railroader 4.3.4

metadata

@@ -0,0 +1,386 @@
+--- !ruby/object:Gem::Specification
+name: railroader
+version: !ruby/object:Gem::Version
+  version: 4.3.4
+platform: ruby
+authors:
+- Justin Collins
+autorequire: 
+bindir: bin
+cert_chain:
+- railroader-public_cert.pem
+date: 2019-01-28 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: ruby_parser
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.11.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.11.0
+- !ruby/object:Gem::Dependency
+  name: sexp_processor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.7'
+- !ruby/object:Gem::Dependency
+  name: ruby2ruby
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.4.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.4.0
+- !ruby/object:Gem::Dependency
+  name: safe_yaml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: terminal-table
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.4'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.4'
+- !ruby/object:Gem::Dependency
+  name: highline
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.6.20
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.6.20
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: erubis
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.6'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.6'
+- !ruby/object:Gem::Dependency
+  name: haml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '3.0'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '3.0'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+- !ruby/object:Gem::Dependency
+  name: sass
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 3.5.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 3.5.0
+- !ruby/object:Gem::Dependency
+  name: slim
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.3.6
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 3.0.8
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.3.6
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 3.0.8
+description: Railroader detects security vulnerabilities in Ruby on Rails applications
+  via static analysis.
+email: gem@railroader.org
+executables:
+- railroader
+extensions: []
+extra_rdoc_files: []
+files:
+- CHANGES.md
+- FEATURES
+- README.md
+- bin/railroader
+- lib/railroader.rb
+- lib/railroader/app_tree.rb
+- lib/railroader/call_index.rb
+- lib/railroader/checks.rb
+- lib/railroader/checks/base_check.rb
+- lib/railroader/checks/check_basic_auth.rb
+- lib/railroader/checks/check_basic_auth_timing_attack.rb
+- lib/railroader/checks/check_content_tag.rb
+- lib/railroader/checks/check_create_with.rb
+- lib/railroader/checks/check_cross_site_scripting.rb
+- lib/railroader/checks/check_default_routes.rb
+- lib/railroader/checks/check_deserialize.rb
+- lib/railroader/checks/check_detailed_exceptions.rb
+- lib/railroader/checks/check_digest_dos.rb
+- lib/railroader/checks/check_divide_by_zero.rb
+- lib/railroader/checks/check_dynamic_finders.rb
+- lib/railroader/checks/check_escape_function.rb
+- lib/railroader/checks/check_evaluation.rb
+- lib/railroader/checks/check_execute.rb
+- lib/railroader/checks/check_file_access.rb
+- lib/railroader/checks/check_file_disclosure.rb
+- lib/railroader/checks/check_filter_skipping.rb
+- lib/railroader/checks/check_forgery_setting.rb
+- lib/railroader/checks/check_header_dos.rb
+- lib/railroader/checks/check_i18n_xss.rb
+- lib/railroader/checks/check_jruby_xml.rb
+- lib/railroader/checks/check_json_encoding.rb
+- lib/railroader/checks/check_json_parsing.rb
+- lib/railroader/checks/check_link_to.rb
+- lib/railroader/checks/check_link_to_href.rb
+- lib/railroader/checks/check_mail_to.rb
+- lib/railroader/checks/check_mass_assignment.rb
+- lib/railroader/checks/check_mime_type_dos.rb
+- lib/railroader/checks/check_model_attr_accessible.rb
+- lib/railroader/checks/check_model_attributes.rb
+- lib/railroader/checks/check_model_serialize.rb
+- lib/railroader/checks/check_nested_attributes.rb
+- lib/railroader/checks/check_nested_attributes_bypass.rb
+- lib/railroader/checks/check_number_to_currency.rb
+- lib/railroader/checks/check_permit_attributes.rb
+- lib/railroader/checks/check_quote_table_name.rb
+- lib/railroader/checks/check_redirect.rb
+- lib/railroader/checks/check_regex_dos.rb
+- lib/railroader/checks/check_render.rb
+- lib/railroader/checks/check_render_dos.rb
+- lib/railroader/checks/check_render_inline.rb
+- lib/railroader/checks/check_response_splitting.rb
+- lib/railroader/checks/check_route_dos.rb
+- lib/railroader/checks/check_safe_buffer_manipulation.rb
+- lib/railroader/checks/check_sanitize_methods.rb
+- lib/railroader/checks/check_secrets.rb
+- lib/railroader/checks/check_select_tag.rb
+- lib/railroader/checks/check_select_vulnerability.rb
+- lib/railroader/checks/check_send.rb
+- lib/railroader/checks/check_send_file.rb
+- lib/railroader/checks/check_session_manipulation.rb
+- lib/railroader/checks/check_session_settings.rb
+- lib/railroader/checks/check_simple_format.rb
+- lib/railroader/checks/check_single_quotes.rb
+- lib/railroader/checks/check_skip_before_filter.rb
+- lib/railroader/checks/check_sql.rb
+- lib/railroader/checks/check_sql_cves.rb
+- lib/railroader/checks/check_ssl_verify.rb
+- lib/railroader/checks/check_strip_tags.rb
+- lib/railroader/checks/check_symbol_dos.rb
+- lib/railroader/checks/check_symbol_dos_cve.rb
+- lib/railroader/checks/check_translate_bug.rb
+- lib/railroader/checks/check_unsafe_reflection.rb
+- lib/railroader/checks/check_unscoped_find.rb
+- lib/railroader/checks/check_validation_regex.rb
+- lib/railroader/checks/check_weak_hash.rb
+- lib/railroader/checks/check_without_protection.rb
+- lib/railroader/checks/check_xml_dos.rb
+- lib/railroader/checks/check_yaml_parsing.rb
+- lib/railroader/codeclimate/engine_configuration.rb
+- lib/railroader/commandline.rb
+- lib/railroader/differ.rb
+- lib/railroader/file_parser.rb
+- lib/railroader/format/style.css
+- lib/railroader/options.rb
+- lib/railroader/parsers/rails2_erubis.rb
+- lib/railroader/parsers/rails2_xss_plugin_erubis.rb
+- lib/railroader/parsers/rails3_erubis.rb
+- lib/railroader/parsers/template_parser.rb
+- lib/railroader/processor.rb
+- lib/railroader/processors/alias_processor.rb
+- lib/railroader/processors/base_processor.rb
+- lib/railroader/processors/config_processor.rb
+- lib/railroader/processors/controller_alias_processor.rb
+- lib/railroader/processors/controller_processor.rb
+- lib/railroader/processors/erb_template_processor.rb
+- lib/railroader/processors/erubis_template_processor.rb
+- lib/railroader/processors/gem_processor.rb
+- lib/railroader/processors/haml_template_processor.rb
+- lib/railroader/processors/lib/basic_processor.rb
+- lib/railroader/processors/lib/call_conversion_helper.rb
+- lib/railroader/processors/lib/find_all_calls.rb
+- lib/railroader/processors/lib/find_call.rb
+- lib/railroader/processors/lib/find_return_value.rb
+- lib/railroader/processors/lib/module_helper.rb
+- lib/railroader/processors/lib/processor_helper.rb
+- lib/railroader/processors/lib/rails2_config_processor.rb
+- lib/railroader/processors/lib/rails2_route_processor.rb
+- lib/railroader/processors/lib/rails3_config_processor.rb
+- lib/railroader/processors/lib/rails3_route_processor.rb
+- lib/railroader/processors/lib/render_helper.rb
+- lib/railroader/processors/lib/render_path.rb
+- lib/railroader/processors/lib/route_helper.rb
+- lib/railroader/processors/lib/safe_call_helper.rb
+- lib/railroader/processors/library_processor.rb
+- lib/railroader/processors/model_processor.rb
+- lib/railroader/processors/output_processor.rb
+- lib/railroader/processors/route_processor.rb
+- lib/railroader/processors/slim_template_processor.rb
+- lib/railroader/processors/template_alias_processor.rb
+- lib/railroader/processors/template_processor.rb
+- lib/railroader/report.rb
+- lib/railroader/report/config/remediation.yml
+- lib/railroader/report/ignore/config.rb
+- lib/railroader/report/ignore/interactive.rb
+- lib/railroader/report/pager.rb
+- lib/railroader/report/renderer.rb
+- lib/railroader/report/report_base.rb
+- lib/railroader/report/report_codeclimate.rb
+- lib/railroader/report/report_csv.rb
+- lib/railroader/report/report_hash.rb
+- lib/railroader/report/report_html.rb
+- lib/railroader/report/report_json.rb
+- lib/railroader/report/report_markdown.rb
+- lib/railroader/report/report_table.rb
+- lib/railroader/report/report_tabs.rb
+- lib/railroader/report/report_text.rb
+- lib/railroader/report/templates/controller_overview.html.erb
+- lib/railroader/report/templates/controller_warnings.html.erb
+- lib/railroader/report/templates/error_overview.html.erb
+- lib/railroader/report/templates/header.html.erb
+- lib/railroader/report/templates/ignored_warnings.html.erb
+- lib/railroader/report/templates/model_warnings.html.erb
+- lib/railroader/report/templates/overview.html.erb
+- lib/railroader/report/templates/security_warnings.html.erb
+- lib/railroader/report/templates/template_overview.html.erb
+- lib/railroader/report/templates/view_warnings.html.erb
+- lib/railroader/report/templates/warning_overview.html.erb
+- lib/railroader/rescanner.rb
+- lib/railroader/scanner.rb
+- lib/railroader/tracker.rb
+- lib/railroader/tracker/collection.rb
+- lib/railroader/tracker/config.rb
+- lib/railroader/tracker/constants.rb
+- lib/railroader/tracker/controller.rb
+- lib/railroader/tracker/library.rb
+- lib/railroader/tracker/model.rb
+- lib/railroader/tracker/template.rb
+- lib/railroader/util.rb
+- lib/railroader/version.rb
+- lib/railroader/warning.rb
+- lib/railroader/warning_codes.rb
+- lib/ruby_parser/bm_sexp.rb
+- lib/ruby_parser/bm_sexp_processor.rb
+homepage: http://railroaderscanner.org
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.0.2
+signing_key: 
+specification_version: 4
+summary: Security vulnerability scanner for Ruby on Rails.
+test_files: []