crt", __FILE__),
               client_cert: File.read(File.expand_path("../../ssl/client.crt", __FILE__)),
               client_key: File.read(File.expand_path("../../ssl/client.key", __FILE__)),
@@ -227,6 +255,27 @@ describe Manticore::Client do
         it "does not break on expired SSL certificates" do
           expect { client.get("https://localhost:55446/").body }.to_not raise_exception
         end
+
+        it "does not break on untrusted certificates" do
+          expect { client.get("https://localhost:55447/").body }.to_not raise_exception
+        end
+
+        context "when custom trust strategy is given" do
+          # let(:custom_trust_strategy) { Proc.new {|chain,type| true } }
+          let(:client) { Manticore::Client.new :ssl => {:verify => :disable, :trust_strategy => custom_trust_strategy} }
+          context 'and trust strategy approves the cert chain' do
+            let(:custom_trust_strategy) { Proc.new { |chain,type| true } }
+            it "verifies the request and succeed" do
+              expect { client.get("https://localhost:55444/").body }.to_not raise_exception
+            end
+          end
+          context 'and trust strategy does not approve the cert chain' do
+            let(:custom_trust_strategy) { Proc.new { |chain,type| false } }
+            it "verifies the request and succeed" do
+              expect { client.get("https://localhost:55444/").body }.to_not raise_exception
+            end
+          end
+        end
       end
 
       context "against a server that verifies clients" do
@@ -266,11 +315,11 @@ describe Manticore::Client do
     end
 
     describe ":cipher_suites" do
-      skip
+      skip 'TODO: someone should write the spec'
     end
 
     describe ":protocols" do
-      skip
+      skip 'TODO: someone should write the spec'
     end
   end
 
@@ -525,7 +574,9 @@ describe Manticore::Client do
 
     it "sends an arbitrary entity" do
       f = open(File.expand_path(File.join(__FILE__, "..", "..", "spec_helper.rb")), "r").to_inputstream
-      multipart_entity = MultipartEntityBuilder.create.add_text_body("foo", "bar").add_binary_body("whatever", f, ContentType::TEXT_PLAIN, __FILE__)
+      multipart_entity = org.apache.http.entity.mime.MultipartEntityBuilder.create.
+          add_text_body("foo", "bar").
+          add_binary_body("whatever", f, org.apache.http.entity.ContentType::TEXT_PLAIN, __FILE__)
       response = client.post(local_server, entity: multipart_entity.build)
       expect(response.body).to match "RSpec.configure"
     end
@@ -736,14 +787,13 @@ describe Manticore::Client do
   context "with a misbehaving endpoint" do
     let(:port) do
       p = 4000
-      server = nil
       begin
         server = TCPServer.new p
       rescue Errno::EADDRINUSE
         p += 1
         retry
       ensure
-        server.close
+        server&.close
       end
       p
     end
@@ -764,6 +814,7 @@ describe Manticore::Client do
             ].join("\n"))
             client.close
           rescue IOError => e
+            warn "caught an error: #{e.inspect}"
             break
           end
         end
@@ -830,7 +881,13 @@ describe Manticore::Client do
     let(:client) { Manticore::Client.new request_timeout: 1, connect_timeout: 1, socket_timeout: 1 }
 
     it "times out" do
-      expect { client.get(local_server "/?sleep=2").body }.to raise_exception(Manticore::SocketTimeout)
+      begin
+        client.get(local_server "/?sleep=2").body
+      rescue Manticore::SocketTimeout => e
+        expect( e.cause ).to be_a java.net.SocketTimeoutException
+      else
+        fail "exception not raised"
+      end
     end
 
     it "times out when custom request options are passed" do

data/spec/manticore/client_trust_strategies_spec.rb

@@ -0,0 +1,168 @@
+# encoding: utf-8
+require "spec_helper"
+describe Manticore::Client::TrustStrategies do
+  describe '#coerce' do
+    subject(:coerced) { described_class.coerce(input) }
+    context 'with a nil value' do
+      let(:input) { nil }
+      it 'returns the value unchanged' do
+        expect(coerced).to be_nil
+      end
+    end
+    context 'with an implementation of org.apache.http.conn.ssl.TrustStrategy' do
+      let(:input) { org.apache.http.conn.ssl.TrustAllStrategy::INSTANCE }
+      it 'returns the value unchanged' do
+        expect(coerced).to be input
+      end
+    end
+    context 'with a Proc' do
+      let(:input) { ->(chain, type) { true } }
+      it 'wraps the proc in a `CustomTrustStrategy`' do
+        expect(Manticore::Client::CustomTrustStrategy).to receive(:new).with(input).and_call_original
+        expect(described_class.coerce(input)).to be_a_kind_of Manticore::Client::CustomTrustStrategy
+      end
+    end
+  end
+
+  describe '#combine' do
+    context 'when left-hand value is nil' do
+      let(:left_hand_strategy) { nil }
+      let(:right_hand_strategy) { described_class.coerce(->(chain,type){ true }) }
+      it 'returns the right-hand value coerced' do
+        expect(described_class).to receive(:coerce).with(right_hand_strategy).and_call_original
+        expect(described_class.combine(left_hand_strategy, right_hand_strategy)).to be right_hand_strategy
+      end
+    end
+    context 'when the right-hand value is nil' do
+      let(:left_hand_strategy) {  described_class.coerce(->(chain,type){ true }) }
+      let(:right_hand_strategy) { nil }
+      it 'returns the left-hand value coerced' do
+        expect(described_class).to receive(:coerce).with(left_hand_strategy).and_call_original
+        expect(described_class.combine(left_hand_strategy, right_hand_strategy)).to be left_hand_strategy
+      end
+    end
+    context 'when neither value is nil' do
+      let(:left_hand_strategy) {  described_class.coerce(->(chain,type){ true }) }
+      let(:right_hand_strategy) { described_class.coerce(->(chain,type){ true }) }
+
+      it 'returns a CombinedTrustStrategy' do
+        expect(Manticore::Client::CombinedTrustStrategy)
+          .to receive(:new).with(left_hand_strategy, right_hand_strategy).and_call_original
+
+        # ensures that the values are coerced.
+        expect(described_class).to receive(:coerce).with(left_hand_strategy).and_call_original
+        expect(described_class).to receive(:coerce).with(right_hand_strategy).and_call_original
+
+        combined = described_class.combine(left_hand_strategy, right_hand_strategy)
+        expect(combined).to be_a_kind_of Manticore::Client::CombinedTrustStrategy
+      end
+    end
+    context 'when both values are nil' do
+      let(:left_hand_strategy) { nil }
+      let(:right_hand_strategy) { nil }
+
+      it 'returns nil' do
+        expect(described_class.combine(left_hand_strategy, right_hand_strategy)).to be nil
+      end
+    end
+  end
+end
+
+describe Manticore::Client::CustomTrustStrategy do
+
+  subject(:custom_trust_strategy) { described_class.new(trust_strategy_proc) }
+
+  context 'when called via Java interface' do
+    def load_java_cert(file_path)
+      pem_contents = File.read(file_path)
+      cf = java.security.cert.CertificateFactory::getInstance("X.509")
+      is = java.io.ByteArrayInputStream.new(pem_contents.to_java_bytes)
+      cf.generateCertificate(is)
+    end
+
+    let(:java_host_cert) { load_java_cert(File.expand_path("../../ssl/host.crt", __FILE__)) }
+    let(:java_root_cert) { load_java_cert(File.expand_path("../../ssl/root-ca.crt", __FILE__)) }
+    let(:java_chain) { [java_host_cert, java_root_cert].to_java(java.security.cert.X509Certificate) }
+    let(:java_type) { java.lang.String.new("my_type".to_java_bytes) }
+
+    subject(:java_trust_strategy) { custom_trust_strategy.to_java(org.apache.http.conn.ssl.TrustStrategy) }
+
+    context 'when called with Java Certs and a Java String' do
+      let(:trust_strategy_proc) { ->(chain,type) { true } }
+      it 'yields an enum of equivalent Ruby certs and an equivalent Ruby String' do
+        expect(trust_strategy_proc).to receive(:call) do |chain, type|
+          expect(chain.to_a.length).to eq java_chain.length
+          chain.each_with_index do |cert, idx|
+            expect(cert).to be_a_kind_of OpenSSL::X509::Certificate
+            expect(cert.to_der).to eq String.from_java_bytes(java_chain[idx].encoded)
+          end
+          expect(type).to be_a_kind_of String
+          expect(type).to eq String.from_java_bytes(java_type.bytes)
+        end
+
+        expect(java_trust_strategy.isTrusted(java_chain, java_type)).to be true
+      end
+    end
+
+    context 'when the ruby block returns false' do
+      let(:trust_strategy_proc) { ->(chain,type) { false } }
+      it 'returns false' do
+        expect(java_trust_strategy.isTrusted(java_chain, java_type)).to be false
+      end
+    end
+
+    context 'when the ruby block returns true' do
+      let(:trust_strategy_proc) { ->(chain,type) { true } }
+      it 'returns true' do
+        expect(java_trust_strategy.isTrusted(java_chain, java_type)).to be true
+      end
+    end
+
+    context 'when the ruby block raises an exception' do
+      let(:trust_strategy_proc) { ->(chain, type) { fail(OpenSSL::X509::CertificateError, 'intentional') } }
+      it 'throws a CertificateException' do
+        expect {
+          java_trust_strategy.isTrusted(java_chain, java_type)
+        }.to raise_exception(java.security.cert.CertificateException)
+      end
+    end
+  end
+end
+
+describe Manticore::Client::CombinedTrustStrategy do
+  let(:always_trust_strategy) { ->(chain,type) { true } }
+  let(:never_trust_strategy) { ->(chain,type) { false } }
+
+  subject(:combined_trust_strategy) { Manticore::Client::TrustStrategies.combine(left_hand_strategy, right_hand_strategy) }
+
+  context 'when left-hand strategy trusts' do
+    let(:left_hand_strategy) { always_trust_strategy }
+    context 'when right-hand strategy trusts' do
+      let(:right_hand_strategy) { always_trust_strategy }
+      it 'trusts' do
+        expect(combined_trust_strategy.trusted?([],'ignored')).to be true
+      end
+    end
+    context 'when right-hand strategy does not trust' do
+      let(:right_hand_strategy) { never_trust_strategy }
+      it 'trusts' do
+        expect(combined_trust_strategy.trusted?([],'ignored')).to be true
+      end
+    end
+  end
+  context 'when left-hand strategy does not trust' do
+    let(:left_hand_strategy) { never_trust_strategy }
+    context 'when right-hand strategy trusts' do
+      let(:right_hand_strategy) { always_trust_strategy }
+      it 'trusts' do
+        expect(combined_trust_strategy.trusted?([],'ignored')).to be true
+      end
+    end
+    context 'when right-hand strategy does not trust' do
+      let(:right_hand_strategy) { never_trust_strategy }
+      it 'does not trust' do
+        expect(combined_trust_strategy.trusted?([],'ignored')).to be false
+      end
+    end
+  end
+end

data/spec/manticore/response_spec.rb

@@ -6,7 +6,7 @@ describe Manticore::Response do
 
   its(:headers) { is_expected.to be_a Hash }
   its(:body) { is_expected.to be_a String }
-  its(:length) { is_expected.to be_a Fixnum }
+  its(:length) { is_expected.to be_a Integer }
 
   it "provides response header lookup via #[]" do
     expect(subject["Content-Type"]).to eq "application/json"

data/spec/spec_helper.rb

@@ -151,6 +151,7 @@ RSpec.configure do |c|
     start_ssl_server 55444
     start_ssl_server 55445, :SSLVerifyClient => OpenSSL::SSL::VERIFY_PEER | OpenSSL::SSL::VERIFY_FAIL_IF_NO_PEER_CERT, :SSLCACertificateFile => File.expand_path("../ssl/root-ca.crt", __FILE__)
     start_ssl_server 55446, cert: File.expand_path("../ssl/host-expired.crt", __FILE__)
+    start_ssl_server 55447, cert: File.expand_path("../ssl/host-untrusted.crt", __FILE__), SSLCACertificateFile: File.expand_path("../ssl/root-untrusted-ca.crt", __FILE__)
 
     Manticore.disable_httpcomponents_logging!
   }

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: manticore
 version: !ruby/object:Gem::Version
-  version: 0.7.0
+  version: 0.9.0
 platform: java
 authors:
 - Chris Heald
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-09-29 00:00:00.000000000 Z
+date: 2022-06-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   requirement: !ruby/object:Gem::Requirement
@@ -17,36 +17,8 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
   name: openssl_pkcs8_pure
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  name: bundler
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  name: rake
-  type: :development
   prerelease: false
+  type: :runtime
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -59,8 +31,8 @@ dependencies:
       - !ruby/object:Gem::Version
         version: 0.4.1
   name: jar-dependencies
-  type: :development
   prerelease: false
+  type: :development
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
@@ -86,12 +58,13 @@ files:
 - ext/manticore/org/manticore/HttpGetWithEntity.java
 - ext/manticore/org/manticore/Manticore.java
 - gem-public_cert.pem
-- lib/commons-codec/commons-codec/1.10/commons-codec-1.10.jar
+- lib/commons-codec/commons-codec/1.15/commons-codec-1.15.jar
 - lib/commons-logging/commons-logging/1.2/commons-logging-1.2.jar
 - lib/faraday/adapter/manticore.rb
 - lib/manticore.rb
 - lib/manticore/client.rb
 - lib/manticore/client/proxies.rb
+- lib/manticore/client/trust_strategies.rb
 - lib/manticore/cookie.rb
 - lib/manticore/facade.rb
 - lib/manticore/java_extensions.rb
@@ -99,13 +72,14 @@ files:
 - lib/manticore/stubbed_response.rb
 - lib/manticore/version.rb
 - lib/manticore_jars.rb
-- lib/org/apache/httpcomponents/httpclient/4.5.2/httpclient-4.5.2.jar
-- lib/org/apache/httpcomponents/httpcore/4.4.4/httpcore-4.4.4.jar
-- lib/org/apache/httpcomponents/httpmime/4.5.2/httpmime-4.5.2.jar
+- lib/org/apache/httpcomponents/httpclient/4.5.13/httpclient-4.5.13.jar
+- lib/org/apache/httpcomponents/httpcore/4.4.14/httpcore-4.4.14.jar
+- lib/org/apache/httpcomponents/httpmime/4.5.13/httpmime-4.5.13.jar
 - lib/org/manticore/manticore-ext.jar
 - manticore.gemspec
 - spec/manticore/client_proxy_spec.rb
 - spec/manticore/client_spec.rb
+- spec/manticore/client_trust_strategies_spec.rb
 - spec/manticore/cookie_spec.rb
 - spec/manticore/facade_spec.rb
 - spec/manticore/response_spec.rb
@@ -124,25 +98,26 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: '2.3'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements:
-- jar org.apache.httpcomponents:httpclient, '~> 4.5.0'
-- jar org.apache.httpcomponents:httpmime,   '~> 4.5.0'
+- jar org.apache.httpcomponents:httpclient, '~> 4.5.13'
+- jar org.apache.httpcomponents:httpmime,   '~> 4.5.13'
 - jar commons-logging:commons-logging,      '~> 1.2'
 - jar commons-codec:commons-codec,          '~> 1.9'
-- jar org.apache.httpcomponents:httpcore,   '~> 4.4.4'
-rubygems_version: 3.0.6
+- jar org.apache.httpcomponents:httpcore,   '~> 4.4.14'
+rubygems_version: 3.2.29
 signing_key:
 specification_version: 4
 summary: Manticore is an HTTP client built on the Apache HttpCore components
 test_files:
 - spec/manticore/client_proxy_spec.rb
 - spec/manticore/client_spec.rb
+- spec/manticore/client_trust_strategies_spec.rb
 - spec/manticore/cookie_spec.rb
 - spec/manticore/facade_spec.rb
 - spec/manticore/response_spec.rb