paraxial 1.0.2 → 1.1.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/paraxial/cli.rb +33 -13
- data/lib/paraxial/version.rb +1 -1
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 8fc606825a60ae6e756bf7fda0fb6d3434e88075e8afe0ba1be0ab64c62304af
|
|
4
|
+
data.tar.gz: 5e4daf86eb7f58a60abe6e3f3497381c9e4e4c70a289a230ec25a72a1427e7ad
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: a8e809b4362e4182f23c1a997fb20dd3c05ec6dea16ae6e41d6f6b276a82334543abb223f5634bb5560dcc725059d7306f50a153ea373368f8be9cdab18eb521
|
|
7
|
+
data.tar.gz: 1228d5f5ada089b496fe408fb6f4725733966adeb700948947195942ef7a13da8adda0c39e32575ac1d08632f594d72ac6fe374f6d88cca7a3cfd8d6338cb6d1
|
data/lib/paraxial/cli.rb
CHANGED
|
@@ -20,13 +20,23 @@ module Paraxial
|
|
|
20
20
|
|
|
21
21
|
def scan
|
|
22
22
|
puts "[Paraxial] v#{Paraxial::VERSION} Scan starting..."
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
puts '[Paraxial] .rubocop.yml
|
|
27
|
-
puts '.rubocop.yml'
|
|
23
|
+
|
|
24
|
+
case check_rubocop_configuration
|
|
25
|
+
when :does_not_exist
|
|
26
|
+
puts '[Paraxial] .paraxial-rubocop.yml does not exist. This file is required for the scan to run, add:'
|
|
27
|
+
puts '.paraxial-rubocop.yml'
|
|
28
28
|
puts 'require:'
|
|
29
29
|
puts '- rubocop-erb'
|
|
30
|
+
puts ''
|
|
31
|
+
exit(1)
|
|
32
|
+
when :found_no_erb
|
|
33
|
+
puts '[Paraxial] .paraxial-rubocop.yml is missing rubocop-erb. To scan embedded Ruby files for security problems, add:'
|
|
34
|
+
puts '.paraxial-rubocop.yml'
|
|
35
|
+
puts 'require:'
|
|
36
|
+
puts '- rubocop-erb'
|
|
37
|
+
puts ''
|
|
38
|
+
when :found_with_erb
|
|
39
|
+
puts '[Paraxial] .paraxial-rubocop.yml is valid, .erb files will be scanned.'
|
|
30
40
|
end
|
|
31
41
|
|
|
32
42
|
if Paraxial::Helpers.get_api_key.nil?
|
|
@@ -40,13 +50,14 @@ module Paraxial
|
|
|
40
50
|
exit_code = options[:exit_code]
|
|
41
51
|
|
|
42
52
|
cops = 'Paraxial,Security/Eval,Security/IoMethods,Security/JSONLoad,Security/MarshalLoad,Security/Open,Security/YAMLLoad'
|
|
53
|
+
rubo_config = '--config .paraxial-rubocop.yml'
|
|
43
54
|
if options[:debug_rubocop]
|
|
44
55
|
puts '[Paraxial] rubocop debug enabled'
|
|
45
|
-
rubocop = `rubocop --require paraxial --only #{cops} --disable-pending-cops --format json 2>/dev/null`
|
|
46
|
-
debug_rubocop = `rubocop
|
|
56
|
+
rubocop = `rubocop --require paraxial --only #{cops} --disable-pending-cops --format json #{rubo_config} 2>/dev/null`
|
|
57
|
+
debug_rubocop = `rubocop --debug --require paraxial --only #{cops} --disable-pending-cops #{rubo_config} 2>&1`
|
|
47
58
|
puts debug_rubocop
|
|
48
59
|
else
|
|
49
|
-
rubocop = `rubocop --require paraxial --only #{cops} --disable-pending-cops --format json`
|
|
60
|
+
rubocop = `rubocop --require paraxial --only #{cops} --disable-pending-cops --format json #{rubo_config}`
|
|
50
61
|
end
|
|
51
62
|
lockfile = File.read('./Gemfile.lock')
|
|
52
63
|
api_key = ENV['PARAXIAL_API_KEY']
|
|
@@ -56,6 +67,12 @@ module Paraxial
|
|
|
56
67
|
body = { rubocop: rubocop, lockfile: lockfile, api_key: api_key, timestamp: Paraxial.get_timestamp }
|
|
57
68
|
response = Net::HTTP.post(uri, body.to_json, headers)
|
|
58
69
|
m = JSON.parse(response.body)
|
|
70
|
+
|
|
71
|
+
if m['ok'].nil?
|
|
72
|
+
puts "[Paraxial] Upload failed, check if PARAXIAL_API_KEY is valid"
|
|
73
|
+
exit(1)
|
|
74
|
+
end
|
|
75
|
+
|
|
59
76
|
findings = m['ok']['findings']
|
|
60
77
|
puts
|
|
61
78
|
puts "[Paraxial] Scan count: #{findings.length}"
|
|
@@ -114,17 +131,20 @@ module Paraxial
|
|
|
114
131
|
private
|
|
115
132
|
|
|
116
133
|
def check_rubocop_configuration
|
|
117
|
-
|
|
134
|
+
# return values:
|
|
135
|
+
# :does_not_exist, :found_no_erb, :found_with_erb
|
|
136
|
+
|
|
137
|
+
rubocop_file = File.join(Dir.pwd, '.paraxial-rubocop.yml')
|
|
118
138
|
|
|
119
|
-
return
|
|
139
|
+
return :does_not_exist unless File.exist?(rubocop_file)
|
|
120
140
|
|
|
121
141
|
config = YAML.load_file(rubocop_file)
|
|
122
142
|
required_key = 'require'
|
|
123
143
|
|
|
124
|
-
if config.is_a?(Hash) && config[required_key].is_a?(Array)
|
|
125
|
-
|
|
144
|
+
if config.is_a?(Hash) && config[required_key].is_a?(Array) && config[required_key].include?('rubocop-erb')
|
|
145
|
+
:found_with_erb
|
|
126
146
|
else
|
|
127
|
-
|
|
147
|
+
:found_no_erb
|
|
128
148
|
end
|
|
129
149
|
end
|
|
130
150
|
end
|
data/lib/paraxial/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: paraxial
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0
|
|
4
|
+
version: 1.1.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Michael Lubas
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-10-
|
|
11
|
+
date: 2024-10-30 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: rspec
|
|
@@ -133,7 +133,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
133
133
|
- !ruby/object:Gem::Version
|
|
134
134
|
version: '0'
|
|
135
135
|
requirements: []
|
|
136
|
-
rubygems_version: 3.
|
|
136
|
+
rubygems_version: 3.5.11
|
|
137
137
|
signing_key:
|
|
138
138
|
specification_version: 4
|
|
139
139
|
summary: Paraxial.io Ruby Agent
|