@contrast/contrast 1.0.0 → 1.0.3

package/dist/constants/locales.js

@@ -1,5 +1,6 @@
 "use strict";
 const { lambda } = require('./lambda');
+const chalk = require('chalk');
 const en_locales = () => {
     return {
         successHeader: 'SUCCESS',
@@ -101,29 +102,33 @@ const en_locales = () => {
         constantsGradleMultiProject: 'Specify the sub project within your gradle application.',
         constantsScan: 'Upload java binaries to the static scan service',
         constantsWaitForScan: 'Waits for the result of the scan',
-        constantsProjectName: 'The name of the scan project in Contrast',
-        constantsFileName: 'The name of the file to Scan',
+        constantsProjectName: 'Contrast project name. If not specified, Contrast uses contrast.settings to identify the project or creates a project.',
         constantsProjectId: 'The ID associated with a scan project. Replace <ProjectID> with the ID for the scan project. To find the ID, select a scan project in Contrast and locate the last number in the URL.',
-        constantsScanTimeout: 'Set a specific time span before the function times out. Default timeout is 300 seconds if scan_timeout is not set. The format of the value of the parameter is "20" seconds or "80" seconds.',
         constantsReport: 'Display vulnerability information for this application',
         constantsFail: 'Set the process to fail if this option is set in combination with the --report and --cve_severity.',
         failOptionErrorMessage: " FAIL - CVE's have been detected that match at least the cve_severity or cve_threshold option specified.",
         constantsSeverity: 'Combined with the --report command, allows the user to report libraries with vulnerabilities above a chosen severity level. For example, cve_severity medium only reports libraries with vulnerabilities at medium or higher severity. Values for level are high, medium or low.',
         constantsCount: "The number of CVE's that must be exceeded to fail a build",
-        constantsHeader: 'Contrast CLI',
+        constantsHeader: 'CodeSec by Contrast Security',
         constantsPrerequisitesContentScanLanguages: 'Java & JavaScript supported',
-        constantsContrastContent: 'Use the Contrast CLI, the fastest and most accurate code scan, to help find and eliminate security bugs in your code.',
+        constantsContrastContent: 'Use the Contrast CLI to run a scan(Java, JavaScript and .NET ) or lambda command (Java and Python) to find your vulnerabilities and start securing your code.',
         constantsUsageGuideContentRecommendation: 'Our recommendation is that this is invoked as part of a CI pipeline so that running the cli is automated as part of your build process.',
         constantsPrerequisitesHeader: 'Pre-requisites',
+        constantsAuthUsageHeader: 'Usage',
+        constantsAuthUsageContents: 'contrast auth',
+        constantsAuthHeaderContents: 'Authorize with external identity provider to perform scans on code',
+        configHeader: 'Config',
+        constantsConfigUsageContents: 'view / clear the configuration',
         constantsPrerequisitesContent: 'To scan a Java project you will need a .jar or .war file for analysis\n' +
-            'To scan a Javascript project you will need a .js or.zip file for analysis\n',
+            'To scan a Javascript project you will need a .js or.zip file for analysis\n' +
+            'To scan a .NET c# webforms project you will need a .exe or a .zip file for analysis\n',
         constantsUsage: 'Usage',
         constantsUsageCommandExample: 'contrast [command] [options]',
-        constantsUsageCommandInfo: 'The file argument is optional. If no file is given, Contrast will search for a .jar, .war, .js or .zip file in the working directory.\n',
+        constantsUsageCommandInfo: 'The file argument is optional. If no file is given, Contrast will search for a .jar, .war, .exe or .zip file in the working directory.\n',
         constantsUsageCommandInfo24Hours: 'Submitted files are encrypted during upload and deleted in 24 hours.',
         constantsAnd: 'AND',
         constantsJava: 'AND Maven build platform, including the dependency plugin. For a Gradle project, use build.gradle. A gradle-wrapper.properties file is also required. Kotlin is also supported requiring a build.gradle.kts file.',
-        constantsJavaNote: '*Please Note: Running "mvn dependency:tree" or "./gradlew dependencies" in the project directory locally must be successful.',
+        constantsJavaNote: 'Note: Running "mvn dependency:tree" or "./gradlew dependencies" in the project directory locally must be successful.',
         constantsJavaNoteGradle: 'We currently support v4.8 and upwards on Gradle projects',
         constantsDotNet: 'MSBuild 15.0 or greater and have a packages.lock.json file are supported.',
         constantsDotNetNote: 'Please Note: If the packages.lock.json file is not in place it can be generated by setting RestorePackagesWithLockFile to true within each *.csproj and running dotnet build',
@@ -170,6 +175,7 @@ const en_locales = () => {
         constantsTags: 'Apply labels to an application. Labels must be formatted as a comma-delimited list. Example - label1,label2,label3',
         constantsCode: 'Add the application code this application should use in the Contrast UI',
         constantsIgnoreCertErrors: ' For EOP users with a local Teamserver install, this will bypass the SSL certificate and recognise a self signed certificate.',
+        constantsSave: ' Saves the Scan Results JSON to file.',
         constantsIgnoreDev: 'Combined with the --report command excludes developer dependencies from the vulnerabilities report. By default all dependencies are included in a report.',
         constantsCommands: 'Commands',
         constantsScanOptions: 'Scan Options',
@@ -187,9 +193,11 @@ const en_locales = () => {
         noFileFoundScan: "We could't find a suitable file in your directories (we go 3 deep)",
         specifyFileScanError: 'Java Scan requires a .war or .jar file. Javascript Scan requires a .js or .zip file.\nTo start a Scan enter "contrast scan -f <path-to-file>"',
         populateProjectIdMessage: 'project ID is %s',
+        genericServiceError: 'returned with status code %s',
+        permissionsError: 'You do not have the correct permissions here. \n Contact support@contrastsecurity.com to get this fixed.',
         scanErrorFileMessage: 'We only accept the following file types: \nJava - .jar, .war \nJavaScript - .js or .zip files',
         helpAuthSummary: 'Authenticate Contrast using your Github or Google account',
-        helpScanSummary: 'Searches for a .jar, .war, .js or .zip file in the working directory, uploads for analysis and returns the results',
+        helpScanSummary: 'Perform static analysis on binaries / code artifacts',
         helpLambdaSummary: 'Perform scan on AWS Lambda functions',
         helpVersionSummary: 'Displays version of Contrast CLI',
         helpConfigSummary: 'Displays stored credentials',
@@ -200,36 +208,36 @@ const en_locales = () => {
         versionName: 'version',
         configName: 'config',
         helpName: 'help',
-        scanOptionsFileName: '-f, --file',
-        scanOptionsLanguage: '-l, --language',
-        scanOptionsName: '-n, --name',
-        scanOptionsTimeout: '-t, --time-out',
-        scanOptionsVerbose: '-v, --verbose',
-        scanOptionsFileNameSummary: 'Path of the file you want to scan. If no file is specified, Contrast searches for a .jar, .war, .js. or .zip file in the working directory.',
+        scanOptionsLanguageSummary: 'Valid values are JAVA, JAVASCRIPT and DOTNET',
         scanOptionsLanguageSummaryOptional: 'Language of file to send for analysis. ',
         scanOptionsLanguageSummaryRequired: 'If you scan a .zip file or you use the --file option.',
-        scanOptionsNameSummary: 'Contrast project name. If not specified, Contrast uses contrast.settings to identify the project or creates a project.',
         scanOptionsTimeoutSummary: 'Time in seconds to wait for scan to complete. Default value is 300 seconds.',
-        scanOptionsVerboseSummary: 'Returns extended information to the terminal.',
+        scanOptionsFileNameSummary: 'Path of the file you want to scan. If no file is specified, Contrast searches for a .jar, .war, .exe or .zip file in the working directory.',
+        scanOptionsVerboseSummary: ' Returns extended information to the terminal.',
         authSuccessMessage: 'Authentication successful',
-        runScanMessage: 'Now run Contrast Scan',
+        runAuthSuccessMessage: "Now you can use Contrast CLI \nRun 'contrast scan' on your file \n" +
+            "or 'contrast help' to learn more about the capabilities.",
         authWaitingMessage: 'Waiting for auth...',
         authTimedOutMessage: 'Auth Timed out, try again',
         zipErrorScan: 'We only support zip files for JAVASCRIPT language, please set the flag --language JAVASCRIPT',
         unknownFileErrorScan: 'Unsupported file selected for Scan.',
-        foundScanFile: 'found: %s',
-        foundVulnerabilities: 'Found %s vulnerabilities',
-        foundDetailedVulnerabilities: '%s Critical %s High %s Medium %s Low %s Note',
+        foundScanFile: 'Found: %s',
+        foundDetailedVulnerabilities: chalk.bold('%s Critical') +
+            ' | ' +
+            chalk.bold('%s High') +
+            ' | %s Medium | %s Low | %s Note',
         requiredParams: 'All required parameters are not present.',
         timeoutScan: 'Timeout set to 5 minutes.',
         searchingScanFileDirectory: 'Searching for file to scan from %s...',
         scanHeader: 'Contrast Scan CLI',
+        authHeader: 'Auth',
         lambdaHeader: 'Contrast lambda help',
         lambdaSummary: 'Performs static security scan on an AWS Lambda Function.\nProduces CVE (Vulnerable Dependencies) and Least Privilege violations/remediation results.',
         lambdaUsage: 'contrast lambda --function-name <function> [options]',
         lambdaPrerequisitesContent: 'contrast cli',
         scanFileNameOption: ' -f, --file',
         lambdaFunctionNameOption: ' -f, --function-name',
+        lambdaListFunctionsOption: ' -l, --list-functions',
         lambdaEndpointOption: '-e, --endpoint-url',
         lambdaRegionOption: '-r, --region',
         lambdaProfileOption: '-p, --profile',
@@ -237,6 +245,7 @@ const en_locales = () => {
         lambdaVerboseOption: '-v, --verbose',
         lambdaHelpOption: '-h, --help',
         lambdaFunctionNameSummery: 'Name of AWS lambda function to scan.',
+        lambdaListFunctionsSummery: 'List all available lambda functions to scan.',
         lambdaEndpointSummery: 'AWS Endpoint override, works like in AWS CLI.',
         lambdaRegionSummery: 'Region override, default to AWS_DEAFAULT_REGION env var, works like in AWS CLI.',
         lambdaProfileSummery: 'AWS configuration profile override, works like in AWS CLI.',
@@ -251,6 +260,36 @@ const en_locales = () => {
         connectionError: 'An error has occurred when trying to get the Project Id please check your internet connection or provide the Project Id manually',
         internalServerErrorHeader: '500 error - Internal server error',
         resourceLockedErrorHeader: '423 error - Resource is locked',
+        auditHeader: 'Contrast Audit',
+        auditHeaderMessage: `
+    Performs software composition analysis (SCA) on your application/code time to show you the dependencies between open source libraries, including where vulnerabilities were introduced.\n
+    Our recommendation is that this is invoked as part of a CI pipeline so that running the cli is automated as part of your build process.`,
+        constantsAuditPrerequisitesContentSupportedLanguages: 'Supported languages and their requirements are:',
+        constantsAuditPrerequisitesContentJava: 'Java: ',
+        constantsAuditPrerequisitesContentMessage: `
+       pom.xml AND Maven build platform, including the dependency plugin. 
+       For a Gradle project (v4.8+) use build.gradle. A gradle-wrapper.properties file is also required.
+       Kotlin is also supported requiring a build.gradle.kts file.`,
+        constantsAuditPrerequisitesContentDotNet: '.NET framework and .NET core: ',
+        constantsAuditPrerequisitesContentDotNetMessage: `
+       MSBuild 15.0 or greater and have a packages.lock.json file are supported.\n
+       Note: If the packages.lock.json file is unavailable it can be generated by setting RestorePackagesWithLockFile to true within each *.csproj file and running dotnet build.\n`,
+        constantsAuditPrerequisitesContentLanguageNode: 'Node: ',
+        constantsAuditPrerequisitesContentLanguageRuby: 'Ruby: ',
+        constantsAuditPrerequisitesContentLanguagePython: 'Python: ',
+        constantsAuditPrerequisitesContentLanguageNodeMessage: '*.package.json AND a lock file either *.package-lock.json or *.yarn.lock',
+        constantsAuditPrerequisitesContentLanguageRubyMessage: 'gemfile AND gemfile.lock',
+        constantsAuditPrerequisitesContentLanguagePythonMessage: 'pipfile AND pipfile.lock',
+        constantsAuditOptions: 'Audit Options',
+        auditOptionsIgnoreDevDependencies: '-igd, --ignore-dev',
+        auditOptionsIgnoreDevDependenciesDescription: 'ignores DevDependencies',
+        auditOptionsSave: '-s, --save',
+        auditOptionsSaveDescription: 'saves the output in specified format Txt text, sbom',
+        scanNoVulnerabilitiesFound: '👏 No vulnerabilities found',
+        scanNoFiletypeSpecifiedForSave: 'Please specify file type to save results to, accepted value is SARIF',
+        auditSBOMSaveSuccess: '\n Software Bill of Materials (SBOM) saved successfully',
+        auditNoFiletypeSpecifiedForSave: `\n ${chalk.yellow.bold('No file type specified for --save option to save audit results to. Use audit --help to see valid --save options.')}`,
+        auditBadFiletypeSpecifiedForSave: `\n ${chalk.yellow.bold('Bad file type specified for --save option. Use audit --help to see valid --save options.')}`,
         ...lambda
     };
 };

package/dist/constants.js

@@ -17,13 +17,21 @@ const scanOptionDefinitions = [
             '}: ' +
             i18n.__('constantsProjectName')
     },
+    {
+        name: 'language',
+        alias: 'l',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('scanOptionsLanguageSummary')
+    },
     {
         name: 'file',
         alias: 'f',
         description: '{bold ' +
             i18n.__('constantsOptional') +
             '}: ' +
-            i18n.__('constantsFileName')
+            i18n.__('scanOptionsFileNameSummary')
     },
     {
         name: 'project-id',
@@ -40,15 +48,7 @@ const scanOptionDefinitions = [
         description: '{bold ' +
             i18n.__('constantsOptional') +
             '}: ' +
-            i18n.__('constantsScanTimeout')
-    },
-    {
-        name: 'language',
-        alias: 'l',
-        description: '{bold ' +
-            i18n.__('constantsRequiredCatalogue') +
-            '}: ' +
-            i18n.__('constantsLanguage')
+            i18n.__('scanOptionsTimeoutSummary')
     },
     {
         name: 'organization-id',
@@ -58,14 +58,6 @@ const scanOptionDefinitions = [
             '}: ' +
             i18n.__('constantsOrganizationId')
     },
-    {
-        name: 'yaml-path',
-        alias: 'y',
-        description: '{bold ' +
-            i18n.__('constantsOptional') +
-            '}: ' +
-            i18n.__('constantsYamlPath')
-    },
     {
         name: 'api-key',
         description: '{bold ' +
@@ -82,8 +74,6 @@ const scanOptionDefinitions = [
     },
     {
         name: 'host',
-        alias: 'h',
-        defaultValue: 'app.contrastsecurity.com',
         description: '{bold ' +
             i18n.__('constantsRequired') +
             '}: ' +
@@ -112,11 +102,177 @@ const scanOptionDefinitions = [
             '}:' +
             i18n.__('constantsIgnoreCertErrors')
     },
+    {
+        name: 'verbose',
+        alias: 'v',
+        type: Boolean,
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}:' +
+            i18n.__('scanOptionsVerboseSummary')
+    },
+    {
+        name: 'save',
+        alias: 's',
+        description: '{bold ' + i18n.__('constantsOptional') + '}:' + i18n.__('constantsSave')
+    },
+    {
+        name: 'help',
+        alias: 'h',
+        type: Boolean
+    },
+    {
+        name: 'debug',
+        alias: 'd',
+        type: Boolean
+    }
+];
+const authOptionDefinitions = [
     {
         name: 'help',
+        alias: 'h',
         type: Boolean
     }
 ];
+const configOptionDefinitions = [
+    {
+        name: 'help',
+        alias: 'h',
+        type: Boolean,
+        description: 'Help text'
+    },
+    {
+        name: 'clear',
+        alias: 'c',
+        type: Boolean,
+        description: 'Clear the currently stored config'
+    }
+];
+const auditOptionDefinitions = [
+    {
+        name: 'application-id',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsApplicationId')
+    },
+    {
+        name: 'application-name',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsApplicationName')
+    },
+    {
+        name: 'project-path',
+        defaultValue: process.env.PWD,
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsProjectPath')
+    },
+    {
+        name: 'app-groups',
+        description: '{bold ' +
+            i18n.__('constantsOptionalForCatalogue') +
+            '}: ' +
+            i18n.__('constantsAppGroups')
+    },
+    {
+        name: 'sub-project',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsGradleMultiProject')
+    },
+    {
+        name: 'metadata',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsMetadata')
+    },
+    {
+        name: 'tags',
+        description: '{bold ' + i18n.__('constantsOptional') + '}: ' + i18n.__('constantsTags')
+    },
+    {
+        name: 'code',
+        description: '{bold ' + i18n.__('constantsOptional') + '}: ' + i18n.__('constantsCode')
+    },
+    {
+        name: 'ignore-dev',
+        type: Boolean,
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsIgnoreDev')
+    },
+    {
+        name: 'maven-settings-path'
+    },
+    {
+        name: 'language',
+        alias: 'l',
+        description: '{bold ' +
+            i18n.__('constantsRequiredCatalogue') +
+            '}: ' +
+            i18n.__('constantsLanguage')
+    },
+    {
+        name: 'organization-id',
+        alias: 'o',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsOrganizationId')
+    },
+    {
+        name: 'api-key',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsApiKey')
+    },
+    {
+        name: 'authorization',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsAuthorization')
+    },
+    {
+        name: 'host',
+        alias: 'h',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsHostId')
+    },
+    {
+        name: 'proxy',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsProxyServer')
+    },
+    {
+        name: 'ignore-cert-errors',
+        type: Boolean,
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}:' +
+            i18n.__('constantsIgnoreCertErrors')
+    },
+    {
+        name: 'save',
+        alias: 's',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('auditOptionsSaveDescription')
+    }
+];
 const mainUsageGuide = commandLineUsage([
     {
         header: i18n.__('constantsHeader'),
@@ -130,6 +286,7 @@ const mainUsageGuide = commandLineUsage([
         header: i18n.__('constantsCommands'),
         content: [
             { name: i18n.__('authName'), summary: i18n.__('helpAuthSummary') },
+            { name: i18n.__('scanName'), summary: i18n.__('helpScanSummary') },
             { name: i18n.__('lambdaName'), summary: i18n.__('helpLambdaSummary') },
             { name: i18n.__('versionName'), summary: i18n.__('helpVersionSummary') },
             { name: i18n.__('configName'), summary: i18n.__('helpConfigSummary') },
@@ -145,6 +302,9 @@ module.exports = {
     commandLineDefinitions: {
         mainUsageGuide,
         mainDefinition,
-        scanOptionDefinitions
+        scanOptionDefinitions,
+        auditOptionDefinitions,
+        authOptionDefinitions,
+        configOptionDefinitions
     }
 };

package/dist/index.js

@@ -4,6 +4,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 const command_line_args_1 = __importDefault(require("command-line-args"));
+const processAudit_1 = require("./commands/audit/processAudit");
 const auth_1 = require("./commands/auth/auth");
 const config_1 = require("./commands/config/config");
 const processScan_1 = require("./commands/scan/processScan");
@@ -11,6 +12,8 @@ const constants_1 = __importDefault(require("./constants"));
 const constants_2 = require("./constants/constants");
 const lambda_1 = require("./lambda/lambda");
 const getConfig_1 = require("./utils/getConfig");
+const versionChecker_1 = require("./common/versionChecker");
+const errorHandling_1 = require("./common/errorHandling");
 const { commandLineDefinitions: { mainUsageGuide, mainDefinition } } = constants_1.default;
 const config = (0, getConfig_1.localConfig)(constants_2.APP_NAME, constants_2.APP_VERSION);
 const getMainOption = () => {
@@ -26,31 +29,55 @@ const getMainOption = () => {
     };
 };
 const start = async () => {
-    const { mainOptions, argv: argvMain } = getMainOption();
-    const command = mainOptions.command != undefined ? mainOptions.command.toLowerCase() : '';
-    if (command === 'version') {
-        console.log(constants_2.APP_VERSION);
-        return;
-    }
-    if (command === 'config') {
-        return (0, config_1.processConfig)(argvMain, config);
-    }
-    if (command === 'auth') {
-        return await (0, auth_1.processAuth)(config);
-    }
-    if (command === 'lambda') {
-        return await (0, lambda_1.processLambda)(argvMain);
-    }
-    if (command === 'scan') {
-        return await (0, processScan_1.processScan)();
-    }
-    if (command === 'help' ||
-        argvMain.includes('--help') ||
-        Object.keys(mainOptions).length === 0) {
-        console.log(mainUsageGuide);
+    if (await (0, versionChecker_1.isCorrectNodeVersion)(process.version)) {
+        const { mainOptions, argv: argvMain } = getMainOption();
+        const command = mainOptions.command != undefined ? mainOptions.command.toLowerCase() : '';
+        if (command === 'version' ||
+            argvMain.includes('--v') ||
+            argvMain.includes('--version')) {
+            console.log(constants_2.APP_VERSION);
+            await (0, versionChecker_1.findLatestCLIVersion)();
+            return;
+        }
+        config.set('numOfRuns', config.get('numOfRuns') + 1);
+        if (config.get('numOfRuns') >= 5) {
+            await (0, versionChecker_1.findLatestCLIVersion)();
+            config.set('numOfRuns', 0);
+        }
+        if (command === 'config') {
+            return (0, config_1.processConfig)(argvMain, config);
+        }
+        if (command === 'auth') {
+            return await (0, auth_1.processAuth)(argvMain, config);
+        }
+        if (command === 'lambda') {
+            return await (0, lambda_1.processLambda)(argvMain);
+        }
+        if (command === 'scan') {
+            return await (0, processScan_1.processScan)(argvMain);
+        }
+        if (command === 'audit') {
+            return await (0, processAudit_1.processAudit)(argvMain);
+        }
+        if (command === 'help' ||
+            argvMain.includes('--help') ||
+            Object.keys(mainOptions).length === 0) {
+            console.log(mainUsageGuide);
+        }
+        else if (mainOptions._unknown !== undefined) {
+            const foundCommand = (0, errorHandling_1.findCommandOnError)(mainOptions._unknown);
+            foundCommand
+                ? console.log(`Unknown Command: Did you mean "${foundCommand}"? \nUse "${foundCommand} --help" for the full list of options`)
+                : console.log(`Unknown Command: ${command} \nUse --help for the full list`);
+        }
+        else {
+            console.log(`Unknown Command: ${command} \nUse --help for the full list`);
+        }
+        process.exit(9);
     }
     else {
-        console.log('Unknown Command: ' + command + ' \nUse --help for the full list');
+        console.log('Contrast supports Node versions >=16.13.2 <17. Please use one of those versions.');
+        process.exit(9);
     }
 };
 start();

package/dist/lambda/aws.js

@@ -1,6 +1,10 @@
 "use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.throwAwsError = exports.getLambdaPolicies = exports.getLayersLinks = exports.getLambdaFunctionConfiguration = exports.getLambdaClient = exports.getIAMClient = exports.getRolePolicyNames = exports.getAttachedPolicyNames = void 0;
+const i18n_1 = __importDefault(require("i18n"));
 const client_lambda_1 = require("@aws-sdk/client-lambda");
 const client_iam_1 = require("@aws-sdk/client-iam");
 const credential_provider_ini_1 = require("@aws-sdk/credential-provider-ini");
@@ -20,11 +24,9 @@ const getLambdaClient = (lambdaOptions) => {
         return new client_lambda_1.Lambda(clientOptions);
     }
     catch (error) {
-        const errorObj = error;
-        if (errorObj?.code === 'ERR_INVALID_URL') {
-            throw new cliError_1.CliError(constants_1.ERRORS.AWS_ERROR, { description: errorObj.message });
-        }
-        throw error;
+        throw new cliError_1.CliError(constants_1.ERRORS.AWS_ERROR, {
+            description: error.message
+        });
     }
 };
 exports.getLambdaClient = getLambdaClient;
@@ -60,7 +62,9 @@ const getLayersLinks = async (client, functionConfiguration) => {
         }
         catch (e) {
             if (e instanceof client_lambda_1.ResourceNotFoundException) {
-                e.message = `The layer ${layerDict.Arn} could not be found. We will continue the scan without it.`;
+                e.message = i18n_1.default.__('layerNotFound', {
+                    layerArn: layerDict.Arn || 'unknown_arn'
+                });
                 throw e;
             }
             throw e;
@@ -135,9 +139,8 @@ const getRolePolicies = async (roleName, client) => {
 const getAttachedPolicies = async (roleName, client) => {
     const listAttachedPolicies = await exports.getAttachedPolicyNames(roleName, client);
     const attachedPoliciesPromises = listAttachedPolicies.map(async (policyDict) => {
-        const getPolicyCommand = new client_iam_1.GetPolicyCommand({
-            PolicyArn: policyDict.PolicyArn
-        });
+        const { PolicyArn, PolicyName } = policyDict;
+        const getPolicyCommand = new client_iam_1.GetPolicyCommand({ PolicyArn });
         const policy = await client.send(getPolicyCommand);
         if (policy.Policy) {
             const getPolicyVersionCommand = new client_iam_1.GetPolicyVersionCommand({
@@ -146,8 +149,8 @@ const getAttachedPolicies = async (roleName, client) => {
             });
             const policyVersion = await client.send(getPolicyVersionCommand);
             const policyDoc = JSON.parse(decodeURIComponent(policyVersion?.PolicyVersion?.Document || '{}'));
-            policyDoc['PolicyName'] = policyDict.PolicyName;
-            policyDoc['PolicyArn'] = policyDict.PolicyArn;
+            policyDoc['PolicyName'] = PolicyName;
+            policyDoc['PolicyArn'] = PolicyArn;
             return policyDoc;
         }
     });

package/dist/lambda/help.js

@@ -26,6 +26,10 @@ const lambdaUsageGuide = (0, command_line_usage_1.default)([
                 name: i18n_1.default.__('lambdaFunctionNameOption'),
                 summary: i18n_1.default.__('lambdaFunctionNameSummery')
             },
+            {
+                name: i18n_1.default.__('lambdaListFunctionsOption'),
+                summary: i18n_1.default.__('lambdaListFunctionsSummery')
+            },
             {
                 name: i18n_1.default.__('lambdaEndpointOption'),
                 summary: '{italic ' +