Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Test against Ruby 3.0 #34

Merged
merged 1 commit into from Mar 7, 2021
Merged

Test against Ruby 3.0 #34

merged 1 commit into from Mar 7, 2021

Conversation

mshibuya
Copy link
Contributor

@mshibuya mshibuya commented Mar 6, 2021

Hello!
I'm a maintainer of the file upload library CarrierWave, we use this project ssrf_filter to mitigate SSRF vulnerability. Thanks for creating and maintaining this library.

Though it runs without issues in Ruby 3.0, I noticed that it is not tested against Ruby 3.0 yet. So I've made some changes to make RSpec runnable.

It would be great if you could review this. Thanks in advance!

@coveralls
Copy link

coveralls commented Mar 6, 2021
edited

Coverage Status

Coverage remained the same at 100.0% when pulling 7840319 on mshibuya:ruby-3.0 into f7cbd43 on arkadiyt:master.

@coveralls
Copy link

Coverage Status

Coverage remained the same at 100.0% when pulling c672ff2 on mshibuya:ruby-3.0 into f7cbd43 on arkadiyt:master.

mshibuya
mshibuya commented Mar 6, 2021
View reviewed changes
spec/lib/ssrf_filter_spec.rb
@@ -419,7 +419,7 @@ def inject_custom_trust_store(*certificates)
it 'should follow redirects and succeed on a public hostname' do
stub_request(:post, "https://#{public_ipv4}/path?key=value").with(headers: {host: 'www.example.com'})
.to_return(status: 301, headers: {location: 'https://www.example2.com/path2?key2=value2'})
stub_request(:post, "https://#{public_ipv6}/path2?key2=value2")
stub_request(:post, "https://[#{public_ipv6}]/path2?key2=value2")
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This change is due to bblimke/webmock#933.

arkadiyt
arkadiyt approved these changes Mar 7, 2021
View reviewed changes
Copy link
Owner

@arkadiyt arkadiyt left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks really great - thank you @mshibuya

@arkadiyt arkadiyt merged commit 0c59a86 into arkadiyt:master Mar 7, 2021
@mshibuya
Copy link
Contributor Author

mshibuya commented Mar 7, 2021

Thank you for merging!

@mshibuya mshibuya deleted the ruby-3.0 branch March 7, 2021 06:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@arkadiyt arkadiyt arkadiyt approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@mshibuya @coveralls @arkadiyt