Class RubyBundleAuditAnalyzer
java.lang.Object
org.owasp.dependencycheck.analyzer.AbstractAnalyzer
org.owasp.dependencycheck.analyzer.AbstractFileTypeAnalyzer
org.owasp.dependencycheck.analyzer.RubyBundleAuditAnalyzer
- All Implemented Interfaces:
FileFilter, Analyzer, FileTypeAnalyzer
Used to analyze Ruby Bundler Gemspec.lock files utilizing the 3rd party
bundle-audit tool.
- Author:
- Dale Visser
-
Field Summary
Fields -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected voidanalyzeDependency(Dependency dependency, Engine engine) Determines if the analyzer can analyze the given file type.Returns the phase that the analyzer is intended to run in.protected StringReturns the key used in the properties file to reference the analyzer's enabled property.protected FileFilterReturns theFileFilterused to determine which files are to be analyzed.getName()Returns the name of the analyzer.voidprepareFileTypeAnalyzer(Engine engine) Initialize the analyzer.Methods inherited from class AbstractFileTypeAnalyzer
accept, getFilesMatched, newHashSet, prepareAnalyzer, setFilesMatchedMethods inherited from class AbstractAnalyzer
analyze, close, closeAnalyzer, getSettings, initialize, isEnabled, prepare, setEnabled, supportsParallelProcessingMethods inherited from class Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface Analyzer
analyze, close, initialize, isEnabled, prepare, supportsParallelProcessing
-
Field Details
-
DEPENDENCY_ECOSYSTEM
A descriptor for the type of dependencies processed or added by this analyzer.- See Also:
-
NAME
-
VERSION
-
ADVISORY
-
CVE
-
CRITICALITY
-
-
Constructor Details
-
RubyBundleAuditAnalyzer
public RubyBundleAuditAnalyzer()
-
-
Method Details
-
getFileFilter
Description copied from class:AbstractFileTypeAnalyzerReturns the
FileFilterused to determine which files are to be analyzed. An example would be an analyzer that inspected Java jar files. Implementors may useFileFilterBuilder.If the analyzer returns null it will not cause additional files to be analyzed, but will be executed against every file loaded.
- Specified by:
getFileFilterin classAbstractFileTypeAnalyzer- Returns:
- a filter that accepts files named Gemfile.lock
-
getName
-
getAnalysisPhase
Returns the phase that the analyzer is intended to run in.- Returns:
- the phase that the analyzer is intended to run in.
-
getAnalyzerEnabledSettingKey
Returns the key used in the properties file to reference the analyzer's enabled property.- Specified by:
getAnalyzerEnabledSettingKeyin classAbstractAnalyzer- Returns:
- the analyzer's enabled property setting key
-
prepareFileTypeAnalyzer
Initialize the analyzer.- Specified by:
prepareFileTypeAnalyzerin classAbstractFileTypeAnalyzer- Parameters:
engine- a reference to the dependency-checkException engine- Throws:
InitializationException- if anything goes wrong
-
analyzeDependency
Determines if the analyzer can analyze the given file type.- Specified by:
analyzeDependencyin classAbstractAnalyzer- Parameters:
dependency- the dependency to determine if it can analyzeengine- the dependency-checkException engine- Throws:
AnalysisException- thrown if there is an analysis exception.
-