veracode_api_signing 0.1.0 → 1.1.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.brakeman.ignore +22 -0
- data/.github/dependabot.yml +14 -0
- data/.github/workflows/tests.yml +7 -9
- data/.rubocop.yml +6 -1
- data/Gemfile.lock +31 -30
- data/Rakefile +1 -1
- data/lib/veracode_api_signing/credentials.rb +1 -1
- data/lib/veracode_api_signing/version.rb +1 -1
- data/shell.nix +2 -2
- data/veracode_api_signing.gemspec +3 -1
- metadata +4 -20
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 13a986a50be97c21566c41085d86c0920bffebc39faa7685a7e50e871cb3cabb
|
4
|
+
data.tar.gz: 24dce5b41889e7b585829f9aa6a2e9f37b5de239abed959e75941d927dc789c7
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 6864bd4066392cc9a56463bd112a64e8e235aefb94b997912d81dc0a6b68fb85e4d97e11da7a444b45fe28606152c8b05c871d0f40a80c7f4802525c13c52dd6
|
7
|
+
data.tar.gz: 930ead08ed900ad38ee9c4980018e2baebb112c6d955a4e13d550f9842ed1cbf65d5f6589588a3bcbbd54799390482bd7a19202a7a5ad540ba34df276840fb02
|
data/.brakeman.ignore
ADDED
@@ -0,0 +1,22 @@
|
|
1
|
+
{
|
2
|
+
"ignored_warnings": [
|
3
|
+
{
|
4
|
+
"warning_type": "Authentication",
|
5
|
+
"warning_code": 101,
|
6
|
+
"fingerprint": "ed197e75289bf8a8e2150b832564f162bd93b971008455079f89032792a0e0f1",
|
7
|
+
"check_name": "Secrets",
|
8
|
+
"message": "Hardcoded value for `ENV_API_SECRET_KEY_NAME` in source code",
|
9
|
+
"file": "lib/veracode_api_signing/credentials.rb",
|
10
|
+
"line": 10,
|
11
|
+
"link": "https://brakemanscanner.org/docs/warning_types/authentication/",
|
12
|
+
"code": null,
|
13
|
+
"render_path": null,
|
14
|
+
"location": null,
|
15
|
+
"user_input": null,
|
16
|
+
"confidence": "Medium",
|
17
|
+
"note": "Not actually a hardcoded secret, this value represents the name of the environment variable used when looking for credentials."
|
18
|
+
}
|
19
|
+
],
|
20
|
+
"updated": "2021-12-24 09:06:49 -0700",
|
21
|
+
"brakeman_version": "5.2.0"
|
22
|
+
}
|
@@ -0,0 +1,14 @@
|
|
1
|
+
---
|
2
|
+
version: 2
|
3
|
+
updates:
|
4
|
+
- package-ecosystem: "bundler"
|
5
|
+
directory: "/"
|
6
|
+
schedule:
|
7
|
+
interval: "weekly"
|
8
|
+
labels:
|
9
|
+
- "dependencies"
|
10
|
+
open-pull-requests-limit: 5
|
11
|
+
# This option will also apply to security patches
|
12
|
+
# lockfile-only respects the version constraints specified in the Gemfile.
|
13
|
+
# Otherwise both the Gemfile and Gemfile.lock would be updated to use the latest version
|
14
|
+
versioning-strategy: lockfile-only
|
data/.github/workflows/tests.yml
CHANGED
@@ -13,7 +13,7 @@ jobs:
|
|
13
13
|
matrix:
|
14
14
|
os: [ubuntu-latest, macos-latest]
|
15
15
|
# Due to https://github.com/actions/runner/issues/849, we have to use quotes for '3.0'
|
16
|
-
ruby: [2.7, '3.0', truffleruby, truffleruby-head]
|
16
|
+
ruby: [2.7, '3.0', '3.1', truffleruby, truffleruby-head]
|
17
17
|
runs-on: ${{ matrix.os }}
|
18
18
|
steps:
|
19
19
|
- uses: actions/checkout@v2
|
@@ -34,7 +34,7 @@ jobs:
|
|
34
34
|
|
35
35
|
- uses: ruby/setup-ruby@v1
|
36
36
|
with:
|
37
|
-
ruby-version: '3.
|
37
|
+
ruby-version: '3.1'
|
38
38
|
bundler-cache: true # runs 'bundle install' and caches installed gems automatically
|
39
39
|
|
40
40
|
- name: Yard documents
|
@@ -43,11 +43,9 @@ jobs:
|
|
43
43
|
|
44
44
|
- name: Deploy pages
|
45
45
|
if: github.event_name == 'push'
|
46
|
-
uses: JamesIves/github-pages-deploy-action@
|
46
|
+
uses: JamesIves/github-pages-deploy-action@v4.2.5
|
47
47
|
with:
|
48
|
-
|
49
|
-
|
50
|
-
|
51
|
-
|
52
|
-
CLEAN: true
|
53
|
-
CLEAN_EXCLUDE: '[".gitattributes", ".gitignore", "CNAME", "LICENSE"]'
|
48
|
+
branch: gh-pages
|
49
|
+
folder: doc
|
50
|
+
clean: true
|
51
|
+
clean-exclude: '[".gitattributes", ".gitignore", "CNAME", "LICENSE"]'
|
data/.rubocop.yml
CHANGED
@@ -7,7 +7,8 @@ require:
|
|
7
7
|
|
8
8
|
AllCops:
|
9
9
|
NewCops: enable
|
10
|
-
|
10
|
+
CacheRootDirectory: tmp/
|
11
|
+
TargetRubyVersion: 3.1
|
11
12
|
|
12
13
|
Style/StringLiterals:
|
13
14
|
Enabled: true
|
@@ -17,6 +18,10 @@ Style/StringLiteralsInInterpolation:
|
|
17
18
|
Enabled: true
|
18
19
|
EnforcedStyle: double_quotes
|
19
20
|
|
21
|
+
Style/HashSyntax:
|
22
|
+
Enabled: true
|
23
|
+
EnforcedShorthandSyntax: either
|
24
|
+
|
20
25
|
RSpec/ExampleLength:
|
21
26
|
Max: 50
|
22
27
|
|
data/Gemfile.lock
CHANGED
@@ -1,52 +1,52 @@
|
|
1
1
|
PATH
|
2
2
|
remote: .
|
3
3
|
specs:
|
4
|
-
veracode_api_signing (
|
4
|
+
veracode_api_signing (1.1.0)
|
5
5
|
|
6
6
|
GEM
|
7
7
|
remote: https://rubygems.org/
|
8
8
|
specs:
|
9
9
|
ast (2.4.2)
|
10
|
-
brakeman (5.
|
11
|
-
diff-lcs (1.
|
10
|
+
brakeman (5.2.3)
|
11
|
+
diff-lcs (1.5.0)
|
12
12
|
docile (1.4.0)
|
13
|
-
parallel (1.
|
14
|
-
parser (3.
|
13
|
+
parallel (1.22.1)
|
14
|
+
parser (3.1.2.0)
|
15
15
|
ast (~> 2.4.1)
|
16
|
-
rainbow (3.
|
16
|
+
rainbow (3.1.1)
|
17
17
|
rake (13.0.6)
|
18
|
-
regexp_parser (2.
|
18
|
+
regexp_parser (2.4.0)
|
19
19
|
rexml (3.2.5)
|
20
|
-
rspec (3.
|
21
|
-
rspec-core (~> 3.
|
22
|
-
rspec-expectations (~> 3.
|
23
|
-
rspec-mocks (~> 3.
|
24
|
-
rspec-core (3.
|
25
|
-
rspec-support (~> 3.
|
26
|
-
rspec-expectations (3.
|
20
|
+
rspec (3.11.0)
|
21
|
+
rspec-core (~> 3.11.0)
|
22
|
+
rspec-expectations (~> 3.11.0)
|
23
|
+
rspec-mocks (~> 3.11.0)
|
24
|
+
rspec-core (3.11.0)
|
25
|
+
rspec-support (~> 3.11.0)
|
26
|
+
rspec-expectations (3.11.0)
|
27
27
|
diff-lcs (>= 1.2.0, < 2.0)
|
28
|
-
rspec-support (~> 3.
|
29
|
-
rspec-mocks (3.
|
28
|
+
rspec-support (~> 3.11.0)
|
29
|
+
rspec-mocks (3.11.1)
|
30
30
|
diff-lcs (>= 1.2.0, < 2.0)
|
31
|
-
rspec-support (~> 3.
|
32
|
-
rspec-support (3.
|
33
|
-
rubocop (1.
|
31
|
+
rspec-support (~> 3.11.0)
|
32
|
+
rspec-support (3.11.0)
|
33
|
+
rubocop (1.29.1)
|
34
34
|
parallel (~> 1.10)
|
35
|
-
parser (>= 3.
|
35
|
+
parser (>= 3.1.0.0)
|
36
36
|
rainbow (>= 2.2.2, < 4.0)
|
37
37
|
regexp_parser (>= 1.8, < 3.0)
|
38
|
-
rexml
|
39
|
-
rubocop-ast (>= 1.
|
38
|
+
rexml (>= 3.2.5, < 4.0)
|
39
|
+
rubocop-ast (>= 1.17.0, < 2.0)
|
40
40
|
ruby-progressbar (~> 1.7)
|
41
41
|
unicode-display_width (>= 1.4.0, < 3.0)
|
42
|
-
rubocop-ast (1.
|
43
|
-
parser (>= 3.
|
44
|
-
rubocop-performance (1.
|
42
|
+
rubocop-ast (1.18.0)
|
43
|
+
parser (>= 3.1.1.0)
|
44
|
+
rubocop-performance (1.13.3)
|
45
45
|
rubocop (>= 1.7.0, < 2.0)
|
46
46
|
rubocop-ast (>= 0.4.0)
|
47
47
|
rubocop-rake (0.6.0)
|
48
48
|
rubocop (~> 1.0)
|
49
|
-
rubocop-rspec (2.
|
49
|
+
rubocop-rspec (2.10.0)
|
50
50
|
rubocop (~> 1.19)
|
51
51
|
ruby-progressbar (1.11.0)
|
52
52
|
simplecov (0.21.2)
|
@@ -54,16 +54,17 @@ GEM
|
|
54
54
|
simplecov-html (~> 0.11)
|
55
55
|
simplecov_json_formatter (~> 0.1)
|
56
56
|
simplecov-html (0.12.3)
|
57
|
-
simplecov_json_formatter (0.1.
|
57
|
+
simplecov_json_formatter (0.1.4)
|
58
58
|
unicode-display_width (2.1.0)
|
59
|
-
|
59
|
+
webrick (1.7.0)
|
60
|
+
yard (0.9.27)
|
61
|
+
webrick (~> 1.7.0)
|
60
62
|
|
61
63
|
PLATFORMS
|
62
64
|
ruby
|
63
65
|
|
64
66
|
DEPENDENCIES
|
65
67
|
brakeman (~> 5.1)
|
66
|
-
bundler (~> 2.0)
|
67
68
|
rake (~> 13.0)
|
68
69
|
rspec (~> 3.0)
|
69
70
|
rubocop (~> 1.2)
|
@@ -75,4 +76,4 @@ DEPENDENCIES
|
|
75
76
|
yard (~> 0.9.26)
|
76
77
|
|
77
78
|
BUNDLED WITH
|
78
|
-
2.
|
79
|
+
2.3.9
|
data/Rakefile
CHANGED
@@ -19,7 +19,7 @@ namespace :brakeman do
|
|
19
19
|
require "brakeman"
|
20
20
|
|
21
21
|
files = args[:output_files].split if args[:output_files]
|
22
|
-
Brakeman.run app_path: ".", output_files: files, print_report: true, run_all_checks: true, force_scan: true
|
22
|
+
Brakeman.run app_path: ".", output_files: files, print_report: true, run_all_checks: true, force_scan: true, ignore_file: ".brakeman.ignore"
|
23
23
|
end
|
24
24
|
end
|
25
25
|
|
@@ -29,7 +29,7 @@ module VeracodeApiSigning
|
|
29
29
|
private
|
30
30
|
|
31
31
|
def get_credentials_from_environment_variables
|
32
|
-
[ENV
|
32
|
+
[ENV.fetch(ENV_API_KEY_NAME, nil), ENV.fetch(ENV_API_SECRET_KEY_NAME, nil)]
|
33
33
|
end
|
34
34
|
|
35
35
|
def get_credentials_from_filesystem(auth_file)
|
data/shell.nix
CHANGED
@@ -8,7 +8,7 @@ let
|
|
8
8
|
ApplicationServices
|
9
9
|
Security
|
10
10
|
]);
|
11
|
-
ruby =
|
11
|
+
ruby = ruby_3_1;
|
12
12
|
|
13
13
|
# Issue with using gemspec files
|
14
14
|
#
|
@@ -52,7 +52,7 @@ in mkShell rec {
|
|
52
52
|
postgresql
|
53
53
|
postgresql_13
|
54
54
|
readline
|
55
|
-
ruby
|
55
|
+
(lowPrio ruby)
|
56
56
|
shared-mime-info # Required for the mime gem
|
57
57
|
sqlcipher
|
58
58
|
sqlite
|
@@ -31,7 +31,6 @@ Gem::Specification.new do |spec|
|
|
31
31
|
spec.require_paths = ["lib"]
|
32
32
|
|
33
33
|
spec.add_development_dependency "brakeman", "~> 5.1"
|
34
|
-
spec.add_development_dependency "bundler", "~> 2.0"
|
35
34
|
spec.add_development_dependency "rake", "~> 13.0"
|
36
35
|
spec.add_development_dependency "rspec", "~> 3.0"
|
37
36
|
spec.add_development_dependency "rubocop", "~> 1.2"
|
@@ -40,4 +39,7 @@ Gem::Specification.new do |spec|
|
|
40
39
|
spec.add_development_dependency "rubocop-rspec", "~> 2.5"
|
41
40
|
spec.add_development_dependency "simplecov", "~> 0.21.2"
|
42
41
|
spec.add_development_dependency "yard", "~> 0.9.26"
|
42
|
+
spec.metadata = {
|
43
|
+
"rubygems_mfa_required" => "true"
|
44
|
+
}
|
43
45
|
end
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: veracode_api_signing
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version:
|
4
|
+
version: 1.1.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Corban Raun
|
@@ -24,20 +24,6 @@ dependencies:
|
|
24
24
|
- - "~>"
|
25
25
|
- !ruby/object:Gem::Version
|
26
26
|
version: '5.1'
|
27
|
-
- !ruby/object:Gem::Dependency
|
28
|
-
name: bundler
|
29
|
-
requirement: !ruby/object:Gem::Requirement
|
30
|
-
requirements:
|
31
|
-
- - "~>"
|
32
|
-
- !ruby/object:Gem::Version
|
33
|
-
version: '2.0'
|
34
|
-
type: :development
|
35
|
-
prerelease: false
|
36
|
-
version_requirements: !ruby/object:Gem::Requirement
|
37
|
-
requirements:
|
38
|
-
- - "~>"
|
39
|
-
- !ruby/object:Gem::Version
|
40
|
-
version: '2.0'
|
41
27
|
- !ruby/object:Gem::Dependency
|
42
28
|
name: rake
|
43
29
|
requirement: !ruby/object:Gem::Requirement
|
@@ -157,6 +143,8 @@ executables: []
|
|
157
143
|
extensions: []
|
158
144
|
extra_rdoc_files: []
|
159
145
|
files:
|
146
|
+
- ".brakeman.ignore"
|
147
|
+
- ".github/dependabot.yml"
|
160
148
|
- ".github/workflows/codeql-analysis.yml"
|
161
149
|
- ".github/workflows/tests.yml"
|
162
150
|
- ".gitignore"
|
@@ -187,11 +175,7 @@ homepage: https://CorbanR.github.io/veracode_api_signing
|
|
187
175
|
licenses:
|
188
176
|
- MIT
|
189
177
|
metadata:
|
190
|
-
|
191
|
-
homepage_uri: https://CorbanR.github.io/veracode_api_signing
|
192
|
-
documentation_uri: https://www.raunco.co/veracode_api_signing/
|
193
|
-
source_code_uri: https://github.com/CorbanR/veracode_api_signing
|
194
|
-
changelog_uri: https://github.com/CorbanR/veracode_api_signing/blob/main/CHANGELOG.md
|
178
|
+
rubygems_mfa_required: 'true'
|
195
179
|
post_install_message:
|
196
180
|
rdoc_options: []
|
197
181
|
require_paths:
|