@appland/scanner 1.33.1

package/built/ruleChecker.js

@@ -0,0 +1,260 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __generator = (this && this.__generator) || function (thisArg, body) {
+    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g;
+    return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
+    function verb(n) { return function (v) { return step([n, v]); }; }
+    function step(op) {
+        if (f) throw new TypeError("Generator is already executing.");
+        while (_) try {
+            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
+            if (y = 0, t) op = [op[0] & 2, t.value];
+            switch (op[0]) {
+                case 0: case 1: t = op; break;
+                case 4: _.label++; return { value: op[1], done: false };
+                case 5: _.label++; y = op[1]; op = [0]; continue;
+                case 7: op = _.ops.pop(); _.trys.pop(); continue;
+                default:
+                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
+                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
+                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
+                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
+                    if (t[2]) _.ops.pop();
+                    _.trys.pop(); continue;
+            }
+            op = body.call(thisArg, _);
+        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
+        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
+    }
+};
+var __values = (this && this.__values) || function(o) {
+    var s = typeof Symbol === "function" && Symbol.iterator, m = s && o[s], i = 0;
+    if (m) return m.call(o);
+    if (o && typeof o.length === "number") return {
+        next: function () {
+            if (o && i >= o.length) o = void 0;
+            return { value: o && o[i++], done: !o };
+        }
+    };
+    throw new TypeError(s ? "Object is not iterable." : "Symbol.iterator is not defined.");
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+var errors_1 = require("./errors");
+var util_1 = require("./rules/util");
+var rootScope_1 = __importDefault(require("./scope/rootScope"));
+var httpServerRequestScope_1 = __importDefault(require("./scope/httpServerRequestScope"));
+var httpClientRequestScope_1 = __importDefault(require("./scope/httpClientRequestScope"));
+var commandScope_1 = __importDefault(require("./scope/commandScope"));
+var sqlTransactionScope_1 = __importDefault(require("./scope/sqlTransactionScope"));
+var checkInstance_1 = __importDefault(require("./checkInstance"));
+var RuleChecker = /** @class */ (function () {
+    function RuleChecker() {
+        this.scopes = {
+            root: new rootScope_1.default(),
+            command: new commandScope_1.default(),
+            http_server_request: new httpServerRequestScope_1.default(),
+            http_client_request: new httpClientRequestScope_1.default(),
+            transaction: new sqlTransactionScope_1.default(),
+        };
+    }
+    RuleChecker.prototype.check = function (appMapFile, appMap, check, findings) {
+        return __awaiter(this, void 0, void 0, function () {
+            var scopeIterator, callEvents, _a, _b, scope, checkInstance, _c, _d, event, e_1_1, e_2_1;
+            var e_2, _e, e_1, _f;
+            return __generator(this, function (_g) {
+                switch (_g.label) {
+                    case 0:
+                        if ((0, util_1.verbose)()) {
+                            console.warn("Checking AppMap " + appMap.name + " with scope " + check.scope);
+                        }
+                        scopeIterator = this.scopes[check.scope];
+                        if (!scopeIterator) {
+                            throw new errors_1.AbortError("Invalid scope name \"" + check.scope + "\"");
+                        }
+                        callEvents = function () {
+                            var i;
+                            return __generator(this, function (_a) {
+                                switch (_a.label) {
+                                    case 0:
+                                        i = 0;
+                                        _a.label = 1;
+                                    case 1:
+                                        if (!(i < appMap.events.length)) return [3 /*break*/, 4];
+                                        return [4 /*yield*/, appMap.events[i]];
+                                    case 2:
+                                        _a.sent();
+                                        _a.label = 3;
+                                    case 3:
+                                        i++;
+                                        return [3 /*break*/, 1];
+                                    case 4: return [2 /*return*/];
+                                }
+                            });
+                        };
+                        _g.label = 1;
+                    case 1:
+                        _g.trys.push([1, 15, 16, 17]);
+                        _a = __values(scopeIterator.scopes(callEvents())), _b = _a.next();
+                        _g.label = 2;
+                    case 2:
+                        if (!!_b.done) return [3 /*break*/, 14];
+                        scope = _b.value;
+                        if ((0, util_1.verbose)()) {
+                            console.warn("Scope " + scope.scope);
+                        }
+                        checkInstance = new checkInstance_1.default(check);
+                        if (!check.filterScope(scope.scope, appMap)) {
+                            return [3 /*break*/, 13];
+                        }
+                        if (!checkInstance.enumerateScope) return [3 /*break*/, 11];
+                        _g.label = 3;
+                    case 3:
+                        _g.trys.push([3, 8, 9, 10]);
+                        _c = (e_1 = void 0, __values(scope.events())), _d = _c.next();
+                        _g.label = 4;
+                    case 4:
+                        if (!!_d.done) return [3 /*break*/, 7];
+                        event = _d.value;
+                        return [4 /*yield*/, this.checkEvent(event, scope.scope, appMapFile, appMap, checkInstance, findings)];
+                    case 5:
+                        _g.sent();
+                        _g.label = 6;
+                    case 6:
+                        _d = _c.next();
+                        return [3 /*break*/, 4];
+                    case 7: return [3 /*break*/, 10];
+                    case 8:
+                        e_1_1 = _g.sent();
+                        e_1 = { error: e_1_1 };
+                        return [3 /*break*/, 10];
+                    case 9:
+                        try {
+                            if (_d && !_d.done && (_f = _c.return)) _f.call(_c);
+                        }
+                        finally { if (e_1) throw e_1.error; }
+                        return [7 /*endfinally*/];
+                    case 10: return [3 /*break*/, 13];
+                    case 11: return [4 /*yield*/, this.checkEvent(scope.scope, scope.scope, appMapFile, appMap, checkInstance, findings)];
+                    case 12:
+                        _g.sent();
+                        _g.label = 13;
+                    case 13:
+                        _b = _a.next();
+                        return [3 /*break*/, 2];
+                    case 14: return [3 /*break*/, 17];
+                    case 15:
+                        e_2_1 = _g.sent();
+                        e_2 = { error: e_2_1 };
+                        return [3 /*break*/, 17];
+                    case 16:
+                        try {
+                            if (_b && !_b.done && (_e = _a.return)) _e.call(_a);
+                        }
+                        finally { if (e_2) throw e_2.error; }
+                        return [7 /*endfinally*/];
+                    case 17: return [2 /*return*/];
+                }
+            });
+        });
+    };
+    RuleChecker.prototype.checkEvent = function (event, scope, appMapFile, appMap, checkInstance, findings) {
+        return __awaiter(this, void 0, void 0, function () {
+            var buildFinding, matchResult, numFindings, finding, message, finding;
+            return __generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        if (!event.isCall()) {
+                            return [2 /*return*/];
+                        }
+                        if ((0, util_1.verbose)()) {
+                            console.warn("Asserting " + checkInstance.ruleId + " on " + event.codeObject.fqid + " event " + event.toString());
+                        }
+                        if (!event.returnEvent) {
+                            if ((0, util_1.verbose)()) {
+                                console.warn("\tEvent has no returnEvent. Skipping.");
+                            }
+                            return [2 /*return*/];
+                        }
+                        if (!checkInstance.filterEvent(event, appMap)) {
+                            return [2 /*return*/];
+                        }
+                        buildFinding = function (matchEvent, message, groupMessage, occurranceCount, relatedEvents) {
+                            if (matchEvent === void 0) { matchEvent = undefined; }
+                            if (message === void 0) { message = undefined; }
+                            if (groupMessage === void 0) { groupMessage = undefined; }
+                            if (occurranceCount === void 0) { occurranceCount = undefined; }
+                            if (relatedEvents === void 0) { relatedEvents = undefined; }
+                            var findingEvent = matchEvent || event;
+                            // Fixes:
+                            // TypeError: Cannot read property 'forEach' of undefined
+                            //   at hashHttp (/Users/kgilpin/source/appland/scanner/node_modules/@appland/models/dist/index.cjs:1663:11)
+                            //   at hashEvent (/Users/kgilpin/source/appland/scanner/node_modules/@appland/models/dist/index.cjs:1714:14)
+                            //   at Event.get hash [as hash] (/Users/kgilpin/source/appland/scanner/node_modules/@appland/models/dist/index.cjs:3325:27)
+                            findingEvent.message || (findingEvent.message = []);
+                            return {
+                                appMapFile: appMapFile,
+                                checkId: checkInstance.checkId,
+                                ruleId: checkInstance.ruleId,
+                                ruleTitle: checkInstance.title,
+                                event: findingEvent,
+                                hash: findingEvent.hash,
+                                scope: scope,
+                                message: message || checkInstance.title,
+                                groupMessage: groupMessage,
+                                occurranceCount: occurranceCount,
+                                relatedEvents: relatedEvents,
+                            };
+                        };
+                        return [4 /*yield*/, checkInstance.ruleLogic.matcher(event, appMap, checkInstance.filterEvent.bind(checkInstance))];
+                    case 1:
+                        matchResult = _a.sent();
+                        numFindings = findings.length;
+                        if (matchResult === true) {
+                            finding = void 0;
+                            if (checkInstance.ruleLogic.message) {
+                                message = checkInstance.ruleLogic.message(scope, event);
+                                finding = buildFinding(event, message);
+                            }
+                            else {
+                                finding = buildFinding(event);
+                            }
+                            findings.push(finding);
+                        }
+                        else if (typeof matchResult === 'string') {
+                            finding = buildFinding(event, matchResult);
+                            finding.message = matchResult;
+                            findings.push(finding);
+                        }
+                        else if (matchResult) {
+                            matchResult.forEach(function (mr) {
+                                var finding = buildFinding(mr.event, mr.message, mr.groupMessage, mr.occurranceCount, mr.relatedEvents);
+                                findings.push(finding);
+                            });
+                        }
+                        if ((0, util_1.verbose)()) {
+                            if (findings.length > numFindings) {
+                                findings.forEach(function (finding) {
+                                    return console.log("\tFinding: " + finding.ruleId + " : " + finding.message);
+                                });
+                            }
+                        }
+                        return [2 /*return*/];
+                }
+            });
+        });
+    };
+    return RuleChecker;
+}());
+exports.default = RuleChecker;
+//# sourceMappingURL=ruleChecker.js.map

package/built/ruleChecker.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ruleChecker.js","sourceRoot":"","sources":["../src/ruleChecker.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEA,mCAAsC;AAEtC,qCAAuC;AAEvC,gEAA0C;AAC1C,0FAAoE;AACpE,0FAAoE;AACpE,sEAAgD;AAChD,oFAA8D;AAC9D,kEAA4C;AAE5C;IAAA;QACU,WAAM,GAAkC;YAC9C,IAAI,EAAE,IAAI,mBAAS,EAAE;YACrB,OAAO,EAAE,IAAI,sBAAY,EAAE;YAC3B,mBAAmB,EAAE,IAAI,gCAAsB,EAAE;YACjD,mBAAmB,EAAE,IAAI,gCAAsB,EAAE;YACjD,WAAW,EAAE,IAAI,6BAAmB,EAAE;SACvC,CAAC;IA+IJ,CAAC;IA7IO,2BAAK,GAAX,UACE,UAAkB,EAClB,MAAc,EACd,KAAY,EACZ,QAAmB;;;;;;;wBAEnB,IAAI,IAAA,cAAO,GAAE,EAAE;4BACb,OAAO,CAAC,IAAI,CAAC,qBAAmB,MAAM,CAAC,IAAI,oBAAe,KAAK,CAAC,KAAO,CAAC,CAAC;yBAC1E;wBACK,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;wBAC/C,IAAI,CAAC,aAAa,EAAE;4BAClB,MAAM,IAAI,mBAAU,CAAC,0BAAuB,KAAK,CAAC,KAAK,OAAG,CAAC,CAAC;yBAC7D;wBAEK,UAAU,GAAG;;;;;wCACR,CAAC,GAAG,CAAC;;;6CAAE,CAAA,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAA;wCACtC,qBAAM,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAA;;wCAAtB,SAAsB,CAAC;;;wCADiB,CAAC,EAAE,CAAA;;;;;yBAG9C,CAAC;;;;wBAEkB,KAAA,SAAA,aAAa,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC,CAAA;;;;wBAA3C,KAAK;wBACd,IAAI,IAAA,cAAO,GAAE,EAAE;4BACb,OAAO,CAAC,IAAI,CAAC,WAAS,KAAK,CAAC,KAAO,CAAC,CAAC;yBACtC;wBACK,aAAa,GAAG,IAAI,uBAAa,CAAC,KAAK,CAAC,CAAC;wBAC/C,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,KAAK,CAAC,KAAK,EAAE,MAAM,CAAC,EAAE;4BAC3C,yBAAS;yBACV;6BACG,aAAa,CAAC,cAAc,EAA5B,yBAA4B;;;;wBACV,oBAAA,SAAA,KAAK,CAAC,MAAM,EAAE,CAAA,CAAA;;;;wBAAvB,KAAK;wBACd,qBAAM,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,UAAU,EAAE,MAAM,EAAE,aAAa,EAAE,QAAQ,CAAC,EAAA;;wBAAtF,SAAsF,CAAC;;;;;;;;;;;;;;;;;6BAGzF,qBAAM,IAAI,CAAC,UAAU,CACnB,KAAK,CAAC,KAAK,EACX,KAAK,CAAC,KAAK,EACX,UAAU,EACV,MAAM,EACN,aAAa,EACb,QAAQ,CACT,EAAA;;wBAPD,SAOC,CAAC;;;;;;;;;;;;;;;;;;;;KAGP;IAEK,gCAAU,GAAhB,UACE,KAAY,EACZ,KAAY,EACZ,UAAkB,EAClB,MAAc,EACd,aAA4B,EAC5B,QAAmB;;;;;;wBAEnB,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE;4BACnB,sBAAO;yBACR;wBACD,IAAI,IAAA,cAAO,GAAE,EAAE;4BACb,OAAO,CAAC,IAAI,CACV,eAAa,aAAa,CAAC,MAAM,YAAO,KAAK,CAAC,UAAU,CAAC,IAAI,eAAU,KAAK,CAAC,QAAQ,EAAI,CAC1F,CAAC;yBACH;wBAED,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE;4BACtB,IAAI,IAAA,cAAO,GAAE,EAAE;gCACb,OAAO,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;6BACvD;4BACD,sBAAO;yBACR;wBAED,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,KAAK,EAAE,MAAM,CAAC,EAAE;4BAC7C,sBAAO;yBACR;wBAEK,YAAY,GAAG,UACnB,UAAyC,EACzC,OAAuC,EACvC,YAA4C,EAC5C,eAA+C,EAC/C,aAA8C;4BAJ9C,2BAAA,EAAA,sBAAyC;4BACzC,wBAAA,EAAA,mBAAuC;4BACvC,6BAAA,EAAA,wBAA4C;4BAC5C,gCAAA,EAAA,2BAA+C;4BAC/C,8BAAA,EAAA,yBAA8C;4BAE9C,IAAM,YAAY,GAAG,UAAU,IAAI,KAAK,CAAC;4BACzC,SAAS;4BACT,yDAAyD;4BACzD,4GAA4G;4BAC5G,6GAA6G;4BAC7G,4HAA4H;4BAC5H,YAAY,CAAC,OAAO,KAApB,YAAY,CAAC,OAAO,GAAK,EAAE,EAAC;4BAC5B,OAAO;gCACL,UAAU,YAAA;gCACV,OAAO,EAAE,aAAa,CAAC,OAAO;gCAC9B,MAAM,EAAE,aAAa,CAAC,MAAM;gCAC5B,SAAS,EAAE,aAAa,CAAC,KAAK;gCAC9B,KAAK,EAAE,YAAY;gCACnB,IAAI,EAAE,YAAY,CAAC,IAAI;gCACvB,KAAK,OAAA;gCACL,OAAO,EAAE,OAAO,IAAI,aAAa,CAAC,KAAK;gCACvC,YAAY,cAAA;gCACZ,eAAe,iBAAA;gCACf,aAAa,eAAA;6BACd,CAAC;wBACJ,CAAC,CAAC;wBAEkB,qBAAM,aAAa,CAAC,SAAS,CAAC,OAAO,CACvD,KAAK,EACL,MAAM,EACN,aAAa,CAAC,WAAW,CAAC,IAAI,CAAC,aAAa,CAAC,CAC9C,EAAA;;wBAJK,WAAW,GAAG,SAInB;wBACK,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC;wBACpC,IAAI,WAAW,KAAK,IAAI,EAAE;4BACpB,OAAO,SAAA,CAAC;4BACZ,IAAI,aAAa,CAAC,SAAS,CAAC,OAAO,EAAE;gCAC7B,OAAO,GAAG,aAAa,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;gCAC9D,OAAO,GAAG,YAAY,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;6BACxC;iCAAM;gCACL,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;6BAC/B;4BACD,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;yBACxB;6BAAM,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE;4BACpC,OAAO,GAAG,YAAY,CAAC,KAAK,EAAE,WAAqB,CAAC,CAAC;4BAC3D,OAAO,CAAC,OAAO,GAAG,WAAqB,CAAC;4BACxC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;yBACxB;6BAAM,IAAI,WAAW,EAAE;4BACtB,WAAW,CAAC,OAAO,CAAC,UAAC,EAAE;gCACrB,IAAM,OAAO,GAAG,YAAY,CAC1B,EAAE,CAAC,KAAK,EACR,EAAE,CAAC,OAAO,EACV,EAAE,CAAC,YAAY,EACf,EAAE,CAAC,eAAe,EAClB,EAAE,CAAC,aAAa,CACjB,CAAC;gCACF,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;4BACzB,CAAC,CAAC,CAAC;yBACJ;wBACD,IAAI,IAAA,cAAO,GAAE,EAAE;4BACb,IAAI,QAAQ,CAAC,MAAM,GAAG,WAAW,EAAE;gCACjC,QAAQ,CAAC,OAAO,CAAC,UAAC,OAAO;oCACvB,OAAA,OAAO,CAAC,GAAG,CAAC,gBAAc,OAAO,CAAC,MAAM,WAAM,OAAO,CAAC,OAAS,CAAC;gCAAhE,CAAgE,CACjE,CAAC;6BACH;yBACF;;;;;KACF;IACH,kBAAC;AAAD,CAAC,AAtJD,IAsJC"}

package/built/rules/authzBeforeAuthn.js

@@ -0,0 +1,82 @@
+"use strict";
+var __values = (this && this.__values) || function(o) {
+    var s = typeof Symbol === "function" && Symbol.iterator, m = s && o[s], i = 0;
+    if (m) return m.call(o);
+    if (o && typeof o.length === "number") return {
+        next: function () {
+            if (o && i >= o.length) o = void 0;
+            return { value: o && o[i++], done: !o };
+        }
+    };
+    throw new TypeError(s ? "Object is not iterable." : "Symbol.iterator is not defined.");
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+var models_1 = require("@appland/models");
+var util_1 = require("./util");
+function containsAuthentication(events) {
+    var e_1, _a;
+    try {
+        for (var events_1 = __values(events), events_1_1 = events_1.next(); !events_1_1.done; events_1_1 = events_1.next()) {
+            var iter = events_1_1.value;
+            if ((0, util_1.providesAuthentication)(iter.event, SecurityAuthentication)) {
+                return true;
+            }
+        }
+    }
+    catch (e_1_1) { e_1 = { error: e_1_1 }; }
+    finally {
+        try {
+            if (events_1_1 && !events_1_1.done && (_a = events_1.return)) _a.call(events_1);
+        }
+        finally { if (e_1) throw e_1.error; }
+    }
+    return false;
+}
+function build() {
+    function matcher(rootEvent) {
+        var e_2, _a;
+        try {
+            for (var _b = __values(new models_1.EventNavigator(rootEvent).descendants()), _c = _b.next(); !_c.done; _c = _b.next()) {
+                var event = _c.value;
+                if ((0, util_1.providesAuthentication)(event.event, SecurityAuthentication)) {
+                    return;
+                }
+                if (event.event.labels.has(SecurityAuthorization) && (0, util_1.isTruthy)(event.event.returnValue)) {
+                    // If the authorization event has a successful authentication descendant, allow this as well.
+                    if (containsAuthentication(event.descendants())) {
+                        return;
+                    }
+                    else {
+                        return [
+                            {
+                                level: 'error',
+                                event: rootEvent,
+                                message: event.event + " provides authorization, but the request is not authenticated",
+                                relatedEvents: [event.event],
+                            },
+                        ];
+                    }
+                }
+            }
+        }
+        catch (e_2_1) { e_2 = { error: e_2_1 }; }
+        finally {
+            try {
+                if (_c && !_c.done && (_a = _b.return)) _a.call(_b);
+            }
+            finally { if (e_2) throw e_2.error; }
+        }
+    }
+    return { matcher: matcher };
+}
+var SecurityAuthentication = 'security.authentication';
+var SecurityAuthorization = 'security.authorization';
+exports.default = {
+    id: 'authz-before-authn',
+    title: 'Authorization performed before authentication',
+    labels: [SecurityAuthorization, SecurityAuthentication],
+    scope: 'http_server_request',
+    enumerateScope: false,
+    build: build,
+};
+//# sourceMappingURL=authzBeforeAuthn.js.map

package/built/rules/authzBeforeAuthn.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authzBeforeAuthn.js","sourceRoot":"","sources":["../../src/rules/authzBeforeAuthn.ts"],"names":[],"mappings":";;;;;;;;;;;;;AAAA,0CAAwD;AACxD,+BAA0D;AAG1D,SAAS,sBAAsB,CAAC,MAAiC;;;QAC/D,KAAmB,IAAA,WAAA,SAAA,MAAM,CAAA,8BAAA,kDAAE;YAAtB,IAAM,IAAI,mBAAA;YACb,IAAI,IAAA,6BAAsB,EAAC,IAAI,CAAC,KAAK,EAAE,sBAAsB,CAAC,EAAE;gBAC9D,OAAO,IAAI,CAAC;aACb;SACF;;;;;;;;;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,KAAK;IACZ,SAAS,OAAO,CAAC,SAAgB;;;YAC/B,KAAoB,IAAA,KAAA,SAAA,IAAI,uBAAc,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,CAAA,gBAAA,4BAAE;gBAA5D,IAAM,KAAK,WAAA;gBACd,IAAI,IAAA,6BAAsB,EAAC,KAAK,CAAC,KAAK,EAAE,sBAAsB,CAAC,EAAE;oBAC/D,OAAO;iBACR;gBACD,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,qBAAqB,CAAC,IAAI,IAAA,eAAQ,EAAC,KAAK,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE;oBACtF,6FAA6F;oBAC7F,IAAI,sBAAsB,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,EAAE;wBAC/C,OAAO;qBACR;yBAAM;wBACL,OAAO;4BACL;gCACE,KAAK,EAAE,OAAO;gCACd,KAAK,EAAE,SAAS;gCAChB,OAAO,EAAK,KAAK,CAAC,KAAK,kEAA+D;gCACtF,aAAa,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC;6BAC7B;yBACF,CAAC;qBACH;iBACF;aACF;;;;;;;;;IACH,CAAC;IAED,OAAO,EAAE,OAAO,SAAA,EAAE,CAAC;AACrB,CAAC;AAED,IAAM,sBAAsB,GAAG,yBAAyB,CAAC;AACzD,IAAM,qBAAqB,GAAG,wBAAwB,CAAC;AAEvD,kBAAe;IACb,EAAE,EAAE,oBAAoB;IACxB,KAAK,EAAE,+CAA+C;IACtD,MAAM,EAAE,CAAC,qBAAqB,EAAE,sBAAsB,CAAC;IACvD,KAAK,EAAE,qBAAkC;IACzC,cAAc,EAAE,KAAK;IACrB,KAAK,OAAA;CACE,CAAC"}

package/built/rules/circularDependency.js

@@ -0,0 +1,227 @@
+"use strict";
+var __read = (this && this.__read) || function (o, n) {
+    var m = typeof Symbol === "function" && o[Symbol.iterator];
+    if (!m) return o;
+    var i = m.call(o), r, ar = [], e;
+    try {
+        while ((n === void 0 || n-- > 0) && !(r = i.next()).done) ar.push(r.value);
+    }
+    catch (error) { e = { error: error }; }
+    finally {
+        try {
+            if (r && !r.done && (m = i["return"])) m.call(i);
+        }
+        finally { if (e) throw e.error; }
+    }
+    return ar;
+};
+var __spreadArray = (this && this.__spreadArray) || function (to, from, pack) {
+    if (pack || arguments.length === 2) for (var i = 0, l = from.length, ar; i < l; i++) {
+        if (ar || !(i in from)) {
+            if (!ar) ar = Array.prototype.slice.call(from, 0, i);
+            ar[i] = from[i];
+        }
+    }
+    return to.concat(ar || Array.prototype.slice.call(from));
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+var GraphEdge_1 = __importDefault(require("../algorithms/dataStructures/graph/GraphEdge"));
+var GraphVertex_1 = __importDefault(require("../algorithms/dataStructures/graph/GraphVertex"));
+var Graph_1 = __importDefault(require("../algorithms/dataStructures/graph/Graph"));
+var detect_cycle_1 = __importDefault(require("../algorithms/graph/detect-cycle"));
+var path_1 = require("path");
+var util_1 = require("./util");
+var matchPattern_1 = require("./lib/matchPattern");
+var Cycle = /** @class */ (function () {
+    function Cycle(packages, events) {
+        this.packages = packages;
+        this.events = events;
+    }
+    return Cycle;
+}());
+function ignorePackage(event, ignoredPackages) {
+    var myPackage = event.codeObject.packageOf;
+    return (myPackage === '' ||
+        ignoredPackages.some(function (filter) { return filter(myPackage); }) ||
+        !event.codeObject.location ||
+        (0, path_1.isAbsolute)(event.codeObject.location));
+}
+function detectCycles(root, ignoredPackages) {
+    var graph = new Graph_1.default(true);
+    var vertices = new Map();
+    var edges = new Set();
+    var vertexEvents = new Map();
+    var makeVertex = function (pkg, event) {
+        var result = vertices.get(pkg);
+        if (!result) {
+            result = new GraphVertex_1.default(pkg);
+            vertices.set(pkg, result);
+            vertexEvents.set(pkg, [event]);
+        }
+        else {
+            vertexEvents.get(pkg).push(event);
+        }
+        return result;
+    };
+    var collectEvent = function (event, parentEvent, parentPackage) {
+        var myPackage = event.codeObject.packageOf;
+        if (ignorePackage(event, ignoredPackages)) {
+            myPackage = null;
+        }
+        if (myPackage) {
+            var vertex = makeVertex(myPackage, event);
+            if (parentPackage && parentPackage !== myPackage) {
+                var edge = new GraphEdge_1.default(vertices.get(parentPackage), vertex);
+                if (!edges.has(edge.getKey())) {
+                    if ((0, util_1.verbose)()) {
+                        console.warn("New edge: " + parentPackage + "/" + parentEvent + " -> " + myPackage + "/" + event);
+                    }
+                    edges.add(edge.getKey());
+                    graph.addEdge(edge);
+                }
+            }
+            parentPackage = myPackage;
+        }
+        event.children.forEach(function (child) { return collectEvent(child, event, parentPackage); });
+    };
+    if (root.codeObject.packageOf !== '') {
+        makeVertex(root.codeObject.packageOf, root);
+    }
+    collectEvent(root, null, null);
+    return (0, detect_cycle_1.default)(graph).map(function (cycle) {
+        return new Cycle(cycle.map(function (vertex) { return vertex.getKey(); }), vertexEvents);
+    });
+}
+/**
+ * Given a list of package names which occur in a cycle,
+ * search the event tree to find a list of specific events whose sequence and package names match the cycle.
+
+ * @returns Sequence of events whose package names match the cyclePath.
+ */
+var searchForCycle = function (cycle, ignoredPackages) {
+    var traverseEvent = function (event, recordEvent, cyclePath, cyclePathIndex, path) {
+        if (cyclePathIndex === void 0) { cyclePathIndex = 0; }
+        if (path === void 0) { path = []; }
+        if (recordEvent) {
+            if ((0, util_1.verbose)()) {
+                console.warn(Array(path.length).fill('').join('  ') + "push: " + event);
+            }
+            path.push(event);
+        }
+        else {
+            if ((0, util_1.verbose)()) {
+                console.warn(Array(path.length).fill('').join('  ') + "traverse: " + event);
+            }
+        }
+        if (cyclePathIndex === cyclePath.length - 1) {
+            if ((0, util_1.verbose)()) {
+                console.warn(Array(path.length).fill('').join('  ') + "result: " + path);
+            }
+            return __spreadArray([], __read(path), false);
+        }
+        var myPackage = event.codeObject.packageOf;
+        if ((0, util_1.verbose)()) {
+            console.warn(event.children.map(function (child) { return child.codeObject.fqid; }));
+        }
+        // Traverse children of ignored or same package
+        var result = event.children
+            .filter(function (child) { return child.codeObject.packageOf === myPackage || ignorePackage(child, ignoredPackages); })
+            .map(function (child) { return traverseEvent(child, false, cyclePath, cyclePathIndex, path); })
+            .filter(Boolean);
+        // Traverse children of the next package in the graph
+        if (result.length === 0) {
+            result = event.children
+                .filter(function (child) {
+                return child.codeObject.packageOf !== myPackage &&
+                    !ignorePackage(child, ignoredPackages) &&
+                    cyclePath[cyclePathIndex + 1] === child.codeObject.packageOf;
+            })
+                .map(function (child) { return traverseEvent(child, true, cyclePath, cyclePathIndex + 1, path); })
+                .filter(function (path) { return path; });
+        }
+        if (result.length > 0) {
+            return result[0];
+        }
+        else {
+            if (recordEvent) {
+                if ((0, util_1.verbose)()) {
+                    console.warn(Array(path.length - 1)
+                        .fill('')
+                        .join('  ') + "pop");
+                }
+                path.pop();
+            }
+            else {
+                if ((0, util_1.verbose)()) {
+                    console.warn(Array(path.length - 1)
+                        .fill('')
+                        .join('  ') + "untraverse");
+                }
+            }
+            return null;
+        }
+    };
+    // Look for a cycle starting at each package name. For each package name, consider the
+    // events that have that package.
+    for (var i = 0; i < cycle.packages.length; i++) {
+        var packageName = cycle.packages[i];
+        var startEvents = cycle.events.get(packageName);
+        var cyclePath = [];
+        for (var k = 0; k < cycle.packages.length; k++) {
+            cyclePath[k] = cycle.packages[(i + k) % cycle.packages.length];
+        }
+        cyclePath.push(packageName);
+        if ((0, util_1.verbose)()) {
+            console.warn("Searching for event path for cycle " + cyclePath);
+        }
+        for (var j = 0; j < startEvents.length; j++) {
+            var startEvent = startEvents[j];
+            var path = traverseEvent(startEvent, true, cyclePath);
+            if (path) {
+                return path;
+            }
+        }
+    }
+    return null;
+};
+var Options = /** @class */ (function () {
+    function Options() {
+        this.ignoredPackages = [];
+        this.depth = 4;
+    }
+    return Options;
+}());
+function build(options) {
+    var ignoredPackages = (0, matchPattern_1.buildFilters)(options.ignoredPackages);
+    function matcher(event) {
+        return detectCycles(event, ignoredPackages)
+            .filter(function (cycle) { return cycle.packages.length + 1 >= options.depth; })
+            .map(function (cycle) { return searchForCycle(cycle, ignoredPackages); })
+            .filter(function (path) { return path; })
+            .map(function (path) {
+            return {
+                event: path[0],
+                message: [
+                    'Cycle in package dependency graph',
+                    path.map(function (event) { return event.codeObject.packageOf; }).join(' -> '),
+                ].join(': '),
+                relatedEvents: path,
+            };
+        });
+    }
+    return {
+        matcher: matcher,
+    };
+}
+exports.default = {
+    id: 'circular-dependency',
+    title: 'Circular package dependency',
+    scope: 'command',
+    Options: Options,
+    enumerateScope: false,
+    build: build,
+};
+//# sourceMappingURL=circularDependency.js.map

package/built/rules/circularDependency.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"circularDependency.js","sourceRoot":"","sources":["../../src/rules/circularDependency.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEA,2FAAqE;AACrE,+FAAyE;AACzE,mFAA6D;AAC7D,kFAAmE;AACnE,6BAAkC;AAElC,+BAAiC;AAEjC,mDAAkD;AAIlD;IACE,eAAmB,QAAuB,EAAS,MAAiC;QAAjE,aAAQ,GAAR,QAAQ,CAAe;QAAS,WAAM,GAAN,MAAM,CAA2B;IAAG,CAAC;IAC1F,YAAC;AAAD,CAAC,AAFD,IAEC;AAED,SAAS,aAAa,CAAC,KAAY,EAAE,eAA+B;IAClE,IAAM,SAAS,GAAkB,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC;IAC5D,OAAO,CACL,SAAS,KAAK,EAAE;QAChB,eAAe,CAAC,IAAI,CAAC,UAAC,MAAM,IAAK,OAAA,MAAM,CAAC,SAAS,CAAC,EAAjB,CAAiB,CAAC;QACnD,CAAC,KAAK,CAAC,UAAU,CAAC,QAAQ;QAC1B,IAAA,iBAAU,EAAC,KAAK,CAAC,UAAU,CAAC,QAAQ,CAAC,CACtC,CAAC;AACJ,CAAC;AAED,SAAS,YAAY,CAAC,IAAW,EAAE,eAA+B;IAChE,IAAM,KAAK,GAAG,IAAI,eAAK,CAAC,IAAI,CAAC,CAAC;IAC9B,IAAM,QAAQ,GAAG,IAAI,GAAG,EAA4B,CAAC;IACrD,IAAM,KAAK,GAAG,IAAI,GAAG,EAAU,CAAC;IAChC,IAAM,YAAY,GAAG,IAAI,GAAG,EAAwB,CAAC;IAErD,IAAM,UAAU,GAAG,UAAC,GAAgB,EAAE,KAAY;QAChD,IAAI,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,CAAC,MAAM,EAAE;YACX,MAAM,GAAG,IAAI,qBAAW,CAAC,GAAG,CAAC,CAAC;YAC9B,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;YAC1B,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC;SAChC;aAAM;YACL,YAAY,CAAC,GAAG,CAAC,GAAG,CAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;SACpC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC,CAAC;IAEF,IAAM,YAAY,GAAG,UACnB,KAAY,EACZ,WAAyB,EACzB,aAAiC;QAEjC,IAAI,SAAS,GAAuB,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC;QAC/D,IAAI,aAAa,CAAC,KAAK,EAAE,eAAe,CAAC,EAAE;YACzC,SAAS,GAAG,IAAI,CAAC;SAClB;QAED,IAAI,SAAS,EAAE;YACb,IAAM,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;YAC5C,IAAI,aAAa,IAAI,aAAa,KAAK,SAAS,EAAE;gBAChD,IAAM,IAAI,GAAG,IAAI,mBAAS,CAAC,QAAQ,CAAC,GAAG,CAAC,aAAa,CAAE,EAAE,MAAM,CAAC,CAAC;gBACjE,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE;oBAC7B,IAAI,IAAA,cAAO,GAAE,EAAE;wBACb,OAAO,CAAC,IAAI,CAAC,eAAa,aAAa,SAAI,WAAW,YAAO,SAAS,SAAI,KAAO,CAAC,CAAC;qBACpF;oBACD,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;oBACzB,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;iBACrB;aACF;YACD,aAAa,GAAG,SAAS,CAAC;SAC3B;QACD,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,UAAC,KAAK,IAAK,OAAA,YAAY,CAAC,KAAK,EAAE,KAAK,EAAE,aAAa,CAAC,EAAzC,CAAyC,CAAC,CAAC;IAC/E,CAAC,CAAC;IAEF,IAAI,IAAI,CAAC,UAAU,CAAC,SAAS,KAAK,EAAE,EAAE;QACpC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;KAC7C;IACD,YAAY,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;IAE/B,OAAO,IAAA,sBAAmB,EAAC,KAAK,CAAC,CAAC,GAAG,CAAC,UAAC,KAAK;QAC1C,OAAO,IAAI,KAAK,CACd,KAAK,CAAC,GAAG,CAAC,UAAC,MAAM,IAAK,OAAA,MAAM,CAAC,MAAM,EAAE,EAAf,CAAe,CAAC,EACtC,YAAY,CACb,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;;;;GAKG;AACH,IAAM,cAAc,GAAG,UAAC,KAAY,EAAE,eAA+B;IACnE,IAAM,aAAa,GAAG,UACpB,KAAY,EACZ,WAAoB,EACpB,SAAwB,EACxB,cAAkB,EAClB,IAAkB;QADlB,+BAAA,EAAA,kBAAkB;QAClB,qBAAA,EAAA,SAAkB;QAElB,IAAI,WAAW,EAAE;YACf,IAAI,IAAA,cAAO,GAAE,EAAE;gBACb,OAAO,CAAC,IAAI,CAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,cAAS,KAAO,CAAC,CAAC;aACzE;YACD,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;SAClB;aAAM;YACL,IAAI,IAAA,cAAO,GAAE,EAAE;gBACb,OAAO,CAAC,IAAI,CAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,kBAAa,KAAO,CAAC,CAAC;aAC7E;SACF;QAED,IAAI,cAAc,KAAK,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE;YAC3C,IAAI,IAAA,cAAO,GAAE,EAAE;gBACb,OAAO,CAAC,IAAI,CAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,gBAAW,IAAM,CAAC,CAAC;aAC1E;YACD,gCAAW,IAAI,UAAE;SAClB;QAED,IAAM,SAAS,GAAG,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC;QAE7C,IAAI,IAAA,cAAO,GAAE,EAAE;YACb,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,UAAC,KAAK,IAAK,OAAA,KAAK,CAAC,UAAU,CAAC,IAAI,EAArB,CAAqB,CAAC,CAAC,CAAC;SACpE;QAED,+CAA+C;QAC/C,IAAI,MAAM,GAAG,KAAK,CAAC,QAAQ;aACxB,MAAM,CACL,UAAC,KAAK,IAAK,OAAA,KAAK,CAAC,UAAU,CAAC,SAAS,KAAK,SAAS,IAAI,aAAa,CAAC,KAAK,EAAE,eAAe,CAAC,EAAjF,CAAiF,CAC7F;aACA,GAAG,CAAC,UAAC,KAAK,IAAK,OAAA,aAAa,CAAC,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,cAAc,EAAE,IAAI,CAAC,EAA5D,CAA4D,CAAC;aAC5E,MAAM,CAAC,OAAO,CAAC,CAAC;QAEnB,qDAAqD;QACrD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE;YACvB,MAAM,GAAG,KAAK,CAAC,QAAQ;iBACpB,MAAM,CACL,UAAC,KAAK;gBACJ,OAAA,KAAK,CAAC,UAAU,CAAC,SAAS,KAAK,SAAS;oBACxC,CAAC,aAAa,CAAC,KAAK,EAAE,eAAe,CAAC;oBACtC,SAAS,CAAC,cAAc,GAAG,CAAC,CAAC,KAAK,KAAK,CAAC,UAAU,CAAC,SAAS;YAF5D,CAE4D,CAC/D;iBACA,GAAG,CAAC,UAAC,KAAK,IAAK,OAAA,aAAa,CAAC,KAAK,EAAE,IAAI,EAAE,SAAS,EAAE,cAAc,GAAG,CAAC,EAAE,IAAI,CAAC,EAA/D,CAA+D,CAAC;iBAC/E,MAAM,CAAC,UAAC,IAAI,IAAK,OAAA,IAAI,EAAJ,CAAI,CAAC,CAAC;SAC3B;QAED,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE;YACrB,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;SAClB;aAAM;YACL,IAAI,WAAW,EAAE;gBACf,IAAI,IAAA,cAAO,GAAE,EAAE;oBACb,OAAO,CAAC,IAAI,CACP,KAAK,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;yBACtB,IAAI,CAAC,EAAE,CAAC;yBACR,IAAI,CAAC,IAAI,CAAC,QAAK,CACnB,CAAC;iBACH;gBACD,IAAI,CAAC,GAAG,EAAE,CAAC;aACZ;iBAAM;gBACL,IAAI,IAAA,cAAO,GAAE,EAAE;oBACb,OAAO,CAAC,IAAI,CACP,KAAK,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;yBACtB,IAAI,CAAC,EAAE,CAAC;yBACR,IAAI,CAAC,IAAI,CAAC,eAAY,CAC1B,CAAC;iBACH;aACF;YACD,OAAO,IAAI,CAAC;SACb;IACH,CAAC,CAAC;IAEF,sFAAsF;IACtF,iCAAiC;IACjC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;QAC9C,IAAM,WAAW,GAAG,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QACtC,IAAM,WAAW,GAAG,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,WAAW,CAAE,CAAC;QACnD,IAAM,SAAS,GAAG,EAAE,CAAC;QACrB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;YAC9C,SAAS,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;SAChE;QACD,SAAS,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC5B,IAAI,IAAA,cAAO,GAAE,EAAE;YACb,OAAO,CAAC,IAAI,CAAC,wCAAsC,SAAW,CAAC,CAAC;SACjE;QACD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,WAAW,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;YAC3C,IAAM,UAAU,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;YAClC,IAAM,IAAI,GAAG,aAAa,CAAC,UAAU,EAAE,IAAI,EAAE,SAAS,CAAC,CAAC;YACxD,IAAI,IAAI,EAAE;gBACR,OAAO,IAAI,CAAC;aACb;SACF;KACF;IACD,OAAO,IAAI,CAAC;AACd,CAAC,CAAC;AAEF;IAAA;QACS,oBAAe,GAAyB,EAAE,CAAC;QAC3C,UAAK,GAAG,CAAC,CAAC;IACnB,CAAC;IAAD,cAAC;AAAD,CAAC,AAHD,IAGC;AAED,SAAS,KAAK,CAAC,OAAgB;IAC7B,IAAM,eAAe,GAAG,IAAA,2BAAY,EAAC,OAAO,CAAC,eAAe,CAAC,CAAC;IAE9D,SAAS,OAAO,CAAC,KAAY;QAC3B,OAAO,YAAY,CAAC,KAAK,EAAE,eAAe,CAAC;aACxC,MAAM,CAAC,UAAC,KAAK,IAAK,OAAA,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,IAAI,OAAO,CAAC,KAAK,EAA1C,CAA0C,CAAC;aAC7D,GAAG,CAAC,UAAC,KAAK,IAAK,OAAA,cAAc,CAAC,KAAK,EAAE,eAAe,CAAC,EAAtC,CAAsC,CAAC;aACtD,MAAM,CAAC,UAAC,IAAI,IAAK,OAAA,IAAI,EAAJ,CAAI,CAAC;aACtB,GAAG,CAAC,UAAC,IAAI;YACR,OAAO;gBACL,KAAK,EAAE,IAAK,CAAC,CAAC,CAAC;gBACf,OAAO,EAAE;oBACP,mCAAmC;oBACnC,IAAK,CAAC,GAAG,CAAC,UAAC,KAAK,IAAK,OAAA,KAAK,CAAC,UAAU,CAAC,SAAS,EAA1B,CAA0B,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC;iBAC9D,CAAC,IAAI,CAAC,IAAI,CAAC;gBACZ,aAAa,EAAE,IAAK;aACN,CAAC;QACnB,CAAC,CAAC,CAAC;IACP,CAAC;IAED,OAAO;QACL,OAAO,SAAA;KACR,CAAC;AACJ,CAAC;AAED,kBAAe;IACb,EAAE,EAAE,qBAAqB;IACzB,KAAK,EAAE,6BAA6B;IACpC,KAAK,EAAE,SAAS;IAChB,OAAO,SAAA;IACP,cAAc,EAAE,KAAK;IACrB,KAAK,OAAA;CACE,CAAC"}

package/built/rules/http500.js

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+function build() {
+    return {
+        matcher: function (e) {
+            return e.httpServerResponse.status >= 500 && e.httpServerResponse.status < 600;
+        },
+        where: function (e) { return !!e.httpServerResponse; },
+    };
+}
+exports.default = {
+    id: 'http-5xx',
+    title: 'HTTP 5xx status code',
+    scope: 'http_server_request',
+    enumerateScope: false,
+    build: build,
+};
+//# sourceMappingURL=http500.js.map

package/built/rules/http500.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http500.js","sourceRoot":"","sources":["../../src/rules/http500.ts"],"names":[],"mappings":";;AAGA,SAAS,KAAK;IACZ,OAAO;QACL,OAAO,EAAE,UAAC,CAAQ;YAChB,OAAA,CAAC,CAAC,kBAAmB,CAAC,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,kBAAmB,CAAC,MAAM,GAAG,GAAG;QAAzE,CAAyE;QAC3E,KAAK,EAAE,UAAC,CAAQ,IAAK,OAAA,CAAC,CAAC,CAAC,CAAC,kBAAkB,EAAtB,CAAsB;KAC5C,CAAC;AACJ,CAAC;AAED,kBAAe;IACb,EAAE,EAAE,UAAU;IACd,KAAK,EAAE,sBAAsB;IAC7B,KAAK,EAAE,qBAAqB;IAC5B,cAAc,EAAE,KAAK;IACrB,KAAK,OAAA;CACE,CAAC"}

package/built/rules/illegalPackageDependency.js

@@ -0,0 +1,38 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var matchPattern_1 = require("./lib/matchPattern");
+var Options = /** @class */ (function () {
+    function Options() {
+        this.callerPackages = [];
+        this.calleePackage = {};
+    }
+    return Options;
+}());
+function build(options) {
+    var callerPatterns = (0, matchPattern_1.buildFilters)(options.callerPackages || []);
+    var calleePattern = (0, matchPattern_1.buildFilter)(options.calleePackage);
+    function where(e) {
+        return !!e.parent && !!e.parent.codeObject.packageOf && calleePattern(e.codeObject.packageOf);
+    }
+    function matcher(e) {
+        var packageNamesStr = options.callerPackages
+            .map(function (config) { return config.equal || config.include || config.match; })
+            .map(String)
+            .join(' or ');
+        var parentPackage = e.parent.codeObject.packageOf;
+        if (!(e.codeObject.packageOf === parentPackage ||
+            callerPatterns.some(function (pattern) { return pattern(parentPackage); }))) {
+            return "Code object " + e.codeObject.id + " was invoked from " + parentPackage + ", not from " + packageNamesStr;
+        }
+    }
+    return { where: where, matcher: matcher };
+}
+exports.default = {
+    id: 'illegal-package-dependency',
+    title: 'Illegal use of code by a non-whitelisted package',
+    scope: 'command',
+    enumerateScope: true,
+    Options: Options,
+    build: build,
+};
+//# sourceMappingURL=illegalPackageDependency.js.map