Skip to content

ruby3.2-faraday/2.9.1 package update #21387

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jun 5, 2024
Merged

ruby3.2-faraday/2.9.1 package update #21387

merged 1 commit into from
Jun 5, 2024

Conversation

octo-sts[bot]
Copy link
Contributor

@octo-sts octo-sts bot commented Jun 5, 2024

@wolfi-bot
ruby3.2-faraday/2.9.1 package update
e351784 
Signed-off-by: wolfi-bot <121097084+wolfi-bot@users.noreply.github.com>
@octo-sts octo-sts bot added request-version-update request for a newer version of a package automated pr labels Jun 5, 2024
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jun 5, 2024

Package ruby3.2-faraday: Click to expand/collapse

Package ruby3.2-faraday:

.PKGINFO metadata:

  (
  	"""
- 	# Generated by melange v0.16.6-4-g0c67d36
+ 	# Generated by melange
  	pkgname = ruby3.2-faraday
- 	pkgver = 2.9.0-r1
+ 	pkgver = 2.9.1-r0
  	arch = x86_64
- 	size = 447618
+ 	size = 449826
  	origin = ruby3.2-faraday
  	pkgdesc = HTTP/REST API client library.
  	url = 
- 	commit = 29f22bb7d22e95bcaab0e51da144911c65cc20e7
- 	builddate = 1714659368
+ 	commit = 9b6e7c0d82ff5ac0dc59a589d82648a74dab5472
  	license = MIT
  	depend = ruby3.2-faraday-net_http
  	depend = ruby3.2-ruby2_keywords
- 	datahash = 0956b593f99945ab027c109a89e52d945fede2ded47dce7a1f1e0c6d1b9a4994
+ 	datahash = 7ccf6ed9cd4d0f6bab181dc245dad4d9426ee366cddecc30756bf29b0f22221e
  	"""
  )

Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/CHANGELOG.md
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/LICENSE.md
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/README.md
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/Rakefile
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/examples/client_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/examples/client_test.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/adapter/test.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/adapter.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/adapter_registry.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/connection.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/encoders/flat_params_encoder.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/encoders/nested_params_encoder.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/error.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/logging/formatter.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/methods.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/middleware.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/middleware_registry.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options/connection_options.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options/env.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options/proxy_options.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options/request_options.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options/ssl_options.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/parameters.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/rack_builder.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/request/authorization.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/request/instrumentation.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/request/json.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/request/url_encoded.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/request.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/response/json.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/response/logger.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/response/raise_error.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/response.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/utils/headers.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/utils/params_hash.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/utils.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/version.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/external_adapters/faraday_specs_setup.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/adapter/test_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/adapter_registry_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/adapter_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/connection_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/error_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/middleware_registry_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/middleware_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/options/env_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/options/options_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/options/proxy_options_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/options/request_options_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/params_encoders/flat_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/params_encoders/nested_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/rack_builder_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/request/authorization_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/request/instrumentation_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/request/json_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/request/url_encoded_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/request_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/response/json_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/response/logger_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/response/raise_error_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/response_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/utils/headers_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/utils_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday_spec.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/spec_helper.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/support/disabling_stub.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/support/fake_safe_buffer.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/support/helper_methods.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/support/shared_examples/adapter.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/support/shared_examples/params_encoder.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/support/shared_examples/request_method.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/support/streaming_response_checker.rb
Added: /usr/lib/ruby/gems/3.2.0/specifications/faraday-2.9.1.gemspec
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/CHANGELOG.md
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/LICENSE.md
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/README.md
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/Rakefile
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/examples/client_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/examples/client_test.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/adapter/test.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/adapter.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/adapter_registry.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/connection.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/encoders/flat_params_encoder.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/encoders/nested_params_encoder.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/error.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/logging/formatter.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/methods.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/middleware.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/middleware_registry.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options/connection_options.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options/env.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options/proxy_options.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options/request_options.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options/ssl_options.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/parameters.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/rack_builder.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/request/authorization.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/request/instrumentation.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/request/json.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/request/url_encoded.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/request.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/response/json.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/response/logger.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/response/raise_error.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/response.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/utils/headers.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/utils/params_hash.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/utils.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/version.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/external_adapters/faraday_specs_setup.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/adapter/test_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/adapter_registry_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/adapter_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/connection_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/error_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/middleware_registry_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/middleware_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/options/env_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/options/options_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/options/proxy_options_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/options/request_options_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/params_encoders/flat_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/params_encoders/nested_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/rack_builder_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/request/authorization_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/request/instrumentation_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/request/json_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/request/url_encoded_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/request_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/response/json_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/response/logger_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/response/raise_error_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/response_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/utils/headers_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/utils_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday_spec.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/spec_helper.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/support/disabling_stub.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/support/fake_safe_buffer.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/support/helper_methods.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/support/shared_examples/adapter.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/support/shared_examples/params_encoder.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/support/shared_examples/request_method.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/support/streaming_response_checker.rb
Deleted: /usr/lib/ruby/gems/3.2.0/specifications/faraday-2.9.0.gemspec

bincapz found differences: Click to expand/collapse

time=2024-06-05T16:22:23.469Z level=ERROR msg=error namespace=evasion/hidden-functions.yara id=php_hidden_eval "disabled due to unexpected warning"="string "$func" may slow down scanning"

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/request/url_encoded_spec.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/url/encode encodes URL, likely to pass GET variables urlencode

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/response/logger_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/words/password references a 'password' password

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/rack_builder.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/site/url contains embedded HTTPS URLs https://lostisland.github.io/faraday/usage/.
-LOW ref/words/password references a 'password' - Proxy server password

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/response.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/words/exclamation gets very excited !!

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/adapter/test_spec.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/words/agent references an 'agent' with_user_agent
-LOW encoding/json/decode Decodes JSON messages JSON.parse
-LOW net/http/request makes HTTP requests User-Agent
-LOW ref/site/url contains embedded HTTP URLs http://domain.test/bait
http://domain.test/hello
http://foo.com/foo?a=1
http://wrong.test/bait
http://wrong.test/hello

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/options/proxy_options_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/site/url contains embedded HTTP URLs http://example.org
-LOW ref/words/password references a 'password' password

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/adapter/test.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/words/agent references an 'agent' with_user_agent
-MEDIUM ref/words/exclamation gets very excited !!
-LOW encoding/json/decode Decodes JSON messages JSON.parse
-LOW net/http/request makes HTTP requests User-Agent
-LOW ref/site/url contains embedded HTTPS URLs lostisland/faraday#1444

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/request_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/site/url contains embedded HTTP URLs http://httpbingo.org/api/foo.json?a=1
http://proxy.com

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/examples/client_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW encoding/json/decode Decodes JSON messages JSON.parse

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/utils/headers.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/words/agent references an 'agent' user_agent
-LOW net/http/request makes HTTP requests User-Agent

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/support/shared_examples/request_method.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/words/agent references an 'agent' user_agent
-LOW compression/gzip works with gzip files gzip
-LOW net/http/accept/encoding set HTTP response encoding format (example: gzip) Accept-Encoding
-LOW net/http/request makes HTTP requests User-Agent
-LOW net/socket/send send a message to a socket send
socket
-LOW ref/site/url contains embedded HTTPS URLs lostisland/faraday#718

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/request.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/site/url contains embedded HTTP URLs http://localhost?a=1

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/request/authorization.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/words/password references a 'password' be a login and password pair

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options/env.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/words/exclamation gets very excited !!
-LOW ref/words/password references a 'password' - Proxy server password

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/connection_spec.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/words/agent references an 'agent' user_agent
-LOW net/http/request makes HTTP requests User-Agent
-LOW net/http_proxy discover proxy address via environment HTTP_PROXY
-LOW ref/site/url contains embedded HTTPS URLs https://ahttpbingo.org/sake.html
https://google.co.uk
https://httpbingo.org/foo
https://httpbingo.org/get/sake.html
https://proxy.com
-LOW ref/words/password references a 'password' password

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/utils/headers_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW net/http/request makes HTTP requests HTTP/1.
-LOW ref/site/url contains embedded HTTP URLs http://httpbingo.org/

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/examples/client_test.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW encoding/json/decode Decodes JSON messages JSON.parse

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options/proxy_options.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/words/password references a 'password' password

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/response/json_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW encoding/json/decode Decodes JSON messages JSON.parse

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/request/url_encoded.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/url/encode encodes URL, likely to pass GET variables urlencode

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/response_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/site/url contains embedded HTTPS URLs https://lostisland.github.io/faraday

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/options/ssl_options.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM builtin/openssl This binary includes OpenSSL source code OpenSSL/
-LOW ref/site/url contains embedded HTTPS URLs ruby/openssl#60
https://ruby-doc.org/stdlib-2.5.1/libdoc/openssl/rdoc/OpenSSL/SSL.html
https://ruby-doc.org/stdlib-2.5.1/libdoc/openssl/rdoc/OpenSSL/SSL/SSLCont
-LOW secrets/private_key References private keys private_key

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/faraday/utils_spec.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/words/agent references an 'agent' user_agent
-LOW net/http/request makes HTTP requests HTTP/1.
-LOW ref/site/url contains embedded HTTP URLs http://example.com/abc
-LOW secrets/private_key References private keys private_key

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/site/url contains embedded HTTPS URLs https://faraday.com

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/lib/faraday/connection.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/http/post submit content to websites HTTP
POST
http
-MEDIUM ref/words/agent references an 'agent' user_agent
-MEDIUM ref/words/exclamation gets very excited !!
-LOW ref/site/url contains embedded HTTPS URLs https://api.github.com/gists/GIST_ID/star
https://httpbingo.org/api/nigiri?token=abc
https://httpbingo.org/api?token=abc
-LOW ref/words/password references a 'password' any password from URI
username and password
yieldparam password

Deleted: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.0/spec/spec_helper.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM ref/path/relative references and possibly executes relative path ./lib
./spec
-LOW random/insecure generate random numbers insecurely srand
-LOW ref/site/url contains embedded HTTP URLs http://rspec.info/blog/2012/06/rspecs-new-expectation-syntax/
http://rspec.info/blog/2014/05/notable-changes-in-rspec-3/
http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
http://www.teaisaweso.me/blog/2013/05/27/rspecs-new-message-expectation-

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/request/authorization.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/words/password references a 'password' be a login and password pair

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/request/url_encoded_spec.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/url/encode encodes URL, likely to pass GET variables urlencode

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/request/url_encoded.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/url/encode encodes URL, likely to pass GET variables urlencode

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/adapter/test_spec.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/words/agent references an 'agent' with_user_agent
+LOW encoding/json/decode Decodes JSON messages JSON.parse
+LOW net/http/request makes HTTP requests User-Agent
+LOW ref/site/url contains embedded HTTP URLs http://domain.test/bait
http://domain.test/hello
http://foo.com/foo?a=1
http://wrong.test/bait
http://wrong.test/hello

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/response/json_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW encoding/json/decode Decodes JSON messages JSON.parse

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/rack_builder.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/site/url contains embedded HTTPS URLs https://lostisland.github.io/faraday/usage/.
+LOW ref/words/password references a 'password' - Proxy server password

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/spec_helper.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/path/relative references and possibly executes relative path ./lib
./spec
+LOW random/insecure generate random numbers insecurely srand
+LOW ref/site/url contains embedded HTTP URLs http://rspec.info/blog/2012/06/rspecs-new-expectation-syntax/
http://rspec.info/blog/2014/05/notable-changes-in-rspec-3/
http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
http://www.teaisaweso.me/blog/2013/05/27/rspecs-new-message-expectation-

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/examples/client_test.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW encoding/json/decode Decodes JSON messages JSON.parse

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/utils_spec.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/words/agent references an 'agent' user_agent
+LOW net/http/request makes HTTP requests HTTP/1.
+LOW ref/site/url contains embedded HTTP URLs http://example.com/abc
+LOW secrets/private_key References private keys private_key

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options/env.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/words/exclamation gets very excited !!
+LOW ref/words/password references a 'password' - Proxy server password

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/utils/headers_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW net/http/request makes HTTP requests HTTP/1.
+LOW ref/site/url contains embedded HTTP URLs http://httpbingo.org/

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/options/proxy_options_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/site/url contains embedded HTTP URLs http://example.org
+LOW ref/words/password references a 'password' password

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/connection.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/http/post submit content to websites HTTP
POST
http
+MEDIUM ref/words/agent references an 'agent' user_agent
+MEDIUM ref/words/exclamation gets very excited !!
+LOW ref/site/url contains embedded HTTPS URLs https://api.github.com/gists/GIST_ID/star
https://httpbingo.org/api/nigiri?token=abc
https://httpbingo.org/api?token=abc
+LOW ref/words/password references a 'password' any password from URI
username and password
yieldparam password

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/examples/client_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW encoding/json/decode Decodes JSON messages JSON.parse

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/site/url contains embedded HTTPS URLs https://faraday.com

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/response_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/site/url contains embedded HTTPS URLs https://lostisland.github.io/faraday

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/request_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/site/url contains embedded HTTP URLs http://httpbingo.org/api/foo.json?a=1
http://proxy.com

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/response/logger_spec.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/words/password references a 'password' password

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/utils/headers.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/words/agent references an 'agent' user_agent
+LOW net/http/request makes HTTP requests User-Agent

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options/proxy_options.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/words/password references a 'password' password

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/response.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/words/exclamation gets very excited !!

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/request.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/site/url contains embedded HTTP URLs http://localhost?a=1

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/support/shared_examples/request_method.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/words/agent references an 'agent' user_agent
+LOW compression/gzip works with gzip files gzip
+LOW net/http/accept/encoding set HTTP response encoding format (example: gzip) Accept-Encoding
+LOW net/http/request makes HTTP requests User-Agent
+LOW net/socket/send send a message to a socket send
socket
+LOW ref/site/url contains embedded HTTPS URLs lostisland/faraday#718

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/options/ssl_options.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM builtin/openssl This binary includes OpenSSL source code OpenSSL/
+LOW ref/site/url contains embedded HTTPS URLs ruby/openssl#60
https://ruby-doc.org/stdlib-2.5.1/libdoc/openssl/rdoc/OpenSSL/SSL.html
https://ruby-doc.org/stdlib-2.5.1/libdoc/openssl/rdoc/OpenSSL/SSL/SSLCont
+LOW secrets/private_key References private keys private_key

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/spec/faraday/connection_spec.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/words/agent references an 'agent' user_agent
+LOW net/http/request makes HTTP requests User-Agent
+LOW net/http_proxy discover proxy address via environment HTTP_PROXY
+LOW ref/site/url contains embedded HTTPS URLs https://ahttpbingo.org/sake.html
https://google.co.uk
https://httpbingo.org/foo
https://httpbingo.org/get/sake.html
https://proxy.com
+LOW ref/words/password references a 'password' password

Added: ruby3.2-faraday/usr/lib/ruby/gems/3.2.0/gems/faraday-2.9.1/lib/faraday/adapter/test.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM ref/words/agent references an 'agent' with_user_agent
+MEDIUM ref/words/exclamation gets very excited !!
+LOW encoding/json/decode Decodes JSON messages JSON.parse
+LOW net/http/request makes HTTP requests User-Agent
+LOW ref/site/url contains embedded HTTPS URLs lostisland/faraday#1444

@cpanato cpanato merged commit c524892 into main Jun 5, 2024
8 checks passed
@cpanato cpanato deleted the wolfictl-3b8057ad-0489-42c6-95e1-0ccdf316ed60 branch June 5, 2024 17:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cpanato cpanato cpanato approved these changes

Assignees
No one assigned
Labels
automated pr request-version-update request for a newer version of a package
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@cpanato @wolfi-bot