brew/4.3.21 package update #28200
brew/4.3.21 package update #28200
Conversation
octo-sts
bot
commented
Sep 12, 2024
Signed-off-by: wolfi-bot <[email protected]>
Package brew: Click to expand/collapsePackage brew: Package brew-doc: Click to expand/collapsePackage brew-doc: bincapz found differences: Click to expand/collapseDeleted: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/shims/mac/super/m4 [
|
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| -MEDIUM | shell/exec | executes shell | /bin/bash |
| -LOW | ref/path/usr/bin | path reference within /usr/bin | /usr/bin/gm4 /usr/bin/m4 |
| -LOW | ref/site/url | contains embedded HTTPS URLs | Homebrew/homebrew-core#165388 |
Deleted: brew/var/lib/db/sbom/brew-4.3.20-r0.spdx.json [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| -MEDIUM | net/download | download files | downloadLocation |
| -LOW | ref/site/url | contains embedded HTTPS URLs | https://spdx.org/spdxdocs/chainguard/melange/9b218c27cd4c18fc566a7f912bce |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/synchronization/abstract_struct.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | fd/multiplex | monitor multiple file descriptors | select |
| +LOW | ref/site/url | contains embedded HTTPS URLs | jruby/jruby#5229 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/Striped64$HashCode.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/AtomicReferenceLibrary$2.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/async.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://en.wikipedia.org/wiki/Actor_model |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$ObjectByObjectToDouble.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$Segment.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/synchronization/lockable_object.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://ruby-doc.org/core/Thread.html |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | exec/shell_command | execute a shell command | system |
| +MEDIUM | ref/words/agent | references an 'agent' | agent |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://linux.die.net/man/3/clock_gettime |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$3.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/atomic/atomic_markable_reference.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/7/docs/api/java/util/concurrent/atomic/Ato |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/AtomicReferenceLibrary$JRubyReference8.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/utility/processor_counter.rb [⚠️ MEDIUM]
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$ObjectByObjectToInt.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$CHMView.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$ValueIterator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/Striped64$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/thread_safe/util/striped64.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://gee.cs.oswego.edu/cgi-bin/viewcvs.cgi/jsr166/src/jsr166e/Striped6 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/promise.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://promises-aplus.github.io/promises-spec/ http://wiki.commonjs.org/wiki/Promises/A |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/LongAdder.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$2.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/retryable_download.rb [⚠️ MEDIUM]
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$KeyIterator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/Striped64$ThreadHashCode.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/thread_safe/util/adder.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://gee.cs.oswego.edu/cgi-bin/viewcvs.cgi/jsr166/src/jsr166e/LongAdde |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$ValuesView.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$ObjectToLong.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$DoubleByDoubleToDouble.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$EntryIterator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/Striped64$HashCode.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$Generator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$Generator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$ObjectByObjectToLong.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$JRuby$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$KeySetView.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JRubyMapBackendLibrary$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/scheduled_task.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | net/http/request | makes HTTP requests | open-uri |
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://www.alphavantage.co/query?function=TIME_SERIES_MONTHLY |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JRubyMapBackendLibrary.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JRubyMapBackendLibrary$JRubyMapBackend$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$ObjectByObjectToInt.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166y/ThreadLocalRandom.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/Striped64.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/AtomicReferenceLibrary.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$ObjectByObjectToLong.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaSemaphoreLibrary$JavaSemaphore$JRubySemaphore.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/opaque | opaque binary | |
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaSemaphoreLibrary$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$Traverser.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaAtomicBooleanLibrary$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/atom.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://clojure.org/atoms http://clojure.org/state |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$ObjectToDouble.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$CHMView.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$LongToLong.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/Striped64$Cell.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/executor/single_thread_executor.rb [✅ LOW]
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/mutable_struct.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://ruby-doc.org/core/Struct.html |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$ValuesView.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaAtomicBooleanLibrary$JavaAtomicBoolean.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/opaque | opaque binary | |
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/thread_safe/util/xor_shift_random.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/bitwise_math | uses bitwise math in both directions | x << 1 x >> 14 x >> 3 x >> 54 |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://www.jstatsoft.org/v08/i14/paper |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$Spliterator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$Spliterator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$DoubleToDouble.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$IntToInt.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/hash.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://bugs.ruby-lang.org/issues/19237 ruby-concurrency/concurrent-ruby#929 ruby/ruby@ffd52412ab |
Added: brew/var/lib/db/sbom/brew-4.3.21-r0.spdx.json [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | net/download | download files | downloadLocation |
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://spdx.org/spdxdocs/chainguard/melange/e7646586d7a63f51ea2d5fe0a5bd |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$AbstractLockableObject.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/opaque | opaque binary | |
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/tuple.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://en.wikipedia.org/wiki/Tuple |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$KeySetView.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$ObjectToDouble.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/executor/serialized_execution_delegator.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://www.ruby-doc.org/stdlib-2.1.2/libdoc/delegate/rdoc/SimpleDelegato |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/immutable_struct.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | fd/multiplex | monitor multiple file descriptors | select |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://ruby-doc.org/core/Struct.html |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$ObjectByObjectToDouble.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMap$BiFun.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$Segment.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMap$Fun.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaAtomicFixnumLibrary$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$ValueIterator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$ObjectToInt.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$TreeNode.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/executor/thread_pool_executor.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/7/docs/api/java/util/concurrent/ThreadPool |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/executor/cached_thread_pool.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/8/docs/api/java/util/concurrent/Executors. |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$TreeBin.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMap.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaAtomicFixnumLibrary.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/settable_struct.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | fd/multiplex | monitor multiple file descriptors | select |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://en.wikipedia.org/wiki/Final_ http://ruby-doc.org/core/Struct.html |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JRubyMapBackendLibrary$JRubyMapBackend.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concern/observable.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://en.wikipedia.org/wiki/Observer_pattern |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$TreeNode.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaSemaphoreLibrary.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$JRuby.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaAtomicFixnumLibrary$JavaAtomicFixnum.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JRubyMapBackendLibrary$JRubyMapBackend$3.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/AtomicReferenceLibrary$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166y/ThreadLocalRandom$1.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$IntToInt.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$KeyIterator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/download_queue.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | net/download | download files | Downloadable class DownloadQueue downloadable of running downloads based on |
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://ruby-concurrency.github.io/concurrent-ruby/master/Concurrent/Canc |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$LongByLongToLong.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/atomic/reentrant_read_write_lock.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | evasion/bitwise_math | uses bitwise math | 1 << 15 1 << 29 |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/7/docs/api/java/util/concurrent/locks/Reen |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$IntByIntToInt.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$Object.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/opaque | opaque binary | |
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$ObjectToInt.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$4.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/configuration.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | ruby-concurrency/concurrent-ruby#841 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$MapEntry.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/synchronization/condition.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | ref/path/root | path reference within /root | /root/jdk/openjdk/8-b132/java/util/concurrent/locks/AbstractQueuedSync |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://grepcode.com/file/repository.grepcode.com/java/root/jdk/openjdk/8 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$LongByLongToLong.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/utility/native_integer.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://stackoverflow.com/questions/535721/ruby-max-integer |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaAtomicBooleanLibrary.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/ivar.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://dl.acm.org/citation.cfm?id=69562 http://www.cs.rice.edu/ |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$TreeBin.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/AtomicReferenceLibrary$UnsafeHolder.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/atomic/atomic_boolean.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/7/docs/api/java/util/concurrent/atomic/Ato |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$Action.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$Action.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$BiAction.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$EntryIterator.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/thread_safe/synchronized_delegator.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://bugs.ruby-lang.org/issues/8556 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/exchanger.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | ref/path/root | path reference within /root | /root/jdk/openjdk/6-b14/java/util/concurrent/Exchanger.java |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/7/docs/api/java/util/concurrent/Exchanger. http://grepcode.com/file/repository.grepcode.com/java/root/jdk/openjdk/6 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/LongAdder.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/Striped64.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/timer_task.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/7/docs/api/java/util/TimerTask.html http://ruby-doc.org/stdlib-2.0/libdoc/observer/rdoc/Observable.html |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$DoubleToDouble.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/collection/non_concurrent_priority_queue.rb [⚠️ MEDIUM]
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/executor/java_executor_service.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | ref/daemon | Run as a background daemon | daemonize |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$JRubyLockableObject.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /ConcurrentRubyService.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/mvar.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://dl.acm.org/citation.cfm?id=237794 http://dl.acm.org/citation.cfm?id=652538 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/agent.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | ref/words/agent | references an 'agent' | agent_await_warning agent_send agents |
| +MEDIUM | ref/words/exclamation | gets very excited | !! |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://clojure.org/Agents http://clojure.org/agents http://clojure.org/state |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JRubyMapBackendLibrary$JRubyMapBackend$4.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/atomic/atomic_fixnum.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/7/docs/api/java/util/concurrent/atomic/Ato |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$EntrySetView.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/set.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://ruby-doc.org/stdlib-2.4.0/libdoc/set/rdoc/Set.html |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/array.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | ruby-concurrency/concurrent-ruby#929 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$DoubleByDoubleToDouble.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$Traverser.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/Striped64$Cell.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/future.rb [✅ LOW]
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$EntrySetView.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/atomic/atomic_reference.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | ruby-concurrency/concurrent-ruby#336 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/maybe.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/purescript/purescript-maybe/blob/master/docs/Data.Mayb https://hackage.haskell.org/package/base-4.2.0.1/docs/Data-Maybe.html |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/promises.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | fs/file/times/set | change file timestamps | touch delayed touch element |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/Striped64$ThreadHashCode.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JavaSemaphoreLibrary$JavaSemaphore.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/executor/fixed_thread_pool.rb [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | ref/daemon | Run as a background daemon | non-daemon |
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://docs.oracle.com/javase/8/docs/api/java/lang/Thread.html |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/synchronization/full_memory_barrier.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/ruby/ruby/blob/ruby_2_2/thread_pthread.c |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/thread_safe/util/power_of_two_tuple.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | evasion/bitwise_math | uses bitwise math | size << 1 |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/atomic/event.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | ref/site/url | contains embedded HTTP URLs | http://msdn.microsoft.com/en-us/library/windows/desktop/ms682655.aspx |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/SynchronizationLibrary$JRubyAttrVolatile.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$Node.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$Node.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$MapEntry.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/JRubyMapBackendLibrary$JRubyMapBackend$2.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$ObjectToLong.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$BiAction.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/nounsafe/ConcurrentHashMapV8$IntByIntToInt.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/jsr166e/ConcurrentHashMapV8$LongToLong.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/concurrent_ruby.jar ∴ /com/concurrent_ruby/ext/AtomicReferenceLibrary$JRubyReference.class [⚠️ MEDIUM]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +MEDIUM | evasion/binary/unusually_small | machO binary is unusually small |
Added: brew/home/linuxbrew/.linuxbrew/Library/Homebrew/vendor/bundle/ruby/3.3.0/gems/concurrent-ruby-1.3.4/lib/concurrent-ruby/concurrent/atomic/read_write_lock.rb [✅ LOW]
| RISK | KEY | DESCRIPTION | EVIDENCE |
|---|---|---|---|
| +LOW | evasion/bitwise_math | uses bitwise math | 1 << 15 1 << 29 |
| +LOW | ref/site/url | contains embedded HTTP URLs | http://docs.oracle.com/javase/7/docs/api/java/util/concurrent/locks/Reen |