npm - @contrast/contrast - Versions diffs - 2.0.2-beta.3 → 2.0.2-beta.4 - Mend

@contrast/contrast 2.0.2-beta.3 → 2.0.2-beta.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (358) hide show

package/README.md +51 -1
package/dist/audit/catalogueApplication/catalogueApplication.js +6 -10
package/dist/audit/catalogueApplication/catalogueApplication.js.map +1 -0
package/dist/audit/languageAnalysisEngine/commonApi.js +3 -6
package/dist/audit/languageAnalysisEngine/commonApi.js.map +1 -0
package/dist/audit/languageAnalysisEngine/filterProjectPath.js +1 -0
package/dist/audit/languageAnalysisEngine/filterProjectPath.js.map +1 -0
package/dist/audit/languageAnalysisEngine/getProjectRootFilenames.js +9 -12
package/dist/audit/languageAnalysisEngine/getProjectRootFilenames.js.map +1 -0
package/dist/audit/languageAnalysisEngine/sendSnapshot.js +15 -19
package/dist/audit/languageAnalysisEngine/sendSnapshot.js.map +1 -0
package/dist/audit/nodeAnalysisEngine/parseYarn2LockFileContents.js +9 -9
package/dist/audit/nodeAnalysisEngine/parseYarn2LockFileContents.js.map +1 -0
package/dist/audit/report/commonReportingFunctions.js +33 -48
package/dist/audit/report/commonReportingFunctions.js.map +1 -0
package/dist/audit/report/models/reportGuidanceModel.js +2 -5
package/dist/audit/report/models/reportGuidanceModel.js.map +1 -0
package/dist/audit/report/models/reportLibraryModel.js +3 -7
package/dist/audit/report/models/reportLibraryModel.js.map +1 -0
package/dist/audit/report/models/reportListModel.js +4 -9
package/dist/audit/report/models/reportListModel.js.map +1 -0
package/dist/audit/report/models/reportOutputModel.js +4 -9
package/dist/audit/report/models/reportOutputModel.js.map +1 -0
package/dist/audit/report/models/reportSeverityModel.js +2 -5
package/dist/audit/report/models/reportSeverityModel.js.map +1 -0
package/dist/audit/report/models/severityCountModel.js +3 -5
package/dist/audit/report/models/severityCountModel.js.map +1 -0
package/dist/audit/report/reportingFeature.js +27 -55
package/dist/audit/report/reportingFeature.js.map +1 -0
package/dist/audit/report/utils/reportUtils.js +28 -59
package/dist/audit/report/utils/reportUtils.js.map +1 -0
package/dist/audit/save.js +14 -16
package/dist/audit/save.js.map +1 -0
package/dist/cliConstants.js +17 -18
package/dist/cliConstants.js.map +1 -0
package/dist/commands/audit/auditConfig.js +7 -10
package/dist/commands/audit/auditConfig.js.map +1 -0
package/dist/commands/audit/auditController.js +9 -13
package/dist/commands/audit/auditController.js.map +1 -0
package/dist/commands/audit/help.js +23 -25
package/dist/commands/audit/help.js.map +1 -0
package/dist/commands/audit/processAudit.js +9 -12
package/dist/commands/audit/processAudit.js.map +1 -0
package/dist/commands/audit/saveFile.js +3 -6
package/dist/commands/audit/saveFile.js.map +1 -0
package/dist/commands/auth/auth.js +25 -24
package/dist/commands/auth/auth.js.map +1 -0
package/dist/commands/config/config.js +12 -13
package/dist/commands/config/config.js.map +1 -0
package/dist/commands/github/fingerprintConfig.js +8 -11
package/dist/commands/github/fingerprintConfig.js.map +1 -0
package/dist/commands/github/processFingerprint.js +12 -15
package/dist/commands/github/processFingerprint.js.map +1 -0
package/dist/commands/github/projectGroup.js +25 -32
package/dist/commands/github/projectGroup.js.map +1 -0
package/dist/commands/github/repoServices.js +11 -21
package/dist/commands/github/repoServices.js.map +1 -0
package/dist/commands/learn/learn.js +3 -6
package/dist/commands/learn/learn.js.map +1 -0
package/dist/commands/learn/processLearn.js +3 -6
package/dist/commands/learn/processLearn.js.map +1 -0
package/dist/commands/scan/processScan.js +11 -14
package/dist/commands/scan/processScan.js.map +1 -0
package/dist/common/HTTPClient.js +123 -94
package/dist/common/HTTPClient.js.map +1 -0
package/dist/common/autoDetection.js +26 -33
package/dist/common/autoDetection.js.map +1 -0
package/dist/common/baseRequest.js +14 -18
package/dist/common/baseRequest.js.map +1 -0
package/dist/common/commonHelp.js +13 -13
package/dist/common/commonHelp.js.map +1 -0
package/dist/common/errorHandling.js +30 -39
package/dist/common/errorHandling.js.map +1 -0
package/dist/common/fail.js +6 -12
package/dist/common/fail.js.map +1 -0
package/dist/common/versionChecker.js +16 -19
package/dist/common/versionChecker.js.map +1 -0
package/dist/constants/constants.js +44 -65
package/dist/constants/constants.js.map +1 -0
package/dist/constants/lambda.js +8 -5
package/dist/constants/lambda.js.map +1 -0
package/dist/constants/locales.js +6 -9
package/dist/constants/locales.js.map +1 -0
package/dist/index.js +36 -39
package/dist/index.js.map +1 -0
package/dist/lambda/analytics.js +6 -9
package/dist/lambda/analytics.js.map +1 -0
package/dist/lambda/arn.js +6 -9
package/dist/lambda/arn.js.map +1 -0
package/dist/lambda/aws.js +29 -34
package/dist/lambda/aws.js.map +1 -0
package/dist/lambda/cliError.js +13 -41
package/dist/lambda/cliError.js.map +1 -0
package/dist/lambda/constants.js +3 -4
package/dist/lambda/constants.js.map +1 -0
package/dist/lambda/help.js +39 -44
package/dist/lambda/help.js.map +1 -0
package/dist/lambda/lambda.js +61 -65
package/dist/lambda/lambda.js.map +1 -0
package/dist/lambda/lambdaUtils.js +38 -32
package/dist/lambda/lambdaUtils.js.map +1 -0
package/dist/lambda/logUtils.js +21 -17
package/dist/lambda/logUtils.js.map +1 -0
package/dist/lambda/scanDetailCompletion.js +19 -25
package/dist/lambda/scanDetailCompletion.js.map +1 -0
package/dist/lambda/scanRequest.js +34 -41
package/dist/lambda/scanRequest.js.map +1 -0
package/dist/lambda/scanResults.js +8 -10
package/dist/lambda/scanResults.js.map +1 -0
package/dist/lambda/types.js +5 -7
package/dist/lambda/types.js.map +1 -0
package/dist/lambda/utils.js +33 -35
package/dist/lambda/utils.js.map +1 -0
package/dist/sbom/generateSbom.js +6 -10
package/dist/sbom/generateSbom.js.map +1 -0
package/dist/scaAnalysis/common/auditReport.js +8 -12
package/dist/scaAnalysis/common/auditReport.js.map +1 -0
package/dist/scaAnalysis/common/commonReportingFunctionsSca.js +26 -32
package/dist/scaAnalysis/common/commonReportingFunctionsSca.js.map +1 -0
package/dist/scaAnalysis/common/formatMessage.js +8 -17
package/dist/scaAnalysis/common/formatMessage.js.map +1 -0
package/dist/scaAnalysis/common/models/ScaReportModel.js +4 -9
package/dist/scaAnalysis/common/models/ScaReportModel.js.map +1 -0
package/dist/scaAnalysis/common/scaParserForGoAndJava.js +10 -9
package/dist/scaAnalysis/common/scaParserForGoAndJava.js.map +1 -0
package/dist/scaAnalysis/common/scaServicesUpload.js +21 -22
package/dist/scaAnalysis/common/scaServicesUpload.js.map +1 -0
package/dist/scaAnalysis/common/treeUpload.js +7 -10
package/dist/scaAnalysis/common/treeUpload.js.map +1 -0
package/dist/scaAnalysis/common/utils/reportUtilsSca.js +21 -29
package/dist/scaAnalysis/common/utils/reportUtilsSca.js.map +1 -0
package/dist/scaAnalysis/dotnet/analysis.js +12 -18
package/dist/scaAnalysis/dotnet/analysis.js.map +1 -0
package/dist/scaAnalysis/dotnet/index.js +4 -7
package/dist/scaAnalysis/dotnet/index.js.map +1 -0
package/dist/scaAnalysis/go/goAnalysis.js +8 -11
package/dist/scaAnalysis/go/goAnalysis.js.map +1 -0
package/dist/scaAnalysis/go/goParseDeps.js +9 -7
package/dist/scaAnalysis/go/goParseDeps.js.map +1 -0
package/dist/scaAnalysis/go/goReadDepFile.js +10 -8
package/dist/scaAnalysis/go/goReadDepFile.js.map +1 -0
package/dist/scaAnalysis/java/analysis.js +23 -20
package/dist/scaAnalysis/java/analysis.js.map +1 -0
package/dist/scaAnalysis/java/index.js +7 -10
package/dist/scaAnalysis/java/index.js.map +1 -0
package/dist/scaAnalysis/java/javaBuildDepsParser.js +43 -43
package/dist/scaAnalysis/java/javaBuildDepsParser.js.map +1 -0
package/dist/scaAnalysis/javascript/analysis.js +16 -20
package/dist/scaAnalysis/javascript/analysis.js.map +1 -0
package/dist/scaAnalysis/javascript/index.js +17 -19
package/dist/scaAnalysis/javascript/index.js.map +1 -0
package/dist/scaAnalysis/javascript/scaServiceParser.js +8 -15
package/dist/scaAnalysis/javascript/scaServiceParser.js.map +1 -0
package/dist/scaAnalysis/legacy/legacyFlow.js +13 -15
package/dist/scaAnalysis/legacy/legacyFlow.js.map +1 -0
package/dist/scaAnalysis/php/analysis.js +15 -16
package/dist/scaAnalysis/php/analysis.js.map +1 -0
package/dist/scaAnalysis/php/index.js +5 -8
package/dist/scaAnalysis/php/index.js.map +1 -0
package/dist/scaAnalysis/php/phpNewServicesMapper.js +9 -12
package/dist/scaAnalysis/php/phpNewServicesMapper.js.map +1 -0
package/dist/scaAnalysis/processServicesFlow.js +50 -25
package/dist/scaAnalysis/processServicesFlow.js.map +1 -0
package/dist/scaAnalysis/python/analysis.js +16 -23
package/dist/scaAnalysis/python/analysis.js.map +1 -0
package/dist/scaAnalysis/python/index.js +4 -7
package/dist/scaAnalysis/python/index.js.map +1 -0
package/dist/scaAnalysis/repoMode/gradleParser.js +7 -13
package/dist/scaAnalysis/repoMode/gradleParser.js.map +1 -0
package/dist/scaAnalysis/repoMode/index.js +9 -12
package/dist/scaAnalysis/repoMode/index.js.map +1 -0
package/dist/scaAnalysis/repoMode/mavenParser.js +12 -12
package/dist/scaAnalysis/repoMode/mavenParser.js.map +1 -0
package/dist/scaAnalysis/ruby/analysis.js +32 -46
package/dist/scaAnalysis/ruby/analysis.js.map +1 -0
package/dist/scaAnalysis/ruby/index.js +5 -8
package/dist/scaAnalysis/ruby/index.js.map +1 -0
package/dist/scaAnalysis/scaAnalysis.js +49 -51
package/dist/scaAnalysis/scaAnalysis.js.map +1 -0
package/dist/scan/fileUtils.js +27 -36
package/dist/scan/fileUtils.js.map +1 -0
package/dist/scan/formatScanOutput.js +47 -61
package/dist/scan/formatScanOutput.js.map +1 -0
package/dist/scan/help.js +8 -11
package/dist/scan/help.js.map +1 -0
package/dist/scan/models/groupedResultsModel.js +2 -5
package/dist/scan/models/groupedResultsModel.js.map +1 -0
package/dist/scan/models/resultContentModel.js +2 -2
package/dist/scan/models/resultContentModel.js.map +1 -0
package/dist/scan/models/scanResultsModel.js +2 -5
package/dist/scan/models/scanResultsModel.js.map +1 -0
package/dist/scan/populateProjectIdAndProjectName.js +9 -12
package/dist/scan/populateProjectIdAndProjectName.js.map +1 -0
package/dist/scan/saveResults.js +3 -6
package/dist/scan/saveResults.js.map +1 -0
package/dist/scan/scan.js +24 -31
package/dist/scan/scan.js.map +1 -0
package/dist/scan/scanConfig.js +14 -12
package/dist/scan/scanConfig.js.map +1 -0
package/dist/scan/scanController.js +17 -20
package/dist/scan/scanController.js.map +1 -0
package/dist/scan/scanResults.js +27 -34
package/dist/scan/scanResults.js.map +1 -0
package/dist/telemetry/telemetry.js +29 -59
package/dist/telemetry/telemetry.js.map +1 -0
package/dist/utils/capabilities.js +1 -0
package/dist/utils/capabilities.js.map +1 -0
package/dist/utils/commonApi.js +15 -24
package/dist/utils/commonApi.js.map +1 -0
package/dist/utils/filterProjectPath.js +1 -0
package/dist/utils/filterProjectPath.js.map +1 -0
package/dist/utils/generalAPI.js +11 -17
package/dist/utils/generalAPI.js.map +1 -0
package/dist/utils/getConfig.js +7 -13
package/dist/utils/getConfig.js.map +1 -0
package/dist/utils/oraWrapper.js +7 -14
package/dist/utils/oraWrapper.js.map +1 -0
package/dist/utils/paramsUtil/commandlineParams.js +2 -5
package/dist/utils/paramsUtil/commandlineParams.js.map +1 -0
package/dist/utils/paramsUtil/configStoreParams.js +9 -10
package/dist/utils/paramsUtil/configStoreParams.js.map +1 -0
package/dist/utils/paramsUtil/envVariableParams.js +2 -3
package/dist/utils/paramsUtil/envVariableParams.js.map +1 -0
package/dist/utils/paramsUtil/paramHandler.js +12 -13
package/dist/utils/paramsUtil/paramHandler.js.map +1 -0
package/dist/utils/parsedCLIOptions.js +4 -7
package/dist/utils/parsedCLIOptions.js.map +1 -0
package/dist/utils/requestUtils.js +7 -13
package/dist/utils/requestUtils.js.map +1 -0
package/dist/utils/saveFile.js +8 -11
package/dist/utils/saveFile.js.map +1 -0
package/dist/utils/validationCheck.js +5 -11
package/dist/utils/validationCheck.js.map +1 -0
package/package.json +32 -41
package/.prettierignore +0 -1
package/bin/contrast.js +0 -2
package/dist/audit/languageAnalysisEngine/util/requestUtils.js +0 -14
package/dist/lambda/__mocks__/aws.js +0 -21
package/dist/lambda/__mocks__/lambdaConfig.json +0 -42
package/src/audit/catalogueApplication/catalogueApplication.js +0 -51
package/src/audit/languageAnalysisEngine/commonApi.js +0 -20
package/src/audit/languageAnalysisEngine/filterProjectPath.js +0 -21
package/src/audit/languageAnalysisEngine/getProjectRootFilenames.js +0 -36
package/src/audit/languageAnalysisEngine/sendSnapshot.js +0 -57
package/src/audit/languageAnalysisEngine/util/requestUtils.js +0 -17
package/src/audit/nodeAnalysisEngine/parseYarn2LockFileContents.js +0 -63
package/src/audit/report/commonReportingFunctions.js +0 -412
package/src/audit/report/models/reportGuidanceModel.ts +0 -5
package/src/audit/report/models/reportLibraryModel.ts +0 -30
package/src/audit/report/models/reportListModel.ts +0 -49
package/src/audit/report/models/reportOutputModel.ts +0 -29
package/src/audit/report/models/reportSeverityModel.ts +0 -18
package/src/audit/report/models/severityCountModel.ts +0 -22
package/src/audit/report/reportingFeature.ts +0 -110
package/src/audit/report/utils/reportUtils.ts +0 -165
package/src/audit/save.js +0 -67
package/src/cliConstants.js +0 -523
package/src/commands/audit/auditConfig.js +0 -18
package/src/commands/audit/auditController.js +0 -50
package/src/commands/audit/help.js +0 -72
package/src/commands/audit/processAudit.js +0 -34
package/src/commands/audit/saveFile.js +0 -15
package/src/commands/auth/auth.js +0 -146
package/src/commands/config/config.js +0 -41
package/src/commands/github/fingerprintConfig.js +0 -19
package/src/commands/github/processFingerprint.js +0 -37
package/src/commands/github/projectGroup.js +0 -298
package/src/commands/github/repoServices.js +0 -122
package/src/commands/learn/learn.js +0 -10
package/src/commands/learn/processLearn.js +0 -13
package/src/commands/scan/processScan.js +0 -42
package/src/common/HTTPClient.js +0 -775
package/src/common/autoDetection.js +0 -209
package/src/common/baseRequest.ts +0 -83
package/src/common/commonHelp.js +0 -53
package/src/common/errorHandling.js +0 -157
package/src/common/fail.js +0 -79
package/src/common/versionChecker.js +0 -75
package/src/constants/constants.js +0 -71
package/src/constants/lambda.js +0 -85
package/src/constants/locales.js +0 -365
package/src/index.ts +0 -142
package/src/lambda/__mocks__/aws.ts +0 -32
package/src/lambda/__mocks__/lambdaConfig.json +0 -42
package/src/lambda/analytics.ts +0 -9
package/src/lambda/arn.ts +0 -33
package/src/lambda/aws.ts +0 -248
package/src/lambda/cliError.ts +0 -72
package/src/lambda/constants.ts +0 -11
package/src/lambda/help.ts +0 -92
package/src/lambda/lambda.ts +0 -230
package/src/lambda/lambdaUtils.ts +0 -111
package/src/lambda/logUtils.ts +0 -64
package/src/lambda/scanDetailCompletion.ts +0 -78
package/src/lambda/scanRequest.ts +0 -169
package/src/lambda/scanResults.ts +0 -29
package/src/lambda/types.ts +0 -36
package/src/lambda/utils.ts +0 -188
package/src/sbom/generateSbom.ts +0 -45
package/src/scaAnalysis/common/auditReport.js +0 -59
package/src/scaAnalysis/common/commonReportingFunctionsSca.js +0 -276
package/src/scaAnalysis/common/formatMessage.js +0 -67
package/src/scaAnalysis/common/models/ScaReportModel.ts +0 -81
package/src/scaAnalysis/common/scaParserForGoAndJava.js +0 -41
package/src/scaAnalysis/common/scaServicesUpload.js +0 -159
package/src/scaAnalysis/common/treeUpload.js +0 -51
package/src/scaAnalysis/common/utils/reportUtilsSca.ts +0 -123
package/src/scaAnalysis/dotnet/analysis.js +0 -72
package/src/scaAnalysis/dotnet/index.js +0 -11
package/src/scaAnalysis/go/goAnalysis.js +0 -26
package/src/scaAnalysis/go/goParseDeps.js +0 -203
package/src/scaAnalysis/go/goReadDepFile.js +0 -34
package/src/scaAnalysis/java/analysis.js +0 -148
package/src/scaAnalysis/java/index.js +0 -29
package/src/scaAnalysis/java/javaBuildDepsParser.js +0 -439
package/src/scaAnalysis/javascript/analysis.js +0 -111
package/src/scaAnalysis/javascript/index.js +0 -104
package/src/scaAnalysis/javascript/scaServiceParser.js +0 -151
package/src/scaAnalysis/legacy/legacyFlow.js +0 -43
package/src/scaAnalysis/php/analysis.js +0 -78
package/src/scaAnalysis/php/index.js +0 -28
package/src/scaAnalysis/php/phpNewServicesMapper.js +0 -77
package/src/scaAnalysis/processServicesFlow.js +0 -126
package/src/scaAnalysis/python/analysis.js +0 -93
package/src/scaAnalysis/python/index.js +0 -16
package/src/scaAnalysis/repoMode/gradleParser.js +0 -88
package/src/scaAnalysis/repoMode/index.js +0 -21
package/src/scaAnalysis/repoMode/mavenParser.js +0 -138
package/src/scaAnalysis/ruby/analysis.js +0 -413
package/src/scaAnalysis/ruby/index.js +0 -16
package/src/scaAnalysis/scaAnalysis.js +0 -172
package/src/scan/fileUtils.js +0 -218
package/src/scan/formatScanOutput.ts +0 -225
package/src/scan/help.js +0 -56
package/src/scan/models/groupedResultsModel.ts +0 -20
package/src/scan/models/resultContentModel.ts +0 -86
package/src/scan/models/scanResultsModel.ts +0 -55
package/src/scan/populateProjectIdAndProjectName.js +0 -73
package/src/scan/saveResults.js +0 -14
package/src/scan/scan.ts +0 -68
package/src/scan/scanConfig.js +0 -58
package/src/scan/scanController.js +0 -98
package/src/scan/scanResults.js +0 -171
package/src/telemetry/telemetry.ts +0 -154
package/src/utils/capabilities.js +0 -12
package/src/utils/commonApi.js +0 -103
package/src/utils/filterProjectPath.js +0 -25
package/src/utils/generalAPI.js +0 -52
package/src/utils/getConfig.ts +0 -34
package/src/utils/oraWrapper.js +0 -29
package/src/utils/paramsUtil/commandlineParams.js +0 -12
package/src/utils/paramsUtil/configStoreParams.js +0 -19
package/src/utils/paramsUtil/envVariableParams.js +0 -10
package/src/utils/paramsUtil/paramHandler.js +0 -38
package/src/utils/parsedCLIOptions.js +0 -32
package/src/utils/requestUtils.js +0 -29
package/src/utils/saveFile.js +0 -20
package/src/utils/validationCheck.js +0 -39

package/src/audit/report/utils/reportUtils.ts DELETED Viewed

@@ -1,165 +0,0 @@
-import {
-  ReportCVEModel,
-  ReportLibraryModel
-} from '../models/reportLibraryModel'
-import { ReportSeverityModel } from '../models/reportSeverityModel'
-import languageAnalysisEngine, {
-  CRITICAL_COLOUR,
-  CRITICAL_PRIORITY,
-  HIGH_COLOUR,
-  HIGH_PRIORITY,
-  LOW_COLOUR,
-  LOW_PRIORITY,
-  MEDIUM_COLOUR,
-  MEDIUM_PRIORITY,
-  NOTE_COLOUR,
-  NOTE_PRIORITY
-} from '../../../constants/constants'
-import { orderBy } from 'lodash'
-import { SeverityCountModel } from '../models/severityCountModel'
-import { ReportModelStructure } from '../models/reportListModel'
-const {
-  supportedLanguages: { GO }
-} = languageAnalysisEngine
-export function findHighestSeverityCVE(cveArray: ReportCVEModel[]) {
-  const mappedToReportSeverityModels = cveArray.map(cve => findCVESeverity(cve))
-  //order and get first
-  return orderBy(mappedToReportSeverityModels, cve => cve?.priority)[0]
-}
-export function orderByHighestPriority(severityModels: ReportSeverityModel[]) {
-  return orderBy(severityModels, ['priority'], ['asc'])
-}
-export function findCVESeverity(cve: ReportCVEModel) {
-  const cveName = cve.name as string
-  if (cve.cvss3SeverityCode === 'CRITICAL' || cve.severityCode === 'CRITICAL') {
-    return new ReportSeverityModel(
-      'CRITICAL',
-      CRITICAL_PRIORITY,
-      CRITICAL_COLOUR,
-      cveName
-    )
-  } else if (cve.cvss3SeverityCode === 'HIGH' || cve.severityCode === 'HIGH') {
-    return new ReportSeverityModel('HIGH', HIGH_PRIORITY, HIGH_COLOUR, cveName)
-  } else if (
-    cve.cvss3SeverityCode === 'MEDIUM' ||
-    cve.severityCode === 'MEDIUM'
-  ) {
-    return new ReportSeverityModel(
-      'MEDIUM',
-      MEDIUM_PRIORITY,
-      MEDIUM_COLOUR,
-      cveName
-    )
-  } else if (cve.cvss3SeverityCode === 'LOW' || cve.severityCode === 'LOW') {
-    return new ReportSeverityModel('LOW', LOW_PRIORITY, LOW_COLOUR, cveName)
-  } else if (cve.cvss3SeverityCode === 'NOTE' || cve.severityCode === 'NOTE') {
-    return new ReportSeverityModel('NOTE', NOTE_PRIORITY, NOTE_COLOUR, cveName)
-  }
-}
-export function convertGenericToTypedLibraryVulns(libraries: any) {
-  return Object.entries(libraries).map(([name, cveArray]) => {
-    return new ReportLibraryModel(name, cveArray as ReportCVEModel[])
-  })
-}
-export function severityCountAllLibraries(
-  vulnerableLibraries: ReportLibraryModel[],
-  severityCount: SeverityCountModel
-) {
-  vulnerableLibraries.forEach(lib =>
-    severityCountAllCVEs(lib.cveArray, severityCount)
-  )
-  return severityCount
-}
-export function severityCountAllCVEs(
-  cveArray: ReportCVEModel[],
-  severityCount: SeverityCountModel
-) {
-  const severityCountInner = severityCount
-  cveArray.forEach(cve => severityCountSingleCVE(cve, severityCountInner))
-  return severityCountInner
-}
-export function severityCountSingleCVE(
-  cve: ReportCVEModel,
-  severityCount: SeverityCountModel
-) {
-  if (cve.cvss3SeverityCode === 'CRITICAL' || cve.severityCode === 'CRITICAL') {
-    severityCount.critical += 1
-  } else if (cve.cvss3SeverityCode === 'HIGH' || cve.severityCode === 'HIGH') {
-    severityCount.high += 1
-  } else if (
-    cve.cvss3SeverityCode === 'MEDIUM' ||
-    cve.severityCode === 'MEDIUM'
-  ) {
-    severityCount.medium += 1
-  } else if (cve.cvss3SeverityCode === 'LOW' || cve.severityCode === 'LOW') {
-    severityCount.low += 1
-  } else if (cve.cvss3SeverityCode === 'NOTE' || cve.severityCode === 'NOTE') {
-    severityCount.note += 1
-  }
-  return severityCount
-}
-export function findNameAndVersion(library: ReportLibraryModel, config: any) {
-  if (config.language.toUpperCase() === GO) {
-    const nameVersion = library.name.split('@')
-    const name = nameVersion[0]
-    const version = nameVersion[1]
-    return { name, version }
-  } else {
-    //spreads items from split into set so no duplicates appear
-    const uniqueSplitLibraryName = [...new Set(library.name.split('/'))]
-    const nameVersion = uniqueSplitLibraryName[1].split('@')
-    let parentLibrary
-    let name
-    if (
-      uniqueSplitLibraryName[0] !== 'null' &&
-      uniqueSplitLibraryName[0] !== '' &&
-      !uniqueSplitLibraryName[1].includes(uniqueSplitLibraryName[0])
-    ) {
-      //if the parent lib (element 0) is not null, not blank and not already part of the library name
-      //e.g. shared-ini-file-loader-1.0.0-rc.3 is very generic - converts to @aws-sdk/shared-ini-file-loader-1.0.0-rc.3
-      parentLibrary = uniqueSplitLibraryName[0]
-      name = `${parentLibrary}/${nameVersion[0]}`
-    } else {
-      name = nameVersion[0]
-    }
-    const version = nameVersion[1]
-    return { name, version }
-  }
-}
-export function countVulnerableLibrariesBySeverity(
-  reportModelStructure: ReportModelStructure[]
-) {
-  const severityCount = new SeverityCountModel()
-  reportModelStructure.forEach(vuln => {
-    const currentSeverity = vuln.compositeKey.highestSeverity.severity
-    if (currentSeverity === 'CRITICAL') {
-      severityCount.critical += 1
-    } else if (currentSeverity === 'HIGH') {
-      severityCount.high += 1
-    } else if (currentSeverity === 'MEDIUM') {
-      severityCount.medium += 1
-    } else if (currentSeverity === 'LOW') {
-      severityCount.low += 1
-    } else if (currentSeverity === 'NOTE') {
-      severityCount.note += 1
-    }
-  })
-  return severityCount
-}

package/src/audit/save.js DELETED Viewed

@@ -1,67 +0,0 @@
-const fs = require('fs')
-const i18n = require('i18n')
-const chalk = require('chalk')
-const save = require('../commands/audit/saveFile')
-const sbom = require('../sbom/generateSbom')
-const {
-  SBOM_CYCLONE_DX_FILE,
-  SBOM_SPDX_FILE
-} = require('../constants/constants')
-async function auditSave(config, reportId) {
-  let fileFormat
-  //validate the config to see if we can uppercase it
-  config.save = config.save ? config.save.toUpperCase() : config.save
-  switch (config.save) {
-    case null:
-    case SBOM_CYCLONE_DX_FILE:
-      fileFormat = SBOM_CYCLONE_DX_FILE
-      break
-    case SBOM_SPDX_FILE:
-      fileFormat = SBOM_SPDX_FILE
-      break
-    default:
-      break
-  }
-  if (fileFormat) {
-    if (config.legacy === false) {
-      const sbomResponse = await sbom.generateSCASbom(
-        config,
-        fileFormat,
-        reportId
-      )
-      if (sbomResponse) {
-        save.saveFile(config, fileFormat, sbomResponse)
-      }
-    } else {
-      const sbomResponse = await sbom.generateSbom(config, fileFormat)
-      if (sbomResponse) {
-        save.saveFile(config, fileFormat, sbomResponse)
-      }
-    }
-    let fileStart = config.legacy ? config.applicationId : config.projectId
-    if (fileStart === undefined) {
-      fileStart = 'my'
-    }
-    const filename = `${fileStart}-sbom-${fileFormat}.json`
-    if (fs.existsSync(filename)) {
-      console.log(i18n.__('auditSBOMSaveSuccess') + ` - ${filename}`)
-    } else {
-      console.log(
-        chalk.yellow.bold(
-          `\nUnable to save ${filename} Software Bill of Materials (SBOM)`
-        )
-      )
-    }
-  } else {
-    console.log(i18n.__('auditBadFiletypeSpecifiedForSave'))
-  }
-}
-module.exports = {
-  auditSave
-}