npm - @contrast/contrast - Versions diffs - 1.0.0 → 1.0.1 - Mend

@contrast/contrast 1.0.0 → 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (201) hide show

package/.prettierignore +2 -0
package/README.md +120 -47
package/dist/audit/AnalysisEngine.js +37 -0
package/dist/audit/catalogueApplication/catalogueApplication.js +36 -0
package/dist/audit/dotnetAnalysisEngine/index.js +25 -0
package/dist/audit/dotnetAnalysisEngine/parseLockFileContents.js +35 -0
package/dist/audit/dotnetAnalysisEngine/parseProjectFileContents.js +15 -0
package/dist/audit/dotnetAnalysisEngine/readLockFileContents.js +18 -0
package/dist/audit/dotnetAnalysisEngine/readProjectFileContents.js +14 -0
package/dist/audit/dotnetAnalysisEngine/sanitizer.js +9 -0
package/dist/audit/goAnalysisEngine/index.js +17 -0
package/dist/audit/goAnalysisEngine/parseProjectFileContents.js +164 -0
package/dist/audit/goAnalysisEngine/readProjectFileContents.js +21 -0
package/dist/audit/goAnalysisEngine/sanitizer.js +5 -0
package/dist/audit/javaAnalysisEngine/index.js +34 -0
package/dist/audit/javaAnalysisEngine/parseMavenProjectFileContents.js +153 -0
package/dist/audit/javaAnalysisEngine/parseProjectFileContents.js +353 -0
package/dist/audit/javaAnalysisEngine/readProjectFileContents.js +98 -0
package/dist/audit/javaAnalysisEngine/sanitizer.js +5 -0
package/dist/audit/languageAnalysisEngine/checkForMultipleIdentifiedLanguages.js +24 -0
package/dist/audit/languageAnalysisEngine/checkForMultipleIdentifiedProjectFiles.js +24 -0
package/dist/audit/languageAnalysisEngine/checkIdentifiedLanguageHasLockFile.js +35 -0
package/dist/audit/languageAnalysisEngine/checkIdentifiedLanguageHasProjectFile.js +23 -0
package/dist/audit/languageAnalysisEngine/commonApi.js +18 -0
package/dist/audit/languageAnalysisEngine/constants.js +20 -0
package/dist/audit/languageAnalysisEngine/filterProjectPath.js +20 -0
package/dist/audit/languageAnalysisEngine/getIdentifiedLanguageInfo.js +25 -0
package/dist/audit/languageAnalysisEngine/getProjectRootFilenames.js +39 -0
package/dist/audit/languageAnalysisEngine/index.js +39 -0
package/dist/audit/languageAnalysisEngine/langugageAnalysisFactory.js +70 -0
package/dist/audit/languageAnalysisEngine/reduceIdentifiedLanguages.js +121 -0
package/dist/audit/languageAnalysisEngine/report/checkIgnoreDevDep.js +17 -0
package/dist/audit/languageAnalysisEngine/report/commonReportingFunctions.js +257 -0
package/dist/audit/languageAnalysisEngine/report/newReportingFeature.js +81 -0
package/dist/audit/languageAnalysisEngine/report/reportingFeature.js +133 -0
package/dist/audit/languageAnalysisEngine/sendSnapshot.js +41 -0
package/dist/audit/languageAnalysisEngine/util/capabilities.js +11 -0
package/dist/audit/languageAnalysisEngine/util/generalAPI.js +39 -0
package/dist/audit/languageAnalysisEngine/util/requestUtils.js +14 -0
package/dist/audit/nodeAnalysisEngine/handleNPMLockFileV2.js +40 -0
package/dist/audit/nodeAnalysisEngine/index.js +31 -0
package/dist/audit/nodeAnalysisEngine/parseNPMLockFileContents.js +18 -0
package/dist/audit/nodeAnalysisEngine/parseYarn2LockFileContents.js +51 -0
package/dist/audit/nodeAnalysisEngine/parseYarnLockFileContents.js +18 -0
package/dist/audit/nodeAnalysisEngine/readNPMLockFileContents.js +17 -0
package/dist/audit/nodeAnalysisEngine/readProjectFileContents.js +14 -0
package/dist/audit/nodeAnalysisEngine/readYarnLockFileContents.js +24 -0
package/dist/audit/nodeAnalysisEngine/sanitizer.js +9 -0
package/dist/audit/phpAnalysisEngine/index.js +23 -0
package/dist/audit/phpAnalysisEngine/parseLockFileContents.js +52 -0
package/dist/audit/phpAnalysisEngine/readLockFileContents.js +13 -0
package/dist/audit/phpAnalysisEngine/readProjectFileContents.js +16 -0
package/dist/audit/phpAnalysisEngine/sanitizer.js +5 -0
package/dist/audit/pythonAnalysisEngine/index.js +25 -0
package/dist/audit/pythonAnalysisEngine/parsePipfileLockContents.js +17 -0
package/dist/audit/pythonAnalysisEngine/parseProjectFileContents.js +21 -0
package/dist/audit/pythonAnalysisEngine/readPipfileLockFileContents.js +13 -0
package/dist/audit/pythonAnalysisEngine/readPythonProjectFileContents.js +14 -0
package/dist/audit/pythonAnalysisEngine/sanitizer.js +7 -0
package/dist/audit/rubyAnalysisEngine/index.js +25 -0
package/dist/audit/rubyAnalysisEngine/parseGemfileLockContents.js +176 -0
package/dist/audit/rubyAnalysisEngine/parsedGemfile.js +22 -0
package/dist/audit/rubyAnalysisEngine/readGemfileContents.js +14 -0
package/dist/audit/rubyAnalysisEngine/readGemfileLockContents.js +14 -0
package/dist/audit/rubyAnalysisEngine/sanitizer.js +6 -0
package/dist/commands/audit/auditConfig.js +25 -0
package/dist/commands/audit/auditController.js +31 -0
package/dist/commands/audit/help.js +52 -0
package/dist/commands/audit/processAudit.js +18 -0
package/dist/commands/auth/auth.js +1 -1
package/dist/commands/scan/processScan.js +19 -5
package/dist/common/HTTPClient.js +101 -13
package/dist/common/errorHandling.js +49 -1
package/dist/common/findLatestCLIVersion.js +23 -0
package/dist/constants/constants.js +1 -1
package/dist/constants/lambda.js +32 -4
package/dist/constants/locales.js +39 -16
package/dist/constants.js +148 -20
package/dist/index.js +7 -1
package/dist/lambda/aws.js +14 -11
package/dist/lambda/help.js +4 -0
package/dist/lambda/lambda.js +50 -27
package/dist/lambda/lambdaUtils.js +72 -0
package/dist/lambda/logUtils.js +11 -1
package/dist/lambda/scanDetailCompletion.js +4 -4
package/dist/lambda/scanRequest.js +11 -5
package/dist/lambda/utils.js +110 -53
package/dist/scan/autoDetection.js +0 -32
package/dist/scan/fileUtils.js +1 -1
package/dist/scan/help.js +12 -40
package/dist/scan/populateProjectIdAndProjectName.js +4 -0
package/dist/scan/saveResults.js +15 -0
package/dist/scan/scan.js +77 -42
package/dist/scan/scanConfig.js +20 -0
package/dist/scan/scanController.js +13 -15
package/dist/scan/scanResults.js +18 -16
package/dist/utils/commonApi.js +3 -3
package/dist/utils/fileUtils.js +31 -0
package/dist/utils/paramsUtil/commandlineParams.js +1 -20
package/dist/utils/paramsUtil/genericCommandLineParams.js +12 -0
package/dist/utils/paramsUtil/paramHandler.js +3 -6
package/dist/utils/parsedCLIOptions.js +14 -8
package/package.json +26 -21
package/src/audit/AnalysisEngine.js +103 -0
package/src/audit/catalogueApplication/catalogueApplication.js +42 -0
package/src/audit/dotnetAnalysisEngine/index.js +26 -0
package/src/audit/dotnetAnalysisEngine/parseLockFileContents.js +47 -0
package/src/audit/dotnetAnalysisEngine/parseProjectFileContents.js +29 -0
package/src/audit/dotnetAnalysisEngine/readLockFileContents.js +30 -0
package/src/audit/dotnetAnalysisEngine/readProjectFileContents.js +26 -0
package/src/audit/dotnetAnalysisEngine/sanitizer.js +11 -0
package/src/audit/goAnalysisEngine/index.js +18 -0
package/src/audit/goAnalysisEngine/parseProjectFileContents.js +209 -0
package/src/audit/goAnalysisEngine/readProjectFileContents.js +31 -0
package/src/audit/goAnalysisEngine/sanitizer.js +7 -0
package/src/audit/javaAnalysisEngine/index.js +41 -0
package/src/audit/javaAnalysisEngine/parseMavenProjectFileContents.js +222 -0
package/src/audit/javaAnalysisEngine/parseProjectFileContents.js +420 -0
package/src/audit/javaAnalysisEngine/readProjectFileContents.js +141 -0
package/src/audit/javaAnalysisEngine/sanitizer.js +6 -0
package/src/audit/languageAnalysisEngine/checkForMultipleIdentifiedLanguages.js +35 -0
package/src/audit/languageAnalysisEngine/checkForMultipleIdentifiedProjectFiles.js +41 -0
package/src/audit/languageAnalysisEngine/checkIdentifiedLanguageHasLockFile.js +54 -0
package/src/audit/languageAnalysisEngine/checkIdentifiedLanguageHasProjectFile.js +32 -0
package/src/audit/languageAnalysisEngine/commonApi.js +20 -0
package/src/audit/languageAnalysisEngine/constants.js +23 -0
package/src/audit/languageAnalysisEngine/filterProjectPath.js +21 -0
package/src/audit/languageAnalysisEngine/getIdentifiedLanguageInfo.js +41 -0
package/src/audit/languageAnalysisEngine/getProjectRootFilenames.js +72 -0
package/src/audit/languageAnalysisEngine/index.js +45 -0
package/src/audit/languageAnalysisEngine/langugageAnalysisFactory.js +94 -0
package/src/audit/languageAnalysisEngine/reduceIdentifiedLanguages.js +177 -0
package/src/audit/languageAnalysisEngine/report/checkIgnoreDevDep.js +27 -0
package/src/audit/languageAnalysisEngine/report/commonReportingFunctions.js +303 -0
package/src/audit/languageAnalysisEngine/report/newReportingFeature.js +124 -0
package/src/audit/languageAnalysisEngine/report/reportingFeature.js +190 -0
package/src/audit/languageAnalysisEngine/sendSnapshot.js +51 -0
package/src/audit/languageAnalysisEngine/util/capabilities.js +12 -0
package/src/audit/languageAnalysisEngine/util/generalAPI.js +43 -0
package/src/audit/languageAnalysisEngine/util/requestUtils.js +17 -0
package/src/audit/nodeAnalysisEngine/handleNPMLockFileV2.js +49 -0
package/src/audit/nodeAnalysisEngine/index.js +35 -0
package/src/audit/nodeAnalysisEngine/parseNPMLockFileContents.js +20 -0
package/src/audit/nodeAnalysisEngine/parseYarn2LockFileContents.js +63 -0
package/src/audit/nodeAnalysisEngine/parseYarnLockFileContents.js +26 -0
package/src/audit/nodeAnalysisEngine/readNPMLockFileContents.js +23 -0
package/src/audit/nodeAnalysisEngine/readProjectFileContents.js +27 -0
package/src/audit/nodeAnalysisEngine/readYarnLockFileContents.js +36 -0
package/src/audit/nodeAnalysisEngine/sanitizer.js +11 -0
package/src/audit/phpAnalysisEngine/index.js +27 -0
package/src/audit/phpAnalysisEngine/parseLockFileContents.js +60 -0
package/src/audit/phpAnalysisEngine/readLockFileContents.js +14 -0
package/src/audit/phpAnalysisEngine/readProjectFileContents.js +25 -0
package/src/audit/phpAnalysisEngine/sanitizer.js +4 -0
package/src/audit/pythonAnalysisEngine/index.js +55 -0
package/src/audit/pythonAnalysisEngine/parsePipfileLockContents.js +23 -0
package/src/audit/pythonAnalysisEngine/parseProjectFileContents.js +33 -0
package/src/audit/pythonAnalysisEngine/readPipfileLockFileContents.js +16 -0
package/src/audit/pythonAnalysisEngine/readPythonProjectFileContents.js +22 -0
package/src/audit/pythonAnalysisEngine/sanitizer.js +9 -0
package/src/audit/rubyAnalysisEngine/index.js +30 -0
package/src/audit/rubyAnalysisEngine/parseGemfileLockContents.js +215 -0
package/src/audit/rubyAnalysisEngine/parsedGemfile.js +39 -0
package/src/audit/rubyAnalysisEngine/readGemfileContents.js +18 -0
package/src/audit/rubyAnalysisEngine/readGemfileLockContents.js +17 -0
package/src/audit/rubyAnalysisEngine/sanitizer.js +8 -0
package/src/commands/audit/auditConfig.ts +30 -0
package/src/commands/audit/auditController.ts +31 -0
package/src/commands/audit/help.ts +48 -0
package/src/commands/audit/processAudit.ts +19 -0
package/src/commands/auth/auth.js +1 -1
package/src/commands/scan/processScan.js +20 -5
package/src/common/HTTPClient.js +136 -14
package/src/common/errorHandling.ts +56 -1
package/src/common/findLatestCLIVersion.ts +27 -0
package/src/constants/constants.js +1 -1
package/src/constants/lambda.js +45 -4
package/src/constants/locales.js +48 -20
package/src/constants.js +168 -22
package/src/index.ts +9 -2
package/src/lambda/aws.ts +13 -12
package/src/lambda/help.ts +4 -0
package/src/lambda/lambda.ts +53 -34
package/src/lambda/lambdaUtils.ts +111 -0
package/src/lambda/logUtils.ts +19 -1
package/src/lambda/scanDetailCompletion.ts +4 -4
package/src/lambda/scanRequest.ts +13 -11
package/src/lambda/utils.ts +149 -81
package/src/scan/autoDetection.js +0 -29
package/src/scan/fileUtils.js +1 -1
package/src/scan/help.js +12 -45
package/src/scan/populateProjectIdAndProjectName.js +4 -0
package/src/scan/saveResults.js +15 -0
package/src/scan/scan.js +95 -59
package/src/scan/scanConfig.js +29 -0
package/src/scan/scanController.js +13 -13
package/src/scan/scanResults.js +21 -19
package/src/utils/commonApi.js +2 -3
package/src/utils/paramsUtil/commandlineParams.js +1 -26
package/src/utils/paramsUtil/paramHandler.js +3 -7
package/src/utils/parsedCLIOptions.js +11 -9

package/src/constants.js CHANGED Viewed

@@ -27,7 +27,7 @@ const scanOptionDefinitions = [
       '{bold ' +
       i18n.__('constantsOptional') +
       '}: ' +
-      i18n.__('constantsFileName')
+      i18n.__('scanOptionsFileNameSummary')
   },
   {
     name: 'project-id',
@@ -46,16 +46,7 @@ const scanOptionDefinitions = [
       '{bold ' +
       i18n.__('constantsOptional') +
       '}: ' +
-      i18n.__('constantsScanTimeout')
-  },
-  {
-    name: 'language',
-    alias: 'l',
-    description:
-      '{bold ' +
-      i18n.__('constantsRequiredCatalogue') +
-      '}: ' +
-      i18n.__('constantsLanguage')
+      i18n.__('scanOptionsTimeoutSummary')
   },
   {
     name: 'organization-id',
@@ -66,15 +57,6 @@ const scanOptionDefinitions = [
       '}: ' +
       i18n.__('constantsOrganizationId')
   },
-  {
-    name: 'yaml-path',
-    alias: 'y',
-    description:
-      '{bold ' +
-      i18n.__('constantsOptional') +
-      '}: ' +
-      i18n.__('constantsYamlPath')
-  },
   {
     name: 'api-key',
     description:
@@ -94,7 +76,6 @@ const scanOptionDefinitions = [
   {
     name: 'host',
     alias: 'h',
-    defaultValue: 'app.contrastsecurity.com',
     description:
       '{bold ' +
       i18n.__('constantsRequired') +
@@ -127,9 +108,173 @@ const scanOptionDefinitions = [
       '}:' +
       i18n.__('constantsIgnoreCertErrors')
   },
+  {
+    name: 'verbose',
+    alias: 'v',
+    type: Boolean,
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}:' +
+      i18n.__('scanOptionsVerboseSummary')
+  },
+  {
+    name: 'save',
+    alias: 's',
+    description:
+      '{bold ' + i18n.__('constantsOptional') + '}:' + i18n.__('constantsSave')
+  },
   {
     name: 'help',
     type: Boolean
+  },
+  {
+    name: 'debug',
+    alias: 'd',
+    type: Boolean
+  }
+]
+const auditOptionDefinitions = [
+  {
+    name: 'application-id',
+    description:
+      '{bold ' +
+      i18n.__('constantsRequired') +
+      '}: ' +
+      i18n.__('constantsApplicationId')
+  },
+  {
+    name: 'application-name',
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}: ' +
+      i18n.__('constantsApplicationName')
+  },
+  {
+    name: 'project-path',
+    defaultValue: process.env.PWD,
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}: ' +
+      i18n.__('constantsProjectPath')
+  },
+  {
+    name: 'app-groups',
+    description:
+      '{bold ' +
+      i18n.__('constantsOptionalForCatalogue') +
+      '}: ' +
+      i18n.__('constantsAppGroups')
+  },
+  {
+    name: 'sub-project',
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}: ' +
+      i18n.__('constantsGradleMultiProject')
+  },
+  {
+    name: 'metadata',
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}: ' +
+      i18n.__('constantsMetadata')
+  },
+  {
+    name: 'tags',
+    description:
+      '{bold ' + i18n.__('constantsOptional') + '}: ' + i18n.__('constantsTags')
+  },
+  {
+    name: 'code',
+    description:
+      '{bold ' + i18n.__('constantsOptional') + '}: ' + i18n.__('constantsCode')
+  },
+  {
+    name: 'ignore-dev',
+    type: Boolean,
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}: ' +
+      i18n.__('constantsIgnoreDev')
+  },
+  {
+    name: 'maven-settings-path'
+  },
+  {
+    name: 'language',
+    alias: 'l',
+    description:
+      '{bold ' +
+      i18n.__('constantsRequiredCatalogue') +
+      '}: ' +
+      i18n.__('constantsLanguage')
+  },
+  {
+    name: 'organization-id',
+    alias: 'o',
+    description:
+      '{bold ' +
+      i18n.__('constantsRequired') +
+      '}: ' +
+      i18n.__('constantsOrganizationId')
+  },
+  {
+    name: 'api-key',
+    description:
+      '{bold ' +
+      i18n.__('constantsRequired') +
+      '}: ' +
+      i18n.__('constantsApiKey')
+  },
+  {
+    name: 'authorization',
+    description:
+      '{bold ' +
+      i18n.__('constantsRequired') +
+      '}: ' +
+      i18n.__('constantsAuthorization')
+  },
+  {
+    name: 'host',
+    alias: 'h',
+    description:
+      '{bold ' +
+      i18n.__('constantsRequired') +
+      '}: ' +
+      i18n.__('constantsHostId')
+  },
+  {
+    name: 'proxy',
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}: ' +
+      i18n.__('constantsProxyServer')
+  },
+  {
+    name: 'ignore-cert-errors',
+    type: Boolean,
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}:' +
+      i18n.__('constantsIgnoreCertErrors')
+  },
+  {
+    name: 'save',
+    alias: 's',
+    description:
+      '{bold ' +
+      i18n.__('constantsOptional') +
+      '}: ' +
+      i18n.__('auditOptionsSaveDescription')
   }
 ]
@@ -163,6 +308,7 @@ module.exports = {
   commandLineDefinitions: {
     mainUsageGuide,
     mainDefinition,
-    scanOptionDefinitions
+    scanOptionDefinitions,
+    auditOptionDefinitions
   }
 }

package/src/index.ts CHANGED Viewed

@@ -1,4 +1,5 @@
 import commandLineArgs from 'command-line-args'
+import { processAudit } from './commands/audit/processAudit'
 import { processAuth } from './commands/auth/auth'
 import { processConfig } from './commands/config/config'
 import { processScan } from './commands/scan/processScan'
@@ -6,6 +7,7 @@ import constants from './constants'
 import { APP_NAME, APP_VERSION } from './constants/constants'
 import { processLambda } from './lambda/lambda'
 import { localConfig } from './utils/getConfig'
+import findLatestCLIVersion from './common/findLatestCLIVersion'
 const {
   commandLineDefinitions: { mainUsageGuide, mainDefinition }
@@ -36,6 +38,8 @@ const start = async () => {
     return
   }
+  await findLatestCLIVersion()
   if (command === 'config') {
     return processConfig(argvMain, config)
   }
@@ -48,9 +52,12 @@ const start = async () => {
     return await processLambda(argvMain)
   }
-  /* second - parse the merge command options */
   if (command === 'scan') {
-    return await processScan()
+    return await processScan(argvMain)
+  }
+  if (command === 'audit') {
+    return await processAudit(argvMain)
   }
   if (

package/src/lambda/aws.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import i18n from 'i18n'
 import {
   Lambda,
   GetFunctionCommand,
@@ -44,12 +45,9 @@ const getLambdaClient = (lambdaOptions: LambdaOptions) => {
     const clientOptions = getAwsClientOptions(lambdaOptions)
     return new Lambda(clientOptions)
   } catch (error) {
-    const errorObj = error as any
-    if (errorObj?.code === 'ERR_INVALID_URL') {
-      throw new CliError(ERRORS.AWS_ERROR, { description: errorObj.message })
-    }
-    throw error
+    throw new CliError(ERRORS.AWS_ERROR, {
+      description: (error as Error).message
+    })
   }
 }
@@ -89,7 +87,9 @@ const getLayersLinks = async (
       }
     } catch (e) {
       if (e instanceof ResourceNotFoundException) {
-        e.message = `The layer ${layerDict.Arn} could not be found. We will continue the scan without it.`
+        e.message = i18n.__('layerNotFound', {
+          layerArn: layerDict.Arn || 'unknown_arn'
+        })
         throw e
       }
       throw e
@@ -190,10 +190,10 @@ const getAttachedPolicies = async (roleName: string, client: IAMClient) => {
   )
   const attachedPoliciesPromises = listAttachedPolicies.map(
     async (policyDict: { PolicyArn: any; PolicyName: any }) => {
-      const getPolicyCommand = new GetPolicyCommand({
-        PolicyArn: policyDict.PolicyArn
-      })
+      const { PolicyArn, PolicyName } = policyDict
+      const getPolicyCommand = new GetPolicyCommand({ PolicyArn })
       const policy = await client.send(getPolicyCommand)
       if (policy.Policy) {
         const getPolicyVersionCommand = new GetPolicyVersionCommand({
           PolicyArn: policy.Policy.Arn,
@@ -203,8 +203,9 @@ const getAttachedPolicies = async (roleName: string, client: IAMClient) => {
         const policyDoc = JSON.parse(
           decodeURIComponent(policyVersion?.PolicyVersion?.Document || '{}')
         )
-        policyDoc['PolicyName'] = policyDict.PolicyName
-        policyDoc['PolicyArn'] = policyDict.PolicyArn
+        policyDoc['PolicyName'] = PolicyName
+        policyDoc['PolicyArn'] = PolicyArn
         return policyDoc
       }
     }

package/src/lambda/help.ts CHANGED Viewed

@@ -21,6 +21,10 @@ const lambdaUsageGuide = commandLineUsage([
         name: i18n.__('lambdaFunctionNameOption'),
         summary: i18n.__('lambdaFunctionNameSummery')
       },
+      {
+        name: i18n.__('lambdaListFunctionsOption'),
+        summary: i18n.__('lambdaListFunctionsSummery')
+      },
       {
         name: i18n.__('lambdaEndpointOption'),
         summary:

package/src/lambda/lambda.ts CHANGED Viewed

@@ -10,10 +10,12 @@ import { log } from './logUtils'
 import { pollScanUntilCompletion } from './scanDetailCompletion'
 import { requestScanFunctionPost } from './scanRequest'
 import { getScanResults } from './scanResults'
-import { prettyPrintResults } from './utils'
+import { printResults } from './utils'
+import { getAllLambdas, printAvailableLambdas } from './lambdaUtils'
 type LambdaOptions = {
   functionName?: string
+  listFunctions?: boolean
   region?: string
   endpointUrl?: string
   profile?: string
@@ -42,38 +44,49 @@ const printHelpMessage = () => {
 }
 const getLambdaOptions = (argv: string[]) => {
-  const lambdaDefinitions = [
-    { name: 'function-name', alias: 'f', type: String },
-    { name: 'region', alias: 'r', type: String },
-    { name: 'endpoint-url', alias: 'e', type: String },
-    { name: 'profile', alias: 'p', type: String },
-    { name: 'help', alias: 'h', type: Boolean },
-    { name: 'verbose', alias: 'v', type: Boolean },
-    { name: 'json-output', alias: 'j', type: Boolean }
-  ]
-  const lambdaOptions: LambdaOptions = commandLineArgs(lambdaDefinitions, {
-    argv,
-    partial: true,
-    camelCase: true,
-    caseInsensitive: true
-  })
-  return lambdaOptions
+  try {
+    const lambdaDefinitions = [
+      { name: 'function-name', alias: 'f', type: String },
+      { name: 'list-functions', alias: 'l', type: Boolean },
+      { name: 'region', alias: 'r', type: String },
+      { name: 'endpoint-url', alias: 'e', type: String },
+      { name: 'profile', alias: 'p', type: String },
+      { name: 'help', alias: 'h', type: Boolean },
+      { name: 'verbose', alias: 'v', type: Boolean },
+      { name: 'json-output', alias: 'j', type: Boolean }
+    ]
+    const lambdaOptions: LambdaOptions = commandLineArgs(lambdaDefinitions, {
+      argv,
+      partial: true,
+      camelCase: true,
+      caseInsensitive: true
+    })
+    return lambdaOptions
+  } catch (error) {
+    throw new CliError(ERRORS.VALIDATION_FAILED, {
+      description: (error as Error).message
+    })
+  }
 }
 const processLambda = async (argv: string[]) => {
-  const lambdaOptions = getLambdaOptions(argv)
-  const { help } = lambdaOptions
+  try {
+    const lambdaOptions = getLambdaOptions(argv)
+    const { help } = lambdaOptions
-  if (help) {
-    return handleLambdaHelp()
-  }
+    if (help) {
+      return handleLambdaHelp()
+    }
-  try {
     validateRequiredLambdaParams(lambdaOptions)
-    await actualProcessLambda(lambdaOptions)
+    if (lambdaOptions.listFunctions) {
+      await getAvailableFunctions(lambdaOptions)
+    } else {
+      await actualProcessLambda(lambdaOptions)
+    }
   } catch (error) {
     if (error instanceof CliError) {
       console.error(error.getErrorMessage())
@@ -84,6 +97,11 @@ const processLambda = async (argv: string[]) => {
   }
 }
+const getAvailableFunctions = async (lambdaOptions: LambdaOptions) => {
+  const lambdas = await getAllLambdas(lambdaOptions)
+  printAvailableLambdas(lambdas, { runtimes: ['python', 'java'] })
+}
 const actualProcessLambda = async (lambdaOptions: LambdaOptions) => {
   const auth = getAuth()
   const startTime = performance.now()
@@ -134,18 +152,20 @@ const actualProcessLambda = async (lambdaOptions: LambdaOptions) => {
   log(`----- Scan completed ${(scanDurationMs / 1000).toFixed(2)}s -----`)
   if (results?.length) {
-    prettyPrintResults(results)
+    printResults(results)
   }
 }
 const validateRequiredLambdaParams = (options: LambdaOptions) => {
   if (options._unknown?.length) {
     throw new CliError(ERRORS.VALIDATION_FAILED, {
-      description: i18n.__('notSupportedFlags', options._unknown.join('\n'))
+      description: i18n.__('notSupportedFlags', {
+        flags: options._unknown.join('\n')
+      })
     })
   }
-  if (!options?.functionName) {
+  if (!options?.functionName && !options?.listFunctions) {
     throw new CliError(ERRORS.VALIDATION_FAILED, {
       errorCode: 'missingFunctionName'
     })
@@ -158,10 +178,9 @@ const validateRequiredLambdaParams = (options: LambdaOptions) => {
   if (flagsWithoutValues.length) {
     throw new CliError(ERRORS.VALIDATION_FAILED, {
-      description: i18n.__(
-        'missingFlagArguments',
-        flagsWithoutValues.join('\n')
-      )
+      description: i18n.__('missingFlagArguments', {
+        flags: flagsWithoutValues.join('\n')
+      })
     })
   }
 }
@@ -171,4 +190,4 @@ const handleLambdaHelp = () => {
   process.exit(0)
 }
-export { processLambda, LambdaOptions, ApiParams }
+export { processLambda, LambdaOptions, ApiParams, getAvailableFunctions }

package/src/lambda/lambdaUtils.ts ADDED Viewed

@@ -0,0 +1,111 @@
+import logSymbols from 'log-symbols'
+import chalk from 'chalk'
+import i18n from 'i18n'
+import {
+  FunctionConfiguration,
+  ListFunctionsCommand
+} from '@aws-sdk/client-lambda'
+import { groupBy, sortBy } from 'lodash'
+import { getLambdaClient } from './aws'
+import ora from '../utils/oraWrapper'
+import { LambdaOptions } from './lambda'
+import { log, getReadableFileSize } from './logUtils'
+type RuntimeLanguage = 'java' | 'python'
+type FilterLambdas = {
+  runtimes: RuntimeLanguage[]
+  filterText?: string
+}
+/**
+ *
+ * @param fucntions all user lambdas
+ * @param options filter values: runtime / free text
+ * @returns
+ */
+const printAvailableLambdas = (
+  fucntions: FunctionConfiguration[] = [],
+  options: FilterLambdas
+) => {
+  const { runtimes, filterText = '' } = options
+  const searchValue = filterText?.trim().toLowerCase()
+  const filteredFunctions = fucntions
+    .filter(f => runtimes.some(r => f.Runtime?.includes(r)))
+    .filter(f => f.FunctionName?.toLowerCase().includes(searchValue))
+  log(
+    i18n.__('availableForScan', {
+      icon: logSymbols.success,
+      count: `${filteredFunctions.length}`
+    })
+  )
+  const groupByRuntime = groupBy(filteredFunctions, 'Runtime')
+  Object.entries(groupByRuntime).forEach(([runtime, arr]) => {
+    const sorted = sortBy(arr, 'FunctionName')
+    const count = `${arr.filter(a => a.Runtime === runtime).length}`
+    log(chalk.gray(i18n.__('runtimeCount', { runtime, count })))
+    sorted.forEach(f => {
+      const size = f.CodeSize ? getReadableFileSize(f.CodeSize) : ''
+      log(`${f.FunctionName} ${chalk.gray(`(${size})`)}`)
+    })
+  })
+}
+/**
+ *
+ * @param lambdaOptions to create lambdaClient
+ * @returns list of all user lambdas that availbale to scan
+ */
+const getAllLambdas = async (lambdaOptions: LambdaOptions) => {
+  const functions: FunctionConfiguration[] = []
+  const spinner = ora.returnOra(i18n.__('loadingFunctionList'))
+  try {
+    const client = getLambdaClient(lambdaOptions)
+    const command = new ListFunctionsCommand({})
+    ora.startSpinner(spinner)
+    const data = await client.send(command)
+    const { Functions } = data
+    let { NextMarker } = data
+    if (!Functions?.length) {
+      ora.failSpinner(spinner, i18n.__('noFunctionsFound'))
+      return
+    }
+    functions.push(...Functions)
+    spinner.text = i18n.__('functionsFound', { count: `${functions.length}` })
+    // pagination on functions
+    while (NextMarker) {
+      command.input.Marker = NextMarker
+      const chank = await client.send(command)
+      if (chank.Functions?.length) {
+        functions.push(...chank.Functions)
+        spinner.text = i18n.__('functionsFound', {
+          count: `${functions.length}`
+        })
+      }
+      NextMarker = chank.NextMarker
+    }
+    ora.succeedSpinner(
+      spinner,
+      i18n.__('functionsFound', { count: `${functions.length}` })
+    )
+  } catch (error) {
+    ora.failSpinner(spinner, i18n.__('failedToLoadFunctions'))
+    throw error
+  }
+  return functions
+}
+export { getAllLambdas, printAvailableLambdas }

package/src/lambda/logUtils.ts CHANGED Viewed

@@ -43,4 +43,22 @@ const prettyPrintJson = (obj: string | any, depth: number | null = null) => {
   console.log(util.inspect(objToPrint, { colors: true, depth }))
 }
-export { log, prettyPrintJson }
+/**
+ *
+ * @param fileSizeInBytes
+ *
+ * @returns human readable format
+ */
+const getReadableFileSize = (fileSizeInBytes: number) => {
+  let i = -1
+  const byteUnits = [' kB', ' MB', ' GB', ' TB', 'PB', 'EB', 'ZB', 'YB']
+  do {
+    fileSizeInBytes = fileSizeInBytes / 1024
+    i++
+  } while (fileSizeInBytes > 1024)
+  return Math.max(fileSizeInBytes, 0.1).toFixed(1) + byteUnits[i]
+}
+export { log, prettyPrintJson, getReadableFileSize }

package/src/lambda/scanDetailCompletion.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import i18n from 'i18n'
 import { sleep } from '../utils/requestUtils'
 import { getHttpClient } from '../utils/commonApi'
 import { ApiParams } from './lambda'
@@ -35,9 +36,8 @@ const pollScanUntilCompletion = async (
   const client = getHttpClient(config)
   const activeStatuses = ['PENDING', 'SCANNING', 'QUEUED']
-  const startedText = 'Scan started'
   const maxEndTime = new Date().getTime() + timeoutInMinutes * MS_IN_MINUTE
-  const startScanSpinner = ora.returnOra(startedText)
+  const startScanSpinner = ora.returnOra(i18n.__('scanStarted'))
   ora.startSpinner(startScanSpinner)
   await sleep(5000) // wait 5 sec before first polling
@@ -62,12 +62,12 @@ const pollScanUntilCompletion = async (
       await sleep(2 * 1000)
     } catch (error) {
-      ora.failSpinner(startScanSpinner, 'Scan Failed')
+      ora.failSpinner(startScanSpinner, i18n.__('scanFailed'))
       throw error
     }
     if (Date.now() >= maxEndTime) {
-      ora.failSpinner(startScanSpinner, 'Scan timed out')
+      ora.failSpinner(startScanSpinner, i18n.__('scanTimedOut'))
       throw new CliError(ERRORS.FAILED_TO_GET_SCAN, {
         errorCode: 'waitingTimedOut'
       })