Sha256: b7ca548e3181237a061fa5f61f1c3860d34658c73c0284ecaab128de7e10bbcd
Contents?: true
Size: 1.39 KB
Versions: 2
Compression:
Stored size: 1.39 KB
Contents
# Copyright (c) 2020 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
# frozen_string_literal: true
cs__scoped_require 'contrast/utils/object_share'
cs__scoped_require 'contrast/components/interface'
cs__scoped_require 'contrast/core_extensions/assess/assess_extension'
module Contrast
module Agent
module Assess
module Policy
# This is how we scan our customer's code. It provides a way to analyze
# the classes we need to observe to find vulnerabilities in the context
# of a file vs data flow, such as the detection of Hardcoded Passwords
# or Keys.
module PolicyScanner
include Contrast::Components::Interface
access_component :analysis, :logging
class << self
def scan trace_point
return unless ASSESS.enabled?
return unless ASSESS.require_scan?
return unless trace_point.path
return if trace_point.path.start_with?(Gem.dir)
mod = trace_point.self
return if mod.cs__frozen? || mod.singleton_class?
policy.providers.each_value do |provider|
provider.analyze mod
end
end
def policy
Contrast::Agent::Assess::Policy::Policy.instance
end
end
end
end
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| contrast-agent-3.8.5 | lib/contrast/agent/assess/policy/policy_scanner.rb |
| contrast-agent-3.8.4 | lib/contrast/agent/assess/policy/policy_scanner.rb |