@j-schreiber/sf-cli-security-audit 0.7.1 → 0.8.0

package/lib/libs/core/auditRun.js

@@ -1,86 +0,0 @@
-// import fs from 'node:fs';
-import EventEmitter from 'node:events';
-import { loadAuditConfig } from './file-mgmt/auditConfigFileManager.js';
-import { policyDefs } from './policyRegistry.js';
-export function startAuditRun(directoryPath) {
-    const conf = loadAuditConfig(directoryPath);
-    return new AuditRun(conf);
-}
-/**
- * Instance of an audit run that manages high-level operations
- */
-export default class AuditRun extends EventEmitter {
-    configs;
-    executablePolicies;
-    constructor(configs) {
-        super();
-        this.configs = configs;
-    }
-    /**
-     * Loads all policies, resolves entities and caches the results.
-     *
-     * @param targetOrgConnection
-     */
-    async resolve(targetOrgConnection) {
-        if (this.executablePolicies) {
-            return this.executablePolicies;
-        }
-        this.executablePolicies = this.loadPolicies(this.configs);
-        const resolveResultPromises = [];
-        Object.values(this.executablePolicies).forEach((executable) => {
-            resolveResultPromises.push(executable.resolve({ targetOrgConnection }));
-        });
-        await Promise.all(resolveResultPromises);
-        return this.executablePolicies;
-    }
-    /**
-     * Executes an initialised audit run. Resolves policies entities
-     * and executes all rules.
-     *
-     * @param targetOrgConnection
-     * @returns
-     */
-    async execute(targetCon) {
-        this.executablePolicies = await this.resolve(targetCon);
-        const results = await runPolicies(this.executablePolicies, targetCon);
-        return {
-            auditDate: new Date().toISOString(),
-            isCompliant: isCompliant(results),
-            policies: results,
-        };
-    }
-    loadPolicies(config) {
-        const pols = {};
-        Object.entries(config.policies).forEach(([policyName, policyConfig]) => {
-            const policy = new policyDefs[policyName].handler(policyConfig.content, config);
-            policy.addListener('entityresolve', (resolveStats) => {
-                this.emit(`entityresolve-${policyName}`, { policyName, ...resolveStats });
-            });
-            pols[policyName] = policy;
-        });
-        return pols;
-    }
-}
-function isCompliant(results) {
-    const list = Object.values(results);
-    if (list.length === 0) {
-        return true;
-    }
-    return list.reduce((prevVal, currentVal) => prevVal && currentVal.isCompliant, list[0].isCompliant);
-}
-async function runPolicies(policies, targetOrgConnection) {
-    const resultsArray = [];
-    const policiesList = [];
-    Object.entries(policies).forEach(([policyKey, executable]) => {
-        policiesList.push(policyKey);
-        resultsArray.push(executable.run({ targetOrgConnection }));
-    });
-    const arrayResult = await Promise.all(resultsArray);
-    const results = {};
-    arrayResult.forEach((policyResult) => {
-        const policyKey = policiesList[arrayResult.indexOf(policyResult)];
-        results[policyKey] = policyResult;
-    });
-    return results;
-}
-//# sourceMappingURL=auditRun.js.map

package/lib/libs/core/auditRun.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"auditRun.js","sourceRoot":"","sources":["../../../src/libs/core/auditRun.ts"],"names":[],"mappings":"AAAA,4BAA4B;AAC5B,OAAO,YAAY,MAAM,aAAa,CAAC;AAIvC,OAAO,EAAE,eAAe,EAAE,MAAM,uCAAuC,CAAC;AACxE,OAAO,EAAE,UAAU,EAAe,MAAM,qBAAqB,CAAC;AAM9D,MAAM,UAAU,aAAa,CAAC,aAAqB;IACjD,MAAM,IAAI,GAAG,eAAe,CAAC,aAAa,CAAC,CAAC;IAC5C,OAAO,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC;AAC5B,CAAC;AAQD;;GAEG;AACH,MAAM,CAAC,OAAO,OAAO,QAAS,SAAQ,YAAY;IAGtB;IAFlB,kBAAkB,CAAa;IAEvC,YAA0B,OAAuB;QAC/C,KAAK,EAAE,CAAC;QADgB,YAAO,GAAP,OAAO,CAAgB;IAEjD,CAAC;IAED;;;;OAIG;IACI,KAAK,CAAC,OAAO,CAAC,mBAA+B;QAClD,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC5B,OAAO,IAAI,CAAC,kBAAkB,CAAC;QACjC,CAAC;QACD,IAAI,CAAC,kBAAkB,GAAG,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC1D,MAAM,qBAAqB,GAAiD,EAAE,CAAC;QAC/E,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,OAAO,CAAC,CAAC,UAAU,EAAE,EAAE;YAC5D,qBAAqB,CAAC,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,mBAAmB,EAAE,CAAC,CAAC,CAAC;QAC1E,CAAC,CAAC,CAAC;QACH,MAAM,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;QACzC,OAAO,IAAI,CAAC,kBAAkB,CAAC;IACjC,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,OAAO,CAAC,SAAqB;QACxC,IAAI,CAAC,kBAAkB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QACxD,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC,IAAI,CAAC,kBAAkB,EAAE,SAAS,CAAC,CAAC;QACtE,OAAO;YACL,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,WAAW,EAAE,WAAW,CAAC,OAAO,CAAC;YACjC,QAAQ,EAAE,OAAO;SAClB,CAAC;IACJ,CAAC;IAEO,YAAY,CAAC,MAAsB;QACzC,MAAM,IAAI,GAAc,EAAE,CAAC;QAC3B,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,EAAE,YAAY,CAAC,EAAE,EAAE;YACrE,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,UAAyB,CAAC,CAAC,OAAO,CAC7D,YAAoC,CAAC,OAAO,EAC7C,MAAM,CACP,CAAC;YACF,MAAM,CAAC,WAAW,CAAC,eAAe,EAAE,CAAC,YAAoD,EAAE,EAAE;gBAC3F,IAAI,CAAC,IAAI,CAAC,iBAAiB,UAAU,EAAE,EAAE,EAAE,UAAU,EAAE,GAAG,YAAY,EAAE,CAAC,CAAC;YAC5E,CAAC,CAAC,CAAC;YACH,IAAI,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC;QAC5B,CAAC,CAAC,CAAC;QACH,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAED,SAAS,WAAW,CAAC,OAAmB;IACtC,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACpC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,UAAU,EAAE,EAAE,CAAC,OAAO,IAAI,UAAU,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC;AACtG,CAAC;AAED,KAAK,UAAU,WAAW,CAAC,QAAmB,EAAE,mBAA+B;IAC7E,MAAM,YAAY,GAAsC,EAAE,CAAC;IAC3D,MAAM,YAAY,GAAa,EAAE,CAAC;IAClC,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,EAAE,UAAU,CAAC,EAAE,EAAE;QAC3D,YAAY,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC7B,YAAY,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,mBAAmB,EAAE,CAAC,CAAC,CAAC;IAC7D,CAAC,CAAC,CAAC;IACH,MAAM,WAAW,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;IACpD,MAAM,OAAO,GAAe,EAAE,CAAC;IAC/B,WAAW,CAAC,OAAO,CAAC,CAAC,YAAY,EAAE,EAAE;QACnC,MAAM,SAAS,GAAG,YAAY,CAAC,WAAW,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC;QAClE,OAAO,CAAC,SAAS,CAAC,GAAG,YAAY,CAAC;IACpC,CAAC,CAAC,CAAC;IACH,OAAO,OAAO,CAAC;AACjB,CAAC"}

package/lib/libs/core/classification-types.d.ts

@@ -1,20 +0,0 @@
-import { NamedPermissionsClassification } from './file-mgmt/schema.js';
-/**
- * Enum to classify user and custom permissions.
- */
-export declare enum PermissionRiskLevel {
-    /** Blacklisted permissions that are considered too critical and not allowed */
-    BLOCKED = "Blocked",
-    /** Developer permissions, allow to modify the application */
-    CRITICAL = "Critical",
-    /** Admin permissions, allow to manage users and change permissions */
-    HIGH = "High",
-    /** Elevated business permissions for privileged users */
-    MEDIUM = "Medium",
-    /** Regular user permissions, typically needed for day-to-day work */
-    LOW = "Low",
-    /** Not categorized or unknown permission. Will be ignored but create a warning */
-    UNKNOWN = "Unknown"
-}
-export declare function resolveRiskLevelOrdinalValue(value: string): number;
-export declare const classificationSorter: (a: NamedPermissionsClassification, b: NamedPermissionsClassification) => number;

package/lib/libs/core/classification-types.js

@@ -1,23 +0,0 @@
-/**
- * Enum to classify user and custom permissions.
- */
-export var PermissionRiskLevel;
-(function (PermissionRiskLevel) {
-    /** Blacklisted permissions that are considered too critical and not allowed */
-    PermissionRiskLevel["BLOCKED"] = "Blocked";
-    /** Developer permissions, allow to modify the application */
-    PermissionRiskLevel["CRITICAL"] = "Critical";
-    /** Admin permissions, allow to manage users and change permissions */
-    PermissionRiskLevel["HIGH"] = "High";
-    /** Elevated business permissions for privileged users */
-    PermissionRiskLevel["MEDIUM"] = "Medium";
-    /** Regular user permissions, typically needed for day-to-day work */
-    PermissionRiskLevel["LOW"] = "Low";
-    /** Not categorized or unknown permission. Will be ignored but create a warning */
-    PermissionRiskLevel["UNKNOWN"] = "Unknown";
-})(PermissionRiskLevel || (PermissionRiskLevel = {}));
-export function resolveRiskLevelOrdinalValue(value) {
-    return Object.keys(PermissionRiskLevel).indexOf(value.toUpperCase());
-}
-export const classificationSorter = (a, b) => resolveRiskLevelOrdinalValue(a.classification) - resolveRiskLevelOrdinalValue(b.classification);
-//# sourceMappingURL=classification-types.js.map

package/lib/libs/core/classification-types.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"classification-types.js","sourceRoot":"","sources":["../../../src/libs/core/classification-types.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,MAAM,CAAN,IAAY,mBAaX;AAbD,WAAY,mBAAmB;IAC7B,+EAA+E;IAC/E,0CAAmB,CAAA;IACnB,6DAA6D;IAC7D,4CAAqB,CAAA;IACrB,sEAAsE;IACtE,oCAAa,CAAA;IACb,yDAAyD;IACzD,wCAAiB,CAAA;IACjB,qEAAqE;IACrE,kCAAW,CAAA;IACX,kFAAkF;IAClF,0CAAmB,CAAA;AACrB,CAAC,EAbW,mBAAmB,KAAnB,mBAAmB,QAa9B;AAED,MAAM,UAAU,4BAA4B,CAAC,KAAa;IACxD,OAAO,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;AACvE,CAAC;AAED,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,CAAiC,EAAE,CAAiC,EAAU,EAAE,CACnH,4BAA4B,CAAC,CAAC,CAAC,cAAc,CAAC,GAAG,4BAA4B,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC"}

package/lib/libs/core/constants.d.ts

@@ -1,11 +0,0 @@
-export declare const CUSTOM_PERMS_QUERY = "SELECT Id,MasterLabel,DeveloperName FROM CustomPermission";
-export declare const PROFILES_QUERY = "SELECT Profile.Name,Profile.UserType,IsCustom FROM PermissionSet WHERE IsOwnedByProfile = TRUE";
-export declare const PERMISSION_SETS_QUERY = "SELECT Name,Label,IsCustom,NamespacePrefix FROM PermissionSet WHERE IsOwnedByProfile = FALSE AND NamespacePrefix = NULL";
-export declare const CONNECTED_APPS_QUERY = "SELECT Name,OptionsAllowAdminApprovedUsersOnly FROM ConnectedApplication";
-export declare const OAUTH_TOKEN_QUERY = "SELECT User.Username,UseCount,AppName FROM OauthToken";
-export declare const ACTIVE_USERS_QUERY = "SELECT Id,Username,UserType FROM User WHERE IsActive = TRUE AND UserType IN ('Standard') LIMIT 2000";
-export declare const ACTIVE_USERS_DETAILS_QUERY = "SELECT Id,Username,Profile.Name,CreatedDate,LastLoginDate FROM User WHERE IsActive = TRUE AND UserType IN ('Standard') LIMIT 2000";
-export declare const USERS_PERMSET_ASSIGNMENTS_QUERY = "SELECT AssigneeId,PermissionSet.Name FROM PermissionSetAssignment WHERE PermissionSet.IsOwnedByProfile = FALSE AND PermissionSet.NamespacePrefix = NULL";
-export declare const buildPermsetAssignmentsQuery: (userIds: string[]) => string;
-export declare const buildLoginHistoryQuery: (daysToAnalayse?: number) => string;
-export declare const RETRIEVE_CACHE: string;

package/lib/libs/core/constants.js

@@ -1,20 +0,0 @@
-import path from 'node:path';
-// QUERIES
-export const CUSTOM_PERMS_QUERY = 'SELECT Id,MasterLabel,DeveloperName FROM CustomPermission';
-export const PROFILES_QUERY = 'SELECT Profile.Name,Profile.UserType,IsCustom FROM PermissionSet WHERE IsOwnedByProfile = TRUE';
-export const PERMISSION_SETS_QUERY = 'SELECT Name,Label,IsCustom,NamespacePrefix FROM PermissionSet WHERE IsOwnedByProfile = FALSE AND NamespacePrefix = NULL';
-export const CONNECTED_APPS_QUERY = 'SELECT Name,OptionsAllowAdminApprovedUsersOnly FROM ConnectedApplication';
-export const OAUTH_TOKEN_QUERY = 'SELECT User.Username,UseCount,AppName FROM OauthToken';
-export const ACTIVE_USERS_QUERY = "SELECT Id,Username,UserType FROM User WHERE IsActive = TRUE AND UserType IN ('Standard') LIMIT 2000";
-export const ACTIVE_USERS_DETAILS_QUERY = "SELECT Id,Username,Profile.Name,CreatedDate,LastLoginDate FROM User WHERE IsActive = TRUE AND UserType IN ('Standard') LIMIT 2000";
-export const USERS_PERMSET_ASSIGNMENTS_QUERY = 'SELECT AssigneeId,PermissionSet.Name FROM PermissionSetAssignment WHERE PermissionSet.IsOwnedByProfile = FALSE AND PermissionSet.NamespacePrefix = NULL';
-// DYNAMIC QUERIES
-export const buildPermsetAssignmentsQuery = (userIds) => `${USERS_PERMSET_ASSIGNMENTS_QUERY} WHERE AssigneeId IN (${userIds.map((userId) => `'${userId}'`).join(',')})`;
-export const buildLoginHistoryQuery = (daysToAnalayse) => daysToAnalayse
-    ? `${USERS_LOGIN_HISTORY_QUERY} WHERE LoginTime >= LAST_N_DAYS:${daysToAnalayse} GROUP BY LoginType,Application,UserId`
-    : `${USERS_LOGIN_HISTORY_QUERY} GROUP BY LoginType,Application,UserId`;
-// PATHS
-export const RETRIEVE_CACHE = path.join('.jsc', 'retrieves');
-// BASE QUERIES
-const USERS_LOGIN_HISTORY_QUERY = 'SELECT LoginType,Application,UserId,COUNT(Id)LoginCount,MAX(LoginTime)LastLogin FROM LoginHistory';
-//# sourceMappingURL=constants.js.map

package/lib/libs/core/constants.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../../src/libs/core/constants.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,UAAU;AACV,MAAM,CAAC,MAAM,kBAAkB,GAAG,2DAA2D,CAAC;AAC9F,MAAM,CAAC,MAAM,cAAc,GACzB,gGAAgG,CAAC;AACnG,MAAM,CAAC,MAAM,qBAAqB,GAChC,yHAAyH,CAAC;AAC5H,MAAM,CAAC,MAAM,oBAAoB,GAAG,0EAA0E,CAAC;AAC/G,MAAM,CAAC,MAAM,iBAAiB,GAAG,uDAAuD,CAAC;AACzF,MAAM,CAAC,MAAM,kBAAkB,GAC7B,qGAAqG,CAAC;AACxG,MAAM,CAAC,MAAM,0BAA0B,GACrC,mIAAmI,CAAC;AACtI,MAAM,CAAC,MAAM,+BAA+B,GAC1C,yJAAyJ,CAAC;AAE5J,kBAAkB;AAClB,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAAC,OAAiB,EAAU,EAAE,CACxE,GAAG,+BAA+B,yBAAyB,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,MAAM,GAAG,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;AAEjH,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,cAAuB,EAAU,EAAE,CACxE,cAAc;IACZ,CAAC,CAAC,GAAG,yBAAyB,mCAAmC,cAAc,wCAAwC;IACvH,CAAC,CAAC,GAAG,yBAAyB,wCAAwC,CAAC;AAE3E,QAAQ;AACR,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;AAE7D,eAAe;AACf,MAAM,yBAAyB,GAC7B,mGAAmG,CAAC"}

package/lib/libs/core/file-mgmt/auditConfigFileManager.d.ts

@@ -1,48 +0,0 @@
-import { PathLike } from 'node:fs';
-import { AuditRunConfig } from './schema.js';
-/**
- * Loads an audit run config with the default file manager
- *
- * @param dirPath
- * @returns
- */
-export declare const loadAuditConfig: (dirPath: string) => AuditRunConfig;
-/**
- * Saves a new or modified audit run config with the default file manager
- *
- * @param dirPath
- * @param conf
- */
-export declare const saveAuditConfig: (dirPath: string, conf: AuditRunConfig) => void;
-/**
- * The file manager streamlines initialisation of an audit config from
- * a source directory and writing updated content back to disk. The directory
- * structure is configurable, but most of the time using the default file manager
- * will be enough.
- */
-export default class AuditConfigFileManager {
-    private directoryStructure;
-    constructor();
-    /**
-     * Parses a directory path for policy and classification files
-     * and initialises an audit config from file contents.
-     *
-     * @param dirPath
-     * @returns
-     */
-    parse(dirPath: PathLike): AuditRunConfig;
-    /**
-     * Writes a full audit config to disk. If the config was not
-     * saved yet, initialises filePath on each element.
-     *
-     * @param dirPath
-     * @param subdirName
-     * @returns
-     */
-    save(targetDirPath: string, conf: AuditRunConfig): void;
-    private parseSubdir;
-    private writeClassifications;
-    private writePolicies;
-    private validateDependencies;
-}
-export declare const DefaultFileManager: AuditConfigFileManager;

package/lib/libs/core/file-mgmt/auditConfigFileManager.js

@@ -1,145 +0,0 @@
-import path from 'node:path';
-import fs from 'node:fs';
-import yaml from 'js-yaml';
-import { Messages } from '@salesforce/core';
-import { isEmpty } from '../utils.js';
-import { classificationDefs, policyDefs } from '../policyRegistry.js';
-import { throwAsSfError, } from './schema.js';
-Messages.importMessagesDirectoryFromMetaUrl(import.meta.url);
-const messages = Messages.loadMessages('@j-schreiber/sf-cli-security-audit', 'org.audit.run');
-/**
- * Loads an audit run config with the default file manager
- *
- * @param dirPath
- * @returns
- */
-export const loadAuditConfig = (dirPath) => DefaultFileManager.parse(dirPath);
-/**
- * Saves a new or modified audit run config with the default file manager
- *
- * @param dirPath
- * @param conf
- */
-export const saveAuditConfig = (dirPath, conf) => {
-    DefaultFileManager.save(dirPath, conf);
-};
-/**
- * The file manager streamlines initialisation of an audit config from
- * a source directory and writing updated content back to disk. The directory
- * structure is configurable, but most of the time using the default file manager
- * will be enough.
- */
-export default class AuditConfigFileManager {
-    directoryStructure;
-    constructor() {
-        this.directoryStructure = {
-            policies: policyDefs,
-            classifications: classificationDefs,
-        };
-    }
-    /**
-     * Parses a directory path for policy and classification files
-     * and initialises an audit config from file contents.
-     *
-     * @param dirPath
-     * @returns
-     */
-    parse(dirPath) {
-        const classifications = this.parseSubdir(dirPath, 'classifications');
-        const policies = this.parseSubdir(dirPath, 'policies');
-        const conf = { classifications, policies };
-        assertIsMinimalConfig(conf, dirPath);
-        this.validateDependencies(conf);
-        return conf;
-    }
-    /**
-     * Writes a full audit config to disk. If the config was not
-     * saved yet, initialises filePath on each element.
-     *
-     * @param dirPath
-     * @param subdirName
-     * @returns
-     */
-    save(targetDirPath, conf) {
-        this.writeClassifications(conf.classifications, targetDirPath);
-        this.writePolicies(conf.policies, targetDirPath);
-    }
-    parseSubdir(dirPath, subdirName) {
-        const parseResults = {};
-        Object.entries(this.directoryStructure[subdirName]).forEach(([fileName, fileConfig]) => {
-            const filePath = path.join(dirPath.toString(), subdirName, `${fileName}.yml`);
-            if (fs.existsSync(filePath)) {
-                const fileContent = yaml.load(fs.readFileSync(filePath, 'utf-8'));
-                const parseResult = fileConfig.schema.safeParse(fileContent);
-                if (parseResult.success) {
-                    parseResults[fileName] = { filePath, content: parseResult.data };
-                }
-                else {
-                    throwAsSfError(`${fileName}.yml`, parseResult.error);
-                }
-            }
-        });
-        return parseResults;
-    }
-    writeClassifications(content, targetDirPath) {
-        const dirPath = path.join(targetDirPath.toString(), 'classifications');
-        fs.mkdirSync(dirPath, { recursive: true });
-        const dirConf = this.directoryStructure.classifications;
-        Object.entries(content).forEach(([fileKey, confFile]) => {
-            const fileDef = dirConf[fileKey];
-            if (fileDef && !isEmpty(confFile.content)) {
-                // eslint-disable-next-line no-param-reassign
-                confFile.filePath = path.join(dirPath, `${fileKey}.yml`);
-                fs.writeFileSync(confFile.filePath, yaml.dump(confFile.content));
-            }
-        });
-    }
-    writePolicies(content, targetDirPath) {
-        const dirPath = path.join(targetDirPath.toString(), 'policies');
-        fs.mkdirSync(dirPath, { recursive: true });
-        const dirConf = this.directoryStructure.policies;
-        Object.entries(content).forEach(([fileKey, confFile]) => {
-            const fileDef = dirConf[fileKey];
-            if (fileDef && !isEmpty(confFile.content)) {
-                // eslint-disable-next-line no-param-reassign
-                confFile.filePath = path.join(dirPath, `${fileKey}.yml`);
-                fs.writeFileSync(confFile.filePath, yaml.dump(confFile.content));
-            }
-        });
-    }
-    validateDependencies(conf) {
-        Object.keys(conf.policies).forEach((policyName) => {
-            const policyDef = this.directoryStructure.policies[policyName];
-            if (policyDef?.dependencies) {
-                policyDef.dependencies.forEach((dependency) => {
-                    if (!dependencyExists(dependency.path, conf)) {
-                        throw messages.createError(dependency.errorName);
-                    }
-                });
-            }
-        });
-    }
-}
-function dependencyExists(fullPath, rootNode) {
-    const dep = traverseDependencyPath(fullPath, rootNode);
-    return Boolean(dep);
-}
-function traverseDependencyPath(remainingPath, rootNode) {
-    if (remainingPath.length >= 2) {
-        return traverseDependencyPath(remainingPath.slice(1), rootNode[remainingPath[0]]);
-    }
-    else if (remainingPath.length === 0) {
-        return undefined;
-    }
-    else {
-        return rootNode[remainingPath[0]];
-    }
-}
-function assertIsMinimalConfig(conf, dirPath) {
-    if (Object.keys(conf.policies).length === 0) {
-        const formattedDirPath = !dirPath || dirPath.toString().length === 0 ? '<root-dir>' : dirPath.toString();
-        throw messages.createError('NoAuditConfigFound', [formattedDirPath]);
-    }
-}
-export const DefaultFileManager = new AuditConfigFileManager();
-//# sourceMappingURL=auditConfigFileManager.js.map

package/lib/libs/core/file-mgmt/auditConfigFileManager.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"auditConfigFileManager.js","sourceRoot":"","sources":["../../../../src/libs/core/file-mgmt/auditConfigFileManager.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAgB,MAAM,SAAS,CAAC;AACvC,OAAO,IAAI,MAAM,SAAS,CAAC;AAC3B,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,EAAE,OAAO,EAAE,MAAM,aAAa,CAAC;AACtC,OAAO,EAAE,kBAAkB,EAAuB,UAAU,EAAe,MAAM,sBAAsB,CAAC;AACxG,OAAO,EAKL,cAAc,GACf,MAAM,aAAa,CAAC;AAErB,QAAQ,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC7D,MAAM,QAAQ,GAAG,QAAQ,CAAC,YAAY,CAAC,oCAAoC,EAAE,eAAe,CAAC,CAAC;AAE9F;;;;;GAKG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,OAAe,EAAkB,EAAE,CAAC,kBAAkB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;AAEtG;;;;;GAKG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,OAAe,EAAE,IAAoB,EAAQ,EAAE;IAC7E,kBAAkB,CAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;AACzC,CAAC,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,OAAO,OAAO,sBAAsB;IACjC,kBAAkB,CAAC;IAE3B;QACE,IAAI,CAAC,kBAAkB,GAAG;YACxB,QAAQ,EAAE,UAAU;YACpB,eAAe,EAAE,kBAAkB;SACpC,CAAC;IACJ,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,OAAiB;QAC5B,MAAM,eAAe,GAAG,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,iBAAiB,CAAC,CAAC;QACrE,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;QACvD,MAAM,IAAI,GAAG,EAAE,eAAe,EAAE,QAAQ,EAAE,CAAC;QAC3C,qBAAqB,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QACrC,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,CAAC;QAChC,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;;;;;;OAOG;IACI,IAAI,CAAC,aAAqB,EAAE,IAAoB;QACrD,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,eAAe,EAAE,aAAa,CAAC,CAAC;QAC/D,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;IACnD,CAAC;IAEO,WAAW,CACjB,OAAiB,EACjB,UAAgD;QAEhD,MAAM,YAAY,GAAwC,EAAE,CAAC;QAC7D,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,kBAAkB,CAAC,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE,UAAU,CAAC,EAAE,EAAE;YACrF,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,UAAU,EAAE,GAAG,QAAQ,MAAM,CAAC,CAAC;YAC9E,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5B,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;gBAClE,MAAM,WAAW,GAAG,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;gBAC7D,IAAI,WAAW,CAAC,OAAO,EAAE,CAAC;oBACxB,YAAY,CAAC,QAAQ,CAAC,GAAG,EAAE,QAAQ,EAAE,OAAO,EAAE,WAAW,CAAC,IAAI,EAAE,CAAC;gBACnE,CAAC;qBAAM,CAAC;oBACN,cAAc,CAAC,GAAG,QAAQ,MAAM,EAAE,WAAW,CAAC,KAAK,CAAC,CAAC;gBACvD,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAC;QACH,OAAO,YAAY,CAAC;IACtB,CAAC;IAEO,oBAAoB,CAAC,OAAsC,EAAE,aAAuB;QAC1F,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE,EAAE,iBAAiB,CAAC,CAAC;QACvE,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,kBAAkB,CAAC,eAAe,CAAC;QACxD,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,EAAE;YACtD,MAAM,OAAO,GAAG,OAAO,CAAC,OAA8B,CAAC,CAAC;YACxD,IAAI,OAAO,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC1C,6CAA6C;gBAC7C,QAAQ,CAAC,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,GAAG,OAAO,MAAM,CAAC,CAAC;gBACzD,EAAE,CAAC,aAAa,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;YACnE,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,aAAa,CAAC,OAA+B,EAAE,aAAuB;QAC5E,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE,EAAE,UAAU,CAAC,CAAC;QAChE,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,kBAAkB,CAAC,QAAQ,CAAC;QACjD,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,EAAE;YACtD,MAAM,OAAO,GAAG,OAAO,CAAC,OAAsB,CAAC,CAAC;YAChD,IAAI,OAAO,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC1C,6CAA6C;gBAC7C,QAAQ,CAAC,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,GAAG,OAAO,MAAM,CAAC,CAAC;gBACzD,EAAE,CAAC,aAAa,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;YACnE,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,oBAAoB,CAAC,IAAoB;QAC/C,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,CAAC,UAAU,EAAE,EAAE;YAChD,MAAM,SAAS,GAAG,IAAI,CAAC,kBAAkB,CAAC,QAAQ,CAAC,UAAyB,CAAC,CAAC;YAC9E,IAAI,SAAS,EAAE,YAAY,EAAE,CAAC;gBAC5B,SAAS,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,UAAU,EAAE,EAAE;oBAC5C,IAAI,CAAC,gBAAgB,CAAC,UAAU,CAAC,IAAI,EAAE,IAAI,CAAC,EAAE,CAAC;wBAC7C,MAAM,QAAQ,CAAC,WAAW,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;oBACnD,CAAC;gBACH,CAAC,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AAED,SAAS,gBAAgB,CAAC,QAAkB,EAAE,QAAiC;IAC7E,MAAM,GAAG,GAAG,sBAAsB,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IACvD,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC;AACtB,CAAC;AAED,SAAS,sBAAsB,CAAC,aAAuB,EAAE,QAAiC;IACxF,IAAI,aAAa,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;QAC9B,OAAO,sBAAsB,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,CAA4B,CAAC,CAAC;IAC/G,CAAC;SAAM,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtC,OAAO,SAAS,CAAC;IACnB,CAAC;SAAM,CAAC;QACN,OAAO,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,CAAC;IACpC,CAAC;AACH,CAAC;AAED,SAAS,qBAAqB,CAAC,IAAoB,EAAE,OAAiB;IACpE,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC5C,MAAM,gBAAgB,GAAG,CAAC,OAAO,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;QACzG,MAAM,QAAQ,CAAC,WAAW,CAAC,oBAAoB,EAAE,CAAC,gBAAgB,CAAC,CAAC,CAAC;IACvE,CAAC;AACH,CAAC;AAED,MAAM,CAAC,MAAM,kBAAkB,GAAG,IAAI,sBAAsB,EAAE,CAAC"}

package/lib/libs/core/file-mgmt/schema.d.ts

@@ -1,123 +0,0 @@
-import z from 'zod';
-import { PermissionRiskLevel } from '../classification-types.js';
-import { ProfilesRiskPreset } from '../policy-types.js';
-export declare function throwAsSfError(fileName: string, parseError: z.ZodError, rulePath?: PropertyKey[]): never;
-declare const PermissionsClassificationSchema: z.ZodObject<{
-    label: z.ZodOptional<z.ZodString>;
-    reason: z.ZodOptional<z.ZodString>;
-    classification: z.ZodEnum<typeof PermissionRiskLevel>;
-}, z.z.core.$strip>;
-declare const PermsClassificationsMapSchema: z.ZodRecord<z.ZodString, z.ZodObject<{
-    label: z.ZodOptional<z.ZodString>;
-    reason: z.ZodOptional<z.ZodString>;
-    classification: z.ZodEnum<typeof PermissionRiskLevel>;
-}, z.z.core.$strip>>;
-declare const NamedPermissionsClassificationSchema: z.ZodObject<{
-    label: z.ZodOptional<z.ZodString>;
-    reason: z.ZodOptional<z.ZodString>;
-    classification: z.ZodEnum<typeof PermissionRiskLevel>;
-    name: z.ZodString;
-}, z.z.core.$strip>;
-declare const PolicyRuleConfigSchema: z.ZodObject<{
-    enabled: z.ZodDefault<z.ZodBoolean>;
-    options: z.ZodOptional<z.ZodUnknown>;
-}, z.z.core.$strip>;
-declare const RuleMapSchema: z.ZodRecord<z.ZodString, z.ZodObject<{
-    enabled: z.ZodDefault<z.ZodBoolean>;
-    options: z.ZodOptional<z.ZodUnknown>;
-}, z.z.core.$strip>>;
-declare const PermSetConfig: z.ZodObject<{
-    preset: z.ZodEnum<typeof ProfilesRiskPreset>;
-}, z.z.core.$strip>;
-declare const PermSetMap: z.ZodRecord<z.ZodString, z.ZodObject<{
-    preset: z.ZodEnum<typeof ProfilesRiskPreset>;
-}, z.z.core.$strip>>;
-export declare const UsersPolicyConfig: z.ZodObject<{
-    defaultRoleForMissingUsers: z.ZodDefault<z.ZodEnum<typeof ProfilesRiskPreset>>;
-    analyseLastNDaysOfLoginHistory: z.ZodOptional<z.ZodNumber>;
-}, z.z.core.$strict>;
-export declare const NoInactiveUsersOptionsSchema: z.ZodObject<{
-    daysAfterUserIsInactive: z.ZodDefault<z.ZodNumber>;
-}, z.z.core.$strict>;
-export declare const PolicyFileSchema: z.ZodObject<{
-    enabled: z.ZodDefault<z.ZodBoolean>;
-    rules: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodObject<{
-        enabled: z.ZodDefault<z.ZodBoolean>;
-        options: z.ZodOptional<z.ZodUnknown>;
-    }, z.z.core.$strip>>>;
-}, z.z.core.$strip>;
-export declare const ProfilesPolicyFileSchema: z.ZodObject<{
-    enabled: z.ZodDefault<z.ZodBoolean>;
-    rules: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodObject<{
-        enabled: z.ZodDefault<z.ZodBoolean>;
-        options: z.ZodOptional<z.ZodUnknown>;
-    }, z.z.core.$strip>>>;
-    profiles: z.ZodRecord<z.ZodString, z.ZodObject<{
-        preset: z.ZodEnum<typeof ProfilesRiskPreset>;
-    }, z.z.core.$strip>>;
-}, z.z.core.$strip>;
-export declare const PermSetsPolicyFileSchema: z.ZodObject<{
-    enabled: z.ZodDefault<z.ZodBoolean>;
-    rules: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodObject<{
-        enabled: z.ZodDefault<z.ZodBoolean>;
-        options: z.ZodOptional<z.ZodUnknown>;
-    }, z.z.core.$strip>>>;
-    permissionSets: z.ZodRecord<z.ZodString, z.ZodObject<{
-        preset: z.ZodEnum<typeof ProfilesRiskPreset>;
-    }, z.z.core.$strip>>;
-}, z.z.core.$strip>;
-export declare const PermissionsConfigFileSchema: z.ZodObject<{
-    permissions: z.ZodRecord<z.ZodString, z.ZodObject<{
-        label: z.ZodOptional<z.ZodString>;
-        reason: z.ZodOptional<z.ZodString>;
-        classification: z.ZodEnum<typeof PermissionRiskLevel>;
-    }, z.z.core.$strip>>;
-}, z.z.core.$strip>;
-export declare const UsersPolicyFileSchema: z.ZodObject<{
-    enabled: z.ZodDefault<z.ZodBoolean>;
-    rules: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodObject<{
-        enabled: z.ZodDefault<z.ZodBoolean>;
-        options: z.ZodOptional<z.ZodUnknown>;
-    }, z.z.core.$strip>>>;
-    users: z.ZodRecord<z.ZodString, z.ZodObject<{
-        role: z.ZodEnum<typeof ProfilesRiskPreset>;
-    }, z.z.core.$strip>>;
-    options: z.ZodObject<{
-        defaultRoleForMissingUsers: z.ZodDefault<z.ZodEnum<typeof ProfilesRiskPreset>>;
-        analyseLastNDaysOfLoginHistory: z.ZodOptional<z.ZodNumber>;
-    }, z.z.core.$strict>;
-}, z.z.core.$strip>;
-export type PermissionsClassification = z.infer<typeof PermissionsClassificationSchema>;
-export type NamedPermissionsClassification = z.infer<typeof NamedPermissionsClassificationSchema>;
-export type PermsClassificationsMap = z.infer<typeof PermsClassificationsMapSchema>;
-export type PermissionsConfig = z.infer<typeof PermissionsConfigFileSchema>;
-export type NoInactiveUsersOptions = z.infer<typeof NoInactiveUsersOptionsSchema>;
-export type PolicyRuleConfig = z.infer<typeof PolicyRuleConfigSchema>;
-export type BasePolicyFileContent = z.infer<typeof PolicyFileSchema>;
-export type ProfilesPolicyFileContent = z.infer<typeof ProfilesPolicyFileSchema>;
-export type PermSetsPolicyFileContent = z.infer<typeof PermSetsPolicyFileSchema>;
-export type UsersPolicyFileContent = z.infer<typeof UsersPolicyFileSchema>;
-export type PermissionSetConfig = z.infer<typeof PermSetConfig>;
-export type PermissionSetLikeMap = z.infer<typeof PermSetMap>;
-export type RuleMap = z.infer<typeof RuleMapSchema>;
-export type ConfigFile<T> = {
-    filePath?: string;
-    content: T;
-};
-export type AuditRunConfigClassifications = {
-    userPermissions?: ConfigFile<PermissionsConfig>;
-    customPermissions?: ConfigFile<PermissionsConfig>;
-};
-export type AuditRunConfigPolicies = {
-    profiles?: ConfigFile<ProfilesPolicyFileContent>;
-    permissionSets?: ConfigFile<PermSetsPolicyFileContent>;
-    connectedApps?: ConfigFile<BasePolicyFileContent>;
-    users?: ConfigFile<UsersPolicyFileContent>;
-};
-export type AuditRunConfig = {
-    classifications: AuditRunConfigClassifications;
-    policies: AuditRunConfigPolicies;
-};
-export declare function isPermissionsConfig(cls: unknown): cls is ConfigFile<PermissionsConfig>;
-export declare function isPolicyConfig(cls: unknown): cls is ConfigFile<BasePolicyFileContent>;
-export {};

package/lib/libs/core/file-mgmt/schema.js

@@ -1,69 +0,0 @@
-import z from 'zod';
-import { Messages } from '@salesforce/core';
-import { PermissionRiskLevel } from '../classification-types.js';
-import { ProfilesRiskPreset } from '../policy-types.js';
-Messages.importMessagesDirectoryFromMetaUrl(import.meta.url);
-const messages = Messages.loadMessages('@j-schreiber/sf-cli-security-audit', 'org.audit.run');
-export function throwAsSfError(fileName, parseError, rulePath) {
-    const issues = parseError.issues.map((zodIssue) => {
-        const definitivePath = rulePath ? [...rulePath, ...zodIssue.path] : zodIssue.path;
-        return definitivePath.length > 0 ? `${zodIssue.message} in "${definitivePath.join('.')}"` : zodIssue.message;
-    });
-    throw messages.createError('error.InvalidConfigFileSchema', [fileName, issues.join(', ')]);
-}
-const PermissionsClassificationSchema = z.object({
-    /** UI Label */
-    label: z.string().optional(),
-    /** An optional description to explain the classification */
-    reason: z.string().optional(),
-    /** Risk assessment of the permissions */
-    classification: z.enum(PermissionRiskLevel),
-});
-const PermsClassificationsMapSchema = z.record(z.string(), PermissionsClassificationSchema);
-const NamedPermissionsClassificationSchema = PermissionsClassificationSchema.extend({
-    /** Developer name of the permission, used in metadata */
-    name: z.string(),
-});
-const PolicyRuleConfigSchema = z.object({
-    enabled: z.boolean().default(true),
-    options: z.unknown().optional(),
-});
-const RuleMapSchema = z.record(z.string(), PolicyRuleConfigSchema);
-const PermSetConfig = z.object({
-    preset: z.enum(ProfilesRiskPreset),
-});
-const PermSetMap = z.record(z.string(), PermSetConfig);
-const UserConfig = z.object({ role: z.enum(ProfilesRiskPreset) });
-const UsersMap = z.record(z.string(), UserConfig);
-export const UsersPolicyConfig = z.strictObject({
-    defaultRoleForMissingUsers: z.enum(ProfilesRiskPreset).default(ProfilesRiskPreset.STANDARD_USER),
-    analyseLastNDaysOfLoginHistory: z.number().optional(),
-});
-export const NoInactiveUsersOptionsSchema = z.strictObject({
-    daysAfterUserIsInactive: z.number().default(90),
-});
-// FILE CONTENT SCHEMATA
-export const PolicyFileSchema = z.object({
-    enabled: z.boolean().default(true),
-    rules: RuleMapSchema.default({}),
-});
-export const ProfilesPolicyFileSchema = PolicyFileSchema.extend({
-    profiles: PermSetMap,
-});
-export const PermSetsPolicyFileSchema = PolicyFileSchema.extend({
-    permissionSets: PermSetMap,
-});
-export const PermissionsConfigFileSchema = z.object({
-    permissions: z.record(z.string(), PermissionsClassificationSchema),
-});
-export const UsersPolicyFileSchema = PolicyFileSchema.extend({
-    users: UsersMap,
-    options: UsersPolicyConfig,
-});
-export function isPermissionsConfig(cls) {
-    return cls.content?.permissions !== undefined;
-}
-export function isPolicyConfig(cls) {
-    return cls.content?.rules !== undefined;
-}
-//# sourceMappingURL=schema.js.map

package/lib/libs/core/file-mgmt/schema.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"schema.js","sourceRoot":"","sources":["../../../../src/libs/core/file-mgmt/schema.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,KAAK,CAAC;AACpB,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AAExD,QAAQ,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC7D,MAAM,QAAQ,GAAG,QAAQ,CAAC,YAAY,CAAC,oCAAoC,EAAE,eAAe,CAAC,CAAC;AAE9F,MAAM,UAAU,cAAc,CAAC,QAAgB,EAAE,UAAsB,EAAE,QAAwB;IAC/F,MAAM,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE;QAChD,MAAM,cAAc,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,GAAG,QAAQ,EAAE,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC;QAClF,OAAO,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,QAAQ,CAAC,OAAO,QAAQ,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC;IAC/G,CAAC,CAAC,CAAC;IACH,MAAM,QAAQ,CAAC,WAAW,CAAC,+BAA+B,EAAE,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAC7F,CAAC;AAED,MAAM,+BAA+B,GAAG,CAAC,CAAC,MAAM,CAAC;IAC/C,eAAe;IACf,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5B,4DAA4D;IAC5D,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,yCAAyC;IACzC,cAAc,EAAE,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC;CAC5C,CAAC,CAAC;AAEH,MAAM,6BAA6B,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,+BAA+B,CAAC,CAAC;AAE5F,MAAM,oCAAoC,GAAG,+BAA+B,CAAC,MAAM,CAAC;IAClF,yDAAyD;IACzD,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE;CACjB,CAAC,CAAC;AAEH,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IACtC,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC;IAClC,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CAChC,CAAC,CAAC;AAEH,MAAM,aAAa,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,sBAAsB,CAAC,CAAC;AAEnE,MAAM,aAAa,GAAG,CAAC,CAAC,MAAM,CAAC;IAC7B,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC;CACnC,CAAC,CAAC;AAEH,MAAM,UAAU,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,aAAa,CAAC,CAAC;AAEvD,MAAM,UAAU,GAAG,CAAC,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,EAAE,CAAC,CAAC;AAElE,MAAM,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,UAAU,CAAC,CAAC;AAElD,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,CAAC,YAAY,CAAC;IAC9C,0BAA0B,EAAE,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,OAAO,CAAC,kBAAkB,CAAC,aAAa,CAAC;IAChG,8BAA8B,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACtD,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAAC,CAAC,YAAY,CAAC;IACzD,uBAAuB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,CAAC;CAChD,CAAC,CAAC;AAEH,wBAAwB;AAExB,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC;IAClC,KAAK,EAAE,aAAa,CAAC,OAAO,CAAC,EAAE,CAAC;CACjC,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,wBAAwB,GAAG,gBAAgB,CAAC,MAAM,CAAC;IAC9D,QAAQ,EAAE,UAAU;CACrB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,wBAAwB,GAAG,gBAAgB,CAAC,MAAM,CAAC;IAC9D,cAAc,EAAE,UAAU;CAC3B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,2BAA2B,GAAG,CAAC,CAAC,MAAM,CAAC;IAClD,WAAW,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,+BAA+B,CAAC;CACnE,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,qBAAqB,GAAG,gBAAgB,CAAC,MAAM,CAAC;IAC3D,KAAK,EAAE,QAAQ;IACf,OAAO,EAAE,iBAAiB;CAC3B,CAAC,CAAC;AA+CH,MAAM,UAAU,mBAAmB,CAAC,GAAY;IAC9C,OAAQ,GAAqC,CAAC,OAAO,EAAE,WAAW,KAAK,SAAS,CAAC;AACnF,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,GAAY;IACzC,OAAQ,GAAyC,CAAC,OAAO,EAAE,KAAK,KAAK,SAAS,CAAC;AACjF,CAAC"}

package/lib/libs/core/mdapi/mdapiRetriever.d.ts

@@ -1,54 +0,0 @@
-import { Connection } from '@salesforce/core';
-import { ConnectedAppSettings, PermissionSet, Profile as ProfileMetadata } from '@jsforce/jsforce-node/lib/api/metadata.js';
-import NamedMetadata from './namedMetadataType.js';
-import SingletonMetadata from './singletonMetadataType.js';
-import NamedMetadataQueryable from './namedMetadataToolingQueryable.js';
-export default class MDAPI {
-    private connection;
-    private static retrievers;
-    private cache;
-    constructor(connection: Connection);
-    static create(connection: Connection): MDAPI;
-    /**
-     * Resolves one of the pre-configured metadata types and returns
-     * a map of resolved names and entire XML content of source file body.
-     *
-     * @param typeName
-     * @param componentNames
-     * @returns
-     */
-    resolve<K extends keyof typeof NamedTypesRegistry>(typeName: K, componentNames: string[]): Promise<NamedReturnTypes[K]>;
-    /**
-     * Resolves one of the pre-configured metadata types and returns
-     * the entire XML content of source file body.
-     *
-     * @param typeName
-     * @returns
-     */
-    resolveSingleton<K extends keyof typeof SingletonRegistry>(typeName: K): Promise<SingletonReturnTypes[K]>;
-    private cacheResults;
-    private fetchCached;
-}
-export declare const NamedTypesRegistry: {
-    PermissionSet: NamedMetadata<PermissionSetXml, "PermissionSet">;
-    Profile: NamedMetadataQueryable<ProfileXml, "Profile">;
-};
-export declare const SingletonRegistry: {
-    ConnectedAppSettings: SingletonMetadata<ConnectedAppSettingsXml, "ConnectedAppSettings">;
-};
-type NamedReturnTypes = {
-    [K in keyof typeof NamedTypesRegistry]: Awaited<ReturnType<(typeof NamedTypesRegistry)[K]['resolve']>>;
-};
-type SingletonReturnTypes = {
-    [K in keyof typeof SingletonRegistry]: Awaited<ReturnType<(typeof SingletonRegistry)[K]['resolve']>>;
-};
-type ProfileXml = {
-    Profile: ProfileMetadata;
-};
-type PermissionSetXml = {
-    PermissionSet: PermissionSet;
-};
-type ConnectedAppSettingsXml = {
-    ConnectedAppSettings: ConnectedAppSettings;
-};
-export {};