oauth-tty 1.0.6 → 1.0.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 715ff09353a843901b1025d9161468934f75bebaf5ed1e9d99e87a7eabea05f0
-  data.tar.gz: c9753c42ab67afd478a5f1981bef15f9d3960efd8de7dd0a80094dcdf796d0a2
+  metadata.gz: ddf468baedf5f9d67c7d894fb625a87d96c5f8618604e5d6ae0e0dd1541b61df
+  data.tar.gz: bcf96155a11aabb6f329cabf3f965296c4c98479b74f229df076fa5f756532e0
 SHA512:
-  metadata.gz: 854af08782e9f4ca1c22c9502f24f644c8890a98c597c557ce034fc5a0885ebbf771c427df5f88e5232b556452ae27d49e0e65104722cb745d79ee9798c873ef
-  data.tar.gz: 457e3960abe5d5f153dfd267b2a53a2376d84d430b0d9478e70b2a23c9fa8ac993e87eecb5e5df9444835de4fedb31bef181d2ef3cbb1f94c89cee4b2616e826
+  metadata.gz: eef1bd7af1bb544d05364ea553c4b41fef5d856d8284ff1b50f23c110cefe04ee335b1102ebaf7c606d218d83b6fb227789a912e33eb1b98e9c5a9bfaf9a3d98
+  data.tar.gz: 87b683834fa36d7357abaadeb6536b8196fd11ec4191d2dfbde3a9221bedb0ad882c316cb4135971dacb0f525759a9d763fc962da3c9d5397d733718af809854

data/CHANGELOG.md

@@ -30,6 +30,22 @@ Please file a bug if you notice a violation of semantic versioning.
 
 ### Security
 
+## [1.0.7] - 2026-05-16
+
+- TAG: [v1.0.7][1.0.7t]
+- COVERAGE: 100.00% -- 305/305 lines in 10 files
+- BRANCH COVERAGE: 96.55% -- 28/29 branches in 10 files
+- 16.22% documented
+
+### Added
+
+- Add inspect-time secret redaction for command option state through `auth-sanitizer` integration.
+- Traditional OAuth::TTY::VERSION constant
+
+### Changed
+
+- Redact the command options hash from `OAuth::TTY::Command#inspect` because it may contain credential-bearing CLI arguments.
+
 ## [1.0.6] - 2025-09-21
 
 - TAG: [v1.0.6][1.0.6t]
@@ -124,7 +140,9 @@ Please file a bug if you notice a violation of semantic versioning.
 
 - Initial release (@pboling)
 
-[Unreleased]: https://github.com/ruby-oauth/oauth-tty/compare/v1.0.6...HEAD
+[Unreleased]: https://github.com/ruby-oauth/oauth-tty/compare/v1.0.7...HEAD
+[1.0.7]: https://github.com/ruby-oauth/oauth-tty/compare/v1.0.6...v1.0.7
+[1.0.7t]: https://github.com/ruby-oauth/oauth-tty/releases/tag/v1.0.7
 [1.0.6]: https://github.com/ruby-oauth/oauth-tty/compare/v1.0.5...v1.0.6
 [1.0.6t]: https://github.com/ruby-oauth/oauth-tty/releases/tag/v1.0.6
 [1.0.5]: https://gitlab.com/ruby-oauth/oauth-tty/-/compare/v1.0.4...v1.0.5

data/LICENSE.txt

@@ -1,6 +1,6 @@
 The MIT License (MIT)
 
-Copyright (c) 2021-2022, 2025 Peter H. Boling, of Galtzo.com, and oauth2 contributors
+Copyright (c) 2021-2022, 2025 Peter H. Boling, of Galtzo.com, and oauth-tty contributors
 Copyright (c) 2016-2017 Thiago Pinto
 
 Permission is hereby granted, free of charge, to any person obtaining a copy

data/README.md

@@ -9,7 +9,7 @@
 
 # 🖥️ OAuth::TTY
 
-[![Version][👽versioni]][👽version] [![GitHub tag (latest SemVer)][⛳️tag-img]][⛳️tag] [![License: MIT][📄license-img]][📄license-ref] [![Downloads Rank][👽dl-ranki]][👽dl-rank] [![Open Source Helpers][👽oss-helpi]][👽oss-help] [![CodeCov Test Coverage][🏀codecovi]][🏀codecov] [![Coveralls Test Coverage][🏀coveralls-img]][🏀coveralls] [![QLTY Test Coverage][🏀qlty-covi]][🏀qlty-cov] [![QLTY Maintainability][🏀qlty-mnti]][🏀qlty-mnt] [![CI Heads][🚎3-hd-wfi]][🚎3-hd-wf] [![CI Runtime Dependencies @ HEAD][🚎12-crh-wfi]][🚎12-crh-wf] [![CI Current][🚎11-c-wfi]][🚎11-c-wf] [![CI Truffle Ruby][🚎9-t-wfi]][🚎9-t-wf] [![CI JRuby][🚎10-j-wfi]][🚎10-j-wf] [![Deps Locked][🚎13-🔒️-wfi]][🚎13-🔒️-wf] [![Deps Unlocked][🚎14-🔓️-wfi]][🚎14-🔓️-wf] [![CI Supported][🚎6-s-wfi]][🚎6-s-wf] [![CI Legacy][🚎4-lg-wfi]][🚎4-lg-wf] [![CI Unsupported][🚎7-us-wfi]][🚎7-us-wf] [![CI Ancient][🚎1-an-wfi]][🚎1-an-wf] [![CI Test Coverage][🚎2-cov-wfi]][🚎2-cov-wf] [![CI Style][🚎5-st-wfi]][🚎5-st-wf] [![CodeQL][🖐codeQL-img]][🖐codeQL] [![Apache SkyWalking Eyes License Compatibility Check][🚎15-🪪-wfi]][🚎15-🪪-wf]
+[![Version][👽versioni]][👽version] [![GitHub tag (latest SemVer)][⛳️tag-img]][⛳️tag] [![License: MIT][📄license-img]][📄license-ref] [![Downloads Rank][👽dl-ranki]][👽dl-rank] [![CodeCov Test Coverage][🏀codecovi]][🏀codecov] [![Coveralls Test Coverage][🏀coveralls-img]][🏀coveralls] [![QLTY Test Coverage][🏀qlty-covi]][🏀qlty-cov] [![QLTY Maintainability][🏀qlty-mnti]][🏀qlty-mnt] [![CI Heads][🚎3-hd-wfi]][🚎3-hd-wf] [![CI Runtime Dependencies @ HEAD][🚎12-crh-wfi]][🚎12-crh-wf] [![CI Current][🚎11-c-wfi]][🚎11-c-wf] [![CI Truffle Ruby][🚎9-t-wfi]][🚎9-t-wf] [![CI JRuby][🚎10-j-wfi]][🚎10-j-wf] [![Deps Locked][🚎13-🔒️-wfi]][🚎13-🔒️-wf] [![Deps Unlocked][🚎14-🔓️-wfi]][🚎14-🔓️-wf] [![CI Supported][🚎6-s-wfi]][🚎6-s-wf] [![CI Legacy][🚎4-lg-wfi]][🚎4-lg-wf] [![CI Unsupported][🚎7-us-wfi]][🚎7-us-wf] [![CI Ancient][🚎1-an-wfi]][🚎1-an-wf] [![CI Test Coverage][🚎2-cov-wfi]][🚎2-cov-wf] [![CI Style][🚎5-st-wfi]][🚎5-st-wf] [![CodeQL][🖐codeQL-img]][🖐codeQL] [![Apache SkyWalking Eyes License Compatibility Check][🚎15-🪪-wfi]][🚎15-🪪-wf]
 
 `if ci_badges.map(&:color).detect { it != "green"}` ☝️ [let me know][🖼️galtzo-discord], as I may have missed the [discord notification][🖼️galtzo-discord].
 
@@ -572,8 +572,6 @@ Thanks for RTFM. ☺️
 [📜gh-wiki-img]: https://img.shields.io/badge/wiki-examples-943CD2.svg?style=for-the-badge&logo=github&logoColor=white
 [👽dl-rank]: https://rubygems.org/gems/oauth-tty
 [👽dl-ranki]: https://img.shields.io/gem/rd/oauth-tty.svg
-[👽oss-help]: https://www.codetriage.com/ruby-oauth/oauth-tty
-[👽oss-helpi]: https://www.codetriage.com/ruby-oauth/oauth-tty/badges/users.svg
 [👽version]: https://rubygems.org/gems/oauth-tty
 [👽versioni]: https://img.shields.io/gem/v/oauth-tty.svg
 [🏀qlty-mnt]: https://qlty.sh/gh/ruby-oauth/projects/oauth-tty
@@ -664,7 +662,7 @@ Thanks for RTFM. ☺️
 [📌gitmoji]:https://gitmoji.dev
 [📌gitmoji-img]:https://img.shields.io/badge/gitmoji_commits-%20%F0%9F%98%9C%20%F0%9F%98%8D-34495e.svg?style=flat-square
 [🧮kloc]: https://www.youtube.com/watch?v=dQw4w9WgXcQ
-[🧮kloc-img]: https://img.shields.io/badge/KLOC-0.296-FFDD67.svg?style=for-the-badge&logo=YouTube&logoColor=blue
+[🧮kloc-img]: https://img.shields.io/badge/KLOC-0.305-FFDD67.svg?style=for-the-badge&logo=YouTube&logoColor=blue
 [🔐security]: SECURITY.md
 [🔐security-img]: https://img.shields.io/badge/security-policy-259D6C.svg?style=flat
 [📄copyright-notice-explainer]: https://opensource.stackexchange.com/questions/5778/why-do-licenses-such-as-the-mit-license-specify-a-single-year

data/REEK

@@ -0,0 +1,2 @@
+./reek: 1: Error:: not found
+./reek: 2: Error:: not found

data/SECURITY.md

@@ -12,6 +12,8 @@ To report a security vulnerability, please use the
 [Tidelift security contact](https://tidelift.com/security).
 Tidelift will coordinate the fix and disclosure.
 
+More detailed explanation of the process is in [IRP.md][IRP].
+
 ## Additional Support
 
 If you are interested in support for versions older than the latest release,
@@ -19,3 +21,4 @@ please consider sponsoring the project / maintainer @ https://liberapay.com/pbol
 or find other sponsorship links in the [README].
 
 [README]: README.md
+[IRP]: IRP.md

data/lib/oauth/tty/cli.rb

@@ -3,8 +3,10 @@
 module OAuth
   module TTY
     class CLI
-      def self.puts_red(string)
-        puts "\033[0;91m#{string}\033[0m"
+      class << self
+        def puts_red(string)
+          puts "\033[0;91m#{string}\033[0m"
+        end
       end
 
       ALIASES = {

data/lib/oauth/tty/command.rb

@@ -2,7 +2,18 @@
 
 module OAuth
   module TTY
+    # Base class for oauth-tty commands.
+    #
+    # Includes {Auth::Sanitizer::FilteredAttributes} so inspect output redacts
+    # the accumulated command options hash, which may contain consumer or token
+    # secrets read from CLI flags or option files.
     class Command
+      include Auth::Sanitizer::FilteredAttributes
+
+      # Redact parser-related state from inspect output because it can include
+      # credential-bearing CLI arguments and parser internals that retain them.
+      filtered_attributes :options, :option_parser
+
       def initialize(stdout, stdin, stderr, arguments)
         @stdout = stdout
         @stdin = stdin
@@ -12,6 +23,17 @@ module OAuth
         option_parser.parse!(arguments)
       end
 
+      def inspect
+        format(
+          "#<%<klass>s:0x%<object_id>x @stdout=%<stdout>s, @stdin=%<stdin>s, @stderr=%<stderr>s, @options=[FILTERED], @option_parser=[FILTERED]>",
+          klass: self.class,
+          object_id: object_id,
+          stdout: @stdout.inspect,
+          stdin: @stdin.inspect,
+          stderr: @stderr.inspect,
+        )
+      end
+
       def run
         missing = required_options - options.keys
         if missing.empty?
@@ -26,10 +48,12 @@ module OAuth
         []
       end
 
-      protected
+      private
 
       attr_reader :options
 
+      protected
+
       def show_missing(array)
         array = array.map { |s| "--#{s}" }.join(" ")
         OAuth::TTY::CLI.puts_red("Options missing to OAuth CLI: #{array}")

data/lib/oauth/tty/version.rb

@@ -3,7 +3,8 @@
 module OAuth
   module TTY
     module Version
-      VERSION = "1.0.6"
+      VERSION = "1.0.7"
     end
+    VERSION = Version::VERSION # Traditional Constant Location
   end
 end

data/lib/oauth/tty.rb

@@ -1,9 +1,11 @@
 # frozen_string_literal: true
 
 # stdlib
+require "cgi"
 require "optparse"
 
 # external gems
+require "auth/sanitizer"
 require "version_gem"
 
 # For initial release as a standalone gem, this gem must not declare oauth as a dependency,

data/sig/oauth/tty/command.rbs

@@ -0,0 +1,15 @@
+module OAuth
+  module TTY
+    class Command
+      include Auth::Sanitizer::FilteredAttributes
+
+      def initialize: (untyped stdout, untyped stdin, untyped stderr, untyped arguments) -> void
+      def run: () -> untyped
+      def required_options: () -> Array[untyped]
+
+      private
+
+      attr_reader options: untyped
+    end
+  end
+end

data/sig/oauth/tty/version.rbs

@@ -4,5 +4,6 @@ module OAuth
       VERSION: String
       # See the writing guide of rbs: https://github.com/ruby/rbs#guides
     end
+    VERSION: String
   end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: oauth-tty
 version: !ruby/object:Gem::Version
-  version: 1.0.6
+  version: 1.0.7
 platform: ruby
 authors:
 - Thiago Pinto
@@ -38,6 +38,34 @@ cert_chain:
   -----END CERTIFICATE-----
 date: 1980-01-02 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: cgi
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: auth-sanitizer
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.1'
 - !ruby/object:Gem::Dependency
   name: version_gem
   requirement: !ruby/object:Gem::Requirement
@@ -152,16 +180,16 @@ dependencies:
   name: mocha
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '3.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '3.0'
 - !ruby/object:Gem::Dependency
   name: rack
   requirement: !ruby/object:Gem::Requirement
@@ -180,30 +208,30 @@ dependencies:
   name: rack-test
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '2.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '2.0'
 - !ruby/object:Gem::Dependency
   name: rest-client
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '2.1'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '2.1'
 - !ruby/object:Gem::Dependency
   name: rspec-pending_for
   requirement: !ruby/object:Gem::Requirement
@@ -381,16 +409,17 @@ files:
 - lib/oauth/tty/commands/version_command.rb
 - lib/oauth/tty/version.rb
 - lib/oauth_tty.rb
+- sig/oauth/tty/command.rbs
 - sig/oauth/tty/version.rbs
 homepage: https://github.com/ruby-oauth/oauth-tty
 licenses:
 - MIT
 metadata:
   homepage_uri: https://oauth-tty.galtzo.com/
-  source_code_uri: https://github.com/ruby-oauth/oauth-tty/tree/v1.0.6
-  changelog_uri: https://github.com/ruby-oauth/oauth-tty/blob/v1.0.6/CHANGELOG.md
+  source_code_uri: https://github.com/ruby-oauth/oauth-tty/tree/v1.0.7
+  changelog_uri: https://github.com/ruby-oauth/oauth-tty/blob/v1.0.7/CHANGELOG.md
   bug_tracker_uri: https://github.com/ruby-oauth/oauth-tty/issues
-  documentation_uri: https://www.rubydoc.info/gems/oauth-tty/1.0.6
+  documentation_uri: https://www.rubydoc.info/gems/oauth-tty/1.0.7
   funding_uri: https://github.com/sponsors/pboling
   wiki_uri: https://github.com/ruby-oauth/oauth-tty/wiki
   news_uri: https://www.railsbling.com/tags/oauth-tty
@@ -420,7 +449,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.7.2
+rubygems_version: 4.0.11
 specification_version: 4
 summary: "\U0001F5A5️ OAuth 1.0 / 1.0a TTY CLI"
 test_files: []