The users and maintainers of Recog-Ruby would greatly appreciate any contributions you can make to the project. These contributions typically come in the form of filed bugs/issues or pull requests (PRs). These contributions routinely result in new versions of the recog gem being released. The process for everything is described below.
If you encounter any bugs or problems with Recog-Ruby, please file them here, providing as much detail as possible. If the bug is straight-forward enough and you understand the fix for the bug well enough, you may take the simpler, less-paperwork route and simply fill a PR with the fix and the necessary details.
Recog-Ruby uses a model nearly identical to that of
Metasploit as outlined
here,
at least from a git perspective. If you've been through that process
(or, even better, you've been through it many times with many people), you can
do exactly what you did for Metasploit but with Recog-Ruby and ignore the rest of
this document.
On the other hand, if you haven't, read on!
Generally, this should only need to be done once, or if you need to start over.
-
Fork Recog-Ruby: Visit https://github.com/rapid7/recog-ruby and click Fork, selecting your github account if prompted
-
Clone
[email protected]:<your-github-username>/recog-ruby.git, replacing<your-github-username>with, you guessed it, your Github username.git clone --recurse-submodules [email protected]:<your-github-username>/recog-ruby.git
-
If you cloned the project and forgot
--recurse-submodules, you may run the following command to initialize, fetch and checkout any nested submodules.git submodule update --init --recursive
-
-
Add the Rapid7 recog-ruby repository as your upstream:
git remote add upstream [email protected]:rapid7/recog-ruby.git
-
Update your
.git/configto ensure that theremote ["upstream"]section is configured to pull both branches and PRs from upstream. It should look something like the following, in particular the secondfetchoption:[remote "upstream"] url = [email protected]:rapid7/recog-ruby.git fetch = +refs/heads/*:refs/remotes/upstream/* fetch = +refs/pull/*/head:refs/remotes/upstream/pr/*
-
Fetch the latest revisions, including PRs:
git fetch --all
If you have a contribution to make, first create a branch to contain your work. The name is yours to choose, however generally it should roughly describe what you are doing. In this example, and from here on out, the branch will be FOO, but you should obviously change this:
git fetch --all
git checkout main
git rebase upstream/main
git checkout -b FOONow, make your changes, commit as necessary with useful commit messages.
Please note that changes to lib/recog/version.rb in PRs are almost never necessary.
Now push your changes to your fork:
git push origin FOOFinally, submit the PR. Navigate to https://github.com/<your-github-username>/recog-ruby/compare/FOO, fill in the details and submit.
When your PR is submitted, it will be automatically subjected to the full run of tests in the CI workflow, however you are encourage to perform testing before submitting the PR. To do this, simply run rake tests.
(Note: this portion is a work-in-progress. Please update it as things change)
Much like with the process of submitting PRs, Recog-Ruby's process for landing PRs is very similar to Metasploit's process for landing PRs. In short:
-
Follow the "Fork and Clone" steps from above
-
Update your
.git/configto ensure that theremote ["upstream"]section is configured to pull both branches and PRs from upstream. It should look something like the following, in particular the secondfetchoption:[remote "upstream"] url = [email protected]:rapid7/recog-ruby.git fetch = +refs/heads/*:refs/remotes/upstream/* fetch = +refs/pull/*/head:refs/remotes/upstream/pr/*
-
Fetch the latest revisions, including PRs:
git fetch --all
-
Checkout and branch the PR for testing. Replace
PRbelow with the actual PR # in question:git checkout -b landing-PR upstream/pr/PR
-
Test the PR (see the Testing section above)
-
Merge with main, re-test, validate and push:
git checkout -b upstream-main --track upstream/main git merge -S --no-ff --edit landing-PR # merge the PR into upstream-main # re-test if/as necessary git push upstream upstream-main:main --dry-run # confirm you are pushing what you expect git push upstream upstream-main:main # push upstream-main to upstream:main
-
If applicable, release a new version (see next section)
When Recog-Ruby's critical parts are modified, for example its fingerprints or underlying supporting code, a new version must eventually be released. These new releases can then be optionally included in projects such as Metasploit or products such as Rapid7's Nexpose in a controlled manner. Releases for non-functional updates such as updates to documentation are not necessary.
When a new version of Recog-Ruby is to be released, you must follow the instructions below.
-
If are not already a Recog-Ruby project contributor for the Recog gem (you'd be listed here under OWNERS), become one:
- Get an account on Rubygems
- Contact one of the Recog-Ruby project contributors (listed here under OWNERS and have them add you to the Recog gem. They'll need to run:
gem owner recog -a EMAIL
-
Edit lib/recog/version.rb and increment
VERSION. Commit and push to the rapid7/recog-ruby main branch. -
Run
rake release. Among other things, this creates the new gem, uploads it to Rubygems and tags the release with a tag likev<VERSION>, where<VERSION>is replaced with the version fromversion.rb. For example, if you release version 1.2.3 of the gem, the tag will bev1.2.3. -
If your default remote repository is not
rapid7/recog-ruby, you must ensure that the tags created in the previous step are also pushed to the right location(s). For example, iforiginis your fork of recog andupstreamisrapid7/main, you should rungit push --tags --dry-run upstreamto confirm what tags will be pushed and thengit push --tags upstreamto push the tags.