@contrast/contrast 1.0.2 → 1.0.3

package/.prettierignore

@@ -1,2 +1,3 @@
 test/commands/**
 dist/**
+test/errorHandling.spec.ts

package/README.md

@@ -1,4 +1,6 @@
-# Contrast Free
+# CodeSec by Contrast Security
+
+CodeSec delivers:
 
 - The fastest and most accurate SAST scanner.
 - Immediate and actionable results — scan code and serverless environments.
@@ -57,7 +59,7 @@ export AWS_SECRET_ACCESS_KEY=<YOUR_SECRET_ACCESS_KEY>
 Use contrast lambda to scan your AWS Lambda functions.
 `contrast lambda --function-name MyFunctionName --region my-aws-region`
 
-## Contrast Free commands
+## Contrast commands
 
 ### auth
 
@@ -83,11 +85,11 @@ Performs a security SAST scan.
 
 **Options:**
 
-- **contrast scan --file** Path of the file you want to scan. Contrast searches for a .jar, .war, .js. or .zip file in the working directory if a file is not specified.
+- **contrast scan --file** Path of the file you want to scan. Contrast searches for a .jar, .war .exe or .zip file in the working directory (and 3 folders deep) if a file is not specified.
   Alias: **--f**
 
 - **contrast scan --name**
-  Contrast project name. If not specified, Contrast uses contrast.settings to identify the project or creates a project.
+  Contrast project name. If not specified, Contrast creates a project from the name of the file
   Alias: **–n**
 - **contrast scan --save**
   Download the results to a Static Analysis Results Interchange Format (SARIF) file.

package/dist/audit/languageAnalysisEngine/langugageAnalysisFactory.js

@@ -12,6 +12,10 @@ const { vulnerabilityReport } = require('./report/reportingFeature');
 const { vulnReportWithoutDevDep } = require('./report/newReportingFeature');
 const { checkDevDeps } = require('./report/checkIgnoreDevDep');
 const { newSendSnapShot } = require('../languageAnalysisEngine/sendSnapshot');
+const fs = require('fs');
+const chalk = require('chalk');
+const saveFile = require('../../commands/audit/saveFile').default;
+const generateSbom = require('../../sbom/generateSbom').default;
 module.exports = exports = (err, analysis) => {
     const { identifiedLanguageInfo } = analysis.languageAnalysis;
     const catalogueAppId = analysis.languageAnalysis.appId;
@@ -44,6 +48,7 @@ module.exports = exports = (err, analysis) => {
                 await vulnerabilityReport(analysis, catalogueAppId, config);
             }
         }
+        await auditSave(config);
         console.log('\n ***************CONTRAST OSS ANALYSIS COMPLETE************** \n');
     };
     if (identifiedLanguageInfo.language === DOTNET) {
@@ -68,3 +73,23 @@ module.exports = exports = (err, analysis) => {
         goAE(identifiedLanguageInfo, analysis.config, langCallback);
     }
 };
+async function auditSave(config) {
+    if (config.save) {
+        if (config.save.toLowerCase() === 'sbom') {
+            saveFile(config, await generateSbom(config));
+            const filename = `${config.applicationId}-sbom-cyclonedx.json`;
+            if (fs.existsSync(filename)) {
+                console.log(i18n.__('auditSBOMSaveSuccess') + ` - ${filename}`);
+            }
+            else {
+                console.log(chalk.yellow.bold(`\n Unable to save ${filename} Software Bill of Materials (SBOM)`));
+            }
+        }
+        else {
+            console.log(i18n.__('auditBadFiletypeSpecifiedForSave'));
+        }
+    }
+    else {
+        console.log(i18n.__('auditNoFiletypeSpecifiedForSave'));
+    }
+}

package/dist/commands/audit/saveFile.js

@@ -0,0 +1,11 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const fs_1 = __importDefault(require("fs"));
+function saveFile(config, rawResults) {
+    const fileName = `${config.applicationId}-sbom-cyclonedx.json`;
+    fs_1.default.writeFileSync(fileName, JSON.stringify(rawResults));
+}
+exports.default = saveFile;

package/dist/commands/auth/auth.js

@@ -7,7 +7,15 @@ const { sleep } = require('../../utils/requestUtils');
 const i18n = require('i18n');
 const { returnOra, startSpinner, failSpinner, succeedSpinner } = require('../../utils/oraWrapper');
 const { TIMEOUT, AUTH_UI_URL } = require('../../constants/constants');
-const processAuth = async (config) => {
+const parsedCLIOptions = require('../../utils/parsedCLIOptions');
+const constants = require('../../constants');
+const commandLineUsage = require('command-line-usage');
+const processAuth = async (argv, config) => {
+    let authParams = parsedCLIOptions.getCommandLineArgsCustom(argv, constants.commandLineDefinitions.authOptionDefinitions);
+    if (authParams.help) {
+        console.log(authUsageGuide);
+        process.exit(0);
+    }
     const token = uuidv4();
     const url = `${AUTH_UI_URL}/?token=${token}`;
     console.log(i18n.__('redirectAuth', url));
@@ -56,6 +64,16 @@ const pollAuthResult = async (token, client) => {
         console.log(err);
     });
 };
+const authUsageGuide = commandLineUsage([
+    {
+        header: i18n.__('authHeader'),
+        content: [i18n.__('constantsAuthHeaderContents')]
+    },
+    {
+        header: i18n.__('constantsAuthUsageHeader'),
+        content: [i18n.__('constantsAuthUsageContents')]
+    }
+]);
 module.exports = {
     processAuth: processAuth
 };

package/dist/commands/config/config.js

@@ -1,14 +1,16 @@
 "use strict";
-const commandLineArgs = require('command-line-args');
+const parsedCLIOptions = require('../../utils/parsedCLIOptions');
+const constants = require('../../constants');
+const commandLineUsage = require('command-line-usage');
+const i18n = require('i18n');
 const processConfig = (argv, config) => {
-    const options = [{ name: 'clear', alias: 'c', type: Boolean }];
     try {
-        const configOptions = commandLineArgs(options, {
-            argv,
-            caseInsensitive: true,
-            camelCase: true
-        });
-        if (configOptions.clear) {
+        let configParams = parsedCLIOptions.getCommandLineArgsCustom(argv, constants.commandLineDefinitions.configOptionDefinitions);
+        if (configParams.help) {
+            console.log(configUsageGuide);
+            process.exit(0);
+        }
+        if (configParams.clear) {
             config.clear();
         }
         else {
@@ -19,6 +21,15 @@ const processConfig = (argv, config) => {
         console.log(e.message.toString());
     }
 };
+const configUsageGuide = commandLineUsage([
+    {
+        header: i18n.__('configHeader')
+    },
+    {
+        content: [i18n.__('constantsConfigUsageContents')],
+        optionList: constants.commandLineDefinitions.configOptionDefinitions
+    }
+]);
 module.exports = {
     processConfig: processConfig
 };

package/dist/commands/scan/processScan.js

@@ -3,35 +3,17 @@ const { startScan } = require('../../scan/scanController');
 const { formatScanOutput } = require('../../scan/scan');
 const { scanUsageGuide } = require('../../scan/help');
 const scanConfig = require('../../scan/scanConfig');
-const saveResults = require('../../scan/saveResults');
-const commonApi = require('../../utils/commonApi');
-const i18n = require('i18n');
+const { saveScanFile } = require('../../utils/saveFile');
 const processScan = async (argvMain) => {
-    if (argvMain.indexOf('--help') !== -1) {
-        printHelpMessage();
-        process.exit(1);
-    }
     let config = scanConfig.getScanConfig(argvMain);
     let scanResults = await startScan(config);
     if (scanResults) {
         formatScanOutput(scanResults?.projectOverview, scanResults?.scanResultsInstances);
     }
-    if (config.save) {
-        if (config.save.toLowerCase() === 'sarif') {
-            const scanId = scanResults.scanDetail.id;
-            const client = commonApi.getHttpClient(config);
-            const rawResults = await client.getSpecificScanResultSarif(config, scanId);
-            saveResults.writeResultsToFile(rawResults?.body);
-        }
-        else {
-            console.log(i18n.__('scanNoFiletypeSpecifiedForSave'));
-        }
+    if (config.save !== undefined) {
+        await saveScanFile(config, scanResults);
     }
 };
-const printHelpMessage = () => {
-    console.log(scanUsageGuide);
-};
 module.exports = {
-    processScan,
-    printHelpMessage
+    processScan
 };

package/dist/common/HTTPClient.js

@@ -97,6 +97,9 @@ HTTPClient.prototype.createProjectId = function createProjectId(config) {
         name: config.name,
         archived: 'false'
     };
+    if (config.language) {
+        options.body.language = config.language;
+    }
     options.url = createHarmonyProjectsUrl(config);
     return requestUtils.sendRequest({ method: 'post', options });
 };
@@ -224,6 +227,11 @@ HTTPClient.prototype.checkLibrary = function checkLibrary(data) {
     options.body = data;
     return requestUtils.sendRequest({ method: 'post', options });
 };
+HTTPClient.prototype.getSbom = function getSbom(config) {
+    const options = _.cloneDeep(this.requestOptions);
+    options.url = createSbomCycloneDXUrl(config);
+    return requestUtils.sendRequest({ method: 'get', options });
+};
 const createGetScanIdURL = config => {
     return `${config.host}/Contrast/api/sast/v1/organizations/${config.organizationId}/projects/${config.projectId}/scans/`;
 };
@@ -275,6 +283,9 @@ function createDataUrl() {
 const createGetDependencyTree = (protocol, orgUuid, appId, reportId) => {
     return `${protocol}/Contrast/api/ng/sca/organizations/${orgUuid}/applications/${appId}/reports/${reportId}`;
 };
+function createSbomCycloneDXUrl(config) {
+    return `${config.host}/Contrast/api/ng/${config.organizationId}/applications/${config.applicationId}/libraries/sbom/cyclonedx`;
+}
 module.exports = HTTPClient;
 module.exports.pollForAuthUrl = pollForAuthUrl;
 module.exports.getServerlessHost = getServerlessHost;

package/dist/common/errorHandling.js

@@ -3,9 +3,8 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.approximateCommandOnError = exports.libraryAnalysisError = exports.handleResponseErrors = exports.getErrorMessage = exports.generalError = exports.hostWarningError = exports.failOptionError = exports.proxyError = exports.forbiddenError = exports.badRequestError = exports.unauthenticatedError = exports.genericError = void 0;
+exports.findCommandOnError = exports.libraryAnalysisError = exports.handleResponseErrors = exports.getErrorMessage = exports.generalError = exports.hostWarningError = exports.failOptionError = exports.proxyError = exports.forbiddenError = exports.badRequestError = exports.unauthenticatedError = exports.genericError = void 0;
 const i18n_1 = __importDefault(require("i18n"));
-const lodash_1 = require("lodash");
 const handleResponseErrors = (res, api) => {
     if (res.statusCode === 400) {
         api === 'catalogue' ? badRequestError(true) : badRequestError(false);
@@ -72,6 +71,7 @@ const badRequestError = (catalogue) => {
 exports.badRequestError = badRequestError;
 const forbiddenError = () => {
     generalError('forbiddenRequestErrorHeader', 'forbiddenRequestErrorMessage');
+    process.exit(1);
 };
 exports.forbiddenError = forbiddenError;
 const proxyError = () => {
@@ -107,7 +107,7 @@ const generalError = (header, message) => {
     console.log(finalMessage);
 };
 exports.generalError = generalError;
-const approximateCommandOnError = (unknownOptions) => {
+const findCommandOnError = (unknownOptions) => {
     const commandKeywords = {
         auth: 'auth',
         audit: 'audit',
@@ -115,24 +115,10 @@ const approximateCommandOnError = (unknownOptions) => {
         lambda: 'lambda',
         config: 'config'
     };
-    const sortedUnknownOptions = (0, lodash_1.sortBy)(unknownOptions, param => param === 'auth' ||
-        param === 'audit' ||
-        param === 'scan' ||
-        param === 'lambda' ||
-        param === 'config'
-        ? 0
-        : 1);
-    const foundCommands = sortedUnknownOptions.filter(command => commandKeywords[command]);
-    const parsedUnknownOptions = sortedUnknownOptions
-        .toString()
-        .replace(/,/g, ' ');
-    const approximateParams = parsedUnknownOptions
-        .replace(new RegExp(foundCommands.join('|'), 'g'), '')
-        .trim();
-    const approximateCommand = `${foundCommands[0]} ${approximateParams}`;
-    return {
-        approximateCommand,
-        approximateCommandKeyword: foundCommands[0]
-    };
+    const containsCommandKeyword = unknownOptions.some(command => commandKeywords[command]);
+    if (containsCommandKeyword) {
+        const foundCommands = unknownOptions.filter(command => commandKeywords[command]);
+        return foundCommands[0];
+    }
 };
-exports.approximateCommandOnError = approximateCommandOnError;
+exports.findCommandOnError = findCommandOnError;

package/dist/common/{findLatestCLIVersion.js → versionChecker.js}

@@ -3,6 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.isCorrectNodeVersion = exports.findLatestCLIVersion = void 0;
 const latest_version_1 = __importDefault(require("latest-version"));
 const constants_1 = require("../constants/constants");
 const boxen_1 = __importDefault(require("boxen"));
@@ -12,12 +13,18 @@ async function findLatestCLIVersion() {
     const latestCLIVersion = await (0, latest_version_1.default)('@contrast/contrast');
     if (semver_1.default.lt(constants_1.APP_VERSION, latestCLIVersion)) {
         const updateAvailableMessage = `Update available ${chalk_1.default.yellow(constants_1.APP_VERSION)} → ${chalk_1.default.green(latestCLIVersion)}`;
-        const updateAvailableCommand = `Run ${chalk_1.default.cyan('npm i @contrast/contrast')} to update`;
-        console.log((0, boxen_1.default)(`${updateAvailableMessage}\n${updateAvailableCommand}`, {
+        const npmUpdateAvailableCommand = `Run ${chalk_1.default.cyan('npm i @contrast/contrast -g')} to update via npm`;
+        const homebrewUpdateAvailableCommand = `Run ${chalk_1.default.cyan('brew install contrastsecurity/tap/contrast')} to update via brew`;
+        console.log((0, boxen_1.default)(`${updateAvailableMessage}\n${npmUpdateAvailableCommand}\n\n${homebrewUpdateAvailableCommand}`, {
+            titleAlignment: 'center',
             margin: 1,
             padding: 1,
             align: 'center'
         }));
     }
 }
-exports.default = findLatestCLIVersion;
+exports.findLatestCLIVersion = findLatestCLIVersion;
+async function isCorrectNodeVersion(currentVersion) {
+    return semver_1.default.satisfies(currentVersion, '>=16.13.2 <17');
+}
+exports.isCorrectNodeVersion = isCorrectNodeVersion;

package/dist/constants/constants.js

@@ -12,10 +12,11 @@ const MEDIUM = 'MEDIUM';
 const HIGH = 'HIGH';
 const CRITICAL = 'CRITICAL';
 const APP_NAME = 'contrast';
-const APP_VERSION = '1.0.2';
+const APP_VERSION = '1.0.3';
 const TIMEOUT = 120000;
 const AUTH_UI_URL = 'https://cli-auth.contrastsecurity.com';
 const AUTH_CALLBACK_URL = 'https://cli-auth-api.contrastsecurity.com';
+const SARIF_FILE = 'SARIF';
 module.exports = {
     supportedLanguages: { NODE, DOTNET, JAVA, RUBY, PYTHON, GO, PHP, JAVASCRIPT },
     LOW,
@@ -26,5 +27,6 @@ module.exports = {
     APP_NAME,
     TIMEOUT,
     AUTH_UI_URL,
-    AUTH_CALLBACK_URL
+    AUTH_CALLBACK_URL,
+    SARIF_FILE
 };

package/dist/constants/locales.js

@@ -109,17 +109,22 @@ const en_locales = () => {
         failOptionErrorMessage: " FAIL - CVE's have been detected that match at least the cve_severity or cve_threshold option specified.",
         constantsSeverity: 'Combined with the --report command, allows the user to report libraries with vulnerabilities above a chosen severity level. For example, cve_severity medium only reports libraries with vulnerabilities at medium or higher severity. Values for level are high, medium or low.',
         constantsCount: "The number of CVE's that must be exceeded to fail a build",
-        constantsHeader: 'Contrast CLI',
+        constantsHeader: 'CodeSec by Contrast Security',
         constantsPrerequisitesContentScanLanguages: 'Java & JavaScript supported',
-        constantsContrastContent: 'Use the Contrast CLI, the fastest and most accurate code scan, to help find and eliminate security bugs in your code.',
+        constantsContrastContent: 'Use the Contrast CLI to run a scan(Java, JavaScript and .NET ) or lambda command (Java and Python) to find your vulnerabilities and start securing your code.',
         constantsUsageGuideContentRecommendation: 'Our recommendation is that this is invoked as part of a CI pipeline so that running the cli is automated as part of your build process.',
         constantsPrerequisitesHeader: 'Pre-requisites',
+        constantsAuthUsageHeader: 'Usage',
+        constantsAuthUsageContents: 'contrast auth',
+        constantsAuthHeaderContents: 'Authorize with external identity provider to perform scans on code',
+        configHeader: 'Config',
+        constantsConfigUsageContents: 'view / clear the configuration',
         constantsPrerequisitesContent: 'To scan a Java project you will need a .jar or .war file for analysis\n' +
             'To scan a Javascript project you will need a .js or.zip file for analysis\n' +
             'To scan a .NET c# webforms project you will need a .exe or a .zip file for analysis\n',
         constantsUsage: 'Usage',
         constantsUsageCommandExample: 'contrast [command] [options]',
-        constantsUsageCommandInfo: 'The file argument is optional. If no file is given, Contrast will search for a .jar, .war, .js, .exe or .zip file in the working directory.\n',
+        constantsUsageCommandInfo: 'The file argument is optional. If no file is given, Contrast will search for a .jar, .war, .exe or .zip file in the working directory.\n',
         constantsUsageCommandInfo24Hours: 'Submitted files are encrypted during upload and deleted in 24 hours.',
         constantsAnd: 'AND',
         constantsJava: 'AND Maven build platform, including the dependency plugin. For a Gradle project, use build.gradle. A gradle-wrapper.properties file is also required. Kotlin is also supported requiring a build.gradle.kts file.',
@@ -192,7 +197,7 @@ const en_locales = () => {
         permissionsError: 'You do not have the correct permissions here. \n Contact support@contrastsecurity.com to get this fixed.',
         scanErrorFileMessage: 'We only accept the following file types: \nJava - .jar, .war \nJavaScript - .js or .zip files',
         helpAuthSummary: 'Authenticate Contrast using your Github or Google account',
-        helpScanSummary: 'Searches for a .jar, .war, .js or .zip file in the working directory, uploads for analysis and returns the results',
+        helpScanSummary: 'Perform static analysis on binaries / code artifacts',
         helpLambdaSummary: 'Perform scan on AWS Lambda functions',
         helpVersionSummary: 'Displays version of Contrast CLI',
         helpConfigSummary: 'Displays stored credentials',
@@ -203,10 +208,11 @@ const en_locales = () => {
         versionName: 'version',
         configName: 'config',
         helpName: 'help',
+        scanOptionsLanguageSummary: 'Valid values are JAVA, JAVASCRIPT and DOTNET',
         scanOptionsLanguageSummaryOptional: 'Language of file to send for analysis. ',
         scanOptionsLanguageSummaryRequired: 'If you scan a .zip file or you use the --file option.',
         scanOptionsTimeoutSummary: 'Time in seconds to wait for scan to complete. Default value is 300 seconds.',
-        scanOptionsFileNameSummary: 'Path of the file you want to scan. If no file is specified, Contrast searches for a .jar, .war, .js, .exe or .zip file in the working directory.',
+        scanOptionsFileNameSummary: 'Path of the file you want to scan. If no file is specified, Contrast searches for a .jar, .war, .exe or .zip file in the working directory.',
         scanOptionsVerboseSummary: ' Returns extended information to the terminal.',
         authSuccessMessage: 'Authentication successful',
         runAuthSuccessMessage: "Now you can use Contrast CLI \nRun 'contrast scan' on your file \n" +
@@ -215,7 +221,7 @@ const en_locales = () => {
         authTimedOutMessage: 'Auth Timed out, try again',
         zipErrorScan: 'We only support zip files for JAVASCRIPT language, please set the flag --language JAVASCRIPT',
         unknownFileErrorScan: 'Unsupported file selected for Scan.',
-        foundScanFile: 'found: %s',
+        foundScanFile: 'Found: %s',
         foundDetailedVulnerabilities: chalk.bold('%s Critical') +
             ' | ' +
             chalk.bold('%s High') +
@@ -224,6 +230,7 @@ const en_locales = () => {
         timeoutScan: 'Timeout set to 5 minutes.',
         searchingScanFileDirectory: 'Searching for file to scan from %s...',
         scanHeader: 'Contrast Scan CLI',
+        authHeader: 'Auth',
         lambdaHeader: 'Contrast lambda help',
         lambdaSummary: 'Performs static security scan on an AWS Lambda Function.\nProduces CVE (Vulnerable Dependencies) and Least Privilege violations/remediation results.',
         lambdaUsage: 'contrast lambda --function-name <function> [options]',
@@ -279,7 +286,10 @@ const en_locales = () => {
         auditOptionsSave: '-s, --save',
         auditOptionsSaveDescription: 'saves the output in specified format Txt text, sbom',
         scanNoVulnerabilitiesFound: '👏 No vulnerabilities found',
-        scanNoFiletypeSpecifiedForSave: 'Please specify file type to save results to',
+        scanNoFiletypeSpecifiedForSave: 'Please specify file type to save results to, accepted value is SARIF',
+        auditSBOMSaveSuccess: '\n Software Bill of Materials (SBOM) saved successfully',
+        auditNoFiletypeSpecifiedForSave: `\n ${chalk.yellow.bold('No file type specified for --save option to save audit results to. Use audit --help to see valid --save options.')}`,
+        auditBadFiletypeSpecifiedForSave: `\n ${chalk.yellow.bold('Bad file type specified for --save option. Use audit --help to see valid --save options.')}`,
         ...lambda
     };
 };

package/dist/constants.js

@@ -17,6 +17,14 @@ const scanOptionDefinitions = [
             '}: ' +
             i18n.__('constantsProjectName')
     },
+    {
+        name: 'language',
+        alias: 'l',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('scanOptionsLanguageSummary')
+    },
     {
         name: 'file',
         alias: 'f',
@@ -66,7 +74,6 @@ const scanOptionDefinitions = [
     },
     {
         name: 'host',
-        alias: 'h',
         description: '{bold ' +
             i18n.__('constantsRequired') +
             '}: ' +
@@ -111,6 +118,7 @@ const scanOptionDefinitions = [
     },
     {
         name: 'help',
+        alias: 'h',
         type: Boolean
     },
     {
@@ -119,6 +127,27 @@ const scanOptionDefinitions = [
         type: Boolean
     }
 ];
+const authOptionDefinitions = [
+    {
+        name: 'help',
+        alias: 'h',
+        type: Boolean
+    }
+];
+const configOptionDefinitions = [
+    {
+        name: 'help',
+        alias: 'h',
+        type: Boolean,
+        description: 'Help text'
+    },
+    {
+        name: 'clear',
+        alias: 'c',
+        type: Boolean,
+        description: 'Clear the currently stored config'
+    }
+];
 const auditOptionDefinitions = [
     {
         name: 'application-id',
@@ -257,6 +286,7 @@ const mainUsageGuide = commandLineUsage([
         header: i18n.__('constantsCommands'),
         content: [
             { name: i18n.__('authName'), summary: i18n.__('helpAuthSummary') },
+            { name: i18n.__('scanName'), summary: i18n.__('helpScanSummary') },
             { name: i18n.__('lambdaName'), summary: i18n.__('helpLambdaSummary') },
             { name: i18n.__('versionName'), summary: i18n.__('helpVersionSummary') },
             { name: i18n.__('configName'), summary: i18n.__('helpConfigSummary') },
@@ -273,6 +303,8 @@ module.exports = {
         mainUsageGuide,
         mainDefinition,
         scanOptionDefinitions,
-        auditOptionDefinitions
+        auditOptionDefinitions,
+        authOptionDefinitions,
+        configOptionDefinitions
     }
 };

package/dist/index.js

@@ -12,7 +12,8 @@ const constants_1 = __importDefault(require("./constants"));
 const constants_2 = require("./constants/constants");
 const lambda_1 = require("./lambda/lambda");
 const getConfig_1 = require("./utils/getConfig");
-const findLatestCLIVersion_1 = __importDefault(require("./common/findLatestCLIVersion"));
+const versionChecker_1 = require("./common/versionChecker");
+const errorHandling_1 = require("./common/errorHandling");
 const { commandLineDefinitions: { mainUsageGuide, mainDefinition } } = constants_1.default;
 const config = (0, getConfig_1.localConfig)(constants_2.APP_NAME, constants_2.APP_VERSION);
 const getMainOption = () => {
@@ -28,37 +29,54 @@ const getMainOption = () => {
     };
 };
 const start = async () => {
-    const { mainOptions, argv: argvMain } = getMainOption();
-    const command = mainOptions.command != undefined ? mainOptions.command.toLowerCase() : '';
-    if (command === 'version' ||
-        argvMain.includes('--v') ||
-        argvMain.includes('--version')) {
-        console.log(constants_2.APP_VERSION);
-        return;
-    }
-    await (0, findLatestCLIVersion_1.default)();
-    if (command === 'config') {
-        return (0, config_1.processConfig)(argvMain, config);
-    }
-    if (command === 'auth') {
-        return await (0, auth_1.processAuth)(config);
-    }
-    if (command === 'lambda') {
-        return await (0, lambda_1.processLambda)(argvMain);
-    }
-    if (command === 'scan') {
-        return await (0, processScan_1.processScan)(argvMain);
-    }
-    if (command === 'audit') {
-        return await (0, processAudit_1.processAudit)(argvMain);
-    }
-    if (command === 'help' ||
-        argvMain.includes('--help') ||
-        Object.keys(mainOptions).length === 0) {
-        console.log(mainUsageGuide);
+    if (await (0, versionChecker_1.isCorrectNodeVersion)(process.version)) {
+        const { mainOptions, argv: argvMain } = getMainOption();
+        const command = mainOptions.command != undefined ? mainOptions.command.toLowerCase() : '';
+        if (command === 'version' ||
+            argvMain.includes('--v') ||
+            argvMain.includes('--version')) {
+            console.log(constants_2.APP_VERSION);
+            await (0, versionChecker_1.findLatestCLIVersion)();
+            return;
+        }
+        config.set('numOfRuns', config.get('numOfRuns') + 1);
+        if (config.get('numOfRuns') >= 5) {
+            await (0, versionChecker_1.findLatestCLIVersion)();
+            config.set('numOfRuns', 0);
+        }
+        if (command === 'config') {
+            return (0, config_1.processConfig)(argvMain, config);
+        }
+        if (command === 'auth') {
+            return await (0, auth_1.processAuth)(argvMain, config);
+        }
+        if (command === 'lambda') {
+            return await (0, lambda_1.processLambda)(argvMain);
+        }
+        if (command === 'scan') {
+            return await (0, processScan_1.processScan)(argvMain);
+        }
+        if (command === 'audit') {
+            return await (0, processAudit_1.processAudit)(argvMain);
+        }
+        if (command === 'help' ||
+            argvMain.includes('--help') ||
+            Object.keys(mainOptions).length === 0) {
+            console.log(mainUsageGuide);
+        }
+        else if (mainOptions._unknown !== undefined) {
+            const foundCommand = (0, errorHandling_1.findCommandOnError)(mainOptions._unknown);
+            foundCommand
+                ? console.log(`Unknown Command: Did you mean "${foundCommand}"? \nUse "${foundCommand} --help" for the full list of options`)
+                : console.log(`Unknown Command: ${command} \nUse --help for the full list`);
+        }
+        else {
+            console.log(`Unknown Command: ${command} \nUse --help for the full list`);
+        }
+        process.exit(9);
     }
     else {
-        console.log('Unknown Command: ' + command + ' \nUse --help for the full list');
+        console.log('Contrast supports Node versions >=16.13.2 <17. Please use one of those versions.');
         process.exit(9);
     }
 };

package/dist/sbom/generateSbom.js

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const commonApi_1 = require("../utils/commonApi");
+function generateSbom(config) {
+    const client = (0, commonApi_1.getHttpClient)(config);
+    return client
+        .getSbom(config)
+        .then((res) => {
+        if (res.statusCode === 200) {
+            return res.body;
+        }
+        else {
+            console.log('Unable to retrieve Software Bill of Materials (SBOM)');
+        }
+    })
+        .catch((err) => {
+        console.log(err);
+    });
+}
+exports.default = generateSbom;

package/dist/scan/help.js

@@ -21,14 +21,16 @@ const scanUsageGuide = commandLineUsage([
         optionList: constants.commandLineDefinitions.scanOptionDefinitions,
         hide: [
             'project-id',
-            'language',
             'organization-id',
             'api-key',
             'authorization',
             'host',
             'proxy',
+            'help',
             'ff',
-            'ignore-cert-errors'
+            'ignore-cert-errors',
+            'verbose',
+            'debug'
         ]
     },
     {

package/dist/scan/populateProjectIdAndProjectName.js

@@ -21,6 +21,7 @@ const createProjectId = async (config, client) => {
         }
         if (res.statusCode === 403) {
             console.log(i18n.__('permissionsError'));
+            process.exit(1);
             return;
         }
         if (res.statusCode === 201) {