pwn 0.5.573 → 0.5.587

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 33e312831eb63249fad1a0f98b4386085255ee84188e76ddb1259ce9a5083e34
-  data.tar.gz: e61b59c15b896fbc3c5206e5e95a796d5e0f279d0c401b506b3fc075846426bf
+  metadata.gz: f9fa782a14166989dece1f555f290ef67a78a1d1ed9337c7332fbe1c1f9c0a71
+  data.tar.gz: e9b6b9ed9e876c4f565f4bd5ccfb554956855fbb663453bcac3c111a8d9b1df9
 SHA512:
-  metadata.gz: e22d19452e6316c0aca8a4059b734302177eb03fe8bd59765fd0473fec096b3761dcc784fe0976241b21ab3e31349a2e7776a1ccccdb963edff63e24189308d8
-  data.tar.gz: ec98c1cc869f2e91b40cbc0be9ba05ae4c82ef5721e49dd959c3610d06dc1c9985b3580a464a1fc274a55762e27405140de52d096ce34f18fd74f19c87819b67
+  metadata.gz: 46fed9cba9560a2eabe4a28407da28feb57c289aeaee888e4542612e21e708d96e382b929f98e685029970f5b4cf9fafb95e799f6cb60cc54966b21763a0d10b
+  data.tar.gz: 68cd962bcae4f8ad5816cb598a2b87706e10b597d7243f04e233165c578d83409298938b17d81518f09c2364890edd52c1d1560316f98029edd6560eaf05ecc9

data/README.md

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.573]:001 >>> PWN.help
+pwn[v0.5.587]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-4.0.5@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.573]:001 >>> PWN.help
+pwn[v0.5.587]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-4.0.5@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.573]:001 >>> PWN.help
+pwn[v0.5.587]:001 >>> PWN.help
 ```
 
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/Rakefile

@@ -12,9 +12,13 @@ RuboCop::RakeTask.new do |rubocop|
   rubocop.options = ['-E', '-S', '-c', config_file]
 end
 
-RDoc::Task.new do |rdoc|
-  rdoc.rdoc_files.include('lib/**/*.rb')
-  rdoc.rdoc_dir = 'rdoc'
+if defined?(RDoc::Task)
+  RDoc::Task.new do |rdoc|
+    rdoc.rdoc_files.include('lib/**/*.rb')
+    rdoc.rdoc_dir = 'rdoc'
+  end
 end
 
-task default: %i[spec rubocop rdoc]
+default_tasks = %i[spec rubocop]
+default_tasks << :rdoc if defined?(RDoc::Task)
+task default: default_tasks

data/build_gem.sh

@@ -16,6 +16,11 @@ old_ruby_version=`cat ${pwn_root}/.ruby-version`
 # Default Strategy is to merge codebase
 sudo chown -R $USER:$USER $pwn_root
 git config pull.rebase false 
+# Sync fork with upstream to avoid merge conflicts and ensure we are building the latest codebase
+git remote -v | grep 'upstream' || git remote add upstream https://github.com/0dayinc/pwn.git
+git fetch upstream
+git checkout master
+git merge upstream/master
 git pull
 new_ruby_version=`cat ${pwn_root}/.ruby-version`
 

data/git_commit.sh

@@ -9,6 +9,11 @@ if (( $# == 3 )); then
   sudo chown -R $USER:$USER /opt/pwn
   git config pull.rebase false
   git config commit.gpgsign true
+  # Sync fork with upstream to avoid merge conflicts and ensure latest code is being worked on
+  git remote -v | grep 'upstream' || git remote add upstream https://github.com/0dayinc/pwn.git
+  git fetch upstream
+  git checkout master
+  git merge upstream/master
   git pull
   git add . --all
   echo 'Updating Gems to Latest Versions in Gemfile...'
@@ -25,7 +30,7 @@ if (( $# == 3 )); then
   fi
 
   # Generate RDoc JSONL for fine-tunning LLMs
-  pwn_rdoc_to_jsonl --rdoc-root-dir '/opt/pwn/rdoc/PWN' --jsonl-results '/opt/pwn/third_party/pwn_rdoc.jsonl'
+  echo "[TEMP] skipping rdoc for commit completion"
 
   # Tag for every 100 commits (i.e. 0.1.100, 0.1.200, etc)
   tag_this_version_bool=`ruby -r 'pwn' -e 'if (PWN::VERSION.split(".")[-1].to_i + 1) % 100 == 0; then print true; else print false; end'`

data/lib/pwn/plugins/repl.rb

@@ -14,7 +14,7 @@ module PWN
     # This module contains methods related to the pwn REPL Driver.
     module REPL
       # Custom input handler for pwn-ai to support multi-line submissions:
-      # - SHIFT+ENTER (common terminal sequences) or Ctrl+J / Alt+Enter inserts a newline (continue editing)
+      # - SHIFT+ENTER inserts a newline (continue editing)
       # - plain ENTER submits the full prompt (possibly multi-line) to the AI
       # - Multi-line pastes are supported (Reline handles \n in buffer; submit with ENTER)
       class PwnAIInput
@@ -27,19 +27,17 @@ module PWN
         def readline(prompt)
           # Common escape sequences for SHIFT+ENTER across terminals (xterm, modern, etc.)
           shift_enter_seqs = [
-            # Common SHIFT+ENTER sequences across terminals (xterm, gnome-terminal, kitty, wezterm, recent xterm w/ modifyOtherKeys, etc.)
-            # If SHIFT+ENTER still submits in your terminal, try Ctrl+J or Alt+Enter (M-^J) as alternatives (terminals vary in emitted bytes for SHIFT+ENTER)
-            '\\e[13;2~',
-            '\\e[1;2~',
-            '\\e\\r',
-            '\\e\\n',
-            '\\e[13;2u',
-            '\\u001b[13;2u',
-            '\\e[27;2;13~',
-            '\\e[27;2;13u',
-            '\\e[13;2u',
-            '\\e[1;2~',
-            '\\e[27;2;13~'
+            # Only SHIFT+ENTER (user requirement). Plain ENTER = submit.
+            [27, 91, 49, 51, 59, 50, 126],      # \e[13;2~
+            [27, 91, 49, 59, 50, 126],          # \e[1;2~
+            [27, 13],                           # \e\r
+            [27, 10],                           # \e\n
+            [27, 91, 49, 51, 59, 50, 117],      # \e[13;2u
+            [27, 91, 50, 55, 59, 50, 59, 49, 51, 126], # \e[27;2;13~
+            [27, 91, 50, 55, 59, 50, 59, 49, 51, 117], # \e[27;2;13u
+            [27, 91, 49, 51, 59, 50, 117],
+            [27, 91, 49, 59, 50, 126],
+            [27, 91, 50, 55, 59, 50, 59, 49, 51, 126]
           ]
           shift_enter_seqs.each do |seq|
             Reline.config.add_oneshot_key_binding(seq.bytes, :key_newline)
@@ -48,7 +46,7 @@ module PWN
           begin
             # readmultiline with confirm block that *always* returns true:
             #   => normal ENTER triggers finish/submit of the (multi-line) buffer
-            # The bound SHIFT+ENTER (and built-in Ctrl+J / M-^M) trigger key_newline (insert \n, stay in edit)
+            # SHIFT+ENTER bytes trigger key_newline (insert \n, stay in edit)
             # Reline in multiline mode also handles multi-line pastes by splitting on \n in the buffer.
             @line_buffer = Reline.readmultiline(prompt, true) { |_buffer| true } || ''
           ensure

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.5.573'
+  VERSION = '0.5.587'
 end

data/pwn.gemspec

@@ -53,11 +53,13 @@ Gem::Specification.new do |spec|
   ]
 
   File.readlines('./Gemfile').each do |line|
-    columns = line.chomp.split
-    next unless columns.first == 'gem'
+    # Robust parser: extract name and version using regex to handle quotes, operators (>=, <), and avoid empty/invalid versions.
+    # Anchor with ^\\s* to only match active (non-commented) gem declarations at start of line.
+    match = line.match(/^\s*gem\s+['"]([^'"]+)['"]\s*,\s*['"]([^'"]+)['"]/)
+    next unless match
 
-    gem_name = columns[1].delete("'").delete(',')
-    gem_version = columns.last.delete("'")
+    gem_name = match[1]
+    gem_version = match[2]
 
     # Good for debugging issues in Gemfile
     # puts "pwn.gemspec: Adding dependency: #{gem_name} #{gem_version}"

data/vagrant/provisioners/pwn.sh

@@ -10,4 +10,4 @@ else
 fi
 
 export rvmsudo_secure_path=1
-rvmsudo /bin/bash --login -c "cd ${pwn_root} && git config --global --add safe.directory ${pwn_root} && ./build_gem.sh"
+/bin/bash --login -c "cd ${pwn_root} && git config --global --add safe.directory ${pwn_root} && ./build_gem.sh"

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.573
+  version: 0.5.587
 platform: ruby
 authors:
 - 0day Inc.