contrast-agent 6.7.0 → 6.9.0

data/lib/contrast/utils/routes_sent.rb

@@ -0,0 +1,60 @@
+# Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
+# frozen_string_literal: true
+
+# require 'contrast/components/logger'
+# require 'contrast/agent/telemetry/events/exceptions/telemetry_exception_event'
+
+module Contrast
+  module Utils
+    # This is the RoutesSent class, which determines whether observed routes can be sent to TeamServer.
+    # Routes that have not been seen (according to the cache) can be sent, as well as any route that
+    # # has been seen but not within the time limit.
+    class RoutesSent
+      # include Contrast::Components::Logger::InstanceMethods
+      ROUTES_LIMIT = 500
+      TIME_LIMIT_IN_SECONDS = 3600
+
+      attr_accessor :cache
+
+      def initialize
+        @cache = {}
+      end
+
+      # Determine whether the provided route can be sent to TeamServer.
+      #
+      # @param [Contrast::Agent::Reporting::ObservedRoute] the route
+      # @return [boolean]
+      def sendable? route
+        route_hash = route.hash_id
+
+        # If hash doesn't exist in @cache...
+        #   - Add hash to @cache (with Time.now)
+        #   - Clear oldest entries (if more than ROUTES_LIMIT)
+        #   - Return *true*
+        unless cache.key?(route_hash)
+          cache[route_hash] = Time.now
+          remove_oldest_entries!
+          return true
+        end
+
+        # If hash exists in @cache...
+        #   - Return *true* if more than a minute since time recorded for hash
+        #   - Return *false* if not than a minute since time recorded for hash
+        return false unless Time.now.to_i - cache.fetch(route_hash, 0).to_i > TIME_LIMIT_IN_SECONDS
+
+        cache[route_hash] = Time.now
+        true
+      end
+
+      private
+
+      def remove_oldest_entries!
+        return if cache.size < ROUTES_LIMIT
+
+        route_hashes = cache.sort_by { |_, v| -v.tv_nsec }.
+            to_h.keys.slice(0, ROUTES_LIMIT)
+        @cache = cache.slice(*route_hashes)
+      end
+    end
+  end
+end

data/lib/contrast/utils/stack_trace_utils.rb

@@ -3,7 +3,6 @@
 
 require 'contrast/utils/object_share'
 require 'contrast/agent/reporting/reporting_events/application_defend_attack_sample_stack'
-require 'contrast/api'
 
 module Contrast
   module Utils
@@ -33,16 +32,7 @@ module Contrast
         end
 
         # Call and translate a caller_locations array to an array of
-        # StackTraceElement for TeamServer to display, excluding any Contrast
-        # code found.
-        #
-        # @return [Array<Contrast::Api::Dtm::StackTraceElement>]
-        def build_protect_stack_array
-          build_protect_stack(Contrast::Api::Dtm::StackTraceElement)
-        end
-
-        # Call and translate a caller_locations array to an array of
-        # StackTraceElement for TeamServer to display, excluding any Contrast
+        # ApplicationDefendAttackSampleStack for TeamServer to display, excluding any Contrast
         # code found.
         #
         # @return [Array<Contrast::Agent::Reporting::ApplicationDefendAttackSampleStack>]
@@ -59,10 +49,8 @@ module Contrast
           end
         end
 
-        # @param clazz [Class] Contrast::Api::Dtm::StackTraceElement or
-        #   Contrast::Agent::Reporting::ApplicationDefendAttackSampleStack
-        # @return [Array<Contrast::Agent::Reporting::ApplicationDefendAttackSampleStack|
-        #   Contrast::Api::Dtm::StackTraceElement>]
+        # @param clazz [Class] Contrast::Agent::Reporting::ApplicationDefendAttackSampleStack
+        # @return [Array<Contrast::Agent::Reporting::ApplicationDefendAttackSampleStack>]
         def build_protect_stack clazz
           stack = caller(3, 21)
           return [] unless stack

data/lib/contrast/utils/string_utils.rb

@@ -22,13 +22,6 @@ module Contrast
           !str.nil? && !str.to_s.empty?
         end
 
-        def protobuf_format data, truncate: true
-          data = data&.to_s
-          data = Contrast::Utils::StringUtils.force_utf8(data)
-          data = Contrast::Utils::StringUtils.truncate(data) if truncate
-          data
-        end
-
         # Protobuf has a very strict typing. Nil is not a String and will throw
         # an exception if you try to set it. Use this to be safe.
         # Uses the object share to avoid creating several new strings per request
@@ -93,6 +86,16 @@ module Contrast
             @_normalized_keys[str] = cut
           end
         end
+
+        # transform string from snake_case to Capitalized Text
+        #
+        # @param str[String] string to transform
+        # @return [String]
+        def transform_string str
+          return unless str
+
+          str.split('-').map(&:capitalize).join(' ')
+        end
       end
     end
   end

data/lib/contrast/utils/telemetry_client.rb

@@ -97,8 +97,7 @@ module Contrast
       # @param event [Contrast::Agent::Telemetry::Event, Array<Contrast::Agent::Telemetry::TelemetryException::Event>]
       # @return [String] - JSON
       def get_event_json event
-        hsh = [event.to_controlled_hash]
-        hsh.to_json
+        Array(event.to_controlled_hash).to_json
       rescue Exception => e # rubocop:disable Lint/RescueException
         logger.error('Unable to convert TelemetryEvent to JSON string', e, hsh)
         raise(e)

data/lib/contrast/utils/timer.rb

@@ -22,6 +22,22 @@ module Contrast
       def self.now_ms
         (Time.now.to_f * 1000).to_i
       end
+
+      # Return current time in iso8601 format.
+      #
+      # @return[String]
+      def self.time_now
+        Time.now.utc.iso8601(7)
+      end
+
+      # Converts time given in ms format form TS to HttpDate.
+      # Returns time format for If-Modified-Since: <day-name>, <day> <month> <year> <hour>:<minute>:<second> GMT
+      # Note: The Time class treats GMT (Greenwich Mean Time) and UTC (Coordinated Universal Time) as equivalent.
+      #
+      # @param time [Integer] time in ms.
+      def self.ms_to_httpdate time
+        Time.at(time / 1000).httpdate unless time.nil?
+      end
     end
   end
 end

data/lib/contrast.rb

@@ -55,18 +55,18 @@ end
 
 require 'contrast/components/assess'
 require 'contrast/components/config'
-require 'contrast/components/contrast_service'
 require 'contrast/components/logger'
 require 'contrast/components/protect'
 require 'contrast/components/sampling'
 require 'contrast/components/scope'
 require 'contrast/components/settings'
+require 'contrast/utils/routes_sent'
 require 'contrast/utils/telemetry_hash'
 require 'contrast/utils/telemetry'
 require 'contrast/agent/telemetry/events/exceptions/telemetry_exception_event'
-require 'protobuf' # TODO: RUBY-1438
+require 'contrast/agent_lib/interface'
 
-module Contrast
+module Contrast # :nodoc:
   CONFIG = Contrast::Components::Config::Interface.new
   SCOPE = Contrast::Components::Scope::Interface.new
   API = CONFIG.api
@@ -76,12 +76,13 @@ module Contrast
   INVENTORY = CONFIG.inventory
   AGENT = CONFIG.agent
   LOGGER = AGENT.logger
-  CONTRAST_SERVICE = Contrast::Components::ContrastService::Interface.new
+  AGENT_LIB = Contrast::AgentLib::Interface.new
   APP_CONTEXT = CONFIG.application
 end
 
 module Contrast
   TELEMETRY_EXCEPTIONS = (Contrast::Utils::TelemetryHash.new if Contrast::Utils::Telemetry.exceptions_enabled?)
+  ROUTES_SENT = Contrast::Utils::RoutesSent.new
 end
 
 # This needs to be required very early, after component interfaces, and before instrumentation attempts

data/resources/protect/policy.json

@@ -251,8 +251,7 @@
           }
         }
       ]
-    },
-    {
+    }, {
       "name": "sql-injection",
       "applicator": "Contrast::Agent::Protect::Policy::AppliesSqliRule",
       "applicator_method": "apply_rule",

data/ruby-agent.gemspec

@@ -101,7 +101,11 @@ end
 
 # Dependencies not mocked out during RSpec that we test real code of, beyond just frameworks.
 def self.add_tested_gems spec
-  spec.add_development_dependency 'async'
+  if RUBY_VERSION < '3.0.0'
+    spec.add_development_dependency 'async', '~> 1.30.3'
+  else
+    spec.add_development_dependency 'async'
+  end
   spec.add_development_dependency 'execjs'
   spec.add_development_dependency 'rhino'
   spec.add_development_dependency 'sqlite3'
@@ -117,7 +121,8 @@ end
 def self.add_dependencies spec
   spec.add_dependency 'ougai', '>= 1.8', '< 3.0.0'
   spec.add_dependency 'rack', '~> 2.0'
-  spec.add_dependency 'activesupport', '>= 3.2' # TODO: RUBY-1438 remove w/ protobuf code
+  spec.add_dependency 'contrast-agent-lib', '~> 0.1.0'
+  spec.add_dependency 'ffi', '~> 1.0'
 end
 
 # Enumerate the files required to build the Agent.
@@ -136,9 +141,6 @@ def self.add_files spec
         f.match(/(.*\.ya?ml)/)
   end
 
-  spec.files << 'lib/contrast/api/dtm.pb.rb'
-  spec.files << 'lib/contrast/api/settings.pb.rb'
-  spec.files += Dir['service_executables/**/*']
   spec.files += Dir['funchook/**/*']
   spec.files += Dir['shared_libraries/**/*']
 
@@ -179,7 +181,6 @@ Gem::Specification.new do |spec|
   spec.required_ruby_version = ['>= 2.7.0', '< 3.2.0']
 
   spec.bindir        = 'exe'
-  spec.executables   = ['contrast_service']
   # Keep cs__common first, it handles funchook.h right now.
   spec.extensions = Dir['ext/cs__common/extconf.rb', 'ext/**/extconf.rb']
   spec.require_paths = ['lib']

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: contrast-agent
 version: !ruby/object:Gem::Version
-  version: 6.7.0
+  version: 6.9.0
 platform: ruby
 authors:
 - galen.palmer@contrastsecurity.com
@@ -13,7 +13,7 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2022-08-31 00:00:00.000000000 Z
+date: 2022-10-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -305,16 +305,16 @@ dependencies:
   name: async
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 1.30.3
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 1.30.3
 - !ruby/object:Gem::Dependency
   name: execjs
   requirement: !ruby/object:Gem::Requirement
@@ -644,43 +644,56 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '2.0'
 - !ruby/object:Gem::Dependency
-  name: activesupport
+  name: contrast-agent-lib
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: 0.1.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.0
+- !ruby/object:Gem::Dependency
+  name: ffi
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '1.0'
 description: This gem instantiates a Rack middleware for rack-based web applications
   in order to provide Interactive Application Security Testing and Protection.
 email:
 - ruby@contrastsecurity.com
-executables:
-- contrast_service
+executables: []
 extensions:
 - ext/cs__common/extconf.rb
-- ext/cs__assess_hash/extconf.rb
-- ext/cs__assess_basic_object/extconf.rb
-- ext/cs__assess_string/extconf.rb
+- ext/cs__assess_module/extconf.rb
+- ext/cs__assess_marshal_module/extconf.rb
+- ext/cs__assess_array/extconf.rb
+- ext/cs__os_information/extconf.rb
+- ext/cs__assess_string_interpolation/extconf.rb
 - ext/cs__assess_regexp/extconf.rb
+- ext/cs__assess_string/extconf.rb
+- ext/cs__assess_hash/extconf.rb
 - ext/cs__assess_yield_track/extconf.rb
-- ext/cs__assess_string_interpolation/extconf.rb
-- ext/cs__scope/extconf.rb
 - ext/cs__contrast_patch/extconf.rb
-- ext/cs__assess_module/extconf.rb
 - ext/cs__assess_kernel/extconf.rb
-- ext/cs__assess_marshal_module/extconf.rb
 - ext/cs__assess_test/extconf.rb
-- ext/cs__os_information/extconf.rb
-- ext/cs__assess_array/extconf.rb
-- ext/cs__tests/extconf.rb
+- ext/cs__scope/extconf.rb
 - ext/cs__assess_fiber_track/extconf.rb
+- ext/cs__tests/extconf.rb
+- ext/cs__assess_basic_object/extconf.rb
 extra_rdoc_files: []
 files:
 - ".clang-format"
@@ -694,7 +707,6 @@ files:
 - Gemfile
 - LICENSE.txt
 - Rakefile
-- exe/contrast_service
 - ext/build_funchook.rb
 - ext/cs__assess_array/cs__assess_array.c
 - ext/cs__assess_array/cs__assess_array.h
@@ -883,11 +895,8 @@ files:
 - lib/contrast.rb
 - lib/contrast/agent.rb
 - lib/contrast/agent/assess.rb
-- lib/contrast/agent/assess/contrast_event.rb
 - lib/contrast/agent/assess/contrast_object.rb
 - lib/contrast/agent/assess/events/event_data.rb
-- lib/contrast/agent/assess/events/event_factory.rb
-- lib/contrast/agent/assess/events/source_event.rb
 - lib/contrast/agent/assess/finalizers/freeze.rb
 - lib/contrast/agent/assess/finalizers/hash.rb
 - lib/contrast/agent/assess/policy/dynamic_source_factory.rb
@@ -985,6 +994,7 @@ files:
 - lib/contrast/agent/patching/policy/trigger_node.rb
 - lib/contrast/agent/protect/exploitable_collection.rb
 - lib/contrast/agent/protect/input_analyzer/input_analyzer.rb
+- lib/contrast/agent/protect/input_analyzer/worth_watching_analyzer.rb
 - lib/contrast/agent/protect/policy/applies_command_injection_rule.rb
 - lib/contrast/agent/protect/policy/applies_deserialization_rule.rb
 - lib/contrast/agent/protect/policy/applies_no_sqli_rule.rb
@@ -997,11 +1007,14 @@ files:
 - lib/contrast/agent/protect/rule.rb
 - lib/contrast/agent/protect/rule/base.rb
 - lib/contrast/agent/protect/rule/base_service.rb
+- lib/contrast/agent/protect/rule/bot_blocker.rb
+- lib/contrast/agent/protect/rule/bot_blocker/bot_blocker_input_classification.rb
 - lib/contrast/agent/protect/rule/cmd_injection.rb
 - lib/contrast/agent/protect/rule/cmdi/cmdi_backdoors.rb
 - lib/contrast/agent/protect/rule/cmdi/cmdi_base_rule.rb
+- lib/contrast/agent/protect/rule/cmdi/cmdi_chained_command.rb
+- lib/contrast/agent/protect/rule/cmdi/cmdi_dangerous_path.rb
 - lib/contrast/agent/protect/rule/cmdi/cmdi_input_classification.rb
-- lib/contrast/agent/protect/rule/cmdi/cmdi_worth_watching.rb
 - lib/contrast/agent/protect/rule/default_scanner.rb
 - lib/contrast/agent/protect/rule/deserialization.rb
 - lib/contrast/agent/protect/rule/http_method_tampering.rb
@@ -1010,6 +1023,8 @@ files:
 - lib/contrast/agent/protect/rule/no_sqli/mongo_no_sql_scanner.rb
 - lib/contrast/agent/protect/rule/no_sqli/no_sqli_input_classification.rb
 - lib/contrast/agent/protect/rule/path_traversal.rb
+- lib/contrast/agent/protect/rule/path_traversal/path_traversal_input_classification.rb
+- lib/contrast/agent/protect/rule/path_traversal/path_traversal_semantic_security_bypass.rb
 - lib/contrast/agent/protect/rule/sql_sample_builder.rb
 - lib/contrast/agent/protect/rule/sqli.rb
 - lib/contrast/agent/protect/rule/sqli/default_sql_scanner.rb
@@ -1018,15 +1033,13 @@ files:
 - lib/contrast/agent/protect/rule/sqli/sqli_base_rule.rb
 - lib/contrast/agent/protect/rule/sqli/sqli_input_classification.rb
 - lib/contrast/agent/protect/rule/sqli/sqli_semantic/sqli_dangerous_functions.rb
-- lib/contrast/agent/protect/rule/sqli/sqli_worth_watching.rb
 - lib/contrast/agent/protect/rule/sqli/sqlite_sql_scanner.rb
 - lib/contrast/agent/protect/rule/unsafe_file_upload.rb
 - lib/contrast/agent/protect/rule/unsafe_file_upload/unsafe_file_upload_input_classification.rb
-- lib/contrast/agent/protect/rule/unsafe_file_upload/unsafe_file_upload_matcher.rb
 - lib/contrast/agent/protect/rule/xss.rb
+- lib/contrast/agent/protect/rule/xss/reflected_xss_input_classification.rb
 - lib/contrast/agent/protect/rule/xxe.rb
 - lib/contrast/agent/protect/rule/xxe/entity_wrapper.rb
-- lib/contrast/agent/reaction_processor.rb
 - lib/contrast/agent/reporting/attack_result/attack_result.rb
 - lib/contrast/agent/reporting/attack_result/rasp_rule_sample.rb
 - lib/contrast/agent/reporting/attack_result/response_type.rb
@@ -1049,6 +1062,8 @@ files:
 - lib/contrast/agent/reporting/details/xxe_details.rb
 - lib/contrast/agent/reporting/details/xxe_match.rb
 - lib/contrast/agent/reporting/details/xxe_wrapper.rb
+- lib/contrast/agent/reporting/input_analysis/details/bot_blocker_details.rb
+- lib/contrast/agent/reporting/input_analysis/details/protect_rule_details.rb
 - lib/contrast/agent/reporting/input_analysis/input_analysis.rb
 - lib/contrast/agent/reporting/input_analysis/input_analysis_result.rb
 - lib/contrast/agent/reporting/input_analysis/input_type.rb
@@ -1096,8 +1111,8 @@ files:
 - lib/contrast/agent/reporting/reporting_events/route_coverage.rb
 - lib/contrast/agent/reporting/reporting_events/route_discovery.rb
 - lib/contrast/agent/reporting/reporting_events/route_discovery_observation.rb
-- lib/contrast/agent/reporting/reporting_events/server_activity.rb
 - lib/contrast/agent/reporting/reporting_events/server_reporting_event.rb
+- lib/contrast/agent/reporting/reporting_events/server_settings.rb
 - lib/contrast/agent/reporting/reporting_utilities/audit.rb
 - lib/contrast/agent/reporting/reporting_utilities/build_preflight.rb
 - lib/contrast/agent/reporting/reporting_utilities/endpoints.rb
@@ -1110,6 +1125,7 @@ files:
 - lib/contrast/agent/reporting/reporting_utilities/response_handler.rb
 - lib/contrast/agent/reporting/reporting_utilities/response_handler_mode.rb
 - lib/contrast/agent/reporting/reporting_utilities/response_handler_utils.rb
+- lib/contrast/agent/reporting/server_settings_worker.rb
 - lib/contrast/agent/reporting/settings/application_settings.rb
 - lib/contrast/agent/reporting/settings/assess.rb
 - lib/contrast/agent/reporting/settings/assess_server_feature.rb
@@ -1128,6 +1144,7 @@ files:
 - lib/contrast/agent/reporting/settings/rule_definition.rb
 - lib/contrast/agent/reporting/settings/sampling.rb
 - lib/contrast/agent/reporting/settings/sanitizer.rb
+- lib/contrast/agent/reporting/settings/security_logger.rb
 - lib/contrast/agent/reporting/settings/sensitive_data_masking.rb
 - lib/contrast/agent/reporting/settings/sensitive_data_masking_rule.rb
 - lib/contrast/agent/reporting/settings/server_features.rb
@@ -1141,7 +1158,6 @@ files:
 - lib/contrast/agent/response.rb
 - lib/contrast/agent/rule_set.rb
 - lib/contrast/agent/scope.rb
-- lib/contrast/agent/service_heartbeat.rb
 - lib/contrast/agent/static_analysis.rb
 - lib/contrast/agent/telemetry/base.rb
 - lib/contrast/agent/telemetry/events/event.rb
@@ -1159,36 +1175,18 @@ files:
 - lib/contrast/agent/tracepoint_hook.rb
 - lib/contrast/agent/version.rb
 - lib/contrast/agent/worker_thread.rb
-- lib/contrast/api.rb
+- lib/contrast/agent_lib/api/command_injection.rb
+- lib/contrast/agent_lib/api/init.rb
+- lib/contrast/agent_lib/api/input_tracing.rb
+- lib/contrast/agent_lib/api/method_tempering.rb
+- lib/contrast/agent_lib/api/panic.rb
+- lib/contrast/agent_lib/api/path_semantic_file_security_bypass.rb
+- lib/contrast/agent_lib/interface.rb
+- lib/contrast/agent_lib/interface_base.rb
+- lib/contrast/agent_lib/return_types/eval_result.rb
+- lib/contrast/agent_lib/test.rb
 - lib/contrast/api/.gitkeep
-- lib/contrast/api/communication.rb
 - lib/contrast/api/communication/connection_status.rb
-- lib/contrast/api/communication/messaging_queue.rb
-- lib/contrast/api/communication/response_processor.rb
-- lib/contrast/api/communication/service_lifecycle.rb
-- lib/contrast/api/communication/socket.rb
-- lib/contrast/api/communication/socket_client.rb
-- lib/contrast/api/communication/speedracer.rb
-- lib/contrast/api/communication/tcp_socket.rb
-- lib/contrast/api/communication/unix_socket.rb
-- lib/contrast/api/decorators.rb
-- lib/contrast/api/decorators/address.rb
-- lib/contrast/api/decorators/agent_startup.rb
-- lib/contrast/api/decorators/application_settings.rb
-- lib/contrast/api/decorators/application_startup.rb
-- lib/contrast/api/decorators/bot_blocker.rb
-- lib/contrast/api/decorators/http_request.rb
-- lib/contrast/api/decorators/input_analysis.rb
-- lib/contrast/api/decorators/instrumentation_mode.rb
-- lib/contrast/api/decorators/ip_denylist.rb
-- lib/contrast/api/decorators/message.rb
-- lib/contrast/api/decorators/rasp_rule_sample.rb
-- lib/contrast/api/decorators/response_type.rb
-- lib/contrast/api/decorators/server_features.rb
-- lib/contrast/api/decorators/user_input.rb
-- lib/contrast/api/decorators/virtual_patch.rb
-- lib/contrast/api/dtm.pb.rb
-- lib/contrast/api/settings.pb.rb
 - lib/contrast/components/agent.rb
 - lib/contrast/components/api.rb
 - lib/contrast/components/app_context.rb
@@ -1197,21 +1195,26 @@ files:
 - lib/contrast/components/assess_rules.rb
 - lib/contrast/components/base.rb
 - lib/contrast/components/config.rb
-- lib/contrast/components/contrast_service.rb
+- lib/contrast/components/config/sources.rb
 - lib/contrast/components/heap_dump.rb
 - lib/contrast/components/inventory.rb
 - lib/contrast/components/logger.rb
+- lib/contrast/components/polling.rb
 - lib/contrast/components/protect.rb
 - lib/contrast/components/ruby_component.rb
 - lib/contrast/components/sampling.rb
 - lib/contrast/components/scope.rb
 - lib/contrast/components/security_logger.rb
-- lib/contrast/components/service.rb
 - lib/contrast/components/settings.rb
 - lib/contrast/config.rb
 - lib/contrast/config/api_proxy_configuration.rb
 - lib/contrast/config/base_configuration.rb
 - lib/contrast/config/certification_configuration.rb
+- lib/contrast/config/config.rb
+- lib/contrast/config/diagnostics.rb
+- lib/contrast/config/diagnostics_tools.rb
+- lib/contrast/config/effective_config.rb
+- lib/contrast/config/effective_config_value.rb
 - lib/contrast/config/env_variables.rb
 - lib/contrast/config/exception_configuration.rb
 - lib/contrast/config/protect_rule_configuration.rb
@@ -1262,7 +1265,6 @@ files:
 - lib/contrast/logger/time.rb
 - lib/contrast/security_exception.rb
 - lib/contrast/tasks/config.rb
-- lib/contrast/tasks/service.rb
 - lib/contrast/utils/assess/event_limit_utils.rb
 - lib/contrast/utils/assess/object_store.rb
 - lib/contrast/utils/assess/propagation_method_utils.rb
@@ -1280,7 +1282,7 @@ files:
 - lib/contrast/utils/hash_digest_extend.rb
 - lib/contrast/utils/head_dump_utils_extend.rb
 - lib/contrast/utils/heap_dump_util.rb
-- lib/contrast/utils/input_classification.rb
+- lib/contrast/utils/input_classification_base.rb
 - lib/contrast/utils/invalid_configuration_util.rb
 - lib/contrast/utils/io_util.rb
 - lib/contrast/utils/job_servers_running.rb
@@ -1293,9 +1295,11 @@ files:
 - lib/contrast/utils/os.rb
 - lib/contrast/utils/patching/policy/patch_utils.rb
 - lib/contrast/utils/patching/policy/patcher_utils.rb
+- lib/contrast/utils/reporting/application_activity_batch_utils.rb
 - lib/contrast/utils/request_utils.rb
 - lib/contrast/utils/resource_loader.rb
 - lib/contrast/utils/response_utils.rb
+- lib/contrast/utils/routes_sent.rb
 - lib/contrast/utils/sha256_builder.rb
 - lib/contrast/utils/stack_trace_utils.rb
 - lib/contrast/utils/string_utils.rb
@@ -1306,77 +1310,12 @@ files:
 - lib/contrast/utils/telemetry_identifier.rb
 - lib/contrast/utils/thread_tracker.rb
 - lib/contrast/utils/timer.rb
-- lib/protobuf.rb
-- lib/protobuf/code_generator.rb
-- lib/protobuf/decoder.rb
-- lib/protobuf/deprecation.rb
-- lib/protobuf/descriptors.rb
-- lib/protobuf/descriptors/google/protobuf/compiler/plugin.pb.rb
-- lib/protobuf/descriptors/google/protobuf/descriptor.pb.rb
-- lib/protobuf/encoder.rb
-- lib/protobuf/enum.rb
-- lib/protobuf/exceptions.rb
-- lib/protobuf/field.rb
-- lib/protobuf/field/base_field.rb
-- lib/protobuf/field/base_field_object_definitions.rb
-- lib/protobuf/field/bool_field.rb
-- lib/protobuf/field/bytes_field.rb
-- lib/protobuf/field/double_field.rb
-- lib/protobuf/field/enum_field.rb
-- lib/protobuf/field/field_array.rb
-- lib/protobuf/field/field_hash.rb
-- lib/protobuf/field/fixed32_field.rb
-- lib/protobuf/field/fixed64_field.rb
-- lib/protobuf/field/float_field.rb
-- lib/protobuf/field/int32_field.rb
-- lib/protobuf/field/int64_field.rb
-- lib/protobuf/field/integer_field.rb
-- lib/protobuf/field/message_field.rb
-- lib/protobuf/field/sfixed32_field.rb
-- lib/protobuf/field/sfixed64_field.rb
-- lib/protobuf/field/signed_integer_field.rb
-- lib/protobuf/field/sint32_field.rb
-- lib/protobuf/field/sint64_field.rb
-- lib/protobuf/field/string_field.rb
-- lib/protobuf/field/uint32_field.rb
-- lib/protobuf/field/uint64_field.rb
-- lib/protobuf/field/varint_field.rb
-- lib/protobuf/generators/base.rb
-- lib/protobuf/generators/enum_generator.rb
-- lib/protobuf/generators/extension_generator.rb
-- lib/protobuf/generators/field_generator.rb
-- lib/protobuf/generators/file_generator.rb
-- lib/protobuf/generators/group_generator.rb
-- lib/protobuf/generators/message_generator.rb
-- lib/protobuf/generators/option_generator.rb
-- lib/protobuf/generators/printable.rb
-- lib/protobuf/generators/service_generator.rb
-- lib/protobuf/lifecycle.rb
-- lib/protobuf/logging.rb
-- lib/protobuf/message.rb
-- lib/protobuf/message/fields.rb
-- lib/protobuf/message/serialization.rb
-- lib/protobuf/optionable.rb
-- lib/protobuf/tasks.rb
-- lib/protobuf/tasks/compile.rake
-- lib/protobuf/varint.rb
-- lib/protobuf/varint_pure.rb
-- lib/protobuf/version.rb
-- lib/protobuf/wire_type.rb
-- proto/dynamic_discovery.proto
-- proto/google/protobuf/compiler/plugin.proto
-- proto/google/protobuf/descriptor.proto
-- proto/rpc.proto
 - resources/assess/policy.json
 - resources/deadzone/policy.json
 - resources/inventory/policy.json
 - resources/protect/policy.json
 - resources/test_marker.txt
 - ruby-agent.gemspec
-- service_executables/.gitkeep
-- service_executables/VERSION
-- service_executables/linux/contrast-service
-- service_executables/mac/contrast-service
 - shared_libraries/.gitkeep
 - sonar-project.properties
 homepage: https://www.contrastsecurity.com