Add minor text and typo changes
This commit is contained in:
James Espinosa
@@ -20,16 +20,16 @@ $ git clone git@github.com:OWASP/railsgoat.git
|
|||||||
|
|
||||||
Navigate into the directory and accept the notice by typing `yes`:
|
Navigate into the directory and accept the notice by typing `yes`:
|
||||||
```
|
```
|
||||||
*****************************************************************************************************
|
****************************************************************************************************
|
||||||
* NOTICE *
|
* NOTICE *
|
||||||
*****************************************************************************************************
|
****************************************************************************************************
|
||||||
* RVM has encountered a new or modified .rvmrc file in the current directory, this is a shell *
|
* RVM has encountered a new or modified .rvmrc file in the current directory, this is a shell *
|
||||||
* script and therefore may contain any shell commands. *
|
* script and therefore may contain any shell commands. *
|
||||||
* *
|
* *
|
||||||
* Examine the contents of this file carefully to be sure the contents are safe before trusting it! *
|
* Examine the contents of this file carefully to be sure the contents are safe before trusting it! *
|
||||||
* Do you wish to trust '/path/to/railsgoat/.rvmrc'? *
|
* Do you wish to trust '/path/to/railsgoat/.rvmrc'? *
|
||||||
* Choose v[view] below to view the contents *
|
* Choose v[view] below to view the contents *
|
||||||
*****************************************************************************************************
|
****************************************************************************************************
|
||||||
y[es], n[o], v[iew], c[cancel]>
|
y[es], n[o], v[iew], c[cancel]>
|
||||||
```
|
```
|
||||||
|
|
||||||
@@ -67,7 +67,7 @@ RailsGoat now includes a set of failing Capybara RSpecs, each one indicating tha
|
|||||||
$ rake training
|
$ rake training
|
||||||
```
|
```
|
||||||
|
|
||||||
Please note, as vulnerabilities are fixed in the application, these specs will not change to `passing`, but to `pending`.
|
NOTE: As vulnerabilities are fixed in the application, these specs will not change to `passing`, but to `pending`.
|
||||||
|
|
||||||
## Contributing
|
## Contributing
|
||||||
|
|
||||||
|
|||||||
@@ -15,20 +15,19 @@ def verifying_fixed?
|
|||||||
|
|
||||||
******************************************************************************
|
******************************************************************************
|
||||||
You are running the RailsGoat Capybara Specs in Training mode. These specs
|
You are running the RailsGoat Capybara Specs in Training mode. These specs
|
||||||
are supposed to fail, indicating vulnerabilities exist. They contain
|
are supposed to fail, indicating vulnerabilities exist. They contain spoilers,
|
||||||
spoilers, so do not read the code in spec/vulnerabilities if your goal is to
|
so do not read the code in spec/vulnerabilities if your goal is to learn more
|
||||||
learn more about patching the vulnerabilities. You should fix the
|
about patching the vulnerabilities. You should fix the vulnerabilities in the
|
||||||
vulnerabilities in the application in order to get these specs to pass**.
|
application in order to get these specs to pass**. You can use them to measure
|
||||||
You can use them to measure your progress.
|
your progress.
|
||||||
|
|
||||||
These same specs will pass if you set the #{maintainer_env_name} ENV
|
These same specs will pass if you set the #{maintainer_env_name} ENV variable.
|
||||||
variable.
|
|
||||||
|
**NOTE: The RSpec pending feature is used to toggle the outcome of these specs
|
||||||
|
between Training mode and RailsGoat Maintainer mode. When the vulnerabilities
|
||||||
|
are removed, the specs will not "pass," but rather go into a "pending" state.
|
||||||
|
******************************************************************************
|
||||||
|
|
||||||
**NOTE: The RSpec pending feature is used to toggle the outcome of these
|
|
||||||
specs between Training mode and RailsGoat Maintainer mode, so when the
|
|
||||||
vulnerabilities are removed, these specs actually won't 'pass' but go into
|
|
||||||
a 'pending' state.
|
|
||||||
******************************************************************************
|
|
||||||
NOTICE
|
NOTICE
|
||||||
$displayed_spec_notice = true
|
$displayed_spec_notice = true
|
||||||
end
|
end
|
||||||
|
|||||||
Reference in New Issue
Block a user