Merge pull request #495 from OWASP/fix/rspec-pending-to-skip

Fix RSpec 3 compatibility: Replace pending with skip

spec/vulnerabilities/broken_auth_spec.rb

@@ -7,7 +7,7 @@ feature "broken_auth" do
   before do
     UserFixture.reset_all_users
 
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "one\nTutorial: https://github.com/OWASP/railsgoat/wiki/A2-Credential-Enumeration" do

spec/vulnerabilities/command_injection_spec.rb

@@ -7,7 +7,7 @@ feature "command injection" do
 
   before do
     UserFixture.reset_all_users
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "attack\nTutorial: https://github.com/OWASP/railsgoat/wiki/A1-Command-Injection", js: true do

spec/vulnerabilities/csrf_spec.rb

@@ -7,7 +7,7 @@ feature "csrf" do
 
   before(:each) do
     UserFixture.reset_all_users
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "attack\nTutorial: https://github.com/OWASP/railsgoat/wiki/R4-A8-CSRF", js: true do

spec/vulnerabilities/insecure_dor_spec.rb

@@ -7,7 +7,7 @@ feature "insecure direct object reference" do
 
   before do
     UserFixture.reset_all_users
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "attack one" do

spec/vulnerabilities/mass_assignment_spec.rb

@@ -6,7 +6,7 @@ feature "mass assignment" do
 
   before do
     UserFixture.reset_all_users
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "attack one" do

spec/vulnerabilities/password_complexity_spec.rb

@@ -6,7 +6,7 @@ feature "password complexity" do
 
   before do
     UserFixture.reset_all_users
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "one\nTutorial: https://github.com/OWASP/railsgoat/wiki/A2-Lack-of-Password-Complexity" do

spec/vulnerabilities/sensitive_data_exposure.rb

@@ -9,7 +9,7 @@ feature "sensitive data exposure" do
     UserFixture.reset_all_users
     normal_user.work_info.update(:SSN, user_ssn)
 
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   # this won't work with javascript_driver, as it'll apply the javascript

spec/vulnerabilities/sql_injection_spec.rb

@@ -7,7 +7,7 @@ feature "sql injection" do
 
   before do
     UserFixture.reset_all_users
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "attack\nTutorial: https://github.com/OWASP/railsgoat/wiki/R5-A1-SQL-Injection-Concatentation" do

spec/vulnerabilities/unvalidated_redirects_spec.rb

@@ -7,7 +7,7 @@ feature "unvalidated redirect" do
   before do
     UserFixture.reset_all_users
 
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "attack\nTutorial: https://github.com/OWASP/railsgoat/wiki/A10-Unvalidated-Redirects-and-Forwards-(redirect_to)", js: true do

spec/vulnerabilities/url_access_spec.rb

@@ -7,7 +7,7 @@ feature "url access" do
   before do
     UserFixture.reset_all_users
 
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "attack\nTutorial: https://github.com/OWASP/railsgoat/wiki/A7-Missing-Function-Level-Access-Control--(Admin-Controller)", js: true do

spec/vulnerabilities/xss_spec.rb

@@ -7,7 +7,7 @@ feature "xss" do
   before(:each) do
     UserFixture.reset_all_users
 
-    pending unless verifying_fixed?
+    skip unless verifying_fixed?
   end
 
   scenario "attack\nTutorial: https://github.com/OWASP/railsgoat/wiki/A3-Cross-Site-Scripting", js: true do