@contrast/agent 4.29.0 → 4.29.2-alpha.1

package/LICENSE

@@ -1,12 +1,12 @@
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
+Copyright: 2021 Contrast Security, Inc
+Contact: support@contrastsecurity.com
+License: Commercial
 
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
+NOTICE: This Software and the patented inventions embodied within may only be
+used as part of Contrast Security’s commercial offerings. Even though it is
+made available through public repositories, use of this Software is subject to
+the applicable End User Licensing Agreement found at
+https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
+between Contrast Security and the End User. The Software may not be reverse
+engineered, modified, repackaged, sold, redistributed or otherwise used in a
+way not consistent with the End User License Agreement.

package/README.md

@@ -1,111 +1,82 @@
-# Contrast Security Node.js Agent
+# Node.js Contrast Agent
+![Node Agent Jobs](https://github.com/Contrast-Security-Inc/node-agent/workflows/Node%20Agent%20Jobs/badge.svg)
 
-This package will enable instrumentation of your Node.js application for
-security anaylsis and runtime protection by [Contrast Security](https://www.contrastsecurity.com).
+## Creating and deploy new release
+See the Wiki's [Release Runbook](https://github.com/Contrast-Security-Inc/node-agent/wiki/Release-Runbook)
 
-Unlike legacy application security testing solutions, Contrast produces accurate
-results without dependence on application security experts. Accuracy comes from
-Contrast's patented Deep Security Instrumentation technology, which integrates
-the most effective elements of Interactive (IAST), Static (SAST), and Dynamic
-(DAST) application security testing technology, software composition analysis
-(SCA), and configuration analysis, and delivers them directly to applications.
+## Development Setup
 
-Contrast produces a continuous stream of accurate vulnerability and compliance
-risk information whenever and wherever software is run. Development, QA and
-Security teams get results as they develop and test software, enabling them to
-find and fix security flaws early in the software lifecycle, when they are
-easiest and cheapest to remediate.
-
-## Getting Started
-
-Existing Contrast Node.js agent users should install and update the Contrast
-Node.js agent from [npm](https://www.npmjs.com/). Auto-update for the Node.js
-agent is no longer supported. The Contrast Node.js agent follows semantic
-versioning (major.minor.patch).
-
-An API key, provided by Contrast Security, is required for the agent to function.
-
-Ensure you have installed the latest LTS (Long Term Support) version of [Node.js](http://nodejs.org/)
-
-To install from npm using the command line (run from the app root directory):
-
-```sh
-$ npm install @contrast/agent
+```
+git clone git@github.com:Contrast-Security-Inc/node-agent.git
+npm ci
 ```
 
-## Usage
-
-### Using [CommonJS (CJS)](https://nodejs.org/docs/latest-v12.x/api/modules.html) Modules
-
-CommonJS is the original Node.js module system. CJS modules are loaded with the
-`const module = require('module')` syntax.
+Make sure your editor is configured to read from the ```.editorconfig``` and ```.eslintrc.json``` files.
 
-When instrumenting an application written with CJS modules, use the following
-method to start the application.
+## Submodules
+This repo makes use of git submodules for testing protect.  To initialize the submodule run this command
+after cloning repo
 
 ```
-    Usage: node -r @contrast/agent app-main.js [agent arguments] -- [app arguments]
-
-    Options:
-
-        -h, --help               output usage information
-        -V, --version            output the version number
-        -c, --configFile <path>  path to agent config file
+git submodule update --init
 ```
 
-### Using [ECMAScript Modules (ESM)](https://nodejs.org/docs/latest-v12.x/api/esm.html#esm_ecmascript_modules)
-
-> NOTE: ECMAScript instrumentation is experimental and Contrast requires at least Node version 14.15.0 for support.
+## Updating protect rules
 
-ECMAScript modules are the _new_ official standard format to package JavaScript
-code for reuse. ES Modules are loaded with the `import module from 'module'`
-syntax.
-
-When instrumenting an application that utilizes ECMAScript Modules, use the
-following method to start the application. This is the appropriate method for
-instrumenting an application that uses CJS, ESM, or a combination of both.
+When new protect rules have been released we need to update the contrast-protect-rules
+submodule. To do so
 
 ```
-    Usage: node --experimental-loader @contrast/agent/esm.mjs app-main.mjs [agent arguments] -- [app arguments]
-
-    Options:
-
-        -h, --help               output usage information
-        -V, --version            output the version number
-        -c, --configFile <path>  path to agent config file
+cd test/resources/contrast-protect-rules
+git checkout main
+git pull
+cd ../../../
+git add test/resources/contrast-protect-rules
+git commit -m 'bumping contrast-protect-rules commit hash'
+git push origin <ticket>
 ```
 
-### Configuration
+## Testing
+Run the unit/integration suite in parallel
+```
+npm test
+```
 
-The agent expects that the `contrast_security.yaml` configuration file exists in
-the application's root directory (where the `package.json` file usually resides).
+Run with debugger(serially)
+```
+npm run test:debug
+```
 
-If you need to specify a different location for the configuration file you can
-use either the `-c` or `--configFile` command-line arguments or provide the
-`CONTRAST_CONFIG_PATH` environment variable:
+Run serially so you can take advantage of `.only`
+```
+npm run test:only
+```
 
+Run with generating code coverage
 ```
-node -r @contrast/agent app-main.js -c /path/to/config.yml
-node -r @contrast/agent app-main.js --configFile /path/to/config.yml
-CONTRAST_CONFIG_PATH=/path/to/config.yml node -r @contrast/agent app-main.js
+npm run test:no-cov
 ```
 
-The minimum required `contrast_security.yaml` setup should look something like
-this:
+## Internal Docs
+[jsdoc](http://usejsdoc.org/) is used to create internal documentation.
+To build documentation, run ```npm run docs```
 
+## Docker
+To build the image run `./docker-image-builder.sh` from the project root.
+You can optionally include a node version like so:
 ```
-api:
-  url: https://app.contrastsecurity.com
-  user_name: contrast_user
-  api_key: demo
-  service_key: demo
+./docker-image-builder.sh 12
 ```
+By default, the build script uses node 12
 
-| Property        | Description                                                                 |
-| :-------------- | :-------------------------------------------------------------------------- |
-| api.api_key     | Organization's API key                                                      |
-| api.user_name   | Contrast user account ID (In most cases, this is your login ID)             |
-| api.service_key | Contrast user account service key                                           |
-| api.url         | Address of the Contrast installation you would like your agent to report to |
-
-For detailed installation and configuration instructions, see the [Node.js Agent documentation](https://docs.contrastsecurity.com/en/install-node-js.html).
+The script will tag the image with the following:
+```
+contrast/node-agent:latest
+contrast/node-agent:<current git branch>
+contrast/node-agent:<latest git commit hash>
+
+Example:
+contrast/node-agent:latest
+contrast/node-agent:develop
+contrast/node-agent:735e5187b093d6bb4ba575f413149c913ec8ff84
+```

package/agent-loader.js

@@ -1,18 +1,4 @@
 #!/usr/bin/env node
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 const process = require('process');
 
 function load() {

package/bootstrap.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const startTime = process.hrtime();

package/cli-rewriter.js

@@ -1,18 +1,4 @@
 #!/usr/bin/env node
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const {

package/cli.js

@@ -1,18 +1,4 @@
 #!/usr/bin/env node
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 
 const startTime = process.hrtime();
 

package/config-diagnostics.js

@@ -1,18 +1,4 @@
 #!/usr/bin/env node
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const { exec } = require('child_process');

package/esm.mjs

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 import { fileURLToPath } from 'url';
 import { createRequire } from 'module';
 import { promises as fs } from 'fs';

package/lib/agent-emitter.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const EventEmitter = require('events');

package/lib/agent.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const contrastCluster = require('cluster');

package/lib/app-info.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 const os = require('os');
 const fs = require('fs');

package/lib/assess/deadzones/index.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const path = require('path');

package/lib/assess/deadzones/rewrite.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const path = require('path');

package/lib/assess/express/index.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const AssessSinks = require('./sinks');

package/lib/assess/express/route-coverage.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const agentEmitter = require('../../agent-emitter');

package/lib/assess/express/sinks/index.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const ReflectedXss = require('./xss');

package/lib/assess/express/sinks/xss.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const agentEmitter = require('../../../agent-emitter');

package/lib/assess/express/sources.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const agentEmitter = require('../../agent-emitter');

package/lib/assess/fastify/index.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const AssessSources = require('./sources');

package/lib/assess/fastify/route-coverage.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const patcher = require('../../hooks/patcher');

package/lib/assess/fastify/sinks/index.js

@@ -1,17 +1,5 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
+'use strict';
 
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 const XssSink = require('./xss');
 const RedirectSink = require('./unvalidated-redirect');
 const ResponseScanning = require('./response-scanning');

package/lib/assess/fastify/sinks/response-scanning.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 const agentEmitter = require('../../../agent-emitter');
 const {

package/lib/assess/fastify/sinks/unvalidated-redirect.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 const moduleHook = require('../../../hooks/require');
 const patcher = require('../../../hooks/patcher');

package/lib/assess/fastify/sinks/xss.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 const moduleHook = require('../../../hooks/require');
 const patcher = require('../../../hooks/patcher');

package/lib/assess/fastify/sources.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 const agentEmitter = require('../../agent-emitter');
 const {

package/lib/assess/hapi/index.js

@@ -1,17 +1,3 @@
-/**
-Copyright: 2022 Contrast Security, Inc
-  Contact: support@contrastsecurity.com
-  License: Commercial
-
-  NOTICE: This Software and the patented inventions embodied within may only be
-  used as part of Contrast Security’s commercial offerings. Even though it is
-  made available through public repositories, use of this Software is subject to
-  the applicable End User Licensing Agreement found at
-  https://www.contrastsecurity.com/enduser-terms-0317a or as otherwise agreed
-  between Contrast Security and the End User. The Software may not be reverse
-  engineered, modified, repackaged, sold, redistributed or otherwise used in a
-  way not consistent with the End User License Agreement.
-*/
 'use strict';
 
 const AssessSources = require('./sources');