npm - @contrast/contrast - Versions diffs - 2.0.2-beta.2 → 2.0.2-beta.4 - Mend

@contrast/contrast 2.0.2-beta.2 → 2.0.2-beta.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (358) hide show

package/README.md +51 -1
package/dist/audit/catalogueApplication/catalogueApplication.js +6 -10
package/dist/audit/catalogueApplication/catalogueApplication.js.map +1 -0
package/dist/audit/languageAnalysisEngine/commonApi.js +3 -6
package/dist/audit/languageAnalysisEngine/commonApi.js.map +1 -0
package/dist/audit/languageAnalysisEngine/filterProjectPath.js +1 -0
package/dist/audit/languageAnalysisEngine/filterProjectPath.js.map +1 -0
package/dist/audit/languageAnalysisEngine/getProjectRootFilenames.js +9 -12
package/dist/audit/languageAnalysisEngine/getProjectRootFilenames.js.map +1 -0
package/dist/audit/languageAnalysisEngine/sendSnapshot.js +15 -19
package/dist/audit/languageAnalysisEngine/sendSnapshot.js.map +1 -0
package/dist/audit/nodeAnalysisEngine/parseYarn2LockFileContents.js +9 -9
package/dist/audit/nodeAnalysisEngine/parseYarn2LockFileContents.js.map +1 -0
package/dist/audit/report/commonReportingFunctions.js +33 -48
package/dist/audit/report/commonReportingFunctions.js.map +1 -0
package/dist/audit/report/models/reportGuidanceModel.js +2 -5
package/dist/audit/report/models/reportGuidanceModel.js.map +1 -0
package/dist/audit/report/models/reportLibraryModel.js +3 -7
package/dist/audit/report/models/reportLibraryModel.js.map +1 -0
package/dist/audit/report/models/reportListModel.js +4 -9
package/dist/audit/report/models/reportListModel.js.map +1 -0
package/dist/audit/report/models/reportOutputModel.js +4 -9
package/dist/audit/report/models/reportOutputModel.js.map +1 -0
package/dist/audit/report/models/reportSeverityModel.js +2 -5
package/dist/audit/report/models/reportSeverityModel.js.map +1 -0
package/dist/audit/report/models/severityCountModel.js +3 -5
package/dist/audit/report/models/severityCountModel.js.map +1 -0
package/dist/audit/report/reportingFeature.js +27 -55
package/dist/audit/report/reportingFeature.js.map +1 -0
package/dist/audit/report/utils/reportUtils.js +28 -59
package/dist/audit/report/utils/reportUtils.js.map +1 -0
package/dist/audit/save.js +14 -16
package/dist/audit/save.js.map +1 -0
package/dist/cliConstants.js +17 -18
package/dist/cliConstants.js.map +1 -0
package/dist/commands/audit/auditConfig.js +7 -10
package/dist/commands/audit/auditConfig.js.map +1 -0
package/dist/commands/audit/auditController.js +9 -13
package/dist/commands/audit/auditController.js.map +1 -0
package/dist/commands/audit/help.js +23 -25
package/dist/commands/audit/help.js.map +1 -0
package/dist/commands/audit/processAudit.js +9 -12
package/dist/commands/audit/processAudit.js.map +1 -0
package/dist/commands/audit/saveFile.js +3 -6
package/dist/commands/audit/saveFile.js.map +1 -0
package/dist/commands/auth/auth.js +25 -24
package/dist/commands/auth/auth.js.map +1 -0
package/dist/commands/config/config.js +12 -13
package/dist/commands/config/config.js.map +1 -0
package/dist/commands/github/fingerprintConfig.js +8 -11
package/dist/commands/github/fingerprintConfig.js.map +1 -0
package/dist/commands/github/processFingerprint.js +12 -15
package/dist/commands/github/processFingerprint.js.map +1 -0
package/dist/commands/github/projectGroup.js +25 -32
package/dist/commands/github/projectGroup.js.map +1 -0
package/dist/commands/github/repoServices.js +11 -21
package/dist/commands/github/repoServices.js.map +1 -0
package/dist/commands/learn/learn.js +3 -6
package/dist/commands/learn/learn.js.map +1 -0
package/dist/commands/learn/processLearn.js +3 -6
package/dist/commands/learn/processLearn.js.map +1 -0
package/dist/commands/scan/processScan.js +11 -14
package/dist/commands/scan/processScan.js.map +1 -0
package/dist/common/HTTPClient.js +123 -94
package/dist/common/HTTPClient.js.map +1 -0
package/dist/common/autoDetection.js +26 -33
package/dist/common/autoDetection.js.map +1 -0
package/dist/common/baseRequest.js +14 -18
package/dist/common/baseRequest.js.map +1 -0
package/dist/common/commonHelp.js +13 -13
package/dist/common/commonHelp.js.map +1 -0
package/dist/common/errorHandling.js +30 -39
package/dist/common/errorHandling.js.map +1 -0
package/dist/common/fail.js +6 -12
package/dist/common/fail.js.map +1 -0
package/dist/common/versionChecker.js +16 -19
package/dist/common/versionChecker.js.map +1 -0
package/dist/constants/constants.js +44 -65
package/dist/constants/constants.js.map +1 -0
package/dist/constants/lambda.js +8 -5
package/dist/constants/lambda.js.map +1 -0
package/dist/constants/locales.js +6 -9
package/dist/constants/locales.js.map +1 -0
package/dist/index.js +36 -39
package/dist/index.js.map +1 -0
package/dist/lambda/analytics.js +6 -9
package/dist/lambda/analytics.js.map +1 -0
package/dist/lambda/arn.js +6 -9
package/dist/lambda/arn.js.map +1 -0
package/dist/lambda/aws.js +29 -34
package/dist/lambda/aws.js.map +1 -0
package/dist/lambda/cliError.js +13 -41
package/dist/lambda/cliError.js.map +1 -0
package/dist/lambda/constants.js +3 -4
package/dist/lambda/constants.js.map +1 -0
package/dist/lambda/help.js +39 -44
package/dist/lambda/help.js.map +1 -0
package/dist/lambda/lambda.js +61 -65
package/dist/lambda/lambda.js.map +1 -0
package/dist/lambda/lambdaUtils.js +38 -32
package/dist/lambda/lambdaUtils.js.map +1 -0
package/dist/lambda/logUtils.js +21 -17
package/dist/lambda/logUtils.js.map +1 -0
package/dist/lambda/scanDetailCompletion.js +19 -25
package/dist/lambda/scanDetailCompletion.js.map +1 -0
package/dist/lambda/scanRequest.js +34 -41
package/dist/lambda/scanRequest.js.map +1 -0
package/dist/lambda/scanResults.js +8 -10
package/dist/lambda/scanResults.js.map +1 -0
package/dist/lambda/types.js +5 -7
package/dist/lambda/types.js.map +1 -0
package/dist/lambda/utils.js +33 -35
package/dist/lambda/utils.js.map +1 -0
package/dist/sbom/generateSbom.js +6 -10
package/dist/sbom/generateSbom.js.map +1 -0
package/dist/scaAnalysis/common/auditReport.js +8 -12
package/dist/scaAnalysis/common/auditReport.js.map +1 -0
package/dist/scaAnalysis/common/commonReportingFunctionsSca.js +26 -32
package/dist/scaAnalysis/common/commonReportingFunctionsSca.js.map +1 -0
package/dist/scaAnalysis/common/formatMessage.js +8 -17
package/dist/scaAnalysis/common/formatMessage.js.map +1 -0
package/dist/scaAnalysis/common/models/ScaReportModel.js +4 -9
package/dist/scaAnalysis/common/models/ScaReportModel.js.map +1 -0
package/dist/scaAnalysis/common/scaParserForGoAndJava.js +10 -9
package/dist/scaAnalysis/common/scaParserForGoAndJava.js.map +1 -0
package/dist/scaAnalysis/common/scaServicesUpload.js +21 -22
package/dist/scaAnalysis/common/scaServicesUpload.js.map +1 -0
package/dist/scaAnalysis/common/treeUpload.js +7 -10
package/dist/scaAnalysis/common/treeUpload.js.map +1 -0
package/dist/scaAnalysis/common/utils/reportUtilsSca.js +21 -29
package/dist/scaAnalysis/common/utils/reportUtilsSca.js.map +1 -0
package/dist/scaAnalysis/dotnet/analysis.js +12 -18
package/dist/scaAnalysis/dotnet/analysis.js.map +1 -0
package/dist/scaAnalysis/dotnet/index.js +4 -7
package/dist/scaAnalysis/dotnet/index.js.map +1 -0
package/dist/scaAnalysis/go/goAnalysis.js +8 -11
package/dist/scaAnalysis/go/goAnalysis.js.map +1 -0
package/dist/scaAnalysis/go/goParseDeps.js +9 -7
package/dist/scaAnalysis/go/goParseDeps.js.map +1 -0
package/dist/scaAnalysis/go/goReadDepFile.js +10 -8
package/dist/scaAnalysis/go/goReadDepFile.js.map +1 -0
package/dist/scaAnalysis/java/analysis.js +23 -20
package/dist/scaAnalysis/java/analysis.js.map +1 -0
package/dist/scaAnalysis/java/index.js +7 -10
package/dist/scaAnalysis/java/index.js.map +1 -0
package/dist/scaAnalysis/java/javaBuildDepsParser.js +43 -43
package/dist/scaAnalysis/java/javaBuildDepsParser.js.map +1 -0
package/dist/scaAnalysis/javascript/analysis.js +16 -20
package/dist/scaAnalysis/javascript/analysis.js.map +1 -0
package/dist/scaAnalysis/javascript/index.js +17 -19
package/dist/scaAnalysis/javascript/index.js.map +1 -0
package/dist/scaAnalysis/javascript/scaServiceParser.js +8 -15
package/dist/scaAnalysis/javascript/scaServiceParser.js.map +1 -0
package/dist/scaAnalysis/legacy/legacyFlow.js +13 -15
package/dist/scaAnalysis/legacy/legacyFlow.js.map +1 -0
package/dist/scaAnalysis/php/analysis.js +15 -16
package/dist/scaAnalysis/php/analysis.js.map +1 -0
package/dist/scaAnalysis/php/index.js +5 -8
package/dist/scaAnalysis/php/index.js.map +1 -0
package/dist/scaAnalysis/php/phpNewServicesMapper.js +9 -12
package/dist/scaAnalysis/php/phpNewServicesMapper.js.map +1 -0
package/dist/scaAnalysis/processServicesFlow.js +50 -25
package/dist/scaAnalysis/processServicesFlow.js.map +1 -0
package/dist/scaAnalysis/python/analysis.js +16 -23
package/dist/scaAnalysis/python/analysis.js.map +1 -0
package/dist/scaAnalysis/python/index.js +4 -7
package/dist/scaAnalysis/python/index.js.map +1 -0
package/dist/scaAnalysis/repoMode/gradleParser.js +7 -13
package/dist/scaAnalysis/repoMode/gradleParser.js.map +1 -0
package/dist/scaAnalysis/repoMode/index.js +9 -12
package/dist/scaAnalysis/repoMode/index.js.map +1 -0
package/dist/scaAnalysis/repoMode/mavenParser.js +12 -12
package/dist/scaAnalysis/repoMode/mavenParser.js.map +1 -0
package/dist/scaAnalysis/ruby/analysis.js +32 -46
package/dist/scaAnalysis/ruby/analysis.js.map +1 -0
package/dist/scaAnalysis/ruby/index.js +5 -8
package/dist/scaAnalysis/ruby/index.js.map +1 -0
package/dist/scaAnalysis/scaAnalysis.js +49 -51
package/dist/scaAnalysis/scaAnalysis.js.map +1 -0
package/dist/scan/fileUtils.js +27 -36
package/dist/scan/fileUtils.js.map +1 -0
package/dist/scan/formatScanOutput.js +47 -61
package/dist/scan/formatScanOutput.js.map +1 -0
package/dist/scan/help.js +8 -11
package/dist/scan/help.js.map +1 -0
package/dist/scan/models/groupedResultsModel.js +2 -5
package/dist/scan/models/groupedResultsModel.js.map +1 -0
package/dist/scan/models/resultContentModel.js +2 -2
package/dist/scan/models/resultContentModel.js.map +1 -0
package/dist/scan/models/scanResultsModel.js +2 -5
package/dist/scan/models/scanResultsModel.js.map +1 -0
package/dist/scan/populateProjectIdAndProjectName.js +9 -12
package/dist/scan/populateProjectIdAndProjectName.js.map +1 -0
package/dist/scan/saveResults.js +3 -6
package/dist/scan/saveResults.js.map +1 -0
package/dist/scan/scan.js +24 -31
package/dist/scan/scan.js.map +1 -0
package/dist/scan/scanConfig.js +14 -12
package/dist/scan/scanConfig.js.map +1 -0
package/dist/scan/scanController.js +17 -20
package/dist/scan/scanController.js.map +1 -0
package/dist/scan/scanResults.js +27 -34
package/dist/scan/scanResults.js.map +1 -0
package/dist/telemetry/telemetry.js +29 -59
package/dist/telemetry/telemetry.js.map +1 -0
package/dist/utils/capabilities.js +1 -0
package/dist/utils/capabilities.js.map +1 -0
package/dist/utils/commonApi.js +15 -24
package/dist/utils/commonApi.js.map +1 -0
package/dist/utils/filterProjectPath.js +1 -0
package/dist/utils/filterProjectPath.js.map +1 -0
package/dist/utils/generalAPI.js +11 -17
package/dist/utils/generalAPI.js.map +1 -0
package/dist/utils/getConfig.js +7 -13
package/dist/utils/getConfig.js.map +1 -0
package/dist/utils/oraWrapper.js +7 -14
package/dist/utils/oraWrapper.js.map +1 -0
package/dist/utils/paramsUtil/commandlineParams.js +2 -5
package/dist/utils/paramsUtil/commandlineParams.js.map +1 -0
package/dist/utils/paramsUtil/configStoreParams.js +9 -10
package/dist/utils/paramsUtil/configStoreParams.js.map +1 -0
package/dist/utils/paramsUtil/envVariableParams.js +2 -3
package/dist/utils/paramsUtil/envVariableParams.js.map +1 -0
package/dist/utils/paramsUtil/paramHandler.js +12 -13
package/dist/utils/paramsUtil/paramHandler.js.map +1 -0
package/dist/utils/parsedCLIOptions.js +4 -7
package/dist/utils/parsedCLIOptions.js.map +1 -0
package/dist/utils/requestUtils.js +7 -13
package/dist/utils/requestUtils.js.map +1 -0
package/dist/utils/saveFile.js +8 -11
package/dist/utils/saveFile.js.map +1 -0
package/dist/utils/validationCheck.js +5 -11
package/dist/utils/validationCheck.js.map +1 -0
package/package.json +32 -41
package/.prettierignore +0 -1
package/bin/contrast.js +0 -2
package/dist/audit/languageAnalysisEngine/util/requestUtils.js +0 -14
package/dist/lambda/__mocks__/aws.js +0 -21
package/dist/lambda/__mocks__/lambdaConfig.json +0 -42
package/src/audit/catalogueApplication/catalogueApplication.js +0 -51
package/src/audit/languageAnalysisEngine/commonApi.js +0 -20
package/src/audit/languageAnalysisEngine/filterProjectPath.js +0 -21
package/src/audit/languageAnalysisEngine/getProjectRootFilenames.js +0 -36
package/src/audit/languageAnalysisEngine/sendSnapshot.js +0 -57
package/src/audit/languageAnalysisEngine/util/requestUtils.js +0 -17
package/src/audit/nodeAnalysisEngine/parseYarn2LockFileContents.js +0 -63
package/src/audit/report/commonReportingFunctions.js +0 -412
package/src/audit/report/models/reportGuidanceModel.ts +0 -5
package/src/audit/report/models/reportLibraryModel.ts +0 -30
package/src/audit/report/models/reportListModel.ts +0 -49
package/src/audit/report/models/reportOutputModel.ts +0 -29
package/src/audit/report/models/reportSeverityModel.ts +0 -18
package/src/audit/report/models/severityCountModel.ts +0 -22
package/src/audit/report/reportingFeature.ts +0 -110
package/src/audit/report/utils/reportUtils.ts +0 -165
package/src/audit/save.js +0 -67
package/src/cliConstants.js +0 -523
package/src/commands/audit/auditConfig.js +0 -18
package/src/commands/audit/auditController.js +0 -50
package/src/commands/audit/help.js +0 -72
package/src/commands/audit/processAudit.js +0 -34
package/src/commands/audit/saveFile.js +0 -15
package/src/commands/auth/auth.js +0 -146
package/src/commands/config/config.js +0 -41
package/src/commands/github/fingerprintConfig.js +0 -19
package/src/commands/github/processFingerprint.js +0 -37
package/src/commands/github/projectGroup.js +0 -298
package/src/commands/github/repoServices.js +0 -122
package/src/commands/learn/learn.js +0 -10
package/src/commands/learn/processLearn.js +0 -13
package/src/commands/scan/processScan.js +0 -42
package/src/common/HTTPClient.js +0 -775
package/src/common/autoDetection.js +0 -209
package/src/common/baseRequest.ts +0 -83
package/src/common/commonHelp.js +0 -53
package/src/common/errorHandling.js +0 -157
package/src/common/fail.js +0 -79
package/src/common/versionChecker.js +0 -75
package/src/constants/constants.js +0 -71
package/src/constants/lambda.js +0 -85
package/src/constants/locales.js +0 -365
package/src/index.ts +0 -142
package/src/lambda/__mocks__/aws.ts +0 -32
package/src/lambda/__mocks__/lambdaConfig.json +0 -42
package/src/lambda/analytics.ts +0 -9
package/src/lambda/arn.ts +0 -33
package/src/lambda/aws.ts +0 -248
package/src/lambda/cliError.ts +0 -72
package/src/lambda/constants.ts +0 -11
package/src/lambda/help.ts +0 -92
package/src/lambda/lambda.ts +0 -230
package/src/lambda/lambdaUtils.ts +0 -111
package/src/lambda/logUtils.ts +0 -64
package/src/lambda/scanDetailCompletion.ts +0 -78
package/src/lambda/scanRequest.ts +0 -169
package/src/lambda/scanResults.ts +0 -29
package/src/lambda/types.ts +0 -36
package/src/lambda/utils.ts +0 -188
package/src/sbom/generateSbom.ts +0 -45
package/src/scaAnalysis/common/auditReport.js +0 -59
package/src/scaAnalysis/common/commonReportingFunctionsSca.js +0 -276
package/src/scaAnalysis/common/formatMessage.js +0 -67
package/src/scaAnalysis/common/models/ScaReportModel.ts +0 -81
package/src/scaAnalysis/common/scaParserForGoAndJava.js +0 -41
package/src/scaAnalysis/common/scaServicesUpload.js +0 -159
package/src/scaAnalysis/common/treeUpload.js +0 -51
package/src/scaAnalysis/common/utils/reportUtilsSca.ts +0 -123
package/src/scaAnalysis/dotnet/analysis.js +0 -72
package/src/scaAnalysis/dotnet/index.js +0 -11
package/src/scaAnalysis/go/goAnalysis.js +0 -26
package/src/scaAnalysis/go/goParseDeps.js +0 -203
package/src/scaAnalysis/go/goReadDepFile.js +0 -34
package/src/scaAnalysis/java/analysis.js +0 -148
package/src/scaAnalysis/java/index.js +0 -29
package/src/scaAnalysis/java/javaBuildDepsParser.js +0 -439
package/src/scaAnalysis/javascript/analysis.js +0 -111
package/src/scaAnalysis/javascript/index.js +0 -104
package/src/scaAnalysis/javascript/scaServiceParser.js +0 -151
package/src/scaAnalysis/legacy/legacyFlow.js +0 -43
package/src/scaAnalysis/php/analysis.js +0 -78
package/src/scaAnalysis/php/index.js +0 -28
package/src/scaAnalysis/php/phpNewServicesMapper.js +0 -77
package/src/scaAnalysis/processServicesFlow.js +0 -126
package/src/scaAnalysis/python/analysis.js +0 -93
package/src/scaAnalysis/python/index.js +0 -16
package/src/scaAnalysis/repoMode/gradleParser.js +0 -88
package/src/scaAnalysis/repoMode/index.js +0 -21
package/src/scaAnalysis/repoMode/mavenParser.js +0 -138
package/src/scaAnalysis/ruby/analysis.js +0 -413
package/src/scaAnalysis/ruby/index.js +0 -16
package/src/scaAnalysis/scaAnalysis.js +0 -172
package/src/scan/fileUtils.js +0 -218
package/src/scan/formatScanOutput.ts +0 -225
package/src/scan/help.js +0 -56
package/src/scan/models/groupedResultsModel.ts +0 -20
package/src/scan/models/resultContentModel.ts +0 -86
package/src/scan/models/scanResultsModel.ts +0 -55
package/src/scan/populateProjectIdAndProjectName.js +0 -73
package/src/scan/saveResults.js +0 -14
package/src/scan/scan.ts +0 -68
package/src/scan/scanConfig.js +0 -58
package/src/scan/scanController.js +0 -98
package/src/scan/scanResults.js +0 -171
package/src/telemetry/telemetry.ts +0 -154
package/src/utils/capabilities.js +0 -12
package/src/utils/commonApi.js +0 -103
package/src/utils/filterProjectPath.js +0 -25
package/src/utils/generalAPI.js +0 -52
package/src/utils/getConfig.ts +0 -34
package/src/utils/oraWrapper.js +0 -29
package/src/utils/paramsUtil/commandlineParams.js +0 -12
package/src/utils/paramsUtil/configStoreParams.js +0 -19
package/src/utils/paramsUtil/envVariableParams.js +0 -10
package/src/utils/paramsUtil/paramHandler.js +0 -38
package/src/utils/parsedCLIOptions.js +0 -32
package/src/utils/requestUtils.js +0 -29
package/src/utils/saveFile.js +0 -20
package/src/utils/validationCheck.js +0 -39

package/src/scaAnalysis/scaAnalysis.js DELETED Viewed

@@ -1,172 +0,0 @@
-const {
-  supportedLanguages: { JAVA, GO, PYTHON, RUBY, JAVASCRIPT, NODE, PHP, DOTNET }
-} = require('../constants/constants')
-const {
-  returnOra,
-  startSpinner,
-  succeedSpinner
-} = require('../utils/oraWrapper')
-const autoDetection = require('../common/autoDetection')
-const rootFile = require('../audit/languageAnalysisEngine/getProjectRootFilenames')
-const path = require('path')
-const i18n = require('i18n')
-const { auditUsageGuide } = require('../commands/audit/help')
-const repoMode = require('./repoMode')
-const { dotNetAnalysis } = require('./dotnet')
-const { goAnalysis } = require('./go/goAnalysis')
-const { phpAnalysis } = require('./php')
-const { rubyAnalysis } = require('./ruby')
-const { pythonAnalysis } = require('./python')
-const javaAnalysis = require('./java')
-const jsAnalysis = require('./javascript')
-const auditReport = require('./common/auditReport')
-const processServices = require('./processServicesFlow')
-const chalk = require('chalk')
-const {
-  convertGenericToTypedReportModelSca
-} = require('./common/utils/reportUtilsSca')
-const projectConfig = require('../commands/github/projectGroup')
-const { legacyFlow } = require('./legacy/legacyFlow')
-const processSca = async config => {
-  let filesFound
-  if (config.help) {
-    console.log(auditUsageGuide)
-    process.exit(0)
-  }
-  config.repo = config.repositoryId !== undefined
-  const projectStats = await rootFile.getProjectStats(config.file)
-  let pathWithFile = projectStats.isFile()
-  config.fileName = config.file
-  config.file = pathWithFile
-    ? rootFile.getDirectoryFromPathGiven(config.file).concat('/')
-    : config.file
-  filesFound = await autoDetection.autoDetectAuditFilesAndLanguages(config.file)
-  filesFound = await autoDetection.detectPackageManager(filesFound)
-  autoDetection.dealWithMultiJava(filesFound, config, pathWithFile)
-  if (filesFound.length > 1 && pathWithFile) {
-    filesFound = filesFound.filter(i =>
-      Object.values(i)[0].includes(path.basename(config.fileName))
-    )
-  }
-  // files found looks like [ { javascript: [ Array ] } ]
-  //check we have the language and call the right analyser
-  let messageToSend = undefined
-  if (filesFound.length === 1) {
-    config.packageManager = filesFound[0]?.packageManager
-    switch (Object.keys(filesFound[0])[0]) {
-      case JAVA:
-        config.language = JAVA
-        if (config.repo && !config.legacy) {
-          try {
-            messageToSend = await repoMode.buildRepo(config, filesFound[0])
-          } catch (e) {
-            throw new Error(
-              'Unable to build in repository mode. Check your project file'
-            )
-          }
-        } else {
-          messageToSend = await javaAnalysis.javaAnalysis(config, filesFound[0])
-        }
-        break
-      case JAVASCRIPT:
-        messageToSend = await jsAnalysis.jsAnalysis(config, filesFound[0])
-        config.language = NODE
-        break
-      case PYTHON:
-        messageToSend = pythonAnalysis(config, filesFound[0])
-        config.language = PYTHON
-        break
-      case RUBY:
-        messageToSend = rubyAnalysis(config, filesFound[0])
-        config.language = RUBY
-        break
-      case PHP:
-        messageToSend = phpAnalysis(config, filesFound[0])
-        config.language = PHP
-        break
-      case GO:
-        messageToSend = goAnalysis(config, filesFound[0])
-        config.language = GO
-        break
-      case DOTNET:
-        if (config.legacy === false) {
-          console.log(
-            `${chalk.bold(
-              '\n.NET project found\n'
-            )} Language type is unsupported.`
-          )
-          return
-        } else {
-          messageToSend = dotNetAnalysis(config, filesFound[0])
-          config.language = DOTNET
-          break
-        }
-      default:
-        //something is wrong
-        console.log('No supported language detected in project path')
-        return
-    }
-    if (config.legacy === false) {
-      if (!config.name) {
-        config = await projectConfig.dealWithNoName(config)
-      }
-      const startTime = performance.now()
-      console.log('') //empty log for space before spinner
-      const reportSpinner = returnOra(i18n.__('auditSCAAnalysisBegins'))
-      startSpinner(reportSpinner)
-      let reportResponse = await processServices.processUpload(
-        messageToSend,
-        config,
-        reportSpinner
-      )
-      const reportModelLibraryList = convertGenericToTypedReportModelSca(
-        reportResponse.reportArray
-      )
-      await auditReport.processAuditReport(
-        config,
-        reportModelLibraryList,
-        reportResponse.reportId
-      )
-      succeedSpinner(reportSpinner, i18n.__('auditSCAAnalysisComplete'))
-      const endTime = performance.now() - startTime
-      const scanDurationMs = endTime - startTime
-      console.log(
-        `----- completed in ${(scanDurationMs / 1000).toFixed(2)}s -----`
-      )
-    } else {
-      await legacyFlow(config, messageToSend)
-    }
-  } else {
-    if (filesFound.length === 0) {
-      console.log(i18n.__('languageAnalysisNoLanguage'))
-      console.log(i18n.__('languageAnalysisNoLanguageHelpLine'))
-      throw new Error()
-    } else {
-      console.log(chalk.bold(`\nMultiple language files detected \n`))
-      filesFound.forEach(file => {
-        console.log(`${Object.keys(file)[0]} : `, Object.values(file)[0])
-      })
-      throw new Error(
-        `Please use --file to audit one language only. \nExample: contrast audit --file package-lock.json`
-      )
-    }
-  }
-}
-module.exports = {
-  processSca
-}

package/src/scan/fileUtils.js DELETED Viewed

@@ -1,218 +0,0 @@
-const fg = require('fast-glob')
-const fs = require('fs')
-const i18n = require('i18n')
-const findFile = async () => {
-  console.log(i18n.__('searchingScanFileDirectory', process.cwd()))
-  return fg(['**/*.jar', '**/*.war', '**/*.zip', '**/*.dll', '**/*.exe'], {
-    dot: false,
-    deep: 3,
-    onlyFiles: true
-  })
-}
-const findAllFiles = async (filePath, depth = 3) => {
-  const result = await fg(
-    [
-      '**/pom.xml',
-      // '**/build.gradle',
-      // '**/build.gradle.kts',
-      '**/package.json',
-      '**/package-lock.json',
-      '**/yarn.lock'
-      // '**/Pipfile',
-      // '**/*.csproj',
-      // '**/Gemfile',
-      // '**/go.mod'
-    ],
-    {
-      ignore: ['**/node_modules/**', '**/target/**', '**/bin/**'],
-      dot: false,
-      deep: depth,
-      onlyFiles: true,
-      absolute: true,
-      cwd: filePath ? filePath : process.cwd()
-    }
-  )
-  if (result.length > 0) {
-    return result
-  }
-  return []
-}
-const findFilesJava = async (languagesFound, filePath, depth = 1) => {
-  const result = await fg(
-    ['**/pom.xml', '**/build.gradle', '**/build.gradle.kts'],
-    {
-      dot: false,
-      deep: depth,
-      onlyFiles: true,
-      cwd: filePath ? filePath : process.cwd()
-    }
-  )
-  if (result.length > 0) {
-    let lockFile = result.find(i => i.includes('pom') || i.includes('gradle'))
-    return languagesFound.push({
-      JAVA: result,
-      language: 'JAVA',
-      filePath: lockFile
-    })
-  }
-  return languagesFound
-}
-const findFilesJavascript = async (languagesFound, filePath, depth = 1) => {
-  const result = await fg(
-    ['**/package.json', '**/yarn.lock', '**/package-lock.json'],
-    {
-      dot: false,
-      deep: depth,
-      onlyFiles: true,
-      cwd: filePath ? filePath : process.cwd()
-    }
-  )
-  if (result.length > 0) {
-    let lockFile = result.find(i => i.includes('lock'))
-    return languagesFound.push({
-      JAVASCRIPT: result,
-      language: 'JAVASCRIPT',
-      filePath: lockFile
-    })
-  }
-  return languagesFound
-}
-const findFilesPython = async (languagesFound, filePath, depth = 1) => {
-  const result = await fg(['**/Pipfile.lock', '**/Pipfile'], {
-    dot: false,
-    deep: depth,
-    onlyFiles: true,
-    cwd: filePath ? filePath : process.cwd()
-  })
-  if (result.length > 0) {
-    return languagesFound.push({ PYTHON: result, filePath: 'Pipfile' })
-  }
-  return languagesFound
-}
-const findFilesGo = async (languagesFound, filePath, depth = 1) => {
-  const result = await fg(['**/go.mod'], {
-    dot: false,
-    deep: depth,
-    onlyFiles: true,
-    cwd: filePath ? filePath : process.cwd()
-  })
-  if (result.length > 0) {
-    return languagesFound.push({ GO: result, filePath: 'go.mod' })
-  }
-  return languagesFound
-}
-const findFilesRuby = async (languagesFound, filePath, depth = 1) => {
-  const result = await fg(['**/Gemfile', '**/Gemfile.lock'], {
-    dot: false,
-    deep: depth,
-    onlyFiles: true,
-    cwd: filePath ? filePath : process.cwd()
-  })
-  if (result.length > 0) {
-    return languagesFound.push({ RUBY: result, filePath: 'Gemfile' })
-  }
-  return languagesFound
-}
-const findFilesPhp = async (languagesFound, filePath, depth = 1) => {
-  const result = await fg(['**/composer.json', '**/composer.lock'], {
-    dot: false,
-    deep: depth,
-    onlyFiles: true,
-    cwd: filePath ? filePath : process.cwd()
-  })
-  if (result.length > 0) {
-    return languagesFound.push({ PHP: result, filePath: 'composer.lock' })
-  }
-  return languagesFound
-}
-const findFilesDotNet = async (languagesFound, filePath, depth = 1) => {
-  const result = await fg(['**/*.csproj', '**/packages.lock.json'], {
-    dot: false,
-    deep: depth,
-    onlyFiles: true,
-    cwd: filePath ? filePath : process.cwd()
-  })
-  if (result.length > 0) {
-    return languagesFound.push({
-      DOTNET: result,
-      filePath: 'packages.lock.json'
-    })
-  }
-  return languagesFound
-}
-const checkFilePermissions = file => {
-  let readableFile = false
-  try {
-    fs.accessSync(file, fs.constants.R_OK)
-    return (readableFile = true) // testing purposes
-  } catch (err) {
-    console.log('Invalid permissions found on ', file)
-    process.exit(0)
-  }
-}
-const fileExists = path => {
-  return fs.existsSync(path)
-}
-const fileIsEmpty = path => {
-  if (fileExists(path) && checkFilePermissions(path)) {
-    try {
-      return fs.readFileSync(path).length === 0
-    } catch (e) {
-      if (
-        e.message.toString().includes('illegal operation on a directory, read')
-      ) {
-        console.log('file provided cannot be a directory')
-      } else {
-        console.log(e.message.toString())
-      }
-      process.exit(0)
-    }
-  }
-  return false
-}
-const shortenFilePath = filePath => {
-  let splitPath = filePath.split('home/runner/work/')
-  if (splitPath.length > 1) {
-    let splitPath2 = splitPath[1].split('/')
-    splitPath2.shift()
-    return splitPath2.join('/').toString()
-  }
-  return filePath
-}
-module.exports = {
-  findFile,
-  fileExists,
-  checkFilePermissions,
-  findFilesJava,
-  findFilesJavascript,
-  findFilesPython,
-  findFilesGo,
-  findFilesPhp,
-  findFilesRuby,
-  findFilesDotNet,
-  fileIsEmpty,
-  findAllFiles,
-  shortenFilePath
-}

package/src/scan/formatScanOutput.ts DELETED Viewed

@@ -1,225 +0,0 @@
-import { ScanResultsModel } from './models/scanResultsModel'
-import i18n from 'i18n'
-import chalk from 'chalk'
-import { ResultContent } from './models/resultContentModel'
-import { GroupedResultsModel } from './models/groupedResultsModel'
-import { sortBy } from 'lodash'
-import Table from 'cli-table3'
-import {
-  CRITICAL_COLOUR,
-  HIGH_COLOUR,
-  LOW_COLOUR,
-  MEDIUM_COLOUR,
-  NOTE_COLOUR,
-  supportedLanguagesScan
-} from '../constants/constants'
-import {
-  getSeverityCounts,
-  printVulnInfo
-} from '../audit/report/commonReportingFunctions'
-export function formatScanOutput(scanResults: ScanResultsModel) {
-  const { content } = scanResults.scanResultsInstances
-  const { language } = scanResults.scanDetail
-  const severityCounts = getSeverityCounts(content)
-  if (content.length === 0) {
-    console.log(i18n.__('scanNoVulnerabilitiesFound'))
-    console.log(i18n.__('scanNoVulnerabilitiesFoundSecureCode'))
-    console.log(i18n.__('scanNoVulnerabilitiesFoundGoodWork'))
-  } else {
-    const message =
-      severityCounts.critical || severityCounts.high
-        ? 'Here are your top priorities to fix'
-        : "No major issues, here's what we found"
-    console.log(chalk.bold(message))
-    console.log()
-    const defaultView = getDefaultView(content, language)
-    let count = 0
-    defaultView.forEach(entry => {
-      count++
-      const table = new Table({
-        chars: {
-          top: '',
-          'top-mid': '',
-          'top-left': '',
-          'top-right': '',
-          bottom: '',
-          'bottom-mid': '',
-          'bottom-left': '',
-          'bottom-right': '',
-          left: '',
-          'left-mid': '',
-          mid: '',
-          'mid-mid': '',
-          right: '',
-          'right-mid': '',
-          middle: ' '
-        },
-        style: { 'padding-left': 0, 'padding-right': 0 },
-        colAligns: ['right'],
-        wordWrap: true,
-        colWidths: [12, 1, 100]
-      })
-      let learnRow: string[] = []
-      let adviceRow = []
-      const headerColour = chalk.hex(entry.colour)
-      const headerRow = [
-        headerColour(`CONTRAST-${count.toString().padStart(3, '0')}`),
-        headerColour(`-`),
-        headerColour(`[${entry.severity}] `) +
-          headerColour.bold(`${entry.ruleId}`) +
-          entry.message
-      ]
-      const codePath = entry.codePath?.replace(/^@/, '')
-      const codeRow = [
-        chalk.hex('#F6F5F5').bold(`Code`),
-        chalk.hex('#F6F5F5').bold(`:`),
-        chalk.hex('#F6F5F5').bold(`${codePath}`)
-      ]
-      const issueRow = [chalk.bold(`Issue`), chalk.bold(`:`), `${entry.issue}`]
-      table.push(headerRow, codeRow, issueRow)
-      if (entry?.advice) {
-        adviceRow = [
-          chalk.bold('Advice'),
-          chalk.bold(`:`),
-          stripTags(entry.advice)
-        ]
-        table.push(adviceRow)
-      }
-      if (entry?.learn && entry?.learn.length > 0) {
-        learnRow = [
-          chalk.bold('Learn'),
-          chalk.bold(`:`),
-          chalk.hex('#97f7f7').bold.underline(entry.learn[0])
-        ]
-        table.push(learnRow)
-      }
-      console.log(table.toString())
-      console.log()
-    })
-  }
-  printVulnInfo(severityCounts)
-  return severityCounts
-}
-export function formatLinks(objName: string, entry: any[]) {
-  const line = chalk.bold(objName + '  : ')
-  if (entry.length === 1) {
-    console.log(line + chalk.hex('#97DCF7').bold.underline(entry[0]))
-  } else {
-    console.log(line)
-    entry.forEach(link => {
-      console.log(chalk.hex('#97DCF7').bold.underline(link))
-    })
-  }
-}
-export function getDefaultView(content: ResultContent[], language: string) {
-  const groupTypeResults = [] as GroupedResultsModel[]
-  content.forEach(resultEntry => {
-    const groupResultsObj = new GroupedResultsModel(resultEntry.ruleId)
-    groupResultsObj.severity = resultEntry.severity
-    groupResultsObj.ruleId = resultEntry.ruleId
-    groupResultsObj.issue = stripTags(resultEntry.issue)
-    groupResultsObj.advice = resultEntry.advice
-    groupResultsObj.learn = resultEntry.learn
-    groupResultsObj.message = resultEntry.message?.text
-      ? editVulName(resultEntry.message.text) +
-        doAddSourceLineNumber(resultEntry, language)
-      : ''
-    groupResultsObj.codePath = getLocationsSyncInfo(resultEntry)
-    groupTypeResults.push(groupResultsObj)
-    assignBySeverity(resultEntry, groupResultsObj)
-  })
-  return sortBy(groupTypeResults, ['priority'])
-}
-export function doAddSourceLineNumber(
-  resultEntry: ResultContent,
-  language: string
-) {
-  //only add source line num if not JS
-  return language !== supportedLanguagesScan.JAVASCRIPT
-    ? ':' + getSourceLineNumber(resultEntry)
-    : ''
-}
-export function editVulName(message: string) {
-  return message.substring(message.indexOf(' in '))
-}
-export function getLocationsSyncInfo(resultEntry: ResultContent) {
-  const locationsMessage =
-    resultEntry.locations[0]?.physicalLocation?.artifactLocation?.uri || ''
-  const locationsLineNumber =
-    resultEntry.locations[0]?.physicalLocation?.region?.startLine || ''
-  if (!locationsLineNumber) {
-    return '@' + locationsMessage
-  }
-  return '@' + locationsMessage + ':' + locationsLineNumber
-}
-export function getSourceLineNumber(resultEntry: ResultContent) {
-  const locationsLineNumber =
-    resultEntry.locations[0]?.physicalLocation?.region?.startLine || ''
-  const codeFlowLineNumber = getCodeFlowInfo(resultEntry)
-  return codeFlowLineNumber ? codeFlowLineNumber : locationsLineNumber
-}
-export function getCodeFlowInfo(resultEntry: ResultContent) {
-  let result: any
-  resultEntry.codeFlows[0]?.threadFlows.forEach((i: { locations: any[] }) => {
-    return (result = i.locations.find(
-      (locations: { importance: string }) =>
-        locations.importance === 'essential'
-    ))
-  })
-  return result?.location?.physicalLocation?.region?.startLine
-}
-export function stripTags(oldString: string) {
-  return oldString.replace(/\n/g, ' ').replace(/\s+/g, ' ').trim()
-}
-export function assignBySeverity(
-  entry: ResultContent,
-  assignedObj: GroupedResultsModel
-) {
-  if (entry.severity.toUpperCase() === 'CRITICAL') {
-    assignedObj.priority = 1
-    assignedObj.colour = CRITICAL_COLOUR
-    return assignedObj
-  } else if (entry.severity.toUpperCase() === 'HIGH') {
-    assignedObj.priority = 2
-    assignedObj.colour = HIGH_COLOUR
-    return assignedObj
-  } else if (entry.severity.toUpperCase() === 'MEDIUM') {
-    assignedObj.priority = 3
-    assignedObj.colour = MEDIUM_COLOUR
-    return assignedObj
-  } else if (entry.severity.toUpperCase() === 'LOW') {
-    assignedObj.priority = 4
-    assignedObj.colour = LOW_COLOUR
-    return assignedObj
-  } else if (entry.severity.toUpperCase() === 'NOTE') {
-    assignedObj.priority = 5
-    assignedObj.colour = NOTE_COLOUR
-    return assignedObj
-  }
-}

package/src/scan/help.js DELETED Viewed

@@ -1,56 +0,0 @@
-const commandLineUsage = require('command-line-usage')
-const i18n = require('i18n')
-const constants = require('../cliConstants')
-const { commonHelpLinks } = require('../common/commonHelp')
-const scanUsageGuide = commandLineUsage([
-  {
-    header: i18n.__('constantsHeader')
-  },
-  {
-    header: i18n.__('scanHeader')
-  },
-  {
-    header: i18n.__('constantsPrerequisitesHeader'),
-    content: [
-      '{bold ' + i18n.__('constantsPrerequisitesContentScanLanguages') + '}',
-      i18n.__('constantsPrerequisitesContent'),
-      '',
-      i18n.__('constantsUsageCommandInfo'),
-      i18n.__('constantsUsageCommandInfo24Hours')
-    ]
-  },
-  {
-    header: i18n.__('constantsScanOptions'),
-    optionList: constants.commandLineDefinitions.scanOptionDefinitions,
-    hide: [
-      'project-id',
-      'organization-id',
-      'api-key',
-      'authorization',
-      'host',
-      'proxy',
-      'help',
-      'ff',
-      'cert-self-signed',
-      'key',
-      'cacert',
-      'cert',
-      'verbose',
-      'debug',
-      'experimental'
-    ]
-  },
-  {
-    header: i18n.__('constantsAdvancedOptions'),
-    optionList:
-      constants.commandLineDefinitions.scanAdvancedOptionDefinitionsForHelp
-  },
-  commonHelpLinks()[0],
-  commonHelpLinks()[1],
-  commonHelpLinks()[2]
-])
-module.exports = {
-  scanUsageGuide
-}

package/src/scan/models/groupedResultsModel.ts DELETED Viewed

@@ -1,20 +0,0 @@
-export class GroupedResultsModel {
-  ruleId: string
-  codePathSet: Set<string>
-  cwe?: string[]
-  reference?: string[]
-  severity?: string
-  advice?: string
-  learn?: string[]
-  issue?: string
-  priority?: number
-  message?: string | undefined
-  colour: string
-  codePath?: string
-  constructor(ruleId: string) {
-    this.ruleId = ruleId
-    this.colour = '#999999'
-    this.codePathSet = new Set<string>()
-  }
-}