2020-10-10 14:16:11 +02:00
|
|
|
# typed: true
|
2019-04-19 15:38:03 +09:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
2018-10-26 19:41:14 +01:00
|
|
|
require "rubocops/extend/formula"
|
2017-05-22 13:09:49 +05:30
|
|
|
|
|
|
|
|
module RuboCop
|
|
|
|
|
module Cop
|
|
|
|
|
module FormulaAudit
|
2020-08-26 02:21:58 +02:00
|
|
|
# This cop makes sure that caveats don't recommend unsupported or unsafe operations.
|
|
|
|
|
#
|
|
|
|
|
# @example
|
|
|
|
|
# # bad
|
|
|
|
|
# def caveats
|
|
|
|
|
# <<~EOS
|
|
|
|
|
# Use `setuid` to allow running the exeutable by non-root users.
|
|
|
|
|
# EOS
|
|
|
|
|
# end
|
|
|
|
|
#
|
|
|
|
|
# # good
|
|
|
|
|
# def caveats
|
|
|
|
|
# <<~EOS
|
|
|
|
|
# Use `sudo` to run the executable.
|
|
|
|
|
# EOS
|
|
|
|
|
# end
|
|
|
|
|
#
|
|
|
|
|
# @api private
|
2017-05-22 13:09:49 +05:30
|
|
|
class Caveats < FormulaCop
|
|
|
|
|
def audit_formula(_node, _class_node, _parent_class_node, _body_node)
|
|
|
|
|
caveats_strings.each do |n|
|
|
|
|
|
next unless regex_match_group(n, /\bsetuid\b/i)
|
2018-09-17 02:45:00 +02:00
|
|
|
|
2017-05-22 13:09:49 +05:30
|
|
|
problem "Don't recommend setuid in the caveats, suggest sudo instead."
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
