puppet-lint-infrasecure 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (64) hide show
  1. checksums.yaml +7 -0
  2. data/README.md +81 -0
  3. data/lib/puppet-lint/linter.rb +132 -0
  4. data/lib/puppet-lint/plugins/check_admin_by_default.rb +26 -0
  5. data/lib/puppet-lint/plugins/check_cyrillic_homograph_attack.rb +19 -0
  6. data/lib/puppet-lint/plugins/check_empty_password.rb +26 -0
  7. data/lib/puppet-lint/plugins/check_hard_coded_secret.rb +31 -0
  8. data/lib/puppet-lint/plugins/check_invalid_ip_addr_binding.rb +23 -0
  9. data/lib/puppet-lint/plugins/check_malicious_dependency.rb +24 -0
  10. data/lib/puppet-lint/plugins/check_suspicious_comment.rb +19 -0
  11. data/lib/puppet-lint/plugins/check_use_http_without_tls.rb +27 -0
  12. data/lib/puppet-lint/plugins/check_use_of_weak_crypto_algorithm.rb +21 -0
  13. data/lib/puppet-lint/plugins/check_weak_password.rb +27 -0
  14. data/lib/puppet-lint-infrasecure/config/dependencies.yml +33 -0
  15. data/lib/puppet-lint-infrasecure/config/whitelist +19 -0
  16. data/lib/puppet-lint-infrasecure/dependencies/activemq.json +407 -0
  17. data/lib/puppet-lint-infrasecure/dependencies/apt.json +453 -0
  18. data/lib/puppet-lint-infrasecure/dependencies/cassandra.json +122 -0
  19. data/lib/puppet-lint-infrasecure/dependencies/docker.json +200 -0
  20. data/lib/puppet-lint-infrasecure/dependencies/elasticsearch.json +32 -0
  21. data/lib/puppet-lint-infrasecure/dependencies/gitlab.json +1161 -0
  22. data/lib/puppet-lint-infrasecure/dependencies/grafana.json +31 -0
  23. data/lib/puppet-lint-infrasecure/dependencies/haproxy.json +159 -0
  24. data/lib/puppet-lint-infrasecure/dependencies/jenkins.json +876 -0
  25. data/lib/puppet-lint-infrasecure/dependencies/jira.json +460 -0
  26. data/lib/puppet-lint-infrasecure/dependencies/kafka.json +32 -0
  27. data/lib/puppet-lint-infrasecure/dependencies/kubernetes.json +123 -0
  28. data/lib/puppet-lint-infrasecure/dependencies/mongodb.json +156 -0
  29. data/lib/puppet-lint-infrasecure/dependencies/mysql.json +14549 -0
  30. data/lib/puppet-lint-infrasecure/dependencies/nagios_core.json +8 -0
  31. data/lib/puppet-lint-infrasecure/dependencies/nginx.json +1322 -0
  32. data/lib/puppet-lint-infrasecure/dependencies/nodejs.json +247 -0
  33. data/lib/puppet-lint-infrasecure/dependencies/ntp.json +2163 -0
  34. data/lib/puppet-lint-infrasecure/dependencies/openstack.json +447 -0
  35. data/lib/puppet-lint-infrasecure/dependencies/openvpn.json +816 -0
  36. data/lib/puppet-lint-infrasecure/dependencies/postgresql.json +4256 -0
  37. data/lib/puppet-lint-infrasecure/dependencies/puppet_agent.json +23 -0
  38. data/lib/puppet-lint-infrasecure/dependencies/python.json +1134 -0
  39. data/lib/puppet-lint-infrasecure/dependencies/rabbitmq.json +602 -0
  40. data/lib/puppet-lint-infrasecure/dependencies/redis.json +51 -0
  41. data/lib/puppet-lint-infrasecure/dependencies/ruby.json +487 -0
  42. data/lib/puppet-lint-infrasecure/dependencies/sqlite.json +52 -0
  43. data/lib/puppet-lint-infrasecure/dependencies/systemd.json +180 -0
  44. data/lib/puppet-lint-infrasecure/dependencies/tomcat.json +8635 -0
  45. data/lib/puppet-lint-infrasecure/dependencies/vault.json +14 -0
  46. data/lib/puppet-lint-infrasecure/dependencies/wget.json +129 -0
  47. data/lib/puppet-lint-infrasecure/dependencies/yum.json +14 -0
  48. data/lib/puppet-lint-infrasecure/dependencies/zabbix.json +940 -0
  49. data/lib/puppet-lint-infrasecure/regex.rb +18 -0
  50. data/lib/puppet-lint-infrasecure/rules.rb +51 -0
  51. data/lib/puppet-lint-infrasecure/version.rb +3 -0
  52. data/lib/puppet-lint-infrasecure.rb +62 -0
  53. data/spec/puppet-lint/plugins/check_admin_by_default_spec.rb +34 -0
  54. data/spec/puppet-lint/plugins/check_cyrillic_homograph_attack_spec.rb +22 -0
  55. data/spec/puppet-lint/plugins/check_empty_password_spec.rb +55 -0
  56. data/spec/puppet-lint/plugins/check_hard_coded_secret_spec.rb +53 -0
  57. data/spec/puppet-lint/plugins/check_invalid_ip_addr_binding_spec.rb +46 -0
  58. data/spec/puppet-lint/plugins/check_malicious_dependency_spec.rb +39 -0
  59. data/spec/puppet-lint/plugins/check_suspicious_comment_spec.rb +50 -0
  60. data/spec/puppet-lint/plugins/check_use_http_without_tls_spec.rb +100 -0
  61. data/spec/puppet-lint/plugins/check_use_of_weak_crypto_algorithm_spec.rb +42 -0
  62. data/spec/puppet-lint/plugins/check_weak_password_spec.rb +29 -0
  63. data/spec/spec_helper.rb +3 -0
  64. metadata +284 -0
data/lib/puppet-lint-infrasecure/dependencies/grafana.json ADDED
@@ -0,0 +1,31 @@
1
+ {
2
+ "8.0.0": [
3
+ "CVE-2021-43798"
4
+ ],
5
+ "8.3.0": [
6
+ "CVE-2021-43798"
7
+ ],
8
+ "5.4.0": [
9
+ "CVE-2019-15635"
10
+ ],
11
+ "5.2.4": [
12
+ "CVE-2018-1000816"
13
+ ],
14
+ "5.3.0": [
15
+ "CVE-2018-1000816"
16
+ ],
17
+ "5.3.1": [
18
+ "CVE-2018-18623",
19
+ "CVE-2018-18624",
20
+ "CVE-2018-18625"
21
+ ],
22
+ "2.0.0": [
23
+ "CVE-2022-21702"
24
+ ],
25
+ "3.0.0": [
26
+ "CVE-2022-21703"
27
+ ],
28
+ "5.0.0": [
29
+ "CVE-2022-21713"
30
+ ]
31
+ }
data/lib/puppet-lint-infrasecure/dependencies/haproxy.json ADDED
@@ -0,0 +1,159 @@
1
+ {
2
+ "2.5": [
3
+ "CVE-2021-40346"
4
+ ],
5
+ "1.6.4": [
6
+ "CVE-2016-5360"
7
+ ],
8
+ "1.6.3": [
9
+ "CVE-2016-5360"
10
+ ],
11
+ "1.6.2": [
12
+ "CVE-2016-5360"
13
+ ],
14
+ "1.6.1": [
15
+ "CVE-2016-5360"
16
+ ],
17
+ "1.6.5": [
18
+ "CVE-2016-5360"
19
+ ],
20
+ "1.6.0": [
21
+ "CVE-2016-5360"
22
+ ],
23
+ "1.4": [
24
+ "CVE-2013-1912",
25
+ "CVE-2013-2175"
26
+ ],
27
+ "1.4.20": [
28
+ "CVE-2013-1912",
29
+ "CVE-2013-2175"
30
+ ],
31
+ "1.4.22": [
32
+ "CVE-2013-1912",
33
+ "CVE-2013-2175"
34
+ ],
35
+ "1.5": [
36
+ "CVE-2013-1912",
37
+ "CVE-2013-2175",
38
+ "CVE-2015-3281",
39
+ "CVE-2014-6269"
40
+ ],
41
+ "1.4.6": [
42
+ "CVE-2013-2175"
43
+ ],
44
+ "1.4.8": [
45
+ "CVE-2013-2175"
46
+ ],
47
+ "1.4.15": [
48
+ "CVE-2013-2175"
49
+ ],
50
+ "1.4.17": [
51
+ "CVE-2013-2175"
52
+ ],
53
+ "1.4.9": [
54
+ "CVE-2013-2175"
55
+ ],
56
+ "1.4.10": [
57
+ "CVE-2013-2175"
58
+ ],
59
+ "1.4.11": [
60
+ "CVE-2013-2175"
61
+ ],
62
+ "1.4.12": [
63
+ "CVE-2013-2175"
64
+ ],
65
+ "1.4.13": [
66
+ "CVE-2013-2175"
67
+ ],
68
+ "1.4.1": [
69
+ "CVE-2013-2175"
70
+ ],
71
+ "1.4.2": [
72
+ "CVE-2013-2175"
73
+ ],
74
+ "1.4.3": [
75
+ "CVE-2013-2175"
76
+ ],
77
+ "1.4.4": [
78
+ "CVE-2013-2175"
79
+ ],
80
+ "1.4.18": [
81
+ "CVE-2013-2175"
82
+ ],
83
+ "1.4.19": [
84
+ "CVE-2013-2175"
85
+ ],
86
+ "1.4.21": [
87
+ "CVE-2013-2175"
88
+ ],
89
+ "1.4.23": [
90
+ "CVE-2013-2175"
91
+ ],
92
+ "1.4.0": [
93
+ "CVE-2013-2175"
94
+ ],
95
+ "1.4.5": [
96
+ "CVE-2013-2175"
97
+ ],
98
+ "1.4.7": [
99
+ "CVE-2013-2175"
100
+ ],
101
+ "1.4.14": [
102
+ "CVE-2013-2175"
103
+ ],
104
+ "1.4.16": [
105
+ "CVE-2013-2175"
106
+ ],
107
+ "1.5.0": [
108
+ "CVE-2015-3281",
109
+ "CVE-2014-6269"
110
+ ],
111
+ "1.5.1": [
112
+ "CVE-2015-3281",
113
+ "CVE-2014-6269"
114
+ ],
115
+ "1.5.2": [
116
+ "CVE-2015-3281",
117
+ "CVE-2014-6269"
118
+ ],
119
+ "1.5.3": [
120
+ "CVE-2015-3281",
121
+ "CVE-2014-6269"
122
+ ],
123
+ "1.5.4": [
124
+ "CVE-2015-3281"
125
+ ],
126
+ "1.5.6": [
127
+ "CVE-2015-3281"
128
+ ],
129
+ "1.5.13": [
130
+ "CVE-2015-3281"
131
+ ],
132
+ "1.5.8": [
133
+ "CVE-2015-3281"
134
+ ],
135
+ "1.5.9": [
136
+ "CVE-2015-3281"
137
+ ],
138
+ "1.5.10": [
139
+ "CVE-2015-3281"
140
+ ],
141
+ "1.5.11": [
142
+ "CVE-2015-3281"
143
+ ],
144
+ "1.5.12": [
145
+ "CVE-2015-3281"
146
+ ],
147
+ "1.5.5": [
148
+ "CVE-2015-3281"
149
+ ],
150
+ "1.5.7": [
151
+ "CVE-2015-3281"
152
+ ],
153
+ "1.6": [
154
+ "CVE-2015-3281"
155
+ ],
156
+ "1.9.0": [
157
+ "CVE-2018-20615"
158
+ ]
159
+ }