npm - @contrast/contrast - Versions diffs - 1.0.19 → 1.0.21 - Mend

@contrast/contrast 1.0.19 → 1.0.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (66) hide show

package/dist/audit/report/commonReportingFunctions.js +3 -4
package/dist/audit/report/models/reportListModel.js +2 -1
package/dist/audit/report/reportingFeature.js +1 -1
package/dist/audit/report/utils/reportUtils.js +30 -11
package/dist/cliConstants.js +13 -6
package/dist/commands/audit/auditConfig.js +1 -2
package/dist/commands/audit/help.js +2 -1
package/dist/commands/audit/processAudit.js +1 -1
package/dist/commands/fingerprint/fingerprintConfig.js +12 -0
package/dist/commands/fingerprint/processFingerprint.js +14 -0
package/dist/commands/learn/learn.js +9 -0
package/dist/commands/learn/processLearn.js +10 -0
package/dist/common/commonHelp.js +8 -1
package/dist/constants/constants.js +1 -1
package/dist/constants/locales.js +14 -3
package/dist/index.js +8 -0
package/dist/lambda/help.js +2 -1
package/dist/scaAnalysis/common/auditReport.js +16 -60
package/dist/scaAnalysis/common/commonReportingFunctionsSca.js +154 -0
package/dist/scaAnalysis/common/models/ScaReportModel.js +45 -0
package/dist/scaAnalysis/common/scaServicesUpload.js +4 -3
package/dist/scaAnalysis/common/utils/reportUtilsSca.js +76 -0
package/dist/scaAnalysis/java/analysis.js +1 -28
package/dist/scaAnalysis/java/index.js +1 -13
package/dist/scaAnalysis/scaAnalysis.js +155 -0
package/dist/scan/autoDetection.js +2 -2
package/dist/scan/fileUtils.js +2 -2
package/dist/scan/formatScanOutput.js +19 -13
package/dist/scan/help.js +2 -1
package/dist/utils/paramsUtil/configStoreParams.js +1 -12
package/dist/utils/paramsUtil/paramHandler.js +1 -7
package/package.json +5 -1
package/src/audit/report/commonReportingFunctions.js +7 -5
package/src/audit/report/models/reportListModel.ts +12 -2
package/src/audit/report/reportingFeature.ts +1 -1
package/src/audit/report/utils/reportUtils.ts +4 -4
package/src/cliConstants.js +15 -6
package/src/commands/audit/auditConfig.js +1 -2
package/src/commands/audit/help.js +2 -1
package/src/commands/audit/processAudit.js +1 -1
package/src/commands/fingerprint/fingerprintConfig.js +19 -0
package/src/commands/fingerprint/processFingerprint.js +21 -0
package/src/commands/learn/learn.js +10 -0
package/src/commands/learn/processLearn.js +13 -0
package/src/common/commonHelp.js +11 -1
package/src/constants/constants.js +1 -1
package/src/constants/locales.js +22 -3
package/src/index.ts +11 -0
package/src/lambda/help.ts +2 -1
package/src/scaAnalysis/common/auditReport.js +25 -80
package/src/scaAnalysis/common/commonReportingFunctionsSca.js +276 -0
package/src/scaAnalysis/common/models/ScaReportModel.ts +81 -0
package/src/scaAnalysis/common/scaServicesUpload.js +5 -3
package/src/scaAnalysis/common/utils/reportUtilsSca.ts +123 -0
package/src/scaAnalysis/java/analysis.js +1 -28
package/src/scaAnalysis/java/index.js +1 -18
package/src/scaAnalysis/scaAnalysis.js +206 -0
package/src/scan/autoDetection.js +2 -2
package/src/scan/fileUtils.js +2 -2
package/src/scan/formatScanOutput.ts +28 -17
package/src/scan/help.js +2 -1
package/src/utils/getConfig.ts +0 -1
package/src/utils/paramsUtil/configStoreParams.js +1 -14
package/src/utils/paramsUtil/paramHandler.js +1 -9
package/dist/commands/scan/sca/scaAnalysis.js +0 -155
package/src/commands/scan/sca/scaAnalysis.js +0 -206

package/src/commands/scan/sca/scaAnalysis.js DELETED Viewed

@@ -1,206 +0,0 @@
-const {
-  supportedLanguages: { JAVA, GO, PYTHON, RUBY, JAVASCRIPT, NODE, PHP, DOTNET }
-} = require('../../../constants/constants')
-const {
-  pollForSnapshotCompletion
-} = require('../../../audit/languageAnalysisEngine/sendSnapshot')
-const {
-  returnOra,
-  startSpinner,
-  succeedSpinner
-} = require('../../../utils/oraWrapper')
-const {
-  vulnerabilityReportV2
-} = require('../../../audit/report/reportingFeature')
-const autoDetection = require('../../../scan/autoDetection')
-const treeUpload = require('../../../scaAnalysis/common/treeUpload')
-const auditController = require('../../audit/auditController')
-const rootFile = require('../../../audit/languageAnalysisEngine/getProjectRootFilenames')
-const path = require('path')
-const i18n = require('i18n')
-const auditSave = require('../../../audit/save')
-const { auditUsageGuide } = require('../../audit/help')
-const repoMode = require('../../../scaAnalysis/repoMode/index')
-const { dotNetAnalysis } = require('../../../scaAnalysis/dotnet')
-const { goAnalysis } = require('../../../scaAnalysis/go/goAnalysis')
-const { phpAnalysis } = require('../../../scaAnalysis/php/index')
-const { rubyAnalysis } = require('../../../scaAnalysis/ruby')
-const { pythonAnalysis } = require('../../../scaAnalysis/python')
-const javaAnalysis = require('../../../scaAnalysis/java')
-const jsAnalysis = require('../../../scaAnalysis/javascript')
-const auditReport = require('../../../scaAnalysis/common/auditReport')
-const scaUpload = require('../../../scaAnalysis/common/scaServicesUpload')
-const settingsHelper = require('../../../utils/settingsHelper')
-const chalk = require('chalk')
-const saveResults = require('../../../scan/saveResults')
-const processSca = async config => {
-  //checks to see whether to use old TS / new SCA path
-  config = await settingsHelper.getSettings(config)
-  const startTime = performance.now()
-  let filesFound
-  if (config.help) {
-    console.log(auditUsageGuide)
-    process.exit(0)
-  }
-  const projectStats = await rootFile.getProjectStats(config.file)
-  let pathWithFile = projectStats.isFile()
-  config.fileName = config.file
-  config.file = pathWithFile
-    ? rootFile.getDirectoryFromPathGiven(config.file).concat('/')
-    : config.file
-  if (config.fingerprint && config.experimental) {
-    let fingerprint = await autoDetection.autoDetectFingerprintInfo(config.file)
-    let idArray = fingerprint.map(x => x.id)
-    await saveResults.writeResultsToFile(fingerprint, 'fingerPrintInfo.json')
-    console.log(idArray)
-  } else {
-    filesFound = await autoDetection.autoDetectAuditFilesAndLanguages(
-      config.file
-    )
-    autoDetection.dealWithMultiJava(filesFound)
-    if (filesFound.length > 1 && pathWithFile) {
-      filesFound = filesFound.filter(i =>
-        Object.values(i)[0].includes(path.basename(config.fileName))
-      )
-    }
-    // files found looks like [ { javascript: [ Array ] } ]
-    //check we have the language and call the right analyser
-    let messageToSend = undefined
-    if (filesFound.length === 1) {
-      switch (Object.keys(filesFound[0])[0]) {
-        case JAVA:
-          config.language = JAVA
-          if (config.mode === 'repo') {
-            try {
-              return repoMode.buildRepo(config, filesFound[0])
-            } catch (e) {
-              throw new Error(
-                'Unable to build in repository mode. Check your project file'
-              )
-            }
-          } else {
-            messageToSend = await javaAnalysis.javaAnalysis(
-              config,
-              filesFound[0]
-            )
-          }
-          break
-        case JAVASCRIPT:
-          messageToSend = await jsAnalysis.jsAnalysis(config, filesFound[0])
-          config.language = NODE
-          break
-        case PYTHON:
-          messageToSend = pythonAnalysis(config, filesFound[0])
-          config.language = PYTHON
-          break
-        case RUBY:
-          messageToSend = rubyAnalysis(config, filesFound[0])
-          config.language = RUBY
-          break
-        case PHP:
-          messageToSend = phpAnalysis(config, filesFound[0])
-          config.language = PHP
-          break
-        case GO:
-          messageToSend = goAnalysis(config, filesFound[0])
-          config.language = GO
-          break
-        case DOTNET:
-          messageToSend = dotNetAnalysis(config, filesFound[0])
-          config.language = DOTNET
-          break
-        default:
-          //something is wrong
-          console.log('No supported language detected in project path')
-          return
-      }
-      if (!config.applicationId) {
-        config.applicationId = await auditController.dealWithNoAppId(config)
-      }
-      if (config.experimental) {
-        console.log('') //empty log for space before spinner
-        const reportSpinner = returnOra(i18n.__('auditSCAAnalysisBegins'))
-        startSpinner(reportSpinner)
-        const [reports, reportId] = await scaUpload.scaTreeUpload(
-          messageToSend,
-          config
-        )
-        auditReport.processAuditReport(config, reports[0])
-        succeedSpinner(reportSpinner, i18n.__('auditSCAAnalysisComplete'))
-        if (config.save !== undefined) {
-          await auditSave.auditSave(config, reportId)
-        } else {
-          console.log('Use contrast audit --save to generate an SBOM')
-        }
-        const endTime = performance.now() - startTime
-        const scanDurationMs = endTime - startTime
-        console.log(
-          `----- completed in ${(scanDurationMs / 1000).toFixed(2)}s -----`
-        )
-      } else {
-        console.log('') //empty log for space before spinner
-        //send message to TS
-        const reportSpinner = returnOra(i18n.__('auditSCAAnalysisBegins'))
-        startSpinner(reportSpinner)
-        const snapshotResponse = await treeUpload.commonSendSnapShot(
-          messageToSend,
-          config
-        )
-        // poll for completion
-        await pollForSnapshotCompletion(
-          config,
-          snapshotResponse.id,
-          reportSpinner
-        )
-        succeedSpinner(reportSpinner, i18n.__('auditSCAAnalysisComplete'))
-        await vulnerabilityReportV2(config, snapshotResponse.id)
-        if (config.save !== undefined) {
-          await auditSave.auditSave(config)
-        } else {
-          console.log('\nUse contrast audit --save to generate an SBOM')
-        }
-        const endTime = performance.now() - startTime
-        const scanDurationMs = endTime - startTime
-        console.log(
-          `----- completed in ${(scanDurationMs / 1000).toFixed(2)}s -----`
-        )
-      }
-    } else {
-      if (filesFound.length === 0) {
-        console.log(i18n.__('languageAnalysisNoLanguage'))
-        console.log(i18n.__('languageAnalysisNoLanguageHelpLine'))
-        throw new Error()
-      } else {
-        console.log(chalk.bold(`\nMultiple language files detected \n`))
-        filesFound.forEach(file => {
-          console.log(`${Object.keys(file)[0]} : `, Object.values(file)[0])
-        })
-        throw new Error(
-          `Please use --file to audit one language only. \nExample: contrast audit --file package-lock.json`
-        )
-      }
-    }
-  }
-}
-module.exports = {
-  processSca
-}