RubyGems - zendesk_apps_support - Versions diffs - 4.45.0 → 4.46.0 - Mend

zendesk_apps_support 4.45.0 → 4.46.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/config/locales/en.yml +6 -2
data/config/locales/translations/zendesk_apps_support.yml +9 -1
data/lib/zendesk_apps_support/validations/custom_objects_v2/custom_objects_v2.rb +16 -3
data/lib/zendesk_apps_support/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8b8758656a8905a32b83c582ea409106a523ae0da29e2d27adab601b1b018600
-  data.tar.gz: 0b558941ca135311562c1ce19d0de5f7b601e7632aa52b3bd70034602869d5c0
+  metadata.gz: b48dcaba8c32f505c72149754b65c91bdded1dfb2ce877e7bd48fcae02bcbe90
+  data.tar.gz: daa2d477594e277c7572194b7c72af71f70f5ffbd3536d1ad9a816ad2e676604
 SHA512:
-  metadata.gz: ef0392d1072ac538bf2f5aa052a68b9690efa985ad97e8780457dff4cabd75d7a30322b29f7f06b6106e3e34c51e3a759835a04091b27fcd81950527b1d8afd9
-  data.tar.gz: ecc883ab33aa84393276ef0c67244ba65e876a342252b867ec2ff2eda6ac4dfb013bd9351a19247f5ad9071dd44b08a0bc704cba1c73af7d3ec781038305ceb7
+  metadata.gz: 96042b642bdcf700b5b1995385898972c8a10d4bb9a392f5d22d79f866d4e683a72f09eea1a8aec32558820868b98a47a18808e4aa495cc4aecd9db392904542
+  data.tar.gz: b566b7972ed3d819ff9d82f30151fb31c08ca81143a796fa0eecb8e98f48d2ce4a34f4972455ea2fcd88c72bc629e4dc1f7cff2bb7c4bb03a706758a68b02a34

data/config/locales/en.yml CHANGED Viewed

@@ -188,6 +188,9 @@ en:
               property of trigger %{trigger_key} (object: %{object_key}) contains
               a placeholder %{property_value}. Placeholders are not allowed in trigger
               definitions.'
+            setting_placeholders_not_allowed_in_cov2_requirements: The requirements.json
+              file contains a setting placeholder in the custom_objects_v2 requirements.
+              Setting placeholders are not allowed in custom_objects_v2 requirements.
             missing_required_fields: 'Missing required fields in requirements.json:
               "%{field}" is required in "%{identifier}"'
             duplicate_requirements:
@@ -265,14 +268,15 @@ en:
                 do not match products in translations (%{translation_products})
               insecure_token_parameter_in_manifest: 'Make sure to set secure to true
                 when using keys in Settings. Learn more: %{link}'
-              secure_parameters_with_no_scopes_in_manifest: 'The scopes property is not configured for parameter(s): %{params}.
-                This may cause token exposure vulnerabilities. Learn about: %{link}'
               password_parameter_deprecated: 'Password parameter type is deprecated
                 and will not be accepted in the future. Use Basic Access Authentication
                 instead. Learn more: %{link}.'
               default_secure_or_hidden_parameter_in_manifest: Default values for secure
                 or hidden parameters are not stored securely. Be sure to review them
                 and confirm they do not contain sensitive data
+              secure_parameters_with_no_scopes_in_manifest: 'The scopes property is
+                not configured for parameter(s): %{params}. This may cause token exposure
+                vulnerabilities. Learn about: %{link}'
             stylesheet_error: 'Sass error: %{sass_error}'
             invalid_type_parameter:
               one: "%{invalid_types} is an invalid parameter type."

data/config/locales/translations/zendesk_apps_support.yml CHANGED Viewed

@@ -315,16 +315,24 @@ parts:
       title: 'App builder job: requirements file contains placeholder in custom objects v2 object property. Placeholders are not allowed in object definitions. Leave requirements.json as is (do not translate). Do not translate "objects" as it is part of schema.'
       value: 'The requirements.json file contains a placeholder in the objects array. The %{property_name} property of object %{object_key} contains a placeholder %{property_value}. Placeholders are not allowed in object definitions.'
       screenshot: "https://drive.google.com/file/d/1UYrBruLjZ27WoQ40sWXqd07DNwtblg2W/view?usp=sharing"
+      obsolete: "2026-02-05"
   - translation:
       key: "txt.apps.admin.error.app_build.cov2_field_setting_placeholder_not_allowed"
       title: 'App builder job: requirements file contains placeholder in custom objects v2 field property. Placeholders are not allowed in field definitions. Leave requirements.json as is (do not translate). Do not translate "object_fields" as it is part of schema.'
       value: 'The requirements.json file contains a placeholder in the object_fields array. The %{property_name} property of field %{field_key} (object: %{object_key}) contains a placeholder %{property_value}. Placeholders are not allowed in field definitions.'
       screenshot: "https://drive.google.com/file/d/1Bprc1VNv8kmzgbNeQn-noU0ItSci2obm/view?usp=sharing"
+      obsolete: "2026-02-05"
   - translation:
       key: "txt.apps.admin.error.app_build.cov2_trigger_setting_placeholder_not_allowed"
       title: 'App builder job: requirements file contains placeholder in custom objects v2 trigger identifier. Placeholders are not allowed in trigger identifiers. Leave requirements.json as is (do not translate). Do not translate "object_triggers" as it is part of schema.'
       value: 'The requirements.json file contains a placeholder in the object_triggers array. The %{property_name} property of trigger %{trigger_key} (object: %{object_key}) contains a placeholder %{property_value}. Placeholders are not allowed in trigger definitions.'
       screenshot: "https://drive.google.com/file/d/1FwnzKj9srIDTxtk-WryA3xHTXGD7uS-W/view?usp=sharing"
+      obsolete: "2026-02-05"
+  - translation:
+      key: "txt.apps.admin.error.app_build.setting_placeholders_not_allowed_in_cov2_requirements"
+      title: 'App builder job: requirements file contains placeholder in custom objects v2 requirements. Placeholders are not allowed in custom objects v2 definitions. Leave requirements.json, custom_objects_v2 as is (do not translate)'
+      value: 'The requirements.json file contains a setting placeholder in the custom_objects_v2 requirements. Setting placeholders are not allowed in custom_objects_v2 requirements.'
+      screenshot: "https://drive.google.com/file/d/18Q9bTUO3gaSg2O0wZzn0OehE5SqmR49e/view?usp=sharing"
   - translation:
       key: "txt.apps.admin.error.app_build.missing_required_fields"
       title: "App builder job: required key missing in requirements, e.g. \"title\" is required in \"my_custom_email_target\""
@@ -669,4 +677,4 @@ parts:
       title: "Validation message to indicate missing scopes field in manifest's secure parameter.
         Do not translate 'scopes'. %{params} refers to secure parameters with no scopes configured.
         Scopes in manifest refers to https://developer.zendesk.com/documentation/apps/getting-started/setting-up-new-apps/#scopes"
-      value: "The scopes property is not configured for parameter(s): %{params}. This may cause token exposure vulnerabilities. Learn about: %{link}"
+      value: "The scopes property is not configured for parameter(s): %{params}. This may cause token exposure vulnerabilities. Learn about: %{link}"

data/lib/zendesk_apps_support/validations/custom_objects_v2/custom_objects_v2.rb CHANGED Viewed

@@ -12,11 +12,15 @@ module ZendeskAppsSupport
         include Constants
         include ValidationHelpers
+        SETTING_PLACEHOLDER_REGEXP = /\{\{\s*setting\.([\w.-]+)\s*\}\}/
         def call(requirements)
           structural_errors = validate_overall_requirements_structure(requirements)
           return structural_errors if structural_errors.any?
-          payload_size_errors = validate_payload_size(requirements)
+          requirements_json = requirements.to_json
+          payload_size_errors = validate_payload_size(requirements_json)
           return payload_size_errors if payload_size_errors.any?
           limits_and_schema_errors = [
@@ -26,18 +30,27 @@ module ZendeskAppsSupport
           return limits_and_schema_errors if limits_and_schema_errors.any?
+          setting_placeholder_errors = validate_setting_placeholders(requirements_json)
+          return setting_placeholder_errors if setting_placeholder_errors.any?
           validate_object_references(requirements)
         end
         private
-        def validate_payload_size(requirements)
-          payload_size = requirements.to_json.bytesize
+        def validate_payload_size(requirements_json)
+          payload_size = requirements_json.bytesize
           return [] if payload_size <= MAX_PAYLOAD_SIZE_BYTES
           [ValidationError.new(:excessive_cov2_payload_size)]
         end
+        def validate_setting_placeholders(requirements_json)
+          return [] unless requirements_json.match?(SETTING_PLACEHOLDER_REGEXP)
+          [ValidationError.new(:setting_placeholders_not_allowed_in_cov2_requirements)]
+        end
         def validate_overall_requirements_structure(requirements)
           errors = validate_structural_requirements(requirements)
           return errors unless errors.empty?

data/lib/zendesk_apps_support/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module ZendeskAppsSupport
-  VERSION = "4.45.0"
+  VERSION = '4.46.0'
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: zendesk_apps_support
 version: !ruby/object:Gem::Version
-  version: 4.45.0
+  version: 4.46.0
 platform: ruby
 authors:
 - James A. Rosen
@@ -11,7 +11,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-12-04 00:00:00.000000000 Z
+date: 2025-12-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: i18n