From b079b3f222327b6f43a26016a9e4df8facf5acc2 Mon Sep 17 00:00:00 2001
From: Luis Vasconcellos <hey@lfv89.dev>
Date: Wed, 28 Aug 2024 13:25:12 -0300
Subject: [PATCH] Add env protection

---
 config/protections.yml                   | 1 +
 test/tampering_cases/flagged/ruby/env.rb | 1 +
 2 files changed, 2 insertions(+)
 create mode 100644 test/tampering_cases/flagged/ruby/env.rb

diff --git a/config/protections.yml b/config/protections.yml
index a120fa1..99f2f82 100644
--- a/config/protections.yml
+++ b/config/protections.yml
@@ -21,6 +21,7 @@ validations:
     - secret
     - credentials
     - irb
+    - ENV
 forbidden_methods:
   Kernel:
     - eval
diff --git a/test/tampering_cases/flagged/ruby/env.rb b/test/tampering_cases/flagged/ruby/env.rb
new file mode 100644
index 0000000..f46e096
--- /dev/null
+++ b/test/tampering_cases/flagged/ruby/env.rb
@@ -0,0 +1 @@
+ENV['DATABASE_URL']