nexpose 7.1.1 → 7.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 40c3bea146242b1ce37e08bc6bc1ed9544f2fa73
-  data.tar.gz: aee55cfaba753ffafae9fd90d045910e8481afdc
+  metadata.gz: 60102dc88d0076ed863055134eaa8acbc01c1c9b
+  data.tar.gz: 7e6435d349ce9493a88327a92f65a6921bdc2d90
 SHA512:
-  metadata.gz: 9bab4414d32279ea3a2d4a7b1480e612419c7ea939cc0da14826d7984e9a06f95dfebabf7a25750485f233805a8346a44bf9a1deaf6e88f4ae4391b9f3162582
-  data.tar.gz: 3b8a5c7ba90d037ed0b2f5617996a5e35be053603a2e6f5ba0e1509b6e6c8ffc642670768272e31da7b17955bcac1a367692388a6057d5f587e1a91f0ab287c2
+  metadata.gz: 988b868d5d35855bab9ec4c5af7aaa440796f3947322057f3278e739359758bc658a4a87f3f2f71eda88867cfdba4df26d481785ec3549d05a3d7bc117d7b9a8
+  data.tar.gz: 457f1e7df3a68339cdf3079a905fdae8050c283adca807d4b34a5242fc7b6332d7a3fbbd14eaaf7dc64cd4c4715e3a5b61d1a04db7a09689531f12ff14170ce8

data/CHANGELOG.md

@@ -1,5 +1,12 @@
 # Change Log
 
+## [v7.1.1](https://github.com/rapid7/nexpose-client/tree/v7.1.1) (2017-09-28)
+[Full Changelog](https://github.com/rapid7/nexpose-client/compare/v7.1.0...v7.1.1)
+
+**Merged pull requests:**
+
+- Some methods were not honoring custom Connection Timeouts [\#300](https://github.com/rapid7/nexpose-client/pull/300) ([sgreen-r7](https://github.com/sgreen-r7))
+
 ## [v7.1.0](https://github.com/rapid7/nexpose-client/tree/v7.1.0) (2017-09-26)
 [Full Changelog](https://github.com/rapid7/nexpose-client/compare/v7.0.1...v7.1.0)
 

data/COPYING

@@ -1,6 +1,6 @@
 BSD 3-Clause License
 
-Copyright (c) 2014-2017, Rapid7, Inc.
+Copyright (c) 2014-2018, Rapid7, Inc.
 All rights reserved.
 
 Redistribution and use in source and binary forms, with or without

data/Gemfile.lock

@@ -1,93 +1,53 @@
 PATH
   remote: .
   specs:
-    nexpose (7.1.1)
+    nexpose (5.3.0)
 
 GEM
   remote: https://rubygems.org/
   specs:
-    activesupport (4.2.8)
-      i18n (~> 0.7)
-      minitest (~> 5.1)
-      thread_safe (~> 0.3, >= 0.3.4)
-      tzinfo (~> 1.1)
-    addressable (2.5.1)
-      public_suffix (~> 2.0, >= 2.0.2)
-    ast (2.3.0)
-    codeclimate-test-reporter (0.4.8)
+    addressable (2.3.8)
+    ast (2.2.0)
+    astrolabe (1.3.1)
+      parser (~> 2.2)
+    codeclimate-test-reporter (0.4.7)
       simplecov (>= 0.7.1, < 1.0.0)
-    coderay (1.1.1)
-    crack (0.4.3)
+    crack (0.4.2)
       safe_yaml (~> 1.0.0)
-    diff-lcs (1.3)
+    diff-lcs (1.2.5)
     docile (1.1.5)
-    faraday (0.12.0.1)
-      multipart-post (>= 1.2, < 3)
-    faraday-http-cache (2.0.0)
-      faraday (~> 0.8)
-    github_changelog_generator (1.14.3)
-      activesupport
-      faraday-http-cache
-      multi_json
-      octokit (~> 4.6)
-      rainbow (>= 2.1)
-      rake (>= 10.0)
-      retriable (~> 2.1)
-    i18n (0.8.1)
-    method_source (0.8.2)
-    minitest (5.10.1)
-    multi_json (1.12.1)
-    multipart-post (2.0.0)
-    octokit (4.7.0)
-      sawyer (~> 0.8.0, >= 0.5.3)
-    parallel (1.12.0)
-    parser (2.4.0.0)
+    multi_json (1.11.2)
+    parser (2.3.1.2)
       ast (~> 2.2)
     powerpack (0.1.1)
-    pry (0.9.12.6)
-      coderay (~> 1.0)
-      method_source (~> 0.8)
-      slop (~> 3.4)
-    public_suffix (2.0.5)
-    rainbow (2.2.2)
-      rake
+    rainbow (2.0.0)
     rake (12.0.0)
-    retriable (2.1.0)
-    rspec (3.6.0)
-      rspec-core (~> 3.6.0)
-      rspec-expectations (~> 3.6.0)
-      rspec-mocks (~> 3.6.0)
-    rspec-core (3.6.0)
-      rspec-support (~> 3.6.0)
-    rspec-expectations (3.6.0)
+    rspec (3.3.0)
+      rspec-core (~> 3.3.0)
+      rspec-expectations (~> 3.3.0)
+      rspec-mocks (~> 3.3.0)
+    rspec-core (3.3.2)
+      rspec-support (~> 3.3.0)
+    rspec-expectations (3.3.1)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.6.0)
-    rspec-mocks (3.6.0)
+      rspec-support (~> 3.3.0)
+    rspec-mocks (3.3.2)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.6.0)
-    rspec-support (3.6.0)
-    rubocop (0.49.1)
-      parallel (~> 1.10)
-      parser (>= 2.3.3.1, < 3.0)
+      rspec-support (~> 3.3.0)
+    rspec-support (3.3.0)
+    rubocop (0.29.1)
+      astrolabe (~> 1.3)
+      parser (>= 2.2.0.1, < 3.0)
       powerpack (~> 0.1)
       rainbow (>= 1.99.1, < 3.0)
-      ruby-progressbar (~> 1.7)
-      unicode-display_width (~> 1.0, >= 1.0.1)
-    ruby-progressbar (1.8.1)
+      ruby-progressbar (~> 1.4)
+    ruby-progressbar (1.7.5)
     safe_yaml (1.0.4)
-    sawyer (0.8.1)
-      addressable (>= 2.3.5, < 2.6)
-      faraday (~> 0.8, < 1.0)
     simplecov (0.9.2)
       docile (~> 1.1.0)
       multi_json (~> 1.0)
       simplecov-html (~> 0.9.0)
     simplecov-html (0.9.0)
-    slop (3.6.0)
-    thread_safe (0.3.6)
-    tzinfo (1.2.3)
-      thread_safe (~> 0.1)
-    unicode-display_width (1.3.0)
     vcr (2.9.3)
     webmock (1.20.4)
       addressable (>= 2.3.6)
@@ -99,9 +59,7 @@ PLATFORMS
 DEPENDENCIES
   bundler (~> 1.3)
   codeclimate-test-reporter (~> 0.4.6)
-  github_changelog_generator
   nexpose!
-  pry (= 0.9.12.6)
   rake
   rspec (~> 3.2)
   rubocop
@@ -110,4 +68,4 @@ DEPENDENCIES
   webmock (~> 1.20.4)
 
 BUNDLED WITH
-   1.15.0
+   1.13.6

data/README.markdown

@@ -11,6 +11,8 @@ This gem is heavily used for internal, automated testing of the Nexpose product.
 
 Since version 1.0 nexpose-client uses [Semantic Versioning](http://semver.org/). This allows for confident use of the [pessimistic operator](https://robots.thoughtbot.com/rubys-pessimistic-operator) in scripts or larger ruby projects.
 
+Install the gem with Rubygems: `gem install nexpose`
+
 ## Release Notes
 
 Release notes are available on the [Releases](https://github.com/rapid7/nexpose-client/releases) page.

data/lib/nexpose/report.rb

@@ -207,6 +207,16 @@ module Nexpose
       filters << Filter.new(type, id)
     end
 
+    # Add the common vulnerability status filters as used by the UI for export
+    # and jasper report templates (the default filters). Recommended for reports
+    # that do not require 'not vulnerable' results to be included. The following
+    # statuses are added: vulnerable-exploted, vulnerable-version, and potential.
+    def add_common_vuln_status_filters
+      ['vulnerable-exploited', 'vulnerable-version', 'potential'].each do |vuln_status|
+        filters << Filter.new('vuln-status', vuln_status)
+      end
+    end
+
     def to_xml
       xml = %(<AdhocReportConfig format="#{@format}" template-id="#{@template_id}")
       xml << %( owner="#{@owner}") if @owner

data/lib/nexpose/version.rb

@@ -1,4 +1,4 @@
 module Nexpose
   # The latest version of the Nexpose gem
-  VERSION = '7.1.1'.freeze
+  VERSION = '7.2.0'.freeze
 end

data/lib/nexpose/vuln_exception.rb

@@ -22,17 +22,17 @@ module Nexpose
       url_size = 500
       url_page = 0
 
-      req = Nexpose::AJAX.get(self, "/api/experimental/vulnerability_exceptions?_size=#{url_size}&_page=#{url_page}")
+      req = Nexpose::AJAX.get(self, "/api/3/vulnerability_exceptions?size=#{url_size}&page=#{url_page}")
       data = JSON.parse(req, object_class: OpenStruct)
-      ajax_data << data._resources
+      ajax_data << data.resources
 
-      if data._links.count > 1
+      if data.links.count > 1
         loop do
           url_page += 1
-          req = Nexpose::AJAX.get(self, "/api/experimental/vulnerability_exceptions?_size=#{url_size}&_page=#{url_page}")
+          req = Nexpose::AJAX.get(self, "/api/3/vulnerability_exceptions?size=#{url_size}&page=#{url_page}")
           data = JSON.parse(req, object_class: OpenStruct)
-          ajax_data << data._resources
-          links = data._links.select { |ll| ['self', 'last'].include?(ll.rel) }
+          ajax_data << data.resources
+          links = data.links.select { |ll| ['self', 'last'].include?(ll.rel) }
           break if links[0].href == links[1].href
         end
       end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: nexpose
 version: !ruby/object:Gem::Version
-  version: 7.1.1
+  version: 7.2.0
 platform: ruby
 authors:
 - HD Moore
@@ -13,7 +13,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2017-09-28 00:00:00.000000000 Z
+date: 2018-01-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -256,7 +256,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.6.12
+rubygems_version: 2.6.10
 signing_key: 
 specification_version: 4
 summary: Ruby API for Rapid7 Nexpose