vybesec 0.1.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: fff95dfb34e9210f86efa5190cfc428143f16d3cd095c36c33c5097de0c96665
+  data.tar.gz: f00015b5ce15530afe855d2175428eae1231a20b4b8991e95e0c545570a40b3b
+SHA512:
+  metadata.gz: 2578c5bdb91988f4eb8091068b3ed5c767c4db752de0eb02281fd6ea17635ce0967e3cb5e7c68f3cef7e838ceb8952c0ccded1f26623d467b1714417a8552460
+  data.tar.gz: 1863db16b2547e54cf82709ed8dc2a3a830fd3a2f499d0ca5d5332e2298d4d5bbf2fd10f1fcfbffa39ae62a0cdcfc17192755ea7e0a04db08cecdecd694e9ae3

data/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) VybeSec
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

data/README.md

@@ -0,0 +1,62 @@
+# vybesec (Ruby)
+
+Ruby server SDK for VybeSec.
+
+Gem name: `vybesec`
+
+## Install
+
+```bash
+gem install vybesec
+```
+
+or in your `Gemfile`:
+
+```ruby
+gem "vybesec"
+```
+
+## Initialize
+
+```ruby
+require "vybesec"
+
+Vybesec.init(
+  key: "pk_live_YOUR_KEY",
+  platform: "other",
+  environment: "production",
+  release: "api@1.0.0"
+)
+```
+
+## Manual capture
+
+```ruby
+begin
+  process_checkout
+rescue => e
+  Vybesec.capture_exception(
+    e,
+    route: "/api/checkout",
+    method: "POST",
+    status_code: 500,
+    request_body: '{"email":"person@example.com","token":"abc"}',
+    tags: { "component" => "payments" }
+  )
+  raise
+end
+```
+
+## Rack middleware
+
+```ruby
+# config.ru
+require "vybesec"
+
+Vybesec.init(key: ENV.fetch("VYBESEC_KEY"), platform: "other")
+
+use Vybesec::Middleware
+run MyRackApp
+```
+
+The middleware captures thrown exceptions and re-raises them, and captures 5xx responses.

data/lib/vybesec/client.rb

@@ -0,0 +1,183 @@
+require "json"
+require "net/http"
+require "securerandom"
+require "uri"
+
+require_relative "version"
+require_relative "scrubber"
+
+module Vybesec
+  Config = Struct.new(
+    :key,
+    :platform,
+    :runtime,
+    :server_platform,
+    :environment,
+    :release,
+    :ingest_url,
+    :timeout,
+    :debug,
+    :ignore_errors,
+    keyword_init: true
+  )
+
+  DEFAULT_INGEST_URL = "https://ingest.vybesec.com".freeze
+
+  class << self
+    attr_writer :transport
+
+    def init(key:, platform: "other", runtime: "ruby", server_platform: nil, environment: nil, release: "", ingest_url: DEFAULT_INGEST_URL, timeout: 2, debug: false, ignore_errors: [])
+      @config = Config.new(
+        key: key,
+        platform: platform.to_s.empty? ? "other" : platform,
+        runtime: runtime.to_s.empty? ? "ruby" : runtime,
+        server_platform: server_platform || detect_server_platform,
+        environment: environment || detect_environment,
+        release: release,
+        ingest_url: ingest_url.to_s.sub(%r{/$}, ""),
+        timeout: timeout,
+        debug: debug,
+        ignore_errors: Array(ignore_errors)
+      )
+      self
+    end
+
+    def capture_exception(exception, route: nil, method: nil, status_code: nil, request_body: nil, tags: {})
+      return unless configured?
+
+      message = Scrubber.scrub(exception.to_s)
+      return if ignored_error?(message)
+
+      payload = build_payload(
+        exception,
+        route: route,
+        method: method,
+        status_code: status_code,
+        request_body: request_body,
+        tags: tags
+      )
+
+      dispatch_payload(payload)
+      nil
+    rescue StandardError => e
+      debug_log("[VybeSec] capture failed: #{e.class}: #{e.message}")
+      nil
+    end
+
+    def scrub_sensitive_data(value)
+      Scrubber.scrub(value.to_s)
+    end
+
+    def reset!
+      @config = nil
+      @transport = nil
+    end
+
+    private
+
+    def dispatch_payload(payload)
+      if @transport
+        @transport.call(payload)
+        return
+      end
+
+      Thread.new { send_payload(payload) }
+    rescue StandardError => e
+      debug_log("[VybeSec] dispatch failed: #{e.class}: #{e.message}")
+    end
+
+    def send_payload(payload)
+      return unless configured?
+
+      uri = URI.parse("#{config.ingest_url}/v1/server-events/#{config.key}")
+      request = Net::HTTP::Post.new(uri.request_uri)
+      request["Content-Type"] = "application/json"
+      request.body = JSON.generate([payload])
+
+      Net::HTTP.start(
+        uri.host,
+        uri.port,
+        use_ssl: uri.scheme == "https",
+        open_timeout: config.timeout,
+        read_timeout: config.timeout,
+      ) do |http|
+        http.request(request)
+      end
+    rescue StandardError => e
+      debug_log("[VybeSec] send failed: #{e.class}: #{e.message}")
+    end
+
+    def build_payload(exception, route:, method:, status_code:, request_body:, tags:)
+      {
+        type: "error",
+        message: Scrubber.scrub(exception.to_s),
+        stackTrace: Scrubber.scrub(backtrace_for(exception)),
+        errorType: exception.class.name,
+        source: "server",
+        serverRuntime: config.runtime,
+        serverPlatform: config.server_platform,
+        serverRoute: route,
+        serverMethod: method,
+        serverStatusCode: status_code,
+        requestBody: scrub_and_truncate(request_body),
+        platform: config.platform,
+        environment: config.environment,
+        release: config.release,
+        sdkVersion: VERSION,
+        timestamp: (Time.now.to_f * 1000).to_i,
+        tags: tags || {},
+        sessionId: SecureRandom.hex(8),
+      }.compact
+    end
+
+    def backtrace_for(exception)
+      traces = Array(exception.backtrace)
+      return "" if traces.empty?
+
+      traces.join("\n")
+    end
+
+    def scrub_and_truncate(body)
+      return nil if body.nil? || body.to_s.empty?
+
+      Scrubber.scrub(body.to_s).slice(0, 500)
+    end
+
+    def ignored_error?(message)
+      Array(config.ignore_errors).any? do |pattern|
+        case pattern
+        when Regexp
+          message.match?(pattern)
+        else
+          message.include?(pattern.to_s)
+        end
+      end
+    end
+
+    def configured?
+      !config.nil? && !config.key.to_s.strip.empty?
+    end
+
+    def config
+      @config
+    end
+
+    def detect_environment
+      ENV["VYBESEC_ENV"] || ENV["RACK_ENV"] || ENV["RAILS_ENV"] || "production"
+    end
+
+    def detect_server_platform
+      return "vercel" if ENV["VERCEL"]
+      return "railway" if ENV["RAILWAY_ENVIRONMENT"]
+      return "render" if ENV["RENDER"]
+      return "fly" if ENV["FLY_APP_NAME"]
+      return "replit" if ENV["REPL_ID"]
+
+      "unknown"
+    end
+
+    def debug_log(message)
+      warn(message) if config&.debug
+    end
+  end
+end

data/lib/vybesec/middleware.rb

@@ -0,0 +1,47 @@
+module Vybesec
+  class Middleware
+    def initialize(app)
+      @app = app
+    end
+
+    def call(env)
+      status, headers, body = @app.call(env)
+
+      if status.to_i >= 500
+        Vybesec.capture_exception(
+          RuntimeError.new("#{env['REQUEST_METHOD']} #{env['PATH_INFO']} returned #{status}"),
+          route: env['PATH_INFO'],
+          method: env['REQUEST_METHOD'],
+          status_code: status.to_i,
+          request_body: request_body(env),
+          tags: { 'capturedBy' => 'rack-middleware' },
+        )
+      end
+
+      [status, headers, body]
+    rescue StandardError => e
+      Vybesec.capture_exception(
+        e,
+        route: env['PATH_INFO'],
+        method: env['REQUEST_METHOD'],
+        status_code: 500,
+        request_body: request_body(env),
+        tags: { 'capturedBy' => 'rack-middleware' },
+      )
+      raise
+    end
+
+    private
+
+    def request_body(env)
+      input = env['rack.input']
+      return nil unless input.respond_to?(:read)
+
+      body = input.read
+      input.rewind if input.respond_to?(:rewind)
+      body
+    rescue StandardError
+      nil
+    end
+  end
+end

data/lib/vybesec/scrubber.rb

@@ -0,0 +1,29 @@
+module Vybesec
+  module Scrubber
+    module_function
+
+    PATTERNS = [
+      [/sk-[a-zA-Z0-9]{20,}/, "[api-key]"],
+      [/pk_live_[a-zA-Z0-9]{20,}/, "[stripe-key]"],
+      [/whsec_[a-zA-Z0-9]{20,}/, "[webhook-secret]"],
+      [/Bearer\s+[a-zA-Z0-9\-_.]{20,}/, "Bearer [token]"],
+      [/eyJ[a-zA-Z0-9_-]{10,}\.[a-zA-Z0-9_-]{10,}/, "[jwt]"],
+      [/\b[A-Za-z0-9._%+\-]+@[A-Za-z0-9.\-]+\.[A-Za-z]{2,}\b/, "[email]"],
+      [/\b\d{4}[\s\-]?\d{4}[\s\-]?\d{4}[\s\-]?\d{4}\b/, "[card]"],
+      [/\b\d{3}-\d{2}-\d{4}\b/, "[ssn]"],
+      [/"password"\s*:\s*"[^"]+"/i, '"password":"[redacted]"'],
+      [/"secret"\s*:\s*"[^"]+"/i, '"secret":"[redacted]"'],
+      [/"token"\s*:\s*"[^"]+"/i, '"token":"[redacted]"'],
+    ].freeze
+
+    def scrub(value)
+      return value if value.nil? || value.empty?
+
+      output = value.dup
+      PATTERNS.each do |pattern, replacement|
+        output.gsub!(pattern, replacement)
+      end
+      output
+    end
+  end
+end

data/lib/vybesec/version.rb

@@ -0,0 +1,3 @@
+module Vybesec
+  VERSION = "0.1.1"
+end

data/lib/vybesec.rb

@@ -0,0 +1,4 @@
+require_relative "vybesec/version"
+require_relative "vybesec/scrubber"
+require_relative "vybesec/client"
+require_relative "vybesec/middleware"

metadata

@@ -0,0 +1,50 @@
+--- !ruby/object:Gem::Specification
+name: vybesec
+version: !ruby/object:Gem::Version
+  version: 0.1.1
+platform: ruby
+authors:
+- VybeSec
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2026-03-28 00:00:00.000000000 Z
+dependencies: []
+description: Capture Ruby server exceptions and send them to VybeSec ingest.
+email:
+- hello@vybesec.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- LICENSE
+- README.md
+- lib/vybesec.rb
+- lib/vybesec/client.rb
+- lib/vybesec/middleware.rb
+- lib/vybesec/scrubber.rb
+- lib/vybesec/version.rb
+homepage: https://vybesec.com
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '2.6'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.0.3.1
+signing_key: 
+specification_version: 4
+summary: VybeSec server monitoring SDK for Ruby
+test_files: []