Class: Brakeman::Checks

Inherits:

Object

• Object
• Brakeman::Checks

Defined in:

lib/brakeman/checks.rb

Overview

Collects up results from running different checks.

Checks can be added with Check.add(check_class)

All .rb files in checks/ will be loaded.

Instance Attribute Summary

• #checks_run ⇒ Object readonly

  Returns the value of attribute checks_run.

• #controller_warnings ⇒ Object readonly

  Returns the value of attribute controller_warnings.

• #model_warnings ⇒ Object readonly

  Returns the value of attribute model_warnings.

• #template_warnings ⇒ Object readonly

  Returns the value of attribute template_warnings.

• #warnings ⇒ Object readonly

  Returns the value of attribute warnings.

Class Method Summary

• .actually_run_checks(checks, check_runner, app_tree, tracker) ⇒ Object
• .add(klass) ⇒ Object

  Add a check.

• .add_optional(klass) ⇒ Object

  Add an optional check.

• .checks ⇒ Object
• .initialize_checks(check_directory = "") ⇒ Object
• .missing_checks(included_checks, excluded_checks) ⇒ Object
• .optional_checks ⇒ Object
• .run_checks(app_tree, tracker) ⇒ Object

  Run all the checks on the given Tracker.

Instance Method Summary

• #add_warning(warning) ⇒ Object

  Add Warning to list of warnings to report.

• #all_warnings ⇒ Object

  Return an array of all warnings found.

• #diff(other_checks) ⇒ Object

  Return a hash of arrays of new and fixed warnings.

• #initialize(options = { }) ⇒ Checks constructor

  No need to use this directly.

Constructor Details

#initialize(options = { }) ⇒ Checks

No need to use this directly.

# File 'lib/brakeman/checks.rb', line 59

def initialize options = { }
  if options[:min_confidence]
    @min_confidence = options[:min_confidence]
  else
    @min_confidence = Brakeman.get_defaults[:min_confidence]
  end

  @warnings = []
  @template_warnings = []
  @model_warnings = []
  @controller_warnings = []
  @checks_run = []
end

Instance Attribute Details

#checks_run ⇒ Object (readonly)

Returns the value of attribute checks_run.

# File 'lib/brakeman/checks.rb', line 13

def checks_run
  @checks_run
end

#controller_warnings ⇒ Object (readonly)

Returns the value of attribute controller_warnings.

# File 'lib/brakeman/checks.rb', line 13

def controller_warnings
  @controller_warnings
end

#model_warnings ⇒ Object (readonly)

Returns the value of attribute model_warnings.

# File 'lib/brakeman/checks.rb', line 13

def model_warnings
  @model_warnings
end

#template_warnings ⇒ Object (readonly)

Returns the value of attribute template_warnings.

# File 'lib/brakeman/checks.rb', line 13

def template_warnings
  @template_warnings
end

#warnings ⇒ Object (readonly)

Returns the value of attribute warnings.

# File 'lib/brakeman/checks.rb', line 13

def warnings
  @warnings
end

Class Method Details

.actually_run_checks(checks, check_runner, app_tree, tracker) ⇒ Object

# File 'lib/brakeman/checks.rb', line 119

def self.actually_run_checks(checks, check_runner, app_tree, tracker)
  threads = [] # Results for parallel
  results = [] # Results for sequential
  parallel = tracker.options[:parallel_checks]
  error_mutex = Mutex.new

  checks.each do |c|
    check_name = get_check_name c
    Brakeman.notify " - #{check_name}"

    if parallel
      threads << Thread.new do
        self.run_a_check(c, error_mutex, app_tree, tracker)
      end
    else
      results << self.run_a_check(c, error_mutex, app_tree, tracker)
    end

    #Maintain list of which checks were run
    #mainly for reporting purposes
    check_runner.checks_run << check_name[5..-1]
  end

  threads.each { |t| t.join }

  Brakeman.notify "Checks finished, collecting results..."

  if parallel
    threads.each do |thread|
      thread.value.each do |warning|
        check_runner.add_warning warning
      end
    end
  else
    results.each do |warnings|
      warnings.each do |warning|
        check_runner.add_warning warning
      end
    end
  end

  check_runner
end

.add(klass) ⇒ Object

Add a check. This will call klass.new when running tests

# File 'lib/brakeman/checks.rb', line 16

def self.add klass
  @checks << klass unless @checks.include? klass
end

.add_optional(klass) ⇒ Object

Add an optional check

# File 'lib/brakeman/checks.rb', line 21

def self.add_optional klass
  @optional_checks << klass unless @checks.include? klass
end

.checks ⇒ Object

# File 'lib/brakeman/checks.rb', line 25

def self.checks
  @checks + @optional_checks
end

.initialize_checks(check_directory = "") ⇒ Object

# File 'lib/brakeman/checks.rb', line 33

def self.initialize_checks check_directory = ""
  #Load all files in check_directory
  Dir.glob(File.join(check_directory, "*.rb")).sort.each do |f|
    require f
  end
end

.missing_checks(included_checks, excluded_checks) ⇒ Object

# File 'lib/brakeman/checks.rb', line 40

def self.missing_checks included_checks, excluded_checks
  included_checks = included_checks.map(&:to_s).to_set
  excluded_checks = excluded_checks.map(&:to_s).to_set

  if included_checks == Set['CheckNone']
    return []
  else
    loaded = self.checks.map { |name| name.to_s.gsub('Brakeman::', '') }.to_set
    missing = (included_checks - loaded) + (excluded_checks - loaded)

    unless missing.empty?
      return missing
    end
  end

  []
end

.optional_checks ⇒ Object

# File 'lib/brakeman/checks.rb', line 29

def self.optional_checks
  @optional_checks
end

.run_checks(app_tree, tracker) ⇒ Object

Run all the checks on the given Tracker. Returns a new instance of Checks with the results.

# File 'lib/brakeman/checks.rb', line 113

def self.run_checks(app_tree, tracker)
  checks = self.checks_to_run(tracker)
  check_runner = self.new :min_confidence => tracker.options[:min_confidence]
  self.actually_run_checks(checks, check_runner, app_tree, tracker)
end

Instance Method Details

#add_warning(warning) ⇒ Object

Add Warning to list of warnings to report. Warnings are split into four different arrays for template, controller, model, and generic warnings.

Will not add warnings which are below the minimum confidence level.

# File 'lib/brakeman/checks.rb', line 78

def add_warning warning
  unless warning.confidence > @min_confidence
    case warning.warning_set
    when :template
      @template_warnings << warning
    when :warning
      @warnings << warning
    when :controller
      @controller_warnings << warning
    when :model
      @model_warnings << warning
    else
      raise "Unknown warning: #{warning.warning_set}"
    end
  end
end

#all_warnings ⇒ Object

Return an array of all warnings found.

# File 'lib/brakeman/checks.rb', line 107

def all_warnings
  @warnings + @template_warnings + @controller_warnings + @model_warnings
end

#diff(other_checks) ⇒ Object

Return a hash of arrays of new and fixed warnings

diff = checks.diff old_checks
diff[:fixed]  # [...]
diff[:new]    # [...]

# File 'lib/brakeman/checks.rb', line 100

def diff other_checks
  my_warnings = self.all_warnings
  other_warnings = other_checks.all_warnings
  Brakeman::Differ.new(my_warnings, other_warnings).diff
end