RubyGems - pwn - Versions diffs - 0.4.717 → 0.4.719 - Mend

pwn 0.4.717 → 0.4.719

Files changed (7) hide show

checksums.yaml +4 -4
data/Gemfile +1 -1
data/README.md +2 -2
data/bin/pwn_defectdojo_importscan +7 -1
data/lib/pwn/plugins/defect_dojo.rb +6 -2
data/lib/pwn/version.rb +1 -1
metadata +4 -4

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 35af294fa75934846aa2fd969d52c4ba798e147c4620bcfcbd930fef4f74ef6e
-  data.tar.gz: c769255914a70264605782b8ff3ef1f6576e7fdcd15f42b9e8bb09f81603ec46
+  metadata.gz: d5a7a93b7b534675f369a97e9ab0654d485a9d6c0f6c1b954011d5a95c000391
+  data.tar.gz: cbd332f8a8577d3438348ff5a6205152f4a432fc15071e7e0a92db9e90d7082b
 SHA512:
-  metadata.gz: bcbd6a30260ec0189251de231e7471800633819c857d9dba50f2fa901f98cc9e234fb6e1c0cafe5d1e3701daee945d025f7f42c456df85654cc856c1d4c8c9cd
-  data.tar.gz: 97e336fd06e723d534ad1d300ad2b360349e11d362090aed591d894725875eb8ec600101b2f68ef2f6af341a092b46b3d3b877b527b8c29afea982147b14cf5f
+  metadata.gz: 7227ac0c69e95f9362712d757db641959c3507fe17511c2f0dbd7a19b454e730c9a51c394a553f463b3d2e47020add3cb5548270524f00d0e0547e7dc09cefac
+  data.tar.gz: 1c623f506c519b69fea6e602205e3c9ff8f20a618210ea524fd55f6870e7e5f0e33cf1a883936819a1dd6cbc8d4f3faf8879f28cd40de7e60f6b716a0f491d28

data/Gemfile CHANGED Viewed

@@ -16,7 +16,7 @@ gem 'anemone', '0.7.2'
 gem 'authy', '3.0.1'
 gem 'aws-sdk', '3.1.0'
 gem 'bettercap', '1.6.2'
-gem 'brakeman', '5.4.1'
+gem 'brakeman', '6.0.0'
 gem 'bson', '4.15.0'
 gem 'bundler', '>=2.4.13'
 gem 'bundler-audit', '0.9.1'

data/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.717]:001 >>> PWN.help
+pwn[v0.4.719]:001 >>> PWN.help
 ```
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.2.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.717]:001 >>> PWN.help
+pwn[v0.4.719]:001 >>> PWN.help
 ```

data/bin/pwn_defectdojo_importscan CHANGED Viewed

@@ -57,6 +57,10 @@ OptionParser.new do |options|
   options.on('-v', '--[no-]verified', '<Optional - flag finding as verified by a tester (defaults to false)') do |v|
     opts[:verified] = v
   end
+  options.on('-g', '--create-finding-groups', '<Optional - group similar findings into one finding (defaults to false)') do |g|
+    opts[:create_finding_groups] = g
+  end
 end.parse!
 if opts.empty?
@@ -79,6 +83,7 @@ tags = opts[:tags]
 minimum_severity = opts[:minimum_severity]
 scan_date = opts[:scan_date]
 verified = opts[:verified]
+create_findings_groups = opts[:create_finding_groups]
 begin
   dd_obj = PWN::Plugins::DefectDojo.login(
@@ -97,7 +102,8 @@ begin
     tags: tags,
     minimum_severity: minimum_severity,
     scan_date: scan_date,
-    verified: verified
+    verified: verified,
+    create_findings_groups: create_findings_groups
   )
 rescue StandardError => e
   raise e

data/lib/pwn/plugins/defect_dojo.rb CHANGED Viewed

@@ -386,7 +386,8 @@ module PWN
       #   tags: 'optional - comma-delimited list of tag names to tie to scan',
       #   minimum_severity: 'optional - minimum finding severity Info||Low||Medium||High||Critical (Defaults to Info)',
       #   scan_date: 'optional - date in which scan was kicked off (defaults to now)',
-      #   verified: 'optional - flag finding as verified by a tester (defaults to false)'
+      #   verified: 'optional - flag finding as verified by a tester (defaults to false)',
+      #   create_finding_groups: 'optional - flag to create finding groups (defaults to false)'
       # )
       public_class_method def self.importscan(opts = {})
@@ -462,6 +463,8 @@ module PWN
         # Defaults to false
         opts[:verified] ? (http_body[:verified] = true) : (http_body[:verified] = false)
+        opts[:create_finding_groups] ? (http_body[:create_finding_groups_for_all_findings] = true) : (http_body[:create_finding_groups_for_all_findings] = false)
         api_path = 'import-scan/'
         api_path = 'importscan/' if api_version == 'v1'
@@ -719,7 +722,8 @@ module PWN
             tags: 'optional - comma-delimited list of tag names to tie to scan',
             minimum_severity: 'optional - minimum finding severity Info||Low||Medium||High||Critical (Defaults to Info)',
             scan_date: 'optional - date in which scan was kicked off (defaults to now)',
-            verified: 'optional - flag finding as verified by a tester (defaults to false)'
+            verified: 'optional - flag finding as verified by a tester (defaults to false)',
+            create_finding_groups: 'optional - flag to create finding groups (defaults to false)'
           )
           reimportscan_response = #{self}.reimportscan(

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.4.717'
+  VERSION = '0.4.719'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.717
+  version: 0.4.719
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-05-24 00:00:00.000000000 Z
+date: 2023-05-31 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -86,14 +86,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 5.4.1
+        version: 6.0.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 5.4.1
+        version: 6.0.0
 - !ruby/object:Gem::Dependency
   name: bson
   requirement: !ruby/object:Gem::Requirement