@contrast/contrast 1.0.0 → 1.0.1

package/dist/index.js

@@ -4,6 +4,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 const command_line_args_1 = __importDefault(require("command-line-args"));
+const processAudit_1 = require("./commands/audit/processAudit");
 const auth_1 = require("./commands/auth/auth");
 const config_1 = require("./commands/config/config");
 const processScan_1 = require("./commands/scan/processScan");
@@ -11,6 +12,7 @@ const constants_1 = __importDefault(require("./constants"));
 const constants_2 = require("./constants/constants");
 const lambda_1 = require("./lambda/lambda");
 const getConfig_1 = require("./utils/getConfig");
+const findLatestCLIVersion_1 = __importDefault(require("./common/findLatestCLIVersion"));
 const { commandLineDefinitions: { mainUsageGuide, mainDefinition } } = constants_1.default;
 const config = (0, getConfig_1.localConfig)(constants_2.APP_NAME, constants_2.APP_VERSION);
 const getMainOption = () => {
@@ -32,6 +34,7 @@ const start = async () => {
         console.log(constants_2.APP_VERSION);
         return;
     }
+    await (0, findLatestCLIVersion_1.default)();
     if (command === 'config') {
         return (0, config_1.processConfig)(argvMain, config);
     }
@@ -42,7 +45,10 @@ const start = async () => {
         return await (0, lambda_1.processLambda)(argvMain);
     }
     if (command === 'scan') {
-        return await (0, processScan_1.processScan)();
+        return await (0, processScan_1.processScan)(argvMain);
+    }
+    if (command === 'audit') {
+        return await (0, processAudit_1.processAudit)(argvMain);
     }
     if (command === 'help' ||
         argvMain.includes('--help') ||

package/dist/lambda/aws.js

@@ -1,6 +1,10 @@
 "use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.throwAwsError = exports.getLambdaPolicies = exports.getLayersLinks = exports.getLambdaFunctionConfiguration = exports.getLambdaClient = exports.getIAMClient = exports.getRolePolicyNames = exports.getAttachedPolicyNames = void 0;
+const i18n_1 = __importDefault(require("i18n"));
 const client_lambda_1 = require("@aws-sdk/client-lambda");
 const client_iam_1 = require("@aws-sdk/client-iam");
 const credential_provider_ini_1 = require("@aws-sdk/credential-provider-ini");
@@ -20,11 +24,9 @@ const getLambdaClient = (lambdaOptions) => {
         return new client_lambda_1.Lambda(clientOptions);
     }
     catch (error) {
-        const errorObj = error;
-        if (errorObj?.code === 'ERR_INVALID_URL') {
-            throw new cliError_1.CliError(constants_1.ERRORS.AWS_ERROR, { description: errorObj.message });
-        }
-        throw error;
+        throw new cliError_1.CliError(constants_1.ERRORS.AWS_ERROR, {
+            description: error.message
+        });
     }
 };
 exports.getLambdaClient = getLambdaClient;
@@ -60,7 +62,9 @@ const getLayersLinks = async (client, functionConfiguration) => {
         }
         catch (e) {
             if (e instanceof client_lambda_1.ResourceNotFoundException) {
-                e.message = `The layer ${layerDict.Arn} could not be found. We will continue the scan without it.`;
+                e.message = i18n_1.default.__('layerNotFound', {
+                    layerArn: layerDict.Arn || 'unknown_arn'
+                });
                 throw e;
             }
             throw e;
@@ -135,9 +139,8 @@ const getRolePolicies = async (roleName, client) => {
 const getAttachedPolicies = async (roleName, client) => {
     const listAttachedPolicies = await exports.getAttachedPolicyNames(roleName, client);
     const attachedPoliciesPromises = listAttachedPolicies.map(async (policyDict) => {
-        const getPolicyCommand = new client_iam_1.GetPolicyCommand({
-            PolicyArn: policyDict.PolicyArn
-        });
+        const { PolicyArn, PolicyName } = policyDict;
+        const getPolicyCommand = new client_iam_1.GetPolicyCommand({ PolicyArn });
         const policy = await client.send(getPolicyCommand);
         if (policy.Policy) {
             const getPolicyVersionCommand = new client_iam_1.GetPolicyVersionCommand({
@@ -146,8 +149,8 @@ const getAttachedPolicies = async (roleName, client) => {
             });
             const policyVersion = await client.send(getPolicyVersionCommand);
             const policyDoc = JSON.parse(decodeURIComponent(policyVersion?.PolicyVersion?.Document || '{}'));
-            policyDoc['PolicyName'] = policyDict.PolicyName;
-            policyDoc['PolicyArn'] = policyDict.PolicyArn;
+            policyDoc['PolicyName'] = PolicyName;
+            policyDoc['PolicyArn'] = PolicyArn;
             return policyDoc;
         }
     });

package/dist/lambda/help.js

@@ -26,6 +26,10 @@ const lambdaUsageGuide = (0, command_line_usage_1.default)([
                 name: i18n_1.default.__('lambdaFunctionNameOption'),
                 summary: i18n_1.default.__('lambdaFunctionNameSummery')
             },
+            {
+                name: i18n_1.default.__('lambdaListFunctionsOption'),
+                summary: i18n_1.default.__('lambdaListFunctionsSummery')
+            },
             {
                 name: i18n_1.default.__('lambdaEndpointOption'),
                 summary: '{italic ' +

package/dist/lambda/lambda.js

@@ -3,7 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.processLambda = void 0;
+exports.getAvailableFunctions = exports.processLambda = void 0;
 const command_line_args_1 = __importDefault(require("command-line-args"));
 const perf_hooks_1 = require("perf_hooks");
 const lodash_1 = require("lodash");
@@ -17,6 +17,7 @@ const scanDetailCompletion_1 = require("./scanDetailCompletion");
 const scanRequest_1 = require("./scanRequest");
 const scanResults_1 = require("./scanResults");
 const utils_1 = require("./utils");
+const lambdaUtils_1 = require("./lambdaUtils");
 const failedStates = [
     'UNSUPPORTED',
     'EXCLUDED',
@@ -28,32 +29,45 @@ const printHelpMessage = () => {
     (0, logUtils_1.log)(help_1.lambdaUsageGuide);
 };
 const getLambdaOptions = (argv) => {
-    const lambdaDefinitions = [
-        { name: 'function-name', alias: 'f', type: String },
-        { name: 'region', alias: 'r', type: String },
-        { name: 'endpoint-url', alias: 'e', type: String },
-        { name: 'profile', alias: 'p', type: String },
-        { name: 'help', alias: 'h', type: Boolean },
-        { name: 'verbose', alias: 'v', type: Boolean },
-        { name: 'json-output', alias: 'j', type: Boolean }
-    ];
-    const lambdaOptions = (0, command_line_args_1.default)(lambdaDefinitions, {
-        argv,
-        partial: true,
-        camelCase: true,
-        caseInsensitive: true
-    });
-    return lambdaOptions;
+    try {
+        const lambdaDefinitions = [
+            { name: 'function-name', alias: 'f', type: String },
+            { name: 'list-functions', alias: 'l', type: Boolean },
+            { name: 'region', alias: 'r', type: String },
+            { name: 'endpoint-url', alias: 'e', type: String },
+            { name: 'profile', alias: 'p', type: String },
+            { name: 'help', alias: 'h', type: Boolean },
+            { name: 'verbose', alias: 'v', type: Boolean },
+            { name: 'json-output', alias: 'j', type: Boolean }
+        ];
+        const lambdaOptions = (0, command_line_args_1.default)(lambdaDefinitions, {
+            argv,
+            partial: true,
+            camelCase: true,
+            caseInsensitive: true
+        });
+        return lambdaOptions;
+    }
+    catch (error) {
+        throw new cliError_1.CliError(constants_1.ERRORS.VALIDATION_FAILED, {
+            description: error.message
+        });
+    }
 };
 const processLambda = async (argv) => {
-    const lambdaOptions = getLambdaOptions(argv);
-    const { help } = lambdaOptions;
-    if (help) {
-        return handleLambdaHelp();
-    }
     try {
+        const lambdaOptions = getLambdaOptions(argv);
+        const { help } = lambdaOptions;
+        if (help) {
+            return handleLambdaHelp();
+        }
         validateRequiredLambdaParams(lambdaOptions);
-        await actualProcessLambda(lambdaOptions);
+        if (lambdaOptions.listFunctions) {
+            await getAvailableFunctions(lambdaOptions);
+        }
+        else {
+            await actualProcessLambda(lambdaOptions);
+        }
     }
     catch (error) {
         if (error instanceof cliError_1.CliError) {
@@ -66,6 +80,11 @@ const processLambda = async (argv) => {
     }
 };
 exports.processLambda = processLambda;
+const getAvailableFunctions = async (lambdaOptions) => {
+    const lambdas = await (0, lambdaUtils_1.getAllLambdas)(lambdaOptions);
+    (0, lambdaUtils_1.printAvailableLambdas)(lambdas, { runtimes: ['python', 'java'] });
+};
+exports.getAvailableFunctions = getAvailableFunctions;
 const actualProcessLambda = async (lambdaOptions) => {
     const auth = (0, paramHandler_1.getAuth)();
     const startTime = perf_hooks_1.performance.now();
@@ -100,16 +119,18 @@ const actualProcessLambda = async (lambdaOptions) => {
     const scanDurationMs = endTime - startTime;
     (0, logUtils_1.log)(`----- Scan completed ${(scanDurationMs / 1000).toFixed(2)}s -----`);
     if (results?.length) {
-        (0, utils_1.prettyPrintResults)(results);
+        (0, utils_1.printResults)(results);
     }
 };
 const validateRequiredLambdaParams = (options) => {
     if (options._unknown?.length) {
         throw new cliError_1.CliError(constants_1.ERRORS.VALIDATION_FAILED, {
-            description: i18n_1.default.__('notSupportedFlags', options._unknown.join('\n'))
+            description: i18n_1.default.__('notSupportedFlags', {
+                flags: options._unknown.join('\n')
+            })
         });
     }
-    if (!options?.functionName) {
+    if (!options?.functionName && !options?.listFunctions) {
         throw new cliError_1.CliError(constants_1.ERRORS.VALIDATION_FAILED, {
             errorCode: 'missingFunctionName'
         });
@@ -120,7 +141,9 @@ const validateRequiredLambdaParams = (options) => {
         .map(p => `--${(0, lodash_1.kebabCase)(p)}`);
     if (flagsWithoutValues.length) {
         throw new cliError_1.CliError(constants_1.ERRORS.VALIDATION_FAILED, {
-            description: i18n_1.default.__('missingFlagArguments', flagsWithoutValues.join('\n'))
+            description: i18n_1.default.__('missingFlagArguments', {
+                flags: flagsWithoutValues.join('\n')
+            })
         });
     }
 };

package/dist/lambda/lambdaUtils.js

@@ -0,0 +1,72 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.printAvailableLambdas = exports.getAllLambdas = void 0;
+const log_symbols_1 = __importDefault(require("log-symbols"));
+const chalk_1 = __importDefault(require("chalk"));
+const i18n_1 = __importDefault(require("i18n"));
+const client_lambda_1 = require("@aws-sdk/client-lambda");
+const lodash_1 = require("lodash");
+const aws_1 = require("./aws");
+const oraWrapper_1 = __importDefault(require("../utils/oraWrapper"));
+const logUtils_1 = require("./logUtils");
+const printAvailableLambdas = (fucntions = [], options) => {
+    const { runtimes, filterText = '' } = options;
+    const searchValue = filterText?.trim().toLowerCase();
+    const filteredFunctions = fucntions
+        .filter(f => runtimes.some(r => f.Runtime?.includes(r)))
+        .filter(f => f.FunctionName?.toLowerCase().includes(searchValue));
+    (0, logUtils_1.log)(i18n_1.default.__('availableForScan', {
+        icon: log_symbols_1.default.success,
+        count: `${filteredFunctions.length}`
+    }));
+    const groupByRuntime = (0, lodash_1.groupBy)(filteredFunctions, 'Runtime');
+    Object.entries(groupByRuntime).forEach(([runtime, arr]) => {
+        const sorted = (0, lodash_1.sortBy)(arr, 'FunctionName');
+        const count = `${arr.filter(a => a.Runtime === runtime).length}`;
+        (0, logUtils_1.log)(chalk_1.default.gray(i18n_1.default.__('runtimeCount', { runtime, count })));
+        sorted.forEach(f => {
+            const size = f.CodeSize ? (0, logUtils_1.getReadableFileSize)(f.CodeSize) : '';
+            (0, logUtils_1.log)(`${f.FunctionName} ${chalk_1.default.gray(`(${size})`)}`);
+        });
+    });
+};
+exports.printAvailableLambdas = printAvailableLambdas;
+const getAllLambdas = async (lambdaOptions) => {
+    const functions = [];
+    const spinner = oraWrapper_1.default.returnOra(i18n_1.default.__('loadingFunctionList'));
+    try {
+        const client = (0, aws_1.getLambdaClient)(lambdaOptions);
+        const command = new client_lambda_1.ListFunctionsCommand({});
+        oraWrapper_1.default.startSpinner(spinner);
+        const data = await client.send(command);
+        const { Functions } = data;
+        let { NextMarker } = data;
+        if (!Functions?.length) {
+            oraWrapper_1.default.failSpinner(spinner, i18n_1.default.__('noFunctionsFound'));
+            return;
+        }
+        functions.push(...Functions);
+        spinner.text = i18n_1.default.__('functionsFound', { count: `${functions.length}` });
+        while (NextMarker) {
+            command.input.Marker = NextMarker;
+            const chank = await client.send(command);
+            if (chank.Functions?.length) {
+                functions.push(...chank.Functions);
+                spinner.text = i18n_1.default.__('functionsFound', {
+                    count: `${functions.length}`
+                });
+            }
+            NextMarker = chank.NextMarker;
+        }
+        oraWrapper_1.default.succeedSpinner(spinner, i18n_1.default.__('functionsFound', { count: `${functions.length}` }));
+    }
+    catch (error) {
+        oraWrapper_1.default.failSpinner(spinner, i18n_1.default.__('failedToLoadFunctions'));
+        throw error;
+    }
+    return functions;
+};
+exports.getAllLambdas = getAllLambdas;

package/dist/lambda/logUtils.js

@@ -3,7 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.prettyPrintJson = exports.log = void 0;
+exports.getReadableFileSize = exports.prettyPrintJson = exports.log = void 0;
 const chalk_1 = __importDefault(require("chalk"));
 const util_1 = __importDefault(require("util"));
 const log = (message, styles) => {
@@ -34,3 +34,13 @@ const prettyPrintJson = (obj, depth = null) => {
     console.log(util_1.default.inspect(objToPrint, { colors: true, depth }));
 };
 exports.prettyPrintJson = prettyPrintJson;
+const getReadableFileSize = (fileSizeInBytes) => {
+    let i = -1;
+    const byteUnits = [' kB', ' MB', ' GB', ' TB', 'PB', 'EB', 'ZB', 'YB'];
+    do {
+        fileSizeInBytes = fileSizeInBytes / 1024;
+        i++;
+    } while (fileSizeInBytes > 1024);
+    return Math.max(fileSizeInBytes, 0.1).toFixed(1) + byteUnits[i];
+};
+exports.getReadableFileSize = getReadableFileSize;

package/dist/lambda/scanDetailCompletion.js

@@ -4,6 +4,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getScanResources = exports.pollScanUntilCompletion = void 0;
+const i18n_1 = __importDefault(require("i18n"));
 const requestUtils_1 = require("../utils/requestUtils");
 const commonApi_1 = require("../utils/commonApi");
 const oraWrapper_1 = __importDefault(require("../utils/oraWrapper"));
@@ -23,9 +24,8 @@ exports.getScanResources = getScanResources;
 const pollScanUntilCompletion = async (config, timeoutInMinutes, params, scanId) => {
     const client = (0, commonApi_1.getHttpClient)(config);
     const activeStatuses = ['PENDING', 'SCANNING', 'QUEUED'];
-    const startedText = 'Scan started';
     const maxEndTime = new Date().getTime() + timeoutInMinutes * MS_IN_MINUTE;
-    const startScanSpinner = oraWrapper_1.default.returnOra(startedText);
+    const startScanSpinner = oraWrapper_1.default.returnOra(i18n_1.default.__('scanStarted'));
     oraWrapper_1.default.startSpinner(startScanSpinner);
     await (0, requestUtils_1.sleep)(5000);
     let complete = false;
@@ -42,11 +42,11 @@ const pollScanUntilCompletion = async (config, timeoutInMinutes, params, scanId)
             await (0, requestUtils_1.sleep)(2 * 1000);
         }
         catch (error) {
-            oraWrapper_1.default.failSpinner(startScanSpinner, 'Scan Failed');
+            oraWrapper_1.default.failSpinner(startScanSpinner, i18n_1.default.__('scanFailed'));
             throw error;
         }
         if (Date.now() >= maxEndTime) {
-            oraWrapper_1.default.failSpinner(startScanSpinner, 'Scan timed out');
+            oraWrapper_1.default.failSpinner(startScanSpinner, i18n_1.default.__('scanTimedOut'));
             throw new cliError_1.CliError(constants_1.ERRORS.FAILED_TO_GET_SCAN, {
                 errorCode: 'waitingTimedOut'
             });

package/dist/lambda/scanRequest.js

@@ -17,13 +17,13 @@ const constants_1 = require("./constants");
 const sendScanPostRequest = async (config, params, functionsEvent, showProgress = false) => {
     const client = (0, commonApi_1.getHttpClient)(config);
     if (showProgress) {
-        (0, logUtils_1.log)(`${log_symbols_1.default.success} Sending Lambda Function scan request to Contrast`);
+        (0, logUtils_1.log)(i18n_1.default.__('sendingScanRequest', { icon: log_symbols_1.default.success }));
     }
     const res = await client.postFunctionScan(config, params, functionsEvent);
     const { statusCode, body } = res;
     if (statusCode === 201) {
         if (showProgress) {
-            (0, logUtils_1.log)(`${log_symbols_1.default.success} Scan requested successfully`);
+            (0, logUtils_1.log)(i18n_1.default.__('scanRequestedSuccessfully', { icon: log_symbols_1.default.success }));
         }
         return body?.data?.scanId;
     }
@@ -32,7 +32,10 @@ const sendScanPostRequest = async (config, params, functionsEvent, showProgress
     let description = '';
     switch (errorCode) {
         case 'not_supported_runtime':
-            description = i18n_1.default.__(errorCode, data?.runtime, data?.supportedRuntimes.sort().join(' | '));
+            description = i18n_1.default.__(errorCode, {
+                runtime: data?.runtime,
+                supportedRuntimes: data?.supportedRuntimes.sort().join(' | ')
+            });
             errorCode = false;
             break;
     }
@@ -59,7 +62,10 @@ const requestScanFunctionPost = async (config, lambdaOptions) => {
     const { verbose, jsonOutput, functionName } = lambdaOptions;
     const lambdaClient = (0, aws_1.getLambdaClient)(lambdaOptions);
     if (!jsonOutput) {
-        (0, logUtils_1.log)(`${log_symbols_1.default.success} Fetching configuration and policies for Lambda Function ${chalk_1.default.bold(functionName)}`);
+        (0, logUtils_1.log)(i18n_1.default.__('fetchingConfiguration', {
+            icon: log_symbols_1.default.success,
+            functionName: chalk_1.default.bold(functionName)
+        }));
     }
     const lambdaConfig = await (0, aws_1.getLambdaFunctionConfiguration)(lambdaClient, lambdaOptions);
     if (!lambdaConfig?.Configuration) {
@@ -84,7 +90,7 @@ const requestScanFunctionPost = async (config, lambdaOptions) => {
         accountId: parsedARN.accountId
     };
     if (verbose) {
-        (0, logUtils_1.log)(`${log_symbols_1.default.success} Fetched configuration from AWS:`);
+        (0, logUtils_1.log)(i18n_1.default.__('fetchedConfiguration', { icon: log_symbols_1.default.success }));
         (0, logUtils_1.prettyPrintJson)(functionEvent);
     }
     const scanId = await sendScanPostRequest(config, params, functionEvent, !jsonOutput);

package/dist/lambda/utils.js

@@ -3,41 +3,128 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.exportedForTesting = exports.prettyPrintResults = exports.toLowerKeys = void 0;
+exports.exportedForTesting = exports.printResults = exports.toLowerKeys = void 0;
 const chalk_1 = __importDefault(require("chalk"));
 const lodash_1 = require("lodash");
+const i18n_1 = __importDefault(require("i18n"));
 const logUtils_1 = require("./logUtils");
+i18n_1.default.setLocale('en');
+class PrintVulnerability {
+    constructor(index, vulnerability, group) {
+        const { severityText, title, description, remediation, categoryText } = vulnerability;
+        this.group = group;
+        this.vulnerability = vulnerability;
+        this.index = index;
+        this.title = title;
+        this.severity = (0, lodash_1.capitalize)(severityText);
+        this.description = underlineLinks(description);
+        this.remediation = remediation?.description;
+        this.recommendation = '';
+        this.whatHappened = '';
+        if (categoryText === 'PERMISSIONS') {
+            this.formatPermissions();
+        }
+        else if (categoryText === 'DEPENDENCIES') {
+            this.formatDependencies();
+        }
+    }
+    formatPermissions() {
+        const { leastPrivilege, comment } = this.vulnerability.evidence;
+        const violatingPolicies = leastPrivilege?.violatingPolicies || [];
+        const filteredPolicies = violatingPolicies
+            .filter((vp) => vp?.suggestedPolicy?.suggestedPolicyCode?.length)
+            .map((vp) => vp?.suggestedPolicy);
+        const shouldNumerate = filteredPolicies.length > 1;
+        filteredPolicies.forEach((policies, i) => {
+            const { suggestedPolicyCode, description } = policies;
+            suggestedPolicyCode.forEach((policy) => {
+                const { snippet, title } = policy;
+                this.recommendation += shouldNumerate
+                    ? ` ${i + 1}. ${description}\n`
+                    : `${description}\n`;
+                if (title !== 'DELETE POLICY') {
+                    this.recommendation += `${snippet}\n`;
+                }
+            });
+        });
+        if (comment?.length) {
+            const splitComment = (comment) => {
+                const [policy, description] = comment.split(':').map(c => c.trim());
+                return { policy, description };
+            };
+            const groupByPolicy = (0, lodash_1.groupBy)(comment, c => splitComment(c).policy);
+            Object.entries(groupByPolicy).forEach(([policy, commentArr]) => {
+                const comments = commentArr
+                    .map(splitComment)
+                    .map(({ description }) => ` - ${description}`)
+                    .join('\n');
+                this.whatHappened += i18n_1.default.__('whatHappenedItem', { policy, comments });
+            });
+        }
+    }
+    formatDependencies() {
+        if (!this.group?.length) {
+            this.recommendation = this.vulnerability?.remediation?.description;
+            return;
+        }
+        const maxSeverity = (0, lodash_1.minBy)(this.group, 'severity');
+        this.title = i18n_1.default.__('vulnerableDependency');
+        this.severity = (0, lodash_1.capitalize)(maxSeverity.severityText);
+        this.recommendation = maxSeverity.remediation?.description;
+        const library = groupByDependency({ title: this.vulnerability.title });
+        const [packageName, version] = library.split(':');
+        const allCves = this.group.map(groupByCVE);
+        this.description = i18n_1.default.__mf('vulnerableDependencyDescriptions', {
+            NUM: this.group.length,
+            packageName,
+            version,
+            cves: allCves.join(' | ')
+        });
+    }
+    print() {
+        (0, logUtils_1.log)(`${this.index}.`);
+        (0, logUtils_1.log)(`${chalk_1.default.bold(this.severity)} | ${chalk_1.default.bold(this.title)} ${this.description}`);
+        if (this.whatHappened) {
+            (0, logUtils_1.log)(`\n${chalk_1.default.bold(i18n_1.default.__('whatHappenedTitle'))}\n${this.whatHappened}`);
+        }
+        if (this.recommendation) {
+            (0, logUtils_1.log)(`${chalk_1.default.bold(i18n_1.default.__('recommendation'))}\n${this.recommendation}`);
+        }
+        (0, logUtils_1.log)('');
+    }
+}
 const groupByCVE = ({ title }) => title.substring(0, title.indexOf('[') - 1);
 const groupByDependency = ({ title }) => title.substring(title.indexOf('[') + 1, title.indexOf(']'));
-const prettyPrintResults = (results) => {
-    (0, logUtils_1.log)('');
+const printResults = (results) => {
     const vulnerabs = results.filter(r => r.category === 1 || r.category === 4);
     const sortBySeverity = (0, lodash_1.sortBy)(vulnerabs, ['severity', 'title']);
     const notDependencies = sortBySeverity.filter(r => r.category !== 1);
     const dependencies = sortBySeverity.filter(r => r.category === 1);
     const dependenciesByLibrary = (0, lodash_1.groupBy)(dependencies, groupByDependency);
-    const dependenciesCount = Object.keys(dependenciesByLibrary).length;
-    notDependencies.forEach(printVulnerability);
+    (0, logUtils_1.log)('');
+    notDependencies.forEach((vulnerability, index) => {
+        const printVulnerab = new PrintVulnerability(index + 1, vulnerability);
+        printVulnerab.print();
+    });
     const prevIndex = notDependencies.length + 1;
-    Object.entries(dependenciesByLibrary).forEach(([library, group], i) => {
-        const maxSeverity = (0, lodash_1.minBy)(group, 'severity');
-        const allCves = group.map(groupByCVE);
-        (0, logUtils_1.log)(prevIndex + i);
-        (0, logUtils_1.log)(`${chalk_1.default.bold((0, lodash_1.capitalize)(maxSeverity.severityText))} | ${chalk_1.default.bold('Vulnerable dependency')} ${library} has ${group.length} known CVEs`);
-        (0, logUtils_1.log)(allCves.join(', '));
-        if (maxSeverity.remediation?.description) {
-            (0, logUtils_1.log)(`${chalk_1.default.bold('Recommendation:')} ${maxSeverity.remediation.description}`);
-        }
-        (0, logUtils_1.log)('');
+    Object.entries(dependenciesByLibrary).forEach(([, group], i) => {
+        const printVulnerab = new PrintVulnerability(prevIndex + i, group[0], group);
+        printVulnerab.print();
     });
+    const dependenciesCount = Object.keys(dependenciesByLibrary).length;
     const resultCount = notDependencies.length + dependenciesCount;
+    (0, logUtils_1.log)(i18n_1.default.__n('foundVulnerabilities', resultCount), { bold: true });
+    const counters = getNotDependenciesCounters(notDependencies);
+    if (dependenciesCount) {
+        counters.push(i18n_1.default.__n('dependenciesCount', dependenciesCount));
+    }
+    (0, logUtils_1.log)(counters.join(' | '), { bold: true });
+};
+exports.printResults = printResults;
+const getNotDependenciesCounters = (notDependencies) => {
     const groupByType = (0, lodash_1.groupBy)(notDependencies, ['categoryText']);
-    const summary = Object.values(groupByType).map(group => `${group.length} ${(0, lodash_1.capitalize)(group[0].categoryText)}`);
-    (0, logUtils_1.log)(`Found ${resultCount} vulnerabilities`, { bold: true });
-    summary.push(`${dependenciesCount} Dependencies`);
-    (0, logUtils_1.log)(chalk_1.default.bold(summary.join(' | ')));
+    return Object.values(groupByType).map(group => `${group.length} ${(0, lodash_1.capitalize)(group[0].categoryText)}`);
 };
-exports.prettyPrintResults = prettyPrintResults;
 const underlineLinks = (text) => {
     if (!text) {
         return text;
@@ -45,35 +132,6 @@ const underlineLinks = (text) => {
     const urlRegex = /(https?:\/\/[^\s]+)/g;
     return text.replace(urlRegex, chalk_1.default.underline('$1'));
 };
-const printVulnerability = (vulnerability, index) => {
-    (0, logUtils_1.log)(index + 1);
-    const descriptionWithLinks = underlineLinks(vulnerability.description);
-    (0, logUtils_1.log)(`${chalk_1.default.bold((0, lodash_1.capitalize)(vulnerability.severityText))} | ${chalk_1.default.bold(vulnerability.title)} ${descriptionWithLinks}`);
-    const category = vulnerability?.categoryText;
-    switch (category) {
-        case 'PERMISSIONS':
-            printLeastPrivilegeRemediation(vulnerability);
-            break;
-        default:
-            printRemediation(vulnerability);
-    }
-    (0, logUtils_1.log)('');
-};
-const printLeastPrivilegeRemediation = (vulnerability) => {
-    (0, logUtils_1.log)(`${chalk_1.default.bold('Recommendation:')} Replace the existing policies with the following`);
-    const violatingPolicies = vulnerability?.evidence?.leastPrivilege?.violatingPolicies || [];
-    violatingPolicies
-        .filter((vp) => vp?.suggestedPolicy?.suggestedPolicyCode?.length)
-        .map((vp) => vp?.suggestedPolicy?.suggestedPolicyCode)
-        .forEach((policies) => {
-        policies.forEach((policy) => {
-            console.log(policy.snippet);
-        });
-    });
-};
-const printRemediation = (vulnerability) => {
-    (0, logUtils_1.log)(`Remediation - ${vulnerability?.remediation?.description || 'Unknown'}`);
-};
 function toLowerKeys(obj) {
     return Object.keys(obj).reduce((accumulator, key) => {
         const new_key = `${key[0].toLowerCase()}${key.slice(1)}`;
@@ -83,8 +141,7 @@ function toLowerKeys(obj) {
 }
 exports.toLowerKeys = toLowerKeys;
 exports.exportedForTesting = {
-    printLeastPrivilegeRemediation,
-    printRemediation,
-    printVulnerability,
-    underlineLinks
+    underlineLinks,
+    printResults,
+    PrintVulnerability
 };

package/dist/scan/autoDetection.js

@@ -1,8 +1,6 @@
 "use strict";
 const i18n = require('i18n');
-const { zipValidator } = require('./scan');
 const fileFinder = require('./fileUtils');
-const { supportedLanguages } = require('../constants/constants');
 const autoDetectFileAndLanguage = async (configToUse) => {
     const entries = await fileFinder.findFile();
     if (entries.length === 1) {
@@ -15,8 +13,6 @@ const autoDetectFileAndLanguage = async (configToUse) => {
         if (configToUse.name === undefined) {
             configToUse.name = entries[0];
         }
-        zipValidator(configToUse);
-        assignLanguage(entries, configToUse);
     }
     else {
         errorOnFileDetection(entries);
@@ -42,35 +38,7 @@ const errorOnFileDetection = entries => {
     }
     process.exit(1);
 };
-const assignLanguage = (entries, configToUse) => {
-    let split = entries[0].split('.');
-    const fileType = split[split.length - 1];
-    if (fileType === 'war' || fileType === 'jar') {
-        console.log('Language is Java');
-        configToUse.language = 'JAVA';
-    }
-    else if (fileType === 'dll') {
-        console.log('Language is Dotnet');
-        configToUse.language = 'DOTNET';
-    }
-    else if (fileType === 'js') {
-        console.log('Language is Javascript');
-        configToUse.language = supportedLanguages.JAVASCRIPT;
-    }
-    else if (fileType === 'zip') {
-        if (configToUse.language !== supportedLanguages.JAVASCRIPT) {
-            console.log(i18n.__('zipErrorScan'));
-            process.exit(1);
-        }
-        console.log('Language is Javascript within zip file');
-    }
-    else {
-        console.log(i18n.__('unknownFileErrorScan'));
-        process.exit(1);
-    }
-};
 module.exports = {
     autoDetectFileAndLanguage,
-    assignLanguage,
     errorOnFileDetection
 };