pwn 0.4.926 → 0.4.928

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/Gemfile +3 -3
  3. data/README.md +4 -4
  4. data/bin/pwn_bdba_scan +6 -1
  5. data/lib/pwn/sast/php_type_juggling.rb +2 -2
  6. data/lib/pwn/sast/type_script_type_juggling.rb +2 -2
  7. data/lib/pwn/version.rb +1 -1
  8. metadata +8 -8
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 49492aee847341ef09e634d752652f813666ab6c751b1e7103630f5e30895c6a
4
- data.tar.gz: 65e9cc6e778a4d42dac69f2f23ba2ccee0549be77cec59329dcddb6f57da16fe
3
+ metadata.gz: 2cf98bb0c66443991f88ab0a7cf08062a94086c7ae034e7b217adce03edef635
4
+ data.tar.gz: 2ba2b5a36bef43dce347c8a7deab8170c551b4dd8d693f1b9cbb523d77623f74
5
5
  SHA512:
6
- metadata.gz: 0af9375c6443bc146f3ddfd60a8b67c825ec581bccdf54cc6a4ca8cbb16bf7d47adda650de64e8c9084632a10f45f22fcc06231f3a38d4893a427ba15ef54b86
7
- data.tar.gz: 718927c0bbf3d43a49e90996f63bdfd3ddaed3baf92910e473fe27fa654646f8b8d4146dc350e5bcaf9eab1a920b2950924cb101b03a3658e5723e9c8d608a8b
6
+ metadata.gz: d20d2bbe90955812e95cede2b624987381a749ee5495aa8a9c3d17bd9950a51c83ae5533f1fd251d22b961aaa33e2c1ef02cea65cb9fec5a5e4214c8dd47fee1
7
+ data.tar.gz: 948cd4174843bc7521199ddda003e556b970ef67ad89ba3207bbaaf52e2b6c2e24e6ebf293dcdac16367536a4e8cf3aea39cd2e2e6111980d007032cd6bb23d8
data/Gemfile CHANGED
@@ -11,7 +11,7 @@ gemspec
11
11
  # In some circumstances custom flags are passed to gems in order
12
12
  # to build appropriately. Defer to ./reinstall_pwn_gemset.sh
13
13
  # to review these custom flags (e.g. pg, serialport, etc).
14
- gem 'activesupport', '7.1.0'
14
+ gem 'activesupport', '7.1.1'
15
15
  gem 'anemone', '0.7.2'
16
16
  gem 'authy', '3.0.1'
17
17
  gem 'aws-sdk', '3.1.0'
@@ -38,7 +38,7 @@ gem 'ipaddress', '0.8.3'
38
38
  gem 'jenkins_api_client2', '1.9.0'
39
39
  gem 'js-beautify', '0.1.8'
40
40
  gem 'json', '2.6.3'
41
- gem 'jsonpath', '1.1.4'
41
+ gem 'jsonpath', '1.1.5'
42
42
  gem 'jwt', '2.7.1'
43
43
  gem 'luhn', '1.0.2'
44
44
  gem 'mail', '2.8.1'
@@ -69,7 +69,7 @@ gem 'rmagick', '5.3.0'
69
69
  gem 'rqrcode', '2.2.0'
70
70
  gem 'rspec', '3.12.0'
71
71
  gem 'rtesseract', '3.1.3'
72
- gem 'rubocop', '1.57.0'
72
+ gem 'rubocop', '1.57.1'
73
73
  gem 'rubocop-rake', '0.6.0'
74
74
  gem 'rubocop-rspec', '2.24.1'
75
75
  gem 'ruby-audio', '1.6.1'
data/README.md CHANGED
@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
37
37
  $ rvm list gemsets
38
38
  $ gem install --verbose pwn
39
39
  $ pwn
40
- pwn[v0.4.926]:001 >>> PWN.help
40
+ pwn[v0.4.928]:001 >>> PWN.help
41
41
  ```
42
42
 
43
43
  If you're using a multi-user install of RVM do:
@@ -48,7 +48,7 @@ $ rvm use ruby-3.2.2@pwn
48
48
  $ rvm list gemsets
49
49
  $ rvmsudo gem install --verbose pwn
50
50
  $ pwn
51
- pwn[v0.4.926]:001 >>> PWN.help
51
+ pwn[v0.4.928]:001 >>> PWN.help
52
52
  ```
53
53
 
54
54
  [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -63,7 +63,7 @@ $ rvm use ruby-3.2.2@pwn
63
63
  $ gem uninstall --all --executables pwn
64
64
  $ gem install --verbose pwn
65
65
  $ pwn
66
- pwn[v0.4.926]:001 >>> PWN.help
66
+ pwn[v0.4.928]:001 >>> PWN.help
67
67
  ```
68
68
 
69
69
  If you're using a multi-user install of RVM do:
@@ -73,7 +73,7 @@ $ rvm use ruby-3.2.2@pwn
73
73
  $ rvmsudo gem uninstall --all --executables pwn
74
74
  $ rvmsudo gem install --verbose pwn
75
75
  $ pwn
76
- pwn[v0.4.926]:001 >>> PWN.help
76
+ pwn[v0.4.928]:001 >>> PWN.help
77
77
  ```
78
78
 
79
79
 
data/bin/pwn_bdba_scan CHANGED
@@ -134,7 +134,11 @@ begin
134
134
  scan_progress_busy_duration += 10
135
135
  end
136
136
 
137
- product_id = scan_progress_resp[:products].find { |p| p[:name] == CGI.escape(File.basename(target_file)) }[:product_id]
137
+ find_product = scan_progress_resp[:products].find { |p| p[:name] == CGI.escape(File.basename(target_file)) }
138
+
139
+ raise NoMethodError if find_product.nil?
140
+
141
+ product_id = find_product[:product_id]
138
142
 
139
143
  scan_report_resp = PWN::Plugins::BlackDuckBinaryAnalysis.generate_product_report(
140
144
  token: token,
@@ -145,6 +149,7 @@ begin
145
149
 
146
150
  puts "\nReport Saved to: #{report_path}"
147
151
  rescue IO::TimeoutError,
152
+ NoMethodError,
148
153
  RestClient::BadGateway,
149
154
  RestClient::BadRequest,
150
155
  RestClient::Exceptions::OpenTimeout,
data/lib/pwn/sast/php_type_juggling.rb CHANGED
@@ -35,10 +35,10 @@ module PWN
35
35
  test_case_filter = "
36
36
  grep -Fn \
37
37
  -e '==' \
38
- -e '!=' #{entry} \ |
38
+ -e '!=' #{entry} | \
39
39
  grep -v \
40
40
  -e '===' \
41
- -e '!==' \
41
+ -e '!=='
42
42
  "
43
43
 
44
44
  str = `#{test_case_filter}`.to_s.scrub
data/lib/pwn/sast/type_script_type_juggling.rb CHANGED
@@ -35,10 +35,10 @@ module PWN
35
35
  test_case_filter = "
36
36
  grep -Fn \
37
37
  -e '==' \
38
- -e '!=' #{entry} \ |
38
+ -e '!=' #{entry} | \
39
39
  grep -v \
40
40
  -e '===' \
41
- -e '!==' \
41
+ -e '!=='
42
42
  "
43
43
 
44
44
  str = `#{test_case_filter}`.to_s.scrub
data/lib/pwn/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module PWN
4
- VERSION = '0.4.926'
4
+ VERSION = '0.4.928'
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: pwn
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.4.926
4
+ version: 0.4.928
5
5
  platform: ruby
6
6
  authors:
7
7
  - 0day Inc.
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-10-11 00:00:00.000000000 Z
11
+ date: 2023-10-16 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: activesupport
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 7.1.0
19
+ version: 7.1.1
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 7.1.0
26
+ version: 7.1.1
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: anemone
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -366,14 +366,14 @@ dependencies:
366
366
  requirements:
367
367
  - - '='
368
368
  - !ruby/object:Gem::Version
369
- version: 1.1.4
369
+ version: 1.1.5
370
370
  type: :runtime
371
371
  prerelease: false
372
372
  version_requirements: !ruby/object:Gem::Requirement
373
373
  requirements:
374
374
  - - '='
375
375
  - !ruby/object:Gem::Version
376
- version: 1.1.4
376
+ version: 1.1.5
377
377
  - !ruby/object:Gem::Dependency
378
378
  name: jwt
379
379
  requirement: !ruby/object:Gem::Requirement
@@ -800,14 +800,14 @@ dependencies:
800
800
  requirements:
801
801
  - - '='
802
802
  - !ruby/object:Gem::Version
803
- version: 1.57.0
803
+ version: 1.57.1
804
804
  type: :runtime
805
805
  prerelease: false
806
806
  version_requirements: !ruby/object:Gem::Requirement
807
807
  requirements:
808
808
  - - '='
809
809
  - !ruby/object:Gem::Version
810
- version: 1.57.0
810
+ version: 1.57.1
811
811
  - !ruby/object:Gem::Dependency
812
812
  name: rubocop-rake
813
813
  requirement: !ruby/object:Gem::Requirement