nexpose 7.1.1 → 7.2.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 40c3bea146242b1ce37e08bc6bc1ed9544f2fa73
4
- data.tar.gz: aee55cfaba753ffafae9fd90d045910e8481afdc
3
+ metadata.gz: 60102dc88d0076ed863055134eaa8acbc01c1c9b
4
+ data.tar.gz: 7e6435d349ce9493a88327a92f65a6921bdc2d90
5
5
  SHA512:
6
- metadata.gz: 9bab4414d32279ea3a2d4a7b1480e612419c7ea939cc0da14826d7984e9a06f95dfebabf7a25750485f233805a8346a44bf9a1deaf6e88f4ae4391b9f3162582
7
- data.tar.gz: 3b8a5c7ba90d037ed0b2f5617996a5e35be053603a2e6f5ba0e1509b6e6c8ffc642670768272e31da7b17955bcac1a367692388a6057d5f587e1a91f0ab287c2
6
+ metadata.gz: 988b868d5d35855bab9ec4c5af7aaa440796f3947322057f3278e739359758bc658a4a87f3f2f71eda88867cfdba4df26d481785ec3549d05a3d7bc117d7b9a8
7
+ data.tar.gz: 457f1e7df3a68339cdf3079a905fdae8050c283adca807d4b34a5242fc7b6332d7a3fbbd14eaaf7dc64cd4c4715e3a5b61d1a04db7a09689531f12ff14170ce8
@@ -1,5 +1,12 @@
1
1
  # Change Log
2
2
 
3
+ ## [v7.1.1](https://github.com/rapid7/nexpose-client/tree/v7.1.1) (2017-09-28)
4
+ [Full Changelog](https://github.com/rapid7/nexpose-client/compare/v7.1.0...v7.1.1)
5
+
6
+ **Merged pull requests:**
7
+
8
+ - Some methods were not honoring custom Connection Timeouts [\#300](https://github.com/rapid7/nexpose-client/pull/300) ([sgreen-r7](https://github.com/sgreen-r7))
9
+
3
10
  ## [v7.1.0](https://github.com/rapid7/nexpose-client/tree/v7.1.0) (2017-09-26)
4
11
  [Full Changelog](https://github.com/rapid7/nexpose-client/compare/v7.0.1...v7.1.0)
5
12
 
data/COPYING CHANGED
@@ -1,6 +1,6 @@
1
1
  BSD 3-Clause License
2
2
 
3
- Copyright (c) 2014-2017, Rapid7, Inc.
3
+ Copyright (c) 2014-2018, Rapid7, Inc.
4
4
  All rights reserved.
5
5
 
6
6
  Redistribution and use in source and binary forms, with or without
@@ -1,93 +1,53 @@
1
1
  PATH
2
2
  remote: .
3
3
  specs:
4
- nexpose (7.1.1)
4
+ nexpose (5.3.0)
5
5
 
6
6
  GEM
7
7
  remote: https://rubygems.org/
8
8
  specs:
9
- activesupport (4.2.8)
10
- i18n (~> 0.7)
11
- minitest (~> 5.1)
12
- thread_safe (~> 0.3, >= 0.3.4)
13
- tzinfo (~> 1.1)
14
- addressable (2.5.1)
15
- public_suffix (~> 2.0, >= 2.0.2)
16
- ast (2.3.0)
17
- codeclimate-test-reporter (0.4.8)
9
+ addressable (2.3.8)
10
+ ast (2.2.0)
11
+ astrolabe (1.3.1)
12
+ parser (~> 2.2)
13
+ codeclimate-test-reporter (0.4.7)
18
14
  simplecov (>= 0.7.1, < 1.0.0)
19
- coderay (1.1.1)
20
- crack (0.4.3)
15
+ crack (0.4.2)
21
16
  safe_yaml (~> 1.0.0)
22
- diff-lcs (1.3)
17
+ diff-lcs (1.2.5)
23
18
  docile (1.1.5)
24
- faraday (0.12.0.1)
25
- multipart-post (>= 1.2, < 3)
26
- faraday-http-cache (2.0.0)
27
- faraday (~> 0.8)
28
- github_changelog_generator (1.14.3)
29
- activesupport
30
- faraday-http-cache
31
- multi_json
32
- octokit (~> 4.6)
33
- rainbow (>= 2.1)
34
- rake (>= 10.0)
35
- retriable (~> 2.1)
36
- i18n (0.8.1)
37
- method_source (0.8.2)
38
- minitest (5.10.1)
39
- multi_json (1.12.1)
40
- multipart-post (2.0.0)
41
- octokit (4.7.0)
42
- sawyer (~> 0.8.0, >= 0.5.3)
43
- parallel (1.12.0)
44
- parser (2.4.0.0)
19
+ multi_json (1.11.2)
20
+ parser (2.3.1.2)
45
21
  ast (~> 2.2)
46
22
  powerpack (0.1.1)
47
- pry (0.9.12.6)
48
- coderay (~> 1.0)
49
- method_source (~> 0.8)
50
- slop (~> 3.4)
51
- public_suffix (2.0.5)
52
- rainbow (2.2.2)
53
- rake
23
+ rainbow (2.0.0)
54
24
  rake (12.0.0)
55
- retriable (2.1.0)
56
- rspec (3.6.0)
57
- rspec-core (~> 3.6.0)
58
- rspec-expectations (~> 3.6.0)
59
- rspec-mocks (~> 3.6.0)
60
- rspec-core (3.6.0)
61
- rspec-support (~> 3.6.0)
62
- rspec-expectations (3.6.0)
25
+ rspec (3.3.0)
26
+ rspec-core (~> 3.3.0)
27
+ rspec-expectations (~> 3.3.0)
28
+ rspec-mocks (~> 3.3.0)
29
+ rspec-core (3.3.2)
30
+ rspec-support (~> 3.3.0)
31
+ rspec-expectations (3.3.1)
63
32
  diff-lcs (>= 1.2.0, < 2.0)
64
- rspec-support (~> 3.6.0)
65
- rspec-mocks (3.6.0)
33
+ rspec-support (~> 3.3.0)
34
+ rspec-mocks (3.3.2)
66
35
  diff-lcs (>= 1.2.0, < 2.0)
67
- rspec-support (~> 3.6.0)
68
- rspec-support (3.6.0)
69
- rubocop (0.49.1)
70
- parallel (~> 1.10)
71
- parser (>= 2.3.3.1, < 3.0)
36
+ rspec-support (~> 3.3.0)
37
+ rspec-support (3.3.0)
38
+ rubocop (0.29.1)
39
+ astrolabe (~> 1.3)
40
+ parser (>= 2.2.0.1, < 3.0)
72
41
  powerpack (~> 0.1)
73
42
  rainbow (>= 1.99.1, < 3.0)
74
- ruby-progressbar (~> 1.7)
75
- unicode-display_width (~> 1.0, >= 1.0.1)
76
- ruby-progressbar (1.8.1)
43
+ ruby-progressbar (~> 1.4)
44
+ ruby-progressbar (1.7.5)
77
45
  safe_yaml (1.0.4)
78
- sawyer (0.8.1)
79
- addressable (>= 2.3.5, < 2.6)
80
- faraday (~> 0.8, < 1.0)
81
46
  simplecov (0.9.2)
82
47
  docile (~> 1.1.0)
83
48
  multi_json (~> 1.0)
84
49
  simplecov-html (~> 0.9.0)
85
50
  simplecov-html (0.9.0)
86
- slop (3.6.0)
87
- thread_safe (0.3.6)
88
- tzinfo (1.2.3)
89
- thread_safe (~> 0.1)
90
- unicode-display_width (1.3.0)
91
51
  vcr (2.9.3)
92
52
  webmock (1.20.4)
93
53
  addressable (>= 2.3.6)
@@ -99,9 +59,7 @@ PLATFORMS
99
59
  DEPENDENCIES
100
60
  bundler (~> 1.3)
101
61
  codeclimate-test-reporter (~> 0.4.6)
102
- github_changelog_generator
103
62
  nexpose!
104
- pry (= 0.9.12.6)
105
63
  rake
106
64
  rspec (~> 3.2)
107
65
  rubocop
@@ -110,4 +68,4 @@ DEPENDENCIES
110
68
  webmock (~> 1.20.4)
111
69
 
112
70
  BUNDLED WITH
113
- 1.15.0
71
+ 1.13.6
@@ -11,6 +11,8 @@ This gem is heavily used for internal, automated testing of the Nexpose product.
11
11
 
12
12
  Since version 1.0 nexpose-client uses [Semantic Versioning](http://semver.org/). This allows for confident use of the [pessimistic operator](https://robots.thoughtbot.com/rubys-pessimistic-operator) in scripts or larger ruby projects.
13
13
 
14
+ Install the gem with Rubygems: `gem install nexpose`
15
+
14
16
  ## Release Notes
15
17
 
16
18
  Release notes are available on the [Releases](https://github.com/rapid7/nexpose-client/releases) page.
@@ -207,6 +207,16 @@ module Nexpose
207
207
  filters << Filter.new(type, id)
208
208
  end
209
209
 
210
+ # Add the common vulnerability status filters as used by the UI for export
211
+ # and jasper report templates (the default filters). Recommended for reports
212
+ # that do not require 'not vulnerable' results to be included. The following
213
+ # statuses are added: vulnerable-exploted, vulnerable-version, and potential.
214
+ def add_common_vuln_status_filters
215
+ ['vulnerable-exploited', 'vulnerable-version', 'potential'].each do |vuln_status|
216
+ filters << Filter.new('vuln-status', vuln_status)
217
+ end
218
+ end
219
+
210
220
  def to_xml
211
221
  xml = %(<AdhocReportConfig format="#{@format}" template-id="#{@template_id}")
212
222
  xml << %( owner="#{@owner}") if @owner
@@ -1,4 +1,4 @@
1
1
  module Nexpose
2
2
  # The latest version of the Nexpose gem
3
- VERSION = '7.1.1'.freeze
3
+ VERSION = '7.2.0'.freeze
4
4
  end
@@ -22,17 +22,17 @@ module Nexpose
22
22
  url_size = 500
23
23
  url_page = 0
24
24
 
25
- req = Nexpose::AJAX.get(self, "/api/experimental/vulnerability_exceptions?_size=#{url_size}&_page=#{url_page}")
25
+ req = Nexpose::AJAX.get(self, "/api/3/vulnerability_exceptions?size=#{url_size}&page=#{url_page}")
26
26
  data = JSON.parse(req, object_class: OpenStruct)
27
- ajax_data << data._resources
27
+ ajax_data << data.resources
28
28
 
29
- if data._links.count > 1
29
+ if data.links.count > 1
30
30
  loop do
31
31
  url_page += 1
32
- req = Nexpose::AJAX.get(self, "/api/experimental/vulnerability_exceptions?_size=#{url_size}&_page=#{url_page}")
32
+ req = Nexpose::AJAX.get(self, "/api/3/vulnerability_exceptions?size=#{url_size}&page=#{url_page}")
33
33
  data = JSON.parse(req, object_class: OpenStruct)
34
- ajax_data << data._resources
35
- links = data._links.select { |ll| ['self', 'last'].include?(ll.rel) }
34
+ ajax_data << data.resources
35
+ links = data.links.select { |ll| ['self', 'last'].include?(ll.rel) }
36
36
  break if links[0].href == links[1].href
37
37
  end
38
38
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: nexpose
3
3
  version: !ruby/object:Gem::Version
4
- version: 7.1.1
4
+ version: 7.2.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - HD Moore
@@ -13,7 +13,7 @@ authors:
13
13
  autorequire:
14
14
  bindir: bin
15
15
  cert_chain: []
16
- date: 2017-09-28 00:00:00.000000000 Z
16
+ date: 2018-01-17 00:00:00.000000000 Z
17
17
  dependencies:
18
18
  - !ruby/object:Gem::Dependency
19
19
  name: bundler
@@ -256,7 +256,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
256
256
  version: '0'
257
257
  requirements: []
258
258
  rubyforge_project:
259
- rubygems_version: 2.6.12
259
+ rubygems_version: 2.6.10
260
260
  signing_key:
261
261
  specification_version: 4
262
262
  summary: Ruby API for Rapid7 Nexpose