v0.1.6

Small changes to existing checks, as requested.

v0.1.5

New check from @mogigoma: duplicated words in a string are flagged, now. Thanks!

Two small output improvements:

• The "contains tabs" check has less terrible output
• If Pedant can't parse a file, the full error from the parser is now shown.

PASL and TASL support

Pedant can now check that make_array() has the right number of arguments, which normally is checked at runtime.

This release supports *.pasl and *.tasl file extensions, for PVS and LCE scripts (which are syntactically very similar to NASL). More to come!

0.1.3

This release was done incorrectly, not including some work from the 'master' branch.
It has been yanked from Rubygems.org index (but is still available if navigated to directly).

v0.1.2

• A few new checks, mostly contributed by new people!
  • Script accessing secret KB items without being signed
  • Using trusted functions without being signed
  • Using versions of getbyte/getword/etc. which don't respect the endianess from set_byte_order()
  • Sockets opened but never closed
  • Including audit.inc but never calling audit() directly
• Tests run on Ruby 2.3 and Ruby 2.2 now.
• Some documentation fixes

v0.1.0

A few new checks:

• Nonsense Comparison: comparing two literals, and comparing a variable against itself
• Uses Octal Integers: octal literals are confusing; this warns on all uses of them.
• Arity of Builtins: builtins like get_kb_item() only use one argument, but accept many.

Feedback welcome. Ideas for new checks or improving existing ones, anything that looks like a false positive, etc.

v0.0.9

Adds a number of missing plugin families

v0.0.8

Features

• Quiet mode for the check command. Add -q to use: pedant check -q my_awesome_exploit.nasl
• The tabs check now shows where the tabs are in the file.

Other
Various bugfixes (fatal errors actually stop the checks, parser exceptions for one file do not stop other files from being checked)

Notes
-q only works when it's after the check subcommand, which might be confusing. This will be addressed in a later release.

This gem is published on Rubygems and can be installed as follows:
gem install nasl-pedant

v0.0.6

Added a README.
Fix bug that prevented checking of multiple files at once
Fix running only a single check and its dependencies (the -c argument)

v0.0.5

Small improvements to output of existing checks, and three new ones:

• An assignment is made accidentally in a conditional (thanks @invisiblethreat!)
• A variable's name is "too similar" to another one (can catch typos and bad names)
• Arguments to the match and substring operators (=~, ><) are accidentally flipped

This gem is published on Rubygems and can be installed as follows:
gem install nasl-pedant