-
-
Save kamilhism/4509057 to your computer and use it in GitHub Desktop.
Revisions
-
Mark Pundsack revised this gist
Jan 11, 2013 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,5 +1,5 @@ ## The quick-and-nasty CVE-2013-0156 Heroku inspector! ## Originally brought to you by @elliottkember with changes by @markpundsack @ Heroku ## Download and run using: ## ruby heroku-CVE-2013-0156.rb -
Jan 11, 2013 . 1 changed file with 2 additions and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,6 +1,7 @@ ## The quick-and-nasty CVE-2013-0156 Heroku inspector! ## Brought to you by @elliottkember. ## Download and run using: ## ruby heroku-CVE-2013-0156.rb `heroku list`.split("\n").each do |app| app = app.strip -
Jan 10, 2013 . 1 changed file with 2 additions and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -16,8 +16,9 @@ rails_path = `heroku run bundle show rails --app #{app}`.split("\n")[-1] rails_version_number = rails_path.split("rails-")[1] rails_version_number = rails_version_number.strip unless rails_version_number.nil? unless ["3.2.11", "3.1.10", "3.0.19", "2.3.15"].include?(rails_version_number) or rails_version_number.nil? puts "Uh oh! #{app} has #{rails_version_number}." else puts "..." -
elliottkember revised this gist
Jan 9, 2013 . 1 changed file with 4 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,3 +1,7 @@ ## The quick-and-nasty CVE-2013-0156 Heroku inspector! ## Brought to you by @elliottkember. ## Run this in an empty directory for best results. `heroku list`.split("\n").each do |app| app = app.strip -
Jan 9, 2013 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -14,7 +14,7 @@ rails_version_number = rails_path.split("rails-")[1] unless ["3.2.11", "3.1.10", "3.0.19", "2.3.15"].include?(rails_version_number) or rails_version_number == "" puts "Uh oh! #{app} has #{rails_version_number}." else puts "..." end -
Jan 9, 2013 . 1 changed file with 9 additions and 15 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,7 +1,3 @@ `heroku list`.split("\n").each do |app| app = app.strip @@ -14,15 +10,13 @@ # Blank lines can be ommitted. next if app == "" rails_path = `heroku run bundle show rails --app #{app}`.split("\n")[-1] rails_version_number = rails_path.split("rails-")[1] unless ["3.2.11", "3.1.10", "3.0.19", "2.3.15"].include?(rails_version_number) or rails_version_number == "" puts "Uh oh! #{app_name} has #{rails_version_number}." else puts "..." end end -
Jan 9, 2013 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -16,7 +16,7 @@ puts "" puts "Cloning #{app}..." `git clone -q --depth=1 git@heroku.com:#{app}.git` end Dir.glob("*").each do |app_name| -
Jan 9, 2013 . 1 changed file with 2 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -14,6 +14,8 @@ # Blank lines can be ommitted. next if app == "" puts "" puts "Cloning #{app}..." `git clone --depth=1 git@heroku.com:#{app}.git` end -
Jan 9, 2013 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,26 @@ ## The quick-and-nasty CVE-2013-0156 Heroku inspector! ## Brought to you by @elliottkember. ## Run this in an empty directory for best results. `heroku list`.split("\n").each do |app| app = app.strip # Some "heroku apps" lines have === formatting for grouping. They're not apps. next if app[0..2] == "===" # Some are appended by owner emails app = app.split(" ")[0].to_s.strip # Blank lines can be ommitted. next if app == "" `git clone --depth=1 git@heroku.com:#{app}.git` end Dir.glob("*").each do |app_name| version = `cat #{app_name}/Gemfile.lock |grep " rails (="`.strip version = version.split(" (= ")[1].to_s.gsub(")", "").gsub("\n", "") unless ["3.2.11", "3.1.10", "3.0.19", "2.3.15"].include?(version) or version == "" puts "Uh oh! #{app_name} has #{version}." end end
Mark Pundsack
revised
this gist