noobpk · noobpk · Mar 6, 2024 · Dec 9, 2023 · Mar 6, 2024 · Mar 6, 2024
diff --git a/.trunk/.gitignore b/.trunk/.gitignore
@@ -0,0 +1,9 @@
+*out
+*logs
+*actions
+*notifications
+*tools
+plugins
+user_trunk.yaml
+user.yaml
+tmp
diff --git a/.trunk/configs/.isort.cfg b/.trunk/configs/.isort.cfg
@@ -0,0 +1,2 @@
+[settings]
+profile=black
diff --git a/.trunk/configs/.markdownlint.yaml b/.trunk/configs/.markdownlint.yaml
@@ -0,0 +1,10 @@
+# Autoformatter friendly markdownlint config (all formatting rules disabled)
+default: true
+blank_lines: false
+bullet: false
+html: false
+indentation: false
+line_length: false
+spaces: false
+url: false
+whitespace: false
diff --git a/.trunk/configs/.yamllint.yaml b/.trunk/configs/.yamllint.yaml
@@ -0,0 +1,7 @@
+rules:
+  quoted-strings:
+    required: only-when-needed
+    extra-allowed: ["{|}"]
+  key-duplicates: {}
+  octal-values:
+    forbid-implicit-octal: true
diff --git a/.trunk/configs/ruff.toml b/.trunk/configs/ruff.toml
@@ -0,0 +1,5 @@
+# Generic, formatter-friendly config.
+select = ["B", "D3", "E", "F"]
+
+# Never enforce `E501` (line length violations). This should be handled by formatters.
+ignore = ["E501"]
diff --git a/.trunk/configs/svgo.config.js b/.trunk/configs/svgo.config.js
@@ -0,0 +1,14 @@
+module.exports = {
+  plugins: [
+    {
+      name: "preset-default",
+      params: {
+        overrides: {
+          removeViewBox: false, // https://github.com/svg/svgo/issues/1128
+          sortAttrs: true,
+          removeOffCanvasPaths: true,
+        },
+      },
+    },
+  ],
+};
diff --git a/.trunk/trunk.yaml b/.trunk/trunk.yaml
@@ -0,0 +1,35 @@
+# This file controls the behavior of Trunk: https://docs.trunk.io/cli
+# To learn more about the format of this file, see https://docs.trunk.io/reference/trunk-yaml
+version: 0.1
+cli:
+  version: 1.20.1
+# Trunk provides extensibility via plugins. (https://docs.trunk.io/plugins)
+plugins:
+  sources:
+    - id: trunk
+      ref: v1.4.4
+      uri: https://github.com/trunk-io/plugins
+# Many linters and tools depend on runtimes - configure them here. (https://docs.trunk.io/runtimes)
+runtimes:
+  enabled:
+    - [email protected]
+    - [email protected]
+# This is the section where you manage your linters. (https://docs.trunk.io/check/configuration)
+lint:
+  enabled:
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - git-diff-check
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
+    - [email protected]
diff --git a/README.md b/README.md
@@ -111,3 +111,7 @@ Interested in contributing? Check out the contributing guidelines. Please note t
 ## Theme
 
 https://appseed.us/product/datta-able/flask/
+
+## Research Publication
+
+`Phuc Le-Thanh, Tuan Le-Anh, and Quan Le-Trung. 2023. Research and Development of a Smart Solution for Runtime Web Application Self-Protection. In Proceedings of the 12th International Symposium on Information and Communication Technology (SOICT '23). Association for Computing Machinery, New York, NY, USA, 304–311. https://doi.org/10.1145/3628797.3628901`
diff --git a/gemini-python/gemini_self_protector/src/gemini_self_protector/_behavior.py b/gemini-python/gemini_self_protector/src/gemini_self_protector/_behavior.py
@@ -1,5 +1,5 @@
-from flask import session, request
-from ._logger import logger
+from flask import request, session
+
 from ._gemini import _Gemini
 from ._utils import _Utils
 
@@ -19,16 +19,16 @@ def end_user(action) -> None:
         size = request.content_length
         useragent = request.user_agent.string
         behavior_id = _Gemini.store_gemini_behavior_log(
-            _ipaddress = end_user_ip,
-            _end_user_session = g_session,
-            _endpoint = action,
-            _useragent = useragent,
-            _method = method,
-            _status_code = None,
-            _start_time = None,
-            _end_time = None,
-            _elapsed_time = None,
-            _size = size,
-            _performance = None,
+            _ipaddress=end_user_ip,
+            _end_user_session=g_session,
+            _endpoint=action,
+            _useragent=useragent,
+            _method=method,
+            _status_code=None,
+            _start_time=None,
+            _end_time=None,
+            _elapsed_time=None,
+            _size=size,
+            _performance=None,
         )
         return behavior_id
diff --git a/gemini-python/gemini_self_protector/src/gemini_self_protector/_config.py b/gemini-python/gemini_self_protector/src/gemini_self_protector/_config.py
@@ -1,21 +1,21 @@
+import csv
+import json
 import os
+
 from sqlalchemy import create_engine
 from sqlalchemy.orm import sessionmaker
+
 from ._logger import logger
-import json
-import csv
-from ipaddress import ip_address
-from datetime import datetime
 from ._model import (
     Base,
-    tb_User,
-    tb_Config,
-    tb_Summary,
-    tb_RequestLog,
     tb_AccessControlList,
+    tb_BehaviorLog,
+    tb_Config,
     tb_Dependency,
     tb_Feedback,
-    tb_BehaviorLog,
+    tb_RequestLog,
+    tb_Summary,
+    tb_User,
 )
 
 
@@ -28,6 +28,7 @@ def __init__(self, working_directory):
             Session = sessionmaker(bind=engine)
             session = Session()
 
+            # trunk-ignore(bandit/B106)
             user = tb_User(username="superadmin", password="")
             config = tb_Config(
                 is_install=0,
@@ -354,7 +355,7 @@ def get_tb_acl() -> None:
             return acl
         except Exception as e:
             logger.error(
-                "[x_x] Something went wrong, please check your error message.\n Message - {0}".format(
+                "[x_x] Something went wrong at {0}, please check your error message.\n Message - {1}".format(
                     "_Config.get_tb_acl", e
                 )
             )
@@ -449,7 +450,7 @@ def get_tb_dependency() -> None:
             return dependency
         except Exception as e:
             logger.error(
-                "[x_x] Something went wrong, please check your error message.\n Message - {0}".format(
+                "[x_x] Something went wrong at {0}, please check your error message.\n Message - {1}".format(
                     "_Config.get_tb_dependency", e
                 )
             )
@@ -477,8 +478,8 @@ def get_tb_feedback() -> None:
             return feedback
         except Exception as e:
             logger.error(
-                "[x_x] Something went wrong, please check your error message.\n Message - {0}".format(
-                    "_Config.get_tb_dependency", e
+                "[x_x] Something went wrong at {0}, please check your error message.\n Message - {1}".format(
+                    "_Config.get_tb_feedback", e
                 )
             )
 
@@ -516,7 +517,7 @@ def export_tb_feedback() -> str:
             return csv_file_path
         except Exception as e:
             logger.error(
-                "[x_x] Something went wrong, please check your error message.\n Message - {0}".format(
+                "[x_x] Something went wrong at {0}, please check your error message.\n Message - {1}".format(
                     "_Config.export_tb_feedback", e
                 )
             )
diff --git a/gemini-python/gemini_self_protector/src/gemini_self_protector/_gemini.py b/gemini-python/gemini_self_protector/src/gemini_self_protector/_gemini.py
@@ -1,14 +1,11 @@
-import os
-import json
-from functools import wraps
-from ._logger import logger
 from flask import request
-from ._utils import _Utils, _Validator
-from ._template import _Template
+
+from ._audit import _Audit
 from ._config import _Config
+from ._logger import logger
 from ._protect import _Protect
-from ._audit import _Audit
-from datetime import datetime, timezone
+from ._template import _Template
+from ._utils import _Utils, _Validator
 
 
 class _Gemini(object):