Contents

require_relative '../configurations/list_configuration'

class EmptyPasswordRule < Rule
  @default_trigger_words = %w[pwd password pass]
  @password = /pass(word|_|$)|pwd/

  @trigger_words_conf = ListConfiguration.new("List of trigger words", @default_trigger_words, "List of words that identify a password variable")
  @password_conf = RegexConfiguration.new("Regular expression of password name", @password, "Regular expression of names used for password variables.")

  @configurations+=[@trigger_words_conf, @password_conf]

  @name = "Check empty password"

  def self.AnalyzeTokens(tokens)
    result = []

    ftokens = self.get_string_tokens(tokens,'')
    ftokens.each do |token|
      token_value = token.value.downcase
      token_type = token.type.to_s
      if ["EQUALS", "FARROW"].include? token.prev_code_token.type.to_s
        prev_token = token.prev_code_token
        left_side = prev_token.prev_code_token
        if left_side.value.downcase =~ @password_conf.value and ["VARIABLE", "NAME"].include? left_side.type.to_s
          if token_value == ''
            result.append(Sin.new(SinType::EmptyPassword, prev_token.line, prev_token.column, token.line, token.column+token_value.length))
          end
        end
      end
    end

    return result
  end

end

Version data entries

18 entries across 18 versions & 1 rubygems

Version	Path
puppet-sec-lint-1.0.0	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.17	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.16	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.15	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.14	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.13	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.11	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.10	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.9	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.8	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.7	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.6	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.5	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.4	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.3	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.2	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.1	lib/rules/empty_password_rule.rb
puppet-sec-lint-0.5.0	lib/rules/empty_password_rule.rb