Class: Sqreen::Rules::ShellEnvCB

# File 'lib/sqreen/rules/shell_env_cb.rb', line 12

def pre(_inst, args, _budget = nil, &_block)
  return if args.size == 0
  env = args.first
  return unless env.is_a?(Hash)
  return if env.size == 0
  found = nil
  var, value = env.find do |_, val|
    next unless val.is_a?(String)
    found = match_regexp(val)
  end
  return unless var
  infos = {
    :variable_name => var,
    :variable_value => value,
    :found => found,
  }
  Sqreen.log.warn { "presence of a shell env tampering: #{infos.inspect}" }
  record_event(infos)
  advise_action(:raise)
end

Class: Sqreen::Rules::ShellEnvCB

Overview

Constant Summary

Constants inherited from RuleCB

Constants included from CallCountable

Constants inherited from CB

Instance Attribute Summary

Attributes inherited from RuleCB

Attributes included from CallCountable

Attributes inherited from FrameworkCB

Attributes inherited from CB

Instance Method Summary collapse

Methods inherited from RegexpRuleCB

Methods inherited from RuleCB

Methods included from CallCountable

Methods included from Conditionable

Methods inherited from FrameworkCB

Methods inherited from CB

Constructor Details

Instance Method Details

#pre(_inst, args, _budget = nil, &_block) ⇒ Object

#pre(_inst, args, _budget = nil, &_block) ⇒ `Object`