contrast-agent 6.6.4 → 6.8.0

data/lib/contrast/agent_lib/interface_base.rb

@@ -0,0 +1,118 @@
+# Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
+# frozen_string_literal: true
+
+module Contrast
+  module AgentLib
+    # Base class to set basic rule sets and input list.
+    class InterfaceBase
+      # This could be changed to regular Hash.
+      # This format is used to supports this kind of log_level assignment:
+      # via Contrast::Api::Settings::LogLevel::WARN => 3
+      # ( note -1 is not supported in the protobuf LogLevel)
+      LOG_LEVEL = { -1 => 'OFF', 0 => 'TRACE', 1 => 'DEBUG', 2 => 'INFO', 3 => 'WARN', 4 => 'ERROR' }.cs__freeze
+      LOG_DIR = File.join(Dir.pwd).cs__freeze
+      # Named after Protect rule_id / Names
+      # Corresponding to Rust's ulong enum
+      RULE_SET = {
+          'unsafe-file-upload' => 1 << 0,
+          'path-traversal' => 1 << 1,
+          'reflected-xss' => 1 << 2,
+          'sql-injection' => 1 << 3,
+          'cmd-injection' => 1 << 4,
+          'nosql-injection' => 1 << 5,
+          'bot-blocker' => 1 << 6,
+          'ssjs-injection' => 1 << 7,
+          'method-tampering' => 1 << 8
+      }.cs__freeze
+      # Named same as Contrast::Agent::Reporting::InputTypes
+      INPUT_SET = {
+          COOKIE_NAME: 1,
+          COOKIE_VALUE: 2,
+          HEADER_NAME: 3,
+          HEADER_VALUE: 4,
+          JSON_NAME: 5,
+          JSON_VALUE: 6,
+          METHOD: 7,
+          PARAMETER_NAME: 8,
+          PARAMETER_VALUE: 9,
+          URI: 10,
+          URL_PARAMETER: 11,
+          MULTIPART_NAME: 12,
+          XML_VALUE: 13
+      }.cs__freeze
+      EVAL_OPTIONS = { NONE: 0, WORTHWATCHING: 1 }.cs__freeze
+
+      # Initializes the Agent lib.
+      #
+      # @param enable_logging [Boolean, nil] flag to enable or disable logging.
+      # @param set_log_level [Integer, nil]
+      # @param set_log_dir [String, nil] dir to write log files.
+      # @return [Boolean] true if success.
+      # @raise [StandardError] Any Errors raised in the init process are most
+      # likely to be a C segfaults and termination, probably redundant but safe.
+      def initialize enable_logging = nil, set_log_level = nil, set_log_dir = nil
+        # Override
+      end
+
+      # Return list of available rules
+      #
+      # @return [Hash]
+      def rule_set
+        RULE_SET
+      end
+
+      # Returns list of available input types.
+      #
+      # @return [Hash]
+      def input_set
+        INPUT_SET
+      end
+
+      # Return list of input evaluation options:
+      # WorthWatching or none
+      #
+      # @return [Hash]
+      def eval_option
+        EVAL_OPTIONS
+      end
+
+      private
+
+      # Updates the logging status:
+      # Enabled && Level
+      #
+      # @param level [Integer] one of:
+      # [-1...4]
+      # @param enabled [Boolean] logging status.
+      def update_logging level, enabled
+        update_log_level(level)
+        @enable_log = !!enabled
+      end
+
+      # Updates the log level for the AgentLib.
+      #
+      # @param level [Integer] one of:
+      # [-1...4]
+      def update_log_level level
+        value = LOG_LEVEL[level]
+        @log_level = value if value
+      end
+
+      # Creates the directory for AgentLib log files.
+      # If no path provided use default.
+      #
+      # @param log_dir [String, nil] path to log.
+      # @rescue [StandardError] any error concerning
+      # the directory creation.
+      def create_log_dir log_dir = nil
+        path = log_dir.nil? ? LOG_DIR : log_dir
+        FileUtils.mkdir_p(path)
+        path
+      rescue StandardError => e
+        logger.debug('Could not create log directory', error: e)
+        FileUtils.mkdir_p(LOG_DIR)
+        LOG_DIR
+      end
+    end
+  end
+end

data/lib/contrast/agent_lib/return_types/eval_result.rb

@@ -0,0 +1,44 @@
+# Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
+# frozen_string_literal: true
+
+require 'contrast/agent_lib/interface'
+
+module Contrast
+  module AgentLib
+    # This class will hold resulst received form AgentLib structs.
+    class EvalResult
+      # Name of the Protect rule analyzed.
+      # @return [String]
+      attr_accessor :rule_id
+      # Type of the input.
+      # @return [String]
+      attr_accessor :input_type
+      # Score of the input after AgentLib
+      # Analysis
+      #
+      # @return score [Float]
+      attr_accessor :score
+
+      # Init a new EvalResult, and translate results to usable for
+      # reporting values.
+      #
+      # @param hsh [Hash, nil] return from AgentLib populated struct.
+      def initialize hsh
+        return unless hsh&.cs__is_a?(Hash)
+
+        @rule_id = Contrast::AgentLib::Interface::RULE_SET.key(hsh[:rule_id])
+        @input_type = Contrast::AgentLib::Interface::INPUT_SET.key(hsh[:input_type])
+        @score = hsh[:score]
+      end
+
+      # Used in specs.
+      def to_controlled_hash
+        {
+            rule_id: rule_id,
+            input_type: input_type,
+            score: score
+        }
+      end
+    end
+  end
+end

data/lib/contrast/agent_lib/test.rb

@@ -0,0 +1,29 @@
+# Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
+# frozen_string_literal: false
+
+require_relative 'api/init'
+
+module Contrast # :nodoc:
+  module Test # :nodoc:
+    extend Contrast::AgentLib::Init
+
+    LOG_DIR = File.join(File.dirname(__FILE__))
+
+    class << self
+      def test_init_with_options enable_log, log_level
+        dl__init_with_options(enable_log, LOG_DIR, log_level)
+      end
+    end
+  end
+end
+
+# for the other cases - I tried with loop and everything, but nothing worked
+# Contrast::Test.test_init_with_options(true, "WARN")
+# Contrast::Test.test_init_with_options(true, "ERROR")
+# Contrast::Test.test_init_with_options(true, "DEBUG")
+# Contrast::Test.test_init_with_options(true, "TRACE")
+response = Contrast::Test.test_init_with_options(true, 'INFO')
+puts response # rubocop:disable Rails/Output
+
+# we cannot check here for the file as it's being created after the execution of the file is done
+raise(StandardError, 'Not Working') if response == false

data/lib/contrast/api/communication/connection_status.rb

@@ -4,7 +4,7 @@
 module Contrast
   module Api
     module Communication
-      # Keeps track of the state of connections to SpeedRacer.
+      # Keeps track of the state of connections to TeamServer.
       class ConnectionStatus
         def initialize
           @last_success = nil
@@ -12,8 +12,8 @@ module Contrast
           @startup_messages_sent = false
         end
 
-        # Whether we have sent startup message to SpeedRacer. True after successfully sending startup messages to
-        # SpeedRacer and reset to false if we lose connection.
+        # Whether we have sent startup message to TeamServer. True after successfully sending startup messages to
+        # TeamServer and reset to false if we lose connection.
         #
         # @return [Boolean]
         def startup_messages_sent?
@@ -27,13 +27,13 @@ module Contrast
           @last_success && (@last_failure.nil? || @last_success > @last_failure)
         end
 
-        # The current state of the SpeedRacer is active with a successful message sent
+        # The current state of the TeamServer is active with a successful message sent
         def success!
           @startup_messages_sent = true
           @last_success = Time.now.to_f
         end
 
-        # The SpeedRacer may be in some sort of error state
+        # The TeamServer may be in some sort of error state
         def failure!
           @startup_messages_sent = false
           @last_failure = Time.now.to_f

data/lib/contrast/components/agent.rb

@@ -4,7 +4,9 @@
 require 'rubygems/version'
 require 'contrast/agent/rule_set'
 require 'contrast/components/logger'
+require 'contrast/components/security_logger'
 require 'contrast/components/heap_dump'
+require 'contrast/components/ruby_component'
 
 module Contrast
   module Components
@@ -19,35 +21,29 @@ module Contrast
           return unless hsh
 
           @_enable = hsh[:enable]
-          @_start_bundled_service = hsh[:start_bundled_service]
           @_omit_body = hsh[:omit_body]
-          @_service = Contrast::Config::ServiceConfiguration.new(hsh[:service])
           @_logger = Contrast::Components::Logger::Interface.new(hsh[:logger])
-          @_ruby = Contrast::Config::RubyConfiguration.new(hsh[:ruby])
+          @_security_logger = Contrast::Components::SecurityLogger::Interface.new(hsh[:security_logger])
+          @_ruby = Contrast::Components::Ruby::Interface.new(hsh[:ruby])
           @_heap_dump = Contrast::Components::HeapDump::Interface.new(hsh[:heap_dump])
         end
 
-        # @return [Boolean, true]
-        def start_bundled_service?
-          @_start_bundled_service.nil? ? true : @_start_bundled_service
-        end
-
-        def service
-          return @_service unless @_service.nil?
-
-          @_service = Contrast::Config::ServiceConfiguration.new
-        end
-
         def logger
           return @_logger unless @_logger.nil?
 
           @_logger = Contrast::Components::Logger::Interface.new
         end
 
+        def security_logger
+          return @_security_logger unless @_security_logger.nil?
+
+          @_security_logger = Contrast::Components::SecurityLogger::Interface.new
+        end
+
         def ruby
           return @_ruby unless @_ruby.nil?
 
-          @_ruby = Contrast::Config::RubyConfiguration.new
+          @_ruby = Contrast::Components::Ruby::Interface.new
         end
 
         def heap_dump
@@ -57,7 +53,7 @@ module Contrast
         end
 
         def enabled?
-          @_enable = !false?(::Contrast::CONFIG.root.enable) if @_enable.nil?
+          @_enable = !false?(::Contrast::CONFIG.enable) if @_enable.nil?
           @_enable
         end
 
@@ -87,12 +83,6 @@ module Contrast
           !false?(ruby.propagate_yield)
         end
 
-        def interpolation_enabled?
-          return @_interpolation_enabled unless @_interpolation_enabled.nil?
-
-          @_interpolation_enabled = !false?(::Contrast::CONFIG.root.agent.ruby.interpolate)
-        end
-
         def omit_body?
           @_omit_body
         end
@@ -108,7 +98,7 @@ module Contrast
         def skip_instrumentation? loaded_module_name
           return true unless loaded_module_name
 
-          loaded_module_name.start_with?(*::Contrast::CONFIG.root.agent.ruby.uninstrument_namespace)
+          loaded_module_name.start_with?(*::Contrast::CONFIG.agent.ruby.uninstrument_namespace)
         end
 
         # Insert ourselves into the application, keeping our middleware at the outermost layer of the onion

data/lib/contrast/components/api.rb

@@ -66,7 +66,7 @@ module Contrast
 
         def api_url
           @_api_url ||= begin
-            tmp = Contrast::CONFIG.root.api.url
+            tmp = Contrast::CONFIG.api.url
             tmp += '/Contrast' unless tmp.end_with?('/Contrast')
             tmp
           end
@@ -75,7 +75,7 @@ module Contrast
         def proxy_enable
           return @_proxy_enable unless @_proxy_enable.nil?
 
-          @_proxy_enable = true?(::Contrast::CONFIG.root.api.proxy.enable)
+          @_proxy_enable = true?(::Contrast::CONFIG.api.proxy.enable)
         end
 
         def proxy_url
@@ -85,39 +85,39 @@ module Contrast
         def request_audit_enable
           return @_request_audit_enable unless @_request_audit_enable.nil?
 
-          @_request_audit_enable = true?(::Contrast::CONFIG.root.api.request_audit.enable)
+          @_request_audit_enable = true?(::Contrast::CONFIG.api.request_audit.enable)
         end
 
         def request_audit_requests
           return @_request_audit_requests unless @_request_audit_requests.nil?
 
-          @_request_audit_requests = true?(::Contrast::CONFIG.root.api.request_audit.requests)
+          @_request_audit_requests = true?(::Contrast::CONFIG.api.request_audit.requests)
         end
 
         def request_audit_responses
           return @_request_audit_responses unless @_request_audit_responses.nil?
 
-          @_request_audit_responses = true?(::Contrast::CONFIG.root.api.request_audit.responses)
+          @_request_audit_responses = true?(::Contrast::CONFIG.api.request_audit.responses)
         end
 
         def request_audit_path
-          @_request_audit_path ||= ::Contrast::CONFIG.root.api.request_audit.path.to_s
+          @_request_audit_path ||= ::Contrast::CONFIG.api.request_audit.path.to_s
         end
 
         def certification_enable
-          @_certification_enable ||= certification_truly_enabled?(::Contrast::CONFIG.root.api.certificate)
+          @_certification_enable ||= certification_truly_enabled?(::Contrast::CONFIG.api.certificate)
         end
 
         def certification_ca_file
-          @_certification_ca_file ||= ::Contrast::CONFIG.root.api.certificate.ca_file
+          @_certification_ca_file ||= ::Contrast::CONFIG.api.certificate.ca_file
         end
 
         def certification_cert_file
-          @_certification_cert_file ||= ::Contrast::CONFIG.root.api.certificate.cert_file
+          @_certification_cert_file ||= ::Contrast::CONFIG.api.certificate.cert_file
         end
 
         def certification_key_file
-          @_certification_key_file ||= ::Contrast::CONFIG.root.api.certificate.key_file
+          @_certification_key_file ||= ::Contrast::CONFIG.api.certificate.key_file
         end
 
         private

data/lib/contrast/components/app_context.rb

@@ -2,8 +2,6 @@
 # frozen_string_literal: true
 
 require 'rubygems/version'
-require 'contrast/api/decorators/agent_startup'
-require 'contrast/api/decorators/application_startup'
 require 'contrast/utils/object_share'
 require 'contrast/components/app_context_extend'
 require 'contrast/config/base_configuration'
@@ -27,17 +25,17 @@ module Contrast
         DEFAULT_SERVER_PATH = '/'
 
         # @return [String]
-        attr_reader :version
+        attr_accessor :version
         # @return [String]
-        attr_reader :language
+        attr_accessor :language
         # @return [String]
-        attr_reader :group
+        attr_accessor :group
         # @return [String]
-        attr_reader :tags
+        attr_accessor :tags
         # @return [String]
-        attr_reader :code
+        attr_accessor :code
         # @return [String]
-        attr_reader :metadata
+        attr_accessor :metadata
 
         def initialize hsh = {}
           original_pid
@@ -83,7 +81,7 @@ module Contrast
 
         def server_type
           @_server_type ||= begin
-            tmp = ::Contrast::CONFIG.root.server.type
+            tmp = ::Contrast::CONFIG.server.type
             tmp = Contrast::Agent.framework_manager.server_type unless Contrast::Utils::StringUtils.present?(tmp)
             tmp
           end
@@ -118,7 +116,7 @@ module Contrast
 
         def server_name
           @_server_name ||= begin
-            tmp = ::Contrast::CONFIG.root.server.name # rubocop:disable Security/Module/Name
+            tmp = ::Contrast::CONFIG.server.name # rubocop:disable Security/Module/Name
             tmp = Socket.gethostname unless Contrast::Utils::StringUtils.present?(tmp)
             tmp = Contrast::Utils::StringUtils.force_utf8(tmp)
             Contrast::Utils::StringUtils.truncate(tmp, DEFAULT_SERVER_NAME)
@@ -129,7 +127,7 @@ module Contrast
 
         def server_path
           @_server_path ||= begin
-            tmp = ::Contrast::CONFIG.root.server.path
+            tmp = ::Contrast::CONFIG.server.path
             tmp = Dir.pwd unless Contrast::Utils::StringUtils.present?(tmp)
             Contrast::Utils::StringUtils.truncate(tmp, DEFAULT_SERVER_PATH)
           rescue StandardError

data/lib/contrast/components/app_context_extend.rb

@@ -12,23 +12,6 @@ module Contrast
       SUPPORTED_FRAMEWORKS = %w[rails sinatra grape rack].cs__freeze
       SUPPORTED_SERVERS = %w[passenger puma thin unicorn].cs__freeze
 
-      def build_app_startup_message
-        @_build_app_startup_message ||= Contrast::Api::Dtm::ApplicationCreate.build
-      end
-
-      def build_agent_startup_message
-        msg = Contrast::Api::Dtm::AgentStartup.build(server_name, server_path, server_type)
-        Contrast::CONFIG.proto_logger.info('Application context',
-                                           server_name: msg.server_name,
-                                           server_path: msg.server_path,
-                                           server_type: msg.server_type,
-                                           application_name: name, # rubocop:disable Security/Module/Name
-                                           application_path: path,
-                                           application_language: Contrast::Utils::ObjectShare::RUBY)
-
-        msg
-      end
-
       def pid
         Process.pid
       end
@@ -37,14 +20,6 @@ module Contrast
         Process.ppid
       end
 
-      def pgid
-        Process.getpgid(pid)
-      end
-
-      def client_id
-        @_client_id ||= [name, pgid].join('-') # rubocop:disable Security/Module/Name
-      end
-
       def app_and_server_information
         {
             application_info: find_gem_information(SUPPORTED_FRAMEWORKS),
@@ -71,7 +46,7 @@ module Contrast
       end
 
       def disabled_agent_rake_tasks
-        ::Contrast::CONFIG.root.agent.ruby.disabled_agent_rake_tasks
+        ::Contrast::CONFIG.agent.ruby.disabled_agent_rake_tasks
       end
     end
   end

data/lib/contrast/components/assess.rb

@@ -3,7 +3,7 @@
 
 require 'contrast/components/base'
 require 'contrast/components/config'
-require 'contrast/components/settings'
+require 'contrast/components/assess_rules'
 
 module Contrast
   module Components
@@ -12,9 +12,85 @@ module Contrast
       # for access of the values contained in its
       # parent_configuration_spec.yaml.
       # Specifically, this allows for querying the state of the Assess product.
-      class Interface
+      class Interface # rubocop:disable Metrics/ClassLength
         include Contrast::Components::ComponentBase
 
+        # @return [String, nil]
+        attr_accessor :tags
+        # @return [Boolean, nil]
+        attr_accessor :enable
+        # @return [Array, nil]
+        attr_writer :enable_scan_response, :enable_dynamic_sources, :sampling, :rules, :stacktraces
+
+        DEFAULT_STACKTRACES = 'ALL'
+        DEFAULT_MAX_SOURCE_EVENTS = 50_000
+        DEFAULT_MAX_PROPAGATION_EVENTS = 50_000
+        DEFAULT_MAX_RULE_REPORTED = 100
+        DEFAULT_MAX_RULE_TIME_THRESHOLD = 300_000
+
+        # rubocop:disable Naming/MemoizedInstanceVariableName
+        def initialize hsh = {}
+          return unless hsh
+
+          @enable = hsh[:enable]
+          @tags = hsh[:tags]
+          @enable_scan_response = hsh[:enable_scan_response]
+          @enable_dynamic_sources = hsh[:enable_dynamic_sources]
+          @enable_original_object = hsh[:enable_original_object]
+          @sampling = Contrast::Components::Sampling::Interface.new(hsh[:sampling])
+          @rules = Contrast::Components::AssessRules::Interface.new(hsh[:rules])
+          @stacktraces = hsh[:stacktraces]
+          @max_context_source_events = hsh[:max_context_source_events]
+          @max_propagation_events = hsh[:max_propagation_events]
+          @max_rule_reported = hsh[:max_rule_reported]
+          @time_limit_threshold = hsh[:time_limit_threshold]
+        end
+
+        # @return [Boolean, true]
+        def enable_scan_response
+          @enable_scan_response.nil? ? true : @enable_scan_response
+        end
+
+        # @return [Boolean, true]
+        def enable_dynamic_sources
+          @enable_dynamic_sources.nil? ? true : @enable_dynamic_sources
+        end
+
+        # @return [Boolean, true]
+        def enable_original_object
+          @enable_original_object.nil? ? true : @enable_original_object
+        end
+
+        # @return [Contrast::Components::Sampling::Interface]
+        def sampling
+          @sampling ||= Contrast::Components::Sampling::Interface.new
+        end
+
+        # @return [Contrast::Components::AssessRules::Interface]
+        def rules
+          @rules ||= Contrast::Components::AssessRules::Interface.new
+        end
+
+        def stacktraces
+          @stacktraces ||= DEFAULT_STACKTRACES
+        end
+
+        def max_rule_reported
+          @max_rule_reported ||= DEFAULT_MAX_RULE_REPORTED
+        end
+
+        def time_limit_threshold
+          @time_limit_threshold ||= DEFAULT_MAX_RULE_TIME_THRESHOLD
+        end
+
+        def max_propagation_events
+          @max_propagation_events ||= DEFAULT_MAX_PROPAGATION_EVENTS
+        end
+
+        def max_context_source_events
+          @max_context_source_events ||= DEFAULT_MAX_SOURCE_EVENTS
+        end
+
         def enabled?
           # config overrides if forcibly set
           return false if forcibly_disabled?
@@ -28,7 +104,8 @@ module Contrast
         end
 
         def forcibly_disabled?
-          @_forcibly_disabled = false?(::Contrast::CONFIG.root.assess.enable) if @_forcibly_disabled.nil?
+          @_forcibly_disabled = false?(enable) if @_forcibly_disabled.nil?
+
           @_forcibly_disabled
         end
 
@@ -40,9 +117,9 @@ module Contrast
         # faster comparisons when we use it. Anything not one of the known values of
         # 'NONE',  'SOME', or 'ALL' is treated as 'ALL'
         #
-        # @return [Symbol] the normalized value of ::Contrast::CONFIG.root.assess.stacktraces
+        # @return [Symbol] the normalized value of ::Contrast::CONFIG.assess.stacktraces
         def capture_stacktrace_value
-          @_capture_stacktrace_value ||= case ::Contrast::CONFIG.root.assess.stacktraces.upcase
+          @_capture_stacktrace_value ||= case stacktraces&.upcase
                                          when 'NONE'
                                            :NONE
                                          when 'SOME'
@@ -53,7 +130,7 @@ module Contrast
         end
 
         # Consider capture_stacktrace_value along with the node type
-        # to dertmine whether stacktraces should be captured.
+        # to determine whether stacktraces should be captured.
         #
         # capture_stacktrace_value -> (:ALL, :NONE, :SOME)
         # node types (SourceNode, PolicyNode, TriggerNode, PropagationNode)
@@ -72,42 +149,34 @@ module Contrast
         end
 
         def scan_response?
-          @_scan_response = !false?(::Contrast::CONFIG.root.assess.enable_scan_response) if @_scan_response.nil?
+          @_scan_response = !false?(enable_scan_response) if @_scan_response.nil?
+
           @_scan_response
         end
 
         def require_scan?
-          @_require_scan = !false?(::Contrast::CONFIG.root.agent.ruby.require_scan) if @_require_scan.nil?
+          @_require_scan = !false?(::Contrast::CONFIG.agent.ruby.require_scan) if @_require_scan.nil?
           @_require_scan
         end
 
         def require_dynamic_sources?
           return @_require_dynamic_sources unless @_require_dynamic_sources.nil?
 
-          @_require_dynamic_sources = !false?(::Contrast::CONFIG.root.assess.enable_dynamic_sources)
+          @_require_dynamic_sources = !false?(enable_dynamic_sources)
         end
 
         def non_request_tracking?
-          @_non_request_tracking = true?(::Contrast::CONFIG.root.agent.ruby.non_request_tracking) if
+          @_non_request_tracking = true?(::Contrast::CONFIG.agent.ruby.non_request_tracking) if
             @_non_request_tracking.nil?
           @_non_request_tracking
         end
 
-        def tags
-          ::Contrast::CONFIG.root.assess&.tags
-        end
-
         def disabled_rules
-          # TODO: RUBY-903
-          ::Contrast::CONFIG.root.assess&.rules&.disabled_rules ||
-              ::Contrast::SETTINGS.assess_state.disabled_assess_rules ||
-              []
+          rules&.disabled_rules || ::Contrast::SETTINGS.assess_state.disabled_assess_rules || []
         end
 
         def track_original_object?
-          if @_track_original_object.nil?
-            @_track_original_object = !false?(::Contrast::CONFIG.root.assess.enable_original_object)
-          end
+          @_track_original_object = !false?(enable_original_object) if @_track_original_object.nil?
 
           @_track_original_object
         end
@@ -118,26 +187,11 @@ module Contrast
           ::Contrast::SETTINGS.assess_state.session_id
         end
 
-        def max_source_events
-          ::Contrast::CONFIG.root.assess.max_context_source_events
-        end
-
-        def max_propagation_events
-          ::Contrast::CONFIG.root.assess.max_propagation_events
-        end
-
-        def time_limit_threshold
-          ::Contrast::CONFIG.root.assess.time_limit_threshold
-        end
-
-        def max_rule_reported
-          ::Contrast::CONFIG.root.assess.max_rule_reported
-        end
-
+        # rubocop:enable Naming/MemoizedInstanceVariableName
         private
 
         def forcibly_enabled?
-          @_forcibly_enabled = true?(::Contrast::CONFIG.root.assess.enable) if @_forcibly_enabled.nil?
+          @_forcibly_enabled = true?(::Contrast::CONFIG.assess.enable) if @_forcibly_enabled.nil?
           @_forcibly_enabled
         end
       end