11 Commits

Author	SHA1	Message	Date
Alex Ford	0f0a51e2e0	Ruby: update test output	2022-03-10 18:27:06 +00:00
Alex Ford	43fb759dfa	Ruby: add a few more rb/clear-text-storage-sensitive-data test cases	2022-03-10 17:52:50 +00:00
Alex Ford	37c0702cdd	Ruby: update test output	2022-03-10 17:50:29 +00:00
Alex Ford	0f3cf47ca9	Ruby/JS/Py: Add "random" to the notSensitiveRegexp() heuristic	2022-03-10 17:38:52 +00:00
Alex Ford	8be1be388e	Ruby: update CleartextStorage test output for source locations	2022-03-10 17:38:52 +00:00
Alex Ford	ef29a372a4	Ruby: Cleartext storage tests	2022-03-10 17:38:52 +00:00
Harry Maclean	07c70adde5	Ruby: Update CleartextLogging fixture ... The flow summary for `String#sub` leads to two new results in this test. They are duplicates of existing results, because the query is quite liberal in what it considers a source. ```ruby password = "abc" password_masked = password.sub(/./, "x") Logger.new(STDOUT).info password_masked ``` In the example above, the query considers lines 1 and 2 to both be sources, with a sink at line 3. Previously there was no flow from line 1 to line 3 because of the missing flow summary for `String#sub`, and therefore there was just one result. Now we have the flow summary, there are two results. Line 2 is considered a source because it is an assignment to a variable that contains the term "password". I'm not sure how to adjust the query to avoid these duplicates, so I'm leaving them in for now.	2022-02-22 16:58:41 +13:00
Alex Ford	7c1bd9a533	Ruby: add a test case for cleartext logging that uses NonCleartextPasswordFlow	2022-02-10 15:50:56 +00:00
Alex Ford	59ab384825	Ruby: rb/clear-text-logging-sensitive-data - match on CFG nodes rather than AST nodes	2022-02-10 15:50:56 +00:00
Alex Ford	7ed447842f	Ruby: cleartext logging test output	2022-01-28 17:24:56 +00:00
Alex Ford	91ccd307e8	Ruby: Implement rb/clear-text-logging-sensitive-data	2022-01-28 17:24:56 +00:00