Fix tests on windows

Bump cryptography from 45.0.5 to 45.0.6 (#675 )
Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.5 to 45.0.6. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.5...45.0.6) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.6 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-21 22:42:15 +02:00 · 2025-08-19 15:49:47 +02:00 · 2025-08-12 10:38:19 +02:00 · 2025-07-31 13:20:34 +02:00 · 2025-07-28 22:58:12 +02:00 · 2025-07-28 22:42:37 +02:00
12 changed files with 102 additions and 37 deletions
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -0,0 +1,11 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
+
+version: 2
+updates:
+  - package-ecosystem: "pip" # See documentation for possible values
+    directory: "/" # Location of package manifests
+    schedule:
+      interval: "weekly"
--- a/docs/requirements.txt
+++ b/docs/requirements.txt
@@ -1,5 +1,5 @@
 mkdocs==1.6.1
-mkdocs-autorefs==1.2.0
-mkdocs-material==9.5.42
+mkdocs-autorefs==1.4.2
+mkdocs-material==9.6.16
 mkdocs-material-extensions==1.3.1
-mkdocstrings==0.23.0
+mkdocstrings==0.30.0
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -20,22 +20,22 @@ classifiers = [
 ]
 dependencies = [
    "click==8.2.1",
-    "rich==14.0.0",
+    "rich==14.1.0",
    "tld==0.13.1",
-    "requests==2.32.2",
+    "requests==2.32.4",
    "simplejson==3.20.1",
    "packaging==25.0",
    "appdirs==1.4.4",
    "iOSbackup==0.9.925",
    "adb-shell[usb]==0.4.4",
    "libusb1==3.3.1",
-    "cryptography==45.0.3",
+    "cryptography==45.0.6",
    "PyYAML>=6.0.2",
-    "pyahocorasick==2.1.0",
+    "pyahocorasick==2.2.0",
    "betterproto==1.2.5",
-    "pydantic==2.11.5",
-    "pydantic-settings==2.9.1",
-    "NSKeyedUnArchiver==1.5",
+    "pydantic==2.11.7",
+    "pydantic-settings==2.10.1",
+    "NSKeyedUnArchiver==1.5.2",
    "python-dateutil==2.9.0.post0",
 ]
 requires-python = ">= 3.10"
--- a/src/mvt/android/artifacts/dumpsys_adb.py
+++ b/src/mvt/android/artifacts/dumpsys_adb.py
@@ -21,12 +21,22 @@ class DumpsysADBArtifact(AndroidArtifact):
        stack = [res]
        cur_indent = 0
        in_multiline = False
-        for line in dump_data.strip(b"\n").split(b"\n"):
+        # Normalize line endings to handle both Unix (\n) and Windows (\r\n)
+        normalized_data = dump_data.replace(b"\r\n", b"\n").replace(b"\r", b"\n")
+        for line in normalized_data.strip(b"\n").split(b"\n"):
+            # Skip completely empty lines
+            if not line.strip():
+                continue
+
            # Track the level of indentation
            indent = len(line) - len(line.lstrip())
            if indent < cur_indent:
                # If the current line is less indented than the previous one, back out
-                stack.pop()
+                while len(stack) > 1 and indent < cur_indent:
+                    stack.pop()
+                    # Check if we were in multiline mode and need to exit it
+                    if in_multiline and not isinstance(stack[-1], list):
+                        in_multiline = False
                cur_indent = indent
            else:
                cur_indent = indent
@@ -38,12 +48,30 @@ class DumpsysADBArtifact(AndroidArtifact):

            # Annoyingly, some values are multiline and don't have a key on each line
            if in_multiline:
-                if key == "":
+                if key == "" and len(vals) < 2:
                    # If the line is empty, it's the terminator for the multiline value
                    in_multiline = False
                    stack.pop()
+                    current_dict = stack[-1]
+                elif len(vals) >= 2 and (key in self.multiline_fields or key == "}" or vals[1] == b"{"):
+                    # If we encounter a new field while in multiline mode, exit multiline mode
+                    # and process this line as a new field
+                    in_multiline = False
+                    stack.pop()
+                    current_dict = stack[-1]
+                    # Don't continue here - let the line be processed as a new field
                else:
-                    current_dict.append(line.lstrip())
+                    # When in multiline mode, the top of stack should be a list
+                    if isinstance(stack[-1], list):
+                        stack[-1].append(line.lstrip())
+                    else:
+                        # Something went wrong with the stack, exit multiline mode
+                        in_multiline = False
+                        current_dict = stack[-1]
+                    continue
+
+            # Skip lines that don't have a value after '='
+            if len(vals) < 2:
                continue

            if key == "}":
@@ -133,7 +161,16 @@ class DumpsysADBArtifact(AndroidArtifact):

        # TODO: Parse AdbDebuggingManager line in output.
        start_of_json = content.find(b"\n{") + 2
-        end_of_json = content.rfind(b"}\n") - 2
+
+        # Handle both Unix (\n) and Windows (\r\n) line endings
+        end_of_json = content.rfind(b"}\n")
+        if end_of_json == -1:
+            end_of_json = content.rfind(b"}\r\n")
+            if end_of_json == -1:
+                self.log.error("Unable to find end of JSON block in dumpsys output")
+                return
+
+        end_of_json -= 2
        json_content = content[start_of_json:end_of_json].rstrip()

        parsed = self.indented_dump_parser(json_content)
--- a/src/mvt/android/artifacts/settings.py
+++ b/src/mvt/android/artifacts/settings.py
@@ -51,11 +51,6 @@ ANDROID_DANGEROUS_SETTINGS = [
        "key": "send_action_app_error",
        "safe_value": "1",
    },
-    {
-        "description": "enabled installation of non Google Play apps",
-        "key": "install_non_market_apps",
-        "safe_value": "0",
-    },
    {
        "description": "enabled accessibility services",
        "key": "accessibility_enabled",
--- a/src/mvt/android/modules/androidqf/files.py
+++ b/src/mvt/android/modules/androidqf/files.py
@@ -112,10 +112,18 @@ class Files(AndroidQFModule):

    def run(self) -> None:
        if timezone := self._get_device_timezone():
-            device_timezone = zoneinfo.ZoneInfo(timezone)
+            try:
+                device_timezone = zoneinfo.ZoneInfo(timezone)
+            except zoneinfo.ZoneInfoNotFoundError:
+                self.log.warning("Device timezone '%s' not found, using UTC", timezone)
+                device_timezone = datetime.timezone.utc
        else:
            self.log.warning("Unable to determine device timezone, using UTC")
-            device_timezone = zoneinfo.ZoneInfo("UTC")
+            try:
+                device_timezone = zoneinfo.ZoneInfo("UTC")
+            except zoneinfo.ZoneInfoNotFoundError:
+                # Fallback for Windows systems where zoneinfo might not have UTC
+                device_timezone = datetime.timezone.utc

        for file in self._get_files_by_pattern("*/files.json"):
            rawdata = self._get_file_content(file).decode("utf-8", errors="ignore")
--- a/src/mvt/android/parsers/backup.py
+++ b/src/mvt/android/parsers/backup.py
@@ -231,6 +231,7 @@ def parse_sms_file(data):
            entry.pop("mms_body")

        body = entry.get("body", None)
+        message_links = None
        if body:
            message_links = check_for_links(entry["body"])

--- a/src/mvt/common/indicators.py
+++ b/src/mvt/common/indicators.py
@@ -654,7 +654,8 @@ class Indicators:
            return None

        for ioc in self.get_iocs("processes"):
-            parts = file_path.split("/")
+            # Use os-agnostic path splitting to handle both Windows (\) and Unix (/) separators
+            parts = file_path.replace("\\", "/").split("/")
            if ioc["value"] in parts:
                self.log.warning(
                    "Found known suspicious process name mentioned in file at "
--- a/src/mvt/ios/data/ios_versions.json
+++ b/src/mvt/ios/data/ios_versions.json
@@ -1131,5 +1131,9 @@
    {
        "version": "18.5",
        "build": "22F76"
+    },
+    {
+        "version": "18.6",
+        "build": "22G86"
    }
 ]
--- a/src/mvt/ios/modules/mixed/global_preferences.py
+++ b/src/mvt/ios/modules/mixed/global_preferences.py
@@ -43,6 +43,8 @@ class GlobalPreferences(IOSExtraction):
                    self.log.warning("Lockdown mode enabled")
                else:
                    self.log.warning("Lockdown mode disabled")
+                return
+        self.log.warning("Lockdown mode disabled")

    def process_file(self, file_path: str) -> None:
        with open(file_path, "rb") as handle:
--- a/src/mvt/ios/modules/mixed/safari_browserstate.py
+++ b/src/mvt/ios/modules/mixed/safari_browserstate.py
@@ -95,14 +95,17 @@ class SafariBrowserState(IOSExtraction):
            )
        except sqlite3.OperationalError:
            # Old version iOS <12 likely
-            cur.execute(
+            try:
+                cur.execute(
+                    """
+                    SELECT
+                        title, url, user_visible_url, last_viewed_time, session_data
+                    FROM tabs
+                    ORDER BY last_viewed_time;
                """
-                SELECT
-                    title, url, user_visible_url, last_viewed_time, session_data
-                FROM tabs
-                ORDER BY last_viewed_time;
-            """
-            )
+                )
+            except sqlite3.OperationalError as e:
+                self.log.error(f"Error executing query: {e}")

        for row in cur:
            session_entries = []
--- a/src/mvt/ios/modules/mixed/tcc.py
+++ b/src/mvt/ios/modules/mixed/tcc.py
@@ -116,13 +116,16 @@ class TCC(IOSExtraction):
                )
                db_version = "v2"
            except sqlite3.OperationalError:
-                cur.execute(
-                    """SELECT
-                    service, client, client_type, allowed,
-                    prompt_count
-                    FROM access;"""
-                )
-                db_version = "v1"
+                try:
+                    cur.execute(
+                        """SELECT
+                        service, client, client_type, allowed,
+                        prompt_count
+                        FROM access;"""
+                    )
+                    db_version = "v1"
+                except sqlite3.OperationalError as e:
+                    self.log.error(f"Error parsing TCC database: {e}")

        for row in cur:
            service = row[0]
Author	SHA1	Message	Date
Janik Besendorf	a5ae729b65	Fix tests on windows	2025-08-19 15:49:47 +02:00
dependabot[bot]	86a0772eb2	Bump cryptography from 45.0.5 to 45.0.6 (#675 ) Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.5 to 45.0.6. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.5...45.0.6) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.6 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-08-12 10:38:19 +02:00
github-actions[bot]	7d0be9db4f	Add new iOS versions and build numbers (#673 ) Co-authored-by: DonnchaC <DonnchaC@users.noreply.github.com>	2025-07-31 13:20:34 +02:00
dependabot[bot]	4e120b2640	Bump pydantic-settings from 2.9.1 to 2.10.1 (#655 ) Bumps [pydantic-settings](https://github.com/pydantic/pydantic-settings) from 2.9.1 to 2.10.1. - [Release notes](https://github.com/pydantic/pydantic-settings/releases) - [Commits](https://github.com/pydantic/pydantic-settings/compare/v2.9.1...2.10.1) --- updated-dependencies: - dependency-name: pydantic-settings dependency-version: 2.10.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-07-28 22:58:12 +02:00
dependabot[bot]	dbe9e5db9b	Bump mkdocstrings from 0.29.1 to 0.30.0 (#671 ) Bumps [mkdocstrings](https://github.com/mkdocstrings/mkdocstrings) from 0.29.1 to 0.30.0. - [Release notes](https://github.com/mkdocstrings/mkdocstrings/releases) - [Changelog](https://github.com/mkdocstrings/mkdocstrings/blob/main/CHANGELOG.md) - [Commits](https://github.com/mkdocstrings/mkdocstrings/compare/0.29.1...0.30.0) --- updated-dependencies: - dependency-name: mkdocstrings dependency-version: 0.30.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Tek <tek@randhome.io>	2025-07-28 22:42:37 +02:00
dependabot[bot]	0b00398729	Bump rich from 14.0.0 to 14.1.0 (#670 ) Bumps [rich](https://github.com/Textualize/rich) from 14.0.0 to 14.1.0. - [Release notes](https://github.com/Textualize/rich/releases) - [Changelog](https://github.com/Textualize/rich/blob/master/CHANGELOG.md) - [Commits](https://github.com/Textualize/rich/compare/v14.0.0...v14.1.0) --- updated-dependencies: - dependency-name: rich dependency-version: 14.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-07-28 22:37:42 +02:00
dependabot[bot]	87034d2c7a	Bump mkdocs-material from 9.6.14 to 9.6.16 (#672 ) Bumps [mkdocs-material](https://github.com/squidfunk/mkdocs-material) from 9.6.14 to 9.6.16. - [Release notes](https://github.com/squidfunk/mkdocs-material/releases) - [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG) - [Commits](https://github.com/squidfunk/mkdocs-material/compare/9.6.14...9.6.16) --- updated-dependencies: - dependency-name: mkdocs-material dependency-version: 9.6.16 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-07-28 22:29:04 +02:00
besendorf	595a2f6536	Merge pull request #656 from mvt-project/fix/install_non_market_apps remove deprecated install_non_market_apps permission check	2025-07-22 19:32:05 +02:00
besendorf	8ead44a31e	Merge branch 'main' into fix/install_non_market_apps	2025-07-22 19:12:44 +02:00
besendorf	5c19d02a73	Merge pull request #659 from mvt-project/fix/tcc fix #579 TCC: no such table: access	2025-07-22 19:02:32 +02:00
besendorf	14ebc9ee4e	Merge branch 'main' into fix/tcc	2025-07-22 18:56:10 +02:00
besendorf	de53cc07f8	Merge pull request #660 from mvt-project/fix/safari_browserstate catch sqlite exception in safari_browserstate.py	2025-07-22 18:33:39 +02:00
besendorf	22e066fc4a	Merge branch 'main' into fix/safari_browserstate	2025-07-22 18:20:07 +02:00
besendorf	242052b8ec	Merge branch 'main' into fix/install_non_market_apps	2025-07-17 11:45:34 +02:00
dependabot[bot]	1df61b5bbf	Bump cryptography from 45.0.4 to 45.0.5 (#661 ) Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.4 to 45.0.5. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.4...45.0.5) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-07-07 21:03:08 +02:00
besendorf	b691de2cc0	catch sqlite exception in safari_browserstate.py	2025-07-04 17:52:05 +02:00
besendorf	10915f250c	catch tcc error	2025-07-04 17:46:50 +02:00
besendorf	c60cef4009	Merge branch 'main' into fix/install_non_market_apps	2025-07-04 17:04:13 +02:00
besendorf	dda798df8e	Merge pull request #658 from mvt-project/fix-mms initialise message_links in backup parser to fix sms module bug	2025-07-04 15:32:47 +02:00
besendorf	ffe6ad2014	initialise message_links in backup parser to fix sms module bug	2025-07-04 15:29:36 +02:00
dependabot[bot]	a125b20fc5	Bump pydantic from 2.11.5 to 2.11.7 (#651 ) Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.11.5 to 2.11.7. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v2.11.5...v2.11.7) --- updated-dependencies: - dependency-name: pydantic dependency-version: 2.11.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-07-02 20:59:41 +02:00
besendorf	49108e67e2	remove deprecated install_non_market_apps permission check	2025-07-02 10:11:35 +02:00
dependabot[bot]	883b450601	Bump mkdocstrings from 0.23.0 to 0.29.1 (#649 ) Bumps [mkdocstrings](https://github.com/mkdocstrings/mkdocstrings) from 0.23.0 to 0.29.1. - [Release notes](https://github.com/mkdocstrings/mkdocstrings/releases) - [Changelog](https://github.com/mkdocstrings/mkdocstrings/blob/main/CHANGELOG.md) - [Commits](https://github.com/mkdocstrings/mkdocstrings/compare/0.23.0...0.29.1) --- updated-dependencies: - dependency-name: mkdocstrings dependency-version: 0.29.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Tek <tek@randhome.io>	2025-06-20 11:29:34 +02:00
dependabot[bot]	ce813568ff	Bump mkdocs-autorefs from 1.2.0 to 1.4.2 (#648 ) Bumps [mkdocs-autorefs](https://github.com/mkdocstrings/autorefs) from 1.2.0 to 1.4.2. - [Release notes](https://github.com/mkdocstrings/autorefs/releases) - [Changelog](https://github.com/mkdocstrings/autorefs/blob/main/CHANGELOG.md) - [Commits](https://github.com/mkdocstrings/autorefs/compare/1.2.0...1.4.2) --- updated-dependencies: - dependency-name: mkdocs-autorefs dependency-version: 1.4.2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-06-20 11:28:24 +02:00
dependabot[bot]	93303f181a	Bump mkdocs-material from 9.5.42 to 9.6.14 (#647 ) Bumps [mkdocs-material](https://github.com/squidfunk/mkdocs-material) from 9.5.42 to 9.6.14. - [Release notes](https://github.com/squidfunk/mkdocs-material/releases) - [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG) - [Commits](https://github.com/squidfunk/mkdocs-material/compare/9.5.42...9.6.14) --- updated-dependencies: - dependency-name: mkdocs-material dependency-version: 9.6.14 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Tek <tek@randhome.io>	2025-06-20 11:24:12 +02:00
dependabot[bot]	bee453a090	Bump cryptography from 45.0.3 to 45.0.4 (#645 ) Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.3 to 45.0.4. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.3...45.0.4) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-06-20 11:22:26 +02:00
dependabot[bot]	42106aa4d6	Bump pyahocorasick from 2.1.0 to 2.2.0 (#646 ) Bumps [pyahocorasick](https://github.com/WojciechMula/pyahocorasick) from 2.1.0 to 2.2.0. - [Release notes](https://github.com/WojciechMula/pyahocorasick/releases) - [Changelog](https://github.com/WojciechMula/pyahocorasick/blob/master/CHANGELOG.rst) - [Commits](https://github.com/WojciechMula/pyahocorasick/compare/2.1.0...v2.2.0) --- updated-dependencies: - dependency-name: pyahocorasick dependency-version: 2.2.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-06-20 11:19:57 +02:00
Tek	95076c8f71	Create dependabot.yml (#644 )	2025-06-20 11:17:40 +02:00
dependabot[bot]	c9ac12f336	Bump requests from 2.32.2 to 2.32.4 (#642 ) Bumps [requests](https://github.com/psf/requests) from 2.32.2 to 2.32.4. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.32.2...v2.32.4) --- updated-dependencies: - dependency-name: requests dependency-version: 2.32.4 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-06-19 23:55:42 +02:00
Tek	486e3e7e9b	Update global_preferences.py (#641 ) Added a warning for lockdown mode when the property is not present --------- Co-authored-by: makitos666 <makitos666@gmail.com>	2025-06-19 23:51:59 +02:00
besendorf	be1fc3bd8b	Update NSKeyedUnarchiver (#636 )	2025-06-12 22:42:02 +02:00
Tek	4757cff262	Fixes date parsing issue in tombstones (#635 )	2025-06-12 20:49:31 +02:00