Rubocop: Adds new cops by default, fixes offences

2020-07-15 16:45:36 +02:00
parent 7a0bbc0acb
commit 8361ec97e4
13 changed files with 22 additions and 49 deletions
--- a/app/finders/interesting_findings/multisite.rb
+++ b/app/finders/interesting_findings/multisite.rb
@@ -12,8 +12,8 @@ module WPScan
          location = res.headers_hash['location']

          return unless [200, 302].include?(res.code)
-          return if res.code == 302 && location =~ /wp-login\.php\?action=register/
-          return unless res.code == 200 || res.code == 302 && location =~ /wp-signup\.php/
+          return if res.code == 302 && location.include?('wp-login.php?action=register')
+          return unless res.code == 200 || res.code == 302 && location.include?('wp-signup.php')

          target.multisite = true

--- a/app/finders/passwords/wp_login.rb
+++ b/app/finders/passwords/wp_login.rb
@@ -13,7 +13,7 @@ module WPScan

        def valid_credentials?(response)
          response.code == 302 &&
-            [*response.headers['Set-Cookie']]&.any? { |cookie| cookie =~ /wordpress_logged_in_/i }
+            Array(response.headers['Set-Cookie'])&.any? { |cookie| cookie =~ /wordpress_logged_in_/i }
        end

        def errored_response?(response)
--- a/app/finders/passwords/xml_rpc.rb
+++ b/app/finders/passwords/xml_rpc.rb
@@ -12,7 +12,7 @@ module WPScan
        end

        def valid_credentials?(response)
-          response.code == 200 && response.body =~ /blogName/
+          response.code == 200 && response.body.include?('blogName')
        end

        def errored_response?(response)
--- a/app/finders/users.rb
+++ b/app/finders/users.rb
@@ -6,7 +6,7 @@ require_relative 'users/oembed_api'
 require_relative 'users/rss_generator'
 require_relative 'users/author_id_brute_forcing'
 require_relative 'users/login_error_messages'
-require_relative 'users/yoast_seo_author_sitemap.rb'
+require_relative 'users/yoast_seo_author_sitemap'

 module WPScan
  module Finders
--- a/app/finders/users/login_error_messages.rb
+++ b/app/finders/users/login_error_messages.rb
@@ -37,7 +37,7 @@ module WPScan
          # usernames from the potential Users found
          unames = opts[:found].map(&:username)

-          [*opts[:list]].each { |uname| unames << uname.chomp }
+          Array(opts[:list]).each { |uname| unames << uname.chomp }

          unames.uniq
        end
--- a/app/models/plugin.rb
+++ b/app/models/plugin.rb
@@ -38,7 +38,7 @@ module WPScan

      # @return [ Array<String> ]
      def potential_readme_filenames
-        @potential_readme_filenames ||= [*(DB::DynamicFinders::Plugin.df_data.dig(slug, 'Readme', 'path') || super)]
+        @potential_readme_filenames ||= Array((DB::DynamicFinders::Plugin.df_data.dig(slug, 'Readme', 'path') || super))
      end
    end
  end
--- a/app/models/wp_item.rb
+++ b/app/models/wp_item.rb
@@ -39,7 +39,7 @@ module WPScan

        @vulnerabilities = []

-        [*db_data['vulnerabilities']].each do |json_vuln|
+        Array(db_data['vulnerabilities']).each do |json_vuln|
          vulnerability = Vulnerability.load_from_json(json_vuln)
          @vulnerabilities << vulnerability if vulnerable_to?(vulnerability)
        end
--- a/app/models/wp_version.rb
+++ b/app/models/wp_version.rb
@@ -53,7 +53,7 @@ module WPScan

        @vulnerabilities = []

-        [*db_data['vulnerabilities']].each do |json_vuln|
+        Array(db_data['vulnerabilities']).each do |json_vuln|
          @vulnerabilities << Vulnerability.load_from_json(json_vuln)
        end