From 605f7f45ffccea6be59fca513fbd7ba56ccbcb94 Mon Sep 17 00:00:00 2001 From: stacksharebot Date: Fri, 10 Nov 2023 08:11:01 +0000 Subject: [PATCH 1/6] Create techstack.yml --- techstack.yml | 684 ++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 684 insertions(+) create mode 100644 techstack.yml diff --git a/techstack.yml b/techstack.yml new file mode 100644 index 00000000..1a6c7860 --- /dev/null +++ b/techstack.yml @@ -0,0 +1,684 @@ +repo_name: CoderPush/activeadmin_addons +report_id: 2498aa5fec1525ce59df109bb5dff122 +repo_type: Public +timestamp: '2023-11-10T08:10:59+00:00' +requested_by: rjherrera +provider: github +branch: master +detected_tools_count: 49 +tools: +- name: CSS 3 + description: The latest evolution of the Cascading Style Sheets language + website_url: https://developer.mozilla.org/en-US/docs/Web/CSS/CSS3 + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/6727/css.png + detection_source: Repo Metadata +- name: JavaScript + description: Lightweight, interpreted, object-oriented language with first-class + functions + website_url: https://developer.mozilla.org/en-US/docs/Web/JavaScript + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/1209/javascript.jpeg + detection_source: Repo Metadata +- name: Ruby + description: A dynamic, interpreted, open source programming language with a focus + on simplicity and productivity + website_url: https://www.ruby-lang.org + version: '2.7' + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/989/ruby.png + detection_source_url: ".ruby-version" + detection_source: ".ruby-version" + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-14 19:13:21.000000000 Z +- name: Rails + description: Web development that doesn't hurt + website_url: http://rubyonrails.org/ + version: 5.2.4 + license: MIT + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Frameworks (Full Stack) + image_url: https://img.stackshare.io/service/990/x57_Lorv.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Brian John + last_updated_on: 2020-02-29 15:41:01.000000000 Z +- name: jQuery + description: The Write Less, Do More, JavaScript Library. + website_url: http://jquery.com/ + version: 3.6.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: Javascript UI Libraries + image_url: https://img.stackshare.io/service/1021/lxEKmMnB_400x400.jpg + detection_source_url: spec/dummy/yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-21 21:21:02.000000000 Z +- name: Active Admin + description: The administration framework for Ruby on Rails applications + website_url: http://activeadmin.info/ + version: 2.7.0 + license: MIT + open_source: true + hosted_saas: false + category: Data Stores + sub_category: Database Tools + image_url: https://img.stackshare.io/service/1468/no-img-open-source.png + detection_source_url: Gemfile.lock + detection_source: Gemfile + last_updated_by: Leandro Segovia + last_updated_on: 2020-05-24 16:02:43.000000000 Z +- name: SQLite + description: A software library that implements a self-contained, serverless, zero-configuration, + transactional SQL database engine + website_url: http://www.sqlite.org/ + open_source: false + hosted_saas: true + category: Data Stores + sub_category: Databases + image_url: https://img.stackshare.io/service/1071/sqlite.jpg + detection_source: activeadmin_addons.gemspec + last_updated_by: juliogarciag + last_updated_on: 2014-05-30 17:26:29.000000000 Z +- name: Babel + description: Use next generation JavaScript, today. + website_url: http://babeljs.io/ + version: 7.14.3 + license: MIT + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: JavaScript Compilers + image_url: https://img.stackshare.io/service/2739/-1wfGjNw.png + detection_source_url: spec/dummy/yarn.lock + detection_source: spec/dummy/babel.config.js + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-21 21:21:02.000000000 Z +- name: CircleCI + description: Automate your development process quickly, safely, and at scale + website_url: https://circleci.com/ + open_source: false + hosted_saas: true + category: Build, Test, Deploy + sub_category: Continuous Integration + image_url: https://img.stackshare.io/service/190/CvqrSSFs_400x400.jpg + detection_source: ".circleci/config.yml" + last_updated_by: Leandro Segovia + last_updated_on: 2021-06-25 20:25:28.000000000 Z +- name: Git + description: Fast, scalable, distributed revision control system + website_url: http://git-scm.com/ + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Version Control System + image_url: https://img.stackshare.io/service/1046/git.png + detection_source: Repo Metadata +- name: RuboCop + description: A Ruby static code analyzer, based on the community Ruby style guide + website_url: http://batsov.com/rubocop/ + version: 0.65.0 + license: MIT + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Code Review + image_url: https://img.stackshare.io/service/2643/rubocop.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: juliogarciag + last_updated_on: 2014-05-30 17:26:29.000000000 Z +- name: RubyGems + description: Easily download, install, and use ruby software packages on your system + website_url: https://rubygems.org/ + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Package Managers + image_url: https://img.stackshare.io/service/12795/5jL6-BA5_400x400.jpeg + detection_source: activeadmin_addons.gemspec + last_updated_by: juliogarciag + last_updated_on: 2014-05-30 17:26:29.000000000 Z +- name: Webpack + description: A bundler for javascript and friends + website_url: http://webpack.js.org + version: 4.46.0 + license: MIT + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: JS Build Tools / JS Task Runners + image_url: https://img.stackshare.io/service/1682/IMG_4636.PNG + detection_source_url: spec/dummy/yarn.lock + detection_source: spec/dummy/package.json + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-15 20:58:36.000000000 Z +- name: Webpacker + description: Use Webpack to manage app-like JavaScript modules in Rails (by Rails) + website_url: https://github.com/rails/webpacker + version: 5.3.0 + license: MIT + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: JS Build Tools / JS Task Runners + image_url: https://img.stackshare.io/no-img-open-source.png + detection_source_url: Gemfile.lock + detection_source: spec/dummy/package.json + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-15 20:58:36.000000000 Z +- name: Yarn + description: A new package manager for JavaScript + website_url: https://yarnpkg.com/ + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Front End Package Manager + image_url: https://img.stackshare.io/service/5848/44mC-kJ3.jpg + detection_source: yarn.lock + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-15 20:58:36.000000000 Z +- name: npm + description: The package manager for JavaScript. + website_url: https://www.npmjs.com/ + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Front End Package Manager + image_url: https://img.stackshare.io/service/1120/lejvzrnlpb308aftn31u.png + detection_source: spec/dummy/package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-09-25 20:35:56.000000000 Z +- name: rollup + description: The next-generation JavaScript module bundler + website_url: http://rollupjs.org/ + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: JS Build Tools / JS Task Runners + image_url: https://img.stackshare.io/service/4423/zE8RTn9E_400x400.jpg + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-28 15:15:49.000000000 Z +- name: Twilio SendGrid + description: Email Delivery. Simplified. + website_url: http://sendgrid.com + open_source: false + hosted_saas: true + category: Communications + sub_category: Transactional Email + image_url: https://img.stackshare.io/service/43/kQ_6nwmP.jpg + detection_source: spec/dummy/config/environments/production.rb + last_updated_by: juliogarciag + last_updated_on: 2014-05-30 17:26:29.000000000 Z +- name: Shell + description: A shell is a text-based terminal, used for manipulating programs and + files. Shell scripts typically manage program execution. + website_url: https://en.wikipedia.org/wiki/Shell_script + open_source: false + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/4631/default_c2062d40130562bdc836c13dbca02d318205a962.png + detection_source: Repo Metadata +- name: guard + description: Guard is a command line tool to easily handle events on file system + modifications. + website_url: https://github.com/guard/guard + open_source: false + hosted_saas: false + image_url: https://img.stackshare.io/service/3294/guard-logo.png + detection_source: activeadmin_addons.gemspec + last_updated_by: Leandro Segovia + last_updated_on: 2018-01-27 20:04:00.000000000 Z +- name: aasm + description: AASM is a continuation of the acts-as-state-machine rails plugin + package_url: https://rubygems.org/aasm + version: 5.0.6 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19294/default_884a22e9df9e57283c5b613256b2fd8913e1117c.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Leandro Segovia + last_updated_on: 2017-08-27 22:54:51.000000000 Z +- name: activeadmin + description: The administration framework for Ruby on Rails + package_url: https://rubygems.org/activeadmin + version: 2.7.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19101/default_f10a51b2c9e0635e3bca0fa1f65cc762b587ef6f.png + detection_source_url: Gemfile.lock + detection_source: Gemfile + last_updated_by: Leandro Segovia + last_updated_on: 2020-05-24 16:02:43.000000000 Z +- name: database_cleaner + description: Strategies for cleaning databases + package_url: https://rubygems.org/database_cleaner + version: 1.8.2 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18854/default_09811c2c16af4754129f39ba1dab0d23ca3d2476.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Raimundo Herrera + last_updated_on: 2020-02-17 13:01:25.000000000 Z +- name: enumerize + description: Enumerated attributes with I18n and ActiveRecord/Mongoid/MongoMapper + support + package_url: https://rubygems.org/enumerize + version: 2.3.1 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19758/default_00ee3486bfd97082b42405be667a581372469e1b.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Raimundo Herrera + last_updated_on: 2020-02-17 13:01:25.000000000 Z +- name: factory_bot_rails + description: Factory_bot_rails provides integration between factory_bot and rails + 4.2 or newer + package_url: https://rubygems.org/factory_bot_rails + version: 5.1.1 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19040/default_6307a3eb8ac1c7d425b9163e046ba444d20d3abd.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Brian John + last_updated_on: 2020-02-29 15:41:01.000000000 Z +- name: guard-rspec + description: Guard::RSpec automatically run your specs + package_url: https://rubygems.org/guard-rspec + version: 4.7.3 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18831/default_8c2fa81d8b8e48c679685199823ce30d598d3e87.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-26 16:19:59.000000000 Z +- name: mimemagic + description: Fast mime detection by extension or content in pure ruby + package_url: https://rubygems.org/mimemagic + version: 0.3.5 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19182/default_992f30e8abd98f8427f66b25a8cb98662661c0ea.png + detection_source_url: Gemfile.lock + detection_source: Gemfile + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-14 19:13:56.000000000 Z +- name: paperclip + description: Easy upload management for ActiveRecord + package_url: https://rubygems.org/paperclip + version: 6.1.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18985/default_c1889512c4859cd9b0709f2a2a9c10c08f21814e.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Raimundo Herrera + last_updated_on: 2020-02-17 13:01:25.000000000 Z +- name: pry-rails + description: Use Pry as your rails console + package_url: https://rubygems.org/pry-rails + version: 0.3.9 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19013/default_3667c8b28d9ec2ad93884ef523ec8f357774f78e.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Brian John + last_updated_on: 2020-02-29 15:41:01.000000000 Z +- name: puma + description: Puma is a simple, fast, threaded, and highly concurrent HTTP 1.1 server + for Ruby/Rack applications + package_url: https://rubygems.org/puma + version: 5.3.1 + license: BSD-3-Clause + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18987/default_214d751700c24af0083d774ec1c11d7232a6d39e.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Brian John + last_updated_on: 2020-02-29 15:41:01.000000000 Z + vulnerabilities: + - name: Puma HTTP Request/Response Smuggling vulnerability + cve_id: CVE-2023-40175 + cve_url: https://github.com/advisories/GHSA-68xg-gqqm-vgj8 + detected_date: Aug 19 + severity: critical + first_patched: 5.6.7 + - name: Puma vulnerable to HTTP Request Smuggling + cve_id: CVE-2022-24790 + cve_url: https://github.com/advisories/GHSA-h99w-9q5r-gjq9 + detected_date: Mar 31 + severity: critical + first_patched: 5.6.4 + - name: Puma used with Rails may lead to Information Exposure + cve_id: CVE-2022-23634 + cve_url: https://github.com/advisories/GHSA-rmj8-8hhh-gv5h + detected_date: Feb 12 + severity: high + first_patched: 5.6.2 + - name: Puma with proxy which forwards LF characters as line endings could allow + HTTP request smuggling + cve_id: CVE-2021-41136 + cve_url: https://github.com/advisories/GHSA-48w2-rm65-62xx + detected_date: Oct 13 + severity: low + first_patched: 5.5.1 +- name: railties + description: 'Rails internals: application bootup' + package_url: https://rubygems.org/railties + version: 5.2.4 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18847/default_49e8e438a279d3b7963273823890f9482ce83fb4.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Brian John + last_updated_on: 2020-02-29 15:41:01.000000000 Z +- name: require_all + description: A wonderfully simple way to load your code + package_url: https://rubygems.org/require_all + version: 3.0.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18989/default_c2edad6777219a9d77730c33c0ffc3c4598d107f.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Guillermo Aguirre + last_updated_on: 2020-10-29 18:03:04.000000000 Z +- name: rspec-rails + description: Rspec-rails is a testing framework for Rails 3+ + package_url: https://rubygems.org/rspec-rails + version: 3.9.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18830/default_ba8d7756589e5fc0164687950e3f091b32554546.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-26 16:19:59.000000000 Z +- name: rspec_junit_formatter + description: RSpec results that your continuous integration service can read + package_url: https://rubygems.org/rspec_junit_formatter + version: 0.4.1 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18911/default_6011c3e13c0feeff577120981a21a5968e50756a.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-26 16:19:59.000000000 Z +- name: sassc + description: Use libsass with Ruby! + package_url: https://rubygems.org/sassc + version: 2.2.1 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19530/default_613f4a81e068e079bd9a85743fffda50ec58cc62.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Raimundo Herrera + last_updated_on: 2020-02-17 12:58:53.000000000 Z +- name: sassc-rails + description: Integrate SassC-Ruby into Rails + package_url: https://rubygems.org/sassc-rails + version: 2.1.2 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19508/default_e4388de496824e0638763f2d5c887a8895c2ceb4.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Brian John + last_updated_on: 2020-02-29 15:41:01.000000000 Z +- name: shoulda-matchers + description: Shoulda Matchers provides RSpec- and Minitest-compatible one-liners + to test common Rails functionality that + package_url: https://rubygems.org/shoulda-matchers + version: 4.2.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18912/default_f78521c51e3a38a8810251cfa8909b18ae0b40a8.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Raimundo Herrera + last_updated_on: 2020-02-17 13:01:25.000000000 Z +- name: webdrivers + description: Run Selenium tests more easily with install and updates for all supported + webdrivers + package_url: https://rubygems.org/webdrivers + version: 4.2.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19420/default_16904f646648128b821ee8aabb068fa7a1b5025f.png + detection_source_url: Gemfile.lock + detection_source: activeadmin_addons.gemspec + last_updated_by: Raimundo Herrera + last_updated_on: 2020-02-17 13:01:25.000000000 Z +- name: "@babel/core" + description: Babel compiler core + package_url: https://www.npmjs.com/@babel/core + version: 7.14.3 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/15810/default_004658cda9b38934f2871435e9dc15608c86e8be.png + detection_source_url: spec/dummy/yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-21 21:21:02.000000000 Z +- name: "@babel/preset-env" + description: A Babel preset for each environment + package_url: https://www.npmjs.com/@babel/preset-env + version: 7.14.4 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/15819/default_98aa227f51aa9d787815ec3fd98d0ab2bfebbb91.png + detection_source_url: spec/dummy/yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-21 21:21:02.000000000 Z +- name: common-tags + description: A few common utility template tags for ES2015 + package_url: https://www.npmjs.com/common-tags + version: 1.8.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/17307/default_78541a280e8cac42279d6c363e71e5b8f462e962.png + detection_source_url: yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-21 21:21:02.000000000 Z +- name: rollup-plugin-babel + description: Seamless integration between Rollup and Babel + package_url: https://www.npmjs.com/rollup-plugin-babel + version: 4.4.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/15877/default_7c39a83d4acd952df89b1ebfdb94c8646324fbf1.png + detection_source_url: yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-28 15:15:49.000000000 Z +- name: rollup-plugin-commonjs + description: Convert CommonJS modules to ES2015 + package_url: https://www.npmjs.com/rollup-plugin-commonjs + version: 10.1.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/15873/default_0b10af8ca19c215f781dc07442e75bdc831089d0.png + detection_source_url: yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-28 15:15:49.000000000 Z +- name: rollup-plugin-node-resolve + description: Bundle third-party dependencies in node_modules + package_url: https://www.npmjs.com/rollup-plugin-node-resolve + version: 5.2.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/15859/default_a2f722724df977d0f7752839e5d8845ab41f69d5.png + detection_source_url: yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-28 15:15:49.000000000 Z +- name: rollup-plugin-uglify + description: Rollup plugin to minify generated bundle + package_url: https://www.npmjs.com/rollup-plugin-uglify + version: 6.0.4 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/15972/default_ac622bc364a601d766b9a6f6039f191492f54d65.png + detection_source_url: yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-28 15:15:49.000000000 Z +- name: script-loader + description: Script loader module for webpack + package_url: https://www.npmjs.com/script-loader + version: 0.7.2 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/17159/default_9746cbb559e39df4afd8298f9a252dff8519e646.png + detection_source_url: yarn.lock + detection_source: package.json + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-29 23:06:42.000000000 Z +- name: select2 + description: Select2 is a jQuery based replacement for select boxes + package_url: https://www.npmjs.com/select2 + version: 4.0.13 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/17918/default_e0b07170ab7d7ea66954ff35fdeaae5255c4c0aa.png + detection_source_url: yarn.lock + detection_source: package.json + last_updated_by: Guillermo Moreno + last_updated_on: 2020-08-21 21:21:02.000000000 Z +- name: webpack-cli + description: CLI for webpack & friends + package_url: https://www.npmjs.com/webpack-cli + version: 3.3.12 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/15826/default_14fd11531839d935f920b6d55bd6f3528c890ad7.png + detection_source_url: spec/dummy/yarn.lock + detection_source: spec/dummy/package.json + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-15 20:58:36.000000000 Z +- name: webpack-dev-server + description: Serves a webpack app. Updates the browser on changes + package_url: https://www.npmjs.com/webpack-dev-server + version: 3.11.2 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: npm Packages + image_url: https://img.stackshare.io/package/15821/default_64690bc3e49bcee57094e51a7a26c620c48dbd82.png + detection_source_url: spec/dummy/yarn.lock + detection_source: spec/dummy/package.json + last_updated_by: Leandro Segovia + last_updated_on: 2021-05-15 20:58:36.000000000 Z From ce2d5ae59d6ac0c63e266059fb6bda397fdf84fb Mon Sep 17 00:00:00 2001 From: stacksharebot Date: Fri, 10 Nov 2023 08:11:02 +0000 Subject: [PATCH 2/6] Create techstack.md --- techstack.md | 293 +++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 293 insertions(+) create mode 100644 techstack.md diff --git a/techstack.md b/techstack.md new file mode 100644 index 00000000..d339809b --- /dev/null +++ b/techstack.md @@ -0,0 +1,293 @@ + +
+ +# Tech Stack File +![](https://img.stackshare.io/repo.svg "repo") [CoderPush/activeadmin_addons](https://github.com/CoderPush/activeadmin_addons)![](https://img.stackshare.io/public_badge.svg "public") +

+|49
Tools used|11/10/23
Report generated| +|------|------| +
+ +## Languages (3) + + + + + + + + +
+ CSS 3 +
+ CSS 3 +
+ +		 + JavaScript +
+ JavaScript +
+ +		 + Ruby +
+ Ruby +
+ v2.7 +
+ +## Frameworks (2) + + + + + + +
+ Rails +
+ Rails +
+ v5.2.4 +		 + jQuery +
+ jQuery +
+ v3.6.0 +
+ +## Data (2) + + + + + + +
+ Active Admin +
+ Active Admin +
+ v2.7.0 +		 + SQLite +
+ SQLite +
+ +
+ +## DevOps (10) + + + + + + + + + + + + + + + + + + + + + + + + +
+ Babel +
+ Babel +
+ v7.14.3 +		 + CircleCI +
+ CircleCI +
+ +		 + Git +
+ Git +
+ +		 + RuboCop +
+ RuboCop +
+ v0.65.0 +		 + RubyGems +
+ RubyGems +
+ +		 + Webpack +
+ Webpack +
+ v4.46.0 +		 + Webpacker +
+ Webpacker +
+ v5.3.0 +		 + Yarn +
+ Yarn +
+ +
+ npm +
+ npm +
+ +		 + rollup +
+ rollup +
+ +
+ +## Software as a Service (SaaS) (1) + + + + +
+ Twilio SendGrid +
+ Twilio SendGrid +
+ +
+ +## Other (2) + + + + + + +
+ Shell +
+ Shell +
+ +		 + guard +
+ guard +
+ +
+ + +## Open source packages (29) + +## RubyGems (18) + +|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| +|:------|:------|:------|:------|:------|:------| +|[aasm](https://rubygems.org/aasm)|v5.0.6|08/27/17|Leandro Segovia |MIT|N/A| +|[activeadmin](https://rubygems.org/activeadmin)|v2.7.0|05/24/20|Leandro Segovia |MIT|N/A| +|[database_cleaner](https://rubygems.org/database_cleaner)|v1.8.2|02/17/20|Raimundo Herrera |MIT|N/A| +|[enumerize](https://rubygems.org/enumerize)|v2.3.1|02/17/20|Raimundo Herrera |MIT|N/A| +|[factory_bot_rails](https://rubygems.org/factory_bot_rails)|v5.1.1|02/29/20|Brian John |MIT|N/A| +|[guard-rspec](https://rubygems.org/guard-rspec)|v4.7.3|05/26/21|Leandro Segovia |MIT|N/A| +|[mimemagic](https://rubygems.org/mimemagic)|v0.3.5|05/14/21|Leandro Segovia |MIT|N/A| +|[paperclip](https://rubygems.org/paperclip)|v6.1.0|02/17/20|Raimundo Herrera |MIT|N/A| +|[pry-rails](https://rubygems.org/pry-rails)|v0.3.9|02/29/20|Brian John |MIT|N/A| +|[puma](https://rubygems.org/puma)|v5.3.1|02/29/20|Brian John |BSD-3-Clause|[CVE-2023-40175](https://github.com/advisories/GHSA-68xg-gqqm-vgj8) (Critical)
[CVE-2022-24790](https://github.com/advisories/GHSA-h99w-9q5r-gjq9) (Critical)
[CVE-2022-23634](https://github.com/advisories/GHSA-rmj8-8hhh-gv5h) (High)
[CVE-2021-41136](https://github.com/advisories/GHSA-48w2-rm65-62xx) (Low)| +|[railties](https://rubygems.org/railties)|v5.2.4|02/29/20|Brian John |MIT|N/A| +|[require_all](https://rubygems.org/require_all)|v3.0.0|10/29/20|Guillermo Aguirre |MIT|N/A| +|[rspec-rails](https://rubygems.org/rspec-rails)|v3.9.0|05/26/21|Leandro Segovia |MIT|N/A| +|[rspec_junit_formatter](https://rubygems.org/rspec_junit_formatter)|v0.4.1|05/26/21|Leandro Segovia |MIT|N/A| +|[sassc](https://rubygems.org/sassc)|v2.2.1|02/17/20|Raimundo Herrera |MIT|N/A| +|[sassc-rails](https://rubygems.org/sassc-rails)|v2.1.2|02/29/20|Brian John |MIT|N/A| +|[shoulda-matchers](https://rubygems.org/shoulda-matchers)|v4.2.0|02/17/20|Raimundo Herrera |MIT|N/A| +|[webdrivers](https://rubygems.org/webdrivers)|v4.2.0|02/17/20|Raimundo Herrera |MIT|N/A| + + +## npm (11) + +|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| +|:------|:------|:------|:------|:------|:------| +|[@babel/core](https://www.npmjs.com/@babel/core)|v7.14.3|08/21/20|Guillermo Moreno |MIT|N/A| +|[@babel/preset-env](https://www.npmjs.com/@babel/preset-env)|v7.14.4|08/21/20|Guillermo Moreno |MIT|N/A| +|[common-tags](https://www.npmjs.com/common-tags)|v1.8.0|08/21/20|Guillermo Moreno |MIT|N/A| +|[rollup-plugin-babel](https://www.npmjs.com/rollup-plugin-babel)|v4.4.0|08/28/20|Guillermo Moreno |MIT|N/A| +|[rollup-plugin-commonjs](https://www.npmjs.com/rollup-plugin-commonjs)|v10.1.0|08/28/20|Guillermo Moreno |MIT|N/A| +|[rollup-plugin-node-resolve](https://www.npmjs.com/rollup-plugin-node-resolve)|v5.2.0|08/28/20|Guillermo Moreno |MIT|N/A| +|[rollup-plugin-uglify](https://www.npmjs.com/rollup-plugin-uglify)|v6.0.4|08/28/20|Guillermo Moreno |MIT|N/A| +|[script-loader](https://www.npmjs.com/script-loader)|v0.7.2|05/29/21|Leandro Segovia |MIT|N/A| +|[select2](https://www.npmjs.com/select2)|v4.0.13|08/21/20|Guillermo Moreno |MIT|N/A| +|[webpack-cli](https://www.npmjs.com/webpack-cli)|v3.3.12|05/15/21|Leandro Segovia |MIT|N/A| +|[webpack-dev-server](https://www.npmjs.com/webpack-dev-server)|v3.11.2|05/15/21|Leandro Segovia |MIT|N/A| + +
+
+ +Generated via [Stack File](https://github.com/apps/stack-file) From 0d63fda929dc134ec4d4c57be31014f6782be49b Mon Sep 17 00:00:00 2001 From: stacksharebot Date: Fri, 5 Jan 2024 09:37:50 +0000 Subject: [PATCH 3/6] Update techstack.yml --- techstack.yml | 114 ++++++++++++++++++++++++++++++++------------------ 1 file changed, 73 insertions(+), 41 deletions(-) diff --git a/techstack.yml b/techstack.yml index 1a6c7860..7f9bd2d5 100644 --- a/techstack.yml +++ b/techstack.yml @@ -1,7 +1,8 @@ repo_name: CoderPush/activeadmin_addons report_id: 2498aa5fec1525ce59df109bb5dff122 +version: 0.1 repo_type: Public -timestamp: '2023-11-10T08:10:59+00:00' +timestamp: '2024-01-05T08:57:36+00:00' requested_by: rjherrera provider: github branch: master @@ -15,6 +16,7 @@ tools: category: Languages & Frameworks sub_category: Languages image_url: https://img.stackshare.io/service/6727/css.png + detection_source_url: https://github.com/CoderPush/activeadmin_addons detection_source: Repo Metadata - name: JavaScript description: Lightweight, interpreted, object-oriented language with first-class @@ -25,6 +27,7 @@ tools: category: Languages & Frameworks sub_category: Languages image_url: https://img.stackshare.io/service/1209/javascript.jpeg + detection_source_url: https://github.com/CoderPush/activeadmin_addons detection_source: Repo Metadata - name: Ruby description: A dynamic, interpreted, open source programming language with a focus @@ -36,8 +39,8 @@ tools: category: Languages & Frameworks sub_category: Languages image_url: https://img.stackshare.io/service/989/ruby.png - detection_source_url: ".ruby-version" - detection_source: ".ruby-version" + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/.ruby-version + detection_source: Repo Metadata last_updated_by: Leandro Segovia last_updated_on: 2021-05-14 19:13:21.000000000 Z - name: Rails @@ -50,7 +53,7 @@ tools: category: Languages & Frameworks sub_category: Frameworks (Full Stack) image_url: https://img.stackshare.io/service/990/x57_Lorv.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Brian John last_updated_on: 2020-02-29 15:41:01.000000000 Z @@ -64,7 +67,7 @@ tools: category: Libraries sub_category: Javascript UI Libraries image_url: https://img.stackshare.io/service/1021/lxEKmMnB_400x400.jpg - detection_source_url: spec/dummy/yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-21 21:21:02.000000000 Z @@ -78,7 +81,7 @@ tools: category: Data Stores sub_category: Database Tools image_url: https://img.stackshare.io/service/1468/no-img-open-source.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: Gemfile last_updated_by: Leandro Segovia last_updated_on: 2020-05-24 16:02:43.000000000 Z @@ -91,6 +94,7 @@ tools: category: Data Stores sub_category: Databases image_url: https://img.stackshare.io/service/1071/sqlite.jpg + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/activeadmin_addons.gemspec detection_source: activeadmin_addons.gemspec last_updated_by: juliogarciag last_updated_on: 2014-05-30 17:26:29.000000000 Z @@ -104,8 +108,8 @@ tools: category: Build, Test, Deploy sub_category: JavaScript Compilers image_url: https://img.stackshare.io/service/2739/-1wfGjNw.png - detection_source_url: spec/dummy/yarn.lock - detection_source: spec/dummy/babel.config.js + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/yarn.lock + detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-21 21:21:02.000000000 Z - name: CircleCI @@ -116,6 +120,7 @@ tools: category: Build, Test, Deploy sub_category: Continuous Integration image_url: https://img.stackshare.io/service/190/CvqrSSFs_400x400.jpg + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/.circleci/config.yml detection_source: ".circleci/config.yml" last_updated_by: Leandro Segovia last_updated_on: 2021-06-25 20:25:28.000000000 Z @@ -127,6 +132,7 @@ tools: category: Build, Test, Deploy sub_category: Version Control System image_url: https://img.stackshare.io/service/1046/git.png + detection_source_url: https://github.com/CoderPush/activeadmin_addons detection_source: Repo Metadata - name: RuboCop description: A Ruby static code analyzer, based on the community Ruby style guide @@ -138,7 +144,7 @@ tools: category: Build, Test, Deploy sub_category: Code Review image_url: https://img.stackshare.io/service/2643/rubocop.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: juliogarciag last_updated_on: 2014-05-30 17:26:29.000000000 Z @@ -150,6 +156,7 @@ tools: category: Build, Test, Deploy sub_category: Package Managers image_url: https://img.stackshare.io/service/12795/5jL6-BA5_400x400.jpeg + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/activeadmin_addons.gemspec detection_source: activeadmin_addons.gemspec last_updated_by: juliogarciag last_updated_on: 2014-05-30 17:26:29.000000000 Z @@ -163,7 +170,7 @@ tools: category: Build, Test, Deploy sub_category: JS Build Tools / JS Task Runners image_url: https://img.stackshare.io/service/1682/IMG_4636.PNG - detection_source_url: spec/dummy/yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/yarn.lock detection_source: spec/dummy/package.json last_updated_by: Leandro Segovia last_updated_on: 2021-05-15 20:58:36.000000000 Z @@ -177,7 +184,7 @@ tools: category: Build, Test, Deploy sub_category: JS Build Tools / JS Task Runners image_url: https://img.stackshare.io/no-img-open-source.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: spec/dummy/package.json last_updated_by: Leandro Segovia last_updated_on: 2021-05-15 20:58:36.000000000 Z @@ -189,7 +196,8 @@ tools: category: Build, Test, Deploy sub_category: Front End Package Manager image_url: https://img.stackshare.io/service/5848/44mC-kJ3.jpg - detection_source: yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/yarn.lock + detection_source: spec/dummy/yarn.lock last_updated_by: Leandro Segovia last_updated_on: 2021-05-15 20:58:36.000000000 Z - name: npm @@ -200,6 +208,7 @@ tools: category: Build, Test, Deploy sub_category: Front End Package Manager image_url: https://img.stackshare.io/service/1120/lejvzrnlpb308aftn31u.png + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/package.json detection_source: spec/dummy/package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-09-25 20:35:56.000000000 Z @@ -211,6 +220,7 @@ tools: category: Build, Test, Deploy sub_category: JS Build Tools / JS Task Runners image_url: https://img.stackshare.io/service/4423/zE8RTn9E_400x400.jpg + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/package.json detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-28 15:15:49.000000000 Z @@ -222,6 +232,7 @@ tools: category: Communications sub_category: Transactional Email image_url: https://img.stackshare.io/service/43/kQ_6nwmP.jpg + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/config/environments/production.rb detection_source: spec/dummy/config/environments/production.rb last_updated_by: juliogarciag last_updated_on: 2014-05-30 17:26:29.000000000 Z @@ -234,6 +245,7 @@ tools: category: Languages & Frameworks sub_category: Languages image_url: https://img.stackshare.io/service/4631/default_c2062d40130562bdc836c13dbca02d318205a962.png + detection_source_url: https://github.com/CoderPush/activeadmin_addons detection_source: Repo Metadata - name: guard description: Guard is a command line tool to easily handle events on file system @@ -242,6 +254,7 @@ tools: open_source: false hosted_saas: false image_url: https://img.stackshare.io/service/3294/guard-logo.png + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/activeadmin_addons.gemspec detection_source: activeadmin_addons.gemspec last_updated_by: Leandro Segovia last_updated_on: 2018-01-27 20:04:00.000000000 Z @@ -255,7 +268,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19294/default_884a22e9df9e57283c5b613256b2fd8913e1117c.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Leandro Segovia last_updated_on: 2017-08-27 22:54:51.000000000 Z @@ -269,10 +282,29 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19101/default_f10a51b2c9e0635e3bca0fa1f65cc762b587ef6f.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: Gemfile last_updated_by: Leandro Segovia last_updated_on: 2020-05-24 16:02:43.000000000 Z + vulnerabilities: + - name: 'Duplicate Advisory: ActiveAdmin vulnerable to CSV injection' + cve_id: + cve_url: https://github.com/advisories/GHSA-rqxc-9p8h-xqgq + detected_date: Dec 28 + severity: high + first_patched: 3.2.0 + - name: Potential CSV export data leak + cve_id: CVE-2023-50448 + cve_url: https://github.com/advisories/GHSA-356j-hg45-x525 + detected_date: Dec 16 + severity: high + first_patched: 2.12.0 + - name: ActiveAdmin CSV Injection leading to sensitive information disclosure + cve_id: CVE-2023-51763 + cve_url: https://github.com/advisories/GHSA-xhvv-3jww-c487 + detected_date: Dec 29 + severity: moderate + first_patched: 3.2.0 - name: database_cleaner description: Strategies for cleaning databases package_url: https://rubygems.org/database_cleaner @@ -283,7 +315,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18854/default_09811c2c16af4754129f39ba1dab0d23ca3d2476.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Raimundo Herrera last_updated_on: 2020-02-17 13:01:25.000000000 Z @@ -298,7 +330,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19758/default_00ee3486bfd97082b42405be667a581372469e1b.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Raimundo Herrera last_updated_on: 2020-02-17 13:01:25.000000000 Z @@ -313,7 +345,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19040/default_6307a3eb8ac1c7d425b9163e046ba444d20d3abd.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Brian John last_updated_on: 2020-02-29 15:41:01.000000000 Z @@ -327,7 +359,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18831/default_8c2fa81d8b8e48c679685199823ce30d598d3e87.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Leandro Segovia last_updated_on: 2021-05-26 16:19:59.000000000 Z @@ -341,7 +373,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19182/default_992f30e8abd98f8427f66b25a8cb98662661c0ea.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: Gemfile last_updated_by: Leandro Segovia last_updated_on: 2021-05-14 19:13:56.000000000 Z @@ -355,7 +387,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18985/default_c1889512c4859cd9b0709f2a2a9c10c08f21814e.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Raimundo Herrera last_updated_on: 2020-02-17 13:01:25.000000000 Z @@ -369,7 +401,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19013/default_3667c8b28d9ec2ad93884ef523ec8f357774f78e.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Brian John last_updated_on: 2020-02-29 15:41:01.000000000 Z @@ -384,7 +416,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18987/default_214d751700c24af0083d774ec1c11d7232a6d39e.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Brian John last_updated_on: 2020-02-29 15:41:01.000000000 Z @@ -424,7 +456,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18847/default_49e8e438a279d3b7963273823890f9482ce83fb4.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Brian John last_updated_on: 2020-02-29 15:41:01.000000000 Z @@ -438,7 +470,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18989/default_c2edad6777219a9d77730c33c0ffc3c4598d107f.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Guillermo Aguirre last_updated_on: 2020-10-29 18:03:04.000000000 Z @@ -452,7 +484,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18830/default_ba8d7756589e5fc0164687950e3f091b32554546.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Leandro Segovia last_updated_on: 2021-05-26 16:19:59.000000000 Z @@ -466,7 +498,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18911/default_6011c3e13c0feeff577120981a21a5968e50756a.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Leandro Segovia last_updated_on: 2021-05-26 16:19:59.000000000 Z @@ -480,7 +512,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19530/default_613f4a81e068e079bd9a85743fffda50ec58cc62.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Raimundo Herrera last_updated_on: 2020-02-17 12:58:53.000000000 Z @@ -494,7 +526,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19508/default_e4388de496824e0638763f2d5c887a8895c2ceb4.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Brian John last_updated_on: 2020-02-29 15:41:01.000000000 Z @@ -509,7 +541,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/18912/default_f78521c51e3a38a8810251cfa8909b18ae0b40a8.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Raimundo Herrera last_updated_on: 2020-02-17 13:01:25.000000000 Z @@ -524,7 +556,7 @@ tools: category: Libraries sub_category: RubyGems Packages image_url: https://img.stackshare.io/package/19420/default_16904f646648128b821ee8aabb068fa7a1b5025f.png - detection_source_url: Gemfile.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/Gemfile.lock detection_source: activeadmin_addons.gemspec last_updated_by: Raimundo Herrera last_updated_on: 2020-02-17 13:01:25.000000000 Z @@ -538,7 +570,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/15810/default_004658cda9b38934f2871435e9dc15608c86e8be.png - detection_source_url: spec/dummy/yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-21 21:21:02.000000000 Z @@ -552,7 +584,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/15819/default_98aa227f51aa9d787815ec3fd98d0ab2bfebbb91.png - detection_source_url: spec/dummy/yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-21 21:21:02.000000000 Z @@ -566,7 +598,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/17307/default_78541a280e8cac42279d6c363e71e5b8f462e962.png - detection_source_url: yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-21 21:21:02.000000000 Z @@ -580,7 +612,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/15877/default_7c39a83d4acd952df89b1ebfdb94c8646324fbf1.png - detection_source_url: yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-28 15:15:49.000000000 Z @@ -594,7 +626,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/15873/default_0b10af8ca19c215f781dc07442e75bdc831089d0.png - detection_source_url: yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-28 15:15:49.000000000 Z @@ -608,7 +640,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/15859/default_a2f722724df977d0f7752839e5d8845ab41f69d5.png - detection_source_url: yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-28 15:15:49.000000000 Z @@ -622,7 +654,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/15972/default_ac622bc364a601d766b9a6f6039f191492f54d65.png - detection_source_url: yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-28 15:15:49.000000000 Z @@ -636,7 +668,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/17159/default_9746cbb559e39df4afd8298f9a252dff8519e646.png - detection_source_url: yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/yarn.lock detection_source: package.json last_updated_by: Leandro Segovia last_updated_on: 2021-05-29 23:06:42.000000000 Z @@ -650,7 +682,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/17918/default_e0b07170ab7d7ea66954ff35fdeaae5255c4c0aa.png - detection_source_url: yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/yarn.lock detection_source: package.json last_updated_by: Guillermo Moreno last_updated_on: 2020-08-21 21:21:02.000000000 Z @@ -664,7 +696,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/15826/default_14fd11531839d935f920b6d55bd6f3528c890ad7.png - detection_source_url: spec/dummy/yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/yarn.lock detection_source: spec/dummy/package.json last_updated_by: Leandro Segovia last_updated_on: 2021-05-15 20:58:36.000000000 Z @@ -678,7 +710,7 @@ tools: category: Libraries sub_category: npm Packages image_url: https://img.stackshare.io/package/15821/default_64690bc3e49bcee57094e51a7a26c620c48dbd82.png - detection_source_url: spec/dummy/yarn.lock + detection_source_url: https://github.com/CoderPush/activeadmin_addons/blob/master/spec/dummy/yarn.lock detection_source: spec/dummy/package.json last_updated_by: Leandro Segovia last_updated_on: 2021-05-15 20:58:36.000000000 Z From f98d57aefd7b3b3ed00ca95dbe37fffc67b99733 Mon Sep 17 00:00:00 2001 From: stacksharebot Date: Fri, 5 Jan 2024 09:37:51 +0000 Subject: [PATCH 4/6] Update techstack.md --- techstack.md | 18 +++++++++++------- 1 file changed, 11 insertions(+), 7 deletions(-) diff --git a/techstack.md b/techstack.md index d339809b..d4b63dab 100644 --- a/techstack.md +++ b/techstack.md @@ -1,7 +1,8 @@
# Tech Stack File ![](https://img.stackshare.io/repo.svg "repo") [CoderPush/activeadmin_addons](https://github.com/CoderPush/activeadmin_addons)![](https://img.stackshare.io/public_badge.svg "public")

-|49
Tools used|11/10/23
Report generated| +|49
Tools used|01/05/24
Report generated| |------|------|
@@ -252,7 +256,7 @@ Full tech stack [here](/techstack.md) |NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| |:------|:------|:------|:------|:------|:------| |[aasm](https://rubygems.org/aasm)|v5.0.6|08/27/17|Leandro Segovia |MIT|N/A| -|[activeadmin](https://rubygems.org/activeadmin)|v2.7.0|05/24/20|Leandro Segovia |MIT|N/A| +|[activeadmin](https://rubygems.org/activeadmin)|v2.7.0|05/24/20|Leandro Segovia |MIT|[](https://github.com/advisories/GHSA-rqxc-9p8h-xqgq) (High)
[CVE-2023-50448](https://github.com/advisories/GHSA-356j-hg45-x525) (High)
[CVE-2023-51763](https://github.com/advisories/GHSA-xhvv-3jww-c487) (Moderate)| |[database_cleaner](https://rubygems.org/database_cleaner)|v1.8.2|02/17/20|Raimundo Herrera |MIT|N/A| |[enumerize](https://rubygems.org/enumerize)|v2.3.1|02/17/20|Raimundo Herrera |MIT|N/A| |[factory_bot_rails](https://rubygems.org/factory_bot_rails)|v5.1.1|02/29/20|Brian John |MIT|N/A| @@ -290,4 +294,4 @@ Full tech stack [here](/techstack.md)
-Generated via [Stack File](https://github.com/apps/stack-file) +Generated via [Stack File](https://github.com/marketplace/stack-file) From 6bbff9989bcc55de26145dce12773f33fb942705 Mon Sep 17 00:00:00 2001 From: stacksharebot Date: Thu, 29 Feb 2024 20:20:17 +0000 Subject: [PATCH 5/6] Update techstack.yml --- techstack.yml | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/techstack.yml b/techstack.yml index 7f9bd2d5..28dd690f 100644 --- a/techstack.yml +++ b/techstack.yml @@ -2,7 +2,7 @@ repo_name: CoderPush/activeadmin_addons report_id: 2498aa5fec1525ce59df109bb5dff122 version: 0.1 repo_type: Public -timestamp: '2024-01-05T08:57:36+00:00' +timestamp: '2024-02-29T18:32:09+00:00' requested_by: rjherrera provider: github branch: master @@ -439,6 +439,12 @@ tools: detected_date: Feb 12 severity: high first_patched: 5.6.2 + - name: Puma HTTP Request/Response Smuggling vulnerability + cve_id: CVE-2024-21647 + cve_url: https://github.com/advisories/GHSA-c2f4-cvqm-65w2 + detected_date: Jan 9 + severity: moderate + first_patched: 5.6.8 - name: Puma with proxy which forwards LF characters as line endings could allow HTTP request smuggling cve_id: CVE-2021-41136 From 182afea97fdb95e31c1484c883090dcf860ec30f Mon Sep 17 00:00:00 2001 From: stacksharebot Date: Thu, 29 Feb 2024 20:20:18 +0000 Subject: [PATCH 6/6] Update techstack.md --- techstack.md | 36 ++++++++++++++++++------------------ 1 file changed, 18 insertions(+), 18 deletions(-) diff --git a/techstack.md b/techstack.md index d4b63dab..1eaa69ec 100644 --- a/techstack.md +++ b/techstack.md @@ -3,21 +3,21 @@ ## Tech Stack CoderPush/activeadmin_addons is built on the following main stack: -- [Twilio SendGrid](http://sendgrid.com) – Transactional Email -- [CircleCI](https://circleci.com/) – Continuous Integration +- [JavaScript](https://developer.mozilla.org/en-US/docs/Web/JavaScript) – Languages - [Ruby](https://www.ruby-lang.org) – Languages - [Rails](http://rubyonrails.org/) – Frameworks (Full Stack) - [jQuery](http://jquery.com/) – Javascript UI Libraries -- [SQLite](http://www.sqlite.org/) – Databases -- [JavaScript](https://developer.mozilla.org/en-US/docs/Web/JavaScript) – Languages - [Active Admin](http://activeadmin.info/) – Database Tools -- [Webpack](http://webpack.js.org) – JS Build Tools / JS Task Runners -- [RuboCop](http://batsov.com/rubocop/) – Code Review +- [SQLite](http://www.sqlite.org/) – Databases - [Babel](http://babeljs.io/) – JavaScript Compilers +- [CircleCI](https://circleci.com/) – Continuous Integration +- [RuboCop](http://batsov.com/rubocop/) – Code Review +- [Webpack](http://webpack.js.org) – JS Build Tools / JS Task Runners +- [Webpacker](https://github.com/rails/webpacker) – JS Build Tools / JS Task Runners +- [Yarn](https://yarnpkg.com/) – Front End Package Manager - [rollup](http://rollupjs.org/) – JS Build Tools / JS Task Runners +- [Twilio SendGrid](http://sendgrid.com) – Transactional Email - [Shell](https://en.wikipedia.org/wiki/Shell_script) – Shells -- [Yarn](https://yarnpkg.com/) – Front End Package Manager -- [Webpacker](https://github.com/rails/webpacker) – JS Build Tools / JS Task Runners Full tech stack [here](/techstack.md) @@ -27,21 +27,21 @@ Full tech stack [here](/techstack.md) ## Tech Stack CoderPush/activeadmin_addons is built on the following main stack: -- Twilio SendGrid [Twilio SendGrid](http://sendgrid.com) – Transactional Email -- CircleCI [CircleCI](https://circleci.com/) – Continuous Integration +- JavaScript [JavaScript](https://developer.mozilla.org/en-US/docs/Web/JavaScript) – Languages - Ruby [Ruby](https://www.ruby-lang.org) – Languages - Rails [Rails](http://rubyonrails.org/) – Frameworks (Full Stack) - jQuery [jQuery](http://jquery.com/) – Javascript UI Libraries -- SQLite [SQLite](http://www.sqlite.org/) – Databases -- JavaScript [JavaScript](https://developer.mozilla.org/en-US/docs/Web/JavaScript) – Languages - Active Admin [Active Admin](http://activeadmin.info/) – Database Tools -- Webpack [Webpack](http://webpack.js.org) – JS Build Tools / JS Task Runners -- RuboCop [RuboCop](http://batsov.com/rubocop/) – Code Review +- SQLite [SQLite](http://www.sqlite.org/) – Databases - Babel [Babel](http://babeljs.io/) – JavaScript Compilers +- CircleCI [CircleCI](https://circleci.com/) – Continuous Integration +- RuboCop [RuboCop](http://batsov.com/rubocop/) – Code Review +- Webpack [Webpack](http://webpack.js.org) – JS Build Tools / JS Task Runners +- Webpacker [Webpacker](https://github.com/rails/webpacker) – JS Build Tools / JS Task Runners +- Yarn [Yarn](https://yarnpkg.com/) – Front End Package Manager - rollup [rollup](http://rollupjs.org/) – JS Build Tools / JS Task Runners +- Twilio SendGrid [Twilio SendGrid](http://sendgrid.com) – Transactional Email - Shell [Shell](https://en.wikipedia.org/wiki/Shell_script) – Shells -- Yarn [Yarn](https://yarnpkg.com/) – Front End Package Manager -- Webpacker [Webpacker](https://github.com/rails/webpacker) – JS Build Tools / JS Task Runners Full tech stack [here](/techstack.md) @@ -52,7 +52,7 @@ Full tech stack [here](/techstack.md) # Tech Stack File ![](https://img.stackshare.io/repo.svg "repo") [CoderPush/activeadmin_addons](https://github.com/CoderPush/activeadmin_addons)![](https://img.stackshare.io/public_badge.svg "public")

-|49
Tools used|01/05/24
Report generated| +|49
Tools used|02/29/24
Report generated| |------|------|
@@ -264,7 +264,7 @@ Full tech stack [here](/techstack.md) |[mimemagic](https://rubygems.org/mimemagic)|v0.3.5|05/14/21|Leandro Segovia |MIT|N/A| |[paperclip](https://rubygems.org/paperclip)|v6.1.0|02/17/20|Raimundo Herrera |MIT|N/A| |[pry-rails](https://rubygems.org/pry-rails)|v0.3.9|02/29/20|Brian John |MIT|N/A| -|[puma](https://rubygems.org/puma)|v5.3.1|02/29/20|Brian John |BSD-3-Clause|[CVE-2023-40175](https://github.com/advisories/GHSA-68xg-gqqm-vgj8) (Critical)
[CVE-2022-24790](https://github.com/advisories/GHSA-h99w-9q5r-gjq9) (Critical)
[CVE-2022-23634](https://github.com/advisories/GHSA-rmj8-8hhh-gv5h) (High)
[CVE-2021-41136](https://github.com/advisories/GHSA-48w2-rm65-62xx) (Low)| +|[puma](https://rubygems.org/puma)|v5.3.1|02/29/20|Brian John |BSD-3-Clause|[CVE-2023-40175](https://github.com/advisories/GHSA-68xg-gqqm-vgj8) (Critical)
[CVE-2022-24790](https://github.com/advisories/GHSA-h99w-9q5r-gjq9) (Critical)
[CVE-2022-23634](https://github.com/advisories/GHSA-rmj8-8hhh-gv5h) (High)
[CVE-2024-21647](https://github.com/advisories/GHSA-c2f4-cvqm-65w2) (Moderate)
[CVE-2021-41136](https://github.com/advisories/GHSA-48w2-rm65-62xx) (Low)| |[railties](https://rubygems.org/railties)|v5.2.4|02/29/20|Brian John |MIT|N/A| |[require_all](https://rubygems.org/require_all)|v3.0.0|10/29/20|Guillermo Aguirre |MIT|N/A| |[rspec-rails](https://rubygems.org/rspec-rails)|v3.9.0|05/26/21|Leandro Segovia |MIT|N/A|