rails-guarddog 0.1.4 → 0.1.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/rails/guarddog/scanner.rb +44 -37
  3. data/lib/rails/guarddog/version.rb +1 -1
  4. metadata +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 26aae5812cc6e3fe686bd6779e3f05bcda5da9a627a6adb1200e987a734b99c5
4
- data.tar.gz: 9847f4711ad1d091b7b943e5fb8ca9bf39f562f0d2abc03e68ecb5037870bff8
3
+ metadata.gz: 7dea85a7698050fcc823251f4acc49373742804ae43daadc1c4a378f9ce04b01
4
+ data.tar.gz: 35f0fdca94c23a451631ab027711b10fae077aefe4d4653f70a432a45089d465
5
5
  SHA512:
6
- metadata.gz: 41f53f16b7807761c56821130429016ba4e11a7295811985309d54d25fc08f84915eb2d819dd5c5599e04a5cb1ccb5c122790f96f42c156d6f6faba0cce60106
7
- data.tar.gz: 3c49be284b9fc6ccb2ae7d948594499e032b3a650da01c2c87b55a0dab7d0422f8f11470528812a5f7aaf594501c75e2fa16983aba8eae06ea5abc951646edaa
6
+ metadata.gz: 40b498fc485ed0217c8e96c3214ae8c74c9dd748cca4907956242ebd65d55366fb978e9fb926b28255bd2d7231982e226d3d3985bf7e28fbe65fee5bbd578c3a
7
+ data.tar.gz: 2ada4498720b9dbdd6e2e11d664e8a68da5a136026570a647df717734c2c5d05d448d11c45e6ac96e1b801a1fb8d1cb2eee4b5f54bb644b8ec2c512701d82018
data/lib/rails/guarddog/scanner.rb CHANGED
@@ -1,37 +1,44 @@
1
- module Rails
2
- module Guarddog
3
- class Scanner
4
- attr_accessor :configuration, :findings
5
-
6
- def initialize(config = nil)
7
- @configuration = config || Configuration.new
8
- @findings = []
9
- end
10
-
11
- def run
12
- checkers = load_checkers
13
- checkers.each do |checker|
14
- checker_instance = checker.new(@configuration.root)
15
- checker_instance.run
16
- @findings.concat(checker_instance.findings)
17
- end
18
- @findings.sort_by { |f| severity_order(f.severity) }
19
- end
20
-
21
- private
22
-
23
- def load_checkers
24
- checkers_dir = File.expand_path('../guarddog/checkers', __FILE__)
25
- Dir.glob("#{checkers_dir}/*_checker.rb").map do |file|
26
- require file
27
- class_name = File.basename(file, '.rb').camelize
28
- Checkers.const_get(class_name)
29
- end.compact
30
- end
31
-
32
- def severity_order(severity)
33
- { critical: 0, high: 1, medium: 2, low: 3 }[severity] || 4
34
- end
35
- end
36
- end
37
- end
1
+ module Rails
2
+ module Guarddog
3
+ class Scanner
4
+ attr_accessor :configuration, :findings
5
+
6
+ def initialize(config = nil)
7
+ @configuration = config || Configuration.new
8
+ @findings = []
9
+ end
10
+
11
+ def run
12
+ load_checkers.each do |checker_class|
13
+ checker = checker_class.new(@configuration.root)
14
+ checker.run
15
+ @findings.concat(checker.findings)
16
+ end
17
+ @findings.sort_by { |f| severity_order(f.severity) }
18
+ end
19
+
20
+ private
21
+
22
+ def load_checkers
23
+ [
24
+ Checkers::SqlInjectionChecker,
25
+ Checkers::XssChecker,
26
+ Checkers::CsrfChecker,
27
+ Checkers::MassAssignmentChecker,
28
+ Checkers::OpenRedirectChecker,
29
+ Checkers::SecretsChecker,
30
+ Checkers::DosChecker,
31
+ Checkers::IdorChecker,
32
+ Checkers::AiInjectionChecker,
33
+ Checkers::RateLimitChecker,
34
+ Checkers::DependencyChecker,
35
+ Checkers::GraphqlChecker
36
+ ]
37
+ end
38
+
39
+ def severity_order(severity)
40
+ { critical: 0, high: 1, medium: 2, low: 3 }[severity] || 4
41
+ end
42
+ end
43
+ end
44
+ end
data/lib/rails/guarddog/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  module Rails
2
2
  module Guarddog
3
- VERSION = "0.1.4"
3
+ VERSION = "0.1.6"
4
4
  end
5
5
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: rails-guarddog
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.1.4
4
+ version: 0.1.6
5
5
  platform: ruby
6
6
  authors:
7
7
  - Security Team