safe_ruby 1.0.2 → 1.0.5

metadata

@@ -1,101 +1,68 @@
 --- !ruby/object:Gem::Specification
 name: safe_ruby
 version: !ruby/object:Gem::Version
-  version: 1.0.2
+  version: 1.0.5
 platform: ruby
 authors:
+- Jérôme Arbez-Gindre
 - Uku Taht
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2013-12-04 00:00:00.000000000 Z
+date: 2024-10-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: childprocess
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.3.9
+        version: '5'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.3.9
-- !ruby/object:Gem::Dependency
-  name: pry
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rake
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rspec
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
+        version: '5'
 description: Evaluates ruby code by writing it to a tempfile and spawning a child
-  process. Uses a whitelist of methods and constants to keep, for example one cannot
+  process. Uses a allowlist of methods and constants to keep, for example one cannot
   run system commands in the environment created by this gem. The environment created
   by the untrusted code does not leak out into the parent process.
-email: uku.taht@gmail.com
+email: jeromearbezgindre@gmail.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
 - ".gitignore"
+- ".gitlab-ci.yml"
 - ".rspec"
 - Gemfile
 - Gemfile.lock
 - LICENSE.txt
 - README.md
 - Rakefile
-- lib/constant_whitelist.rb
+- config/rspec
+- config/rubocop.yml
+- lib/constant_allowlist.rb
 - lib/make_safe_code.rb
-- lib/method_whitelist.rb
+- lib/method_allowlist.rb
 - lib/safe_ruby.rb
 - lib/safe_ruby/runner.rb
 - lib/safe_ruby/version.rb
 - safe_ruby.gemspec
 - spec/safe_ruby_spec.rb
 - spec/spec_helper.rb
-homepage: http://rubygems.org/gems/safe_ruby
+- tasks/console.rake
+- tasks/package.rake
+- tasks/smelling_code.rake
+- tasks/test.rake
+homepage: https://gitlab.com/defmastership/safe_ruby/
 licenses:
 - MIT
-metadata: {}
-post_install_message: 
+metadata:
+  rubygems_mfa_required: 'true'
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -103,18 +70,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: '2.7'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.5.1
-signing_key: 
+rubygems_version: 3.5.16
+signing_key:
 specification_version: 4
 summary: Run untrusted ruby code in a safe environment
-test_files:
-- spec/safe_ruby_spec.rb
-- spec/spec_helper.rb
+test_files: []

data/lib/constant_whitelist.rb

@@ -1,13 +0,0 @@
-ALLOWED_CONSTANTS= [
-  :Object, :Module, :Class, :BasicObject, :Kernel, :NilClass, :NIL, :Data, :TrueClass, :TRUE, :FalseClass, :FALSE, :Encoding, 
-  :Comparable, :Enumerable, :String, :Symbol, :Exception, :SystemExit, :SignalException, :Interrupt, :StandardError, :TypeError,
-  :ArgumentError, :IndexError, :KeyError, :RangeError, :ScriptError, :SyntaxError, :LoadError, :NotImplementedError, :NameError,
-  :NoMethodError, :RuntimeError, :SecurityError, :NoMemoryError, :EncodingError, :SystemCallError, :Errno, :ZeroDivisionError,
-  :FloatDomainError, :Numeric, :Integer, :Fixnum, :Float, :Bignum, :Array, :Hash,  :Struct, :RegexpError, :Regexp,
-  :MatchData, :Marshal, :Range, :IOError, :EOFError, :IO, :STDIN, :STDOUT, :STDERR, :Time, :Random,
-  :Signal, :Proc, :LocalJumpError, :SystemStackError, :Method, :UnboundMethod, :Binding, :Math, :Enumerator,
-  :StopIteration, :RubyVM, :Thread, :TOPLEVEL_BINDING, :ThreadGroup, :Mutex, :ThreadError, :Fiber, :FiberError, :Rational, :Complex,
-  :RUBY_VERSION, :RUBY_RELEASE_DATE, :RUBY_PLATFORM, :RUBY_PATCHLEVEL, :RUBY_REVISION, :RUBY_DESCRIPTION, :RUBY_COPYRIGHT, :RUBY_ENGINE,
-  :TracePoint, :ARGV, :Gem, :RbConfig, :Config, :CROSS_COMPILING, :Date, :ConditionVariable, :Queue, :SizedQueue, :MonitorMixin, :Monitor,
-  :Exception2MessageMapper, :IRB, :RubyToken, :RubyLex, :Readline, :RUBYGEMS_ACTIVATION_MONITOR
-]

data/lib/method_whitelist.rb

@@ -1,271 +0,0 @@
-IO_S_METHODS = %w[
-  new
-  foreach
-  open
-]
-
-KERNEL_S_METHODS = %w[
-  Array
-  binding
-  block_given?
-  catch
-  chomp
-  chomp!
-  chop
-  chop!
-  eval
-  fail
-  Float
-  format
-  global_variables
-  gsub
-  gsub!
-  Integer
-  iterator?
-  lambda
-  local_variables
-  loop
-  method_missing
-  proc
-  raise
-  scan
-  split
-  sprintf
-  String
-  sub
-  sub!
-  throw
-  ].freeze
-
-SYMBOL_S_METHODS = %w[
-all_symbols
-].freeze
-
-STRING_S_METHODS = %w[
-new
-].freeze
-
-KERNEL_METHODS = %w[
-==
-
-ray
-nding
-ock_given?
-tch
-omp
-omp!
-op
-op!
-ass
-clone
-dup
-eql?
-equal?
-eval
-fail
-Float
-format
-freeze
-frozen?
-global_variables
-gsub
-gsub!
-hash
-id
-initialize_copy
-inspect
-instance_eval
-instance_of?
-instance_variables
-instance_variable_get
-instance_variable_set
-instance_variable_defined?
-Integer
-is_a?
-iterator?
-kind_of?
-lambda
-local_variables
-loop
-methods
-method_missing
-nil?
-private_methods
-print
-proc
-protected_methods
-public_methods
-raise
-remove_instance_variable
-respond_to?
-respond_to_missing?
-scan
-send
-singleton_methods
-singleton_method_added
-singleton_method_removed
-singleton_method_undefined
-split
-sprintf
-String
-sub
-sub!
-taint
-tainted?
-throw
-to_a
-to_s
-type
-untaint
-__send__
-].freeze
-
-NILCLASS_METHODS = %w[
-&
-inspect
-nil?
-to_a
-to_f
-to_i
-to_s
-^
-|
-].freeze
-
-SYMBOL_METHODS = %w[
-===
-id2name
-inspect
-to_i
-to_int
-to_s
-to_sym
-].freeze
-
-TRUECLASS_METHODS = %w[
-&
-to_s
-^
-|
-].freeze
-
-FALSECLASS_METHODS = %w[
-&
-to_s
-^
-|
-].freeze
-
-ENUMERABLE_METHODS = %w[
-all?
-any?
-collect
-detect
-each_with_index
-entries
-find
-find_all
-grep
-include?
-inject
-map
-max
-member?
-min
-partition
-reject
-select
-sort
-sort_by
-to_a
-zip
-].freeze
-
-STRING_METHODS = %w[
-%
-*
-+
-<<
-<=>
-==
-=~
-capitalize
-capitalize!
-casecmp
-center
-chomp
-chomp!
-chop
-chop!
-concat
-count
-crypt
-delete
-delete!
-downcase
-downcase!
-dump
-each
-each_byte
-each_line
-empty?
-eql?
-gsub
-gsub!
-hash
-hex
-include?
-index
-initialize
-initialize_copy
-insert
-inspect
-intern
-length
-ljust
-lines
-lstrip
-lstrip!
-match
-next
-next!
-oct
-replace
-reverse
-reverse!
-rindex
-rjust
-rstrip
-rstrip!
-scan
-size
-slice
-slice!
-split
-squeeze
-squeeze!
-strip
-strip!
-start_with?
-sub
-sub!
-succ
-succ!
-sum
-swapcase
-swapcase!
-to_f
-to_i
-to_s
-to_str
-to_sym
-tr
-tr!
-tr_s
-tr_s!
-upcase
-upcase!
-upto
-[]
-[]=
-].freeze