GHC 2017-07-06

2017-07-06 23:11:36, https://git.io/vQr7L in Homebrew/homebrew-core

googler 3.2
===========

Created with `brew bump-formula-pr`.

---

🤓

2017-07-06 23:09:40, https://git.io/vQr7t in jarun/googler

Sorry 😅 

2017-07-06 21:11:18, https://git.io/vQrK4 in jarun/googler

Also, now that we're not committing regularly, what about a release to flush out the new features? 

2017-07-06 21:09:27, https://git.io/vQrKB in jarun/googler

Add --unfilter option
=====================

Since two people requested this (#188, #193), let's just add this to prevent further requests.

2017-07-06 17:48:53, https://git.io/vQwjF in Homebrew/homebrew-core

Nothing is actually written, it's just a preemptive check by bundler. I won't worry about it.

2017-07-06 17:37:15, https://git.io/vQwjb in Homebrew/homebrew-core

>     `/Users/joe` is not writable.
>     Bundler will use `/tmp/bundler/home/joe' as your home directory temporarily.

Well, that's just a warning.

2017-07-06 17:33:07, https://git.io/vQwjA in Homebrew/homebrew-core

> Looks it's caused by HOMEBREW_ENV_FILTERING=1 which I have set so we can run into problems like this before they become user facing problems.

Okay, but why is a requirement filtered out? Smells like a bug.

2017-07-06 17:32:04, https://git.io/vQwjx in Homebrew/homebrew-core

Do you have brewed ruby and is it the first one on your PATH? Looks like your ruby is `/usr/bin/ruby`.

Initially I wrote `depends_on "ruby"` and had `... bundle exec #{Formula["ruby"].opt_prefix}/bin/ruby ...` in the `bin/"wpscan"` in the script, but then I realized I had to use `depends_on :ruby => ...` so I can't assume the ruby formula.

2017-07-06 16:53:04, https://git.io/vQwFv in Homebrew/homebrew-core

For the record, here's a link to an outstanding discussion that's hidden as "outdated": https://github.com/Homebrew/homebrew-core/pull/15345#discussion_r125931033.

2017-07-06 16:51:23, https://git.io/vQwFf in Homebrew/homebrew-core

I put `Gemfile.lock` in a patch along with the `xmlrpc/client` fix for Ruby 2.4+. The patch is hosted in a random gist for now. I'll submit it to formula-patches if this formula is to be accepted and there won't be a release soon.

2017-07-06 16:49:38, https://git.io/vQwFJ in Homebrew/homebrew-core

https://github.com/wpscanteam/wpscan/issues/1107

2017-07-06 16:48:37, https://git.io/vQwFU in wpscanteam/wpscan

Time to cut a release?
======================

I'm [packaging wpscan for Homebrew](https://github.com/Homebrew/homebrew-core/pull/15345), and the current latest release (2.9.2) doesn't contain a `Gemfile.lock`, which is not great for reproducibility. Also, 2.9.2 requires a small `xmlrpc/client` patch to work with Ruby 2.4+. Would you please consider cutting a new release?

2017-07-06 15:15:17, https://git.io/vQwMH in Homebrew/homebrew-core

There's no Gemfile.lock in the current stable.

2017-07-06 15:13:53, https://git.io/vQwMQ in Homebrew/homebrew-core

`wpscan --update` updates the databases of vulnerabilities and stuff (forgot a comment here). The exit status is zero even if you're already up-to-date. I suppose it will exit non-zero if you're not connected to the Internet, but since this is `post_install` does it really matter?

2017-07-06 15:11:29, https://git.io/vQwM7 in Homebrew/homebrew-core

It does.

```
$ ls -1 /usr/local/opt/wpscan/libexec/gems
addressable-2.5.1
bundler-1.15.1
ethon-0.10.1
ffi-1.9.18
mini_portile2-2.2.0
nokogiri-1.8.0
public_suffix-2.0.5
ruby-progressbar-1.8.1
terminal-table-1.8.0
typhoeus-1.1.2
unicode-display_width-1.3.0
yajl-ruby-1.3.0
```

2017-07-06 15:10:51, https://git.io/vQwM5 in Homebrew/homebrew-core

It scans wordpress.org.

```
$ wpscan --url https://wordpress.org/
/usr/local/Cellar/wpscan/2.9.2/libexec/lib/common/hacks.rb:40: warning: constant ::Fixnum is deprecated
_______________________________________________________________
        __          _______   _____
        \ \        / /  __ \ / ____|
         \ \  /\  / /| |__) | (___   ___  __ _ _ __ ®
          \ \/  \/ / |  ___/ \___ \ / __|/ _` | '_ \
           \  /\  /  | |     ____) | (__| (_| | | | |
            \/  \/   |_|    |_____/ \___|\__,_|_| |_|

        WordPress Security Scanner by the WPScan Team
                       Version 2.9.2
          Sponsored by Sucuri - https://sucuri.net
   @_WPScan_, @ethicalhack3r, @erwan_lr, pvdl, @_FireFart_
_______________________________________________________________

[+] URL: https://wordpress.org/
[+] Started: Thu Jul  6 11:09:59 2017

[+] robots.txt available under: 'https://wordpress.org/robots.txt'
[+] Interesting entry from robots.txt: https://wordpress.org/search
[+] Interesting entry from robots.txt: https://wordpress.org/support/search.php
[+] Interesting entry from robots.txt: https://wordpress.org/extend/plugins/search.php
[+] Interesting entry from robots.txt: https://wordpress.org/plugins/search.php
[+] Interesting entry from robots.txt: https://wordpress.org/extend/themes/search.php
[+] Interesting entry from robots.txt: https://wordpress.org/themes/search.php
[+] Interesting entry from robots.txt: https://wordpress.org/support/rss
[+] Interesting entry from robots.txt: https://wordpress.org/archive/
[+] Interesting header: SERVER: nginx
[+] Interesting header: STRICT-TRANSPORT-SECURITY: max-age=360
[+] Interesting header: X-FRAME-OPTIONS: SAMEORIGIN
[+] Interesting header: X-NC: HIT lax 250
[+] Interesting header: X-OLAF: ⛄
[+] This site seems to be a multisite (http://codex.wordpress.org/Glossary#Multisite)
[+] This site has 'Must Use Plugins' (http://codex.wordpress.org/Must_Use_Plugins)
[+] XML-RPC Interface available under: https://wordpress.org/xmlrpc.php

[i] WordPress version can not be detected

[+] Enumerating plugins from passive detection ...
[+] No plugins found

[+] Finished: Thu Jul  6 11:10:03 2017
[+] Requests Done: 64
[+] Memory used: 8.922 MB
[+] Elapsed time: 00:00:03
```

2017-07-06 15:10:28, https://git.io/vQwMd in Homebrew/homebrew-core

Good catch.

2017-07-06 14:42:28, https://git.io/vQwaC in Homebrew/homebrew-core

wpscan 2.9.2 (new formula)
==========================

- [x] Have you followed the [guidelines for contributing](https://github.com/Homebrew/homebrew-core/blob/master/CONTRIBUTING.md)?
- [x] Have you checked that there aren't other open [pull requests](https://github.com/Homebrew/homebrew-core/pulls) for the same formula update/change?
- [x] Have you built your formula locally with `brew install --build-from-source <formula>`, where `<formula>` is the name of the formula you're submitting?
- [x] Does your build pass `brew audit --strict <formula>` (after doing `brew install <formula>`)?

-----

Pretty popular WordPress scanner. 2540 stars at the time of submission. 📰🔎