Class: Dawn::Kb::NotRevisedCode

Inherits:
Object
  • Object
show all
Includes:
PatternMatchCheck
Defined in:
lib/dawn/kb/not_revised_code.rb

Constant Summary

Constants included from PatternMatchCheck

PatternMatchCheck::EXCLUSION_LIST

Constants included from BasicCheck

BasicCheck::ALLOWED_FAMILIES

Instance Attribute Summary

Attributes included from PatternMatchCheck

#attack_pattern, #attack_pattern_is_regex, #avoid_comments, #negative_search, #root_dir

Attributes included from BasicCheck

#applies, #aux_links, #check_family, #cve, #cvss, #cwe, #debug, #evidences, #fixes_version, #kind, #message, #mitigated, #name, #osvdb, #owasp, #priority, #release_date, #remediation, #ruby_version, #ruby_vulnerable_versions, #severity, #status, #target_version, #title

Instance Method Summary collapse

Methods included from PatternMatchCheck

#must_exclude?, #vuln?

Methods included from BasicCheck

#applies_to?, #cve_link, #cvss_score, families, #family, #family=, #lint, #mitigated?, #nvd_link, #osvdb_link, #rubysec_advisories_link

Methods included from Utils

#__debug_me_and_return, #debug_me, #debug_me_and_return_false, #debug_me_and_return_true

Constructor Details

#initializeNotRevisedCode

Returns a new instance of NotRevisedCode.


7
8
9
10
11
12
13
14
15
16
17
18
19
# File 'lib/dawn/kb/not_revised_code.rb', line 7

def initialize
  super({:name=>"Not revised code",
        :cvss=>"",
        :release_date=>nil,
        :cwe=>"",
        :owasp=>"",
        :applies=>["sinatra", "rails", "padrino"],
        :kind=>Dawn::KnowledgeBase::PATTERN_MATCH_CHECK,
        :message=>"Analyzing comments, it seems your code is waiting from some review from you. Please consider take action before putting it in production.\nThis check will analyze the source code looking for the following patterns: XXX, TO_CHECK, CHECKME, CHECK and FIXME",
        :mitigation=>"Please review the file fixing the issue.",
        :attack_pattern => ["XXX", "TO_CHECK", "CHECKME", "CHECK", "FIXME"]
  })
end