pwn 0.5.303 → 0.5.305
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/Gemfile +3 -3
- data/README.md +3 -3
- data/lib/pwn/plugins/jira_server.rb +2 -2
- data/lib/pwn/reports/sast.rb +2 -1
- data/lib/pwn/version.rb +1 -1
- data/third_party/pwn_rdoc.jsonl +4 -2
- metadata +7 -7
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 7212f39e5a45f10409275c4a73a5c7adab8792e5cc0e23bd489741193ef7140a
|
|
4
|
+
data.tar.gz: 12bdcbd741a7757d8acb612757c7f7eab0aa8bb3f1029f060ce728e44d86c497
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 7cb9c161c8fb78f1e5ce98f722b5b996af9c1500be12938ff7696a76be7fc8b12bc8715143b64d68d53e9ef7b943cdfd15ec26285e07333bdb4a0a88c197b2c9
|
|
7
|
+
data.tar.gz: dbe25739420029d73a4bec8d6a4f9a70ae26e355f016862f188683ca126d2496764e49a96751f470c5e043cb498f9aebd1051c05f9ec8ec5281741440857a8dd
|
data/Gemfile
CHANGED
|
@@ -72,14 +72,14 @@ gem 'pry-doc', '1.6.0'
|
|
|
72
72
|
gem 'rake', '13.3.0'
|
|
73
73
|
gem 'rb-readline', '0.5.5'
|
|
74
74
|
gem 'rbvmomi2', '3.8.0'
|
|
75
|
-
gem 'rdoc', '6.14.
|
|
75
|
+
gem 'rdoc', '6.14.2'
|
|
76
76
|
gem 'rest-client', '2.1.0'
|
|
77
77
|
gem 'rex', '2.0.13'
|
|
78
78
|
gem 'rmagick', '6.1.1'
|
|
79
79
|
gem 'rqrcode', '3.1.0'
|
|
80
80
|
gem 'rspec', '3.13.1'
|
|
81
81
|
gem 'rtesseract', '3.1.4'
|
|
82
|
-
gem 'rubocop', '1.
|
|
82
|
+
gem 'rubocop', '1.78.0'
|
|
83
83
|
gem 'rubocop-rake', '0.7.1'
|
|
84
84
|
gem 'rubocop-rspec', '3.6.0'
|
|
85
85
|
gem 'ruby-audio', '1.6.1'
|
|
@@ -93,7 +93,7 @@ gem 'selenium-devtools', '0.138.0'
|
|
|
93
93
|
gem 'slack-ruby-client', '2.6.0'
|
|
94
94
|
gem 'socksify', '1.7.1'
|
|
95
95
|
gem 'spreadsheet', '1.3.4'
|
|
96
|
-
gem 'sqlite3', '2.7.
|
|
96
|
+
gem 'sqlite3', '2.7.2'
|
|
97
97
|
gem 'thin', '2.0.1'
|
|
98
98
|
gem 'tty-prompt', '0.23.1'
|
|
99
99
|
gem 'tty-spinner', '0.9.3'
|
data/README.md
CHANGED
|
@@ -37,7 +37,7 @@ $ cd /opt/pwn
|
|
|
37
37
|
$ ./install.sh
|
|
38
38
|
$ ./install.sh ruby-gem
|
|
39
39
|
$ pwn
|
|
40
|
-
pwn[v0.5.
|
|
40
|
+
pwn[v0.5.305]:001 >>> PWN.help
|
|
41
41
|
```
|
|
42
42
|
|
|
43
43
|
[](https://youtu.be/G7iLUY4FzsI)
|
|
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.4@pwn
|
|
|
52
52
|
$ gem uninstall --all --executables pwn
|
|
53
53
|
$ gem install --verbose pwn
|
|
54
54
|
$ pwn
|
|
55
|
-
pwn[v0.5.
|
|
55
|
+
pwn[v0.5.305]:001 >>> PWN.help
|
|
56
56
|
```
|
|
57
57
|
|
|
58
58
|
If you're using a multi-user install of RVM do:
|
|
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.4@pwn
|
|
|
62
62
|
$ rvmsudo gem uninstall --all --executables pwn
|
|
63
63
|
$ rvmsudo gem install --verbose pwn
|
|
64
64
|
$ pwn
|
|
65
|
-
pwn[v0.5.
|
|
65
|
+
pwn[v0.5.305]:001 >>> PWN.help
|
|
66
66
|
```
|
|
67
67
|
|
|
68
68
|
PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`. The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:
|
|
@@ -420,7 +420,7 @@ module PWN
|
|
|
420
420
|
http_method = :post
|
|
421
421
|
rest_call = "issue/#{issue}/comment"
|
|
422
422
|
http_body = { body: comment }
|
|
423
|
-
http_body[:author] = author if author
|
|
423
|
+
http_body[:author] = { key: author } if author
|
|
424
424
|
when :delete
|
|
425
425
|
http_method = :delete
|
|
426
426
|
rest_call = "issue/#{issue}/comment/#{comment_id}"
|
|
@@ -429,7 +429,7 @@ module PWN
|
|
|
429
429
|
http_method = :put
|
|
430
430
|
rest_call = "issue/#{issue}/comment/#{comment_id}"
|
|
431
431
|
http_body = { body: comment }
|
|
432
|
-
http_body[:author] = author if author
|
|
432
|
+
http_body[:author] = { key: author } if author
|
|
433
433
|
end
|
|
434
434
|
|
|
435
435
|
rest_call(
|
data/lib/pwn/reports/sast.rb
CHANGED
|
@@ -229,9 +229,10 @@ module PWN
|
|
|
229
229
|
var canned_email = email.replace("<", "").replace(">", "") + '?subject=Potential%20Bug%20within%20Source%20File:%20'+ encodeURIComponent(row.filename) +'&body=Greetings,%0A%0AThe%20following%20information%20likely%20represents%20a%20bug%20discovered%20through%20automated%20security%20testing%20initiatives:%0A%0A' + encodeURIComponent(canned_email_results) + 'Is%20this%20something%20that%20can%20be%20addressed%20immediately%20or%20would%20filing%20a%20bug%20be%20more%20appropriate?%20%20Please%20let%20us%20know%20at%20your%20earliest%20convenience%20to%20ensure%20we%20can%20meet%20security%20expectations%20for%20this%20release.%20%20Thanks%20and%20have%20a%20great%20day!';
|
|
230
230
|
|
|
231
231
|
domain = line_entry_uri.replace('http://','').replace('https://','').split(/[/?#]/)[0];
|
|
232
|
-
if (domain.includes('stash')) {
|
|
232
|
+
if (domain.includes('stash') || domain.includes('bitbucket') || domain.includes('gerrit')) {
|
|
233
233
|
to_line_number = line_entry_uri + '#' + data[i]['line_no'];
|
|
234
234
|
} else {
|
|
235
|
+
// e.g. GitHub, GitLab, etc.
|
|
235
236
|
to_line_number = line_entry_uri + '#L' + data[i]['line_no'];
|
|
236
237
|
}
|
|
237
238
|
|
data/lib/pwn/version.rb
CHANGED
data/third_party/pwn_rdoc.jsonl
CHANGED
|
@@ -665,14 +665,16 @@
|
|
|
665
665
|
{"messages":[{"role":"user","content":"PWN::Plugins::Jenkins.list_nested_jobs Usage"},{"role":"assistant","content":"`PWN::Plugins::Jenkins.list_nested_jobs`: Supported Method Parameters\n\nPWN::Plugins::Jenkins.list_nested_jobs(\n\njenkins_obj: 'required jenkins_obj returned from #connect method',\nview_path: 'required view path to list jobs'\n\n)\n"}]}
|
|
666
666
|
{"messages":[{"role":"user","content":"PWN::Plugins::Jenkins.list_nested_views Usage"},{"role":"assistant","content":"`PWN::Plugins::Jenkins.list_nested_views`: Supported Method Parameters\n\nPWN::Plugins::Jenkins.list_nested_views(\n\njenkins_obj: 'required jenkins_obj returned from #connect method',\nview_path: 'required view path list sub-views'\n\n)\n"}]}
|
|
667
667
|
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.authors Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.authors`: Author(s)\n\n0day Inc. <support@0dayinc.com>\n"}]}
|
|
668
|
-
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.create_issue Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.create_issue`: Supported Method Parameters\n\nissue_resp = PWN::Plugins::JiraServer.create_issue(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nproject_key: 'required - project key (e.g. PWN)',\nsummary: 'required - summary of the issue (e.g. Epic for PWN-1337)',\nissue_type: 'required - issue type (e.g. :epic, :story, :bug)',\ndescription: 'optional - description of the issue',\nepic_name: 'optional - name of the epic',\nadditional_fields: 'optional - additional fields to set in the issue (e.g. labels, components, custom fields, etc.)'\
|
|
668
|
+
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.create_issue Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.create_issue`: Supported Method Parameters\n\nissue_resp = PWN::Plugins::JiraServer.create_issue(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nproject_key: 'required - project key (e.g. PWN)',\nsummary: 'required - summary of the issue (e.g. Epic for PWN-1337)',\nissue_type: 'required - issue type (e.g. :epic, :story, :bug)',\ndescription: 'optional - description of the issue',\nepic_name: 'optional - name of the epic',\nadditional_fields: 'optional - additional fields to set in the issue (e.g. labels, components, custom fields, etc.)'\nattachments: 'optional - array of attachment paths to upload to the issue (e.g. [\"/tmp/file1.txt\", \"/tmp/file2.txt\"])',\ncomment: 'optional - comment to add to the issue (e.g. \"This is a comment\")'\n\n)\n"}]}
|
|
669
|
+
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.delete_attachment Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.delete_attachment`: Supported Method Parameters\n\nissue_resp = PWN::Plugins::JiraServer.delete_attachment(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nid: 'required - attachment ID to delete (e.g. 10000) found in #get_issue method'\n\n)\n"}]}
|
|
669
670
|
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.delete_issue Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.delete_issue`: Supported Method Parameters\n\nissue_resp = PWN::Plugins::JiraServer.delete_issue(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nissue: 'required - issue to delete (e.g. Bug, Issue, Story, or Epic ID)'\n\n)\n"}]}
|
|
670
671
|
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.get_all_fields Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.get_all_fields`: Supported Method Parameters\n\nall_fields = PWN::Plugins::JiraServer.get_all_fields(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token'\n\n)\n"}]}
|
|
671
672
|
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.get_issue Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.get_issue`: Supported Method Parameters\n\nissue_resp = PWN::Plugins::JiraServer.get_issue(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nissue: 'required - issue to lookup (e.g. Bug, Issue, Story, or Epic ID)',\nparams: 'optional - additional parameters to pass in the URI (e.g. fields, expand, etc.)'\n\n)\n"}]}
|
|
672
673
|
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.get_user Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.get_user`: Supported Method Parameters\n\nuser = PWN::Plugins::JiraServer.get_user(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nusername: 'required - username to lookup (e.g. jane.doe)',\nparams: 'optional - additional parameters to pass in the URI (e.g. expand, etc.)'\n\n)\n"}]}
|
|
673
674
|
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.help Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.help`: "}]}
|
|
675
|
+
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.issue_comment Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.issue_comment`: Supported Method Parameters\n\nissue_resp = PWN::Plugins::JiraServer.issue_comment(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nissue: 'required - issue to delete (e.g. Bug, Issue, Story, or Epic ID)',\ncomment_action: 'required - action to perform on the issue comment (e.g. :delete, :add, :update - Defaults to :add)',\ncomment_id: 'optional - comment ID to delete or update (e.g. 10000)',\nauthor: 'optional - author of the comment (e.g. \"jane.doe\")',\ncomment: 'optional - comment to add or update in the issue (e.g. \"This is a comment\")'\n\n)\n"}]}
|
|
674
676
|
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.rest_call Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.rest_call`: Supported Method Parameters\n\nrest_call(\n\ntoken: 'required - personal access token',\nhttp_method: 'optional HTTP method (defaults to GET)',\nrest_call: 'required rest call to make per the schema',\nparams: 'optional params passed in the URI or HTTP Headers',\nhttp_body: 'optional HTTP body sent in HTTP methods that support it e.g. POST'\n\n)\n"}]}
|
|
675
|
-
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.update_issue Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.update_issue`: Supported Method Parameters\n\nissue_resp = PWN::Plugins::JiraServer.update_issue(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nfields: 'required - fields to update in the issue (e.g. summary, description, labels, components, custom fields, etc.)',\
|
|
677
|
+
{"messages":[{"role":"user","content":"PWN::Plugins::JiraServer.update_issue Usage"},{"role":"assistant","content":"`PWN::Plugins::JiraServer.update_issue`: Supported Method Parameters\n\nissue_resp = PWN::Plugins::JiraServer.update_issue(\n\nbase_api_uri: 'required - base URI for Jira (e.g. https:/jira.corp.com/rest/api/latest)',\ntoken: 'required - personal access token',\nfields: 'required - fields to update in the issue (e.g. summary, description, labels, components, custom fields, etc.)',\nattachments: 'optional - array of attachment paths to upload to the issue (e.g. [\"/tmp/file1.txt\", \"/tmp/file2.txt\"])',\n\n)\n"}]}
|
|
676
678
|
{"messages":[{"role":"user","content":"PWN::Plugins::Log.append Usage"},{"role":"assistant","content":"`PWN::Plugins::Log.append`: Supported Method Parameters\n\nPWN::Log.create( )\n"}]}
|
|
677
679
|
{"messages":[{"role":"user","content":"PWN::Plugins::Log.authors Usage"},{"role":"assistant","content":"`PWN::Plugins::Log.authors`: Author(s)\n\n0day Inc. <support@0dayinc.com>\n"}]}
|
|
678
680
|
{"messages":[{"role":"user","content":"PWN::Plugins::Log.help Usage"},{"role":"assistant","content":"`PWN::Plugins::Log.help`: "}]}
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: pwn
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.5.
|
|
4
|
+
version: 0.5.305
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- 0day Inc.
|
|
@@ -827,14 +827,14 @@ dependencies:
|
|
|
827
827
|
requirements:
|
|
828
828
|
- - '='
|
|
829
829
|
- !ruby/object:Gem::Version
|
|
830
|
-
version: 6.14.
|
|
830
|
+
version: 6.14.2
|
|
831
831
|
type: :development
|
|
832
832
|
prerelease: false
|
|
833
833
|
version_requirements: !ruby/object:Gem::Requirement
|
|
834
834
|
requirements:
|
|
835
835
|
- - '='
|
|
836
836
|
- !ruby/object:Gem::Version
|
|
837
|
-
version: 6.14.
|
|
837
|
+
version: 6.14.2
|
|
838
838
|
- !ruby/object:Gem::Dependency
|
|
839
839
|
name: rest-client
|
|
840
840
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -925,14 +925,14 @@ dependencies:
|
|
|
925
925
|
requirements:
|
|
926
926
|
- - '='
|
|
927
927
|
- !ruby/object:Gem::Version
|
|
928
|
-
version: 1.
|
|
928
|
+
version: 1.78.0
|
|
929
929
|
type: :runtime
|
|
930
930
|
prerelease: false
|
|
931
931
|
version_requirements: !ruby/object:Gem::Requirement
|
|
932
932
|
requirements:
|
|
933
933
|
- - '='
|
|
934
934
|
- !ruby/object:Gem::Version
|
|
935
|
-
version: 1.
|
|
935
|
+
version: 1.78.0
|
|
936
936
|
- !ruby/object:Gem::Dependency
|
|
937
937
|
name: rubocop-rake
|
|
938
938
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -1093,14 +1093,14 @@ dependencies:
|
|
|
1093
1093
|
requirements:
|
|
1094
1094
|
- - '='
|
|
1095
1095
|
- !ruby/object:Gem::Version
|
|
1096
|
-
version: 2.7.
|
|
1096
|
+
version: 2.7.2
|
|
1097
1097
|
type: :runtime
|
|
1098
1098
|
prerelease: false
|
|
1099
1099
|
version_requirements: !ruby/object:Gem::Requirement
|
|
1100
1100
|
requirements:
|
|
1101
1101
|
- - '='
|
|
1102
1102
|
- !ruby/object:Gem::Version
|
|
1103
|
-
version: 2.7.
|
|
1103
|
+
version: 2.7.2
|
|
1104
1104
|
- !ruby/object:Gem::Dependency
|
|
1105
1105
|
name: thin
|
|
1106
1106
|
requirement: !ruby/object:Gem::Requirement
|