@ampsec/platform-client 64.1.1 → 64.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/build/src/dto/customScores.dto.d.ts +4 -0
- package/build/src/dto/customScores.dto.js +2 -0
- package/build/src/dto/customScores.dto.js.map +1 -1
- package/build/src/dto/enums/findingKind.d.ts +1 -0
- package/build/src/dto/enums/findingKind.js +77 -1
- package/build/src/dto/enums/findingKind.js.map +1 -1
- package/build/src/dto/findings.dto.d.ts +11 -0
- package/build/src/dto/findings.dto.js +2 -0
- package/build/src/dto/findings.dto.js.map +1 -1
- package/build/src/dto/platform/platform.findings.dto.d.ts +6 -0
- package/package.json +1 -1
- package/src/dto/customScores.dto.ts +4 -0
- package/src/dto/enums/findingKind.ts +76 -0
- package/src/dto/findings.dto.ts +4 -0
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
import { z } from 'zod';
|
|
2
|
+
/** @deprecated */
|
|
2
3
|
export declare const _CustomScoreValueDto: z.ZodObject<{
|
|
3
4
|
id: z.ZodString;
|
|
4
5
|
createdAt: z.ZodString;
|
|
@@ -21,7 +22,9 @@ export declare const _CustomScoreValueDto: z.ZodObject<{
|
|
|
21
22
|
deletedAt: string | null;
|
|
22
23
|
findingSpecId: string;
|
|
23
24
|
}>;
|
|
25
|
+
/** @deprecated */
|
|
24
26
|
export type CustomScoreValueDto = z.infer<typeof _CustomScoreValueDto>;
|
|
27
|
+
/** @deprecated */
|
|
25
28
|
export declare const _CustomScoreValueUpsertDto: z.ZodObject<{
|
|
26
29
|
value: z.ZodNumber;
|
|
27
30
|
id: z.ZodOptional<z.ZodString>;
|
|
@@ -44,6 +47,7 @@ export declare const _CustomScoreValueUpsertDto: z.ZodObject<{
|
|
|
44
47
|
updatedAt?: string | undefined;
|
|
45
48
|
deletedAt?: string | null | undefined;
|
|
46
49
|
}>;
|
|
50
|
+
/** @deprecated */
|
|
47
51
|
export type CustomScoreValueUpsertDto = z.infer<typeof _CustomScoreValueUpsertDto>;
|
|
48
52
|
export declare const _CustomScoreCohortDto: z.ZodObject<{
|
|
49
53
|
id: z.ZodString;
|
|
@@ -4,10 +4,12 @@ exports._CustomScoreCohortUpsertDto = exports._CustomScoreCohortDto = exports._C
|
|
|
4
4
|
const zod_1 = require("zod");
|
|
5
5
|
const base_dto_1 = require("./base.dto");
|
|
6
6
|
const flows_dto_1 = require("./flows.dto");
|
|
7
|
+
/** @deprecated */
|
|
7
8
|
exports._CustomScoreValueDto = base_dto_1._BaseDto.extend({
|
|
8
9
|
findingSpecId: zod_1.z.string(),
|
|
9
10
|
value: zod_1.z.number(),
|
|
10
11
|
});
|
|
12
|
+
/** @deprecated */
|
|
11
13
|
exports._CustomScoreValueUpsertDto = exports._CustomScoreValueDto.partial(base_dto_1.UPSERT_DTO_MASK);
|
|
12
14
|
exports._CustomScoreCohortDto = base_dto_1._BaseDto.extend({
|
|
13
15
|
cohort: zod_1.z.union([flows_dto_1._AmplifierCohortDto, zod_1.z.array(flows_dto_1._AmplifierCohortDto)]),
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"customScores.dto.js","sourceRoot":"","sources":["../../../src/dto/customScores.dto.ts"],"names":[],"mappings":";;;AAAA,6BAAsB;AACtB,yCAAqD;AACrD,2CAAgD;
|
|
1
|
+
{"version":3,"file":"customScores.dto.js","sourceRoot":"","sources":["../../../src/dto/customScores.dto.ts"],"names":[],"mappings":";;;AAAA,6BAAsB;AACtB,yCAAqD;AACrD,2CAAgD;AAEhD,kBAAkB;AACL,QAAA,oBAAoB,GAAG,mBAAQ,CAAC,MAAM,CAAC;IAClD,aAAa,EAAE,OAAC,CAAC,MAAM,EAAE;IACzB,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE;CAClB,CAAC,CAAC;AAIH,kBAAkB;AACL,QAAA,0BAA0B,GAAG,4BAAoB,CAAC,OAAO,CAAC,0BAAe,CAAC,CAAC;AAI3E,QAAA,qBAAqB,GAAG,mBAAQ,CAAC,MAAM,CAAC;IACnD,MAAM,EAAE,OAAC,CAAC,KAAK,CAAC,CAAC,+BAAmB,EAAE,OAAC,CAAC,KAAK,CAAC,+BAAmB,CAAC,CAAC,CAAC;IACpE,UAAU,EAAE,OAAC,CAAC,MAAM,EAAE;CACvB,CAAC,CAAC;AAGU,QAAA,2BAA2B,GAAG,6BAAqB,CAAC,OAAO,CAAC,0BAAe,CAAC,CAAC"}
|
|
@@ -17,6 +17,7 @@ export declare enum FindingKind {
|
|
|
17
17
|
export declare const lookupFindingOutcomeByKind: (kind: FindingKind) => FindingOutcome;
|
|
18
18
|
export declare const lookupFindingKindByCategory: (category: string) => FindingKind[];
|
|
19
19
|
export declare const lookupFindingSeverityByKind: (kind: string) => FindingSeverity | undefined;
|
|
20
|
+
export declare const lookupFindingScoreByCategoryKindAndSeverity: (category: Category, kind: string, severity: string) => number;
|
|
20
21
|
export declare const lookupFindingDisplayValueByKind: (kind: string) => string;
|
|
21
22
|
export declare const generateInsights: (category: string, kind: string) => {
|
|
22
23
|
meta: {
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.generateInsights = exports.lookupFindingDisplayValueByKind = exports.lookupFindingSeverityByKind = exports.lookupFindingKindByCategory = exports.lookupFindingOutcomeByKind = exports.FindingKind = void 0;
|
|
3
|
+
exports.generateInsights = exports.lookupFindingDisplayValueByKind = exports.lookupFindingScoreByCategoryKindAndSeverity = exports.lookupFindingSeverityByKind = exports.lookupFindingKindByCategory = exports.lookupFindingOutcomeByKind = exports.FindingKind = void 0;
|
|
4
4
|
const category_1 = require("./category");
|
|
5
5
|
const finding_outcome_1 = require("./finding.outcome");
|
|
6
6
|
const finding_severity_1 = require("./finding.severity");
|
|
@@ -94,6 +94,82 @@ const lookupFindingSeverityByKind = (kind) => {
|
|
|
94
94
|
}
|
|
95
95
|
};
|
|
96
96
|
exports.lookupFindingSeverityByKind = lookupFindingSeverityByKind;
|
|
97
|
+
// https://docs.google.com/spreadsheets/d/18Ow9GGBvioAx4agnpnJGV4qnOWeLK941L7SrF4tzZiM/edit#gid=0
|
|
98
|
+
const lookupFindingScoreByCategoryKindAndSeverity = (category, kind, severity) => {
|
|
99
|
+
switch (category) {
|
|
100
|
+
case category_1.Category.EDR: {
|
|
101
|
+
switch (kind) {
|
|
102
|
+
case FindingKind.DEVICE_NOT_MANAGED:
|
|
103
|
+
return 14;
|
|
104
|
+
default:
|
|
105
|
+
return 0;
|
|
106
|
+
}
|
|
107
|
+
}
|
|
108
|
+
case category_1.Category.VULNERABILITY: {
|
|
109
|
+
switch (kind) {
|
|
110
|
+
case FindingKind.DEVICE_NOT_MANAGED:
|
|
111
|
+
return 10;
|
|
112
|
+
case FindingKind.VULNERABILITY_OUT_OF_SLA: {
|
|
113
|
+
switch (severity) {
|
|
114
|
+
case finding_severity_1.FindingSeverity.CRITICAL:
|
|
115
|
+
return 15;
|
|
116
|
+
case finding_severity_1.FindingSeverity.HIGH:
|
|
117
|
+
return 9;
|
|
118
|
+
case finding_severity_1.FindingSeverity.MEDIUM:
|
|
119
|
+
return 5;
|
|
120
|
+
case finding_severity_1.FindingSeverity.LOW:
|
|
121
|
+
return 2;
|
|
122
|
+
case finding_severity_1.FindingSeverity.INFO:
|
|
123
|
+
default:
|
|
124
|
+
return 0;
|
|
125
|
+
}
|
|
126
|
+
}
|
|
127
|
+
default:
|
|
128
|
+
return 0;
|
|
129
|
+
}
|
|
130
|
+
}
|
|
131
|
+
case category_1.Category.IDENTITY: {
|
|
132
|
+
switch (kind) {
|
|
133
|
+
case FindingKind.MFA_NOT_ENABLED:
|
|
134
|
+
return 12;
|
|
135
|
+
case FindingKind.NO_ACCOUNT:
|
|
136
|
+
return 12;
|
|
137
|
+
case FindingKind.IS_EXECUTIVE:
|
|
138
|
+
case FindingKind.HAS_PRODUCTION_ACCESS:
|
|
139
|
+
case FindingKind.HAS_PRIVILEGED_ACCESS:
|
|
140
|
+
default:
|
|
141
|
+
return 0;
|
|
142
|
+
}
|
|
143
|
+
}
|
|
144
|
+
case category_1.Category.TRAINING: {
|
|
145
|
+
switch (kind) {
|
|
146
|
+
case FindingKind.FAILED_PHISHING:
|
|
147
|
+
return 10;
|
|
148
|
+
case FindingKind.NO_ACCOUNT:
|
|
149
|
+
return 5;
|
|
150
|
+
case FindingKind.TRAINING_OVERDUE:
|
|
151
|
+
return 3;
|
|
152
|
+
default:
|
|
153
|
+
return 0;
|
|
154
|
+
}
|
|
155
|
+
}
|
|
156
|
+
case category_1.Category.WEB_GATEWAY: {
|
|
157
|
+
switch (kind) {
|
|
158
|
+
case FindingKind.WEB_GATEWAY_NOT_ACTIVE:
|
|
159
|
+
return 0;
|
|
160
|
+
case FindingKind.NO_ACCOUNT:
|
|
161
|
+
return 5;
|
|
162
|
+
default:
|
|
163
|
+
return 0;
|
|
164
|
+
}
|
|
165
|
+
}
|
|
166
|
+
case category_1.Category.NOTIFICATION:
|
|
167
|
+
default: {
|
|
168
|
+
return 0;
|
|
169
|
+
}
|
|
170
|
+
}
|
|
171
|
+
};
|
|
172
|
+
exports.lookupFindingScoreByCategoryKindAndSeverity = lookupFindingScoreByCategoryKindAndSeverity;
|
|
97
173
|
const lookupFindingDisplayValueByKind = (kind) => {
|
|
98
174
|
switch (kind) {
|
|
99
175
|
case FindingKind.FAILED_PHISHING:
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"findingKind.js","sourceRoot":"","sources":["../../../../src/dto/enums/findingKind.ts"],"names":[],"mappings":";;;AAAA,yCAAoC;AACpC,uDAAiD;AACjD,yDAAmD;AACnD,2DAAsD;AAEtD,IAAY,WAoBX;AApBD,WAAY,WAAW;IACrB,MAAM;IACN,wCAAyB,CAAA;IAEzB,WAAW;IACX,kDAAmC,CAAA;IACnC,4CAA6B,CAAA;IAC7B,8DAA+C,CAAA;IAC/C,8DAA+C,CAAA;IAE/C,WAAW;IACX,kDAAmC,CAAA;IACnC,oDAAqC,CAAA;IAErC,MAAM;IACN,wDAAyC,CAAA;IACzC,oEAAqD,CAAA;IAErD,cAAc;IACd,gEAAiD,CAAA;AACnD,CAAC,EApBW,WAAW,2BAAX,WAAW,QAoBtB;AAEM,MAAM,0BAA0B,GAAG,CAAC,IAAiB,EAAkB,EAAE;IAC9E,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,UAAU,CAAC;QAC5B,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,gBAAgB,CAAC;QAClC,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,wBAAwB,CAAC;QAC1C,KAAK,WAAW,CAAC,sBAAsB,CAAC,CAAC,CAAC;YACxC,OAAO,gCAAc,CAAC,WAAW,CAAC;QACpC,CAAC;QACD,KAAK,WAAW,CAAC,YAAY,CAAC;QAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC,CAAC,CAAC;YACvC,OAAO,gCAAc,CAAC,SAAS,CAAC;QAClC,CAAC;QACD,KAAK,WAAW,CAAC,eAAe,CAAC,CAAC,CAAC;YACjC,OAAO,gCAAc,CAAC,SAAS,CAAC;QAClC,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,MAAM,IAAI,KAAK,CAAC,sDAAsD,IAAI,EAAE,CAAC,CAAC;QAChF,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAtBW,QAAA,0BAA0B,8BAsBrC;AAEK,MAAM,2BAA2B,GAAG,CAAC,QAAgB,EAAiB,EAAE;IAC7E,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,OAAO,CAAC,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,YAAY,EAAE,WAAW,CAAC,qBAAqB,EAAE,WAAW,CAAC,qBAAqB,CAAC,CAAC;QACvI,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,OAAO,CAAC,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,gBAAgB,CAAC,CAAC;QACrE,CAAC;QACD,KAAK,mBAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YAClB,OAAO,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC;QAC1C,CAAC;QACD,KAAK,mBAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YAC1B,OAAO,CAAC,WAAW,CAAC,sBAAsB,CAAC,CAAC;QAC9C,CAAC;QACD,KAAK,mBAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;YAC5B,OAAO,CAAC,WAAW,CAAC,wBAAwB,CAAC,CAAC;QAChD,CAAC;QACD,KAAK,mBAAQ,CAAC,YAAY,CAAC,CAAC,CAAC;YAC3B,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAxBW,QAAA,2BAA2B,+BAwBtC;AAEK,MAAM,2BAA2B,GAAG,CAAC,IAAY,EAA+B,EAAE;IACvF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,YAAY,CAAC;QAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,sBAAsB,CAAC;QACxC,KAAK,WAAW,CAAC,wBAAwB,CAAC,CAAC,CAAC;YAC1C,OAAO,kCAAe,CAAC,IAAI,CAAC;QAC9B,CAAC;QACD,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAClC,OAAO,kCAAe,CAAC,MAAM,CAAC;QAChC,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,SAAS,CAAC;QACnB,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAnBW,QAAA,2BAA2B,+BAmBtC;AAEK,MAAM,+BAA+B,GAAG,CAAC,IAAY,EAAU,EAAE;IACtE,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,eAAe;YAC9B,OAAO,iCAAiC,CAAC;QAC3C,KAAK,WAAW,CAAC,gBAAgB;YAC/B,OAAO,iCAAiC,CAAC;QAC3C,KAAK,WAAW,CAAC,sBAAsB;YACrC,OAAO,2BAA2B,CAAC;QACrC;YACE,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC;IAC9B,CAAC;AACH,CAAC,CAAC;AAXW,QAAA,+BAA+B,mCAW1C;AAEK,MAAM,gBAAgB,GAAG,CAAC,QAAgB,EAAE,IAAY,EAAE,EAAE;IAEjE,MAAM,QAAQ,GAAG;QACf,IAAI,EAAE;YACJ,IAAI,EAAE,IAAmB;YACzB,QAAQ,EAAE,IAAA,mCAA2B,EAAC,IAAI,CAAoB;YAC9D,YAAY,EAAE,IAAA,uCAA+B,EAAC,IAAI,CAAC;SACpD;QACD,IAAI,EAAE;YACJ,QAAQ,EAAE,QAAoB;YAC9B,IAAI,EAAE,EAAuB;YAC7B,GAAG,EAAE,EAAC,IAAI,EAAE,KAAK,EAAC;YAClB,GAAG,EAAE,EAAC,IAAI,EAAE,KAAK,EAAC;YAClB,gBAAgB,EAAE,EAAe;YACjC,mBAAmB,EAAE,EAAe;SACrC;KACF,CAAC;IACF,IAAI,QAAQ,KAAK,mBAAQ,CAAC,GAAG,IAAI,QAAQ,KAAK,mBAAQ,CAAC,aAAa,EAAE,CAAC;QACrE,QAAQ,CAAC,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;IACnC,CAAC;SAAM,CAAC;QACN,QAAQ,CAAC,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;IACnC,CAAC;IACD,MAAM,YAAY,GAAG,CAAC,GAAW,EAAE,KAAc,EAAE,EAAE;QACnD,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QAC5C,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC;IAClD,CAAC,CAAC;IAEF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,sBAAsB;YACrC,YAAY,CAAC,yBAAyB,EAAE,KAAK,CAAC,CAAC;YAC/C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,mBAAmB,CAAC;YAC3D,MAAM;QACR,KAAK,WAAW,CAAC,wBAAwB;YACvC,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YACrD,MAAM;QACR,KAAK,WAAW,CAAC,gBAAgB;YAC/B,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,mBAAmB,CAAC;YAC3D,MAAM;QACR,KAAK,WAAW,CAAC,eAAe;YAC9B,YAAY,CAAC,+BAA+B,EAAE,IAAI,CAAC,CAAC;YACpD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,eAAe,CAAC;YACvD,MAAM;QACR,KAAK,WAAW,CAAC,kBAAkB;YACjC,YAAY,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,eAAe;YAC9B,YAAY,CAAC,wBAAwB,EAAE,KAAK,CAAC,CAAC;YAC9C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,YAAY;YAC3B,YAAY,CAAC,4BAA4B,EAAE,IAAI,CAAC,CAAC;YACjD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR,KAAK,WAAW,CAAC,qBAAqB;YACpC,YAAY,CAAC,8BAA8B,EAAE,IAAI,CAAC,CAAC;YACnD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR,KAAK,WAAW,CAAC,qBAAqB;YACpC,YAAY,CAAC,oCAAoC,EAAE,IAAI,CAAC,CAAC;YACzD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR;YACE,MAAM;IACV,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC,CAAC;AApEW,QAAA,gBAAgB,oBAoE3B"}
|
|
1
|
+
{"version":3,"file":"findingKind.js","sourceRoot":"","sources":["../../../../src/dto/enums/findingKind.ts"],"names":[],"mappings":";;;AAAA,yCAAoC;AACpC,uDAAiD;AACjD,yDAAmD;AACnD,2DAAsD;AAEtD,IAAY,WAoBX;AApBD,WAAY,WAAW;IACrB,MAAM;IACN,wCAAyB,CAAA;IAEzB,WAAW;IACX,kDAAmC,CAAA;IACnC,4CAA6B,CAAA;IAC7B,8DAA+C,CAAA;IAC/C,8DAA+C,CAAA;IAE/C,WAAW;IACX,kDAAmC,CAAA;IACnC,oDAAqC,CAAA;IAErC,MAAM;IACN,wDAAyC,CAAA;IACzC,oEAAqD,CAAA;IAErD,cAAc;IACd,gEAAiD,CAAA;AACnD,CAAC,EApBW,WAAW,2BAAX,WAAW,QAoBtB;AAEM,MAAM,0BAA0B,GAAG,CAAC,IAAiB,EAAkB,EAAE;IAC9E,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,UAAU,CAAC;QAC5B,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,gBAAgB,CAAC;QAClC,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,wBAAwB,CAAC;QAC1C,KAAK,WAAW,CAAC,sBAAsB,CAAC,CAAC,CAAC;YACxC,OAAO,gCAAc,CAAC,WAAW,CAAC;QACpC,CAAC;QACD,KAAK,WAAW,CAAC,YAAY,CAAC;QAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC,CAAC,CAAC;YACvC,OAAO,gCAAc,CAAC,SAAS,CAAC;QAClC,CAAC;QACD,KAAK,WAAW,CAAC,eAAe,CAAC,CAAC,CAAC;YACjC,OAAO,gCAAc,CAAC,SAAS,CAAC;QAClC,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,MAAM,IAAI,KAAK,CAAC,sDAAsD,IAAI,EAAE,CAAC,CAAC;QAChF,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAtBW,QAAA,0BAA0B,8BAsBrC;AAEK,MAAM,2BAA2B,GAAG,CAAC,QAAgB,EAAiB,EAAE;IAC7E,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,OAAO,CAAC,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,YAAY,EAAE,WAAW,CAAC,qBAAqB,EAAE,WAAW,CAAC,qBAAqB,CAAC,CAAC;QACvI,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,OAAO,CAAC,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,gBAAgB,CAAC,CAAC;QACrE,CAAC;QACD,KAAK,mBAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YAClB,OAAO,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC;QAC1C,CAAC;QACD,KAAK,mBAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YAC1B,OAAO,CAAC,WAAW,CAAC,sBAAsB,CAAC,CAAC;QAC9C,CAAC;QACD,KAAK,mBAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;YAC5B,OAAO,CAAC,WAAW,CAAC,wBAAwB,CAAC,CAAC;QAChD,CAAC;QACD,KAAK,mBAAQ,CAAC,YAAY,CAAC,CAAC,CAAC;YAC3B,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAxBW,QAAA,2BAA2B,+BAwBtC;AAEK,MAAM,2BAA2B,GAAG,CAAC,IAAY,EAA+B,EAAE;IACvF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,YAAY,CAAC;QAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,sBAAsB,CAAC;QACxC,KAAK,WAAW,CAAC,wBAAwB,CAAC,CAAC,CAAC;YAC1C,OAAO,kCAAe,CAAC,IAAI,CAAC;QAC9B,CAAC;QACD,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAClC,OAAO,kCAAe,CAAC,MAAM,CAAC;QAChC,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,SAAS,CAAC;QACnB,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAnBW,QAAA,2BAA2B,+BAmBtC;AAEF,iGAAiG;AAC1F,MAAM,2CAA2C,GAAG,CAAC,QAAkB,EAAE,IAAY,EAAE,QAAgB,EAAU,EAAE;IACxH,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,mBAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YAClB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,kBAAkB;oBACjC,OAAO,EAAE,CAAC;gBACZ;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;YAC5B,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,kBAAkB;oBACjC,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,wBAAwB,CAAC,CAAC,CAAC;oBAC1C,QAAQ,QAAQ,EAAE,CAAC;wBACjB,KAAK,kCAAe,CAAC,QAAQ;4BAC3B,OAAO,EAAE,CAAC;wBACZ,KAAK,kCAAe,CAAC,IAAI;4BACvB,OAAO,CAAC,CAAC;wBACX,KAAK,kCAAe,CAAC,MAAM;4BACzB,OAAO,CAAC,CAAC;wBACX,KAAK,kCAAe,CAAC,GAAG;4BACtB,OAAO,CAAC,CAAC;wBACX,KAAK,kCAAe,CAAC,IAAI,CAAC;wBAC1B;4BACE,OAAO,CAAC,CAAC;oBACb,CAAC;gBACH,CAAC;gBACD;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,eAAe;oBAC9B,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,YAAY,CAAC;gBAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;gBACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC;gBACvC;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,eAAe;oBAC9B,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,gBAAgB;oBAC/B,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YAC1B,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,sBAAsB;oBACrC,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,YAAY,CAAC;QAC3B,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,CAAC,CAAC;QACX,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAzEW,QAAA,2CAA2C,+CAyEtD;AAEK,MAAM,+BAA+B,GAAG,CAAC,IAAY,EAAU,EAAE;IACtE,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,eAAe;YAC9B,OAAO,iCAAiC,CAAC;QAC3C,KAAK,WAAW,CAAC,gBAAgB;YAC/B,OAAO,iCAAiC,CAAC;QAC3C,KAAK,WAAW,CAAC,sBAAsB;YACrC,OAAO,2BAA2B,CAAC;QACrC;YACE,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC;IAC9B,CAAC;AACH,CAAC,CAAC;AAXW,QAAA,+BAA+B,mCAW1C;AAEK,MAAM,gBAAgB,GAAG,CAAC,QAAgB,EAAE,IAAY,EAAE,EAAE;IAEjE,MAAM,QAAQ,GAAG;QACf,IAAI,EAAE;YACJ,IAAI,EAAE,IAAmB;YACzB,QAAQ,EAAE,IAAA,mCAA2B,EAAC,IAAI,CAAoB;YAC9D,YAAY,EAAE,IAAA,uCAA+B,EAAC,IAAI,CAAC;SACpD;QACD,IAAI,EAAE;YACJ,QAAQ,EAAE,QAAoB;YAC9B,IAAI,EAAE,EAAuB;YAC7B,GAAG,EAAE,EAAC,IAAI,EAAE,KAAK,EAAC;YAClB,GAAG,EAAE,EAAC,IAAI,EAAE,KAAK,EAAC;YAClB,gBAAgB,EAAE,EAAe;YACjC,mBAAmB,EAAE,EAAe;SACrC;KACF,CAAC;IACF,IAAI,QAAQ,KAAK,mBAAQ,CAAC,GAAG,IAAI,QAAQ,KAAK,mBAAQ,CAAC,aAAa,EAAE,CAAC;QACrE,QAAQ,CAAC,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;IACnC,CAAC;SAAM,CAAC;QACN,QAAQ,CAAC,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;IACnC,CAAC;IACD,MAAM,YAAY,GAAG,CAAC,GAAW,EAAE,KAAc,EAAE,EAAE;QACnD,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QAC5C,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC;IAClD,CAAC,CAAC;IAEF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,sBAAsB;YACrC,YAAY,CAAC,yBAAyB,EAAE,KAAK,CAAC,CAAC;YAC/C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,mBAAmB,CAAC;YAC3D,MAAM;QACR,KAAK,WAAW,CAAC,wBAAwB;YACvC,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YACrD,MAAM;QACR,KAAK,WAAW,CAAC,gBAAgB;YAC/B,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,mBAAmB,CAAC;YAC3D,MAAM;QACR,KAAK,WAAW,CAAC,eAAe;YAC9B,YAAY,CAAC,+BAA+B,EAAE,IAAI,CAAC,CAAC;YACpD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,eAAe,CAAC;YACvD,MAAM;QACR,KAAK,WAAW,CAAC,kBAAkB;YACjC,YAAY,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,eAAe;YAC9B,YAAY,CAAC,wBAAwB,EAAE,KAAK,CAAC,CAAC;YAC9C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,YAAY;YAC3B,YAAY,CAAC,4BAA4B,EAAE,IAAI,CAAC,CAAC;YACjD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR,KAAK,WAAW,CAAC,qBAAqB;YACpC,YAAY,CAAC,8BAA8B,EAAE,IAAI,CAAC,CAAC;YACnD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR,KAAK,WAAW,CAAC,qBAAqB;YACpC,YAAY,CAAC,oCAAoC,EAAE,IAAI,CAAC,CAAC;YACzD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR;YACE,MAAM;IACV,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC,CAAC;AApEW,QAAA,gBAAgB,oBAoE3B"}
|
|
@@ -41,6 +41,8 @@ export type FindingUpsertDto = BaseUpsertDto & {
|
|
|
41
41
|
uid?: string | undefined | null;
|
|
42
42
|
/** Id of the SaasComponent related to the given finding */
|
|
43
43
|
scid?: string | undefined | null;
|
|
44
|
+
/** Id of the finding spec from which the finding was generated */
|
|
45
|
+
fsid?: string | undefined | null;
|
|
44
46
|
/** Number of times this finding was marked PENDING_VERIFIED. Defaults to `0` */
|
|
45
47
|
verificationCount?: number;
|
|
46
48
|
};
|
|
@@ -160,6 +162,7 @@ export declare const _FindingSpecDto: z.ZodObject<{
|
|
|
160
162
|
}>>;
|
|
161
163
|
expireAfterDays: z.ZodOptional<z.ZodNullable<z.ZodNumber>>;
|
|
162
164
|
outcome: z.ZodOptional<z.ZodNativeEnum<typeof FindingOutcome>>;
|
|
165
|
+
score: z.ZodOptional<z.ZodNumber>;
|
|
163
166
|
}, "strip", z.ZodTypeAny, {
|
|
164
167
|
name: string;
|
|
165
168
|
id: string;
|
|
@@ -192,6 +195,7 @@ export declare const _FindingSpecDto: z.ZodObject<{
|
|
|
192
195
|
} | undefined;
|
|
193
196
|
expireAfterDays?: number | null | undefined;
|
|
194
197
|
outcome?: FindingOutcome | undefined;
|
|
198
|
+
score?: number | undefined;
|
|
195
199
|
}, {
|
|
196
200
|
name: string;
|
|
197
201
|
id: string;
|
|
@@ -224,6 +228,7 @@ export declare const _FindingSpecDto: z.ZodObject<{
|
|
|
224
228
|
} | undefined;
|
|
225
229
|
expireAfterDays?: number | null | undefined;
|
|
226
230
|
outcome?: FindingOutcome | undefined;
|
|
231
|
+
score?: number | undefined;
|
|
227
232
|
}>;
|
|
228
233
|
export type FindingSpecDto = z.infer<typeof _FindingSpecDto>;
|
|
229
234
|
export declare const _FindingSpecUpsertDto: z.ZodObject<{
|
|
@@ -235,6 +240,7 @@ export declare const _FindingSpecUpsertDto: z.ZodObject<{
|
|
|
235
240
|
updatedAt: z.ZodOptional<z.ZodString>;
|
|
236
241
|
deletedAt: z.ZodOptional<z.ZodNullable<z.ZodString>>;
|
|
237
242
|
displayValue: z.ZodString;
|
|
243
|
+
score: z.ZodOptional<z.ZodNumber>;
|
|
238
244
|
eventType: z.ZodString;
|
|
239
245
|
severity: z.ZodNativeEnum<typeof FindingSeverity>;
|
|
240
246
|
insights: z.ZodOptional<z.ZodObject<{
|
|
@@ -343,6 +349,7 @@ export declare const _FindingSpecUpsertDto: z.ZodObject<{
|
|
|
343
349
|
createdAt?: string | undefined;
|
|
344
350
|
updatedAt?: string | undefined;
|
|
345
351
|
deletedAt?: string | null | undefined;
|
|
352
|
+
score?: number | undefined;
|
|
346
353
|
insights?: {
|
|
347
354
|
meta?: {
|
|
348
355
|
displayValue: string;
|
|
@@ -375,6 +382,7 @@ export declare const _FindingSpecUpsertDto: z.ZodObject<{
|
|
|
375
382
|
createdAt?: string | undefined;
|
|
376
383
|
updatedAt?: string | undefined;
|
|
377
384
|
deletedAt?: string | null | undefined;
|
|
385
|
+
score?: number | undefined;
|
|
378
386
|
insights?: {
|
|
379
387
|
meta?: {
|
|
380
388
|
displayValue: string;
|
|
@@ -403,16 +411,19 @@ export declare const _FindingSummaryDto: z.ZodObject<{
|
|
|
403
411
|
cid: z.ZodOptional<z.ZodString>;
|
|
404
412
|
displayValue: z.ZodString;
|
|
405
413
|
eventType: z.ZodString;
|
|
414
|
+
score: z.ZodOptional<z.ZodNumber>;
|
|
406
415
|
}, "strip", z.ZodTypeAny, {
|
|
407
416
|
id: string;
|
|
408
417
|
displayValue: string;
|
|
409
418
|
eventType: string;
|
|
410
419
|
cid?: string | undefined;
|
|
420
|
+
score?: number | undefined;
|
|
411
421
|
}, {
|
|
412
422
|
id: string;
|
|
413
423
|
displayValue: string;
|
|
414
424
|
eventType: string;
|
|
415
425
|
cid?: string | undefined;
|
|
426
|
+
score?: number | undefined;
|
|
416
427
|
}>;
|
|
417
428
|
export type FindingSummaryDto = z.infer<typeof _FindingSummaryDto>;
|
|
418
429
|
export declare const _CustomFindingPayload: z.ZodObject<{
|
|
@@ -44,6 +44,7 @@ exports._FindingSpecDto = base_dto_1._BaseDto.extend({
|
|
|
44
44
|
.optional(),
|
|
45
45
|
expireAfterDays: zod_1.z.nullable(zod_1.z.number()).optional(),
|
|
46
46
|
outcome: zod_1.z.nativeEnum(enums_2.FindingOutcome).optional(), // TODO add column and form field??? Or just default to REMEDIATION?
|
|
47
|
+
score: zod_1.z.number().optional(),
|
|
47
48
|
});
|
|
48
49
|
exports._FindingSpecUpsertDto = exports._FindingSpecDto.partial({
|
|
49
50
|
id: true,
|
|
@@ -56,6 +57,7 @@ exports._FindingSummaryDto = zod_1.z.object({
|
|
|
56
57
|
cid: zod_1.z.string().optional(),
|
|
57
58
|
displayValue: zod_1.z.string(),
|
|
58
59
|
eventType: zod_1.z.string(),
|
|
60
|
+
score: zod_1.z.number().optional(),
|
|
59
61
|
});
|
|
60
62
|
exports._CustomFindingPayload = zod_1.z.object({
|
|
61
63
|
eventType: zod_1.z.string(),
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"findings.dto.js","sourceRoot":"","sources":["../../../src/dto/findings.dto.ts"],"names":[],"mappings":";;;AAAA,6BAAsB;AAEtB,yCAA4D;AAC5D,mCAAiE;AACjE,mCAAuE;
|
|
1
|
+
{"version":3,"file":"findings.dto.js","sourceRoot":"","sources":["../../../src/dto/findings.dto.ts"],"names":[],"mappings":";;;AAAA,6BAAsB;AAEtB,yCAA4D;AAC5D,mCAAiE;AACjE,mCAAuE;AA2DvE,MAAM,uBAAuB,GAAG,OAAC,CAAC,OAAO,EAAE,CAAC;AAC/B,QAAA,eAAe,GAAG,mBAAQ,CAAC,MAAM,CAAC;IAC7C,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC1B,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE;IAChB,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE;IACxB,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE;IACrB,WAAW,EAAE,OAAC,CAAC,KAAK,CAAC,CAAC,OAAC,CAAC,MAAM,EAAE,EAAE,uBAAuB,CAAC,CAAC;IAC3D,QAAQ,EAAE,OAAC,CAAC,UAAU,CAAC,uBAAe,CAAC;IACvC,QAAQ,EAAE,OAAC;SACR,MAAM,CAAC;QACN,IAAI,EAAE,OAAC;aACJ,MAAM,CAAC;YACN,IAAI,EAAE,OAAC,CAAC,UAAU,CAAC,mBAAW,CAAC;YAC/B,QAAQ,EAAE,OAAC,CAAC,UAAU,CAAC,uBAAe,CAAC;YACvC,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE;SACzB,CAAC;aACD,QAAQ,EAAE;QACb,IAAI,EAAE,OAAC;aACJ,MAAM,CAAC;YACN,QAAQ,EAAE,OAAC,CAAC,UAAU,CAAC,gBAAQ,CAAC;YAChC,IAAI,EAAE,OAAC,CAAC,UAAU,CAAC,yBAAiB,CAAC;YACrC,GAAG,EAAE,OAAC;iBACH,MAAM,CAAC;gBACN,IAAI,EAAE,OAAC,CAAC,OAAO,EAAE;aAClB,CAAC;iBACD,QAAQ,EAAE;YACb,GAAG,EAAE,OAAC;iBACH,MAAM,CAAC;gBACN,IAAI,EAAE,OAAC,CAAC,OAAO,EAAE;aAClB,CAAC;iBACD,QAAQ,EAAE;YACb,gBAAgB,EAAE,OAAC,CAAC,MAAM,CAAC,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,KAAK,CAAC,CAAC,OAAC,CAAC,OAAO,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC;YACrG,mBAAmB,EAAE,OAAC,CAAC,MAAM,CAAC,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,KAAK,CAAC,CAAC,OAAC,CAAC,OAAO,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;SACpH,CAAC;aACD,QAAQ,EAAE;KACd,CAAC;SACD,QAAQ,EAAE;IACb,eAAe,EAAE,OAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAClD,OAAO,EAAE,OAAC,CAAC,UAAU,CAAC,sBAAc,CAAC,CAAC,QAAQ,EAAE,EAAE,oEAAoE;IACtH,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC7B,CAAC,CAAC;AAGU,QAAA,qBAAqB,GAAG,uBAAe,CAAC,OAAO,CAAC;IAC3D,EAAE,EAAE,IAAI;IACR,SAAS,EAAE,IAAI;IACf,SAAS,EAAE,IAAI;IACf,SAAS,EAAE,IAAI;CAChB,CAAC,CAAC;AAGU,QAAA,kBAAkB,GAAG,OAAC,CAAC,MAAM,CAAC;IACzC,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE;IACd,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC1B,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE;IACxB,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE;IACrB,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC7B,CAAC,CAAC;AAGU,QAAA,qBAAqB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC5C,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE;IACrB,aAAa,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACpC,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5B,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACnC,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CAChC,CAAC,CAAC"}
|
|
@@ -12,6 +12,7 @@ export declare const _PlatformFindingSpecDto: z.ZodObject<{
|
|
|
12
12
|
updatedAt: z.ZodString;
|
|
13
13
|
deletedAt: z.ZodNullable<z.ZodString>;
|
|
14
14
|
displayValue: z.ZodString;
|
|
15
|
+
score: z.ZodOptional<z.ZodNumber>;
|
|
15
16
|
eventType: z.ZodString;
|
|
16
17
|
severity: z.ZodNativeEnum<typeof import("..").FindingSeverity>;
|
|
17
18
|
insights: z.ZodOptional<z.ZodObject<{
|
|
@@ -122,6 +123,7 @@ export declare const _PlatformFindingSpecDto: z.ZodObject<{
|
|
|
122
123
|
severity: import("..").FindingSeverity;
|
|
123
124
|
description?: unknown;
|
|
124
125
|
cid?: string | undefined;
|
|
126
|
+
score?: number | undefined;
|
|
125
127
|
insights?: {
|
|
126
128
|
meta?: {
|
|
127
129
|
displayValue: string;
|
|
@@ -155,6 +157,7 @@ export declare const _PlatformFindingSpecDto: z.ZodObject<{
|
|
|
155
157
|
severity: import("..").FindingSeverity;
|
|
156
158
|
description?: unknown;
|
|
157
159
|
cid?: string | undefined;
|
|
160
|
+
score?: number | undefined;
|
|
158
161
|
insights?: {
|
|
159
162
|
meta?: {
|
|
160
163
|
displayValue: string;
|
|
@@ -187,6 +190,7 @@ export declare const _PlatformFindingSpecUpsertDto: z.ZodObject<{
|
|
|
187
190
|
updatedAt: z.ZodOptional<z.ZodString>;
|
|
188
191
|
deletedAt: z.ZodOptional<z.ZodNullable<z.ZodString>>;
|
|
189
192
|
displayValue: z.ZodString;
|
|
193
|
+
score: z.ZodOptional<z.ZodNumber>;
|
|
190
194
|
eventType: z.ZodString;
|
|
191
195
|
severity: z.ZodNativeEnum<typeof import("..").FindingSeverity>;
|
|
192
196
|
insights: z.ZodOptional<z.ZodObject<{
|
|
@@ -297,6 +301,7 @@ export declare const _PlatformFindingSpecUpsertDto: z.ZodObject<{
|
|
|
297
301
|
createdAt?: string | undefined;
|
|
298
302
|
updatedAt?: string | undefined;
|
|
299
303
|
deletedAt?: string | null | undefined;
|
|
304
|
+
score?: number | undefined;
|
|
300
305
|
insights?: {
|
|
301
306
|
meta?: {
|
|
302
307
|
displayValue: string;
|
|
@@ -330,6 +335,7 @@ export declare const _PlatformFindingSpecUpsertDto: z.ZodObject<{
|
|
|
330
335
|
createdAt?: string | undefined;
|
|
331
336
|
updatedAt?: string | undefined;
|
|
332
337
|
deletedAt?: string | null | undefined;
|
|
338
|
+
score?: number | undefined;
|
|
333
339
|
insights?: {
|
|
334
340
|
meta?: {
|
|
335
341
|
displayValue: string;
|
package/package.json
CHANGED
|
@@ -2,13 +2,17 @@ import {z} from 'zod';
|
|
|
2
2
|
import {UPSERT_DTO_MASK, _BaseDto} from './base.dto';
|
|
3
3
|
import {_AmplifierCohortDto} from './flows.dto';
|
|
4
4
|
|
|
5
|
+
/** @deprecated */
|
|
5
6
|
export const _CustomScoreValueDto = _BaseDto.extend({
|
|
6
7
|
findingSpecId: z.string(),
|
|
7
8
|
value: z.number(),
|
|
8
9
|
});
|
|
10
|
+
/** @deprecated */
|
|
9
11
|
export type CustomScoreValueDto = z.infer<typeof _CustomScoreValueDto>;
|
|
10
12
|
|
|
13
|
+
/** @deprecated */
|
|
11
14
|
export const _CustomScoreValueUpsertDto = _CustomScoreValueDto.partial(UPSERT_DTO_MASK);
|
|
15
|
+
/** @deprecated */
|
|
12
16
|
export type CustomScoreValueUpsertDto = z.infer<typeof _CustomScoreValueUpsertDto>;
|
|
13
17
|
|
|
14
18
|
export const _CustomScoreCohortDto = _BaseDto.extend({
|
|
@@ -96,6 +96,82 @@ export const lookupFindingSeverityByKind = (kind: string): FindingSeverity | und
|
|
|
96
96
|
}
|
|
97
97
|
};
|
|
98
98
|
|
|
99
|
+
// https://docs.google.com/spreadsheets/d/18Ow9GGBvioAx4agnpnJGV4qnOWeLK941L7SrF4tzZiM/edit#gid=0
|
|
100
|
+
export const lookupFindingScoreByCategoryKindAndSeverity = (category: Category, kind: string, severity: string): number => {
|
|
101
|
+
switch (category) {
|
|
102
|
+
case Category.EDR: {
|
|
103
|
+
switch (kind) {
|
|
104
|
+
case FindingKind.DEVICE_NOT_MANAGED:
|
|
105
|
+
return 14;
|
|
106
|
+
default:
|
|
107
|
+
return 0;
|
|
108
|
+
}
|
|
109
|
+
}
|
|
110
|
+
case Category.VULNERABILITY: {
|
|
111
|
+
switch (kind) {
|
|
112
|
+
case FindingKind.DEVICE_NOT_MANAGED:
|
|
113
|
+
return 10;
|
|
114
|
+
case FindingKind.VULNERABILITY_OUT_OF_SLA: {
|
|
115
|
+
switch (severity) {
|
|
116
|
+
case FindingSeverity.CRITICAL:
|
|
117
|
+
return 15;
|
|
118
|
+
case FindingSeverity.HIGH:
|
|
119
|
+
return 9;
|
|
120
|
+
case FindingSeverity.MEDIUM:
|
|
121
|
+
return 5;
|
|
122
|
+
case FindingSeverity.LOW:
|
|
123
|
+
return 2;
|
|
124
|
+
case FindingSeverity.INFO:
|
|
125
|
+
default:
|
|
126
|
+
return 0;
|
|
127
|
+
}
|
|
128
|
+
}
|
|
129
|
+
default:
|
|
130
|
+
return 0;
|
|
131
|
+
}
|
|
132
|
+
}
|
|
133
|
+
case Category.IDENTITY: {
|
|
134
|
+
switch (kind) {
|
|
135
|
+
case FindingKind.MFA_NOT_ENABLED:
|
|
136
|
+
return 12;
|
|
137
|
+
case FindingKind.NO_ACCOUNT:
|
|
138
|
+
return 12;
|
|
139
|
+
case FindingKind.IS_EXECUTIVE:
|
|
140
|
+
case FindingKind.HAS_PRODUCTION_ACCESS:
|
|
141
|
+
case FindingKind.HAS_PRIVILEGED_ACCESS:
|
|
142
|
+
default:
|
|
143
|
+
return 0;
|
|
144
|
+
}
|
|
145
|
+
}
|
|
146
|
+
case Category.TRAINING: {
|
|
147
|
+
switch (kind) {
|
|
148
|
+
case FindingKind.FAILED_PHISHING:
|
|
149
|
+
return 10;
|
|
150
|
+
case FindingKind.NO_ACCOUNT:
|
|
151
|
+
return 5;
|
|
152
|
+
case FindingKind.TRAINING_OVERDUE:
|
|
153
|
+
return 3;
|
|
154
|
+
default:
|
|
155
|
+
return 0;
|
|
156
|
+
}
|
|
157
|
+
}
|
|
158
|
+
case Category.WEB_GATEWAY: {
|
|
159
|
+
switch (kind) {
|
|
160
|
+
case FindingKind.WEB_GATEWAY_NOT_ACTIVE:
|
|
161
|
+
return 0;
|
|
162
|
+
case FindingKind.NO_ACCOUNT:
|
|
163
|
+
return 5;
|
|
164
|
+
default:
|
|
165
|
+
return 0;
|
|
166
|
+
}
|
|
167
|
+
}
|
|
168
|
+
case Category.NOTIFICATION:
|
|
169
|
+
default: {
|
|
170
|
+
return 0;
|
|
171
|
+
}
|
|
172
|
+
}
|
|
173
|
+
};
|
|
174
|
+
|
|
99
175
|
export const lookupFindingDisplayValueByKind = (kind: string): string => {
|
|
100
176
|
switch (kind) {
|
|
101
177
|
case FindingKind.FAILED_PHISHING:
|
package/src/dto/findings.dto.ts
CHANGED
|
@@ -43,6 +43,8 @@ export type FindingUpsertDto = BaseUpsertDto & {
|
|
|
43
43
|
uid?: string | undefined | null;
|
|
44
44
|
/** Id of the SaasComponent related to the given finding */
|
|
45
45
|
scid?: string | undefined | null;
|
|
46
|
+
/** Id of the finding spec from which the finding was generated */
|
|
47
|
+
fsid?: string | undefined | null;
|
|
46
48
|
/** Number of times this finding was marked PENDING_VERIFIED. Defaults to `0` */
|
|
47
49
|
verificationCount?: number;
|
|
48
50
|
};
|
|
@@ -98,6 +100,7 @@ export const _FindingSpecDto = _BaseDto.extend({
|
|
|
98
100
|
.optional(),
|
|
99
101
|
expireAfterDays: z.nullable(z.number()).optional(),
|
|
100
102
|
outcome: z.nativeEnum(FindingOutcome).optional(), // TODO add column and form field??? Or just default to REMEDIATION?
|
|
103
|
+
score: z.number().optional(),
|
|
101
104
|
});
|
|
102
105
|
export type FindingSpecDto = z.infer<typeof _FindingSpecDto>;
|
|
103
106
|
|
|
@@ -114,6 +117,7 @@ export const _FindingSummaryDto = z.object({
|
|
|
114
117
|
cid: z.string().optional(),
|
|
115
118
|
displayValue: z.string(),
|
|
116
119
|
eventType: z.string(),
|
|
120
|
+
score: z.number().optional(),
|
|
117
121
|
});
|
|
118
122
|
export type FindingSummaryDto = z.infer<typeof _FindingSummaryDto>;
|
|
119
123
|
|