RubyGems - puppet-sec-lint - Versions diffs - 0.5.1 → 0.5.6 - Mend

puppet-sec-lint 0.5.1 → 0.5.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

checksums.yaml +4 -4
data/Gemfile.lock +8 -1
data/exe/puppet-sec-lint +2 -1
data/lib/puppet-sec-lint/version.rb +1 -1
data/lib/settings.ini +39 -0
data/puppet-sec-lint-0.5.3.gem +0 -0
data/puppet-sec-lint-0.5.4.gem +0 -0
data/puppet-sec-lint-0.5.5.gem +0 -0
data/puppet-sec-lint.gemspec +7 -1
metadata +111 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2c75ec06021b919c8daf8dec13912c044a5bff527d3e3ea4f9b1c03dd00ca218
-  data.tar.gz: 8ffbf00594099263843f1e696f0acc6a55d693f516b47cac72880cdc5fa423f1
+  metadata.gz: 9122cfc7a33eaeec5420572853a125a9689e5cbb991b4f01d91fa329797c894c
+  data.tar.gz: a69e4c6c6cf57eef56f0827a04464b005e3796f5831117127360ec29aaad7a90
 SHA512:
-  metadata.gz: ab18a79dfa394fd006e68066aafafaab2112ddbaac1fe0c55f9b1cae2e8a1c6f6dea187228b46a50b6b483133ca5bf68e6c7ed03ec8758078c88e2831212c5ce
-  data.tar.gz: b019f6dea23cadb892b9f4d5a1c9069f2aaca737d5badfcf9d3bfd03a847940c27af3690adfd38711649838232924bfb4c88530477b38119e639433bbf732dc7
+  metadata.gz: 8795ab736c4f332c9de27803b3fb87dfeb4e6828b559eb01b92fb1df968ce3a8d471f102161e65f02a43fa1e5d91b9d55d4c53a7a41c07b0d564d401f9643f91
+  data.tar.gz: 68fc3d3ae216a5752d89245847dea69d10579d8eb411835a9b9c97c66f40ef59e5481db97e1787e4ca527b29ee2bc4a687e747127a62e288e09f69823b69e325

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,14 @@
 PATH
   remote: .
   specs:
-    puppet-sec-lint (0.5.1)
+    puppet-sec-lint (0.5.2)
+      inifile (~> 3.0.0)
+      launchy (~> 2.5.0)
+      minitest (~> 5.0)
+      puppet-lint (~> 2.4, >= 2.4.2)
+      rack (~> 2.2.3)
+      rake (~> 13.0)
+      thin (~> 1.8.0)
 GEM
   remote: https://rubygems.org/

data/exe/puppet-sec-lint CHANGED Viewed

@@ -88,7 +88,8 @@ if ARGV[0].nil? || options[:configurations]
     puts "\nLaunching configurations page at #{conf_page_url}...\n\n"
     Launchy.open(conf_page_url)
   else
-    puts "\nLinter configurations page available at #{conf_page_url} #{@port}\n\n"
+    puts "\nLinter configurations page available at #{conf_page_url}\n\n"
+    puts "-----------------------------------------------------------------------"
   end
   linter_server.join

data/lib/puppet-sec-lint/version.rb CHANGED Viewed

@@ -1,7 +1,7 @@
 # frozen_string_literal: true
 module PuppetSecLint
-  VERSION = "0.5.1"
+  VERSION = "0.5.6"
   YEAR = "2021"
   AUTHOR = "Tiago Ribeiro"
 end

data/lib/settings.ini ADDED Viewed

@@ -0,0 +1,39 @@
+[HardCodedCredentialsRule]
+HardCodedCredentialsRule-enable_configuration = true
+HardCodedCredentialsRule-list_of_known_words_not_considered_in_credentials = pe-puppet,pe-webserver,pe-puppetdb,pe-postgres,pe-console-services,pe-orchestration-services,pe-ace-server,pe-bolt-server
+HardCodedCredentialsRule-list_of_invalid_values_in_credentials = undefined,unset,www-data,wwwrun,www,no,yes,[],root
+HardCodedCredentialsRule-regular_expression_of_words_present_in_credentials = (?-mix:user|usr|pass(word|_|$)|pwd|key|secret)
+HardCodedCredentialsRule-regular_expression_of_words_not_present_in_credentials = (?-mix:gpg|path|type|buff|zone|mode|tag|header|scheme|length|guid)
+[NoHTTPRule]
+NoHTTPRule-enable_configuration = true
+NoHTTPRule-list_of_resources_that_can_use_http = apt::source,::apt::source,wget::fetch,yumrepo,yum::,aptly::mirror,util::system_package,yum::managed_yumrepo
+NoHTTPRule-list_of_keywords_for_urls = backport,key,download,uri,mirror
+NoHTTPRule-regular_expression_of_a_normal_http_address = (?-mix:^http:\/\/.+)
+[AdminByDefaultRule]
+AdminByDefaultRule-enable_configuration = true
+AdminByDefaultRule-regular_expression_of_words_present_in_credentials = (?-mix:user|usr|pass(word|_|$)|pwd)
+[EmptyPasswordRule]
+EmptyPasswordRule-enable_configuration = true
+EmptyPasswordRule-list_of_trigger_words = pwd,password,pass
+EmptyPasswordRule-regular_expression_of_password_name = (?-mix:pass(word|_|$)|pwd)
+[InvalidIPAddrBindingRule]
+InvalidIPAddrBindingRule-enable_configuration = true
+InvalidIPAddrBindingRule-regular_expression_of_an_invalid_ip_address = (?-mix:^((http(s)?:\/\/)?0.0.0.0(:\d{1,5})?)$)
+[UseWeakCryptoAlgorithmsRule]
+UseWeakCryptoAlgorithmsRule-enable_configuration = true
+UseWeakCryptoAlgorithmsRule-regular_expression_of_weak_crypto_algorithms = (?-mix:^(sha1|md5))
+[SuspiciousCommentRule]
+SuspiciousCommentRule-enable_configuration = true
+SuspiciousCommentRule-list_of_trigger_words = hack,fixme,later,later2,todo,ticket,launchpad,bug,to-do
+SuspiciousCommentRule-regular_expression_of_keywords_present_in_suspicious_comments = (?-mix:hack|fixme|ticket|bug|secur|debug|defect|weak)
+[CyrillicHomographAttack]
+CyrillicHomographAttack-enable_configuration = true
+CyrillicHomographAttack-regular_expression_of_links_with_cyrillic_characters = (?-mix:^(http(s)?:\/\/)?.*\p{Cyrillic}+)

data/puppet-sec-lint-0.5.3.gem ADDED Viewed

Binary file

data/puppet-sec-lint-0.5.4.gem ADDED Viewed

Binary file

data/puppet-sec-lint-0.5.5.gem ADDED Viewed

Binary file

data/puppet-sec-lint.gemspec CHANGED Viewed

@@ -30,7 +30,13 @@ Gem::Specification.new do |spec|
   spec.require_paths = ["lib"]
   # Uncomment to register a new dependency of your gem
-  # spec.add_dependency "example-gem", "~> 1.0"
+  spec.add_runtime_dependency 'puppet-lint', '~> 2.4', '>= 2.4.2'
+  spec.add_runtime_dependency 'rake', '~> 13.0'
+  spec.add_runtime_dependency 'minitest', '~> 5.0'
+  spec.add_runtime_dependency 'rack', '~> 2.2.3'
+  spec.add_runtime_dependency 'thin', '~> 1.8.0'
+  spec.add_runtime_dependency 'inifile', '~> 3.0.0'
+  spec.add_runtime_dependency 'launchy', '~> 2.5.0'
   # For more information and examples about making a new gem, checkout our
   # guide at: https://bundler.io/guides/creating_gem.html

metadata CHANGED Viewed

@@ -1,15 +1,119 @@
 --- !ruby/object:Gem::Specification
 name: puppet-sec-lint
 version: !ruby/object:Gem::Version
-  version: 0.5.1
+  version: 0.5.6
 platform: ruby
 authors:
 - Tiago Ribeiro
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2021-05-08 00:00:00.000000000 Z
-dependencies: []
+date: 2021-05-12 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: puppet-lint
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.4'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.4.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.4'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.4.2
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13.0'
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+- !ruby/object:Gem::Dependency
+  name: rack
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.2.3
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.2.3
+- !ruby/object:Gem::Dependency
+  name: thin
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.8.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.8.0
+- !ruby/object:Gem::Dependency
+  name: inifile
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.0.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.0.0
+- !ruby/object:Gem::Dependency
+  name: launchy
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.5.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.5.0
 description: This is a more complete security linter for the puppet language
 email:
 - tiago7b27@gmail.com
@@ -73,6 +177,7 @@ files:
 - lib/rules/use_weak_crypto_algorithms_rule.rb
 - lib/servers/language_server.rb
 - lib/servers/linter_server.rb
+- lib/settings.ini
 - lib/sin/sin.rb
 - lib/sin/sin_type.rb
 - lib/test.txt
@@ -80,6 +185,9 @@ files:
 - lib/test3.rb
 - lib/test_new.rb
 - lib/visitors/configuration_visitor.rb
+- puppet-sec-lint-0.5.3.gem
+- puppet-sec-lint-0.5.4.gem
+- puppet-sec-lint-0.5.5.gem
 - puppet-sec-lint.gemspec
 homepage: https://github.com/TiagoR98/puppet-sec-lint
 licenses: