npm - @contrast/agent-bundle - Versions diffs - 5.39.1 → 5.41.0 - Mend

@contrast/agent-bundle 5.39.1 → 5.41.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (279) hide show

package/node_modules/@contrast/sec-obs/node_modules/@contrast/common/lib/constants.d.ts DELETED Viewed

@@ -1,385 +0,0 @@
-export declare enum Event {
-    RESPONSE_FINISH = "response-finish",
-    ROUTE_COVERAGE_DISCOVERY_FINISHED = "route-coverage-discovery-finished",
-    ARCHITECTURE_COMPONENT = "architecture-component",
-    ASSESS_DATAFLOW_FINDING = "assess-dataflow-findings",
-    ASSESS_DATAFLOW_SAFE_POSITIVE = "assess-dataflow-safe-positive",
-    ASSESS_RESPONSE_SCANNING_FINDING = "assess-response-scanning-findings",
-    ASSESS_SESSION_CONFIGURATION_FINDING = "assess-session-configuration-findings",
-    ASSESS_CRYPTO_ANALYSIS_FINDING = "assess-crypto-analysis-finding",
-    LIBRARY = "library",
-    LIBRARY_USAGE = "library-usage",
-    PROTECT = "protect",
-    ROUTE_COVERAGE_OBSERVATION = "route-coverage-observation",
-    SERVER_SETTINGS_UPDATE = "server-settings-update",// UI remote settings updates
-    UNINSTALL = "uninstall",// disable all components/features
-    UNSUPPORTED_LIBRARY = "unsupported-library"
-}
-export declare enum ProtectRuleMode {
-    OFF = "off",
-    MONITOR = "monitor",
-    BLOCK = "block",
-    BLOCK_AT_PERIMETER = "block_at_perimeter"
-}
-export declare enum Rule {
-    BOT_BLOCKER = "bot-blocker",
-    CMD_INJECTION = "cmd-injection",
-    CMD_INJECTION_COMMAND_BACKDOORS = "cmd-injection-command-backdoors",
-    CMD_INJECTION_SEMANTIC_CHAINED_COMMANDS = "cmd-injection-semantic-chained-commands",
-    CMD_INJECTION_SEMANTIC_DANGEROUS_PATHS = "cmd-injection-semantic-dangerous-paths",
-    CRYPTO_BAD_MAC = "crypto-bad-mac",
-    CRYPTO_BAD_CIPHERS = "crypto-bad-ciphers",
-    CRYPTO_WEAK_RANDOMNESS = "crypto-weak-randomness",
-    IP_DENYLIST = "ip-denylist",
-    METHOD_TAMPERING = "method-tampering",
-    NOSQL_INJECTION = "nosql-injection",
-    NOSQL_INJECTION_MONGO = "nosql-injection-mongo",
-    PATH_TRAVERSAL = "path-traversal",
-    PATH_TRAVERSAL_SEMANTIC_FILE_SECURITY_BYPASS = "path-traversal-semantic-file-security-bypass",
-    REFLECTED_XSS = "reflected-xss",
-    SQL_INJECTION = "sql-injection",
-    SSJS_INJECTION = "ssjs-injection",
-    SSRF = "ssrf",
-    UNSAFE_CODE_EXECUTION = "unsafe-code-execution",
-    UNSAFE_FILE_UPLOAD = "unsafe-file-upload",
-    UNTRUSTED_DESERIALIZATION = "untrusted-deserialization",
-    VIRTUAL_PATCH = "virtual-patch",
-    XXE = "xxe",
-    UNVALIDATED_REDIRECT = "unvalidated-redirect"
-}
-export declare enum ResponseScanningRule {
-    AUTOCOMPLETE_MISSING = "autocomplete-missing",
-    CACHE_CONTROLS_MISSING = "cache-controls-missing",
-    CLICKJACKING_CONTROL_MISSING = "clickjacking-control-missing",
-    PARAMETER_POLLUTION = "parameter-pollution",
-    CSP_HEADER_MISSING = "csp-header-missing",
-    CSP_HEADER_INSECURE = "csp-header-insecure",
-    HSTS_HEADER_MISSING = "hsts-header-missing",
-    X_POWERED_BY_HEADER = "x-powered-by-header",
-    XCONTENTTYPE_HEADER_MISSING = "xcontenttype-header-missing",
-    XXSPROTECTION_HEADER_DISABLED = "xxssprotection-header-disabled"
-}
-export declare enum SessionConfigurationRule {
-    HTTPONLY = "httponly",
-    SECURE_FLAG_MISSING = "secure-flag-missing"
-}
-export declare enum InputType {
-    UNDEFINED_TYPE = "UNDEFINED_TYPE",
-    BODY = "BODY",
-    COOKIE_NAME = "COOKIE_NAME",
-    COOKIE_VALUE = "COOKIE_VALUE",
-    HEADER = "HEADER",
-    PARAMETER_NAME = "PARAMETER_NAME",
-    PARAMETER_VALUE = "PARAMETER_VALUE",
-    QUERYSTRING = "QUERYSTRING",
-    URI = "URI",
-    SOCKET = "SOCKET",
-    JSON_VALUE = "JSON_VALUE",
-    JSON_ARRAYED_VALUE = "JSON_ARRAYED_VALUE",
-    MULTIPART_CONTENT_TYPE = "MULTIPART_CONTENT_TYPE",
-    MULTIPART_VALUE = "MULTIPART_VALUE",
-    MULTIPART_FIELD_NAME = "MULTIPART_FIELD_NAME",
-    MULTIPART_NAME = "MULTIPART_NAME",
-    XML_VALUE = "XML_VALUE",
-    DWR_VALUE = "DWR_VALUE",
-    METHOD = "METHOD",
-    REQUEST = "REQUEST",
-    URL_PARAMETER = "URL_PARAMETER",
-    UNKNOWN = "UNKNOWN"
-}
-export declare enum ExclusionType {
-    BODY = "BODY",
-    COOKIE = "COOKIE",
-    HEADER = "HEADER",
-    PARAMETER = "PARAMETER",
-    QUERYSTRING = "QUERYSTRING",
-    URL = "URL"
-}
-export declare enum DataflowTag {
-    XML_ENCODED = "XML_ENCODED",
-    XML_DECODED = "XML_DECODED",
-    HTML_ENCODED = "HTML_ENCODED",
-    HTML_DECODED = "HTML_DECODED",
-    URL_ENCODED = "URL_ENCODED",
-    URL_DECODED = "URL_DECODED",
-    CSS_ENCODED = "CSS_ENCODED",
-    CSS_DECODED = "CSS_DECODED",
-    BASE64_ENCODED = "BASE64_ENCODED",
-    BASE64_DECODED = "BASE64_DECODED",
-    JAVASCRIPT_ENCODED = "JAVASCRIPT_ENCODED",
-    JAVASCRIPT_DECODED = "JAVASCRIPT_DECODED",
-    JAVA_ENCODED = "JAVA_ENCODED",
-    JAVA_DECODED = "JAVA_DECODED",
-    CSV_ENCODED = "CSV_ENCODED",
-    CSV_DECODED = "CSV_DECODED",
-    SQL_ENCODED = "SQL_ENCODED",
-    SQL_DECODED = "SQL_DECODED",
-    LDAP_ENCODED = "LDAP_ENCODED",
-    LDAP_DECODED = "LDAP_DECODED",
-    XPATH_ENCODED = "XPATH_ENCODED",
-    XPATH_DECODED = "XPATH_DECODED",
-    OS_ENCODED = "OS_ENCODED",
-    OS_DECODED = "OS_DECODED",
-    VBSCRIPT_ENCODED = "VBSCRIPT_ENCODED",
-    VBSCRIPT_DECODED = "VBSCRIPT_DECODED",
-    POTENTIAL_SANITIZED = "POTENTIAL_SANITIZED",
-    POTENTIAL_VALIDATED = "POTENTIAL_VALIDATED",
-    NO_CONTROL_CHARS = "NO_CONTROL_CHARS",
-    CUSTOM = "CUSTOM_CATCH_ALL",
-    CUSTOM_ENCODED = "CUSTOM_ENCODED",
-    CUSTOM_ENCODED_CMD_INJECTION = "CUSTOM_ENCODED_CMD_INJECTION",
-    CUSTOM_ENCODED_EXPRESSION_LANGUAGE_INJECTION = "CUSTOM_ENCODED_EXPRESSION_LANGUAGE_INJECTION",
-    CUSTOM_ENCODED_HEADER_INJECTION = "CUSTOM_ENCODED_HEADER_INJECTION",
-    CUSTOM_ENCODED_HQL_INJECTION = "CUSTOM_ENCODED_HQL_INJECTION",
-    CUSTOM_ENCODED_LDAP_INJECTION = "CUSTOM_ENCODED_LDAP_INJECTION",
-    CUSTOM_ENCODED_LOG_INJECTION = "CUSTOM_ENCODED_LOG_INJECTION",
-    CUSTOM_ENCODED_NOSQL_INJECTIOn = "CUSTOM_ENCODED_NOSQL_INJECTION",
-    CUSTOM_ENCODED_PATH_TRAVERSAL = "CUSTOM_ENCODED_PATH_TRAVERSAL",
-    CUSTOM_ENCODED_REDOS = "CUSTOM_ENCODED_REDOS",
-    CUSTOM_ENCODED_REFLECTED_XSS = "CUSTOM_ENCODED_REFLECTED_XSS",
-    CUSTOM_ENCODED_REFLECTION_INJECTION = "CUSTOM_ENCODED_REFLECTION_INJECTION",
-    CUSTOM_ENCODED_SMTP_INJECTION = "CUSTOM_ENCODED_SMTP_INJECTION",
-    CUSTOM_ENCODED_SQL_INJECTION = "CUSTOM_ENCODED_SQL_INJECTION",
-    CUSTOM_ENCODED_SSRF = "CUSTOM_ENCODED_SSRF",
-    CUSTOM_ENCODED_STORED_XSS = "CUSTOM_ENCODED_STORED_XSS",
-    CUSTOM_ENCODED_TRUST_BOUNDARY_VIOLATION = "CUSTOM_ENCODED_TRUST_BOUNDARY_VIOLATION",
-    CUSTOM_ENCODED_UNSAFE_CODE_EXECUTION = "CUSTOM_ENCODED_UNSAFE_CODE_EXECUTION",
-    CUSTOM_ENCODED_UNSAFE_READLINE = "CUSTOM_ENCODED_UNSAFE_READLINE",
-    CUSTOM_ENCODED_UNSAFE_XML_DECODE = "CUSTOM_ENCODED_UNSAFE_XML_DECODE",
-    CUSTOM_ENCODED_UNTRUSTED_DESERIALIZATION = "CUSTOM_ENCODED_UNTRUSTED_DESERIALIZATION",
-    CUSTOM_ENCODED_UNVALIDATED_FORWARD = "CUSTOM_ENCODED_UNVALIDATED_FORWARD",
-    CUSTOM_ENCODED_UNVALIDATED_REDIRECT = "CUSTOM_ENCODED_UNVALIDATED_REDIRECT",
-    CUSTOM_ENCODED_XPATH_INJECTION = "CUSTOM_ENCODED_XPATH_INJECTION",
-    CUSTOM_ENCODED_XXE = "CUSTOM_ENCODED_XXE",
-    CUSTOM_SECURITY_CONTROL_APPLIED = "CUSTOM_SECURITY_CONTROL_APPLIED",
-    CUSTOM_VALIDATED = "CUSTOM_VALIDATED",
-    CUSTOM_VALIDATED_CMD_INJECTION = "CUSTOM_VALIDATED_CMD_INJECTION",
-    CUSTOM_VALIDATED_EXPRESSION_LANGUAGE_INJECTION = "CUSTOM_VALIDATED_EXPRESSION_LANGUAGE_INJECTION",
-    CUSTOM_VALIDATED_HEADER_INJECTION = "CUSTOM_VALIDATED_HEADER_INJECTION",
-    CUSTOM_VALIDATED_HQL_INJECTION = "CUSTOM_VALIDATED_HQL_INJECTION",
-    CUSTOM_VALIDATED_LDAP_INJECTION = "CUSTOM_VALIDATED_LDAP_INJECTION",
-    CUSTOM_VALIDATED_LOG_INJECTION = "CUSTOM_VALIDATED_LOG_INJECTION",
-    CUSTOM_VALIDATED_NOSQL_INJECTION = "CUSTOM_VALIDATED_NOSQL_INJECTION",
-    CUSTOM_VALIDATED_PATH_TRAVERSAL = "CUSTOM_VALIDATED_PATH_TRAVERSAL",
-    CUSTOM_VALIDATED_REDOS = "CUSTOM_VALIDATED_REDOS",
-    CUSTOM_VALIDATED_REFLECTED_XSS = "CUSTOM_VALIDATED_REFLECTED_XSS",
-    CUSTOM_VALIDATED_REFLECTION_INJECTION = "CUSTOM_VALIDATED_REFLECTION_INJECTION",
-    CUSTOM_VALIDATED_SMTP_INJECTION = "CUSTOM_VALIDATED_SMTP_INJECTION",
-    CUSTOM_VALIDATED_SQL_INJECTION = "CUSTOM_VALIDATED_SQL_INJECTION",
-    CUSTOM_VALIDATED_SSRF = "CUSTOM_VALIDATED_SSRF",
-    CUSTOM_VALIDATED_STORED_XSS = "CUSTOM_VALIDATED_STORED_XSS",
-    CUSTOM_VALIDATED_TRUST_BOUNDARY_VIOLATION = "CUSTOM_VALIDATED_TRUST_BOUNDARY_VIOLATION",
-    CUSTOM_VALIDATED_UNSAFE_CODE_EXECUTION = "CUSTOM_VALIDATED_UNSAFE_CODE_EXECUTION",
-    CUSTOM_VALIDATED_UNSAFE_READLINE = "CUSTOM_VALIDATED_UNSAFE_READLINE",
-    CUSTOM_VALIDATED_UNSAFE_XML_DECODE = "CUSTOM_VALIDATED_UNSAFE_XML_DECODE",
-    CUSTOM_VALIDATED_UNTRUSTED_DESERIALIZATION = "CUSTOM_VALIDATED_UNTRUSTED_DESERIALIZATION",
-    CUSTOM_VALIDATED_UNVALIDATED_FORWARD = "CUSTOM_VALIDATED_UNVALIDATED_FORWARD",
-    CUSTOM_VALIDATED_UNVALIDATED_REDIRECT = "CUSTOM_VALIDATED_UNVALIDATED_REDIRECT",
-    CUSTOM_VALIDATED_XPATH_INJECTION = "CUSTOM_VALIDATED_XPATH_INJECTION",
-    CUSTOM_VALIDATED_XXE = "CUSTOM_VALIDATED_XXE",
-    NO_NEWLINES = "NO_NEWLINES",
-    UNTRUSTED = "UNTRUSTED",
-    CROSS_SITE = "CROSS_SITE",
-    LIMITED_CHARS = "LIMITED_CHARS",
-    ALPHANUM_SPACE_HYPHEN = "ALPHANUM_SPACE_HYPHEN",
-    STRING_TYPE_CHECKED = "STRING_TYPE_CHECKED",
-    DATABASE_WRITE = "DATABASE_WRITE",
-    HEADER = "HEADER",
-    COOKIE = "COOKIE",
-    WEAK_URL_ENCODED = "WEAK_URL_ENCODED"
-}
-export declare const BLOCKING_MODES: readonly ["block", "block_at_perimeter"];
-export declare const FS_METHODS: readonly [{
-    readonly name: "access";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "appendFile";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "chmod";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "chown";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "copyFile";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0, 1];
-}, {
-    readonly name: "cp";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0, 1];
-}, {
-    readonly name: "createReadStream";
-    readonly promises: false;
-    readonly sync: false;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "createWriteStream";
-    readonly promises: false;
-    readonly sync: false;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "exists";
-    readonly promises: false;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "glob";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "lchmod";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "lchown";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "link";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "lstat";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "lutimes";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "mkdir";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "mkdtemp";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "open";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "openAsBlob";
-    readonly promises: false;
-    readonly sync: false;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "opendir";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "readdir";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "readFile";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "readlink";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "realpath";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "rename";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0, 1];
-}, {
-    readonly name: "rmdir";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "rm";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "stat";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "statfs";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "symlink";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0, 1];
-}, {
-    readonly name: "truncate";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "unlink";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "unwatchFile";
-    readonly promises: false;
-    readonly sync: false;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "utimes";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "watch";
-    readonly promises: true;
-    readonly sync: false;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "watchFile";
-    readonly promises: false;
-    readonly sync: false;
-    readonly indices: readonly [0];
-}, {
-    readonly name: "writeFile";
-    readonly promises: true;
-    readonly sync: true;
-    readonly indices: readonly [0];
-}];
-export declare enum agentLibIDListTypes {
-    MONGO_SLEEP = "MONGO-SLEEP",
-    TRUE_CLAUSE_1 = "TRUE-CLAUSE-1"
-}
-export declare const symbols: {
-    readonly kMetrics: symbol;
-};
-//# sourceMappingURL=constants.d.ts.map

package/node_modules/@contrast/sec-obs/node_modules/@contrast/common/lib/constants.js DELETED Viewed

@@ -1,270 +0,0 @@
-"use strict";
-/*
- * Copyright: 2025 Contrast Security, Inc
- * Contact: support@contrastsecurity.com
- * License: Commercial
- * NOTICE: This Software and the patented inventions embodied within may only be
- * used as part of Contrast Security’s commercial offerings. Even though it is
- * made available through public repositories, use of this Software is subject to
- * the applicable End User Licensing Agreement found at
- * https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
- * between Contrast Security and the End User. The Software may not be reverse
- * engineered, modified, repackaged, sold, redistributed or otherwise used in a
- * way not consistent with the End User License Agreement.
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.symbols = exports.agentLibIDListTypes = exports.FS_METHODS = exports.BLOCKING_MODES = exports.DataflowTag = exports.ExclusionType = exports.InputType = exports.SessionConfigurationRule = exports.ResponseScanningRule = exports.Rule = exports.ProtectRuleMode = exports.Event = void 0;
-var Event;
-(function (Event) {
-    // lifecycle
-    Event["RESPONSE_FINISH"] = "response-finish";
-    Event["ROUTE_COVERAGE_DISCOVERY_FINISHED"] = "route-coverage-discovery-finished";
-    // reports
-    Event["ARCHITECTURE_COMPONENT"] = "architecture-component";
-    Event["ASSESS_DATAFLOW_FINDING"] = "assess-dataflow-findings";
-    Event["ASSESS_DATAFLOW_SAFE_POSITIVE"] = "assess-dataflow-safe-positive";
-    Event["ASSESS_RESPONSE_SCANNING_FINDING"] = "assess-response-scanning-findings";
-    Event["ASSESS_SESSION_CONFIGURATION_FINDING"] = "assess-session-configuration-findings";
-    Event["ASSESS_CRYPTO_ANALYSIS_FINDING"] = "assess-crypto-analysis-finding";
-    Event["LIBRARY"] = "library";
-    Event["LIBRARY_USAGE"] = "library-usage";
-    Event["PROTECT"] = "protect";
-    Event["ROUTE_COVERAGE_OBSERVATION"] = "route-coverage-observation";
-    // state changes
-    Event["SERVER_SETTINGS_UPDATE"] = "server-settings-update";
-    Event["UNINSTALL"] = "uninstall";
-    // telemetry
-    Event["UNSUPPORTED_LIBRARY"] = "unsupported-library";
-})(Event || (exports.Event = Event = {}));
-var ProtectRuleMode;
-(function (ProtectRuleMode) {
-    ProtectRuleMode["OFF"] = "off";
-    ProtectRuleMode["MONITOR"] = "monitor";
-    ProtectRuleMode["BLOCK"] = "block";
-    ProtectRuleMode["BLOCK_AT_PERIMETER"] = "block_at_perimeter";
-})(ProtectRuleMode || (exports.ProtectRuleMode = ProtectRuleMode = {}));
-var Rule;
-(function (Rule) {
-    Rule["BOT_BLOCKER"] = "bot-blocker";
-    Rule["CMD_INJECTION"] = "cmd-injection";
-    Rule["CMD_INJECTION_COMMAND_BACKDOORS"] = "cmd-injection-command-backdoors";
-    Rule["CMD_INJECTION_SEMANTIC_CHAINED_COMMANDS"] = "cmd-injection-semantic-chained-commands";
-    Rule["CMD_INJECTION_SEMANTIC_DANGEROUS_PATHS"] = "cmd-injection-semantic-dangerous-paths";
-    Rule["CRYPTO_BAD_MAC"] = "crypto-bad-mac";
-    Rule["CRYPTO_BAD_CIPHERS"] = "crypto-bad-ciphers";
-    Rule["CRYPTO_WEAK_RANDOMNESS"] = "crypto-weak-randomness";
-    Rule["IP_DENYLIST"] = "ip-denylist";
-    Rule["METHOD_TAMPERING"] = "method-tampering";
-    Rule["NOSQL_INJECTION"] = "nosql-injection";
-    Rule["NOSQL_INJECTION_MONGO"] = "nosql-injection-mongo";
-    Rule["PATH_TRAVERSAL"] = "path-traversal";
-    Rule["PATH_TRAVERSAL_SEMANTIC_FILE_SECURITY_BYPASS"] = "path-traversal-semantic-file-security-bypass";
-    Rule["REFLECTED_XSS"] = "reflected-xss";
-    Rule["SQL_INJECTION"] = "sql-injection";
-    Rule["SSJS_INJECTION"] = "ssjs-injection";
-    Rule["SSRF"] = "ssrf";
-    Rule["UNSAFE_CODE_EXECUTION"] = "unsafe-code-execution";
-    Rule["UNSAFE_FILE_UPLOAD"] = "unsafe-file-upload";
-    Rule["UNTRUSTED_DESERIALIZATION"] = "untrusted-deserialization";
-    Rule["VIRTUAL_PATCH"] = "virtual-patch";
-    Rule["XXE"] = "xxe";
-    Rule["UNVALIDATED_REDIRECT"] = "unvalidated-redirect";
-})(Rule || (exports.Rule = Rule = {}));
-var ResponseScanningRule;
-(function (ResponseScanningRule) {
-    ResponseScanningRule["AUTOCOMPLETE_MISSING"] = "autocomplete-missing";
-    ResponseScanningRule["CACHE_CONTROLS_MISSING"] = "cache-controls-missing";
-    ResponseScanningRule["CLICKJACKING_CONTROL_MISSING"] = "clickjacking-control-missing";
-    ResponseScanningRule["PARAMETER_POLLUTION"] = "parameter-pollution";
-    ResponseScanningRule["CSP_HEADER_MISSING"] = "csp-header-missing";
-    ResponseScanningRule["CSP_HEADER_INSECURE"] = "csp-header-insecure";
-    ResponseScanningRule["HSTS_HEADER_MISSING"] = "hsts-header-missing";
-    ResponseScanningRule["X_POWERED_BY_HEADER"] = "x-powered-by-header";
-    ResponseScanningRule["XCONTENTTYPE_HEADER_MISSING"] = "xcontenttype-header-missing";
-    ResponseScanningRule["XXSPROTECTION_HEADER_DISABLED"] = "xxssprotection-header-disabled";
-})(ResponseScanningRule || (exports.ResponseScanningRule = ResponseScanningRule = {}));
-var SessionConfigurationRule;
-(function (SessionConfigurationRule) {
-    SessionConfigurationRule["HTTPONLY"] = "httponly";
-    SessionConfigurationRule["SECURE_FLAG_MISSING"] = "secure-flag-missing";
-})(SessionConfigurationRule || (exports.SessionConfigurationRule = SessionConfigurationRule = {}));
-var InputType;
-(function (InputType) {
-    InputType["UNDEFINED_TYPE"] = "UNDEFINED_TYPE";
-    InputType["BODY"] = "BODY";
-    InputType["COOKIE_NAME"] = "COOKIE_NAME";
-    InputType["COOKIE_VALUE"] = "COOKIE_VALUE";
-    InputType["HEADER"] = "HEADER";
-    InputType["PARAMETER_NAME"] = "PARAMETER_NAME";
-    InputType["PARAMETER_VALUE"] = "PARAMETER_VALUE";
-    InputType["QUERYSTRING"] = "QUERYSTRING";
-    InputType["URI"] = "URI";
-    InputType["SOCKET"] = "SOCKET";
-    InputType["JSON_VALUE"] = "JSON_VALUE";
-    InputType["JSON_ARRAYED_VALUE"] = "JSON_ARRAYED_VALUE";
-    InputType["MULTIPART_CONTENT_TYPE"] = "MULTIPART_CONTENT_TYPE";
-    InputType["MULTIPART_VALUE"] = "MULTIPART_VALUE";
-    InputType["MULTIPART_FIELD_NAME"] = "MULTIPART_FIELD_NAME";
-    InputType["MULTIPART_NAME"] = "MULTIPART_NAME";
-    InputType["XML_VALUE"] = "XML_VALUE";
-    InputType["DWR_VALUE"] = "DWR_VALUE";
-    InputType["METHOD"] = "METHOD";
-    InputType["REQUEST"] = "REQUEST";
-    InputType["URL_PARAMETER"] = "URL_PARAMETER";
-    InputType["UNKNOWN"] = "UNKNOWN";
-})(InputType || (exports.InputType = InputType = {}));
-var ExclusionType;
-(function (ExclusionType) {
-    ExclusionType["BODY"] = "BODY";
-    ExclusionType["COOKIE"] = "COOKIE";
-    ExclusionType["HEADER"] = "HEADER";
-    ExclusionType["PARAMETER"] = "PARAMETER";
-    ExclusionType["QUERYSTRING"] = "QUERYSTRING";
-    ExclusionType["URL"] = "URL";
-})(ExclusionType || (exports.ExclusionType = ExclusionType = {}));
-var DataflowTag;
-(function (DataflowTag) {
-    DataflowTag["XML_ENCODED"] = "XML_ENCODED";
-    DataflowTag["XML_DECODED"] = "XML_DECODED";
-    DataflowTag["HTML_ENCODED"] = "HTML_ENCODED";
-    DataflowTag["HTML_DECODED"] = "HTML_DECODED";
-    DataflowTag["URL_ENCODED"] = "URL_ENCODED";
-    DataflowTag["URL_DECODED"] = "URL_DECODED";
-    DataflowTag["CSS_ENCODED"] = "CSS_ENCODED";
-    DataflowTag["CSS_DECODED"] = "CSS_DECODED";
-    DataflowTag["BASE64_ENCODED"] = "BASE64_ENCODED";
-    DataflowTag["BASE64_DECODED"] = "BASE64_DECODED";
-    DataflowTag["JAVASCRIPT_ENCODED"] = "JAVASCRIPT_ENCODED";
-    DataflowTag["JAVASCRIPT_DECODED"] = "JAVASCRIPT_DECODED";
-    DataflowTag["JAVA_ENCODED"] = "JAVA_ENCODED";
-    DataflowTag["JAVA_DECODED"] = "JAVA_DECODED";
-    DataflowTag["CSV_ENCODED"] = "CSV_ENCODED";
-    DataflowTag["CSV_DECODED"] = "CSV_DECODED";
-    DataflowTag["SQL_ENCODED"] = "SQL_ENCODED";
-    DataflowTag["SQL_DECODED"] = "SQL_DECODED";
-    DataflowTag["LDAP_ENCODED"] = "LDAP_ENCODED";
-    DataflowTag["LDAP_DECODED"] = "LDAP_DECODED";
-    DataflowTag["XPATH_ENCODED"] = "XPATH_ENCODED";
-    DataflowTag["XPATH_DECODED"] = "XPATH_DECODED";
-    DataflowTag["OS_ENCODED"] = "OS_ENCODED";
-    DataflowTag["OS_DECODED"] = "OS_DECODED";
-    DataflowTag["VBSCRIPT_ENCODED"] = "VBSCRIPT_ENCODED";
-    DataflowTag["VBSCRIPT_DECODED"] = "VBSCRIPT_DECODED";
-    DataflowTag["POTENTIAL_SANITIZED"] = "POTENTIAL_SANITIZED";
-    DataflowTag["POTENTIAL_VALIDATED"] = "POTENTIAL_VALIDATED";
-    DataflowTag["NO_CONTROL_CHARS"] = "NO_CONTROL_CHARS";
-    DataflowTag["CUSTOM"] = "CUSTOM_CATCH_ALL";
-    // custom encoded/validated tags, only for data flow rules
-    DataflowTag["CUSTOM_ENCODED"] = "CUSTOM_ENCODED";
-    DataflowTag["CUSTOM_ENCODED_CMD_INJECTION"] = "CUSTOM_ENCODED_CMD_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_EXPRESSION_LANGUAGE_INJECTION"] = "CUSTOM_ENCODED_EXPRESSION_LANGUAGE_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_HEADER_INJECTION"] = "CUSTOM_ENCODED_HEADER_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_HQL_INJECTION"] = "CUSTOM_ENCODED_HQL_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_LDAP_INJECTION"] = "CUSTOM_ENCODED_LDAP_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_LOG_INJECTION"] = "CUSTOM_ENCODED_LOG_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_NOSQL_INJECTIOn"] = "CUSTOM_ENCODED_NOSQL_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_PATH_TRAVERSAL"] = "CUSTOM_ENCODED_PATH_TRAVERSAL";
-    DataflowTag["CUSTOM_ENCODED_REDOS"] = "CUSTOM_ENCODED_REDOS";
-    DataflowTag["CUSTOM_ENCODED_REFLECTED_XSS"] = "CUSTOM_ENCODED_REFLECTED_XSS";
-    DataflowTag["CUSTOM_ENCODED_REFLECTION_INJECTION"] = "CUSTOM_ENCODED_REFLECTION_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_SMTP_INJECTION"] = "CUSTOM_ENCODED_SMTP_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_SQL_INJECTION"] = "CUSTOM_ENCODED_SQL_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_SSRF"] = "CUSTOM_ENCODED_SSRF";
-    DataflowTag["CUSTOM_ENCODED_STORED_XSS"] = "CUSTOM_ENCODED_STORED_XSS";
-    DataflowTag["CUSTOM_ENCODED_TRUST_BOUNDARY_VIOLATION"] = "CUSTOM_ENCODED_TRUST_BOUNDARY_VIOLATION";
-    DataflowTag["CUSTOM_ENCODED_UNSAFE_CODE_EXECUTION"] = "CUSTOM_ENCODED_UNSAFE_CODE_EXECUTION";
-    DataflowTag["CUSTOM_ENCODED_UNSAFE_READLINE"] = "CUSTOM_ENCODED_UNSAFE_READLINE";
-    DataflowTag["CUSTOM_ENCODED_UNSAFE_XML_DECODE"] = "CUSTOM_ENCODED_UNSAFE_XML_DECODE";
-    DataflowTag["CUSTOM_ENCODED_UNTRUSTED_DESERIALIZATION"] = "CUSTOM_ENCODED_UNTRUSTED_DESERIALIZATION";
-    DataflowTag["CUSTOM_ENCODED_UNVALIDATED_FORWARD"] = "CUSTOM_ENCODED_UNVALIDATED_FORWARD";
-    DataflowTag["CUSTOM_ENCODED_UNVALIDATED_REDIRECT"] = "CUSTOM_ENCODED_UNVALIDATED_REDIRECT";
-    DataflowTag["CUSTOM_ENCODED_XPATH_INJECTION"] = "CUSTOM_ENCODED_XPATH_INJECTION";
-    DataflowTag["CUSTOM_ENCODED_XXE"] = "CUSTOM_ENCODED_XXE";
-    DataflowTag["CUSTOM_SECURITY_CONTROL_APPLIED"] = "CUSTOM_SECURITY_CONTROL_APPLIED";
-    DataflowTag["CUSTOM_VALIDATED"] = "CUSTOM_VALIDATED";
-    DataflowTag["CUSTOM_VALIDATED_CMD_INJECTION"] = "CUSTOM_VALIDATED_CMD_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_EXPRESSION_LANGUAGE_INJECTION"] = "CUSTOM_VALIDATED_EXPRESSION_LANGUAGE_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_HEADER_INJECTION"] = "CUSTOM_VALIDATED_HEADER_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_HQL_INJECTION"] = "CUSTOM_VALIDATED_HQL_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_LDAP_INJECTION"] = "CUSTOM_VALIDATED_LDAP_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_LOG_INJECTION"] = "CUSTOM_VALIDATED_LOG_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_NOSQL_INJECTION"] = "CUSTOM_VALIDATED_NOSQL_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_PATH_TRAVERSAL"] = "CUSTOM_VALIDATED_PATH_TRAVERSAL";
-    DataflowTag["CUSTOM_VALIDATED_REDOS"] = "CUSTOM_VALIDATED_REDOS";
-    DataflowTag["CUSTOM_VALIDATED_REFLECTED_XSS"] = "CUSTOM_VALIDATED_REFLECTED_XSS";
-    DataflowTag["CUSTOM_VALIDATED_REFLECTION_INJECTION"] = "CUSTOM_VALIDATED_REFLECTION_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_SMTP_INJECTION"] = "CUSTOM_VALIDATED_SMTP_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_SQL_INJECTION"] = "CUSTOM_VALIDATED_SQL_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_SSRF"] = "CUSTOM_VALIDATED_SSRF";
-    DataflowTag["CUSTOM_VALIDATED_STORED_XSS"] = "CUSTOM_VALIDATED_STORED_XSS";
-    DataflowTag["CUSTOM_VALIDATED_TRUST_BOUNDARY_VIOLATION"] = "CUSTOM_VALIDATED_TRUST_BOUNDARY_VIOLATION";
-    DataflowTag["CUSTOM_VALIDATED_UNSAFE_CODE_EXECUTION"] = "CUSTOM_VALIDATED_UNSAFE_CODE_EXECUTION";
-    DataflowTag["CUSTOM_VALIDATED_UNSAFE_READLINE"] = "CUSTOM_VALIDATED_UNSAFE_READLINE";
-    DataflowTag["CUSTOM_VALIDATED_UNSAFE_XML_DECODE"] = "CUSTOM_VALIDATED_UNSAFE_XML_DECODE";
-    DataflowTag["CUSTOM_VALIDATED_UNTRUSTED_DESERIALIZATION"] = "CUSTOM_VALIDATED_UNTRUSTED_DESERIALIZATION";
-    DataflowTag["CUSTOM_VALIDATED_UNVALIDATED_FORWARD"] = "CUSTOM_VALIDATED_UNVALIDATED_FORWARD";
-    DataflowTag["CUSTOM_VALIDATED_UNVALIDATED_REDIRECT"] = "CUSTOM_VALIDATED_UNVALIDATED_REDIRECT";
-    DataflowTag["CUSTOM_VALIDATED_XPATH_INJECTION"] = "CUSTOM_VALIDATED_XPATH_INJECTION";
-    DataflowTag["CUSTOM_VALIDATED_XXE"] = "CUSTOM_VALIDATED_XXE";
-    // tracked_string range tags
-    DataflowTag["NO_NEWLINES"] = "NO_NEWLINES";
-    DataflowTag["UNTRUSTED"] = "UNTRUSTED";
-    DataflowTag["CROSS_SITE"] = "CROSS_SITE";
-    DataflowTag["LIMITED_CHARS"] = "LIMITED_CHARS";
-    DataflowTag["ALPHANUM_SPACE_HYPHEN"] = "ALPHANUM_SPACE_HYPHEN";
-    DataflowTag["STRING_TYPE_CHECKED"] = "STRING_TYPE_CHECKED";
-    DataflowTag["DATABASE_WRITE"] = "DATABASE_WRITE";
-    DataflowTag["HEADER"] = "HEADER";
-    DataflowTag["COOKIE"] = "COOKIE";
-    DataflowTag["WEAK_URL_ENCODED"] = "WEAK_URL_ENCODED";
-})(DataflowTag || (exports.DataflowTag = DataflowTag = {}));
-exports.BLOCKING_MODES = ['block', 'block_at_perimeter'];
-exports.FS_METHODS = [
-    { name: 'access', promises: true, sync: true, indices: [0] },
-    { name: 'appendFile', promises: true, sync: true, indices: [0] },
-    { name: 'chmod', promises: true, sync: true, indices: [0] },
-    { name: 'chown', promises: true, sync: true, indices: [0] },
-    { name: 'copyFile', promises: true, sync: true, indices: [0, 1] },
-    { name: 'cp', promises: true, sync: true, indices: [0, 1] },
-    { name: 'createReadStream', promises: false, sync: false, indices: [0] },
-    { name: 'createWriteStream', promises: false, sync: false, indices: [0] },
-    { name: 'exists', promises: false, sync: true, indices: [0] },
-    { name: 'glob', promises: true, sync: true, indices: [0] },
-    { name: 'lchmod', promises: true, sync: true, indices: [0] },
-    { name: 'lchown', promises: true, sync: true, indices: [0] },
-    { name: 'link', promises: true, sync: true, indices: [0] },
-    { name: 'lstat', promises: true, sync: true, indices: [0] },
-    { name: 'lutimes', promises: true, sync: true, indices: [0] },
-    { name: 'mkdir', promises: true, sync: true, indices: [0] },
-    { name: 'mkdtemp', promises: true, sync: true, indices: [0] },
-    { name: 'open', promises: true, sync: true, indices: [0] },
-    { name: 'openAsBlob', promises: false, sync: false, indices: [0] },
-    { name: 'opendir', promises: true, sync: true, indices: [0] },
-    { name: 'readdir', promises: true, sync: true, indices: [0] },
-    { name: 'readFile', promises: true, sync: true, indices: [0] },
-    { name: 'readlink', promises: true, sync: true, indices: [0] },
-    { name: 'realpath', promises: true, sync: true, indices: [0] },
-    { name: 'rename', promises: true, sync: true, indices: [0, 1] },
-    { name: 'rmdir', promises: true, sync: true, indices: [0] },
-    { name: 'rm', promises: true, sync: true, indices: [0] },
-    { name: 'stat', promises: true, sync: true, indices: [0] },
-    { name: 'statfs', promises: true, sync: true, indices: [0] },
-    { name: 'symlink', promises: true, sync: true, indices: [0, 1] },
-    { name: 'truncate', promises: true, sync: true, indices: [0] },
-    { name: 'unlink', promises: true, sync: true, indices: [0] },
-    { name: 'unwatchFile', promises: false, sync: false, indices: [0] },
-    { name: 'utimes', promises: true, sync: true, indices: [0] },
-    { name: 'watch', promises: true, sync: false, indices: [0] },
-    { name: 'watchFile', promises: false, sync: false, indices: [0] },
-    { name: 'writeFile', promises: true, sync: true, indices: [0] },
-];
-var agentLibIDListTypes;
-(function (agentLibIDListTypes) {
-    agentLibIDListTypes["MONGO_SLEEP"] = "MONGO-SLEEP";
-    agentLibIDListTypes["TRUE_CLAUSE_1"] = "TRUE-CLAUSE-1";
-})(agentLibIDListTypes || (exports.agentLibIDListTypes = agentLibIDListTypes = {}));
-exports.symbols = {
-    kMetrics: Symbol('contrast.metrics'),
-};
-//# sourceMappingURL=constants.js.map