contrast-agent 6.8.0 → 6.9.0

data/lib/contrast/config/server_configuration.rb

@@ -1,12 +1,18 @@
 # Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
 # frozen_string_literal: true
 
+require 'contrast/config/base_configuration'
+
 module Contrast
   module Config
     # Common Configuration settings. Those in this section pertain to the server identification functionality of the
     # Agent.
     class ServerConfiguration
       include Contrast::Config::BaseConfiguration
+      include Contrast::Components::ComponentBase
+
+      CANON_NAME = 'server'
+      CONFIG_VALUES = %w[tags environment version].cs__freeze
 
       # @return [String, nil]
       attr_reader :name
@@ -14,14 +20,19 @@ module Contrast
       attr_accessor :path
       # @return [String, nil]
       attr_accessor :type
-      # @return [Array, nil]
-      attr_accessor :tags
+      attr_writer :tags
       # @return [String, nil]
       attr_accessor :environment
       # @return [String, nil]
       attr_accessor :version
+      # @return [String]
+      attr_reader :canon_name
+      # @return [Array]
+      attr_reader :config_values
 
       def initialize hsh = {}
+        @config_values = CONFIG_VALUES
+        @canon_name = CANON_NAME
         return unless hsh
 
         @path = hsh[:path]
@@ -31,6 +42,34 @@ module Contrast
         @environment = hsh[:environment]
         @version = hsh[:version]
       end
+
+      # @return [String, nil]
+      def tags
+        stringify_array(@tags)
+      end
+
+      # Converts current configuration to effective config values class and appends them to
+      # EffectiveConfig class.
+      #
+      # @param effective_config [Contrast::Agent::DiagnosticsConfig::EffectiveConfig]
+      def to_effective_config effective_config
+        super
+        add_single_effective_value(effective_config,
+                                   'type',
+                                   Contrast::APP_CONTEXT.server_type,
+                                   CANON_NAME,
+                                   "#{ CONTRAST }.#{ CANON_NAME }")
+        add_single_effective_value(effective_config,
+                                   'name',
+                                   Contrast::APP_CONTEXT.server_name,
+                                   CANON_NAME,
+                                   "#{ CONTRAST }.#{ CANON_NAME }")
+        add_single_effective_value(effective_config,
+                                   'path',
+                                   Contrast::APP_CONTEXT.server_path,
+                                   CANON_NAME,
+                                   "#{ CONTRAST }.#{ CANON_NAME }")
+      end
     end
   end
 end

data/lib/contrast/configuration.rb

@@ -13,6 +13,7 @@ require 'contrast/components/scope'
 require 'contrast/components/inventory'
 require 'contrast/components/protect'
 require 'contrast/components/assess'
+require 'contrast/components/config/sources'
 require 'contrast/config/server_configuration'
 
 module Contrast
@@ -45,6 +46,12 @@ module Contrast
     attr_writer :protect
     # @return [Boolean, nil]
     attr_accessor :enable
+    # @return [Hash]
+    attr_accessor :loaded_config
+    # @return [Contrast::Config::Sources]
+    attr_accessor :sources
+    # @return [String,nil]
+    attr_reader :config_file
 
     DEFAULT_YAML_PATH  = 'contrast_security.yaml'
     MILLISECOND_MARKER = '_ms'
@@ -53,18 +60,26 @@ module Contrast
     KEYS_TO_REDACT = %i[api_key url service_key user_name].cs__freeze
     REDACTED = '**REDACTED**'
 
-    def initialize cli_options = nil, default_name = DEFAULT_YAML_PATH
+    def initialize cli_options = nil, default_name = DEFAULT_YAML_PATH # rubocop:disable Metrics/AbcSize
       @default_name = default_name
 
       # Load config_kv from file
       config_kv = deep_symbolize_all_keys(load_config)
+      config_sources = assign_source_to(config_kv, Contrast::Components::Config::Sources::YAML)
 
       # Overlay CLI options - they take precedence over config file
       cli_options = deep_symbolize_all_keys(cli_options)
-      config_kv = deep_merge(cli_options, config_kv) if cli_options
+      if cli_options
+        config_kv = deep_merge(cli_options, config_kv)
+        config_sources = deep_merge(assign_source_to(cli_options, Contrast::Components::Config::Sources::CLI),
+                                    config_sources)
+      end
 
       # Some in-flight rewrites to maintain backwards compatibility
       config_kv = update_prop_keys(config_kv)
+      @loaded_config = config_kv
+
+      @sources = Contrast::Components::Config::Sources.new(config_sources)
 
       @api = Contrast::Components::Api::Interface.new(config_kv[:api])
       @enable = config_kv[:enable]
@@ -132,6 +147,7 @@ module Contrast
           next
         end
         config = yaml_to_hash(path) || {}
+        @config_file = path
         break
       end
 
@@ -307,5 +323,15 @@ module Contrast
     def redactable? key
       KEYS_TO_REDACT.include?(key.to_sym)
     end
+
+    def assign_source_to hash, source = Contrast::Components::Config::Sources::YAML
+      hash.transform_values do |value|
+        if value.is_a?(Hash)
+          assign_source_to(value, source)
+        else
+          source
+        end
+      end
+    end
   end
 end

data/lib/contrast/extension/assess/erb.rb

@@ -39,7 +39,7 @@ module ERBPropagator
     # @param used_binding [Binding] the binding in of the current event, saved as preshift argument
     # @param erb_pre_result [String] the source saved in the preshift
     # @param properties [Contrast::Agent::Assess::Properties] properties of the target if none create new
-    # @param parent_events [Array<Contrast::Agent::Assess::ContrastEvent>] parents event extracted from the source
+    # @param parent_events [Array<Contrast::Agent::Reporting::FindingEvent>] parents event extracted from the source
     #                                                                      properties
     # @param ret [String] the Return of the invoked method
     # @return [Array<Symbol>]

data/lib/contrast/utils/assess/event_limit_utils.rb

@@ -12,18 +12,19 @@ module Contrast
       module EventLimitUtils
         include Contrast::Components::Logger::InstanceMethods
         # Checks to see if the event limit for the policy type has been met or exceeded
-        # @param method_policy [Contrast::Agent::Patching::Policy::MethodPolicy] method to check for event limit
-        def event_limit? method_policy
+        # @param policy [Contrast::Agent::Patching::Policy::MethodPolicy,
+        #   Contrast::Agent::Patching::Policy::TriggerNode] method to check for event limit
+        def event_limit? policy
           return false unless (context = Contrast::Agent::REQUEST_TRACKER.current)
 
-          if method_policy.source_node
+          if policy.source_node
             max =  ::Contrast::ASSESS.max_context_source_events
-            return at_limit?(method_policy, context.source_event_count, max)
-
+            return at_limit?(policy, context.source_event_count, max, context)
           end
-          if method_policy.propagation_node
+
+          if policy.propagation_node
             max = ::Contrast::ASSESS.max_propagation_events
-            return at_limit?(method_policy, context.propagation_event_count, max)
+            return at_limit?(policy, context.propagation_event_count, max, context)
           end
 
           false # policy does not have limit
@@ -65,8 +66,10 @@ module Contrast
         private
 
         # helper method to check limit and log when necessary
-        def at_limit? method_policy, current_count, event_max
+        def at_limit? method_policy, current_count, event_max, context
           if current_count == event_max
+            return if event_limit_counts.key?(get_event_limit_key(method_policy, context))
+
             logger.warn('Event Limit Reached:',
                         {
                             count: current_count,
@@ -76,16 +79,21 @@ module Contrast
                         })
             # increment to be over count for logging purposes
             increment_event_count(method_policy)
+            increment_event_limit_logs(method_policy, context)
+
             return true
           elsif current_count > event_max
-            # increment to be over count for logging purposes
             increment_event_count(method_policy)
+            return if event_limit_counts.key?(get_event_limit_key(method_policy, context))
+
+            # increment to be over count for logging purposes
             logger.warn('Event Limit Exceeded:',
                         {
                             count: current_count,
                             policy: method_policy.method_name,
                             node: method_policy
                         })
+            increment_event_limit_logs(method_policy, context)
             return true
           end
           false
@@ -95,6 +103,20 @@ module Contrast
           @_rule_counts ||= Hash.new { |h, k| h[k] = 0 }
         end
 
+        def event_limit_counts
+          @_event_limit_counts ||= Hash.new { |h, k| h[k] = 0 }
+        end
+
+        def get_event_limit_key method_policy, context
+          "#{ method_policy.method_name }_#{ context.request.__id__ }"
+        end
+
+        def increment_event_limit_logs method_policy, context
+          event_limit_counter = get_event_limit_key(method_policy, context)
+
+          event_limit_counts[event_limit_counter] += 1
+        end
+
         # the time threshold for which to track rule counts resets when now >= threshold_time_limit
         # @return [Integer]
         def threshold_time_limit

data/lib/contrast/utils/assess/trigger_method_utils.rb

@@ -1,12 +1,15 @@
 # Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
 # frozen_string_literal: true
 
+require 'contrast/utils/assess/event_limit_utils'
+
 module Contrast
   module Utils
     module Assess
       # This module will include all methods for some internal validations/appliers in the TriggerMethod module
       # and some other module methods from the same place, so we can ease the main module
       module TriggerMethodUtils
+        extend Contrast::Utils::Assess::EventLimitUtils
         # A request is reportable if it is not from ActionController::Live
         #
         # @param env [Hash] the env of the Request
@@ -33,10 +36,10 @@ module Contrast
 
         # Finds the first request along the left most tree of parent events
         #
-        # @param event [Contrast::Agent::Assess::ContrastEvent|Contrast::Agent::Assess::Events::SourceEvent]
+        # @param event [Contrast::Agent::Reporting::FindingEvent]
         # @return [Contrast::Agent::Request, nil]
         def find_event_request event
-          return event.request if event.cs__is_a?(Contrast::Agent::Assess::Events::SourceEvent)
+          return event.request if event&.source_type
 
           idx = 0
           while idx <= event.parent_events.length
@@ -44,9 +47,7 @@ module Contrast
             return found if found
 
             idx += 1
-            return event.request if event.request
           end
-          return unless event.cs__is_a?(Contrast::Agent::Assess::Events::SourceEvent)
 
           event.request
         end

data/lib/contrast/utils/hash_digest.rb

@@ -61,8 +61,8 @@ module Contrast
       def update_on_sources events
         events.each do |event|
           event.event_sources.each do |source|
-            update(source.type)
-            update(source.name) # rubocop:disable Security/Module/Name
+            update(source.source_type)
+            update(source.source_name)
           end
         end
       end

data/lib/contrast/utils/input_classification_base.rb

@@ -133,8 +133,7 @@ module Contrast
             input_eval = Contrast::AGENT_LIB.eval_input(value,
                                                         convert_input_type(input_type),
                                                         Contrast::AGENT_LIB.rule_set[rule_id],
-                                                        Contrast::AGENT_LIB.
-                                                          eval_option[:WORTHWATCHING])
+                                                        Contrast::AGENT_LIB.eval_option[:WORTHWATCHING])
 
             ia_result = new_ia_result(rule_id, input_type, request.path, value)
             score = input_eval&.score || 0

data/lib/contrast/utils/reporting/application_activity_batch_utils.rb

@@ -0,0 +1,81 @@
+# Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
+# frozen_string_literal: true
+
+require 'contrast/agent/reporting/reporting_events/application_activity'
+
+module Contrast
+  module Utils
+    module Reporting
+      # ApplicationActivityBatchUtils handles batching and reporting of ApplicationActivity events to TeamServer at a
+      # set interval
+      module ApplicationActivityBatchUtils
+        DEFAULT_REPORTING_INTERVAL_MS = 30_000.cs__freeze
+
+        # @return [Integer] time when activity batch was created in ms
+        attr_reader :batch_age
+
+        # Merge a ApplicationActivity into the ApplicationActivityBatch
+        # @param activity [Contrast::Agent::Reporting::ApplicationActivity] from a RequestContext
+        def add_activity_to_batch activity
+          return unless activity
+
+          activity_batch.query_count += activity.query_count
+          activity_batch.routes << activity.routes
+          activity_batch.routes.flatten!
+          merge_attackers(activity)
+          activity_batch.attach_inventory(activity.inventory) unless activity.inventory.empty?
+        end
+
+        # If the batch can be reported, mask the data and add it to the reporting queue, then reset the activity_batch
+        def report_batch
+          return unless report_batch?
+          return unless (reporter = Contrast::Agent.reporter)
+
+          Contrast::Agent::Reporting::Masker.mask(activity_batch)
+          reporter&.send_event(activity_batch)
+          reset_activity_batch
+        end
+
+        # @return Contrast::Agent::Reporting::ApplicationActivity
+        def activity_batch
+          return @activity_batch unless @activity_batch.nil?
+
+          reset_activity_batch
+          @activity_batch
+        end
+
+        private
+
+        def merge_attackers activity
+          return if activity.defend.attackers.empty?
+
+          activity.defend.attackers.each do |attacker|
+            if (existing = activity_batch.defend.find_existing_attacker_activity(attacker))
+              attacker.protection_rules.each_key do |key|
+                activity_batch.defend.attach_existing(existing, attacker, key)
+              end
+            else
+              activity_batch.defend.attackers << attacker
+            end
+          end
+        end
+
+        # resets the activity_batch object and it's batch_age
+        def reset_activity_batch
+          @batch_age = Contrast::Utils::Timer.now_ms
+          @activity_batch = Contrast::Agent::Reporting::ApplicationActivity.new
+        end
+
+        # @return [Boolean] if the age of the batch is outside the reporting interval
+        def report_batch?
+          reporting_interval <= (Contrast::Utils::Timer.now_ms - batch_age)
+        end
+
+        # @return [Integer] interval to report to TeamServer in seconds
+        def reporting_interval
+          Contrast::AGENT.polling.batch_reporting_interval_ms.to_i || DEFAULT_REPORTING_INTERVAL_MS
+        end
+      end
+    end
+  end
+end

data/lib/contrast/utils/routes_sent.rb

@@ -0,0 +1,60 @@
+# Copyright (c) 2022 Contrast Security, Inc. See https://www.contrastsecurity.com/enduser-terms-0317a for more details.
+# frozen_string_literal: true
+
+# require 'contrast/components/logger'
+# require 'contrast/agent/telemetry/events/exceptions/telemetry_exception_event'
+
+module Contrast
+  module Utils
+    # This is the RoutesSent class, which determines whether observed routes can be sent to TeamServer.
+    # Routes that have not been seen (according to the cache) can be sent, as well as any route that
+    # # has been seen but not within the time limit.
+    class RoutesSent
+      # include Contrast::Components::Logger::InstanceMethods
+      ROUTES_LIMIT = 500
+      TIME_LIMIT_IN_SECONDS = 3600
+
+      attr_accessor :cache
+
+      def initialize
+        @cache = {}
+      end
+
+      # Determine whether the provided route can be sent to TeamServer.
+      #
+      # @param [Contrast::Agent::Reporting::ObservedRoute] the route
+      # @return [boolean]
+      def sendable? route
+        route_hash = route.hash_id
+
+        # If hash doesn't exist in @cache...
+        #   - Add hash to @cache (with Time.now)
+        #   - Clear oldest entries (if more than ROUTES_LIMIT)
+        #   - Return *true*
+        unless cache.key?(route_hash)
+          cache[route_hash] = Time.now
+          remove_oldest_entries!
+          return true
+        end
+
+        # If hash exists in @cache...
+        #   - Return *true* if more than a minute since time recorded for hash
+        #   - Return *false* if not than a minute since time recorded for hash
+        return false unless Time.now.to_i - cache.fetch(route_hash, 0).to_i > TIME_LIMIT_IN_SECONDS
+
+        cache[route_hash] = Time.now
+        true
+      end
+
+      private
+
+      def remove_oldest_entries!
+        return if cache.size < ROUTES_LIMIT
+
+        route_hashes = cache.sort_by { |_, v| -v.tv_nsec }.
+            to_h.keys.slice(0, ROUTES_LIMIT)
+        @cache = cache.slice(*route_hashes)
+      end
+    end
+  end
+end

data/lib/contrast/utils/telemetry_client.rb

@@ -97,8 +97,7 @@ module Contrast
       # @param event [Contrast::Agent::Telemetry::Event, Array<Contrast::Agent::Telemetry::TelemetryException::Event>]
       # @return [String] - JSON
       def get_event_json event
-        hsh = [event.to_controlled_hash]
-        hsh.to_json
+        Array(event.to_controlled_hash).to_json
       rescue Exception => e # rubocop:disable Lint/RescueException
         logger.error('Unable to convert TelemetryEvent to JSON string', e, hsh)
         raise(e)

data/lib/contrast/utils/timer.rb

@@ -22,6 +22,22 @@ module Contrast
       def self.now_ms
         (Time.now.to_f * 1000).to_i
       end
+
+      # Return current time in iso8601 format.
+      #
+      # @return[String]
+      def self.time_now
+        Time.now.utc.iso8601(7)
+      end
+
+      # Converts time given in ms format form TS to HttpDate.
+      # Returns time format for If-Modified-Since: <day-name>, <day> <month> <year> <hour>:<minute>:<second> GMT
+      # Note: The Time class treats GMT (Greenwich Mean Time) and UTC (Coordinated Universal Time) as equivalent.
+      #
+      # @param time [Integer] time in ms.
+      def self.ms_to_httpdate time
+        Time.at(time / 1000).httpdate unless time.nil?
+      end
     end
   end
 end

data/lib/contrast.rb

@@ -60,12 +60,13 @@ require 'contrast/components/protect'
 require 'contrast/components/sampling'
 require 'contrast/components/scope'
 require 'contrast/components/settings'
+require 'contrast/utils/routes_sent'
 require 'contrast/utils/telemetry_hash'
 require 'contrast/utils/telemetry'
 require 'contrast/agent/telemetry/events/exceptions/telemetry_exception_event'
 require 'contrast/agent_lib/interface'
 
-module Contrast
+module Contrast # :nodoc:
   CONFIG = Contrast::Components::Config::Interface.new
   SCOPE = Contrast::Components::Scope::Interface.new
   API = CONFIG.api
@@ -81,6 +82,7 @@ end
 
 module Contrast
   TELEMETRY_EXCEPTIONS = (Contrast::Utils::TelemetryHash.new if Contrast::Utils::Telemetry.exceptions_enabled?)
+  ROUTES_SENT = Contrast::Utils::RoutesSent.new
 end
 
 # This needs to be required very early, after component interfaces, and before instrumentation attempts

data/ruby-agent.gemspec

@@ -101,7 +101,11 @@ end
 
 # Dependencies not mocked out during RSpec that we test real code of, beyond just frameworks.
 def self.add_tested_gems spec
-  spec.add_development_dependency 'async'
+  if RUBY_VERSION < '3.0.0'
+    spec.add_development_dependency 'async', '~> 1.30.3'
+  else
+    spec.add_development_dependency 'async'
+  end
   spec.add_development_dependency 'execjs'
   spec.add_development_dependency 'rhino'
   spec.add_development_dependency 'sqlite3'

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: contrast-agent
 version: !ruby/object:Gem::Version
-  version: 6.8.0
+  version: 6.9.0
 platform: ruby
 authors:
 - galen.palmer@contrastsecurity.com
@@ -13,7 +13,7 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2022-09-08 00:00:00.000000000 Z
+date: 2022-10-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -305,16 +305,16 @@ dependencies:
   name: async
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 1.30.3
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 1.30.3
 - !ruby/object:Gem::Dependency
   name: execjs
   requirement: !ruby/object:Gem::Requirement
@@ -678,22 +678,22 @@ email:
 executables: []
 extensions:
 - ext/cs__common/extconf.rb
-- ext/cs__assess_hash/extconf.rb
-- ext/cs__assess_basic_object/extconf.rb
-- ext/cs__assess_string/extconf.rb
+- ext/cs__assess_module/extconf.rb
+- ext/cs__assess_marshal_module/extconf.rb
+- ext/cs__assess_array/extconf.rb
+- ext/cs__os_information/extconf.rb
+- ext/cs__assess_string_interpolation/extconf.rb
 - ext/cs__assess_regexp/extconf.rb
+- ext/cs__assess_string/extconf.rb
+- ext/cs__assess_hash/extconf.rb
 - ext/cs__assess_yield_track/extconf.rb
-- ext/cs__assess_string_interpolation/extconf.rb
-- ext/cs__scope/extconf.rb
 - ext/cs__contrast_patch/extconf.rb
-- ext/cs__assess_module/extconf.rb
 - ext/cs__assess_kernel/extconf.rb
-- ext/cs__assess_marshal_module/extconf.rb
 - ext/cs__assess_test/extconf.rb
-- ext/cs__os_information/extconf.rb
-- ext/cs__assess_array/extconf.rb
-- ext/cs__tests/extconf.rb
+- ext/cs__scope/extconf.rb
 - ext/cs__assess_fiber_track/extconf.rb
+- ext/cs__tests/extconf.rb
+- ext/cs__assess_basic_object/extconf.rb
 extra_rdoc_files: []
 files:
 - ".clang-format"
@@ -895,11 +895,8 @@ files:
 - lib/contrast.rb
 - lib/contrast/agent.rb
 - lib/contrast/agent/assess.rb
-- lib/contrast/agent/assess/contrast_event.rb
 - lib/contrast/agent/assess/contrast_object.rb
 - lib/contrast/agent/assess/events/event_data.rb
-- lib/contrast/agent/assess/events/event_factory.rb
-- lib/contrast/agent/assess/events/source_event.rb
 - lib/contrast/agent/assess/finalizers/freeze.rb
 - lib/contrast/agent/assess/finalizers/hash.rb
 - lib/contrast/agent/assess/policy/dynamic_source_factory.rb
@@ -997,6 +994,7 @@ files:
 - lib/contrast/agent/patching/policy/trigger_node.rb
 - lib/contrast/agent/protect/exploitable_collection.rb
 - lib/contrast/agent/protect/input_analyzer/input_analyzer.rb
+- lib/contrast/agent/protect/input_analyzer/worth_watching_analyzer.rb
 - lib/contrast/agent/protect/policy/applies_command_injection_rule.rb
 - lib/contrast/agent/protect/policy/applies_deserialization_rule.rb
 - lib/contrast/agent/protect/policy/applies_no_sqli_rule.rb
@@ -1113,8 +1111,8 @@ files:
 - lib/contrast/agent/reporting/reporting_events/route_coverage.rb
 - lib/contrast/agent/reporting/reporting_events/route_discovery.rb
 - lib/contrast/agent/reporting/reporting_events/route_discovery_observation.rb
-- lib/contrast/agent/reporting/reporting_events/server_activity.rb
 - lib/contrast/agent/reporting/reporting_events/server_reporting_event.rb
+- lib/contrast/agent/reporting/reporting_events/server_settings.rb
 - lib/contrast/agent/reporting/reporting_utilities/audit.rb
 - lib/contrast/agent/reporting/reporting_utilities/build_preflight.rb
 - lib/contrast/agent/reporting/reporting_utilities/endpoints.rb
@@ -1127,6 +1125,7 @@ files:
 - lib/contrast/agent/reporting/reporting_utilities/response_handler.rb
 - lib/contrast/agent/reporting/reporting_utilities/response_handler_mode.rb
 - lib/contrast/agent/reporting/reporting_utilities/response_handler_utils.rb
+- lib/contrast/agent/reporting/server_settings_worker.rb
 - lib/contrast/agent/reporting/settings/application_settings.rb
 - lib/contrast/agent/reporting/settings/assess.rb
 - lib/contrast/agent/reporting/settings/assess_server_feature.rb
@@ -1145,6 +1144,7 @@ files:
 - lib/contrast/agent/reporting/settings/rule_definition.rb
 - lib/contrast/agent/reporting/settings/sampling.rb
 - lib/contrast/agent/reporting/settings/sanitizer.rb
+- lib/contrast/agent/reporting/settings/security_logger.rb
 - lib/contrast/agent/reporting/settings/sensitive_data_masking.rb
 - lib/contrast/agent/reporting/settings/sensitive_data_masking_rule.rb
 - lib/contrast/agent/reporting/settings/server_features.rb
@@ -1195,9 +1195,11 @@ files:
 - lib/contrast/components/assess_rules.rb
 - lib/contrast/components/base.rb
 - lib/contrast/components/config.rb
+- lib/contrast/components/config/sources.rb
 - lib/contrast/components/heap_dump.rb
 - lib/contrast/components/inventory.rb
 - lib/contrast/components/logger.rb
+- lib/contrast/components/polling.rb
 - lib/contrast/components/protect.rb
 - lib/contrast/components/ruby_component.rb
 - lib/contrast/components/sampling.rb
@@ -1208,6 +1210,11 @@ files:
 - lib/contrast/config/api_proxy_configuration.rb
 - lib/contrast/config/base_configuration.rb
 - lib/contrast/config/certification_configuration.rb
+- lib/contrast/config/config.rb
+- lib/contrast/config/diagnostics.rb
+- lib/contrast/config/diagnostics_tools.rb
+- lib/contrast/config/effective_config.rb
+- lib/contrast/config/effective_config_value.rb
 - lib/contrast/config/env_variables.rb
 - lib/contrast/config/exception_configuration.rb
 - lib/contrast/config/protect_rule_configuration.rb
@@ -1288,9 +1295,11 @@ files:
 - lib/contrast/utils/os.rb
 - lib/contrast/utils/patching/policy/patch_utils.rb
 - lib/contrast/utils/patching/policy/patcher_utils.rb
+- lib/contrast/utils/reporting/application_activity_batch_utils.rb
 - lib/contrast/utils/request_utils.rb
 - lib/contrast/utils/resource_loader.rb
 - lib/contrast/utils/response_utils.rb
+- lib/contrast/utils/routes_sent.rb
 - lib/contrast/utils/sha256_builder.rb
 - lib/contrast/utils/stack_trace_utils.rb
 - lib/contrast/utils/string_utils.rb