@contrast/contrast 1.0.0

package/dist/constants/locales.js

@@ -0,0 +1,259 @@
+"use strict";
+const { lambda } = require('./lambda');
+const en_locales = () => {
+    return {
+        successHeader: 'SUCCESS',
+        snapshotSuccessMessage: ' Please go to the Contrast UI to view your dependency tree.',
+        snapshotFailureHeader: 'FAIL',
+        snapshotFailureMessage: ' Unable to send library analysis to your Contrast UI.',
+        snapshotHostMessage: " No host supplied. Using default host 'app.contrastsecurity.com'. Please ensure this is correct.",
+        vulnerabilitiesSuccessMessage: ' Vulnerability data successfully retrieved',
+        vulnerabilitiesFailureMessage: ' Unable to retrieve library vulnerabilities from Team Server.',
+        reportSuccessMessage: ' Report successfully retrieved',
+        reportFailureMessage: ' Unable to generate library report.',
+        catchErrorMessage: 'Contrast UI error: ',
+        dependenciesNote: 'Please Note: We currently only support projects with one .csproj AND *.package.lock.json',
+        languageAnalysisFailureMessage: 'LANGUAGE ANALYSIS FAILED',
+        languageAnalysisFactoryFailureHeader: 'FAIL',
+        projectPathParameter: 'Please set the %s to locate the source code for the project',
+        apiKeyParameter: 'Please set the %s to connect to the Contrast UI',
+        applicationNameParameter: 'Please provide a value for %s, to appear in the Contrast UI',
+        languageParameter: 'Please set the %s to the language of the source project. Allowable values are JAVA, DOTNET, NODE, PYTHON and RUBY.',
+        hostParameter: 'Please set the %s to the hostname and (optionally) the port expressed as <host>:<port> of the Contrast UI',
+        organizationIdParameter: 'Please set the %s to correctly identify your organization within the Contrast UI',
+        authorizationParameter: 'Please set the %s to your authorization header, found in the Contrast UI',
+        applicationIdParameter: 'Please set the %s to the value provided within the Contrast UI for the target application',
+        libraryAnalysisError: 'Please ensure the language parameter is set in accordance to the language specified on the project path.\nThe Contrast-CLI must be run in the same directory as the project manifest file OR the project_path parameter must be used to identify the directory containing the project manifest file.\n\nFor further information please read our usage guide, which can be accessed with the following command:\n\ncontrast-cli --help',
+        yamlMissingParametersHeader: 'Missing Parameters',
+        yamlMissingParametersMessage: 'The following parameters are required: \n \norganization_id \napi_key \nauthorization \nhost \napplication_name or application_id \nlanguage \n \nThey must be specified as a command line argument or within the yaml file. \nFor further information please read our usage guide, which can be accessed with the following command:\ncontrast-cli --help',
+        unauthenticatedErrorHeader: '401 error - Unauthenticated',
+        unauthenticatedErrorMessage: 'Please check the following keys are correct:\n--organization_id, --api_key or --authorization',
+        badRequestErrorHeader: '400 error - Bad Request',
+        badRequestErrorMessage: 'Please check the following key is correct: \n--application_id',
+        badRequestCatalogueErrorMessage: 'The application name already exists, please use a unique name',
+        forbiddenRequestErrorHeader: '403 error - Forbidden',
+        forbiddenRequestErrorMessage: 'You do not have permission to access this server.',
+        proxyErrorHeader: '407 error - Proxy Authentication Required',
+        proxyErrorMessage: 'Please provide valid authentication credentials for the proxy server.',
+        downgradeHttpsHttp: 'Connection to ContrastUI using https failed.  Attempting to connect using http...',
+        setSpecifiedParameter: 'Please set the %s ',
+        catalogueFailureCommand: 'Failed to catalogue a new application for reason: ',
+        catalogueFailureHostCommand: 'Failed to catalogue a new application, please ensure you have the correct host and authentication. Error: ',
+        catalogueSuccessCommand: 'This application ID can now be used to send dependency data to Contrast: ',
+        dotnetAnalysisFailure: '.NET analysis failed because: ',
+        dotnetReadLockfile: 'Failed to read the lock file @ %s because: ',
+        dotnetParseLockfile: "Failed to parse .NET lock file @ '%s' because: ",
+        dotnetParseProjectFile: "Failed to parse MSBuild project file @ '%s' because: ",
+        dotnetReadProjectFile: 'Failed to read the project file @ "%s" because: ',
+        javaAnalysisError: 'JAVA analysis failed because: ',
+        javaParseProjectFile: 'Failed to parse mvn output because: ',
+        languageAnalysisMultipleLanguages1: 'Identified multiple languages for the project\n',
+        languageAnalysisMultipleLanguages2: 'Please specify which project file you would like analyzed with the %s CLI option.',
+        languageAnalysisProjectFiles: "Identified project language as '%s' but found multiple project files: %s. Please specify which project file you would like analyzed with the %s CLI option.",
+        languageAnalysisHasNoLockFile: "Identified project language as '%s' but no project lock file was found.",
+        languageAnalysisHasMultipleLockFiles: "Identified project language as '%s' but multiple project lock files were found: %s \n",
+        languageAnalysisProjectFileError: "Identified project language as '%s' but no project file was found.",
+        languageAnalysisProjectRootFileNameReadError: 'Failed to read the contents of the directory @ %s because: ',
+        languageAnalysisProjectRootFileNameMissingError: "%s isn't a file or directory",
+        languageAnalysisProjectRootFileNameFailure: 'Failed to get information about the file or directory @ %s because: ',
+        languageAnalysisFailure: ' analysis failed because: ',
+        languageAnalysisNoLanguage: 'No language detected in project path @ %s',
+        NodeAnalysisFailure: 'NODE analysis failed because: ',
+        phpAnalysisFailure: 'PHP analysis failed because: ',
+        NodeParseNPM: "Failed to parse NODE package-lock.json file @ '%s' because: ",
+        phpParseComposerLock: "Failed to parse PHP composer.lock file @ '%s' because: ",
+        NodeReadNpmError: 'Failed to read the package-lock.json file @ "%s" because: ',
+        phpReadError: 'Failed to read the composer.lock file @ "%s" because: ',
+        NodeParseYarn: "Failed to parse Node yarn.lock version 1 @ '%s' because: ",
+        NodeParseYarn2: "Failed to parse Node yarn.lock version 2 @ '%s' because: ",
+        nodeReadProjectFileError: 'Failed to read the NODE project file @ "%s" because: ',
+        phpReadProjectFileError: 'Failed to read the PHP project file @ "%s" because: ',
+        nodeReadYarnLockFileError: 'Failed to read the yarn.lock file @ "%s" because: ',
+        pythonAnalysisEngineError: 'Python analysis failed because: ',
+        pythonAnalysisEnginePipError: "Failed to parse python Pipfile.lock file @ '%s' because: ",
+        pythonAnalysisParseProjectFileError: 'Failed to parse python output "%s" because: ',
+        pythonAnalysisReadPipFileError: 'Failed to read the python Pipfile.lock file @ "%s" because: ',
+        pythonAnalysisReadPythonProjectFileError: 'Failed to read the python pipfile @ "%s" because: ',
+        rubyAnalysisEngineError: 'Ruby analysis failed because: ',
+        rubyAnalysisEngineParsedGemFileError: 'Failed to parse ruby output "%s" because: ',
+        rubyAnalysisEngineParsedGemLockFileError: 'Failed to parse ruby Gemfile.lock output because: ',
+        rubyAnalysisEngineReadGemFileError: 'Failed to read the ruby project file @ "%s" because: ',
+        rubyAnalysisEngineReadGemLockFileError: 'Failed to read the ruby Gemfile.lock @ "%s" because: ',
+        constantsOptional: '(optional)',
+        constantsOptionalForCatalogue: '(optional for catalogue)',
+        constantsRequired: '(required)',
+        constantsRequiredCatalogue: '(required for catalogue)',
+        constantsYamlPath: 'If you want to read params from the yaml file then enter the path to the file',
+        constantsApiKey: 'An agent API key as provided by Contrast UI',
+        constantsAuthorization: 'An agent Authorization credentials as provided by Contrast UI',
+        constantsOrganizationId: 'The ID of your organization in Contrast UI',
+        constantsApplicationId: 'The ID of the application cataloged by Contrast UI',
+        constantsHostId: 'Provide the name of the host and optionally the port expressed as "<host>:<port>".',
+        constantsApplicationName: 'The name of the application cataloged by Contrast UI',
+        constantsCatalogueApplication: 'Provide this if you want to catalogue an application',
+        constantsLanguage: 'Valid values are JAVA, DOTNET, NODE, PYTHON and RUBY. If there are multiple project configuration files in the project_path, language is also required.  Also, provide this when cataloguing an application',
+        constantsProjectPath: 'The directory root of a project/application that you would like analyzed. Defaults to current directory.',
+        constantsSilent: 'Silences JSON output.',
+        constantsAppGroups: 'Assign your application to one or more pre-existing groups when using the catalogue command. Group lists should be comma separated.',
+        constantsVersion: 'Displays CLI Version you are currently on.',
+        constantsProxyServer: 'Allows for connection via a proxy server. If authentication is required please provide the username and password with the protocol, host and port. For instance: "http://username:password@<host>:<port>".',
+        constantsHelp: 'Display this usage guide.',
+        constantsGradleMultiProject: 'Specify the sub project within your gradle application.',
+        constantsScan: 'Upload java binaries to the static scan service',
+        constantsWaitForScan: 'Waits for the result of the scan',
+        constantsProjectName: 'The name of the scan project in Contrast',
+        constantsFileName: 'The name of the file to Scan',
+        constantsProjectId: 'The ID associated with a scan project. Replace <ProjectID> with the ID for the scan project. To find the ID, select a scan project in Contrast and locate the last number in the URL.',
+        constantsScanTimeout: 'Set a specific time span before the function times out. Default timeout is 300 seconds if scan_timeout is not set. The format of the value of the parameter is "20" seconds or "80" seconds.',
+        constantsReport: 'Display vulnerability information for this application',
+        constantsFail: 'Set the process to fail if this option is set in combination with the --report and --cve_severity.',
+        failOptionErrorMessage: " FAIL - CVE's have been detected that match at least the cve_severity or cve_threshold option specified.",
+        constantsSeverity: 'Combined with the --report command, allows the user to report libraries with vulnerabilities above a chosen severity level. For example, cve_severity medium only reports libraries with vulnerabilities at medium or higher severity. Values for level are high, medium or low.',
+        constantsCount: "The number of CVE's that must be exceeded to fail a build",
+        constantsHeader: 'Contrast CLI',
+        constantsPrerequisitesContentScanLanguages: 'Java & JavaScript supported',
+        constantsContrastContent: 'Use the Contrast CLI, the fastest and most accurate code scan, to help find and eliminate security bugs in your code.',
+        constantsUsageGuideContentRecommendation: 'Our recommendation is that this is invoked as part of a CI pipeline so that running the cli is automated as part of your build process.',
+        constantsPrerequisitesHeader: 'Pre-requisites',
+        constantsPrerequisitesContent: 'To scan a Java project you will need a .jar or .war file for analysis\n' +
+            'To scan a Javascript project you will need a .js or.zip file for analysis\n',
+        constantsUsage: 'Usage',
+        constantsUsageCommandExample: 'contrast [command] [options]',
+        constantsUsageCommandInfo: 'The file argument is optional. If no file is given, Contrast will search for a .jar, .war, .js or .zip file in the working directory.\n',
+        constantsUsageCommandInfo24Hours: 'Submitted files are encrypted during upload and deleted in 24 hours.',
+        constantsAnd: 'AND',
+        constantsJava: 'AND Maven build platform, including the dependency plugin. For a Gradle project, use build.gradle. A gradle-wrapper.properties file is also required. Kotlin is also supported requiring a build.gradle.kts file.',
+        constantsJavaNote: '*Please Note: Running "mvn dependency:tree" or "./gradlew dependencies" in the project directory locally must be successful.',
+        constantsJavaNoteGradle: 'We currently support v4.8 and upwards on Gradle projects',
+        constantsDotNet: 'MSBuild 15.0 or greater and have a packages.lock.json file are supported.',
+        constantsDotNetNote: 'Please Note: If the packages.lock.json file is not in place it can be generated by setting RestorePackagesWithLockFile to true within each *.csproj and running dotnet build',
+        constantsNode: '%s AND a lock file either %s or %s',
+        constantsRuby: 'gemfile AND gemfile.lock',
+        constantsPython: 'pipfile AND pipfile.lock',
+        constantsHowToRunHeader: 'How to run:',
+        constantsHowToRunDev1: 'Begin with contrast auth to authenticate the CLI to perform actions',
+        constantsHowToRunDev2: 'After successful auth try the following command: contrast scan -f "<file>"',
+        constantsHowToRunDev3: 'Allowable languages are java (.jar and .war) and javascript (.js or .zip), if the language is not autodetected please use --language to specify',
+        constantsHowToRunContent1: 'You can run the tool on the command line and manually add the parameters, or you can put the parameters in a YAML file.',
+        constantsHowToRunContent2: 'If you are assessing an application that has not been instrumented by a Contrast agent you must first use the tool to register the application (Catalogue command). This will give you an application ID that you can then use in the Run Command.',
+        constantsHowToRunContent3: 'Allowable language values are JAVA, NODE, PYTHON, RUBY and GO.',
+        constantsManualInputHeader: 'Manual Input of Command:',
+        constantsManualInputCatalogue: 'Catalogue Command:',
+        constantsManualInputCatalogueInstruction: 'To analyse a new application not already instrumented by Contrast, run the following command:',
+        constantsManualInputCatalogueRun: 'After you run this command, you are provided a new application ID in the console. Use this ID in the Run command:',
+        constantsManualInputCatalogueRunTitle: 'Run Command:',
+        constantsManualInputCatalogueRunInstruction: 'To analyse an application catalogued by Contrast, run the following command:',
+        constantsYaml: 'Yaml:',
+        constantsYamlRunCommand: 'After you catalogue your application go to Run Command above.',
+        constantsOptions: 'Options',
+        constantsCatalogueCommand: '%s YourApiKey %s YourAuthorizationKey %s YourOrganizationId %s YourHost %s YourApplicationName %s YourApplicationLanguage',
+        constantsRunCommand: '%s YourApiKey %s YourAuthorizationKey %s YourOrganizationId %s YourHost %s YourApplicationId',
+        constantsSpecialCharacterWarning: 'Please Note: Parameters may need to be quoted to avoid issues with special characters.',
+        yamlCatalogueCommand: '%s PathToYaml',
+        yamlCommand: '%s PathToYaml',
+        agentProxyAndTlsEnabledError: 'Please Note: We currently do not support having a proxy server and TLS enabled at the same time.',
+        TlsHeader: 'TLS',
+        TlsBody: 'To enable TLS please use the YAML file with the following parameters:',
+        TlsKey: 'key: pathToKey',
+        TlsCert: 'cert: pathToCert',
+        TlsCaCert: 'cacert: pathToCaCert',
+        goReadProjectFile: 'Failed to read the project file @ "%s" because: "%s"',
+        goAnalysisError: 'GO analysis failed because: ',
+        goParseProjectFile: 'Failed to parse go mod graph output because: ',
+        mavenNotInstalledError: " 'mvn' is not available. Please ensure you have Maven installed and available on your path.",
+        mavenDependencyTreeNonZero: 'Building maven dependancy tree failed with a non 0 exit code',
+        gradleWrapperUnavailable: ' Gradle wrapper not found in root of project. Please ensure gradlew or gradlew.bat is in root of the project.',
+        gradleDependencyTreeNonZero: "Building gradle dependancy tree failed with a non 0 exit code. \n Please check you have the correct version of Java installed to compile your project? \n If running against a muti module project ensure you are using the '--sub-project' flag",
+        yamlPathCamelCaseError: ' Warning: The "yamlPath" parameter will be deprecated in a future release. Please look at our documentation for further guidance.',
+        constantsSbom: ' Generate the Software Bill of Materials (SBOM) for the given application',
+        constantsMetadata: 'Define a set of key=value pairs (which conforms to RFC 2253) for specifying user-defined metadata associated with the application.',
+        constantsTags: 'Apply labels to an application. Labels must be formatted as a comma-delimited list. Example - label1,label2,label3',
+        constantsCode: 'Add the application code this application should use in the Contrast UI',
+        constantsIgnoreCertErrors: ' For EOP users with a local Teamserver install, this will bypass the SSL certificate and recognise a self signed certificate.',
+        constantsIgnoreDev: 'Combined with the --report command excludes developer dependencies from the vulnerabilities report. By default all dependencies are included in a report.',
+        constantsCommands: 'Commands',
+        constantsScanOptions: 'Scan Options',
+        sbomError: 'All required parameters are not present.',
+        sbomRetrievalError: 'Unable to retrieve Software Bill of Materials (SBOM)',
+        ignoreDevDep: 'No private libraries that are not scoped detected',
+        foundExistingProjectScan: 'Found existing project...',
+        projectCreatedScan: 'Project created',
+        uploadingScan: 'Uploading...',
+        uploadingScanSuccessful: 'Uploaded file successfully.',
+        uploadingScanFail: 'Unable to upload the file.',
+        waitingTimedOut: 'Timed out.',
+        responseMessage: 'Response: %s',
+        searchingDirectoryScan: 'Searched 3 directory levels & found: ',
+        noFileFoundScan: "We could't find a suitable file in your directories (we go 3 deep)",
+        specifyFileScanError: 'Java Scan requires a .war or .jar file. Javascript Scan requires a .js or .zip file.\nTo start a Scan enter "contrast scan -f <path-to-file>"',
+        populateProjectIdMessage: 'project ID is %s',
+        scanErrorFileMessage: 'We only accept the following file types: \nJava - .jar, .war \nJavaScript - .js or .zip files',
+        helpAuthSummary: 'Authenticate Contrast using your Github or Google account',
+        helpScanSummary: 'Searches for a .jar, .war, .js or .zip file in the working directory, uploads for analysis and returns the results',
+        helpLambdaSummary: 'Perform scan on AWS Lambda functions',
+        helpVersionSummary: 'Displays version of Contrast CLI',
+        helpConfigSummary: 'Displays stored credentials',
+        helpSummary: 'Displays usage guide',
+        authName: 'auth',
+        scanName: 'scan',
+        lambdaName: 'lambda',
+        versionName: 'version',
+        configName: 'config',
+        helpName: 'help',
+        scanOptionsFileName: '-f, --file',
+        scanOptionsLanguage: '-l, --language',
+        scanOptionsName: '-n, --name',
+        scanOptionsTimeout: '-t, --time-out',
+        scanOptionsVerbose: '-v, --verbose',
+        scanOptionsFileNameSummary: 'Path of the file you want to scan. If no file is specified, Contrast searches for a .jar, .war, .js. or .zip file in the working directory.',
+        scanOptionsLanguageSummaryOptional: 'Language of file to send for analysis. ',
+        scanOptionsLanguageSummaryRequired: 'If you scan a .zip file or you use the --file option.',
+        scanOptionsNameSummary: 'Contrast project name. If not specified, Contrast uses contrast.settings to identify the project or creates a project.',
+        scanOptionsTimeoutSummary: 'Time in seconds to wait for scan to complete. Default value is 300 seconds.',
+        scanOptionsVerboseSummary: 'Returns extended information to the terminal.',
+        authSuccessMessage: 'Authentication successful',
+        runScanMessage: 'Now run Contrast Scan',
+        authWaitingMessage: 'Waiting for auth...',
+        authTimedOutMessage: 'Auth Timed out, try again',
+        zipErrorScan: 'We only support zip files for JAVASCRIPT language, please set the flag --language JAVASCRIPT',
+        unknownFileErrorScan: 'Unsupported file selected for Scan.',
+        foundScanFile: 'found: %s',
+        foundVulnerabilities: 'Found %s vulnerabilities',
+        foundDetailedVulnerabilities: '%s Critical %s High %s Medium %s Low %s Note',
+        requiredParams: 'All required parameters are not present.',
+        timeoutScan: 'Timeout set to 5 minutes.',
+        searchingScanFileDirectory: 'Searching for file to scan from %s...',
+        scanHeader: 'Contrast Scan CLI',
+        lambdaHeader: 'Contrast lambda help',
+        lambdaSummary: 'Performs static security scan on an AWS Lambda Function.\nProduces CVE (Vulnerable Dependencies) and Least Privilege violations/remediation results.',
+        lambdaUsage: 'contrast lambda --function-name <function> [options]',
+        lambdaPrerequisitesContent: 'contrast cli',
+        scanFileNameOption: ' -f, --file',
+        lambdaFunctionNameOption: ' -f, --function-name',
+        lambdaEndpointOption: '-e, --endpoint-url',
+        lambdaRegionOption: '-r, --region',
+        lambdaProfileOption: '-p, --profile',
+        lambdaJsonOption: '-j, --json-output',
+        lambdaVerboseOption: '-v, --verbose',
+        lambdaHelpOption: '-h, --help',
+        lambdaFunctionNameSummery: 'Name of AWS lambda function to scan.',
+        lambdaEndpointSummery: 'AWS Endpoint override, works like in AWS CLI.',
+        lambdaRegionSummery: 'Region override, default to AWS_DEAFAULT_REGION env var, works like in AWS CLI.',
+        lambdaProfileSummery: 'AWS configuration profile override, works like in AWS CLI.',
+        lambdaJsonSummery: 'Return response in JSON (versus default human readable format).',
+        lambdaVerbosSummery: 'Returns extended information to the terminal.',
+        configNotFound: 'Configuration details not found. Try authenticating by using ‘contrast auth’.',
+        redirectAuth: '\nOpening the authentication page in your web browser.\nSign in and complete the steps.\nReturn here to start using Contrast.\n\nIf your browser has trouble loading, try this:\n%s \n',
+        scanZipError: 'A .zip archive can be used for Javascript Scan. Archive found %s does not contain .JS files for Scan.',
+        fileNotExist: 'File specified does not exist, please check and try again.',
+        fileHasWhiteSpacesError: 'File cannot have spaces, please rename or choose another file to Scan.',
+        zipFileException: 'Error reading zip file',
+        connectionError: 'An error has occurred when trying to get the Project Id please check your internet connection or provide the Project Id manually',
+        internalServerErrorHeader: '500 error - Internal server error',
+        resourceLockedErrorHeader: '423 error - Resource is locked',
+        ...lambda
+    };
+};
+module.exports = {
+    en_locales
+};

package/dist/constants.js

@@ -0,0 +1,150 @@
+"use strict";
+const commandLineUsage = require('command-line-usage');
+const i18n = require('i18n');
+const { en_locales } = require('./constants/locales.js');
+i18n.configure({
+    staticCatalog: {
+        en: en_locales()
+    },
+    defaultLocale: 'en'
+});
+const scanOptionDefinitions = [
+    {
+        name: 'name',
+        alias: 'n',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsProjectName')
+    },
+    {
+        name: 'file',
+        alias: 'f',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsFileName')
+    },
+    {
+        name: 'project-id',
+        alias: 'p',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsProjectId')
+    },
+    {
+        name: 'timeout',
+        alias: 't',
+        type: Number,
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsScanTimeout')
+    },
+    {
+        name: 'language',
+        alias: 'l',
+        description: '{bold ' +
+            i18n.__('constantsRequiredCatalogue') +
+            '}: ' +
+            i18n.__('constantsLanguage')
+    },
+    {
+        name: 'organization-id',
+        alias: 'o',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsOrganizationId')
+    },
+    {
+        name: 'yaml-path',
+        alias: 'y',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsYamlPath')
+    },
+    {
+        name: 'api-key',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsApiKey')
+    },
+    {
+        name: 'authorization',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsAuthorization')
+    },
+    {
+        name: 'host',
+        alias: 'h',
+        defaultValue: 'app.contrastsecurity.com',
+        description: '{bold ' +
+            i18n.__('constantsRequired') +
+            '}: ' +
+            i18n.__('constantsHostId')
+    },
+    {
+        name: 'proxy',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsProxyServer')
+    },
+    {
+        name: 'ff',
+        type: Boolean,
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsProxyServer')
+    },
+    {
+        name: 'ignore-cert-errors',
+        type: Boolean,
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}:' +
+            i18n.__('constantsIgnoreCertErrors')
+    },
+    {
+        name: 'help',
+        type: Boolean
+    }
+];
+const mainUsageGuide = commandLineUsage([
+    {
+        header: i18n.__('constantsHeader'),
+        content: [i18n.__('constantsContrastContent')]
+    },
+    {
+        header: i18n.__('constantsUsage'),
+        content: [i18n.__('constantsUsageCommandExample')]
+    },
+    {
+        header: i18n.__('constantsCommands'),
+        content: [
+            { name: i18n.__('authName'), summary: i18n.__('helpAuthSummary') },
+            { name: i18n.__('lambdaName'), summary: i18n.__('helpLambdaSummary') },
+            { name: i18n.__('versionName'), summary: i18n.__('helpVersionSummary') },
+            { name: i18n.__('configName'), summary: i18n.__('helpConfigSummary') },
+            { name: i18n.__('helpName'), summary: i18n.__('helpSummary') }
+        ]
+    },
+    {
+        content: '{underline https://www.contrastsecurity.com}'
+    }
+]);
+const mainDefinition = [{ name: 'command', defaultOption: true }];
+module.exports = {
+    commandLineDefinitions: {
+        mainUsageGuide,
+        mainDefinition,
+        scanOptionDefinitions
+    }
+};

package/dist/index.js

@@ -0,0 +1,56 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const command_line_args_1 = __importDefault(require("command-line-args"));
+const auth_1 = require("./commands/auth/auth");
+const config_1 = require("./commands/config/config");
+const processScan_1 = require("./commands/scan/processScan");
+const constants_1 = __importDefault(require("./constants"));
+const constants_2 = require("./constants/constants");
+const lambda_1 = require("./lambda/lambda");
+const getConfig_1 = require("./utils/getConfig");
+const { commandLineDefinitions: { mainUsageGuide, mainDefinition } } = constants_1.default;
+const config = (0, getConfig_1.localConfig)(constants_2.APP_NAME, constants_2.APP_VERSION);
+const getMainOption = () => {
+    const mainOptions = (0, command_line_args_1.default)(mainDefinition, {
+        stopAtFirstUnknown: true,
+        camelCase: true,
+        caseInsensitive: true
+    });
+    const argv = mainOptions._unknown || [];
+    return {
+        mainOptions,
+        argv
+    };
+};
+const start = async () => {
+    const { mainOptions, argv: argvMain } = getMainOption();
+    const command = mainOptions.command != undefined ? mainOptions.command.toLowerCase() : '';
+    if (command === 'version') {
+        console.log(constants_2.APP_VERSION);
+        return;
+    }
+    if (command === 'config') {
+        return (0, config_1.processConfig)(argvMain, config);
+    }
+    if (command === 'auth') {
+        return await (0, auth_1.processAuth)(config);
+    }
+    if (command === 'lambda') {
+        return await (0, lambda_1.processLambda)(argvMain);
+    }
+    if (command === 'scan') {
+        return await (0, processScan_1.processScan)();
+    }
+    if (command === 'help' ||
+        argvMain.includes('--help') ||
+        Object.keys(mainOptions).length === 0) {
+        console.log(mainUsageGuide);
+    }
+    else {
+        console.log('Unknown Command: ' + command + ' \nUse --help for the full list');
+    }
+};
+start();

package/dist/lambda/__mocks__/aws.js

@@ -0,0 +1,21 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getLambdaPolicies = exports.getLayersLinks = exports.getLambdaFunctionConfiguration = exports.getLambdaClient = void 0;
+const lambdaConfig_json_1 = __importDefault(require("./lambdaConfig.json"));
+const getLambdaClient = (lambdaOptions) => {
+    return {};
+};
+exports.getLambdaClient = getLambdaClient;
+const getLambdaFunctionConfiguration = async (client, lambdaOptions) => {
+    return Promise.resolve(lambdaConfig_json_1.default);
+};
+exports.getLambdaFunctionConfiguration = getLambdaFunctionConfiguration;
+const getLayersLinks = async (client, functionConfiguration) => {
+    return [];
+};
+exports.getLayersLinks = getLayersLinks;
+const getLambdaPolicies = async (functionConfiguration, lambdaOptions) => [];
+exports.getLambdaPolicies = getLambdaPolicies;

package/dist/lambda/__mocks__/lambdaConfig.json

@@ -0,0 +1,42 @@
+{
+    "$metadata": {
+        "httpStatusCode": 200,
+        "requestId": "c1495998-4606-46ba-b4fc-f7d0d165172d",
+        "attempts": 1,
+        "totalRetryDelay": 0
+    },
+    "Code": {
+        "Location": "https://awslambda-eu-cent-1-tasks.s3.eu-central-1.amazonaws.com/snapshots/123456789012/FunctionLambda-90e7680-c598cb5f-6bc9-4107-9fe7-13c126eb3b9e?versionId=ThxUComOVL.qnyEN9Bmi3xzK1JshuKA3&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEGcaDGV1LWNlbnRyYWwtMSJIMEYCIQDAMKTGQ5WEMHM9H7cZQugjEX8QWvq5zRxtXg%2Fz6m9lmAIhAMst%2F5iQkOPJ%2BNfflPiwD4GQchajTfvbNvVeGlz%2BdFi%2FKokECPD%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FwEQAxoMNjgwNjg2NTU5NDM0IgwPQDJYINU9W7Csw4sq3QO52WKm5PvlVEeLrwstuDqPPKxhdK57A6z2foEF0Bp%2Bz%2Fp%2Flei2DzbpqjPDluzljZmzh3kP8QKPwq25Yk59%2BfXnxlSkHYe3GXO6W6VLBkPk81T0C9keVwdMijW1ZV94KN8qBB17kERR3sFIhBWXJRLhXSAdLREAfNLaE%2FgnP1eC1b5MZCBW46lbjmYHhHshgZJEUD2fy%2BRuOB4HijldLkpHKgZfwiD0ICXkvxF5NQT6tUhlQPNN%2BCrC2RQ0NSkmjXiaL2BXaDxaQVhZwMTGzBEyLAonA9bSisObWrVEjJcC4%2Bqz9ce25l2yYf77lEXWymEp9NvFFcUNAt6tt%2FAm2qMixcLxV0Y2NuBUBjIvPnNnTvBop%2FvAC1Rh6033AmWpmkK0tD65wEsTS4XAEtnD%2B%2Bku4r6kzatRJ88Lq9YOTbjs%2BMEccy9YIFp7Rwf2%2Bdw3EKHSqz4aB0R9KYa07NooZ%2Bym1VZWfGLfhFRJwKRLk3qKkY%2Bj4laizIE%2BBgqC7f7%2FYXcFk8RGX8vlX5y%2BMKWhBXoMPqAPG7ruoG1RbjQX8TEJvuG0G8c5x76fRjB2VRlykY78wa7%2B83a8oBqMfojq7hQWByNv%2B13KHVIIqrG87tL%2BtrmS7GAoils0vXf0Mvowqt6RkgY6pAGKzTtWpXiIhFLe5n2CNNDMuT9xCSCpQIWf2M9GcNabj%2FAUHIa81gvZwuHzB6DYpEj2cZ7wO22Ve%2FRLIrzdkBROoRYnT0GFevXUJAoO2WolWU13JS7owlBPTW7aET6o7fHJUhwAxPZPCp1cSaFMO5cDN%2BTOVm7V6P4es6m87S1yozp5SzHx3KblhJJF6krPHX6YCWC%2B%2FAu9tu7PqgiZ3RQTZ26f4A%3D%3D&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20220330T153702Z&X-Amz-SignedHeaders=host&X-Amz-Expires=600&X-Amz-Credential=ASIAZ47AUUDFFU2TD45R%2F20220330%2Feu-central-1%2Fs3%2Faws4_request&X-Amz-Signature=4f9187001f127561afee310d9a127acacb5064c51688f7cd65f98ccb0a7aaa10",
+        "RepositoryType": "S3"
+    },
+    "Configuration": {
+        "Architectures": ["x86_64"],
+        "CodeSha256": "KNNSfx0YOrZ+pG3fK0qbGBJv/b8V0/gWFFkFw581i4o=",
+        "CodeSize": 39577174,
+        "DeadLetterConfig": {
+            "TargetArn": "arn:aws:sqs:eu-central-1:123456789012:devlocaleuDeadLetterQ-89016d3"
+        },
+        "Description": "",
+        "Environment": {
+            "Variables": {
+                "EVENTS_BUCKET": "devlocaleu-cn-events-4h6eig-eu-central-1-1676820",
+                "AGENTS_TABLE": "devlocaleu.agent.agents"
+            }
+        },
+        "EphemeralStorage": { "Size": 512 },
+        "FunctionArn": "arn:aws:lambda:eu-central-1:123456789012:function:FunctionLambda-90e7680",
+        "FunctionName": "FunctionLambda-90e7680",
+        "Handler": "com.contrastsecurity.scan.ScanHandler::handleEventDataWithContext",
+        "LastModified": "2022-03-28T11:14:56.000+0000",
+        "LastUpdateStatus": "Successful",
+        "MemorySize": 1024,
+        "PackageType": "Zip",
+        "RevisionId": "d174710a-23ff-499b-a7ba-61036beabd7a",
+        "Role": "arn:aws:iam::123456789012:role/Function_Role",
+        "Runtime": "java11",
+        "State": "Active",
+        "Timeout": 900,
+        "TracingConfig": { "Mode": "PassThrough" },
+        "Version": "$LATEST"
+    }
+}

package/dist/lambda/arn.js

@@ -0,0 +1,21 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.parseARN = void 0;
+const cliError_1 = require("./cliError");
+const constants_1 = require("./constants");
+const ARN_REGEX = /arn:(?<partition>[^:\n]*):(?<service>[^:\n]*):(?<region>[^:\n]*):(?<accountId>[^:\n]*):(?<ignore>(?<resource>[^:/\n]*)[:/])?(?<resourceId>.*)/;
+const parseARN = (arn) => {
+    if (!arn) {
+        throw new cliError_1.CliError(constants_1.ERRORS.FAILED_TO_START_SCAN, {
+            errorCode: 'failedToParseArn'
+        });
+    }
+    const arnMatch = arn.match(ARN_REGEX);
+    if (!arnMatch) {
+        throw new cliError_1.CliError(constants_1.ERRORS.FAILED_TO_START_SCAN, {
+            errorCode: 'failedToParseArn'
+        });
+    }
+    return arnMatch.groups;
+};
+exports.parseARN = parseARN;