diff --git a/techstack.md b/techstack.md new file mode 100644 index 00000000..b675106e --- /dev/null +++ b/techstack.md @@ -0,0 +1,121 @@ + +
+ +# Tech Stack File +![](https://img.stackshare.io/repo.svg "repo") [stackshareio/omniauth-saml](https://github.com/stackshareio/omniauth-saml)![](https://img.stackshare.io/public_badge.svg "public") +

+|14
Tools used|03/01/24
Report generated| +|------|------| +
+ +## Languages (2) + + + + + + +
+ JavaScript +
+ JavaScript +
+ +		 + Ruby +
+ Ruby +
+ +
+ +## DevOps (5) + + + + + + + + + + + + +
+ Git +
+ Git +
+ +		 + RSpec +
+ RSpec +
+ v3.4 +		 + RubyGems +
+ RubyGems +
+ +		 + Travis CI +
+ Travis CI +
+ +		 + npm +
+ npm +
+ +
+ + +## Open source packages (7) + +## RubyGems (7) + +|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| +|:------|:------|:------|:------|:------|:------| +|[conventional-changelog](https://rubygems.org/conventional-changelog)|v1.2|08/30/16|Markus Koller |MIT|N/A| +|[coveralls](https://rubygems.org/coveralls)|v0.8.23|04/26/20|Roger Meier |MIT|N/A| +|[omniauth](https://rubygems.org/omniauth)|v1.3|01/29/18|Lowell Wood |MIT|[CVE-2020-36599](https://github.com/advisories/GHSA-pm55-qfxr-h247) (Critical)
[CVE-2017-18076](https://github.com/advisories/GHSA-9pr6-grf4-x2fr) (High)
[CVE-2015-9284](https://github.com/advisories/GHSA-ww4x-rwq6-qpgf) (High)| +|[rack-test](https://rubygems.org/rack-test)|v0.6|03/05/16|Roger Meier |MIT|N/A| +|[rake](https://rubygems.org/rake)|v12.3.3|04/26/20|Roger Meier |MIT|N/A| +|[ruby-saml](https://rubygems.org/ruby-saml)|v1.9|04/26/20|Roger Meier |MIT|N/A| +|[simplecov](https://rubygems.org/simplecov)|v0.11|02/26/16|Roger Meier |MIT|N/A| + +
+
+ +Generated via [Stack File](https://github.com/marketplace/stack-file) diff --git a/techstack.yml b/techstack.yml new file mode 100644 index 00000000..ffdc9d57 --- /dev/null +++ b/techstack.yml @@ -0,0 +1,214 @@ +repo_name: stackshareio/omniauth-saml +report_id: 73195292959b5ca297d672bb5fde9321 +version: 0.1 +repo_type: Public +timestamp: '2024-03-01T20:35:53+00:00' +requested_by: bufferoverflow +provider: github +branch: master +detected_tools_count: 14 +tools: +- name: JavaScript + description: Lightweight, interpreted, object-oriented language with first-class + functions + website_url: https://developer.mozilla.org/en-US/docs/Web/JavaScript + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/1209/javascript.jpeg + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Rajiv Aaron Manglani + last_updated_on: 2013-11-07 20:04:10.000000000 Z +- name: Ruby + description: A dynamic, interpreted, open source programming language with a focus + on simplicity and productivity + website_url: https://www.ruby-lang.org + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/989/ruby.png + detection_source_url: https://github.com/stackshareio/omniauth-saml + detection_source: Repo Metadata +- name: Git + description: Fast, scalable, distributed revision control system + website_url: http://git-scm.com/ + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Version Control System + image_url: https://img.stackshare.io/service/1046/git.png + detection_source_url: https://github.com/stackshareio/omniauth-saml + detection_source: Repo Metadata +- name: RSpec + description: Behaviour Driven Development for Ruby + website_url: https://rspec.info/ + version: '3.4' + license: MIT + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Testing Frameworks + image_url: https://img.stackshare.io/service/2539/logo.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Rajiv Aaron Manglani + last_updated_on: 2012-02-14 21:03:42.000000000 Z +- name: RubyGems + description: Easily download, install, and use ruby software packages on your system + website_url: https://rubygems.org/ + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Package Managers + image_url: https://img.stackshare.io/service/12795/5jL6-BA5_400x400.jpeg + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Rajiv Aaron Manglani + last_updated_on: 2012-02-14 21:03:42.000000000 Z +- name: Travis CI + description: A hosted continuous integration service for open source and private + projects + website_url: http://travis-ci.com/ + open_source: false + hosted_saas: true + category: Build, Test, Deploy + sub_category: Continuous Integration + image_url: https://img.stackshare.io/service/460/Lu6cGu0z_400x400.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/.travis.yml + detection_source: ".travis.yml" + last_updated_by: Mike Dillon + last_updated_on: 2016-02-06 00:26:34.000000000 Z +- name: npm + description: The package manager for JavaScript. + website_url: https://www.npmjs.com/ + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Front End Package Manager + image_url: https://img.stackshare.io/service/1120/lejvzrnlpb308aftn31u.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Rajiv Aaron Manglani + last_updated_on: 2012-02-14 21:03:42.000000000 Z +- name: conventional-changelog + description: Ruby binary to generate a conventional changelog — Edit + package_url: https://rubygems.org/conventional-changelog + version: '1.2' + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/rubygems/image.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Markus Koller + last_updated_on: 2016-08-30 15:15:35.000000000 Z +- name: coveralls + description: A Ruby implementation of the Coveralls API + package_url: https://rubygems.org/coveralls + version: 0.8.23 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18833/default_8c2fa81d8b8e48c679685199823ce30d598d3e87.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Roger Meier + last_updated_on: 2020-04-26 11:34:58.000000000 Z +- name: omniauth + description: A generalized Rack framework for multiple-provider authentication + package_url: https://rubygems.org/omniauth + version: '1.3' + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18914/default_aa081534cc9e2d100412a763ab69743f22c56ceb.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Lowell Wood + last_updated_on: 2018-01-29 16:42:23.000000000 Z + vulnerabilities: + - name: OmniAuth's `lib/omniauth/failure_endpoint.rb` does not escape `message_key` + value + cve_id: CVE-2020-36599 + cve_url: https://github.com/advisories/GHSA-pm55-qfxr-h247 + detected_date: Sep 1 + severity: critical + first_patched: 1.9.2 + - name: Omniauth allows POST parameters to be stored in session + cve_id: CVE-2017-18076 + cve_url: https://github.com/advisories/GHSA-9pr6-grf4-x2fr + detected_date: Aug 22 + severity: high + first_patched: 1.3.2 + - name: OmniAuth Ruby gem Cross-site Request Forgery in request phase + cve_id: CVE-2015-9284 + cve_url: https://github.com/advisories/GHSA-ww4x-rwq6-qpgf + detected_date: Aug 22 + severity: high + first_patched: 2.0.0 +- name: rack-test + description: Rack::Test is a small, simple testing API for Rack apps + package_url: https://rubygems.org/rack-test + version: '0.6' + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18845/default_db5cfb0d85d9fd8bfb40a863581417a2a57791ab.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Roger Meier + last_updated_on: 2016-03-05 22:20:23.000000000 Z +- name: rake + description: Rake is a Make-like program implemented in Ruby + package_url: https://rubygems.org/rake + version: 12.3.3 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18812/default_f582e4648f4682adb72d2b201218cda7f8e894ac.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Roger Meier + last_updated_on: 2020-04-26 11:27:51.000000000 Z +- name: ruby-saml + description: SAML toolkit for Ruby on Rails + package_url: https://rubygems.org/ruby-saml + version: '1.9' + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/rubygems/image.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Roger Meier + last_updated_on: 2020-04-26 11:38:23.000000000 Z +- name: simplecov + description: Code coverage for Ruby 1.9+ with a powerful configuration library and + automatic merging of coverage across test suites + package_url: https://rubygems.org/simplecov + version: '0.11' + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18819/default_6564ae059af6c4ea7065fd2329370c7a05341cf8.png + detection_source_url: https://github.com/stackshareio/omniauth-saml/blob/master/omniauth-saml.gemspec + detection_source: omniauth-saml.gemspec + last_updated_by: Roger Meier + last_updated_on: 2016-02-26 22:54:35.000000000 Z