ruby--ruby/spec/ruby/security/cve_2019_8322_spec.rb

require_relative '../spec_helper'

require 'yaml'
require 'rubygems'
require 'rubygems/safe_yaml'
require 'rubygems/commands/owner_command'

describe "CVE-2019-8322 is resisted by" do
  it "sanitising owner names" do
    command = Gem::Commands::OwnerCommand.new
    def command.rubygems_api_request(*args)
      Struct.new(:body).new("---\n- email: \"\e]2;nyan\a\"\n  handle: handle\n  id: id\n")
    end
    def command.with_response(response)
      yield response
    end
    command.should_receive(:say).with("Owners for gem: name")
    command.should_receive(:say).with("- .]2;nyan.")
    command.show_owners "name"
  end
end
Update to ruby/spec@e81b3cd git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@67361 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2019-03-28 14:22:29 +00:00			`require_relative '../spec_helper'`

			`require 'yaml'`
			`require 'rubygems'`
			`require 'rubygems/safe_yaml'`
			`require 'rubygems/commands/owner_command'`

Update to ruby/spec@b65d01f 2021-07-29 22:11:21 +02:00			`describe "CVE-2019-8322 is resisted by" do`
			`it "sanitising owner names" do`
			`command = Gem::Commands::OwnerCommand.new`
			`def command.rubygems_api_request(*args)`
			`Struct.new(:body).new("---\n- email: \"\e]2;nyan\a\"\n handle: handle\n id: id\n")`
Update to ruby/spec@e81b3cd git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@67361 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2019-03-28 14:22:29 +00:00			`end`
Update to ruby/spec@b65d01f 2021-07-29 22:11:21 +02:00			`def command.with_response(response)`
			`yield response`
			`end`
			`command.should_receive(:say).with("Owners for gem: name")`
			`command.should_receive(:say).with("- .]2;nyan.")`
			`command.show_owners "name"`
Update to ruby/spec@e81b3cd git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@67361 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2019-03-28 14:22:29 +00:00			`end`
			`end`