npm - @debugbundle/cli - Versions diffs - 1.1.1 → 1.1.2 - Mend

@debugbundle/cli 1.1.1 → 1.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/main.cjs +105 -7
package/package.json +1 -1

package/dist/main.cjs CHANGED Viewed

@@ -14605,6 +14605,95 @@ function getRequestAnomalyThreshold(input2) {
   return null;
 }
+// ../../packages/shared-types/src/request-failure-noise.ts
+function isLowValueExternalProbeRequestFailure404(input2) {
+  if (input2.responseStatus !== 404 || input2.httpMethod.toUpperCase() !== "GET") {
+    return false;
+  }
+  const normalizedRoute = input2.routeTemplate.toLowerCase().replace(/\/+$/, "") || "/";
+  const normalizedPath = normalizePath(input2.requestPath ?? input2.routeTemplate);
+  const routesToCheck = /* @__PURE__ */ new Set([normalizedRoute, normalizedPath]);
+  for (const route of routesToCheck) {
+    if (isRouteOnlyExternalProbe(route)) {
+      return true;
+    }
+  }
+  return isDirectIpRequest(input2.headers ?? null) && [...routesToCheck].some(isGenericDirectIpProbeRoute);
+}
+function normalizePath(path) {
+  const withoutQuery = path.split("?")[0] ?? path;
+  return withoutQuery.toLowerCase().replace(/\/+$/, "") || "/";
+}
+function isRouteOnlyExternalProbe(normalizedRoute) {
+  const exactRoutes = /* @__PURE__ */ new Set([
+    "/.env",
+    "/__debug__/render_panel",
+    "/actuator",
+    "/autodiscover/autodiscover.json",
+    "/developmentserver/metadatauploader",
+    "/cpanel",
+    "/favicon.ico",
+    "/geoserver/web",
+    "/hnap1",
+    "/logon/logonpoint/index.html",
+    "/owa/auth/logon.aspx",
+    "/robots.txt",
+    "/rdweb/pages",
+    "/web",
+    "/webclient/login.xhtml",
+    "/webconsole",
+    "/webui",
+    "/whm",
+    "/wp-admin",
+    "/wp-login.php",
+    "/wsman",
+    "/xmlrpc.php"
+  ]);
+  if (exactRoutes.has(normalizedRoute)) {
+    return true;
+  }
+  return normalizedRoute.includes("/.git/") || normalizedRoute.includes("/.svn/") || normalizedRoute.includes("/api_keys") || normalizedRoute.includes("/backup/api_keys") || normalizedRoute.includes("/phpmyadmin") || normalizedRoute.includes("/pma/") || normalizedRoute.includes("/vendor/phpunit/") || normalizedRoute.startsWith("/autodiscover/") || normalizedRoute.startsWith("/cgi-bin/") || normalizedRoute.startsWith("/ecp/") || normalizedRoute.endsWith("/.git/config") || normalizedRoute.endsWith("/composer.json") || normalizedRoute.endsWith("/composer.lock") || normalizedRoute.endsWith("/package-lock.json") || normalizedRoute.endsWith("/package.json") || normalizedRoute.endsWith("/server-status") || normalizedRoute.includes("wp-config") || normalizedRoute.startsWith("/owa/") || normalizedRoute.startsWith("/rdweb/") || normalizedRoute.startsWith("/vpn/") || normalizedRoute.startsWith("/wp-") || isSensitiveBackupFileProbe(normalizedRoute);
+}
+function isSensitiveBackupFileProbe(normalizedRoute) {
+  if (!/\.(?:bak|backup|dump|old|orig|save|sql|swp|tar|tar\.gz|zip)$/.test(normalizedRoute)) {
+    return false;
+  }
+  return /(?:^|\/|\.)(?:backup|config|database|db|dump|env|secret|site|www|wp-config)(?:\/|\.|_|-|$)/.test(normalizedRoute);
+}
+function isGenericDirectIpProbeRoute(normalizedRoute) {
+  return [
+    "/admin",
+    "/administrator",
+    "/login",
+    "/logincheck",
+    "/remote/logincheck"
+  ].includes(normalizedRoute);
+}
+function isDirectIpRequest(headers) {
+  if (headers === null) {
+    return false;
+  }
+  const host = readHeader(headers, "x-forwarded-host") ?? readHeader(headers, "host");
+  if (host === null) {
+    return false;
+  }
+  return isIpLikeHost(host);
+}
+function readHeader(headers, name) {
+  const direct = headers[name] ?? headers[name.toLowerCase()];
+  if (typeof direct === "string") {
+    return direct;
+  }
+  if (Array.isArray(direct) && typeof direct[0] === "string") {
+    return direct[0];
+  }
+  return null;
+}
+function isIpLikeHost(value) {
+  const host = value.trim().replace(/:\d+$/, "");
+  return /^(?:\d{1,3}\.){3}\d{1,3}$/.test(host) || /^\[[0-9a-f:]+\]$/i.test(host) || host.includes(":") && /^[0-9a-f:]+$/i.test(host);
+}
 // ../../packages/shared-types/src/capture-rules.ts
 var CAPTURE_RULE_EVENT_TYPES = [
   "backend_exception",
@@ -19998,7 +20087,7 @@ var ProjectMetricsSchema = external_exports.object({
   monthly_raw_ingested_events: external_exports.number().int().nonnegative(),
   retained_bundles: external_exports.number().int().nonnegative(),
   monthly_alert_deliveries: external_exports.number().int().nonnegative()
-}).strict();
+});
 var ProjectRecordSchema = external_exports.object({
   project_id: external_exports.string(),
   organization_id: external_exports.string(),
@@ -20015,13 +20104,13 @@ var ProjectRecordSchema = external_exports.object({
   metrics: ProjectMetricsSchema,
   created_at: external_exports.string(),
   updated_at: external_exports.string()
-}).strict();
+});
 var ProjectListResponseSchema = external_exports.object({
   projects: external_exports.array(ProjectRecordSchema)
-}).strict();
+});
 var ProjectCreateResponseSchema = external_exports.object({
   project: ProjectRecordSchema
-}).strict();
+});
 var DeletedProjectRecordSchema = external_exports.object({
   project_id: external_exports.string(),
   organization_id: external_exports.string(),
@@ -20037,10 +20126,10 @@ var DeletedProjectRecordSchema = external_exports.object({
   organization_plan: external_exports.enum(["free", "solo", "team"]),
   created_at: external_exports.string(),
   updated_at: external_exports.string()
-}).strict();
+});
 var ProjectDeleteResponseSchema = external_exports.object({
   project: DeletedProjectRecordSchema
-}).strict();
+});
 var ApiErrorResponseSchema2 = external_exports.object({
   error: external_exports.string()
 }).strict();
@@ -24809,6 +24898,15 @@ function collectRequestAnomalyAggregates(batches, capturePreset) {
       if (threshold === null || responseStatus === null || method === null || routeTemplate === null) {
         continue;
       }
+      if (isLowValueExternalProbeRequestFailure404({
+        httpMethod: method,
+        requestPath: event.payload.path,
+        routeTemplate,
+        responseStatus,
+        headers: event.payload.headers
+      })) {
+        continue;
+      }
       const projectId = requireProjectId(event);
       const incidentFingerprint = buildRequestAnomalyFingerprint({
         projectId,
@@ -34488,7 +34586,7 @@ async function handleCaptureRuleCommand2(parsedArgv, dependencies) {
 // package.json
 var package_default = {
   name: "@debugbundle/cli",
-  version: "1.1.1",
+  version: "1.1.2",
   private: false,
   description: "Command-line interface for DebugBundle",
   license: "AGPL-3.0-only",

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@debugbundle/cli",
-  "version": "1.1.1",
+  "version": "1.1.2",
   "private": false,
   "description": "Command-line interface for DebugBundle",
   "license": "AGPL-3.0-only",