Project

pdf_scanner

0.0
No release in over a year
pdf_scannershekhar-patil/pdf_scannerHomepageDocumentationSource CodeBug TrackerWiki
This is gem built on Origami gem to support PDF scan in web applications. You can scan your PDF file for various malicious threats.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
1,224
Stars
3
Forks
1
Watchers
1
 Releases
Current version
0.1.1
Total releases
2
First release
2023-02-20
Latest release
2023-02-20
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2023-04-26
Reverse Dependencies
0

 Dependencies

Runtime

origami
~> 2.1.0
 Project Readme

PdfScanner

PdfScanner is a Ruby gem for scanning PDF files for potentially dangerous or unwanted features, such as JavaScript, embedded files, forms, and more. It uses configurable security policies to analyze PDF files and can quarantine files that violate your policies.

Features

  • Scans PDF files for scripts, attachments, forms, and other risky features
  • Configurable security policies via YAML
  • Supports encrypted PDFs (with password)
  • Can quarantine files that violate policies
  • Extensible and easy to integrate

Installation

Add this line to your application's Gemfile:

gem 'pdf_scanner'

And then execute:

bundle install

Or install it yourself as:

gem install pdf_scanner

Usage

Basic Example

require 'pdf_scanner'

scanner = PdfScanner::Scanner.new(
  target_file: '/path/to/file.pdf',
  config_file: '/path/to/pdfcop.conf.yml', # optional, uses default if omitted
  policy: 'standard',                      # optional, uses 'standard' if omitted
  dir: '/path/to/quarantine',              # optional, for quarantining
  passwd: 'password'                       # optional, for encrypted PDFs
)
result = scanner.scan

puts result.inspect

Parameters

  • target_file (required): Path to the PDF file to scan.
  • config_file (optional): Path to the YAML config file with security policies.
  • policy (optional): Policy name to use (default: standard).
  • dir (optional): Directory to move/quarantine files that violate policies.
  • passwd (optional): Password for encrypted PDFs.

Return Value

The scan method returns a hash with two keys:

  • :rejected_policies — Array of hashes with :policy and :message for each rejected policy.
  • :analysis_failure — Array of hashes with :error and :message for analysis failures.

Example:

{
  rejected_policies: [
    { policy: "standard", message: "[:allowJS]" }
  ],
  analysis_failure: []
}

Configuration

Policies are defined in a YAML file (see lib/pdf_scanner/config/pdfcop.conf.yml for an example). Each policy is a set of boolean flags controlling which PDF features are allowed.

Example policy section:

POLICY_STANDARD:
  allowParserErrors: false
  allowAttachments: false
  allowEncryption: false
  allowJS: false
  allowAcroForms: false
  # ... more options ...

Command-Line Usage

You can also use the provided bin/console for interactive testing:

bin/console

Development

After checking out the repo, run:

bin/setup

To install dependencies. You can also run:

bin/console

For an interactive prompt.

To install this gem onto your local machine:

bundle exec rake install

To release a new version, update the version number in version.rb, then run:

bundle exec rake release

Contributing

Bug reports and pull requests are welcome on GitHub at https://github.com/shekhar-patil/pdf_scanner. Please adhere to the code of conduct.

License

The gem is available as open source under the terms of the MIT License.