@datadog/datadog-ci-plugin-sbom 3.21.0 → 3.21.2

package/dist/api.d.ts

@@ -0,0 +1,7 @@
+import type { AxiosPromise, AxiosResponse } from 'axios';
+import { ScaRequest } from './types';
+/**
+ * Get the function to upload our results to the intake.
+ * @param apiKey
+ */
+export declare const getApiHelper: (apiKey: string, appKey: string) => (scaRequest: ScaRequest) => AxiosPromise<AxiosResponse>;

package/dist/api.js

@@ -0,0 +1,54 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getApiHelper = void 0;
+const constants_1 = require("@datadog/datadog-ci-base/constants");
+const app_1 = require("@datadog/datadog-ci-base/helpers/app");
+const utils_1 = require("@datadog/datadog-ci-base/helpers/utils");
+const constants_2 = require("./constants");
+const maxBodyLength = Infinity;
+/**
+ * Get the function to upload our results to the intake.
+ * @param apiKey
+ */
+const getApiHelper = (apiKey, appKey) => {
+    /**
+     * function used to marshall and send the data
+     * @param request - the AXIOS element used to send the request
+     */
+    const uploadSBomPayload = (request) => (scaPayload) => __awaiter(void 0, void 0, void 0, function* () {
+        // Make sure we follow the API signature
+        const payload = {
+            data: {
+                type: 'scarequests',
+                attributes: scaPayload,
+            },
+        };
+        return request({
+            data: JSON.stringify(payload),
+            headers: {
+                [constants_1.CONTENT_TYPE_HEADER]: constants_1.CONTENT_TYPE_VALUE_JSON,
+                'DD-EVP-ORIGIN': 'datadog-ci',
+                'DD-EVP-ORIGIN-VERSION': '0.0.1',
+            },
+            maxBodyLength,
+            method: constants_1.METHOD_POST,
+            url: constants_2.API_ENDPOINT,
+        });
+    });
+    // Get the intake name
+    const url = (0, app_1.getBaseUrl)();
+    // Get the AXIOS request/response function
+    const requestIntake = (0, utils_1.getRequestBuilder)({ baseUrl: url, apiKey, appKey });
+    return uploadSBomPayload(requestIntake);
+};
+exports.getApiHelper = getApiHelper;
+//# sourceMappingURL=api.js.map

package/dist/api.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api.js","sourceRoot":"","sources":["../src/api.ts"],"names":[],"mappings":";;;;;;;;;;;;AAEA,kEAA4G;AAC5G,8DAA+D;AAC/D,kEAAwE;AAExE,2CAAwC;AAGxC,MAAM,aAAa,GAAG,QAAQ,CAAA;AAE9B;;;GAGG;AACI,MAAM,YAAY,GAAG,CAC1B,MAAc,EACd,MAAc,EAC6C,EAAE;IAC7D;;;OAGG;IACH,MAAM,iBAAiB,GACrB,CAAC,OAAkE,EAAE,EAAE,CAAC,CAAO,UAAsB,EAAE,EAAE;QACvG,wCAAwC;QACxC,MAAM,OAAO,GAAG;YACd,IAAI,EAAE;gBACJ,IAAI,EAAE,aAAa;gBACnB,UAAU,EAAE,UAAU;aACvB;SACF,CAAA;QAED,OAAO,OAAO,CAAC;YACb,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;YAC7B,OAAO,EAAE;gBACP,CAAC,+BAAmB,CAAC,EAAE,mCAAuB;gBAC9C,eAAe,EAAE,YAAY;gBAC7B,uBAAuB,EAAE,OAAO;aACjC;YACD,aAAa;YACb,MAAM,EAAE,uBAAW;YACnB,GAAG,EAAE,wBAAY;SAClB,CAAC,CAAA;IACJ,CAAC,CAAA,CAAA;IAEH,sBAAsB;IACtB,MAAM,GAAG,GAAG,IAAA,gBAAU,GAAE,CAAA;IACxB,0CAA0C;IAC1C,MAAM,aAAa,GAAG,IAAA,yBAAiB,EAAC,EAAC,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAC,CAAC,CAAA;IAEvE,OAAO,iBAAiB,CAAC,aAAa,CAAC,CAAA;AACzC,CAAC,CAAA;AArCY,QAAA,YAAY,gBAqCxB"}

package/dist/cli.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/cli.js

@@ -0,0 +1,5 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const upload_1 = require("./commands/upload");
+module.exports = [upload_1.PluginCommand];
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";;AAAA,8CAAoE;AAEpE,MAAM,CAAC,OAAO,GAAG,CAAC,sBAAiB,CAAC,CAAA"}

package/dist/commands/upload.d.ts

@@ -0,0 +1,10 @@
+import { SbomUploadCommand } from '@datadog/datadog-ci-base/commands/sbom/upload-command';
+export declare class PluginCommand extends SbomUploadCommand {
+    private config;
+    private fipsConfig;
+    /**
+     * Execute the command, which means parse the SBOM file, ensure they are
+     * compliant with their schema and upload them to datadog.
+     */
+    execute(): Promise<1 | 0>;
+}

package/dist/commands/upload.js

@@ -0,0 +1,134 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PluginCommand = void 0;
+const fs_1 = __importDefault(require("fs"));
+const process_1 = __importDefault(require("process"));
+const upload_command_1 = require("@datadog/datadog-ci-base/commands/sbom/upload-command");
+const constants_1 = require("@datadog/datadog-ci-base/constants");
+const env_1 = require("@datadog/datadog-ci-base/helpers/env");
+const fips_1 = require("@datadog/datadog-ci-base/helpers/fips");
+const tags_1 = require("@datadog/datadog-ci-base/helpers/tags");
+const axios_1 = require("axios");
+const api_1 = require("../api");
+const payload_1 = require("../payload");
+const renderer_1 = require("../renderer");
+const validation_1 = require("../validation");
+class PluginCommand extends upload_command_1.SbomUploadCommand {
+    constructor() {
+        var _a, _b;
+        super(...arguments);
+        this.config = {
+            apiKey: process_1.default.env.DATADOG_API_KEY || process_1.default.env.DD_API_KEY,
+            appKey: process_1.default.env.DATADOG_APP_KEY || process_1.default.env.DD_APP_KEY || '',
+            env: process_1.default.env.DD_ENV,
+            envVarTags: process_1.default.env.DD_TAGS,
+            fips: process_1.default.env[constants_1.FIPS_ENV_VAR],
+        };
+        this.fipsConfig = {
+            fips: (_a = (0, env_1.toBoolean)(process_1.default.env[constants_1.FIPS_ENV_VAR])) !== null && _a !== void 0 ? _a : false,
+            fipsIgnoreError: (_b = (0, env_1.toBoolean)(process_1.default.env[constants_1.FIPS_IGNORE_ERROR_ENV_VAR])) !== null && _b !== void 0 ? _b : false,
+        };
+    }
+    /**
+     * Execute the command, which means parse the SBOM file, ensure they are
+     * compliant with their schema and upload them to datadog.
+     */
+    execute() {
+        var _a, _b;
+        return __awaiter(this, void 0, void 0, function* () {
+            (0, fips_1.enableFips)(this.fips || this.fipsConfig.fips, this.fipsIgnoreError || this.fipsConfig.fipsIgnoreError);
+            // TODO(julien): remove this notice in April 2025
+            if (this.serviceFromCli !== undefined) {
+                this.context.stderr.write('The CLI flag `--service` is deprecated and will be removed in a future version of datadog-ci\n');
+                this.context.stderr.write('To associate findings with services, consider using the service-to-repo mapping from service catalog\n');
+                this.context.stderr.write('Learn more at https://docs.datadoghq.com/getting_started/code_security/?tab=staticcodeanalysissast#link-datadog-services-to-repository-scan-results\n');
+            }
+            const service = 'datadog-ci';
+            const environment = this.env;
+            if (!this.basePath || !this.basePath.length) {
+                this.context.stderr.write('Missing basePath\n');
+                return 1;
+            }
+            if (!this.config.apiKey) {
+                this.context.stderr.write('API key not defined, define the environment variable DD_API_KEY.\n');
+                return 1;
+            }
+            if (!this.config.appKey) {
+                this.context.stderr.write('APP key not defined, define the environment variable DD_APP_KEY.\n');
+                return 1;
+            }
+            // Get the API helper to send the payload
+            const api = (0, api_1.getApiHelper)(this.config.apiKey, this.config.appKey);
+            const tags = yield (0, tags_1.getSpanTags)(this.config, this.tags, !this.noCiTags, this.gitPath);
+            // Gather any missing mandatory git fields to display to the user
+            const missingGitFields = (0, tags_1.getMissingRequiredGitTags)(tags);
+            if (missingGitFields.length > 0) {
+                this.context.stdout.write((0, renderer_1.renderMissingTags)(missingGitFields));
+                return 1;
+            }
+            const validator = (0, validation_1.getValidator)();
+            const startTimeMs = Date.now();
+            const basePath = this.basePath;
+            if (this.debug) {
+                this.context.stdout.write(`Processing file ${basePath}\n`);
+            }
+            if (!(0, validation_1.validateSbomFileAgainstSchema)(basePath, validator, !!this.debug)) {
+                this.context.stdout.write('SBOM file not fully compliant against CycloneDX 1.4, 1.5 or 1.6 specifications (use --debug to get validation error)\n');
+            }
+            if (!(0, validation_1.validateFileAgainstToolRequirements)(basePath, !!this.debug)) {
+                this.context.stdout.write((0, renderer_1.renderInvalidFile)(basePath));
+                return 1;
+            }
+            const jsonContent = JSON.parse(fs_1.default.readFileSync(basePath).toString('utf8'));
+            // Upload content
+            try {
+                const scaPayload = (0, payload_1.generatePayload)(jsonContent, tags, service, environment);
+                if (!scaPayload) {
+                    this.context.stdout.write((0, renderer_1.renderInvalidPayload)(basePath));
+                    return 1;
+                }
+                this.context.stdout.write((0, renderer_1.renderPayloadWarning)(scaPayload.dependencies));
+                scaPayload.dependencies = (0, validation_1.filterInvalidDependencies)(scaPayload.dependencies);
+                this.context.stdout.write((0, renderer_1.renderUploading)(basePath, scaPayload));
+                yield api(scaPayload);
+                if (this.debug) {
+                    this.context.stdout.write(`Upload done for ${basePath}.\n`);
+                }
+            }
+            catch (error) {
+                if ((0, axios_1.isAxiosError)(error)) {
+                    if (((_a = error.response) === null || _a === void 0 ? void 0 : _a.status) === 409) {
+                        const sha = tags[tags_1.GIT_SHA] || 'sha-not-found';
+                        const branch = tags[tags_1.GIT_BRANCH] || 'branch-not-found';
+                        this.context.stderr.write((0, renderer_1.renderDuplicateUpload)(branch, sha));
+                        return 0;
+                    }
+                    if (((_b = error.response) === null || _b === void 0 ? void 0 : _b.status) === 412) {
+                        const repositoryUrl = tags[tags_1.GIT_REPOSITORY_URL] || 'repo-url-not-found';
+                        this.context.stderr.write((0, renderer_1.renderNoDefaultBranch)(repositoryUrl));
+                        return 1;
+                    }
+                }
+                this.context.stderr.write((0, renderer_1.renderFailedUpload)(basePath, error, !!this.debug));
+                return 1;
+            }
+            const uploadTimeMs = (Date.now() - startTimeMs) / 1000;
+            this.context.stdout.write((0, renderer_1.renderSuccessfulCommand)(uploadTimeMs));
+            return 0;
+        });
+    }
+}
+exports.PluginCommand = PluginCommand;
+//# sourceMappingURL=upload.js.map

package/dist/commands/upload.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"upload.js","sourceRoot":"","sources":["../../src/commands/upload.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,4CAAmB;AACnB,sDAA6B;AAE7B,0FAAuF;AACvF,kEAA0F;AAC1F,8DAA8D;AAC9D,gEAAgE;AAChE,gEAM8C;AAE9C,iCAA+D;AAE/D,gCAAmC;AACnC,wCAA0C;AAC1C,0CAUoB;AAEpB,8CAKsB;AAEtB,MAAa,aAAc,SAAQ,kCAAiB;IAApD;;;QACU,WAAM,GAAG;YACf,MAAM,EAAE,iBAAO,CAAC,GAAG,CAAC,eAAe,IAAI,iBAAO,CAAC,GAAG,CAAC,UAAU;YAC7D,MAAM,EAAE,iBAAO,CAAC,GAAG,CAAC,eAAe,IAAI,iBAAO,CAAC,GAAG,CAAC,UAAU,IAAI,EAAE;YACnE,GAAG,EAAE,iBAAO,CAAC,GAAG,CAAC,MAAM;YACvB,UAAU,EAAE,iBAAO,CAAC,GAAG,CAAC,OAAO;YAC/B,IAAI,EAAE,iBAAO,CAAC,GAAG,CAAC,wBAAY,CAAC;SAChC,CAAA;QAEO,eAAU,GAAG;YACnB,IAAI,EAAE,MAAA,IAAA,eAAS,EAAC,iBAAO,CAAC,GAAG,CAAC,wBAAY,CAAC,CAAC,mCAAI,KAAK;YACnD,eAAe,EAAE,MAAA,IAAA,eAAS,EAAC,iBAAO,CAAC,GAAG,CAAC,qCAAyB,CAAC,CAAC,mCAAI,KAAK;SAC5E,CAAA;IAkIH,CAAC;IAhIC;;;OAGG;IACU,OAAO;;;YAClB,IAAA,iBAAU,EAAC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,IAAI,CAAC,eAAe,IAAI,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC,CAAA;YAEtG,iDAAiD;YACjD,IAAI,IAAI,CAAC,cAAc,KAAK,SAAS,EAAE;gBACrC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,gGAAgG,CACjG,CAAA;gBACD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,wGAAwG,CACzG,CAAA;gBACD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,uJAAuJ,CACxJ,CAAA;aACF;YAED,MAAM,OAAO,GAAG,YAAY,CAAA;YAE5B,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,CAAA;YAE5B,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE;gBAC3C,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAA;gBAE/C,OAAO,CAAC,CAAA;aACT;YAED,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE;gBACvB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oEAAoE,CAAC,CAAA;gBAE/F,OAAO,CAAC,CAAA;aACT;YAED,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE;gBACvB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oEAAoE,CAAC,CAAA;gBAE/F,OAAO,CAAC,CAAA;aACT;YAED,yCAAyC;YACzC,MAAM,GAAG,GAA6D,IAAA,kBAAY,EAChF,IAAI,CAAC,MAAM,CAAC,MAAM,EAClB,IAAI,CAAC,MAAM,CAAC,MAAM,CACnB,CAAA;YAED,MAAM,IAAI,GAAG,MAAM,IAAA,kBAAW,EAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,CAAA;YAEpF,iEAAiE;YACjE,MAAM,gBAAgB,GAAG,IAAA,gCAAyB,EAAC,IAAI,CAAC,CAAA;YACxD,IAAI,gBAAgB,CAAC,MAAM,GAAG,CAAC,EAAE;gBAC/B,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,4BAAiB,EAAC,gBAAgB,CAAC,CAAC,CAAA;gBAE9D,OAAO,CAAC,CAAA;aACT;YAED,MAAM,SAAS,GAAQ,IAAA,yBAAY,GAAE,CAAA;YAErC,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;YAC9B,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAA;YAE9B,IAAI,IAAI,CAAC,KAAK,EAAE;gBACd,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,mBAAmB,QAAQ,IAAI,CAAC,CAAA;aAC3D;YAED,IAAI,CAAC,IAAA,0CAA6B,EAAC,QAAQ,EAAE,SAAS,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE;gBACrE,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CACvB,wHAAwH,CACzH,CAAA;aACF;YACD,IAAI,CAAC,IAAA,gDAAmC,EAAC,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE;gBAChE,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,4BAAiB,EAAC,QAAQ,CAAC,CAAC,CAAA;gBAEtD,OAAO,CAAC,CAAA;aACT;YAED,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,YAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAA;YAE1E,iBAAiB;YACjB,IAAI;gBACF,MAAM,UAAU,GAAG,IAAA,yBAAe,EAAC,WAAW,EAAE,IAAI,EAAE,OAAO,EAAE,WAAW,CAAC,CAAA;gBAE3E,IAAI,CAAC,UAAU,EAAE;oBACf,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,+BAAoB,EAAC,QAAQ,CAAC,CAAC,CAAA;oBAEzD,OAAO,CAAC,CAAA;iBACT;gBAED,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,+BAAoB,EAAC,UAAU,CAAC,YAAY,CAAC,CAAC,CAAA;gBAExE,UAAU,CAAC,YAAY,GAAG,IAAA,sCAAyB,EAAC,UAAU,CAAC,YAAY,CAAC,CAAA;gBAE5E,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,0BAAe,EAAC,QAAQ,EAAE,UAAU,CAAC,CAAC,CAAA;gBAEhE,MAAM,GAAG,CAAC,UAAU,CAAC,CAAA;gBACrB,IAAI,IAAI,CAAC,KAAK,EAAE;oBACd,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,mBAAmB,QAAQ,KAAK,CAAC,CAAA;iBAC5D;aACF;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,IAAA,oBAAY,EAAC,KAAK,CAAC,EAAE;oBACvB,IAAI,CAAA,MAAA,KAAK,CAAC,QAAQ,0CAAE,MAAM,MAAK,GAAG,EAAE;wBAClC,MAAM,GAAG,GAAG,IAAI,CAAC,cAAO,CAAC,IAAI,eAAe,CAAA;wBAC5C,MAAM,MAAM,GAAG,IAAI,CAAC,iBAAU,CAAC,IAAI,kBAAkB,CAAA;wBACrD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,gCAAqB,EAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAA;wBAE7D,OAAO,CAAC,CAAA;qBACT;oBAED,IAAI,CAAA,MAAA,KAAK,CAAC,QAAQ,0CAAE,MAAM,MAAK,GAAG,EAAE;wBAClC,MAAM,aAAa,GAAG,IAAI,CAAC,yBAAkB,CAAC,IAAI,oBAAoB,CAAA;wBACtE,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,gCAAqB,EAAC,aAAa,CAAC,CAAC,CAAA;wBAE/D,OAAO,CAAC,CAAA;qBACT;iBACF;gBAED,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,6BAAkB,EAAC,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAA;gBAE5E,OAAO,CAAC,CAAA;aACT;YAED,MAAM,YAAY,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,WAAW,CAAC,GAAG,IAAI,CAAA;YACtD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,kCAAuB,EAAC,YAAY,CAAC,CAAC,CAAA;YAEhE,OAAO,CAAC,CAAA;;KACT;CACF;AA9ID,sCA8IC"}

package/dist/constants.d.ts

@@ -0,0 +1,7 @@
+export declare const API_ENDPOINT = "api/v2/static-analysis-sca/dependencies";
+export declare const PACKAGE_MANAGER_PROPERTY_KEY = "osv-scanner:package-manager";
+export declare const IS_DEPENDENCY_DIRECT_PROPERTY_KEY = "osv-scanner:is-direct";
+export declare const IS_DEPENDENCY_DEV_ENVIRONMENT_PROPERTY_KEY = "osv-scanner:is-dev";
+export declare const FILE_PACKAGE_PROPERTY_KEY = "osv-scanner:package";
+export declare const EXCLUSION_KEY = "datadog-sbom-generator:exclusion";
+export declare const REACHABLE_SYMBOL_LOCATION_KEY_PREFIX = "datadog-sbom-generator:reachable-symbol-location";

package/dist/constants.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.REACHABLE_SYMBOL_LOCATION_KEY_PREFIX = exports.EXCLUSION_KEY = exports.FILE_PACKAGE_PROPERTY_KEY = exports.IS_DEPENDENCY_DEV_ENVIRONMENT_PROPERTY_KEY = exports.IS_DEPENDENCY_DIRECT_PROPERTY_KEY = exports.PACKAGE_MANAGER_PROPERTY_KEY = exports.API_ENDPOINT = void 0;
+exports.API_ENDPOINT = 'api/v2/static-analysis-sca/dependencies';
+exports.PACKAGE_MANAGER_PROPERTY_KEY = 'osv-scanner:package-manager';
+exports.IS_DEPENDENCY_DIRECT_PROPERTY_KEY = 'osv-scanner:is-direct';
+exports.IS_DEPENDENCY_DEV_ENVIRONMENT_PROPERTY_KEY = 'osv-scanner:is-dev';
+exports.FILE_PACKAGE_PROPERTY_KEY = 'osv-scanner:package';
+exports.EXCLUSION_KEY = 'datadog-sbom-generator:exclusion';
+exports.REACHABLE_SYMBOL_LOCATION_KEY_PREFIX = 'datadog-sbom-generator:reachable-symbol-location';
+//# sourceMappingURL=constants.js.map

package/dist/constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":";;;AAAa,QAAA,YAAY,GAAG,yCAAyC,CAAA;AAExD,QAAA,4BAA4B,GAAG,6BAA6B,CAAA;AAC5D,QAAA,iCAAiC,GAAG,uBAAuB,CAAA;AAC3D,QAAA,0CAA0C,GAAG,oBAAoB,CAAA;AACjE,QAAA,yBAAyB,GAAG,qBAAqB,CAAA;AACjD,QAAA,aAAa,GAAG,kCAAkC,CAAA;AAElD,QAAA,oCAAoC,GAAG,kDAAkD,CAAA"}