-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathcode_safety.yml
379 lines (379 loc) · 13.4 KB
/
code_safety.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
---
file safety:
".github/CODEOWNERS":
comments:
reviewed_by: brian.shand
safe_revision: 44c015f5255e39e614022274144accdb2e17081f
".github/workflows/lint.yml":
comments:
reviewed_by: brian.shand
safe_revision: c90243cf99541357a3bdfb913db7f40c5813dce9
".github/workflows/test.yml":
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
".gitignore":
comments:
reviewed_by: josh.pencheon
safe_revision: deb386d3e2088d974c4dd3c9d8292e7ff8c07228
".hound.yml":
comments:
reviewed_by: joshpencheon
safe_revision: ab221104d8fd14299e55364a6ca2f1b77b857bd2
".rubocop.yml":
comments:
reviewed_by: brian.shand
safe_revision: 6f360472ed5b7fd0836f5f522f3517bc3e0bbb89
CHANGELOG.md:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
CODE_OF_CONDUCT.md:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
Gemfile:
comments:
reviewed_by: josh.pencheon
safe_revision: deb386d3e2088d974c4dd3c9d8292e7ff8c07228
MIT-LICENSE:
comments:
reviewed_by: brian.shand
safe_revision: 71c40edb16ca5068278ae2f5f8f9b595be0fd0e1
README.md:
comments:
reviewed_by: brian.shand
safe_revision: 71c40edb16ca5068278ae2f5f8f9b595be0fd0e1
Rakefile:
comments:
reviewed_by: josh.pencheon
safe_revision: f9f6fe7769c995d7904d453a06c3490a57893c19
app/assets/javascripts/ndr_error/ndr_error.js:
comments:
reviewed_by: josh.pencheon
safe_revision: 02ce1726c28b3677fa3939df4bae7f428c5f5e13
app/assets/stylesheets/ndr_error/ndr_error.scss:
comments:
reviewed_by: josh.pencheon
safe_revision: 02ce1726c28b3677fa3939df4bae7f428c5f5e13
app/controllers/ndr_error/application_controller.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: d714aace6d35ccc37ee88d800a43ee915d2a4c37
app/controllers/ndr_error/errors_controller.rb:
comments: Potentially disclosive defaults. Index and Show have no authorization
mechanisms in place. Under default NdrError configuration (as at rev fe0a25b)
any (potentially malevolent) user can view captured errors and possibly harvest
information. JMP 2016-01-12 - Authorisation configuration is now required.
reviewed_by: josh.pencheon
safe_revision: 0c8ae75d4cba713cc45dca3d94734fa77f170a82
app/helpers/ndr_error/application_helper.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
app/helpers/ndr_error/errors_helper.rb:
comments:
reviewed_by: brian.shand
safe_revision: 7793a9f2f74f0acef108c541d9df64dc16798bc2
app/models/ndr_error/fingerprint.rb:
comments:
reviewed_by: brian.shand
safe_revision: 78b1039b4691155ed0a7b4d5ba1b931415ab7716
app/models/ndr_error/log.rb:
comments: raises SecurityError if user column isn't known to Rails
reviewed_by: brian.shand
safe_revision: 7793a9f2f74f0acef108c541d9df64dc16798bc2
app/views/layouts/ndr_error/ndr_error.html.erb:
comments:
reviewed_by: josh.pencheon
safe_revision: 9fd3ade644dacb1a63b49ca692cd1e1cf62620ed
app/views/ndr_error/errors/edit.html.erb:
comments:
reviewed_by: josh.pencheon
safe_revision: ed97290e47480c6ff94ff243424d4509f5506440
app/views/ndr_error/errors/index.html.erb:
comments:
reviewed_by: josh.pencheon
safe_revision: ed97290e47480c6ff94ff243424d4509f5506440
app/views/ndr_error/errors/show.html.erb:
comments:
reviewed_by: brian.shand
safe_revision: 7793a9f2f74f0acef108c541d9df64dc16798bc2
config/routes.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 0c8ae75d4cba713cc45dca3d94734fa77f170a82
db/migrate/20150918162403_create_error_fingerprints.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: dd568d9255488e1268955b5703988b9b2b589180
db/migrate/20150918162612_create_error_logs.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 58530c9736190c34ac5d9d018c222d64d72db822
db/migrate/20180203174345_add_cause_to_error_fingerprints.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: f29ceeca988132c58bb38c7ba3d85c38252aded5
gemfiles/Gemfile.rails61:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
gemfiles/Gemfile.rails70:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
gemfiles/Gemfile.rails71:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
gemfiles/Gemfile.rails72:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
lib/ndr_error.rb:
comments: Potentially dangerous defaults. Default configuration assumes any given
user is both authenticated and authorized to read/update/delete any error. JMP
2016-01-12 - Authorisation configuration is now required.
reviewed_by: brian.shand
safe_revision: 78b1039b4691155ed0a7b4d5ba1b931415ab7716
lib/ndr_error/backtrace_compression.rb:
comments: diff not displayed, file re-checked
reviewed_by: josh.pencheon
safe_revision: 0c8ae75d4cba713cc45dca3d94734fa77f170a82
lib/ndr_error/callbacks.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: efa29bca4a499b4e69cddec2d7145a9220a7122b
lib/ndr_error/engine.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 556811d2b46e4f6d95eac1ac4be80f4fdc586493
lib/ndr_error/finder.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: e1c892df6ea9eb5bcc300081e7513e2306ba7d82
lib/ndr_error/fuzzing.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: dd568d9255488e1268955b5703988b9b2b589180
lib/ndr_error/logging.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: efa29bca4a499b4e69cddec2d7145a9220a7122b
lib/ndr_error/middleware/public_exceptions.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 3a90be07bc39458e0d712d67d6ad749d47c1a0f1
lib/ndr_error/recorder.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 3a90be07bc39458e0d712d67d6ad749d47c1a0f1
lib/ndr_error/uuid_builder.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 0a6aa403872f13daea294b6cd70af795f27e9c26
lib/ndr_error/version.rb:
comments:
reviewed_by: brian.shand
safe_revision: 180d26d43236a5f3b8210e1b857f7c5abeddec6f
lib/tasks/ndr_error_tasks.rake:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
ndr_error.gemspec:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
script/rails:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/README.rdoc:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/Rakefile:
comments: Rakefile has a shebang line, so can be executable
reviewed_by: josh.pencheon
safe_revision: 0c8ae75d4cba713cc45dca3d94734fa77f170a82
test/dummy/app/assets/config/manifest.js:
comments:
reviewed_by: brian.shand
safe_revision: 041b134d5185ca19a42335caa99e68207710d732
test/dummy/app/assets/javascripts/application.js:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/app/assets/stylesheets/application.css:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/app/controllers/application_controller.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/app/controllers/disaster_controller.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 0c8ae75d4cba713cc45dca3d94734fa77f170a82
test/dummy/app/helpers/application_helper.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/app/mailers/.gitkeep:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/app/models/.gitkeep:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/app/views/disaster/no_panic.html.erb:
comments:
reviewed_by: josh.pencheon
safe_revision: 74ca150d40becaeb12020a4779c89273e1aaf3ee
test/dummy/app/views/layouts/application.html.erb:
comments:
reviewed_by: josh.pencheon
safe_revision: 74ca150d40becaeb12020a4779c89273e1aaf3ee
test/dummy/config.ru:
comments:
reviewed_by: Miles Smith
safe_revision: ae18bbbff14d543b9a04e0c2b6158de66fb39772
test/dummy/config/application.rb:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
test/dummy/config/boot.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6032d2ffd7911c5f861e336ae463cd7af52badf7
test/dummy/config/database.yml:
comments:
reviewed_by: josh.pencheon
safe_revision: baff8a5a455103dcf5ad8019fd294ada391b8656
test/dummy/config/environment.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/config/environments/test.rb:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
test/dummy/config/initializers/backtrace_silencers.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/config/initializers/configure_ndr_error.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 2c26dd03cb934bf5cc1941907083c1df3625dfab
test/dummy/config/initializers/inflections.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/config/initializers/mime_types.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/config/initializers/session_store.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/config/initializers/wrap_parameters.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/config/locales/en.yml:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/config/routes.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 0c8ae75d4cba713cc45dca3d94734fa77f170a82
test/dummy/config/secrets.yml:
comments:
reviewed_by: josh.pencheon
safe_revision: baff8a5a455103dcf5ad8019fd294ada391b8656
test/dummy/config/storage.yml:
comments:
reviewed_by: brian.shand
safe_revision: f538c9dc6398af2823dc5ff9052b0527c26253e7
test/dummy/db/migrate/20150918163720_add_custom_user_column_to_error_logs.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 58530c9736190c34ac5d9d018c222d64d72db822
test/dummy/lib/assets/.gitkeep:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/log/.gitkeep:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/public/404.html:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/public/422.html:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/public/500.html:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/public/favicon.ico:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/dummy/script/rails:
comments:
reviewed_by: Miles Smith
safe_revision: ae18bbbff14d543b9a04e0c2b6158de66fb39772
test/integration/error_logging_test.rb:
comments:
reviewed_by: brian.shand
safe_revision: 8f3b4e058c8947b352417704401b45887caa90ed
test/integration/error_viewing_test.rb:
comments:
reviewed_by: brian.shand
safe_revision: 97714a37197d1edbf0c7361387962b03288b6535
test/ndr_error_test.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/test_helper.rb:
comments:
reviewed_by: brian.shand
safe_revision: 78b1039b4691155ed0a7b4d5ba1b931415ab7716
test/unit/helpers/ndr_error/application_helper_test.rb:
comments:
reviewed_by: Miles Smith
safe_revision: 6b335dd1e823dffecb0d2c936e11b81edff0b067
test/unit/helpers/ndr_error/errors_helper_test.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 0c8ae75d4cba713cc45dca3d94734fa77f170a82
test/unit/ndr_error/finder_test.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: 0c8ae75d4cba713cc45dca3d94734fa77f170a82
test/unit/ndr_error/fingerprint_test.rb:
comments:
reviewed_by: brian.shand
safe_revision: 71c40edb16ca5068278ae2f5f8f9b595be0fd0e1
test/unit/ndr_error/fuzzing_test.rb:
comments:
reviewed_by: brian.shand
safe_revision: 0a8e49f503ec8ca2f839a976919c299c9a3b65f0
test/unit/ndr_error/log_test.rb:
comments:
reviewed_by: brian.shand
safe_revision: 6c6c33cfa43cf89b18a122c131f1c01bceb1386f
test/unit/ndr_error/logging_test.rb:
comments:
reviewed_by: josh.pencheon
safe_revision: efa29bca4a499b4e69cddec2d7145a9220a7122b