@brizz/sdk 0.1.0-alpha.6

package/dist/internal/masking/patterns.js

@@ -0,0 +1,375 @@
+export const DEFAULT_PII_PATTERNS = [
+    {
+        name: 'email_addresses',
+        pattern: String.raw `\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Z|a-z]{2,}\b`,
+    },
+    {
+        name: 'us_phone_numbers',
+        pattern: String.raw `(?:^|[\s])(?:\+?1[-.\s]*)?(?:\([0-9]{3}\)\s?[0-9]{3}[-.\s]?[0-9]{4}|[0-9]{3}[-.\s]?[0-9]{3}[-.\s]?[0-9]{4}|[0-9]{10})(?=[\s]|$)`,
+    },
+    {
+        name: 'ssn',
+        pattern: String.raw `\b(?!000|666|9\d{2})\d{3}[-\s]?(?!00)\d{2}[-\s]?(?!0000)\d{4}\b`,
+    },
+    {
+        name: 'credit_cards',
+        pattern: String.raw `\b(?:4[0-9]{12}(?:[0-9]{3})?|5[1-5][0-9]{14}|3[47][0-9]{13}|3(?:0[0-5]|[68][0-9])[0-9]{11}|6(?:011|5[0-9]{2})[0-9]{12}|(?:2131|1800|35\\d{3})\\d{11})\b`,
+    },
+    {
+        name: 'credit_cards_with_separators',
+        pattern: String.raw `\b(?:4\\d{3}|5[1-5]\\d{2}|3[47]\\d{2})[-\s]?\\d{4}[-\s]?\\d{4}[-\s]?\\d{4}\b`,
+    },
+    {
+        name: 'ipv4_addresses',
+        pattern: String.raw `\b(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)(?!\.[0-9])\b`,
+    },
+    {
+        name: 'generic_api_keys',
+        pattern: String.raw `\b(?:[Aa][Pp][Ii][_-]?[Kk][Ee][Yy]|[Tt][Oo][Kk][Ee][Nn]|[Ss][Ee][Cc][Rr][Ee][Tt])[_-]?[=:]?\s*["']?(?:[a-zA-Z0-9\-_.]{20,})["']?\b`,
+    },
+    {
+        name: 'openai_keys',
+        pattern: String.raw `\bsk[-_][a-zA-Z0-9]{20,}\b`,
+    },
+    {
+        name: 'base64_secrets',
+        pattern: String.raw `\b[A-Za-z0-9+/]{64,}={0,2}\b`,
+    },
+    {
+        name: 'aws_access_keys',
+        pattern: String.raw `\b(?:AKIA|ABIA|ACCA|ASIA)[0-9A-Z]{16}\b`,
+    },
+    {
+        name: 'aws_secret_keys',
+        pattern: String.raw `\b[A-Za-z0-9/+=]*[A-Z][A-Za-z0-9/+=]*[a-z][A-Za-z0-9/+=]*[/+=][A-Za-z0-9/+=]{30,}\b`,
+    },
+    {
+        name: 'github_tokens',
+        pattern: String.raw `\bghp_[a-zA-Z0-9]{36}\b`,
+    },
+    {
+        name: 'slack_tokens',
+        pattern: String.raw `\bxox[baprs]-[0-9]{10,13}-[0-9]{10,13}-[a-zA-Z0-9]{24,34}\b`,
+    },
+    {
+        name: 'stripe_keys',
+        pattern: String.raw `\b(?:sk|pk)_(?:test|live)_[a-zA-Z0-9]{24,}\b`,
+    },
+    {
+        name: 'jwt_tokens',
+        pattern: String.raw `\beyJ[A-Za-z0-9_-]{2,}\\.[A-Za-z0-9_-]{2,}\\.[A-Za-z0-9_-]{2,}\b`,
+    },
+    {
+        name: 'mac_addresses',
+        pattern: String.raw `\b(?:[0-9A-Fa-f]{2}[:-]){5}[0-9A-Fa-f]{2}\b`,
+    },
+    {
+        name: 'ipv6_addresses',
+        pattern: String.raw `\b(?:[0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}\b`,
+    },
+    {
+        name: 'medical_record_numbers',
+        pattern: String.raw `\b(?:[Mm][Rr][Nn])[-\s]?\d{6,10}\b`,
+    },
+    {
+        name: 'bitcoin_addresses',
+        pattern: String.raw `\b[13][a-km-zA-HJ-NP-Z1-9]{25,34}\b`,
+    },
+    {
+        name: 'ethereum_addresses',
+        pattern: String.raw `\b0x[a-fA-F0-9]{40}(?![a-fA-F0-9])\b`,
+    },
+    {
+        name: 'uuids',
+        pattern: String.raw `\b[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}(?![0-9a-fA-F-])\b`,
+    },
+    {
+        name: 'database_connections',
+        pattern: String.raw `\b(?:[Mm][Oo][Nn][Gg][Oo][Dd][Bb]|[Pp][Oo][Ss][Tt][Gg][Rr][Ee][Ss]|[Mm][Yy][Ss][Qq][Ll]|[Rr][Ee][Dd][Ii][Ss]|[Mm][Ss][Ss][Qq][Ll]|[Oo][Rr][Aa][Cc][Ll][Ee]):\\/\\/[^\\s]+\b`,
+    },
+    {
+        name: 'rsa_private_keys',
+        pattern: '-----BEGIN (?:RSA )?PRIVATE KEY-----',
+    },
+    {
+        name: 'pgp_private_keys',
+        pattern: '-----BEGIN PGP PRIVATE KEY BLOCK-----',
+    },
+    {
+        name: 'certificates',
+        pattern: '-----BEGIN CERTIFICATE-----',
+    },
+    {
+        name: 'date_of_birth_us',
+        pattern: String.raw `\b(?:0[1-9]|1[0-2])[-/](?:0[1-9]|[12]\\d|3[01])[-/](?:19|20)\\d{2}\b`,
+    },
+    {
+        name: 'date_of_birth_iso',
+        pattern: String.raw `\b(?:19|20)\\d{2}[-/](?:0[1-9]|1[0-2])[-/](?:0[1-9]|[12]\\d|3[01])\b`,
+    },
+    {
+        name: 'us_passport_numbers',
+        pattern: String.raw `\b[A-Z]?\\d{6,9}\b`,
+    },
+    {
+        name: 'drivers_license',
+        pattern: String.raw `\b[A-Z]{1,2}\\d{3,8}[-\s]?\\d{2,5}[-\s]?\\d{2,5}[-\s]?\\d{1,5}[-\s]?\\d?\b`,
+    },
+    {
+        name: 'bank_account_numbers',
+        pattern: String.raw `\b\\d{10,17}\b`,
+    },
+    {
+        name: 'aba_routing_numbers',
+        pattern: String.raw `\b((0[0-9])|(1[0-2])|(2[1-9])|(3[0-2])|(6[1-9])|(7[0-2])|80)([0-9]{7})\b`,
+    },
+    {
+        name: 'health_insurance_numbers',
+        pattern: String.raw `\b\\d{10}[A-Z]\b`,
+    },
+    {
+        name: 'employee_ids',
+        pattern: String.raw `\b(?:[Ee][Mm][Pp]|[Ee][Mm][Pp][Ll][Oo][Yy][Ee][Ee]|[Ee])[-\s]?\\d{5,8}\b`,
+    },
+    {
+        name: 'tax_ein',
+        pattern: String.raw `\b\\d{2}-\\d{7}\b`,
+    },
+    {
+        name: 'medicare_beneficiary_id',
+        pattern: String.raw `\b[1-9][A-Z][A-Z0-9]\\d-[A-Z][A-Z0-9]\\d-[A-Z][A-Z0-9]\\d{2}\b`,
+    },
+    {
+        name: 'national_provider_id',
+        pattern: String.raw `\b1\\d{9}\b`,
+    },
+    {
+        name: 'dea_numbers',
+        pattern: String.raw `\b[A-Z]{2}\\d{7}\b`,
+    },
+    {
+        name: 'itin',
+        pattern: String.raw `\b9\\d{2}(?:[ \\-]?)[7,8]\\d(?:[ \\-]?)\\d{4}\b`,
+    },
+    {
+        name: 'vin_numbers',
+        pattern: String.raw `\b[A-HJ-NPR-Z0-9]{17}\b`,
+    },
+    {
+        name: 'coordinates',
+        pattern: String.raw `\b[-+]?(?:[0-8]?\\d(?:\\.\\d+)?|90(?:\\.0+)?),\\s*[-+]?(?:1[0-7]\\d(?:\\.\\d+)?|180(?:\\.0+)?|[0-9]?\\d(?:\\.\\d+)?)\b`,
+    },
+    {
+        name: 'us_license_plates',
+        pattern: String.raw `\b[A-Z]{1,3}[-\s]\\d{1,4}[A-Z]?\b|\b\\d{1,2}[A-Z]{1,3}\\d{1,4}\b`,
+    },
+    {
+        name: 'us_zip_codes',
+        pattern: String.raw `\b(\\d{5}-\\d{4}|\\d{5})\b`,
+    },
+    {
+        name: 'us_street_addresses',
+        pattern: String.raw `\b\\d{1,8}\b[\\s\\S]{10,100}?\b(AK|AL|AR|AZ|CA|CO|CT|DC|DE|FL|GA|HI|IA|ID|IL|IN|KS|KY|LA|MA|MD|ME|MI|MN|MO|MS|MT|NC|ND|NE|NH|NJ|NM|NV|NY|OH|OK|OR|PA|RI|SC|SD|TN|TX|UT|VA|VT|WA|WI|WV|WY)\b\\s\\d{5}\b`,
+    },
+    {
+        name: 'iban',
+        pattern: String.raw `\b[A-Z]{2}\d{2}[A-Z0-9]{4}\d{7}([A-Z0-9]?){0,16}\b`,
+    },
+    {
+        name: 'swift_bic',
+        pattern: String.raw `\b[A-Z]{4}[A-Z]{2}[A-Z0-9]{2}([A-Z0-9]{3})?\b`,
+    },
+    {
+        name: 'google_oauth',
+        pattern: String.raw `\bya29\\.[a-zA-Z0-9_-]{60,}\b`,
+    },
+    {
+        name: 'firebase_tokens',
+        pattern: String.raw `\bAAAA[A-Za-z0-9_-]{100,}\b`,
+    },
+    {
+        name: 'google_app_ids',
+        pattern: String.raw `\b[0-9]+-\w+\.apps\.googleusercontent\.com\b`,
+    },
+    {
+        name: 'facebook_secrets',
+        pattern: String.raw `\b(facebook_secret|FACEBOOK_SECRET|facebook_app_secret|FACEBOOK_APP_SECRET)[a-z_ =\\s"'\\:]{0,5}[^a-zA-Z0-9][a-f0-9]{32}[^a-zA-Z0-9]`,
+    },
+    {
+        name: 'github_keys',
+        pattern: String.raw `\b(GITHUB_SECRET|GITHUB_KEY|github_secret|github_key|github_token|GITHUB_TOKEN|github_api_key|GITHUB_API_KEY)[a-z_ =\\s\"'\\:]{0,10}[^a-zA-Z0-9][a-zA-Z0-9]{40}[^a-zA-Z0-9]`,
+    },
+    {
+        name: 'heroku_keys',
+        pattern: String.raw `\b(heroku_api_key|HEROKU_API_KEY|heroku_secret|HEROKU_SECRET)[a-z_ =\\s\"'\\:]{0,10}[^a-zA-Z0-9-]\\w{8}(?:-\\w{4}){3}-\\w{12}[^a-zA-Z0-9\\-]`,
+    },
+    {
+        name: 'slack_api_keys',
+        pattern: String.raw `\b(slack_api_key|SLACK_API_KEY|slack_key|SLACK_KEY)[a-z_ =\\s\"'\\:]{0,10}[^a-f0-9][a-f0-9]{32}[^a-f0-9]`,
+    },
+    {
+        name: 'slack_api_tokens',
+        pattern: String.raw `\b(xox[pb](?:-[a-zA-Z0-9]+){4,})\b`,
+    },
+    {
+        name: 'dsa_private_keys',
+        pattern: String.raw `-----BEGIN DSA PRIVATE KEY-----(?:[a-zA-Z0-9\+\=\/"']|\s)+?-----END DSA PRIVATE KEY-----`,
+    },
+    {
+        name: 'ec_private_keys',
+        pattern: String.raw `-----BEGIN (?:EC|ECDSA) PRIVATE KEY-----(?:[a-zA-Z0-9\+\=\/"']|\s)+?-----END (?:EC|ECDSA) PRIVATE KEY-----`,
+    },
+    {
+        name: 'encrypted_private_keys',
+        pattern: String.raw `-----BEGIN ENCRYPTED PRIVATE KEY-----(?:.|\s)+?-----END ENCRYPTED PRIVATE KEY-----`,
+    },
+    {
+        name: 'ssl_certificates',
+        pattern: String.raw `-----BEGIN CERTIFICATE-----(?:.|\n)+?\s-----END CERTIFICATE-----`,
+    },
+    {
+        name: 'ssh_dss_public',
+        pattern: String.raw `\bssh-dss [0-9A-Za-z+/]+[=]{2}\b`,
+    },
+    {
+        name: 'ssh_rsa_public',
+        pattern: String.raw `\bssh-rsa AAAA[0-9A-Za-z+/]+[=]{0,3} [^@]+@[^@]+\b`,
+    },
+    {
+        name: 'putty_ssh_keys',
+        pattern: String.raw `PuTTY-User-Key-File-2: ssh-(?:rsa|dss)\s*Encryption: none(?:.|\s?)*?Private-MAC:`,
+    },
+    {
+        name: 'france_phone_numbers',
+        pattern: String.raw `\b([0O]?[1lI][1lI])?[3E][3E][0O]?[\\dOIlZEASB]{9}\b`,
+    },
+    {
+        name: 'german_phone_numbers',
+        pattern: String.raw `\b[\d\w]\d{2}[\d\w]{6}\d[\d\w]\b`,
+    },
+    {
+        name: 'uk_phone_numbers',
+        pattern: String.raw `\b([0O]?[1lI][1lI])?[4A][4A][\\dOIlZEASB]{10,11}\b`,
+    },
+    {
+        name: 'uk_drivers_license',
+        pattern: String.raw `\b[A-Z]{5}\d{6}[A-Z]{2}\d{1}[A-Z]{2}\b`,
+    },
+    {
+        name: 'uk_passport',
+        pattern: String.raw `\b\\d{10}GB[RP]\\d{7}[UMF]{1}\\d{9}\b`,
+    },
+    {
+        name: 'argentina_dni',
+        pattern: String.raw `\b\\d{2}\\.\\d{3}\\.\\d{3}\b`,
+    },
+    {
+        name: 'australia_tfn',
+        pattern: String.raw `\b[Tt][Ff][Nn](:|:\\s|\\s|)(\\d{8,9})\b`,
+    },
+    {
+        name: 'canada_passport',
+        pattern: String.raw `\b[\\w]{2}[\\d]{6}\b`,
+    },
+    {
+        name: 'croatia_vat',
+        pattern: String.raw `\bHR\\d{11}\b`,
+    },
+    {
+        name: 'czech_vat',
+        pattern: String.raw `\bCZ\\d{8,10}\b`,
+    },
+    {
+        name: 'denmark_personal_id',
+        pattern: String.raw `\b(?:\\d{10}|\\d{6}[-\\s]\\d{4})\b`,
+    },
+    {
+        name: 'france_national_id',
+        pattern: String.raw `\b\\d{12}\b`,
+    },
+    {
+        name: 'france_ssn',
+        pattern: String.raw `\b(?:\\d{13}|\\d{13}\\s\\d{2})\b`,
+    },
+    {
+        name: 'france_passport',
+        pattern: String.raw `\b\\d{2}11\\d{5}\b`,
+    },
+    {
+        name: 'california_drivers_license',
+        pattern: String.raw `\b[A-Z]{1}\\d{7}\b`,
+    },
+    {
+        name: 'hipaa_ndc',
+        pattern: String.raw `\b\\d{4,5}-\\d{3,4}-\\d{1,2}\b`,
+    },
+    {
+        name: 'cve_numbers',
+        pattern: String.raw `\b[Cc][Vv][Ee]-\\d{4}-\\d{4,7}\b`,
+    },
+    {
+        name: 'microsoft_oauth',
+        pattern: String.raw `https://login\.microsoftonline\.com/common/oauth2/v2\.0/token|https://login\.windows\.net/common/oauth2/token`,
+    },
+    {
+        name: 'postgres_connections',
+        pattern: String.raw `\b(?:[Pp][Oo][Ss][Tt][Gg][Rr][Ee][Ss]|[Pp][Gg][Ss][Qq][Ll])\\:\\/\\/`,
+    },
+    {
+        name: 'box_links',
+        pattern: String.raw `https://app\.box\.com/[s|l]/\S+`,
+    },
+    {
+        name: 'dropbox_links',
+        pattern: String.raw `https://www\.dropbox\.com/(?:s|l)/\S+`,
+    },
+    {
+        name: 'amex_cards',
+        pattern: String.raw `\b3[47][0-9]{13}\b`,
+    },
+    {
+        name: 'visa_cards',
+        pattern: String.raw `\b4[0-9]{12}(?:[0-9]{3})?\b`,
+    },
+    {
+        name: 'discover_cards',
+        pattern: String.raw `\b65[4-9][0-9]{13}|64[4-9][0-9]{13}|6011[0-9]{12}\b`,
+    },
+    {
+        name: 'enhanced_credit_cards',
+        pattern: String.raw `\b((4\\d{3}|5[1-5]\\d{2}|2\\d{3}|3[47]\\d{1,2})[\\s\\-]?\\d{4,6}[\\s\\-]?\\d{4,6}?([\\s\\-]\\d{3,4})?(\\d{3})?)\b`,
+    },
+    {
+        name: 'bbva_routing_ca',
+        pattern: String.raw `\\b321170538\\b`,
+    },
+    {
+        name: 'boa_routing_ca',
+        pattern: String.raw `\\b(?:121|026)00(?:0|9)(?:358|593)\\b`,
+    },
+    {
+        name: 'chase_routing_ca',
+        pattern: String.raw `\\b322271627\\b`,
+    },
+    {
+        name: 'citibank_routing_ca',
+        pattern: String.raw `\\b32(?:11|22)71(?:18|72)4\\b`,
+    },
+    {
+        name: 'usbank_routing_ca',
+        pattern: String.raw `\\b12(?:1122676|2235821)\\b`,
+    },
+    {
+        name: 'united_bank_routing_ca',
+        pattern: String.raw `\\b122243350\\b`,
+    },
+    {
+        name: 'wells_fargo_routing_ca',
+        pattern: String.raw `\\b121042882\\b`,
+    },
+    {
+        name: 'generic_non_usual',
+        pattern: String.raw `(?:^|\s)(?=[A-Za-z0-9_\)\*\=@]*[A-Za-z])(?=[A-Za-z0-9_\)\*\=@]*[0-9])([A-Za-z0-9_\)\*\=@]{5,})(?=\s|$)`,
+    },
+];
+//# sourceMappingURL=patterns.js.map

package/dist/internal/masking/patterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"patterns.js","sourceRoot":"","sources":["../../../src/internal/masking/patterns.ts"],"names":[],"mappings":"AAaA,MAAM,CAAC,MAAM,oBAAoB,GAAoB;IAEnD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,qDAAqD;KACzE;IAED;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iIAAiI;KACrJ;IAED;QACE,IAAI,EAAE,KAAK;QACX,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iEAAiE;KACrF;IAED;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,yJAAyJ;KAC7K;IACD;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,8EAA8E;KAClG;IAED;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,0GAA0G;KAC9H;IAED;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oIAAoI;KACxJ;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,4BAA4B;KAChD;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,8BAA8B;KAClD;IAED;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,yCAAyC;KAC7D;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,qFAAqF;KACzG;IAED;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,yBAAyB;KAC7C;IAED;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,6DAA6D;KACjF;IAED;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,8CAA8C;KAClE;IAED;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kEAAkE;KACtF;IAED;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,6CAA6C;KACjE;IAED;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,8CAA8C;KAClE;IAED;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oCAAoC;KACxD;IAED;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,qCAAqC;KACzD;IAED;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,sCAAsC;KAC1D;IAED;QACE,IAAI,EAAE,OAAO;QACb,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iGAAiG;KACrH;IAED;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,6KAA6K;KACjM;IAED;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,sCAAsC;KAChD;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,uCAAuC;KACjD;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,6BAA6B;KACvC;IAED;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,sEAAsE;KAC1F;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,sEAAsE;KAC1F;IAED;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oBAAoB;KACxC;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,4EAA4E;KAChG;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,gBAAgB;KACpC;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,0EAA0E;KAC9F;IACD;QACE,IAAI,EAAE,0BAA0B;QAChC,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kBAAkB;KACtC;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,0EAA0E;KAC9F;IACD;QACE,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,mBAAmB;KACvC;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,gEAAgE;KACpF;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,aAAa;KACjC;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oBAAoB;KACxC;IACD;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iDAAiD;KACrE;IAED;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,yBAAyB;KAC7C;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,wHAAwH;KAC5I;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kEAAkE;KACtF;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,4BAA4B;KAChD;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,wMAAwM;KAC5N;IAED;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oDAAoD;KACxE;IACD;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,+CAA+C;KACnE;IAED;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,+BAA+B;KACnD;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,6BAA6B;KACjD;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,8CAA8C;KAClE;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,sIAAsI;KAC1J;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,6KAA6K;KACjM;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,8IAA8I;KAClK;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,0GAA0G;KAC9H;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oCAAoC;KACxD;IAED;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,0FAA0F;KAC9G;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,4GAA4G;KAChI;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oFAAoF;KACxG;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kEAAkE;KACtF;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kCAAkC;KACtD;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oDAAoD;KACxE;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kFAAkF;KACtG;IAED;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,qDAAqD;KACzE;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kCAAkC;KACtD;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oDAAoD;KACxE;IAED;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,wCAAwC;KAC5D;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,uCAAuC;KAC3D;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,8BAA8B;KAClD;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,yCAAyC;KAC7D;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,sBAAsB;KAC1C;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,eAAe;KACnC;IACD;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iBAAiB;KACrC;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oCAAoC;KACxD;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,aAAa;KACjC;IACD;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kCAAkC;KACtD;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oBAAoB;KACxC;IACD;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oBAAoB;KACxC;IAED;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,gCAAgC;KACpD;IAED;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,kCAAkC;KACtD;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,+GAA+G;KACnI;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,sEAAsE;KAC1F;IACD;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iCAAiC;KACrD;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,uCAAuC;KAC3D;IAED;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,oBAAoB;KACxC;IACD;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,6BAA6B;KACjD;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,qDAAqD;KACzE;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,mHAAmH;KACvI;IAED;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iBAAiB;KACrC;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,uCAAuC;KAC3D;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iBAAiB;KACrC;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,+BAA+B;KACnD;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,6BAA6B;KACjD;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iBAAiB;KACrC;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,iBAAiB;KACrC;IAED;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,MAAM,CAAC,GAAG,CAAA,wGAAwG;KAC5H;CACF,CAAC"}

package/dist/internal/masking/types.d.ts

@@ -0,0 +1,33 @@
+export type MaskingMode = 'partial' | 'full';
+export interface IPatternBasedMaskingRule {
+    readonly patterns: readonly (IPatternEntry | string)[];
+    readonly mode?: MaskingMode;
+}
+export interface IPatternEntry {
+    readonly name?: string | undefined;
+    readonly pattern: string;
+}
+export interface IAttributesMaskingRule extends IPatternBasedMaskingRule {
+    readonly patterns: readonly (IPatternEntry | string)[];
+    readonly attributePattern?: string;
+    readonly mode?: MaskingMode;
+}
+export interface IEventMaskingRule extends IAttributesMaskingRule {
+    readonly eventNamePattern?: string;
+}
+export interface ISpanMaskingConfig {
+    readonly disableDefaultRules?: boolean;
+    readonly rules?: readonly IAttributesMaskingRule[];
+}
+export interface ILogMaskingConfig {
+    readonly disableDefaultRules?: boolean;
+    readonly maskBody?: boolean;
+    readonly rules?: readonly IAttributesMaskingRule[];
+}
+export type IEventMaskingConfig = ILogMaskingConfig;
+export interface IMaskingConfig {
+    readonly spanMasking?: ISpanMaskingConfig;
+    readonly eventMasking?: IEventMaskingConfig;
+}
+export type MaskableValue = string | number | boolean | null | undefined | Record<string, unknown> | unknown[];
+//# sourceMappingURL=types.d.ts.map

package/dist/internal/masking/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/internal/masking/types.ts"],"names":[],"mappings":"AAaA,MAAM,MAAM,WAAW,GAAG,SAAS,GAAG,MAAM,CAAC;AAM7C,MAAM,WAAW,wBAAwB;IAEvC,QAAQ,CAAC,QAAQ,EAAE,SAAS,CAAC,aAAa,GAAG,MAAM,CAAC,EAAE,CAAC;IAEvD,QAAQ,CAAC,IAAI,CAAC,EAAE,WAAW,CAAC;CAC7B;AAMD,MAAM,WAAW,aAAa;IAE5B,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEnC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;CAC1B;AAMD,MAAM,WAAW,sBAAuB,SAAQ,wBAAwB;IAEtE,QAAQ,CAAC,QAAQ,EAAE,SAAS,CAAC,aAAa,GAAG,MAAM,CAAC,EAAE,CAAC;IAEvD,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAEnC,QAAQ,CAAC,IAAI,CAAC,EAAE,WAAW,CAAC;CAC7B;AAKD,MAAM,WAAW,iBAAkB,SAAQ,sBAAsB;IAE/D,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;CACpC;AAMD,MAAM,WAAW,kBAAkB;IAEjC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAEvC,QAAQ,CAAC,KAAK,CAAC,EAAE,SAAS,sBAAsB,EAAE,CAAC;CACpD;AAMD,MAAM,WAAW,iBAAiB;IAEhC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAEvC,QAAQ,CAAC,QAAQ,CAAC,EAAE,OAAO,CAAC;IAE5B,QAAQ,CAAC,KAAK,CAAC,EAAE,SAAS,sBAAsB,EAAE,CAAC;CACpD;AAMD,MAAM,MAAM,mBAAmB,GAAG,iBAAiB,CAAC;AAMpD,MAAM,WAAW,cAAc;IAE7B,QAAQ,CAAC,WAAW,CAAC,EAAE,kBAAkB,CAAC;IAE1C,QAAQ,CAAC,YAAY,CAAC,EAAE,mBAAmB,CAAC;CAC7C;AAMD,MAAM,MAAM,aAAa,GACrB,MAAM,GACN,MAAM,GACN,OAAO,GACP,IAAI,GACJ,SAAS,GACT,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GACvB,OAAO,EAAE,CAAC"}

package/dist/internal/masking/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/internal/masking/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/internal/masking/types.ts"],"names":[],"mappings":""}

package/dist/internal/masking/utils.d.ts

@@ -0,0 +1,6 @@
+import type { IAttributesMaskingRule, IPatternBasedMaskingRule } from './types';
+export declare function maskStringByPattern(value: string, pattern: RegExp, mode?: 'partial' | 'full'): string;
+export declare function maskStringByPatternBasedRule(value: string, rule: IPatternBasedMaskingRule): string;
+export declare function maskValue(value: unknown, rule: IPatternBasedMaskingRule): unknown;
+export declare function maskAttributes(attributes: Record<string, unknown>, rules: readonly IAttributesMaskingRule[], outputOriginalValue?: boolean): Record<string, unknown>;
+//# sourceMappingURL=utils.d.ts.map

package/dist/internal/masking/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/internal/masking/utils.ts"],"names":[],"mappings":"AAUA,OAAO,KAAK,EACV,sBAAsB,EAEtB,wBAAwB,EAEzB,MAAM,SAAS,CAAC;AAiMjB,wBAAgB,mBAAmB,CACjC,KAAK,EAAE,MAAM,EACb,OAAO,EAAE,MAAM,EACf,IAAI,GAAE,SAAS,GAAG,MAAe,GAChC,MAAM,CAsDR;AAKD,wBAAgB,4BAA4B,CAC1C,KAAK,EAAE,MAAM,EACb,IAAI,EAAE,wBAAwB,GAC7B,MAAM,CAmBR;AAKD,wBAAgB,SAAS,CAAC,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,wBAAwB,GAAG,OAAO,CAiBjF;AAKD,wBAAgB,cAAc,CAC5B,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EACnC,KAAK,EAAE,SAAS,sBAAsB,EAAE,EACxC,mBAAmB,UAAQ,GAC1B,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CA6BzB"}

package/dist/internal/masking/utils.js

@@ -0,0 +1,226 @@
+import { logger } from '../logger';
+function isValidPatternName(name) {
+    return /^[a-zA-Z0-9_]+$/.test(name);
+}
+function isLikelyReDoSPattern(pattern) {
+    const dangerousPatterns = [
+        /\([^)]*[+*]\)[+*]/,
+        /\([^)]*\|[^)]*\)[+*]/,
+        /\([^)]*[+*][^)]*[+*][^)]*\)[+*]/,
+    ];
+    return dangerousPatterns.some((dangerous) => dangerous.test(pattern));
+}
+function getGroupedPattern(patternEntry) {
+    let name = patternEntry.name;
+    if (!name || name === '') {
+        name = `pattern_${Math.random().toString(16).slice(2)}`;
+    }
+    if (!isValidPatternName(name)) {
+        throw new Error(`Pattern name '${name}' must only contain alphanumeric characters and underscores`);
+    }
+    if (isLikelyReDoSPattern(patternEntry.pattern)) {
+        throw new Error(`Potentially dangerous ReDoS pattern detected: '${patternEntry.pattern}'`);
+    }
+    try {
+        new RegExp(patternEntry.pattern);
+    }
+    catch (error) {
+        throw new Error(`Invalid regex pattern '${patternEntry.pattern}': ${String(error)}`);
+    }
+    return `(?<${name}>${patternEntry.pattern})`;
+}
+function isIPatternEntry(obj) {
+    return (typeof obj === 'object' &&
+        obj !== null &&
+        typeof obj.pattern === 'string' &&
+        (obj.name === undefined || typeof obj.name === 'string'));
+}
+function isIEventMaskingRule(obj) {
+    return (typeof obj === 'object' &&
+        obj !== null &&
+        typeof obj.mode === 'string' &&
+        Array.isArray(obj.patterns) &&
+        obj.patterns.every((p) => isIPatternEntry(p) || typeof p === 'string') &&
+        (obj.attributePattern === undefined ||
+            typeof obj.attributePattern === 'string'));
+}
+function convertPatternsToPatternEntries(patterns) {
+    const patternEntries = [];
+    for (const pattern of patterns) {
+        if (typeof pattern === 'string') {
+            patternEntries.push({ pattern, name: '' });
+        }
+        else if (isIPatternEntry(pattern)) {
+            patternEntries.push(pattern);
+        }
+        else {
+            throw new Error('Patterns must be either strings or PatternEntry instances');
+        }
+    }
+    return patternEntries;
+}
+function compilePatternEntries(patternEntries) {
+    const patternGroups = [];
+    for (const patternEntry of patternEntries) {
+        try {
+            patternGroups.push(getGroupedPattern(patternEntry));
+        }
+        catch (error) {
+            logger.warn(`Invalid pattern '${patternEntry.name}': ${patternEntry.pattern}`, error);
+            continue;
+        }
+    }
+    if (patternGroups.length === 0) {
+        return null;
+    }
+    try {
+        return new RegExp(patternGroups.join('|'));
+    }
+    catch (error) {
+        logger.warn('Failed to compile pattern entries into regex', error);
+        return null;
+    }
+}
+function getCompiledAttributeNamePattern(rule) {
+    if (!rule.attributePattern) {
+        logger.debug('No attribute pattern provided, using default .*');
+        return /.*/;
+    }
+    let compiledPatternString = rule.attributePattern;
+    if (isIEventMaskingRule(rule) && rule.eventNamePattern) {
+        compiledPatternString = `(${compiledPatternString})|(${rule.eventNamePattern})`;
+    }
+    return new RegExp(compiledPatternString);
+}
+function shouldContinueExecution(startTime, iterations, timeoutMs) {
+    if (Date.now() - startTime > timeoutMs) {
+        logger.warn('Regex execution timed out - potential ReDoS pattern detected');
+        return false;
+    }
+    const maxIterations = 1000;
+    if (iterations > maxIterations) {
+        logger.warn('Regex execution exceeded maximum iterations - potential ReDoS pattern detected');
+        return false;
+    }
+    return true;
+}
+function createGlobalPattern(pattern) {
+    return new RegExp(pattern.source, pattern.flags.includes('g') ? pattern.flags : pattern.flags + 'g');
+}
+function executeRegexWithTimeout(pattern, value, timeoutMs = 100) {
+    const matches = [];
+    const globalPattern = createGlobalPattern(pattern);
+    const startTime = Date.now();
+    let match;
+    let iterations = 0;
+    while ((match = globalPattern.exec(value)) !== null) {
+        if (!shouldContinueExecution(startTime, ++iterations, timeoutMs)) {
+            break;
+        }
+        matches.push(match);
+        if (match[0].length === 0) {
+            globalPattern.lastIndex = match.index + 1;
+        }
+    }
+    return matches;
+}
+export function maskStringByPattern(value, pattern, mode = 'full') {
+    const matches = [];
+    try {
+        const regexMatches = executeRegexWithTimeout(pattern, value);
+        for (const match of regexMatches) {
+            matches.push({
+                start: match.index,
+                end: match.index + match[0].length,
+                text: match[0],
+                groups: match.groups,
+            });
+        }
+    }
+    catch (error) {
+        logger.warn('Regex execution failed, skipping masking', error);
+        return value;
+    }
+    for (const matchInfo of matches.reverse()) {
+        let patternName = 'unknown';
+        if (matchInfo.groups) {
+            for (const [groupName, groupValue] of Object.entries(matchInfo.groups)) {
+                if (groupValue !== undefined) {
+                    if (groupName.includes('_') && /\d$/.test(groupName)) {
+                        const parts = groupName.split('_');
+                        patternName = parts[0] || groupName;
+                    }
+                    else {
+                        patternName = groupName;
+                    }
+                    break;
+                }
+            }
+        }
+        logger.info(`Masking detected: pattern '${patternName}' found match in value`);
+        const masked = mode === 'partial' ? matchInfo.text[0] + '*****' : '*****';
+        value = value.slice(0, matchInfo.start) + masked + value.slice(matchInfo.end);
+    }
+    return value;
+}
+export function maskStringByPatternBasedRule(value, rule) {
+    const patternEntries = convertPatternsToPatternEntries(rule.patterns);
+    if (patternEntries.length === 0) {
+        logger.warn('No patterns provided for masking rule, returning original value');
+        return value;
+    }
+    const mode = rule.mode;
+    if (!patternEntries || patternEntries.length === 0) {
+        return mode === 'partial' && value ? value[0] + '*****' : '*****';
+    }
+    const compiledPatterns = compilePatternEntries(patternEntries);
+    if (!compiledPatterns) {
+        return value;
+    }
+    return maskStringByPattern(value, compiledPatterns, mode);
+}
+export function maskValue(value, rule) {
+    if (typeof value === 'string') {
+        return maskStringByPatternBasedRule(value, rule);
+    }
+    else if (typeof value === 'boolean' || typeof value === 'number') {
+        return maskStringByPatternBasedRule(String(value), rule);
+    }
+    else if (Array.isArray(value)) {
+        return value.map((v) => maskStringByPatternBasedRule(String(v), rule));
+    }
+    else if (value !== null && typeof value === 'object') {
+        const result = {};
+        for (const [k, v] of Object.entries(value)) {
+            result[k] = maskValue(v, rule);
+        }
+        return result;
+    }
+    else {
+        throw new Error(`Unsupported value type for masking: ${typeof value}`);
+    }
+}
+export function maskAttributes(attributes, rules, outputOriginalValue = false) {
+    if (!attributes || Object.keys(attributes).length === 0) {
+        return {};
+    }
+    const maskedAttributes = { ...attributes };
+    for (const rule of rules) {
+        const compiledAttributeNamePattern = getCompiledAttributeNamePattern(rule);
+        const attributesToMask = compiledAttributeNamePattern
+            ? Object.keys(maskedAttributes).filter((attr) => compiledAttributeNamePattern.test(attr))
+            : Object.keys(maskedAttributes);
+        for (const attribute of attributesToMask) {
+            const value = maskedAttributes[attribute];
+            if (value === null || value === undefined) {
+                continue;
+            }
+            if (outputOriginalValue) {
+                logger.debug(`Masking attribute '${attribute}' with original value`, { value });
+            }
+            maskedAttributes[attribute] = maskValue(value, rule);
+        }
+    }
+    return maskedAttributes;
+}
+//# sourceMappingURL=utils.js.map