npm - @greenarmor/ges-audit-engine - Versions diffs - 1.0.0 → 1.0.1 - Mend

@greenarmor/ges-audit-engine 1.0.0 → 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md +3 -3
package/dist/scanners/auth-scanner.js +1 -1
package/package.json +2 -2

package/README.md CHANGED Viewed

@@ -1,6 +1,6 @@
 # @greenarmor/ges-audit-engine
-Source code audit trails and compliance finding evaluation for the [Green Engineering Standard Framework (GESF)](https://github.com/greenarmor/gesf).
+Source code audit trails and compliance finding evaluation for the Green Engineering Standard Framework (GESF).
 Scans project source code for security and compliance issues — detecting hardcoded secrets, weak cryptography, SQL injection patterns, missing authentication, missing security headers, and more.
@@ -42,8 +42,8 @@ console.log(`Scanned ${scannedFiles} files, found ${unique.length} issues`);
 ## Related Packages
-- [`@greenarmor/ges-core`](https://www.npmjs.com/package/@greenarmor/ges-core) — Types and constants
-- [`@greenarmor/ges-report-generator`](https://www.npmjs.com/package/@greenarmor/ges-report-generator) — Generates reports from findings
+- `@greenarmor/ges-core` — Types and constants
+- `@greenarmor/ges-report-generator` — Generates reports from findings
 ## License

package/dist/scanners/auth-scanner.js CHANGED Viewed

@@ -63,7 +63,7 @@ export class AuthScanner {
                 file: "project",
                 evidence: "cors({ origin: '*' }) or Access-Control-Allow-Origin: *",
                 controlIds: ["OWASP-ASVS-006"],
-                fix: "Restrict CORS to specific origins: cors({ origin: ['https://yourdomain.com'] })",
+                fix: "Restrict CORS to specific origins via env var: cors({ origin: (process.env.ALLOWED_ORIGINS || '').split(',') })",
             });
         }
         if (!this.detectMFA(content)) {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@greenarmor/ges-audit-engine",
-  "version": "1.0.0",
+  "version": "1.0.1",
   "type": "module",
   "description": "GESF Audit Engine - Audit trails and compliance evaluation",
   "main": "./dist/index.js",
@@ -12,7 +12,7 @@
     }
   },
   "dependencies": {
-    "@greenarmor/ges-core": "1.0.0"
+    "@greenarmor/ges-core": "1.0.1"
   },
   "devDependencies": {
     "typescript": "^6.0.0",