@contrast/agent 4.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (1815) hide show
  1. package/LICENSE +12 -0
  2. package/README.md +111 -0
  3. package/agent-loader.js +44 -0
  4. package/bin/VERSION +1 -0
  5. package/bin/linux/contrast-service +0 -0
  6. package/bin/mac/contrast-service +0 -0
  7. package/bin/windows/contrast-service.exe +0 -0
  8. package/bootstrap.js +45 -0
  9. package/cli-rewriter.js +24 -0
  10. package/cli.js +38 -0
  11. package/esm.mjs +97 -0
  12. package/lib/agent-emitter.js +89 -0
  13. package/lib/agent.js +207 -0
  14. package/lib/app-info.js +101 -0
  15. package/lib/assess/deadzones/index.js +93 -0
  16. package/lib/assess/deadzones/rewrite.js +64 -0
  17. package/lib/assess/express/index.js +29 -0
  18. package/lib/assess/express/route-coverage.js +143 -0
  19. package/lib/assess/express/sinks/index.js +23 -0
  20. package/lib/assess/express/sinks/xss.js +88 -0
  21. package/lib/assess/express/sources.js +55 -0
  22. package/lib/assess/fastify/index.js +29 -0
  23. package/lib/assess/fastify/route-coverage.js +119 -0
  24. package/lib/assess/fastify/sinks/index.js +25 -0
  25. package/lib/assess/fastify/sinks/response-scanning.js +54 -0
  26. package/lib/assess/fastify/sinks/unvalidated-redirect.js +95 -0
  27. package/lib/assess/fastify/sinks/xss.js +239 -0
  28. package/lib/assess/fastify/sources.js +76 -0
  29. package/lib/assess/hapi/index.js +29 -0
  30. package/lib/assess/hapi/route-coverage.js +163 -0
  31. package/lib/assess/hapi/sinks/index.js +27 -0
  32. package/lib/assess/hapi/sinks/response-scanning.js +49 -0
  33. package/lib/assess/hapi/sinks/session.js +125 -0
  34. package/lib/assess/hapi/sinks/unvalidated-redirect.js +100 -0
  35. package/lib/assess/hapi/sinks/xss.js +167 -0
  36. package/lib/assess/hapi/sources.js +37 -0
  37. package/lib/assess/index.js +33 -0
  38. package/lib/assess/koa/index.js +29 -0
  39. package/lib/assess/koa/route-coverage.js +114 -0
  40. package/lib/assess/koa/sinks/index.js +25 -0
  41. package/lib/assess/koa/sinks/response-scanning.js +40 -0
  42. package/lib/assess/koa/sinks/unvalidated-redirect.js +96 -0
  43. package/lib/assess/koa/sinks/xss.js +127 -0
  44. package/lib/assess/koa/sources.js +145 -0
  45. package/lib/assess/loopback4/index.js +29 -0
  46. package/lib/assess/loopback4/route-coverage.js +129 -0
  47. package/lib/assess/loopback4/sinks/index.js +25 -0
  48. package/lib/assess/loopback4/sinks/response-scanning.js +39 -0
  49. package/lib/assess/loopback4/sinks/xss.js +77 -0
  50. package/lib/assess/loopback4/sources.js +33 -0
  51. package/lib/assess/membrane/debraner.js +172 -0
  52. package/lib/assess/membrane/deserialization-membrane.js +77 -0
  53. package/lib/assess/membrane/index.js +471 -0
  54. package/lib/assess/membrane/source-membrane.js +433 -0
  55. package/lib/assess/models/base-event.js +190 -0
  56. package/lib/assess/models/call-context.js +185 -0
  57. package/lib/assess/models/index.js +29 -0
  58. package/lib/assess/models/propagation-event.js +77 -0
  59. package/lib/assess/models/signature.js +92 -0
  60. package/lib/assess/models/sink-event.js +43 -0
  61. package/lib/assess/models/source-event.js +89 -0
  62. package/lib/assess/models/tag-range/index.js +190 -0
  63. package/lib/assess/models/tag-range/relationships.js +67 -0
  64. package/lib/assess/models/tag-range/util.js +364 -0
  65. package/lib/assess/policy/deadzones.json +185 -0
  66. package/lib/assess/policy/index.js +20 -0
  67. package/lib/assess/policy/init.js +309 -0
  68. package/lib/assess/policy/non-dataflow-rules.json +156 -0
  69. package/lib/assess/policy/propagators.json +530 -0
  70. package/lib/assess/policy/rules.json +1564 -0
  71. package/lib/assess/policy/signatures.json +1212 -0
  72. package/lib/assess/policy/util.js +414 -0
  73. package/lib/assess/propagators/JSON/parse.js +53 -0
  74. package/lib/assess/propagators/JSON/stringify.js +376 -0
  75. package/lib/assess/propagators/ajv/conditionals.js +167 -0
  76. package/lib/assess/propagators/ajv/evaluator-shim.js +42 -0
  77. package/lib/assess/propagators/ajv/index.js +91 -0
  78. package/lib/assess/propagators/ajv/json-schema-type-evaluators.js +494 -0
  79. package/lib/assess/propagators/ajv/object-walk.js +76 -0
  80. package/lib/assess/propagators/ajv/refs.js +266 -0
  81. package/lib/assess/propagators/ajv/schema-context.js +389 -0
  82. package/lib/assess/propagators/array-prototype-join.js +164 -0
  83. package/lib/assess/propagators/common.js +135 -0
  84. package/lib/assess/propagators/ejs-template-generate-source.js +64 -0
  85. package/lib/assess/propagators/handlebars-compile.js +78 -0
  86. package/lib/assess/propagators/handlebars-escape-expresssion.js +71 -0
  87. package/lib/assess/propagators/index.js +156 -0
  88. package/lib/assess/propagators/joi/boolean.js +68 -0
  89. package/lib/assess/propagators/joi/expression.js +48 -0
  90. package/lib/assess/propagators/joi/index.js +24 -0
  91. package/lib/assess/propagators/joi/number.js +67 -0
  92. package/lib/assess/propagators/joi/string-base.js +62 -0
  93. package/lib/assess/propagators/joi/string-schema.js +173 -0
  94. package/lib/assess/propagators/joi/values.js +278 -0
  95. package/lib/assess/propagators/manager.js +453 -0
  96. package/lib/assess/propagators/object.js +61 -0
  97. package/lib/assess/propagators/path/basename.js +112 -0
  98. package/lib/assess/propagators/path/common.js +249 -0
  99. package/lib/assess/propagators/path/dirname.js +77 -0
  100. package/lib/assess/propagators/path/extname.js +82 -0
  101. package/lib/assess/propagators/path/format.js +65 -0
  102. package/lib/assess/propagators/path/join.js +49 -0
  103. package/lib/assess/propagators/path/normalize.js +51 -0
  104. package/lib/assess/propagators/path/parse.js +43 -0
  105. package/lib/assess/propagators/path/relative.js +152 -0
  106. package/lib/assess/propagators/path/resolve.js +53 -0
  107. package/lib/assess/propagators/path/to-namespaced-path.js +52 -0
  108. package/lib/assess/propagators/pug-compile.js +58 -0
  109. package/lib/assess/propagators/querystring/escape.js +54 -0
  110. package/lib/assess/propagators/querystring/parse.js +117 -0
  111. package/lib/assess/propagators/querystring/stringify.js +312 -0
  112. package/lib/assess/propagators/querystring/unescape.js +58 -0
  113. package/lib/assess/propagators/querystring/utils.js +69 -0
  114. package/lib/assess/propagators/sequelize/sql-string-escape.js +61 -0
  115. package/lib/assess/propagators/sequelize/sql-string-format-named-parameters.js +145 -0
  116. package/lib/assess/propagators/sequelize/sql-string-format.js +104 -0
  117. package/lib/assess/propagators/sequelize/utils.js +37 -0
  118. package/lib/assess/propagators/string-prototype-replace.js +670 -0
  119. package/lib/assess/propagators/string-prototype-split.js +266 -0
  120. package/lib/assess/propagators/string-prototype-trim.js +63 -0
  121. package/lib/assess/propagators/string.js +72 -0
  122. package/lib/assess/propagators/templates.js +169 -0
  123. package/lib/assess/propagators/url/url-prototype-parse.js +134 -0
  124. package/lib/assess/propagators/url/url-url.js +456 -0
  125. package/lib/assess/propagators/url/utils.js +58 -0
  126. package/lib/assess/propagators/util/format.js +305 -0
  127. package/lib/assess/propagators/utils.js +111 -0
  128. package/lib/assess/propagators/v8/init-hooks.js +143 -0
  129. package/lib/assess/propagators/validator/init-hooks.js +212 -0
  130. package/lib/assess/propagators/validator/validator-methods.js +92 -0
  131. package/lib/assess/response-scanning/app-activity.js +33 -0
  132. package/lib/assess/response-scanning/autocomplete-missing.js +68 -0
  133. package/lib/assess/response-scanning/cache-controls-missing.js +205 -0
  134. package/lib/assess/response-scanning/clickjacking-control-missing.js +49 -0
  135. package/lib/assess/response-scanning/common.js +58 -0
  136. package/lib/assess/response-scanning/cookies/common.js +63 -0
  137. package/lib/assess/response-scanning/cookies/events.js +28 -0
  138. package/lib/assess/response-scanning/cookies/httponly.js +45 -0
  139. package/lib/assess/response-scanning/cookies/secure-flag-missing.js +46 -0
  140. package/lib/assess/response-scanning/headers/csp-header-insecure.js +190 -0
  141. package/lib/assess/response-scanning/headers/csp-header-missing.js +45 -0
  142. package/lib/assess/response-scanning/headers/csp-utils.js +28 -0
  143. package/lib/assess/response-scanning/headers/hsts-header-missing.js +59 -0
  144. package/lib/assess/response-scanning/headers/powered-by.js +53 -0
  145. package/lib/assess/response-scanning/headers/xcontenttype-header-missing.js +51 -0
  146. package/lib/assess/response-scanning/headers/xxssprotection-header-disabled.js +46 -0
  147. package/lib/assess/response-scanning/parameter-pollution.js +65 -0
  148. package/lib/assess/response-scanning/parseable-response-emitter.js +43 -0
  149. package/lib/assess/restify/index.js +30 -0
  150. package/lib/assess/restify/route-coverage.js +86 -0
  151. package/lib/assess/restify/session.js +51 -0
  152. package/lib/assess/restify/sinks/index.js +25 -0
  153. package/lib/assess/restify/sinks/response-scanning.js +48 -0
  154. package/lib/assess/restify/sinks/unvalidated-redirect.js +100 -0
  155. package/lib/assess/restify/sinks/xss.js +87 -0
  156. package/lib/assess/restify/sources.js +224 -0
  157. package/lib/assess/sinks/common.js +507 -0
  158. package/lib/assess/sinks/dynamo.js +231 -0
  159. package/lib/assess/sinks/hapi-16-xss.js +75 -0
  160. package/lib/assess/sinks/index.js +179 -0
  161. package/lib/assess/sinks/libxmljs-xxe.js +57 -0
  162. package/lib/assess/sinks/mongodb.js +369 -0
  163. package/lib/assess/sinks/ssrf-url.js +98 -0
  164. package/lib/assess/sources/formidable.js +38 -0
  165. package/lib/assess/sources/index.js +179 -0
  166. package/lib/assess/static/hardcoded.js +345 -0
  167. package/lib/assess/technologies/index.js +48 -0
  168. package/lib/assess/utils.js +22 -0
  169. package/lib/cat.txt +87 -0
  170. package/lib/cli-rewriter/index.js +269 -0
  171. package/lib/constants.js +744 -0
  172. package/lib/contrast.js +436 -0
  173. package/lib/core/arch-components/dynamodb.js +42 -0
  174. package/lib/core/arch-components/index.js +19 -0
  175. package/lib/core/arch-components/mongodb.js +53 -0
  176. package/lib/core/arch-components/mysql.js +50 -0
  177. package/lib/core/arch-components/postgres.js +43 -0
  178. package/lib/core/arch-components/sqlite3.js +43 -0
  179. package/lib/core/async-storage/context.js +133 -0
  180. package/lib/core/async-storage/hooks/bluebird.js +71 -0
  181. package/lib/core/async-storage/hooks/mongodb-core.js +69 -0
  182. package/lib/core/async-storage/hooks/mysql.js +103 -0
  183. package/lib/core/async-storage/hooks/redis.js +38 -0
  184. package/lib/core/async-storage/hooks/utils.js +42 -0
  185. package/lib/core/async-storage/index.js +220 -0
  186. package/lib/core/async-storage/scopes/index.js +153 -0
  187. package/lib/core/common/formidable.js +65 -0
  188. package/lib/core/common/index.js +19 -0
  189. package/lib/core/config/options.js +1018 -0
  190. package/lib/core/config/util.js +347 -0
  191. package/lib/core/exclusions/exclusion-factory.js +124 -0
  192. package/lib/core/exclusions/exclusion.js +51 -0
  193. package/lib/core/exclusions/input.js +90 -0
  194. package/lib/core/exclusions/url.js +66 -0
  195. package/lib/core/express/index.js +461 -0
  196. package/lib/core/express/utils.js +562 -0
  197. package/lib/core/fastify/index.js +198 -0
  198. package/lib/core/fastify/utils.js +28 -0
  199. package/lib/core/hapi/index.js +201 -0
  200. package/lib/core/hapi/utils.js +125 -0
  201. package/lib/core/index.js +34 -0
  202. package/lib/core/koa/index.js +291 -0
  203. package/lib/core/koa/utils.js +31 -0
  204. package/lib/core/logger/daily-rotate-file.js +45 -0
  205. package/lib/core/logger/dataflow-monitor.js +124 -0
  206. package/lib/core/logger/debug-logger.js +365 -0
  207. package/lib/core/logger/index.js +43 -0
  208. package/lib/core/logger/perf-logger.js +239 -0
  209. package/lib/core/logger/umbrella-logger.js +163 -0
  210. package/lib/core/loopback4/index.js +173 -0
  211. package/lib/core/metrics/index.js +150 -0
  212. package/lib/core/restify/index.js +147 -0
  213. package/lib/core/restify/utils.js +84 -0
  214. package/lib/core/rewrite/assignment-expression.js +40 -0
  215. package/lib/core/rewrite/binary-expression.js +64 -0
  216. package/lib/core/rewrite/call-expression.js +44 -0
  217. package/lib/core/rewrite/callees.js +125 -0
  218. package/lib/core/rewrite/catch-clause.js +47 -0
  219. package/lib/core/rewrite/function-wrap.js +49 -0
  220. package/lib/core/rewrite/index.js +313 -0
  221. package/lib/core/rewrite/injections.js +159 -0
  222. package/lib/core/rewrite/is-contrast-method.js +28 -0
  223. package/lib/core/rewrite/log.js +24 -0
  224. package/lib/core/rewrite/member-expression.js +52 -0
  225. package/lib/core/rewrite/object-property.js +46 -0
  226. package/lib/core/rewrite/prepend-globals.js +48 -0
  227. package/lib/core/rewrite/rewrite-log.js +77 -0
  228. package/lib/core/rewrite/switch-statement.js +71 -0
  229. package/lib/core/rewrite/template-literal.js +64 -0
  230. package/lib/core/stacktrace.js +218 -0
  231. package/lib/coverage.js +158 -0
  232. package/lib/feature-set.js +296 -0
  233. package/lib/generator-function.js +20 -0
  234. package/lib/hooks/array.js +75 -0
  235. package/lib/hooks/cluster.js +232 -0
  236. package/lib/hooks/dataflow-monitor.js +38 -0
  237. package/lib/hooks/encoding.js +88 -0
  238. package/lib/hooks/express-session.js +108 -0
  239. package/lib/hooks/fn-to-string.js +106 -0
  240. package/lib/hooks/frameworks/base.js +97 -0
  241. package/lib/hooks/frameworks/common.js +191 -0
  242. package/lib/hooks/frameworks/hapi16.js +293 -0
  243. package/lib/hooks/frameworks/http.js +82 -0
  244. package/lib/hooks/frameworks/https.js +42 -0
  245. package/lib/hooks/frameworks/index.js +22 -0
  246. package/lib/hooks/hapi-16-reply.js +55 -0
  247. package/lib/hooks/hapi-16-session.js +312 -0
  248. package/lib/hooks/http.js +215 -0
  249. package/lib/hooks/module/extensions.js +41 -0
  250. package/lib/hooks/module/helpers.js +157 -0
  251. package/lib/hooks/module/index.js +99 -0
  252. package/lib/hooks/newrelic.js +60 -0
  253. package/lib/hooks/object-is.js +48 -0
  254. package/lib/hooks/object-to-primitive.js +65 -0
  255. package/lib/hooks/patcher.js +551 -0
  256. package/lib/hooks/require.js +62 -0
  257. package/lib/hooks/stealthy-require.js +64 -0
  258. package/lib/instrumentation.js +175 -0
  259. package/lib/libraries.js +184 -0
  260. package/lib/library-usage.js +51 -0
  261. package/lib/list-installed.js +63 -0
  262. package/lib/protect/errors/handler.js +55 -0
  263. package/lib/protect/errors/security-exception.js +31 -0
  264. package/lib/protect/express/index.js +23 -0
  265. package/lib/protect/express/sinks.js +34 -0
  266. package/lib/protect/express/sources.js +54 -0
  267. package/lib/protect/fastify/index.js +25 -0
  268. package/lib/protect/fastify/sinks.js +37 -0
  269. package/lib/protect/fastify/sources.js +90 -0
  270. package/lib/protect/hapi/error-handler.js +79 -0
  271. package/lib/protect/hapi/index.js +27 -0
  272. package/lib/protect/hapi/sinks.js +40 -0
  273. package/lib/protect/hapi/sources.js +104 -0
  274. package/lib/protect/index.js +31 -0
  275. package/lib/protect/input-analysis.js +364 -0
  276. package/lib/protect/koa/index.js +25 -0
  277. package/lib/protect/koa/sinks.js +38 -0
  278. package/lib/protect/koa/sources.js +152 -0
  279. package/lib/protect/listeners.js +209 -0
  280. package/lib/protect/loopback4/index.js +23 -0
  281. package/lib/protect/loopback4/sources.js +48 -0
  282. package/lib/protect/models/application-context.js +46 -0
  283. package/lib/protect/models/sink-event.js +28 -0
  284. package/lib/protect/models/source-event.js +51 -0
  285. package/lib/protect/restify/index.js +25 -0
  286. package/lib/protect/restify/sinks.js +39 -0
  287. package/lib/protect/restify/sources.js +65 -0
  288. package/lib/protect/rules/assessment.js +204 -0
  289. package/lib/protect/rules/attack-patterns.js +364 -0
  290. package/lib/protect/rules/base-scanner/index.js +621 -0
  291. package/lib/protect/rules/base-scanner/java-script-scanner.js +154 -0
  292. package/lib/protect/rules/base-scanner/postgresqlscanner.js +26 -0
  293. package/lib/protect/rules/base-scanner/scan-state.js +243 -0
  294. package/lib/protect/rules/base-scanner/scan-states.json +14 -0
  295. package/lib/protect/rules/base-scanner/substring-finder.js +59 -0
  296. package/lib/protect/rules/base-scanner/token-sequence.js +57 -0
  297. package/lib/protect/rules/bot-blocker/bot-blocker-rule.js +106 -0
  298. package/lib/protect/rules/bot-blocker/bots.json +283 -0
  299. package/lib/protect/rules/bot-blocker/index.js +93 -0
  300. package/lib/protect/rules/cmd-injection/cmdinjection-rule.js +58 -0
  301. package/lib/protect/rules/cmd-injection-command-backdoors/backdoor-detector.js +103 -0
  302. package/lib/protect/rules/cmd-injection-command-backdoors/cmd-injection-command-backdoors-rule.js +90 -0
  303. package/lib/protect/rules/cmd-injection-semantic-chained-commands/chained-command-scanner.js +278 -0
  304. package/lib/protect/rules/cmd-injection-semantic-chained-commands/cmd-injection-semantic-chained-commands-rule.js +88 -0
  305. package/lib/protect/rules/cmd-injection-semantic-dangerous-paths/cmd-injection-semantic-dangerous-paths-rule.js +82 -0
  306. package/lib/protect/rules/cmd-injection-semantic-dangerous-paths/dangerous-paths-scanner.js +210 -0
  307. package/lib/protect/rules/common.js +38 -0
  308. package/lib/protect/rules/index.js +336 -0
  309. package/lib/protect/rules/ip-denylist/ip-denylist-rule.js +106 -0
  310. package/lib/protect/rules/method-tampering/evaluator.js +39 -0
  311. package/lib/protect/rules/method-tampering/method-tampering-rule.js +99 -0
  312. package/lib/protect/rules/nosqli/no-sql-injection-rule.js +109 -0
  313. package/lib/protect/rules/nosqli/nosql-scanner/index.js +46 -0
  314. package/lib/protect/rules/nosqli/nosql-scanner/labels.json +73 -0
  315. package/lib/protect/rules/nosqli/nosql-scanner/mongodbscanner.js +85 -0
  316. package/lib/protect/rules/path-traversal/path-traversal-rule.js +58 -0
  317. package/lib/protect/rules/rule-factory.js +251 -0
  318. package/lib/protect/rules/signatures/cmd-injection/config.json +8 -0
  319. package/lib/protect/rules/signatures/cmd-injection/custom-searchers/chained-command-searcher.js +117 -0
  320. package/lib/protect/rules/signatures/cmd-injection/custom-searchers/index.js +26 -0
  321. package/lib/protect/rules/signatures/cmd-injection/index.js +30 -0
  322. package/lib/protect/rules/signatures/evaluator.js +187 -0
  323. package/lib/protect/rules/signatures/index.js +83 -0
  324. package/lib/protect/rules/signatures/nosql-injection/config.json +8 -0
  325. package/lib/protect/rules/signatures/nosql-injection/custom-searchers/index.js +28 -0
  326. package/lib/protect/rules/signatures/nosql-injection/custom-searchers/nosql-comment-searcher.js +42 -0
  327. package/lib/protect/rules/signatures/nosql-injection/custom-searchers/simple-or-searcher.js +115 -0
  328. package/lib/protect/rules/signatures/nosql-injection/index.js +30 -0
  329. package/lib/protect/rules/signatures/path-traversal/config.json +8 -0
  330. package/lib/protect/rules/signatures/path-traversal/index.js +30 -0
  331. package/lib/protect/rules/signatures/reflected-xss/config.json +14 -0
  332. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/behavior-url-searcher.js +84 -0
  333. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/custom-searches.json +103 -0
  334. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/function-definition-searcher.js +59 -0
  335. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/immediate-function-searcher.js +105 -0
  336. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/index.js +36 -0
  337. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/link-and-src-target-searcher.js +145 -0
  338. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/location-set-searcher.js +72 -0
  339. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/map-access-searcher.js +102 -0
  340. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/native-function-execution-searcher.js +82 -0
  341. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/no-alnum-searcher.js +50 -0
  342. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/redefined-function-searcher.js +111 -0
  343. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/style-url-injection-searcher.js +65 -0
  344. package/lib/protect/rules/signatures/reflected-xss/custom-searchers/variable-assignment-searcher.js +90 -0
  345. package/lib/protect/rules/signatures/reflected-xss/helpers/function-call.js +83 -0
  346. package/lib/protect/rules/signatures/reflected-xss/index.js +30 -0
  347. package/lib/protect/rules/signatures/signature.js +198 -0
  348. package/lib/protect/rules/signatures/sql-injection/config.json +10 -0
  349. package/lib/protect/rules/signatures/sql-injection/custom-searchers/if-else-drop-searcher.js +49 -0
  350. package/lib/protect/rules/signatures/sql-injection/custom-searchers/index.js +30 -0
  351. package/lib/protect/rules/signatures/sql-injection/custom-searchers/simple-or-searcher.js +124 -0
  352. package/lib/protect/rules/signatures/sql-injection/custom-searchers/sql-comment-searcher.js +73 -0
  353. package/lib/protect/rules/signatures/sql-injection/custom-searchers/time-function-searcher.js +64 -0
  354. package/lib/protect/rules/signatures/sql-injection/custom-searchers/tsql-exec-searcher.js +45 -0
  355. package/lib/protect/rules/signatures/sql-injection/index.js +30 -0
  356. package/lib/protect/rules/signatures/ssjs-injection/config.json +17 -0
  357. package/lib/protect/rules/signatures/ssjs-injection/index.js +30 -0
  358. package/lib/protect/rules/signatures/unsafe-file-upload/config.json +7 -0
  359. package/lib/protect/rules/signatures/unsafe-file-upload/index.js +29 -0
  360. package/lib/protect/rules/signatures/untrusted-deserialization/config.json +8 -0
  361. package/lib/protect/rules/signatures/untrusted-deserialization/index.js +27 -0
  362. package/lib/protect/rules/sqli/generic-complicated.js +50 -0
  363. package/lib/protect/rules/sqli/sql-injection-rule.js +185 -0
  364. package/lib/protect/rules/sqli/sql-scanner/index.js +61 -0
  365. package/lib/protect/rules/sqli/sql-scanner/labels.json +138 -0
  366. package/lib/protect/rules/sqli/sql-scanner/mysql-scanner.js +170 -0
  367. package/lib/protect/rules/ssjs-injection/evaluator.js +48 -0
  368. package/lib/protect/rules/ssjs-injection/ssjsinjection-rule.js +164 -0
  369. package/lib/protect/rules/unsafe-file-upload/unsafe-file-upload-rule.js +33 -0
  370. package/lib/protect/rules/untrusted-deserialization/untrusted-deserialization-rule.js +95 -0
  371. package/lib/protect/rules/virtual-patch/index.js +17 -0
  372. package/lib/protect/rules/virtual-patch/utils.js +72 -0
  373. package/lib/protect/rules/virtual-patch/virtual-patch-rule.js +162 -0
  374. package/lib/protect/rules/xss/helpers/function-call.js +82 -0
  375. package/lib/protect/rules/xss/reflected-xss-rule.js +103 -0
  376. package/lib/protect/rules/xxe/xxerule.js +184 -0
  377. package/lib/protect/sample-aggregator.js +136 -0
  378. package/lib/protect/samples.js +167 -0
  379. package/lib/protect/service.js +556 -0
  380. package/lib/protect/sinks/child-process.js +65 -0
  381. package/lib/protect/sinks/eval.js +57 -0
  382. package/lib/protect/sinks/fs.js +97 -0
  383. package/lib/protect/sinks/function.js +64 -0
  384. package/lib/protect/sinks/index.js +52 -0
  385. package/lib/protect/sinks/libxmljs.js +107 -0
  386. package/lib/protect/sinks/mongodb.js +147 -0
  387. package/lib/protect/sinks/mysql.js +63 -0
  388. package/lib/protect/sinks/node-serialize.js +53 -0
  389. package/lib/protect/sinks/postgres.js +81 -0
  390. package/lib/protect/sinks/sequelize.js +86 -0
  391. package/lib/protect/sinks/sqlite3.js +50 -0
  392. package/lib/protect/sinks/vm.js +89 -0
  393. package/lib/protect/sources/busboy.js +58 -0
  394. package/lib/protect/sources/formidable.js +55 -0
  395. package/lib/protect/sources/index.js +27 -0
  396. package/lib/protect/validators/authorization.js +31 -0
  397. package/lib/protect/validators/common.js +74 -0
  398. package/lib/protect/validators/connection.js +31 -0
  399. package/lib/protect/validators/content-length.js +30 -0
  400. package/lib/protect/validators/host.js +23 -0
  401. package/lib/protect/validators/if-none-match.js +71 -0
  402. package/lib/protect/validators/index.js +24 -0
  403. package/lib/protect/validators/origin.js +29 -0
  404. package/lib/reporter/app-activity-queue.js +179 -0
  405. package/lib/reporter/grpc-client.js +88 -0
  406. package/lib/reporter/messages/speedracer/activity.js +38 -0
  407. package/lib/reporter/messages/speedracer/application-create.js +65 -0
  408. package/lib/reporter/messages/speedracer/application-update.js +41 -0
  409. package/lib/reporter/messages/speedracer/base.js +401 -0
  410. package/lib/reporter/messages/speedracer/index.js +33 -0
  411. package/lib/reporter/messages/speedracer/observed-route.js +41 -0
  412. package/lib/reporter/messages/speedracer/poll.js +43 -0
  413. package/lib/reporter/messages/speedracer/request.js +33 -0
  414. package/lib/reporter/messages/speedracer/startup.js +63 -0
  415. package/lib/reporter/messaging-router.js +116 -0
  416. package/lib/reporter/models/app-activity/app-activity.js +43 -0
  417. package/lib/reporter/models/app-activity/attacker-activity.js +77 -0
  418. package/lib/reporter/models/app-activity/defend.js +94 -0
  419. package/lib/reporter/models/app-activity/inventory.js +73 -0
  420. package/lib/reporter/models/app-activity/protection-rule-activity.js +68 -0
  421. package/lib/reporter/models/app-activity/rule-events.js +55 -0
  422. package/lib/reporter/models/app-activity/sample.js +133 -0
  423. package/lib/reporter/models/app-activity/source.js +79 -0
  424. package/lib/reporter/models/app-activity/user-input.js +87 -0
  425. package/lib/reporter/models/app-create.js +63 -0
  426. package/lib/reporter/models/app-update/index.js +180 -0
  427. package/lib/reporter/models/app-update/library-manifest.js +54 -0
  428. package/lib/reporter/models/app-update/library-usage.js +36 -0
  429. package/lib/reporter/models/app-update/library.js +111 -0
  430. package/lib/reporter/models/event-tag.js +33 -0
  431. package/lib/reporter/models/finding/event.js +149 -0
  432. package/lib/reporter/models/finding/finding.js +77 -0
  433. package/lib/reporter/models/frameworks/express-request.js +75 -0
  434. package/lib/reporter/models/frameworks/fastify-request.js +27 -0
  435. package/lib/reporter/models/frameworks/hapi-request.js +39 -0
  436. package/lib/reporter/models/frameworks/index.js +21 -0
  437. package/lib/reporter/models/frameworks/koa-request.js +27 -0
  438. package/lib/reporter/models/frameworks/restify-request.js +27 -0
  439. package/lib/reporter/models/observed-route.js +37 -0
  440. package/lib/reporter/models/request.js +288 -0
  441. package/lib/reporter/models/route-coverage.js +53 -0
  442. package/lib/reporter/models/startup.js +56 -0
  443. package/lib/reporter/models/trace-event-source.js +38 -0
  444. package/lib/reporter/models/utils/request-factory.js +32 -0
  445. package/lib/reporter/models/utils/user-input-factory.js +190 -0
  446. package/lib/reporter/models/utils/user-input-kit.js +48 -0
  447. package/lib/reporter/mq-client.js +59 -0
  448. package/lib/reporter/server-activity-queue.js +37 -0
  449. package/lib/reporter/socket-client.js +172 -0
  450. package/lib/reporter/speedracer/base-connection-state.js +49 -0
  451. package/lib/reporter/speedracer/constants.js +68 -0
  452. package/lib/reporter/speedracer/failure-connection-state.js +45 -0
  453. package/lib/reporter/speedracer/index.js +352 -0
  454. package/lib/reporter/speedracer/success-connection-state.js +67 -0
  455. package/lib/reporter/speedracer/unknown-connection-state.js +166 -0
  456. package/lib/reporter/translations/enums.js +268 -0
  457. package/lib/reporter/translations/helpers.js +115 -0
  458. package/lib/reporter/translations/to-protobuf/dtm/activity.js +149 -0
  459. package/lib/reporter/translations/to-protobuf/dtm/address.js +25 -0
  460. package/lib/reporter/translations/to-protobuf/dtm/agent-startup.js +40 -0
  461. package/lib/reporter/translations/to-protobuf/dtm/application-create.js +44 -0
  462. package/lib/reporter/translations/to-protobuf/dtm/application-update.js +61 -0
  463. package/lib/reporter/translations/to-protobuf/dtm/architecture-component.js +33 -0
  464. package/lib/reporter/translations/to-protobuf/dtm/attack-result.js +38 -0
  465. package/lib/reporter/translations/to-protobuf/dtm/bot-blocker-details.js +23 -0
  466. package/lib/reporter/translations/to-protobuf/dtm/cmd-injection-details.js +22 -0
  467. package/lib/reporter/translations/to-protobuf/dtm/cmd-injection-semantic-analysis-details.js +23 -0
  468. package/lib/reporter/translations/to-protobuf/dtm/finding.js +43 -0
  469. package/lib/reporter/translations/to-protobuf/dtm/http-method-tampering-details.js +24 -0
  470. package/lib/reporter/translations/to-protobuf/dtm/http-request.js +50 -0
  471. package/lib/reporter/translations/to-protobuf/dtm/index.js +48 -0
  472. package/lib/reporter/translations/to-protobuf/dtm/ip-denylist-details.js +23 -0
  473. package/lib/reporter/translations/to-protobuf/dtm/library-usage-update.js +32 -0
  474. package/lib/reporter/translations/to-protobuf/dtm/no-sql-injection-details.js +26 -0
  475. package/lib/reporter/translations/to-protobuf/dtm/observed-route.js +73 -0
  476. package/lib/reporter/translations/to-protobuf/dtm/pair.js +24 -0
  477. package/lib/reporter/translations/to-protobuf/dtm/path-traversal-details.js +22 -0
  478. package/lib/reporter/translations/to-protobuf/dtm/poll.js +19 -0
  479. package/lib/reporter/translations/to-protobuf/dtm/rasp-rule-sample.js +134 -0
  480. package/lib/reporter/translations/to-protobuf/dtm/raw-request.js +99 -0
  481. package/lib/reporter/translations/to-protobuf/dtm/route-coverage.js +68 -0
  482. package/lib/reporter/translations/to-protobuf/dtm/simple-pair.js +24 -0
  483. package/lib/reporter/translations/to-protobuf/dtm/sql-injection-details.js +26 -0
  484. package/lib/reporter/translations/to-protobuf/dtm/ssjs-injection-details.js +25 -0
  485. package/lib/reporter/translations/to-protobuf/dtm/stack-trace-element.js +30 -0
  486. package/lib/reporter/translations/to-protobuf/dtm/trace-event/action.js +21 -0
  487. package/lib/reporter/translations/to-protobuf/dtm/trace-event/index.js +56 -0
  488. package/lib/reporter/translations/to-protobuf/dtm/trace-event/parent-object-id.js +23 -0
  489. package/lib/reporter/translations/to-protobuf/dtm/trace-event/trace-event-object.js +28 -0
  490. package/lib/reporter/translations/to-protobuf/dtm/trace-event/trace-event-signature.js +37 -0
  491. package/lib/reporter/translations/to-protobuf/dtm/trace-event/trace-event-source.js +24 -0
  492. package/lib/reporter/translations/to-protobuf/dtm/trace-event/trace-stack.js +27 -0
  493. package/lib/reporter/translations/to-protobuf/dtm/trace-event/trace-taint-range.js +24 -0
  494. package/lib/reporter/translations/to-protobuf/dtm/trace-event/type.js +21 -0
  495. package/lib/reporter/translations/to-protobuf/dtm/untrusted-deserialization-details.js +24 -0
  496. package/lib/reporter/translations/to-protobuf/dtm/user-input.js +37 -0
  497. package/lib/reporter/translations/to-protobuf/dtm/virtual-patch-details.js +23 -0
  498. package/lib/reporter/translations/to-protobuf/dtm/xss-details.js +34 -0
  499. package/lib/reporter/translations/to-protobuf/dtm/xxe-details.js +45 -0
  500. package/lib/reporter/translations/to-protobuf/index.js +18 -0
  501. package/lib/reporter/translations/to-protobuf/settings/application-settings.js +76 -0
  502. package/lib/reporter/translations/to-protobuf/settings/assess-features.js +68 -0
  503. package/lib/reporter/translations/to-protobuf/settings/auth.js +25 -0
  504. package/lib/reporter/translations/to-protobuf/settings/bot-blocker.js +27 -0
  505. package/lib/reporter/translations/to-protobuf/settings/custom-rule-feature.js +27 -0
  506. package/lib/reporter/translations/to-protobuf/settings/defend-features.js +72 -0
  507. package/lib/reporter/translations/to-protobuf/settings/exclusions.js +97 -0
  508. package/lib/reporter/translations/to-protobuf/settings/index.js +37 -0
  509. package/lib/reporter/translations/to-protobuf/settings/input-analysis-result.js +22 -0
  510. package/lib/reporter/translations/to-protobuf/settings/inventory-features.js +35 -0
  511. package/lib/reporter/translations/to-protobuf/settings/ip-filter.js +29 -0
  512. package/lib/reporter/translations/to-protobuf/settings/log-enhancer.js +23 -0
  513. package/lib/reporter/translations/to-protobuf/settings/protection-rule.js +45 -0
  514. package/lib/reporter/translations/to-protobuf/settings/reaction.js +29 -0
  515. package/lib/reporter/translations/to-protobuf/settings/rule-definition.js +59 -0
  516. package/lib/reporter/translations/to-protobuf/settings/sampling.js +35 -0
  517. package/lib/reporter/translations/to-protobuf/settings/server-features.js +73 -0
  518. package/lib/reporter/translations/to-protobuf/settings/syslog.js +62 -0
  519. package/lib/reporter/translations/to-protobuf/settings/virtual-patch.js +77 -0
  520. package/lib/reporter/ts-reporter.js +448 -0
  521. package/lib/tracker.js +251 -0
  522. package/lib/util/base64.js +23 -0
  523. package/lib/util/bitset.js +85 -0
  524. package/lib/util/block-request.js +34 -0
  525. package/lib/util/callback-resolver.js +37 -0
  526. package/lib/util/clean-stack.js +308 -0
  527. package/lib/util/clean-string/brackets.js +86 -0
  528. package/lib/util/clean-string/clean-string-base.js +60 -0
  529. package/lib/util/clean-string/comments.js +107 -0
  530. package/lib/util/clean-string/concatenations.js +183 -0
  531. package/lib/util/clean-string/jsclean-string.js +96 -0
  532. package/lib/util/clean-string/placeholders.js +107 -0
  533. package/lib/util/clean-string/util.js +70 -0
  534. package/lib/util/colors.js +28 -0
  535. package/lib/util/file-finder.js +160 -0
  536. package/lib/util/heap-dump.js +62 -0
  537. package/lib/util/html-util.js +83 -0
  538. package/lib/util/ip-analyzer.js +246 -0
  539. package/lib/util/is-agent-path.js +25 -0
  540. package/lib/util/is-contrast-error.js +15 -0
  541. package/lib/util/is-piped-to-dev.js +16 -0
  542. package/lib/util/is-string.js +24 -0
  543. package/lib/util/partial.js +29 -0
  544. package/lib/util/pkg-name.js +23 -0
  545. package/lib/util/request-util.js +74 -0
  546. package/lib/util/resolve-obj.js +39 -0
  547. package/lib/util/route-info.js +50 -0
  548. package/lib/util/source-map.js +171 -0
  549. package/lib/util/static-rules.js +33 -0
  550. package/lib/util/trace-util.js +73 -0
  551. package/lib/util/traverse.js +153 -0
  552. package/lib/util/user-input-evaluator.js +64 -0
  553. package/lib/util/xml-analyzer/external-entity-finder.js +183 -0
  554. package/node_modules/@dabh/diagnostics/CHANGELOG.md +26 -0
  555. package/node_modules/@dabh/diagnostics/LICENSE +20 -0
  556. package/node_modules/@dabh/diagnostics/README.md +473 -0
  557. package/node_modules/@dabh/diagnostics/adapters/hash.js +11 -0
  558. package/node_modules/@dabh/diagnostics/adapters/index.js +18 -0
  559. package/node_modules/@dabh/diagnostics/adapters/localstorage.js +11 -0
  560. package/node_modules/@dabh/diagnostics/adapters/process.env.js +11 -0
  561. package/node_modules/@dabh/diagnostics/browser/development.js +35 -0
  562. package/node_modules/@dabh/diagnostics/browser/index.js +8 -0
  563. package/node_modules/@dabh/diagnostics/browser/override.js +6 -0
  564. package/node_modules/@dabh/diagnostics/browser/production.js +24 -0
  565. package/node_modules/@dabh/diagnostics/diagnostics.js +212 -0
  566. package/node_modules/@dabh/diagnostics/example.png +0 -0
  567. package/node_modules/@dabh/diagnostics/logger/console.js +19 -0
  568. package/node_modules/@dabh/diagnostics/modifiers/namespace-ansi.js +20 -0
  569. package/node_modules/@dabh/diagnostics/modifiers/namespace.js +32 -0
  570. package/node_modules/@dabh/diagnostics/node/development.js +36 -0
  571. package/node_modules/@dabh/diagnostics/node/index.js +8 -0
  572. package/node_modules/@dabh/diagnostics/node/override.js +21 -0
  573. package/node_modules/@dabh/diagnostics/node/production.js +24 -0
  574. package/node_modules/@dabh/diagnostics/package.json +68 -0
  575. package/node_modules/async/CHANGELOG.md +331 -0
  576. package/node_modules/async/LICENSE +19 -0
  577. package/node_modules/async/README.md +60 -0
  578. package/node_modules/async/all.js +54 -0
  579. package/node_modules/async/allLimit.js +46 -0
  580. package/node_modules/async/allSeries.js +45 -0
  581. package/node_modules/async/any.js +56 -0
  582. package/node_modules/async/anyLimit.js +47 -0
  583. package/node_modules/async/anySeries.js +46 -0
  584. package/node_modules/async/apply.js +55 -0
  585. package/node_modules/async/applyEach.js +57 -0
  586. package/node_modules/async/applyEachSeries.js +37 -0
  587. package/node_modules/async/asyncify.js +118 -0
  588. package/node_modules/async/auto.js +267 -0
  589. package/node_modules/async/autoInject.js +156 -0
  590. package/node_modules/async/bower.json +17 -0
  591. package/node_modules/async/cargo.js +63 -0
  592. package/node_modules/async/cargoQueue.js +71 -0
  593. package/node_modules/async/compose.js +55 -0
  594. package/node_modules/async/concat.js +47 -0
  595. package/node_modules/async/concatLimit.js +60 -0
  596. package/node_modules/async/concatSeries.js +41 -0
  597. package/node_modules/async/constant.js +55 -0
  598. package/node_modules/async/detect.js +61 -0
  599. package/node_modules/async/detectLimit.js +48 -0
  600. package/node_modules/async/detectSeries.js +47 -0
  601. package/node_modules/async/dir.js +43 -0
  602. package/node_modules/async/dist/async.js +4846 -0
  603. package/node_modules/async/dist/async.min.js +1 -0
  604. package/node_modules/async/dist/async.mjs +4734 -0
  605. package/node_modules/async/doDuring.js +68 -0
  606. package/node_modules/async/doUntil.js +46 -0
  607. package/node_modules/async/doWhilst.js +68 -0
  608. package/node_modules/async/during.js +78 -0
  609. package/node_modules/async/each.js +88 -0
  610. package/node_modules/async/eachLimit.js +50 -0
  611. package/node_modules/async/eachOf.js +116 -0
  612. package/node_modules/async/eachOfLimit.js +47 -0
  613. package/node_modules/async/eachOfSeries.js +39 -0
  614. package/node_modules/async/eachSeries.js +44 -0
  615. package/node_modules/async/ensureAsync.js +67 -0
  616. package/node_modules/async/every.js +54 -0
  617. package/node_modules/async/everyLimit.js +46 -0
  618. package/node_modules/async/everySeries.js +45 -0
  619. package/node_modules/async/filter.js +53 -0
  620. package/node_modules/async/filterLimit.js +45 -0
  621. package/node_modules/async/filterSeries.js +43 -0
  622. package/node_modules/async/find.js +61 -0
  623. package/node_modules/async/findLimit.js +48 -0
  624. package/node_modules/async/findSeries.js +47 -0
  625. package/node_modules/async/flatMap.js +47 -0
  626. package/node_modules/async/flatMapLimit.js +60 -0
  627. package/node_modules/async/flatMapSeries.js +41 -0
  628. package/node_modules/async/foldl.js +77 -0
  629. package/node_modules/async/foldr.js +41 -0
  630. package/node_modules/async/forEach.js +88 -0
  631. package/node_modules/async/forEachLimit.js +50 -0
  632. package/node_modules/async/forEachOf.js +116 -0
  633. package/node_modules/async/forEachOfLimit.js +47 -0
  634. package/node_modules/async/forEachOfSeries.js +39 -0
  635. package/node_modules/async/forEachSeries.js +44 -0
  636. package/node_modules/async/forever.js +68 -0
  637. package/node_modules/async/groupBy.js +54 -0
  638. package/node_modules/async/groupByLimit.js +71 -0
  639. package/node_modules/async/groupBySeries.js +36 -0
  640. package/node_modules/async/index.js +588 -0
  641. package/node_modules/async/inject.js +77 -0
  642. package/node_modules/async/internal/DoublyLinkedList.js +92 -0
  643. package/node_modules/async/internal/Heap.js +120 -0
  644. package/node_modules/async/internal/applyEach.js +29 -0
  645. package/node_modules/async/internal/asyncEachOfLimit.js +75 -0
  646. package/node_modules/async/internal/awaitify.js +27 -0
  647. package/node_modules/async/internal/breakLoop.js +10 -0
  648. package/node_modules/async/internal/consoleFunc.js +27 -0
  649. package/node_modules/async/internal/createTester.js +40 -0
  650. package/node_modules/async/internal/eachOfLimit.js +90 -0
  651. package/node_modules/async/internal/filter.js +55 -0
  652. package/node_modules/async/internal/getIterator.js +11 -0
  653. package/node_modules/async/internal/initialParams.js +14 -0
  654. package/node_modules/async/internal/isArrayLike.js +10 -0
  655. package/node_modules/async/internal/iterator.js +54 -0
  656. package/node_modules/async/internal/map.js +30 -0
  657. package/node_modules/async/internal/once.js +17 -0
  658. package/node_modules/async/internal/onlyOnce.js +15 -0
  659. package/node_modules/async/internal/parallel.js +34 -0
  660. package/node_modules/async/internal/promiseCallback.js +23 -0
  661. package/node_modules/async/internal/queue.js +291 -0
  662. package/node_modules/async/internal/range.js +14 -0
  663. package/node_modules/async/internal/reject.js +26 -0
  664. package/node_modules/async/internal/setImmediate.js +30 -0
  665. package/node_modules/async/internal/withoutIndex.js +10 -0
  666. package/node_modules/async/internal/wrapAsync.js +34 -0
  667. package/node_modules/async/log.js +41 -0
  668. package/node_modules/async/map.js +62 -0
  669. package/node_modules/async/mapLimit.js +45 -0
  670. package/node_modules/async/mapSeries.js +44 -0
  671. package/node_modules/async/mapValues.js +62 -0
  672. package/node_modules/async/mapValuesLimit.js +61 -0
  673. package/node_modules/async/mapValuesSeries.js +37 -0
  674. package/node_modules/async/memoize.js +91 -0
  675. package/node_modules/async/nextTick.js +52 -0
  676. package/node_modules/async/package.json +86 -0
  677. package/node_modules/async/parallel.js +91 -0
  678. package/node_modules/async/parallelLimit.js +41 -0
  679. package/node_modules/async/priorityQueue.js +84 -0
  680. package/node_modules/async/queue.js +167 -0
  681. package/node_modules/async/race.js +67 -0
  682. package/node_modules/async/reduce.js +77 -0
  683. package/node_modules/async/reduceRight.js +41 -0
  684. package/node_modules/async/reflect.js +78 -0
  685. package/node_modules/async/reflectAll.js +93 -0
  686. package/node_modules/async/reject.js +53 -0
  687. package/node_modules/async/rejectLimit.js +45 -0
  688. package/node_modules/async/rejectSeries.js +43 -0
  689. package/node_modules/async/retry.js +159 -0
  690. package/node_modules/async/retryable.js +77 -0
  691. package/node_modules/async/select.js +53 -0
  692. package/node_modules/async/selectLimit.js +45 -0
  693. package/node_modules/async/selectSeries.js +43 -0
  694. package/node_modules/async/seq.js +79 -0
  695. package/node_modules/async/series.js +86 -0
  696. package/node_modules/async/setImmediate.js +45 -0
  697. package/node_modules/async/some.js +56 -0
  698. package/node_modules/async/someLimit.js +47 -0
  699. package/node_modules/async/someSeries.js +46 -0
  700. package/node_modules/async/sortBy.js +88 -0
  701. package/node_modules/async/timeout.js +89 -0
  702. package/node_modules/async/times.js +50 -0
  703. package/node_modules/async/timesLimit.js +43 -0
  704. package/node_modules/async/timesSeries.js +32 -0
  705. package/node_modules/async/transform.js +81 -0
  706. package/node_modules/async/tryEach.js +78 -0
  707. package/node_modules/async/unmemoize.js +25 -0
  708. package/node_modules/async/until.js +61 -0
  709. package/node_modules/async/waterfall.js +105 -0
  710. package/node_modules/async/whilst.js +78 -0
  711. package/node_modules/async/wrapSync.js +118 -0
  712. package/node_modules/bindings/LICENSE.md +22 -0
  713. package/node_modules/bindings/README.md +98 -0
  714. package/node_modules/bindings/bindings.js +221 -0
  715. package/node_modules/bindings/package.json +32 -0
  716. package/node_modules/color/LICENSE +21 -0
  717. package/node_modules/color/README.md +114 -0
  718. package/node_modules/color/index.js +479 -0
  719. package/node_modules/color/package.json +44 -0
  720. package/node_modules/color-convert/CHANGELOG.md +54 -0
  721. package/node_modules/color-convert/LICENSE +21 -0
  722. package/node_modules/color-convert/README.md +68 -0
  723. package/node_modules/color-convert/conversions.js +868 -0
  724. package/node_modules/color-convert/index.js +78 -0
  725. package/node_modules/color-convert/package.json +50 -0
  726. package/node_modules/color-convert/route.js +97 -0
  727. package/node_modules/color-name/.eslintrc.json +43 -0
  728. package/node_modules/color-name/.npmignore +107 -0
  729. package/node_modules/color-name/LICENSE +8 -0
  730. package/node_modules/color-name/README.md +11 -0
  731. package/node_modules/color-name/index.js +152 -0
  732. package/node_modules/color-name/package.json +29 -0
  733. package/node_modules/color-name/test.js +7 -0
  734. package/node_modules/color-string/CHANGELOG.md +18 -0
  735. package/node_modules/color-string/LICENSE +21 -0
  736. package/node_modules/color-string/README.md +58 -0
  737. package/node_modules/color-string/index.js +234 -0
  738. package/node_modules/color-string/package.json +43 -0
  739. package/node_modules/colors/LICENSE +25 -0
  740. package/node_modules/colors/README.md +221 -0
  741. package/node_modules/colors/examples/normal-usage.js +82 -0
  742. package/node_modules/colors/examples/safe-string.js +79 -0
  743. package/node_modules/colors/index.d.ts +136 -0
  744. package/node_modules/colors/lib/colors.js +211 -0
  745. package/node_modules/colors/lib/custom/trap.js +46 -0
  746. package/node_modules/colors/lib/custom/zalgo.js +110 -0
  747. package/node_modules/colors/lib/extendStringPrototype.js +110 -0
  748. package/node_modules/colors/lib/index.js +13 -0
  749. package/node_modules/colors/lib/maps/america.js +10 -0
  750. package/node_modules/colors/lib/maps/rainbow.js +12 -0
  751. package/node_modules/colors/lib/maps/random.js +11 -0
  752. package/node_modules/colors/lib/maps/zebra.js +5 -0
  753. package/node_modules/colors/lib/styles.js +95 -0
  754. package/node_modules/colors/lib/system/has-flag.js +35 -0
  755. package/node_modules/colors/lib/system/supports-colors.js +151 -0
  756. package/node_modules/colors/package.json +49 -0
  757. package/node_modules/colors/safe.d.ts +48 -0
  758. package/node_modules/colors/safe.js +10 -0
  759. package/node_modules/colors/themes/generic-logging.js +12 -0
  760. package/node_modules/colorspace/LICENSE.md +20 -0
  761. package/node_modules/colorspace/README.md +43 -0
  762. package/node_modules/colorspace/index.js +29 -0
  763. package/node_modules/colorspace/package.json +41 -0
  764. package/node_modules/colorspace/test.js +14 -0
  765. package/node_modules/core-util-is/LICENSE +19 -0
  766. package/node_modules/core-util-is/README.md +3 -0
  767. package/node_modules/core-util-is/float.patch +604 -0
  768. package/node_modules/core-util-is/lib/util.js +107 -0
  769. package/node_modules/core-util-is/package.json +36 -0
  770. package/node_modules/core-util-is/test.js +68 -0
  771. package/node_modules/cycle/README.md +49 -0
  772. package/node_modules/cycle/cycle.js +170 -0
  773. package/node_modules/cycle/package.json +16 -0
  774. package/node_modules/enabled/.travis.yml +9 -0
  775. package/node_modules/enabled/LICENSE +20 -0
  776. package/node_modules/enabled/README.md +68 -0
  777. package/node_modules/enabled/index.js +34 -0
  778. package/node_modules/enabled/package.json +37 -0
  779. package/node_modules/enabled/test.js +39 -0
  780. package/node_modules/fast-safe-stringify/.travis.yml +8 -0
  781. package/node_modules/fast-safe-stringify/CHANGELOG.md +17 -0
  782. package/node_modules/fast-safe-stringify/LICENSE +23 -0
  783. package/node_modules/fast-safe-stringify/benchmark.js +137 -0
  784. package/node_modules/fast-safe-stringify/index.d.ts +8 -0
  785. package/node_modules/fast-safe-stringify/index.js +161 -0
  786. package/node_modules/fast-safe-stringify/package.json +50 -0
  787. package/node_modules/fast-safe-stringify/readme.md +154 -0
  788. package/node_modules/fast-safe-stringify/test-stable.js +311 -0
  789. package/node_modules/fast-safe-stringify/test.js +304 -0
  790. package/node_modules/fecha/CHANGELOG.md +67 -0
  791. package/node_modules/fecha/LICENSE +22 -0
  792. package/node_modules/fecha/README.md +320 -0
  793. package/node_modules/fecha/dist/fecha.min.js +2 -0
  794. package/node_modules/fecha/lib/fecha.d.ts +52 -0
  795. package/node_modules/fecha/lib/fecha.js +386 -0
  796. package/node_modules/fecha/lib/fecha.umd.js +401 -0
  797. package/node_modules/fecha/package.json +60 -0
  798. package/node_modules/file-stream-rotator/.nvmrc +1 -0
  799. package/node_modules/file-stream-rotator/.travis.yml +5 -0
  800. package/node_modules/file-stream-rotator/FileStreamRotator.js +543 -0
  801. package/node_modules/file-stream-rotator/README.md +133 -0
  802. package/node_modules/file-stream-rotator/index.js +1 -0
  803. package/node_modules/file-stream-rotator/package.json +34 -0
  804. package/node_modules/file-stream-rotator/test.js +208 -0
  805. package/node_modules/file-stream-rotator/tests/every-minute-test.js +68 -0
  806. package/node_modules/file-stream-rotator/tests/every-second-test.js +66 -0
  807. package/node_modules/file-uri-to-path/.npmignore +1 -0
  808. package/node_modules/file-uri-to-path/.travis.yml +30 -0
  809. package/node_modules/file-uri-to-path/History.md +21 -0
  810. package/node_modules/file-uri-to-path/LICENSE +20 -0
  811. package/node_modules/file-uri-to-path/README.md +74 -0
  812. package/node_modules/file-uri-to-path/index.d.ts +2 -0
  813. package/node_modules/file-uri-to-path/index.js +66 -0
  814. package/node_modules/file-uri-to-path/package.json +36 -0
  815. package/node_modules/file-uri-to-path/test/test.js +24 -0
  816. package/node_modules/file-uri-to-path/test/tests.json +13 -0
  817. package/node_modules/fn.name/.gitattributes +1 -0
  818. package/node_modules/fn.name/.travis.yml +10 -0
  819. package/node_modules/fn.name/LICENSE +22 -0
  820. package/node_modules/fn.name/README.md +42 -0
  821. package/node_modules/fn.name/index.js +42 -0
  822. package/node_modules/fn.name/package.json +41 -0
  823. package/node_modules/fn.name/test.js +73 -0
  824. package/node_modules/glossy/LICENSE +19 -0
  825. package/node_modules/glossy/README.md +129 -0
  826. package/node_modules/glossy/index.js +12 -0
  827. package/node_modules/glossy/lib/glossy/parse.js +520 -0
  828. package/node_modules/glossy/lib/glossy/produce.js +459 -0
  829. package/node_modules/glossy/package.json +47 -0
  830. package/node_modules/glossy/test/decide.js +7 -0
  831. package/node_modules/glossy/test/decode_pri.js +24 -0
  832. package/node_modules/glossy/test/parse_3164.js +104 -0
  833. package/node_modules/glossy/test/parse_5424.js +106 -0
  834. package/node_modules/glossy/test/parse_5848.js +40 -0
  835. package/node_modules/glossy/test/parse_8601.js +14 -0
  836. package/node_modules/glossy/test/parse_rfc3339.js +9 -0
  837. package/node_modules/glossy/test/produce.js +162 -0
  838. package/node_modules/glossy/test/runner.js +40 -0
  839. package/node_modules/glossy/test/structure_data.js +24 -0
  840. package/node_modules/inherits/LICENSE +16 -0
  841. package/node_modules/inherits/README.md +42 -0
  842. package/node_modules/inherits/inherits.js +9 -0
  843. package/node_modules/inherits/inherits_browser.js +27 -0
  844. package/node_modules/inherits/package.json +33 -0
  845. package/node_modules/is-arrayish/LICENSE +21 -0
  846. package/node_modules/is-arrayish/README.md +16 -0
  847. package/node_modules/is-arrayish/index.js +9 -0
  848. package/node_modules/is-arrayish/package.json +49 -0
  849. package/node_modules/is-arrayish/yarn-error.log +1443 -0
  850. package/node_modules/is-stream/index.d.ts +80 -0
  851. package/node_modules/is-stream/index.js +29 -0
  852. package/node_modules/is-stream/license +9 -0
  853. package/node_modules/is-stream/package.json +45 -0
  854. package/node_modules/is-stream/readme.md +57 -0
  855. package/node_modules/isarray/.npmignore +1 -0
  856. package/node_modules/isarray/.travis.yml +4 -0
  857. package/node_modules/isarray/Makefile +6 -0
  858. package/node_modules/isarray/README.md +60 -0
  859. package/node_modules/isarray/component.json +19 -0
  860. package/node_modules/isarray/index.js +5 -0
  861. package/node_modules/isarray/package.json +49 -0
  862. package/node_modules/isarray/test.js +20 -0
  863. package/node_modules/kuler/.travis.yml +5 -0
  864. package/node_modules/kuler/LICENSE +7 -0
  865. package/node_modules/kuler/README.md +40 -0
  866. package/node_modules/kuler/index.js +118 -0
  867. package/node_modules/kuler/package.json +38 -0
  868. package/node_modules/kuler/test.js +23 -0
  869. package/node_modules/logform/.babelrc +3 -0
  870. package/node_modules/logform/.eslintrc +7 -0
  871. package/node_modules/logform/.gitattributes +1 -0
  872. package/node_modules/logform/.travis.yml +17 -0
  873. package/node_modules/logform/CHANGELOG.md +232 -0
  874. package/node_modules/logform/LICENSE +21 -0
  875. package/node_modules/logform/README.md +655 -0
  876. package/node_modules/logform/align.js +14 -0
  877. package/node_modules/logform/browser.js +36 -0
  878. package/node_modules/logform/cli.js +52 -0
  879. package/node_modules/logform/colorize.js +122 -0
  880. package/node_modules/logform/combine.js +66 -0
  881. package/node_modules/logform/dist/align.js +15 -0
  882. package/node_modules/logform/dist/browser.js +66 -0
  883. package/node_modules/logform/dist/cli.js +73 -0
  884. package/node_modules/logform/dist/colorize.js +144 -0
  885. package/node_modules/logform/dist/combine.js +71 -0
  886. package/node_modules/logform/dist/errors.js +43 -0
  887. package/node_modules/logform/dist/format.js +87 -0
  888. package/node_modules/logform/dist/index.js +54 -0
  889. package/node_modules/logform/dist/json.js +33 -0
  890. package/node_modules/logform/dist/label.js +20 -0
  891. package/node_modules/logform/dist/levels.js +14 -0
  892. package/node_modules/logform/dist/logstash.js +34 -0
  893. package/node_modules/logform/dist/metadata.js +64 -0
  894. package/node_modules/logform/dist/ms.js +21 -0
  895. package/node_modules/logform/dist/pad-levels.js +127 -0
  896. package/node_modules/logform/dist/pretty-print.js +34 -0
  897. package/node_modules/logform/dist/printf.js +41 -0
  898. package/node_modules/logform/dist/simple.js +37 -0
  899. package/node_modules/logform/dist/splat.js +159 -0
  900. package/node_modules/logform/dist/timestamp.js +32 -0
  901. package/node_modules/logform/dist/uncolorize.js +31 -0
  902. package/node_modules/logform/errors.js +39 -0
  903. package/node_modules/logform/examples/combine.js +14 -0
  904. package/node_modules/logform/examples/filter.js +30 -0
  905. package/node_modules/logform/examples/invalid.js +6 -0
  906. package/node_modules/logform/examples/metadata.js +78 -0
  907. package/node_modules/logform/examples/padLevels.js +39 -0
  908. package/node_modules/logform/examples/volume.js +25 -0
  909. package/node_modules/logform/format.js +52 -0
  910. package/node_modules/logform/index.d.ts +161 -0
  911. package/node_modules/logform/index.js +53 -0
  912. package/node_modules/logform/json.js +30 -0
  913. package/node_modules/logform/label.js +19 -0
  914. package/node_modules/logform/levels.js +12 -0
  915. package/node_modules/logform/logstash.js +29 -0
  916. package/node_modules/logform/metadata.js +61 -0
  917. package/node_modules/logform/ms.js +18 -0
  918. package/node_modules/logform/package.json +52 -0
  919. package/node_modules/logform/pad-levels.js +83 -0
  920. package/node_modules/logform/pretty-print.js +29 -0
  921. package/node_modules/logform/printf.js +26 -0
  922. package/node_modules/logform/simple.js +33 -0
  923. package/node_modules/logform/splat.js +132 -0
  924. package/node_modules/logform/timestamp.js +30 -0
  925. package/node_modules/logform/tsconfig.json +22 -0
  926. package/node_modules/logform/uncolorize.js +27 -0
  927. package/node_modules/moment/CHANGELOG.md +970 -0
  928. package/node_modules/moment/LICENSE +22 -0
  929. package/node_modules/moment/README.md +55 -0
  930. package/node_modules/moment/dist/locale/af.js +71 -0
  931. package/node_modules/moment/dist/locale/ar-dz.js +156 -0
  932. package/node_modules/moment/dist/locale/ar-kw.js +54 -0
  933. package/node_modules/moment/dist/locale/ar-ly.js +171 -0
  934. package/node_modules/moment/dist/locale/ar-ma.js +55 -0
  935. package/node_modules/moment/dist/locale/ar-sa.js +104 -0
  936. package/node_modules/moment/dist/locale/ar-tn.js +54 -0
  937. package/node_modules/moment/dist/locale/ar.js +189 -0
  938. package/node_modules/moment/dist/locale/az.js +101 -0
  939. package/node_modules/moment/dist/locale/be.js +141 -0
  940. package/node_modules/moment/dist/locale/bg.js +87 -0
  941. package/node_modules/moment/dist/locale/bm.js +52 -0
  942. package/node_modules/moment/dist/locale/bn-bd.js +128 -0
  943. package/node_modules/moment/dist/locale/bn.js +118 -0
  944. package/node_modules/moment/dist/locale/bo.js +122 -0
  945. package/node_modules/moment/dist/locale/br.js +165 -0
  946. package/node_modules/moment/dist/locale/bs.js +149 -0
  947. package/node_modules/moment/dist/locale/ca.js +97 -0
  948. package/node_modules/moment/dist/locale/cs.js +171 -0
  949. package/node_modules/moment/dist/locale/cv.js +62 -0
  950. package/node_modules/moment/dist/locale/cy.js +97 -0
  951. package/node_modules/moment/dist/locale/da.js +53 -0
  952. package/node_modules/moment/dist/locale/de-at.js +79 -0
  953. package/node_modules/moment/dist/locale/de-ch.js +78 -0
  954. package/node_modules/moment/dist/locale/de.js +78 -0
  955. package/node_modules/moment/dist/locale/dv.js +90 -0
  956. package/node_modules/moment/dist/locale/el.js +104 -0
  957. package/node_modules/moment/dist/locale/en-au.js +68 -0
  958. package/node_modules/moment/dist/locale/en-ca.js +64 -0
  959. package/node_modules/moment/dist/locale/en-gb.js +68 -0
  960. package/node_modules/moment/dist/locale/en-ie.js +68 -0
  961. package/node_modules/moment/dist/locale/en-il.js +64 -0
  962. package/node_modules/moment/dist/locale/en-in.js +68 -0
  963. package/node_modules/moment/dist/locale/en-nz.js +68 -0
  964. package/node_modules/moment/dist/locale/en-sg.js +68 -0
  965. package/node_modules/moment/dist/locale/eo.js +68 -0
  966. package/node_modules/moment/dist/locale/es-do.js +104 -0
  967. package/node_modules/moment/dist/locale/es-mx.js +106 -0
  968. package/node_modules/moment/dist/locale/es-us.js +106 -0
  969. package/node_modules/moment/dist/locale/es.js +106 -0
  970. package/node_modules/moment/dist/locale/et.js +78 -0
  971. package/node_modules/moment/dist/locale/eu.js +63 -0
  972. package/node_modules/moment/dist/locale/fa.js +110 -0
  973. package/node_modules/moment/dist/locale/fi.js +121 -0
  974. package/node_modules/moment/dist/locale/fil.js +58 -0
  975. package/node_modules/moment/dist/locale/fo.js +56 -0
  976. package/node_modules/moment/dist/locale/fr-ca.js +69 -0
  977. package/node_modules/moment/dist/locale/fr-ch.js +73 -0
  978. package/node_modules/moment/dist/locale/fr.js +104 -0
  979. package/node_modules/moment/dist/locale/fy.js +77 -0
  980. package/node_modules/moment/dist/locale/ga.js +95 -0
  981. package/node_modules/moment/dist/locale/gd.js +95 -0
  982. package/node_modules/moment/dist/locale/gl.js +74 -0
  983. package/node_modules/moment/dist/locale/gom-deva.js +124 -0
  984. package/node_modules/moment/dist/locale/gom-latn.js +124 -0
  985. package/node_modules/moment/dist/locale/gu.js +121 -0
  986. package/node_modules/moment/dist/locale/he.js +94 -0
  987. package/node_modules/moment/dist/locale/hi.js +164 -0
  988. package/node_modules/moment/dist/locale/hr.js +154 -0
  989. package/node_modules/moment/dist/locale/hu.js +118 -0
  990. package/node_modules/moment/dist/locale/hy-am.js +92 -0
  991. package/node_modules/moment/dist/locale/id.js +76 -0
  992. package/node_modules/moment/dist/locale/is.js +139 -0
  993. package/node_modules/moment/dist/locale/it-ch.js +64 -0
  994. package/node_modules/moment/dist/locale/it.js +106 -0
  995. package/node_modules/moment/dist/locale/ja.js +148 -0
  996. package/node_modules/moment/dist/locale/jv.js +76 -0
  997. package/node_modules/moment/dist/locale/ka.js +92 -0
  998. package/node_modules/moment/dist/locale/kk.js +82 -0
  999. package/node_modules/moment/dist/locale/km.js +102 -0
  1000. package/node_modules/moment/dist/locale/kn.js +123 -0
  1001. package/node_modules/moment/dist/locale/ko.js +75 -0
  1002. package/node_modules/moment/dist/locale/ku.js +118 -0
  1003. package/node_modules/moment/dist/locale/ky.js +84 -0
  1004. package/node_modules/moment/dist/locale/lb.js +135 -0
  1005. package/node_modules/moment/dist/locale/lo.js +65 -0
  1006. package/node_modules/moment/dist/locale/lt.js +123 -0
  1007. package/node_modules/moment/dist/locale/lv.js +93 -0
  1008. package/node_modules/moment/dist/locale/me.js +118 -0
  1009. package/node_modules/moment/dist/locale/mi.js +59 -0
  1010. package/node_modules/moment/dist/locale/mk.js +85 -0
  1011. package/node_modules/moment/dist/locale/ml.js +80 -0
  1012. package/node_modules/moment/dist/locale/mn.js +99 -0
  1013. package/node_modules/moment/dist/locale/mr.js +202 -0
  1014. package/node_modules/moment/dist/locale/ms-my.js +76 -0
  1015. package/node_modules/moment/dist/locale/ms.js +75 -0
  1016. package/node_modules/moment/dist/locale/mt.js +55 -0
  1017. package/node_modules/moment/dist/locale/my.js +91 -0
  1018. package/node_modules/moment/dist/locale/nb.js +61 -0
  1019. package/node_modules/moment/dist/locale/ne.js +120 -0
  1020. package/node_modules/moment/dist/locale/nl-be.js +102 -0
  1021. package/node_modules/moment/dist/locale/nl.js +104 -0
  1022. package/node_modules/moment/dist/locale/nn.js +60 -0
  1023. package/node_modules/moment/dist/locale/oc-lnc.js +83 -0
  1024. package/node_modules/moment/dist/locale/pa-in.js +121 -0
  1025. package/node_modules/moment/dist/locale/pl.js +139 -0
  1026. package/node_modules/moment/dist/locale/pt-br.js +57 -0
  1027. package/node_modules/moment/dist/locale/pt.js +62 -0
  1028. package/node_modules/moment/dist/locale/ro.js +75 -0
  1029. package/node_modules/moment/dist/locale/ru.js +206 -0
  1030. package/node_modules/moment/dist/locale/sd.js +81 -0
  1031. package/node_modules/moment/dist/locale/se.js +57 -0
  1032. package/node_modules/moment/dist/locale/si.js +68 -0
  1033. package/node_modules/moment/dist/locale/sk.js +144 -0
  1034. package/node_modules/moment/dist/locale/sl.js +170 -0
  1035. package/node_modules/moment/dist/locale/sq.js +65 -0
  1036. package/node_modules/moment/dist/locale/sr-cyrl.js +116 -0
  1037. package/node_modules/moment/dist/locale/sr.js +118 -0
  1038. package/node_modules/moment/dist/locale/ss.js +83 -0
  1039. package/node_modules/moment/dist/locale/sv.js +68 -0
  1040. package/node_modules/moment/dist/locale/sw.js +54 -0
  1041. package/node_modules/moment/dist/locale/ta.js +129 -0
  1042. package/node_modules/moment/dist/locale/te.js +86 -0
  1043. package/node_modules/moment/dist/locale/tet.js +68 -0
  1044. package/node_modules/moment/dist/locale/tg.js +116 -0
  1045. package/node_modules/moment/dist/locale/th.js +64 -0
  1046. package/node_modules/moment/dist/locale/tk.js +91 -0
  1047. package/node_modules/moment/dist/locale/tl-ph.js +57 -0
  1048. package/node_modules/moment/dist/locale/tlh.js +125 -0
  1049. package/node_modules/moment/dist/locale/tr.js +106 -0
  1050. package/node_modules/moment/dist/locale/tzl.js +89 -0
  1051. package/node_modules/moment/dist/locale/tzm-latn.js +53 -0
  1052. package/node_modules/moment/dist/locale/tzm.js +53 -0
  1053. package/node_modules/moment/dist/locale/ug-cn.js +110 -0
  1054. package/node_modules/moment/dist/locale/uk.js +163 -0
  1055. package/node_modules/moment/dist/locale/ur.js +82 -0
  1056. package/node_modules/moment/dist/locale/uz-latn.js +53 -0
  1057. package/node_modules/moment/dist/locale/uz.js +51 -0
  1058. package/node_modules/moment/dist/locale/vi.js +79 -0
  1059. package/node_modules/moment/dist/locale/x-pseudo.js +71 -0
  1060. package/node_modules/moment/dist/locale/yo.js +53 -0
  1061. package/node_modules/moment/dist/locale/zh-cn.js +120 -0
  1062. package/node_modules/moment/dist/locale/zh-hk.js +101 -0
  1063. package/node_modules/moment/dist/locale/zh-mo.js +100 -0
  1064. package/node_modules/moment/dist/locale/zh-tw.js +99 -0
  1065. package/node_modules/moment/dist/moment.js +5662 -0
  1066. package/node_modules/moment/ender.js +1 -0
  1067. package/node_modules/moment/locale/af.js +82 -0
  1068. package/node_modules/moment/locale/ar-dz.js +167 -0
  1069. package/node_modules/moment/locale/ar-kw.js +65 -0
  1070. package/node_modules/moment/locale/ar-ly.js +182 -0
  1071. package/node_modules/moment/locale/ar-ma.js +66 -0
  1072. package/node_modules/moment/locale/ar-sa.js +115 -0
  1073. package/node_modules/moment/locale/ar-tn.js +65 -0
  1074. package/node_modules/moment/locale/ar.js +200 -0
  1075. package/node_modules/moment/locale/az.js +112 -0
  1076. package/node_modules/moment/locale/be.js +152 -0
  1077. package/node_modules/moment/locale/bg.js +98 -0
  1078. package/node_modules/moment/locale/bm.js +62 -0
  1079. package/node_modules/moment/locale/bn-bd.js +139 -0
  1080. package/node_modules/moment/locale/bn.js +129 -0
  1081. package/node_modules/moment/locale/bo.js +133 -0
  1082. package/node_modules/moment/locale/br.js +176 -0
  1083. package/node_modules/moment/locale/bs.js +160 -0
  1084. package/node_modules/moment/locale/ca.js +108 -0
  1085. package/node_modules/moment/locale/cs.js +182 -0
  1086. package/node_modules/moment/locale/cv.js +73 -0
  1087. package/node_modules/moment/locale/cy.js +108 -0
  1088. package/node_modules/moment/locale/da.js +64 -0
  1089. package/node_modules/moment/locale/de-at.js +90 -0
  1090. package/node_modules/moment/locale/de-ch.js +87 -0
  1091. package/node_modules/moment/locale/de.js +89 -0
  1092. package/node_modules/moment/locale/dv.js +101 -0
  1093. package/node_modules/moment/locale/el.js +115 -0
  1094. package/node_modules/moment/locale/en-au.js +79 -0
  1095. package/node_modules/moment/locale/en-ca.js +75 -0
  1096. package/node_modules/moment/locale/en-gb.js +79 -0
  1097. package/node_modules/moment/locale/en-ie.js +79 -0
  1098. package/node_modules/moment/locale/en-il.js +75 -0
  1099. package/node_modules/moment/locale/en-in.js +79 -0
  1100. package/node_modules/moment/locale/en-nz.js +79 -0
  1101. package/node_modules/moment/locale/en-sg.js +79 -0
  1102. package/node_modules/moment/locale/eo.js +79 -0
  1103. package/node_modules/moment/locale/es-do.js +115 -0
  1104. package/node_modules/moment/locale/es-mx.js +117 -0
  1105. package/node_modules/moment/locale/es-us.js +117 -0
  1106. package/node_modules/moment/locale/es.js +117 -0
  1107. package/node_modules/moment/locale/et.js +89 -0
  1108. package/node_modules/moment/locale/eu.js +74 -0
  1109. package/node_modules/moment/locale/fa.js +121 -0
  1110. package/node_modules/moment/locale/fi.js +132 -0
  1111. package/node_modules/moment/locale/fil.js +69 -0
  1112. package/node_modules/moment/locale/fo.js +67 -0
  1113. package/node_modules/moment/locale/fr-ca.js +80 -0
  1114. package/node_modules/moment/locale/fr-ch.js +84 -0
  1115. package/node_modules/moment/locale/fr.js +115 -0
  1116. package/node_modules/moment/locale/fy.js +88 -0
  1117. package/node_modules/moment/locale/ga.js +106 -0
  1118. package/node_modules/moment/locale/gd.js +106 -0
  1119. package/node_modules/moment/locale/gl.js +85 -0
  1120. package/node_modules/moment/locale/gom-deva.js +135 -0
  1121. package/node_modules/moment/locale/gom-latn.js +135 -0
  1122. package/node_modules/moment/locale/gu.js +132 -0
  1123. package/node_modules/moment/locale/he.js +105 -0
  1124. package/node_modules/moment/locale/hi.js +175 -0
  1125. package/node_modules/moment/locale/hr.js +165 -0
  1126. package/node_modules/moment/locale/hu.js +129 -0
  1127. package/node_modules/moment/locale/hy-am.js +103 -0
  1128. package/node_modules/moment/locale/id.js +87 -0
  1129. package/node_modules/moment/locale/is.js +150 -0
  1130. package/node_modules/moment/locale/it-ch.js +75 -0
  1131. package/node_modules/moment/locale/it.js +117 -0
  1132. package/node_modules/moment/locale/ja.js +159 -0
  1133. package/node_modules/moment/locale/jv.js +87 -0
  1134. package/node_modules/moment/locale/ka.js +103 -0
  1135. package/node_modules/moment/locale/kk.js +93 -0
  1136. package/node_modules/moment/locale/km.js +113 -0
  1137. package/node_modules/moment/locale/kn.js +134 -0
  1138. package/node_modules/moment/locale/ko.js +86 -0
  1139. package/node_modules/moment/locale/ku.js +129 -0
  1140. package/node_modules/moment/locale/ky.js +95 -0
  1141. package/node_modules/moment/locale/lb.js +146 -0
  1142. package/node_modules/moment/locale/lo.js +76 -0
  1143. package/node_modules/moment/locale/lt.js +134 -0
  1144. package/node_modules/moment/locale/lv.js +104 -0
  1145. package/node_modules/moment/locale/me.js +129 -0
  1146. package/node_modules/moment/locale/mi.js +70 -0
  1147. package/node_modules/moment/locale/mk.js +97 -0
  1148. package/node_modules/moment/locale/ml.js +91 -0
  1149. package/node_modules/moment/locale/mn.js +110 -0
  1150. package/node_modules/moment/locale/mr.js +213 -0
  1151. package/node_modules/moment/locale/ms-my.js +87 -0
  1152. package/node_modules/moment/locale/ms.js +86 -0
  1153. package/node_modules/moment/locale/mt.js +66 -0
  1154. package/node_modules/moment/locale/my.js +102 -0
  1155. package/node_modules/moment/locale/nb.js +72 -0
  1156. package/node_modules/moment/locale/ne.js +131 -0
  1157. package/node_modules/moment/locale/nl-be.js +113 -0
  1158. package/node_modules/moment/locale/nl.js +115 -0
  1159. package/node_modules/moment/locale/nn.js +71 -0
  1160. package/node_modules/moment/locale/oc-lnc.js +94 -0
  1161. package/node_modules/moment/locale/pa-in.js +132 -0
  1162. package/node_modules/moment/locale/pl.js +150 -0
  1163. package/node_modules/moment/locale/pt-br.js +68 -0
  1164. package/node_modules/moment/locale/pt.js +73 -0
  1165. package/node_modules/moment/locale/ro.js +86 -0
  1166. package/node_modules/moment/locale/ru.js +217 -0
  1167. package/node_modules/moment/locale/sd.js +92 -0
  1168. package/node_modules/moment/locale/se.js +68 -0
  1169. package/node_modules/moment/locale/si.js +79 -0
  1170. package/node_modules/moment/locale/sk.js +155 -0
  1171. package/node_modules/moment/locale/sl.js +181 -0
  1172. package/node_modules/moment/locale/sq.js +76 -0
  1173. package/node_modules/moment/locale/sr-cyrl.js +127 -0
  1174. package/node_modules/moment/locale/sr.js +129 -0
  1175. package/node_modules/moment/locale/ss.js +94 -0
  1176. package/node_modules/moment/locale/sv.js +79 -0
  1177. package/node_modules/moment/locale/sw.js +65 -0
  1178. package/node_modules/moment/locale/ta.js +140 -0
  1179. package/node_modules/moment/locale/te.js +97 -0
  1180. package/node_modules/moment/locale/tet.js +79 -0
  1181. package/node_modules/moment/locale/tg.js +127 -0
  1182. package/node_modules/moment/locale/th.js +75 -0
  1183. package/node_modules/moment/locale/tk.js +102 -0
  1184. package/node_modules/moment/locale/tl-ph.js +68 -0
  1185. package/node_modules/moment/locale/tlh.js +136 -0
  1186. package/node_modules/moment/locale/tr.js +117 -0
  1187. package/node_modules/moment/locale/tzl.js +100 -0
  1188. package/node_modules/moment/locale/tzm-latn.js +64 -0
  1189. package/node_modules/moment/locale/tzm.js +64 -0
  1190. package/node_modules/moment/locale/ug-cn.js +121 -0
  1191. package/node_modules/moment/locale/uk.js +174 -0
  1192. package/node_modules/moment/locale/ur.js +93 -0
  1193. package/node_modules/moment/locale/uz-latn.js +64 -0
  1194. package/node_modules/moment/locale/uz.js +62 -0
  1195. package/node_modules/moment/locale/vi.js +90 -0
  1196. package/node_modules/moment/locale/x-pseudo.js +82 -0
  1197. package/node_modules/moment/locale/yo.js +64 -0
  1198. package/node_modules/moment/locale/zh-cn.js +131 -0
  1199. package/node_modules/moment/locale/zh-hk.js +112 -0
  1200. package/node_modules/moment/locale/zh-mo.js +111 -0
  1201. package/node_modules/moment/locale/zh-tw.js +110 -0
  1202. package/node_modules/moment/min/locales.js +12429 -0
  1203. package/node_modules/moment/min/locales.min.js +2 -0
  1204. package/node_modules/moment/min/locales.min.js.map +1 -0
  1205. package/node_modules/moment/min/moment-with-locales.js +18083 -0
  1206. package/node_modules/moment/min/moment-with-locales.min.js +2 -0
  1207. package/node_modules/moment/min/moment-with-locales.min.js.map +1 -0
  1208. package/node_modules/moment/min/moment.min.js +2 -0
  1209. package/node_modules/moment/min/moment.min.js.map +1 -0
  1210. package/node_modules/moment/moment.d.ts +796 -0
  1211. package/node_modules/moment/moment.js +5670 -0
  1212. package/node_modules/moment/package.js +11 -0
  1213. package/node_modules/moment/package.json +116 -0
  1214. package/node_modules/moment/src/lib/create/check-overflow.js +57 -0
  1215. package/node_modules/moment/src/lib/create/date-from-array.js +35 -0
  1216. package/node_modules/moment/src/lib/create/from-anything.js +117 -0
  1217. package/node_modules/moment/src/lib/create/from-array.js +187 -0
  1218. package/node_modules/moment/src/lib/create/from-object.js +20 -0
  1219. package/node_modules/moment/src/lib/create/from-string-and-array.js +66 -0
  1220. package/node_modules/moment/src/lib/create/from-string-and-format.js +134 -0
  1221. package/node_modules/moment/src/lib/create/from-string.js +254 -0
  1222. package/node_modules/moment/src/lib/create/local.js +5 -0
  1223. package/node_modules/moment/src/lib/create/parsing-flags.js +28 -0
  1224. package/node_modules/moment/src/lib/create/utc.js +5 -0
  1225. package/node_modules/moment/src/lib/create/valid.js +51 -0
  1226. package/node_modules/moment/src/lib/duration/abs.js +18 -0
  1227. package/node_modules/moment/src/lib/duration/add-subtract.js +21 -0
  1228. package/node_modules/moment/src/lib/duration/as.js +88 -0
  1229. package/node_modules/moment/src/lib/duration/bubble.js +68 -0
  1230. package/node_modules/moment/src/lib/duration/clone.js +5 -0
  1231. package/node_modules/moment/src/lib/duration/constructor.js +42 -0
  1232. package/node_modules/moment/src/lib/duration/create.js +132 -0
  1233. package/node_modules/moment/src/lib/duration/duration.js +16 -0
  1234. package/node_modules/moment/src/lib/duration/get.js +27 -0
  1235. package/node_modules/moment/src/lib/duration/humanize.js +114 -0
  1236. package/node_modules/moment/src/lib/duration/iso-string.js +68 -0
  1237. package/node_modules/moment/src/lib/duration/prototype.js +78 -0
  1238. package/node_modules/moment/src/lib/duration/valid.js +54 -0
  1239. package/node_modules/moment/src/lib/format/format.js +103 -0
  1240. package/node_modules/moment/src/lib/locale/base-config.js +41 -0
  1241. package/node_modules/moment/src/lib/locale/calendar.js +15 -0
  1242. package/node_modules/moment/src/lib/locale/constructor.js +5 -0
  1243. package/node_modules/moment/src/lib/locale/en.js +39 -0
  1244. package/node_modules/moment/src/lib/locale/formats.js +36 -0
  1245. package/node_modules/moment/src/lib/locale/invalid.js +5 -0
  1246. package/node_modules/moment/src/lib/locale/lists.js +93 -0
  1247. package/node_modules/moment/src/lib/locale/locale.js +45 -0
  1248. package/node_modules/moment/src/lib/locale/locales.js +242 -0
  1249. package/node_modules/moment/src/lib/locale/ordinal.js +8 -0
  1250. package/node_modules/moment/src/lib/locale/pre-post-format.js +3 -0
  1251. package/node_modules/moment/src/lib/locale/prototype.js +88 -0
  1252. package/node_modules/moment/src/lib/locale/relative.js +32 -0
  1253. package/node_modules/moment/src/lib/locale/set.js +56 -0
  1254. package/node_modules/moment/src/lib/moment/add-subtract.js +61 -0
  1255. package/node_modules/moment/src/lib/moment/calendar.js +53 -0
  1256. package/node_modules/moment/src/lib/moment/clone.js +5 -0
  1257. package/node_modules/moment/src/lib/moment/compare.js +72 -0
  1258. package/node_modules/moment/src/lib/moment/constructor.js +77 -0
  1259. package/node_modules/moment/src/lib/moment/creation-data.js +9 -0
  1260. package/node_modules/moment/src/lib/moment/diff.js +79 -0
  1261. package/node_modules/moment/src/lib/moment/format.js +78 -0
  1262. package/node_modules/moment/src/lib/moment/from.js +20 -0
  1263. package/node_modules/moment/src/lib/moment/get-set.js +72 -0
  1264. package/node_modules/moment/src/lib/moment/locale.js +34 -0
  1265. package/node_modules/moment/src/lib/moment/min-max.js +62 -0
  1266. package/node_modules/moment/src/lib/moment/moment.js +28 -0
  1267. package/node_modules/moment/src/lib/moment/now.js +3 -0
  1268. package/node_modules/moment/src/lib/moment/prototype.js +197 -0
  1269. package/node_modules/moment/src/lib/moment/start-end-of.js +164 -0
  1270. package/node_modules/moment/src/lib/moment/to-type.js +42 -0
  1271. package/node_modules/moment/src/lib/moment/to.js +20 -0
  1272. package/node_modules/moment/src/lib/moment/valid.js +15 -0
  1273. package/node_modules/moment/src/lib/parse/regex.js +82 -0
  1274. package/node_modules/moment/src/lib/parse/token.js +34 -0
  1275. package/node_modules/moment/src/lib/units/aliases.js +31 -0
  1276. package/node_modules/moment/src/lib/units/constants.js +9 -0
  1277. package/node_modules/moment/src/lib/units/day-of-month.js +39 -0
  1278. package/node_modules/moment/src/lib/units/day-of-week.js +444 -0
  1279. package/node_modules/moment/src/lib/units/day-of-year.js +37 -0
  1280. package/node_modules/moment/src/lib/units/era.js +289 -0
  1281. package/node_modules/moment/src/lib/units/hour.js +159 -0
  1282. package/node_modules/moment/src/lib/units/millisecond.js +76 -0
  1283. package/node_modules/moment/src/lib/units/minute.js +29 -0
  1284. package/node_modules/moment/src/lib/units/month.js +349 -0
  1285. package/node_modules/moment/src/lib/units/offset.js +249 -0
  1286. package/node_modules/moment/src/lib/units/priorities.js +21 -0
  1287. package/node_modules/moment/src/lib/units/quarter.js +34 -0
  1288. package/node_modules/moment/src/lib/units/second.js +29 -0
  1289. package/node_modules/moment/src/lib/units/timestamp.js +20 -0
  1290. package/node_modules/moment/src/lib/units/timezone.js +16 -0
  1291. package/node_modules/moment/src/lib/units/units.js +20 -0
  1292. package/node_modules/moment/src/lib/units/week-calendar-utils.js +66 -0
  1293. package/node_modules/moment/src/lib/units/week-year.js +140 -0
  1294. package/node_modules/moment/src/lib/units/week.js +71 -0
  1295. package/node_modules/moment/src/lib/units/year.js +85 -0
  1296. package/node_modules/moment/src/lib/utils/abs-ceil.js +7 -0
  1297. package/node_modules/moment/src/lib/utils/abs-floor.js +8 -0
  1298. package/node_modules/moment/src/lib/utils/abs-round.js +7 -0
  1299. package/node_modules/moment/src/lib/utils/compare-arrays.js +18 -0
  1300. package/node_modules/moment/src/lib/utils/defaults.js +10 -0
  1301. package/node_modules/moment/src/lib/utils/deprecate.js +68 -0
  1302. package/node_modules/moment/src/lib/utils/extend.js +19 -0
  1303. package/node_modules/moment/src/lib/utils/has-own-prop.js +3 -0
  1304. package/node_modules/moment/src/lib/utils/hooks.js +13 -0
  1305. package/node_modules/moment/src/lib/utils/index-of.js +18 -0
  1306. package/node_modules/moment/src/lib/utils/is-array.js +6 -0
  1307. package/node_modules/moment/src/lib/utils/is-calendar-spec.js +25 -0
  1308. package/node_modules/moment/src/lib/utils/is-date.js +6 -0
  1309. package/node_modules/moment/src/lib/utils/is-function.js +6 -0
  1310. package/node_modules/moment/src/lib/utils/is-leap-year.js +3 -0
  1311. package/node_modules/moment/src/lib/utils/is-moment-input.js +74 -0
  1312. package/node_modules/moment/src/lib/utils/is-number.js +6 -0
  1313. package/node_modules/moment/src/lib/utils/is-object-empty.js +15 -0
  1314. package/node_modules/moment/src/lib/utils/is-object.js +8 -0
  1315. package/node_modules/moment/src/lib/utils/is-string.js +3 -0
  1316. package/node_modules/moment/src/lib/utils/is-undefined.js +3 -0
  1317. package/node_modules/moment/src/lib/utils/keys.js +20 -0
  1318. package/node_modules/moment/src/lib/utils/map.js +8 -0
  1319. package/node_modules/moment/src/lib/utils/mod.js +3 -0
  1320. package/node_modules/moment/src/lib/utils/some.js +20 -0
  1321. package/node_modules/moment/src/lib/utils/to-int.js +12 -0
  1322. package/node_modules/moment/src/lib/utils/zero-fill.js +10 -0
  1323. package/node_modules/moment/src/locale/af.js +71 -0
  1324. package/node_modules/moment/src/locale/ar-dz.js +156 -0
  1325. package/node_modules/moment/src/locale/ar-kw.js +54 -0
  1326. package/node_modules/moment/src/locale/ar-ly.js +171 -0
  1327. package/node_modules/moment/src/locale/ar-ma.js +55 -0
  1328. package/node_modules/moment/src/locale/ar-sa.js +104 -0
  1329. package/node_modules/moment/src/locale/ar-tn.js +54 -0
  1330. package/node_modules/moment/src/locale/ar.js +189 -0
  1331. package/node_modules/moment/src/locale/az.js +101 -0
  1332. package/node_modules/moment/src/locale/be.js +141 -0
  1333. package/node_modules/moment/src/locale/bg.js +87 -0
  1334. package/node_modules/moment/src/locale/bm.js +52 -0
  1335. package/node_modules/moment/src/locale/bn-bd.js +128 -0
  1336. package/node_modules/moment/src/locale/bn.js +118 -0
  1337. package/node_modules/moment/src/locale/bo.js +122 -0
  1338. package/node_modules/moment/src/locale/br.js +165 -0
  1339. package/node_modules/moment/src/locale/bs.js +149 -0
  1340. package/node_modules/moment/src/locale/ca.js +97 -0
  1341. package/node_modules/moment/src/locale/cs.js +171 -0
  1342. package/node_modules/moment/src/locale/cv.js +62 -0
  1343. package/node_modules/moment/src/locale/cy.js +97 -0
  1344. package/node_modules/moment/src/locale/da.js +53 -0
  1345. package/node_modules/moment/src/locale/de-at.js +79 -0
  1346. package/node_modules/moment/src/locale/de-ch.js +78 -0
  1347. package/node_modules/moment/src/locale/de.js +78 -0
  1348. package/node_modules/moment/src/locale/dv.js +90 -0
  1349. package/node_modules/moment/src/locale/el.js +104 -0
  1350. package/node_modules/moment/src/locale/en-au.js +68 -0
  1351. package/node_modules/moment/src/locale/en-ca.js +64 -0
  1352. package/node_modules/moment/src/locale/en-gb.js +68 -0
  1353. package/node_modules/moment/src/locale/en-ie.js +68 -0
  1354. package/node_modules/moment/src/locale/en-il.js +64 -0
  1355. package/node_modules/moment/src/locale/en-in.js +68 -0
  1356. package/node_modules/moment/src/locale/en-nz.js +68 -0
  1357. package/node_modules/moment/src/locale/en-sg.js +68 -0
  1358. package/node_modules/moment/src/locale/eo.js +68 -0
  1359. package/node_modules/moment/src/locale/es-do.js +104 -0
  1360. package/node_modules/moment/src/locale/es-mx.js +106 -0
  1361. package/node_modules/moment/src/locale/es-us.js +106 -0
  1362. package/node_modules/moment/src/locale/es.js +106 -0
  1363. package/node_modules/moment/src/locale/et.js +78 -0
  1364. package/node_modules/moment/src/locale/eu.js +63 -0
  1365. package/node_modules/moment/src/locale/fa.js +110 -0
  1366. package/node_modules/moment/src/locale/fi.js +121 -0
  1367. package/node_modules/moment/src/locale/fil.js +58 -0
  1368. package/node_modules/moment/src/locale/fo.js +56 -0
  1369. package/node_modules/moment/src/locale/fr-ca.js +69 -0
  1370. package/node_modules/moment/src/locale/fr-ch.js +73 -0
  1371. package/node_modules/moment/src/locale/fr.js +104 -0
  1372. package/node_modules/moment/src/locale/fy.js +77 -0
  1373. package/node_modules/moment/src/locale/ga.js +95 -0
  1374. package/node_modules/moment/src/locale/gd.js +95 -0
  1375. package/node_modules/moment/src/locale/gl.js +74 -0
  1376. package/node_modules/moment/src/locale/gom-deva.js +124 -0
  1377. package/node_modules/moment/src/locale/gom-latn.js +124 -0
  1378. package/node_modules/moment/src/locale/gu.js +121 -0
  1379. package/node_modules/moment/src/locale/he.js +94 -0
  1380. package/node_modules/moment/src/locale/hi.js +164 -0
  1381. package/node_modules/moment/src/locale/hr.js +154 -0
  1382. package/node_modules/moment/src/locale/hu.js +118 -0
  1383. package/node_modules/moment/src/locale/hy-am.js +92 -0
  1384. package/node_modules/moment/src/locale/id.js +76 -0
  1385. package/node_modules/moment/src/locale/is.js +139 -0
  1386. package/node_modules/moment/src/locale/it-ch.js +64 -0
  1387. package/node_modules/moment/src/locale/it.js +106 -0
  1388. package/node_modules/moment/src/locale/ja.js +148 -0
  1389. package/node_modules/moment/src/locale/jv.js +76 -0
  1390. package/node_modules/moment/src/locale/ka.js +92 -0
  1391. package/node_modules/moment/src/locale/kk.js +82 -0
  1392. package/node_modules/moment/src/locale/km.js +102 -0
  1393. package/node_modules/moment/src/locale/kn.js +123 -0
  1394. package/node_modules/moment/src/locale/ko.js +75 -0
  1395. package/node_modules/moment/src/locale/ku.js +118 -0
  1396. package/node_modules/moment/src/locale/ky.js +84 -0
  1397. package/node_modules/moment/src/locale/lb.js +135 -0
  1398. package/node_modules/moment/src/locale/lo.js +65 -0
  1399. package/node_modules/moment/src/locale/lt.js +123 -0
  1400. package/node_modules/moment/src/locale/lv.js +93 -0
  1401. package/node_modules/moment/src/locale/me.js +118 -0
  1402. package/node_modules/moment/src/locale/mi.js +59 -0
  1403. package/node_modules/moment/src/locale/mk.js +85 -0
  1404. package/node_modules/moment/src/locale/ml.js +80 -0
  1405. package/node_modules/moment/src/locale/mn.js +99 -0
  1406. package/node_modules/moment/src/locale/mr.js +202 -0
  1407. package/node_modules/moment/src/locale/ms-my.js +76 -0
  1408. package/node_modules/moment/src/locale/ms.js +75 -0
  1409. package/node_modules/moment/src/locale/mt.js +55 -0
  1410. package/node_modules/moment/src/locale/my.js +91 -0
  1411. package/node_modules/moment/src/locale/nb.js +61 -0
  1412. package/node_modules/moment/src/locale/ne.js +120 -0
  1413. package/node_modules/moment/src/locale/nl-be.js +102 -0
  1414. package/node_modules/moment/src/locale/nl.js +104 -0
  1415. package/node_modules/moment/src/locale/nn.js +60 -0
  1416. package/node_modules/moment/src/locale/oc-lnc.js +83 -0
  1417. package/node_modules/moment/src/locale/pa-in.js +121 -0
  1418. package/node_modules/moment/src/locale/pl.js +139 -0
  1419. package/node_modules/moment/src/locale/pt-br.js +57 -0
  1420. package/node_modules/moment/src/locale/pt.js +62 -0
  1421. package/node_modules/moment/src/locale/ro.js +75 -0
  1422. package/node_modules/moment/src/locale/ru.js +206 -0
  1423. package/node_modules/moment/src/locale/sd.js +81 -0
  1424. package/node_modules/moment/src/locale/se.js +57 -0
  1425. package/node_modules/moment/src/locale/si.js +68 -0
  1426. package/node_modules/moment/src/locale/sk.js +144 -0
  1427. package/node_modules/moment/src/locale/sl.js +170 -0
  1428. package/node_modules/moment/src/locale/sq.js +65 -0
  1429. package/node_modules/moment/src/locale/sr-cyrl.js +116 -0
  1430. package/node_modules/moment/src/locale/sr.js +118 -0
  1431. package/node_modules/moment/src/locale/ss.js +83 -0
  1432. package/node_modules/moment/src/locale/sv.js +68 -0
  1433. package/node_modules/moment/src/locale/sw.js +54 -0
  1434. package/node_modules/moment/src/locale/ta.js +129 -0
  1435. package/node_modules/moment/src/locale/te.js +86 -0
  1436. package/node_modules/moment/src/locale/tet.js +68 -0
  1437. package/node_modules/moment/src/locale/tg.js +116 -0
  1438. package/node_modules/moment/src/locale/th.js +64 -0
  1439. package/node_modules/moment/src/locale/tk.js +91 -0
  1440. package/node_modules/moment/src/locale/tl-ph.js +57 -0
  1441. package/node_modules/moment/src/locale/tlh.js +125 -0
  1442. package/node_modules/moment/src/locale/tr.js +106 -0
  1443. package/node_modules/moment/src/locale/tzl.js +89 -0
  1444. package/node_modules/moment/src/locale/tzm-latn.js +53 -0
  1445. package/node_modules/moment/src/locale/tzm.js +53 -0
  1446. package/node_modules/moment/src/locale/ug-cn.js +110 -0
  1447. package/node_modules/moment/src/locale/uk.js +163 -0
  1448. package/node_modules/moment/src/locale/ur.js +82 -0
  1449. package/node_modules/moment/src/locale/uz-latn.js +53 -0
  1450. package/node_modules/moment/src/locale/uz.js +51 -0
  1451. package/node_modules/moment/src/locale/vi.js +79 -0
  1452. package/node_modules/moment/src/locale/x-pseudo.js +71 -0
  1453. package/node_modules/moment/src/locale/yo.js +53 -0
  1454. package/node_modules/moment/src/locale/zh-cn.js +120 -0
  1455. package/node_modules/moment/src/locale/zh-hk.js +101 -0
  1456. package/node_modules/moment/src/locale/zh-mo.js +100 -0
  1457. package/node_modules/moment/src/locale/zh-tw.js +99 -0
  1458. package/node_modules/moment/src/moment.js +93 -0
  1459. package/node_modules/moment/ts3.1-typings/moment.d.ts +785 -0
  1460. package/node_modules/ms/index.js +162 -0
  1461. package/node_modules/ms/license.md +21 -0
  1462. package/node_modules/ms/package.json +41 -0
  1463. package/node_modules/ms/readme.md +60 -0
  1464. package/node_modules/nan/CHANGELOG.md +537 -0
  1465. package/node_modules/nan/LICENSE.md +13 -0
  1466. package/node_modules/nan/README.md +455 -0
  1467. package/node_modules/nan/doc/asyncworker.md +146 -0
  1468. package/node_modules/nan/doc/buffers.md +54 -0
  1469. package/node_modules/nan/doc/callback.md +76 -0
  1470. package/node_modules/nan/doc/converters.md +41 -0
  1471. package/node_modules/nan/doc/errors.md +226 -0
  1472. package/node_modules/nan/doc/json.md +62 -0
  1473. package/node_modules/nan/doc/maybe_types.md +583 -0
  1474. package/node_modules/nan/doc/methods.md +664 -0
  1475. package/node_modules/nan/doc/new.md +147 -0
  1476. package/node_modules/nan/doc/node_misc.md +123 -0
  1477. package/node_modules/nan/doc/object_wrappers.md +263 -0
  1478. package/node_modules/nan/doc/persistent.md +296 -0
  1479. package/node_modules/nan/doc/scopes.md +73 -0
  1480. package/node_modules/nan/doc/script.md +38 -0
  1481. package/node_modules/nan/doc/string_bytes.md +62 -0
  1482. package/node_modules/nan/doc/v8_internals.md +199 -0
  1483. package/node_modules/nan/doc/v8_misc.md +85 -0
  1484. package/node_modules/nan/include_dirs.js +1 -0
  1485. package/node_modules/nan/nan.h +2898 -0
  1486. package/node_modules/nan/nan_callbacks.h +88 -0
  1487. package/node_modules/nan/nan_callbacks_12_inl.h +514 -0
  1488. package/node_modules/nan/nan_callbacks_pre_12_inl.h +520 -0
  1489. package/node_modules/nan/nan_converters.h +72 -0
  1490. package/node_modules/nan/nan_converters_43_inl.h +68 -0
  1491. package/node_modules/nan/nan_converters_pre_43_inl.h +42 -0
  1492. package/node_modules/nan/nan_define_own_property_helper.h +29 -0
  1493. package/node_modules/nan/nan_implementation_12_inl.h +430 -0
  1494. package/node_modules/nan/nan_implementation_pre_12_inl.h +263 -0
  1495. package/node_modules/nan/nan_json.h +166 -0
  1496. package/node_modules/nan/nan_maybe_43_inl.h +356 -0
  1497. package/node_modules/nan/nan_maybe_pre_43_inl.h +268 -0
  1498. package/node_modules/nan/nan_new.h +340 -0
  1499. package/node_modules/nan/nan_object_wrap.h +156 -0
  1500. package/node_modules/nan/nan_persistent_12_inl.h +132 -0
  1501. package/node_modules/nan/nan_persistent_pre_12_inl.h +242 -0
  1502. package/node_modules/nan/nan_private.h +73 -0
  1503. package/node_modules/nan/nan_string_bytes.h +305 -0
  1504. package/node_modules/nan/nan_typedarray_contents.h +96 -0
  1505. package/node_modules/nan/nan_weak.h +437 -0
  1506. package/node_modules/nan/package.json +41 -0
  1507. package/node_modules/nan/tools/1to2.js +412 -0
  1508. package/node_modules/nan/tools/README.md +14 -0
  1509. package/node_modules/nan/tools/package.json +19 -0
  1510. package/node_modules/object-hash/.jshintrc +19 -0
  1511. package/node_modules/object-hash/.travis.yml +35 -0
  1512. package/node_modules/object-hash/LICENSE +22 -0
  1513. package/node_modules/object-hash/bower.json +15 -0
  1514. package/node_modules/object-hash/dist/object_hash.js +2 -0
  1515. package/node_modules/object-hash/dist/object_hash.js.map +1 -0
  1516. package/node_modules/object-hash/dist/object_hash_test.js +4737 -0
  1517. package/node_modules/object-hash/gulpfile.js +97 -0
  1518. package/node_modules/object-hash/index.js +441 -0
  1519. package/node_modules/object-hash/karma.conf.js +69 -0
  1520. package/node_modules/object-hash/package.json +55 -0
  1521. package/node_modules/object-hash/readme.markdown +169 -0
  1522. package/node_modules/object-hash/test/blob.js +41 -0
  1523. package/node_modules/object-hash/test/index.js +290 -0
  1524. package/node_modules/object-hash/test/object-classes.js +106 -0
  1525. package/node_modules/object-hash/test/old-crypto.js +60 -0
  1526. package/node_modules/object-hash/test/replacer.js +36 -0
  1527. package/node_modules/object-hash/test/types.js +174 -0
  1528. package/node_modules/object-hash/test/writeToStream.js +27 -0
  1529. package/node_modules/one-time/LICENSE +22 -0
  1530. package/node_modules/one-time/README.md +88 -0
  1531. package/node_modules/one-time/async.js +43 -0
  1532. package/node_modules/one-time/index.js +42 -0
  1533. package/node_modules/one-time/package.json +38 -0
  1534. package/node_modules/process-nextick-args/index.js +45 -0
  1535. package/node_modules/process-nextick-args/license.md +19 -0
  1536. package/node_modules/process-nextick-args/package.json +29 -0
  1537. package/node_modules/process-nextick-args/readme.md +18 -0
  1538. package/node_modules/readable-stream/.travis.yml +34 -0
  1539. package/node_modules/readable-stream/CONTRIBUTING.md +38 -0
  1540. package/node_modules/readable-stream/GOVERNANCE.md +136 -0
  1541. package/node_modules/readable-stream/LICENSE +47 -0
  1542. package/node_modules/readable-stream/README.md +58 -0
  1543. package/node_modules/readable-stream/doc/wg-meetings/2015-01-30.md +60 -0
  1544. package/node_modules/readable-stream/duplex-browser.js +1 -0
  1545. package/node_modules/readable-stream/duplex.js +1 -0
  1546. package/node_modules/readable-stream/lib/_stream_duplex.js +131 -0
  1547. package/node_modules/readable-stream/lib/_stream_passthrough.js +47 -0
  1548. package/node_modules/readable-stream/lib/_stream_readable.js +1019 -0
  1549. package/node_modules/readable-stream/lib/_stream_transform.js +214 -0
  1550. package/node_modules/readable-stream/lib/_stream_writable.js +687 -0
  1551. package/node_modules/readable-stream/lib/internal/streams/BufferList.js +79 -0
  1552. package/node_modules/readable-stream/lib/internal/streams/destroy.js +74 -0
  1553. package/node_modules/readable-stream/lib/internal/streams/stream-browser.js +1 -0
  1554. package/node_modules/readable-stream/lib/internal/streams/stream.js +1 -0
  1555. package/node_modules/readable-stream/package.json +56 -0
  1556. package/node_modules/readable-stream/passthrough.js +1 -0
  1557. package/node_modules/readable-stream/readable-browser.js +7 -0
  1558. package/node_modules/readable-stream/readable.js +19 -0
  1559. package/node_modules/readable-stream/transform.js +1 -0
  1560. package/node_modules/readable-stream/writable-browser.js +1 -0
  1561. package/node_modules/readable-stream/writable.js +8 -0
  1562. package/node_modules/safe-buffer/LICENSE +21 -0
  1563. package/node_modules/safe-buffer/README.md +584 -0
  1564. package/node_modules/safe-buffer/index.d.ts +187 -0
  1565. package/node_modules/safe-buffer/index.js +62 -0
  1566. package/node_modules/safe-buffer/package.json +41 -0
  1567. package/node_modules/simple-swizzle/LICENSE +21 -0
  1568. package/node_modules/simple-swizzle/README.md +39 -0
  1569. package/node_modules/simple-swizzle/index.js +29 -0
  1570. package/node_modules/simple-swizzle/package.json +40 -0
  1571. package/node_modules/stack-trace/.npmignore +1 -0
  1572. package/node_modules/stack-trace/License +19 -0
  1573. package/node_modules/stack-trace/Makefile +11 -0
  1574. package/node_modules/stack-trace/Readme.md +98 -0
  1575. package/node_modules/stack-trace/lib/stack-trace.js +136 -0
  1576. package/node_modules/stack-trace/package.json +25 -0
  1577. package/node_modules/string_decoder/.travis.yml +50 -0
  1578. package/node_modules/string_decoder/LICENSE +48 -0
  1579. package/node_modules/string_decoder/README.md +47 -0
  1580. package/node_modules/string_decoder/lib/string_decoder.js +296 -0
  1581. package/node_modules/string_decoder/package.json +35 -0
  1582. package/node_modules/text-hex/LICENSE +21 -0
  1583. package/node_modules/text-hex/README.md +20 -0
  1584. package/node_modules/text-hex/index.js +24 -0
  1585. package/node_modules/text-hex/package.json +34 -0
  1586. package/node_modules/text-hex/test.js +11 -0
  1587. package/node_modules/triple-beam/.eslintrc +7 -0
  1588. package/node_modules/triple-beam/.gitattributes +1 -0
  1589. package/node_modules/triple-beam/.travis.yml +17 -0
  1590. package/node_modules/triple-beam/CHANGELOG.md +22 -0
  1591. package/node_modules/triple-beam/LICENSE +21 -0
  1592. package/node_modules/triple-beam/README.md +34 -0
  1593. package/node_modules/triple-beam/config/cli.js +42 -0
  1594. package/node_modules/triple-beam/config/index.js +32 -0
  1595. package/node_modules/triple-beam/config/npm.js +36 -0
  1596. package/node_modules/triple-beam/config/syslog.js +38 -0
  1597. package/node_modules/triple-beam/index.js +46 -0
  1598. package/node_modules/triple-beam/package.json +40 -0
  1599. package/node_modules/triple-beam/test.js +98 -0
  1600. package/node_modules/unix-dgram/LICENSE +13 -0
  1601. package/node_modules/unix-dgram/README.md +107 -0
  1602. package/node_modules/unix-dgram/binding.gyp +20 -0
  1603. package/node_modules/unix-dgram/build/Makefile +324 -0
  1604. package/node_modules/unix-dgram/build/Release/.deps/Release/obj.target/unix_dgram/src/unix_dgram.o.d +58 -0
  1605. package/node_modules/unix-dgram/build/Release/.deps/Release/obj.target/unix_dgram.node.d +1 -0
  1606. package/node_modules/unix-dgram/build/Release/.deps/Release/unix_dgram.node.d +1 -0
  1607. package/node_modules/unix-dgram/build/Release/obj.target/unix_dgram/src/unix_dgram.o +0 -0
  1608. package/node_modules/unix-dgram/build/Release/obj.target/unix_dgram.node +0 -0
  1609. package/node_modules/unix-dgram/build/Release/unix_dgram.node +0 -0
  1610. package/node_modules/unix-dgram/build/binding.Makefile +6 -0
  1611. package/node_modules/unix-dgram/build/config.gypi +213 -0
  1612. package/node_modules/unix-dgram/build/unix_dgram.target.mk +159 -0
  1613. package/node_modules/unix-dgram/lib/unix_dgram.js +168 -0
  1614. package/node_modules/unix-dgram/package.json +36 -0
  1615. package/node_modules/unix-dgram/src/unix_dgram.cc +404 -0
  1616. package/node_modules/unix-dgram/src/win_dummy.cc +7 -0
  1617. package/node_modules/unix-dgram/test/test-connect-callback.js +68 -0
  1618. package/node_modules/unix-dgram/test/test-connect.js +53 -0
  1619. package/node_modules/unix-dgram/test/test-dgram-unix.js +58 -0
  1620. package/node_modules/unix-dgram/test/test-send-error.js +26 -0
  1621. package/node_modules/util-deprecate/History.md +16 -0
  1622. package/node_modules/util-deprecate/LICENSE +24 -0
  1623. package/node_modules/util-deprecate/README.md +53 -0
  1624. package/node_modules/util-deprecate/browser.js +67 -0
  1625. package/node_modules/util-deprecate/node.js +6 -0
  1626. package/node_modules/util-deprecate/package.json +31 -0
  1627. package/node_modules/winston/CHANGELOG.md +560 -0
  1628. package/node_modules/winston/LICENSE +19 -0
  1629. package/node_modules/winston/README.md +1230 -0
  1630. package/node_modules/winston/dist/winston/common.js +56 -0
  1631. package/node_modules/winston/dist/winston/config/index.js +37 -0
  1632. package/node_modules/winston/dist/winston/container.js +147 -0
  1633. package/node_modules/winston/dist/winston/create-logger.js +141 -0
  1634. package/node_modules/winston/dist/winston/exception-handler.js +288 -0
  1635. package/node_modules/winston/dist/winston/exception-stream.js +94 -0
  1636. package/node_modules/winston/dist/winston/logger.js +752 -0
  1637. package/node_modules/winston/dist/winston/profiler.js +69 -0
  1638. package/node_modules/winston/dist/winston/rejection-handler.js +288 -0
  1639. package/node_modules/winston/dist/winston/tail-file.js +135 -0
  1640. package/node_modules/winston/dist/winston/transports/console.js +166 -0
  1641. package/node_modules/winston/dist/winston/transports/file.js +817 -0
  1642. package/node_modules/winston/dist/winston/transports/http.js +264 -0
  1643. package/node_modules/winston/dist/winston/transports/index.js +55 -0
  1644. package/node_modules/winston/dist/winston/transports/stream.js +117 -0
  1645. package/node_modules/winston/dist/winston.js +172 -0
  1646. package/node_modules/winston/index.d.ts +193 -0
  1647. package/node_modules/winston/lib/winston/common.js +61 -0
  1648. package/node_modules/winston/lib/winston/config/index.d.ts +98 -0
  1649. package/node_modules/winston/lib/winston/config/index.js +35 -0
  1650. package/node_modules/winston/lib/winston/container.js +114 -0
  1651. package/node_modules/winston/lib/winston/create-logger.js +104 -0
  1652. package/node_modules/winston/lib/winston/exception-handler.js +245 -0
  1653. package/node_modules/winston/lib/winston/exception-stream.js +54 -0
  1654. package/node_modules/winston/lib/winston/logger.js +667 -0
  1655. package/node_modules/winston/lib/winston/profiler.js +51 -0
  1656. package/node_modules/winston/lib/winston/rejection-handler.js +251 -0
  1657. package/node_modules/winston/lib/winston/tail-file.js +124 -0
  1658. package/node_modules/winston/lib/winston/transports/console.js +117 -0
  1659. package/node_modules/winston/lib/winston/transports/file.js +695 -0
  1660. package/node_modules/winston/lib/winston/transports/http.js +202 -0
  1661. package/node_modules/winston/lib/winston/transports/index.d.ts +100 -0
  1662. package/node_modules/winston/lib/winston/transports/index.js +56 -0
  1663. package/node_modules/winston/lib/winston/transports/stream.js +63 -0
  1664. package/node_modules/winston/lib/winston.js +182 -0
  1665. package/node_modules/winston/node_modules/readable-stream/CONTRIBUTING.md +38 -0
  1666. package/node_modules/winston/node_modules/readable-stream/GOVERNANCE.md +136 -0
  1667. package/node_modules/winston/node_modules/readable-stream/LICENSE +47 -0
  1668. package/node_modules/winston/node_modules/readable-stream/README.md +106 -0
  1669. package/node_modules/winston/node_modules/readable-stream/errors-browser.js +127 -0
  1670. package/node_modules/winston/node_modules/readable-stream/errors.js +116 -0
  1671. package/node_modules/winston/node_modules/readable-stream/experimentalWarning.js +17 -0
  1672. package/node_modules/winston/node_modules/readable-stream/lib/_stream_duplex.js +139 -0
  1673. package/node_modules/winston/node_modules/readable-stream/lib/_stream_passthrough.js +39 -0
  1674. package/node_modules/winston/node_modules/readable-stream/lib/_stream_readable.js +1124 -0
  1675. package/node_modules/winston/node_modules/readable-stream/lib/_stream_transform.js +201 -0
  1676. package/node_modules/winston/node_modules/readable-stream/lib/_stream_writable.js +697 -0
  1677. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/async_iterator.js +207 -0
  1678. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/buffer_list.js +210 -0
  1679. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/destroy.js +105 -0
  1680. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/end-of-stream.js +104 -0
  1681. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/from-browser.js +3 -0
  1682. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/from.js +64 -0
  1683. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/pipeline.js +97 -0
  1684. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/state.js +27 -0
  1685. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/stream-browser.js +1 -0
  1686. package/node_modules/winston/node_modules/readable-stream/lib/internal/streams/stream.js +1 -0
  1687. package/node_modules/winston/node_modules/readable-stream/package.json +72 -0
  1688. package/node_modules/winston/node_modules/readable-stream/readable-browser.js +9 -0
  1689. package/node_modules/winston/node_modules/readable-stream/readable.js +16 -0
  1690. package/node_modules/winston/package.json +77 -0
  1691. package/node_modules/winston-compat/.gitattributes +1 -0
  1692. package/node_modules/winston-compat/.node-version +1 -0
  1693. package/node_modules/winston-compat/CHANGELOG.md +17 -0
  1694. package/node_modules/winston-compat/LICENSE +22 -0
  1695. package/node_modules/winston-compat/README.md +2 -0
  1696. package/node_modules/winston-compat/index.js +295 -0
  1697. package/node_modules/winston-compat/lib/transport.js +135 -0
  1698. package/node_modules/winston-compat/node_modules/fecha/CHANGELOG.md +11 -0
  1699. package/node_modules/winston-compat/node_modules/fecha/LICENSE +22 -0
  1700. package/node_modules/winston-compat/node_modules/fecha/README.md +259 -0
  1701. package/node_modules/winston-compat/node_modules/fecha/fecha.d.ts +47 -0
  1702. package/node_modules/winston-compat/node_modules/fecha/fecha.js +334 -0
  1703. package/node_modules/winston-compat/node_modules/fecha/fecha.min.js +1 -0
  1704. package/node_modules/winston-compat/node_modules/fecha/package.json +44 -0
  1705. package/node_modules/winston-compat/node_modules/logform/.babelrc +3 -0
  1706. package/node_modules/winston-compat/node_modules/logform/.eslintrc +7 -0
  1707. package/node_modules/winston-compat/node_modules/logform/.gitattributes +1 -0
  1708. package/node_modules/winston-compat/node_modules/logform/.travis.yml +17 -0
  1709. package/node_modules/winston-compat/node_modules/logform/CHANGELOG.md +103 -0
  1710. package/node_modules/winston-compat/node_modules/logform/LICENSE +21 -0
  1711. package/node_modules/winston-compat/node_modules/logform/README.md +170 -0
  1712. package/node_modules/winston-compat/node_modules/logform/align.js +14 -0
  1713. package/node_modules/winston-compat/node_modules/logform/browser.js +36 -0
  1714. package/node_modules/winston-compat/node_modules/logform/cli.js +52 -0
  1715. package/node_modules/winston-compat/node_modules/logform/colorize.js +118 -0
  1716. package/node_modules/winston-compat/node_modules/logform/combine.js +66 -0
  1717. package/node_modules/winston-compat/node_modules/logform/dist/align.js +14 -0
  1718. package/node_modules/winston-compat/node_modules/logform/dist/browser.js +37 -0
  1719. package/node_modules/winston-compat/node_modules/logform/dist/cli.js +75 -0
  1720. package/node_modules/winston-compat/node_modules/logform/dist/colorize.js +147 -0
  1721. package/node_modules/winston-compat/node_modules/logform/dist/combine.js +66 -0
  1722. package/node_modules/winston-compat/node_modules/logform/dist/format.js +69 -0
  1723. package/node_modules/winston-compat/node_modules/logform/dist/index.js +54 -0
  1724. package/node_modules/winston-compat/node_modules/logform/dist/json.js +27 -0
  1725. package/node_modules/winston-compat/node_modules/logform/dist/label.js +19 -0
  1726. package/node_modules/winston-compat/node_modules/logform/dist/levels.js +15 -0
  1727. package/node_modules/winston-compat/node_modules/logform/dist/logstash.js +32 -0
  1728. package/node_modules/winston-compat/node_modules/logform/dist/metadata.js +63 -0
  1729. package/node_modules/winston-compat/node_modules/logform/dist/ms.js +18 -0
  1730. package/node_modules/winston-compat/node_modules/logform/dist/pad-levels.js +118 -0
  1731. package/node_modules/winston-compat/node_modules/logform/dist/pretty-print.js +20 -0
  1732. package/node_modules/winston-compat/node_modules/logform/dist/printf.js +40 -0
  1733. package/node_modules/winston-compat/node_modules/logform/dist/simple.js +36 -0
  1734. package/node_modules/winston-compat/node_modules/logform/dist/splat.js +147 -0
  1735. package/node_modules/winston-compat/node_modules/logform/dist/timestamp.js +28 -0
  1736. package/node_modules/winston-compat/node_modules/logform/dist/uncolorize.js +31 -0
  1737. package/node_modules/winston-compat/node_modules/logform/examples/combine.js +14 -0
  1738. package/node_modules/winston-compat/node_modules/logform/examples/filter.js +30 -0
  1739. package/node_modules/winston-compat/node_modules/logform/examples/invalid.js +6 -0
  1740. package/node_modules/winston-compat/node_modules/logform/examples/metadata.js +78 -0
  1741. package/node_modules/winston-compat/node_modules/logform/examples/padLevels.js +39 -0
  1742. package/node_modules/winston-compat/node_modules/logform/examples/volume.js +25 -0
  1743. package/node_modules/winston-compat/node_modules/logform/format.js +52 -0
  1744. package/node_modules/winston-compat/node_modules/logform/index.d.ts +53 -0
  1745. package/node_modules/winston-compat/node_modules/logform/index.js +52 -0
  1746. package/node_modules/winston-compat/node_modules/logform/json.js +26 -0
  1747. package/node_modules/winston-compat/node_modules/logform/label.js +19 -0
  1748. package/node_modules/winston-compat/node_modules/logform/levels.js +12 -0
  1749. package/node_modules/winston-compat/node_modules/logform/logstash.js +29 -0
  1750. package/node_modules/winston-compat/node_modules/logform/metadata.js +61 -0
  1751. package/node_modules/winston-compat/node_modules/logform/ms.js +18 -0
  1752. package/node_modules/winston-compat/node_modules/logform/package.json +51 -0
  1753. package/node_modules/winston-compat/node_modules/logform/pad-levels.js +83 -0
  1754. package/node_modules/winston-compat/node_modules/logform/pretty-print.js +16 -0
  1755. package/node_modules/winston-compat/node_modules/logform/printf.js +26 -0
  1756. package/node_modules/winston-compat/node_modules/logform/simple.js +33 -0
  1757. package/node_modules/winston-compat/node_modules/logform/splat.js +125 -0
  1758. package/node_modules/winston-compat/node_modules/logform/timestamp.js +30 -0
  1759. package/node_modules/winston-compat/node_modules/logform/tsconfig.json +22 -0
  1760. package/node_modules/winston-compat/node_modules/logform/uncolorize.js +27 -0
  1761. package/node_modules/winston-compat/package.json +46 -0
  1762. package/node_modules/winston-compat/test/clone.test.js +25 -0
  1763. package/node_modules/winston-compat/test/helpers.js +256 -0
  1764. package/node_modules/winston-compat/test/timestamp.test.js +14 -0
  1765. package/node_modules/winston-compat/test/transports/transport.js +205 -0
  1766. package/node_modules/winston-compat/test/winston-compat.test.js +18 -0
  1767. package/node_modules/winston-daily-rotate-file/.eslintrc.js +11 -0
  1768. package/node_modules/winston-daily-rotate-file/.node-version +1 -0
  1769. package/node_modules/winston-daily-rotate-file/.travis.yml +15 -0
  1770. package/node_modules/winston-daily-rotate-file/LICENSE +22 -0
  1771. package/node_modules/winston-daily-rotate-file/README.md +67 -0
  1772. package/node_modules/winston-daily-rotate-file/daily-rotate-file.js +292 -0
  1773. package/node_modules/winston-daily-rotate-file/index.d.ts +73 -0
  1774. package/node_modules/winston-daily-rotate-file/index.js +7 -0
  1775. package/node_modules/winston-daily-rotate-file/node_modules/semver/CHANGELOG.md +70 -0
  1776. package/node_modules/winston-daily-rotate-file/node_modules/semver/LICENSE +15 -0
  1777. package/node_modules/winston-daily-rotate-file/node_modules/semver/README.md +443 -0
  1778. package/node_modules/winston-daily-rotate-file/node_modules/semver/bin/semver.js +174 -0
  1779. package/node_modules/winston-daily-rotate-file/node_modules/semver/package.json +32 -0
  1780. package/node_modules/winston-daily-rotate-file/node_modules/semver/range.bnf +16 -0
  1781. package/node_modules/winston-daily-rotate-file/node_modules/semver/semver.js +1596 -0
  1782. package/node_modules/winston-daily-rotate-file/package.json +54 -0
  1783. package/node_modules/winston-daily-rotate-file/test/memory-stream.js +38 -0
  1784. package/node_modules/winston-daily-rotate-file/test/random-string.js +31 -0
  1785. package/node_modules/winston-daily-rotate-file/test/transport-tests.js +250 -0
  1786. package/node_modules/winston-syslog/.eslintrc +7 -0
  1787. package/node_modules/winston-syslog/.travis.yml +14 -0
  1788. package/node_modules/winston-syslog/CHANGELOG.md +9 -0
  1789. package/node_modules/winston-syslog/LICENSE +20 -0
  1790. package/node_modules/winston-syslog/README.md +135 -0
  1791. package/node_modules/winston-syslog/lib/utils.js +26 -0
  1792. package/node_modules/winston-syslog/lib/winston-syslog.js +385 -0
  1793. package/node_modules/winston-syslog/package.json +56 -0
  1794. package/node_modules/winston-syslog/test/format-test.js +122 -0
  1795. package/node_modules/winston-syslog/test/syslog-test.js +95 -0
  1796. package/node_modules/winston-syslog/test/unix-connect-test.js +133 -0
  1797. package/node_modules/winston-transport/.babelrc +3 -0
  1798. package/node_modules/winston-transport/.eslintrc +7 -0
  1799. package/node_modules/winston-transport/.gitattributes +1 -0
  1800. package/node_modules/winston-transport/.nyc_output/1c69f3e4-4c25-457d-9df5-dfa761729528.json +1 -0
  1801. package/node_modules/winston-transport/.nyc_output/processinfo/1c69f3e4-4c25-457d-9df5-dfa761729528.json +1 -0
  1802. package/node_modules/winston-transport/.nyc_output/processinfo/index.json +1 -0
  1803. package/node_modules/winston-transport/.travis.yml +17 -0
  1804. package/node_modules/winston-transport/CHANGELOG.md +115 -0
  1805. package/node_modules/winston-transport/LICENSE +22 -0
  1806. package/node_modules/winston-transport/README.md +50 -0
  1807. package/node_modules/winston-transport/dist/index.js +215 -0
  1808. package/node_modules/winston-transport/dist/legacy.js +116 -0
  1809. package/node_modules/winston-transport/index.d.ts +37 -0
  1810. package/node_modules/winston-transport/index.js +215 -0
  1811. package/node_modules/winston-transport/legacy.js +119 -0
  1812. package/node_modules/winston-transport/package.json +54 -0
  1813. package/node_modules/winston-transport/tsconfig.json +22 -0
  1814. package/package.json +194 -0
  1815. package/perf-logs.js +158 -0
package/lib/assess/policy/rules.json ADDED
@@ -0,0 +1,1564 @@
1
+ {
2
+ "rules": {
3
+ "ssrf": {
4
+ "enabled": true,
5
+ "type": "hook",
6
+ "sinks": {
7
+ "axios": {
8
+ "type": "dataflow",
9
+ "enabled": true,
10
+ "conditions": {
11
+ "mode": "or",
12
+ "args": [
13
+ {
14
+ "index": 0,
15
+ "depth": 1,
16
+ "exclusiveKeys": ["method", "url", "baseURL"],
17
+ "requiredTags": ["untrusted"]
18
+ }
19
+ ]
20
+ }
21
+ },
22
+ "axios.request": {
23
+ "type": "dataflow",
24
+ "enabled": true,
25
+ "conditions": {
26
+ "mode": "or",
27
+ "args": [
28
+ {
29
+ "index": 0,
30
+ "depth": 1,
31
+ "exclusiveKeys": ["method", "url", "baseURL"],
32
+ "requiredTags": ["untrusted"]
33
+ }
34
+ ]
35
+ }
36
+ },
37
+ "axios.get": {
38
+ "type": "dataflow",
39
+ "enabled": true,
40
+ "conditions": {
41
+ "mode": "or",
42
+ "args": [
43
+ {
44
+ "index": 0,
45
+ "provider": "./sinks/ssrf-url.js",
46
+ "requiredTags": ["untrusted"],
47
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
48
+ },
49
+ {
50
+ "index": 1,
51
+ "depth": 1,
52
+ "exclusiveKeys": ["method", "url", "baseURL"],
53
+ "requiredTags": ["untrusted"]
54
+ }
55
+ ]
56
+ }
57
+ },
58
+ "axios.delete": {
59
+ "type": "dataflow",
60
+ "enabled": true,
61
+ "conditions": {
62
+ "mode": "or",
63
+ "args": [
64
+ {
65
+ "index": 0,
66
+ "provider": "./sinks/ssrf-url.js",
67
+ "requiredTags": ["untrusted"],
68
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
69
+ },
70
+ {
71
+ "index": 1,
72
+ "depth": 1,
73
+ "exclusiveKeys": ["method", "url", "baseURL"],
74
+ "requiredTags": ["untrusted"]
75
+ }
76
+ ]
77
+ }
78
+ },
79
+ "axios.head": {
80
+ "type": "dataflow",
81
+ "enabled": true,
82
+ "conditions": {
83
+ "mode": "or",
84
+ "args": [
85
+ {
86
+ "index": 0,
87
+ "provider": "./sinks/ssrf-url.js",
88
+ "requiredTags": ["untrusted"],
89
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
90
+ },
91
+ {
92
+ "index": 1,
93
+ "depth": 1,
94
+ "exclusiveKeys": ["method", "url", "baseURL"],
95
+ "requiredTags": ["untrusted"]
96
+ }
97
+ ]
98
+ }
99
+ },
100
+ "axios.options": {
101
+ "type": "dataflow",
102
+ "enabled": true,
103
+ "conditions": {
104
+ "mode": "or",
105
+ "args": [
106
+ {
107
+ "index": 0,
108
+ "provider": "./sinks/ssrf-url.js",
109
+ "requiredTags": ["untrusted"],
110
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
111
+ },
112
+ {
113
+ "index": 1,
114
+ "depth": 1,
115
+ "exclusiveKeys": ["method", "url", "baseURL"],
116
+ "requiredTags": ["untrusted"]
117
+ }
118
+ ]
119
+ }
120
+ },
121
+ "axios.post": {
122
+ "type": "dataflow",
123
+ "enabled": true,
124
+ "conditions": {
125
+ "mode": "or",
126
+ "args": [
127
+ {
128
+ "index": 0,
129
+ "provider": "./sinks/ssrf-url.js",
130
+ "requiredTags": ["untrusted"],
131
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
132
+ },
133
+ {
134
+ "index": 2,
135
+ "depth": 1,
136
+ "exclusiveKeys": ["method", "url", "baseURL"],
137
+ "requiredTags": ["untrusted"]
138
+ }
139
+ ]
140
+ }
141
+ },
142
+ "axios.put": {
143
+ "type": "dataflow",
144
+ "enabled": true,
145
+ "conditions": {
146
+ "mode": "or",
147
+ "args": [
148
+ {
149
+ "index": 0,
150
+ "provider": "./sinks/ssrf-url.js",
151
+ "requiredTags": ["untrusted"],
152
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
153
+ },
154
+ {
155
+ "index": 2,
156
+ "depth": 1,
157
+ "exclusiveKeys": ["method", "url", "baseURL"],
158
+ "requiredTags": ["untrusted"]
159
+ }
160
+ ]
161
+ }
162
+ },
163
+ "axios.patch": {
164
+ "type": "dataflow",
165
+ "enabled": true,
166
+ "conditions": {
167
+ "mode": "or",
168
+ "args": [
169
+ {
170
+ "index": 0,
171
+ "provider": "./sinks/ssrf-url.js",
172
+ "requiredTags": ["untrusted"],
173
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
174
+ },
175
+ {
176
+ "index": 2,
177
+ "depth": 1,
178
+ "exclusiveKeys": ["method", "url", "baseURL"],
179
+ "requiredTags": ["untrusted"]
180
+ }
181
+ ]
182
+ }
183
+ },
184
+ "http.get": {
185
+ "type": "dataflow",
186
+ "enabled": true,
187
+ "stackTrustedLibs": ["axios"],
188
+ "conditions": {
189
+ "mode": "or",
190
+ "args": [
191
+ {
192
+ "index": 0,
193
+ "provider": "./sinks/ssrf-url.js",
194
+ "requiredTags": ["untrusted"],
195
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
196
+ },
197
+ {
198
+ "index": 0,
199
+ "depth": 1,
200
+ "exclusiveKeys": ["host", "hostname", "protocol"],
201
+ "requiredTags": ["untrusted"]
202
+ },
203
+ {
204
+ "index": 1,
205
+ "depth": 1,
206
+ "exclusiveKeys": ["host", "hostname", "protocol"],
207
+ "requiredTags": ["untrusted"]
208
+ }
209
+ ]
210
+ }
211
+ },
212
+ "https.get": {
213
+ "type": "dataflow",
214
+ "enabled": true,
215
+ "stackTrustedLibs": ["axios"],
216
+ "conditions": {
217
+ "mode": "or",
218
+ "args": [
219
+ {
220
+ "index": 0,
221
+ "provider": "./sinks/ssrf-url.js",
222
+ "requiredTags": ["untrusted"],
223
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
224
+ },
225
+ {
226
+ "index": 0,
227
+ "depth": 1,
228
+ "exclusiveKeys": ["host", "hostname", "protocol"],
229
+ "requiredTags": ["untrusted"]
230
+ },
231
+ {
232
+ "index": 1,
233
+ "depth": 1,
234
+ "exclusiveKeys": ["host", "hostname", "protocol"],
235
+ "requiredTags": ["untrusted"]
236
+ }
237
+ ]
238
+ }
239
+ },
240
+ "http.request": {
241
+ "type": "dataflow",
242
+ "enabled": true,
243
+ "stackTrustedLibs": ["^(?!.*(newrelic)).*http.*$", "axios"],
244
+ "conditions": {
245
+ "mode": "or",
246
+ "args": [
247
+ {
248
+ "index": 0,
249
+ "provider": "./sinks/ssrf-url.js",
250
+ "requiredTags": ["untrusted"],
251
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
252
+ },
253
+ {
254
+ "index": 0,
255
+ "depth": 1,
256
+ "exclusiveKeys": [
257
+ "host",
258
+ "hostname",
259
+ "localAddress",
260
+ "protocol"
261
+ ],
262
+ "requiredTags": ["untrusted"]
263
+ },
264
+ {
265
+ "index": 1,
266
+ "depth": 1,
267
+ "exclusiveKeys": [
268
+ "host",
269
+ "hostname",
270
+ "localAddress",
271
+ "protocol"
272
+ ],
273
+ "requiredTags": ["untrusted"]
274
+ }
275
+ ]
276
+ }
277
+ },
278
+ "https.request": {
279
+ "type": "dataflow",
280
+ "enabled": true,
281
+ "stackTrustedLibs": ["^(?!.*(newrelic)).*http.*$", "axios"],
282
+ "conditions": {
283
+ "mode": "or",
284
+ "args": [
285
+ {
286
+ "index": 0,
287
+ "provider": "./sinks/ssrf-url.js",
288
+ "requiredTags": ["untrusted"],
289
+ "disallowedTags": ["source-type:querystring", "source-type:path"]
290
+ },
291
+ {
292
+ "index": 0,
293
+ "depth": 1,
294
+ "exclusiveKeys": [
295
+ "host",
296
+ "hostname",
297
+ "localAddress",
298
+ "protocol"
299
+ ],
300
+ "requiredTags": ["untrusted"]
301
+ },
302
+ {
303
+ "index": 1,
304
+ "depth": 1,
305
+ "exclusiveKeys": [
306
+ "host",
307
+ "hostname",
308
+ "localAddress",
309
+ "protocol"
310
+ ],
311
+ "requiredTags": ["untrusted"]
312
+ }
313
+ ]
314
+ }
315
+ },
316
+ "http.ClientRequest.prototype.end": {
317
+ "type": "dataflow",
318
+ "enabled": false,
319
+ "__note": "FIXME(CONTRAST-35300. This is called by http/s. This should wait for end and inspect its own properties to ensure host, path, and protocol are not user controlled.)",
320
+ "stackTrustedLibs": ["^(?!.*(newrelic)).*http.*$", "^(?!.*(newrelic)).*https.*$"]
321
+ }
322
+ }
323
+ },
324
+ "sql-injection": {
325
+ "enabled": true,
326
+ "type": "hook",
327
+ "sinks": {
328
+ "sequelize.prototype.query": {
329
+ "type": "dataflow",
330
+ "enabled": true,
331
+ "conditions": {
332
+ "mode": "or",
333
+ "args": [
334
+ {
335
+ "index": 0,
336
+ "requiredTags": ["untrusted"],
337
+ "disallowedTags": ["sql-encoded", "limited-chars"]
338
+ }
339
+ ]
340
+ }
341
+ },
342
+ "typeorm.Repository.prototype.query": {
343
+ "type": "dataflow",
344
+ "enabled": true,
345
+ "conditions": {
346
+ "mode": "or",
347
+ "args": [
348
+ {
349
+ "index": 0,
350
+ "requiredTags": ["untrusted"],
351
+ "disallowedTags": ["sql-encoded", "limited-chars"]
352
+ }
353
+ ]
354
+ }
355
+ },
356
+ "typeorm.Connection.prototype.query": {
357
+ "type": "dataflow",
358
+ "enabled": true,
359
+ "conditions": {
360
+ "mode": "or",
361
+ "args": [
362
+ {
363
+ "index": 0,
364
+ "requiredTags": ["untrusted"],
365
+ "disallowedTags": ["sql-encoded", "limited-chars"]
366
+ }
367
+ ]
368
+ }
369
+ },
370
+ "mysql/lib/Connection.query": {
371
+ "type": "dataflow",
372
+ "enabled": true,
373
+ "conditions": {
374
+ "mode": "or",
375
+ "args": [
376
+ {
377
+ "index": 0,
378
+ "requiredTags": ["untrusted"],
379
+ "disallowedTags": ["sql-encoded", "limited-chars"]
380
+ },
381
+ {
382
+ "index": 0,
383
+ "depth": 1,
384
+ "exclusiveKeys": ["sql"],
385
+ "requiredTags": ["untrusted"],
386
+ "disallowedTags": ["sql-encoded", "limited-chars"]
387
+ }
388
+ ]
389
+ }
390
+ },
391
+ "pg.Connection.prototype.query": {
392
+ "type": "dataflow",
393
+ "enabled": true,
394
+ "conditions": {
395
+ "mode": "or",
396
+ "args": [
397
+ {
398
+ "index": 0,
399
+ "requiredTags": ["untrusted"],
400
+ "disallowedTags": ["sql-encoded", "limited-chars"]
401
+ },
402
+ {
403
+ "index": 0,
404
+ "depth": 1,
405
+ "exclusiveKeys": ["text"],
406
+ "requiredTags": ["untrusted"],
407
+ "disallowedTags": ["sql-encoded", "limited-chars"]
408
+ }
409
+ ]
410
+ }
411
+ },
412
+ "pg/lib/client.prototype.query": {
413
+ "type": "dataflow",
414
+ "enabled": true,
415
+ "conditions": {
416
+ "mode": "or",
417
+ "args": [
418
+ {
419
+ "index": 0,
420
+ "requiredTags": ["untrusted"],
421
+ "disallowedTags": ["sql-encoded", "limited-chars"]
422
+ },
423
+ {
424
+ "index": 0,
425
+ "depth": 1,
426
+ "exclusiveKeys": ["text"],
427
+ "requiredTags": ["untrusted"],
428
+ "disallowedTags": ["sql-encoded", "limited-chars"]
429
+ }
430
+ ]
431
+ }
432
+ },
433
+ "sqlite3.Database.prototype.all": {
434
+ "type": "dataflow",
435
+ "enabled": true,
436
+ "conditions": {
437
+ "mode": "or",
438
+ "args": [
439
+ {
440
+ "index": 0,
441
+ "requiredTags": ["untrusted"],
442
+ "disallowedTags": ["sql-encoded", "limited-chars"]
443
+ }
444
+ ]
445
+ }
446
+ },
447
+ "sqlite3.Database.prototype.run": {
448
+ "type": "dataflow",
449
+ "enabled": true,
450
+ "conditions": {
451
+ "mode": "or",
452
+ "args": [
453
+ {
454
+ "index": 0,
455
+ "requiredTags": ["untrusted"],
456
+ "disallowedTags": ["sql-encoded", "limited-chars"]
457
+ }
458
+ ]
459
+ }
460
+ },
461
+ "sqlite3.Database.prototype.get": {
462
+ "type": "dataflow",
463
+ "enabled": true,
464
+ "conditions": {
465
+ "mode": "or",
466
+ "args": [
467
+ {
468
+ "index": 0,
469
+ "requiredTags": ["untrusted"],
470
+ "disallowedTags": ["sql-encoded", "limited-chars"]
471
+ }
472
+ ]
473
+ }
474
+ },
475
+ "sqlite3.Database.prototype.each": {
476
+ "type": "dataflow",
477
+ "enabled": true,
478
+ "conditions": {
479
+ "mode": "or",
480
+ "args": [
481
+ {
482
+ "index": 0,
483
+ "requiredTags": ["untrusted"],
484
+ "disallowedTags": ["sql-encoded", "limited-chars"]
485
+ }
486
+ ]
487
+ }
488
+ },
489
+ "sqlite3.Database.prototype.exec": {
490
+ "type": "dataflow",
491
+ "enabled": true,
492
+ "conditions": {
493
+ "mode": "or",
494
+ "args": [
495
+ {
496
+ "index": 0,
497
+ "requiredTags": ["untrusted"],
498
+ "disallowedTags": ["sql-encoded", "limited-chars"]
499
+ }
500
+ ]
501
+ }
502
+ },
503
+ "sqlite3.Database.prototype.prepare": {
504
+ "type": "dataflow",
505
+ "enabled": true,
506
+ "conditions": {
507
+ "mode": "or",
508
+ "args": [
509
+ {
510
+ "index": 0,
511
+ "requiredTags": ["untrusted"],
512
+ "disallowedTags": ["sql-encoded", "limited-chars"]
513
+ }
514
+ ]
515
+ }
516
+ }
517
+ }
518
+ },
519
+ "path-traversal": {
520
+ "enabled": true,
521
+ "type": "hook",
522
+ "sinks": {
523
+ "fs.access": {
524
+ "type": "dataflow",
525
+ "enabled": true,
526
+ "conditions": {
527
+ "mode": "or",
528
+ "args": [
529
+ {
530
+ "index": 0,
531
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
532
+ "requiredTags": ["untrusted"]
533
+ }
534
+ ]
535
+ }
536
+ },
537
+ "fs.accessSync": {
538
+ "type": "dataflow",
539
+ "enabled": true,
540
+ "conditions": {
541
+ "mode": "or",
542
+ "args": [
543
+ {
544
+ "index": 0,
545
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
546
+ "requiredTags": ["untrusted"]
547
+ }
548
+ ]
549
+ }
550
+ },
551
+ "fs.copyFile": {
552
+ "type": "dataflow",
553
+ "enabled": true,
554
+ "conditions": {
555
+ "mode": "or",
556
+ "args": [
557
+ {
558
+ "index": 0,
559
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
560
+ "requiredTags": ["untrusted"]
561
+ },
562
+ {
563
+ "index": 1,
564
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
565
+ "requiredTags": ["untrusted"]
566
+ }
567
+ ]
568
+ }
569
+ },
570
+ "fs.copyFileSync": {
571
+ "type": "dataflow",
572
+ "enabled": true,
573
+ "conditions": {
574
+ "mode": "or",
575
+ "args": [
576
+ {
577
+ "index": 0,
578
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
579
+ "requiredTags": ["untrusted"]
580
+ },
581
+ {
582
+ "index": 1,
583
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
584
+ "requiredTags": ["untrusted"]
585
+ }
586
+ ]
587
+ }
588
+ },
589
+ "fs.appendFile": {
590
+ "type": "dataflow",
591
+ "enabled": true,
592
+ "conditions": {
593
+ "mode": "or",
594
+ "args": [
595
+ {
596
+ "index": 0,
597
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
598
+ "requiredTags": ["untrusted"]
599
+ }
600
+ ]
601
+ }
602
+ },
603
+ "fs.appendFileSync": {
604
+ "hookPhase": "pre",
605
+ "type": "dataflow",
606
+ "enabled": true,
607
+ "conditions": {
608
+ "mode": "or",
609
+ "args": [
610
+ {
611
+ "index": 0,
612
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
613
+ "requiredTags": ["untrusted"]
614
+ }
615
+ ]
616
+ }
617
+ },
618
+ "fs.writeFile": {
619
+ "type": "dataflow",
620
+ "enabled": true,
621
+ "conditions": {
622
+ "mode": "or",
623
+ "args": [
624
+ {
625
+ "index": 0,
626
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
627
+ "requiredTags": ["untrusted"]
628
+ }
629
+ ]
630
+ }
631
+ },
632
+ "fs.writeFileSync": {
633
+ "hookPhase": "pre",
634
+ "type": "dataflow",
635
+ "enabled": true,
636
+ "conditions": {
637
+ "mode": "or",
638
+ "args": [
639
+ {
640
+ "index": 0,
641
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
642
+ "requiredTags": ["untrusted"]
643
+ }
644
+ ]
645
+ }
646
+ },
647
+ "fs.createWriteStream": {
648
+ "type": "dataflow",
649
+ "enabled": true,
650
+ "conditions": {
651
+ "mode": "or",
652
+ "args": [
653
+ {
654
+ "index": 0,
655
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
656
+ "requiredTags": ["untrusted"]
657
+ }
658
+ ]
659
+ }
660
+ },
661
+ "fs.createReadStream": {
662
+ "type": "dataflow",
663
+ "enabled": true,
664
+ "conditions": {
665
+ "mode": "or",
666
+ "args": [
667
+ {
668
+ "index": 0,
669
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
670
+ "requiredTags": ["untrusted"]
671
+ }
672
+ ]
673
+ }
674
+ },
675
+ "fs.unlink": {
676
+ "type": "dataflow",
677
+ "enabled": true,
678
+ "conditions": {
679
+ "mode": "or",
680
+ "args": [
681
+ {
682
+ "index": 0,
683
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
684
+ "requiredTags": ["untrusted"]
685
+ }
686
+ ]
687
+ }
688
+ },
689
+ "fs.unlinkSync": {
690
+ "hookPhase": "pre",
691
+ "type": "dataflow",
692
+ "enabled": true,
693
+ "conditions": {
694
+ "mode": "or",
695
+ "args": [
696
+ {
697
+ "index": 0,
698
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
699
+ "requiredTags": ["untrusted"]
700
+ }
701
+ ]
702
+ }
703
+ },
704
+ "fs.truncate": {
705
+ "type": "dataflow",
706
+ "enabled": true,
707
+ "conditions": {
708
+ "mode": "or",
709
+ "args": [
710
+ {
711
+ "index": 0,
712
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
713
+ "requiredTags": ["untrusted"]
714
+ }
715
+ ]
716
+ }
717
+ },
718
+ "fs.truncateSync": {
719
+ "hookPhase": "pre",
720
+ "type": "dataflow",
721
+ "enabled": true,
722
+ "conditions": {
723
+ "mode": "or",
724
+ "args": [
725
+ {
726
+ "index": 0,
727
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
728
+ "requiredTags": ["untrusted"]
729
+ }
730
+ ]
731
+ }
732
+ },
733
+ "fs.rmdir": {
734
+ "type": "dataflow",
735
+ "enabled": true,
736
+ "conditions": {
737
+ "mode": "or",
738
+ "args": [
739
+ {
740
+ "index": 0,
741
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
742
+ "requiredTags": ["untrusted"]
743
+ }
744
+ ]
745
+ }
746
+ },
747
+ "fs.rmdirSync": {
748
+ "hookPhase": "pre",
749
+ "type": "dataflow",
750
+ "enabled": true,
751
+ "conditions": {
752
+ "mode": "or",
753
+ "args": [
754
+ {
755
+ "index": 0,
756
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
757
+ "requiredTags": ["untrusted"]
758
+ }
759
+ ]
760
+ }
761
+ },
762
+ "fs.rename": {
763
+ "type": "dataflow",
764
+ "enabled": true,
765
+ "conditions": {
766
+ "mode": "or",
767
+ "args": [
768
+ {
769
+ "index": 0,
770
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
771
+ "requiredTags": ["untrusted"]
772
+ },
773
+ {
774
+ "index": 1,
775
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
776
+ "requiredTags": ["untrusted"]
777
+ }
778
+ ]
779
+ }
780
+ },
781
+ "fs.renameSync": {
782
+ "hookPhase": "pre",
783
+ "type": "dataflow",
784
+ "enabled": true,
785
+ "conditions": {
786
+ "mode": "or",
787
+ "args": [
788
+ {
789
+ "index": 0,
790
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
791
+ "requiredTags": ["untrusted"]
792
+ },
793
+ {
794
+ "index": 1,
795
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
796
+ "requiredTags": ["untrusted"]
797
+ }
798
+ ]
799
+ }
800
+ },
801
+ "fs.readFile": {
802
+ "type": "dataflow",
803
+ "enabled": true,
804
+ "conditions": {
805
+ "mode": "or",
806
+ "args": [
807
+ {
808
+ "index": 0,
809
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
810
+ "requiredTags": ["untrusted"]
811
+ }
812
+ ]
813
+ }
814
+ },
815
+ "fs.readFileSync": {
816
+ "hookPhase": "pre",
817
+ "type": "dataflow",
818
+ "enabled": true,
819
+ "conditions": {
820
+ "mode": "or",
821
+ "args": [
822
+ {
823
+ "index": 0,
824
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
825
+ "requiredTags": ["untrusted"]
826
+ }
827
+ ]
828
+ }
829
+ },
830
+ "fs.readdir": {
831
+ "type": "dataflow",
832
+ "enabled": true,
833
+ "conditions": {
834
+ "mode": "or",
835
+ "args": [
836
+ {
837
+ "index": 0,
838
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
839
+ "requiredTags": ["untrusted"]
840
+ }
841
+ ]
842
+ }
843
+ },
844
+ "fs.readdirSync": {
845
+ "hookPhase": "pre",
846
+ "type": "dataflow",
847
+ "enabled": true,
848
+ "conditions": {
849
+ "mode": "or",
850
+ "args": [
851
+ {
852
+ "index": 0,
853
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
854
+ "requiredTags": ["untrusted"]
855
+ }
856
+ ]
857
+ }
858
+ },
859
+ "fs.open": {
860
+ "type": "dataflow",
861
+ "enabled": true,
862
+ "conditions": {
863
+ "mode": "or",
864
+ "args": [
865
+ {
866
+ "index": 0,
867
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
868
+ "requiredTags": ["untrusted"]
869
+ }
870
+ ]
871
+ }
872
+ },
873
+ "fs.openSync": {
874
+ "hookPhase": "pre",
875
+ "type": "dataflow",
876
+ "enabled": true,
877
+ "conditions": {
878
+ "mode": "or",
879
+ "args": [
880
+ {
881
+ "index": 0,
882
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
883
+ "requiredTags": ["untrusted"]
884
+ }
885
+ ]
886
+ }
887
+ },
888
+ "fs.mkdir": {
889
+ "enabled": true,
890
+ "type": "dataflow",
891
+ "conditions": {
892
+ "mode": "or",
893
+ "args": [
894
+ {
895
+ "index": 0,
896
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
897
+ "requiredTags": ["untrusted"]
898
+ }
899
+ ]
900
+ }
901
+ },
902
+ "fs.mkdirSync": {
903
+ "hookPhase": "pre",
904
+ "enabled": true,
905
+ "type": "dataflow",
906
+ "conditions": {
907
+ "mode": "or",
908
+ "args": [
909
+ {
910
+ "index": 0,
911
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
912
+ "requiredTags": ["untrusted"]
913
+ }
914
+ ]
915
+ }
916
+ },
917
+ "fs.readlink": {
918
+ "type": "dataflow",
919
+ "enabled": true,
920
+ "conditions": {
921
+ "mode": "or",
922
+ "args": [
923
+ {
924
+ "index": 0,
925
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
926
+ "requiredTags": ["untrusted"]
927
+ }
928
+ ]
929
+ }
930
+ },
931
+ "fs.readlinkSync": {
932
+ "hookPhase": "pre",
933
+ "type": "dataflow",
934
+ "enabled": true,
935
+ "conditions": {
936
+ "mode": "or",
937
+ "args": [
938
+ {
939
+ "index": 0,
940
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
941
+ "requiredTags": ["untrusted"]
942
+ }
943
+ ]
944
+ }
945
+ },
946
+ "fs.symlink": {
947
+ "type": "dataflow",
948
+ "enabled": true,
949
+ "conditions": {
950
+ "mode": "or",
951
+ "args": [
952
+ {
953
+ "index": 0,
954
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
955
+ "requiredTags": ["untrusted"]
956
+ },
957
+ {
958
+ "index": 1,
959
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
960
+ "requiredTags": ["untrusted"]
961
+ }
962
+ ]
963
+ }
964
+ },
965
+ "fs.symlinkSync": {
966
+ "hookPhase": "pre",
967
+ "type": "dataflow",
968
+ "enabled": true,
969
+ "conditions": {
970
+ "mode": "or",
971
+ "args": [
972
+ {
973
+ "index": 0,
974
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
975
+ "requiredTags": ["untrusted"]
976
+ },
977
+ {
978
+ "index": 1,
979
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
980
+ "requiredTags": ["untrusted"]
981
+ }
982
+ ]
983
+ }
984
+ },
985
+ "fs.chmod": {
986
+ "type": "dataflow",
987
+ "enabled": true,
988
+ "conditions": {
989
+ "mode": "or",
990
+ "args": [
991
+ {
992
+ "index": 0,
993
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
994
+ "requiredTags": ["untrusted"]
995
+ }
996
+ ]
997
+ }
998
+ },
999
+ "fs.chmodSync": {
1000
+ "hookPhase": "pre",
1001
+ "type": "dataflow",
1002
+ "enabled": true,
1003
+ "conditions": {
1004
+ "mode": "or",
1005
+ "args": [
1006
+ {
1007
+ "index": 0,
1008
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
1009
+ "requiredTags": ["untrusted"]
1010
+ }
1011
+ ]
1012
+ }
1013
+ },
1014
+ "fs.lchmod": {
1015
+ "type": "dataflow",
1016
+ "enabled": true,
1017
+ "conditions": {
1018
+ "mode": "or",
1019
+ "args": [
1020
+ {
1021
+ "index": 0,
1022
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
1023
+ "requiredTags": ["untrusted"]
1024
+ }
1025
+ ]
1026
+ }
1027
+ },
1028
+ "fs.lchmodSync": {
1029
+ "hookPhase": "pre",
1030
+ "type": "dataflow",
1031
+ "enabled": true,
1032
+ "conditions": {
1033
+ "mode": "or",
1034
+ "args": [
1035
+ {
1036
+ "index": 0,
1037
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
1038
+ "requiredTags": ["untrusted"]
1039
+ }
1040
+ ]
1041
+ }
1042
+ },
1043
+ "fs.chown": {
1044
+ "type": "dataflow",
1045
+ "enabled": true,
1046
+ "conditions": {
1047
+ "mode": "or",
1048
+ "args": [
1049
+ {
1050
+ "index": 0,
1051
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
1052
+ "requiredTags": ["untrusted"]
1053
+ }
1054
+ ]
1055
+ }
1056
+ },
1057
+ "fs.chownSync": {
1058
+ "hookPhase": "pre",
1059
+ "type": "dataflow",
1060
+ "enabled": true,
1061
+ "conditions": {
1062
+ "mode": "or",
1063
+ "args": [
1064
+ {
1065
+ "index": 0,
1066
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
1067
+ "requiredTags": ["untrusted"]
1068
+ }
1069
+ ]
1070
+ }
1071
+ },
1072
+ "fs.lchown": {
1073
+ "type": "dataflow",
1074
+ "enabled": true,
1075
+ "conditions": {
1076
+ "mode": "or",
1077
+ "args": [
1078
+ {
1079
+ "index": 0,
1080
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
1081
+ "requiredTags": ["untrusted"]
1082
+ }
1083
+ ]
1084
+ }
1085
+ },
1086
+ "fs.lchownSync": {
1087
+ "hookPhase": "pre",
1088
+ "type": "dataflow",
1089
+ "enabled": true,
1090
+ "conditions": {
1091
+ "mode": "or",
1092
+ "args": [
1093
+ {
1094
+ "index": 0,
1095
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
1096
+ "requiredTags": ["untrusted"]
1097
+ }
1098
+ ]
1099
+ }
1100
+ }
1101
+ }
1102
+ },
1103
+ "unvalidated-redirect": {
1104
+ "enabled": true,
1105
+ "type": "hook",
1106
+ "sinks": {
1107
+ "express.response.redirect": {
1108
+ "type": "dataflow",
1109
+ "enabled": true,
1110
+ "conditions": {
1111
+ "mode": "or",
1112
+ "args": [
1113
+ {
1114
+ "index": -1,
1115
+ "disallowedTags": ["url-encoded", "html-encoded", "limited-chars", "alphanum-space-hyphen"],
1116
+ "requiredTags": ["untrusted"]
1117
+ }
1118
+ ]
1119
+ }
1120
+ },
1121
+ "express.response.location": {
1122
+ "type": "dataflow",
1123
+ "enabled": true,
1124
+ "conditions": {
1125
+ "mode": "or",
1126
+ "args": [
1127
+ {
1128
+ "index": 0,
1129
+ "disallowedTags": ["url-encoded", "html-encoded", "limited-chars", "alphanum-space-hyphen"],
1130
+ "requiredTags": ["untrusted"]
1131
+ }
1132
+ ]
1133
+ }
1134
+ }
1135
+ }
1136
+ },
1137
+ "nosql-injection-mongodb": {
1138
+ "enabled": true,
1139
+ "type": "http",
1140
+ "provider": "./sinks/mongodb.js"
1141
+ },
1142
+ "nosql-injection-dynamodb": {
1143
+ "enabled": true,
1144
+ "type": "http",
1145
+ "provider": "./sinks/dynamo.js"
1146
+ },
1147
+ "nosql-injection": {
1148
+ "enabled": true,
1149
+ "type": "hook",
1150
+ "sinks": {
1151
+ "mongodb.Collection.prototype.rename": {
1152
+ "type": "dataflow",
1153
+ "enabled": true,
1154
+ "stackTrustedLibs": [],
1155
+ "conditions": {
1156
+ "mode": "or",
1157
+ "args": [
1158
+ {
1159
+ "index": 0,
1160
+ "disallowedTags": ["limited-chars", "alphanum-space-hyphen"],
1161
+ "requiredTags": ["untrusted"]
1162
+ }
1163
+ ]
1164
+ }
1165
+ },
1166
+ "mongodb.Db.prototype.eval": {
1167
+ "type": "dataflow",
1168
+ "enabled": true,
1169
+ "stackTrustedLibs": [],
1170
+ "conditions": {
1171
+ "mode": "or",
1172
+ "args": [
1173
+ {
1174
+ "index": 0,
1175
+ "disallowedTags": [],
1176
+ "requiredTags": ["untrusted"]
1177
+ }
1178
+ ]
1179
+ }
1180
+ },
1181
+ "marsdb.Collection.prototype.find": {
1182
+ "tested": "track-order",
1183
+ "type": "dataflow",
1184
+ "enabled": true,
1185
+ "stackTrustedLibs": [],
1186
+ "conditions": {
1187
+ "mode": "or",
1188
+ "args": [
1189
+ {
1190
+ "index": 0,
1191
+ "depth": 5,
1192
+ "disallowedTags": ["string-type-checked"],
1193
+ "requiredTags": ["untrusted"]
1194
+ }
1195
+ ]
1196
+ }
1197
+ },
1198
+ "marsdb.Collection.prototype.findOne": {
1199
+ "type": "dataflow",
1200
+ "enabled": true,
1201
+ "stackTrustedLibs": [],
1202
+ "conditions": {
1203
+ "mode": "or",
1204
+ "args": [
1205
+ {
1206
+ "index": 0,
1207
+ "depth": 5,
1208
+ "disallowedTags": [],
1209
+ "requiredTags": ["untrusted"]
1210
+ }
1211
+ ]
1212
+ }
1213
+ },
1214
+ "marsdb.Collection.prototype.update": {
1215
+ "type": "dataflow",
1216
+ "enabled": true,
1217
+ "stackTrustedLibs": [],
1218
+ "conditions": {
1219
+ "mode": "or",
1220
+ "args": [
1221
+ {
1222
+ "index": 0,
1223
+ "depth": 5,
1224
+ "disallowedTags": ["string-type-checked"],
1225
+ "requiredTags": ["untrusted"]
1226
+ },
1227
+ {
1228
+ "index": 1,
1229
+ "depth": 5,
1230
+ "disallowedTags": ["string-type-checked"],
1231
+ "requiredTags": ["untrusted"]
1232
+ }
1233
+ ]
1234
+ }
1235
+ },
1236
+ "marsdb.Collection.prototype.insert": {
1237
+ "type": "dataflow",
1238
+ "enabled": true,
1239
+ "stackTrustedLibs": [],
1240
+ "conditions": {
1241
+ "mode": "or",
1242
+ "args": [
1243
+ {
1244
+ "index": 0,
1245
+ "depth": 5,
1246
+ "disallowedTags": ["string-type-checked"],
1247
+ "requiredTags": ["untrusted"]
1248
+ }
1249
+ ]
1250
+ }
1251
+ },
1252
+ "rethinkdb.js": {
1253
+ "type": "dataflow",
1254
+ "enabled": true,
1255
+ "stackTrustedLibs": [],
1256
+ "conditions": {
1257
+ "mode": "or",
1258
+ "args": [
1259
+ {
1260
+ "index": 0,
1261
+ "disallowedTags": [],
1262
+ "requiredTags": ["untrusted"]
1263
+ }
1264
+ ]
1265
+ }
1266
+ }
1267
+ }
1268
+ },
1269
+ "unsafe-code-execution": {
1270
+ "enabled": true,
1271
+ "type": "hook",
1272
+ "sinks": {
1273
+ "Function": {
1274
+ "type": "dataflow",
1275
+ "enabled": true,
1276
+ "stackTrustedLibs": [],
1277
+ "conditions": {
1278
+ "mode": "or",
1279
+ "args": [
1280
+ {
1281
+ "index": 0,
1282
+ "disallowedTags": ["limited-chars", "alphanum-space-hyphen"],
1283
+ "requiredTags": ["untrusted"]
1284
+ }
1285
+ ]
1286
+ }
1287
+ },
1288
+ "eval": {
1289
+ "type": "dataflow",
1290
+ "enabled": true,
1291
+ "stackTrustedLibs": [],
1292
+ "conditions": {
1293
+ "mode": "or",
1294
+ "args": [
1295
+ {
1296
+ "index": 0,
1297
+ "disallowedTags": ["limited-chars", "alphanum-space-hyphen"],
1298
+ "requiredTags": ["untrusted"]
1299
+ }
1300
+ ]
1301
+ }
1302
+ },
1303
+ "notevil": {
1304
+ "hookPhase": "pre",
1305
+ "type": "dataflow",
1306
+ "enabled": true,
1307
+ "conditions": {
1308
+ "mode": "or",
1309
+ "args": [
1310
+ {
1311
+ "index": 0,
1312
+ "depth": 1,
1313
+ "disallowedTags": ["limited-chars", "alphanum-space-hyphen"],
1314
+ "requiredTags": ["untrusted"]
1315
+ }
1316
+ ]
1317
+ }
1318
+ },
1319
+ "vm.runInContext": {
1320
+ "hookPhase": "pre",
1321
+ "type": "dataflow",
1322
+ "enabled": true,
1323
+ "stackTrustedLibs": [],
1324
+ "conditions": {
1325
+ "mode": "or",
1326
+ "args": [
1327
+ {
1328
+ "index": 0,
1329
+ "disallowedTags": ["limited-chars", "alphanum-space-hyphen"],
1330
+ "requiredTags": ["untrusted"]
1331
+ }
1332
+ ]
1333
+ }
1334
+ },
1335
+ "vm.runInNewContext": {
1336
+ "hookPhase": "pre",
1337
+ "type": "dataflow",
1338
+ "enabled": true,
1339
+ "stackTrustedLibs": [],
1340
+ "conditions": {
1341
+ "mode": "or",
1342
+ "args": [
1343
+ {
1344
+ "index": 0,
1345
+ "disallowedTags": ["limited-chars", "alphanum-space-hyphen"],
1346
+ "requiredTags": ["untrusted"]
1347
+ }
1348
+ ]
1349
+ }
1350
+ },
1351
+ "vm.runInThisContext": {
1352
+ "hookPhase": "pre",
1353
+ "type": "dataflow",
1354
+ "enabled": true,
1355
+ "stackTrustedLibs": [],
1356
+ "conditions": {
1357
+ "mode": "or",
1358
+ "args": [
1359
+ {
1360
+ "index": 0,
1361
+ "disallowedTags": ["limited-chars", "alphanum-space-hyphen"],
1362
+ "requiredTags": ["untrusted"]
1363
+ }
1364
+ ]
1365
+ }
1366
+ }
1367
+ }
1368
+ },
1369
+ "reflected-xss_hapi16": {
1370
+ "enabled": true,
1371
+ "type": "http",
1372
+ "provider": "./sinks/hapi-16-xss"
1373
+ },
1374
+ "reflected-xss": {
1375
+ "enabled": true,
1376
+ "type": "hook",
1377
+ "sinks": {
1378
+ "express.response.send": {
1379
+ "type": "dataflow",
1380
+ "enabled": true,
1381
+ "stackTrustedLibs": [],
1382
+ "conditions": {
1383
+ "mode": "or",
1384
+ "args": [
1385
+ {
1386
+ "index": 0,
1387
+ "disallowedTags": [
1388
+ "cookie",
1389
+ "header",
1390
+ "limited-chars",
1391
+ "alphanum-space-hyphen",
1392
+ "html-encoded",
1393
+ "sql-encoded",
1394
+ "url-encoded",
1395
+ "weak-url-encoded"
1396
+ ],
1397
+ "requiredTags": ["untrusted"]
1398
+ }
1399
+ ]
1400
+ }
1401
+ },
1402
+ "swig.compile": {
1403
+ "type": "dataflow",
1404
+ "enabled": true,
1405
+ "stackTrustedLibs": [],
1406
+ "conditions": {
1407
+ "mode": "or",
1408
+ "args": [
1409
+ {
1410
+ "index": 1,
1411
+ "depth": 1,
1412
+ "disallowedTags": [
1413
+ "cookie",
1414
+ "header",
1415
+ "limited-chars",
1416
+ "alphanum-space-hyphen",
1417
+ "html-encoded",
1418
+ "sql-encoded",
1419
+ "url-encoded",
1420
+ "weak-url-encoded"
1421
+ ],
1422
+ "requiredTags": ["untrusted"]
1423
+ }
1424
+ ]
1425
+ }
1426
+ }
1427
+ }
1428
+ },
1429
+ "cmd-injection": {
1430
+ "enabled": true,
1431
+ "type": "hook",
1432
+ "sinks": {
1433
+ "child_process.spawnSync": {
1434
+ "hookPhase": "pre",
1435
+ "type": "dataflow",
1436
+ "enabled": true,
1437
+ "stackTrustedLibs": [],
1438
+ "conditions": {
1439
+ "mode": "or",
1440
+ "args": [
1441
+ {
1442
+ "index": 0,
1443
+ "disallowedTags": [],
1444
+ "requiredTags": ["untrusted"]
1445
+ }
1446
+ ]
1447
+ }
1448
+ },
1449
+ "child_process.spawn": {
1450
+ "type": "dataflow",
1451
+ "enabled": true,
1452
+ "stackTrustedLibs": [],
1453
+ "conditions": {
1454
+ "mode": "or",
1455
+ "args": [
1456
+ {
1457
+ "index": 0,
1458
+ "disallowedTags": [],
1459
+ "requiredTags": ["untrusted"]
1460
+ }
1461
+ ]
1462
+ }
1463
+ },
1464
+ "child_process.exec": {
1465
+ "type": "dataflow",
1466
+ "enabled": true,
1467
+ "stackTrustedLibs": [],
1468
+ "conditions": {
1469
+ "mode": "or",
1470
+ "args": [
1471
+ {
1472
+ "index": 0,
1473
+ "disallowedTags": [],
1474
+ "requiredTags": ["untrusted"]
1475
+ }
1476
+ ]
1477
+ }
1478
+ },
1479
+ "child_process.execSync": {
1480
+ "hookPhase": "pre",
1481
+ "type": "dataflow",
1482
+ "enabled": true,
1483
+ "stackTrustedLibs": [],
1484
+ "conditions": {
1485
+ "mode": "or",
1486
+ "args": [
1487
+ {
1488
+ "index": 0,
1489
+ "disallowedTags": [],
1490
+ "requiredTags": ["untrusted"]
1491
+ }
1492
+ ]
1493
+ }
1494
+ }
1495
+ }
1496
+ },
1497
+ "xpath-injection": {
1498
+ "enabled": true,
1499
+ "type": "hook",
1500
+ "sinks": {
1501
+ "xpath.select": {
1502
+ "type": "dataflow",
1503
+ "enabled": true,
1504
+ "conditions": {
1505
+ "mode": "or",
1506
+ "args": [
1507
+ {
1508
+ "index": 0,
1509
+ "disallowedTags": ["url-encoded", "limited-chars", "alphanum-space-hyphen"],
1510
+ "requiredTags": ["untrusted"]
1511
+ }
1512
+ ]
1513
+ }
1514
+ }
1515
+ }
1516
+ },
1517
+ "xxe": {
1518
+ "enabled": true,
1519
+ "type": "hook",
1520
+ "sinks": {
1521
+ "libxmljs.parseXmlString": {
1522
+ "type": "dataflow",
1523
+ "enabled": true,
1524
+ "provider": "./sinks/libxmljs-xxe.js"
1525
+ },
1526
+ "libxmljs.parseXml": {
1527
+ "type": "dataflow",
1528
+ "enabled": true,
1529
+ "provider": "./sinks/libxmljs-xxe.js"
1530
+ },
1531
+ "libxmljs2.parseXmlString": {
1532
+ "type": "dataflow",
1533
+ "enabled": true,
1534
+ "provider": "./sinks/libxmljs-xxe.js"
1535
+ },
1536
+ "libxmljs2.parseXml": {
1537
+ "type": "dataflow",
1538
+ "enabled": true,
1539
+ "provider": "./sinks/libxmljs-xxe.js"
1540
+ }
1541
+ }
1542
+ },
1543
+ "untrusted-deserialization": {
1544
+ "enabled": true,
1545
+ "type": "hook",
1546
+ "sinks": {
1547
+ "node-serialize.unserialize": {
1548
+ "type": "dataflow",
1549
+ "enabled": true,
1550
+ "conditions": {
1551
+ "mode": "or",
1552
+ "args": [
1553
+ {
1554
+ "index": 0,
1555
+ "disallowedTags": [],
1556
+ "requiredTags": ["untrusted"]
1557
+ }
1558
+ ]
1559
+ }
1560
+ }
1561
+ }
1562
+ }
1563
+ }
1564
+ }