@contrast/contrast 1.0.0 → 1.0.3

package/dist/lambda/lambda.js

@@ -3,7 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.processLambda = void 0;
+exports.getAvailableFunctions = exports.processLambda = void 0;
 const command_line_args_1 = __importDefault(require("command-line-args"));
 const perf_hooks_1 = require("perf_hooks");
 const lodash_1 = require("lodash");
@@ -17,6 +17,7 @@ const scanDetailCompletion_1 = require("./scanDetailCompletion");
 const scanRequest_1 = require("./scanRequest");
 const scanResults_1 = require("./scanResults");
 const utils_1 = require("./utils");
+const lambdaUtils_1 = require("./lambdaUtils");
 const failedStates = [
     'UNSUPPORTED',
     'EXCLUDED',
@@ -28,32 +29,45 @@ const printHelpMessage = () => {
     (0, logUtils_1.log)(help_1.lambdaUsageGuide);
 };
 const getLambdaOptions = (argv) => {
-    const lambdaDefinitions = [
-        { name: 'function-name', alias: 'f', type: String },
-        { name: 'region', alias: 'r', type: String },
-        { name: 'endpoint-url', alias: 'e', type: String },
-        { name: 'profile', alias: 'p', type: String },
-        { name: 'help', alias: 'h', type: Boolean },
-        { name: 'verbose', alias: 'v', type: Boolean },
-        { name: 'json-output', alias: 'j', type: Boolean }
-    ];
-    const lambdaOptions = (0, command_line_args_1.default)(lambdaDefinitions, {
-        argv,
-        partial: true,
-        camelCase: true,
-        caseInsensitive: true
-    });
-    return lambdaOptions;
+    try {
+        const lambdaDefinitions = [
+            { name: 'function-name', alias: 'f', type: String },
+            { name: 'list-functions', alias: 'l', type: Boolean },
+            { name: 'region', alias: 'r', type: String },
+            { name: 'endpoint-url', alias: 'e', type: String },
+            { name: 'profile', alias: 'p', type: String },
+            { name: 'help', alias: 'h', type: Boolean },
+            { name: 'verbose', alias: 'v', type: Boolean },
+            { name: 'json-output', alias: 'j', type: Boolean }
+        ];
+        const lambdaOptions = (0, command_line_args_1.default)(lambdaDefinitions, {
+            argv,
+            partial: true,
+            camelCase: true,
+            caseInsensitive: true
+        });
+        return lambdaOptions;
+    }
+    catch (error) {
+        throw new cliError_1.CliError(constants_1.ERRORS.VALIDATION_FAILED, {
+            description: error.message
+        });
+    }
 };
 const processLambda = async (argv) => {
-    const lambdaOptions = getLambdaOptions(argv);
-    const { help } = lambdaOptions;
-    if (help) {
-        return handleLambdaHelp();
-    }
     try {
+        const lambdaOptions = getLambdaOptions(argv);
+        const { help } = lambdaOptions;
+        if (help) {
+            return handleLambdaHelp();
+        }
         validateRequiredLambdaParams(lambdaOptions);
-        await actualProcessLambda(lambdaOptions);
+        if (lambdaOptions.listFunctions) {
+            await getAvailableFunctions(lambdaOptions);
+        }
+        else {
+            await actualProcessLambda(lambdaOptions);
+        }
     }
     catch (error) {
         if (error instanceof cliError_1.CliError) {
@@ -66,6 +80,11 @@ const processLambda = async (argv) => {
     }
 };
 exports.processLambda = processLambda;
+const getAvailableFunctions = async (lambdaOptions) => {
+    const lambdas = await (0, lambdaUtils_1.getAllLambdas)(lambdaOptions);
+    (0, lambdaUtils_1.printAvailableLambdas)(lambdas, { runtimes: ['python', 'java'] });
+};
+exports.getAvailableFunctions = getAvailableFunctions;
 const actualProcessLambda = async (lambdaOptions) => {
     const auth = (0, paramHandler_1.getAuth)();
     const startTime = perf_hooks_1.performance.now();
@@ -100,16 +119,18 @@ const actualProcessLambda = async (lambdaOptions) => {
     const scanDurationMs = endTime - startTime;
     (0, logUtils_1.log)(`----- Scan completed ${(scanDurationMs / 1000).toFixed(2)}s -----`);
     if (results?.length) {
-        (0, utils_1.prettyPrintResults)(results);
+        (0, utils_1.printResults)(results);
     }
 };
 const validateRequiredLambdaParams = (options) => {
     if (options._unknown?.length) {
         throw new cliError_1.CliError(constants_1.ERRORS.VALIDATION_FAILED, {
-            description: i18n_1.default.__('notSupportedFlags', options._unknown.join('\n'))
+            description: i18n_1.default.__('notSupportedFlags', {
+                flags: options._unknown.join('\n')
+            })
         });
     }
-    if (!options?.functionName) {
+    if (!options?.functionName && !options?.listFunctions) {
         throw new cliError_1.CliError(constants_1.ERRORS.VALIDATION_FAILED, {
             errorCode: 'missingFunctionName'
         });
@@ -120,7 +141,9 @@ const validateRequiredLambdaParams = (options) => {
         .map(p => `--${(0, lodash_1.kebabCase)(p)}`);
     if (flagsWithoutValues.length) {
         throw new cliError_1.CliError(constants_1.ERRORS.VALIDATION_FAILED, {
-            description: i18n_1.default.__('missingFlagArguments', flagsWithoutValues.join('\n'))
+            description: i18n_1.default.__('missingFlagArguments', {
+                flags: flagsWithoutValues.join('\n')
+            })
         });
     }
 };

package/dist/lambda/lambdaUtils.js

@@ -0,0 +1,72 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.printAvailableLambdas = exports.getAllLambdas = void 0;
+const log_symbols_1 = __importDefault(require("log-symbols"));
+const chalk_1 = __importDefault(require("chalk"));
+const i18n_1 = __importDefault(require("i18n"));
+const client_lambda_1 = require("@aws-sdk/client-lambda");
+const lodash_1 = require("lodash");
+const aws_1 = require("./aws");
+const oraWrapper_1 = __importDefault(require("../utils/oraWrapper"));
+const logUtils_1 = require("./logUtils");
+const printAvailableLambdas = (fucntions = [], options) => {
+    const { runtimes, filterText = '' } = options;
+    const searchValue = filterText?.trim().toLowerCase();
+    const filteredFunctions = fucntions
+        .filter(f => runtimes.some(r => f.Runtime?.includes(r)))
+        .filter(f => f.FunctionName?.toLowerCase().includes(searchValue));
+    (0, logUtils_1.log)(i18n_1.default.__('availableForScan', {
+        icon: log_symbols_1.default.success,
+        count: `${filteredFunctions.length}`
+    }));
+    const groupByRuntime = (0, lodash_1.groupBy)(filteredFunctions, 'Runtime');
+    Object.entries(groupByRuntime).forEach(([runtime, arr]) => {
+        const sorted = (0, lodash_1.sortBy)(arr, 'FunctionName');
+        const count = `${arr.filter(a => a.Runtime === runtime).length}`;
+        (0, logUtils_1.log)(chalk_1.default.gray(i18n_1.default.__('runtimeCount', { runtime, count })));
+        sorted.forEach(f => {
+            const size = f.CodeSize ? (0, logUtils_1.getReadableFileSize)(f.CodeSize) : '';
+            (0, logUtils_1.log)(`${f.FunctionName} ${chalk_1.default.gray(`(${size})`)}`);
+        });
+    });
+};
+exports.printAvailableLambdas = printAvailableLambdas;
+const getAllLambdas = async (lambdaOptions) => {
+    const functions = [];
+    const spinner = oraWrapper_1.default.returnOra(i18n_1.default.__('loadingFunctionList'));
+    try {
+        const client = (0, aws_1.getLambdaClient)(lambdaOptions);
+        const command = new client_lambda_1.ListFunctionsCommand({});
+        oraWrapper_1.default.startSpinner(spinner);
+        const data = await client.send(command);
+        const { Functions } = data;
+        let { NextMarker } = data;
+        if (!Functions?.length) {
+            oraWrapper_1.default.failSpinner(spinner, i18n_1.default.__('noFunctionsFound'));
+            return;
+        }
+        functions.push(...Functions);
+        spinner.text = i18n_1.default.__('functionsFound', { count: `${functions.length}` });
+        while (NextMarker) {
+            command.input.Marker = NextMarker;
+            const chank = await client.send(command);
+            if (chank.Functions?.length) {
+                functions.push(...chank.Functions);
+                spinner.text = i18n_1.default.__('functionsFound', {
+                    count: `${functions.length}`
+                });
+            }
+            NextMarker = chank.NextMarker;
+        }
+        oraWrapper_1.default.succeedSpinner(spinner, i18n_1.default.__('functionsFound', { count: `${functions.length}` }));
+    }
+    catch (error) {
+        oraWrapper_1.default.failSpinner(spinner, i18n_1.default.__('failedToLoadFunctions'));
+        throw error;
+    }
+    return functions;
+};
+exports.getAllLambdas = getAllLambdas;

package/dist/lambda/logUtils.js

@@ -3,7 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.prettyPrintJson = exports.log = void 0;
+exports.getReadableFileSize = exports.prettyPrintJson = exports.log = void 0;
 const chalk_1 = __importDefault(require("chalk"));
 const util_1 = __importDefault(require("util"));
 const log = (message, styles) => {
@@ -34,3 +34,13 @@ const prettyPrintJson = (obj, depth = null) => {
     console.log(util_1.default.inspect(objToPrint, { colors: true, depth }));
 };
 exports.prettyPrintJson = prettyPrintJson;
+const getReadableFileSize = (fileSizeInBytes) => {
+    let i = -1;
+    const byteUnits = [' kB', ' MB', ' GB', ' TB', 'PB', 'EB', 'ZB', 'YB'];
+    do {
+        fileSizeInBytes = fileSizeInBytes / 1024;
+        i++;
+    } while (fileSizeInBytes > 1024);
+    return Math.max(fileSizeInBytes, 0.1).toFixed(1) + byteUnits[i];
+};
+exports.getReadableFileSize = getReadableFileSize;

package/dist/lambda/scanDetailCompletion.js

@@ -4,6 +4,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getScanResources = exports.pollScanUntilCompletion = void 0;
+const i18n_1 = __importDefault(require("i18n"));
 const requestUtils_1 = require("../utils/requestUtils");
 const commonApi_1 = require("../utils/commonApi");
 const oraWrapper_1 = __importDefault(require("../utils/oraWrapper"));
@@ -23,9 +24,8 @@ exports.getScanResources = getScanResources;
 const pollScanUntilCompletion = async (config, timeoutInMinutes, params, scanId) => {
     const client = (0, commonApi_1.getHttpClient)(config);
     const activeStatuses = ['PENDING', 'SCANNING', 'QUEUED'];
-    const startedText = 'Scan started';
     const maxEndTime = new Date().getTime() + timeoutInMinutes * MS_IN_MINUTE;
-    const startScanSpinner = oraWrapper_1.default.returnOra(startedText);
+    const startScanSpinner = oraWrapper_1.default.returnOra(i18n_1.default.__('scanStarted'));
     oraWrapper_1.default.startSpinner(startScanSpinner);
     await (0, requestUtils_1.sleep)(5000);
     let complete = false;
@@ -42,11 +42,11 @@ const pollScanUntilCompletion = async (config, timeoutInMinutes, params, scanId)
             await (0, requestUtils_1.sleep)(2 * 1000);
         }
         catch (error) {
-            oraWrapper_1.default.failSpinner(startScanSpinner, 'Scan Failed');
+            oraWrapper_1.default.failSpinner(startScanSpinner, i18n_1.default.__('scanFailed'));
             throw error;
         }
         if (Date.now() >= maxEndTime) {
-            oraWrapper_1.default.failSpinner(startScanSpinner, 'Scan timed out');
+            oraWrapper_1.default.failSpinner(startScanSpinner, i18n_1.default.__('scanTimedOut'));
             throw new cliError_1.CliError(constants_1.ERRORS.FAILED_TO_GET_SCAN, {
                 errorCode: 'waitingTimedOut'
             });

package/dist/lambda/scanRequest.js

@@ -17,13 +17,13 @@ const constants_1 = require("./constants");
 const sendScanPostRequest = async (config, params, functionsEvent, showProgress = false) => {
     const client = (0, commonApi_1.getHttpClient)(config);
     if (showProgress) {
-        (0, logUtils_1.log)(`${log_symbols_1.default.success} Sending Lambda Function scan request to Contrast`);
+        (0, logUtils_1.log)(i18n_1.default.__('sendingScanRequest', { icon: log_symbols_1.default.success }));
     }
     const res = await client.postFunctionScan(config, params, functionsEvent);
     const { statusCode, body } = res;
     if (statusCode === 201) {
         if (showProgress) {
-            (0, logUtils_1.log)(`${log_symbols_1.default.success} Scan requested successfully`);
+            (0, logUtils_1.log)(i18n_1.default.__('scanRequestedSuccessfully', { icon: log_symbols_1.default.success }));
         }
         return body?.data?.scanId;
     }
@@ -32,7 +32,10 @@ const sendScanPostRequest = async (config, params, functionsEvent, showProgress
     let description = '';
     switch (errorCode) {
         case 'not_supported_runtime':
-            description = i18n_1.default.__(errorCode, data?.runtime, data?.supportedRuntimes.sort().join(' | '));
+            description = i18n_1.default.__(errorCode, {
+                runtime: data?.runtime,
+                supportedRuntimes: data?.supportedRuntimes.sort().join(' | ')
+            });
             errorCode = false;
             break;
     }
@@ -59,7 +62,10 @@ const requestScanFunctionPost = async (config, lambdaOptions) => {
     const { verbose, jsonOutput, functionName } = lambdaOptions;
     const lambdaClient = (0, aws_1.getLambdaClient)(lambdaOptions);
     if (!jsonOutput) {
-        (0, logUtils_1.log)(`${log_symbols_1.default.success} Fetching configuration and policies for Lambda Function ${chalk_1.default.bold(functionName)}`);
+        (0, logUtils_1.log)(i18n_1.default.__('fetchingConfiguration', {
+            icon: log_symbols_1.default.success,
+            functionName: chalk_1.default.bold(functionName)
+        }));
     }
     const lambdaConfig = await (0, aws_1.getLambdaFunctionConfiguration)(lambdaClient, lambdaOptions);
     if (!lambdaConfig?.Configuration) {
@@ -84,7 +90,7 @@ const requestScanFunctionPost = async (config, lambdaOptions) => {
         accountId: parsedARN.accountId
     };
     if (verbose) {
-        (0, logUtils_1.log)(`${log_symbols_1.default.success} Fetched configuration from AWS:`);
+        (0, logUtils_1.log)(i18n_1.default.__('fetchedConfiguration', { icon: log_symbols_1.default.success }));
         (0, logUtils_1.prettyPrintJson)(functionEvent);
     }
     const scanId = await sendScanPostRequest(config, params, functionEvent, !jsonOutput);

package/dist/lambda/utils.js

@@ -3,41 +3,128 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.exportedForTesting = exports.prettyPrintResults = exports.toLowerKeys = void 0;
+exports.exportedForTesting = exports.printResults = exports.toLowerKeys = void 0;
 const chalk_1 = __importDefault(require("chalk"));
 const lodash_1 = require("lodash");
+const i18n_1 = __importDefault(require("i18n"));
 const logUtils_1 = require("./logUtils");
+i18n_1.default.setLocale('en');
+class PrintVulnerability {
+    constructor(index, vulnerability, group) {
+        const { severityText, title, description, remediation, categoryText } = vulnerability;
+        this.group = group;
+        this.vulnerability = vulnerability;
+        this.index = index;
+        this.title = title;
+        this.severity = (0, lodash_1.capitalize)(severityText);
+        this.description = underlineLinks(description);
+        this.remediation = remediation?.description;
+        this.recommendation = '';
+        this.whatHappened = '';
+        if (categoryText === 'PERMISSIONS') {
+            this.formatPermissions();
+        }
+        else if (categoryText === 'DEPENDENCIES') {
+            this.formatDependencies();
+        }
+    }
+    formatPermissions() {
+        const { leastPrivilege, comment } = this.vulnerability.evidence;
+        const violatingPolicies = leastPrivilege?.violatingPolicies || [];
+        const filteredPolicies = violatingPolicies
+            .filter((vp) => vp?.suggestedPolicy?.suggestedPolicyCode?.length)
+            .map((vp) => vp?.suggestedPolicy);
+        const shouldNumerate = filteredPolicies.length > 1;
+        filteredPolicies.forEach((policies, i) => {
+            const { suggestedPolicyCode, description } = policies;
+            suggestedPolicyCode.forEach((policy) => {
+                const { snippet, title } = policy;
+                this.recommendation += shouldNumerate
+                    ? ` ${i + 1}. ${description}\n`
+                    : `${description}\n`;
+                if (title !== 'DELETE POLICY') {
+                    this.recommendation += `${snippet}\n`;
+                }
+            });
+        });
+        if (comment?.length) {
+            const splitComment = (comment) => {
+                const [policy, description] = comment.split(':').map(c => c.trim());
+                return { policy, description };
+            };
+            const groupByPolicy = (0, lodash_1.groupBy)(comment, c => splitComment(c).policy);
+            Object.entries(groupByPolicy).forEach(([policy, commentArr]) => {
+                const comments = commentArr
+                    .map(splitComment)
+                    .map(({ description }) => ` - ${description}`)
+                    .join('\n');
+                this.whatHappened += i18n_1.default.__('whatHappenedItem', { policy, comments });
+            });
+        }
+    }
+    formatDependencies() {
+        if (!this.group?.length) {
+            this.recommendation = this.vulnerability?.remediation?.description;
+            return;
+        }
+        const maxSeverity = (0, lodash_1.minBy)(this.group, 'severity');
+        this.title = i18n_1.default.__('vulnerableDependency');
+        this.severity = (0, lodash_1.capitalize)(maxSeverity.severityText);
+        this.recommendation = maxSeverity.remediation?.description;
+        const library = groupByDependency({ title: this.vulnerability.title });
+        const [packageName, version] = library.split(':');
+        const allCves = this.group.map(groupByCVE);
+        this.description = i18n_1.default.__mf('vulnerableDependencyDescriptions', {
+            NUM: this.group.length,
+            packageName,
+            version,
+            cves: allCves.join(' | ')
+        });
+    }
+    print() {
+        (0, logUtils_1.log)(`${this.index}.`);
+        (0, logUtils_1.log)(`${chalk_1.default.bold(this.severity)} | ${chalk_1.default.bold(this.title)} ${this.description}`);
+        if (this.whatHappened) {
+            (0, logUtils_1.log)(`\n${chalk_1.default.bold(i18n_1.default.__('whatHappenedTitle'))}\n${this.whatHappened}`);
+        }
+        if (this.recommendation) {
+            (0, logUtils_1.log)(`${chalk_1.default.bold(i18n_1.default.__('recommendation'))}\n${this.recommendation}`);
+        }
+        (0, logUtils_1.log)('');
+    }
+}
 const groupByCVE = ({ title }) => title.substring(0, title.indexOf('[') - 1);
 const groupByDependency = ({ title }) => title.substring(title.indexOf('[') + 1, title.indexOf(']'));
-const prettyPrintResults = (results) => {
-    (0, logUtils_1.log)('');
+const printResults = (results) => {
     const vulnerabs = results.filter(r => r.category === 1 || r.category === 4);
     const sortBySeverity = (0, lodash_1.sortBy)(vulnerabs, ['severity', 'title']);
     const notDependencies = sortBySeverity.filter(r => r.category !== 1);
     const dependencies = sortBySeverity.filter(r => r.category === 1);
     const dependenciesByLibrary = (0, lodash_1.groupBy)(dependencies, groupByDependency);
-    const dependenciesCount = Object.keys(dependenciesByLibrary).length;
-    notDependencies.forEach(printVulnerability);
+    (0, logUtils_1.log)('');
+    notDependencies.forEach((vulnerability, index) => {
+        const printVulnerab = new PrintVulnerability(index + 1, vulnerability);
+        printVulnerab.print();
+    });
     const prevIndex = notDependencies.length + 1;
-    Object.entries(dependenciesByLibrary).forEach(([library, group], i) => {
-        const maxSeverity = (0, lodash_1.minBy)(group, 'severity');
-        const allCves = group.map(groupByCVE);
-        (0, logUtils_1.log)(prevIndex + i);
-        (0, logUtils_1.log)(`${chalk_1.default.bold((0, lodash_1.capitalize)(maxSeverity.severityText))} | ${chalk_1.default.bold('Vulnerable dependency')} ${library} has ${group.length} known CVEs`);
-        (0, logUtils_1.log)(allCves.join(', '));
-        if (maxSeverity.remediation?.description) {
-            (0, logUtils_1.log)(`${chalk_1.default.bold('Recommendation:')} ${maxSeverity.remediation.description}`);
-        }
-        (0, logUtils_1.log)('');
+    Object.entries(dependenciesByLibrary).forEach(([, group], i) => {
+        const printVulnerab = new PrintVulnerability(prevIndex + i, group[0], group);
+        printVulnerab.print();
     });
+    const dependenciesCount = Object.keys(dependenciesByLibrary).length;
     const resultCount = notDependencies.length + dependenciesCount;
+    (0, logUtils_1.log)(i18n_1.default.__n('foundVulnerabilities', resultCount), { bold: true });
+    const counters = getNotDependenciesCounters(notDependencies);
+    if (dependenciesCount) {
+        counters.push(i18n_1.default.__n('dependenciesCount', dependenciesCount));
+    }
+    (0, logUtils_1.log)(counters.join(' | '), { bold: true });
+};
+exports.printResults = printResults;
+const getNotDependenciesCounters = (notDependencies) => {
     const groupByType = (0, lodash_1.groupBy)(notDependencies, ['categoryText']);
-    const summary = Object.values(groupByType).map(group => `${group.length} ${(0, lodash_1.capitalize)(group[0].categoryText)}`);
-    (0, logUtils_1.log)(`Found ${resultCount} vulnerabilities`, { bold: true });
-    summary.push(`${dependenciesCount} Dependencies`);
-    (0, logUtils_1.log)(chalk_1.default.bold(summary.join(' | ')));
+    return Object.values(groupByType).map(group => `${group.length} ${(0, lodash_1.capitalize)(group[0].categoryText)}`);
 };
-exports.prettyPrintResults = prettyPrintResults;
 const underlineLinks = (text) => {
     if (!text) {
         return text;
@@ -45,35 +132,6 @@ const underlineLinks = (text) => {
     const urlRegex = /(https?:\/\/[^\s]+)/g;
     return text.replace(urlRegex, chalk_1.default.underline('$1'));
 };
-const printVulnerability = (vulnerability, index) => {
-    (0, logUtils_1.log)(index + 1);
-    const descriptionWithLinks = underlineLinks(vulnerability.description);
-    (0, logUtils_1.log)(`${chalk_1.default.bold((0, lodash_1.capitalize)(vulnerability.severityText))} | ${chalk_1.default.bold(vulnerability.title)} ${descriptionWithLinks}`);
-    const category = vulnerability?.categoryText;
-    switch (category) {
-        case 'PERMISSIONS':
-            printLeastPrivilegeRemediation(vulnerability);
-            break;
-        default:
-            printRemediation(vulnerability);
-    }
-    (0, logUtils_1.log)('');
-};
-const printLeastPrivilegeRemediation = (vulnerability) => {
-    (0, logUtils_1.log)(`${chalk_1.default.bold('Recommendation:')} Replace the existing policies with the following`);
-    const violatingPolicies = vulnerability?.evidence?.leastPrivilege?.violatingPolicies || [];
-    violatingPolicies
-        .filter((vp) => vp?.suggestedPolicy?.suggestedPolicyCode?.length)
-        .map((vp) => vp?.suggestedPolicy?.suggestedPolicyCode)
-        .forEach((policies) => {
-        policies.forEach((policy) => {
-            console.log(policy.snippet);
-        });
-    });
-};
-const printRemediation = (vulnerability) => {
-    (0, logUtils_1.log)(`Remediation - ${vulnerability?.remediation?.description || 'Unknown'}`);
-};
 function toLowerKeys(obj) {
     return Object.keys(obj).reduce((accumulator, key) => {
         const new_key = `${key[0].toLowerCase()}${key.slice(1)}`;
@@ -83,8 +141,7 @@ function toLowerKeys(obj) {
 }
 exports.toLowerKeys = toLowerKeys;
 exports.exportedForTesting = {
-    printLeastPrivilegeRemediation,
-    printRemediation,
-    printVulnerability,
-    underlineLinks
+    underlineLinks,
+    printResults,
+    PrintVulnerability
 };

package/dist/sbom/generateSbom.js

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const commonApi_1 = require("../utils/commonApi");
+function generateSbom(config) {
+    const client = (0, commonApi_1.getHttpClient)(config);
+    return client
+        .getSbom(config)
+        .then((res) => {
+        if (res.statusCode === 200) {
+            return res.body;
+        }
+        else {
+            console.log('Unable to retrieve Software Bill of Materials (SBOM)');
+        }
+    })
+        .catch((err) => {
+        console.log(err);
+    });
+}
+exports.default = generateSbom;

package/dist/scan/autoDetection.js

@@ -1,8 +1,6 @@
 "use strict";
 const i18n = require('i18n');
-const { zipValidator } = require('./scan');
 const fileFinder = require('./fileUtils');
-const { supportedLanguages } = require('../constants/constants');
 const autoDetectFileAndLanguage = async (configToUse) => {
     const entries = await fileFinder.findFile();
     if (entries.length === 1) {
@@ -15,8 +13,6 @@ const autoDetectFileAndLanguage = async (configToUse) => {
         if (configToUse.name === undefined) {
             configToUse.name = entries[0];
         }
-        zipValidator(configToUse);
-        assignLanguage(entries, configToUse);
     }
     else {
         errorOnFileDetection(entries);
@@ -42,35 +38,7 @@ const errorOnFileDetection = entries => {
     }
     process.exit(1);
 };
-const assignLanguage = (entries, configToUse) => {
-    let split = entries[0].split('.');
-    const fileType = split[split.length - 1];
-    if (fileType === 'war' || fileType === 'jar') {
-        console.log('Language is Java');
-        configToUse.language = 'JAVA';
-    }
-    else if (fileType === 'dll') {
-        console.log('Language is Dotnet');
-        configToUse.language = 'DOTNET';
-    }
-    else if (fileType === 'js') {
-        console.log('Language is Javascript');
-        configToUse.language = supportedLanguages.JAVASCRIPT;
-    }
-    else if (fileType === 'zip') {
-        if (configToUse.language !== supportedLanguages.JAVASCRIPT) {
-            console.log(i18n.__('zipErrorScan'));
-            process.exit(1);
-        }
-        console.log('Language is Javascript within zip file');
-    }
-    else {
-        console.log(i18n.__('unknownFileErrorScan'));
-        process.exit(1);
-    }
-};
 module.exports = {
     autoDetectFileAndLanguage,
-    assignLanguage,
     errorOnFileDetection
 };

package/dist/scan/fileUtils.js

@@ -4,7 +4,7 @@ const fs = require('fs');
 const i18n = require('i18n');
 const findFile = async () => {
     console.log(i18n.__('searchingScanFileDirectory', process.cwd()));
-    return fg(['**/*.jar', '**/*.war', '**/*.zip', '**/*.dll'], {
+    return fg(['**/*.jar', '**/*.war', '**/*.zip', '**/*.dll', '**/*.exe'], {
         dot: false,
         deep: 3,
         onlyFiles: true

package/dist/scan/help.js

@@ -1,6 +1,7 @@
 "use strict";
 const commandLineUsage = require('command-line-usage');
 const i18n = require('i18n');
+const constants = require('../constants');
 const scanUsageGuide = commandLineUsage([
     {
         header: i18n.__('scanHeader')
@@ -17,46 +18,19 @@ const scanUsageGuide = commandLineUsage([
     },
     {
         header: i18n.__('constantsScanOptions'),
-        content: [
-            {
-                name: i18n.__('scanOptionsFileName'),
-                summary: '{italic ' +
-                    i18n.__('constantsOptional') +
-                    '}: ' +
-                    i18n.__('scanOptionsFileNameSummary')
-            },
-            {
-                name: i18n.__('scanOptionsLanguage'),
-                summary: '{italic ' +
-                    i18n.__('constantsOptional') +
-                    '}: ' +
-                    i18n.__('scanOptionsLanguageSummaryOptional') +
-                    '{italic ' +
-                    i18n.__('constantsRequired') +
-                    '}: ' +
-                    i18n.__('scanOptionsLanguageSummaryRequired')
-            },
-            {
-                name: i18n.__('scanOptionsName'),
-                summary: '{italic ' +
-                    i18n.__('constantsOptional') +
-                    '}: ' +
-                    i18n.__('scanOptionsNameSummary')
-            },
-            {
-                name: i18n.__('scanOptionsTimeout'),
-                summary: '{italic ' +
-                    i18n.__('constantsOptional') +
-                    '}: ' +
-                    i18n.__('scanOptionsTimeoutSummary')
-            },
-            {
-                name: i18n.__('scanOptionsVerbose'),
-                summary: '{italic ' +
-                    i18n.__('constantsOptional') +
-                    '}: ' +
-                    i18n.__('scanOptionsVerboseSummary')
-            }
+        optionList: constants.commandLineDefinitions.scanOptionDefinitions,
+        hide: [
+            'project-id',
+            'organization-id',
+            'api-key',
+            'authorization',
+            'host',
+            'proxy',
+            'help',
+            'ff',
+            'ignore-cert-errors',
+            'verbose',
+            'debug'
         ]
     },
     {