Skip to content
Commits on Jun 20, 2012
  1. @dmajda

    Merge pull request #44 from LTe/insecure_methods

    Insecure methods
    dmajda committed Jun 20, 2012
  2. Add shellwords escape check

    committed Jun 20, 2012
  3. Add deserialize method check

    committed Jun 20, 2012
  4. Add check for eval method

    committed Jun 20, 2012
  5. Add check for system commands

    committed Jun 20, 2012
  6. @dmajda

    Merge pull request #42 from LTe/bump_gemspec

    Bump machete version.
    dmajda committed Jun 19, 2012
Commits on Jun 19, 2012
  1. Bump machete version.

    Scanny use new feature of machete matching
    method names with regexp. In future will use DSL.
    committed Jun 19, 2012
  2. @dmajda

    Merge pull request #41 from LTe/new_sql_injection_check

    SQL injection check
    dmajda committed Jun 19, 2012
Commits on Jun 18, 2012
  1. Add superclass with warning message.

    committed Jun 18, 2012
  2. Add check for usage params or options in string interpolation.

    User in this way can build SQL query and execute dangerous code on database engine.
    committed Jun 18, 2012
  3. Add check for sanitize_sql method

    committed Jun 18, 2012
  4. Add checks for find, execute and paginate methods

    Add check for find method with :conditions argument
    committed Jun 18, 2012
Commits on Jun 15, 2012
  1. @dmajda

    Merge pull request #39 from LTe/xss_check

    Add XSS check
    dmajda committed Jun 15, 2012
Commits on Jun 12, 2012
  1. Add static warning messages to specs

    committed Jun 12, 2012
  2. Update checks comments

    committed Jun 12, 2012
Commits on Jun 8, 2012
  1. Update sub-patterns comments

    committed Jun 8, 2012
  2. Move spec to more matching block

    committed Jun 8, 2012
  3. Remove TODO, update documentation

    committed Jun 8, 2012
  4. Update warning messages in specs

    committed Jun 8, 2012
  5. Remove indent after private method

    committed Jun 8, 2012
  6. Use machete to check sub-patterns

    committed Jun 8, 2012
  7. XSS checks

    Split checks by subject
    Update specs
    committed Jun 7, 2012
Commits on May 29, 2012
  1. @dmajda

    Merge pull request #38 from LTe/ruby_version_check

    Ruby version check
    dmajda committed May 29, 2012
  2. Refactoring

    Add space-bar after na before '{' and '}'
    Change saved_const to plural version (saved_consts)
    Use each_key instead of each
    committed May 29, 2012
Commits on May 25, 2012
  1. Check ruby version and ruby engine

    Add specs for ruby version check
    Include helper to change constants
    Add silence method to not show exception on console
    
    Raise exception when user try to execute scanny on
    non-rubunius implementation
    committed May 24, 2012
  2. Fix specs for ruby 1.9

    Force to create Array from @cwe
    committed May 24, 2012
Commits on May 24, 2012
  1. @dmajda

    Merge pull request #37 from LTe/test_19

    Fix specs for ruby 1.9
    dmajda committed May 24, 2012
  2. @dmajda

    Merge pull request #36 from LTe/require_refactoring

    Require refactoring
    dmajda committed May 24, 2012
  3. @dmajda

    Merge pull request #35 from LTe/add_rack_to_gemfile

    Add rake to Gemfile
    dmajda committed May 24, 2012
Something went wrong with that request. Please try again.