new-code-provenance 1.0.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (3) hide show
  1. checksums.yaml +7 -0
  2. data/lib/new-code-provenance.rb +24 -0
  3. metadata +44 -0
checksums.yaml ADDED
@@ -0,0 +1,7 @@
1
+ ---
2
+ SHA256:
3
+ metadata.gz: e662900e126e20b9b3bcaf3fcedbbf9ebd9a8271335d250acc0627c43a8d7247
4
+ data.tar.gz: 40e2b2ce5a2e933fd5e54f962ef8e75717958dabfda8ec098b6bf9b2d2526cfb
5
+ SHA512:
6
+ metadata.gz: df6a410ca6a72ff1c9690e8f036ae44b151fd7321a3a239e30da81d3363eda47f73f68f4969cabd10a4cc958cb76269b6862d75adf2e5ca387e4693a102e1a95
7
+ data.tar.gz: 0215c490caf7ff32652b37ad071efd261b52d426d333d1b99c7cbf2f02fc625b18e69a9a6be50ac4620b5630ddcab014e7f8fecff44b1c7c13c697f551044cf6
data/lib/new-code-provenance.rb ADDED
@@ -0,0 +1,24 @@
1
+ require "scan/version"
2
+
3
+ module Scan
4
+ class Error < StandardError; end
5
+ # frozen_string_literal: true
6
+ require "spec_helper"
7
+
8
+ feature "improper password hashing" do
9
+ let(:normal_user) { UserFixture.normal_user }
10
+
11
+ before do
12
+ UserFixture.reset_all_users
13
+ pending unless verifying_fixed?
14
+ end
15
+
16
+ scenario "with just md5\nTutorial: https://github.com/OWASP/railsgoat/wiki/A6-Sensitive-Data-Exposure-Insecure-Password-Storage" do
17
+ new_pass = "testPassw0rd!"
18
+ normal_user.password = new_pass
19
+ normal_user.password_confirmation = new_pass
20
+ normal_user.save!
21
+
22
+ expect(normal_user.password).not_to eq(Digest::MD5.hexdigest(new_pass))
23
+ end
24
+ end
metadata ADDED
@@ -0,0 +1,44 @@
1
+ --- !ruby/object:Gem::Specification
2
+ name: new-code-provenance
3
+ version: !ruby/object:Gem::Version
4
+ version: 1.0.0
5
+ platform: ruby
6
+ authors:
7
+ - avishek
8
+ autorequire:
9
+ bindir: bin
10
+ cert_chain: []
11
+ date: 2024-07-30 00:00:00.000000000 Z
12
+ dependencies: []
13
+ description: Provenance sign check.
14
+ email:
15
+ - your.email@example.com
16
+ executables: []
17
+ extensions: []
18
+ extra_rdoc_files: []
19
+ files:
20
+ - lib/new-code-provenance.rb
21
+ homepage: http://example.com/hello_world_gem
22
+ licenses:
23
+ - MIT
24
+ metadata: {}
25
+ post_install_message:
26
+ rdoc_options: []
27
+ require_paths:
28
+ - lib
29
+ required_ruby_version: !ruby/object:Gem::Requirement
30
+ requirements:
31
+ - - ">="
32
+ - !ruby/object:Gem::Version
33
+ version: '0'
34
+ required_rubygems_version: !ruby/object:Gem::Requirement
35
+ requirements:
36
+ - - ">="
37
+ - !ruby/object:Gem::Version
38
+ version: '0'
39
+ requirements: []
40
+ rubygems_version: 3.1.2
41
+ signing_key:
42
+ specification_version: 4
43
+ summary: Provenance
44
+ test_files: []