@j-schreiber/sf-cli-security-audit 0.7.0 → 0.8.0

package/lib/libs/core/policies/policy.d.ts

@@ -1,31 +0,0 @@
-import EventEmitter from 'node:events';
-import { AuditPolicyResult, EntityResolveError } from '../result-types.js';
-import { AuditRunConfig, BasePolicyFileContent } from '../file-mgmt/schema.js';
-import RuleRegistry, { RegistryRuleResolveResult } from '../registries/ruleRegistry.js';
-import { AuditContext, IPolicy } from '../registries/types.js';
-export type ResolveEntityResult<T> = {
-    resolvedEntities: Record<string, T>;
-    ignoredEntities: EntityResolveError[];
-};
-export default abstract class Policy<T> extends EventEmitter implements IPolicy {
-    config: BasePolicyFileContent;
-    auditConfig: AuditRunConfig;
-    protected registry: RuleRegistry;
-    protected resolvedRules: RegistryRuleResolveResult;
-    protected entities?: ResolveEntityResult<T>;
-    constructor(config: BasePolicyFileContent, auditConfig: AuditRunConfig, registry: RuleRegistry);
-    /**
-     * Resolves all entities of the policy.
-     */
-    resolve(context: AuditContext): Promise<ResolveEntityResult<T>>;
-    /**
-     * Runs all rules of a policy. If the entities are not yet resolved, they are
-     * resolved on the fly before rules are executed.
-     *
-     * @param context
-     * @returns
-     */
-    run(context: AuditContext): Promise<AuditPolicyResult>;
-    protected abstract resolveEntities(context: AuditContext): Promise<ResolveEntityResult<T>>;
-}
-export declare function getTotal(resolveResult: ResolveEntityResult<unknown>): number;

package/lib/libs/core/policies/policy.js

@@ -1,100 +0,0 @@
-import EventEmitter from 'node:events';
-export default class Policy extends EventEmitter {
-    config;
-    auditConfig;
-    registry;
-    resolvedRules;
-    entities;
-    constructor(config, auditConfig, registry) {
-        super();
-        this.config = config;
-        this.auditConfig = auditConfig;
-        this.registry = registry;
-        this.resolvedRules = registry.resolveRules(config.rules, auditConfig);
-    }
-    /**
-     * Resolves all entities of the policy.
-     */
-    async resolve(context) {
-        // when a policy is disabled, we still want to appear it in audit results
-        // as disabled with 0 resolved entities and 0 executed rules
-        if (!this.config.enabled) {
-            return { resolvedEntities: {}, ignoredEntities: [] };
-        }
-        if (!this.entities) {
-            this.entities = await this.resolveEntities(context);
-        }
-        return this.entities;
-    }
-    /**
-     * Runs all rules of a policy. If the entities are not yet resolved, they are
-     * resolved on the fly before rules are executed.
-     *
-     * @param context
-     * @returns
-     */
-    async run(context) {
-        if (!this.config.enabled) {
-            return {
-                isCompliant: true,
-                enabled: false,
-                executedRules: {},
-                skippedRules: [],
-                auditedEntities: [],
-                ignoredEntities: [],
-            };
-        }
-        const resolveResult = await this.resolve(context);
-        const ruleResultPromises = Array();
-        for (const rule of this.resolvedRules.enabledRules) {
-            ruleResultPromises.push(rule.run({ ...context, resolvedEntities: resolveResult.resolvedEntities }));
-        }
-        const ruleResults = await Promise.all(ruleResultPromises);
-        const executedRules = {};
-        for (const ruleResult of ruleResults) {
-            const { compliantEntities, violatedEntities } = evalResolvedEntities(ruleResult, resolveResult);
-            executedRules[ruleResult.ruleName] = {
-                ...ruleResult,
-                isCompliant: ruleResult.violations.length === 0,
-                compliantEntities,
-                violatedEntities,
-            };
-        }
-        return {
-            isCompliant: isCompliant(executedRules),
-            enabled: true,
-            executedRules,
-            skippedRules: this.resolvedRules.skippedRules,
-            auditedEntities: Object.keys(resolveResult.resolvedEntities),
-            ignoredEntities: resolveResult.ignoredEntities,
-        };
-    }
-}
-function isCompliant(ruleResults) {
-    const list = Object.values(ruleResults);
-    if (list.length === 0) {
-        return true;
-    }
-    return list.reduce((prevVal, currentVal) => prevVal && currentVal.isCompliant, list[0].isCompliant);
-}
-function evalResolvedEntities(ruleResult, entities) {
-    const compliantEntities = [];
-    const violatedEntities = new Set();
-    ruleResult.violations.forEach((vio) => {
-        if (vio.identifier.length > 0) {
-            violatedEntities.add(vio.identifier[0]);
-        }
-    });
-    Object.keys(entities.resolvedEntities).forEach((entityIdentifier) => {
-        if (!violatedEntities.has(entityIdentifier)) {
-            compliantEntities.push(entityIdentifier);
-        }
-    });
-    return { compliantEntities, violatedEntities: Array.from(violatedEntities) };
-}
-export function getTotal(resolveResult) {
-    const resolvedCount = resolveResult.resolvedEntities ? Object.keys(resolveResult.resolvedEntities).length : 0;
-    const ignoredCount = resolveResult.ignoredEntities ? resolveResult.ignoredEntities.length : 0;
-    return resolvedCount + ignoredCount;
-}
-//# sourceMappingURL=policy.js.map

package/lib/libs/core/policies/policy.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"policy.js","sourceRoot":"","sources":["../../../../src/libs/core/policies/policy.ts"],"names":[],"mappings":"AAAA,OAAO,YAAY,MAAM,aAAa,CAAC;AAUvC,MAAM,CAAC,OAAO,OAAgB,MAAU,SAAQ,YAAY;IAKjD;IACA;IACG;IANF,aAAa,CAA4B;IACzC,QAAQ,CAA0B;IAE5C,YACS,MAA6B,EAC7B,WAA2B,EACxB,QAAsB;QAEhC,KAAK,EAAE,CAAC;QAJD,WAAM,GAAN,MAAM,CAAuB;QAC7B,gBAAW,GAAX,WAAW,CAAgB;QACxB,aAAQ,GAAR,QAAQ,CAAc;QAGhC,IAAI,CAAC,aAAa,GAAG,QAAQ,CAAC,YAAY,CAAC,MAAM,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;IACxE,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,OAAO,CAAC,OAAqB;QACxC,yEAAyE;QACzE,4DAA4D;QAC5D,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACzB,OAAO,EAAE,gBAAgB,EAAE,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,CAAC;QACvD,CAAC;QACD,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnB,IAAI,CAAC,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;QACtD,CAAC;QACD,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,GAAG,CAAC,OAAqB;QACpC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACzB,OAAO;gBACL,WAAW,EAAE,IAAI;gBACjB,OAAO,EAAE,KAAK;gBACd,aAAa,EAAE,EAAE;gBACjB,YAAY,EAAE,EAAE;gBAChB,eAAe,EAAE,EAAE;gBACnB,eAAe,EAAE,EAAE;aACpB,CAAC;QACJ,CAAC;QACD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAClD,MAAM,kBAAkB,GAAG,KAAK,EAAoC,CAAC;QACrE,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,aAAa,CAAC,YAAY,EAAE,CAAC;YACnD,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,GAAG,OAAO,EAAE,gBAAgB,EAAE,aAAa,CAAC,gBAAgB,EAAE,CAAC,CAAC,CAAC;QACtG,CAAC;QACD,MAAM,WAAW,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;QAC1D,MAAM,aAAa,GAA8C,EAAE,CAAC;QACpE,KAAK,MAAM,UAAU,IAAI,WAAW,EAAE,CAAC;YACrC,MAAM,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,GAAG,oBAAoB,CAAI,UAAU,EAAE,aAAa,CAAC,CAAC;YACnG,aAAa,CAAC,UAAU,CAAC,QAAQ,CAAC,GAAG;gBACnC,GAAG,UAAU;gBACb,WAAW,EAAE,UAAU,CAAC,UAAU,CAAC,MAAM,KAAK,CAAC;gBAC/C,iBAAiB;gBACjB,gBAAgB;aACjB,CAAC;QACJ,CAAC;QACD,OAAO;YACL,WAAW,EAAE,WAAW,CAAC,aAAa,CAAC;YACvC,OAAO,EAAE,IAAI;YACb,aAAa;YACb,YAAY,EAAE,IAAI,CAAC,aAAa,CAAC,YAAY;YAC7C,eAAe,EAAE,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,gBAAgB,CAAC;YAC5D,eAAe,EAAE,aAAa,CAAC,eAAe;SAC/C,CAAC;IACJ,CAAC;CAGF;AAED,SAAS,WAAW,CAAC,WAAsD;IACzE,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IACxC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,UAAU,EAAE,EAAE,CAAC,OAAO,IAAI,UAAU,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC;AACtG,CAAC;AAED,SAAS,oBAAoB,CAC3B,UAAmC,EACnC,QAAgC;IAEhC,MAAM,iBAAiB,GAAa,EAAE,CAAC;IACvC,MAAM,gBAAgB,GAAG,IAAI,GAAG,EAAU,CAAC;IAC3C,UAAU,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;QACpC,IAAI,GAAG,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC9B,gBAAgB,CAAC,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;IACH,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC,OAAO,CAAC,CAAC,gBAAgB,EAAE,EAAE;QAClE,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,gBAAgB,CAAC,EAAE,CAAC;YAC5C,iBAAiB,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC,CAAC,CAAC;IACH,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,EAAE,CAAC;AAC/E,CAAC;AAED,MAAM,UAAU,QAAQ,CAAC,aAA2C;IAClE,MAAM,aAAa,GAAG,aAAa,CAAC,gBAAgB,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,gBAAgB,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9G,MAAM,YAAY,GAAG,aAAa,CAAC,eAAe,CAAC,CAAC,CAAC,aAAa,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9F,OAAO,aAAa,GAAG,YAAY,CAAC;AACtC,CAAC"}

package/lib/libs/core/policies/profilePolicy.d.ts

@@ -1,11 +0,0 @@
-import { AuditRunConfig, ProfilesPolicyFileContent } from '../file-mgmt/schema.js';
-import { AuditContext } from '../registries/types.js';
-import { ResolvedProfile } from '../registries/profiles.js';
-import Policy, { ResolveEntityResult } from './policy.js';
-export default class ProfilePolicy extends Policy<ResolvedProfile> {
-    config: ProfilesPolicyFileContent;
-    auditConfig: AuditRunConfig;
-    private totalEntities;
-    constructor(config: ProfilesPolicyFileContent, auditConfig: AuditRunConfig, registry?: import("../registries/profiles.js").default);
-    protected resolveEntities(context: AuditContext): Promise<ResolveEntityResult<ResolvedProfile>>;
-}

package/lib/libs/core/policies/profilePolicy.js

@@ -1,64 +0,0 @@
-import { Messages } from '@salesforce/core';
-import MDAPI from '../mdapi/mdapiRetriever.js';
-import { ProfilesRiskPreset } from '../policy-types.js';
-import { ProfilesRegistry } from '../registries/profiles.js';
-import Policy, { getTotal } from './policy.js';
-Messages.importMessagesDirectoryFromMetaUrl(import.meta.url);
-const messages = Messages.loadMessages('@j-schreiber/sf-cli-security-audit', 'policies.general');
-export default class ProfilePolicy extends Policy {
-    config;
-    auditConfig;
-    totalEntities;
-    constructor(config, auditConfig, registry = ProfilesRegistry) {
-        super(config, auditConfig, registry);
-        this.config = config;
-        this.auditConfig = auditConfig;
-        this.totalEntities = this.config.profiles ? Object.keys(this.config.profiles).length : 0;
-    }
-    async resolveEntities(context) {
-        this.emit('entityresolve', {
-            total: this.totalEntities,
-            resolved: 0,
-        });
-        const successfullyResolved = {};
-        const ignoredEntities = {};
-        const definitiveProfiles = this.config.profiles ?? {};
-        const classifiedProfiles = [];
-        Object.entries(definitiveProfiles).forEach(([profileName, profileDef]) => {
-            if (profileDef.preset === ProfilesRiskPreset.UNKNOWN) {
-                ignoredEntities[profileName] = {
-                    name: profileName,
-                    message: messages.getMessage('preset-unknown', ['Profile']),
-                };
-            }
-            else {
-                classifiedProfiles.push(profileName);
-            }
-        });
-        const mdapi = new MDAPI(context.targetOrgConnection);
-        const resolvedProfiles = await mdapi.resolve('Profile', classifiedProfiles);
-        classifiedProfiles.forEach((profileName) => {
-            const resolvedProfile = resolvedProfiles[profileName];
-            if (!resolvedProfile) {
-                ignoredEntities[profileName] = {
-                    name: profileName,
-                    message: messages.getMessage('entity-not-found'),
-                };
-            }
-            else {
-                successfullyResolved[profileName] = {
-                    name: profileName,
-                    preset: definitiveProfiles[profileName].preset,
-                    metadata: resolvedProfile,
-                };
-            }
-        });
-        const result = { resolvedEntities: successfullyResolved, ignoredEntities: Object.values(ignoredEntities) };
-        this.emit('entityresolve', {
-            total: this.totalEntities,
-            resolved: getTotal(result),
-        });
-        return result;
-    }
-}
-//# sourceMappingURL=profilePolicy.js.map

package/lib/libs/core/policies/profilePolicy.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"profilePolicy.js","sourceRoot":"","sources":["../../../../src/libs/core/policies/profilePolicy.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAG5C,OAAO,KAAK,MAAM,4BAA4B,CAAC;AAE/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAmB,MAAM,2BAA2B,CAAC;AAC9E,OAAO,MAAM,EAAE,EAAE,QAAQ,EAAuB,MAAM,aAAa,CAAC;AAEpE,QAAQ,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC7D,MAAM,QAAQ,GAAG,QAAQ,CAAC,YAAY,CAAC,oCAAoC,EAAE,kBAAkB,CAAC,CAAC;AAEjG,MAAM,CAAC,OAAO,OAAO,aAAc,SAAQ,MAAuB;IAGvD;IACA;IAHD,aAAa,CAAS;IAC9B,YACS,MAAiC,EACjC,WAA2B,EAClC,QAAQ,GAAG,gBAAgB;QAE3B,KAAK,CAAC,MAAM,EAAE,WAAW,EAAE,QAAQ,CAAC,CAAC;QAJ9B,WAAM,GAAN,MAAM,CAA2B;QACjC,gBAAW,GAAX,WAAW,CAAgB;QAIlC,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAC3F,CAAC;IAES,KAAK,CAAC,eAAe,CAAC,OAAqB;QACnD,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE;YACzB,KAAK,EAAE,IAAI,CAAC,aAAa;YACzB,QAAQ,EAAE,CAAC;SACZ,CAAC,CAAC;QACH,MAAM,oBAAoB,GAAoC,EAAE,CAAC;QACjE,MAAM,eAAe,GAAuC,EAAE,CAAC;QAC/D,MAAM,kBAAkB,GAAG,IAAI,CAAC,MAAM,CAAC,QAAQ,IAAI,EAAE,CAAC;QACtD,MAAM,kBAAkB,GAAa,EAAE,CAAC;QACxC,MAAM,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,WAAW,EAAE,UAAU,CAAC,EAAE,EAAE;YACvE,IAAI,UAAU,CAAC,MAAM,KAAK,kBAAkB,CAAC,OAAO,EAAE,CAAC;gBACrD,eAAe,CAAC,WAAW,CAAC,GAAG;oBAC7B,IAAI,EAAE,WAAW;oBACjB,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC,SAAS,CAAC,CAAC;iBAC5D,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,kBAAkB,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YACvC,CAAC;QACH,CAAC,CAAC,CAAC;QACH,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC;QACrD,MAAM,gBAAgB,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC,SAAS,EAAE,kBAAkB,CAAC,CAAC;QAC5E,kBAAkB,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,EAAE;YACzC,MAAM,eAAe,GAAG,gBAAgB,CAAC,WAAW,CAAC,CAAC;YACtD,IAAI,CAAC,eAAe,EAAE,CAAC;gBACrB,eAAe,CAAC,WAAW,CAAC,GAAG;oBAC7B,IAAI,EAAE,WAAW;oBACjB,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,kBAAkB,CAAC;iBACjD,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,oBAAoB,CAAC,WAAW,CAAC,GAAG;oBAClC,IAAI,EAAE,WAAW;oBACjB,MAAM,EAAE,kBAAkB,CAAC,WAAW,CAAC,CAAC,MAAM;oBAC9C,QAAQ,EAAE,eAAe;iBAC1B,CAAC;YACJ,CAAC;QACH,CAAC,CAAC,CAAC;QACH,MAAM,MAAM,GAAG,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,eAAe,EAAE,MAAM,CAAC,MAAM,CAAC,eAAe,CAAC,EAAE,CAAC;QAC3G,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE;YACzB,KAAK,EAAE,IAAI,CAAC,aAAa;YACzB,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC;SAC3B,CAAC,CAAC;QACH,OAAO,MAAM,CAAC;IAChB,CAAC;CACF"}

package/lib/libs/core/policies/salesforceStandardTypes.d.ts

@@ -1,53 +0,0 @@
-import { Record } from '@jsforce/jsforce-node';
-import { Profile as JsForceProfile } from '@jsforce/jsforce-node/lib/api/metadata.js';
-export type CustomPermission = Record & {
-    Id: string;
-    MasterLabel: string;
-    DeveloperName: string;
-};
-export type ConnectedApp = Record & {
-    Id: string;
-    Name: string;
-    OptionsAllowAdminApprovedUsersOnly: boolean;
-};
-export type OauthToken = Record & {
-    Id: string;
-    User: Pick<User, 'Username'>;
-    AppName: string;
-    UseCount: number;
-};
-export type User = Record & {
-    Username: string;
-    LastLoginDate?: string;
-    CreatedDate: string;
-    Profile: ProfileBasic;
-};
-export type Profile = ProfileBasic & {
-    Metadata: JsForceProfile;
-};
-type ProfileBasic = Record & {
-    Id: string;
-    Name: string;
-    UserType: string;
-};
-export type PermissionSet = Record & {
-    Id: string;
-    IsOwnedByProfile: boolean;
-    IsCustom: boolean;
-    Name: string;
-    Label: string;
-    Profile: ProfileBasic;
-    NamespacePrefix?: string;
-};
-export type PermissionSetAssignment = Record & {
-    AssigneeId: string;
-    PermissionSet: Pick<PermissionSet, 'Name'>;
-};
-export type UserLoginsAggregate = Record & {
-    LoginType: string;
-    Application: string;
-    UserId: string;
-    LoginCount: number;
-    LastLogin: string;
-};
-export {};

package/lib/libs/core/policies/salesforceStandardTypes.js

@@ -1,2 +0,0 @@
-export {};
-//# sourceMappingURL=salesforceStandardTypes.js.map

package/lib/libs/core/policies/salesforceStandardTypes.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"salesforceStandardTypes.js","sourceRoot":"","sources":["../../../../src/libs/core/policies/salesforceStandardTypes.ts"],"names":[],"mappings":""}

package/lib/libs/core/policies/userPolicy.d.ts

@@ -1,11 +0,0 @@
-import { AuditRunConfig, UsersPolicyFileContent } from '../file-mgmt/schema.js';
-import { AuditContext } from '../registries/types.js';
-import { ResolvedUser } from '../registries/users.js';
-import Policy, { ResolveEntityResult } from './policy.js';
-export default class UserPolicy extends Policy<ResolvedUser> {
-    config: UsersPolicyFileContent;
-    auditConfig: AuditRunConfig;
-    private totalEntities;
-    constructor(config: UsersPolicyFileContent, auditConfig: AuditRunConfig, registry?: import("../registries/users.js").default);
-    protected resolveEntities(context: AuditContext): Promise<ResolveEntityResult<ResolvedUser>>;
-}

package/lib/libs/core/policies/userPolicy.js

@@ -1,104 +0,0 @@
-import { Messages } from '@salesforce/core';
-import { ACTIVE_USERS_DETAILS_QUERY, buildLoginHistoryQuery } from '../constants.js';
-import { UsersRegistry } from '../registries/users.js';
-import { ProfilesRiskPreset } from '../policy-types.js';
-import Policy, { getTotal } from './policy.js';
-Messages.importMessagesDirectoryFromMetaUrl(import.meta.url);
-const messages = Messages.loadMessages('@j-schreiber/sf-cli-security-audit', 'policies.general');
-export default class UserPolicy extends Policy {
-    config;
-    auditConfig;
-    totalEntities;
-    constructor(config, auditConfig, registry = UsersRegistry) {
-        super(config, auditConfig, registry);
-        this.config = config;
-        this.auditConfig = auditConfig;
-        this.totalEntities = this.config.users ? Object.keys(this.config.users).length : 0;
-    }
-    async resolveEntities(context) {
-        this.emit('entityresolve', {
-            total: this.totalEntities,
-            resolved: 0,
-        });
-        const usersById = {};
-        const ignoredEntities = {};
-        const configuredUsers = this.config.users ?? {};
-        const classifiedUsers = [];
-        const userIds = [];
-        Object.entries(configuredUsers).forEach(([userName, userDef]) => {
-            if (userDef.role === ProfilesRiskPreset.UNKNOWN) {
-                ignoredEntities[userName] = {
-                    name: userName,
-                    message: messages.getMessage('user-with-role-unknown'),
-                };
-            }
-            else {
-                classifiedUsers.push(userName);
-            }
-        });
-        // fetch all users from org and merge with configured users
-        const allUsersOnOrg = await context.targetOrgConnection.query(ACTIVE_USERS_DETAILS_QUERY);
-        allUsersOnOrg.records.forEach((user) => {
-            if (ignoredEntities[user.Username] === undefined) {
-                usersById[user.Id] = {
-                    userId: user.Id,
-                    username: user.Username,
-                    lastLogin: user.LastLoginDate ? Date.parse(user.LastLoginDate) : undefined,
-                    createdDate: Date.parse(user.CreatedDate),
-                    assignedProfile: user.Profile.Name,
-                    assignedPermissionSets: [],
-                    logins: [],
-                    role: configuredUsers[user.Username]?.role ?? this.config.options.defaultRoleForMissingUsers,
-                };
-                userIds.push(user.Id);
-            }
-        });
-        this.totalEntities = allUsersOnOrg.totalSize;
-        this.emit('entityresolve', {
-            total: this.totalEntities,
-            resolved: 0,
-        });
-        const userLogins = await resolveLogins(context, this.config.options.analyseLastNDaysOfLoginHistory);
-        Object.entries(userLogins).forEach(([userId, user]) => {
-            if (usersById[userId] !== undefined) {
-                usersById[userId].logins = user.logins;
-            }
-        });
-        // resolve perm set assignments per user
-        // const assignments = await context.targetOrgConnection.query<PermissionSetAssignment>(
-        //   buildPermsetAssignmentsQuery(userIds)
-        // );
-        // assignments.records.forEach(assignment => {
-        // })
-        const result = { resolvedEntities: organizeByUsername(usersById), ignoredEntities: Object.values(ignoredEntities) };
-        this.emit('entityresolve', {
-            total: this.totalEntities,
-            resolved: getTotal(result),
-        });
-        return result;
-    }
-}
-async function resolveLogins(context, daysToAnalyse) {
-    const loginHistory = await context.targetOrgConnection.query(buildLoginHistoryQuery(daysToAnalyse));
-    const partialUsers = {};
-    loginHistory.records.forEach((loginHistoryRow) => {
-        if (!partialUsers[loginHistoryRow.UserId]) {
-            partialUsers[loginHistoryRow.UserId] = { logins: [] };
-        }
-        partialUsers[loginHistoryRow.UserId].logins.push({
-            loginType: loginHistoryRow.LoginType,
-            loginCount: loginHistoryRow.LoginCount,
-            application: loginHistoryRow.Application,
-            lastLogin: Date.parse(loginHistoryRow.LastLogin),
-        });
-    });
-    return partialUsers;
-}
-function organizeByUsername(partial) {
-    const full = {};
-    Object.values(partial).forEach((resolved) => {
-        full[resolved.username] = resolved;
-    });
-    return full;
-}
-//# sourceMappingURL=userPolicy.js.map

package/lib/libs/core/policies/userPolicy.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"userPolicy.js","sourceRoot":"","sources":["../../../../src/libs/core/policies/userPolicy.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAI5C,OAAO,EAAE,0BAA0B,EAAE,sBAAsB,EAAE,MAAM,iBAAiB,CAAC;AACrF,OAAO,EAAgB,aAAa,EAAE,MAAM,wBAAwB,CAAC;AACrE,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AACxD,OAAO,MAAM,EAAE,EAAE,QAAQ,EAAuB,MAAM,aAAa,CAAC;AAGpE,QAAQ,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC7D,MAAM,QAAQ,GAAG,QAAQ,CAAC,YAAY,CAAC,oCAAoC,EAAE,kBAAkB,CAAC,CAAC;AAEjG,MAAM,CAAC,OAAO,OAAO,UAAW,SAAQ,MAAoB;IAGjD;IACA;IAHD,aAAa,CAAS;IAC9B,YACS,MAA8B,EAC9B,WAA2B,EAClC,QAAQ,GAAG,aAAa;QAExB,KAAK,CAAC,MAAM,EAAE,WAAW,EAAE,QAAQ,CAAC,CAAC;QAJ9B,WAAM,GAAN,MAAM,CAAwB;QAC9B,gBAAW,GAAX,WAAW,CAAgB;QAIlC,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IACrF,CAAC;IAES,KAAK,CAAC,eAAe,CAAC,OAAqB;QACnD,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE;YACzB,KAAK,EAAE,IAAI,CAAC,aAAa;YACzB,QAAQ,EAAE,CAAC;SACZ,CAAC,CAAC;QACH,MAAM,SAAS,GAAiC,EAAE,CAAC;QACnD,MAAM,eAAe,GAAuC,EAAE,CAAC;QAC/D,MAAM,eAAe,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,IAAI,EAAE,CAAC;QAChD,MAAM,eAAe,GAAG,EAAE,CAAC;QAC3B,MAAM,OAAO,GAAa,EAAE,CAAC;QAC7B,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE,OAAO,CAAC,EAAE,EAAE;YAC9D,IAAI,OAAO,CAAC,IAAI,KAAK,kBAAkB,CAAC,OAAO,EAAE,CAAC;gBAChD,eAAe,CAAC,QAAQ,CAAC,GAAG;oBAC1B,IAAI,EAAE,QAAQ;oBACd,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,wBAAwB,CAAC;iBACvD,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACjC,CAAC;QACH,CAAC,CAAC,CAAC;QACH,2DAA2D;QAC3D,MAAM,aAAa,GAAG,MAAM,OAAO,CAAC,mBAAmB,CAAC,KAAK,CAAO,0BAA0B,CAAC,CAAC;QAChG,aAAa,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE;YACrC,IAAI,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,KAAK,SAAS,EAAE,CAAC;gBACjD,SAAS,CAAC,IAAI,CAAC,EAAG,CAAC,GAAG;oBACpB,MAAM,EAAE,IAAI,CAAC,EAAG;oBAChB,QAAQ,EAAE,IAAI,CAAC,QAAQ;oBACvB,SAAS,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,SAAS;oBAC1E,WAAW,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC;oBACzC,eAAe,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI;oBAClC,sBAAsB,EAAE,EAAE;oBAC1B,MAAM,EAAE,EAAE;oBACV,IAAI,EAAE,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,IAAI,IAAI,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,0BAA0B;iBAC7F,CAAC;gBACF,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAG,CAAC,CAAC;YACzB,CAAC;QACH,CAAC,CAAC,CAAC;QACH,IAAI,CAAC,aAAa,GAAG,aAAa,CAAC,SAAS,CAAC;QAC7C,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE;YACzB,KAAK,EAAE,IAAI,CAAC,aAAa;YACzB,QAAQ,EAAE,CAAC;SACZ,CAAC,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,8BAA8B,CAAC,CAAC;QACpG,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE;YACpD,IAAI,SAAS,CAAC,MAAM,CAAC,KAAK,SAAS,EAAE,CAAC;gBACpC,SAAS,CAAC,MAAM,CAAC,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;YACzC,CAAC;QACH,CAAC,CAAC,CAAC;QACH,wCAAwC;QACxC,wFAAwF;QACxF,0CAA0C;QAC1C,KAAK;QACL,8CAA8C;QAE9C,KAAK;QACL,MAAM,MAAM,GAAG,EAAE,gBAAgB,EAAE,kBAAkB,CAAC,SAAS,CAAC,EAAE,eAAe,EAAE,MAAM,CAAC,MAAM,CAAC,eAAe,CAAC,EAAE,CAAC;QACpH,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE;YACzB,KAAK,EAAE,IAAI,CAAC,aAAa;YACzB,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC;SAC3B,CAAC,CAAC;QACH,OAAO,MAAM,CAAC;IAChB,CAAC;CACF;AAED,KAAK,UAAU,aAAa,CAAC,OAAqB,EAAE,aAAsB;IACxE,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,mBAAmB,CAAC,KAAK,CAC1D,sBAAsB,CAAC,aAAa,CAAC,CACtC,CAAC;IACF,MAAM,YAAY,GAA8C,EAAE,CAAC;IACnE,YAAY,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,eAAe,EAAE,EAAE;QAC/C,IAAI,CAAC,YAAY,CAAC,eAAe,CAAC,MAAM,CAAC,EAAE,CAAC;YAC1C,YAAY,CAAC,eAAe,CAAC,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;QACxD,CAAC;QACD,YAAY,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC;YAC/C,SAAS,EAAE,eAAe,CAAC,SAAS;YACpC,UAAU,EAAE,eAAe,CAAC,UAAU;YACtC,WAAW,EAAE,eAAe,CAAC,WAAW;YACxC,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,SAAS,CAAC;SACjD,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IACH,OAAO,YAAY,CAAC;AACtB,CAAC;AAID,SAAS,kBAAkB,CAAC,OAAqC;IAC/D,MAAM,IAAI,GAAiC,EAAE,CAAC;IAC9C,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,QAAQ,EAAE,EAAE;QAC1C,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,GAAG,QAAQ,CAAC;IACrC,CAAC,CAAC,CAAC;IACH,OAAO,IAAI,CAAC;AACd,CAAC"}

package/lib/libs/core/policy-types.d.ts

@@ -1,18 +0,0 @@
-/**
- * Presets can be assigned to profiles and permission sets.
- * A preset allows permissions up to a fixed risk level.
- */
-export declare enum ProfilesRiskPreset {
-    /** Allows up to "Critical" permissions */
-    DEVELOPER = "Developer",
-    /** Allows up to "High" permissions */
-    ADMIN = "Admin",
-    /** Allows up to "Medium" permissions */
-    POWER_USER = "Power User",
-    /** Allows only "Low" permissions */
-    STANDARD_USER = "Standard User",
-    /** Disables the profile for audit */
-    UNKNOWN = "Unknown"
-}
-export declare function resolvePresetOrdinalValue(value: string): number;
-export declare function permissionAllowedInPreset(permClassification: string, preset: string): boolean;

package/lib/libs/core/policy-types.js

@@ -1,28 +0,0 @@
-import { PermissionRiskLevel, resolveRiskLevelOrdinalValue } from './classification-types.js';
-/**
- * Presets can be assigned to profiles and permission sets.
- * A preset allows permissions up to a fixed risk level.
- */
-export var ProfilesRiskPreset;
-(function (ProfilesRiskPreset) {
-    /** Allows up to "Critical" permissions */
-    ProfilesRiskPreset["DEVELOPER"] = "Developer";
-    /** Allows up to "High" permissions */
-    ProfilesRiskPreset["ADMIN"] = "Admin";
-    /** Allows up to "Medium" permissions */
-    ProfilesRiskPreset["POWER_USER"] = "Power User";
-    /** Allows only "Low" permissions */
-    ProfilesRiskPreset["STANDARD_USER"] = "Standard User";
-    /** Disables the profile for audit */
-    ProfilesRiskPreset["UNKNOWN"] = "Unknown";
-})(ProfilesRiskPreset || (ProfilesRiskPreset = {}));
-export function resolvePresetOrdinalValue(value) {
-    return Object.keys(ProfilesRiskPreset).indexOf(value.toUpperCase().replace(' ', '_'));
-}
-export function permissionAllowedInPreset(permClassification, preset) {
-    // this works, as long as we are mindful when adding new risk levels and presets
-    const invertedPermValue = Object.keys(PermissionRiskLevel).length - resolveRiskLevelOrdinalValue(permClassification);
-    const invertedPresetValue = Object.keys(ProfilesRiskPreset).length - resolvePresetOrdinalValue(preset);
-    return invertedPresetValue >= invertedPermValue;
-}
-//# sourceMappingURL=policy-types.js.map

package/lib/libs/core/policy-types.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"policy-types.js","sourceRoot":"","sources":["../../../src/libs/core/policy-types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,mBAAmB,EAAE,4BAA4B,EAAE,MAAM,2BAA2B,CAAC;AAE9F;;;GAGG;AACH,MAAM,CAAN,IAAY,kBAWX;AAXD,WAAY,kBAAkB;IAC5B,0CAA0C;IAC1C,6CAAuB,CAAA;IACvB,sCAAsC;IACtC,qCAAe,CAAA;IACf,wCAAwC;IACxC,+CAAyB,CAAA;IACzB,oCAAoC;IACpC,qDAA+B,CAAA;IAC/B,qCAAqC;IACrC,yCAAmB,CAAA;AACrB,CAAC,EAXW,kBAAkB,KAAlB,kBAAkB,QAW7B;AAED,MAAM,UAAU,yBAAyB,CAAC,KAAa;IACrD,OAAO,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;AACxF,CAAC;AAED,MAAM,UAAU,yBAAyB,CAAC,kBAA0B,EAAE,MAAc;IAClF,gFAAgF;IAChF,MAAM,iBAAiB,GAAG,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,MAAM,GAAG,4BAA4B,CAAC,kBAAkB,CAAC,CAAC;IACrH,MAAM,mBAAmB,GAAG,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,MAAM,GAAG,yBAAyB,CAAC,MAAM,CAAC,CAAC;IACvG,OAAO,mBAAmB,IAAI,iBAAiB,CAAC;AAClD,CAAC"}

package/lib/libs/core/policyRegistry.d.ts

@@ -1,23 +0,0 @@
-import z from 'zod';
-import { AuditRunConfigClassifications, AuditRunConfigPolicies } from './file-mgmt/schema.js';
-import { Constructor } from './registries/types.js';
-import Policy from './policies/policy.js';
-export declare const classificationDefs: ClassificationRegistry;
-export type PolicyNames = keyof AuditRunConfigPolicies;
-export type ClassificationNames = keyof AuditRunConfigClassifications;
-export type PolicyRegistry = Record<PolicyNames, PolicyRegistryEntry>;
-export declare const policyDefs: PolicyRegistry;
-type PolicyRegistryEntry = ConfigFileDefinition & {
-    dependencies?: ConfigFileDependency[];
-    handler: Constructor<Policy<unknown>>;
-};
-type ConfigFileDefinition = {
-    fileName?: string;
-    schema: z.ZodObject;
-};
-type ConfigFileDependency = {
-    errorName: string;
-    path: string[];
-};
-type ClassificationRegistry = Record<keyof AuditRunConfigClassifications, ConfigFileDefinition>;
-export {};

package/lib/libs/core/policyRegistry.js

@@ -1,38 +0,0 @@
-import { PermissionsConfigFileSchema, PermSetsPolicyFileSchema, PolicyFileSchema, ProfilesPolicyFileSchema, UsersPolicyFileSchema, } from './file-mgmt/schema.js';
-import ConnectedAppPolicy from './policies/connectedAppPolicy.js';
-import PermissionSetPolicy from './policies/permissionSetPolicy.js';
-import ProfilePolicy from './policies/profilePolicy.js';
-import UserPolicy from './policies/userPolicy.js';
-export const classificationDefs = {
-    userPermissions: {
-        schema: PermissionsConfigFileSchema,
-    },
-    customPermissions: {
-        schema: PermissionsConfigFileSchema,
-    },
-};
-export const policyDefs = {
-    profiles: {
-        handler: ProfilePolicy,
-        schema: ProfilesPolicyFileSchema,
-        dependencies: [
-            { path: ['classifications', 'userPermissions'], errorName: 'UserPermClassificationRequiredForProfiles' },
-        ],
-    },
-    permissionSets: {
-        handler: PermissionSetPolicy,
-        schema: PermSetsPolicyFileSchema,
-        dependencies: [
-            { path: ['classifications', 'userPermissions'], errorName: 'UserPermClassificationRequiredForPermSets' },
-        ],
-    },
-    connectedApps: {
-        handler: ConnectedAppPolicy,
-        schema: PolicyFileSchema,
-    },
-    users: {
-        handler: UserPolicy,
-        schema: UsersPolicyFileSchema,
-    },
-};
-//# sourceMappingURL=policyRegistry.js.map

package/lib/libs/core/policyRegistry.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"policyRegistry.js","sourceRoot":"","sources":["../../../src/libs/core/policyRegistry.ts"],"names":[],"mappings":"AACA,OAAO,EAGL,2BAA2B,EAC3B,wBAAwB,EACxB,gBAAgB,EAChB,wBAAwB,EACxB,qBAAqB,GACtB,MAAM,uBAAuB,CAAC;AAE/B,OAAO,kBAAkB,MAAM,kCAAkC,CAAC;AAClE,OAAO,mBAAmB,MAAM,mCAAmC,CAAC;AAEpE,OAAO,aAAa,MAAM,6BAA6B,CAAC;AACxD,OAAO,UAAU,MAAM,0BAA0B,CAAC;AAElD,MAAM,CAAC,MAAM,kBAAkB,GAA2B;IACxD,eAAe,EAAE;QACf,MAAM,EAAE,2BAA2B;KACpC;IACD,iBAAiB,EAAE;QACjB,MAAM,EAAE,2BAA2B;KACpC;CACF,CAAC;AAOF,MAAM,CAAC,MAAM,UAAU,GAAmB;IACxC,QAAQ,EAAE;QACR,OAAO,EAAE,aAAa;QACtB,MAAM,EAAE,wBAAwB;QAChC,YAAY,EAAE;YACZ,EAAE,IAAI,EAAE,CAAC,iBAAiB,EAAE,iBAAiB,CAAC,EAAE,SAAS,EAAE,2CAA2C,EAAE;SACzG;KACF;IACD,cAAc,EAAE;QACd,OAAO,EAAE,mBAAmB;QAC5B,MAAM,EAAE,wBAAwB;QAChC,YAAY,EAAE;YACZ,EAAE,IAAI,EAAE,CAAC,iBAAiB,EAAE,iBAAiB,CAAC,EAAE,SAAS,EAAE,2CAA2C,EAAE;SACzG;KACF;IACD,aAAa,EAAE;QACb,OAAO,EAAE,kBAAkB;QAC3B,MAAM,EAAE,gBAAgB;KACzB;IACD,KAAK,EAAE;QACL,OAAO,EAAE,UAAU;QACnB,MAAM,EAAE,qBAAqB;KAC9B;CACF,CAAC"}

package/lib/libs/core/registries/connectedApps.d.ts

@@ -1,13 +0,0 @@
-import RuleRegistry from './ruleRegistry.js';
-export type ResolvedConnectedApp = {
-    name: string;
-    origin: 'Installed' | 'OauthToken' | 'Owned';
-    onlyAdminApprovedUsersAllowed: boolean;
-    overrideByApiSecurityAccess: boolean;
-    useCount: number;
-    users: string[];
-};
-export default class ConnectedAppsRuleRegistry extends RuleRegistry {
-    constructor();
-}
-export declare const ConnectedAppsRegistry: ConnectedAppsRuleRegistry;

package/lib/libs/core/registries/connectedApps.js

@@ -1,13 +0,0 @@
-import AllUsedAppsUnderManagement from './rules/allUsedAppsUnderManagement.js';
-import NoUserCanSelfAuthorize from './rules/noUserCanSelfAuthorize.js';
-import RuleRegistry from './ruleRegistry.js';
-export default class ConnectedAppsRuleRegistry extends RuleRegistry {
-    constructor() {
-        super({
-            AllUsedAppsUnderManagement,
-            NoUserCanSelfAuthorize,
-        });
-    }
-}
-export const ConnectedAppsRegistry = new ConnectedAppsRuleRegistry();
-//# sourceMappingURL=connectedApps.js.map

package/lib/libs/core/registries/connectedApps.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"connectedApps.js","sourceRoot":"","sources":["../../../../src/libs/core/registries/connectedApps.ts"],"names":[],"mappings":"AAAA,OAAO,0BAA0B,MAAM,uCAAuC,CAAC;AAC/E,OAAO,sBAAsB,MAAM,mCAAmC,CAAC;AACvE,OAAO,YAAY,MAAM,mBAAmB,CAAC;AAU7C,MAAM,CAAC,OAAO,OAAO,yBAA0B,SAAQ,YAAY;IACjE;QACE,KAAK,CAAC;YACJ,0BAA0B;YAC1B,sBAAsB;SACvB,CAAC,CAAC;IACL,CAAC;CACF;AAED,MAAM,CAAC,MAAM,qBAAqB,GAAG,IAAI,yBAAyB,EAAE,CAAC"}

package/lib/libs/core/registries/permissionSets.d.ts

@@ -1,11 +0,0 @@
-import { PermissionSet } from '@jsforce/jsforce-node/lib/api/metadata.js';
-import RuleRegistry from './ruleRegistry.js';
-export type ResolvedPermissionSet = {
-    name: string;
-    preset: string;
-    metadata: PermissionSet;
-};
-export default class PermSetsRuleRegistry extends RuleRegistry {
-    constructor();
-}
-export declare const PermissionSetsRegistry: PermSetsRuleRegistry;

package/lib/libs/core/registries/permissionSets.js

@@ -1,11 +0,0 @@
-import EnforceUserPermsClassificationOnPermSets from './rules/enforceUserPermsClassificationOnPermSets.js';
-import RuleRegistry from './ruleRegistry.js';
-export default class PermSetsRuleRegistry extends RuleRegistry {
-    constructor() {
-        super({
-            EnforceUserPermissionClassifications: EnforceUserPermsClassificationOnPermSets,
-        });
-    }
-}
-export const PermissionSetsRegistry = new PermSetsRuleRegistry();
-//# sourceMappingURL=permissionSets.js.map

package/lib/libs/core/registries/permissionSets.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"permissionSets.js","sourceRoot":"","sources":["../../../../src/libs/core/registries/permissionSets.ts"],"names":[],"mappings":"AACA,OAAO,wCAAwC,MAAM,qDAAqD,CAAC;AAC3G,OAAO,YAAY,MAAM,mBAAmB,CAAC;AAO7C,MAAM,CAAC,OAAO,OAAO,oBAAqB,SAAQ,YAAY;IAC5D;QACE,KAAK,CAAC;YACJ,oCAAoC,EAAE,wCAAwC;SAC/E,CAAC,CAAC;IACL,CAAC;CACF;AAED,MAAM,CAAC,MAAM,sBAAsB,GAAG,IAAI,oBAAoB,EAAE,CAAC"}

package/lib/libs/core/registries/profiles.d.ts

@@ -1,11 +0,0 @@
-import { Profile as ProfileMetadata } from '@jsforce/jsforce-node/lib/api/metadata.js';
-import RuleRegistry from './ruleRegistry.js';
-export type ResolvedProfile = {
-    name: string;
-    preset: string;
-    metadata: ProfileMetadata;
-};
-export default class ProfilesRuleRegistry extends RuleRegistry {
-    constructor();
-}
-export declare const ProfilesRegistry: ProfilesRuleRegistry;

package/lib/libs/core/registries/profiles.js

@@ -1,13 +0,0 @@
-import EnforceCustomPermsClassificationOnProfiles from './rules/enforceCustomPermsClassificationOnProfiles.js';
-import EnforceUserPermsClassificationOnProfiles from './rules/enforceUserPermsClassificationOnProfiles.js';
-import RuleRegistry from './ruleRegistry.js';
-export default class ProfilesRuleRegistry extends RuleRegistry {
-    constructor() {
-        super({
-            EnforceCustomPermissionClassifications: EnforceCustomPermsClassificationOnProfiles,
-            EnforceUserPermissionClassifications: EnforceUserPermsClassificationOnProfiles,
-        });
-    }
-}
-export const ProfilesRegistry = new ProfilesRuleRegistry();
-//# sourceMappingURL=profiles.js.map

package/lib/libs/core/registries/profiles.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"profiles.js","sourceRoot":"","sources":["../../../../src/libs/core/registries/profiles.ts"],"names":[],"mappings":"AACA,OAAO,0CAA0C,MAAM,uDAAuD,CAAC;AAC/G,OAAO,wCAAwC,MAAM,qDAAqD,CAAC;AAC3G,OAAO,YAAY,MAAM,mBAAmB,CAAC;AAQ7C,MAAM,CAAC,OAAO,OAAO,oBAAqB,SAAQ,YAAY;IAC5D;QACE,KAAK,CAAC;YACJ,sCAAsC,EAAE,0CAA0C;YAClF,oCAAoC,EAAE,wCAAwC;SAC/E,CAAC,CAAC;IACL,CAAC;CACF;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAG,IAAI,oBAAoB,EAAE,CAAC"}