Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CHEF-12175: Remove use of Kernel.open or IO.read or similar sinks with a non-constant value #7079

Merged
merged 6 commits into from
Jul 10, 2024
Merged

CHEF-12175: Remove use of Kernel.open or IO.read or similar sinks with a non-constant value #7079

merged 6 commits into from
Jul 10, 2024

Conversation

ahasunos
Copy link
Contributor

@ahasunos ahasunos commented Jul 3, 2024

@ahasunos ahasunos requested a review from a team as a code owner July 3, 2024 10:06
@netlify Netlify
Copy link

netlify bot commented Jul 3, 2024
edited
Loading

Deploy Preview for chef-inspec canceled.

Name Link
🔨 Latest commit 25fdca0
🔍 Latest deploy log https://app.netlify.com/sites/chef-inspec/deploys/66866029ad61760008bae168

@ahasunos ahasunos merged commit 0fd3714 into main Jul 10, 2024
11 of 12 checks passed
@ahasunos ahasunos deleted the ss/replace-io-reads branch July 10, 2024 11:15
aaronlippold pushed a commit to mitre/inspec that referenced this pull request Jul 10, 2024
@ahasunos @aaronlippold
CHEF-12175: Remove use of Kernel.open or IO.read or similar sinks…
9db87d0 
… with a non-constant value (inspec#7079)

* fix: update io reads to fix codescanning vuln

Signed-off-by: Sonu Saha <[email protected]>

* fix: remove kernel#open fallback and update open method to handle local files

Signed-off-by: Sonu Saha <[email protected]>

* fix: replace io.readlines to file.readlines

Signed-off-by: Sonu Saha <[email protected]>

* chore: fix lint offense, unnecessary space

Signed-off-by: Sonu Saha <[email protected]>

* fix: raise exception for standard errors as FetcherFailure

Signed-off-by: Sonu Saha <[email protected]>

* chore: update exception message

Signed-off-by: Sonu Saha <[email protected]>

---------

Signed-off-by: Sonu Saha <[email protected]>
Vasu1105 pushed a commit that referenced this pull request Jul 24, 2024
@aaronlippold @DMedina6
@ahasunos @chef-ci @IanMadd @clintoncwolfe
Update ssh_config resource to support returning the current sshd_conf…
0ab3568 
…ig file in use. (#7070)

* modify resource

* windows compatibility

* end line

* removing comments to clean things up

Signed-off-by: Aaron Lippold <[email protected]>

* CHEF-12175: Remove use of `Kernel.open` or `IO.read` or similar sinks with a non-constant value (#7079)

* fix: update io reads to fix codescanning vuln

Signed-off-by: Sonu Saha <[email protected]>

* fix: remove kernel#open fallback and update open method to handle local files

Signed-off-by: Sonu Saha <[email protected]>

* fix: replace io.readlines to file.readlines

Signed-off-by: Sonu Saha <[email protected]>

* chore: fix lint offense, unnecessary space

Signed-off-by: Sonu Saha <[email protected]>

* fix: raise exception for standard errors as FetcherFailure

Signed-off-by: Sonu Saha <[email protected]>

* chore: update exception message

Signed-off-by: Sonu Saha <[email protected]>

---------

Signed-off-by: Sonu Saha <[email protected]>

* fix: Missing regular expression anchor (#7077)

Signed-off-by: Sonu Saha <[email protected]>

* Bump version to 6.6.27 by Chef Expeditor

Obvious fix; these changes are the result of automation not creative thinking.

* Fix gitignore file in docs dir (#7082)

Signed-off-by: Ian Maddaus <[email protected]>

* Bump version to 6.6.28 by Chef Expeditor

Obvious fix; these changes are the result of automation not creative thinking.

* adding docs now that the gitignore is fixed.

Signed-off-by: Aaron Lippold <[email protected]>

* add docs for sshd_active_config resource

* fix docs

* unit tests

* rubocop on ssh_config.rb, sshd_con_test.rb, and sshd_active_config.md

* rename active path in method

* doc fix

* Linting Corrections for Active SSHD Config (#1)

Signed-off-by: Clinton Wolfe <[email protected]>

* Update sshd_active_config.md

updated version

* doc version update

---------

Signed-off-by: Aaron Lippold <[email protected]>
Signed-off-by: Sonu Saha <[email protected]>
Signed-off-by: Ian Maddaus <[email protected]>
Signed-off-by: Clinton Wolfe <[email protected]>
Co-authored-by: Daniel Medina <[email protected]>
Co-authored-by: Sonu Saha <[email protected]>
Co-authored-by: Chef Expeditor <[email protected]>
Co-authored-by: Ian Maddaus <[email protected]>
Co-authored-by: Clinton Wolfe <[email protected]>
Nik08 pushed a commit that referenced this pull request Jul 29, 2024
@ahasunos @Nik08
CHEF-12175: Remove use of Kernel.open or IO.read or similar sinks…
8484293 
… with a non-constant value (#7079)

* fix: update io reads to fix codescanning vuln

Signed-off-by: Sonu Saha <[email protected]>

* fix: remove kernel#open fallback and update open method to handle local files

Signed-off-by: Sonu Saha <[email protected]>

* fix: replace io.readlines to file.readlines

Signed-off-by: Sonu Saha <[email protected]>

* chore: fix lint offense, unnecessary space

Signed-off-by: Sonu Saha <[email protected]>

* fix: raise exception for standard errors as FetcherFailure

Signed-off-by: Sonu Saha <[email protected]>

* chore: update exception message

Signed-off-by: Sonu Saha <[email protected]>

---------

Signed-off-by: Sonu Saha <[email protected]>
@Nik08 Nik08 mentioned this pull request Jul 29, 2024
Merged
4 tasks
Nik08 added a commit that referenced this pull request Jul 29, 2024
@Nik08 @ahasunos
CHEF-12175: Remove use of Kernel.open or IO.read or similar sinks…
7d319e7 
… with a non-constant value (#7079) (#7112)

* fix: update io reads to fix codescanning vuln



* fix: remove kernel#open fallback and update open method to handle local files



* fix: replace io.readlines to file.readlines



* chore: fix lint offense, unnecessary space



* fix: raise exception for standard errors as FetcherFailure



* chore: update exception message



---------

Signed-off-by: Sonu Saha <[email protected]>
Co-authored-by: Sonu Saha <[email protected]>
Nik08 pushed a commit that referenced this pull request Sep 13, 2024
@ahasunos @Nik08
CHEF-12175: Remove use of Kernel.open or IO.read or similar sinks…
38b94df 
… with a non-constant value (#7079)

* fix: update io reads to fix codescanning vuln

Signed-off-by: Sonu Saha <[email protected]>

* fix: remove kernel#open fallback and update open method to handle local files

Signed-off-by: Sonu Saha <[email protected]>

* fix: replace io.readlines to file.readlines

Signed-off-by: Sonu Saha <[email protected]>

* chore: fix lint offense, unnecessary space

Signed-off-by: Sonu Saha <[email protected]>

* fix: raise exception for standard errors as FetcherFailure

Signed-off-by: Sonu Saha <[email protected]>

* chore: update exception message

Signed-off-by: Sonu Saha <[email protected]>

---------

Signed-off-by: Sonu Saha <[email protected]>
Nik08 pushed a commit that referenced this pull request Sep 13, 2024
@aaronlippold @DMedina6
@ahasunos @chef-ci @IanMadd @clintoncwolfe @Nik08
Update ssh_config resource to support returning the current sshd_conf…
0acfa8b 
…ig file in use. (#7070)

* modify resource

* windows compatibility

* end line

* removing comments to clean things up

Signed-off-by: Aaron Lippold <[email protected]>

* CHEF-12175: Remove use of `Kernel.open` or `IO.read` or similar sinks with a non-constant value (#7079)

* fix: update io reads to fix codescanning vuln

Signed-off-by: Sonu Saha <[email protected]>

* fix: remove kernel#open fallback and update open method to handle local files

Signed-off-by: Sonu Saha <[email protected]>

* fix: replace io.readlines to file.readlines

Signed-off-by: Sonu Saha <[email protected]>

* chore: fix lint offense, unnecessary space

Signed-off-by: Sonu Saha <[email protected]>

* fix: raise exception for standard errors as FetcherFailure

Signed-off-by: Sonu Saha <[email protected]>

* chore: update exception message

Signed-off-by: Sonu Saha <[email protected]>

---------

Signed-off-by: Sonu Saha <[email protected]>

* fix: Missing regular expression anchor (#7077)

Signed-off-by: Sonu Saha <[email protected]>

* Bump version to 6.6.27 by Chef Expeditor

Obvious fix; these changes are the result of automation not creative thinking.

* Fix gitignore file in docs dir (#7082)

Signed-off-by: Ian Maddaus <[email protected]>

* Bump version to 6.6.28 by Chef Expeditor

Obvious fix; these changes are the result of automation not creative thinking.

* adding docs now that the gitignore is fixed.

Signed-off-by: Aaron Lippold <[email protected]>

* add docs for sshd_active_config resource

* fix docs

* unit tests

* rubocop on ssh_config.rb, sshd_con_test.rb, and sshd_active_config.md

* rename active path in method

* doc fix

* Linting Corrections for Active SSHD Config (#1)

Signed-off-by: Clinton Wolfe <[email protected]>

* Update sshd_active_config.md

updated version

* doc version update

---------

Signed-off-by: Aaron Lippold <[email protected]>
Signed-off-by: Sonu Saha <[email protected]>
Signed-off-by: Ian Maddaus <[email protected]>
Signed-off-by: Clinton Wolfe <[email protected]>
Co-authored-by: Daniel Medina <[email protected]>
Co-authored-by: Sonu Saha <[email protected]>
Co-authored-by: Chef Expeditor <[email protected]>
Co-authored-by: Ian Maddaus <[email protected]>
Co-authored-by: Clinton Wolfe <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Vasu1105 Vasu1105 Vasu1105 approved these changes

@Nik08 Nik08 Nik08 approved these changes

@sathish-progress sathish-progress Awaiting requested review from sathish-progress sathish-progress is a code owner automatically assigned from inspec/inspec-core-team

Assignees

@ahasunos ahasunos

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@ahasunos @Vasu1105 @Nik08