@contrast/contrast 1.0.20 → 1.0.22

package/dist/scaAnalysis/scaAnalysis.js

@@ -0,0 +1,155 @@
+"use strict";
+const { supportedLanguages: { JAVA, GO, PYTHON, RUBY, JAVASCRIPT, NODE, PHP, DOTNET } } = require('../constants/constants');
+const { pollForSnapshotCompletion } = require('../audit/languageAnalysisEngine/sendSnapshot');
+const { returnOra, startSpinner, succeedSpinner } = require('../utils/oraWrapper');
+const { vulnerabilityReportV2 } = require('../audit/report/reportingFeature');
+const autoDetection = require('../scan/autoDetection');
+const treeUpload = require('./common/treeUpload');
+const auditController = require('../commands/audit/auditController');
+const rootFile = require('../audit/languageAnalysisEngine/getProjectRootFilenames');
+const path = require('path');
+const i18n = require('i18n');
+const auditSave = require('../audit/save');
+const { auditUsageGuide } = require('../commands/audit/help');
+const repoMode = require('./repoMode');
+const { dotNetAnalysis } = require('./dotnet');
+const { goAnalysis } = require('./go/goAnalysis');
+const { phpAnalysis } = require('./php');
+const { rubyAnalysis } = require('./ruby');
+const { pythonAnalysis } = require('./python');
+const javaAnalysis = require('./java');
+const jsAnalysis = require('./javascript');
+const auditReport = require('./common/auditReport');
+const scaUpload = require('./common/scaServicesUpload');
+const settingsHelper = require('../utils/settingsHelper');
+const chalk = require('chalk');
+const saveResults = require('../scan/saveResults');
+const { convertGenericToTypedReportModelSca } = require('./common/utils/reportUtilsSca');
+const processSca = async (config) => {
+    config = await settingsHelper.getSettings(config);
+    const startTime = performance.now();
+    let filesFound;
+    if (config.help) {
+        console.log(auditUsageGuide);
+        process.exit(0);
+    }
+    const projectStats = await rootFile.getProjectStats(config.file);
+    let pathWithFile = projectStats.isFile();
+    config.fileName = config.file;
+    config.file = pathWithFile
+        ? rootFile.getDirectoryFromPathGiven(config.file).concat('/')
+        : config.file;
+    filesFound = await autoDetection.autoDetectAuditFilesAndLanguages(config.file);
+    autoDetection.dealWithMultiJava(filesFound);
+    if (filesFound.length > 1 && pathWithFile) {
+        filesFound = filesFound.filter(i => Object.values(i)[0].includes(path.basename(config.fileName)));
+    }
+    let messageToSend = undefined;
+    if (filesFound.length === 1) {
+        switch (Object.keys(filesFound[0])[0]) {
+            case JAVA:
+                config.language = JAVA;
+                if (config.mode === 'repo') {
+                    try {
+                        return repoMode.buildRepo(config, filesFound[0]);
+                    }
+                    catch (e) {
+                        throw new Error('Unable to build in repository mode. Check your project file');
+                    }
+                }
+                else {
+                    messageToSend = await javaAnalysis.javaAnalysis(config, filesFound[0]);
+                }
+                break;
+            case JAVASCRIPT:
+                messageToSend = await jsAnalysis.jsAnalysis(config, filesFound[0]);
+                config.language = NODE;
+                break;
+            case PYTHON:
+                messageToSend = pythonAnalysis(config, filesFound[0]);
+                config.language = PYTHON;
+                break;
+            case RUBY:
+                messageToSend = rubyAnalysis(config, filesFound[0]);
+                config.language = RUBY;
+                break;
+            case PHP:
+                messageToSend = phpAnalysis(config, filesFound[0]);
+                config.language = PHP;
+                break;
+            case GO:
+                messageToSend = goAnalysis(config, filesFound[0]);
+                config.language = GO;
+                break;
+            case DOTNET:
+                if (config.experimental) {
+                    console.log(`${chalk.bold('\n.NET project found\n')} Language type is unsupported.`);
+                    return;
+                }
+                else {
+                    messageToSend = dotNetAnalysis(config, filesFound[0]);
+                    config.language = DOTNET;
+                    break;
+                }
+            default:
+                console.log('No supported language detected in project path');
+                return;
+        }
+        if (!config.applicationId) {
+            config.applicationId = await auditController.dealWithNoAppId(config);
+        }
+        if (config.experimental) {
+            console.log('');
+            const reportSpinner = returnOra(i18n.__('auditSCAAnalysisBegins'));
+            startSpinner(reportSpinner);
+            const { reportArray, reportId } = await scaUpload.scaTreeUpload(messageToSend, config);
+            const reportModelLibraryList = convertGenericToTypedReportModelSca(reportArray);
+            auditReport.processAuditReport(config, reportModelLibraryList);
+            succeedSpinner(reportSpinner, i18n.__('auditSCAAnalysisComplete'));
+            if (config.save !== undefined) {
+                await auditSave.auditSave(config, reportId);
+            }
+            else {
+                console.log('Use contrast audit --save to generate an SBOM');
+            }
+            const endTime = performance.now() - startTime;
+            const scanDurationMs = endTime - startTime;
+            console.log(`----- completed in ${(scanDurationMs / 1000).toFixed(2)}s -----`);
+        }
+        else {
+            console.log('');
+            const reportSpinner = returnOra(i18n.__('auditSCAAnalysisBegins'));
+            startSpinner(reportSpinner);
+            const snapshotResponse = await treeUpload.commonSendSnapShot(messageToSend, config);
+            await pollForSnapshotCompletion(config, snapshotResponse.id, reportSpinner);
+            succeedSpinner(reportSpinner, i18n.__('auditSCAAnalysisComplete'));
+            await vulnerabilityReportV2(config, snapshotResponse.id);
+            if (config.save !== undefined) {
+                await auditSave.auditSave(config);
+            }
+            else {
+                console.log('\nUse contrast audit --save to generate an SBOM');
+            }
+            const endTime = performance.now() - startTime;
+            const scanDurationMs = endTime - startTime;
+            console.log(`----- completed in ${(scanDurationMs / 1000).toFixed(2)}s -----`);
+        }
+    }
+    else {
+        if (filesFound.length === 0) {
+            console.log(i18n.__('languageAnalysisNoLanguage'));
+            console.log(i18n.__('languageAnalysisNoLanguageHelpLine'));
+            throw new Error();
+        }
+        else {
+            console.log(chalk.bold(`\nMultiple language files detected \n`));
+            filesFound.forEach(file => {
+                console.log(`${Object.keys(file)[0]} : `, Object.values(file)[0]);
+            });
+            throw new Error(`Please use --file to audit one language only. \nExample: contrast audit --file package-lock.json`);
+        }
+    }
+};
+module.exports = {
+    processSca
+};

package/dist/scan/autoDetection.js

@@ -1,8 +1,8 @@
 "use strict";
 const i18n = require('i18n');
 const fileFinder = require('./fileUtils');
-const autoDetectFingerprintInfo = async (filePath) => {
-    let complexObj = await fileFinder.findAllFiles(filePath);
+const autoDetectFingerprintInfo = async (filePath, depth) => {
+    let complexObj = await fileFinder.findAllFiles(filePath, depth);
     let result = [];
     let count = 0;
     complexObj.forEach(i => {

package/dist/scan/fileUtils.js

@@ -10,7 +10,7 @@ const findFile = async () => {
         onlyFiles: true
     });
 };
-const findAllFiles = async (filePath) => {
+const findAllFiles = async (filePath, depth = 2) => {
     const result = await fg([
         '**/pom.xml',
         '**/build.gradle',
@@ -22,7 +22,7 @@ const findAllFiles = async (filePath) => {
         '**/go.mod'
     ], {
         dot: false,
-        deep: 2,
+        deep: depth,
         onlyFiles: true,
         absolute: true,
         cwd: filePath ? filePath : process.cwd()

package/dist/scan/help.js

@@ -4,6 +4,9 @@ const i18n = require('i18n');
 const constants = require('../cliConstants');
 const { commonHelpLinks } = require('../common/commonHelp');
 const scanUsageGuide = commandLineUsage([
+    {
+        header: i18n.__('constantsHeader')
+    },
     {
         header: i18n.__('scanHeader')
     },
@@ -43,7 +46,8 @@ const scanUsageGuide = commandLineUsage([
         optionList: constants.commandLineDefinitions.scanAdvancedOptionDefinitionsForHelp
     },
     commonHelpLinks()[0],
-    commonHelpLinks()[1]
+    commonHelpLinks()[1],
+    commonHelpLinks()[2]
 ]);
 module.exports = {
     scanUsageGuide

package/dist/utils/settingsHelper.js

@@ -11,9 +11,9 @@ const getSettings = async (config) => {
 const isSCAServicesAvailable = async (config) => {
     const client = commonApi.getHttpClient(config);
     return client
-        .scaServiceIngests(config)
+        .scaServiceHealth(config)
         .then(res => {
-        return res.statusCode !== 403;
+        return res.body.status === 'UP';
     })
         .catch(err => {
         console.log(err);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@contrast/contrast",
-  "version": "1.0.20",
+  "version": "1.0.22",
   "description": "Contrast Security's command line tool",
   "main": "dist/index.js",
   "bin": {

package/src/cliConstants.js

@@ -212,6 +212,7 @@ const scanOptionDefinitions = [
 
 const authOptionDefinitions = [
   ...sharedConnectionOptionDefinitions,
+  ...sharedCertOptionDefinitions,
   {
     name: 'help',
     alias: 'h',
@@ -337,10 +338,6 @@ const auditOptionDefinitions = [
       '}: ' +
       i18n.__('constantsIgnoreDev')
   },
-  {
-    name: 'fingerprint',
-    type: Boolean
-  },
   {
     name: 'save',
     alias: 's',
@@ -405,6 +402,16 @@ const auditOptionDefinitions = [
   }
 ]
 
+const fingerprintOptionDefinitions = [
+  ...auditOptionDefinitions,
+  {
+    name: 'depth',
+    type: Number,
+    description:
+      '{bold ' + i18n.__('constantsOptional') + '}: ' + i18n.__('depthOption')
+  }
+]
+
 const mainUsageGuide = commandLineUsage([
   {
     header: i18n.__('constantsHeader'),
@@ -421,12 +428,13 @@ const mainUsageGuide = commandLineUsage([
     header: i18n.__('constantsCommands'),
     content: [
       { name: i18n.__('authName'), summary: i18n.__('helpAuthSummary') },
+      { name: i18n.__('configName'), summary: i18n.__('helpConfigSummary') },
+      { name: i18n.__('versionName'), summary: i18n.__('helpVersionSummary') },
+      { name: i18n.__('auditName'), summary: i18n.__('helpAuditSummary') },
       { name: i18n.__('scanName'), summary: i18n.__('helpScanSummary') },
       { name: i18n.__('lambdaName'), summary: i18n.__('helpLambdaSummary') },
-      { name: i18n.__('auditName'), summary: i18n.__('helpAuditSummary') },
-      { name: i18n.__('versionName'), summary: i18n.__('helpVersionSummary') },
-      { name: i18n.__('configName'), summary: i18n.__('helpConfigSummary') },
-      { name: i18n.__('helpName'), summary: i18n.__('helpSummary') }
+      { name: i18n.__('helpName'), summary: i18n.__('helpSummary') },
+      { name: i18n.__('learnName'), summary: i18n.__('helpLearnSummary') }
     ]
   },
   {
@@ -440,7 +448,8 @@ const mainUsageGuide = commandLineUsage([
     ]
   },
   commonHelpLinks()[0],
-  commonHelpLinks()[1]
+  commonHelpLinks()[1],
+  commonHelpLinks()[2]
 ])
 
 const mainDefinition = [{ name: 'command', defaultOption: true }]
@@ -450,6 +459,7 @@ module.exports = {
     mainUsageGuide,
     mainDefinition,
     scanOptionDefinitions,
+    fingerprintOptionDefinitions,
     auditOptionDefinitions,
     authOptionDefinitions,
     configOptionDefinitions,

package/src/commands/audit/help.js

@@ -4,6 +4,9 @@ const constants = require('../../cliConstants')
 const { commonHelpLinks } = require('../../common/commonHelp')
 
 const auditUsageGuide = commandLineUsage([
+  {
+    header: i18n.__('constantsHeader')
+  },
   {
     header: i18n.__('auditHeader'),
     content: [i18n.__('auditHeaderMessage')]
@@ -62,7 +65,8 @@ const auditUsageGuide = commandLineUsage([
       constants.commandLineDefinitions.auditAdvancedOptionDefinitionsForHelp
   },
   commonHelpLinks()[0],
-  commonHelpLinks()[1]
+  commonHelpLinks()[1],
+  commonHelpLinks()[2]
 ])
 
 module.exports = {

package/src/commands/audit/processAudit.js

@@ -1,6 +1,6 @@
 const auditConfig = require('./auditConfig')
 const { auditUsageGuide } = require('./help')
-const scaController = require('../scan/sca/scaAnalysis')
+const scaController = require('../../scaAnalysis/scaAnalysis')
 const { sendTelemetryConfigAsObject } = require('../../telemetry/telemetry')
 const { postRunMessage } = require('../../common/commonHelp')
 

package/src/commands/auth/auth.js

@@ -101,6 +101,11 @@ const authUsageGuide = commandLineUsage([
   {
     header: i18n.__('constantsAuthUsageHeader'),
     content: [i18n.__('constantsAuthUsageContents')]
+  },
+  {
+    header: i18n.__('constantsAdvancedOptions'),
+    optionList: constants.commandLineDefinitions.authOptionDefinitions,
+    hide: ['organization-id', 'api-key', 'authorization', 'host']
   }
 ])
 

package/src/commands/fingerprint/fingerprintConfig.js

@@ -0,0 +1,19 @@
+const parsedCLIOptions = require('../../utils/parsedCLIOptions')
+const constants = require('../../cliConstants')
+const paramHandler = require('../../utils/paramsUtil/paramHandler')
+
+const getFingerprintConfig = async (contrastConf, command, argv) => {
+  const fingerprintParameters = await parsedCLIOptions.getCommandLineArgsCustom(
+    contrastConf,
+    command,
+    argv,
+    constants.commandLineDefinitions.fingerprintOptionDefinitions
+  )
+  const paramsAuth = paramHandler.getAuth(fingerprintParameters)
+
+  return { ...paramsAuth, ...fingerprintParameters }
+}
+
+module.exports = {
+  getFingerprintConfig
+}

package/src/commands/fingerprint/processFingerprint.js

@@ -0,0 +1,21 @@
+const fingerprintConfig = require('./fingerprintConfig')
+const autoDetection = require('../../scan/autoDetection')
+const saveResults = require('../../scan/saveResults')
+const processFingerprint = async (contrastConf, argvMain) => {
+  const config = await fingerprintConfig.getFingerprintConfig(
+    contrastConf,
+    'fingerprint',
+    argvMain
+  )
+  let fingerprint = await autoDetection.autoDetectFingerprintInfo(
+    config.file,
+    config.depth
+  )
+  let idArray = fingerprint.map(x => x.id)
+  await saveResults.writeResultsToFile(fingerprint, 'fingerPrintInfo.json')
+  return console.log(idArray)
+}
+
+module.exports = {
+  processFingerprint
+}

package/src/commands/learn/learn.js

@@ -0,0 +1,10 @@
+const open = require('open')
+
+async function openLearnPage() {
+  const url = 'https://www.contrastsecurity.com/developer/learn'
+  return open(url)
+}
+
+module.exports = {
+  openLearnPage
+}

package/src/commands/learn/processLearn.js

@@ -0,0 +1,13 @@
+const { openLearnPage } = require('./learn')
+
+async function processLearn() {
+  console.log('Opening Contrast’s Secure Code Learning Hub...')
+  console.log(
+    'If the page does not open you can open it directly via https://www.contrastsecurity.com/developer/learn'
+  )
+  return openLearnPage()
+}
+
+module.exports = {
+  processLearn
+}

package/src/common/HTTPClient.js

@@ -254,6 +254,13 @@ HTTPClient.prototype.scaServiceIngests = function scaServiceIngests(config) {
   return requestUtils.sendRequest({ method: 'get', options })
 }
 
+HTTPClient.prototype.scaServiceHealth = function scaServiceIngests(config) {
+  const options = _.cloneDeep(this.requestOptions)
+  let url = createScaServiceHealthURL(config)
+  options.url = url
+  return requestUtils.sendRequest({ method: 'get', options })
+}
+
 HTTPClient.prototype.getReportById = function getReportById(config, reportId) {
   const options = _.cloneDeep(this.requestOptions)
   if (config.ignoreDev) {
@@ -474,6 +481,10 @@ function createScaServiceIngestsURL(config) {
   return `${config.host}/Contrast/api/sca/organizations/${config.organizationId}/applications/${config.applicationId}/libraries/ingests`
 }
 
+function createScaServiceHealthURL(config) {
+  return `${config.host}/Contrast/api/sca/organizations/${config.organizationId}/health`
+}
+
 function createScaServiceIngestURL(config) {
   let baseUrl = `${config.host}/Contrast/api/sca/organizations/${config.organizationId}/applications/${config.applicationId}/libraries/ingests/tree`
   baseUrl = config.track ? baseUrl.concat('?persist=true') : baseUrl

package/src/common/commonHelp.js

@@ -19,6 +19,11 @@ const commonHelpLinks = () => {
         i18n.__('commonHelpLearnMoreEnterpriseHeader') +
           i18n.__('commonHelpLearnMoreEnterpriseText')
       ]
+    },
+    {
+      content: [
+        i18n.__('commonHelpLearnHeader') + i18n.__('commonHelpLearnText')
+      ]
     }
   ]
 }
@@ -27,7 +32,7 @@ const postRunMessage = commandName => {
   console.log('\n' + chalk.underline.bold('Other Features:'))
   if (commandName !== 'scan')
     console.log(
-      "'contrast scan' to run Contrasts’ industry leading SAST scanner"
+      "'contrast scan' to run Contrast's industry leading SAST scanner"
     )
   if (commandName !== 'audit')
     console.log(
@@ -35,6 +40,11 @@ const postRunMessage = commandName => {
     )
   if (commandName !== 'lambda')
     console.log("'contrast lambda' to secure your AWS serverless functions")
+
+  if (commandName !== 'learn')
+    console.log(
+      "'contrast learn' launches Contrast's Secure Code Learning Hub."
+    )
 }
 
 module.exports = {

package/src/constants/constants.js

@@ -14,7 +14,7 @@ const HIGH = 'HIGH'
 const CRITICAL = 'CRITICAL'
 // App
 const APP_NAME = 'contrast'
-const APP_VERSION = '1.0.20'
+const APP_VERSION = '1.0.22'
 const TIMEOUT = 120000
 const HIGH_COLOUR = '#ff9900'
 const CRITICAL_COLOUR = '#e35858'

package/src/constants/lambda.js

@@ -66,6 +66,7 @@ const lambda = {
     'Scanning a function of an inactive account is not supported',
   not_supported_runtime:
     'Scanning resource of runtime "{{runtime}}" is not supported.\nSupported runtimes: {{supportedRuntimes}}',
+  not_supported_lambda: 'This function cannot be scanned',
   not_supported_onboard_account:
     'Scanning a function of onboard account is not supported',
   scan_lock:

package/src/constants/locales.js

@@ -1,5 +1,6 @@
 const { lambda } = require('./lambda')
 const chalk = require('chalk')
+const { APP_VERSION } = require('./constants')
 
 const en_locales = () => {
   return {
@@ -83,7 +84,7 @@ const en_locales = () => {
       ' FAIL - Results detected vulnerabilities over accepted severity level',
     constantsSeverity:
       'Use with "contrast scan --fail --severity high" or "contrast audit --fail --severity high". Set the severity level to detect vulnerabilities or dependencies. Severity levels are critical, high, medium, low or note.',
-    constantsHeader: 'Contrast CLI',
+    constantsHeader: `Contrast CLI @ v${APP_VERSION}`,
     configHeader2: 'Config options',
     clearHeader: '-c, --clear',
     clearContent: 'Removes stored credentials',
@@ -160,13 +161,13 @@ const en_locales = () => {
     scanErrorFileMessage:
       'We only accept the following file types: \nJava - .jar, .war \nJavaScript - .js or .zip files',
     helpAuthSummary:
-      'Authenticate Contrast using your Github or Google account',
+      'Authenticate Contrast using your Github or Google account OR include credentials if you are an existing licensed Contrast user.',
     helpAuditSummary:
-      'Searches for a suitable file in the working directory to perform a security audit of dependencies and returns the results. [Contrast audit --help (for options).]',
+      'Searches for a suitable file in the working directory to perform a security audit of dependencies and returns the results. \n[audit --help for options] Java, .NET, Node, Ruby, Python, Go, PHP are supported. ',
     helpScanSummary:
-      'Searches for a .jar, .war, .js, or .zip file in the working directory, uploads files for analysis, and returns the results. [For further help/options, enter scan --help]',
+      'Searches for a .jar, .war, .js, or .zip file in the working directory, uploads files for analysis, and returns the results. \n[scan --help for options] Java, .NET, .NET Core, JavaScript are supported. ',
     helpLambdaSummary:
-      'Performs a static security scan on an AWS lambda function. lambda --help (for options)',
+      'Performs a static security scan on an AWS lambda function. [lambda --help for options] AWS Lambda - Java & Python are supported. ',
     helpVersionSummary: 'Displays version of Contrast CLI',
     helpConfigSummary: 'Displays stored credentials',
     helpSummary: 'Displays usage guide',
@@ -177,6 +178,12 @@ const en_locales = () => {
     versionName: 'version',
     configName: 'config',
     helpName: 'help',
+    learnName: 'learn',
+    helpLearnSummary: 'Launches Contrast’s Secure Code Learning Hub.',
+    fingerprintName:
+      'assess repo to see how many languages it can detect. For use in pipeline only.',
+    depthOption:
+      'can set how deep in the file system the cli looks for language files',
     scanOptionsLanguageSummary: 'Valid values are JAVA, JAVASCRIPT and DOTNET',
     scanOptionsTimeoutSummary:
       'Time in seconds to wait for scan to complete. Default value is 300 seconds.',
@@ -196,7 +203,7 @@ const en_locales = () => {
       chalk.bold('\ncontrast audit') +
       ' to find vulnerabilities in your open source dependencies.' +
       '\nSupports Java, .NET, Node, Ruby, Python, Go and PHP.' +
-      '\nOur CLI runs native build tools to generate a complete dependency tree.' +
+      '\n\nOur CLI runs native build tools to generate a complete dependency tree.' +
       '\nIf you are running on untrusted code, consider running in a sandbox.\n' +
       chalk.bold('\ncontrast lambda') +
       ' to secure your AWS serverless functions. \nSupports Java and Python \n' +
@@ -210,7 +217,7 @@ const en_locales = () => {
     searchingScanFileDirectory: 'Searching for file to scan from %s...',
     searchingAuditFileDirectory:
       'Searching for package manager files from %s...',
-    scanHeader: 'Contrast Scan CLI',
+    scanHeader: `Contrast Scan CLI`,
     authHeader: 'Auth',
     lambdaHeader: 'Contrast Lambda CLI',
     lambdaSummary:
@@ -251,7 +258,7 @@ const en_locales = () => {
       'An error has occurred when trying to get the Project Id please check your internet connection or provide the Project Id manually',
     internalServerErrorHeader: '500 error - Internal server error',
     resourceLockedErrorHeader: '423 error - Resource is locked',
-    auditHeader: 'Contrast audit help',
+    auditHeader: 'Contrast Audit CLI',
     auditHeaderMessage:
       "Use 'contrast audit' to analyze a project’s dependencies for vulnerabilities.",
     constantsAuditPrerequisitesContentSupportedLanguages:
@@ -320,12 +327,21 @@ const en_locales = () => {
     commonHelpJoinDiscussionHeader: chalk.hex('#9DC184')(
       'Join the discussion:'
     ),
-    commonHelpJoinDiscussionText: ' https://dev.to/codesec',
+    commonHelpJoinDiscussionText:
+      ' https://www.contrastsecurity.com/developer/community',
+    commonHelpLearnHeader:
+      chalk.hex('#ffe599')('\r  Want to UP your game?') +
+      " type 'contrast learn'",
+    commonHelpLearnText: `\n💰 Advance your security knowledge and become an ${chalk.hex(
+      '#ffd966'
+    )('All-star coder')} ⭐  with ${chalk.bold(
+      'Contrast Secure Code Learning Hub.'
+    )} 😺`,
     authCommand: {
       credentialsAccepted: {
-        title: 'Credentials accepted',
-        body: 'Now run contrast audit, lambda or scan',
-        extra: 'Or contrast help for full list of commands'
+        title: '✔ Credentials successfully saved',
+        body: `\n${chalk.bold('Contrast CLI')}`,
+        extra: 'Scan, secure and ship your code in minutes.'
       },
       credentialsMissing: {
         title: 'Credentials missing',

package/src/index.ts

@@ -5,6 +5,7 @@ import { processAudit } from './commands/audit/processAudit'
 import { processAuth } from './commands/auth/auth'
 import { processConfig } from './commands/config/config'
 import { processScan } from './commands/scan/processScan'
+import { processFingerprint } from './commands/fingerprint/processFingerprint'
 import constants from './cliConstants'
 import { APP_NAME, APP_VERSION } from './constants/constants'
 import { processLambda } from './lambda/lambda'
@@ -15,6 +16,7 @@ import {
 } from './common/versionChecker'
 import { findCommandOnError } from './common/errorHandling'
 import { sendTelemetryConfigAsConfObj } from './telemetry/telemetry'
+import { processLearn } from './commands/learn/processLearn'
 const {
   commandLineDefinitions: { mainUsageGuide, mainDefinition }
 } = constants
@@ -82,6 +84,14 @@ const start = async () => {
         return await processAudit(config, argvMain)
       }
 
+      if (command === 'learn') {
+        return processLearn()
+      }
+
+      if (command === 'fingerprint') {
+        return await processFingerprint(config, argvMain)
+      }
+
       if (
         command === 'help' ||
         argvMain.includes('--help') ||

package/src/lambda/help.ts

@@ -3,6 +3,9 @@ import i18n from 'i18n'
 import { commonHelpLinks } from '../common/commonHelp'
 
 const lambdaUsageGuide = commandLineUsage([
+  {
+    header: i18n.__('constantsHeader')
+  },
   {
     header: i18n.__('lambdaHeader'),
     content: [i18n.__('lambdaSummary')]
@@ -82,7 +85,8 @@ const lambdaUsageGuide = commandLineUsage([
     ]
   },
   commonHelpLinks()[0],
-  commonHelpLinks()[1]
+  commonHelpLinks()[1],
+  commonHelpLinks()[2]
 ])
 
 export { lambdaUsageGuide }