sensitive_data_filter 0.2.4 → 0.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: a5bcd42d1f6150631ffd7b6396c6b55f3fe2d7e0
-  data.tar.gz: bdc00c28890a73bdfc0ce27dfff8cafb844f9e61
+SHA256:
+  metadata.gz: e80564888cb25e531d59e376ef39093e0a00b8405161dc59b484a5359cdb46f8
+  data.tar.gz: 1a7d30a9a35d631fdcba3f1376b1e399ec8e7ae38704a3a15be3186d880c0d01
 SHA512:
-  metadata.gz: 3a45d2aa68ce255f7efd545318650c1b3007dda3aa38ec7503233678bcd79a54826188615a222703dbb548179fd341c2cc0f73c12519d174bb04f3186f271eba
-  data.tar.gz: e13bea99f41ed5a23c64643f8e75d64e11748a27bebee2575e3172fe7e022ea0aecb4da4d5c110103fc30cdfe88a1aa0e59288e7fbeef597e3f24e98a2c8a0b6
+  metadata.gz: 309fe47506bdfce0e80b6f1a329c1190864ccf6314680272e2e7fa8865bae7dfd9c3477667954adcec42377598a0a0d4a80236c071c17fc75c4fce292e8b46f4
+  data.tar.gz: d7b06b4b6d4f7f2c48af21a584bcd81166881dcc37a83e51de79b743348a12e0495746f6ef0595881dd4640e0f08a700580272a1915dc7db62fe90d6579d3003

data/.github/dependabot.yml

@@ -0,0 +1,6 @@
+version: 2
+updates:
+  - package-ecosystem: "bundler"
+    directory: "/"
+    schedule:
+      interval: "daily"

data/.github/workflows/release.yml

@@ -0,0 +1,59 @@
+name: Release
+
+on:
+  push:
+    tags:
+      - "v*"
+
+jobs:
+  build:
+    name: Build
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+      - uses: ruby/setup-ruby@v1
+        with:
+          bundler-cache: true
+      - run: bundle exec rake
+
+  release:
+    needs: build
+    name: Release
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+
+      - name: Generate Changelog
+        run: |
+          # Get version from github ref (remove 'refs/tags/' and prefix 'v')
+          version="${GITHUB_REF#refs/tags/v}"
+          npx changelog-parser CHANGELOG.md | jq -cr ".versions | .[] | select(.version == \"$version\") | .body" > ${{ github.workflow }}-CHANGELOG.txt
+
+      - name: Release
+        uses: softprops/action-gh-release@v1
+        with:
+          body_path: ${{ github.workflow }}-CHANGELOG.txt
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+  publish:
+    needs: [build, release]
+    name: Publish
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v2
+      - uses: ruby/setup-ruby@v1
+
+      - name: Publish to RubyGems
+        run: |
+          mkdir -p $HOME/.gem
+          touch $HOME/.gem/credentials
+          chmod 0600 $HOME/.gem/credentials
+          printf -- "---\n:rubygems_api_key: ${GEM_HOST_API_KEY}\n" > $HOME/.gem/credentials
+          gem build *.gemspec
+          gem push *.gem
+        env:
+          GEM_HOST_API_KEY: "${{secrets.RUBYGEMS_AUTH_TOKEN}}"

data/.github/workflows/ruby.yml

@@ -0,0 +1,16 @@
+name: Build and Test
+on: [push, pull_request]
+jobs:
+  test:
+    strategy:
+      fail-fast: false
+      matrix:
+        ruby: ["2.6", "2.7", "3.0"]
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+      - uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: ${{ matrix.ruby }}
+          bundler-cache: true
+      - run: bundle exec rake

data/.ruby-version

@@ -1 +1 @@
-2.3.3
+3.0.0

data/.travis.yml

@@ -1,14 +1,10 @@
-sudo: false
 language: ruby
 rvm:
-  - 2.3.0 # The version of RVM installed on Travis doesn't yet recognise 2.3 as an alias of 2.3.0
-matrix:
-  include:
-    - rvm: 2.1
-      gemfile: gemfiles/Gemfile.ruby-2.1.rb
-    - rvm: 2.2
-      gemfile: gemfiles/Gemfile.ruby-2.2.rb
-before_install: gem install bundler -v 1.13.6
-notifications:
-  email:
-    - support@travellink.com.au
+  - 2.4
+  - 2.5
+  - 2.6
+script: "bundle exec rake spec"
+sudo: false
+cache: bundler
+before_install:
+  - gem install bundler

data/CHANGELOG.md

@@ -3,6 +3,31 @@ All notable changes to this project will be documented in this file.
 This project adheres to [Semantic Versioning](http://semver.org/).
 This changelog adheres to [Keep a CHANGELOG](http://keepachangelog.com/).
 
+## 0.6.0
+
+- [TT-8626] Update to build with github actions / ruby 3.0 / rails 6.1
+
+## [0.5.0]
+- [TT-5815] Relax version dependencies and tested on latest ruby versions
+
+## [0.4.1] - 2018-03-08
+### Changed
+- [TT-3686] Don't mutate env vars unless the key already exists
+
+## [0.4.0] - 2018-01-18
+### Changed
+- [TT-3520] No longer clone the "env" middleware variable
+- [TT-3521] filter action dispatch parameter fields
+- [TT-3523] Update gem dependencies
+
+## [0.3.0] - 2016-12-28
+### Changed
+- Allows whitelisting hash values based on the key
+- Updates README for usage with Rails middleware stack
+
+### Added
+- Adds `original_env` and `filtered_env` properties to occurrence
+
 ## [0.2.4] - 2016-12-22
 ### Changed
 - Does not match credit cards numbers that are part of alphanumerical strings
@@ -14,7 +39,6 @@ This changelog adheres to [Keep a CHANGELOG](http://keepachangelog.com/).
 ### Changed
 - Does not match credit cards numbers that are part of longer numbers
 
-
 ## [0.2.2] - 2016-12-21
 ### Fixed
 - Implements stricter credit cards pattern matching

data/README.md

@@ -1,9 +1,8 @@
 # SensitiveDataFilter
 
 [![Gem Version](https://badge.fury.io/rb/sensitive_data_filter.svg)](http://badge.fury.io/rb/sensitive_data_filter)
-[![Build Status](https://travis-ci.org/sealink/sensitive_data_filter.svg?branch=master)](https://travis-ci.org/sealink/sensitive_data_filter)
+[![Build Status](https://github.com/sealink/sensitive_data_filter/workflows/Build%20and%20Test/badge.svg?branch=master)](https://github.com/sealink/sensitive_data_filter/actions)
 [![Coverage Status](https://coveralls.io/repos/sealink/sensitive_data_filter/badge.svg)](https://coveralls.io/r/sealink/sensitive_data_filter)
-[![Dependency Status](https://gemnasium.com/sealink/sensitive_data_filter.svg)](https://gemnasium.com/sealink/sensitive_data_filter)
 [![Code Climate](https://codeclimate.com/github/sealink/sensitive_data_filter/badges/gpa.svg)](https://codeclimate.com/github/sealink/sensitive_data_filter)
 
 A Rack Middleware filter for sensitive data
@@ -28,7 +27,7 @@ Or install it yourself as:
 
 ### Enable the middleware
 
-Insert the middleware in the stack before any parameter parsing is performed
+Insert the middleware in the stack before any parameter parsing is performed.
 
 E.g. for Rails, add the following in application.rb
 
@@ -37,15 +36,31 @@ E.g. for Rails, add the following in application.rb
 config.middleware.insert_before 'ActionDispatch::ParamsParser', SensitiveDataFilter::Middleware::Filter
 ```
 
+To ensure that no sensitive data is accessed at any level of the stack, insert the middleware at the top of the stack.
+
+E.g.
+
+```ruby
+# --- Sensitive Data Filtering ---
+config.middleware.insert_before 0, SensitiveDataFilter::Middleware::Filter
+```
+
+#### Important note for Rails
+
+Rails logs the URI of the request in ``Rails::Rack::Logger``. At this point of the stack, Rails generally has not yet set the session in the env.
+If you insert the sensitive data filtering middleware before this middleware you will prevent sensitive data from appearing in the logs,
+but you will not have access to the session via the occurrence or the env in the occurrence handling block.
+
 ### Configuration
 
 ```ruby
 SensitiveDataFilter.config do |config|
   config.enable_types :credit_card # Already defaults to :credit_card if not specified
-  config.on_occurrence do |occurrence| 
+  config.on_occurrence do |occurrence|
     # Report occurrence
   end
   config.whitelist pattern1, pattern2 # Allows specifying patterns to whitelist matches
+  config.whitelist_key key_pattern1, key_pattern2 # Allows specifying patterns to whitelist hash values based on their keys
   config.register_parser('yaml', -> params { YAML.load params }, -> params { YAML.dump params })
 end
 ```
@@ -63,9 +78,11 @@ An occurrence object has the following properties:
 * session:               the session properties for the request
 * matches:               the matched sensitive data
 * matches_count:         the number of matches per data type, e.g. { 'CreditCard' => 1 }
+* original_env:          the original unfiltered Rack env
+* changeset:             the modified rack env variables
 
 It also exposes `to_h` and `to_s` methods for hash and string representation respectively.  
-Please note that these representations omit sensitive data, 
+Please note that these representations omit sensitive data,
 i.e. `original_query_params`, `original_body_params` and `matches` are not included.
 
 #### Important Notes
@@ -88,9 +105,12 @@ filtered_body_params = if @occurrence.filtered_body_params.is_a? Hash
 
 #### Whitelisting
 
-A list of whitelisting patterns can be passed to `config.whitelist`. 
+A list of whitelisting patterns can be passed to `config.whitelist`.
 Any sensitive data match which also matches any of these patterns will be ignored.
 
+A list of whitelisting patterns can be passed to `config.whitelist_key`.
+When scanning and matching hashes, any value whose key matches any of these patterns will be ignored.
+
 #### Parameter Parsing
 
 Parsers for parameters encoded for a specific content type can be defined.
@@ -98,9 +118,9 @@ The arguments for `config.register_parser` are:
 * a pattern to match the content type
 * a parser for the parameters
 * an unparser to convert parameters back to the encoded format
- 
+
 The parser and unparser must be objects that respond to `call` and accept the parameters as an argument (e.g. procs or lambdas).  
-The parser should handle parsing exceptions gracefully by returning the arguments. 
+The parser should handle parsing exceptions gracefully by returning the arguments.
 This ensures that sensitive data scanning and masking is applied on the raw parameters.
 
 ## Development
@@ -109,6 +129,18 @@ After checking out the repo, run `bin/setup` to install dependencies. Then, run
 
 To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
 
+## Release
+
+To publish a new version of this gem the following steps must be taken.
+
+* Update the version in the following files
+  ```
+    CHANGELOG.md
+    lib/sensitive_data_filter/version.rb
+  ````
+* Create a tag using the format v0.1.0
+* Follow build progress in GitHub actions
+
 ## Contributing
 
 Bug reports and pull requests are welcome on GitHub at https://github.com/sealink/sensitive_data_filter. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
@@ -117,4 +149,3 @@ Bug reports and pull requests are welcome on GitHub at https://github.com/sealin
 ## License
 
 The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
-

data/lib/sensitive_data_filter/config.rb

@@ -20,6 +20,10 @@ module SensitiveDataFilter
     config.whitelist_patterns.any? { |pattern| value.match pattern }
   end
 
+  def self.whitelisted_key?(key)
+    config.whitelist_key_patterns.any? { |pattern| key.match pattern }
+  end
+
   class Config
     DEFAULT_TYPES = %i(credit_card).freeze
 
@@ -45,6 +49,14 @@ module SensitiveDataFilter
       @whitelist_patterns ||= []
     end
 
+    def whitelist_key(*patterns)
+      @whitelist_key_patterns = patterns
+    end
+
+    def whitelist_key_patterns
+      @whitelist_key_patterns ||= []
+    end
+
     def register_parser(content_type, parser, unparser)
       SensitiveDataFilter::Middleware::ParameterParser
         .register_parser(content_type, parser, unparser)

data/lib/sensitive_data_filter/mask.rb

@@ -12,7 +12,13 @@ module SensitiveDataFilter
     end
 
     module_function def mask_hash(hash)
-      hash.map { |key, value| [mask(key), mask(value)] }.to_h
+      hash.map { |key, value| mask_key_value(key, value) }.to_h
+    end
+
+    module_function def mask_key_value(key, value)
+      masked_key = mask(key)
+      return [masked_key, value] if SensitiveDataFilter.whitelisted_key? key
+      [masked_key, mask(value)]
     end
   end
 end

data/lib/sensitive_data_filter/middleware.rb

@@ -1,11 +1,12 @@
 # frozen_string_literal: true
 module SensitiveDataFilter
   module Middleware
+    FILTERABLE = %i(query_params body_params request_params).freeze
   end
 end
 
 require 'sensitive_data_filter/middleware/parameter_parser'
 require 'sensitive_data_filter/middleware/env_parser'
 require 'sensitive_data_filter/middleware/occurrence'
-require 'sensitive_data_filter/middleware/env_filter'
+require 'sensitive_data_filter/middleware/detect'
 require 'sensitive_data_filter/middleware/filter'

data/lib/sensitive_data_filter/middleware/detect.rb

@@ -0,0 +1,28 @@
+module SensitiveDataFilter
+  module Middleware
+    class Detect
+      def initialize(filter)
+        @filter = filter
+      end
+
+      def call
+        changeset = nil
+        scan = run_scan
+        if scan.matches?
+          changeset = OpenStruct.new(SensitiveDataFilter::Middleware::FILTERABLE.each_with_object({}) { |filterable, hash|
+            hash[filterable.to_s] = SensitiveDataFilter::Mask.mask(@filter.send(filterable))
+          })
+        end
+        [changeset, scan]
+      end
+
+      private
+
+      def run_scan
+        SensitiveDataFilter::Scan.new(
+          SensitiveDataFilter::Middleware::FILTERABLE.map { |filterable| @filter.send(filterable) }
+        )
+      end
+    end
+  end
+end

data/lib/sensitive_data_filter/middleware/env_parser.rb

@@ -6,6 +6,7 @@ module SensitiveDataFilter
     class EnvParser
       QUERY_STRING = 'QUERY_STRING'.freeze
       RACK_INPUT   = 'rack.input'.freeze
+      REQUEST_PARAMS = 'action_dispatch.request.request_parameters'.freeze
 
       extend Forwardable
 
@@ -28,27 +29,36 @@ module SensitiveDataFilter
         @parameter_parser.parse(body)
       end
 
+      def request_params
+        @env[REQUEST_PARAMS]
+      end
+
       def query_params=(new_params)
-        @env[QUERY_STRING] = Rack::Utils.build_query(new_params)
+        set_key_if_exists(QUERY_STRING, Rack::Utils.build_query(new_params))
       end
 
       def body_params=(new_params)
-        @env[RACK_INPUT] = StringIO.new @parameter_parser.unparse(new_params)
+        set_key_if_exists(RACK_INPUT, StringIO.new(@parameter_parser.unparse(new_params)))
       end
 
-      def copy
-        self.class.new(@env.clone)
+      def request_params=(new_params)
+        set_key_if_exists(REQUEST_PARAMS, new_params)
       end
 
-      def mask!
-        self.query_params = SensitiveDataFilter::Mask.mask(query_params)
-        self.body_params  = SensitiveDataFilter::Mask.mask(body_params)
+      def mutate(mutation)
+        SensitiveDataFilter::Middleware::FILTERABLE.each do |filterable|
+          self.send("#{filterable}=", mutation.send(filterable))
+        end
       end
 
       def_delegators :@request, :ip, :request_method, :url, :content_type, :session
 
       private
 
+      def set_key_if_exists(key, value)
+        @env[key] = value if @env.key?(key)
+      end
+
       def file_upload?
         @request.media_type == 'multipart/form-data'
       end

data/lib/sensitive_data_filter/middleware/filter.rb

@@ -7,16 +7,20 @@ module SensitiveDataFilter
       end
 
       def call(env)
-        env_filter = EnvFilter.new env
-        handle_occurrence env_filter
-        @app.call env_filter.filtered_env
+        original_env = EnvParser.new(env)
+        changeset, scan = Detect.new(original_env).call
+        unless changeset.nil?
+          handle_occurrence(original_env, changeset, scan)
+          original_env.mutate(changeset)
+        end
+        @app.call(env)
       end
 
       private
 
-      def handle_occurrence(env_filter)
-        return unless env_filter.occurrence?
-        SensitiveDataFilter.handle_occurrence env_filter.occurrence
+      def handle_occurrence(filter, changeset, scan)
+        occurence = Occurrence.new(filter, changeset, scan.matches)
+        SensitiveDataFilter.handle_occurrence(occurence)
       end
     end
   end

data/lib/sensitive_data_filter/middleware/occurrence.rb

@@ -9,9 +9,9 @@ module SensitiveDataFilter
 
       attr_reader :matches
 
-      def initialize(original_env_parser, filtered_env_parser, matches)
+      def initialize(original_env_parser, changeset, matches)
         @original_env_parser = original_env_parser
-        @filtered_env_parser = filtered_env_parser
+        @changeset           = changeset
         @matches             = matches
       end
 
@@ -28,14 +28,26 @@ module SensitiveDataFilter
       end
 
       def filtered_query_params
-        @filtered_env_parser.query_params
+        @changeset.query_params
       end
 
       def filtered_body_params
-        @filtered_env_parser.body_params
+        @changeset.body_params
       end
 
-      def_delegators :@filtered_env_parser, :request_method, :url, :content_type, :session
+      def changeset
+        @changeset
+      end
+
+      def original_env
+        @original_env_parser.env
+      end
+
+      def url
+        SensitiveDataFilter::Mask.mask(@original_env_parser.url)
+      end
+
+      def_delegators :@original_env_parser, :request_method, :content_type, :session
 
       def matches_count
         @matches.map { |type, matches| [type, matches.count] }.to_h

data/lib/sensitive_data_filter/scan.rb

@@ -17,7 +17,13 @@ module SensitiveDataFilter
     end
 
     def self.scan_hash(hash)
-      hash.map { |key, value| scan(key).collate(scan(value)) }.inject(:collate) || {}
+      hash.map { |key, value| scan_key_value(key, value) }.inject(:collate) || {}
+    end
+
+    def self.scan_key_value(key, value)
+      key_scan = scan(key)
+      return key_scan if SensitiveDataFilter.whitelisted_key? key
+      key_scan.collate(scan(value))
     end
 
     def self.whitelist(matches)

data/lib/sensitive_data_filter/version.rb

@@ -1,4 +1,4 @@
 # frozen_string_literal: true
 module SensitiveDataFilter
-  VERSION = '0.2.4'
+  VERSION = '0.6.0'
 end

data/sensitive_data_filter.gemspec

@@ -21,18 +21,18 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
 
-  spec.required_ruby_version = '>= 2.1'
+  spec.required_ruby_version = '>= 2.6'
 
-  spec.add_dependency 'rack', '>= 1.4'
-  spec.add_dependency 'facets', '~> 3.1'
-  spec.add_dependency 'credit_card_validations', '~> 3.2'
+  spec.add_dependency 'rack'
+  spec.add_dependency 'facets'
+  spec.add_dependency 'credit_card_validations'
 
-  spec.add_development_dependency 'bundler', '~> 1.13'
-  spec.add_development_dependency 'rake', '~> 10.0'
-  spec.add_development_dependency 'rspec', '~> 3.5'
-  spec.add_development_dependency 'coverage-kit', '~> 0.1'
-  spec.add_development_dependency 'simplecov-rcov', '~> 0.2'
-  spec.add_development_dependency 'coveralls', '~> 0.8'
-  spec.add_development_dependency 'rubocop', '~> 0.46'
-  spec.add_development_dependency 'travis', '~> 1.8'
+  spec.add_development_dependency 'bundler'
+  spec.add_development_dependency 'rake'
+  spec.add_development_dependency 'rspec'
+  spec.add_development_dependency 'coverage-kit'
+  spec.add_development_dependency 'simplecov-rcov'
+  spec.add_development_dependency 'coveralls'
+  spec.add_development_dependency 'rubocop'
+  spec.add_development_dependency 'pry'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: sensitive_data_filter
 version: !ruby/object:Gem::Version
-  version: 0.2.4
+  version: 0.6.0
 platform: ruby
 authors:
 - Alessandro Berardi
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2016-12-22 00:00:00.000000000 Z
+date: 2021-01-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rack
@@ -17,154 +17,154 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.4'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.4'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: facets
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '3.1'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '3.1'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: credit_card_validations
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.13'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.13'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '3.5'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '3.5'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: coverage-kit
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.1'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.1'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: simplecov-rcov
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.2'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.2'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: coveralls
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.8'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.8'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rubocop
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.46'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '0.46'
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: travis
+  name: pry
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.8'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.8'
+        version: '0'
 description: A Rack Middleware level filter for sensitive data
 email:
 - berardialessandro@gmail.com
@@ -173,6 +173,9 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/dependabot.yml"
+- ".github/workflows/release.yml"
+- ".github/workflows/ruby.yml"
 - ".gitignore"
 - ".rspec"
 - ".rubocop.yml"
@@ -186,13 +189,11 @@ files:
 - Rakefile
 - bin/console
 - bin/setup
-- gemfiles/Gemfile.ruby-2.1.rb
-- gemfiles/Gemfile.ruby-2.2.rb
 - lib/sensitive_data_filter.rb
 - lib/sensitive_data_filter/config.rb
 - lib/sensitive_data_filter/mask.rb
 - lib/sensitive_data_filter/middleware.rb
-- lib/sensitive_data_filter/middleware/env_filter.rb
+- lib/sensitive_data_filter/middleware/detect.rb
 - lib/sensitive_data_filter/middleware/env_parser.rb
 - lib/sensitive_data_filter/middleware/filter.rb
 - lib/sensitive_data_filter/middleware/occurrence.rb
@@ -214,15 +215,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '2.1'
+      version: '2.6'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.5.2
+rubygems_version: 3.2.3
 signing_key: 
 specification_version: 4
 summary: Rack Middleware filter for sensitive data

data/gemfiles/Gemfile.ruby-2.1.rb

@@ -1,10 +0,0 @@
-# frozen_string_literal: true
-source 'https://rubygems.org'
-
-# ruby-2.1 compatible gems
-gem 'rack', '~> 1.4'
-gem 'activemodel', '>= 3', '< 5'
-gem 'activesupport', '>= 3', '< 5'
-
-# Specify your gem's dependencies in sensitive_data_filter.gemspec
-gemspec path: '../'

data/gemfiles/Gemfile.ruby-2.2.rb

@@ -1,10 +0,0 @@
-# frozen_string_literal: true
-source 'https://rubygems.org'
-
-# ruby-2.2 compatible gems
-gem 'rack', '~> 1.4'
-gem 'activemodel', '>= 3', '< 5'
-gem 'activesupport', '>= 3', '< 5'
-
-# Specify your gem's dependencies in sensitive_data_filter.gemspec
-gemspec path: '../'

data/lib/sensitive_data_filter/middleware/env_filter.rb

@@ -1,39 +0,0 @@
-# frozen_string_literal: true
-require 'facets/kernel/present'
-
-module SensitiveDataFilter
-  module Middleware
-    class EnvFilter
-      attr_reader :occurrence
-
-      def initialize(env)
-        @original_env_parser = EnvParser.new(env)
-        @filtered_env_parser = @original_env_parser.copy
-        @scan = build_scan
-        @filtered_env_parser.mask! if @scan.matches?
-        @occurrence = build_occurrence
-      end
-
-      def filtered_env
-        @filtered_env_parser.env
-      end
-
-      def occurrence?
-        @occurrence.present?
-      end
-
-      private
-
-      def build_occurrence
-        return nil unless @scan.matches?
-        Occurrence.new(@original_env_parser, @filtered_env_parser, @scan.matches)
-      end
-
-      def build_scan
-        SensitiveDataFilter::Scan.new(
-          [@original_env_parser.query_params, @original_env_parser.body_params]
-        )
-      end
-    end
-  end
-end