Skip to content

ruby3.2-protocol-http/0.37.0 package update #28831

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
hbh7 merged 2 commits into from
Oct 11, 2024
Merged

ruby3.2-protocol-http/0.37.0 package update #28831

hbh7 merged 2 commits into from
Oct 11, 2024

Conversation

@octo-sts
Copy link
Contributor

@octo-sts octo-sts bot commented Sep 18, 2024

@octo-sts octo-sts bot added request-version-update request for a newer version of a package automated pr labels Sep 18, 2024
@octo-sts
Copy link
Contributor Author

octo-sts bot commented Sep 18, 2024

Open AI suggestions to solve the build error:

The error message is:

fatal: detected dubious ownership in repository at '/github/home'
To add an exception for this directory, call:

git config --global --add safe.directory /github/home
ERRO request failed error="Get "./packages/apk-configuration": unsupported protocol scheme """ method=GET url=./packages/apk-configuration
INFO Hunk #1 FAILED at 11.
INFO 1 out of 1 hunk FAILED -- saving rejects to file protocol-http.gemspec.rej
ERRO ERROR: failed to build package. the build environment has been preserved:
INFO workspace dir: /temp/melange-workspace-49149251
INFO guest dir: /temp/melange-guest-3854456799
ERRO failed to build package: unable to run package ruby3.2-protocol-http pipeline: unable to run pipeline: unable to run pipeline: exit status 1
make[1]: *** [Makefile:111: packages/aarch64/ruby3.2-protocol-http-0.37.0-r0.apk] Error 1
make[1]: Leaving directory '/github/home'
make: *** [Makefile:101: package/ruby3.2-protocol-http] Error 2


Suggestions to fix the error:
1. Run `git config --global --add safe.directory /github/home`.
2. Ensure the URL in the GET request uses a supported protocol (e.g., `http://` or `https://`).
3. Review and correct the patch causing the hunk failure.
4. Verify the build environment and dependencies.
5. Check the Makefile for errors.

@wolfi-bot @xnox
ruby3.2-protocol-http/0.37.0 package update
ac6aff0 
Signed-off-by: wolfi-bot <121097084+wolfi-bot@users.noreply.github.com>
@xnox xnox force-pushed the wolfictl-57163df7-721a-450c-bcd1-085fe0ebdb99 branch from d5e4856 to ac6aff0 Compare September 20, 2024 16:52
@octo-sts
Copy link
Contributor Author

octo-sts bot commented Sep 20, 2024

Open AI suggestions to solve the build error:

The error message is: "ERROR: failed to build package. the build environment has been preserved:
INFO   workspace dir: /temp/melange-workspace-1129226714
INFO   guest dir: /temp/melange-guest-127907079
ERRO failed to build package: unable to run package ruby3.2-protocol-http pipeline: unable to run pipeline: unable to run pipeline: exit status 1
make[1]: *** [Makefile:111: packages/aarch64/ruby3.2-protocol-http-0.37.0-r0.apk] Error 1
make[1]: Leaving directory '/github/home'
make: *** [Makefile:101: package/ruby3.2-protocol-http] Error 2
##[error]Process completed with exit code 2."

1. Verify dependencies for `ruby3.2-protocol-http` are installed.
2. Check the Makefile for correct paths and targets.
3. Ensure the build environment is correctly set up.
4. Run `make clean` to clear previous builds.
5. Re-run the build command with verbose logging for more details.
6. Check for any specific error messages in the logs.
7. If the issue persists, consider updating or patching the package.

@hbh7 hbh7 self-assigned this Oct 11, 2024
@github-actions
Copy link
Contributor

github-actions bot commented Oct 11, 2024

Package ruby3.2-protocol-http: Click to expand/collapse

Package ruby3.2-protocol-http:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange
  	pkgname = ruby3.2-protocol-http
- 	pkgver = 0.36.0-r0
+ 	pkgver = 0.37.0-r0
  	arch = x86_64
- 	size = 182573
+ 	size = 182980
  	origin = ruby3.2-protocol-http
  	pkgdesc = Provides abstractions to handle HTTP protocols.
  	url = 
- 	commit = 706c88a9e4fdeba1425d62246efda6929df519b9
- 	builddate = 1726565866
+ 	commit = 1e72e15529c40d95099caaf4157e293e5d3c97cb
+ 	builddate = 1728675549
  	license = MIT
  	depend = ruby-3.2
- 	datahash = 095ef1652050e42f7a721a4d838c530108d6af6bf49e7e9bd88190ecd6a92a23
+ 	datahash = f0485efbe7d737a17180265a6a9a52b3eaeea89f73f6658ad575b9edbd434c90
  	"""
  )

Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/accept_encoding.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/buffered.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/completable.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/deflate.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/digestable.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/file.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/head.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/inflate.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/readable.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/reader.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/rewindable.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/stream.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/streamable.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/wrapper.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/writable.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/content_encoding.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/cookie.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/error.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/authorization.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/cache_control.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/connection.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/cookie.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/date.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/etag.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/etags.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/multiple.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/split.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/vary.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/headers.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/methods.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/middleware/builder.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/middleware.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/reference.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/request.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/response.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/url.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/version.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http.rb
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/license.md
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/readme.md
Added: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/releases.md
Added: /usr/lib/ruby/gems/3.2.0/specifications/protocol-http-0.37.0.gemspec
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/accept_encoding.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/buffered.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/completable.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/deflate.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/digestable.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/file.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/head.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/inflate.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/readable.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/reader.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/rewindable.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/stream.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/streamable.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/wrapper.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/writable.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/content_encoding.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/cookie.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/error.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/authorization.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/cache_control.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/connection.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/cookie.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/date.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/etag.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/etags.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/multiple.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/split.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/vary.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/headers.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/methods.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/middleware/builder.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/middleware.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/reference.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/request.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/response.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/url.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/version.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http.rb
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/license.md
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/readme.md
Deleted: /usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/releases.md
Deleted: /usr/lib/ruby/gems/3.2.0/specifications/protocol-http-0.36.0.gemspec

malcontent found differences: Click to expand/collapse

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/url.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/site/url contains embedded HTTPS URLs https://tools.ietf.org/html/rfc3986

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/accept_encoding.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW compression/gzip works with gzip files gzip

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/writable.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW fd/write writes to a file handle writable.write(chunk)

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/cookie.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/http/cookies access HTTP resources using cookies Cookie
HTTP

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/headers.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/http/cookies access HTTP resources using cookies Cookie
HTTP
-LOW net/http/auth makes HTTP requests with basic authentication www-authenticate

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/authorization.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW encoding/base64 Supports base64 encoded strings base64
-LOW ref/words/password references a 'password' my_password

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/stream.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/http/post submits content to websites HTTP
POST
-LOW fd/write writes to a file handle output.write(buffer)

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/streamable.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/websocket supports web sockets WebSockets
-LOW fd/write writes to a file handle input.write(chunk)

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/reader.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW fd/write writes to a file handle file.write(chunk)

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/response.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW net/http/request makes HTTP requests HTTP/1.
-LOW net/http2 Uses the HTTP/2 protocol HTTP/2

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/readable.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/upload uploads files upload
-LOW fd/write writes to a file handle stream.write(chunk)

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/content_encoding.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW compression/gzip works with gzip files gzip
-LOW ref/site/url contains embedded HTTPS URLs https://lists.w3.org/Archives/Public/ietf-http-wg/2014JanMar/1179.html

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/cache_control.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW ref/site/url contains embedded HTTPS URLs https://www.rfc-editor.org/rfc/rfc9111.html

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/request.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/http/post submits content to websites HTTP
POST
http
-LOW net/http/request makes HTTP requests HTTP/1.
-LOW net/http2 Uses the HTTP/2 protocol HTTP/2
-LOW ref/site/url contains embedded HTTPS URLs https://www.rfc-editor.org/rfc/rfc9110

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/body/deflate.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
-LOW compression/gzip works with gzip files gzip

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/header/cookie.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/http/cookies access HTTP resources using cookies Cookie
HTTP
-MEDIUM ref/words/agent references an 'agent' agent

Deleted: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.36.0/lib/protocol/http/methods.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/http/post submits content to websites HTTP
POST
http
-LOW ref/site/url contains embedded HTTPS URLs https://developer.mozilla.org/en-US/docs/Web/HTTP/Methods

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/stream.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/http/post submits content to websites HTTP
POST
+LOW fd/write writes to a file handle output.write(buffer)

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/cache_control.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/site/url contains embedded HTTPS URLs https://www.rfc-editor.org/rfc/rfc9111.html

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/deflate.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW compression/gzip works with gzip files gzip

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/authorization.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW encoding/base64 Supports base64 encoded strings base64
+LOW ref/words/password references a 'password' my_password

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/content_encoding.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW compression/gzip works with gzip files gzip
+LOW ref/site/url contains embedded HTTPS URLs https://lists.w3.org/Archives/Public/ietf-http-wg/2014JanMar/1179.html

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/streamable.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/websocket supports web sockets WebSockets
+LOW fd/write writes to a file handle input.write(chunk)

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/response.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW net/http/request makes HTTP requests HTTP/1.
+LOW net/http2 Uses the HTTP/2 protocol HTTP/2

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/url.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW ref/site/url contains embedded HTTPS URLs https://tools.ietf.org/html/rfc3986

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/readable.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/upload uploads files upload
+LOW fd/write writes to a file handle stream.write(chunk)

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/methods.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/http/post submits content to websites HTTP
POST
http
+LOW ref/site/url contains embedded HTTPS URLs https://developer.mozilla.org/en-US/docs/Web/HTTP/Methods

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/request.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/http/post submits content to websites HTTP
POST
http
+LOW net/http/request makes HTTP requests HTTP/1.
+LOW net/http2 Uses the HTTP/2 protocol HTTP/2
+LOW ref/site/url contains embedded HTTPS URLs https://www.rfc-editor.org/rfc/rfc9110

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/accept_encoding.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW compression/gzip works with gzip files gzip

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/reader.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW fd/write writes to a file handle file.write(chunk)

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/cookie.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/http/cookies access HTTP resources using cookies Cookie
HTTP

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/header/cookie.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/http/cookies access HTTP resources using cookies Cookie
HTTP
+MEDIUM ref/words/agent references an 'agent' agent

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/headers.rb [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/http/cookies access HTTP resources using cookies Cookie
HTTP
+LOW net/http/auth makes HTTP requests with basic authentication www-authenticate

Added: ruby3.2-protocol-http/usr/lib/ruby/gems/3.2.0/gems/protocol-http-0.37.0/lib/protocol/http/body/writable.rb [✅ LOW]

RISK KEY DESCRIPTION EVIDENCE
+LOW fd/write writes to a file handle writable.write(chunk)

Moved: ruby3.2-protocol-http/var/lib/db/sbom/ruby3.2-protocol-http-0.36.0-r0.spdx.json -> /tmp/wolfictl-apk-262221561/ruby3.2-protocol-http/var/lib/db/sbom/ruby3.2-protocol-http-0.37.0-r0.spdx.json (similarity: 0.99)

@octo-sts octo-sts bot added bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. manual/review-needed labels Oct 11, 2024
@hbh7 hbh7 merged commit cc30e8b into main Oct 11, 2024
@hbh7 hbh7 deleted the wolfictl-57163df7-721a-450c-bcd1-085fe0ebdb99 branch October 11, 2024 20:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jamie-albert jamie-albert jamie-albert approved these changes

Assignees

@hbh7 hbh7

Labels

automated pr bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. manual/review-needed request-version-update request for a newer version of a package

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@jamie-albert @hbh7 @wolfi-bot