├── .gitignore ├── .travis.yml ├── CHANGES ├── FEATURES ├── Gemfile ├── MIT-LICENSE ├── README.md ├── Rakefile ├── WARNING_TYPES ├── bin └── brakeman ├── brakeman-min.gemspec ├── brakeman-public_cert.pem ├── brakeman.gemspec ├── lib ├── brakeman.rb ├── brakeman │ ├── app_tree.rb │ ├── brakeman.rake │ ├── call_index.rb │ ├── checks.rb │ ├── checks │ │ ├── base_check.rb │ │ ├── check_basic_auth.rb │ │ ├── check_content_tag.rb │ │ ├── check_cross_site_scripting.rb │ │ ├── check_default_routes.rb │ │ ├── check_deserialize.rb │ │ ├── check_detailed_exceptions.rb │ │ ├── check_digest_dos.rb │ │ ├── check_escape_function.rb │ │ ├── check_evaluation.rb │ │ ├── check_execute.rb │ │ ├── check_file_access.rb │ │ ├── check_filter_skipping.rb │ │ ├── check_forgery_setting.rb │ │ ├── check_header_dos.rb │ │ ├── check_i18n_xss.rb │ │ ├── check_jruby_xml.rb │ │ ├── check_json_parsing.rb │ │ ├── check_link_to.rb │ │ ├── check_link_to_href.rb │ │ ├── check_mail_to.rb │ │ ├── check_mass_assignment.rb │ │ ├── check_model_attr_accessible.rb │ │ ├── check_model_attributes.rb │ │ ├── check_model_serialize.rb │ │ ├── check_nested_attributes.rb │ │ ├── check_number_to_currency.rb │ │ ├── check_quote_table_name.rb │ │ ├── check_redirect.rb │ │ ├── check_render.rb │ │ ├── check_render_dos.rb │ │ ├── check_response_splitting.rb │ │ ├── check_safe_buffer_manipulation.rb │ │ ├── check_sanitize_methods.rb │ │ ├── check_select_tag.rb │ │ ├── check_select_vulnerability.rb │ │ ├── check_send.rb │ │ ├── check_send_file.rb │ │ ├── check_session_settings.rb │ │ ├── check_simple_format.rb │ │ ├── check_single_quotes.rb │ │ ├── check_skip_before_filter.rb │ │ ├── check_sql.rb │ │ ├── check_ssl_verify.rb │ │ ├── check_strip_tags.rb │ │ ├── check_symbol_dos.rb │ │ ├── check_translate_bug.rb │ │ ├── check_unsafe_reflection.rb │ │ ├── check_validation_regex.rb │ │ ├── check_without_protection.rb │ │ └── check_yaml_parsing.rb │ ├── differ.rb │ ├── format │ │ └── style.css │ ├── options.rb │ ├── parsers │ │ ├── rails2_erubis.rb │ │ ├── rails2_xss_plugin_erubis.rb │ │ └── rails3_erubis.rb │ ├── processor.rb │ ├── processors │ │ ├── alias_processor.rb │ │ ├── base_processor.rb │ │ ├── config_processor.rb │ │ ├── controller_alias_processor.rb │ │ ├── controller_processor.rb │ │ ├── erb_template_processor.rb │ │ ├── erubis_template_processor.rb │ │ ├── gem_processor.rb │ │ ├── haml_template_processor.rb │ │ ├── lib │ │ │ ├── find_all_calls.rb │ │ │ ├── find_call.rb │ │ │ ├── find_return_value.rb │ │ │ ├── processor_helper.rb │ │ │ ├── rails2_config_processor.rb │ │ │ ├── rails2_route_processor.rb │ │ │ ├── rails3_config_processor.rb │ │ │ ├── rails3_route_processor.rb │ │ │ ├── render_helper.rb │ │ │ └── route_helper.rb │ │ ├── library_processor.rb │ │ ├── model_processor.rb │ │ ├── output_processor.rb │ │ ├── route_processor.rb │ │ ├── slim_template_processor.rb │ │ ├── template_alias_processor.rb │ │ └── template_processor.rb │ ├── report.rb │ ├── report │ │ ├── ignore │ │ │ ├── config.rb │ │ │ └── interactive.rb │ │ ├── initializers │ │ │ ├── faster_csv.rb │ │ │ └── multi_json.rb │ │ ├── renderer.rb │ │ ├── report_base.rb │ │ ├── report_csv.rb │ │ ├── report_hash.rb │ │ ├── report_html.rb │ │ ├── report_json.rb │ │ ├── report_table.rb │ │ ├── report_tabs.rb │ │ └── templates │ │ │ ├── controller_overview.html.erb │ │ │ ├── controller_warnings.html.erb │ │ │ ├── error_overview.html.erb │ │ │ ├── header.html.erb │ │ │ ├── ignored_warnings.html.erb │ │ │ ├── model_warnings.html.erb │ │ │ ├── overview.html.erb │ │ │ ├── security_warnings.html.erb │ │ │ ├── template_overview.html.erb │ │ │ ├── view_warnings.html.erb │ │ │ └── warning_overview.html.erb │ ├── rescanner.rb │ ├── scanner.rb │ ├── tracker.rb │ ├── util.rb │ ├── version.rb │ ├── warning.rb │ └── warning_codes.rb └── ruby_parser │ ├── bm_sexp.rb │ └── bm_sexp_processor.rb └── test ├── README.md ├── apps ├── rails2 │ ├── README │ ├── Rakefile │ ├── app │ │ ├── controllers │ │ │ ├── application_controller.rb │ │ │ ├── home_controller.rb │ │ │ └── other_controller.rb │ │ ├── helpers │ │ │ ├── application_helper.rb │ │ │ ├── home_helper.rb │ │ │ └── other_helper.rb │ │ ├── models │ │ │ ├── account.rb │ │ │ ├── protected.rb │ │ │ ├── unprotected.rb │ │ │ └── user.rb │ │ └── views │ │ │ ├── home │ │ │ ├── _models.html.erb │ │ │ ├── index.html.erb │ │ │ ├── test_command.html.erb │ │ │ ├── test_content_tag.html.erb │ │ │ ├── test_cookie.html.erb │ │ │ ├── test_dynamic_render.html.erb │ │ │ ├── test_eval.html.erb │ │ │ ├── test_filter.html.erb │ │ │ ├── test_link_to.html.erb │ │ │ ├── test_mass_assignment.html.erb │ │ │ ├── test_model.html.erb │ │ │ ├── test_params.html.erb │ │ │ ├── test_redirect.html.erb │ │ │ ├── test_render.html.erb │ │ │ ├── test_render_template.html.haml │ │ │ ├── test_sanitized_param.html.erb │ │ │ ├── test_send_target.html.erb │ │ │ ├── test_sql.html.erb │ │ │ ├── test_strip_tags.html.erb │ │ │ ├── test_to_json.html.erb │ │ │ └── test_xss_with_or.html.erb │ │ │ ├── layouts │ │ │ └── thing.html.erb │ │ │ └── other │ │ │ ├── _account.html.haml │ │ │ ├── _user.html.erb │ │ │ ├── ignore_me.html.erb │ │ │ ├── not_used.html.erb │ │ │ ├── test_collection.html.erb │ │ │ ├── test_env.html.erb │ │ │ ├── test_haml_stuff.html.haml │ │ │ ├── test_iteration.html.erb │ │ │ ├── test_locals.html.erb │ │ │ ├── test_object.html.erb │ │ │ ├── test_to_i.html.erb │ │ │ └── xss_dupes.html.erb │ ├── config │ │ ├── boot.rb │ │ ├── brakeman.ignore │ │ ├── database.yml │ │ ├── environment.rb │ │ ├── environments │ │ │ ├── development.rb │ │ │ ├── production.rb │ │ │ └── test.rb │ │ ├── initializers │ │ │ ├── backtrace_silencers.rb │ │ │ ├── cookie_verification_secret.rb │ │ │ ├── inflections.rb │ │ │ ├── mime_types.rb │ │ │ ├── new_rails_defaults.rb │ │ │ ├── security_defaults.rb │ │ │ └── session_store.rb │ │ ├── locales │ │ │ └── en.yml │ │ └── routes.rb │ ├── db │ │ ├── migrate │ │ │ ├── 20110520193611_create_users.rb │ │ │ └── 20110523184125_create_accounts.rb │ │ └── seeds.rb │ ├── doc │ │ └── README_FOR_APP │ ├── lib │ │ └── generators │ │ │ └── test_generator │ │ │ └── templates │ │ │ └── model.rb │ ├── log │ │ ├── development.log │ │ ├── production.log │ │ ├── server.log │ │ └── test.log │ ├── public │ │ ├── 404.html │ │ ├── 422.html │ │ ├── 500.html │ │ ├── favicon.ico │ │ ├── images │ │ │ └── rails.png │ │ ├── index.html │ │ ├── javascripts │ │ │ ├── application.js │ │ │ ├── controls.js │ │ │ ├── dragdrop.js │ │ │ ├── effects.js │ │ │ └── prototype.js │ │ └── robots.txt │ ├── script │ │ ├── about │ │ ├── console │ │ ├── dbconsole │ │ ├── destroy │ │ ├── generate │ │ ├── performance │ │ │ ├── benchmarker │ │ │ └── profiler │ │ ├── plugin │ │ ├── runner │ │ └── server │ └── test │ │ ├── fixtures │ │ ├── accounts.yml │ │ └── users.yml │ │ ├── functional │ │ ├── home_controller_test.rb │ │ └── other_controller_test.rb │ │ ├── performance │ │ └── browsing_test.rb │ │ ├── test_helper.rb │ │ └── unit │ │ ├── account_test.rb │ │ ├── helpers │ │ ├── home_helper_test.rb │ │ └── other_helper_test.rb │ │ └── user_test.rb ├── rails3.1 │ ├── .gitignore │ ├── Gemfile │ ├── Gemfile.lock │ ├── README │ ├── Rakefile │ ├── app │ │ ├── assets │ │ │ ├── images │ │ │ │ └── rails.png │ │ │ ├── javascripts │ │ │ │ ├── application.js │ │ │ │ └── users.js.coffee │ │ │ └── stylesheets │ │ │ │ ├── application.css │ │ │ │ ├── scaffolds.css.scss │ │ │ │ └── users.css.scss │ │ ├── controllers │ │ │ ├── admin_controller.rb │ │ │ ├── application_controller.rb │ │ │ ├── mixins │ │ │ │ └── user_mixin.rb │ │ │ ├── other_controller.rb │ │ │ └── users_controller.rb │ │ ├── helpers │ │ │ ├── application_helper.rb │ │ │ └── users_helper.rb │ │ ├── mailers │ │ │ └── .gitkeep │ │ ├── models │ │ │ ├── .gitkeep │ │ │ ├── account.rb │ │ │ ├── product.rb │ │ │ ├── some_model.rb │ │ │ └── user.rb │ │ └── views │ │ │ ├── layouts │ │ │ └── application.html.erb │ │ │ ├── other │ │ │ ├── _partial.html.erb │ │ │ ├── a.html.erb │ │ │ ├── b.html.erb │ │ │ ├── c.html.erb │ │ │ ├── d.html.erb │ │ │ ├── e.html.erb │ │ │ ├── f.html.erb │ │ │ ├── g.html.erb │ │ │ ├── test_model_in_haml.html.haml │ │ │ ├── test_partial.html.erb │ │ │ ├── test_select_tag.html.erb │ │ │ ├── test_string_interp.html.erb │ │ │ └── test_strip_tags.html.erb │ │ │ └── users │ │ │ ├── _bio.html.erb │ │ │ ├── _circular.html.erb │ │ │ ├── _circular_too.html.erb │ │ │ ├── _form.html.erb │ │ │ ├── _test_layout.html.erb │ │ │ ├── _user.html.erb │ │ │ ├── circular_render.html.erb │ │ │ ├── edit.html.erb │ │ │ ├── index.html.erb │ │ │ ├── interpolated_value.html.haml │ │ │ ├── json_test.html.erb │ │ │ ├── mixin_default.html.erb │ │ │ ├── mixin_template.html.erb │ │ │ ├── new.html.erb │ │ │ ├── show.html.erb │ │ │ ├── test_assign_if.html.erb │ │ │ ├── test_assign_twice.html.erb │ │ │ ├── test_less_simple_helpers.html.erb │ │ │ └── test_simple_helper.html.erb │ ├── config.ru │ ├── config │ │ ├── application.rb │ │ ├── boot.rb │ │ ├── database.yml │ │ ├── environment.rb │ │ ├── environments │ │ │ ├── development.rb │ │ │ ├── production.rb │ │ │ └── test.rb │ │ ├── initializers │ │ │ ├── backtrace_silencers.rb │ │ │ ├── inflections.rb │ │ │ ├── mime_types.rb │ │ │ ├── secret_token.rb │ │ │ ├── session_store.rb │ │ │ ├── set_escape_json.rb │ │ │ ├── unset_escape_json.rb │ │ │ ├── wrap_parameters.rb │ │ │ ├── xml_parsing.rb │ │ │ └── yaml_parsing.rb │ │ ├── locales │ │ │ └── en.yml │ │ └── routes.rb │ ├── db │ │ ├── migrate │ │ │ └── 20110908172338_create_users.rb │ │ └── seeds.rb │ ├── doc │ │ └── README_FOR_APP │ ├── lib │ │ ├── alib.rb │ │ ├── assets │ │ │ └── .gitkeep │ │ ├── somelib.rb │ │ └── tasks │ │ │ └── .gitkeep │ ├── log │ │ └── .gitkeep │ ├── public │ │ ├── 404.html │ │ ├── 422.html │ │ ├── 500.html │ │ ├── favicon.ico │ │ ├── index.html │ │ └── robots.txt │ ├── script │ │ └── rails │ ├── test │ │ ├── fixtures │ │ │ ├── .gitkeep │ │ │ └── users.yml │ │ ├── functional │ │ │ ├── .gitkeep │ │ │ └── users_controller_test.rb │ │ ├── integration │ │ │ └── .gitkeep │ │ ├── performance │ │ │ └── browsing_test.rb │ │ ├── test_helper.rb │ │ └── unit │ │ │ ├── .gitkeep │ │ │ ├── helpers │ │ │ └── users_helper_test.rb │ │ │ └── user_test.rb │ └── vendor │ │ ├── assets │ │ └── stylesheets │ │ │ └── .gitkeep │ │ └── plugins │ │ └── .gitkeep ├── rails3.2 │ ├── Gemfile │ ├── Gemfile.lock │ ├── README.rdoc │ ├── Rakefile │ ├── app │ │ ├── assets │ │ │ ├── images │ │ │ │ └── rails.png │ │ │ ├── javascripts │ │ │ │ ├── application.js │ │ │ │ └── users.js.coffee │ │ │ └── stylesheets │ │ │ │ ├── application.css │ │ │ │ ├── scaffolds.css.scss │ │ │ │ └── users.css.scss │ │ ├── controllers │ │ │ ├── application_controller.rb │ │ │ ├── removal_controller.rb │ │ │ └── users_controller.rb │ │ ├── helpers │ │ │ ├── application_helper.rb │ │ │ └── users_helper.rb │ │ ├── models │ │ │ ├── .gitkeep │ │ │ ├── account.rb │ │ │ ├── no_protection.rb │ │ │ └── user.rb │ │ └── views │ │ │ ├── layouts │ │ │ └── application.html.erb │ │ │ ├── removal │ │ │ ├── _partial.html.erb │ │ │ ├── controller_removed.html.erb │ │ │ └── implicit_render.html.erb │ │ │ └── users │ │ │ ├── _form.html.erb │ │ │ ├── _slimmer.html.slim │ │ │ ├── edit.html.erb │ │ │ ├── index.html.erb │ │ │ ├── mixed_in.html.erb │ │ │ ├── new.html.erb │ │ │ ├── sanitized.html.erb │ │ │ ├── show.html.erb │ │ │ └── slimming.html.slim │ ├── config.ru │ ├── config │ │ ├── application.rb │ │ ├── boot.rb │ │ ├── database.yml │ │ ├── environment.rb │ │ ├── environments │ │ │ ├── development.rb │ │ │ ├── production.rb │ │ │ └── test.rb │ │ ├── initializers │ │ │ ├── backtrace_silencers.rb │ │ │ ├── header_dos_protection.rb │ │ │ ├── inflections.rb │ │ │ ├── mime_types.rb │ │ │ ├── secret_token.rb │ │ │ ├── session_store.rb │ │ │ └── wrap_parameters.rb │ │ ├── locales │ │ │ └── en.yml │ │ └── routes.rb │ ├── lib │ │ ├── assets │ │ │ └── .gitkeep │ │ ├── tasks │ │ │ └── .gitkeep │ │ └── user_controller_mixin.rb │ └── script │ │ └── rails ├── rails3 │ ├── .gitignore │ ├── Gemfile │ ├── Gemfile.lock │ ├── README │ ├── Rakefile │ ├── app │ │ ├── controllers │ │ │ ├── application_controller.rb │ │ │ ├── base_thing.rb │ │ │ ├── before_controller.rb │ │ │ ├── child_controller.rb │ │ │ ├── home_controller.rb │ │ │ ├── nested_controller.rb │ │ │ ├── other_controller.rb │ │ │ └── products_controller.rb │ │ ├── helpers │ │ │ ├── application_helper.rb │ │ │ ├── home_helper.rb │ │ │ ├── other_helper.rb │ │ │ └── products_helper.rb │ │ ├── models │ │ │ ├── account.rb │ │ │ ├── bill.rb │ │ │ ├── noticia.rb │ │ │ ├── notifier.rb │ │ │ ├── product.rb │ │ │ ├── purchase.rb │ │ │ ├── underline_model.rb │ │ │ └── user.rb │ │ └── views │ │ │ ├── before │ │ │ ├── use_filter12345.html.erb │ │ │ └── use_filters12.html.erb │ │ │ ├── child │ │ │ └── action_in_child.html.erb │ │ │ ├── home │ │ │ ├── index.html.erb │ │ │ ├── test_command.html.erb │ │ │ ├── test_content_tag.html.erb │ │ │ ├── test_cookie.html.erb │ │ │ ├── test_dynamic_render.html.erb │ │ │ ├── test_eval.html.erb │ │ │ ├── test_file_access.html.erb │ │ │ ├── test_filter.html.erb │ │ │ ├── test_mass_assignment.html.erb │ │ │ ├── test_model.html.erb │ │ │ ├── test_params.html.erb │ │ │ ├── test_redirect.html.erb │ │ │ ├── test_render.html.erb │ │ │ └── test_sql.html.erb │ │ │ ├── layouts │ │ │ └── application.html.erb │ │ │ ├── other │ │ │ ├── _account.html.haml │ │ │ ├── _user.html.erb │ │ │ ├── test_collection.html.erb │ │ │ ├── test_iteration.html.erb │ │ │ ├── test_locals.html.erb │ │ │ ├── test_mail_to.html.erb │ │ │ ├── test_object.html.erb │ │ │ ├── test_select_tag.html.erb │ │ │ ├── test_send_file.html.erb │ │ │ └── test_strip_tags.html.erb │ │ │ ├── products │ │ │ ├── _form.html.erb │ │ │ ├── edit.html.erb │ │ │ ├── index.html.erb │ │ │ ├── new.html.erb │ │ │ └── show.html.erb │ │ │ └── whatever │ │ │ └── wherever │ │ │ └── nested │ │ │ └── so_nested.html.erb │ ├── config.ru │ ├── config │ │ ├── application.rb │ │ ├── boot.rb │ │ ├── brakeman.yml │ │ ├── database.yml │ │ ├── environment.rb │ │ ├── environments │ │ │ ├── development.rb │ │ │ ├── production.rb │ │ │ └── test.rb │ │ ├── initializers │ │ │ ├── backtrace_silencers.rb │ │ │ ├── disable_xml_parsing.rb │ │ │ ├── inflections.rb │ │ │ ├── mime_types.rb │ │ │ ├── secret_token.rb │ │ │ └── session_store.rb │ │ ├── locales │ │ │ └── en.yml │ │ └── routes.rb │ ├── db │ │ └── seeds.rb │ ├── doc │ │ └── README_FOR_APP │ ├── lib │ │ ├── controller_filter.rb │ │ └── tasks │ │ │ └── .gitkeep │ ├── public │ │ ├── 404.html │ │ ├── 422.html │ │ ├── 500.html │ │ ├── favicon.ico │ │ ├── images │ │ │ └── rails.png │ │ ├── index.html │ │ ├── javascripts │ │ │ ├── application.js │ │ │ ├── controls.js │ │ │ ├── dragdrop.js │ │ │ ├── effects.js │ │ │ ├── prototype.js │ │ │ └── rails.js │ │ ├── robots.txt │ │ └── stylesheets │ │ │ └── .gitkeep │ ├── script │ │ └── rails │ ├── test │ │ ├── functional │ │ │ ├── home_controller_test.rb │ │ │ └── other_controller_test.rb │ │ ├── performance │ │ │ └── browsing_test.rb │ │ ├── test_helper.rb │ │ └── unit │ │ │ └── helpers │ │ │ ├── home_helper_test.rb │ │ │ └── other_helper_test.rb │ └── vendor │ │ └── plugins │ │ └── .gitkeep ├── rails4 │ ├── .gitignore │ ├── Gemfile │ ├── README.rdoc │ ├── Rakefile │ ├── app │ │ ├── assets │ │ │ ├── images │ │ │ │ └── rails.png │ │ │ ├── javascripts │ │ │ │ └── application.js │ │ │ └── stylesheets │ │ │ │ └── application.css │ │ ├── controllers │ │ │ ├── application_controller.rb │ │ │ ├── concerns │ │ │ │ └── .keep │ │ │ └── friendly_controller.rb │ │ ├── helpers │ │ │ └── application_helper.rb │ │ ├── mailers │ │ │ └── .keep │ │ ├── models │ │ │ ├── .keep │ │ │ ├── account.rb │ │ │ ├── concerns │ │ │ │ └── .keep │ │ │ └── user.rb │ │ └── views │ │ │ ├── layouts │ │ │ └── application.html.erb │ │ │ └── users │ │ │ └── index.html.erb │ ├── bin │ │ ├── bundle │ │ ├── rails │ │ └── rake │ ├── config.ru │ ├── config │ │ ├── application.rb │ │ ├── boot.rb │ │ ├── brakeman.ignore │ │ ├── database.yml │ │ ├── environment.rb │ │ ├── environments │ │ │ ├── development.rb │ │ │ ├── production.rb │ │ │ └── test.rb │ │ ├── initializers │ │ │ ├── backtrace_silencers.rb │ │ │ ├── filter_parameter_logging.rb │ │ │ ├── i18n.rb │ │ │ ├── inflections.rb │ │ │ ├── mime_types.rb │ │ │ ├── secret_token.rb │ │ │ ├── session_store.rb │ │ │ └── wrap_parameters.rb │ │ ├── locales │ │ │ └── en.yml │ │ └── routes.rb │ ├── db │ │ └── seeds.rb │ ├── lib │ │ ├── assets │ │ │ └── .keep │ │ └── tasks │ │ │ └── .keep │ ├── log │ │ └── .keep │ ├── public │ │ ├── 404.html │ │ ├── 422.html │ │ ├── 500.html │ │ ├── favicon.ico │ │ └── robots.txt │ ├── test │ │ ├── controllers │ │ │ └── .keep │ │ ├── fixtures │ │ │ └── .keep │ │ ├── helpers │ │ │ └── .keep │ │ ├── integration │ │ │ └── .keep │ │ ├── mailers │ │ │ └── .keep │ │ ├── models │ │ │ └── .keep │ │ └── test_helper.rb │ └── vendor │ │ └── assets │ │ ├── javascripts │ │ └── .keep │ │ └── stylesheets │ │ └── .keep ├── rails4_with_engines │ ├── Gemfile │ ├── README.rdoc │ ├── Rakefile │ ├── app │ │ ├── assets │ │ │ ├── images │ │ │ │ └── rails.png │ │ │ ├── javascripts │ │ │ │ └── application.js │ │ │ └── stylesheets │ │ │ │ └── application.css │ │ ├── controllers │ │ │ ├── application_controller.rb │ │ │ └── concerns │ │ │ │ └── .keep │ │ ├── helpers │ │ │ └── application_helper.rb │ │ ├── mailers │ │ │ └── .keep │ │ ├── models │ │ │ ├── .keep │ │ │ └── concerns │ │ │ │ └── .keep │ │ └── views │ │ │ └── layouts │ │ │ └── application.html.erb │ ├── bin │ │ ├── bundle │ │ ├── rails │ │ └── rake │ ├── config.ru │ ├── config │ │ ├── application.rb │ │ ├── boot.rb │ │ ├── database.yml │ │ ├── environment.rb │ │ ├── environments │ │ │ ├── development.rb │ │ │ ├── production.rb │ │ │ └── test.rb │ │ ├── initializers │ │ │ ├── backtrace_silencers.rb │ │ │ ├── filter_parameter_logging.rb │ │ │ ├── inflections.rb │ │ │ ├── mime_types.rb │ │ │ ├── secret_token.rb │ │ │ ├── session_store.rb │ │ │ └── wrap_parameters.rb │ │ ├── locales │ │ │ └── en.yml │ │ └── routes.rb │ ├── db │ │ └── seeds.rb │ ├── engines │ │ └── user_removal │ │ │ ├── app │ │ │ ├── assets │ │ │ │ ├── javascripts │ │ │ │ │ └── users.js.coffee │ │ │ │ └── stylesheets │ │ │ │ │ └── users.css.scss │ │ │ ├── controllers │ │ │ │ ├── removal_controller.rb │ │ │ │ └── users_controller.rb │ │ │ ├── helpers │ │ │ │ ├── application_helper.rb │ │ │ │ └── users_helper.rb │ │ │ ├── models │ │ │ │ ├── .gitkeep │ │ │ │ ├── account.rb │ │ │ │ ├── no_protection.rb │ │ │ │ └── user.rb │ │ │ └── views │ │ │ │ ├── removal │ │ │ │ ├── _partial.html.erb │ │ │ │ ├── controller_removed.html.erb │ │ │ │ └── implicit_render.html.erb │ │ │ │ └── users │ │ │ │ ├── _form.html.erb │ │ │ │ ├── _slimmer.html.slim │ │ │ │ ├── edit.html.erb │ │ │ │ ├── index.html.erb │ │ │ │ ├── mixed_in.html.erb │ │ │ │ ├── new.html.erb │ │ │ │ ├── sanitized.html.erb │ │ │ │ ├── show.html.erb │ │ │ │ └── slimming.html.slim │ │ │ ├── config │ │ │ └── routes.rb │ │ │ └── lib │ │ │ └── user_removal.rb │ ├── lib │ │ ├── assets │ │ │ └── .keep │ │ └── tasks │ │ │ └── .keep │ ├── log │ │ └── .keep │ ├── public │ │ ├── 404.html │ │ ├── 422.html │ │ ├── 500.html │ │ ├── favicon.ico │ │ └── robots.txt │ ├── script │ │ └── .keep │ ├── test │ │ ├── controllers │ │ │ └── .keep │ │ ├── fixtures │ │ │ └── .keep │ │ ├── helpers │ │ │ └── .keep │ │ ├── integration │ │ │ └── .keep │ │ ├── mailers │ │ │ └── .keep │ │ ├── models │ │ │ └── .keep │ │ └── test_helper.rb │ └── vendor │ │ └── assets │ │ ├── javascripts │ │ └── .keep │ │ └── stylesheets │ │ └── .keep └── rails_with_xss_plugin │ ├── Gemfile │ ├── README │ ├── Rakefile │ ├── app │ ├── controllers │ │ ├── application_controller.rb │ │ ├── posts_controller.rb │ │ └── users_controller.rb │ ├── helpers │ │ ├── application_helper.rb │ │ ├── posts_helper.rb │ │ └── users_helper.rb │ ├── models │ │ ├── post.rb │ │ └── user.rb │ └── views │ │ ├── layouts │ │ ├── posts.html.erb │ │ └── users.html.erb │ │ ├── posts │ │ ├── _show.html.erb │ │ ├── edit.html.erb │ │ ├── index.html.erb │ │ ├── new.html.erb │ │ ├── show.html.erb │ │ └── show_topic.html.erb │ │ └── users │ │ ├── _user.html.erb │ │ ├── edit.html.erb │ │ ├── index.html.erb │ │ ├── login.html.erb │ │ ├── new.html.erb │ │ ├── results.html.erb │ │ ├── search.html.erb │ │ ├── show.html.erb │ │ ├── test_sanitize.html.erb │ │ └── to_json.html.erb │ ├── config │ ├── boot.rb │ ├── database.yml │ ├── environment.rb │ ├── environments │ │ ├── development.rb │ │ ├── production.rb │ │ └── test.rb │ ├── initializers │ │ ├── backtrace_silencers.rb │ │ ├── cookie_verification_secret.rb │ │ ├── inflections.rb │ │ ├── json_parsing.rb │ │ ├── mime_types.rb │ │ ├── new_rails_defaults.rb │ │ ├── session_store.rb │ │ ├── single_quote_workaround.rb │ │ └── yaml_parsing.rb │ ├── locales │ │ └── en.yml │ └── routes.rb │ ├── db │ ├── migrate │ │ ├── 20120312064721_create_users.rb │ │ └── 20120312065023_create_posts.rb │ ├── schema.rb │ └── seeds.rb │ ├── doc │ └── README_FOR_APP │ ├── public │ ├── 404.html │ ├── 422.html │ ├── 500.html │ ├── favicon.ico │ ├── images │ │ └── rails.png │ ├── javascripts │ │ ├── application.js │ │ ├── controls.js │ │ ├── dragdrop.js │ │ ├── effects.js │ │ └── prototype.js │ ├── robots.txt │ └── stylesheets │ │ └── scaffold.css │ ├── script │ ├── about │ ├── console │ ├── dbconsole │ ├── destroy │ ├── generate │ ├── performance │ │ ├── benchmarker │ │ └── profiler │ ├── plugin │ ├── runner │ └── server │ ├── test │ ├── fixtures │ │ ├── posts.yml │ │ └── users.yml │ ├── functional │ │ ├── posts_controller_test.rb │ │ └── users_controller_test.rb │ ├── performance │ │ └── browsing_test.rb │ ├── test_helper.rb │ └── unit │ │ ├── helpers │ │ ├── posts_helper_test.rb │ │ └── users_helper_test.rb │ │ ├── post_test.rb │ │ └── user_test.rb │ └── vendor │ └── plugins │ └── rails_xss │ └── README ├── test.rb ├── tests ├── alias_processor.rb ├── brakeman.rb ├── call_index.rb ├── differ.rb ├── find_return_value.rb ├── json_compare.rb ├── json_output.rb ├── mass_assign_disable.rb ├── only_files_option.rb ├── output_processor.rb ├── rails2.rb ├── rails3.rb ├── rails31.rb ├── rails32.rb ├── rails4.rb ├── rails4_with_engines.rb ├── rails_with_xss_plugin.rb ├── rake_task.rb ├── report_generation.rb ├── rescanner.rb ├── sexp.rb └── tabs_output.rb └── to_test.rb /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/.gitignore -------------------------------------------------------------------------------- /.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/.travis.yml -------------------------------------------------------------------------------- /CHANGES: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/CHANGES -------------------------------------------------------------------------------- /FEATURES: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/FEATURES -------------------------------------------------------------------------------- /Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/Gemfile -------------------------------------------------------------------------------- /MIT-LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/MIT-LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/README.md -------------------------------------------------------------------------------- /Rakefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/Rakefile -------------------------------------------------------------------------------- /WARNING_TYPES: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/WARNING_TYPES -------------------------------------------------------------------------------- /bin/brakeman: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/bin/brakeman -------------------------------------------------------------------------------- /brakeman-min.gemspec: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/brakeman-min.gemspec -------------------------------------------------------------------------------- /brakeman-public_cert.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/brakeman-public_cert.pem -------------------------------------------------------------------------------- /brakeman.gemspec: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/brakeman.gemspec -------------------------------------------------------------------------------- /lib/brakeman.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman.rb -------------------------------------------------------------------------------- /lib/brakeman/app_tree.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/app_tree.rb -------------------------------------------------------------------------------- /lib/brakeman/brakeman.rake: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/brakeman.rake -------------------------------------------------------------------------------- /lib/brakeman/call_index.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/call_index.rb -------------------------------------------------------------------------------- /lib/brakeman/checks.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/base_check.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/base_check.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_basic_auth.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_basic_auth.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_content_tag.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_content_tag.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_cross_site_scripting.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_cross_site_scripting.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_default_routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_default_routes.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_deserialize.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_deserialize.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_detailed_exceptions.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_detailed_exceptions.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_digest_dos.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_digest_dos.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_escape_function.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_escape_function.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_evaluation.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_evaluation.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_execute.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_execute.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_file_access.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_file_access.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_filter_skipping.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_filter_skipping.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_forgery_setting.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_forgery_setting.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_header_dos.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_header_dos.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_i18n_xss.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_i18n_xss.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_jruby_xml.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_jruby_xml.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_json_parsing.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_json_parsing.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_link_to.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_link_to.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_link_to_href.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_link_to_href.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_mail_to.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_mail_to.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_mass_assignment.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_mass_assignment.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_model_attr_accessible.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_model_attr_accessible.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_model_attributes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_model_attributes.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_model_serialize.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_model_serialize.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_nested_attributes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_nested_attributes.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_number_to_currency.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_number_to_currency.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_quote_table_name.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_quote_table_name.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_redirect.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_redirect.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_render.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_render.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_render_dos.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_render_dos.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_response_splitting.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_response_splitting.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_safe_buffer_manipulation.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_safe_buffer_manipulation.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_sanitize_methods.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_sanitize_methods.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_select_tag.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_select_tag.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_select_vulnerability.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_select_vulnerability.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_send.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_send.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_send_file.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_send_file.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_session_settings.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_session_settings.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_simple_format.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_simple_format.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_single_quotes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_single_quotes.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_skip_before_filter.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_skip_before_filter.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_sql.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_sql.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_ssl_verify.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_ssl_verify.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_strip_tags.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_strip_tags.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_symbol_dos.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_symbol_dos.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_translate_bug.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_translate_bug.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_unsafe_reflection.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_unsafe_reflection.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_validation_regex.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_validation_regex.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_without_protection.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_without_protection.rb -------------------------------------------------------------------------------- /lib/brakeman/checks/check_yaml_parsing.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/checks/check_yaml_parsing.rb -------------------------------------------------------------------------------- /lib/brakeman/differ.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/differ.rb -------------------------------------------------------------------------------- /lib/brakeman/format/style.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/format/style.css -------------------------------------------------------------------------------- /lib/brakeman/options.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/options.rb -------------------------------------------------------------------------------- /lib/brakeman/parsers/rails2_erubis.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/parsers/rails2_erubis.rb -------------------------------------------------------------------------------- /lib/brakeman/parsers/rails2_xss_plugin_erubis.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/parsers/rails2_xss_plugin_erubis.rb -------------------------------------------------------------------------------- /lib/brakeman/parsers/rails3_erubis.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/parsers/rails3_erubis.rb -------------------------------------------------------------------------------- /lib/brakeman/processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/alias_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/alias_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/base_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/base_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/config_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/config_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/controller_alias_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/controller_alias_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/controller_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/controller_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/erb_template_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/erb_template_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/erubis_template_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/erubis_template_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/gem_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/gem_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/haml_template_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/haml_template_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/find_all_calls.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/find_all_calls.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/find_call.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/find_call.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/find_return_value.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/find_return_value.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/processor_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/processor_helper.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/rails2_config_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/rails2_config_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/rails2_route_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/rails2_route_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/rails3_config_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/rails3_config_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/rails3_route_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/rails3_route_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/render_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/render_helper.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/lib/route_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/lib/route_helper.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/library_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/library_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/model_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/model_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/output_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/output_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/route_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/route_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/slim_template_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/slim_template_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/template_alias_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/template_alias_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/processors/template_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/processors/template_processor.rb -------------------------------------------------------------------------------- /lib/brakeman/report.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report.rb -------------------------------------------------------------------------------- /lib/brakeman/report/ignore/config.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/ignore/config.rb -------------------------------------------------------------------------------- /lib/brakeman/report/ignore/interactive.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/ignore/interactive.rb -------------------------------------------------------------------------------- /lib/brakeman/report/initializers/faster_csv.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/initializers/faster_csv.rb -------------------------------------------------------------------------------- /lib/brakeman/report/initializers/multi_json.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/initializers/multi_json.rb -------------------------------------------------------------------------------- /lib/brakeman/report/renderer.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/renderer.rb -------------------------------------------------------------------------------- /lib/brakeman/report/report_base.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/report_base.rb -------------------------------------------------------------------------------- /lib/brakeman/report/report_csv.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/report_csv.rb -------------------------------------------------------------------------------- /lib/brakeman/report/report_hash.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/report_hash.rb -------------------------------------------------------------------------------- /lib/brakeman/report/report_html.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/report_html.rb -------------------------------------------------------------------------------- /lib/brakeman/report/report_json.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/report_json.rb -------------------------------------------------------------------------------- /lib/brakeman/report/report_table.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/report_table.rb -------------------------------------------------------------------------------- /lib/brakeman/report/report_tabs.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/report_tabs.rb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/controller_overview.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/controller_overview.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/controller_warnings.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/controller_warnings.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/error_overview.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/error_overview.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/header.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/header.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/ignored_warnings.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/ignored_warnings.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/model_warnings.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/model_warnings.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/overview.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/overview.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/security_warnings.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/security_warnings.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/template_overview.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/template_overview.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/view_warnings.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/view_warnings.html.erb -------------------------------------------------------------------------------- /lib/brakeman/report/templates/warning_overview.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/report/templates/warning_overview.html.erb -------------------------------------------------------------------------------- /lib/brakeman/rescanner.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/rescanner.rb -------------------------------------------------------------------------------- /lib/brakeman/scanner.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/scanner.rb -------------------------------------------------------------------------------- /lib/brakeman/tracker.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/tracker.rb -------------------------------------------------------------------------------- /lib/brakeman/util.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/util.rb -------------------------------------------------------------------------------- /lib/brakeman/version.rb: -------------------------------------------------------------------------------- 1 | module Brakeman 2 | Version = "2.4.1" 3 | end 4 | -------------------------------------------------------------------------------- /lib/brakeman/warning.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/warning.rb -------------------------------------------------------------------------------- /lib/brakeman/warning_codes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/brakeman/warning_codes.rb -------------------------------------------------------------------------------- /lib/ruby_parser/bm_sexp.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/ruby_parser/bm_sexp.rb -------------------------------------------------------------------------------- /lib/ruby_parser/bm_sexp_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/lib/ruby_parser/bm_sexp_processor.rb -------------------------------------------------------------------------------- /test/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/README.md -------------------------------------------------------------------------------- /test/apps/rails2/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/README -------------------------------------------------------------------------------- /test/apps/rails2/Rakefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/Rakefile -------------------------------------------------------------------------------- /test/apps/rails2/app/controllers/application_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/controllers/application_controller.rb -------------------------------------------------------------------------------- /test/apps/rails2/app/controllers/home_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/controllers/home_controller.rb -------------------------------------------------------------------------------- /test/apps/rails2/app/controllers/other_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/controllers/other_controller.rb -------------------------------------------------------------------------------- /test/apps/rails2/app/helpers/application_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/helpers/application_helper.rb -------------------------------------------------------------------------------- /test/apps/rails2/app/helpers/home_helper.rb: -------------------------------------------------------------------------------- 1 | module HomeHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails2/app/helpers/other_helper.rb: -------------------------------------------------------------------------------- 1 | module OtherHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails2/app/models/account.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/models/account.rb -------------------------------------------------------------------------------- /test/apps/rails2/app/models/protected.rb: -------------------------------------------------------------------------------- 1 | class Protected < ActiveRecord::Base 2 | attr_accessible nil 3 | end 4 | 5 | -------------------------------------------------------------------------------- /test/apps/rails2/app/models/unprotected.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/models/unprotected.rb -------------------------------------------------------------------------------- /test/apps/rails2/app/models/user.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/models/user.rb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/_models.html.erb: -------------------------------------------------------------------------------- 1 | <%= model.id %> 2 | -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_command.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_command.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_content_tag.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_content_tag.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_cookie.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_cookie.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_dynamic_render.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_dynamic_render.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_eval.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_eval.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_filter.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_filter.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_link_to.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_link_to.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_mass_assignment.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_mass_assignment.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_model.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_model.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_params.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_params.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_redirect.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_redirect.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_render.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_render.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_render_template.html.haml: -------------------------------------------------------------------------------- 1 | = @something_bad 2 | -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_sanitized_param.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_sanitized_param.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_send_target.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_send_target.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_sql.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_sql.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_strip_tags.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_strip_tags.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_to_json.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_to_json.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/home/test_xss_with_or.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/home/test_xss_with_or.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/layouts/thing.html.erb: -------------------------------------------------------------------------------- 1 | <%= @thing %> 2 | -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/_account.html.haml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/_account.html.haml -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/_user.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/_user.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/ignore_me.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/ignore_me.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/not_used.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/not_used.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/test_collection.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/test_collection.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/test_env.html.erb: -------------------------------------------------------------------------------- 1 | <%= request.env["HTTP_USER_AGENT"] %> 2 | -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/test_haml_stuff.html.haml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/test_haml_stuff.html.haml -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/test_iteration.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/test_iteration.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/test_locals.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/test_locals.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/test_object.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/test_object.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/test_to_i.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/app/views/other/test_to_i.html.erb -------------------------------------------------------------------------------- /test/apps/rails2/app/views/other/xss_dupes.html.erb: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails2/config/boot.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/boot.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/brakeman.ignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/brakeman.ignore -------------------------------------------------------------------------------- /test/apps/rails2/config/database.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/database.yml -------------------------------------------------------------------------------- /test/apps/rails2/config/environment.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/environment.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/environments/development.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/environments/development.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/environments/production.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/environments/production.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/environments/test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/environments/test.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/initializers/backtrace_silencers.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/initializers/backtrace_silencers.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/initializers/cookie_verification_secret.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/initializers/cookie_verification_secret.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/initializers/inflections.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/initializers/inflections.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/initializers/mime_types.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/initializers/mime_types.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/initializers/new_rails_defaults.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/initializers/new_rails_defaults.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/initializers/security_defaults.rb: -------------------------------------------------------------------------------- 1 | #ActiveRecord::Base.send(:attr_accessible, nil) 2 | -------------------------------------------------------------------------------- /test/apps/rails2/config/initializers/session_store.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/initializers/session_store.rb -------------------------------------------------------------------------------- /test/apps/rails2/config/locales/en.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/locales/en.yml -------------------------------------------------------------------------------- /test/apps/rails2/config/routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/config/routes.rb -------------------------------------------------------------------------------- /test/apps/rails2/db/migrate/20110520193611_create_users.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/db/migrate/20110520193611_create_users.rb -------------------------------------------------------------------------------- /test/apps/rails2/db/migrate/20110523184125_create_accounts.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/db/migrate/20110523184125_create_accounts.rb -------------------------------------------------------------------------------- /test/apps/rails2/db/seeds.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/db/seeds.rb -------------------------------------------------------------------------------- /test/apps/rails2/doc/README_FOR_APP: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/doc/README_FOR_APP -------------------------------------------------------------------------------- /test/apps/rails2/lib/generators/test_generator/templates/model.rb: -------------------------------------------------------------------------------- 1 | class <%= file_name.camelize %> < ActiveRecord::Base 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails2/log/development.log: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails2/log/production.log: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails2/log/server.log: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails2/log/test.log: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails2/public/404.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/404.html -------------------------------------------------------------------------------- /test/apps/rails2/public/422.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/422.html -------------------------------------------------------------------------------- /test/apps/rails2/public/500.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/500.html -------------------------------------------------------------------------------- /test/apps/rails2/public/favicon.ico: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails2/public/images/rails.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/images/rails.png -------------------------------------------------------------------------------- /test/apps/rails2/public/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/index.html -------------------------------------------------------------------------------- /test/apps/rails2/public/javascripts/application.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/javascripts/application.js -------------------------------------------------------------------------------- /test/apps/rails2/public/javascripts/controls.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/javascripts/controls.js -------------------------------------------------------------------------------- /test/apps/rails2/public/javascripts/dragdrop.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/javascripts/dragdrop.js -------------------------------------------------------------------------------- /test/apps/rails2/public/javascripts/effects.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/javascripts/effects.js -------------------------------------------------------------------------------- /test/apps/rails2/public/javascripts/prototype.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/javascripts/prototype.js -------------------------------------------------------------------------------- /test/apps/rails2/public/robots.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/public/robots.txt -------------------------------------------------------------------------------- /test/apps/rails2/script/about: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/about -------------------------------------------------------------------------------- /test/apps/rails2/script/console: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/console -------------------------------------------------------------------------------- /test/apps/rails2/script/dbconsole: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/dbconsole -------------------------------------------------------------------------------- /test/apps/rails2/script/destroy: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/destroy -------------------------------------------------------------------------------- /test/apps/rails2/script/generate: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/generate -------------------------------------------------------------------------------- /test/apps/rails2/script/performance/benchmarker: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/performance/benchmarker -------------------------------------------------------------------------------- /test/apps/rails2/script/performance/profiler: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/performance/profiler -------------------------------------------------------------------------------- /test/apps/rails2/script/plugin: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/plugin -------------------------------------------------------------------------------- /test/apps/rails2/script/runner: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/runner -------------------------------------------------------------------------------- /test/apps/rails2/script/server: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/script/server -------------------------------------------------------------------------------- /test/apps/rails2/test/fixtures/accounts.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/fixtures/accounts.yml -------------------------------------------------------------------------------- /test/apps/rails2/test/fixtures/users.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/fixtures/users.yml -------------------------------------------------------------------------------- /test/apps/rails2/test/functional/home_controller_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/functional/home_controller_test.rb -------------------------------------------------------------------------------- /test/apps/rails2/test/functional/other_controller_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/functional/other_controller_test.rb -------------------------------------------------------------------------------- /test/apps/rails2/test/performance/browsing_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/performance/browsing_test.rb -------------------------------------------------------------------------------- /test/apps/rails2/test/test_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/test_helper.rb -------------------------------------------------------------------------------- /test/apps/rails2/test/unit/account_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/unit/account_test.rb -------------------------------------------------------------------------------- /test/apps/rails2/test/unit/helpers/home_helper_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/unit/helpers/home_helper_test.rb -------------------------------------------------------------------------------- /test/apps/rails2/test/unit/helpers/other_helper_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/unit/helpers/other_helper_test.rb -------------------------------------------------------------------------------- /test/apps/rails2/test/unit/user_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails2/test/unit/user_test.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/.gitignore -------------------------------------------------------------------------------- /test/apps/rails3.1/Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/Gemfile -------------------------------------------------------------------------------- /test/apps/rails3.1/Gemfile.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/Gemfile.lock -------------------------------------------------------------------------------- /test/apps/rails3.1/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/README -------------------------------------------------------------------------------- /test/apps/rails3.1/Rakefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/Rakefile -------------------------------------------------------------------------------- /test/apps/rails3.1/app/assets/images/rails.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/assets/images/rails.png -------------------------------------------------------------------------------- /test/apps/rails3.1/app/assets/javascripts/application.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/assets/javascripts/application.js -------------------------------------------------------------------------------- /test/apps/rails3.1/app/assets/javascripts/users.js.coffee: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/assets/javascripts/users.js.coffee -------------------------------------------------------------------------------- /test/apps/rails3.1/app/assets/stylesheets/application.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/assets/stylesheets/application.css -------------------------------------------------------------------------------- /test/apps/rails3.1/app/assets/stylesheets/scaffolds.css.scss: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/assets/stylesheets/scaffolds.css.scss -------------------------------------------------------------------------------- /test/apps/rails3.1/app/assets/stylesheets/users.css.scss: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/assets/stylesheets/users.css.scss -------------------------------------------------------------------------------- /test/apps/rails3.1/app/controllers/admin_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/controllers/admin_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/controllers/application_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/controllers/application_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/controllers/mixins/user_mixin.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/controllers/mixins/user_mixin.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/controllers/other_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/controllers/other_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/controllers/users_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/controllers/users_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/helpers/application_helper.rb: -------------------------------------------------------------------------------- 1 | module ApplicationHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/helpers/users_helper.rb: -------------------------------------------------------------------------------- 1 | module UsersHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/mailers/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/models/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/models/account.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/models/account.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/models/product.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/models/product.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/models/some_model.rb: -------------------------------------------------------------------------------- 1 | class SomeModel < @some_variable 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/models/user.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/models/user.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/layouts/application.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/layouts/application.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/_partial.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/other/_partial.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/a.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @a %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/b.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @b %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/c.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @c %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/d.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @d %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/e.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @e %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/f.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @f %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/g.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @g %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/test_model_in_haml.html.haml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/other/test_model_in_haml.html.haml -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/test_partial.html.erb: -------------------------------------------------------------------------------- 1 | <%= render 'partial' %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/test_select_tag.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/other/test_select_tag.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/test_string_interp.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @greeting %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/other/test_strip_tags.html.erb: -------------------------------------------------------------------------------- 1 | <%= strip_tags params[:body] %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/_bio.html.erb: -------------------------------------------------------------------------------- 1 | <%= user_bio %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/_circular.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/_circular.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/_circular_too.html.erb: -------------------------------------------------------------------------------- 1 | <%= render :partial => "circular" %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/_form.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/_form.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/_test_layout.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @something %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/_user.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/_user.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/circular_render.html.erb: -------------------------------------------------------------------------------- 1 | <%= render :partial => "circular" %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/edit.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/edit.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/interpolated_value.html.haml: -------------------------------------------------------------------------------- 1 | .escaped_thing 2 | Hi #{params[:awesomeness]} 3 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/json_test.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/json_test.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/mixin_default.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @dangerous_input %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/mixin_template.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @dangerous_input %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/new.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/new.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/show.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/show.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/test_assign_if.html.erb: -------------------------------------------------------------------------------- 1 | <%= @value %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/test_assign_twice.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @some_value %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/test_less_simple_helpers.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/app/views/users/test_less_simple_helpers.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.1/app/views/users/test_simple_helper.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @user %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/config.ru: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config.ru -------------------------------------------------------------------------------- /test/apps/rails3.1/config/application.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/application.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/boot.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/boot.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/database.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/database.yml -------------------------------------------------------------------------------- /test/apps/rails3.1/config/environment.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/environment.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/environments/development.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/environments/development.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/environments/production.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/environments/production.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/environments/test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/environments/test.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/backtrace_silencers.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/backtrace_silencers.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/inflections.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/inflections.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/mime_types.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/mime_types.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/secret_token.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/secret_token.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/session_store.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/session_store.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/set_escape_json.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/set_escape_json.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/unset_escape_json.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/unset_escape_json.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/wrap_parameters.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/wrap_parameters.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/xml_parsing.rb: -------------------------------------------------------------------------------- 1 | ActiveSupport::XmlMini.backend = "REXML" 2 | -------------------------------------------------------------------------------- /test/apps/rails3.1/config/initializers/yaml_parsing.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/initializers/yaml_parsing.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/config/locales/en.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/locales/en.yml -------------------------------------------------------------------------------- /test/apps/rails3.1/config/routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/config/routes.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/db/migrate/20110908172338_create_users.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/db/migrate/20110908172338_create_users.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/db/seeds.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/db/seeds.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/doc/README_FOR_APP: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/doc/README_FOR_APP -------------------------------------------------------------------------------- /test/apps/rails3.1/lib/alib.rb: -------------------------------------------------------------------------------- 1 | class Alib < $SOME_CONSTANT 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3.1/lib/assets/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/lib/somelib.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/lib/somelib.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/lib/tasks/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/log/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/public/404.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/public/404.html -------------------------------------------------------------------------------- /test/apps/rails3.1/public/422.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/public/422.html -------------------------------------------------------------------------------- /test/apps/rails3.1/public/500.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/public/500.html -------------------------------------------------------------------------------- /test/apps/rails3.1/public/favicon.ico: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/public/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/public/index.html -------------------------------------------------------------------------------- /test/apps/rails3.1/public/robots.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/public/robots.txt -------------------------------------------------------------------------------- /test/apps/rails3.1/script/rails: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/script/rails -------------------------------------------------------------------------------- /test/apps/rails3.1/test/fixtures/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/test/fixtures/users.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/test/fixtures/users.yml -------------------------------------------------------------------------------- /test/apps/rails3.1/test/functional/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/test/functional/users_controller_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/test/functional/users_controller_test.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/test/integration/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/test/performance/browsing_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/test/performance/browsing_test.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/test/test_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/test/test_helper.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/test/unit/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/test/unit/helpers/users_helper_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/test/unit/helpers/users_helper_test.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/test/unit/user_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.1/test/unit/user_test.rb -------------------------------------------------------------------------------- /test/apps/rails3.1/vendor/assets/stylesheets/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.1/vendor/plugins/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.2/Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/Gemfile -------------------------------------------------------------------------------- /test/apps/rails3.2/Gemfile.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/Gemfile.lock -------------------------------------------------------------------------------- /test/apps/rails3.2/README.rdoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/README.rdoc -------------------------------------------------------------------------------- /test/apps/rails3.2/Rakefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/Rakefile -------------------------------------------------------------------------------- /test/apps/rails3.2/app/assets/images/rails.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/assets/images/rails.png -------------------------------------------------------------------------------- /test/apps/rails3.2/app/assets/javascripts/application.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/assets/javascripts/application.js -------------------------------------------------------------------------------- /test/apps/rails3.2/app/assets/javascripts/users.js.coffee: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/assets/javascripts/users.js.coffee -------------------------------------------------------------------------------- /test/apps/rails3.2/app/assets/stylesheets/application.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/assets/stylesheets/application.css -------------------------------------------------------------------------------- /test/apps/rails3.2/app/assets/stylesheets/scaffolds.css.scss: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/assets/stylesheets/scaffolds.css.scss -------------------------------------------------------------------------------- /test/apps/rails3.2/app/assets/stylesheets/users.css.scss: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/assets/stylesheets/users.css.scss -------------------------------------------------------------------------------- /test/apps/rails3.2/app/controllers/application_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/controllers/application_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/controllers/removal_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/controllers/removal_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/controllers/users_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/controllers/users_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/helpers/application_helper.rb: -------------------------------------------------------------------------------- 1 | module ApplicationHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3.2/app/helpers/users_helper.rb: -------------------------------------------------------------------------------- 1 | module UsersHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3.2/app/models/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.2/app/models/account.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/models/account.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/models/no_protection.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/models/no_protection.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/models/user.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/models/user.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/layouts/application.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/layouts/application.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/removal/_partial.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @some_other_input %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/removal/controller_removed.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/removal/controller_removed.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/removal/implicit_render.html.erb: -------------------------------------------------------------------------------- 1 | 2 | <%= @bad_stuff %> 3 | -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/_form.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/users/_form.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/_slimmer.html.slim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/users/_slimmer.html.slim -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/edit.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/users/edit.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/users/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/mixed_in.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @user.something %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/new.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/users/new.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/sanitized.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/users/sanitized.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/show.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/users/show.html.erb -------------------------------------------------------------------------------- /test/apps/rails3.2/app/views/users/slimming.html.slim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/app/views/users/slimming.html.slim -------------------------------------------------------------------------------- /test/apps/rails3.2/config.ru: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config.ru -------------------------------------------------------------------------------- /test/apps/rails3.2/config/application.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/application.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/boot.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/boot.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/database.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/database.yml -------------------------------------------------------------------------------- /test/apps/rails3.2/config/environment.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/environment.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/environments/development.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/environments/development.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/environments/production.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/environments/production.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/environments/test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/environments/test.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/initializers/backtrace_silencers.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/initializers/backtrace_silencers.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/initializers/header_dos_protection.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/initializers/header_dos_protection.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/initializers/inflections.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/initializers/inflections.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/initializers/mime_types.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/initializers/mime_types.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/initializers/secret_token.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/initializers/secret_token.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/initializers/session_store.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/initializers/session_store.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/initializers/wrap_parameters.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/initializers/wrap_parameters.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/config/locales/en.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/locales/en.yml -------------------------------------------------------------------------------- /test/apps/rails3.2/config/routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/config/routes.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/lib/assets/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.2/lib/tasks/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3.2/lib/user_controller_mixin.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/lib/user_controller_mixin.rb -------------------------------------------------------------------------------- /test/apps/rails3.2/script/rails: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3.2/script/rails -------------------------------------------------------------------------------- /test/apps/rails3/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/.gitignore -------------------------------------------------------------------------------- /test/apps/rails3/Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/Gemfile -------------------------------------------------------------------------------- /test/apps/rails3/Gemfile.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/Gemfile.lock -------------------------------------------------------------------------------- /test/apps/rails3/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/README -------------------------------------------------------------------------------- /test/apps/rails3/Rakefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/Rakefile -------------------------------------------------------------------------------- /test/apps/rails3/app/controllers/application_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/controllers/application_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/controllers/base_thing.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/controllers/base_thing.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/controllers/before_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/controllers/before_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/controllers/child_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/controllers/child_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/controllers/home_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/controllers/home_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/controllers/nested_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/controllers/nested_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/controllers/other_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/controllers/other_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/controllers/products_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/controllers/products_controller.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/helpers/application_helper.rb: -------------------------------------------------------------------------------- 1 | module ApplicationHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3/app/helpers/home_helper.rb: -------------------------------------------------------------------------------- 1 | module HomeHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3/app/helpers/other_helper.rb: -------------------------------------------------------------------------------- 1 | module OtherHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3/app/helpers/products_helper.rb: -------------------------------------------------------------------------------- 1 | module ProductsHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3/app/models/account.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/models/account.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/models/bill.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/models/bill.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/models/noticia.rb: -------------------------------------------------------------------------------- 1 | class Noticia 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails3/app/models/notifier.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/models/notifier.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/models/product.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/models/product.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/models/purchase.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/models/purchase.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/models/underline_model.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/models/underline_model.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/models/user.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/models/user.rb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/before/use_filter12345.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/before/use_filter12345.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/before/use_filters12.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/before/use_filters12.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/child/action_in_child.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @from_parent %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_command.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_command.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_content_tag.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_content_tag.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_cookie.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_cookie.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_dynamic_render.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_dynamic_render.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_eval.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_eval.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_file_access.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_file_access.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_filter.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_filter.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_mass_assignment.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_mass_assignment.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_model.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_model.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_params.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_params.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_redirect.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_redirect.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_render.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_render.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/home/test_sql.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/home/test_sql.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/layouts/application.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/layouts/application.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/_account.html.haml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/_account.html.haml -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/_user.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/_user.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/test_collection.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/test_collection.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/test_iteration.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/test_iteration.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/test_locals.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/test_locals.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/test_mail_to.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/test_mail_to.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/test_object.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/test_object.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/test_select_tag.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/test_select_tag.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/test_send_file.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/other/test_send_file.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/other/test_strip_tags.html.erb: -------------------------------------------------------------------------------- 1 | <%= strip_tags params[:body] %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3/app/views/products/_form.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/products/_form.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/products/edit.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/products/edit.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/products/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/products/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/products/new.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/products/new.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/products/show.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/app/views/products/show.html.erb -------------------------------------------------------------------------------- /test/apps/rails3/app/views/whatever/wherever/nested/so_nested.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @bad_thing %> 2 | -------------------------------------------------------------------------------- /test/apps/rails3/config.ru: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config.ru -------------------------------------------------------------------------------- /test/apps/rails3/config/application.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/application.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/boot.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/boot.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/brakeman.yml: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3/config/database.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/database.yml -------------------------------------------------------------------------------- /test/apps/rails3/config/environment.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/environment.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/environments/development.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/environments/development.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/environments/production.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/environments/production.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/environments/test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/environments/test.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/initializers/backtrace_silencers.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/initializers/backtrace_silencers.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/initializers/disable_xml_parsing.rb: -------------------------------------------------------------------------------- 1 | ActionDispatch::ParamsParser::DEFAULT_PARSERS.delete(Mime::XML) 2 | -------------------------------------------------------------------------------- /test/apps/rails3/config/initializers/inflections.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/initializers/inflections.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/initializers/mime_types.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/initializers/mime_types.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/initializers/secret_token.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/initializers/secret_token.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/initializers/session_store.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/initializers/session_store.rb -------------------------------------------------------------------------------- /test/apps/rails3/config/locales/en.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/locales/en.yml -------------------------------------------------------------------------------- /test/apps/rails3/config/routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/config/routes.rb -------------------------------------------------------------------------------- /test/apps/rails3/db/seeds.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/db/seeds.rb -------------------------------------------------------------------------------- /test/apps/rails3/doc/README_FOR_APP: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/doc/README_FOR_APP -------------------------------------------------------------------------------- /test/apps/rails3/lib/controller_filter.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/lib/controller_filter.rb -------------------------------------------------------------------------------- /test/apps/rails3/lib/tasks/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3/public/404.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/404.html -------------------------------------------------------------------------------- /test/apps/rails3/public/422.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/422.html -------------------------------------------------------------------------------- /test/apps/rails3/public/500.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/500.html -------------------------------------------------------------------------------- /test/apps/rails3/public/favicon.ico: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3/public/images/rails.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/images/rails.png -------------------------------------------------------------------------------- /test/apps/rails3/public/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/index.html -------------------------------------------------------------------------------- /test/apps/rails3/public/javascripts/application.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/javascripts/application.js -------------------------------------------------------------------------------- /test/apps/rails3/public/javascripts/controls.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/javascripts/controls.js -------------------------------------------------------------------------------- /test/apps/rails3/public/javascripts/dragdrop.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/javascripts/dragdrop.js -------------------------------------------------------------------------------- /test/apps/rails3/public/javascripts/effects.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/javascripts/effects.js -------------------------------------------------------------------------------- /test/apps/rails3/public/javascripts/prototype.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/javascripts/prototype.js -------------------------------------------------------------------------------- /test/apps/rails3/public/javascripts/rails.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/javascripts/rails.js -------------------------------------------------------------------------------- /test/apps/rails3/public/robots.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/public/robots.txt -------------------------------------------------------------------------------- /test/apps/rails3/public/stylesheets/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails3/script/rails: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/script/rails -------------------------------------------------------------------------------- /test/apps/rails3/test/functional/home_controller_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/test/functional/home_controller_test.rb -------------------------------------------------------------------------------- /test/apps/rails3/test/functional/other_controller_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/test/functional/other_controller_test.rb -------------------------------------------------------------------------------- /test/apps/rails3/test/performance/browsing_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/test/performance/browsing_test.rb -------------------------------------------------------------------------------- /test/apps/rails3/test/test_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/test/test_helper.rb -------------------------------------------------------------------------------- /test/apps/rails3/test/unit/helpers/home_helper_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/test/unit/helpers/home_helper_test.rb -------------------------------------------------------------------------------- /test/apps/rails3/test/unit/helpers/other_helper_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails3/test/unit/helpers/other_helper_test.rb -------------------------------------------------------------------------------- /test/apps/rails3/vendor/plugins/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/.gitignore -------------------------------------------------------------------------------- /test/apps/rails4/Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/Gemfile -------------------------------------------------------------------------------- /test/apps/rails4/README.rdoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/README.rdoc -------------------------------------------------------------------------------- /test/apps/rails4/Rakefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/Rakefile -------------------------------------------------------------------------------- /test/apps/rails4/app/assets/images/rails.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/app/assets/images/rails.png -------------------------------------------------------------------------------- /test/apps/rails4/app/assets/javascripts/application.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/app/assets/javascripts/application.js -------------------------------------------------------------------------------- /test/apps/rails4/app/assets/stylesheets/application.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/app/assets/stylesheets/application.css -------------------------------------------------------------------------------- /test/apps/rails4/app/controllers/application_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/app/controllers/application_controller.rb -------------------------------------------------------------------------------- /test/apps/rails4/app/controllers/concerns/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/app/controllers/friendly_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/app/controllers/friendly_controller.rb -------------------------------------------------------------------------------- /test/apps/rails4/app/helpers/application_helper.rb: -------------------------------------------------------------------------------- 1 | module ApplicationHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails4/app/mailers/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/app/models/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/app/models/account.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/app/models/account.rb -------------------------------------------------------------------------------- /test/apps/rails4/app/models/concerns/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/app/models/user.rb: -------------------------------------------------------------------------------- 1 | class User < ActiveRecord::Base 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails4/app/views/layouts/application.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/app/views/layouts/application.html.erb -------------------------------------------------------------------------------- /test/apps/rails4/app/views/users/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/app/views/users/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails4/bin/bundle: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/bin/bundle -------------------------------------------------------------------------------- /test/apps/rails4/bin/rails: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/bin/rails -------------------------------------------------------------------------------- /test/apps/rails4/bin/rake: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/bin/rake -------------------------------------------------------------------------------- /test/apps/rails4/config.ru: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config.ru -------------------------------------------------------------------------------- /test/apps/rails4/config/application.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/application.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/boot.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/boot.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/brakeman.ignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/brakeman.ignore -------------------------------------------------------------------------------- /test/apps/rails4/config/database.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/database.yml -------------------------------------------------------------------------------- /test/apps/rails4/config/environment.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/environment.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/environments/development.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/environments/development.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/environments/production.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/environments/production.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/environments/test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/environments/test.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/initializers/backtrace_silencers.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/initializers/backtrace_silencers.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/initializers/filter_parameter_logging.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/initializers/filter_parameter_logging.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/initializers/i18n.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/initializers/i18n.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/initializers/inflections.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/initializers/inflections.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/initializers/mime_types.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/initializers/mime_types.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/initializers/secret_token.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/initializers/secret_token.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/initializers/session_store.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/initializers/session_store.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/initializers/wrap_parameters.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/initializers/wrap_parameters.rb -------------------------------------------------------------------------------- /test/apps/rails4/config/locales/en.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/locales/en.yml -------------------------------------------------------------------------------- /test/apps/rails4/config/routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/config/routes.rb -------------------------------------------------------------------------------- /test/apps/rails4/db/seeds.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/db/seeds.rb -------------------------------------------------------------------------------- /test/apps/rails4/lib/assets/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/lib/tasks/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/log/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/public/404.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/public/404.html -------------------------------------------------------------------------------- /test/apps/rails4/public/422.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/public/422.html -------------------------------------------------------------------------------- /test/apps/rails4/public/500.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/public/500.html -------------------------------------------------------------------------------- /test/apps/rails4/public/favicon.ico: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/public/robots.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/public/robots.txt -------------------------------------------------------------------------------- /test/apps/rails4/test/controllers/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/test/fixtures/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/test/helpers/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/test/integration/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/test/mailers/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/test/models/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/test/test_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4/test/test_helper.rb -------------------------------------------------------------------------------- /test/apps/rails4/vendor/assets/javascripts/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4/vendor/assets/stylesheets/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/Gemfile -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/README.rdoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/README.rdoc -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/Rakefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/Rakefile -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/assets/images/rails.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/app/assets/images/rails.png -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/assets/javascripts/application.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/app/assets/javascripts/application.js -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/assets/stylesheets/application.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/app/assets/stylesheets/application.css -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/controllers/application_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/app/controllers/application_controller.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/controllers/concerns/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/helpers/application_helper.rb: -------------------------------------------------------------------------------- 1 | module ApplicationHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/mailers/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/models/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/models/concerns/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/app/views/layouts/application.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/app/views/layouts/application.html.erb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/bin/bundle: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/bin/bundle -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/bin/rails: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/bin/rails -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/bin/rake: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/bin/rake -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config.ru: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config.ru -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/application.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/application.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/boot.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/boot.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/database.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/database.yml -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/environment.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/environment.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/environments/development.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/environments/development.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/environments/production.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/environments/production.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/environments/test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/environments/test.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/initializers/backtrace_silencers.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/initializers/backtrace_silencers.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/initializers/filter_parameter_logging.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/initializers/filter_parameter_logging.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/initializers/inflections.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/initializers/inflections.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/initializers/mime_types.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/initializers/mime_types.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/initializers/secret_token.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/initializers/secret_token.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/initializers/session_store.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/initializers/session_store.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/initializers/wrap_parameters.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/initializers/wrap_parameters.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/locales/en.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/locales/en.yml -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/config/routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/config/routes.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/db/seeds.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/db/seeds.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/assets/javascripts/users.js.coffee: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/assets/javascripts/users.js.coffee -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/assets/stylesheets/users.css.scss: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/assets/stylesheets/users.css.scss -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/controllers/removal_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/controllers/removal_controller.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/controllers/users_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/controllers/users_controller.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/helpers/application_helper.rb: -------------------------------------------------------------------------------- 1 | module ApplicationHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/helpers/users_helper.rb: -------------------------------------------------------------------------------- 1 | module UsersHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/models/.gitkeep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/models/account.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/models/account.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/models/no_protection.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/models/no_protection.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/models/user.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/models/user.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/removal/_partial.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @some_other_input %> 2 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/removal/controller_removed.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/removal/controller_removed.html.erb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/removal/implicit_render.html.erb: -------------------------------------------------------------------------------- 1 | 2 | <%= @bad_stuff %> 3 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/_form.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/users/_form.html.erb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/_slimmer.html.slim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/users/_slimmer.html.slim -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/edit.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/users/edit.html.erb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/users/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/mixed_in.html.erb: -------------------------------------------------------------------------------- 1 | <%= raw @user.something %> 2 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/new.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/users/new.html.erb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/sanitized.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/users/sanitized.html.erb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/show.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/users/show.html.erb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/app/views/users/slimming.html.slim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/app/views/users/slimming.html.slim -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/config/routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/config/routes.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/engines/user_removal/lib/user_removal.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/engines/user_removal/lib/user_removal.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/lib/assets/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/lib/tasks/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/log/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/public/404.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/public/404.html -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/public/422.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/public/422.html -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/public/500.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/public/500.html -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/public/favicon.ico: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/public/robots.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/public/robots.txt -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/script/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/test/controllers/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/test/fixtures/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/test/helpers/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/test/integration/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/test/mailers/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/test/models/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/test/test_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails4_with_engines/test/test_helper.rb -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/vendor/assets/javascripts/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails4_with_engines/vendor/assets/stylesheets/.keep: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/Gemfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/Gemfile -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/README -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/Rakefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/Rakefile -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/controllers/application_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/controllers/application_controller.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/controllers/posts_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/controllers/posts_controller.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/controllers/users_controller.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/controllers/users_controller.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/helpers/application_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/helpers/application_helper.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/helpers/posts_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/helpers/posts_helper.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/helpers/users_helper.rb: -------------------------------------------------------------------------------- 1 | module UsersHelper 2 | end 3 | -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/models/post.rb: -------------------------------------------------------------------------------- 1 | class Post < ActiveRecord::Base 2 | belongs_to :user 3 | end 4 | -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/models/user.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/models/user.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/layouts/posts.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/layouts/posts.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/layouts/users.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/layouts/users.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/posts/_show.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/posts/_show.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/posts/edit.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/posts/edit.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/posts/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/posts/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/posts/new.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/posts/new.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/posts/show.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/posts/show.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/posts/show_topic.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/posts/show_topic.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/_user.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/_user.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/edit.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/edit.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/index.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/index.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/login.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/login.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/new.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/new.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/results.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/results.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/search.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/search.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/show.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/show.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/test_sanitize.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/test_sanitize.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/app/views/users/to_json.html.erb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/app/views/users/to_json.html.erb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/boot.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/boot.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/database.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/database.yml -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/environment.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/environment.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/environments/development.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/environments/development.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/environments/production.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/environments/production.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/environments/test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/environments/test.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/backtrace_silencers.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/backtrace_silencers.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/cookie_verification_secret.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/cookie_verification_secret.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/inflections.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/inflections.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/json_parsing.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/json_parsing.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/mime_types.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/mime_types.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/new_rails_defaults.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/new_rails_defaults.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/session_store.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/session_store.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/single_quote_workaround.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/single_quote_workaround.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/initializers/yaml_parsing.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/initializers/yaml_parsing.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/locales/en.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/locales/en.yml -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/config/routes.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/config/routes.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/db/migrate/20120312064721_create_users.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/db/migrate/20120312064721_create_users.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/db/migrate/20120312065023_create_posts.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/db/migrate/20120312065023_create_posts.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/db/schema.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/db/schema.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/db/seeds.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/db/seeds.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/doc/README_FOR_APP: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/doc/README_FOR_APP -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/404.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/404.html -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/422.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/422.html -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/500.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/500.html -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/favicon.ico: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/images/rails.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/images/rails.png -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/javascripts/application.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/javascripts/application.js -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/javascripts/controls.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/javascripts/controls.js -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/javascripts/dragdrop.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/javascripts/dragdrop.js -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/javascripts/effects.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/javascripts/effects.js -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/javascripts/prototype.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/javascripts/prototype.js -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/robots.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/robots.txt -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/public/stylesheets/scaffold.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/public/stylesheets/scaffold.css -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/about: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/about -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/console: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/console -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/dbconsole: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/dbconsole -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/destroy: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/destroy -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/generate: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/generate -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/performance/benchmarker: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/performance/benchmarker -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/performance/profiler: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/performance/profiler -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/plugin: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/plugin -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/runner: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/runner -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/script/server: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/script/server -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/fixtures/posts.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/fixtures/posts.yml -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/fixtures/users.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/fixtures/users.yml -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/functional/posts_controller_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/functional/posts_controller_test.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/functional/users_controller_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/functional/users_controller_test.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/performance/browsing_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/performance/browsing_test.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/test_helper.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/test_helper.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/unit/helpers/posts_helper_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/unit/helpers/posts_helper_test.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/unit/helpers/users_helper_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/unit/helpers/users_helper_test.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/unit/post_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/unit/post_test.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/test/unit/user_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/apps/rails_with_xss_plugin/test/unit/user_test.rb -------------------------------------------------------------------------------- /test/apps/rails_with_xss_plugin/vendor/plugins/rails_xss/README: -------------------------------------------------------------------------------- 1 | Don't need to include whole plugin, just the directory 2 | -------------------------------------------------------------------------------- /test/test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/test.rb -------------------------------------------------------------------------------- /test/tests/alias_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/alias_processor.rb -------------------------------------------------------------------------------- /test/tests/brakeman.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/brakeman.rb -------------------------------------------------------------------------------- /test/tests/call_index.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/call_index.rb -------------------------------------------------------------------------------- /test/tests/differ.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/differ.rb -------------------------------------------------------------------------------- /test/tests/find_return_value.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/find_return_value.rb -------------------------------------------------------------------------------- /test/tests/json_compare.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/json_compare.rb -------------------------------------------------------------------------------- /test/tests/json_output.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/json_output.rb -------------------------------------------------------------------------------- /test/tests/mass_assign_disable.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/mass_assign_disable.rb -------------------------------------------------------------------------------- /test/tests/only_files_option.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/only_files_option.rb -------------------------------------------------------------------------------- /test/tests/output_processor.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/output_processor.rb -------------------------------------------------------------------------------- /test/tests/rails2.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rails2.rb -------------------------------------------------------------------------------- /test/tests/rails3.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rails3.rb -------------------------------------------------------------------------------- /test/tests/rails31.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rails31.rb -------------------------------------------------------------------------------- /test/tests/rails32.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rails32.rb -------------------------------------------------------------------------------- /test/tests/rails4.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rails4.rb -------------------------------------------------------------------------------- /test/tests/rails4_with_engines.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rails4_with_engines.rb -------------------------------------------------------------------------------- /test/tests/rails_with_xss_plugin.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rails_with_xss_plugin.rb -------------------------------------------------------------------------------- /test/tests/rake_task.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rake_task.rb -------------------------------------------------------------------------------- /test/tests/report_generation.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/report_generation.rb -------------------------------------------------------------------------------- /test/tests/rescanner.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/rescanner.rb -------------------------------------------------------------------------------- /test/tests/sexp.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/sexp.rb -------------------------------------------------------------------------------- /test/tests/tabs_output.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/tests/tabs_output.rb -------------------------------------------------------------------------------- /test/to_test.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/airbnb/brakeman/HEAD/test/to_test.rb --------------------------------------------------------------------------------