@eurekadevsecops/radar 1.9.7 → 1.10.0

package/.config/commitlint/config.mjs

@@ -22,6 +22,10 @@ const scopes = {
 // @tip: git branch name = feat/PE-123 => default issue = PE-123
 const issue = execSync('git rev-parse --abbrev-ref HEAD').toString().trim().split('/').at(-1)
 
+const semver = String.raw`(0|[1-9]\d*)\.(0|[1-9]\d*)\.(0|[1-9]\d*)(?:-((?:0|[1-9]\d*|\d*[a-zA-Z-][0-9a-zA-Z-]*)(?:\.(?:0|[1-9]\d*|\d*[a-zA-Z-][0-9a-zA-Z-]*))*))?(?:\+([0-9a-zA-Z-]+(?:\.[0-9a-zA-Z-]+)*))?`
+const pr = String.raw`\(\#[1-9]\d*\)`
+const pattern = new RegExp(`^v${semver} ${pr}`)
+
 const Configuration = {
   /*
    * Resolve and load @commitlint/config-conventional from node_modules.
@@ -32,7 +36,7 @@ const Configuration = {
    * Resolve and load conventional-changelog-atom from node_modules.
    * Referenced packages must be installed
    */
-  parserPreset: 'conventional-changelog-atom',
+  parserPreset: 'conventional-changelog-conventionalcommits',
   /*
    * Resolve and load @commitlint/format from node_modules.
    * Referenced package must be installed
@@ -58,7 +62,7 @@ const Configuration = {
    * To see full list, check https://github.com/conventional-changelog/commitlint/blob/master/%40commitlint/is-ignored/src/defaults.ts.
    * To disable those ignores and run rules always, set `defaultIgnores: false` as shown below.
    */
-  ignores: [(commit) => commit === ''],
+  ignores: [(commit) => commit === '', (commit) => pattern.test(commit)],
   /*
    * Whether commitlint uses the default ignore rules, see the description above.
    */

package/.config/release-please/manifest.json

@@ -1,3 +1,3 @@
 {
-  ".": "1.9.7"
+  ".": "1.10.0"
 }

package/CHANGELOG.md

@@ -1,5 +1,30 @@
 # Changelog
 
+## [1.10.0](https://github.com/EurekaDevSecOps/radarctl/compare/v1.9.8...v1.10.0) (2026-02-25)
+
+
+### Improvements
+
+* **PE-961:** Job path from Managed Scan runner being included in vulnerability results ([#63](https://github.com/EurekaDevSecOps/radarctl/issues/63)) ([f014598](https://github.com/EurekaDevSecOps/radarctl/commit/f0145985152b4d5cb5af7d10de7981777ce40ce4))
+
+## [1.9.8](https://github.com/EurekaDevSecOps/radarctl/compare/v1.9.7...v1.9.8) (2026-02-19)
+
+
+### Fixes
+
+* **scans:** Add handling for ADO git URLs ([#61](https://github.com/EurekaDevSecOps/radarctl/issues/61)) ([cad3c13](https://github.com/EurekaDevSecOps/radarctl/commit/cad3c13ad90d2866b7ad019d145882e0955a8243))
+* **scans:** Update scan command to accept optional scan ID from args ([#60](https://github.com/EurekaDevSecOps/radarctl/issues/60)) ([3f7b2f9](https://github.com/EurekaDevSecOps/radarctl/commit/3f7b2f9881a201116f54752ce27bd5e36d652f23))
+
+
+### Code Refactoring
+
+* **telemetry:** Add a reportScanFailure wrapper for telemetry send/receive ([#57](https://github.com/EurekaDevSecOps/radarctl/issues/57)) ([9b2b8aa](https://github.com/EurekaDevSecOps/radarctl/commit/9b2b8aad4a59e9312bb5713a4aaf5b154f6e390b))
+
+
+### CI/CD
+
+* **commitlint:** Fix commitlint GHA errors ([#58](https://github.com/EurekaDevSecOps/radarctl/issues/58)) ([b27d64e](https://github.com/EurekaDevSecOps/radarctl/commit/b27d64e5ddab6fad389aa1489173c3a992633ff6))
+
 ## [1.9.7](https://github.com/EurekaDevSecOps/radarctl/compare/v1.9.6...v1.9.7) (2026-01-29)
 
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eurekadevsecops/radar",
-  "version": "1.9.7",
+  "version": "1.10.0",
   "description": "Radar is an open-source orchestrator of security scanners.",
   "homepage": "https://www.eurekadevsecops.com/radar",
   "keywords": [
@@ -39,8 +39,8 @@
     "tiny-spinner": "^2.0.5"
   },
   "devDependencies": {
-    "@commitlint/cli": "^20.1.0",
-    "@commitlint/config-conventional": "^20.0.0",
+    "@commitlint/cli": "^20.4.1",
+    "@commitlint/config-conventional": "^20.4.1",
     "@commitlint/cz-commitlint": "^20.1.0",
     "commitizen": "^4.3.1",
     "commitlint-plugin-selective-scope": "^1.0.1",

package/src/commands/scan.js

@@ -25,7 +25,8 @@ module.exports = {
     { name: 'LOCAL', short: 'l', long: 'local', type: 'boolean', description: 'local scan (no upload of findings to Eureka)' },
     { name: 'OUTPUT', short: 'o', long: 'output', type: 'string', description: 'output SARIF file' },
     { name: 'QUIET', short: 'q', long: 'quiet', type: 'boolean', description: 'suppress stdout logging' },
-    { name: 'SCANNERS', short: 's', long: 'scanners', type: 'string', description: 'list of scanners to use' }
+    { name: 'SCANNERS', short: 's', long: 'scanners', type: 'string', description: 'list of scanners to use' },
+    { name: 'SCAN_ID', short: 'sid', long: 'scan-id', type: 'string', description: 'existing scan ID to associate results with' }
   ],
   description: `
     Scans a target for vulnerabilities. Defaults to displaying findings on stdout.
@@ -165,13 +166,13 @@ module.exports = {
     if (metadata.type === 'error') throw new Error(`${metadata.error.code}: ${metadata.error.details}`)
 
     // Send telemetry: scan started.
-    let scanID = undefined
+    let scanID = args.SCAN_ID ?? undefined
     const timestamp = DateTime.now().toISO()
 
     if (telemetry.enabled && !args.LOCAL) {
       // TODO: Should pass scanID to the server; not read it from the server.
       try {
-        const res = await telemetry.send(`scans/started`, {}, { scanners: scanners.map((s) => s.name), metadata, timestamp })
+        const res = await telemetry.send(`scans/started`, {}, { scanners: scanners.map((s) => s.name), scanID, metadata, timestamp })
         if (!res.ok) throw new Error(`[${res.status}] ${res.statusText}: ${await res.text()}`)
         const data = await res.json()
         scanID = data.scan_id

package/src/telemetry/index.js

@@ -6,28 +6,24 @@ class Telemetry {
   #EUREKA_AGENT_TOKEN = process.env.EUREKA_AGENT_TOKEN
   #USER_AGENT = `RadarCLI/${pkg.version} (${pkg.name}@${pkg.version}; ${process?.platform}-${process?.arch}; ${process?.release?.name}-${process?.version})`
   #EWA_URL
+  #failedScanID // ensure there that scan failure is reported only once
 
   constructor() {
     this.enabled = !!this.#EUREKA_AGENT_TOKEN
     this.#EWA_URL = this.#claims(this.#EUREKA_AGENT_TOKEN).aud?.replace(/\/$/, '')
+    this.#failedScanID = undefined
   }
 
   async send(path, params, body, token) {
-    return fetch(this.#toPostURL(path, params, token), {
-      method: 'POST',
-      headers: {
-        'Authorization': `Bearer ${token ?? this.#EUREKA_AGENT_TOKEN}`,
-        'Content-Type': this.#toContentType(path),
-        'User-Agent': this.#USER_AGENT,
-        'Accept': 'application/json'
-      },
-      body: this.#toBody(path, body)
-    })
-    .then(async (res) => {
-//TODO: Display this on stdout only if --debug option is selected on the cmd line.
-//if (!res.ok) console.log(`POST ${this.#toPostURL(path, params, token)} [${res.status}] ${res.statusText}: ${await res.text()}`)
-      return res
-    })
+    let res
+    try {
+      res = await this.#sendRaw(path, params, body, token)
+    } catch (error) {
+      await this.#reportScanFailure(path, params)
+      throw error
+    }
+    if (!res.ok) await this.#reportScanFailure(path, params)
+    return res
   }
 
   async sendSensitive(path, params, body) {
@@ -35,18 +31,19 @@ class Telemetry {
   }
 
   async receive(path, params, token) {
-    return fetch(this.#toReceiveURL(path, params, token), {
-      method: 'GET',
-      headers: {
-        'Authorization': `Bearer ${token ?? this.#EUREKA_AGENT_TOKEN}`,
-        'User-Agent': this.#USER_AGENT,
-        'Accept': 'application/json'
-      }
-    }).then(async (res) => {
-//TODO: Display this on stdout only if --debug option is selected on the cmd line.
-//if (!res.ok) console.log(`GET ${this.#toReceiveURL(path, params, token)} [${res.status}] ${res.statusText}`)
+    let res
+    try {
+      res = await this.#receiveRaw(path, params, token)
+    } catch (error) {
+      await this.#reportScanFailure(path, params)
+      throw error
+    }
+    if (!res.ok) await this.#reportScanFailure(path, params)
+    try {
       return await res.json()
-    })
+    } catch (error) {
+      await this.#reportScanFailure(path, params)
+    }
   }
 
   async receiveSensitive(path, params) {
@@ -79,6 +76,56 @@ class Telemetry {
     return data.token
   }
 
+  async #sendRaw(path, params, body, token) {
+    return fetch(this.#toPostURL(path, params, token), {
+      method: 'POST',
+      headers: {
+        'Authorization': `Bearer ${token ?? this.#EUREKA_AGENT_TOKEN}`,
+        'Content-Type': this.#toContentType(path),
+        'User-Agent': this.#USER_AGENT,
+        'Accept': 'application/json'
+      },
+      body: this.#toBody(path, body)
+    })
+    .then(async (res) => {
+//TODO: Display this on stdout only if --debug option is selected on the cmd line.
+//if (!res.ok) console.log(`POST ${this.#toPostURL(path, params, token)} [${res.status}] ${res.statusText}: ${await res.text()}`)
+      return res
+    })
+  }
+
+  async #receiveRaw(path, params, token) {
+    return fetch(this.#toReceiveURL(path, params, token), {
+      method: 'GET',
+      headers: {
+        'Authorization': `Bearer ${token ?? this.#EUREKA_AGENT_TOKEN}`,
+        'User-Agent': this.#USER_AGENT,
+        'Accept': 'application/json'
+      }
+    }).then(async (res) => {
+//TODO: Display this on stdout only if --debug option is selected on the cmd line.
+//if (!res.ok) console.log(`GET ${this.#toReceiveURL(path, params, token)} [${res.status}] ${res.statusText}`)
+      return res
+    })
+  }
+
+  async #reportScanFailure(path, params) {
+    if (!this.enabled) return
+    const scanID = params?.scanID
+    if (!scanID || path === `scans/:scanID/failed`) return
+    // if scan failure already reported, skip
+    if (this.#failedScanID === scanID) return
+    
+    // mark scan failure as reported
+    this.#failedScanID = scanID
+
+    try {
+      // we could choose to pass the error and send it somewhere possibly
+      await this.#sendRaw(`scans/:scanID/failed`, { scanID }, {})
+    } catch (error) {
+    }
+  }
+
   #toPostURL(path, params, token) {
     const claims = this.#claims(token ?? this.#EUREKA_AGENT_TOKEN)
     const aud = claims.aud.replace(/\/$/, '')

package/src/util/git/index.js

@@ -1,6 +1,47 @@
 const { execSync } = require('node:child_process')
 const hostedGitInfo = require('hosted-git-info')
 
+
+function isAzureDevOpsUrl(originUrl) {
+  const knownAzureDomains = ["dev.azure.com", "visualstudio.com"];
+
+  return knownAzureDomains.some((url) => originUrl.includes(url));
+}
+
+/**
+ * Azure DevOps formats:
+ * - `https://TOKEN@dev.azure.com/<org>/<project>/_git/<repo>`
+ * - `https://pat:TOKEN@dev.azure.com/<org>/<project>/_git/<repo>` (the "pat" here can be any arbitrary string)
+ */
+function parseAzureDevOpsUrl(originUrl) {
+  // Strip credentials from URL
+  const cleanUrl = originUrl.replace(/https:\/\/([^@:]+:)?[^@]+@/, "https://");
+  const url = new URL(cleanUrl);
+
+  const pathParts = url.pathname.split("/").filter((p) => p);
+  if (pathParts.length < 4 || pathParts[2] !== "_git") {
+    throw new Error(`Invalid Azure DevOps URL format: ${originUrl}`);
+  }
+
+  return {
+    https: () => cleanUrl,
+    type: "azure",
+    domain: url.hostname,
+    // project name
+    user: pathParts[1], 
+    // repo name
+    project: pathParts[3], 
+  };
+}
+
+function parseGitInfoFromUrl(originUrl) {
+  if (isAzureDevOpsUrl(originUrl)) {
+    return parseAzureDevOpsUrl(originUrl);
+  }
+
+  return hostedGitInfo.fromUrl(originUrl, { noGitPlus: true });
+}
+
 function metadata(folder) {
   try {
     // Determine if we're scanning a valid git repo.
@@ -11,7 +52,9 @@ function metadata(folder) {
 
     // Get the repo name and owner.
     const originUrl = execSync('git config --get remote.origin.url', { cwd: folder }).toString().trim()
-    const info = hostedGitInfo.fromUrl(originUrl, { noGitPlus: true })
+
+    const info = parseGitInfoFromUrl(originUrl)
+    
     const ownerPath = info.user.split('/')
 
     // Get the branch name.

package/src/util/sarif/transforms/normalize.js

@@ -1,5 +1,9 @@
 const path = require('node:path')
 module.exports = (sarif, dir, git, root) => {
+  // Pattern matches managed scanner temporary job directories:
+  // Format: /app/jobs/{uuid}/repo-{timestamp}/
+  // Example: /app/jobs/830f53a2-5f0c-4565-a262-607dfcd4d5e1/repo-1771653645/
+  const MANAGED_SCANNER_JOB_PREFIX = /^\/app\/jobs\/[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}\/repo-\d+\//
   // Normalize findings.
   for (const run of sarif.runs) {
 
@@ -19,8 +23,14 @@ module.exports = (sarif, dir, git, root) => {
     // (or if the root is not available then to the scan directory)
     if (!run.results) continue
     for (const result of run.results) {
-      for (const location of result.locations) {
-        if (location.physicalLocation?.artifactLocation?.uri?.startsWith('/app')) {
+      for (const location of result.locations) {    
+        if (location.physicalLocation?.artifactLocation?.uri?.match(MANAGED_SCANNER_JOB_PREFIX)) {
+          let file = location.physicalLocation.artifactLocation.uri.replace(MANAGED_SCANNER_JOB_PREFIX, '')
+          if (subfolder) file = path.join(subfolder, file)
+          if (result?.message?.text) result.message.text = result.message.text.replace(location.physicalLocation.artifactLocation.uri, file)
+          location.physicalLocation.artifactLocation.uri = file
+        }
+        else if (location.physicalLocation?.artifactLocation?.uri?.startsWith('/app')) {
           let file = path.join(subfolder, path.relative('/app', location.physicalLocation.artifactLocation.uri))
           if (result?.message?.text) result.message.text = result.message.text.replace(location.physicalLocation.artifactLocation.uri, file)
           location.physicalLocation.artifactLocation.uri = file

package/ewa-bitbucket.sarif

@@ -1,61 +0,0 @@
-{
-  "version": "2.1.0",
-  "$schema": "https://json.schemastore.org/sarif-2.1.0.json",
-  "runs": [
-    {
-      "tool": {
-        "driver": {
-          "name": "gitleaks",
-          "semanticVersion": "v8.0.0",
-          "informationUri": "https://github.com/gitleaks/gitleaks",
-          "properties": {
-            "officialName": "gitleaks"
-          },
-          "rules": [
-            {
-              "id": "bitbucket-client-id",
-              "shortDescription": {
-                "text": "Discovered a potential Bitbucket Client ID, risking unauthorized repository access and potential codebase exposure."
-              }
-            }
-          ]
-        }
-      },
-      "results": [
-        {
-          "message": {
-            "text": "bitbucket-client-id has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "bitbucket-client-id",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 116,
-                  "startColumn": 2,
-                  "endLine": 116,
-                  "endColumn": 57,
-                  "snippet": {
-                    "text": "KbPZjucUXpxhqmKjP6wbtS5BfEERxdnb"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        }
-      ],
-      "properties": {
-        "repository": {
-          "type": "git",
-          "url": "https://github.com/EurekaDevSecOps/app.git"
-        }
-      }
-    }
-  ]
-}

package/ewa.sarif

@@ -1,274 +0,0 @@
-{
-  "version": "2.1.0",
-  "$schema": "https://json.schemastore.org/sarif-2.1.0.json",
-  "runs": [
-    {
-      "tool": {
-        "driver": {
-          "name": "gitleaks",
-          "semanticVersion": "v8.0.0",
-          "informationUri": "https://github.com/gitleaks/gitleaks",
-          "properties": {
-            "officialName": "gitleaks"
-          },
-          "rules": [
-            {
-              "id": "bitbucket-client-id",
-              "shortDescription": {
-                "text": "Discovered a potential Bitbucket Client ID, risking unauthorized repository access and potential codebase exposure."
-              }
-            },
-            {
-              "id": "generic-api-key",
-              "shortDescription": {
-                "text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."
-              }
-            },
-            {
-              "id": "gitlab-oauth-app-secret",
-              "shortDescription": {
-                "text": "Identified a GitLab OIDC Application Secret, risking access to apps using GitLab as authentication provider."
-              }
-            },
-            {
-              "id": "private-key",
-              "shortDescription": {
-                "text": "Identified a Private Key, which may compromise cryptographic security and sensitive data encryption."
-              }
-            },
-            {
-              "id": "stripe-access-token",
-              "shortDescription": {
-                "text": "Found a Stripe Access Token, posing a risk to payment processing services and sensitive financial data."
-              }
-            }
-          ]
-        }
-      },
-      "results": [
-        {
-          "message": {
-            "text": "generic-api-key has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "generic-api-key",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 121,
-                  "startColumn": 2,
-                  "endLine": 121,
-                  "endColumn": 62,
-                  "snippet": {
-                    "text": "0231e56436d8862a967f583939d1d91e955c2bd3"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        },
-        {
-          "message": {
-            "text": "generic-api-key has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "generic-api-key",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 132,
-                  "startColumn": 2,
-                  "endLine": 132,
-                  "endColumn": 57,
-                  "snippet": {
-                    "text": "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"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        },
-        {
-          "message": {
-            "text": "generic-api-key has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "generic-api-key",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 146,
-                  "startColumn": 2,
-                  "endLine": 146,
-                  "endColumn": 54,
-                  "snippet": {
-                    "text": "00e3e61c-50ed-44f2-8901-ba56c166b4e5"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        },
-        {
-          "message": {
-            "text": "generic-api-key has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "generic-api-key",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 155,
-                  "startColumn": 2,
-                  "endLine": 155,
-                  "endColumn": 58,
-                  "snippet": {
-                    "text": "whsec_X92mgLcj9LACgQCfxlEazUtZ5Qb1MSN6"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        },
-        {
-          "message": {
-            "text": "gitlab-oauth-app-secret has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "gitlab-oauth-app-secret",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 126,
-                  "startColumn": 23,
-                  "endLine": 126,
-                  "endColumn": 92,
-                  "snippet": {
-                    "text": "gloas-776889e1488d83b207ac8a3e3230b71ee8f91ef6cfd6007aa4f5accb579eacd5"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        },
-        {
-          "message": {
-            "text": "private-key has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "private-key",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 81,
-                  "startColumn": 26,
-                  "endLine": 107,
-                  "endColumn": 30,
-                  "snippet": {
-                    "text": "-----BEGIN RSA PRIVATE KEY-----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\npKxf8/C9KgyrbfXXzb/LMQIZko0cAFI47EMo/Ad8wgyPDsTnTcJZ\n-----END RSA PRIVATE KEY-----"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        },
-        {
-          "message": {
-            "text": "bitbucket-client-id has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "bitbucket-client-id",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 116,
-                  "startColumn": 2,
-                  "endLine": 116,
-                  "endColumn": 57,
-                  "snippet": {
-                    "text": "KbPZjucUXpxhqmKjP6wbtS5BfEERxdnb"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        },
-        {
-          "message": {
-            "text": "stripe-access-token has detected secret for file apps/backend/.env.local."
-          },
-          "ruleId": "stripe-access-token",
-          "locations": [
-            {
-              "physicalLocation": {
-                "artifactLocation": {
-                  "uri": "apps/backend/.env.local"
-                },
-                "region": {
-                  "startLine": 154,
-                  "startColumn": 24,
-                  "endLine": 154,
-                  "endColumn": 130,
-                  "snippet": {
-                    "text": "sk_test_51RYvkf2YG6fO9qlhtYIIbnGSXSr6xpzqdqryyPk58EVMgZMjIviKEXde8r55HE4vbVgzKwNb7owr74qRMEHUKakC007aUEcU3n"
-                  }
-                }
-              }
-            }
-          ],
-          "properties": {
-            "tags": []
-          }
-        }
-      ],
-      "properties": {
-        "repository": {
-          "type": "git",
-          "url": "https://github.com/EurekaDevSecOps/app.git"
-        }
-      }
-    }
-  ]
-}