RubyGems - nessana - Versions diffs - 0.2.0 → 0.3.0 - Mend

nessana 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml +4 -4
data/README.md +20 -0
data/bin/nessana +1 -1
data/lib/nessana/detection.rb +1 -1
data/lib/nessana/dump.rb +19 -65
data/lib/nessana/executor.rb +38 -18
data/lib/nessana/executor/execution_configuration.rb +7 -8
data/lib/nessana/version.rb +1 -1
metadata +3 -31

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ee396ef7c7de91a411465ca7cd27f2dd2ec0ae3ada00d65f2d7fd93bcf7231d1
-  data.tar.gz: f53065e4cd980ea6ea2da9127a87bede09ceaca1a7607df7f53323b4d090aa73
+  metadata.gz: b385c40628994b9e7819e4a855084d81d9bf5a3c8d650e0999ec4e217ba038d6
+  data.tar.gz: c62f1308a920473dd891ddfa2057d2b2dabe4ae0d58b0922184ce7998ef19e65
 SHA512:
-  metadata.gz: 68b6913aa147d06ef5e1336fd8f694f148e2f67e58cf28b1e1e3690d7761fadbcb0addcd94fa21eafd4f7bbf4bd27f8047702451e65f434d59a66141d2b604ba
-  data.tar.gz: 0bcab82e1682510938fcaf5a69a4d3cffe2beba1af660c8417d81540dd464512dcaeaee0bf57d8e3918aba060f240a9e9c686fb190d82961ce1b9ff2cf94d808
+  metadata.gz: 5cb874ce7320573f4b19e0393a3d8a0af2a0851a9df0f7cebca345d3d3ffc9dfeb1cc6ae45fec6ce35ab855a75c71eb94abb22b53afeebfa55d82122ca1c4104
+  data.tar.gz: 9efc4f1a4f11b29db8b4b11da2800bfe5e0574219e3d0c87c8e45bfca6229d7224e190fba9e58ed23f50e1ecf0d23d3de13255dbeff3612667f72b782e2d4685

data/README.md CHANGED Viewed

@@ -11,3 +11,23 @@ $ nessana -c config.yml scan.csv
 ## Contributing
 See [CONTRIBUTING.md](CONTRIBUTING.md)
+## License
+```
+<one line to give the program's name and a brief idea of what it does.>
+Copyright (C) 2019 Kristofer Rye
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU Affero General Public License as published
+by the Free Software Foundation, either version 3 of the License, or
+(at your option) any later version.
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU Affero General Public License for more details.
+You should have received a copy of the GNU Affero General Public License
+along with this program.  If not, see <https://www.gnu.org/licenses/>.
+```

data/bin/nessana CHANGED Viewed

@@ -2,4 +2,4 @@
 require 'nessana/executor'
-Nessana::Executor.execute!
+exit Nessana::Executor.execute!

data/lib/nessana/detection.rb CHANGED Viewed

@@ -25,7 +25,7 @@ module Nessana
 				@status == other.status || false
 		end
-		alias eql? ==
+		alias :eql? :==
 		protected

data/lib/nessana/dump.rb CHANGED Viewed

@@ -2,7 +2,6 @@ require 'time'
 require 'csv'
 require 'fastcsv'
-require 'tty-spinner'
 require 'nessana/detection'
 require 'nessana/vulnerability'
@@ -10,75 +9,32 @@ require 'nessana/vulnerability'
 module Nessana
 	class Dump < Hash
 		attr_reader :filters
-		attr_reader :filename
-		def initialize(filename = nil, filters = [])
-			@filename, @filters = filename, filters
+		def self.read(file, filters = [])
+			data = read_csv(file)
-			if @filename
-				if File.readable?(@filename)
-					spinner_options = {
-						success_mark: "\u2713".encode('utf-8'),
-						format: :dots_3
-					}
-					spinner = TTY::Spinner.new("[:spinner] Loading #{@filename}...", **spinner_options)
-					spinner.auto_spin
+			self.new(data, filters)
+		end
-					read_csv!
+		def initialize(vulnerabilities = {}, filters = [])
+			@filters = filters
-					spinner.success('done!')
-				else
-					throw 'file not readable; sad face'
-				end
+			filtered_data = vulnerabilities.select do |_, vulnerability|
+				!vulnerability.matches?(@filters)
 			end
+			merge!(filtered_data)
 		end
 		def -(other)
-			spinner_options = {
-				success_mark: "\u2713".encode('utf-8'),
-				format: :dots_3
-			}
-			spinner = TTY::Spinner.new('[:spinner] :action...', **spinner_options)
-			spinner.update(action: 'Generating detections...')
 			other_plugin_ids = other.keys
 			self_plugin_ids = keys
-			spinner.update(action: 'Finding L detections')
-			other_detection_pairs = other.map do |plugin_id, vulnerability|
-				spinner.update(action: "Finding L detections (#{plugin_id})")
-				spinner.auto_spin
-				vulnerability.detections.map do |detection|
-					{ plugin_id => detection }
-				end
-			end
-			other_detections = Set.new(other_detection_pairs.flatten)
-			spinner.update(action: 'Finding R detections')
-			detection_pairs = map do |plugin_id, vulnerability|
-				spinner.update(action: "Finding R detections (#{plugin_id})")
-				spinner.auto_spin
-				vulnerability.detections.map do |detection|
-					{ plugin_id => detection }
-				end
-			end
-			self_detections = Set.new(detection_pairs.flatten)
-			spinner.update(action: 'Joining detection sets')
-			spinner.auto_spin
+			other_detections = other.detection_pairs
+			self_detections = detection_pairs
 			detections = Set.new([other_detections, self_detections]).flatten
-			spinner.update(action: 'Processing detections')
-			spinner.auto_spin
 			detections.each do |detection_entry|
 				in_self = self_detections.include? detection_entry
 				in_other = other_detections.include? detection_entry
@@ -96,8 +52,6 @@ module Nessana
 				end
 			end
-			spinner.success('done!')
 			added_plugin_ids = self_plugin_ids - other_plugin_ids
 			deleted_plugin_ids = other_plugin_ids - self_plugin_ids
 			all_plugin_ids = other_plugin_ids + added_plugin_ids
@@ -127,19 +81,19 @@ module Nessana
 			all_vulnerabilities
 		end
-		def read_csv!
-			data = read_csv(filename)
-			filtered_data = data.select do |_, vulnerability|
-				!vulnerability.matches?(@filters)
+		def detection_pairs
+			pairs = map do |plugin_id, vulnerability|
+				vulnerability.detections.map do |detection|
+					{ plugin_id => detection }
+				end
 			end
-			merge!(filtered_data)
+			Set.new(pairs.flatten)
 		end
 		protected
-		def read_csv(filename)
+		def self.read_csv(filename)
 			dump_data = {}
 			first_row = true

data/lib/nessana/executor.rb CHANGED Viewed

@@ -1,7 +1,6 @@
 require 'optparse'
 require 'pp'
-require 'ruby-prof'
-require 'ruby-prof-flamegraph'
+require 'tty-spinner'
 require 'nessana/executor/execution_configuration'
 require 'nessana/filter'
@@ -16,26 +15,55 @@ module Nessana
 		def self.execute!(argv = ARGV)
 			parse!(*argv)
-			RubyProf.start if !!@configuration['performance']
+			return @configuration unless @configuration.is_a?(Nessana::Executor::ExecutionConfiguration)
+			return @configuration['__exit-code__'] if @configuration['__stop__']
 			unless @configuration['old_filename']
-				$stderr.puts 'No old dump filename given; will assume no prior knowledge.'
+				warn 'No old dump filename given; assuming you want this.'
 			end
 			unless @configuration['new_filename']
-				puts 'No new dump filename given; cannot do anything.'
-				return
+				warn 'No new dump filename given; cannot do anything.'
+				return 1
 			end
 			filters = @configuration['filters'].map do |filter_hash|
 				Filter.new(filter_hash)
 			end
-			old_dump = @configuration['old_filename'] ? Dump.new(@configuration['old_filename'], filters) : Dump.new
-			new_dump = Dump.new(@configuration['new_filename'], filters)
+			spinner_options = {
+				success_mark: "\u2713".encode('utf-8'),
+				format: :dots_3
+			}
+			old_dump = nil
+			if @configuration['old_filename']
+				spinner = TTY::Spinner.new("[:spinner] Loading #{@configuration['old_filename']}...", **spinner_options)
+				spinner.auto_spin
+				old_dump = Dump.read(@configuration['old_filename'], filters)
+				spinner.success('done!')
+			else
+				old_dump = Dump.new
+			end
+			spinner = TTY::Spinner.new("[:spinner] Loading #{@configuration['old_filename']}...", **spinner_options)
+			spinner.auto_spin
+			new_dump = Dump.read(@configuration['new_filename'], filters)
+			spinner.success('done!')
+			spinner = TTY::Spinner.new('[:spinner] Comparing dumps...', **spinner_options)
+			spinner.auto_spin
 			diff = new_dump - old_dump
+			spinner.success('done!')
 			diff.sort do |vulnerability_a, vulnerability_b|
 				vulnerability_a.plugin_id.to_i <=> vulnerability_b.plugin_id.to_i
 			end.sort do |vulnerability_a, vulnerability_b|
@@ -52,12 +80,7 @@ DISCOVERIES"
 				puts "\n" * 2
 			end
-			if !!@configuration['performance']
-				result = RubyProf.stop
-				printer = RubyProf::FlameGraphPrinter.new(result)
-				io = open(@configuration['performance'], 'wb')
-				printer.print(io, {})
-			end
+			0
 		end
 		def self.parse(*argv)
@@ -68,10 +91,8 @@ DISCOVERIES"
 				if argv.count == 0
 					puts parser
-					exit 1
+					return 1
 				end
-				parser.parse(*argv)
 			end
 			remaining_arguments = option_parser.order!(argv)
@@ -95,6 +116,5 @@ DISCOVERIES"
 		def self.parse!(*argv)
 			@configuration = parse(*argv)
 		end
 	end
 end

data/lib/nessana/executor/execution_configuration.rb CHANGED Viewed

@@ -3,6 +3,8 @@ require 'mime-types'
 require 'nessana/version'
 module Nessana::Executor
+	# TODO: Replace __stop__ and __exit-code__ with exits again, and
+	# use a rescue SystemExit => e instead.
 	class ExecutionConfiguration < ::Hash
 		def initialize
 			self['verbosity'] = 'info'
@@ -25,14 +27,10 @@ module Nessana::Executor
 			add_usage_option(parser)
 			add_verbosity_option(parser)
-			parser.on_tail('-h', '--help', 'Show this message') do
-				puts parser
-				exit
-			end
-			parser.on_tail('--version', 'Show version') do
+			parser.on_tail('-V', '--version', 'Show version') do
 				puts Nessana::VERSION
-				exit
+				self['__stop__'] = true
+				self['__exit-code__'] = 0
 			end
 		end
@@ -52,7 +50,8 @@ module Nessana::Executor
 		def add_usage_option(parser)
 			parser.on('-h', '--help', 'Print usage summary.') do
 				puts parser
-				exit 0
+				self['__stop__'] = true
+				self['__exit-code__'] = 0
 			end
 		end

data/lib/nessana/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Nessana
-	VERSION = '0.2.0'.freeze
+	VERSION = '0.3.0'.freeze
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: nessana
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.3.0
 platform: ruby
 authors:
 - Kristofer Rye <kristofer.rye@gmail.com>
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-01-22 00:00:00.000000000 Z
+date: 2019-01-23 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: fastcsv
@@ -136,34 +136,6 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '0.57'
-- !ruby/object:Gem::Dependency
-  name: ruby-prof
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: 0.17.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: 0.17.0
-- !ruby/object:Gem::Dependency
-  name: ruby-prof-flamegraph
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: 0.3.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: 0.3.0
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
@@ -199,7 +171,7 @@ files:
 - lib/nessana/vulnerability.rb
 homepage: https://github.com/rye/nessana
 licenses:
-- MIT
+- AGPL-3.0-only
 metadata: {}
 post_install_message:
 rdoc_options: []