tcell_agent 2.0.0 → 2.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/tcell_agent/instrumentation/cmdi.rb +1 -1
- data/lib/tcell_agent/instrumentation/lfi.rb +8 -8
- data/lib/tcell_agent/instrumentation/monkey_patches/io.rb +20 -12
- data/lib/tcell_agent/instrumentation/monkey_patches/kernel.rb +12 -8
- data/lib/tcell_agent/policies/command_injection_policy.rb +1 -1
- data/lib/tcell_agent/rails/dlp.rb +10 -4
- data/lib/tcell_agent/rails/routes.rb +3 -3
- data/lib/tcell_agent/rust/{libtcellagent-4.14.0.dylib → libtcellagent-4.17.1.dylib} +0 -0
- data/lib/tcell_agent/rust/{libtcellagent-4.14.0.so → libtcellagent-4.17.1.so} +0 -0
- data/lib/tcell_agent/rust/{libtcellagent-alpine-4.14.0.so → libtcellagent-alpine-4.17.1.so} +0 -0
- data/lib/tcell_agent/rust/native_library.rb +1 -1
- data/lib/tcell_agent/rust/{tcellagent-4.14.0.dll → tcellagent-4.17.1.dll} +0 -0
- data/lib/tcell_agent/version.rb +1 -1
- data/spec/lib/tcell_agent/{cmdi_spec.rb → instrumentation/cmdi_spec.rb} +8 -0
- data/spec/lib/tcell_agent/instrumentation/lfi/io_lfi_spec.rb +6 -0
- data/spec/lib/tcell_agent/instrumentation/lfi/kernel_lfi_spec.rb +19 -4
- metadata +8 -8
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 9d37df3ff2819b9794d9bde01418437c3efed75358fa58f4f65d80ea4f63e7b8
|
|
4
|
+
data.tar.gz: 97efa888f4adf090f13fa5bc0597a91ea981ad299062d3dbd267ed4216b18ba8
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 0f77740a99dd8678ca62a5ccf7e0e69304e680a8fa65258105c101ec360413920afcfea4d6e03237e1c6893198fa6232133ab05111bb2b0341586635db43a9bd
|
|
7
|
+
data.tar.gz: c980a3e122b6453e3660358a2ba6a2bbe86179a9f54ca09e34135c8e9f86eb6498ebd8346dbf28b117f2f0b160bc23338b80502dc6c07c28d0b3b03472756a39
|
|
@@ -32,12 +32,12 @@ module TCellAgent
|
|
|
32
32
|
args_copy = Array.new(args)
|
|
33
33
|
path = args_copy.shift
|
|
34
34
|
mode = args_copy.shift || 'r'
|
|
35
|
-
end
|
|
36
35
|
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
|
|
36
|
+
if path && path.to_s[0] != '|'
|
|
37
|
+
[File.expand_path(path).to_s, convert_mode(mode)]
|
|
38
|
+
else
|
|
39
|
+
['', '']
|
|
40
|
+
end
|
|
41
41
|
end
|
|
42
42
|
end
|
|
43
43
|
|
|
@@ -52,10 +52,10 @@ module TCellAgent
|
|
|
52
52
|
else
|
|
53
53
|
path = ARGF.filename
|
|
54
54
|
end
|
|
55
|
-
end
|
|
56
55
|
|
|
57
|
-
|
|
58
|
-
|
|
56
|
+
path = File.expand_path(path) unless path.nil?
|
|
57
|
+
[path.to_s, mode]
|
|
58
|
+
end
|
|
59
59
|
end
|
|
60
60
|
|
|
61
61
|
def self.convert_mode(mode)
|
|
@@ -4,12 +4,15 @@ class IO
|
|
|
4
4
|
def binread(*args, &block)
|
|
5
5
|
path, mode = TCellAgent::Instrumentation::Lfi.extract_path_mode(*args)
|
|
6
6
|
|
|
7
|
-
if path && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
7
|
+
if !path.strip.empty? && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
8
8
|
raise IOError, "tCell.io Agent: Attempted access to file #{path} with mode #{mode} denied"
|
|
9
9
|
end
|
|
10
|
-
|
|
11
|
-
if
|
|
12
|
-
|
|
10
|
+
|
|
11
|
+
if path.empty?
|
|
12
|
+
cmd = TCellAgent::Cmdi.parse_command_from_open(*args)
|
|
13
|
+
if cmd && TCellAgent::Cmdi.block_command?(cmd)
|
|
14
|
+
raise "tCell.io Agent: Command not allowed by policy: #{cmd}"
|
|
15
|
+
end
|
|
13
16
|
end
|
|
14
17
|
|
|
15
18
|
tcell_original_binread(*args, &block)
|
|
@@ -69,14 +72,17 @@ class IO
|
|
|
69
72
|
path, _mode = TCellAgent::Instrumentation::Lfi.extract_path_mode(*args)
|
|
70
73
|
mode = 'Read'
|
|
71
74
|
|
|
72
|
-
if path && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
75
|
+
if !path.strip.empty? && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
73
76
|
raise IOError, "tCell.io Agent: Attempted access to file #{path} with mode #{mode} denied"
|
|
74
77
|
end
|
|
75
78
|
|
|
76
|
-
|
|
77
|
-
|
|
78
|
-
|
|
79
|
+
if path.empty?
|
|
80
|
+
cmd = TCellAgent::Cmdi.parse_command_from_open(*args)
|
|
81
|
+
if cmd && TCellAgent::Cmdi.block_command?(cmd)
|
|
82
|
+
raise "tCell.io Agent: Command not allowed by policy: #{cmd}"
|
|
83
|
+
end
|
|
79
84
|
end
|
|
85
|
+
|
|
80
86
|
tcell_original_read(*args, &block)
|
|
81
87
|
end
|
|
82
88
|
|
|
@@ -85,13 +91,15 @@ class IO
|
|
|
85
91
|
path, _mode = TCellAgent::Instrumentation::Lfi.extract_path_mode(*args)
|
|
86
92
|
mode = 'Read'
|
|
87
93
|
|
|
88
|
-
if path && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
94
|
+
if !path.strip.empty? && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
89
95
|
raise IOError, "tCell.io Agent: Attempted access to file #{path} with mode #{mode} denied"
|
|
90
96
|
end
|
|
91
97
|
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
98
|
+
if path.empty?
|
|
99
|
+
cmd = TCellAgent::Cmdi.parse_command_from_open(*args)
|
|
100
|
+
if cmd && TCellAgent::Cmdi.block_command?(cmd)
|
|
101
|
+
raise "tCell.io Agent: Command not allowed by policy: #{cmd}"
|
|
102
|
+
end
|
|
95
103
|
end
|
|
96
104
|
|
|
97
105
|
tcell_original_readlines(*args, &block)
|
|
@@ -4,13 +4,15 @@ module Kernel
|
|
|
4
4
|
def open(*args, &block)
|
|
5
5
|
path, mode = TCellAgent::Instrumentation::Lfi.extract_path_mode(*args)
|
|
6
6
|
|
|
7
|
-
if path && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
7
|
+
if !path.strip.empty? && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
8
8
|
raise IOError, "tCell.io Agent: Attempted access to file #{path} with mode #{mode} denied"
|
|
9
9
|
end
|
|
10
10
|
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
11
|
+
if path.empty?
|
|
12
|
+
cmd = TCellAgent::Cmdi.parse_command_from_open(*args)
|
|
13
|
+
if cmd && TCellAgent::Cmdi.block_command?(cmd)
|
|
14
|
+
raise "tCell.io Agent: Command not allowed by policy: #{cmd}"
|
|
15
|
+
end
|
|
14
16
|
end
|
|
15
17
|
|
|
16
18
|
tcell_original_1_open(*args, &block)
|
|
@@ -72,13 +74,15 @@ module Kernel
|
|
|
72
74
|
def open(*args, &block)
|
|
73
75
|
path, mode = TCellAgent::Instrumentation::Lfi.extract_path_mode(*args)
|
|
74
76
|
|
|
75
|
-
if path && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
77
|
+
if !path.strip.empty? && TCellAgent::Instrumentation::Lfi.block_file_access?(path, mode)
|
|
76
78
|
raise IOError, "tCell.io Agent: Attempted access to file #{path} with mode #{mode} denied"
|
|
77
79
|
end
|
|
78
80
|
|
|
79
|
-
|
|
80
|
-
|
|
81
|
-
|
|
81
|
+
if path.empty?
|
|
82
|
+
cmd = TCellAgent::Cmdi.parse_command_from_open(*args)
|
|
83
|
+
if cmd && TCellAgent::Cmdi.block_command?(cmd)
|
|
84
|
+
raise "tCell.io Agent: Command not allowed by policy: #{cmd}"
|
|
85
|
+
end
|
|
82
86
|
end
|
|
83
87
|
|
|
84
88
|
tcell_original_2_open(*args, &block)
|
|
@@ -228,9 +228,15 @@ module TCellAgent
|
|
|
228
228
|
)
|
|
229
229
|
tcell_data = request_env[TCellAgent::Instrumentation::TCELL_ID]
|
|
230
230
|
if tcell_data && result.is_a?(ActiveRecord::StatementInvalid)
|
|
231
|
-
|
|
232
|
-
|
|
233
|
-
|
|
231
|
+
if message.is_a? Hash
|
|
232
|
+
tcell_data.sql_exceptions.push(
|
|
233
|
+
{ 'exception_name' => result.class.name, 'exception_payload' => message[:message] }
|
|
234
|
+
)
|
|
235
|
+
else
|
|
236
|
+
tcell_data.sql_exceptions.push(
|
|
237
|
+
{ 'exception_name' => result.class.name, 'exception_payload' => message }
|
|
238
|
+
)
|
|
239
|
+
end
|
|
234
240
|
end
|
|
235
241
|
end
|
|
236
242
|
end
|
|
@@ -253,7 +259,7 @@ module TCellAgent
|
|
|
253
259
|
end
|
|
254
260
|
|
|
255
261
|
ActiveRecord::Querying.module_eval do
|
|
256
|
-
if ::Rails::VERSION::MAJOR
|
|
262
|
+
if ::Rails::VERSION::MAJOR >= 5
|
|
257
263
|
alias_method :tcell_find_by_sql, :find_by_sql
|
|
258
264
|
def find_by_sql(*args)
|
|
259
265
|
results = tcell_find_by_sql(*args)
|
|
@@ -77,7 +77,7 @@ module TCellAgent
|
|
|
77
77
|
end
|
|
78
78
|
|
|
79
79
|
def self.create_tcell_route(route)
|
|
80
|
-
return TCellRoute5.new(route) if route && ::Rails::VERSION::MAJOR
|
|
80
|
+
return TCellRoute5.new(route) if route && ::Rails::VERSION::MAJOR >= 5
|
|
81
81
|
return TCellRoute4.new(route) if route && ::Rails::VERSION::MAJOR < 5
|
|
82
82
|
|
|
83
83
|
TCellRoute.new
|
|
@@ -173,7 +173,7 @@ module TCellAgent
|
|
|
173
173
|
end
|
|
174
174
|
end
|
|
175
175
|
|
|
176
|
-
if ::Rails::VERSION::MAJOR
|
|
176
|
+
if ::Rails::VERSION::MAJOR >= 5
|
|
177
177
|
ActionDispatch::Journey::Routes.class_eval do
|
|
178
178
|
alias_method :tcell_add_route, :add_route
|
|
179
179
|
def add_route(name, mapping)
|
|
@@ -188,7 +188,7 @@ module TCellAgent
|
|
|
188
188
|
end
|
|
189
189
|
end
|
|
190
190
|
|
|
191
|
-
if ::Rails::VERSION::MAJOR
|
|
191
|
+
if ::Rails::VERSION::MAJOR >= 5 || (::Rails::VERSION::MAJOR == 4 && ::Rails::VERSION::MINOR >= 2)
|
|
192
192
|
ActionDispatch::Journey::Router.class_eval do
|
|
193
193
|
alias_method :tcell_serve, :serve
|
|
194
194
|
def serve(req)
|
|
Binary file
|
|
Binary file
|
|
Binary file
|
|
Binary file
|
data/lib/tcell_agent/version.rb
CHANGED
|
@@ -147,5 +147,13 @@ module TCellAgent
|
|
|
147
147
|
end
|
|
148
148
|
end
|
|
149
149
|
end
|
|
150
|
+
describe '.parse_command_from_open' do
|
|
151
|
+
context 'with string command' do
|
|
152
|
+
it 'should parse the command properly' do
|
|
153
|
+
cmd = TCellAgent::Cmdi.parse_command_from_open('|echo')
|
|
154
|
+
expect(cmd).to eq('echo')
|
|
155
|
+
end
|
|
156
|
+
end
|
|
157
|
+
end
|
|
150
158
|
end
|
|
151
159
|
end
|
|
@@ -42,6 +42,7 @@ describe 'IO' do
|
|
|
42
42
|
TCellAgent::PolicyTypes::LFI
|
|
43
43
|
).and_return(@local_files_policy)
|
|
44
44
|
expect(@local_files_policy).to receive(:block_file_access?).and_return(false)
|
|
45
|
+
expect(TCellAgent::Cmdi).not_to receive(:parse_command_from_open)
|
|
45
46
|
end
|
|
46
47
|
end
|
|
47
48
|
|
|
@@ -75,6 +76,7 @@ describe 'IO' do
|
|
|
75
76
|
TCellAgent::PolicyTypes::LFI
|
|
76
77
|
).and_return(@local_files_policy)
|
|
77
78
|
expect(@local_files_policy).to receive(:block_file_access?).and_return(true)
|
|
79
|
+
expect(TCellAgent::Cmdi).not_to receive(:parse_command_from_open)
|
|
78
80
|
end
|
|
79
81
|
end
|
|
80
82
|
|
|
@@ -254,6 +256,7 @@ describe 'IO' do
|
|
|
254
256
|
).and_return(@local_files_policy)
|
|
255
257
|
|
|
256
258
|
expect(@local_files_policy).to receive(:block_file_access?).and_return(false)
|
|
259
|
+
expect(TCellAgent::Cmdi).not_to receive(:parse_command_from_open)
|
|
257
260
|
end
|
|
258
261
|
end
|
|
259
262
|
|
|
@@ -288,6 +291,7 @@ describe 'IO' do
|
|
|
288
291
|
).and_return(@local_files_policy)
|
|
289
292
|
|
|
290
293
|
expect(@local_files_policy).to receive(:block_file_access?).and_return(true)
|
|
294
|
+
expect(TCellAgent::Cmdi).not_to receive(:parse_command_from_open)
|
|
291
295
|
end
|
|
292
296
|
end
|
|
293
297
|
|
|
@@ -338,6 +342,7 @@ describe 'IO' do
|
|
|
338
342
|
).and_return(@local_files_policy)
|
|
339
343
|
|
|
340
344
|
expect(@local_files_policy).to receive(:block_file_access?).and_return(false)
|
|
345
|
+
expect(TCellAgent::Cmdi).not_to receive(:parse_command_from_open)
|
|
341
346
|
end
|
|
342
347
|
end
|
|
343
348
|
|
|
@@ -366,6 +371,7 @@ describe 'IO' do
|
|
|
366
371
|
).and_return(@local_files_policy)
|
|
367
372
|
|
|
368
373
|
expect(@local_files_policy).to receive(:block_file_access?).and_return(true)
|
|
374
|
+
expect(TCellAgent::Cmdi).not_to receive(:parse_command_from_open)
|
|
369
375
|
end
|
|
370
376
|
end
|
|
371
377
|
|
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
# rubocop:disable Lint/UselessAssignment
|
|
3
3
|
require 'spec_helper'
|
|
4
4
|
require 'securerandom'
|
|
5
|
+
require 'pathname'
|
|
5
6
|
|
|
6
7
|
describe 'Kernel' do
|
|
7
8
|
before do
|
|
@@ -15,6 +16,7 @@ describe 'Kernel' do
|
|
|
15
16
|
|
|
16
17
|
before(:all) do
|
|
17
18
|
@new_file_name = '/tmp/' + SecureRandom.uuid
|
|
19
|
+
@new_pathname = Pathname.new(@new_file_name)
|
|
18
20
|
end
|
|
19
21
|
describe '#open and ::open' do
|
|
20
22
|
context 'empty path' do
|
|
@@ -39,13 +41,14 @@ describe 'Kernel' do
|
|
|
39
41
|
end.to raise_error(Errno::ENOENT)
|
|
40
42
|
end
|
|
41
43
|
end
|
|
42
|
-
context 'with a filename not blocked for read/write' do
|
|
44
|
+
context 'with a non-existent file, with filename not blocked for read/write' do
|
|
43
45
|
before do |test|
|
|
44
46
|
unless test.metadata[:skip_before]
|
|
45
47
|
expect(TCellAgent).to receive(:policy).with(
|
|
46
48
|
TCellAgent::PolicyTypes::LFI
|
|
47
49
|
).and_return(@local_files_policy, @local_files_policy)
|
|
48
50
|
expect(@local_files_policy).to receive(:block_file_access?).and_return(false, false)
|
|
51
|
+
expect(TCellAgent::Cmdi).not_to receive(:parse_command_from_open)
|
|
49
52
|
end
|
|
50
53
|
end
|
|
51
54
|
|
|
@@ -56,7 +59,18 @@ describe 'Kernel' do
|
|
|
56
59
|
result = open('|echo test').read
|
|
57
60
|
expect(result).to eq "test\n"
|
|
58
61
|
end
|
|
59
|
-
context 'with a
|
|
62
|
+
context 'with a pathname filename with mode w' do
|
|
63
|
+
it 'should create the file' do
|
|
64
|
+
Kernel.open(@new_pathname, 'w')
|
|
65
|
+
expect(File.exist?(@new_pathname)).to be_truthy
|
|
66
|
+
File.delete(@new_pathname)
|
|
67
|
+
|
|
68
|
+
open(@new_pathname, 'w')
|
|
69
|
+
expect(File.exist?(@new_pathname)).to be_truthy
|
|
70
|
+
File.delete(@new_pathname)
|
|
71
|
+
end
|
|
72
|
+
end
|
|
73
|
+
context 'with a filename with mode w' do
|
|
60
74
|
it 'should create the file' do
|
|
61
75
|
Kernel.open(@new_file_name, 'w')
|
|
62
76
|
expect(File.exist?(@new_file_name)).to be_truthy
|
|
@@ -90,13 +104,14 @@ describe 'Kernel' do
|
|
|
90
104
|
end
|
|
91
105
|
end
|
|
92
106
|
end
|
|
93
|
-
context 'with a filename blocked for read/write' do
|
|
107
|
+
context 'with a non-existent file, with filename blocked for read/write' do
|
|
94
108
|
before do |test|
|
|
95
109
|
unless test.metadata[:skip_before]
|
|
96
110
|
expect(TCellAgent).to receive(:policy).with(
|
|
97
111
|
TCellAgent::PolicyTypes::LFI
|
|
98
112
|
).and_return(@local_files_policy, @local_files_policy)
|
|
99
113
|
expect(@local_files_policy).to receive(:block_file_access?).and_return(true, true)
|
|
114
|
+
expect(TCellAgent::Cmdi).not_to receive(:parse_command_from_open)
|
|
100
115
|
end
|
|
101
116
|
end
|
|
102
117
|
|
|
@@ -107,7 +122,7 @@ describe 'Kernel' do
|
|
|
107
122
|
result = open('|echo test').read
|
|
108
123
|
expect(result).to eq "test\n"
|
|
109
124
|
end
|
|
110
|
-
context 'with a
|
|
125
|
+
context 'with a filename with mode w' do
|
|
111
126
|
it 'should raise an error' do
|
|
112
127
|
expect do
|
|
113
128
|
Kernel.open(@new_file_name, 'w')
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: tcell_agent
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 2.
|
|
4
|
+
version: 2.1.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Rafael
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-
|
|
11
|
+
date: 2020-04-08 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: ffi
|
|
@@ -162,14 +162,14 @@ files:
|
|
|
162
162
|
- lib/tcell_agent/rails/tcell_body_proxy.rb
|
|
163
163
|
- lib/tcell_agent/routes/table.rb
|
|
164
164
|
- lib/tcell_agent/rust/agent_config.rb
|
|
165
|
-
- lib/tcell_agent/rust/libtcellagent-4.
|
|
166
|
-
- lib/tcell_agent/rust/libtcellagent-4.
|
|
167
|
-
- lib/tcell_agent/rust/libtcellagent-alpine-4.
|
|
165
|
+
- lib/tcell_agent/rust/libtcellagent-4.17.1.dylib
|
|
166
|
+
- lib/tcell_agent/rust/libtcellagent-4.17.1.so
|
|
167
|
+
- lib/tcell_agent/rust/libtcellagent-alpine-4.17.1.so
|
|
168
168
|
- lib/tcell_agent/rust/models.rb
|
|
169
169
|
- lib/tcell_agent/rust/native_agent.rb
|
|
170
170
|
- lib/tcell_agent/rust/native_agent_response.rb
|
|
171
171
|
- lib/tcell_agent/rust/native_library.rb
|
|
172
|
-
- lib/tcell_agent/rust/tcellagent-4.
|
|
172
|
+
- lib/tcell_agent/rust/tcellagent-4.17.1.dll
|
|
173
173
|
- lib/tcell_agent/sensor_events/agent_setting_event.rb
|
|
174
174
|
- lib/tcell_agent/sensor_events/app_config_setting_event.rb
|
|
175
175
|
- lib/tcell_agent/sensor_events/discovery.rb
|
|
@@ -192,12 +192,12 @@ files:
|
|
|
192
192
|
- lib/tcell_agent/utils/params.rb
|
|
193
193
|
- lib/tcell_agent/utils/strings.rb
|
|
194
194
|
- lib/tcell_agent/version.rb
|
|
195
|
-
- spec/lib/tcell_agent/cmdi_spec.rb
|
|
196
195
|
- spec/lib/tcell_agent/config/unknown_options_spec.rb
|
|
197
196
|
- spec/lib/tcell_agent/configuration_spec.rb
|
|
198
197
|
- spec/lib/tcell_agent/hooks/login_fraud_spec.rb
|
|
199
198
|
- spec/lib/tcell_agent/instrumentation/cmdi/io_cmdi_spec.rb
|
|
200
199
|
- spec/lib/tcell_agent/instrumentation/cmdi/kernel_cmdi_spec.rb
|
|
200
|
+
- spec/lib/tcell_agent/instrumentation/cmdi_spec.rb
|
|
201
201
|
- spec/lib/tcell_agent/instrumentation/lfi/file_lfi_spec.rb
|
|
202
202
|
- spec/lib/tcell_agent/instrumentation/lfi/io_lfi_spec.rb
|
|
203
203
|
- spec/lib/tcell_agent/instrumentation/lfi/kernel_lfi_spec.rb
|
|
@@ -266,12 +266,12 @@ signing_key:
|
|
|
266
266
|
specification_version: 4
|
|
267
267
|
summary: tCell.io Agent for Rails
|
|
268
268
|
test_files:
|
|
269
|
-
- spec/lib/tcell_agent/cmdi_spec.rb
|
|
270
269
|
- spec/lib/tcell_agent/config/unknown_options_spec.rb
|
|
271
270
|
- spec/lib/tcell_agent/configuration_spec.rb
|
|
272
271
|
- spec/lib/tcell_agent/hooks/login_fraud_spec.rb
|
|
273
272
|
- spec/lib/tcell_agent/instrumentation/cmdi/io_cmdi_spec.rb
|
|
274
273
|
- spec/lib/tcell_agent/instrumentation/cmdi/kernel_cmdi_spec.rb
|
|
274
|
+
- spec/lib/tcell_agent/instrumentation/cmdi_spec.rb
|
|
275
275
|
- spec/lib/tcell_agent/instrumentation/lfi/file_lfi_spec.rb
|
|
276
276
|
- spec/lib/tcell_agent/instrumentation/lfi/io_lfi_spec.rb
|
|
277
277
|
- spec/lib/tcell_agent/instrumentation/lfi/kernel_lfi_spec.rb
|