Class: Stratagem::Scan::Checks::Capistrano::SecureDeploy

Inherits:

Base

• Object
• Base
• Stratagem::Scan::Checks::Capistrano::SecureDeploy

Defined in:

lib/stratagem/scan/checks/capistrano/secure_deploy.rb

Constant Summary

SECURE_PROTOCOLS =

['https']

Instance Method Summary

• #run ⇒ Object

Instance Method Details

#run ⇒ Object

# File 'lib/stratagem/scan/checks/capistrano/secure_deploy.rb', line 8

def run
  begin
    gem 'capistrano'
    require 'capistrano/configuration'

    begin
      config = Capistrano::Configuration.new
      config.load "config/deploy"

      vars = config.variables
      repository_url = vars[:repository]
      if (repository_url)
        uri = URI::parse(repository_url)
        unless (SECURE_PROTOCOLS.include?(uri.scheme.downcase))
          result(
          :concern_type => :best_practice, 
          :unique => 'repository_url', 
          :component => nil, 
          :payload => repository_url)
        end
      else
        puts "Unable to locate Capistrano repository in deploy script"
      end
    rescue ArgumentError
      puts "Capistrano deploy script could not be loaded. - #{$!.message}"
    rescue LoadError
      puts "Capistrano deploy script not found. - #{$!.message}"
      puts $!.class.name
    end
  rescue Gem::LoadError
    puts "ERROR: Unable to load Capistrano"
  end

end