RubyGems - neetob - Versions diffs - 0.5.80 → 0.5.81 - Mend

neetob 0.5.80 → 0.5.81

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 72c4fda7b0a63934743c86ea9c318d249f03363e95b842bfbc037a5140501df5
-  data.tar.gz: 8fa0bb5da4de2bd950651979aa1b74b4045e6d890eb8cbb4339f6a5ff8ace1fc
+  metadata.gz: cd15337dac6d807d029e98124b09d3eba0c7619656d49a52827f71f7cf8d17ee
+  data.tar.gz: 63ba27b666b6f58f67530efd6b6a9c18392543af82689813a41bf4df73e6515c
 SHA512:
-  metadata.gz: c68a711f36a47c1066fe0b0200fd4d900f324b4992305aa91b2d3570b3d7a6b5395c1bc393fbb7b19f5c510ab4ed38b1b618ac29ac9618eb208ec49795abf3b5
-  data.tar.gz: e7c0f16354008c8b3d27af875451194fc5d488f2a10313f6551cff3199a1190f5d355d46c2ac697c2ebbe0ccbebcaaee3fa363ae788c8019f90d218e81233b5b
+  metadata.gz: 15a71afae489ecff2ade69a0dec180fe5dd9857dab529b5c82ac1b574b077bfd24f78ce510089d857864c039dd35c1c51f9afc809309559473c67dc22b9792fe
+  data.tar.gz: 3cb346f2aeca61dbf16312ceede8948834b7c0860480dc54fa4203acba3e2ffe86e900b5561d5eda665776403c35bbb2213d5f844eadd841c18de9bd14540396

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    neetob (0.5.80)
+    neetob (0.5.81)
       actionview
       activesupport
       brakeman (~> 5.0)

data/lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/always_use_https_is_enabled.rb CHANGED Viewed

@@ -13,7 +13,7 @@ module Neetob
             end
             def run
-              ui.success "### 3.2.4. Checking whether always use HTTPS is enabled"
+              ui.success "### 3.2.5. Checking whether always use HTTPS is enabled"
               domains_data = [["Domain", "Always use HTTPS", "Audit Passed"]]
               ui.info("\n", print_to_audit_log: false)

data/lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/automatic_https_rewrites_is_enabled.rb CHANGED Viewed

@@ -13,7 +13,7 @@ module Neetob
             end
             def run
-              ui.success "### 3.2.7. Checking whether Automatic HTTPS rewrites is enabled"
+              ui.success "### 3.2.8. Checking whether Automatic HTTPS rewrites is enabled"
               domains_data = [["Domain", "Automatic HTTPS rewrites", "Audit Passed"]]
               ui.info("\n", print_to_audit_log: false)

data/lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/cdn_dns_entry_has_proxy_disabled.rb ADDED Viewed

@@ -0,0 +1,62 @@
+# frozen_string_literal: true
+require_relative "../../github_issue_creation"
+module Neetob
+  class CLI
+    module MonthlyAudit
+      module InstancesAndAddons
+        module Cloudflare
+          class CdnDnsEntryHasProxyDisabled < CLI::Base
+            DOMAINS_TO_IGNORE_AUDIT_RESULT_FOR = [
+              "neeto.com",
+              "bigbinary.com",
+            ]
+            def initialize
+              super()
+            end
+            def run
+              ui.success "### 3.2.3. CDN DNS entry has proxy disabled"
+              domains_data = [["Domain", "DNS proxy status", "Audit Passed"]]
+              ui.info("\n", print_to_audit_log: false)
+              last_dns_proxy_status = nil
+              Neetob::CLI::Cloudflare::Base::ZONE_IDS.keys.select { |domain|
+ domain.to_s.include?(".com") }.map do |domain|
+                ui.info("Checking proxy status for CDN DNS entries for #{domain}", print_to_audit_log: false)
+                domain = domain.to_s
+                proxiable_records = Neetob::CLI::Cloudflare::DnsProxyStatus.new(domain).run
+                record_to_check = proxiable_records.select { |record| record[:name] == "cdn.#{domain}" }.first
+                if record_to_check.nil?
+                  domains_data << [domain, "No cdn. records found", "Ignored"]
+                else
+                  is_cdn_subdomain_proxied = record_to_check[:proxied]
+                  audit_passed = DOMAINS_TO_IGNORE_AUDIT_RESULT_FOR.include?(domain.to_s) ?
+                                  "Ignored" :
+                                  (is_cdn_subdomain_proxied ? "No" : "Yes")
+                  proxy_status = is_cdn_subdomain_proxied ? "on" : "off"
+                  dns_proxy_status = "cdn. record has proxying turned #{proxy_status}"
+                  same_as_last_dns_proxy_status = dns_proxy_status == last_dns_proxy_status
+                  last_dns_proxy_status = dns_proxy_status
+                  if audit_passed == "No"
+                    repo = domain_to_repo(domain.to_s)
+                    issue_url = GithubIssueCreation.new.create_issue(
+                      repo:, title: "Disable proxying for CDN DNS on #{domain}",
+                      description: dns_proxy_status)
+                    audit_passed += " #{issue_url}"
+                  end
+                  if same_as_last_dns_proxy_status
+                    dns_proxy_status = "''"
+                  end
+                  domains_data << [domain, dns_proxy_status, audit_passed]
+                end
+              end
+              ui.print_table(domains_data)
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/main.rb CHANGED Viewed

@@ -1,7 +1,8 @@
 # frozen_string_literal: true
 require_relative "ssl_tls_encryption_mode_set_to_full"
-require_relative "dns_entry_has_proxy_status"
+require_relative "wildcard_dns_entry_has_proxy_enabled"
+require_relative "cdn_dns_entry_has_proxy_disabled"
 require_relative "minimum_tls_version_is_one_point_two"
 require_relative "always_use_https_is_enabled"
 require_relative "spf_records_are_valid"
@@ -20,7 +21,9 @@ module Neetob
             def run
               SslTlsEncryptionModeSetToFull.new.run
               ui.info "\n"
-              DnsEntryHasProxyStatus.new.run
+              WildcardDnsEntryHasProxyEnabled.new.run
+              ui.info "\n"
+              CdnDnsEntryHasProxyDisabled.new.run
               ui.info "\n"
               MinimumTlsVersionIsOnePointTwo.new.run
               ui.info "\n"

data/lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/minimum_tls_version_is_one_point_two.rb CHANGED Viewed

@@ -14,7 +14,7 @@ module Neetob
             end
             def run
-              ui.success "### 3.2.3. Checking whether Minimum TLS version is 1.2"
+              ui.success "### 3.2.4. Checking whether Minimum TLS version is 1.2"
               domains_data = [["Domain", "Minimum TLS version", "Audit Passed"]]
               ui.info("\n", print_to_audit_log: false)

data/lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/spf_records_are_valid.rb CHANGED Viewed

@@ -12,7 +12,7 @@ module Neetob
             end
             def run
-              ui.success "### 3.2.5. Checking whether SPF records are valid"
+              ui.success "### 3.2.6. Checking whether SPF records are valid"
               domains_data = [["Domain", "SPF records data", "Comments", "Audit Passed"]]
               ui.info("\n", print_to_audit_log: false)

data/lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/{dns_entry_has_proxy_status.rb → wildcard_dns_entry_has_proxy_enabled.rb} RENAMED Viewed

@@ -7,7 +7,7 @@ module Neetob
     module MonthlyAudit
       module InstancesAndAddons
         module Cloudflare
-          class DnsEntryHasProxyStatus < CLI::Base
+          class WildcardDnsEntryHasProxyEnabled < CLI::Base
             DOMAINS_TO_IGNORE_AUDIT_RESULT_FOR = [
               "neeto.com",
               "bigbinary.com",
@@ -18,7 +18,7 @@ module Neetob
             end
             def run
-              ui.success "### 3.2.2. Checking whether DNS entry has proxy status"
+              ui.success "### 3.2.2. Wildcard DNS entry has proxy enabled"
               domains_data = [["Domain", "DNS proxy status", "Audit Passed"]]
               ui.info("\n", print_to_audit_log: false)

data/lib/neetob/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Neetob
-  VERSION = "0.5.80"
+  VERSION = "0.5.81"
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: neetob
 version: !ruby/object:Gem::Version
-  version: 0.5.80
+  version: 0.5.81
 platform: ruby
 authors:
 - Udai Gupta
@@ -294,11 +294,12 @@ files:
 - lib/neetob/cli/monthly_audit/github_issue_creation.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/always_use_https_is_enabled.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/automatic_https_rewrites_is_enabled.rb
-- lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/dns_entry_has_proxy_status.rb
+- lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/cdn_dns_entry_has_proxy_disabled.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/main.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/minimum_tls_version_is_one_point_two.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/spf_records_are_valid.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/ssl_tls_encryption_mode_set_to_full.rb
+- lib/neetob/cli/monthly_audit/instances_and_addons/cloudflare/wildcard_dns_entry_has_proxy_enabled.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cronitor/main.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cronitor/setup_correctly_for_apps.rb
 - lib/neetob/cli/monthly_audit/instances_and_addons/cronitor/setup_correctly_for_help_center.rb