Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
社会瑞弟呀
brakeman
提交
70919bb5
B
brakeman
项目概览
社会瑞弟呀
/
brakeman
通知
1
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
DevOps
流水线
流水线任务
计划
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
B
brakeman
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
DevOps
DevOps
流水线
流水线任务
计划
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
流水线任务
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
提交
70919bb5
编写于
12月 05, 2011
作者:
J
Justin Collins
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Remove extra 'require' from checks
上级
bada08ac
变更
11
隐藏空白更改
内联
并排
Showing
11 changed file
with
0 addition
and
11 deletion
+0
-11
lib/brakeman/checks/check_escape_function.rb
lib/brakeman/checks/check_escape_function.rb
+0
-1
lib/brakeman/checks/check_execute.rb
lib/brakeman/checks/check_execute.rb
+0
-1
lib/brakeman/checks/check_filter_skipping.rb
lib/brakeman/checks/check_filter_skipping.rb
+0
-1
lib/brakeman/checks/check_mail_to.rb
lib/brakeman/checks/check_mail_to.rb
+0
-1
lib/brakeman/checks/check_nested_attributes.rb
lib/brakeman/checks/check_nested_attributes.rb
+0
-1
lib/brakeman/checks/check_quote_table_name.rb
lib/brakeman/checks/check_quote_table_name.rb
+0
-1
lib/brakeman/checks/check_redirect.rb
lib/brakeman/checks/check_redirect.rb
+0
-1
lib/brakeman/checks/check_response_splitting.rb
lib/brakeman/checks/check_response_splitting.rb
+0
-1
lib/brakeman/checks/check_sql.rb
lib/brakeman/checks/check_sql.rb
+0
-1
lib/brakeman/checks/check_strip_tags.rb
lib/brakeman/checks/check_strip_tags.rb
+0
-1
lib/brakeman/checks/check_translate_bug.rb
lib/brakeman/checks/check_translate_bug.rb
+0
-1
未找到文件。
lib/brakeman/checks/check_escape_function.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Check for versions with vulnerable html escape method
#http://groups.google.com/group/rubyonrails-security/browse_thread/thread/56bffb5923ab1195
...
...
lib/brakeman/checks/check_execute.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Checks for string interpolation and parameters in calls to
#Kernel#system, Kernel#exec, Kernel#syscall, and inside backticks.
...
...
lib/brakeman/checks/check_filter_skipping.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Check for filter skipping vulnerability
#http://groups.google.com/group/rubyonrails-security/browse_thread/thread/3420ac71aed312d6
...
...
lib/brakeman/checks/check_mail_to.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Check for cross site scripting vulnerability in mail_to :encode => :javascript
#with certain versions of Rails (< 2.3.11 or < 3.0.4).
...
...
lib/brakeman/checks/check_nested_attributes.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Check for vulnerability in nested attributes in Rails 2.3.9 and 3.0.0
#http://groups.google.com/group/rubyonrails-security/browse_thread/thread/f9f913d328dafe0c
...
...
lib/brakeman/checks/check_quote_table_name.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Check for uses of quote_table_name in Rails versions before 2.3.13 and 3.0.10
#http://groups.google.com/group/rubyonrails-security/browse_thread/thread/6a1e473744bc389b
...
...
lib/brakeman/checks/check_redirect.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Reports any calls to +redirect_to+ which include parameters in the arguments.
#
...
...
lib/brakeman/checks/check_response_splitting.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Warn about response splitting in Rails versions before 2.3.13
#http://groups.google.com/group/rubyonrails-security/browse_thread/thread/6ffc93bde0298768
...
...
lib/brakeman/checks/check_sql.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#This check tests for find calls which do not use Rails' auto SQL escaping
#
...
...
lib/brakeman/checks/check_strip_tags.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Checks for uses of strip_tags in Rails versions before 2.3.13 and 3.0.10
#http://groups.google.com/group/rubyonrails-security/browse_thread/thread/2b9130749b74ea12
...
...
lib/brakeman/checks/check_translate_bug.rb
浏览文件 @
70919bb5
require
'brakeman/checks/base_check'
require
'brakeman/processors/lib/find_call'
#Check for vulnerability in translate() helper that allows cross-site scripting
#http://groups.google.com/group/rubyonrails-security/browse_thread/thread/2b61d70fb73c7cc5
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录