pwn 0.5.462 → 0.5.463

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: f371cf3eb02a4607a5beee3b2ed121d32fde6668f999a07ab9fd999932ca6e86
-  data.tar.gz: 0dc423db8c188f9bd0857030df2c4ebf4a383a6ce0bb6e0830f12684de1b304e
+  metadata.gz: 5780100847051667d337b384cd5fc617fe46cface20e5903cd62dc23d59536cd
+  data.tar.gz: 8607ae725c223b7cd7c84a41d2532baf7cb6f9b623d184706ffa9e2a1c3a998e
 SHA512:
-  metadata.gz: 595c9d855daf84c494de3d020255e8d2535b4d7cdaec299a43b67fcecd69555809137c3bd77849092be8181b21105391a35f700ecc01f9bd1ab4cc96fc20767d
-  data.tar.gz: bb1e0d1b2745d3aa38e122274f3740b01eb4a03e43e26163b33dcbffa5681a26b86214c33a43a63a824b6d6dd60622c7314e9d1cbb35111660623968b239d51c
+  metadata.gz: d2add06f66b9dd45458d2aa6b8c1ca0ad31f4af264e8a2c8edb8f9e861b10390244f48dea601bfdf65a29e536201c4b09ab8cb85f523d024498568879a79d556
+  data.tar.gz: dc0c22a8f9f089c455fdceb78ffc429fb8a3647a8b4a0a7a903d7b5da1e6eb975133e0d2cbea9402cb7455eb32230ac4b1fd6c7581a975e5beff02464766d035

data/.rubocop_todo.yml

@@ -1,6 +1,6 @@
 # This configuration was generated by
 # `rubocop --auto-gen-config`
-# on 2025-10-17 15:32:33 UTC using RuboCop version 1.81.1.
+# on 2025-10-17 21:43:36 UTC using RuboCop version 1.81.1.
 # The point is for the user to remove these configuration records
 # one by one as the offenses are removed from the code base.
 # Note that changes in the inspected code, or installation of new
@@ -30,7 +30,7 @@ Lint/RedundantTypeConversion:
     - 'lib/pwn/plugins/jenkins.rb'
     - 'lib/pwn/plugins/repl.rb'
 
-# Offense count: 287
+# Offense count: 288
 # This cop supports safe autocorrection (--autocorrect).
 Lint/UselessAssignment:
   Enabled: false

data/README.md

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.462]:001 >>> PWN.help
+pwn[v0.5.463]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.4@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.462]:001 >>> PWN.help
+pwn[v0.5.463]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.4@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.462]:001 >>> PWN.help
+pwn[v0.5.463]:001 >>> PWN.help
 ```
 
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/lib/pwn/plugins/jira_server.rb

@@ -53,61 +53,45 @@ module PWN
         max_request_attempts = 3
         tot_request_attempts ||= 1
 
-        begin
-          case http_method
-          when :delete, :get
-            headers[:params] = params
-            response = rest_client.execute(
-              method: http_method,
-              url: "#{base_uri}/#{rest_call}",
-              headers: headers,
-              verify_ssl: false,
-              timeout: 180
-            )
+        case http_method
+        when :delete, :get
+          headers[:params] = params
+          response = rest_client.execute(
+            method: http_method,
+            url: "#{base_uri}/#{rest_call}",
+            headers: headers,
+            verify_ssl: false,
+            timeout: 180
+          )
 
-          when :post, :put
-            if http_body.is_a?(Hash)
-              if http_body.key?(:multipart)
-                headers[:content_type] = 'multipart/form-data'
-                headers[:x_atlassian_token] = 'no-check'
-              else
-                http_body = http_body.to_json
-              end
+        when :post, :put
+          if http_body.is_a?(Hash)
+            if http_body.key?(:multipart)
+              headers[:content_type] = 'multipart/form-data'
+              headers[:x_atlassian_token] = 'no-check'
+            else
+              http_body = http_body.to_json
             end
-
-            response = rest_client.execute(
-              method: http_method,
-              url: "#{base_uri}/#{rest_call}",
-              headers: headers,
-              payload: http_body,
-              verify_ssl: false,
-              timeout: 180
-            )
-          else
-            raise @@logger.error("Unsupported HTTP Method #{http_method} for #{self} Plugin")
           end
 
-          case response.code
-          when 201, 204
-            response = { http_response_code: response.code }
-          else
-            response = JSON.parse(response, symbolize_names: true) if response.is_a?(RestClient::Response)
-            response[:http_response_code] = response.code if response.is_a?(RestClient::Response)
-          end
-        rescue RestClient::ExceptionWithResponse => e
-          # Do our best to clone issues with custom fields that
-          # may not be compatible for the current context.
-          if rest_call == 'issue' &&
-             http_method == :post &&
-             e.response.body.keys.include?(:errors) &&
-             e.response.code == 400
-
-            errors = e.response.body[:errors]
-            incompatible_fields = errors.keys
-            http_body[:fields] = http_body[:fields].except(*incompatible_fields)
-
-            retry
-          end
+          response = rest_client.execute(
+            method: http_method,
+            url: "#{base_uri}/#{rest_call}",
+            headers: headers,
+            payload: http_body,
+            verify_ssl: false,
+            timeout: 180
+          )
+        else
+          raise @@logger.error("Unsupported HTTP Method #{http_method} for #{self} Plugin")
+        end
+
+        case response.code
+        when 201, 204
+          response = { http_response_code: response.code }
+        else
+          response = JSON.parse(response, symbolize_names: true) if response.is_a?(RestClient::Response)
+          response[:http_response_code] = response.code if response.is_a?(RestClient::Response)
         end
 
         response
@@ -400,6 +384,24 @@ module PWN
         raise e
       end
 
+      # Supported Method Parameters::
+      # issue_type_metadata = PWN::Plugins::JiraServer.get_issue_type_metadata(
+      #   project_key: 'required - project key (e.g. PWN)',
+      #   issue_type_id: 'required - issue type ID (e.g. 10000)'
+      # )
+
+      public_class_method def self.get_issue_type_metadata(opts = {})
+        project_key = opts[:project_key]
+        raise 'ERROR: project_key cannot be nil.' if project_key.nil?
+
+        issue_type_id = opts[:issue_type_id]
+        raise 'ERROR: issue_type_id cannot be nil.' if issue_type_id.nil?
+
+        rest_call(rest_call: "issue/createmeta/#{project_key}/issuetypes/#{issue_type_id}")
+      rescue StandardError => e
+        raise e
+      end
+
       # Supported Method Parameters::
       # issue_resp = PWN::Plugins::JiraServer.clone_issue(
       #   issue: 'required - issue to clone (e.g. Bug, Issue, Story, or Epic ID)'
@@ -414,6 +416,8 @@ module PWN
         project_key = issue_data[:fields][:project][:key]
         summary = "CLONE - #{issue_data[:fields][:summary]}"
         issue_type = issue_data[:fields][:issuetype][:name].downcase.to_sym
+        issue_type_id = issue_data[:fields][:issuetype][:id]
+
         epic_name = nil
         if issue_type == :epic
           all_fields = get_all_fields
@@ -421,9 +425,15 @@ module PWN
           epic_name = issue_data[:fields][epic_name_field_key.to_sym]
         end
         description = issue_data[:fields][:description]
-        # Filter out nil values from the additional fields
-        # which can be problematic during issue creation if
-        # custom fields aren't in the proper context.
+        # TODO: Better Field Handling:
+        # GET issue/createmeta/{projectIdOrKey}/issuetypes/{issueTypeId}
+        # to discover required/allowed fields dynamically before
+        # building the payload. Copy only what makes sense—some fields
+        # (e.g., status, created date) can't be set on creation.
+        issue_type_metadata = get_issue_type_metadata(
+          project_key: project_key,
+          issue_type_id: issue_type_id
+        )
         filtered_fields = issue_data[:fields].compact
         additional_fields = { fields: filtered_fields }
 
@@ -522,6 +532,11 @@ module PWN
             comment: 'optional - comment to add or update in the issue (e.g. \"This is a comment\")'
           )
 
+          issue_type_metadata = #{self}.get_issue_type_metadata(
+            project_key: 'required - project key (e.g. PWN)',
+            issue_type_id: 'required - issue type ID (e.g. 10000)'
+          )
+
           issue_resp = #{self}.clone_issue(
             issue: 'required - issue to clone (e.g. Bug, Issue, Story, or Epic ID)'
           )

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.5.462'
+  VERSION = '0.5.463'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.462
+  version: 0.5.463
 platform: ruby
 authors:
 - 0day Inc.