RubyGems - pwn - Versions diffs - 0.5.378 → 0.5.380 - Mend

pwn 0.5.378 → 0.5.380

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (53) hide show

checksums.yaml +4 -4
data/README.md +3 -3
data/bin/pwn_sast +11 -10
data/lib/pwn/plugins/file_fu.rb +27 -6
data/lib/pwn/plugins/git.rb +2 -5
data/lib/pwn/reports/sast.rb +2 -2
data/lib/pwn/sast/amqp_connect_as_guest.rb +5 -8
data/lib/pwn/sast/apache_file_system_util_api.rb +5 -8
data/lib/pwn/sast/aws.rb +5 -8
data/lib/pwn/sast/banned_function_calls_c.rb +5 -8
data/lib/pwn/sast/base64.rb +5 -8
data/lib/pwn/sast/beef_hook.rb +3 -6
data/lib/pwn/sast/cmd_execution_java.rb +3 -6
data/lib/pwn/sast/cmd_execution_python.rb +3 -6
data/lib/pwn/sast/cmd_execution_ruby.rb +3 -6
data/lib/pwn/sast/cmd_execution_scala.rb +3 -6
data/lib/pwn/sast/csrf.rb +3 -6
data/lib/pwn/sast/deserial_java.rb +3 -6
data/lib/pwn/sast/emoticon.rb +3 -6
data/lib/pwn/sast/eval.rb +3 -6
data/lib/pwn/sast/factory.rb +3 -6
data/lib/pwn/sast/http_authorization_header.rb +3 -6
data/lib/pwn/sast/inner_html.rb +3 -6
data/lib/pwn/sast/keystore.rb +3 -6
data/lib/pwn/sast/local_storage.rb +3 -6
data/lib/pwn/sast/location_hash.rb +3 -6
data/lib/pwn/sast/log4j.rb +3 -6
data/lib/pwn/sast/logger.rb +3 -6
data/lib/pwn/sast/md5.rb +3 -6
data/lib/pwn/sast/outer_html.rb +3 -6
data/lib/pwn/sast/padding_oracle.rb +3 -6
data/lib/pwn/sast/password.rb +3 -6
data/lib/pwn/sast/php_input_mechanisms.rb +3 -6
data/lib/pwn/sast/php_type_juggling.rb +3 -6
data/lib/pwn/sast/pom_version.rb +3 -6
data/lib/pwn/sast/port.rb +3 -6
data/lib/pwn/sast/post_message.rb +3 -6
data/lib/pwn/sast/private_key.rb +3 -6
data/lib/pwn/sast/redirect.rb +3 -6
data/lib/pwn/sast/redos.rb +3 -6
data/lib/pwn/sast/shell.rb +3 -6
data/lib/pwn/sast/signature.rb +3 -6
data/lib/pwn/sast/sql.rb +3 -6
data/lib/pwn/sast/ssl.rb +3 -6
data/lib/pwn/sast/sudo.rb +3 -6
data/lib/pwn/sast/task_tag.rb +3 -6
data/lib/pwn/sast/throw_errors.rb +3 -6
data/lib/pwn/sast/token.rb +3 -6
data/lib/pwn/sast/type_script_type_juggling.rb +3 -6
data/lib/pwn/sast/version.rb +3 -6
data/lib/pwn/sast/window_location_hash.rb +3 -6
data/lib/pwn/version.rb +1 -1
metadata +1 -1

data/lib/pwn/sast/version.rb CHANGED Viewed

@@ -21,7 +21,7 @@ module PWN
         result_arr = []
         logger_results = ''
-        PWN::Plugins::FileFu.recurse_dir(dir_path: dir_path) do |entry|
+        PWN::Plugins::FileFu.recurse_in_dir(dir_path: dir_path) do |entry|
           if File.file?(entry) && File.basename(entry) !~ /^pwn.+(html|json|db)$/ && File.basename(entry) !~ /\.JS-BEAUTIFIED$/ && entry !~ /test/i
             line_no_and_contents_arr = []
             entry_beautified = false
@@ -62,11 +62,8 @@ module PWN
               while line_no_count > current_count
                 line_no = line_contents_split[current_count]
                 contents = line_contents_split[current_count + 1]
-                if Dir.exist?("#{dir_path}/.git") ||
-                   Dir.exist?('.git')
-                  repo_root = dir_path
-                  repo_root = '.' if Dir.exist?('.git')
+                if Dir.exist?('.git')
+                  repo_root = '.'
                   author = PWN::Plugins::Git.get_author(
                     repo_root: repo_root,

data/lib/pwn/sast/window_location_hash.rb CHANGED Viewed

@@ -21,7 +21,7 @@ module PWN
         result_arr = []
         logger_results = ''
-        PWN::Plugins::FileFu.recurse_dir(dir_path: dir_path) do |entry|
+        PWN::Plugins::FileFu.recurse_in_dir(dir_path: dir_path) do |entry|
           if File.file?(entry) && File.basename(entry) !~ /^pwn.+(html|json|db)$/ && File.basename(entry) !~ /\.JS-BEAUTIFIED$/ && entry !~ /test/i
             line_no_and_contents_arr = []
             entry_beautified = false
@@ -61,11 +61,8 @@ module PWN
               while line_no_count > current_count
                 line_no = line_contents_split[current_count]
                 contents = line_contents_split[current_count + 1]
-                if Dir.exist?("#{dir_path}/.git") ||
-                   Dir.exist?('.git')
-                  repo_root = dir_path
-                  repo_root = '.' if Dir.exist?('.git')
+                if Dir.exist?('.git')
+                  repo_root = '.'
                   author = PWN::Plugins::Git.get_author(
                     repo_root: repo_root,

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.5.378'
+  VERSION = '0.5.380'
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.378
+  version: 0.5.380
 platform: ruby
 authors:
 - 0day Inc.