@mitre/hdf-converters 2.6.21 → 2.6.24
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/index.d.ts +2 -1
- package/lib/index.js +4 -2
- package/lib/index.js.map +1 -1
- package/lib/package.json +4 -4
- package/lib/src/asff-mapper/asff-mapper.d.ts +106 -0
- package/lib/src/asff-mapper/asff-mapper.js +462 -0
- package/lib/src/asff-mapper/asff-mapper.js.map +1 -0
- package/lib/src/asff-mapper/case-firewall-manager.d.ts +1 -0
- package/lib/src/asff-mapper/case-firewall-manager.js +27 -0
- package/lib/src/asff-mapper/case-firewall-manager.js.map +1 -0
- package/lib/src/asff-mapper/case-hdf2asff.d.ts +1 -0
- package/lib/src/asff-mapper/case-hdf2asff.js +192 -0
- package/lib/src/asff-mapper/case-hdf2asff.js.map +1 -0
- package/lib/src/asff-mapper/case-prowler.d.ts +1 -0
- package/lib/src/asff-mapper/case-prowler.js +39 -0
- package/lib/src/asff-mapper/case-prowler.js.map +1 -0
- package/lib/src/asff-mapper/case-security-hub.d.ts +1 -0
- package/lib/src/asff-mapper/case-security-hub.js +136 -0
- package/lib/src/asff-mapper/case-security-hub.js.map +1 -0
- package/lib/src/asff-mapper/case-trivy.d.ts +1 -0
- package/lib/src/asff-mapper/case-trivy.js +71 -0
- package/lib/src/asff-mapper/case-trivy.js.map +1 -0
- package/lib/src/base-converter.js +8 -12
- package/lib/src/base-converter.js.map +1 -1
- package/lib/src/burpsuite-mapper.js +2 -2
- package/lib/src/burpsuite-mapper.js.map +1 -1
- package/lib/src/converters-from-hdf/asff/transformers.js +8 -4
- package/lib/src/converters-from-hdf/asff/transformers.js.map +1 -1
- package/lib/src/converters-from-hdf/splunk/reverse-splunk-mapper.d.ts +2 -2
- package/lib/src/converters-from-hdf/splunk/reverse-splunk-mapper.js +2 -2
- package/lib/src/converters-from-hdf/splunk/reverse-splunk-mapper.js.map +1 -1
- package/lib/src/converters-from-hdf/splunk/splunk-profile-types.d.ts +1 -1
- package/lib/src/converters-from-hdf/splunk/splunk-report-types.d.ts +2 -1
- package/lib/src/fortify-mapper.js +1 -3
- package/lib/src/fortify-mapper.js.map +1 -1
- package/lib/src/ionchannel-mapper.d.ts +27 -0
- package/lib/src/ionchannel-mapper.js +268 -0
- package/lib/src/ionchannel-mapper.js.map +1 -0
- package/lib/src/jfrog-xray-mapper.js +2 -2
- package/lib/src/jfrog-xray-mapper.js.map +1 -1
- package/lib/src/mappings/ScoutsuiteNistMapping.js +3 -3
- package/lib/src/mappings/ScoutsuiteNistMapping.js.map +1 -1
- package/lib/src/nessus-mapper.js +8 -3
- package/lib/src/nessus-mapper.js.map +1 -1
- package/lib/src/netsparker-mapper.js +2 -2
- package/lib/src/netsparker-mapper.js.map +1 -1
- package/lib/src/prisma-mapper.js +2 -2
- package/lib/src/prisma-mapper.js.map +1 -1
- package/lib/src/sarif-mapper.js +8 -4
- package/lib/src/sarif-mapper.js.map +1 -1
- package/lib/src/snyk-mapper.d.ts +3 -1
- package/lib/src/snyk-mapper.js +25 -19
- package/lib/src/snyk-mapper.js.map +1 -1
- package/lib/src/splunk-mapper.d.ts +3 -2
- package/lib/src/splunk-mapper.js +5 -5
- package/lib/src/splunk-mapper.js.map +1 -1
- package/lib/src/utils/global.d.ts +4 -2
- package/lib/src/utils/global.js +11 -6
- package/lib/src/utils/global.js.map +1 -1
- package/lib/src/xccdf-results-mapper.js +2 -2
- package/lib/src/xccdf-results-mapper.js.map +1 -1
- package/lib/src/zap-mapper.js +2 -8
- package/lib/src/zap-mapper.js.map +1 -1
- package/package.json +4 -4
- package/lib/src/asff-mapper.d.ts +0 -25
- package/lib/src/asff-mapper.js +0 -887
- package/lib/src/asff-mapper.js.map +0 -1
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"asff-mapper.js","sourceRoot":"","sources":["../../../src/asff-mapper/asff-mapper.ts"],"names":[],"mappings":";;;;;;AAAA,iDAAqC;AACrC,uCAAkC;AAClC,oDAAuB;AACvB,qDAAmE;AACnE,sDAA8E;AAC9E,4CAAuE;AACvE,mEAA2D;AAC3D,mDAA4C;AAC5C,iDAA0C;AAC1C,2DAAmD;AACnD,6CAAsC;AAEtC,MAAM,cAAc,GAAwB,IAAI,GAAG,CAAC;IAClD,CAAC,UAAU,EAAE,GAAG,CAAC;IACjB,CAAC,MAAM,EAAE,GAAG,CAAC;IACb,CAAC,QAAQ,EAAE,GAAG,CAAC;IACf,CAAC,KAAK,EAAE,GAAG,CAAC;IACZ,CAAC,eAAe,EAAE,GAAG,CAAC;CACvB,CAAC,CAAC;AAEH,MAAM,cAAc,GAAG,gBAAgB,CAAC;AACxC,MAAM,iBAAiB,GAAG,mBAAmB,CAAC;AAG9C,IAAY,aAOX;AAPD,WAAY,aAAa;IACvB,yDAAwC,CAAA;IACxC,oCAAmB,CAAA;IACnB,iDAAgC,CAAA;IAChC,qCAAoB,CAAA;IACpB,gDAA+B,CAAA;IAC/B,oCAAmB,CAAA;AACrB,CAAC,EAPW,aAAa,GAAb,qBAAa,KAAb,qBAAa,QAOxB;AAED,SAAS,gBAAgB,CAAC,OAAgC;IACxD,MAAM,UAAU,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,YAAY,CAAW,CAAC;IAC1D,IACE,UAAU,CAAC,KAAK,CACd,oEAAoE,CACrE,EACD;QACA,OAAO,aAAa,CAAC,eAAe,CAAC;KACtC;SAAM,IACL,UAAU,CAAC,KAAK,CACd,+DAA+D,CAChE,EACD;QACA,OAAO,aAAa,CAAC,OAAO,CAAC;KAC9B;SAAM,IACL,UAAU,CAAC,KAAK,CACd,+DAA+D,CAChE,EACD;QACA,OAAO,aAAa,CAAC,WAAW,CAAC;KAClC;SAAM,IACL,UAAU,CAAC,KAAK,CACd,yEAAyE,CAC1E,EACD;QACA,OAAO,aAAa,CAAC,KAAK,CAAC;KAC5B;SAAM,IACL,gBAAC,CAAC,IAAI,CACJ,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,6BAA6B,CAAa,EACzD,CAAC,IAAY,EAAE,EAAE;QACf,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACjD,MAAM,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACjD,IACE,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC;YACnB,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC;YACnB,QAAQ,CAAC,KAAK,CAAC,GAAG,EAAE,EACpB;YACA,OAAO,gBAAC,CAAC,UAAU,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;SACzC;aAAM;YACL,OAAO,KAAK,CAAC;SACd;IACH,CAAC,CACF,EACD;QACA,OAAO,aAAa,CAAC,QAAQ,CAAC;KAC/B;SAAM;QACL,OAAO,aAAa,CAAC,OAAO,CAAC;KAC9B;AACH,CAAC;AAED,MAAM,oBAAoB,GAItB,IAAI,GAAG,CAAC;IACV,CAAC,aAAa,CAAC,eAAe,EAAE,IAAA,0CAAkB,GAAE,CAAC;IACrD,CAAC,aAAa,CAAC,OAAO,EAAE,IAAA,yBAAU,GAAE,CAAC;IACrC,CAAC,aAAa,CAAC,WAAW,EAAE,IAAA,kCAAc,GAAE,CAAC;IAC7C,CAAC,aAAa,CAAC,KAAK,EAAE,IAAA,qBAAQ,GAAE,CAAC;IACjC,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAA,2BAAW,GAAE,CAAC;CACxC,CAAC,CAAC;AAEH,SAAS,sBAAsB,CAC7B,OAAiC,EACjC,OAAsB,EACtB,IAAa,EACb,IAAY,EACZ,UAAyB;;IAEzB,IACE,OAAO,KAAK,aAAa,CAAC,OAAO;QACjC,gBAAC,CAAC,GAAG,CAAC,oBAAoB,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,IAAI,CAAC,EAC9C;QACA,IAAI,QAAQ,GAA4B,EAAE,CAAC;QAC3C,IAAI,OAAO,CAAC,cAAc,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE;YACvC,QAAQ,GAAG,EAAC,GAAG,OAAO,CAAC,cAAc,CAAC,GAAG,CAAC,OAAO,CAAC,EAAC,CAAC;SACrD;QACD,OAAO,MAAA,gBAAC,CAAC,GAAG,CAAC,oBAAoB,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,IAAI,CAAC,0CAAE,KAAK,CAAC,OAAO,EAAE;YACpE,IAAI;YACJ,QAAQ;SACT,CAAC,CAAC;KACJ;SAAM;QACL,IAAI,OAAO,UAAU,KAAK,UAAU,EAAE;YACpC,OAAQ,UAAsB,EAAE,CAAC;SAClC;aAAM;YACL,OAAO,UAAU,CAAC;SACnB;KACF;AACH,CAAC;AAED,SAAS,aAAa,CACpB,OAAmB,EACnB,OAAgE;IAEhE,MAAM,CAAC,EAAE,EAAE,IAAI,CAAC,GAAG,OAAO,CAAC;IAC3B,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACpC,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAEvC,MAAM,WAAW,GAAI,gBAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,YAAY,CAAY;SAC7D,KAAK,CAAC,GAAG,CAAC;SACV,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;SACZ,KAAK,CAAC,GAAG,CAAC,CAAC;IACd,MAAM,WAAW,GAAG,sBAAsB,CACxC,OAAO,EACP,gBAAgB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAC7B,QAAQ,EACR,aAAa,EACb,IAAA,sBAAM,EAAC,GAAG,WAAW,CAAC,CAAC,CAAC,IAAI,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC,CAC9C,CAAC;IACF,MAAM,gBAAgB,GAAG,sBAAsB,CAC7C,OAAO,EACP,gBAAgB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAC7B,IAAI,EACJ,+BAA+B,EAC/B,KAAK,CACN,CAAC;IACF,MAAM,WAAW,GAAG,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,WAAW,IAAI,CAAC;IAC/D,MAAM,UAAU,GAAG,sBAAsB,CACvC,OAAO,EACP,gBAAgB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAC7B,KAAK,EACL,YAAY,EACZ,EAAE,CAC2B,CAAC;IAEhC,OAAO;QAEL,EAAE,EAAE,EAAE;QACN,KAAK,EAAE,GAAG,WAAW,GAAG,gBAAC,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;QACrE,IAAI,EAAE,gBAAC,CAAC,SAAS,CACf,EAAE,EACF,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,EAC3B,CAAC,GAAY,EAAE,GAAY,EAAE,EAAE;YAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,SAAS,EAAE;gBAC1C,OAAO,GAAG,IAAI,GAAG,CAAC;aACnB;iBAAM;gBACL,OAAO,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC;oBAC7C,CAAC,CAAC,gBAAC,CAAC,IAAI,CAAC,gBAAC,CAAC,MAAM,CAAC,EAAE,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;oBAChC,CAAC,CAAC,GAAG,CAAC;aACT;QACH,CAAC,CACF;QACD,MAAM,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;QAC/C,IAAI,EAAE,sBAAsB,CAC1B,OAAO,EACP,gBAAgB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAC7B,KAAK,EACL,MAAM,EACN,gBAAC,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAC5C;QACD,YAAY,EAAE,KAAK;aAChB,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC;aAC1B,IAAI,EAAE;aACN,MAAM,CACL,CAAC,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE,CACtB,OAAO;YACP,OAAO,CAAC,IAAI,KAAK,EAAE;YACnB,KAAK;gBACH,GAAG,CAAC,SAAS,CACX,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,SAAS,IAAI,CAAC,CAAC,IAAI,KAAK,OAAO,CAAC,IAAI,CAChE,CAC2B;QACpC,IAAI,EAAE,KAAK;aACR,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;aAClB,IAAI,EAAE;aACN,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,SAAS,CAAC;QAC3D,eAAe,EAAE,CAAC,GAA4B,EAAE;YAC9C,MAAM,IAAI,GAAG,gBAAC,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,MAAM,CAC7D,CAAC,GAAG,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,EAAE,CAAC,CAAC,MAAM,KAAK,CAAC,CAC7C,CAAC;YACF,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE;gBACrB,OAAO,EAAE,CAAC;aACX;iBAAM,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE;gBAC5B,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC;aAChB;iBAAM;gBACL,OAAO,EAAC,GAAG,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAC,CAAC;aACpC;QACH,CAAC,CAAC,EAAE;QACJ,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,IAAI,EAAE,CAAC,CAAC,MAAM,KAAK,CAAC,IAAI;YAChD,WAAW,EAAE,UAAU;SACxB,CAAC;QACF,IAAI,EAAE,sBAAsB,CAC1B,OAAO,EACP,gBAAgB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAC7B,KAAK,EACL,MAAM,EACN,IAAI,CAAC,SAAS,CAAC,EAAC,QAAQ,EAAE,QAAQ,EAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAC9C;QACD,OAAO,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE;KACxB,CAAC;AACxB,CAAC;AAGD,SAAgB,WAAW,CACzB,OAAmB,EACnB,KAAgB,EAChB,IAA6B;IAG7B,MAAM,WAAW,GAAG,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,UAAU,CAA8B,CAAC;IACzE,IAAI,KAAK,CAAC,MAAM,KAAK,WAAW,CAAC,MAAM,EAAE;QACvC,MAAM,IAAI,KAAK,CACb,oGAAoG,CACrG,CAAC;KACH;IACD,MAAM,QAAQ,GAAG,gBAAC,CAAC,OAAO,CACxB,gBAAC,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,EACzB,CAAC,KAAkD,EAAE,EAAE;QACrD,MAAM,CAAC,UAAU,EAAE,WAAW,CAAC,GAAG,KAAK,CAAC;QACxC,OAAO,sBAAsB,CAC3B,OAAO,EACP,gBAAgB,CAAC,WAAW,CAAC,EAC7B,WAAW,EACX,eAAe,EACf,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,IAAI,CAAC,CACxB,CAAC;IACJ,CAAC,CAC+D,CAAC;IAEnE,OAAO,MAAM,CAAC,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CACpD,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,CAChC,CAAC;AACJ,CAAC;AA7BD,kCA6BC;AAED,SAAS,sBAAsB,CAC7B,MAG6C;IAE7C,IAAI,CAAC,gBAAC,CAAC,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE;QAC9B,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;YACzB,MAAM,GAAG,EAAC,QAAQ,EAAE,MAAM,EAAC,CAAC;SAC7B;aAAM;YACL,MAAM,GAAG,EAAC,QAAQ,EAAE,CAAC,MAAM,CAAC,EAAC,CAAC;SAC/B;KACF;IACD,OAAO,MAAmD,CAAC;AAC7D,CAAC;AACD,SAAS,YAAY,CACnB,QAAgB;IAEhB,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,IAAI;QACF,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;KAC/B;IAAC,MAAM;QAEN,MAAM,UAAU,GAAG,IAAI,QAAQ;aAC5B,IAAI,EAAE;aACN,OAAO,CAAC,MAAM,EAAE,MAAM,CAAC;aACvB,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC,GAAG,CAAC;QAC9B,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;KACjC;IACD,OAAO,sBAAsB,CAAC,MAAM,CAAC,CAAC;AACxC,CAAC;AAED,MAAa,UAAW,SAAQ,8BAAa;IAiV3C,YACE,IAA6B,EAC7B,cAA2E,EAC3E,OAAuD,SAAS;QAEhE,KAAK,CAAC,IAAI,CAAC,CAAC;QAlVd,oBAAe,GAAG;YAChB,QAAQ,EAAE;gBACR,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,sBAAoB;gBAC7B,SAAS,EAAE;oBACT,WAAW,EAAE,CAAC,MAA+B,EAAE,EAAE;wBAC/C,MAAM,WAAW,GACf,gBAAC,CAAC,GAAG,CAAC,MAAM,EAAE,wBAAwB,CACvC;6BACE,KAAK,CAAC,GAAG,CAAC;6BACV,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;6BACZ,KAAK,CAAC,GAAG,CAAC,CAAC;wBACd,MAAM,eAAe,GAAG,GAAG,WAAW,CAAC,CAAC,CAAC,MAAM,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC;wBAChE,OAAO,sBAAsB,CAC3B,IAAI,EACJ,gBAAgB,CACd,gBAAC,CAAC,GAAG,CAAC,MAAM,EAAE,aAAa,CAA4B,CACxD,EACD,CAAC,gBAAC,CAAC,GAAG,CAAC,MAAM,EAAE,aAAa,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC,EAC/C,aAAa,EACb,IAAA,sBAAM,EAAC,eAAe,CAAC,CACxB,CAAC;oBACJ,CAAC;iBACF;aACF;YACD,OAAO,EAAE,sBAAoB;YAC7B,UAAU,EAAE;gBACV,QAAQ,EAAE,IAAI;aACf;YACD,QAAQ,EAAE;gBACR;oBACE,IAAI,EAAE;wBACJ,WAAW,EAAE,GAAW,EAAE;;4BACxB,OAAO,CAAA,MAAA,IAAI,CAAC,IAAI,0CAAE,IAAI,KAAI,6BAA6B,CAAC;wBAC1D,CAAC;qBACF;oBACD,OAAO,EAAE,EAAE;oBACX,KAAK,EAAE;wBACL,WAAW,EAAE,GAAW,EAAE;4BACxB,OAAQ,gBAAC,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAY,IAAI,eAAe,CAAC;wBAClE,CAAC;qBACF;oBACD,UAAU,EAAE,IAAI;oBAChB,OAAO,EAAE,EAAE;oBACX,OAAO,EAAE,IAAI;oBACb,SAAS,EAAE,IAAI;oBACf,eAAe,EAAE,IAAI;oBACrB,QAAQ,EAAE,EAAE;oBACZ,UAAU,EAAE,EAAE;oBACd,OAAO,EAAE,EAAE;oBACX,MAAM,EAAE,EAAE;oBACV,MAAM,EAAE,QAAQ;oBAChB,QAAQ,EAAE;wBACR;4BACE,IAAI,EAAE,UAAU;4BAChB,GAAG,EAAE,IAAI;4BACT,gBAAgB,EAAE,WAAW,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC;4BAC9C,EAAE,EAAE;gCACF,WAAW,EAAE,CAAC,OAAgC,EAAU,EAAE,CACxD,sBAAsB,CACpB,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,OAAO,EACP,WAAW,EACX,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAW,CAAC,CAChD;6BACJ;4BACD,KAAK,EAAE;gCACL,WAAW,EAAE,CAAC,OAAgC,EAAU,EAAE,CACxD,sBAAsB,CACpB,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,OAAO,EACP,cAAc,EACd,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,CAAW,CAAC,CAC1C;6BACJ;4BACD,IAAI,EAAE;gCACJ,IAAI,EAAE,aAAa;gCACnB,WAAW,EAAE,CAAC,KAAa,EAAU,EAAE,CAAC,IAAA,sBAAM,EAAC,KAAK,CAAC;6BACtD;4BACD,MAAM,EAAE;gCACN,WAAW,EAAE,CAAC,OAAgC,EAAU,EAAE;oCAExD,IAAI,MAAuB,CAAC;oCAC5B,IAAI,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,iBAAiB,CAAC,KAAK,YAAY,EAAE;wCACtD,MAAM,GAAG,eAAe,CAAC;qCAC1B;yCAAM;wCAEL,MAAM,WAAW,GAAG,GAAoB,EAAE,CACvC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,cAAc,CAAwB;4CACpD,CAAC,CAAE,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,cAAc,CAAY;4CAC5C,CAAC,CAAE,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,qBAAqB,CAAY;gDACjD,KAAK,CAAC;wCACZ,MAAM,GAAG,sBAAsB,CAC7B,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,OAAO,EACP,eAAe,EACf,WAAW,CACZ,CAAC;qCACH;oCACD,OAAO,OAAO,MAAM,KAAK,QAAQ;wCAC/B,CAAC,CAAC,cAAc,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC;wCACjC,CAAC,CAAC,MAAM,CAAC;gCACb,CAAC;6BACF;4BACD,IAAI,EAAE;gCACJ,WAAW,EAAE,CACX,OAAgC,EACK,EAAE,CACvC,sBAAsB,CACpB,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,OAAO,EACP,aAAa,EACb,EAAE,CACwB;gCAC9B,IAAI,EAAE;oCACJ,WAAW,EAAE,CAAC,OAAgC,EAAY,EAAE;wCAC1D,MAAM,IAAI,GAAG,sBAAsB,CACjC,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,OAAO,EACP,gBAAgB,EAChB,EAAE,CACS,CAAC;wCACd,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE;4CACrB,OAAO,+CAAsC,CAAC;yCAC/C;6CAAM;4CACL,OAAO,IAAI,CAAC;yCACb;oCACH,CAAC;iCACF;6BACF;4BACD,YAAY,EAAE;gCACZ;oCACE,IAAI,EAAE;wCACJ,IAAI,EAAE,4BAA4B;wCAClC,WAAW,EAAE,CAAC,KAA6B,EAAU,EAAE;4CACrD,MAAM,IAAI,GAAa,EAAE,CAAC;4CAC1B,IAAI,gBAAC,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,EAAE;gDACxB,IAAI,CAAC,IAAI,CAAC,gBAAC,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC;6CACjC;4CACD,IAAI,gBAAC,CAAC,GAAG,CAAC,KAAK,EAAE,KAAK,CAAC,EAAE;gDACvB,IAAI,CAAC,IAAI,CAAC,gBAAC,CAAC,GAAG,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,CAAC;6CAChC;4CACD,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;wCACzB,CAAC;qCACF;oCACD,KAAK,EAAE,KAAK;iCACb;6BACF;4BACD,IAAI,EAAE;gCACJ;oCACE,WAAW,EAAE,CACX,OAAgC,EACP,EAAE;wCAC3B,OAAO;4CACL,GAAG,CAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,WAAW,CAAC,IAAI;gDACjC,GAAG,EAAE;oDACH,IAAI,EAAE,WAAW;iDAClB;6CACF,CAAC;yCACH,CAAC;oCACJ,CAAC;iCACF;6BACF;4BACD,eAAe,EAAE,EAAE;4BACnB,IAAI,EAAE,EAAE;4BACR,OAAO,EAAE;gCACP;oCACE,MAAM,EAAE;wCACN,WAAW,EAAE,CACX,OAAgC,EACF,EAAE;4CAChC,MAAM,WAAW,GAAG,GAAG,EAAE;gDACvB,IAAI,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,iBAAiB,CAAC,EAAE;oDACrC,QAAQ,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,iBAAiB,CAAC,EAAE;wDACzC,KAAK,QAAQ;4DACX,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,MAAM,CAAC;wDAC7C,KAAK,SAAS;4DACZ,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,OAAO,CAAC;wDAC9C,KAAK,QAAQ;4DACX,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,MAAM,CAAC;wDAC7C,KAAK,eAAe;4DAElB,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,OAAO,CAAC;wDAC9C;4DAEE,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,KAAK,CAAC;qDAC7C;iDACF;qDAAM;oDAEL,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,OAAO,CAAC;iDAC7C;4CACH,CAAC,CAAC;4CACF,OAAO,sBAAsB,CAC3B,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,OAAO,EACP,mBAAmB,EACnB,WAAW,CACoB,CAAC;wCACpC,CAAC;qCACF;oCACD,SAAS,EAAE;wCACT,WAAW,EAAE,CAAC,OAAgC,EAAU,EAAE;4CACxD,IAAI,MAAM,GAAG,sBAAsB,CACjC,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,OAAO,EACP,qBAAqB,EACrB,EAAE,CACO,CAAC;4CACZ,IAAI,MAAM,EAAE;gDACV,MAAM,IAAI,IAAI,CAAC;6CAChB;4CACD,MAAM,SAAS,GACb,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,WAAW,CAC3B;iDACE,GAAG,CAAC,CAAC,QAAiB,EAAE,EAAE;gDACzB,IAAI,IAAI,GAAG,SAAS,IAAA,sBAAM,EACxB,gBAAC,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CACxB,SAAS,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,EAAE,CAAC;gDAC1C,IAAI,gBAAC,CAAC,GAAG,CAAC,QAAQ,EAAE,WAAW,CAAC,EAAE;oDAChC,IAAI,IAAI,gBAAgB,IAAA,sBAAM,EAC5B,gBAAC,CAAC,GAAG,CAAC,QAAQ,EAAE,WAAW,CAAC,CAC7B,EAAE,CAAC;iDACL;gDACD,IAAI,gBAAC,CAAC,GAAG,CAAC,QAAQ,EAAE,QAAQ,CAAC,EAAE;oDAC7B,IAAI,IAAI,aAAa,IAAA,sBAAM,EACzB,gBAAC,CAAC,GAAG,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAC1B,EAAE,CAAC;iDACL;gDACD,OAAO,IAAI,CAAC;4CACd,CAAC,CAAC;iDACD,IAAI,CAAC,IAAI,CAAC,CAAC;4CACd,MAAM,IAAI,eAAe,SAAS,GAAG,CAAC;4CACtC,OAAO,MAAM,CAAC;wCAChB,CAAC;qCACF;oCACD,WAAW,EAAE,CACX,OAAgC,EACP,EAAE;wCAC3B,MAAM,OAAO,GAAG,CAAC,GAAG,EAAE;4CACpB,MAAM,WAAW,GAAG,GAAG,EAAE;gDACvB,MAAM,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC;gDAChD,QAAQ,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,iBAAiB,CAAC,EAAE;oDACzC,KAAK,SAAS;wDACZ,OAAO,SAAS,CAAC;oDACnB,KAAK,QAAQ;wDACX,OAAO,YAAY,CAAC;oDACtB,KAAK,SAAS;wDACZ,OAAO,SAAS,CAAC;oDACnB,KAAK,QAAQ;wDACX,OAAO,YAAY,CAAC;oDACtB,KAAK,eAAe;wDAClB,OAAO,SAAS,CAAC;oDACnB;wDACE,OAAO,YAAY,CAAC;iDACvB;4CACH,CAAC,CAAC;4CACF,OAAO,sBAAsB,CAC3B,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,OAAO,EACP,oBAAoB,EACpB,WAAW,CACZ,CAAC;wCACJ,CAAC,CAAC,EAAE,CAAC;wCACL,MAAM,WAAW,GAAG,CAAC,GAAG,EAAE;4CACxB,MAAM,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC;4CAChD,QAAQ,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,iBAAiB,CAAC,EAAE;gDACzC,KAAK,SAAS;oDACZ,OAAO,YAAY,CAAC;gDACtB,KAAK,QAAQ;oDACX,OAAO,SAAS,CAAC;gDACnB,KAAK,SAAS;oDACZ,OAAO,YAAY,CAAC;gDACtB,KAAK,QAAQ;oDACX,OAAO,SAAS,CAAC;gDACnB,KAAK,eAAe;oDAElB,OAAO,YAAY,CAAC;gDACtB;oDACE,OAAO,SAAS,CAAC;6CACpB;wCACH,CAAC,CAAC,EAAE,CAAC;wCACL,OAAO;4CACL,GAAG,CAAC,OAAO,KAAK,SAAS,IAAI,EAAC,OAAO,EAAC,CAAC;4CACvC,GAAG,CAAC,WAAW,KAAK,SAAS,IAAI;gDAC/B,YAAY,EAAE,WAAW;6CAC1B,CAAC;yCACH,CAAC;oCACJ,CAAC;oCACD,UAAU,EAAE;wCACV,WAAW,EAAE,CAAC,OAAgC,EAAU,EAAE,CACvD,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,gBAAgB,CAAY;4CAC3C,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,WAAW,CAAY;qCAC1C;iCACF;6BACF;yBACF;qBACF;oBACD,MAAM,EAAE,EAAE;iBACX;aACF;SACF,CAAC;QA+BA,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,WAAW,EAAE,CAAC;IACrB,CAAC;IAhCD,YAAY,CAAC,OAAgB;;QAC3B,OAAO,MAAA,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,0BAA0B,CAAC,0CAC7C,GAAG,CAAC,CAAC,MAA8B,EAAE,EAAE,CACvC,MAAM,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAmB,EAAE,EAAE;YAClE,OAAO,GAAG,IAAA,sBAAM,EAAC,GAAG,CAAC,KAAK,IAAA,sBAAM,EAAC,KAAK,CAAC,EAAE,CAAC;QAC5C,CAAC,CAAC,EAEH,IAAI,GACJ,IAAI,CAAC,IAAI,CAAC,CAAC;IAChB,CAAC;IAED,WAAW;QACT,IAAI,CAAC,QAAQ,GAAG,sBAAsB,CACpC,IAAI,EACJ,gBAAgB,CACd,gBAAC,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,aAAa,CAA4B,CAC3D,EACD,IAAI,EACJ,SAAS,EACT,IAAI,CAAC,eAAe,CAC+B,CAAC;IACxD,CAAC;CAYF;AA3VD,gCA2VC;AAED,MAAa,WAAW;IAItB,YACE,QAAgB,EAChB,gCAAsD,SAAS,EAC/D,OAAuD,SAAS;QAEhE,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,cAAc,GAAG,IAAI,GAAG,EAG1B,CAAC;QACJ,IAAI,CAAC,cAAc,CAAC,GAAG,CACrB,aAAa,CAAC,WAAW,EACzB,gBAAC,CAAC,GAAG,CACH,oBAAoB,CAAC,GAAG,CAAC,aAAa,CAAC,WAAW,CAAC,EACnD,2BAA2B,EAC3B,CAAC,SAA+B,EAAE,EAAE;YAClC,MAAM,IAAI,KAAK,CACb,mDAAmD,SAAS,EAAE,CAC/D,CAAC;QACJ,CAAC,CACF,CAAC,6BAA6B,CAAC,CACjC,CAAC;QACF,MAAM,QAAQ,GAAG,gBAAC,CAAC,GAAG,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,UAAU,CAAC,CAAC;QAC3D,IAAI,CAAC,IAAI,GAAG,gBAAC,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC,OAAO,EAAE,EAAE;YAC1C,MAAM,WAAW,GAAI,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,YAAY,CAAY;iBACzD,KAAK,CAAC,GAAG,CAAC;iBACV,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;iBACZ,KAAK,CAAC,GAAG,CAAC,CAAC;YACd,MAAM,eAAe,GAAG,GAAG,WAAW,CAAC,CAAC,CAAC,MAAM,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC;YACrE,OAAO,sBAAsB,CAC3B,IAAI,EACJ,gBAAgB,CAAC,OAAO,CAAC,EACzB,CAAC,OAAO,EAAE,QAAQ,CAAC,EACnB,UAAU,EACV,IAAA,sBAAM,EAAC,eAAe,CAAC,CACxB,CAAC;QACJ,CAAC,CAAC,CAAC;IACL,CAAC;IAED,KAAK;QACH,OAAO,gBAAC,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,GAAG,EAAE,EAAE;YACpC,MAAM,OAAO,GAAG,sBAAsB,CAAC,GAAG,CAAC,CAAC;YAC5C,OAAO,IAAI,UAAU,CACnB,sBAAsB,CACpB,IAAI,EACJ,gBAAgB,CACd,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAuC,CACpE,EACD,OAAO,EACP,mBAAmB,EACnB,OAAO,CACmB,EAC5B,sBAAsB,CACpB,IAAI,EACJ,gBAAgB,CACd,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAuC,CACpE,EACD,CAAC,OAAO,EAAE,IAAI,CAAC,cAAc,CAAC,EAC9B,gBAAgB,EAChB,IAAI,CAAC,cAAc,CACpB,EACD,sBAAsB,CACpB,IAAI,EACJ,gBAAgB,CACd,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAuC,CACpE,EACD,SAAS,EACT,MAAM,EACN,IAAI,CAAC,IAAI,CACgB,CAC5B,CAAC,KAAK,EAAE,CAAC;QACZ,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AA7ED,kCA6EC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export declare function getFirewallManager(): Record<string, (...inputs: any) => any>;
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.getFirewallManager = void 0;
|
|
7
|
+
const html_entities_1 = require("html-entities");
|
|
8
|
+
const lodash_1 = __importDefault(require("lodash"));
|
|
9
|
+
function findingId(finding) {
|
|
10
|
+
return (0, html_entities_1.encode)(lodash_1.default.get(finding, 'Title'));
|
|
11
|
+
}
|
|
12
|
+
function productName(findings) {
|
|
13
|
+
const finding = Array.isArray(findings) ? findings[0] : findings;
|
|
14
|
+
return (0, html_entities_1.encode)(`${lodash_1.default.get(finding, 'ProductFields.aws/securityhub/CompanyName')} ${lodash_1.default.get(finding, 'ProductFields.aws/securityhub/ProductName')}`);
|
|
15
|
+
}
|
|
16
|
+
function filename(findingInfo) {
|
|
17
|
+
return `${productName(findingInfo[1])}.json`;
|
|
18
|
+
}
|
|
19
|
+
function getFirewallManager() {
|
|
20
|
+
return {
|
|
21
|
+
findingId,
|
|
22
|
+
productName,
|
|
23
|
+
filename
|
|
24
|
+
};
|
|
25
|
+
}
|
|
26
|
+
exports.getFirewallManager = getFirewallManager;
|
|
27
|
+
//# sourceMappingURL=case-firewall-manager.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"case-firewall-manager.js","sourceRoot":"","sources":["../../../src/asff-mapper/case-firewall-manager.ts"],"names":[],"mappings":";;;;;;AAAA,iDAAqC;AACrC,oDAAuB;AAEvB,SAAS,SAAS,CAAC,OAAgC;IACjD,OAAO,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,CAAW,CAAC,CAAC;AACnD,CAAC;AAED,SAAS,WAAW,CAClB,QAA6D;IAE7D,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;IACjE,OAAO,IAAA,sBAAM,EACX,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,2CAA2C,CAAC,IAAI,gBAAC,CAAC,GAAG,CACrE,OAAO,EACP,2CAA2C,CAC5C,EAAE,CACJ,CAAC;AACJ,CAAC;AAED,SAAS,QAAQ,CACf,WAAiE;IAEjE,OAAO,GAAG,WAAW,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;AAC/C,CAAC;AAED,SAAgB,kBAAkB;IAChC,OAAO;QACL,SAAS;QACT,WAAW;QACX,QAAQ;KACT,CAAC;AACJ,CAAC;AAND,gDAMC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export declare function getHDF2ASFF(): Record<string, (...inputs: any) => any>;
|
|
@@ -0,0 +1,192 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.getHDF2ASFF = void 0;
|
|
7
|
+
const html_entities_1 = require("html-entities");
|
|
8
|
+
const lodash_1 = __importDefault(require("lodash"));
|
|
9
|
+
const global_1 = require("../utils/global");
|
|
10
|
+
const asff_mapper_1 = require("./asff-mapper");
|
|
11
|
+
function replaceTypesSlashes(type) {
|
|
12
|
+
if (!lodash_1.default.isString(type)) {
|
|
13
|
+
return type;
|
|
14
|
+
}
|
|
15
|
+
return type.replace(global_1.FROM_ASFF_TYPES_SLASH_REPLACEMENT, '/');
|
|
16
|
+
}
|
|
17
|
+
function objectifyTypesArray(typesArray) {
|
|
18
|
+
if (!Array.isArray(typesArray)) {
|
|
19
|
+
typesArray = lodash_1.default.get(typesArray, 'FindingProviderFields.Types');
|
|
20
|
+
}
|
|
21
|
+
const ret = {};
|
|
22
|
+
for (const typeString of typesArray) {
|
|
23
|
+
lodash_1.default.merge(ret, (() => {
|
|
24
|
+
const [type, attribute, value] = typeString.split('/');
|
|
25
|
+
let parsed = replaceTypesSlashes(value);
|
|
26
|
+
try {
|
|
27
|
+
parsed = JSON.parse(parsed);
|
|
28
|
+
}
|
|
29
|
+
catch { }
|
|
30
|
+
return { [type]: { [attribute]: parsed } };
|
|
31
|
+
})());
|
|
32
|
+
}
|
|
33
|
+
return ret;
|
|
34
|
+
}
|
|
35
|
+
function findExecutionFindingIndex(asffOrFindings, asffFindingToMatch) {
|
|
36
|
+
if (asffFindingToMatch) {
|
|
37
|
+
const targetToMatch = asffFindingToMatch.Id.split('/')[0];
|
|
38
|
+
return lodash_1.default.findIndex(Array.isArray(asffOrFindings)
|
|
39
|
+
? asffOrFindings
|
|
40
|
+
: lodash_1.default.get(asffOrFindings, 'Findings'), (finding) => lodash_1.default.get(finding, 'Id').split('/').length === 2 &&
|
|
41
|
+
lodash_1.default.get(finding, 'Id').startsWith(targetToMatch));
|
|
42
|
+
}
|
|
43
|
+
return lodash_1.default.findIndex(Array.isArray(asffOrFindings)
|
|
44
|
+
? asffOrFindings
|
|
45
|
+
: lodash_1.default.get(asffOrFindings, 'Findings'), (finding) => lodash_1.default.get(finding, 'Id').split('/').length === 2);
|
|
46
|
+
}
|
|
47
|
+
function preprocessingASFF(asff) {
|
|
48
|
+
const clone = lodash_1.default.cloneDeep(asff);
|
|
49
|
+
const index = findExecutionFindingIndex(clone);
|
|
50
|
+
lodash_1.default.pullAt(lodash_1.default.get(clone, 'Findings'), index);
|
|
51
|
+
return clone;
|
|
52
|
+
}
|
|
53
|
+
function supportingDocs(input) {
|
|
54
|
+
const [asff, docs] = input;
|
|
55
|
+
const index = findExecutionFindingIndex(asff);
|
|
56
|
+
const docsClone = lodash_1.default.cloneDeep(docs);
|
|
57
|
+
docsClone.set(asff_mapper_1.SpecialCasing.HDF2ASFF, {
|
|
58
|
+
execution: lodash_1.default.get(asff, `Findings[${index}]`)
|
|
59
|
+
});
|
|
60
|
+
return docsClone;
|
|
61
|
+
}
|
|
62
|
+
function productName(findings) {
|
|
63
|
+
const finding = Array.isArray(findings) ? findings[0] : findings;
|
|
64
|
+
const name = lodash_1.default.get(finding, 'Id');
|
|
65
|
+
return (0, html_entities_1.encode)(name.split('/').slice(0, 2).join(' - '));
|
|
66
|
+
}
|
|
67
|
+
function doesNotHaveFindingTitlePrefix() {
|
|
68
|
+
return true;
|
|
69
|
+
}
|
|
70
|
+
function code(group) {
|
|
71
|
+
return group[0].code || '';
|
|
72
|
+
}
|
|
73
|
+
function waiverData(group) {
|
|
74
|
+
return group[0].waiver_data || {};
|
|
75
|
+
}
|
|
76
|
+
function filename(findingInfo) {
|
|
77
|
+
const index = findExecutionFindingIndex(findingInfo[1], findingInfo[0]);
|
|
78
|
+
const target = replaceTypesSlashes(lodash_1.default.get(findingInfo[1][index], 'Id').split('/')[0]);
|
|
79
|
+
const finding = findingInfo[0];
|
|
80
|
+
return `${lodash_1.default.get(objectifyTypesArray(finding), 'File.Input')}-${target}.json`;
|
|
81
|
+
}
|
|
82
|
+
function getCodeForProfileLayer(finding, profileName) {
|
|
83
|
+
var _a, _b, _c;
|
|
84
|
+
const profileLayerToCodeMapping = {};
|
|
85
|
+
(_c = (_b = (_a = lodash_1.default.get(finding, 'Resources')
|
|
86
|
+
.find((resource) => resource.Type === 'AwsIamRole')) === null || _a === void 0 ? void 0 : _a.Details) === null || _b === void 0 ? void 0 : _b.AwsIamRole) === null || _c === void 0 ? void 0 : _c.AssumeRolePolicyDocument.split('=========================================================\n# Profile name: ').filter((codeLayer) => codeLayer).forEach((codeLayer) => {
|
|
87
|
+
const [profileLevel, code] = codeLayer.split('\n=========================================================\n\n');
|
|
88
|
+
profileLayerToCodeMapping[profileLevel] = code
|
|
89
|
+
.split('Test Description:')[0]
|
|
90
|
+
.trim();
|
|
91
|
+
});
|
|
92
|
+
if (profileName in profileLayerToCodeMapping) {
|
|
93
|
+
return profileLayerToCodeMapping[profileName];
|
|
94
|
+
}
|
|
95
|
+
else {
|
|
96
|
+
return '';
|
|
97
|
+
}
|
|
98
|
+
}
|
|
99
|
+
function mapping(context) {
|
|
100
|
+
var _a;
|
|
101
|
+
const execution = lodash_1.default.get(context.supportingDocs.get(asff_mapper_1.SpecialCasing.HDF2ASFF), 'execution');
|
|
102
|
+
const executionTypes = objectifyTypesArray(execution);
|
|
103
|
+
const profileNames = Object.keys(executionTypes || {}).filter((type) => !['MITRE', 'File', 'Execution'].includes(type));
|
|
104
|
+
return {
|
|
105
|
+
shortcircuit: true,
|
|
106
|
+
passthrough: lodash_1.default.get(executionTypes, 'Execution.passthrough'),
|
|
107
|
+
platform: {
|
|
108
|
+
...lodash_1.default.get(executionTypes, 'Execution.platform'),
|
|
109
|
+
target_id: ((_a = context.supportingDocs.get(asff_mapper_1.SpecialCasing.HDF2ASFF)) === null || _a === void 0 ? void 0 : _a.execution.Id).split('/')[0]
|
|
110
|
+
},
|
|
111
|
+
version: lodash_1.default.get(executionTypes, 'Execution.version'),
|
|
112
|
+
statistics: lodash_1.default.get(executionTypes, 'Execution.statistics'),
|
|
113
|
+
profiles: lodash_1.default.map(profileNames, (profileName, index) => {
|
|
114
|
+
return {
|
|
115
|
+
name: lodash_1.default.get(executionTypes, `${profileName}.name`),
|
|
116
|
+
version: lodash_1.default.get(executionTypes, `${profileName}.version`),
|
|
117
|
+
title: lodash_1.default.get(executionTypes, `${profileName}.title`),
|
|
118
|
+
maintainer: lodash_1.default.get(executionTypes, `${profileName}.maintainer`),
|
|
119
|
+
summary: lodash_1.default.get(executionTypes, `${profileName}.summary`),
|
|
120
|
+
license: lodash_1.default.get(executionTypes, `${profileName}.license`),
|
|
121
|
+
copyright: lodash_1.default.get(executionTypes, `${profileName}.copyright`),
|
|
122
|
+
copyright_email: lodash_1.default.get(executionTypes, `${profileName}.copyright_email`),
|
|
123
|
+
supports: lodash_1.default.get(executionTypes, `${profileName}.supports`, []),
|
|
124
|
+
attributes: lodash_1.default.get(executionTypes, `${profileName}.attributes`, []),
|
|
125
|
+
depends: lodash_1.default.get(executionTypes, `${profileName}.depends`),
|
|
126
|
+
groups: [],
|
|
127
|
+
status: lodash_1.default.get(executionTypes, `${profileName}.status`),
|
|
128
|
+
description: lodash_1.default.get(executionTypes, `${profileName}.description`),
|
|
129
|
+
inspec_version: lodash_1.default.get(executionTypes, `${profileName}.inspec_version`),
|
|
130
|
+
parent_profile: lodash_1.default.get(executionTypes, `${profileName}.parent_profile`),
|
|
131
|
+
skip_message: lodash_1.default.get(executionTypes, `${profileName}.skip_message`),
|
|
132
|
+
status_message: lodash_1.default.get(executionTypes, `${profileName}.status_message`),
|
|
133
|
+
controls: (0, asff_mapper_1.consolidate)(context, (() => {
|
|
134
|
+
return lodash_1.default.map(lodash_1.default.get(context.data, 'Findings'), (finding) => {
|
|
135
|
+
const findingTypes = objectifyTypesArray(finding);
|
|
136
|
+
return {
|
|
137
|
+
id: lodash_1.default.get(findingTypes, 'Control.ID'),
|
|
138
|
+
...(lodash_1.default.has(findingTypes, 'Control.Title') && {
|
|
139
|
+
title: lodash_1.default.get(findingTypes, 'Control.Title')
|
|
140
|
+
}),
|
|
141
|
+
...(lodash_1.default.has(findingTypes, 'Control.Desc') && {
|
|
142
|
+
desc: lodash_1.default.get(findingTypes, 'Control.Desc')
|
|
143
|
+
}),
|
|
144
|
+
impact: lodash_1.default.get(findingTypes, 'Control.Impact'),
|
|
145
|
+
tags: {
|
|
146
|
+
...lodash_1.default.omit(lodash_1.default.get(findingTypes, 'Tags'), ['nist']),
|
|
147
|
+
nist: (() => {
|
|
148
|
+
const nisttags = lodash_1.default.get(findingTypes, 'Tags.nist');
|
|
149
|
+
if (nisttags === undefined || nisttags.length === 0) {
|
|
150
|
+
return global_1.DEFAULT_STATIC_CODE_ANALYSIS_NIST_TAGS;
|
|
151
|
+
}
|
|
152
|
+
return nisttags;
|
|
153
|
+
})()
|
|
154
|
+
},
|
|
155
|
+
descriptions: lodash_1.default.map(Object.entries(lodash_1.default.get(findingTypes, 'Descriptions') || {}), ([key, value]) => ({ label: key, data: value })),
|
|
156
|
+
refs: lodash_1.default.get(findingTypes, 'Control.Refs', []),
|
|
157
|
+
source_location: lodash_1.default.get(findingTypes, 'Control.Source_Location', {}),
|
|
158
|
+
...(lodash_1.default.has(findingTypes, 'Control.Waiver_Data') && {
|
|
159
|
+
waiver_data: lodash_1.default.get(findingTypes, 'Control.Waiver_Data')
|
|
160
|
+
}),
|
|
161
|
+
code: getCodeForProfileLayer(finding, profileName),
|
|
162
|
+
results: index === profileNames.length - 1
|
|
163
|
+
? [
|
|
164
|
+
{
|
|
165
|
+
code_desc: lodash_1.default.get(findingTypes, 'Segment.code_desc'),
|
|
166
|
+
start_time: lodash_1.default.get(findingTypes, 'Segment.start_time'),
|
|
167
|
+
...lodash_1.default.omit(lodash_1.default.get(findingTypes, 'Segment'), ['code_desc', 'start_time'])
|
|
168
|
+
}
|
|
169
|
+
]
|
|
170
|
+
: []
|
|
171
|
+
};
|
|
172
|
+
});
|
|
173
|
+
})(), context.data),
|
|
174
|
+
sha256: lodash_1.default.get(executionTypes, `${profileName}.sha256`)
|
|
175
|
+
};
|
|
176
|
+
})
|
|
177
|
+
};
|
|
178
|
+
}
|
|
179
|
+
function getHDF2ASFF() {
|
|
180
|
+
return {
|
|
181
|
+
preprocessingASFF,
|
|
182
|
+
supportingDocs,
|
|
183
|
+
productName,
|
|
184
|
+
doesNotHaveFindingTitlePrefix,
|
|
185
|
+
code,
|
|
186
|
+
waiverData,
|
|
187
|
+
filename,
|
|
188
|
+
mapping
|
|
189
|
+
};
|
|
190
|
+
}
|
|
191
|
+
exports.getHDF2ASFF = getHDF2ASFF;
|
|
192
|
+
//# sourceMappingURL=case-hdf2asff.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"case-hdf2asff.js","sourceRoot":"","sources":["../../../src/asff-mapper/case-hdf2asff.ts"],"names":[],"mappings":";;;;;;AAAA,iDAAqC;AAErC,oDAAuB;AAEvB,4CAGyB;AACzB,+CAAqE;AAErE,SAAS,mBAAmB,CAAI,IAAO;IACrC,IAAI,CAAC,gBAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE;QACrB,OAAO,IAAI,CAAC;KACb;IACD,OAAO,IAAI,CAAC,OAAO,CAAC,0CAAiC,EAAE,GAAG,CAAC,CAAC;AAC9D,CAAC;AAED,SAAS,mBAAmB,CAC1B,UAA8C;IAE9C,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE;QAC9B,UAAU,GAAG,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,6BAA6B,CAAa,CAAC;KAC3E;IACD,MAAM,GAAG,GAAG,EAAE,CAAC;IACf,KAAK,MAAM,UAAU,IAAI,UAAU,EAAE;QACnC,gBAAC,CAAC,KAAK,CACL,GAAG,EACH,CAAC,GAA4B,EAAE;YAC7B,MAAM,CAAC,IAAI,EAAE,SAAS,EAAE,KAAK,CAAC,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACvD,IAAI,MAAM,GAAG,mBAAmB,CAAC,KAAK,CAAC,CAAC;YACxC,IAAI;gBACF,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;aAC7B;YAAC,MAAM,GAAE;YACV,OAAO,EAAC,CAAC,IAAI,CAAC,EAAE,EAAC,CAAC,SAAS,CAAC,EAAE,MAAM,EAAC,EAAC,CAAC;QACzC,CAAC,CAAC,EAAE,CACL,CAAC;KACH;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,SAAS,yBAAyB,CAChC,cAAmE,EACnE,kBAAiC;IAEjC,IAAI,kBAAkB,EAAE;QACtB,MAAM,aAAa,GAAG,kBAAkB,CAAC,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1D,OAAO,gBAAC,CAAC,SAAS,CAChB,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC;YAC3B,CAAC,CAAC,cAAc;YAChB,CAAC,CAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,UAAU,CAA+B,EACpE,CAAC,OAAO,EAAE,EAAE,CACT,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,KAAK,CAAC;YACvD,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAY,CAAC,UAAU,CAAC,aAAa,CAAC,CAC7D,CAAC;KACH;IACD,OAAO,gBAAC,CAAC,SAAS,CAChB,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC;QAC3B,CAAC,CAAC,cAAc;QAChB,CAAC,CAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,UAAU,CAA+B,EACpE,CAAC,OAAO,EAAE,EAAE,CAAE,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,KAAK,CAAC,CACtE,CAAC;AACJ,CAAC;AAED,SAAS,iBAAiB,CACxB,IAA6B;IAE7B,MAAM,KAAK,GAAG,gBAAC,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;IAChC,MAAM,KAAK,GAAG,yBAAyB,CAAC,KAAK,CAAC,CAAC;IAC/C,gBAAC,CAAC,MAAM,CAAC,gBAAC,CAAC,GAAG,CAAC,KAAK,EAAE,UAAU,CAA8B,EAAE,KAAK,CAAC,CAAC;IACvE,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,cAAc,CACrB,KAGC;IAED,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,KAAK,CAAC;IAC3B,MAAM,KAAK,GAAG,yBAAyB,CAAC,IAAI,CAAC,CAAC;IAC9C,MAAM,SAAS,GAAG,gBAAC,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;IACpC,SAAS,CAAC,GAAG,CAAC,2BAAa,CAAC,QAAQ,EAAE;QACpC,SAAS,EAAE,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,YAAY,KAAK,GAAG,CAA4B;KACxE,CAAC,CAAC;IACH,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,SAAS,WAAW,CAClB,QAA6D;IAE7D,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;IACjE,MAAM,IAAI,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAW,CAAC;IAC5C,OAAO,IAAA,sBAAM,EAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;AACzD,CAAC;AAED,SAAS,6BAA6B;IACpC,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,IAAI,CAAC,KAAyB;IACrC,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,IAAI,EAAE,CAAC;AAC7B,CAAC;AAED,SAAS,UAAU,CAAC,KAAyB;IAC3C,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC,WAAW,IAAI,EAAE,CAAC;AACpC,CAAC;AAED,SAAS,QAAQ,CACf,WAAiE;IAEjE,MAAM,KAAK,GAAG,yBAAyB,CACrC,WAAW,CAAC,CAAC,CAAC,EACd,WAAW,CAAC,CAAC,CAAiB,CAC/B,CAAC;IAEF,MAAM,MAAM,GAAG,mBAAmB,CAC/B,gBAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,IAAI,CAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAC7D,CAAC;IACF,MAAM,OAAO,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;IAC/B,OAAO,GAAG,gBAAC,CAAC,GAAG,CAAC,mBAAmB,CAAC,OAAO,CAAC,EAAE,YAAY,CAAC,IAAI,MAAM,OAAO,CAAC;AAC/E,CAAC;AAED,SAAS,sBAAsB,CAC7B,OAAgC,EAChC,WAAmB;;IAEnB,MAAM,yBAAyB,GAA2B,EAAE,CAAC;IAC7D,MAAA,MAAA,MACE,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,WAAW,CAO3B;SACE,IAAI,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,KAAK,YAAY,CAAC,0CACjD,OAAO,0CAAE,UAAU,0CAAE,wBAAwB,CAAC,KAAK,CACnD,6EAA6E,EAE9E,MAAM,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,EAC/B,OAAO,CAAC,CAAC,SAAS,EAAE,EAAE;QACrB,MAAM,CAAC,YAAY,EAAE,IAAI,CAAC,GAAG,SAAS,CAAC,KAAK,CAC1C,iEAAiE,CAClE,CAAC;QACF,yBAAyB,CAAC,YAAY,CAAC,GAAG,IAAI;aAC3C,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,CAAC;aAC7B,IAAI,EAAE,CAAC;IACZ,CAAC,CAAC,CAAC;IACL,IAAI,WAAW,IAAI,yBAAyB,EAAE;QAC5C,OAAO,yBAAyB,CAAC,WAAW,CAAC,CAAC;KAC/C;SAAM;QACL,OAAO,EAAE,CAAC;KACX;AACH,CAAC;AAED,SAAS,OAAO,CACd,OAAmB;;IAEnB,MAAM,SAAS,GAAG,gBAAC,CAAC,GAAG,CACrB,OAAO,CAAC,cAAc,CAAC,GAAG,CAAC,2BAAa,CAAC,QAAQ,CAAC,EAClD,WAAW,CACZ,CAAC;IACF,MAAM,cAAc,GAAG,mBAAmB,CACxC,SAAoC,CACrC,CAAC;IACF,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,IAAI,EAAE,CAAC,CAAC,MAAM,CAC3D,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CACzD,CAAC;IACF,OAAO;QACL,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,uBAAuB,CAAC;QAC3D,QAAQ,EAAE;YACR,GAAI,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,oBAAoB,CAAuB;YACrE,SAAS,EAAE,CACT,MAAA,OAAO,CAAC,cAAc,CAAC,GAAG,CAAC,2BAAa,CAAC,QAAQ,CAAC,0CAAE,SAAS,CAC1D,EACJ,CAAA,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;SAChB;QACD,OAAO,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,mBAAmB,CAAC;QACnD,UAAU,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,sBAAsB,CAAC;QACzD,QAAQ,EAAE,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC,WAAmB,EAAE,KAAa,EAAE,EAAE;YAEnE,OAAO;gBACL,IAAI,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,OAAO,CAAC;gBAClD,OAAO,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,UAAU,CAAC;gBACxD,KAAK,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,QAAQ,CAAC;gBACpD,UAAU,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,aAAa,CAAC;gBAC9D,OAAO,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,UAAU,CAAC;gBACxD,OAAO,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,UAAU,CAAC;gBACxD,SAAS,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,YAAY,CAAC;gBAC5D,eAAe,EAAE,gBAAC,CAAC,GAAG,CACpB,cAAc,EACd,GAAG,WAAW,kBAAkB,CACjC;gBACD,QAAQ,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,WAAW,EAAE,EAAE,CAAC;gBAC9D,UAAU,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,aAAa,EAAE,EAAE,CAAC;gBAClE,OAAO,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,UAAU,CAAC;gBACxD,MAAM,EAAE,EAAE;gBACV,MAAM,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,SAAS,CAAC;gBACtD,WAAW,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,cAAc,CAAC;gBAChE,cAAc,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,iBAAiB,CAAC;gBACtE,cAAc,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,iBAAiB,CAAC;gBACtE,YAAY,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,eAAe,CAAC;gBAClE,cAAc,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,iBAAiB,CAAC;gBACtE,QAAQ,EAAE,IAAA,yBAAW,EACnB,OAAO,EACP,CAAC,GAAuB,EAAE;oBACxB,OAAO,gBAAC,CAAC,GAAG,CACV,gBAAC,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,UAAU,CAA8B,EAC5D,CAAC,OAAgC,EAAE,EAAE;wBACnC,MAAM,YAAY,GAAG,mBAAmB,CAAC,OAAO,CAAC,CAAC;wBAClD,OAAO;4BACL,EAAE,EAAE,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,YAAY,CAAC;4BACrC,GAAG,CAAC,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,eAAe,CAAC,IAAI;gCAC1C,KAAK,EAAE,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,eAAe,CAAC;6BAC5C,CAAC;4BACF,GAAG,CAAC,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,cAAc,CAAC,IAAI;gCACzC,IAAI,EAAE,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,cAAc,CAAC;6BAC1C,CAAC;4BACF,MAAM,EAAE,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,gBAAgB,CAAC;4BAC7C,IAAI,EAAE;gCACJ,GAAG,gBAAC,CAAC,IAAI,CACP,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,MAAM,CAA8B,EACxD,CAAC,MAAM,CAAC,CACT;gCACD,IAAI,EAAE,CAAC,GAAa,EAAE;oCACpB,MAAM,QAAQ,GAAG,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,WAAW,CAEpC,CAAC;oCACb,IAAI,QAAQ,KAAK,SAAS,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE;wCACnD,OAAO,+CAAsC,CAAC;qCAC/C;oCACD,OAAO,QAAQ,CAAC;gCAClB,CAAC,CAAC,EAAE;6BACL;4BACD,YAAY,EAAE,gBAAC,CAAC,GAAG,CACjB,MAAM,CAAC,OAAO,CACX,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,cAAc,CAGjC,IAAI,EAAE,CACT,EACD,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC,EAAC,KAAK,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,EAAC,CAAC,CAC9C;4BACD,IAAI,EAAE,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,cAAc,EAAE,EAAE,CAAC;4BAC7C,eAAe,EAAE,gBAAC,CAAC,GAAG,CACpB,YAAY,EACZ,yBAAyB,EACzB,EAAE,CACH;4BACD,GAAG,CAAC,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,qBAAqB,CAAC,IAAI;gCAChD,WAAW,EAAE,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,qBAAqB,CAAC;6BACxD,CAAC;4BACF,IAAI,EAAE,sBAAsB,CAAC,OAAO,EAAE,WAAW,CAAC;4BAElD,OAAO,EACL,KAAK,KAAK,YAAY,CAAC,MAAM,GAAG,CAAC;gCAC/B,CAAC,CAAC;oCACE;wCACE,SAAS,EAAE,gBAAC,CAAC,GAAG,CACd,YAAY,EACZ,mBAAmB,CACV;wCACX,UAAU,EAAE,gBAAC,CAAC,GAAG,CACf,YAAY,EACZ,oBAAoB,CACX;wCACX,GAAG,gBAAC,CAAC,IAAI,CACP,gBAAC,CAAC,GAAG,CAAC,YAAY,EAAE,SAAS,CAG5B,EACD,CAAC,WAAW,EAAE,YAAY,CAAC,CAC5B;qCACF;iCACF;gCACH,CAAC,CAAC,EAAE;yBACW,CAAC;oBACxB,CAAC,CACF,CAAC;gBACJ,CAAC,CAAC,EAAE,EACJ,OAAO,CAAC,IAAI,CACb;gBACD,MAAM,EAAE,gBAAC,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,WAAW,SAAS,CAAC;aACnC,CAAC;QACxB,CAAC,CAAC;KACiD,CAAC;AACxD,CAAC;AAED,SAAgB,WAAW;IACzB,OAAO;QACL,iBAAiB;QACjB,cAAc;QACd,WAAW;QACX,6BAA6B;QAC7B,IAAI;QACJ,UAAU;QACV,QAAQ;QACR,OAAO;KACR,CAAC;AACJ,CAAC;AAXD,kCAWC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export declare function getProwler(): Record<string, (...inputs: any) => any>;
|
|
@@ -0,0 +1,39 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.getProwler = void 0;
|
|
7
|
+
const html_entities_1 = require("html-entities");
|
|
8
|
+
const lodash_1 = __importDefault(require("lodash"));
|
|
9
|
+
const desc = () => ' ';
|
|
10
|
+
function subfindingsCodeDesc(finding) {
|
|
11
|
+
return (0, html_entities_1.encode)(lodash_1.default.get(finding, 'Description'));
|
|
12
|
+
}
|
|
13
|
+
function findingId(finding) {
|
|
14
|
+
const generatorId = lodash_1.default.get(finding, 'GeneratorId');
|
|
15
|
+
const hyphenIndex = generatorId.indexOf('-');
|
|
16
|
+
return (0, html_entities_1.encode)(generatorId.slice(hyphenIndex + 1));
|
|
17
|
+
}
|
|
18
|
+
function productName(findings) {
|
|
19
|
+
const finding = Array.isArray(findings) ? findings[0] : findings;
|
|
20
|
+
return (0, html_entities_1.encode)(lodash_1.default.get(finding, 'ProductFields.ProviderName'));
|
|
21
|
+
}
|
|
22
|
+
function filename(findingInfo) {
|
|
23
|
+
return `${productName(findingInfo[1])}.json`;
|
|
24
|
+
}
|
|
25
|
+
function meta() {
|
|
26
|
+
return { name: 'Prowler', title: 'Prowler Findings' };
|
|
27
|
+
}
|
|
28
|
+
function getProwler() {
|
|
29
|
+
return {
|
|
30
|
+
subfindingsCodeDesc,
|
|
31
|
+
findingId,
|
|
32
|
+
productName,
|
|
33
|
+
desc,
|
|
34
|
+
filename,
|
|
35
|
+
meta
|
|
36
|
+
};
|
|
37
|
+
}
|
|
38
|
+
exports.getProwler = getProwler;
|
|
39
|
+
//# sourceMappingURL=case-prowler.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"case-prowler.js","sourceRoot":"","sources":["../../../src/asff-mapper/case-prowler.ts"],"names":[],"mappings":";;;;;;AAAA,iDAAqC;AACrC,oDAAuB;AAEvB,MAAM,IAAI,GAAG,GAAG,EAAE,CAAC,GAAG,CAAC;AAEvB,SAAS,mBAAmB,CAAC,OAAgB;IAC3C,OAAO,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,CAAC;AAC/C,CAAC;AAED,SAAS,SAAS,CAAC,OAAgB;IACjC,MAAM,WAAW,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;IAClD,MAAM,WAAW,GAAG,WAAW,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IAC7C,OAAO,IAAA,sBAAM,EAAC,WAAW,CAAC,KAAK,CAAC,WAAW,GAAG,CAAC,CAAC,CAAC,CAAC;AACpD,CAAC;AAED,SAAS,WAAW,CAClB,QAA6D;IAE7D,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;IACjE,OAAO,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,4BAA4B,CAAW,CAAC,CAAC;AACxE,CAAC;AAED,SAAS,QAAQ,CACf,WAAiE;IAEjE,OAAO,GAAG,WAAW,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;AAC/C,CAAC;AAED,SAAS,IAAI;IACX,OAAO,EAAC,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,kBAAkB,EAAC,CAAC;AACtD,CAAC;AAGD,SAAgB,UAAU;IACxB,OAAO;QACL,mBAAmB;QACnB,SAAS;QACT,WAAW;QACX,IAAI;QACJ,QAAQ;QACR,IAAI;KACL,CAAC;AACJ,CAAC;AATD,gCASC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export declare function getSecurityHub(): Record<string, (...inputs: any) => any>;
|
|
@@ -0,0 +1,136 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.getSecurityHub = void 0;
|
|
7
|
+
const html_entities_1 = require("html-entities");
|
|
8
|
+
const lodash_1 = __importDefault(require("lodash"));
|
|
9
|
+
const AwsConfigMapping_1 = require("../mappings/AwsConfigMapping");
|
|
10
|
+
const FINDING_STANDARDS_CONTROL_ARN = 'ProductFields.StandardsControlArn';
|
|
11
|
+
function correspondingControl(controls, finding) {
|
|
12
|
+
return controls.find((control) => lodash_1.default.get(control, 'StandardsControlArn') ===
|
|
13
|
+
lodash_1.default.get(finding, FINDING_STANDARDS_CONTROL_ARN));
|
|
14
|
+
}
|
|
15
|
+
function securityhubSupportingDocs(standards) {
|
|
16
|
+
let controls;
|
|
17
|
+
try {
|
|
18
|
+
if (Array.isArray(standards)) {
|
|
19
|
+
controls = standards
|
|
20
|
+
.map((standard) => lodash_1.default.get(JSON.parse(standard), 'Controls'))
|
|
21
|
+
.flat();
|
|
22
|
+
}
|
|
23
|
+
else {
|
|
24
|
+
controls = null;
|
|
25
|
+
}
|
|
26
|
+
}
|
|
27
|
+
catch (error) {
|
|
28
|
+
throw new Error(`Invalid supporting docs for Security Hub:\nException: ${error}`);
|
|
29
|
+
}
|
|
30
|
+
const AWS_CONFIG_MAPPING = new AwsConfigMapping_1.AwsConfigMapping();
|
|
31
|
+
return {
|
|
32
|
+
controls,
|
|
33
|
+
awsConfigMapping: AWS_CONFIG_MAPPING
|
|
34
|
+
};
|
|
35
|
+
}
|
|
36
|
+
function findingId(finding, { controls = null }) {
|
|
37
|
+
let control;
|
|
38
|
+
if (controls !== null &&
|
|
39
|
+
(control = correspondingControl(controls, finding)) !== null) {
|
|
40
|
+
return (0, html_entities_1.encode)(lodash_1.default.get(control, 'ControlId'));
|
|
41
|
+
}
|
|
42
|
+
else if (lodash_1.default.has(finding, 'ProductFields.ControlId')) {
|
|
43
|
+
return lodash_1.default.get(finding, 'ProductFields.ControlId');
|
|
44
|
+
}
|
|
45
|
+
else if (lodash_1.default.has(finding, 'ProductFields.RuleId')) {
|
|
46
|
+
return (0, html_entities_1.encode)(lodash_1.default.get(finding, 'ProductFields.RuleId'));
|
|
47
|
+
}
|
|
48
|
+
else {
|
|
49
|
+
return (0, html_entities_1.encode)(lodash_1.default.get(finding, 'GeneratorId').split('/').slice(-1)[0]);
|
|
50
|
+
}
|
|
51
|
+
}
|
|
52
|
+
function findingImpact(finding, { controls = null }) {
|
|
53
|
+
let impact;
|
|
54
|
+
let control;
|
|
55
|
+
if (controls !== null &&
|
|
56
|
+
(control = correspondingControl(controls, finding)) !== null) {
|
|
57
|
+
impact = lodash_1.default.get(control, 'SeverityRating');
|
|
58
|
+
}
|
|
59
|
+
else {
|
|
60
|
+
impact =
|
|
61
|
+
lodash_1.default.get(finding, 'Severity.Label') ||
|
|
62
|
+
lodash_1.default.get(finding, 'Severity.Normalized') / 100.0;
|
|
63
|
+
if (typeof impact === 'string' && impact === 'INFORMATIONAL') {
|
|
64
|
+
impact = 'MEDIUM';
|
|
65
|
+
}
|
|
66
|
+
}
|
|
67
|
+
return impact;
|
|
68
|
+
}
|
|
69
|
+
function findingNistTag(finding, { awsConfigMapping }) {
|
|
70
|
+
if (lodash_1.default.get(finding, 'ProductFields.RelatedAWSResources:0/type') !==
|
|
71
|
+
'AWS::Config::ConfigRule') {
|
|
72
|
+
return [];
|
|
73
|
+
}
|
|
74
|
+
return awsConfigMapping.searchNIST([
|
|
75
|
+
lodash_1.default.get(finding, 'ProductFields.RelatedAWSResources:0/name')
|
|
76
|
+
]);
|
|
77
|
+
}
|
|
78
|
+
function findingTitle(finding, { controls = null }) {
|
|
79
|
+
let control;
|
|
80
|
+
if (controls !== null &&
|
|
81
|
+
(control = correspondingControl(controls, finding)) !== null) {
|
|
82
|
+
return (0, html_entities_1.encode)(lodash_1.default.get(control, 'Title'));
|
|
83
|
+
}
|
|
84
|
+
else {
|
|
85
|
+
return (0, html_entities_1.encode)(lodash_1.default.get(finding, 'Title'));
|
|
86
|
+
}
|
|
87
|
+
}
|
|
88
|
+
function productName(findings) {
|
|
89
|
+
const finding = Array.isArray(findings) ? findings[0] : findings;
|
|
90
|
+
let standardName;
|
|
91
|
+
if (lodash_1.default.get(finding, 'Types[0]')
|
|
92
|
+
.split('/')
|
|
93
|
+
.slice(-1)[0]
|
|
94
|
+
.replace(/-/gi, ' ')
|
|
95
|
+
.toLowerCase() ===
|
|
96
|
+
lodash_1.default.get(finding, FINDING_STANDARDS_CONTROL_ARN)
|
|
97
|
+
.split('/')
|
|
98
|
+
.slice(-4)[0]
|
|
99
|
+
.replace(/-/gi, ' ')
|
|
100
|
+
.toLowerCase()) {
|
|
101
|
+
standardName = lodash_1.default.get(finding, 'Types[0]')
|
|
102
|
+
.split('/')
|
|
103
|
+
.slice(-1)[0]
|
|
104
|
+
.replace(/-/gi, ' ');
|
|
105
|
+
}
|
|
106
|
+
else {
|
|
107
|
+
standardName = lodash_1.default.get(finding, FINDING_STANDARDS_CONTROL_ARN)
|
|
108
|
+
.split('/')
|
|
109
|
+
.slice(-4)[0]
|
|
110
|
+
.replace(/-/gi, ' ')
|
|
111
|
+
.split(/\s+/)
|
|
112
|
+
.map((element) => {
|
|
113
|
+
return element.charAt(0).toUpperCase() + element.slice(1);
|
|
114
|
+
})
|
|
115
|
+
.join(' ');
|
|
116
|
+
}
|
|
117
|
+
return (0, html_entities_1.encode)(`${standardName} v${lodash_1.default.get(finding, FINDING_STANDARDS_CONTROL_ARN)
|
|
118
|
+
.split('/')
|
|
119
|
+
.slice(-2)[0]}`);
|
|
120
|
+
}
|
|
121
|
+
function filename(findingInfo) {
|
|
122
|
+
return `${productName(findingInfo[0])}.json`;
|
|
123
|
+
}
|
|
124
|
+
function getSecurityHub() {
|
|
125
|
+
return {
|
|
126
|
+
securityhubSupportingDocs,
|
|
127
|
+
findingId,
|
|
128
|
+
findingImpact,
|
|
129
|
+
findingNistTag,
|
|
130
|
+
findingTitle,
|
|
131
|
+
productName,
|
|
132
|
+
filename
|
|
133
|
+
};
|
|
134
|
+
}
|
|
135
|
+
exports.getSecurityHub = getSecurityHub;
|
|
136
|
+
//# sourceMappingURL=case-security-hub.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"case-security-hub.js","sourceRoot":"","sources":["../../../src/asff-mapper/case-security-hub.ts"],"names":[],"mappings":";;;;;;AAAA,iDAAqC;AACrC,oDAAuB;AACvB,mEAA8D;AAC9D,MAAM,6BAA6B,GAAG,mCAAmC,CAAC;AAE1E,SAAS,oBAAoB,CAAC,QAAmB,EAAE,OAAgB;IACjE,OAAO,QAAQ,CAAC,IAAI,CAClB,CAAC,OAAO,EAAE,EAAE,CACV,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,qBAAqB,CAAC;QACrC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,6BAA6B,CAAC,CAChD,CAAC;AACJ,CAAC;AAED,SAAS,yBAAyB,CAAC,SAA+B;IAChE,IAAI,QAA0B,CAAC;IAC/B,IAAI;QACF,IAAI,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE;YAC5B,QAAQ,GAAG,SAAS;iBACjB,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,gBAAC,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,UAAU,CAAC,CAAC;iBAC1D,IAAI,EAAE,CAAC;SACX;aAAM;YACL,QAAQ,GAAG,IAAI,CAAC;SACjB;KACF;IAAC,OAAO,KAAK,EAAE;QACd,MAAM,IAAI,KAAK,CACb,yDAAyD,KAAK,EAAE,CACjE,CAAC;KACH;IACD,MAAM,kBAAkB,GAAG,IAAI,mCAAgB,EAAE,CAAC;IAClD,OAAO;QACL,QAAQ;QACR,gBAAgB,EAAE,kBAAkB;KACrC,CAAC;AACJ,CAAC;AAED,SAAS,SAAS,CAChB,OAAgB,EAChB,EAAC,QAAQ,GAAG,IAAI,EAA+B;IAE/C,IAAI,OAAO,CAAC;IACZ,IACE,QAAQ,KAAK,IAAI;QACjB,CAAC,OAAO,GAAG,oBAAoB,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,KAAK,IAAI,EAC5D;QACA,OAAO,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC,CAAC;KAC5C;SAAM,IAAI,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,yBAAyB,CAAC,EAAE;QAEpD,OAAO,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,yBAAyB,CAAC,CAAC;KAClD;SAAM,IAAI,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,sBAAsB,CAAC,EAAE;QAEjD,OAAO,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,sBAAsB,CAAC,CAAC,CAAC;KACvD;SAAM;QACL,OAAO,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;KACtE;AACH,CAAC;AAED,SAAS,aAAa,CACpB,OAAgB,EAChB,EAAC,QAAQ,GAAG,IAAI,EAA+B;IAE/C,IAAI,MAAuB,CAAC;IAC5B,IAAI,OAAO,CAAC;IACZ,IACE,QAAQ,KAAK,IAAI;QACjB,CAAC,OAAO,GAAG,oBAAoB,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,KAAK,IAAI,EAC5D;QACA,MAAM,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,gBAAgB,CAAC,CAAC;KAC3C;SAAM;QAEL,MAAM;YACJ,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,gBAAgB,CAAC;gBAChC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,qBAAqB,CAAC,GAAG,KAAK,CAAC;QAEhD,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,eAAe,EAAE;YAC5D,MAAM,GAAG,QAAQ,CAAC;SACnB;KACF;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,cAAc,CACrB,OAAgB,EAChB,EAAC,gBAAgB,EAAuC;IAExD,IACE,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,0CAA0C,CAAC;QAC1D,yBAAyB,EACzB;QACA,OAAO,EAAE,CAAC;KACX;IACD,OAAO,gBAAgB,CAAC,UAAU,CAAC;QACjC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,0CAA0C,CAAC;KAC3D,CAAC,CAAC;AACL,CAAC;AAED,SAAS,YAAY,CACnB,OAAgB,EAChB,EAAC,QAAQ,GAAG,IAAI,EAA+B;IAE/C,IAAI,OAAO,CAAC;IACZ,IACE,QAAQ,KAAK,IAAI;QACjB,CAAC,OAAO,GAAG,oBAAoB,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,KAAK,IAAI,EAC5D;QACA,OAAO,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;KACxC;SAAM;QACL,OAAO,IAAA,sBAAM,EAAC,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;KACxC;AACH,CAAC;AAED,SAAS,WAAW,CAClB,QAA6D;IAE7D,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;IAGjE,IAAI,YAAoB,CAAC;IACzB,IACG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,UAAU,CAAY;SACnC,KAAK,CAAC,GAAG,CAAC;SACV,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;SACZ,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,WAAW,EAAE;QACf,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,6BAA6B,CAAY;aACtD,KAAK,CAAC,GAAG,CAAC;aACV,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;aACZ,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;aACnB,WAAW,EAAE,EAChB;QACA,YAAY,GAAI,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,UAAU,CAAY;aAClD,KAAK,CAAC,GAAG,CAAC;aACV,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;aACZ,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;KACxB;SAAM;QACL,YAAY,GAAI,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,6BAA6B,CAAY;aACrE,KAAK,CAAC,GAAG,CAAC;aACV,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;aACZ,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;aACnB,KAAK,CAAC,KAAK,CAAC;aACZ,GAAG,CAAC,CAAC,OAAe,EAAE,EAAE;YACvB,OAAO,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAC5D,CAAC,CAAC;aACD,IAAI,CAAC,GAAG,CAAC,CAAC;KACd;IACD,OAAO,IAAA,sBAAM,EACX,GAAG,YAAY,KACZ,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,6BAA6B,CAAY;SACtD,KAAK,CAAC,GAAG,CAAC;SACV,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAChB,EAAE,CACH,CAAC;AACJ,CAAC;AAED,SAAS,QAAQ,CACf,WAAiE;IAEjE,OAAO,GAAG,WAAW,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;AAC/C,CAAC;AAED,SAAgB,cAAc;IAC5B,OAAO;QACL,yBAAyB;QACzB,SAAS;QACT,aAAa;QACb,cAAc;QACd,YAAY;QACZ,WAAW;QACX,QAAQ;KACT,CAAC;AACJ,CAAC;AAVD,wCAUC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export declare function getTrivy(): Record<string, (...inputs: any) => any>;
|
|
@@ -0,0 +1,71 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.getTrivy = void 0;
|
|
7
|
+
const html_entities_1 = require("html-entities");
|
|
8
|
+
const inspecjs_1 = require("inspecjs");
|
|
9
|
+
const lodash_1 = __importDefault(require("lodash"));
|
|
10
|
+
function findingId(finding) {
|
|
11
|
+
const generatorId = lodash_1.default.get(finding, 'GeneratorId');
|
|
12
|
+
const cveId = lodash_1.default.get(finding, 'Resources[0].Details.Other.CVE ID');
|
|
13
|
+
if (typeof cveId === 'string') {
|
|
14
|
+
return (0, html_entities_1.encode)(`${generatorId}/${cveId}`);
|
|
15
|
+
}
|
|
16
|
+
else {
|
|
17
|
+
const id = lodash_1.default.get(finding, 'Id');
|
|
18
|
+
return (0, html_entities_1.encode)(`${generatorId}/${id}`);
|
|
19
|
+
}
|
|
20
|
+
}
|
|
21
|
+
function findingNistTag(finding) {
|
|
22
|
+
const cveId = lodash_1.default.get(finding, 'Resources[0].Details.Other.CVE ID');
|
|
23
|
+
if (typeof cveId === 'string') {
|
|
24
|
+
return ['SI-2', 'RA-5'];
|
|
25
|
+
}
|
|
26
|
+
else {
|
|
27
|
+
return [];
|
|
28
|
+
}
|
|
29
|
+
}
|
|
30
|
+
function subfindingsStatus() {
|
|
31
|
+
return inspecjs_1.ExecJSON.ControlResultStatus.Failed;
|
|
32
|
+
}
|
|
33
|
+
function subfindingsMessage(finding) {
|
|
34
|
+
const cveId = lodash_1.default.get(finding, 'Resources[0].Details.Other.CVE ID');
|
|
35
|
+
if (typeof cveId === 'string') {
|
|
36
|
+
const patchedPackage = lodash_1.default.get(finding, 'Resources[0].Details.Other.Patched Package');
|
|
37
|
+
const patchedVersionMessage = patchedPackage.length === 0
|
|
38
|
+
? 'There is no patched version of the package.'
|
|
39
|
+
: `The package has been patched since version(s): ${patchedPackage}.`;
|
|
40
|
+
return `For package ${lodash_1.default.get(finding, 'Resources[0].Details.Other.PkgName')}, the current version that is installed is ${lodash_1.default.get(finding, 'Resources[0].Details.Other.Installed Package')}. ${patchedVersionMessage}`;
|
|
41
|
+
}
|
|
42
|
+
else {
|
|
43
|
+
return undefined;
|
|
44
|
+
}
|
|
45
|
+
}
|
|
46
|
+
function productName() {
|
|
47
|
+
return 'Aqua Security - Trivy';
|
|
48
|
+
}
|
|
49
|
+
function doesNotHaveFindingTitlePrefix() {
|
|
50
|
+
return true;
|
|
51
|
+
}
|
|
52
|
+
function filename() {
|
|
53
|
+
return `${productName()}.json`;
|
|
54
|
+
}
|
|
55
|
+
function meta() {
|
|
56
|
+
return { name: 'Trivy', title: 'Trivy Findings' };
|
|
57
|
+
}
|
|
58
|
+
function getTrivy() {
|
|
59
|
+
return {
|
|
60
|
+
findingId,
|
|
61
|
+
findingNistTag,
|
|
62
|
+
subfindingsStatus,
|
|
63
|
+
subfindingsMessage,
|
|
64
|
+
doesNotHaveFindingTitlePrefix,
|
|
65
|
+
productName,
|
|
66
|
+
filename,
|
|
67
|
+
meta
|
|
68
|
+
};
|
|
69
|
+
}
|
|
70
|
+
exports.getTrivy = getTrivy;
|
|
71
|
+
//# sourceMappingURL=case-trivy.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"case-trivy.js","sourceRoot":"","sources":["../../../src/asff-mapper/case-trivy.ts"],"names":[],"mappings":";;;;;;AAAA,iDAAqC;AACrC,uCAAkC;AAClC,oDAAuB;AAEvB,SAAS,SAAS,CAAC,OAAgB;IACjC,MAAM,WAAW,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;IAClD,MAAM,KAAK,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,mCAAmC,CAAC,CAAC;IAClE,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE;QAC7B,OAAO,IAAA,sBAAM,EAAC,GAAG,WAAW,IAAI,KAAK,EAAE,CAAC,CAAC;KAC1C;SAAM;QACL,MAAM,EAAE,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAChC,OAAO,IAAA,sBAAM,EAAC,GAAG,WAAW,IAAI,EAAE,EAAE,CAAC,CAAC;KACvC;AACH,CAAC;AAED,SAAS,cAAc,CAAC,OAAgB;IACtC,MAAM,KAAK,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,mCAAmC,CAAC,CAAC;IAClE,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE;QAC7B,OAAO,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KACzB;SAAM;QACL,OAAO,EAAE,CAAC;KACX;AACH,CAAC;AAED,SAAS,iBAAiB;IACxB,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,MAAM,CAAC;AAC7C,CAAC;AAED,SAAS,kBAAkB,CAAC,OAAgB;IAC1C,MAAM,KAAK,GAAG,gBAAC,CAAC,GAAG,CAAC,OAAO,EAAE,mCAAmC,CAAC,CAAC;IAClE,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE;QAC7B,MAAM,cAAc,GAAG,gBAAC,CAAC,GAAG,CAC1B,OAAO,EACP,4CAA4C,CAC7C,CAAC;QACF,MAAM,qBAAqB,GACzB,cAAc,CAAC,MAAM,KAAK,CAAC;YACzB,CAAC,CAAC,6CAA6C;YAC/C,CAAC,CAAC,kDAAkD,cAAc,GAAG,CAAC;QAC1E,OAAO,eAAe,gBAAC,CAAC,GAAG,CACzB,OAAO,EACP,oCAAoC,CACrC,8CAA8C,gBAAC,CAAC,GAAG,CAClD,OAAO,EACP,8CAA8C,CAC/C,MAAM,qBAAqB,EAAE,CAAC;KAChC;SAAM;QACL,OAAO,SAAS,CAAC;KAClB;AACH,CAAC;AAED,SAAS,WAAW;IAClB,OAAO,uBAAuB,CAAC;AACjC,CAAC;AAED,SAAS,6BAA6B;IACpC,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,QAAQ;IACf,OAAO,GAAG,WAAW,EAAE,OAAO,CAAC;AACjC,CAAC;AAED,SAAS,IAAI;IACX,OAAO,EAAC,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,gBAAgB,EAAC,CAAC;AAClD,CAAC;AAED,SAAgB,QAAQ;IACtB,OAAO;QACL,SAAS;QACT,cAAc;QACd,iBAAiB;QACjB,kBAAkB;QAClB,6BAA6B;QAC7B,WAAW;QACX,QAAQ;QACR,IAAI;KACL,CAAC;AACJ,CAAC;AAXD,4BAWC"}
|
|
@@ -143,9 +143,7 @@ class BaseConverter {
|
|
|
143
143
|
return result;
|
|
144
144
|
}
|
|
145
145
|
evaluate(file, v) {
|
|
146
|
-
const hasTransformer = lodash_1.default.
|
|
147
|
-
lodash_1.default.has(v, 'transformer') &&
|
|
148
|
-
lodash_1.default.isFunction(lodash_1.default.get(v, 'transformer'));
|
|
146
|
+
const hasTransformer = lodash_1.default.has(v, 'transformer') && lodash_1.default.isFunction(lodash_1.default.get(v, 'transformer'));
|
|
149
147
|
let transformer = (val) => val;
|
|
150
148
|
if (hasTransformer) {
|
|
151
149
|
transformer = lodash_1.default.get(v, 'transformer');
|
|
@@ -174,11 +172,12 @@ class BaseConverter {
|
|
|
174
172
|
...transformer(hasPath ? pathV : file)
|
|
175
173
|
};
|
|
176
174
|
}
|
|
177
|
-
|
|
178
|
-
|
|
179
|
-
|
|
180
|
-
|
|
181
|
-
|
|
175
|
+
if (hasTransformer) {
|
|
176
|
+
return transformer(hasPath ? pathV : file);
|
|
177
|
+
}
|
|
178
|
+
return hasPath
|
|
179
|
+
? pathV
|
|
180
|
+
: this.convertInternal(file, v);
|
|
182
181
|
}
|
|
183
182
|
handleArray(file, v) {
|
|
184
183
|
var _a, _b, _c;
|
|
@@ -263,13 +262,10 @@ class BaseConverter {
|
|
|
263
262
|
return uniqueResults;
|
|
264
263
|
}
|
|
265
264
|
handlePath(file, path) {
|
|
266
|
-
let pathArray;
|
|
265
|
+
let pathArray = path;
|
|
267
266
|
if (typeof path === 'string') {
|
|
268
267
|
pathArray = [path];
|
|
269
268
|
}
|
|
270
|
-
else {
|
|
271
|
-
pathArray = path;
|
|
272
|
-
}
|
|
273
269
|
const index = lodash_1.default.findIndex(pathArray, (p) => this.hasPath(file, p));
|
|
274
270
|
if (index === -1) {
|
|
275
271
|
return '';
|