@cyclonedx/cdxgen 12.3.3 → 12.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (157) hide show
  1. package/README.md +64 -22
  2. package/bin/audit.js +21 -7
  3. package/bin/cdxgen.js +238 -116
  4. package/bin/convert.js +28 -13
  5. package/bin/hbom.js +490 -0
  6. package/bin/repl.js +580 -29
  7. package/bin/validate.js +34 -4
  8. package/bin/verify.js +40 -5
  9. package/data/README.md +298 -25
  10. package/data/component-tags.json +6 -0
  11. package/data/crypto-oid.json +16 -0
  12. package/data/predictive-audit-allowlist.json +11 -0
  13. package/data/queries-darwin.json +12 -1
  14. package/data/queries-win.json +7 -1
  15. package/data/queries.json +39 -2
  16. package/data/rules/ai-agent-governance.yaml +16 -0
  17. package/data/rules/asar-archives.yaml +150 -0
  18. package/data/rules/chrome-extensions.yaml +8 -0
  19. package/data/rules/ci-permissions.yaml +42 -18
  20. package/data/rules/container-risk.yaml +14 -7
  21. package/data/rules/dependency-sources.yaml +11 -0
  22. package/data/rules/hbom-compliance.yaml +325 -0
  23. package/data/rules/hbom-performance.yaml +307 -0
  24. package/data/rules/hbom-security.yaml +248 -0
  25. package/data/rules/host-topology.yaml +165 -0
  26. package/data/rules/mcp-servers.yaml +18 -3
  27. package/data/rules/obom-runtime.yaml +907 -22
  28. package/data/rules/package-integrity.yaml +14 -0
  29. package/data/rules/rootfs-hardening.yaml +179 -0
  30. package/data/rules/vscode-extensions.yaml +9 -0
  31. package/lib/audit/index.js +209 -8
  32. package/lib/audit/index.poku.js +332 -0
  33. package/lib/audit/reporters.js +222 -0
  34. package/lib/audit/targets.js +146 -1
  35. package/lib/audit/targets.poku.js +186 -0
  36. package/lib/cli/asar.poku.js +328 -0
  37. package/lib/cli/index.js +506 -88
  38. package/lib/cli/index.poku.js +1352 -212
  39. package/lib/evinser/evinser.js +14 -9
  40. package/lib/helpers/analyzer.js +1406 -29
  41. package/lib/helpers/analyzer.poku.js +342 -0
  42. package/lib/helpers/analyzerScope.js +712 -0
  43. package/lib/helpers/asarutils.js +1556 -0
  44. package/lib/helpers/asarutils.poku.js +443 -0
  45. package/lib/helpers/auditCategories.js +12 -0
  46. package/lib/helpers/auditCategories.poku.js +32 -0
  47. package/lib/helpers/cbomutils.js +271 -1
  48. package/lib/helpers/cbomutils.poku.js +248 -5
  49. package/lib/helpers/display.js +291 -1
  50. package/lib/helpers/display.poku.js +149 -0
  51. package/lib/helpers/evidenceUtils.js +58 -0
  52. package/lib/helpers/evidenceUtils.poku.js +54 -0
  53. package/lib/helpers/exportUtils.js +9 -0
  54. package/lib/helpers/gtfobins.js +142 -8
  55. package/lib/helpers/gtfobins.poku.js +24 -1
  56. package/lib/helpers/hbom.js +710 -0
  57. package/lib/helpers/hbom.poku.js +496 -0
  58. package/lib/helpers/hbomAnalysis.js +268 -0
  59. package/lib/helpers/hbomAnalysis.poku.js +249 -0
  60. package/lib/helpers/hbomLoader.js +35 -0
  61. package/lib/helpers/hostTopology.js +803 -0
  62. package/lib/helpers/hostTopology.poku.js +363 -0
  63. package/lib/helpers/inventoryStats.js +69 -0
  64. package/lib/helpers/inventoryStats.poku.js +86 -0
  65. package/lib/helpers/lolbas.js +19 -1
  66. package/lib/helpers/lolbas.poku.js +23 -0
  67. package/lib/helpers/osqueryTransform.js +47 -0
  68. package/lib/helpers/osqueryTransform.poku.js +47 -0
  69. package/lib/helpers/plugins.js +349 -0
  70. package/lib/helpers/plugins.poku.js +57 -0
  71. package/lib/helpers/protobom.js +156 -45
  72. package/lib/helpers/protobom.poku.js +140 -5
  73. package/lib/helpers/remote/dependency-track.js +36 -3
  74. package/lib/helpers/remote/dependency-track.poku.js +44 -0
  75. package/lib/helpers/source.js +24 -0
  76. package/lib/helpers/source.poku.js +32 -0
  77. package/lib/helpers/utils.js +1438 -93
  78. package/lib/helpers/utils.poku.js +846 -4
  79. package/lib/managers/binary.e2e.poku.js +367 -0
  80. package/lib/managers/binary.js +2293 -353
  81. package/lib/managers/binary.poku.js +1699 -1
  82. package/lib/managers/docker.js +201 -79
  83. package/lib/managers/docker.poku.js +337 -12
  84. package/lib/server/server.js +2 -27
  85. package/lib/stages/postgen/annotator.js +38 -0
  86. package/lib/stages/postgen/annotator.poku.js +107 -1
  87. package/lib/stages/postgen/auditBom.js +121 -18
  88. package/lib/stages/postgen/auditBom.poku.js +1366 -31
  89. package/lib/stages/postgen/hostTopologyAudit.poku.js +186 -0
  90. package/lib/stages/postgen/postgen.js +192 -1
  91. package/lib/stages/postgen/postgen.poku.js +321 -0
  92. package/lib/stages/postgen/ruleEngine.js +116 -0
  93. package/lib/stages/pregen/envAudit.js +14 -3
  94. package/package.json +23 -21
  95. package/types/bin/hbom.d.ts +3 -0
  96. package/types/bin/hbom.d.ts.map +1 -0
  97. package/types/bin/repl.d.ts.map +1 -1
  98. package/types/lib/audit/index.d.ts +44 -0
  99. package/types/lib/audit/index.d.ts.map +1 -1
  100. package/types/lib/audit/reporters.d.ts +16 -0
  101. package/types/lib/audit/reporters.d.ts.map +1 -1
  102. package/types/lib/audit/targets.d.ts.map +1 -1
  103. package/types/lib/cli/index.d.ts +16 -0
  104. package/types/lib/cli/index.d.ts.map +1 -1
  105. package/types/lib/evinser/evinser.d.ts +4 -0
  106. package/types/lib/evinser/evinser.d.ts.map +1 -1
  107. package/types/lib/helpers/analyzer.d.ts +33 -0
  108. package/types/lib/helpers/analyzer.d.ts.map +1 -1
  109. package/types/lib/helpers/analyzerScope.d.ts +11 -0
  110. package/types/lib/helpers/analyzerScope.d.ts.map +1 -0
  111. package/types/lib/helpers/asarutils.d.ts +34 -0
  112. package/types/lib/helpers/asarutils.d.ts.map +1 -0
  113. package/types/lib/helpers/auditCategories.d.ts +5 -0
  114. package/types/lib/helpers/auditCategories.d.ts.map +1 -1
  115. package/types/lib/helpers/cbomutils.d.ts +3 -2
  116. package/types/lib/helpers/cbomutils.d.ts.map +1 -1
  117. package/types/lib/helpers/display.d.ts.map +1 -1
  118. package/types/lib/helpers/evidenceUtils.d.ts +8 -0
  119. package/types/lib/helpers/evidenceUtils.d.ts.map +1 -0
  120. package/types/lib/helpers/exportUtils.d.ts.map +1 -1
  121. package/types/lib/helpers/gtfobins.d.ts +8 -0
  122. package/types/lib/helpers/gtfobins.d.ts.map +1 -1
  123. package/types/lib/helpers/hbom.d.ts +49 -0
  124. package/types/lib/helpers/hbom.d.ts.map +1 -0
  125. package/types/lib/helpers/hbomAnalysis.d.ts +62 -0
  126. package/types/lib/helpers/hbomAnalysis.d.ts.map +1 -0
  127. package/types/lib/helpers/hbomLoader.d.ts +7 -0
  128. package/types/lib/helpers/hbomLoader.d.ts.map +1 -0
  129. package/types/lib/helpers/hostTopology.d.ts +12 -0
  130. package/types/lib/helpers/hostTopology.d.ts.map +1 -0
  131. package/types/lib/helpers/inventoryStats.d.ts +11 -0
  132. package/types/lib/helpers/inventoryStats.d.ts.map +1 -0
  133. package/types/lib/helpers/lolbas.d.ts.map +1 -1
  134. package/types/lib/helpers/osqueryTransform.d.ts +3 -0
  135. package/types/lib/helpers/osqueryTransform.d.ts.map +1 -1
  136. package/types/lib/helpers/plugins.d.ts +58 -0
  137. package/types/lib/helpers/plugins.d.ts.map +1 -0
  138. package/types/lib/helpers/protobom.d.ts +3 -4
  139. package/types/lib/helpers/protobom.d.ts.map +1 -1
  140. package/types/lib/helpers/remote/dependency-track.d.ts +10 -3
  141. package/types/lib/helpers/remote/dependency-track.d.ts.map +1 -1
  142. package/types/lib/helpers/source.d.ts.map +1 -1
  143. package/types/lib/helpers/utils.d.ts +45 -8
  144. package/types/lib/helpers/utils.d.ts.map +1 -1
  145. package/types/lib/managers/binary.d.ts +5 -0
  146. package/types/lib/managers/binary.d.ts.map +1 -1
  147. package/types/lib/managers/docker.d.ts.map +1 -1
  148. package/types/lib/server/server.d.ts +2 -1
  149. package/types/lib/server/server.d.ts.map +1 -1
  150. package/types/lib/stages/postgen/annotator.d.ts.map +1 -1
  151. package/types/lib/stages/postgen/auditBom.d.ts +26 -1
  152. package/types/lib/stages/postgen/auditBom.d.ts.map +1 -1
  153. package/types/lib/stages/postgen/postgen.d.ts +2 -1
  154. package/types/lib/stages/postgen/postgen.d.ts.map +1 -1
  155. package/types/lib/stages/postgen/ruleEngine.d.ts.map +1 -1
  156. package/types/lib/stages/pregen/envAudit.d.ts.map +1 -1
  157. package/data/spdx-model-v3.0.1.jsonld +0 -15999
package/types/lib/audit/index.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../lib/audit/index.js"],"names":[],"mappings":"AAyFA;;;;;GAKG;AACH,qCAHW,MAAM,GACJ,MAAM,CAclB;AAED;;;;;GAKG;AACH,qCAHW,MAAM,GACJ,MAAM,EAAE,CAoBpB;AAED;;;;;GAKG;AACH,uCAHW,MAAM,GACJ;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,EAAE,CA0BjD;AAkbD;;;;;;;;GAQG;AACH,mDAHW,MAAM,GACJ,MAAM,EAAE,CAqdpB;AAkJD;;;;;;GAMG;AACH,uDAJW,MAAM,UACN,MAAM,GACJ;IAAE,UAAU,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CA0CnD;AAED;;;;;;;GAOG;AACH,uDALW,MAAM,UACN,MAAM,cACN,MAAM,GACJ;IAAE,UAAU,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CAuBnD;AAoED;;;;;;;;;GASG;AACH,4DAJW,MAAM,UACN,MAAM,GACJ,MAAM,EAAE,CAkEpB;AA+BD;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAgN3B;AAoVD,uDA8CC;AAoBD;;;;;;GAMG;AACH,4CAJW;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,EAAE,WACrC,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAsF3B;AAED;;;;;GAKG;AACH,kCAHW,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAe3B;AAED;;;;;;GAMG;AACH,4CAJW,MAAM,WACN,MAAM,GACJ;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAqBhD;AAED;;;;;GAKG;AACH,2CAHW,MAAM,GACJ,MAAM,GAAG,SAAS,CAU9B;AAxpED,gDAKE"}
1
+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../lib/audit/index.js"],"names":[],"mappings":"AAkGA;;;;;GAKG;AACH,qCAHW,MAAM,GACJ,MAAM,CAclB;AAED;;;;;GAKG;AACH,qCAHW,MAAM,GACJ,MAAM,EAAE,CAoBpB;AAED;;;;;GAKG;AACH,uCAHW,MAAM,GACJ;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,EAAE,CA0BjD;AA6CD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8DC;AA4bD;;;;;;;;GAQG;AACH,mDAHW,MAAM,GACJ,MAAM,EAAE,CAqdpB;AAkJD;;;;;;GAMG;AACH,uDAJW,MAAM,UACN,MAAM,GACJ;IAAE,UAAU,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CA0CnD;AAED;;;;;;;GAOG;AACH,uDALW,MAAM,UACN,MAAM,cACN,MAAM,GACJ;IAAE,UAAU,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CAuBnD;AAoED;;;;;;;;;GASG;AACH,4DAJW,MAAM,UACN,MAAM,GACJ,MAAM,EAAE,CAkEpB;AA+BD;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAiN3B;AAoVD,uDA8CC;AAoBD;;;;;;GAMG;AACH,4CAJW;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,EAAE,WACrC,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA4I3B;AAED;;;;;GAKG;AACH,kCAHW,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAqB3B;AAED;;;;;;GAMG;AACH,4CAJW,MAAM,WACN,MAAM,GACJ;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAmChD;AAED;;;;;GAKG;AACH,2CAHW,MAAM,GACJ,MAAM,GAAG,SAAS,CAU9B;AA11ED,gDAKE"}
package/types/lib/audit/reporters.d.ts CHANGED
@@ -6,6 +6,22 @@ export function renderSarifReport(report: any, options?: {}): string;
6
6
  * @returns {string} JSON output
7
7
  */
8
8
  export function renderJsonReport(report: object): string;
9
+ /**
10
+ * Render a direct BOM audit report for terminal output.
11
+ *
12
+ * @param {object} report aggregate direct audit report
13
+ * @param {object} options render options
14
+ * @returns {string} console report text
15
+ */
16
+ export function renderDirectBomConsoleReport(report: object, options?: object): string;
17
+ /**
18
+ * Render a direct BOM audit report as SARIF 2.1.0 output.
19
+ *
20
+ * @param {object} report aggregate direct audit report
21
+ * @param {object} [options] render options
22
+ * @returns {string} SARIF output
23
+ */
24
+ export function renderDirectBomSarifReport(report: object, options?: object): string;
9
25
  /**
10
26
  * Render an audit report for terminal output.
11
27
  *
package/types/lib/audit/reporters.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"reporters.d.ts","sourceRoot":"","sources":["../../../lib/audit/reporters.js"],"names":[],"mappings":"AAqaA,qEAkDC;AAED;;;;;GAKG;AACH,yCAHW,MAAM,GACJ,MAAM,CAIlB;AAED;;;;;;GAMG;AACH,4CAJW,MAAM,YACN,MAAM,GACJ,MAAM,CAiDlB;AAED;;;;;;;GAOG;AACH,8CALW,MAAM,UACN,MAAM,YACN,MAAM,GACJ,MAAM,CAUlB;AAED;;;;;;;GAOG;AACH,oDALW,MAAM,WACN,MAAM,YACN,MAAM,GACJ,MAAM,EAAE,CAgFpB"}
1
+ {"version":3,"file":"reporters.d.ts","sourceRoot":"","sources":["../../../lib/audit/reporters.js"],"names":[],"mappings":"AA6gBA,qEAkDC;AAED;;;;;GAKG;AACH,yCAHW,MAAM,GACJ,MAAM,CAIlB;AAED;;;;;;GAMG;AACH,qDAJW,MAAM,YACN,MAAM,GACJ,MAAM,CA8ClB;AAED;;;;;;GAMG;AACH,mDAJW,MAAM,YACN,MAAM,GACJ,MAAM,CAuClB;AAED;;;;;;GAMG;AACH,4CAJW,MAAM,YACN,MAAM,GACJ,MAAM,CA2DlB;AAED;;;;;;;GAOG;AACH,8CALW,MAAM,UACN,MAAM,YACN,MAAM,GACJ,MAAM,CAmBlB;AAED;;;;;;;GAOG;AACH,oDALW,MAAM,WACN,MAAM,YACN,MAAM,GACJ,MAAM,EAAE,CAgFpB"}
package/types/lib/audit/targets.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"targets.d.ts","sourceRoot":"","sources":["../../../lib/audit/targets.js"],"names":[],"mappings":"AA4CA;;;;;;;GAOG;AACH,gDAHW,MAAM,GAAG,SAAS,GAChB,OAAO,CAOnB;AAuOD;;;;;;;GAOG;AACH,+DAHW;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,EAAE,GACnC,OAAO,CAAC,IAAI,CAAC,CA6EzB;AAkBD;;;;;GAKG;AACH,kDAHW,MAAM,GAAG,SAAS,GAChB,MAAM,CAOlB;AAED;;;;;;;GAOG;AACH,mDALW,MAAM,cACN,MAAM,YACN,MAAM,GAAG,MAAM,GAAG,SAAS,GACzB;IAAE,OAAO,EAAE,MAAM,EAAE,CAAC;IAAC,OAAO,EAAE,MAAM,EAAE,CAAA;CAAE,CAmFpD;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,+CAfW;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,EAAE,YACrC,MAAM,GAAG,MAAM,GAAG,SAAS,GACzB;IACR,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,KAAK,EAAE;QACL,gBAAgB,EAAE,MAAM,CAAC;QACzB,kBAAkB,EAAE,MAAM,CAAC;QAC3B,eAAe,EAAE,MAAM,CAAC;QACxB,cAAc,EAAE,MAAM,CAAC;QACvB,sBAAsB,EAAE,MAAM,CAAC;QAC/B,gBAAgB,EAAE,MAAM,CAAC;KAC1B,CAAC;IACF,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB,CAyIH;AA7nBD,+CAA+D"}
1
+ {"version":3,"file":"targets.d.ts","sourceRoot":"","sources":["../../../lib/audit/targets.js"],"names":[],"mappings":"AAmKA;;;;;;;GAOG;AACH,gDAHW,MAAM,GAAG,SAAS,GAChB,OAAO,CAOnB;AAuOD;;;;;;;GAOG;AACH,+DAHW;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,EAAE,GACnC,OAAO,CAAC,IAAI,CAAC,CA6EzB;AAkBD;;;;;GAKG;AACH,kDAHW,MAAM,GAAG,SAAS,GAChB,MAAM,CAOlB;AAED;;;;;;;GAOG;AACH,mDALW,MAAM,cACN,MAAM,YACN,MAAM,GAAG,MAAM,GAAG,SAAS,GACzB;IAAE,OAAO,EAAE,MAAM,EAAE,CAAC;IAAC,OAAO,EAAE,MAAM,EAAE,CAAA;CAAE,CAmGpD;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,+CAfW;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,EAAE,YACrC,MAAM,GAAG,MAAM,GAAG,SAAS,GACzB;IACR,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,KAAK,EAAE;QACL,gBAAgB,EAAE,MAAM,CAAC;QACzB,kBAAkB,EAAE,MAAM,CAAC;QAC3B,eAAe,EAAE,MAAM,CAAC;QACxB,cAAc,EAAE,MAAM,CAAC;QACvB,sBAAsB,EAAE,MAAM,CAAC;QAC/B,gBAAgB,EAAE,MAAM,CAAC;KAC1B,CAAC;IACF,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB,CAmJH;AA1wBD,+CAA+D"}
package/types/lib/cli/index.d.ts CHANGED
@@ -235,6 +235,14 @@ export function createCsharpBom(path: string, options: Object): Promise<Object |
235
235
  * @returns {Promise<Object>} Promise resolving to BOM object
236
236
  */
237
237
  export function createVscodeExtensionBom(path: string, options: Object): Promise<Object>;
238
+ /**
239
+ * Function to create BOM for Electron ASAR archives.
240
+ *
241
+ * @param {string} path to a single archive or a directory to scan
242
+ * @param {Object} options Parse options from the cli
243
+ * @returns {Promise<Object>} Promise resolving to BOM object
244
+ */
245
+ export function createAsarBom(path: string, options: Object): Promise<Object>;
238
246
  /**
239
247
  * Function to create BOM for installed Chrome and Chromium-based browser extensions.
240
248
  *
@@ -278,6 +286,14 @@ export function createMultiXBom(pathList: string[], options: Object): Promise<Ob
278
286
  * @returns {Promise<Object|undefined>} Promise resolving to BOM object, or undefined if path is not readable
279
287
  */
280
288
  export function createXBom(path: string, options: Object): Promise<Object | undefined>;
289
+ /**
290
+ * Function to create a hardware BOM for the current host.
291
+ *
292
+ * @param {string} _path Source path (unused for live host HBOM generation)
293
+ * @param {Object} options Parse options from the cli
294
+ * @returns {Promise<Object>} Promise resolving to BOM object
295
+ */
296
+ export function createHBom(_path: string, options: Object): Promise<Object>;
281
297
  /**
282
298
  * Function to create bom string for various languages
283
299
  *
package/types/lib/cli/index.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../lib/cli/index.js"],"names":[],"mappings":"AAy5BA;;;;;;;;;GASG;AACH,wCANW,MAAM,cACN,MAAM,OACN,MAAM,UACN,MAAM,GACJ,MAAM,EAAE,CAcpB;AAwbD;;;;;;;GAOG;AACH,mCALW,MAAM,WACN,MAAM,GAEJ,MAAM,CA8ElB;AAED;;;;;;GAMG;AACH,uCAJW,MAAM,WACN,MAAM,GACJ,MAAM,GAAC,SAAS,CAI5B;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,MAAM,GAAC,SAAS,CAwB5B;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAouC3B;AAqID,0EAkgCC;AAgFD;;;;;;;;;;;GAWG;AACH,qDAHW,MAAM,GACJ,MAAM,GAAG,IAAI,CAwEzB;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAgmB3B;AAED;;;;;;GAMG;AACH,kCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC,CAoavC;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAC,SAAS,CAAC,CAmJrC;AA2FD;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAiE3B;AAED;;;;;;GAMG;AACH,mCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CAmPlB;AAED;;;;;;GAMG;AACH,uCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA+GlB;AAED;;;;;;GAMG;AACH,uCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA0BlB;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA0BlB;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CAyBlB;AAED;;;;;;GAMG;AACH,0CAJW,MAAM,WACN,MAAM,GACJ,MAAM,CAsBlB;AAED;;;;;;GAMG;AACH,mCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAoD3B;AAED;;;;;;GAMG;AACH,uCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA2C3B;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA0BlB;AAED;;;;;;GAMG;AACH,qCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA0I3B;AAED;;;;;;GAMG;AACH,qCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC,CAgKvC;AAED;;;;;;GAMG;AACH,mCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAoH3B;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA6C3B;AAED;;;;;;GAMG;AACH,iDAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAkU3B;AAED;;;;;;GAMG;AACH,mCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA8JlB;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA0P3B;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAC,SAAS,CAAC,CAkbrC;AAED;;;;;;;;;GASG;AACH,+CAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA2F3B;AAED;;;;;;GAMG;AACH,+CAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAgD3B;AA2FD;;;;;;GAMG;AACH,2CAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAmC3B;AAED;;;;;;;;;GASG;AACH,mCAPW,MAAM,sCAEN,MAAM,wBAGJ,MAAM,CAyClB;AAED;;;;;;GAMG;AACH,0CAJW,MAAM,EAAE,WACR,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAy7B3B;AAED;;;;;;GAMG;AACH,iCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAC,SAAS,CAAC,CAyWrC;AAED;;;;;;GAMG;AACH,gCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAyS3B;AAED;;;;;;;GAOG;AACH,gCALW,MAAM,eACN,MAAM,GACL,OAAO,CAAC;IAAE,KAAK,EAAE,MAAM,CAAA;CAAE,GAAG,SAAS,CAAC,CA0GjD"}
1
+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../lib/cli/index.js"],"names":[],"mappings":"AAg8BA;;;;;;;;;GASG;AACH,wCANW,MAAM,cACN,MAAM,OACN,MAAM,UACN,MAAM,GACJ,MAAM,EAAE,CAcpB;AA2bD;;;;;;;GAOG;AACH,mCALW,MAAM,WACN,MAAM,GAEJ,MAAM,CA8ElB;AAED;;;;;;GAMG;AACH,uCAJW,MAAM,WACN,MAAM,GACJ,MAAM,GAAC,SAAS,CAI5B;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,MAAM,GAAC,SAAS,CAwB5B;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAouC3B;AA4ID,0EA4/BC;AAgFD;;;;;;;;;;;GAWG;AACH,qDAHW,MAAM,GACJ,MAAM,GAAG,IAAI,CAwEzB;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAylB3B;AAED;;;;;;GAMG;AACH,kCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC,CAoavC;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAC,SAAS,CAAC,CAmJrC;AA2FD;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAiE3B;AAED;;;;;;GAMG;AACH,mCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CAmPlB;AAED;;;;;;GAMG;AACH,uCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA+GlB;AAED;;;;;;GAMG;AACH,uCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA0BlB;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA0BlB;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CAyBlB;AAED;;;;;;GAMG;AACH,0CAJW,MAAM,WACN,MAAM,GACJ,MAAM,CAsBlB;AAED;;;;;;GAMG;AACH,mCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAmE3B;AAED;;;;;;GAMG;AACH,uCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA2C3B;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA0BlB;AAED;;;;;;GAMG;AACH,qCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA0I3B;AAED;;;;;;GAMG;AACH,qCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC,CAgKvC;AAED;;;;;;GAMG;AACH,mCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAoH3B;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA6C3B;AAED;;;;;;GAMG;AACH,iDAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAkU3B;AAED;;;;;;GAMG;AACH,mCAJW,MAAM,WACN,MAAM,GACJ,MAAM,CA8JlB;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA0P3B;AAED;;;;;;GAMG;AACH,sCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAC,SAAS,CAAC,CAkbrC;AAED;;;;;;;;;GASG;AACH,+CAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA+F3B;AAED;;;;;;GAMG;AACH,oCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAyL3B;AAED;;;;;;GAMG;AACH,+CAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAoD3B;AA2FD;;;;;;GAMG;AACH,2CAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA+D3B;AAED;;;;;;;;;GASG;AACH,mCAPW,MAAM,sCAEN,MAAM,wBAGJ,MAAM,CAyClB;AAED;;;;;;GAMG;AACH,0CAJW,MAAM,EAAE,WACR,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAy9B3B;AAED;;;;;;GAMG;AACH,iCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,GAAC,SAAS,CAAC,CAmXrC;AAED;;;;;;GAMG;AACH,kCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAsB3B;AAED;;;;;;GAMG;AACH,gCAJW,MAAM,WACN,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CA8T3B;AAED;;;;;;;GAOG;AACH,gCALW,MAAM,eACN,MAAM,GACL,OAAO,CAAC;IAAE,KAAK,EAAE,MAAM,CAAA;CAAE,GAAG,SAAS,CAAC,CA+HjD"}
package/types/lib/evinser/evinser.d.ts CHANGED
@@ -82,18 +82,21 @@ export function catalogGradleDeps(dirPath: any, purlsJars: any, Namespaces: any)
82
82
  export function createAndStoreSlice(purl: any, purlsJars: any, Usages: any, options?: {}): Promise<any>;
83
83
  export function createSlice(purlOrLanguages: any, filePath: any, sliceType?: string, options?: {}): Promise<{
84
84
  tempDir?: undefined;
85
+ tempDirOwned?: undefined;
85
86
  slicesFile?: undefined;
86
87
  atomFile?: undefined;
87
88
  openapiSpecFile?: undefined;
88
89
  semanticsSlicesFile?: undefined;
89
90
  } | {
90
91
  tempDir: any;
92
+ tempDirOwned: boolean;
91
93
  slicesFile: any;
92
94
  atomFile?: undefined;
93
95
  openapiSpecFile?: undefined;
94
96
  semanticsSlicesFile?: undefined;
95
97
  } | {
96
98
  tempDir: any;
99
+ tempDirOwned: boolean;
97
100
  slicesFile: any;
98
101
  atomFile: any;
99
102
  openapiSpecFile: any;
@@ -120,6 +123,7 @@ export function analyzeProject(dbObjMap: Object, options: Object): Promise<{
120
123
  servicesMap: {};
121
124
  dataFlowFrames: {};
122
125
  tempDir: any;
126
+ tempDirOwned: any;
123
127
  userDefinedTypesMap: {};
124
128
  cryptoComponents: any[];
125
129
  cryptoGeneratePurls: {};
package/types/lib/evinser/evinser.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"evinser.d.ts","sourceRoot":"","sources":["../../../lib/evinser/evinser.js"],"names":[],"mappings":"AA8BA;;;;GAIG;AACH,mCAFW,MAAM;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;eAyDhB;AAED,6GAiDC;AAED,gGAkCC;AAED,wGAqBC;AAED;;;;;;;;;;;;;;;;;;GAuKC;AAED,6EAuBC;AAED;;;EA8BC;AAcD;;;;;GAKG;AACH,yCAHW,MAAM,WACN,MAAM;;;;;;;;;;;;;;GA4KhB;AAED,wLA8DC;AAED;;;;;;;;;;;GAWG;AACH,2CARW,MAAM,uBACN,MAAM,0BAEN,MAAM,mBACN,MAAM,kBACN,MAAM,iBAqOhB;AAED;;;;;;;GAOG;AACH,yFAHW,MAAM,GACJ,MAAM,CAiGlB;AAyBD,sGAyEC;AAED,wGAmCC;AAED;;;;;;GAMG;AACH,mDAJW,MAAM,8BAEN,MAAM,uBA6DhB;AAED;;;;;;GAMG;AACH,gDAJW,MAAM,wCAEN,MAAM,QAkDhB;AAED,yEAWC;AAED,gEAsFC;AAED;;;;;;GAMG;AACH,iDAJW,MAAM,WACN,MAAM,OA2KhB;AAED;;;;;;;;;;GAUG;AACH,gDAPW,MAAM,uBACN,MAAM,iBACN,MAAM,YACN,MAAM,oBACN,MAAM,kBACN,MAAM,eAoHhB;AAED;;;;;;;GAOG;AACH,kDAHW,MAAM,mBACN,MAAM;;;;;;;;;;;;;EA4FhB;AAED;;;;;GAKG;AACH,kDAaC;AAED;;;;;GAKG;AACH,2CAHW,MAAM,UAKhB;AAED,gGAiDC"}
1
+ {"version":3,"file":"evinser.d.ts","sourceRoot":"","sources":["../../../lib/evinser/evinser.js"],"names":[],"mappings":"AA+BA;;;;GAIG;AACH,mCAFW,MAAM;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;eAyDhB;AAED,6GAiDC;AAED,gGAkCC;AAED,wGAqBC;AAED;;;;;;;;;;;;;;;;;;;;;GA2KC;AAED,6EAuBC;AAED;;;EA8BC;AAcD;;;;;GAKG;AACH,yCAHW,MAAM,WACN,MAAM;;;;;;;;;;;;;;;GA6KhB;AAED,wLA8DC;AAED;;;;;;;;;;;GAWG;AACH,2CARW,MAAM,uBACN,MAAM,0BAEN,MAAM,mBACN,MAAM,kBACN,MAAM,iBAqOhB;AAED;;;;;;;GAOG;AACH,yFAHW,MAAM,GACJ,MAAM,CAiGlB;AAyBD,sGAyEC;AAED,wGAmCC;AAED;;;;;;GAMG;AACH,mDAJW,MAAM,8BAEN,MAAM,uBA6DhB;AAED;;;;;;GAMG;AACH,gDAJW,MAAM,wCAEN,MAAM,QAkDhB;AAED,yEAWC;AAED,gEAsFC;AAED;;;;;;GAMG;AACH,iDAJW,MAAM,WACN,MAAM,OA0KhB;AAED;;;;;;;;;;GAUG;AACH,gDAPW,MAAM,uBACN,MAAM,iBACN,MAAM,YACN,MAAM,oBACN,MAAM,kBACN,MAAM,eAoHhB;AAED;;;;;;;GAOG;AACH,kDAHW,MAAM,mBACN,MAAM;;;;;;;;;;;;;EA4FhB;AAED;;;;;GAKG;AACH,kDAaC;AAED;;;;;GAKG;AACH,2CAHW,MAAM,UAKhB;AAED,gGAiDC"}
package/types/lib/helpers/analyzer.d.ts CHANGED
@@ -1,4 +1,22 @@
1
+ export function analyzeSuspiciousJsSource(source: any): {
2
+ executionIndicators: any[];
3
+ indicators: any[];
4
+ networkIndicators: any[];
5
+ obfuscationIndicators: any[];
6
+ };
7
+ export function analyzeJsCapabilitiesSource(source: any): {
8
+ capabilities: string[];
9
+ hasDynamicFetch: boolean;
10
+ hasDynamicImport: boolean;
11
+ hasEval: boolean;
12
+ indicatorMap: {};
13
+ };
14
+ export function analyzeJsCryptoSource(source: any): {
15
+ algorithms: any[];
16
+ libraries: any[];
17
+ };
1
18
  export const CHROMIUM_EXTENSION_CAPABILITY_CATEGORIES: string[];
19
+ export const JS_CAPABILITY_CATEGORIES: string[];
2
20
  export function findJSImportsExports(src: any, deep: any): Promise<{
3
21
  allImports: {};
4
22
  allExports: {};
@@ -9,6 +27,21 @@ export function analyzeSuspiciousJsFile(filePath: string): {
9
27
  networkIndicators: string[];
10
28
  obfuscationIndicators: string[];
11
29
  };
30
+ export function analyzeJsCapabilitiesFile(filePath: any): {
31
+ capabilities: string[];
32
+ hasDynamicFetch: boolean;
33
+ hasDynamicImport: boolean;
34
+ hasEval: boolean;
35
+ indicatorMap: {};
36
+ };
37
+ export function analyzeJsCryptoFile(filePath: any): {
38
+ algorithms: any[];
39
+ libraries: any[];
40
+ };
41
+ export function detectJsCryptoInventory(src: any, deep?: boolean): Promise<{
42
+ algorithms: any[];
43
+ libraries: any[];
44
+ }>;
12
45
  export function detectExtensionCapabilities(src: string, deep?: boolean): {
13
46
  capabilities: string[];
14
47
  indicators: {
package/types/lib/helpers/analyzer.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"analyzer.d.ts","sourceRoot":"","sources":["../../../lib/helpers/analyzer.js"],"names":[],"mappings":"AAm4BA,gEAQE;AAmUK;;;GAiBN;AASM,kDAHI,MAAM,GACJ;IAAC,mBAAmB,EAAE,MAAM,EAAE,CAAC;IAAC,UAAU,EAAE,MAAM,EAAE,CAAC;IAAC,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAAC,qBAAqB,EAAE,MAAM,EAAE,CAAA;CAAC,CAe/H;AAWM,iDANI,MAAM,SACN,OAAO,GACL;IAAC,YAAY,EAAE,MAAM,EAAE,CAAC;IAAC,UAAU,EAAE;YAAO,MAAM,GAAE,MAAM,EAAE;KAAC,CAAA;CAAC,CAwF1E;AA68BM,8CAJI,MAAM,SACN,OAAO,GACL;IAAC,UAAU,EAAE,MAAM,EAAE,CAAC;IAAC,YAAY,EAAE,MAAM,EAAE,CAAC;IAAC,QAAQ,EAAE,MAAM,EAAE,CAAA;CAAC,CAsI9E;AASM,wCAJI,MAAM,SACN,OAAO,GACL;IAAC,UAAU,EAAE,MAAM,EAAE,CAAC;IAAC,YAAY,EAAE,MAAM,EAAE,CAAC;IAAC,QAAQ,EAAE,MAAM,EAAE,CAAA;CAAC,CAsqB9E"}
1
+ {"version":3,"file":"analyzer.d.ts","sourceRoot":"","sources":["../../../lib/helpers/analyzer.js"],"names":[],"mappings":"AA6yCA;;;;;EAyJC;AA8CD;;;;;;EAmOC;AAyRD;;;EAyaC;AAv7CD,gEAQE;AA4JF,gDAQE;AA6TK;;;GAiBN;AASM,kDAHI,MAAM,GACJ;IAAC,mBAAmB,EAAE,MAAM,EAAE,CAAC;IAAC,UAAU,EAAE,MAAM,EAAE,CAAC;IAAC,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAAC,qBAAqB,EAAE,MAAM,EAAE,CAAA;CAAC,CAe/H;AAuOM;;;;;;EAcN;AAorBM;;;EAQN;AAEM;;;GA+BN;AAWM,iDANI,MAAM,SACN,OAAO,GACL;IAAC,YAAY,EAAE,MAAM,EAAE,CAAC;IAAC,UAAU,EAAE;YAAO,MAAM,GAAE,MAAM,EAAE;KAAC,CAAA;CAAC,CAiK1E;AA68BM,8CAJI,MAAM,SACN,OAAO,GACL;IAAC,UAAU,EAAE,MAAM,EAAE,CAAC;IAAC,YAAY,EAAE,MAAM,EAAE,CAAC;IAAC,QAAQ,EAAE,MAAM,EAAE,CAAA;CAAC,CAsI9E;AASM,wCAJI,MAAM,SACN,OAAO,GACL;IAAC,UAAU,EAAE,MAAM,EAAE,CAAC;IAAC,YAAY,EAAE,MAAM,EAAE,CAAC;IAAC,QAAQ,EAAE,MAAM,EAAE,CAAA;CAAC,CA+uB9E"}
package/types/lib/helpers/analyzerScope.d.ts ADDED
@@ -0,0 +1,11 @@
1
+ export function toResolvedValueArray(value: any): any;
2
+ export function resolvedValueKey(value: any): string;
3
+ export function mergeResolvedValues(...values: any[]): any;
4
+ export function filterResolvedValues(value: any, predicate: any): any;
5
+ export function hasOnlyResolvedValues(value: any, predicate: any): any;
6
+ export function getStaticObjectProperty(objectValue: any, propertyName: any): any;
7
+ export function deriveStaticNarrowingsFromCondition(astNode: any, branchTaken: any, getLiteralStringValue: any): any;
8
+ export function resolveStaticValue(astNode: any, staticValueByName: any, getLiteralStringValue: any, getMemberExpressionPropertyName: any, depth?: number): any;
9
+ export function deriveStaticNarrowingsFromSwitchCase(switchCaseNode: any, switchStatementNode: any, staticValueByName: any, getLiteralStringValue: any, getMemberExpressionPropertyName: any): Map<any, any> | undefined;
10
+ export function getScopedStaticValueByName(path: any, staticValueByName: any, getLiteralStringValue: any, getMemberExpressionPropertyName: any): Map<any, any>;
11
+ //# sourceMappingURL=analyzerScope.d.ts.map
package/types/lib/helpers/analyzerScope.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"analyzerScope.d.ts","sourceRoot":"","sources":["../../../lib/helpers/analyzerScope.js"],"names":[],"mappings":"AAmCO,sDAQN;AAEM,qDAKN;AAEM,2DAiBN;AAEM,sEAIN;AAEM,uEAGN;AAaM,kFAYN;AAmEM,qHAsFN;AAEM,gKAiPN;AAgEM,yNAmFN;AAEM,+JA6DN"}
package/types/lib/helpers/asarutils.d.ts ADDED
@@ -0,0 +1,34 @@
1
+ export function readAsarArchiveHeaderSync(archivePath: any): {
2
+ archiveDataOffset: bigint;
3
+ header: any;
4
+ headerSize: any;
5
+ headerString: any;
6
+ };
7
+ export function listAsarEntries(archivePath: any): {
8
+ entries: any[];
9
+ archiveDataOffset: bigint;
10
+ header: any;
11
+ headerSize: any;
12
+ headerString: any;
13
+ };
14
+ export function rewriteExtractedArchivePaths(subject: any, extractedDir: any, archivePath: any): any;
15
+ /**
16
+ * Parse an Electron ASAR archive and emit inventory, metadata, and optional
17
+ * signing information.
18
+ *
19
+ * @param {string} archivePath Absolute or relative path to an ASAR archive
20
+ * @param {Object} [options={}] Parse options
21
+ * @param {string} [options.asarVirtualPath] Virtual archive identity to use in
22
+ * BOM references and evidence for nested ASAR recursion
23
+ * @param {number} [options.specVersion] CycloneDX spec version used to choose
24
+ * compatible component types
25
+ * @returns {Promise<Object>} Parsed archive analysis result
26
+ */
27
+ export function parseAsarArchive(archivePath: string, options?: {
28
+ asarVirtualPath?: string | undefined;
29
+ specVersion?: number | undefined;
30
+ }): Promise<Object>;
31
+ export function extractAsarToTempDir(archivePath: any): Promise<any>;
32
+ export function cleanupAsarTempDir(tempDir: any): void;
33
+ export function buildAsarExtractionSummary(archiveAnalysis: any, extractionPerformed: any): any[];
34
+ //# sourceMappingURL=asarutils.d.ts.map
package/types/lib/helpers/asarutils.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"asarutils.d.ts","sourceRoot":"","sources":["../../../lib/helpers/asarutils.js"],"names":[],"mappings":"AA+PA;;;;;EA+CC;AAED;;;;;;EAwCC;AAgYD,qGAmDC;AAyYD;;;;;;;;;;;GAWG;AACH,8CARW,MAAM,YAEd;IAAyB,eAAe;IAEf,WAAW;CAEpC,GAAU,OAAO,CAAC,MAAM,CAAC,CAyM3B;AAuGD,qEA6BC;AAED,uDAYC;AAED,kGAwBC"}
package/types/lib/helpers/auditCategories.d.ts CHANGED
@@ -6,7 +6,12 @@ export function validateBomAuditCategories(categories: any, rules: any): {
6
6
  expandedCategories: any[];
7
7
  validCategories: any[];
8
8
  };
9
+ export const HBOM_AUDIT_CATEGORIES: readonly string[];
10
+ export const HOST_TOPOLOGY_AUDIT_CATEGORIES: readonly string[];
11
+ export const DEFAULT_HBOM_AUDIT_CATEGORIES: string;
9
12
  export const BOM_AUDIT_CATEGORY_ALIASES: Readonly<{
10
13
  "ai-inventory": string[];
14
+ hbom: string[];
15
+ host: string[];
11
16
  }>;
12
17
  //# sourceMappingURL=auditCategories.d.ts.map
package/types/lib/helpers/auditCategories.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"auditCategories.d.ts","sourceRoot":"","sources":["../../../lib/helpers/auditCategories.js"],"names":[],"mappings":"AAQA,oEAeC;AAED,iEAWC;AAED,+DAIC;AAUD;;;;EAuBC;AA3ED;;GAEG"}
1
+ {"version":3,"file":"auditCategories.d.ts","sourceRoot":"","sources":["../../../lib/helpers/auditCategories.js"],"names":[],"mappings":"AAoBA,oEAeC;AAED,iEAWC;AAED,+DAIC;AAUD;;;;EAuBC;AAvFD,sDAIG;AAEH,+DAA+E;AAE/E,mDAA6E;AAE7E;;;;GAIG"}
package/types/lib/helpers/cbomutils.d.ts CHANGED
@@ -5,11 +5,12 @@
5
5
  * @returns osPkgsList Array of OS crypto packages
6
6
  */
7
7
  export function collectOSCryptoLibs(options: Object): any[];
8
+ export function collectSourceCryptoComponents(src: any, options?: {}): Promise<any[]>;
8
9
  /**
9
10
  * Find crypto algorithm in the given code snippet
10
11
  *
11
- * @param {String} Code snippet
12
+ * @param {string} code Code snippet
12
13
  * @returns {Array} Arary of crypto algorithm objects with oid and description
13
14
  */
14
- export function findCryptoAlgos(code: any): any[];
15
+ export function findCryptoAlgos(code: string): any[];
15
16
  //# sourceMappingURL=cbomutils.d.ts.map
package/types/lib/helpers/cbomutils.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"cbomutils.d.ts","sourceRoot":"","sources":["../../../lib/helpers/cbomutils.js"],"names":[],"mappings":"AAaA;;;;;GAKG;AACH,6CAHW,MAAM,SA2BhB;AAMD;;;;;GAKG;AACH,kDAaC"}
1
+ {"version":3,"file":"cbomutils.d.ts","sourceRoot":"","sources":["../../../lib/helpers/cbomutils.js"],"names":[],"mappings":"AAkBA;;;;;GAKG;AACH,6CAHW,MAAM,SA2BhB;AAiOD,sFA4CC;AAED;;;;;GAKG;AACH,sCAHW,MAAM,SAgBhB"}
package/types/lib/helpers/display.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"display.d.ts","sourceRoot":"","sources":["../../../lib/helpers/display.js"],"names":[],"mappings":"AA+HA;;;;;;;;;EAoBC;AAED,wGA4BC;AA6BD;;;;;;;;;;GAUG;AACH,oCANW,MAAM,gBACN,MAAM,EAAE,cACR,MAAM,gBACN,MAAM,GACJ,IAAI,CA4EhB;AAQD;;;;;GAKG;AACH,sCAHW,MAAM,GACJ,IAAI,CAsBhB;AACD;;;;;;GAMG;AACH,uCAHW,MAAM,GACJ,IAAI,CAwBhB;AAED;;;;;GAKG;AACH,0CAHW,MAAM,GACJ,IAAI,CAuBhB;AAeD;;;;;;GAMG;AACH,0CAHW,MAAM,GACJ,IAAI,CAwChB;AAED;;;;;;GAMG;AACH,wCAHW,MAAM,GACJ,IAAI,CA4ChB;AACD;;;;;;;;GAQG;AACH,6CALW,MAAM,SACN,MAAM,cACN,MAAM,GACJ,IAAI,CAoChB;AAoMD;;;;;;GAMG;AACH,gDAHW,MAAM,GACJ,IAAI,CAoChB;AAED;;;;;GAKG;AACH,sDAHW,MAAM,EAAE,GACN,IAAI,CA4BhB;AAED;;;;;;;GAOG;AACH,4CAHW,MAAM,GACJ,IAAI,CAsBhB;AAED;;;;;;GAMG;AACH,sCAHW,MAAM,GACJ,IAAI,CAkDhB;AAED,mEAiHC;AAgED;;;;;GAKG;AACH,iEAHW,eAAe,EAAE,GACf,IAAI,CA+BhB;AAED;;;;;;;;GAQG;AACH,iDALW,MAAM,UACN,MAAM,WACN,MAAM,oBACN,eAAe,EAAE,QAsU3B;AA11CM,gDANI,MAAM,eACN,MAAM,EAAE,GAAC,SAAS,eAClB,MAAM,GAAC,SAAS,6BAChB,MAAM,GACJ,MAAM,EAAE,CA+BpB;AAQM,6DAHI,MAAM,EAAE,GACN,MAAM,EAAE,CAcpB;AAyjBM,uDAJI,MAAM,EAAE,SACR,MAAM,GACJ,MAAM,EAAE,CAyCpB;8BA0RY;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAC"}
1
+ {"version":3,"file":"display.d.ts","sourceRoot":"","sources":["../../../lib/helpers/display.js"],"names":[],"mappings":"AAmZA;;;;;;;;;EAoBC;AAED,wGA4BC;AA6BD;;;;;;;;;;GAUG;AACH,oCANW,MAAM,gBACN,MAAM,EAAE,cACR,MAAM,gBACN,MAAM,GACJ,IAAI,CA+EhB;AAQD;;;;;GAKG;AACH,sCAHW,MAAM,GACJ,IAAI,CAsBhB;AACD;;;;;;GAMG;AACH,uCAHW,MAAM,GACJ,IAAI,CAwBhB;AAED;;;;;GAKG;AACH,0CAHW,MAAM,GACJ,IAAI,CAuBhB;AA0BD;;;;;;GAMG;AACH,0CAHW,MAAM,GACJ,IAAI,CAwChB;AAED;;;;;;GAMG;AACH,wCAHW,MAAM,GACJ,IAAI,CA4ChB;AACD;;;;;;;;GAQG;AACH,6CALW,MAAM,SACN,MAAM,cACN,MAAM,GACJ,IAAI,CAoChB;AAoMD;;;;;;GAMG;AACH,gDAHW,MAAM,GACJ,IAAI,CAoChB;AAED;;;;;GAKG;AACH,sDAHW,MAAM,EAAE,GACN,IAAI,CA4BhB;AAED;;;;;;;GAOG;AACH,4CAHW,MAAM,GACJ,IAAI,CAsBhB;AAED;;;;;;GAMG;AACH,sCAHW,MAAM,GACJ,IAAI,CAkDhB;AAED,mEAiHC;AAgED;;;;;GAKG;AACH,iEAHW,eAAe,EAAE,GACf,IAAI,CA+BhB;AAED;;;;;;;;GAQG;AACH,iDALW,MAAM,UACN,MAAM,WACN,MAAM,oBACN,eAAe,EAAE,QAsU3B;AApnDM,gDANI,MAAM,eACN,MAAM,EAAE,GAAC,SAAS,eAClB,MAAM,GAAC,SAAS,6BAChB,MAAM,GACJ,MAAM,EAAE,CA2FpB;AAwNM,6DAHI,MAAM,EAAE,GACN,MAAM,EAAE,CAcpB;AAukBM,uDAJI,MAAM,EAAE,SACR,MAAM,GACJ,MAAM,EAAE,CAyCpB;8BA0RY;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAC"}
package/types/lib/helpers/evidenceUtils.d.ts ADDED
@@ -0,0 +1,8 @@
1
+ export function createOccurrenceEvidence(location: any, details?: {}): {
2
+ location: string;
3
+ } | undefined;
4
+ export function parseOccurrenceEvidenceLocation(location: any, details?: {}): {
5
+ location: string;
6
+ } | undefined;
7
+ export function formatOccurrenceEvidence(occurrence: any): any;
8
+ //# sourceMappingURL=evidenceUtils.d.ts.map
package/types/lib/helpers/evidenceUtils.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"evidenceUtils.d.ts","sourceRoot":"","sources":["../../../lib/helpers/evidenceUtils.js"],"names":[],"mappings":"AAAA;;cAcC;AAED;;cA4BC;AAED,+DAWC"}
package/types/lib/helpers/exportUtils.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"exportUtils.d.ts","sourceRoot":"","sources":["../../../lib/helpers/exportUtils.js"],"names":[],"mappings":"AAYA;;;;;GAKG;AACH,+CAHW,MAAM,GAAC,MAAM,EAAE,GAAC,SAAS,GAAC,IAAI,GAC5B,MAAM,EAAE,CAoBpB;AAED;;;;;GAKG;AACH,iDAHW,MAAM,GACJ,MAAM,CAgBlB;AAED;;;;;GAKG;AACH,sDAHW,MAAM,GACJ,MAAM,CAUlB;AAED;;;;;GAKG;AACH,0CAHW,MAAM,GACJ;IAAE,OAAO,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAAC,cAAc,EAAE,OAAO,CAAA;CAAE,CAgC9F;AAED;;;;;GAKG;AACH,+CAHW,MAAM,GACJ,MAAM,CAIlB"}
1
+ {"version":3,"file":"exportUtils.d.ts","sourceRoot":"","sources":["../../../lib/helpers/exportUtils.js"],"names":[],"mappings":"AAYA;;;;;GAKG;AACH,+CAHW,MAAM,GAAC,MAAM,EAAE,GAAC,SAAS,GAAC,IAAI,GAC5B,MAAM,EAAE,CAoBpB;AAED;;;;;GAKG;AACH,iDAHW,MAAM,GACJ,MAAM,CAyBlB;AAED;;;;;GAKG;AACH,sDAHW,MAAM,GACJ,MAAM,CAUlB;AAED;;;;;GAKG;AACH,0CAHW,MAAM,GACJ;IAAE,OAAO,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAAC,cAAc,EAAE,OAAO,CAAA;CAAE,CAgC9F;AAED;;;;;GAKG;AACH,+CAHW,MAAM,GACJ,MAAM,CAIlB"}
package/types/lib/helpers/gtfobins.d.ts CHANGED
@@ -14,4 +14,12 @@ export function createGtfoBinsProperties(name: any, linkedName: any): {
14
14
  name: string;
15
15
  value: any;
16
16
  }[];
17
+ /**
18
+ * Resolve GTFOBins properties for a live Linux osquery row.
19
+ *
20
+ * @param {string} queryCategory Osquery query category
21
+ * @param {object} row Osquery row
22
+ * @returns {Array<object>} CycloneDX custom properties
23
+ */
24
+ export function createGtfoBinsPropertiesFromRow(queryCategory: string, row: object): Array<object>;
17
25
  //# sourceMappingURL=gtfobins.d.ts.map
package/types/lib/helpers/gtfobins.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"gtfobins.d.ts","sourceRoot":"","sources":["../../../lib/helpers/gtfobins.js"],"names":[],"mappings":"AAmHA;;;;;;;;;;;cAsCC;AAED;;;IAiCC"}
1
+ {"version":3,"file":"gtfobins.d.ts","sourceRoot":"","sources":["../../../lib/helpers/gtfobins.js"],"names":[],"mappings":"AAwJA;;;;;;;;;;;cAsCC;AAED;;;IAiCC;AAED;;;;;;GAMG;AACH,+DAJW,MAAM,OACN,MAAM,GACJ,KAAK,CAAC,MAAM,CAAC,CA0FzB"}
package/types/lib/helpers/hbom.d.ts ADDED
@@ -0,0 +1,49 @@
1
+ /**
2
+ * Determine whether the supplied project types include HBOM.
3
+ *
4
+ * @param {string|string[]|undefined|null} projectTypes Project types.
5
+ * @returns {boolean} True when HBOM is requested.
6
+ */
7
+ export function hasHbomProjectType(projectTypes: string | string[] | undefined | null): boolean;
8
+ /**
9
+ * Determine whether the supplied project types are exclusively HBOM-oriented.
10
+ *
11
+ * @param {string|string[]|undefined|null} projectTypes Project types.
12
+ * @returns {boolean} True when at least one project type is supplied and all are HBOM-oriented.
13
+ */
14
+ export function isHbomOnlyProjectTypes(projectTypes: string | string[] | undefined | null): boolean;
15
+ /**
16
+ * Reject mixed HBOM and non-HBOM project types.
17
+ *
18
+ * @param {string|string[]|undefined|null} projectTypes Project types.
19
+ */
20
+ export function ensureNoMixedHbomProjectTypes(projectTypes: string | string[] | undefined | null): void;
21
+ /**
22
+ * Ensure HBOM generation uses the supported CycloneDX version.
23
+ *
24
+ * @param {number|string|undefined|null} specVersion Requested spec version.
25
+ */
26
+ export function ensureSupportedHbomSpecVersion(specVersion: number | string | undefined | null): void;
27
+ /**
28
+ * Ensure merged HBOM + runtime collection has access to osquery.
29
+ *
30
+ * @param {object} [options={}] CLI options.
31
+ * @param {string} [commandName="hbom"] Invoked command name for tailored guidance.
32
+ */
33
+ export function ensureHbomRuntimeSupport(options?: object, commandName?: string): void;
34
+ /**
35
+ * Translate cdxgen CLI options to cdx-hbom collector options.
36
+ *
37
+ * @param {object} [options={}] CLI options.
38
+ * @returns {object} cdx-hbom collector options.
39
+ */
40
+ export function normalizeHbomOptions(options?: object): object;
41
+ export function addHbomAnalysisProperties(bomJson: any): any;
42
+ /**
43
+ * Generate an HBOM using the optional cdx-hbom package.
44
+ *
45
+ * @param {object} [options={}] CLI options.
46
+ * @returns {Promise<object>} CycloneDX HBOM document.
47
+ */
48
+ export function createHbomDocument(options?: object): Promise<object>;
49
+ //# sourceMappingURL=hbom.d.ts.map
package/types/lib/helpers/hbom.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"hbom.d.ts","sourceRoot":"","sources":["../../../lib/helpers/hbom.js"],"names":[],"mappings":"AAwSA;;;;;GAKG;AACH,iDAHW,MAAM,GAAC,MAAM,EAAE,GAAC,SAAS,GAAC,IAAI,GAC5B,OAAO,CAMnB;AAED;;;;;GAKG;AACH,qDAHW,MAAM,GAAC,MAAM,EAAE,GAAC,SAAS,GAAC,IAAI,GAC5B,OAAO,CAUnB;AAED;;;;GAIG;AACH,4DAFW,MAAM,GAAC,MAAM,EAAE,GAAC,SAAS,GAAC,IAAI,QAkBxC;AAED;;;;GAIG;AACH,4DAFW,MAAM,GAAC,MAAM,GAAC,SAAS,GAAC,IAAI,QAStC;AAED;;;;;GAKG;AACH,mDAHW,MAAM,gBACN,MAAM,QAqBhB;AAED;;;;;GAKG;AACH,+CAHW,MAAM,GACJ,MAAM,CA2BlB;AA8GD,6DA4HC;AAED;;;;;GAKG;AACH,6CAHW,MAAM,GACJ,OAAO,CAAC,MAAM,CAAC,CAiC3B"}
package/types/lib/helpers/hbomAnalysis.d.ts ADDED
@@ -0,0 +1,62 @@
1
+ export function getHbomCommandDiagnostics(bomJson: any): any;
2
+ export function getHbomCommandDiagnosticSummary(bomJson: any): {
3
+ actionableDiagnosticCount: any;
4
+ commandDiagnosticCount: any;
5
+ commandDiagnostics: any;
6
+ commandErrorCount: any;
7
+ diagnosticIssues: string[];
8
+ installHints: string[];
9
+ missingCommandCount: any;
10
+ missingCommands: string[];
11
+ partialSupportCount: any;
12
+ permissionDeniedCommands: string[];
13
+ permissionDeniedCount: any;
14
+ privilegeHints: string[];
15
+ requiresPrivilegedEnrichment: boolean;
16
+ timeoutCount: any;
17
+ };
18
+ export function isHbomLikeBom(bomJson: any): any;
19
+ export function getHbomHardwareClass(component: any): any;
20
+ export function getHbomHardwareClassCounts(components?: any[]): {
21
+ hardwareClass: any;
22
+ count: any;
23
+ }[];
24
+ export function formatHbomHardwareClassSummary(hardwareClassCounts?: any[]): string;
25
+ export function getHbomSummary(bomJson: any): {
26
+ actionableDiagnosticCount: any;
27
+ architecture: any;
28
+ collectorProfile: any;
29
+ commandDiagnosticCount: any;
30
+ commandDiagnostics: any;
31
+ commandErrorCount: any;
32
+ componentCount: any;
33
+ diagnosticIssues: string[];
34
+ evidenceCommandCount: any;
35
+ evidenceCommands: any;
36
+ evidenceFileCount: any;
37
+ evidenceFiles: any;
38
+ hardwareClassCount: number;
39
+ hardwareClassCounts: {
40
+ hardwareClass: any;
41
+ count: any;
42
+ }[];
43
+ identifierPolicy: any;
44
+ installHints: string[];
45
+ manufacturer: any;
46
+ metadataName: any;
47
+ metadataType: any;
48
+ missingCommandCount: any;
49
+ missingCommands: string[];
50
+ partialSupportCount: any;
51
+ platform: any;
52
+ permissionDeniedCommands: string[];
53
+ permissionDeniedCount: any;
54
+ privilegeHints: string[];
55
+ requiresPrivilegedEnrichment: boolean;
56
+ timeoutCount: any;
57
+ topHardwareClasses: {
58
+ hardwareClass: any;
59
+ count: any;
60
+ }[];
61
+ };
62
+ //# sourceMappingURL=hbomAnalysis.d.ts.map
package/types/lib/helpers/hbomAnalysis.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"hbomAnalysis.d.ts","sourceRoot":"","sources":["../../../lib/helpers/hbomAnalysis.js"],"names":[],"mappings":"AAqCA,6DAIC;AAED;;;;;;;;;;;;;;;EA6DC;AAED,iDA2BC;AAED,0DAEC;AAED;;;IAgBC;AAED,oFAKC;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAyEC"}
package/types/lib/helpers/hbomLoader.d.ts ADDED
@@ -0,0 +1,7 @@
1
+ /**
2
+ * Resolve the optional cdx-hbom module.
3
+ *
4
+ * @returns {Promise<object>} Loaded cdx-hbom module namespace.
5
+ */
6
+ export function importHbomModule(): Promise<object>;
7
+ //# sourceMappingURL=hbomLoader.d.ts.map
package/types/lib/helpers/hbomLoader.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"hbomLoader.d.ts","sourceRoot":"","sources":["../../../lib/helpers/hbomLoader.js"],"names":[],"mappings":"AAUA;;;;GAIG;AACH,oCAFa,OAAO,CAAC,MAAM,CAAC,CAqB3B"}
package/types/lib/helpers/hostTopology.d.ts ADDED
@@ -0,0 +1,12 @@
1
+ export function isMergedHostViewBom(bomJson: any): any;
2
+ export function getHostViewSummary(bomJson: any): {
3
+ linkedHardwareComponentCount: number;
4
+ linkedRuntimeCategories: any;
5
+ mode: any;
6
+ runtimeAnchorCount: number;
7
+ runtimeComponentCount: number;
8
+ topologyLinkCount: number;
9
+ };
10
+ export function applyHostInventoryTopology(bomJson: any): any;
11
+ export function mergeHostInventoryBoms(hbomJson: any, obomData: any): any;
12
+ //# sourceMappingURL=hostTopology.d.ts.map
package/types/lib/helpers/hostTopology.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"hostTopology.d.ts","sourceRoot":"","sources":["../../../lib/helpers/hostTopology.js"],"names":[],"mappings":"AAsmBA,uDAQC;AAED;;;;;;;EAwBC;AAYD,8DA8EC;AAED,0EAwDC"}
package/types/lib/helpers/inventoryStats.d.ts ADDED
@@ -0,0 +1,11 @@
1
+ export function getPropertyValue(propertiesOrObject: any, propertyName: any): any;
2
+ export function getUnpackagedExecutableComponents(components?: any[]): any[];
3
+ export function getUnpackagedSharedLibraryComponents(components?: any[]): any[];
4
+ export function getSourceDerivedCryptoComponents(components?: any[]): any[];
5
+ export function getContainerFileInventoryStats(components?: any[]): {
6
+ unpackagedExecutables: any[];
7
+ unpackagedSharedLibraries: any[];
8
+ unpackagedExecutableCount: number;
9
+ unpackagedSharedLibraryCount: number;
10
+ };
11
+ //# sourceMappingURL=inventoryStats.d.ts.map
package/types/lib/helpers/inventoryStats.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"inventoryStats.d.ts","sourceRoot":"","sources":["../../../lib/helpers/inventoryStats.js"],"names":[],"mappings":"AAUA,kFAIC;AAkBD,6EAMC;AAED,gFAMC;AAED,4EAQC;AAED;;;;;EAUC"}
package/types/lib/helpers/lolbas.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"lolbas.d.ts","sourceRoot":"","sources":["../../../lib/helpers/lolbas.js"],"names":[],"mappings":"AA2IA;;;;;GAKG;AACH,6CAHW,MAAM,GACJ,MAAM,GAAC,SAAS,CAqB5B;AAED;;;;;;GAMG;AACH,sDAJW,MAAM,OACN,MAAM,GACJ,KAAK,CAAC,MAAM,CAAC,CA+FzB"}
1
+ {"version":3,"file":"lolbas.d.ts","sourceRoot":"","sources":["../../../lib/helpers/lolbas.js"],"names":[],"mappings":"AA2JA;;;;;GAKG;AACH,6CAHW,MAAM,GACJ,MAAM,GAAC,SAAS,CAqB5B;AAED;;;;;;GAMG;AACH,sDAJW,MAAM,OACN,MAAM,GACJ,KAAK,CAAC,MAAM,CAAC,CAiGzB"}
package/types/lib/helpers/osqueryTransform.d.ts CHANGED
@@ -3,5 +3,8 @@ export function deriveOsQueryName(res: any, singleResult: any, queryName: any):
3
3
  export function deriveOsQueryPublisher(res: any): any;
4
4
  export function deriveOsQueryDescription(res: any): any;
5
5
  export function sanitizeOsQueryIdentity(value: any): string;
6
+ export function sanitizeOsQueryBomRefValue(value: any, fallback?: string): string;
7
+ export function createOsQueryFallbackBomRef(queryCategory: any, componentType: any, name: any, version: any, identityField: any, identityValue: any): string;
8
+ export function shouldCreateOsQueryPurl(componentType: any): boolean;
6
9
  export function createOsQueryPurl(purlType: any, group: any, name: any, version: any, qualifiers: any, subpath: any): string;
7
10
  //# sourceMappingURL=osqueryTransform.d.ts.map
package/types/lib/helpers/osqueryTransform.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"osqueryTransform.d.ts","sourceRoot":"","sources":["../../../lib/helpers/osqueryTransform.js"],"names":[],"mappings":"AAEA,oDAWC;AAED,oFAgBC;AAED,sDASC;AAED,wDAaC;AAED,4DAMC;AAED,6HAgBC"}
1
+ {"version":3,"file":"osqueryTransform.d.ts","sourceRoot":"","sources":["../../../lib/helpers/osqueryTransform.js"],"names":[],"mappings":"AAEA,oDAWC;AAED,oFAgBC;AAED,sDASC;AAED,wDAaC;AAED,4DAMC;AAED,kFASC;AAED,6JA4BC;AAED,qEAIC;AAED,6HAgBC"}
package/types/lib/helpers/plugins.d.ts ADDED
@@ -0,0 +1,58 @@
1
+ /**
2
+ * Determine the normalized plugin target tuple for the current runtime.
3
+ *
4
+ * @returns {{arch: string, extn: string, platform: string, pluginsBinSuffix: string}}
5
+ */
6
+ export function getPluginsBinTarget(): {
7
+ arch: string;
8
+ extn: string;
9
+ platform: string;
10
+ pluginsBinSuffix: string;
11
+ };
12
+ /**
13
+ * Resolve the cdxgen companion plugins directory for the current runtime.
14
+ *
15
+ * @returns {{
16
+ * arch: string,
17
+ * extn: string,
18
+ * extraNMBinPath: string|undefined,
19
+ * platform: string,
20
+ * pluginManifestFile: string|undefined,
21
+ * pluginVersion: string|undefined,
22
+ * pluginsBinSuffix: string,
23
+ * pluginsDir: string,
24
+ * }}
25
+ */
26
+ export function resolveCdxgenPlugins(): {
27
+ arch: string;
28
+ extn: string;
29
+ extraNMBinPath: string | undefined;
30
+ platform: string;
31
+ pluginManifestFile: string | undefined;
32
+ pluginVersion: string | undefined;
33
+ pluginsBinSuffix: string;
34
+ pluginsDir: string;
35
+ };
36
+ /**
37
+ * Retrieve the default plugin runtime, recomputing it only when the
38
+ * environment that influences plugin discovery changes.
39
+ *
40
+ * @returns {ReturnType<typeof resolveCdxgenPlugins>} The resolved plugin runtime.
41
+ */
42
+ export function getDefaultPluginRuntime(): ReturnType<typeof resolveCdxgenPlugins>;
43
+ /**
44
+ * Add the detected node_modules binary directory to PATH when present.
45
+ *
46
+ * @param {ReturnType<typeof resolveCdxgenPlugins>} [pluginRuntime] Detected plugin runtime.
47
+ * @returns {ReturnType<typeof resolveCdxgenPlugins>} The resolved plugin runtime.
48
+ */
49
+ export function setPluginsPathEnv(pluginRuntime?: ReturnType<typeof resolveCdxgenPlugins>): ReturnType<typeof resolveCdxgenPlugins>;
50
+ /**
51
+ * Resolve a known plugin binary path, honoring explicit environment overrides.
52
+ *
53
+ * @param {string} toolName Tool identifier.
54
+ * @param {ReturnType<typeof resolveCdxgenPlugins>} [pluginRuntime] Detected plugin runtime.
55
+ * @returns {string|undefined} Resolved binary path or configured override.
56
+ */
57
+ export function resolvePluginBinary(toolName: string, pluginRuntime?: ReturnType<typeof resolveCdxgenPlugins>): string | undefined;
58
+ //# sourceMappingURL=plugins.d.ts.map
package/types/lib/helpers/plugins.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"plugins.d.ts","sourceRoot":"","sources":["../../../lib/helpers/plugins.js"],"names":[],"mappings":"AA0BA;;;;GAIG;AACH,uCAFa;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,gBAAgB,EAAE,MAAM,CAAA;CAAC,CAgCpF;AAED;;;;;;;;;;;;;GAaG;AACH,wCAXa;IACR,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,cAAc,EAAE,MAAM,GAAC,SAAS,CAAC;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,kBAAkB,EAAE,MAAM,GAAC,SAAS,CAAC;IACrC,aAAa,EAAE,MAAM,GAAC,SAAS,CAAC;IAChC,gBAAgB,EAAE,MAAM,CAAC;IACzB,UAAU,EAAE,MAAM,CAAC;CACpB,CAqKH;AAYD;;;;;GAKG;AACH,2CAFa,UAAU,CAAC,OAAO,oBAAoB,CAAC,CASnD;AAED;;;;;GAKG;AACH,kDAHW,UAAU,CAAC,OAAO,oBAAoB,CAAC,GACrC,UAAU,CAAC,OAAO,oBAAoB,CAAC,CAWnD;AAoDD;;;;;;GAMG;AACH,8CAJW,MAAM,kBACN,UAAU,CAAC,OAAO,oBAAoB,CAAC,GACrC,MAAM,GAAC,SAAS,CAS5B"}
package/types/lib/helpers/protobom.d.ts CHANGED
@@ -1,5 +1,4 @@
1
- export function writeBinary(bomJson: string | Object, binFile: string): void;
2
- export function readBinary(binFile: string, asJson?: boolean, specVersion?: number): cdx_17.Bom | cdx_16.Bom | import("@bufbuild/protobuf").JsonValue | undefined;
3
- import { cdx_17 } from "@appthreat/cdx-proto";
4
- import { cdx_16 } from "@appthreat/cdx-proto";
1
+ export function isProtoBomFile(filePath: string): boolean;
2
+ export function writeBinary(bomJson: string | Object, binFile: string, specVersion?: string | number): void;
3
+ export function readBinary(binFile: string, asJson: boolean, specVersion?: string | number): any;
5
4
  //# sourceMappingURL=protobom.d.ts.map
package/types/lib/helpers/protobom.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"protobom.d.ts","sourceRoot":"","sources":["../../../lib/helpers/protobom.js"],"names":[],"mappings":"AA+BO,qCAHI,MAAM,GAAG,MAAM,WACf,MAAM,QAuBhB;AASM,oCAJI,MAAM,WACN,OAAO,gBACP,MAAM,gFAmBhB;uBA5E8B,sBAAsB;uBAAtB,sBAAsB"}
1
+ {"version":3,"file":"protobom.d.ts","sourceRoot":"","sources":["../../../lib/helpers/protobom.js"],"names":[],"mappings":"AA+IO,yCAHI,MAAM,GACJ,OAAO,CAOnB;AASM,qCAJI,MAAM,GAAG,MAAM,WACf,MAAM,gBACN,MAAM,GAAG,MAAM,QAWzB;AASM,oCAJI,MAAM,UACN,OAAO,gBACP,MAAM,GAAG,MAAM,OAgBzB"}
package/types/lib/helpers/remote/dependency-track.d.ts CHANGED
@@ -1,10 +1,17 @@
1
1
  /**
2
- * Returns the Dependency-Track BOM API URL.
2
+ * Returns the Dependency-Track BOM API URL as a sanitized URL object.
3
3
  *
4
4
  * @param {string} serverUrl Dependency-Track server URL
5
- * @returns {string} API URL to submit BOM payload
5
+ * @returns {URL | undefined} API URL to submit BOM payload
6
6
  */
7
- export function getDependencyTrackBomUrl(serverUrl: string): string;
7
+ export function getDependencyTrackBomApiUrl(serverUrl: string): URL | undefined;
8
+ /**
9
+ * Returns the Dependency-Track BOM API URL string.
10
+ *
11
+ * @param {string} serverUrl Dependency-Track server URL
12
+ * @returns {string | undefined} API URL to submit BOM payload
13
+ */
14
+ export function getDependencyTrackBomUrl(serverUrl: string): string | undefined;
8
15
  /**
9
16
  * Build the payload for Dependency-Track BOM submission.
10
17
  *
package/types/lib/helpers/remote/dependency-track.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"dependency-track.d.ts","sourceRoot":"","sources":["../../../../lib/helpers/remote/dependency-track.js"],"names":[],"mappings":"AAEA;;;;;GAKG;AACH,oDAHW,MAAM,GACJ,MAAM,CAIlB;AAED;;;;;;GAMG;AACH,qDAJW,MAAM,eACN,MAAM,GACJ,MAAM,GAAG,SAAS,CAkE9B"}
1
+ {"version":3,"file":"dependency-track.d.ts","sourceRoot":"","sources":["../../../../lib/helpers/remote/dependency-track.js"],"names":[],"mappings":"AAIA;;;;;GAKG;AACH,uDAHW,MAAM,GACJ,GAAG,GAAG,SAAS,CAyB3B;AAED;;;;;GAKG;AACH,oDAHW,MAAM,GACJ,MAAM,GAAG,SAAS,CAI9B;AAED;;;;;;GAMG;AACH,qDAJW,MAAM,eACN,MAAM,GACJ,MAAM,GAAG,SAAS,CAkE9B"}