diff --git a/techstack.md b/techstack.md new file mode 100644 index 0000000..27d4d81 --- /dev/null +++ b/techstack.md @@ -0,0 +1,120 @@ + +
+ +# Tech Stack File +![](https://img.stackshare.io/repo.svg "repo") [stackshareio/sidekiq-statistic](https://github.com/stackshareio/sidekiq-statistic)![](https://img.stackshare.io/public_badge.svg "public") +

+|15
Tools used|03/01/24
Report generated| +|------|------| +
+ +## Languages (3) + + + + + + + + +
+ CSS 3 +
+ CSS 3 +
+ +		 + JavaScript +
+ JavaScript +
+ +		 + Ruby +
+ Ruby +
+ +
+ +## DevOps (4) + + + + + + + + + + +
+ Git +
+ Git +
+ +		 + RubyGems +
+ RubyGems +
+ +		 + Travis CI +
+ Travis CI +
+ +		 + npm +
+ npm +
+ +
+ + +## Open source packages (8) + +## RubyGems (8) + +|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| +|:------|:------|:------|:------|:------|:------| +|[minitest](https://rubygems.org/minitest)|v5.0|05/28/15|Anton Davydov |MIT|N/A| +|[minitest-utils](https://rubygems.org/minitest-utils)|N/A|05/28/15|Anton Davydov |MIT|N/A| +|[mocha](https://rubygems.org/mocha)|N/A|05/28/15|Anton Davydov |MIT,BSD-2-Clause|N/A| +|[rack](https://rubygems.org/rack)|v1.6.4|09/29/16|Patrick Roby |MIT|[CVE-2022-30123](https://github.com/advisories/GHSA-wq4h-7r42-5hrr) (Critical)
[CVE-2023-27530](https://github.com/advisories/GHSA-3h57-hmj3-gj3p) (High)
[CVE-2020-8184](https://github.com/advisories/GHSA-j6w9-fv6q-3q52) (High)
[CVE-2022-44570](https://github.com/advisories/GHSA-65f5-mfpf-vfhj) (High)
[CVE-2022-30122](https://github.com/advisories/GHSA-hxqx-xwvh-44m2) (High)
[CVE-2020-8161](https://github.com/advisories/GHSA-5f9h-9pjv-v6j7) (High)
[CVE-2019-16782](https://github.com/advisories/GHSA-hrqr-hxpp-chr3) (Moderate)
[CVE-2018-16471](https://github.com/advisories/GHSA-5r2p-j47h-mhpg) (Moderate)
[CVE-2024-25126](https://github.com/advisories/GHSA-22f2-v57c-j9cx) (Low)
[CVE-2024-26146](https://github.com/advisories/GHSA-54rr-7fvw-6x8f) (Low)
[CVE-2024-26141](https://github.com/advisories/GHSA-xj5v-6v4g-jfw6) (Low)| +|[rack-test](https://rubygems.org/rack-test)|N/A|09/29/16|Patrick Roby |MIT|N/A| +|[rake](https://rubygems.org/rake)|N/A|05/28/15|Anton Davydov |MIT|N/A| +|[sidekiq](https://rubygems.org/sidekiq)|v5.0|05/03/17|Damjan Znidarsic |LGPL-3.0|[CVE-2022-23837](https://github.com/advisories/GHSA-jrfj-98qg-qjgv) (High)
[CVE-2023-26141](https://github.com/advisories/GHSA-3qc2-v3hp-6cv8) (Moderate)
[CVE-2021-30151](https://github.com/advisories/GHSA-grh7-935j-hg6w) (Moderate)| +|[tilt](https://rubygems.org/tilt)|v2.0|09/14/16|Patrick Roby |MIT|N/A| + +
+
+ +Generated via [Stack File](https://github.com/marketplace/stack-file) diff --git a/techstack.yml b/techstack.yml new file mode 100644 index 0000000..857e68c --- /dev/null +++ b/techstack.yml @@ -0,0 +1,286 @@ +repo_name: stackshareio/sidekiq-statistic +report_id: 215be6e041fcefa7d79b4d8b28a90a2c +version: 0.1 +repo_type: Public +timestamp: '2024-03-01T20:36:31+00:00' +requested_by: jeromedalbert +provider: github +branch: master +detected_tools_count: 15 +tools: +- name: CSS 3 + description: The latest evolution of the Cascading Style Sheets language + website_url: https://developer.mozilla.org/en-US/docs/Web/CSS/CSS3 + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/6727/css.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic + detection_source: Repo Metadata +- name: JavaScript + description: Lightweight, interpreted, object-oriented language with first-class + functions + website_url: https://developer.mozilla.org/en-US/docs/Web/JavaScript + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/1209/javascript.jpeg + detection_source_url: https://github.com/stackshareio/sidekiq-statistic + detection_source: Repo Metadata +- name: Ruby + description: A dynamic, interpreted, open source programming language with a focus + on simplicity and productivity + website_url: https://www.ruby-lang.org + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/989/ruby.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic + detection_source: Repo Metadata +- name: Git + description: Fast, scalable, distributed revision control system + website_url: http://git-scm.com/ + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Version Control System + image_url: https://img.stackshare.io/service/1046/git.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic + detection_source: Repo Metadata +- name: RubyGems + description: Easily download, install, and use ruby software packages on your system + website_url: https://rubygems.org/ + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Package Managers + image_url: https://img.stackshare.io/service/12795/5jL6-BA5_400x400.jpeg + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Anton Davydov + last_updated_on: 2015-03-03 20:40:47.000000000 Z +- name: Travis CI + description: A hosted continuous integration service for open source and private + projects + website_url: http://travis-ci.com/ + open_source: false + hosted_saas: true + category: Build, Test, Deploy + sub_category: Continuous Integration + image_url: https://img.stackshare.io/service/460/Lu6cGu0z_400x400.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/.travis.yml + detection_source: ".travis.yml" + last_updated_by: Anton Davydov + last_updated_on: 2015-03-03 20:40:47.000000000 Z +- name: npm + description: The package manager for JavaScript. + website_url: https://www.npmjs.com/ + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Front End Package Manager + image_url: https://img.stackshare.io/service/1120/lejvzrnlpb308aftn31u.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Anton Davydov + last_updated_on: 2015-03-03 20:40:47.000000000 Z +- name: minitest + description: Minitest provides a complete suite of testing facilities supporting + TDD, BDD, mocking, and benchmarking + package_url: https://rubygems.org/minitest + version: '5.0' + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18818/default_f36df1cfa9ff6061d7f9b4879088be8538581c49.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Anton Davydov + last_updated_on: 2015-05-28 09:31:15.000000000 Z +- name: minitest-utils + description: Some utilities for your Minitest day-to-day usage + package_url: https://rubygems.org/minitest-utils + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/19376/default_63483bd20cbd1c069543c0b924fcbd88fd2c7de1.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Anton Davydov + last_updated_on: 2015-05-28 09:31:15.000000000 Z +- name: mocha + description: Mocking and stubbing library with JMock/SchMock syntax + package_url: https://rubygems.org/mocha + license: MIT,BSD-2-Clause + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18834/default_0e382579c2f0564abd86ba662410379f1d623a9c.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Anton Davydov + last_updated_on: 2015-05-28 09:31:15.000000000 Z +- name: rack + description: Rack provides a minimal, modular and adaptable interface for developing + web applications in Ruby + package_url: https://rubygems.org/rack + version: 1.6.4 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18839/default_db5cfb0d85d9fd8bfb40a863581417a2a57791ab.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Patrick Roby + last_updated_on: 2016-09-29 00:30:16.000000000 Z + vulnerabilities: + - name: Possible shell escape sequence injection vulnerability in Rack + cve_id: CVE-2022-30123 + cve_url: https://github.com/advisories/GHSA-wq4h-7r42-5hrr + detected_date: May 28 + severity: critical + first_patched: 2.0.9.1 + - name: Rack has possible DoS Vulnerability in Multipart MIME parsing + cve_id: CVE-2023-27530 + cve_url: https://github.com/advisories/GHSA-3h57-hmj3-gj3p + detected_date: Mar 9 + severity: high + first_patched: 2.0.9.3 + - name: Rack allows Percent-encoded cookies to overwrite existing prefixed cookie + names + cve_id: CVE-2020-8184 + cve_url: https://github.com/advisories/GHSA-j6w9-fv6q-3q52 + detected_date: Aug 22 + severity: high + first_patched: 2.1.4 + - name: Denial of service via header parsing in Rack + cve_id: CVE-2022-44570 + cve_url: https://github.com/advisories/GHSA-65f5-mfpf-vfhj + detected_date: Jan 19 + severity: high + first_patched: 2.0.9.2 + - name: Denial of Service Vulnerability in Rack Multipart Parsing + cve_id: CVE-2022-30122 + cve_url: https://github.com/advisories/GHSA-hxqx-xwvh-44m2 + detected_date: May 28 + severity: high + first_patched: 2.0.9.1 + - name: Directory traversal in Rack::Directory app bundled with Rack + cve_id: CVE-2020-8161 + cve_url: https://github.com/advisories/GHSA-5f9h-9pjv-v6j7 + detected_date: Aug 22 + severity: high + first_patched: 2.1.3 + - name: Possible Information Leak / Session Hijack Vulnerability in Rack + cve_id: CVE-2019-16782 + cve_url: https://github.com/advisories/GHSA-hrqr-hxpp-chr3 + detected_date: Aug 22 + severity: moderate + first_patched: 1.6.12 + - name: Rack vulnerable to Cross-site Scripting + cve_id: CVE-2018-16471 + cve_url: https://github.com/advisories/GHSA-5r2p-j47h-mhpg + detected_date: Aug 22 + severity: moderate + first_patched: 1.6.11 + - name: Rack vulnerable to ReDoS in content type parsing (2nd degree polynomial) + cve_id: CVE-2024-25126 + cve_url: https://github.com/advisories/GHSA-22f2-v57c-j9cx + detected_date: Feb 29 + severity: low + first_patched: 2.2.8.1 + - name: Rack Header Parsing leads to Possible Denial of Service Vulnerability + cve_id: CVE-2024-26146 + cve_url: https://github.com/advisories/GHSA-54rr-7fvw-6x8f + detected_date: Feb 29 + severity: low + first_patched: 2.0.9.4 + - name: Rack has possible DoS Vulnerability with Range Header + cve_id: CVE-2024-26141 + cve_url: https://github.com/advisories/GHSA-xj5v-6v4g-jfw6 + detected_date: Feb 29 + severity: low + first_patched: 2.2.8.1 +- name: rack-test + description: Rack::Test is a small, simple testing API for Rack apps + package_url: https://rubygems.org/rack-test + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18845/default_db5cfb0d85d9fd8bfb40a863581417a2a57791ab.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Patrick Roby + last_updated_on: 2016-09-29 00:30:16.000000000 Z +- name: rake + description: Rake is a Make-like program implemented in Ruby + package_url: https://rubygems.org/rake + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18812/default_f582e4648f4682adb72d2b201218cda7f8e894ac.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Anton Davydov + last_updated_on: 2015-05-28 09:31:15.000000000 Z +- name: sidekiq + description: Simple, efficient background processing for Ruby + package_url: https://rubygems.org/sidekiq + version: '5.0' + license: LGPL-3.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18948/default_611c0295e32d1242505cbb0d769e587d60851eda.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Damjan Znidarsic + last_updated_on: 2017-05-03 10:51:40.000000000 Z + vulnerabilities: + - name: Denial of service in sidekiq + cve_id: CVE-2022-23837 + cve_url: https://github.com/advisories/GHSA-jrfj-98qg-qjgv + detected_date: Jan 28 + severity: high + first_patched: 5.2.10 + - name: sidekiq Denial of Service vulnerability + cve_id: CVE-2023-26141 + cve_url: https://github.com/advisories/GHSA-3qc2-v3hp-6cv8 + detected_date: Sep 15 + severity: moderate + first_patched: 6.5.10 + - name: Cross-site Scripting in Sidekiq + cve_id: CVE-2021-30151 + cve_url: https://github.com/advisories/GHSA-grh7-935j-hg6w + detected_date: Oct 7 + severity: moderate + first_patched: 5.2.0 +- name: tilt + description: Generic interface to multiple Ruby template engines + package_url: https://rubygems.org/tilt + version: '2.0' + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: RubyGems Packages + image_url: https://img.stackshare.io/package/18917/default_aa081534cc9e2d100412a763ab69743f22c56ceb.png + detection_source_url: https://github.com/stackshareio/sidekiq-statistic/blob/master/sidekiq-statistic.gemspec + detection_source: sidekiq-statistic.gemspec + last_updated_by: Patrick Roby + last_updated_on: 2016-09-14 17:43:12.000000000 Z