pwn 0.4.926 → 0.4.928

Sign up to get free protection for your applications and to get access to all the features.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/Gemfile +3 -3
  3. data/README.md +4 -4
  4. data/bin/pwn_bdba_scan +6 -1
  5. data/lib/pwn/sast/php_type_juggling.rb +2 -2
  6. data/lib/pwn/sast/type_script_type_juggling.rb +2 -2
  7. data/lib/pwn/version.rb +1 -1
  8. metadata +8 -8
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 49492aee847341ef09e634d752652f813666ab6c751b1e7103630f5e30895c6a
4
- data.tar.gz: 65e9cc6e778a4d42dac69f2f23ba2ccee0549be77cec59329dcddb6f57da16fe
3
+ metadata.gz: 2cf98bb0c66443991f88ab0a7cf08062a94086c7ae034e7b217adce03edef635
4
+ data.tar.gz: 2ba2b5a36bef43dce347c8a7deab8170c551b4dd8d693f1b9cbb523d77623f74
5
5
  SHA512:
6
- metadata.gz: 0af9375c6443bc146f3ddfd60a8b67c825ec581bccdf54cc6a4ca8cbb16bf7d47adda650de64e8c9084632a10f45f22fcc06231f3a38d4893a427ba15ef54b86
7
- data.tar.gz: 718927c0bbf3d43a49e90996f63bdfd3ddaed3baf92910e473fe27fa654646f8b8d4146dc350e5bcaf9eab1a920b2950924cb101b03a3658e5723e9c8d608a8b
6
+ metadata.gz: d20d2bbe90955812e95cede2b624987381a749ee5495aa8a9c3d17bd9950a51c83ae5533f1fd251d22b961aaa33e2c1ef02cea65cb9fec5a5e4214c8dd47fee1
7
+ data.tar.gz: 948cd4174843bc7521199ddda003e556b970ef67ad89ba3207bbaaf52e2b6c2e24e6ebf293dcdac16367536a4e8cf3aea39cd2e2e6111980d007032cd6bb23d8
data/Gemfile CHANGED
@@ -11,7 +11,7 @@ gemspec
11
11
  # In some circumstances custom flags are passed to gems in order
12
12
  # to build appropriately. Defer to ./reinstall_pwn_gemset.sh
13
13
  # to review these custom flags (e.g. pg, serialport, etc).
14
- gem 'activesupport', '7.1.0'
14
+ gem 'activesupport', '7.1.1'
15
15
  gem 'anemone', '0.7.2'
16
16
  gem 'authy', '3.0.1'
17
17
  gem 'aws-sdk', '3.1.0'
@@ -38,7 +38,7 @@ gem 'ipaddress', '0.8.3'
38
38
  gem 'jenkins_api_client2', '1.9.0'
39
39
  gem 'js-beautify', '0.1.8'
40
40
  gem 'json', '2.6.3'
41
- gem 'jsonpath', '1.1.4'
41
+ gem 'jsonpath', '1.1.5'
42
42
  gem 'jwt', '2.7.1'
43
43
  gem 'luhn', '1.0.2'
44
44
  gem 'mail', '2.8.1'
@@ -69,7 +69,7 @@ gem 'rmagick', '5.3.0'
69
69
  gem 'rqrcode', '2.2.0'
70
70
  gem 'rspec', '3.12.0'
71
71
  gem 'rtesseract', '3.1.3'
72
- gem 'rubocop', '1.57.0'
72
+ gem 'rubocop', '1.57.1'
73
73
  gem 'rubocop-rake', '0.6.0'
74
74
  gem 'rubocop-rspec', '2.24.1'
75
75
  gem 'ruby-audio', '1.6.1'
data/README.md CHANGED
@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
37
37
  $ rvm list gemsets
38
38
  $ gem install --verbose pwn
39
39
  $ pwn
40
- pwn[v0.4.926]:001 >>> PWN.help
40
+ pwn[v0.4.928]:001 >>> PWN.help
41
41
  ```
42
42
 
43
43
  If you're using a multi-user install of RVM do:
@@ -48,7 +48,7 @@ $ rvm use ruby-3.2.2@pwn
48
48
  $ rvm list gemsets
49
49
  $ rvmsudo gem install --verbose pwn
50
50
  $ pwn
51
- pwn[v0.4.926]:001 >>> PWN.help
51
+ pwn[v0.4.928]:001 >>> PWN.help
52
52
  ```
53
53
 
54
54
  [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -63,7 +63,7 @@ $ rvm use ruby-3.2.2@pwn
63
63
  $ gem uninstall --all --executables pwn
64
64
  $ gem install --verbose pwn
65
65
  $ pwn
66
- pwn[v0.4.926]:001 >>> PWN.help
66
+ pwn[v0.4.928]:001 >>> PWN.help
67
67
  ```
68
68
 
69
69
  If you're using a multi-user install of RVM do:
@@ -73,7 +73,7 @@ $ rvm use ruby-3.2.2@pwn
73
73
  $ rvmsudo gem uninstall --all --executables pwn
74
74
  $ rvmsudo gem install --verbose pwn
75
75
  $ pwn
76
- pwn[v0.4.926]:001 >>> PWN.help
76
+ pwn[v0.4.928]:001 >>> PWN.help
77
77
  ```
78
78
 
79
79
 
data/bin/pwn_bdba_scan CHANGED
@@ -134,7 +134,11 @@ begin
134
134
  scan_progress_busy_duration += 10
135
135
  end
136
136
 
137
- product_id = scan_progress_resp[:products].find { |p| p[:name] == CGI.escape(File.basename(target_file)) }[:product_id]
137
+ find_product = scan_progress_resp[:products].find { |p| p[:name] == CGI.escape(File.basename(target_file)) }
138
+
139
+ raise NoMethodError if find_product.nil?
140
+
141
+ product_id = find_product[:product_id]
138
142
 
139
143
  scan_report_resp = PWN::Plugins::BlackDuckBinaryAnalysis.generate_product_report(
140
144
  token: token,
@@ -145,6 +149,7 @@ begin
145
149
 
146
150
  puts "\nReport Saved to: #{report_path}"
147
151
  rescue IO::TimeoutError,
152
+ NoMethodError,
148
153
  RestClient::BadGateway,
149
154
  RestClient::BadRequest,
150
155
  RestClient::Exceptions::OpenTimeout,
data/lib/pwn/sast/php_type_juggling.rb CHANGED
@@ -35,10 +35,10 @@ module PWN
35
35
  test_case_filter = "
36
36
  grep -Fn \
37
37
  -e '==' \
38
- -e '!=' #{entry} \ |
38
+ -e '!=' #{entry} | \
39
39
  grep -v \
40
40
  -e '===' \
41
- -e '!==' \
41
+ -e '!=='
42
42
  "
43
43
 
44
44
  str = `#{test_case_filter}`.to_s.scrub
data/lib/pwn/sast/type_script_type_juggling.rb CHANGED
@@ -35,10 +35,10 @@ module PWN
35
35
  test_case_filter = "
36
36
  grep -Fn \
37
37
  -e '==' \
38
- -e '!=' #{entry} \ |
38
+ -e '!=' #{entry} | \
39
39
  grep -v \
40
40
  -e '===' \
41
- -e '!==' \
41
+ -e '!=='
42
42
  "
43
43
 
44
44
  str = `#{test_case_filter}`.to_s.scrub
data/lib/pwn/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module PWN
4
- VERSION = '0.4.926'
4
+ VERSION = '0.4.928'
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: pwn
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.4.926
4
+ version: 0.4.928
5
5
  platform: ruby
6
6
  authors:
7
7
  - 0day Inc.
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-10-11 00:00:00.000000000 Z
11
+ date: 2023-10-16 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: activesupport
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 7.1.0
19
+ version: 7.1.1
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 7.1.0
26
+ version: 7.1.1
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: anemone
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -366,14 +366,14 @@ dependencies:
366
366
  requirements:
367
367
  - - '='
368
368
  - !ruby/object:Gem::Version
369
- version: 1.1.4
369
+ version: 1.1.5
370
370
  type: :runtime
371
371
  prerelease: false
372
372
  version_requirements: !ruby/object:Gem::Requirement
373
373
  requirements:
374
374
  - - '='
375
375
  - !ruby/object:Gem::Version
376
- version: 1.1.4
376
+ version: 1.1.5
377
377
  - !ruby/object:Gem::Dependency
378
378
  name: jwt
379
379
  requirement: !ruby/object:Gem::Requirement
@@ -800,14 +800,14 @@ dependencies:
800
800
  requirements:
801
801
  - - '='
802
802
  - !ruby/object:Gem::Version
803
- version: 1.57.0
803
+ version: 1.57.1
804
804
  type: :runtime
805
805
  prerelease: false
806
806
  version_requirements: !ruby/object:Gem::Requirement
807
807
  requirements:
808
808
  - - '='
809
809
  - !ruby/object:Gem::Version
810
- version: 1.57.0
810
+ version: 1.57.1
811
811
  - !ruby/object:Gem::Dependency
812
812
  name: rubocop-rake
813
813
  requirement: !ruby/object:Gem::Requirement