@kevinrabun/judges 3.49.0 → 3.50.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +12 -0
- package/dist/cli.d.ts.map +1 -1
- package/dist/cli.js +56 -0
- package/dist/cli.js.map +1 -1
- package/dist/commands/api-audit.d.ts +9 -0
- package/dist/commands/api-audit.d.ts.map +1 -0
- package/dist/commands/api-audit.js +360 -0
- package/dist/commands/api-audit.js.map +1 -0
- package/dist/commands/compliance-map.d.ts +9 -0
- package/dist/commands/compliance-map.d.ts.map +1 -0
- package/dist/commands/compliance-map.js +375 -0
- package/dist/commands/compliance-map.js.map +1 -0
- package/dist/commands/exec-report.d.ts +9 -0
- package/dist/commands/exec-report.d.ts.map +1 -0
- package/dist/commands/exec-report.js +272 -0
- package/dist/commands/exec-report.js.map +1 -0
- package/dist/commands/guided-tour.d.ts +9 -0
- package/dist/commands/guided-tour.d.ts.map +1 -0
- package/dist/commands/guided-tour.js +288 -0
- package/dist/commands/guided-tour.js.map +1 -0
- package/dist/commands/iac-lint.d.ts +8 -0
- package/dist/commands/iac-lint.d.ts.map +1 -0
- package/dist/commands/iac-lint.js +313 -0
- package/dist/commands/iac-lint.js.map +1 -0
- package/dist/commands/perf-compare.d.ts +9 -0
- package/dist/commands/perf-compare.d.ts.map +1 -0
- package/dist/commands/perf-compare.js +246 -0
- package/dist/commands/perf-compare.js.map +1 -0
- package/dist/commands/pii-scan.d.ts +8 -0
- package/dist/commands/pii-scan.d.ts.map +1 -0
- package/dist/commands/pii-scan.js +300 -0
- package/dist/commands/pii-scan.js.map +1 -0
- package/dist/commands/secret-scan.d.ts +8 -0
- package/dist/commands/secret-scan.d.ts.map +1 -0
- package/dist/commands/secret-scan.js +245 -0
- package/dist/commands/secret-scan.js.map +1 -0
- package/package.json +1 -1
- package/server.json +2 -2
|
@@ -0,0 +1,300 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* PII scan — detect personally-identifiable information patterns
|
|
3
|
+
* in source code: string literals, logs, config files.
|
|
4
|
+
*
|
|
5
|
+
* All analysis local.
|
|
6
|
+
*/
|
|
7
|
+
import { existsSync, readFileSync, readdirSync, mkdirSync, writeFileSync } from "fs";
|
|
8
|
+
import { join, extname } from "path";
|
|
9
|
+
// ─── Patterns ───────────────────────────────────────────────────────────────
|
|
10
|
+
const PII_PATTERNS = [
|
|
11
|
+
{
|
|
12
|
+
id: "ssn",
|
|
13
|
+
label: "Social Security Number",
|
|
14
|
+
regex: /\b\d{3}-\d{2}-\d{4}\b/g,
|
|
15
|
+
confidence: "high",
|
|
16
|
+
validate: (m) => {
|
|
17
|
+
const parts = m.split("-");
|
|
18
|
+
return parseInt(parts[0]) > 0 && parseInt(parts[0]) < 900;
|
|
19
|
+
},
|
|
20
|
+
},
|
|
21
|
+
{
|
|
22
|
+
id: "credit-card",
|
|
23
|
+
label: "Credit Card Number",
|
|
24
|
+
regex: /\b(?:4\d{3}|5[1-5]\d{2}|3[47]\d{2}|6(?:011|5\d{2}))[- ]?\d{4}[- ]?\d{4}[- ]?\d{1,4}\b/g,
|
|
25
|
+
confidence: "high",
|
|
26
|
+
validate: (m) => {
|
|
27
|
+
const digits = m.replace(/[- ]/g, "");
|
|
28
|
+
if (digits.length < 13 || digits.length > 19)
|
|
29
|
+
return false;
|
|
30
|
+
// Luhn check
|
|
31
|
+
let sum = 0;
|
|
32
|
+
let alt = false;
|
|
33
|
+
for (let i = digits.length - 1; i >= 0; i--) {
|
|
34
|
+
let n = parseInt(digits[i]);
|
|
35
|
+
if (alt) {
|
|
36
|
+
n *= 2;
|
|
37
|
+
if (n > 9)
|
|
38
|
+
n -= 9;
|
|
39
|
+
}
|
|
40
|
+
sum += n;
|
|
41
|
+
alt = !alt;
|
|
42
|
+
}
|
|
43
|
+
return sum % 10 === 0;
|
|
44
|
+
},
|
|
45
|
+
},
|
|
46
|
+
{
|
|
47
|
+
id: "email",
|
|
48
|
+
label: "Email Address",
|
|
49
|
+
regex: /\b[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}\b/g,
|
|
50
|
+
confidence: "medium",
|
|
51
|
+
validate: (m) => {
|
|
52
|
+
// Exclude common non-PII patterns
|
|
53
|
+
if (m.endsWith("@example.com") || m.endsWith("@test.com"))
|
|
54
|
+
return false;
|
|
55
|
+
if (m.startsWith("noreply@") || m.startsWith("info@"))
|
|
56
|
+
return false;
|
|
57
|
+
return true;
|
|
58
|
+
},
|
|
59
|
+
},
|
|
60
|
+
{
|
|
61
|
+
id: "phone-us",
|
|
62
|
+
label: "US Phone Number",
|
|
63
|
+
regex: /\b(?:\+?1[-.\s]?)?\(?\d{3}\)?[-.\s]?\d{3}[-.\s]?\d{4}\b/g,
|
|
64
|
+
confidence: "medium",
|
|
65
|
+
validate: (m) => {
|
|
66
|
+
const digits = m.replace(/\D/g, "");
|
|
67
|
+
return digits.length >= 10 && digits.length <= 11;
|
|
68
|
+
},
|
|
69
|
+
},
|
|
70
|
+
{
|
|
71
|
+
id: "ip-address",
|
|
72
|
+
label: "IP Address",
|
|
73
|
+
regex: /\b(?:25[0-5]|2[0-4]\d|[01]?\d\d?)\.(?:25[0-5]|2[0-4]\d|[01]?\d\d?)\.(?:25[0-5]|2[0-4]\d|[01]?\d\d?)\.(?:25[0-5]|2[0-4]\d|[01]?\d\d?)\b/g,
|
|
74
|
+
confidence: "low",
|
|
75
|
+
validate: (m) => {
|
|
76
|
+
// Skip loopback and private ranges that are typically non-PII
|
|
77
|
+
if (m.startsWith("127.") || m.startsWith("0.") || m === "255.255.255.255")
|
|
78
|
+
return false;
|
|
79
|
+
return true;
|
|
80
|
+
},
|
|
81
|
+
},
|
|
82
|
+
{
|
|
83
|
+
id: "date-of-birth",
|
|
84
|
+
label: "Date of Birth Pattern",
|
|
85
|
+
regex: /\b(?:dob|date_?of_?birth|birth_?date|birthday)\s*[:=]\s*["']?\d{1,4}[-/]\d{1,2}[-/]\d{1,4}["']?/gi,
|
|
86
|
+
confidence: "high",
|
|
87
|
+
},
|
|
88
|
+
{
|
|
89
|
+
id: "passport",
|
|
90
|
+
label: "Passport Number Pattern",
|
|
91
|
+
regex: /\b(?:passport(?:_?(?:no|num|number))?)\s*[:=]\s*["']?[A-Z0-9]{6,9}["']?/gi,
|
|
92
|
+
confidence: "high",
|
|
93
|
+
},
|
|
94
|
+
{
|
|
95
|
+
id: "drivers-license",
|
|
96
|
+
label: "Drivers License Pattern",
|
|
97
|
+
regex: /\b(?:drivers?_?(?:license|licence)(?:_?(?:no|num|number))?)\s*[:=]\s*["']?[A-Z0-9-]{5,15}["']?/gi,
|
|
98
|
+
confidence: "high",
|
|
99
|
+
},
|
|
100
|
+
{
|
|
101
|
+
id: "logging-pii",
|
|
102
|
+
label: "PII in Logging Statement",
|
|
103
|
+
regex: /(?:console\.(?:log|warn|error|info)|logger?\.\w+|print|println)\s*\(.*(?:email|phone|ssn|social|password|name|address|dob|birth)/gi,
|
|
104
|
+
confidence: "medium",
|
|
105
|
+
},
|
|
106
|
+
];
|
|
107
|
+
// ─── Scanner ────────────────────────────────────────────────────────────────
|
|
108
|
+
const SKIP_DIRS = new Set(["node_modules", ".git", "dist", "build", "coverage", "__pycache__"]);
|
|
109
|
+
const CODE_EXTENSIONS = new Set([
|
|
110
|
+
".ts",
|
|
111
|
+
".js",
|
|
112
|
+
".py",
|
|
113
|
+
".java",
|
|
114
|
+
".cs",
|
|
115
|
+
".go",
|
|
116
|
+
".rb",
|
|
117
|
+
".php",
|
|
118
|
+
".rs",
|
|
119
|
+
".swift",
|
|
120
|
+
".kt",
|
|
121
|
+
".scala",
|
|
122
|
+
".json",
|
|
123
|
+
".yaml",
|
|
124
|
+
".yml",
|
|
125
|
+
".xml",
|
|
126
|
+
".env",
|
|
127
|
+
".cfg",
|
|
128
|
+
".ini",
|
|
129
|
+
".conf",
|
|
130
|
+
]);
|
|
131
|
+
function collectSourceFiles(dir) {
|
|
132
|
+
const result = [];
|
|
133
|
+
function walk(d) {
|
|
134
|
+
let entries;
|
|
135
|
+
try {
|
|
136
|
+
entries = readdirSync(d);
|
|
137
|
+
}
|
|
138
|
+
catch {
|
|
139
|
+
return;
|
|
140
|
+
}
|
|
141
|
+
for (const name of entries) {
|
|
142
|
+
if (SKIP_DIRS.has(name) || name.startsWith("."))
|
|
143
|
+
continue;
|
|
144
|
+
const full = join(d, name);
|
|
145
|
+
try {
|
|
146
|
+
const sub = readdirSync(full);
|
|
147
|
+
void sub;
|
|
148
|
+
walk(full);
|
|
149
|
+
}
|
|
150
|
+
catch {
|
|
151
|
+
if (CODE_EXTENSIONS.has(extname(name).toLowerCase()))
|
|
152
|
+
result.push(full);
|
|
153
|
+
}
|
|
154
|
+
}
|
|
155
|
+
}
|
|
156
|
+
walk(dir);
|
|
157
|
+
return result;
|
|
158
|
+
}
|
|
159
|
+
function maskPii(text) {
|
|
160
|
+
if (text.length <= 4)
|
|
161
|
+
return "****";
|
|
162
|
+
return text.slice(0, 2) + "*".repeat(text.length - 4) + text.slice(-2);
|
|
163
|
+
}
|
|
164
|
+
function scanFile(filePath) {
|
|
165
|
+
let content;
|
|
166
|
+
try {
|
|
167
|
+
content = readFileSync(filePath, "utf-8");
|
|
168
|
+
}
|
|
169
|
+
catch {
|
|
170
|
+
return [];
|
|
171
|
+
}
|
|
172
|
+
const lines = content.split("\n");
|
|
173
|
+
const matches = [];
|
|
174
|
+
for (let lineIdx = 0; lineIdx < lines.length; lineIdx++) {
|
|
175
|
+
const line = lines[lineIdx];
|
|
176
|
+
// Skip comments that look like documentation/patterns
|
|
177
|
+
if (/^\s*(?:\/\/|#|\/?\*)\s*(?:example|test|sample|pattern|regex|format)/i.test(line))
|
|
178
|
+
continue;
|
|
179
|
+
for (const pattern of PII_PATTERNS) {
|
|
180
|
+
pattern.regex.lastIndex = 0;
|
|
181
|
+
let m;
|
|
182
|
+
while ((m = pattern.regex.exec(line)) !== null) {
|
|
183
|
+
if (pattern.validate && !pattern.validate(m[0]))
|
|
184
|
+
continue;
|
|
185
|
+
matches.push({
|
|
186
|
+
file: filePath,
|
|
187
|
+
line: lineIdx + 1,
|
|
188
|
+
column: m.index + 1,
|
|
189
|
+
type: pattern.id,
|
|
190
|
+
snippet: maskPii(m[0]),
|
|
191
|
+
confidence: pattern.confidence,
|
|
192
|
+
});
|
|
193
|
+
}
|
|
194
|
+
}
|
|
195
|
+
}
|
|
196
|
+
return matches;
|
|
197
|
+
}
|
|
198
|
+
// ─── CLI ────────────────────────────────────────────────────────────────────
|
|
199
|
+
export function runPiiScan(argv) {
|
|
200
|
+
if (argv.includes("--help") || argv.includes("-h")) {
|
|
201
|
+
console.log(`
|
|
202
|
+
judges pii-scan — Detect personally-identifiable information in source code
|
|
203
|
+
|
|
204
|
+
Usage:
|
|
205
|
+
judges pii-scan [dir]
|
|
206
|
+
judges pii-scan src/ --confidence high
|
|
207
|
+
judges pii-scan . --format json --output pii-report.json
|
|
208
|
+
|
|
209
|
+
Options:
|
|
210
|
+
--confidence <level> Filter by confidence (high, medium, low)
|
|
211
|
+
--type <types> Filter by PII type (comma-separated: ssn,credit-card,email,...)
|
|
212
|
+
--patterns List all PII detection patterns
|
|
213
|
+
--format json JSON output
|
|
214
|
+
--output <file> Write report to file
|
|
215
|
+
--help, -h Show this help
|
|
216
|
+
|
|
217
|
+
PII Types: ${PII_PATTERNS.map((p) => p.id).join(", ")}
|
|
218
|
+
`);
|
|
219
|
+
return;
|
|
220
|
+
}
|
|
221
|
+
const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
|
|
222
|
+
const outputFile = argv.find((_a, i) => argv[i - 1] === "--output");
|
|
223
|
+
if (argv.includes("--patterns")) {
|
|
224
|
+
if (format === "json") {
|
|
225
|
+
console.log(JSON.stringify(PII_PATTERNS.map(({ regex: _r, validate: _v, ...rest }) => rest), null, 2));
|
|
226
|
+
}
|
|
227
|
+
else {
|
|
228
|
+
console.log(`\n PII Detection Patterns (${PII_PATTERNS.length})\n ──────────────────────────`);
|
|
229
|
+
for (const p of PII_PATTERNS) {
|
|
230
|
+
console.log(` [${p.confidence.toUpperCase().padEnd(6)}] ${p.id.padEnd(20)} — ${p.label}`);
|
|
231
|
+
}
|
|
232
|
+
console.log("");
|
|
233
|
+
}
|
|
234
|
+
return;
|
|
235
|
+
}
|
|
236
|
+
const target = argv.find((a) => !a.startsWith("--") && !argv[argv.indexOf(a) - 1]?.startsWith("--")) || ".";
|
|
237
|
+
const confFilter = argv.find((_a, i) => argv[i - 1] === "--confidence");
|
|
238
|
+
const typeFilter = argv.find((_a, i) => argv[i - 1] === "--type");
|
|
239
|
+
if (!existsSync(target)) {
|
|
240
|
+
console.error(` Path not found: ${target}`);
|
|
241
|
+
return;
|
|
242
|
+
}
|
|
243
|
+
const files = collectSourceFiles(target);
|
|
244
|
+
let allMatches = [];
|
|
245
|
+
for (const f of files) {
|
|
246
|
+
allMatches.push(...scanFile(f));
|
|
247
|
+
}
|
|
248
|
+
if (confFilter) {
|
|
249
|
+
allMatches = allMatches.filter((m) => m.confidence === confFilter);
|
|
250
|
+
}
|
|
251
|
+
if (typeFilter) {
|
|
252
|
+
const allowed = typeFilter.split(",");
|
|
253
|
+
allMatches = allMatches.filter((m) => allowed.includes(m.type));
|
|
254
|
+
}
|
|
255
|
+
const report = {
|
|
256
|
+
matches: allMatches,
|
|
257
|
+
scannedFiles: files.length,
|
|
258
|
+
summary: {
|
|
259
|
+
total: allMatches.length,
|
|
260
|
+
byType: Object.fromEntries(PII_PATTERNS.map((p) => [p.id, allMatches.filter((m) => m.type === p.id).length]).filter(([, count]) => count > 0)),
|
|
261
|
+
byConfidence: {
|
|
262
|
+
high: allMatches.filter((m) => m.confidence === "high").length,
|
|
263
|
+
medium: allMatches.filter((m) => m.confidence === "medium").length,
|
|
264
|
+
low: allMatches.filter((m) => m.confidence === "low").length,
|
|
265
|
+
},
|
|
266
|
+
},
|
|
267
|
+
timestamp: new Date().toISOString(),
|
|
268
|
+
};
|
|
269
|
+
if (outputFile) {
|
|
270
|
+
const dir = join(".", ".judges-pii-scan");
|
|
271
|
+
if (!existsSync(dir))
|
|
272
|
+
mkdirSync(dir, { recursive: true });
|
|
273
|
+
writeFileSync(join(dir, outputFile), JSON.stringify(report, null, 2));
|
|
274
|
+
console.log(` Report saved to .judges-pii-scan/${outputFile}`);
|
|
275
|
+
}
|
|
276
|
+
if (format === "json") {
|
|
277
|
+
console.log(JSON.stringify(report, null, 2));
|
|
278
|
+
}
|
|
279
|
+
else {
|
|
280
|
+
console.log(`\n PII Scan — ${files.length} files scanned`);
|
|
281
|
+
console.log(` Found: ${allMatches.length} potential PII occurrences\n ──────────────────────────`);
|
|
282
|
+
if (allMatches.length === 0) {
|
|
283
|
+
console.log(` ✅ No PII detected\n`);
|
|
284
|
+
return;
|
|
285
|
+
}
|
|
286
|
+
for (const conf of ["high", "medium", "low"]) {
|
|
287
|
+
const items = allMatches.filter((m) => m.confidence === conf);
|
|
288
|
+
if (items.length === 0)
|
|
289
|
+
continue;
|
|
290
|
+
console.log(`\n ${conf.toUpperCase()} CONFIDENCE (${items.length})`);
|
|
291
|
+
for (const m of items) {
|
|
292
|
+
const piiDef = PII_PATTERNS.find((p) => p.id === m.type);
|
|
293
|
+
console.log(` ${m.file}:${m.line}:${m.column} — ${piiDef?.label || m.type}`);
|
|
294
|
+
console.log(` Masked: ${m.snippet}`);
|
|
295
|
+
}
|
|
296
|
+
}
|
|
297
|
+
console.log("");
|
|
298
|
+
}
|
|
299
|
+
}
|
|
300
|
+
//# sourceMappingURL=pii-scan.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"pii-scan.js","sourceRoot":"","sources":["../../src/commands/pii-scan.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACrF,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAqBrC,+EAA+E;AAE/E,MAAM,YAAY,GAAiB;IACjC;QACE,EAAE,EAAE,KAAK;QACT,KAAK,EAAE,wBAAwB;QAC/B,KAAK,EAAE,wBAAwB;QAC/B,UAAU,EAAE,MAAM;QAClB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC3B,OAAO,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC;QAC5D,CAAC;KACF;IACD;QACE,EAAE,EAAE,aAAa;QACjB,KAAK,EAAE,oBAAoB;QAC3B,KAAK,EAAE,wFAAwF;QAC/F,UAAU,EAAE,MAAM;QAClB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,MAAM,MAAM,GAAG,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;YACtC,IAAI,MAAM,CAAC,MAAM,GAAG,EAAE,IAAI,MAAM,CAAC,MAAM,GAAG,EAAE;gBAAE,OAAO,KAAK,CAAC;YAC3D,aAAa;YACb,IAAI,GAAG,GAAG,CAAC,CAAC;YACZ,IAAI,GAAG,GAAG,KAAK,CAAC;YAChB,KAAK,IAAI,CAAC,GAAG,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC5C,IAAI,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC5B,IAAI,GAAG,EAAE,CAAC;oBACR,CAAC,IAAI,CAAC,CAAC;oBACP,IAAI,CAAC,GAAG,CAAC;wBAAE,CAAC,IAAI,CAAC,CAAC;gBACpB,CAAC;gBACD,GAAG,IAAI,CAAC,CAAC;gBACT,GAAG,GAAG,CAAC,GAAG,CAAC;YACb,CAAC;YACD,OAAO,GAAG,GAAG,EAAE,KAAK,CAAC,CAAC;QACxB,CAAC;KACF;IACD;QACE,EAAE,EAAE,OAAO;QACX,KAAK,EAAE,eAAe;QACtB,KAAK,EAAE,qDAAqD;QAC5D,UAAU,EAAE,QAAQ;QACpB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,kCAAkC;YAClC,IAAI,CAAC,CAAC,QAAQ,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC;gBAAE,OAAO,KAAK,CAAC;YACxE,IAAI,CAAC,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC;gBAAE,OAAO,KAAK,CAAC;YACpE,OAAO,IAAI,CAAC;QACd,CAAC;KACF;IACD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,iBAAiB;QACxB,KAAK,EAAE,0DAA0D;QACjE,UAAU,EAAE,QAAQ;QACpB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,MAAM,MAAM,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YACpC,OAAO,MAAM,CAAC,MAAM,IAAI,EAAE,IAAI,MAAM,CAAC,MAAM,IAAI,EAAE,CAAC;QACpD,CAAC;KACF;IACD;QACE,EAAE,EAAE,YAAY;QAChB,KAAK,EAAE,YAAY;QACnB,KAAK,EACH,yIAAyI;QAC3I,UAAU,EAAE,KAAK;QACjB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,8DAA8D;YAC9D,IAAI,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,iBAAiB;gBAAE,OAAO,KAAK,CAAC;YACxF,OAAO,IAAI,CAAC;QACd,CAAC;KACF;IACD;QACE,EAAE,EAAE,eAAe;QACnB,KAAK,EAAE,uBAAuB;QAC9B,KAAK,EAAE,mGAAmG;QAC1G,UAAU,EAAE,MAAM;KACnB;IACD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,yBAAyB;QAChC,KAAK,EAAE,2EAA2E;QAClF,UAAU,EAAE,MAAM;KACnB;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,KAAK,EAAE,yBAAyB;QAChC,KAAK,EAAE,kGAAkG;QACzG,UAAU,EAAE,MAAM;KACnB;IACD;QACE,EAAE,EAAE,aAAa;QACjB,KAAK,EAAE,0BAA0B;QACjC,KAAK,EACH,oIAAoI;QACtI,UAAU,EAAE,QAAQ;KACrB;CACF,CAAC;AAEF,+EAA+E;AAE/E,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,CAAC,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,aAAa,CAAC,CAAC,CAAC;AAChG,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IAC9B,KAAK;IACL,KAAK;IACL,KAAK;IACL,OAAO;IACP,KAAK;IACL,KAAK;IACL,KAAK;IACL,MAAM;IACN,KAAK;IACL,QAAQ;IACR,KAAK;IACL,QAAQ;IACR,OAAO;IACP,OAAO;IACP,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,OAAO;CACR,CAAC,CAAC;AAEH,SAAS,kBAAkB,CAAC,GAAW;IACrC,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,SAAS,IAAI,CAAC,CAAS;QACrB,IAAI,OAAiB,CAAC;QACtB,IAAI,CAAC;YACH,OAAO,GAAG,WAAW,CAAC,CAAC,CAAwB,CAAC;QAClD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QACD,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;YAC3B,IAAI,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YAC1D,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;YAC3B,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC;gBAC9B,KAAK,GAAG,CAAC;gBACT,IAAI,CAAC,IAAI,CAAC,CAAC;YACb,CAAC;YAAC,MAAM,CAAC;gBACP,IAAI,eAAe,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;oBAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1E,CAAC;QACH,CAAC;IACH,CAAC;IACD,IAAI,CAAC,GAAG,CAAC,CAAC;IACV,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,OAAO,CAAC,IAAY;IAC3B,IAAI,IAAI,CAAC,MAAM,IAAI,CAAC;QAAE,OAAO,MAAM,CAAC;IACpC,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;AACzE,CAAC;AAED,SAAS,QAAQ,CAAC,QAAgB;IAChC,IAAI,OAAe,CAAC;IACpB,IAAI,CAAC;QACH,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,MAAM,OAAO,GAAe,EAAE,CAAC;IAE/B,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,KAAK,CAAC,MAAM,EAAE,OAAO,EAAE,EAAE,CAAC;QACxD,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC;QAC5B,sDAAsD;QACtD,IAAI,sEAAsE,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,SAAS;QAEhG,KAAK,MAAM,OAAO,IAAI,YAAY,EAAE,CAAC;YACnC,OAAO,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC;YAC5B,IAAI,CAAyB,CAAC;YAC9B,OAAO,CAAC,CAAC,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBAC/C,IAAI,OAAO,CAAC,QAAQ,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;oBAAE,SAAS;gBAC1D,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,OAAO,GAAG,CAAC;oBACjB,MAAM,EAAE,CAAC,CAAC,KAAK,GAAG,CAAC;oBACnB,IAAI,EAAE,OAAO,CAAC,EAAE;oBAChB,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;oBACtB,UAAU,EAAE,OAAO,CAAC,UAAU;iBAC/B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,UAAU,CAAC,IAAc;IACvC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;aAgBH,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;CACpD,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,CAAC;IAEpF,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAChC,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CACZ,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,CAAC,IAAI,CAAC,EAChE,IAAI,EACJ,CAAC,CACF,CACF,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,+BAA+B,YAAY,CAAC,MAAM,iCAAiC,CAAC,CAAC;YACjG,KAAK,MAAM,CAAC,IAAI,YAAY,EAAE,CAAC;gBAC7B,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;YAC/F,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,GAAG,CAAC;IACpH,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,cAAc,CAAC,CAAC;IACxF,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC;IAElF,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACxB,OAAO,CAAC,KAAK,CAAC,qBAAqB,MAAM,EAAE,CAAC,CAAC;QAC7C,OAAO;IACT,CAAC;IAED,MAAM,KAAK,GAAG,kBAAkB,CAAC,MAAM,CAAC,CAAC;IACzC,IAAI,UAAU,GAAe,EAAE,CAAC;IAEhC,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,UAAU,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IAClC,CAAC;IAED,IAAI,UAAU,EAAE,CAAC;QACf,UAAU,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,UAAU,CAAC,CAAC;IACrE,CAAC;IACD,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACtC,UAAU,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,MAAM,GAAG;QACb,OAAO,EAAE,UAAU;QACnB,YAAY,EAAE,KAAK,CAAC,MAAM;QAC1B,OAAO,EAAE;YACP,KAAK,EAAE,UAAU,CAAC,MAAM;YACxB,MAAM,EAAE,MAAM,CAAC,WAAW,CACxB,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CACtF,CAAC,CAAC,EAAE,KAAK,CAAC,EAAE,EAAE,CAAE,KAAgB,GAAG,CAAC,CACrC,CACF;YACD,YAAY,EAAE;gBACZ,IAAI,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,MAAM,CAAC,CAAC,MAAM;gBAC9D,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,MAAM;gBAClE,GAAG,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,KAAK,CAAC,CAAC,MAAM;aAC7D;SACF;QACD,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,CAAC;IAEF,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,kBAAkB,CAAC,CAAC;QAC1C,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC1D,aAAa,CAAC,IAAI,CAAC,GAAG,EAAE,UAAU,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACtE,OAAO,CAAC,GAAG,CAAC,sCAAsC,UAAU,EAAE,CAAC,CAAC;IAClE,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,CAAC,MAAM,gBAAgB,CAAC,CAAC;QAC5D,OAAO,CAAC,GAAG,CAAC,YAAY,UAAU,CAAC,MAAM,0DAA0D,CAAC,CAAC;QAErG,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC5B,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC;YACvC,OAAO;QACT,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAU,EAAE,CAAC;YACtD,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,IAAI,CAAC,CAAC;YAC9D,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;gBAAE,SAAS;YACjC,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,WAAW,EAAE,gBAAgB,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC;YACxE,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;gBACtB,MAAM,MAAM,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC;gBACzD,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,MAAM,MAAM,MAAM,EAAE,KAAK,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;gBAClF,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;YAC9C,CAAC;QACH,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}
|
|
@@ -0,0 +1,8 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Secret scan — entropy-based and regex-based secret detection
|
|
3
|
+
* in source files. Optimized for CI gates and pre-commit hooks.
|
|
4
|
+
*
|
|
5
|
+
* All analysis local — no external services.
|
|
6
|
+
*/
|
|
7
|
+
export declare function runSecretScan(argv: string[]): void;
|
|
8
|
+
//# sourceMappingURL=secret-scan.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"secret-scan.d.ts","sourceRoot":"","sources":["../../src/commands/secret-scan.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAsMH,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAmFlD"}
|
|
@@ -0,0 +1,245 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Secret scan — entropy-based and regex-based secret detection
|
|
3
|
+
* in source files. Optimized for CI gates and pre-commit hooks.
|
|
4
|
+
*
|
|
5
|
+
* All analysis local — no external services.
|
|
6
|
+
*/
|
|
7
|
+
import { existsSync, readFileSync, readdirSync, mkdirSync, writeFileSync } from "fs";
|
|
8
|
+
import { join, extname } from "path";
|
|
9
|
+
// ─── Patterns ───────────────────────────────────────────────────────────────
|
|
10
|
+
const SECRET_PATTERNS = [
|
|
11
|
+
{ id: "aws-access-key", name: "AWS Access Key", regex: /AKIA[0-9A-Z]{16}/, severity: "critical" },
|
|
12
|
+
{
|
|
13
|
+
id: "aws-secret-key",
|
|
14
|
+
name: "AWS Secret Key",
|
|
15
|
+
regex: /(?:aws_secret_access_key|AWS_SECRET_ACCESS_KEY)\s*[=:]\s*['"]?([A-Za-z0-9/+=]{40})/,
|
|
16
|
+
severity: "critical",
|
|
17
|
+
},
|
|
18
|
+
{
|
|
19
|
+
id: "github-token",
|
|
20
|
+
name: "GitHub Token",
|
|
21
|
+
regex: /ghp_[A-Za-z0-9]{36}|github_pat_[A-Za-z0-9_]{82}/,
|
|
22
|
+
severity: "critical",
|
|
23
|
+
},
|
|
24
|
+
{ id: "github-oauth", name: "GitHub OAuth", regex: /gho_[A-Za-z0-9]{36}/, severity: "critical" },
|
|
25
|
+
{
|
|
26
|
+
id: "generic-api-key",
|
|
27
|
+
name: "Generic API Key",
|
|
28
|
+
regex: /(?:api[_-]?key|apikey)\s*[=:]\s*['"]([A-Za-z0-9_-]{20,})['"]/,
|
|
29
|
+
severity: "high",
|
|
30
|
+
},
|
|
31
|
+
{
|
|
32
|
+
id: "generic-secret",
|
|
33
|
+
name: "Generic Secret",
|
|
34
|
+
regex: /(?:secret|password|passwd|pwd)\s*[=:]\s*['"]([^'"]{8,})['"]/,
|
|
35
|
+
severity: "high",
|
|
36
|
+
},
|
|
37
|
+
{
|
|
38
|
+
id: "private-key",
|
|
39
|
+
name: "Private Key",
|
|
40
|
+
regex: /-----BEGIN (?:RSA |EC |DSA )?PRIVATE KEY-----/,
|
|
41
|
+
severity: "critical",
|
|
42
|
+
},
|
|
43
|
+
{
|
|
44
|
+
id: "gcp-service-account",
|
|
45
|
+
name: "GCP Service Account",
|
|
46
|
+
regex: /"type"\s*:\s*"service_account"/,
|
|
47
|
+
severity: "critical",
|
|
48
|
+
},
|
|
49
|
+
{ id: "stripe-key", name: "Stripe API Key", regex: /sk_live_[A-Za-z0-9]{24,}/, severity: "critical" },
|
|
50
|
+
{ id: "stripe-test", name: "Stripe Test Key", regex: /sk_test_[A-Za-z0-9]{24,}/, severity: "medium" },
|
|
51
|
+
{
|
|
52
|
+
id: "slack-webhook",
|
|
53
|
+
name: "Slack Webhook",
|
|
54
|
+
regex: /hooks\.slack\.com\/services\/T[A-Z0-9]+\/B[A-Z0-9]+\/[A-Za-z0-9]+/,
|
|
55
|
+
severity: "high",
|
|
56
|
+
},
|
|
57
|
+
{ id: "slack-token", name: "Slack Token", regex: /xox[bprs]-[A-Za-z0-9-]+/, severity: "high" },
|
|
58
|
+
{ id: "npm-token", name: "NPM Token", regex: /npm_[A-Za-z0-9]{36}/, severity: "critical" },
|
|
59
|
+
{
|
|
60
|
+
id: "sendgrid-key",
|
|
61
|
+
name: "SendGrid API Key",
|
|
62
|
+
regex: /SG\.[A-Za-z0-9_-]{22}\.[A-Za-z0-9_-]{43}/,
|
|
63
|
+
severity: "critical",
|
|
64
|
+
},
|
|
65
|
+
{
|
|
66
|
+
id: "jwt-token",
|
|
67
|
+
name: "JWT Token",
|
|
68
|
+
regex: /eyJ[A-Za-z0-9_-]{10,}\.eyJ[A-Za-z0-9_-]{10,}\.[A-Za-z0-9_-]{10,}/,
|
|
69
|
+
severity: "high",
|
|
70
|
+
},
|
|
71
|
+
{
|
|
72
|
+
id: "connection-string",
|
|
73
|
+
name: "Database Connection String",
|
|
74
|
+
regex: /(?:mongodb|postgres|mysql|redis):\/\/[^:]+:[^@]+@[^\s'"]+/,
|
|
75
|
+
severity: "critical",
|
|
76
|
+
},
|
|
77
|
+
];
|
|
78
|
+
// ─── Scanner ────────────────────────────────────────────────────────────────
|
|
79
|
+
const SKIP_EXTENSIONS = new Set([
|
|
80
|
+
".png",
|
|
81
|
+
".jpg",
|
|
82
|
+
".jpeg",
|
|
83
|
+
".gif",
|
|
84
|
+
".ico",
|
|
85
|
+
".svg",
|
|
86
|
+
".woff",
|
|
87
|
+
".woff2",
|
|
88
|
+
".ttf",
|
|
89
|
+
".eot",
|
|
90
|
+
".zip",
|
|
91
|
+
".tar",
|
|
92
|
+
".gz",
|
|
93
|
+
]);
|
|
94
|
+
const SKIP_DIRS = new Set(["node_modules", ".git", "dist", "build", "coverage", ".next"]);
|
|
95
|
+
function collectFiles(dir, maxFiles) {
|
|
96
|
+
const result = [];
|
|
97
|
+
function walk(d) {
|
|
98
|
+
if (result.length >= maxFiles)
|
|
99
|
+
return;
|
|
100
|
+
let entries;
|
|
101
|
+
try {
|
|
102
|
+
entries = readdirSync(d);
|
|
103
|
+
}
|
|
104
|
+
catch {
|
|
105
|
+
return;
|
|
106
|
+
}
|
|
107
|
+
for (const name of entries) {
|
|
108
|
+
if (result.length >= maxFiles)
|
|
109
|
+
return;
|
|
110
|
+
if (SKIP_DIRS.has(name))
|
|
111
|
+
continue;
|
|
112
|
+
const full = join(d, name);
|
|
113
|
+
if (SKIP_EXTENSIONS.has(extname(name)))
|
|
114
|
+
continue;
|
|
115
|
+
try {
|
|
116
|
+
const sub = readdirSync(full);
|
|
117
|
+
void sub;
|
|
118
|
+
walk(full);
|
|
119
|
+
}
|
|
120
|
+
catch {
|
|
121
|
+
result.push(full);
|
|
122
|
+
}
|
|
123
|
+
}
|
|
124
|
+
}
|
|
125
|
+
walk(dir);
|
|
126
|
+
return result;
|
|
127
|
+
}
|
|
128
|
+
function maskSecret(value) {
|
|
129
|
+
if (value.length <= 8)
|
|
130
|
+
return "****";
|
|
131
|
+
return value.substring(0, 4) + "****" + value.substring(value.length - 4);
|
|
132
|
+
}
|
|
133
|
+
function scanFile(filePath) {
|
|
134
|
+
let content;
|
|
135
|
+
try {
|
|
136
|
+
content = readFileSync(filePath, "utf-8");
|
|
137
|
+
}
|
|
138
|
+
catch {
|
|
139
|
+
return [];
|
|
140
|
+
}
|
|
141
|
+
// Skip binary-looking files
|
|
142
|
+
if (content.includes("\0"))
|
|
143
|
+
return [];
|
|
144
|
+
const lines = content.split("\n");
|
|
145
|
+
const findings = [];
|
|
146
|
+
for (let i = 0; i < lines.length; i++) {
|
|
147
|
+
const line = lines[i];
|
|
148
|
+
// Skip comments that are likely documentation
|
|
149
|
+
if (/^\s*(?:\/\/|#|\/\*|\*)\s*(?:example|sample|placeholder|todo|fixme)/i.test(line))
|
|
150
|
+
continue;
|
|
151
|
+
for (const pattern of SECRET_PATTERNS) {
|
|
152
|
+
const match = pattern.regex.exec(line);
|
|
153
|
+
if (match) {
|
|
154
|
+
findings.push({
|
|
155
|
+
file: filePath,
|
|
156
|
+
line: i + 1,
|
|
157
|
+
patternId: pattern.id,
|
|
158
|
+
patternName: pattern.name,
|
|
159
|
+
severity: pattern.severity,
|
|
160
|
+
snippet: line.trim().substring(0, 80),
|
|
161
|
+
masked: maskSecret(match[0]),
|
|
162
|
+
});
|
|
163
|
+
}
|
|
164
|
+
}
|
|
165
|
+
}
|
|
166
|
+
return findings;
|
|
167
|
+
}
|
|
168
|
+
// ─── CLI ────────────────────────────────────────────────────────────────────
|
|
169
|
+
const STORE = ".judges-secret-scan";
|
|
170
|
+
export function runSecretScan(argv) {
|
|
171
|
+
if (argv.includes("--help") || argv.includes("-h")) {
|
|
172
|
+
console.log(`
|
|
173
|
+
judges secret-scan — Detect secrets and credentials in source code
|
|
174
|
+
|
|
175
|
+
Usage:
|
|
176
|
+
judges secret-scan [dir]
|
|
177
|
+
judges secret-scan src/ --severity critical
|
|
178
|
+
judges secret-scan --patterns
|
|
179
|
+
judges secret-scan --save
|
|
180
|
+
|
|
181
|
+
Options:
|
|
182
|
+
--severity <level> Filter by severity (critical, high, medium)
|
|
183
|
+
--patterns List all secret detection patterns
|
|
184
|
+
--save Save report to ${STORE}/
|
|
185
|
+
--format json JSON output
|
|
186
|
+
--help, -h Show this help
|
|
187
|
+
`);
|
|
188
|
+
return;
|
|
189
|
+
}
|
|
190
|
+
const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
|
|
191
|
+
// List patterns
|
|
192
|
+
if (argv.includes("--patterns")) {
|
|
193
|
+
if (format === "json") {
|
|
194
|
+
console.log(JSON.stringify(SECRET_PATTERNS.map(({ regex: _r, ...rest }) => rest), null, 2));
|
|
195
|
+
}
|
|
196
|
+
else {
|
|
197
|
+
console.log(`\n Secret Patterns (${SECRET_PATTERNS.length})\n ──────────────────────────`);
|
|
198
|
+
for (const p of SECRET_PATTERNS) {
|
|
199
|
+
console.log(` [${p.severity.toUpperCase().padEnd(8)}] ${p.id.padEnd(25)} ${p.name}`);
|
|
200
|
+
}
|
|
201
|
+
console.log("");
|
|
202
|
+
}
|
|
203
|
+
return;
|
|
204
|
+
}
|
|
205
|
+
const scanDir = argv.find((a) => !a.startsWith("--") && !argv[argv.indexOf(a) - 1]?.startsWith("--")) || ".";
|
|
206
|
+
const sevFilter = argv.find((_a, i) => argv[i - 1] === "--severity");
|
|
207
|
+
const files = collectFiles(scanDir, 1000);
|
|
208
|
+
let findings = [];
|
|
209
|
+
for (const file of files)
|
|
210
|
+
findings.push(...scanFile(file));
|
|
211
|
+
if (sevFilter)
|
|
212
|
+
findings = findings.filter((f) => f.severity === sevFilter);
|
|
213
|
+
const report = { findings, scannedFiles: files.length, timestamp: new Date().toISOString() };
|
|
214
|
+
if (argv.includes("--save")) {
|
|
215
|
+
if (!existsSync(STORE))
|
|
216
|
+
mkdirSync(STORE, { recursive: true });
|
|
217
|
+
writeFileSync(join(STORE, "secret-report.json"), JSON.stringify(report, null, 2));
|
|
218
|
+
console.log(` Report saved to ${STORE}/secret-report.json`);
|
|
219
|
+
}
|
|
220
|
+
if (format === "json") {
|
|
221
|
+
console.log(JSON.stringify(report, null, 2));
|
|
222
|
+
}
|
|
223
|
+
else {
|
|
224
|
+
console.log(`\n Secret Scan — ${report.scannedFiles} files scanned`);
|
|
225
|
+
console.log(` Found: ${findings.length} potential secrets\n ──────────────────────────`);
|
|
226
|
+
if (findings.length === 0) {
|
|
227
|
+
console.log(` ✅ No secrets detected\n`);
|
|
228
|
+
return;
|
|
229
|
+
}
|
|
230
|
+
for (const sev of ["critical", "high", "medium"]) {
|
|
231
|
+
const items = findings.filter((f) => f.severity === sev);
|
|
232
|
+
if (items.length === 0)
|
|
233
|
+
continue;
|
|
234
|
+
console.log(`\n ${sev.toUpperCase()} (${items.length})`);
|
|
235
|
+
for (const f of items.slice(0, 10)) {
|
|
236
|
+
console.log(` ${f.file}:${f.line} — ${f.patternName}`);
|
|
237
|
+
console.log(` ${f.masked}`);
|
|
238
|
+
}
|
|
239
|
+
if (items.length > 10)
|
|
240
|
+
console.log(` ... and ${items.length - 10} more`);
|
|
241
|
+
}
|
|
242
|
+
console.log("");
|
|
243
|
+
}
|
|
244
|
+
}
|
|
245
|
+
//# sourceMappingURL=secret-scan.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"secret-scan.js","sourceRoot":"","sources":["../../src/commands/secret-scan.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACrF,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AA2BrC,+EAA+E;AAE/E,MAAM,eAAe,GAAoB;IACvC,EAAE,EAAE,EAAE,gBAAgB,EAAE,IAAI,EAAE,gBAAgB,EAAE,KAAK,EAAE,kBAAkB,EAAE,QAAQ,EAAE,UAAU,EAAE;IACjG;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,KAAK,EAAE,oFAAoF;QAC3F,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,cAAc;QACpB,KAAK,EAAE,iDAAiD;QACxD,QAAQ,EAAE,UAAU;KACrB;IACD,EAAE,EAAE,EAAE,cAAc,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAU,EAAE;IAChG;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,KAAK,EAAE,8DAA8D;QACrE,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,KAAK,EAAE,6DAA6D;QACpE,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,aAAa;QACnB,KAAK,EAAE,+CAA+C;QACtD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,qBAAqB;QACzB,IAAI,EAAE,qBAAqB;QAC3B,KAAK,EAAE,gCAAgC;QACvC,QAAQ,EAAE,UAAU;KACrB;IACD,EAAE,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,gBAAgB,EAAE,KAAK,EAAE,0BAA0B,EAAE,QAAQ,EAAE,UAAU,EAAE;IACrG,EAAE,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,iBAAiB,EAAE,KAAK,EAAE,0BAA0B,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACrG;QACE,EAAE,EAAE,eAAe;QACnB,IAAI,EAAE,eAAe;QACrB,KAAK,EAAE,mEAAmE;QAC1E,QAAQ,EAAE,MAAM;KACjB;IACD,EAAE,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,aAAa,EAAE,KAAK,EAAE,yBAAyB,EAAE,QAAQ,EAAE,MAAM,EAAE;IAC9F,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAU,EAAE;IAC1F;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,kBAAkB;QACxB,KAAK,EAAE,0CAA0C;QACjD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,WAAW;QACf,IAAI,EAAE,WAAW;QACjB,KAAK,EAAE,kEAAkE;QACzE,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,4BAA4B;QAClC,KAAK,EAAE,2DAA2D;QAClE,QAAQ,EAAE,UAAU;KACrB;CACF,CAAC;AAEF,+EAA+E;AAE/E,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IAC9B,MAAM;IACN,MAAM;IACN,OAAO;IACP,MAAM;IACN,MAAM;IACN,MAAM;IACN,OAAO;IACP,QAAQ;IACR,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,KAAK;CACN,CAAC,CAAC;AACH,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,CAAC,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC;AAE1F,SAAS,YAAY,CAAC,GAAW,EAAE,QAAgB;IACjD,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,SAAS,IAAI,CAAC,CAAS;QACrB,IAAI,MAAM,CAAC,MAAM,IAAI,QAAQ;YAAE,OAAO;QACtC,IAAI,OAAiB,CAAC;QACtB,IAAI,CAAC;YACH,OAAO,GAAG,WAAW,CAAC,CAAC,CAAwB,CAAC;QAClD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;YAC3B,IAAI,MAAM,CAAC,MAAM,IAAI,QAAQ;gBAAE,OAAO;YACtC,IAAI,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC;gBAAE,SAAS;YAClC,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;YAC3B,IAAI,eAAe,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;gBAAE,SAAS;YACjD,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC;gBAC9B,KAAK,GAAG,CAAC;gBACT,IAAI,CAAC,IAAI,CAAC,CAAC;YACb,CAAC;YAAC,MAAM,CAAC;gBACP,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpB,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,CAAC,GAAG,CAAC,CAAC;IACV,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,UAAU,CAAC,KAAa;IAC/B,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC;QAAE,OAAO,MAAM,CAAC;IACrC,OAAO,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,MAAM,GAAG,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;AAC5E,CAAC;AAED,SAAS,QAAQ,CAAC,QAAgB;IAChC,IAAI,OAAe,CAAC;IACpB,IAAI,CAAC;QACH,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,4BAA4B;IAC5B,IAAI,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC;QAAE,OAAO,EAAE,CAAC;IAEtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,MAAM,QAAQ,GAAoB,EAAE,CAAC;IAErC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACtB,8CAA8C;QAC9C,IAAI,qEAAqE,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,SAAS;QAE/F,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;YACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACvC,IAAI,KAAK,EAAE,CAAC;gBACV,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,GAAG,CAAC;oBACX,SAAS,EAAE,OAAO,CAAC,EAAE;oBACrB,WAAW,EAAE,OAAO,CAAC,IAAI;oBACzB,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,OAAO,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC;oBACrC,MAAM,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;iBAC7B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,+EAA+E;AAE/E,MAAM,KAAK,GAAG,qBAAqB,CAAC;AAEpC,MAAM,UAAU,aAAa,CAAC,IAAc;IAC1C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;yCAYyB,KAAK;;;CAG7C,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAE1F,gBAAgB;IAChB,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAChC,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CACZ,eAAe,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,CAAC,IAAI,CAAC,EACrD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,wBAAwB,eAAe,CAAC,MAAM,iCAAiC,CAAC,CAAC;YAC7F,KAAK,MAAM,CAAC,IAAI,eAAe,EAAE,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;YAC1F,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,GAAG,CAAC;IACrH,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;IAErF,MAAM,KAAK,GAAG,YAAY,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;IAC1C,IAAI,QAAQ,GAAoB,EAAE,CAAC;IACnC,KAAK,MAAM,IAAI,IAAI,KAAK;QAAE,QAAQ,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC;IAE3D,IAAI,SAAS;QAAE,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC;IAE3E,MAAM,MAAM,GAAiB,EAAE,QAAQ,EAAE,YAAY,EAAE,KAAK,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,CAAC;IAE3G,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC;YAAE,SAAS,CAAC,KAAK,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC9D,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,oBAAoB,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAClF,OAAO,CAAC,GAAG,CAAC,qBAAqB,KAAK,qBAAqB,CAAC,CAAC;IAC/D,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,qBAAqB,MAAM,CAAC,YAAY,gBAAgB,CAAC,CAAC;QACtE,OAAO,CAAC,GAAG,CAAC,YAAY,QAAQ,CAAC,MAAM,kDAAkD,CAAC,CAAC;QAE3F,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;YAC3C,OAAO;QACT,CAAC;QAED,KAAK,MAAM,GAAG,IAAI,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,CAAC;YACjD,MAAM,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,GAAG,CAAC,CAAC;YACzD,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;gBAAE,SAAS;YACjC,OAAO,CAAC,GAAG,CAAC,SAAS,GAAG,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC;YAC5D,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;gBACnC,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;gBAC5D,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;YACrC,CAAC;YACD,IAAI,KAAK,CAAC,MAAM,GAAG,EAAE;gBAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB,KAAK,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC,CAAC;QAChF,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}
|
package/package.json
CHANGED
package/server.json
CHANGED
|
@@ -7,12 +7,12 @@
|
|
|
7
7
|
"url": "https://github.com/kevinrabun/judges",
|
|
8
8
|
"source": "github"
|
|
9
9
|
},
|
|
10
|
-
"version": "3.
|
|
10
|
+
"version": "3.50.0",
|
|
11
11
|
"packages": [
|
|
12
12
|
{
|
|
13
13
|
"registryType": "npm",
|
|
14
14
|
"identifier": "@kevinrabun/judges",
|
|
15
|
-
"version": "3.
|
|
15
|
+
"version": "3.50.0",
|
|
16
16
|
"transport": {
|
|
17
17
|
"type": "stdio"
|
|
18
18
|
}
|