@contrast/contrast 1.0.2 → 1.0.5

package/dist/common/errorHandling.js

@@ -3,9 +3,8 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.approximateCommandOnError = exports.libraryAnalysisError = exports.handleResponseErrors = exports.getErrorMessage = exports.generalError = exports.hostWarningError = exports.failOptionError = exports.proxyError = exports.forbiddenError = exports.badRequestError = exports.unauthenticatedError = exports.genericError = void 0;
+exports.reportFailureError = exports.vulnerabilitiesFailureError = exports.snapshotFailureError = exports.findCommandOnError = exports.libraryAnalysisError = exports.handleResponseErrors = exports.getErrorMessage = exports.generalError = exports.failOptionError = exports.proxyError = exports.forbiddenError = exports.badRequestError = exports.unauthenticatedError = exports.genericError = void 0;
 const i18n_1 = __importDefault(require("i18n"));
-const lodash_1 = require("lodash");
 const handleResponseErrors = (res, api) => {
     if (res.statusCode === 400) {
         api === 'catalogue' ? badRequestError(true) : badRequestError(false);
@@ -37,23 +36,17 @@ const libraryAnalysisError = () => {
 };
 exports.libraryAnalysisError = libraryAnalysisError;
 const snapshotFailureError = () => {
-    console.log('\n ******************************** ' +
-        i18n_1.default.__('snapshotFailureHeader') +
-        ' *********************************\n' +
-        i18n_1.default.__('snapshotFailureMessage'));
+    console.log(i18n_1.default.__('snapshotFailureMessage'));
 };
+exports.snapshotFailureError = snapshotFailureError;
 const vulnerabilitiesFailureError = () => {
-    console.log('\n ******************************** ' +
-        i18n_1.default.__('snapshotFailureHeader') +
-        ' *********************************\n' +
-        i18n_1.default.__('vulnerabilitiesFailureMessage'));
+    console.log(i18n_1.default.__('vulnerabilitiesFailureMessage'));
 };
+exports.vulnerabilitiesFailureError = vulnerabilitiesFailureError;
 const reportFailureError = () => {
-    console.log('\n ******************************** ' +
-        i18n_1.default.__('snapshotFailureHeader') +
-        ' *********************************\n' +
-        i18n_1.default.__('reportFailureMessage'));
+    console.log(i18n_1.default.__('auditReportFailureMessage'));
 };
+exports.reportFailureError = reportFailureError;
 const genericError = (missingCliOption) => {
     console.log(`*************************** ${i18n_1.default.__('yamlMissingParametersHeader')} ***************************\n${missingCliOption}`);
     console.error(i18n_1.default.__('yamlMissingParametersMessage'));
@@ -72,16 +65,13 @@ const badRequestError = (catalogue) => {
 exports.badRequestError = badRequestError;
 const forbiddenError = () => {
     generalError('forbiddenRequestErrorHeader', 'forbiddenRequestErrorMessage');
+    process.exit(1);
 };
 exports.forbiddenError = forbiddenError;
 const proxyError = () => {
     generalError('proxyErrorHeader', 'proxyErrorMessage');
 };
 exports.proxyError = proxyError;
-const hostWarningError = () => {
-    console.log(i18n_1.default.__('snapshotHostMessage'));
-};
-exports.hostWarningError = hostWarningError;
 const failOptionError = () => {
     console.log('\n ******************************** ' +
         i18n_1.default.__('snapshotFailureHeader') +
@@ -107,7 +97,7 @@ const generalError = (header, message) => {
     console.log(finalMessage);
 };
 exports.generalError = generalError;
-const approximateCommandOnError = (unknownOptions) => {
+const findCommandOnError = (unknownOptions) => {
     const commandKeywords = {
         auth: 'auth',
         audit: 'audit',
@@ -115,24 +105,10 @@ const approximateCommandOnError = (unknownOptions) => {
         lambda: 'lambda',
         config: 'config'
     };
-    const sortedUnknownOptions = (0, lodash_1.sortBy)(unknownOptions, param => param === 'auth' ||
-        param === 'audit' ||
-        param === 'scan' ||
-        param === 'lambda' ||
-        param === 'config'
-        ? 0
-        : 1);
-    const foundCommands = sortedUnknownOptions.filter(command => commandKeywords[command]);
-    const parsedUnknownOptions = sortedUnknownOptions
-        .toString()
-        .replace(/,/g, ' ');
-    const approximateParams = parsedUnknownOptions
-        .replace(new RegExp(foundCommands.join('|'), 'g'), '')
-        .trim();
-    const approximateCommand = `${foundCommands[0]} ${approximateParams}`;
-    return {
-        approximateCommand,
-        approximateCommandKeyword: foundCommands[0]
-    };
+    const containsCommandKeyword = unknownOptions.some(command => commandKeywords[command]);
+    if (containsCommandKeyword) {
+        const foundCommands = unknownOptions.filter(command => commandKeywords[command]);
+        return foundCommands[0];
+    }
 };
-exports.approximateCommandOnError = approximateCommandOnError;
+exports.findCommandOnError = findCommandOnError;

package/dist/common/versionChecker.js

@@ -0,0 +1,32 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isCorrectNodeVersion = exports.findLatestCLIVersion = void 0;
+const latest_version_1 = __importDefault(require("latest-version"));
+const constants_1 = require("../constants/constants");
+const boxen_1 = __importDefault(require("boxen"));
+const chalk_1 = __importDefault(require("chalk"));
+const semver_1 = __importDefault(require("semver"));
+async function findLatestCLIVersion(updateMessageHidden) {
+    if (!updateMessageHidden) {
+        const latestCLIVersion = await (0, latest_version_1.default)('@contrast/contrast');
+        if (semver_1.default.lt(constants_1.APP_VERSION, latestCLIVersion)) {
+            const updateAvailableMessage = `Update available ${chalk_1.default.yellow(constants_1.APP_VERSION)} → ${chalk_1.default.green(latestCLIVersion)}`;
+            const npmUpdateAvailableCommand = `Run ${chalk_1.default.cyan('npm i @contrast/contrast -g')} to update via npm`;
+            const homebrewUpdateAvailableCommand = `Run ${chalk_1.default.cyan('brew install contrastsecurity/tap/contrast')} to update via brew`;
+            console.log((0, boxen_1.default)(`${updateAvailableMessage}\n${npmUpdateAvailableCommand}\n\n${homebrewUpdateAvailableCommand}`, {
+                titleAlignment: 'center',
+                margin: 1,
+                padding: 1,
+                align: 'center'
+            }));
+        }
+    }
+}
+exports.findLatestCLIVersion = findLatestCLIVersion;
+async function isCorrectNodeVersion(currentVersion) {
+    return semver_1.default.satisfies(currentVersion, '>=16.13.2 <17');
+}
+exports.isCorrectNodeVersion = isCorrectNodeVersion;

package/dist/constants/constants.js

@@ -12,10 +12,17 @@ const MEDIUM = 'MEDIUM';
 const HIGH = 'HIGH';
 const CRITICAL = 'CRITICAL';
 const APP_NAME = 'contrast';
-const APP_VERSION = '1.0.2';
+const APP_VERSION = '1.0.5';
 const TIMEOUT = 120000;
+const HIGH_COLOUR = '#ff9900';
+const CRITICAL_COLOUR = '#e35858';
+const MEDIUM_COLOUR = '#f1c232';
+const LOW_COLOUR = '#ff9900';
+const NOTE_COLOUR = '#999999';
 const AUTH_UI_URL = 'https://cli-auth.contrastsecurity.com';
 const AUTH_CALLBACK_URL = 'https://cli-auth-api.contrastsecurity.com';
+const SARIF_FILE = 'SARIF';
+const CE_URL = 'https://ce.contrastsecurity.com/';
 module.exports = {
     supportedLanguages: { NODE, DOTNET, JAVA, RUBY, PYTHON, GO, PHP, JAVASCRIPT },
     LOW,
@@ -26,5 +33,12 @@ module.exports = {
     APP_NAME,
     TIMEOUT,
     AUTH_UI_URL,
-    AUTH_CALLBACK_URL
+    AUTH_CALLBACK_URL,
+    SARIF_FILE,
+    HIGH_COLOUR,
+    CRITICAL_COLOUR,
+    MEDIUM_COLOUR,
+    LOW_COLOUR,
+    NOTE_COLOUR,
+    CE_URL
 };

package/dist/constants/lambda.js

@@ -25,9 +25,11 @@ const lambda = {
     loadingFunctionList: 'Loading lambda function list',
     functionsFound: '{{count}} functions found',
     noFunctionsFound: 'No functions found',
-    failedToLoadFunctions: 'Faled to load lambda functions',
+    failedToLoadFunctions: 'Failed to load lambda functions',
     availableForScan: '{{icon}} {{count}} available for scan',
     runtimeCount: '----- {{runtime}} ({{count}}) -----',
+    gatherResults: 'Gathering results...',
+    doneGatherResults: 'Done gathering results',
     whatHappenedTitle: 'What happened:',
     whatHappenedItem: '{{policy}} have:\n{{comments}}\n',
     recommendation: 'Recommendation:',

package/dist/constants/locales.js

@@ -4,43 +4,29 @@ const chalk = require('chalk');
 const en_locales = () => {
     return {
         successHeader: 'SUCCESS',
-        snapshotSuccessMessage: ' Please go to the Contrast UI to view your dependency tree.',
+        snapshotSuccessMessage: 'Please go to the Contrast UI to view your dependency tree.',
         snapshotFailureHeader: 'FAIL',
-        snapshotFailureMessage: ' Unable to send library analysis to your Contrast UI.',
-        snapshotHostMessage: " No host supplied. Using default host 'app.contrastsecurity.com'. Please ensure this is correct.",
-        vulnerabilitiesSuccessMessage: ' Vulnerability data successfully retrieved',
-        vulnerabilitiesFailureMessage: ' Unable to retrieve library vulnerabilities from Team Server.',
-        reportSuccessMessage: ' Report successfully retrieved',
-        reportFailureMessage: ' Unable to generate library report.',
+        snapshotFailureMessage: 'Library analysis failed',
+        snapshotHostMessage: "No host supplied. Using default host 'app.contrastsecurity.com'. Please ensure this is correct.",
+        vulnerabilitiesSuccessMessage: 'Vulnerability data successfully retrieved',
+        vulnerabilitiesFailureMessage: 'Unable to retrieve library vulnerabilities',
         catchErrorMessage: 'Contrast UI error: ',
         dependenciesNote: 'Please Note: We currently only support projects with one .csproj AND *.package.lock.json',
-        languageAnalysisFailureMessage: 'LANGUAGE ANALYSIS FAILED',
+        languageAnalysisFailureMessage: 'SCA Analysis Failure',
         languageAnalysisFactoryFailureHeader: 'FAIL',
-        projectPathParameter: 'Please set the %s to locate the source code for the project',
-        apiKeyParameter: 'Please set the %s to connect to the Contrast UI',
-        applicationNameParameter: 'Please provide a value for %s, to appear in the Contrast UI',
-        languageParameter: 'Please set the %s to the language of the source project. Allowable values are JAVA, DOTNET, NODE, PYTHON and RUBY.',
-        hostParameter: 'Please set the %s to the hostname and (optionally) the port expressed as <host>:<port> of the Contrast UI',
-        organizationIdParameter: 'Please set the %s to correctly identify your organization within the Contrast UI',
-        authorizationParameter: 'Please set the %s to your authorization header, found in the Contrast UI',
-        applicationIdParameter: 'Please set the %s to the value provided within the Contrast UI for the target application',
-        libraryAnalysisError: 'Please ensure the language parameter is set in accordance to the language specified on the project path.\nThe Contrast-CLI must be run in the same directory as the project manifest file OR the project_path parameter must be used to identify the directory containing the project manifest file.\n\nFor further information please read our usage guide, which can be accessed with the following command:\n\ncontrast-cli --help',
+        libraryAnalysisError: 'Please ensure the language parameter is set in accordance to the language specified on the project path.\nContrast CLI must be run in the same directory as the project manifest file OR the project_path parameter must be used to identify the directory containing the project manifest file.\n\nFor further information please read our usage guide, which can be accessed with the following command:\n\ncontrast-cli --help',
         yamlMissingParametersHeader: 'Missing Parameters',
-        yamlMissingParametersMessage: 'The following parameters are required: \n \norganization_id \napi_key \nauthorization \nhost \napplication_name or application_id \nlanguage \n \nThey must be specified as a command line argument or within the yaml file. \nFor further information please read our usage guide, which can be accessed with the following command:\ncontrast-cli --help',
+        yamlMissingParametersMessage: 'The following parameters are required: \n \norganization-id \napi-key \nauthorization \nhost \nlanguage \n \nThey must be specified as a command line argument. \nFor further information please read our usage guide, which can be accessed with the following command:\ncontrast audit --help',
         unauthenticatedErrorHeader: '401 error - Unauthenticated',
-        unauthenticatedErrorMessage: 'Please check the following keys are correct:\n--organization_id, --api_key or --authorization',
+        unauthenticatedErrorMessage: 'Please check the following keys are correct:\n--organization-id, --api-key or --authorization',
         badRequestErrorHeader: '400 error - Bad Request',
-        badRequestErrorMessage: 'Please check the following key is correct: \n--application_id',
+        badRequestErrorMessage: 'Please check the following key is correct: \n--application-id',
         badRequestCatalogueErrorMessage: 'The application name already exists, please use a unique name',
         forbiddenRequestErrorHeader: '403 error - Forbidden',
         forbiddenRequestErrorMessage: 'You do not have permission to access this server.',
         proxyErrorHeader: '407 error - Proxy Authentication Required',
         proxyErrorMessage: 'Please provide valid authentication credentials for the proxy server.',
-        downgradeHttpsHttp: 'Connection to ContrastUI using https failed.  Attempting to connect using http...',
-        setSpecifiedParameter: 'Please set the %s ',
-        catalogueFailureCommand: 'Failed to catalogue a new application for reason: ',
-        catalogueFailureHostCommand: 'Failed to catalogue a new application, please ensure you have the correct host and authentication. Error: ',
-        catalogueSuccessCommand: 'This application ID can now be used to send dependency data to Contrast: ',
+        catalogueSuccessCommand: 'Application Created',
         dotnetAnalysisFailure: '.NET analysis failed because: ',
         dotnetReadLockfile: 'Failed to read the lock file @ %s because: ',
         dotnetParseLockfile: "Failed to parse .NET lock file @ '%s' because: ",
@@ -84,10 +70,9 @@ const en_locales = () => {
         constantsOptionalForCatalogue: '(optional for catalogue)',
         constantsRequired: '(required)',
         constantsRequiredCatalogue: '(required for catalogue)',
-        constantsYamlPath: 'If you want to read params from the yaml file then enter the path to the file',
         constantsApiKey: 'An agent API key as provided by Contrast UI',
-        constantsAuthorization: 'An agent Authorization credentials as provided by Contrast UI',
-        constantsOrganizationId: 'The ID of your organization in Contrast UI',
+        constantsAuthorization: 'Authorization credentials as provided by Contrast UI',
+        constantsOrganizationId: 'The ID of your organization',
         constantsApplicationId: 'The ID of the application cataloged by Contrast UI',
         constantsHostId: 'Provide the name of the host and optionally the port expressed as "<host>:<port>".',
         constantsApplicationName: 'The name of the application cataloged by Contrast UI',
@@ -109,17 +94,22 @@ const en_locales = () => {
         failOptionErrorMessage: " FAIL - CVE's have been detected that match at least the cve_severity or cve_threshold option specified.",
         constantsSeverity: 'Combined with the --report command, allows the user to report libraries with vulnerabilities above a chosen severity level. For example, cve_severity medium only reports libraries with vulnerabilities at medium or higher severity. Values for level are high, medium or low.',
         constantsCount: "The number of CVE's that must be exceeded to fail a build",
-        constantsHeader: 'Contrast CLI',
+        constantsHeader: 'CodeSec by Contrast Security',
         constantsPrerequisitesContentScanLanguages: 'Java & JavaScript supported',
-        constantsContrastContent: 'Use the Contrast CLI, the fastest and most accurate code scan, to help find and eliminate security bugs in your code.',
+        constantsContrastContent: 'Use the Contrast CLI to run a scan (Java, JavaScript and .NET ) or lambda command (Java and Python) to find your vulnerabilities and start securing your code.',
         constantsUsageGuideContentRecommendation: 'Our recommendation is that this is invoked as part of a CI pipeline so that running the cli is automated as part of your build process.',
         constantsPrerequisitesHeader: 'Pre-requisites',
+        constantsAuthUsageHeader: 'Usage',
+        constantsAuthUsageContents: 'contrast auth',
+        constantsAuthHeaderContents: 'Authorize with external identity provider to perform scans on code',
+        configHeader: 'Config',
+        constantsConfigUsageContents: 'view / clear the configuration',
         constantsPrerequisitesContent: 'To scan a Java project you will need a .jar or .war file for analysis\n' +
             'To scan a Javascript project you will need a .js or.zip file for analysis\n' +
             'To scan a .NET c# webforms project you will need a .exe or a .zip file for analysis\n',
         constantsUsage: 'Usage',
         constantsUsageCommandExample: 'contrast [command] [options]',
-        constantsUsageCommandInfo: 'The file argument is optional. If no file is given, Contrast will search for a .jar, .war, .js, .exe or .zip file in the working directory.\n',
+        constantsUsageCommandInfo: 'The file argument is optional. If no file is given, Contrast will search for a .jar, .war, .exe or .zip file in the working directory.\n',
         constantsUsageCommandInfo24Hours: 'Submitted files are encrypted during upload and deleted in 24 hours.',
         constantsAnd: 'AND',
         constantsJava: 'AND Maven build platform, including the dependency plugin. For a Gradle project, use build.gradle. A gradle-wrapper.properties file is also required. Kotlin is also supported requiring a build.gradle.kts file.',
@@ -160,17 +150,18 @@ const en_locales = () => {
         goReadProjectFile: 'Failed to read the project file @ "%s" because: "%s"',
         goAnalysisError: 'GO analysis failed because: ',
         goParseProjectFile: 'Failed to parse go mod graph output because: ',
-        mavenNotInstalledError: " 'mvn' is not available. Please ensure you have Maven installed and available on your path.",
+        mavenNotInstalledError: "'mvn' is not available. Please ensure you have Maven installed and available on your path.",
         mavenDependencyTreeNonZero: 'Building maven dependancy tree failed with a non 0 exit code',
-        gradleWrapperUnavailable: ' Gradle wrapper not found in root of project. Please ensure gradlew or gradlew.bat is in root of the project.',
+        gradleWrapperUnavailable: 'Gradle wrapper not found in root of project. Please ensure gradlew or gradlew.bat is in root of the project.',
         gradleDependencyTreeNonZero: "Building gradle dependancy tree failed with a non 0 exit code. \n Please check you have the correct version of Java installed to compile your project? \n If running against a muti module project ensure you are using the '--sub-project' flag",
-        yamlPathCamelCaseError: ' Warning: The "yamlPath" parameter will be deprecated in a future release. Please look at our documentation for further guidance.',
-        constantsSbom: ' Generate the Software Bill of Materials (SBOM) for the given application',
+        yamlPathCamelCaseError: 'Warning: The "yamlPath" parameter will be deprecated in a future release. Please look at our documentation for further guidance.',
+        constantsSbom: 'Generate the Software Bill of Materials (SBOM) for the given application',
         constantsMetadata: 'Define a set of key=value pairs (which conforms to RFC 2253) for specifying user-defined metadata associated with the application.',
         constantsTags: 'Apply labels to an application. Labels must be formatted as a comma-delimited list. Example - label1,label2,label3',
         constantsCode: 'Add the application code this application should use in the Contrast UI',
-        constantsIgnoreCertErrors: ' For EOP users with a local Teamserver install, this will bypass the SSL certificate and recognise a self signed certificate.',
-        constantsSave: ' Saves the Scan Results JSON to file.',
+        constantsIgnoreCertErrors: 'For EOP users with a local Teamserver install, this will bypass the SSL certificate and recognise a self signed certificate.',
+        constantsSave: 'Saves the Scan Results SARIF to file.',
+        scanLabel: "adds a label to the scan - defaults to 'Started by CLI tool at current date'",
         constantsIgnoreDev: 'Combined with the --report command excludes developer dependencies from the vulnerabilities report. By default all dependencies are included in a report.',
         constantsCommands: 'Commands',
         constantsScanOptions: 'Scan Options',
@@ -179,20 +170,22 @@ const en_locales = () => {
         ignoreDevDep: 'No private libraries that are not scoped detected',
         foundExistingProjectScan: 'Found existing project...',
         projectCreatedScan: 'Project created',
-        uploadingScan: 'Uploading...',
+        uploadingScan: 'Uploading file to scan.',
         uploadingScanSuccessful: 'Uploaded file successfully.',
         uploadingScanFail: 'Unable to upload the file.',
         waitingTimedOut: 'Timed out.',
         responseMessage: 'Response: %s',
         searchingDirectoryScan: 'Searched 3 directory levels & found: ',
-        noFileFoundScan: "We could't find a suitable file in your directories (we go 3 deep)",
+        noFileFoundScan: "We couldn't find a suitable file in your directories (we go 3 deep)",
         specifyFileScanError: 'Java Scan requires a .war or .jar file. Javascript Scan requires a .js or .zip file.\nTo start a Scan enter "contrast scan -f <path-to-file>"',
+        specifyFileAuditNotFound: 'No files found for library analysis',
         populateProjectIdMessage: 'project ID is %s',
         genericServiceError: 'returned with status code %s',
+        projectIdError: 'Your project ID is %s please check this is correct',
         permissionsError: 'You do not have the correct permissions here. \n Contact support@contrastsecurity.com to get this fixed.',
         scanErrorFileMessage: 'We only accept the following file types: \nJava - .jar, .war \nJavaScript - .js or .zip files',
         helpAuthSummary: 'Authenticate Contrast using your Github or Google account',
-        helpScanSummary: 'Searches for a .jar, .war, .js or .zip file in the working directory, uploads for analysis and returns the results',
+        helpScanSummary: 'Perform static analysis on binaries / code artifacts',
         helpLambdaSummary: 'Perform scan on AWS Lambda functions',
         helpVersionSummary: 'Displays version of Contrast CLI',
         helpConfigSummary: 'Displays stored credentials',
@@ -203,10 +196,11 @@ const en_locales = () => {
         versionName: 'version',
         configName: 'config',
         helpName: 'help',
+        scanOptionsLanguageSummary: 'Valid values are JAVA, JAVASCRIPT and DOTNET',
         scanOptionsLanguageSummaryOptional: 'Language of file to send for analysis. ',
         scanOptionsLanguageSummaryRequired: 'If you scan a .zip file or you use the --file option.',
         scanOptionsTimeoutSummary: 'Time in seconds to wait for scan to complete. Default value is 300 seconds.',
-        scanOptionsFileNameSummary: 'Path of the file you want to scan. If no file is specified, Contrast searches for a .jar, .war, .js, .exe or .zip file in the working directory.',
+        scanOptionsFileNameSummary: 'Path of the file you want to scan. If no file is specified, Contrast searches for a .jar, .war, .exe or .zip file in the working directory.',
         scanOptionsVerboseSummary: ' Returns extended information to the terminal.',
         authSuccessMessage: 'Authentication successful',
         runAuthSuccessMessage: "Now you can use Contrast CLI \nRun 'contrast scan' on your file \n" +
@@ -215,7 +209,7 @@ const en_locales = () => {
         authTimedOutMessage: 'Auth Timed out, try again',
         zipErrorScan: 'We only support zip files for JAVASCRIPT language, please set the flag --language JAVASCRIPT',
         unknownFileErrorScan: 'Unsupported file selected for Scan.',
-        foundScanFile: 'found: %s',
+        foundScanFile: 'Found: %s',
         foundDetailedVulnerabilities: chalk.bold('%s Critical') +
             ' | ' +
             chalk.bold('%s High') +
@@ -223,14 +217,19 @@ const en_locales = () => {
         requiredParams: 'All required parameters are not present.',
         timeoutScan: 'Timeout set to 5 minutes.',
         searchingScanFileDirectory: 'Searching for file to scan from %s...',
+        searchingAuditFileDirectory: 'Searching for package manager files from %s...',
         scanHeader: 'Contrast Scan CLI',
-        lambdaHeader: 'Contrast lambda help',
+        authHeader: 'Auth',
+        lambdaHeader: 'Contrast Lambda CLI',
         lambdaSummary: 'Performs static security scan on an AWS Lambda Function.\nProduces CVE (Vulnerable Dependencies) and Least Privilege violations/remediation results.',
         lambdaUsage: 'contrast lambda --function-name <function> [options]',
-        lambdaPrerequisitesContent: 'contrast cli',
-        scanFileNameOption: ' -f, --file',
-        lambdaFunctionNameOption: ' -f, --function-name',
-        lambdaListFunctionsOption: ' -l, --list-functions',
+        lambdaPrerequisitesContent: '',
+        lambdaPrerequisitesContentLambdaLanguages: 'Supported runtimes: Java & Python',
+        lambdaPrerequisitesContentLambdaDescriptionTitle: 'AWS Requirements\n',
+        lambdaPrerequisitesContentLambdaDescription: 'Make sure you have the AWS credentials configured on your local environment. \nYou need the following AWS permissions configured on your IAM user:\n   - Lambda: GetFunction, GetLayerVersionֿ\n   - IAM: GetRolePolicy, GetPolicy, GetPolicyVersion, ListRolePolicies, ListAttachedRolePolicies',
+        scanFileNameOption: '-f, --file',
+        lambdaFunctionNameOption: '-f, --function-name',
+        lambdaListFunctionsOption: '-l, --list-functions',
         lambdaEndpointOption: '-e, --endpoint-url',
         lambdaRegionOption: '-r, --region',
         lambdaProfileOption: '-p, --profile',
@@ -278,8 +277,19 @@ const en_locales = () => {
         auditOptionsIgnoreDevDependenciesDescription: 'ignores DevDependencies',
         auditOptionsSave: '-s, --save',
         auditOptionsSaveDescription: 'saves the output in specified format Txt text, sbom',
+        scanNotCompleted: 'Scan not completed. Check for framework and language support here: %s',
         scanNoVulnerabilitiesFound: '👏 No vulnerabilities found',
-        scanNoFiletypeSpecifiedForSave: 'Please specify file type to save results to',
+        scanNoVulnerabilitiesFoundSecureCode: '👍 Your code looks secure.',
+        scanNoVulnerabilitiesFoundGoodWork: '👏 Keep up the good work.',
+        scanNoFiletypeSpecifiedForSave: 'Please specify file type to save results to, accepted value is SARIF',
+        auditSBOMSaveSuccess: '\n Software Bill of Materials (SBOM) saved successfully',
+        auditNoFiletypeSpecifiedForSave: `\n ${chalk.yellow.bold('No file type specified for --save option to save audit results to. Use audit --help to see valid --save options.')}`,
+        auditBadFiletypeSpecifiedForSave: `\n ${chalk.yellow.bold('Bad file type specified for --save option. Use audit --help to see valid --save options.')}`,
+        auditReportWaiting: 'Waiting for report...',
+        auditReportFail: 'Report Retrieval Failed, please try again',
+        auditReportSuccessMessage: 'Report successfully retrieved',
+        auditReportFailureMessage: 'Unable to generate library report',
+        auditSCAAnalysisBegins: 'Contrast SCA analysis begins',
         ...lambda
     };
 };

package/dist/constants.js

@@ -17,6 +17,14 @@ const scanOptionDefinitions = [
             '}: ' +
             i18n.__('constantsProjectName')
     },
+    {
+        name: 'language',
+        alias: 'l',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('scanOptionsLanguageSummary')
+    },
     {
         name: 'file',
         alias: 'f',
@@ -33,6 +41,14 @@ const scanOptionDefinitions = [
             '}: ' +
             i18n.__('constantsProjectId')
     },
+    {
+        name: 'project-path',
+        alias: 'i',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsProjectPath')
+    },
     {
         name: 'timeout',
         alias: 't',
@@ -66,7 +82,6 @@ const scanOptionDefinitions = [
     },
     {
         name: 'host',
-        alias: 'h',
         description: '{bold ' +
             i18n.__('constantsRequired') +
             '}: ' +
@@ -109,14 +124,52 @@ const scanOptionDefinitions = [
         alias: 's',
         description: '{bold ' + i18n.__('constantsOptional') + '}:' + i18n.__('constantsSave')
     },
+    {
+        name: 'label',
+        description: '{bold ' + i18n.__('constantsOptional') + '}:' + i18n.__('scanLabel')
+    },
     {
         name: 'help',
+        alias: 'h',
         type: Boolean
     },
     {
         name: 'debug',
         alias: 'd',
         type: Boolean
+    },
+    {
+        name: 'experimental',
+        alias: 'e',
+        type: Boolean
+    },
+    {
+        name: 'application-name',
+        description: '{bold ' +
+            i18n.__('constantsOptional') +
+            '}: ' +
+            i18n.__('constantsApplicationName')
+    }
+];
+const authOptionDefinitions = [
+    {
+        name: 'help',
+        alias: 'h',
+        type: Boolean
+    }
+];
+const configOptionDefinitions = [
+    {
+        name: 'help',
+        alias: 'h',
+        type: Boolean,
+        description: 'Help text'
+    },
+    {
+        name: 'clear',
+        alias: 'c',
+        type: Boolean,
+        description: 'Clear the currently stored config'
     }
 ];
 const auditOptionDefinitions = [
@@ -257,6 +310,7 @@ const mainUsageGuide = commandLineUsage([
         header: i18n.__('constantsCommands'),
         content: [
             { name: i18n.__('authName'), summary: i18n.__('helpAuthSummary') },
+            { name: i18n.__('scanName'), summary: i18n.__('helpScanSummary') },
             { name: i18n.__('lambdaName'), summary: i18n.__('helpLambdaSummary') },
             { name: i18n.__('versionName'), summary: i18n.__('helpVersionSummary') },
             { name: i18n.__('configName'), summary: i18n.__('helpConfigSummary') },
@@ -264,7 +318,7 @@ const mainUsageGuide = commandLineUsage([
         ]
     },
     {
-        content: '{underline https://www.contrastsecurity.com}'
+        content: '{underline https://developer.contrastsecurity.com/} \n For technical support head to {underline https://support.contrastsecurity.com}'
     }
 ]);
 const mainDefinition = [{ name: 'command', defaultOption: true }];
@@ -273,6 +327,8 @@ module.exports = {
         mainUsageGuide,
         mainDefinition,
         scanOptionDefinitions,
-        auditOptionDefinitions
+        auditOptionDefinitions,
+        authOptionDefinitions,
+        configOptionDefinitions
     }
 };

package/dist/index.js

@@ -12,7 +12,8 @@ const constants_1 = __importDefault(require("./constants"));
 const constants_2 = require("./constants/constants");
 const lambda_1 = require("./lambda/lambda");
 const getConfig_1 = require("./utils/getConfig");
-const findLatestCLIVersion_1 = __importDefault(require("./common/findLatestCLIVersion"));
+const versionChecker_1 = require("./common/versionChecker");
+const errorHandling_1 = require("./common/errorHandling");
 const { commandLineDefinitions: { mainUsageGuide, mainDefinition } } = constants_1.default;
 const config = (0, getConfig_1.localConfig)(constants_2.APP_NAME, constants_2.APP_VERSION);
 const getMainOption = () => {
@@ -28,37 +29,54 @@ const getMainOption = () => {
     };
 };
 const start = async () => {
-    const { mainOptions, argv: argvMain } = getMainOption();
-    const command = mainOptions.command != undefined ? mainOptions.command.toLowerCase() : '';
-    if (command === 'version' ||
-        argvMain.includes('--v') ||
-        argvMain.includes('--version')) {
-        console.log(constants_2.APP_VERSION);
-        return;
-    }
-    await (0, findLatestCLIVersion_1.default)();
-    if (command === 'config') {
-        return (0, config_1.processConfig)(argvMain, config);
-    }
-    if (command === 'auth') {
-        return await (0, auth_1.processAuth)(config);
-    }
-    if (command === 'lambda') {
-        return await (0, lambda_1.processLambda)(argvMain);
-    }
-    if (command === 'scan') {
-        return await (0, processScan_1.processScan)(argvMain);
-    }
-    if (command === 'audit') {
-        return await (0, processAudit_1.processAudit)(argvMain);
-    }
-    if (command === 'help' ||
-        argvMain.includes('--help') ||
-        Object.keys(mainOptions).length === 0) {
-        console.log(mainUsageGuide);
+    if (await (0, versionChecker_1.isCorrectNodeVersion)(process.version)) {
+        const { mainOptions, argv: argvMain } = getMainOption();
+        const command = mainOptions.command != undefined ? mainOptions.command.toLowerCase() : '';
+        if (command === 'version' ||
+            argvMain.includes('--v') ||
+            argvMain.includes('--version')) {
+            console.log(constants_2.APP_VERSION);
+            await (0, versionChecker_1.findLatestCLIVersion)(config.get('updateMessageHidden'));
+            return;
+        }
+        config.set('numOfRuns', config.get('numOfRuns') + 1);
+        if (config.get('numOfRuns') >= 5) {
+            await (0, versionChecker_1.findLatestCLIVersion)(config.get('updateMessageHidden'));
+            config.set('numOfRuns', 0);
+        }
+        if (command === 'config') {
+            return (0, config_1.processConfig)(argvMain, config);
+        }
+        if (command === 'auth') {
+            return await (0, auth_1.processAuth)(argvMain, config);
+        }
+        if (command === 'lambda') {
+            return await (0, lambda_1.processLambda)(argvMain);
+        }
+        if (command === 'scan') {
+            return await (0, processScan_1.processScan)(argvMain);
+        }
+        if (command === 'audit') {
+            return await (0, processAudit_1.processAudit)(argvMain);
+        }
+        if (command === 'help' ||
+            argvMain.includes('--help') ||
+            Object.keys(mainOptions).length === 0) {
+            console.log(mainUsageGuide);
+        }
+        else if (mainOptions._unknown !== undefined) {
+            const foundCommand = (0, errorHandling_1.findCommandOnError)(mainOptions._unknown);
+            foundCommand
+                ? console.log(`Unknown Command: Did you mean "${foundCommand}"? \nUse "${foundCommand} --help" for the full list of options`)
+                : console.log(`Unknown Command: ${command} \nUse --help for the full list`);
+        }
+        else {
+            console.log(`Unknown Command: ${command} \nUse --help for the full list`);
+        }
+        process.exit(9);
     }
     else {
-        console.log('Unknown Command: ' + command + ' \nUse --help for the full list');
+        console.log('Contrast supports Node versions >=16.13.2 <17. Please use one of those versions.');
         process.exit(9);
     }
 };