@contrast/core 1.54.1 → 1.55.0

package/lib/sensitive-data-masking/protect-listener.js

@@ -27,8 +27,8 @@ module.exports = function (core) {
     sensitiveDataMasking: { policy, getRedactedText, traverseAndMask },
   } = core;
 
-  messages.on(Event.PROTECT, (msg) => {
-    if (!msg.protect || !policy.keywordSets.length) {
+  messages.on(Event.PROTECT, (store) => {
+    if (!store.protect || !policy.keywordSets.length || !store.sourceInfo) {
       return;
     }
 
@@ -36,33 +36,33 @@ module.exports = function (core) {
 
     const unmasked = policy.maskAttackVector ? new Set() : undefined;
     if (policy.maskHttpBody) {
-      msg.protect.parsedBody = `${CONTRAST_REDACTED}-body`;
+      store.protect.parsedBody = `${CONTRAST_REDACTED}-body`;
     } else {
-      traverseAndMask(msg.protect?.parsedBody, unmasked);
+      traverseAndMask(store.protect?.parsedBody, unmasked);
     }
 
-    traverseAndMask(msg.protect?.parsedCookies, unmasked);
-    traverseAndMask(msg.protect?.parsedQuery, unmasked);
+    traverseAndMask(store.protect?.parsedCookies, unmasked);
+    traverseAndMask(store.protect?.parsedQuery, unmasked);
 
     // Do parsed URL path params and urlPath together
-    const params = msg.protect?.parsedParams;
+    const params = store.protect?.parsedParams;
     if (params) {
       for (const [key, value] of Object.entries(params)) {
         const redactedText = getRedactedText(key);
         if (redactedText) {
           const encoded = encodeURIComponent(value);
-          msg.protect.reqData.uriPath = StringPrototypeReplace.call(
-            msg.protect.reqData.uriPath,
+          store.sourceInfo.uriPath = StringPrototypeReplace.call(
+            store.sourceInfo.uriPath,
             encoded,
             redactedText
           );
-          msg.protect.parsedParams[key] = redactedText;
+          store.protect.parsedParams[key] = redactedText;
         }
       }
     }
 
     // raw headers
-    const headers = msg.protect?.reqData.headers;
+    const headers = store.sourceInfo.rawHeaders;
     for (let i = 0; i <= headers.length - 2; i += 2) {
       const key = headers[i];
 
@@ -73,20 +73,20 @@ module.exports = function (core) {
     }
 
     // raw queries
-    if (msg.protect?.reqData?.queries) {
-      const searchParams = new URLSearchParams(msg.protect.reqData.queries);
+    if (store.sourceInfo?.queries) {
+      const searchParams = new URLSearchParams(store.sourceInfo.queries);
       for (const [key] of searchParams) {
         const redactedText = getRedactedText(key);
         if (redactedText) {
           searchParams.set(key, redactedText);
         }
       }
-      msg.protect.reqData.queries = searchParams.toString();
+      store.sourceInfo.queries = searchParams.toString();
     }
 
     if (policy.maskAttackVector) {
       // attack values
-      const inputAnalysis = Object.entries(msg.protect?.resultsMap);
+      const inputAnalysis = Object.entries(store.protect?.resultsMap);
       for (const [, results] of inputAnalysis) {
         for (const result of results) {
           const redactedText = getRedactedText(result.key);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@contrast/core",
-  "version": "1.54.1",
+  "version": "1.55.0",
   "description": "Preconfigured Contrast agent core services and models",
   "license": "SEE LICENSE IN LICENSE",
   "author": "Contrast Security <nodejs@contrastsecurity.com> (https://www.contrastsecurity.com)",
@@ -19,15 +19,15 @@
     "test": "bash ../scripts/test.sh"
   },
   "dependencies": {
-    "@contrast/common": "1.34.1",
-    "@contrast/config": "1.49.1",
+    "@contrast/common": "1.35.0",
+    "@contrast/config": "1.50.0",
     "@contrast/find-package-json": "^1.1.0",
     "@contrast/fn-inspect": "^4.3.0",
-    "@contrast/logger": "1.27.1",
-    "@contrast/patcher": "1.26.1",
+    "@contrast/logger": "1.28.0",
+    "@contrast/patcher": "1.27.0",
     "@contrast/perf": "1.3.1",
     "@tsxper/crc32": "^2.1.3",
-    "axios": "^1.7.4",
+    "axios": "^1.11.0",
     "semver": "^7.6.0"
   }
 }