@mitre/hdf-converters 2.6.49 → 2.6.54

package/README.md

@@ -8,23 +8,25 @@ HDF Converters supplies several methods to convert various types of security too
 1.  [**asff-mapper**] - AWS Security Finding Format JSON file, Prowler-derived AWS Security Finding Format results from concatenated JSON blobs, and Trivy-derived AWS Security Finding Format results from concatenated JSON blobs
 2.  [**aws-config-mapper**] - AWS Config
 3.  [**burpsuite-mapper**] - BurpSuite Pro XML file
-4.  [**dbprotect-mapper**] - DBProtect report in "Check Results Details" XML format
-5.  [**fortify-mapper**] - Fortify results FVDL file
-6.  [**ionchannel-mapper**] - SBOM data from Ion Channel
-7.  [**jfrog-xray-mapper**] - JFrog Xray results JSON file
-8.  [**nessus-mapper**] - Nessus XML results file
-9.  [**netsparker-mapper**] - Netsparker XML results file
-10. [**nikto-mapper**] - Nikto results JSON file
-11. [**prisma-mapper**] - Prisma Cloud Scan Report CSV file
-12. [**sarif-mapper**] - SARIF JSON file
-13. [**scoutsuite-mapper**] - ScoutSuite results from a Javascript object
-14. [**snyk-mapper**] - Snyk results JSON file
-15. [**sonarqube-mapper**] - SonarQube vulnerabilities for the specified project name and optional branch or pull/merge request ID name from an API
-16. [**splunk-mapper**] - Splunk instance
-17. [**twistlock-mapper**] - Twistlock CLI output file
-18. [**veracode-mapper**] - Veracode Scan Results XML file
-19. [**xccdf-results-mapper**] - SCAP client XCCDF-Results XML report
-20. [**zap-mapper**] - OWASP ZAP results JSON
+4.  [**checklist-mapper**] - Checlist Mapper format
+5.  [**conveyor-mapper**] - Conveyor JSON file
+6.  [**dbprotect-mapper**] - DBProtect report in "Check Results Details" XML format
+7.  [**fortify-mapper**] - Fortify results FVDL file
+8.  [**ionchannel-mapper**] - SBOM data from Ion Channel
+9.  [**jfrog-xray-mapper**] - JFrog Xray results JSON file
+10. [**nessus-mapper**] - Nessus XML results file
+11. [**netsparker-mapper**] - Netsparker XML results file
+12. [**nikto-mapper**] - Nikto results JSON file
+13. [**prisma-mapper**] - Prisma Cloud Scan Report CSV file
+14. [**sarif-mapper**] - SARIF JSON file
+15. [**scoutsuite-mapper**] - ScoutSuite results from a Javascript object
+16. [**snyk-mapper**] - Snyk results JSON file
+17. [**sonarqube-mapper**] - SonarQube vulnerabilities for the specified project name and optional branch or pull/merge request ID name from an API
+18. [**splunk-mapper**] - Splunk instance
+19. [**twistlock-mapper**] - Twistlock CLI output file
+20. [**veracode-mapper**] - Veracode Scan Results XML file
+21. [**xccdf-results-mapper**] - SCAP client XCCDF-Results XML report
+22. [**zap-mapper**] - OWASP ZAP results JSON
 
 ### NOTICE
 

package/lib/index.d.ts

@@ -1,9 +1,11 @@
 export { ASFFResults } from './src/asff-mapper/asff-mapper';
 export * from './src/aws-config-mapper';
 export * from './src/burpsuite-mapper';
+export * from './src/ckl-mapper/checklist-mapper';
 export * from './src/converters-from-hdf/asff/reverse-asff-mapper';
 export * from './src/converters-from-hdf/splunk/reverse-splunk-mapper';
 export * from './src/converters-from-hdf/xccdf/reverse-xccdf-mapper';
+export * from './src/conveyor-mapper';
 export * from './src/dbprotect-mapper';
 export * from './src/fortify-mapper';
 export * from './src/gosec-mapper';

package/lib/index.js

@@ -31,9 +31,11 @@ var asff_mapper_1 = require("./src/asff-mapper/asff-mapper");
 Object.defineProperty(exports, "ASFFResults", { enumerable: true, get: function () { return asff_mapper_1.ASFFResults; } });
 __exportStar(require("./src/aws-config-mapper"), exports);
 __exportStar(require("./src/burpsuite-mapper"), exports);
+__exportStar(require("./src/ckl-mapper/checklist-mapper"), exports);
 __exportStar(require("./src/converters-from-hdf/asff/reverse-asff-mapper"), exports);
 __exportStar(require("./src/converters-from-hdf/splunk/reverse-splunk-mapper"), exports);
 __exportStar(require("./src/converters-from-hdf/xccdf/reverse-xccdf-mapper"), exports);
+__exportStar(require("./src/conveyor-mapper"), exports);
 __exportStar(require("./src/dbprotect-mapper"), exports);
 __exportStar(require("./src/fortify-mapper"), exports);
 __exportStar(require("./src/gosec-mapper"), exports);

package/lib/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6DAA0D;AAAlD,0GAAA,WAAW,OAAA;AACnB,0DAAwC;AACxC,yDAAuC;AACvC,qFAAmE;AACnE,yFAAuE;AACvE,uFAAqE;AACrE,yDAAuC;AACvC,uDAAqC;AACrC,qDAAmC;AACnC,0DAAwC;AACxC,0DAAwC;AACxC,4FAA4E;AAC5E,wFAAwE;AACxE,wFAAwE;AACxE,0GAA0F;AAC1F,4FAA4E;AAC5E,wFAAwE;AACxE,4FAA4E;AAC5E,sGAAsF;AACtF,sDAAoC;AACpC,0DAAwC;AACxC,qDAAmC;AACnC,sDAAoC;AACpC,qDAAmC;AACnC,0DAAwC;AACxC,oDAAkC;AAClC,yDAAuC;AACvC,sDAAoC;AACpC,yDAAuC;AACvC,2DAAyC;AACzC,6DAA2C;AAC3C,wDAAsC;AACtC,6DAA2C;AAC3C,mDAAiC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6DAA0D;AAAlD,0GAAA,WAAW,OAAA;AACnB,0DAAwC;AACxC,yDAAuC;AACvC,oEAAkD;AAClD,qFAAmE;AACnE,yFAAuE;AACvE,uFAAqE;AACrE,wDAAsC;AACtC,yDAAuC;AACvC,uDAAqC;AACrC,qDAAmC;AACnC,0DAAwC;AACxC,0DAAwC;AACxC,4FAA4E;AAC5E,wFAAwE;AACxE,wFAAwE;AACxE,0GAA0F;AAC1F,4FAA4E;AAC5E,wFAAwE;AACxE,4FAA4E;AAC5E,sGAAsF;AACtF,sDAAoC;AACpC,0DAAwC;AACxC,qDAAmC;AACnC,sDAAoC;AACpC,qDAAmC;AACnC,0DAAwC;AACxC,oDAAkC;AAClC,yDAAuC;AACvC,sDAAoC;AACpC,yDAAuC;AACvC,2DAAyC;AACzC,6DAA2C;AAC3C,wDAAsC;AACtC,6DAA2C;AAC3C,mDAAiC"}

package/lib/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@mitre/hdf-converters",
-    "version": "2.6.49",
+    "version": "2.6.54",
     "license": "Apache-2.0",
     "description": "Converter util library used to transform various scan results into HDF format",
     "files": [
@@ -26,7 +26,7 @@
     },
     "dependencies": {
         "@aws-sdk/client-config-service": "^3.95.0",
-        "@mitre/splunk-sdk-no-env": "^1.10.0",
+        "@mitre/jsonix": "^3.0.6",
         "@types/csv2json": "^1.4.2",
         "@types/ms": "^0.7.31",
         "@types/mustache": "^4.1.2",
@@ -48,7 +48,7 @@
         "run-script-os": "^1.1.6",
         "winston": "^3.6.0",
         "xlsx": "^0.18.5",
-        "xml2js": "^0.5.0",
+        "xml2js": "^0.6.0",
         "yaml": "^2.1.1"
     },
     "devDependencies": {

package/lib/src/ckl-mapper/checklist-jsonix-converter.d.ts

@@ -0,0 +1,72 @@
+import { Asset, Checklist, Sidata, Stigdata, Vuln } from '../../types/checklistJsonix';
+import { JsonixIntermediateConverter } from '../jsonix-intermediate-converter';
+export declare type ChecklistObject = {
+    asset: ChecklistAsset;
+    stigs: ChecklistStig[];
+    jsonixData: Checklist;
+};
+declare type ChecklistAsset = Asset;
+declare type ChecklistStig = {
+    header: StigHeader;
+    vulns: ChecklistVuln[];
+};
+declare type StigHeader = {
+    version: string;
+    classification: 'UNCLASSIFIED' | 'UNCLASSIFIED//FOR OFFICIAL USE ONLY' | 'CUI';
+    customname?: string;
+    stigid: string;
+    description: string;
+    filename: string;
+    releaseinfo?: string;
+    title: string;
+    uuid: string;
+    notice?: string;
+    source?: string;
+};
+export declare type ChecklistVuln = Omit<Vuln, 'stigdata' | 'status'> & {
+    status: StatusMapping;
+    vulnNum: string;
+    severity: Severity;
+    groupTitle: string;
+    ruleId: string;
+    ruleVersion: string;
+    ruleTitle: string;
+    vulnDiscuss: string;
+    iaControls: string;
+    checkContent: string;
+    fixText: string;
+    falsePositives: string;
+    falseNegatives: string;
+    documentable: boolean;
+    mitigations: string;
+    potentialImpact: string;
+    thirdPartyTools: string;
+    mitigationControl: string;
+    responsibility: string;
+    securityOverrideGuidance: string;
+    checkContentRef: string;
+    weight: string;
+    class: 'Unclass' | 'FOUO' | 'CUI';
+    stigRef: string;
+    targetKey: string;
+    stigUuid: string;
+    legacyId: string;
+    cciRef: string;
+};
+declare enum StatusMapping {
+    NotAFinding = "Passed",
+    Open = "Failed",
+    Not_Applicable = "Not Applicable",
+    Not_Reviewed = "Not Reviewed"
+}
+export declare enum Severity {
+    Empty = "",
+    High = "high",
+    Low = "low",
+    Medium = "medium"
+}
+export declare class ChecklistJsonixConverter extends JsonixIntermediateConverter<Checklist, ChecklistObject> {
+    getValueFromAttributeName<T extends Stigdata | Sidata>(data: T[], tag: string): string;
+    toIntermediateObject(jsonixData: Checklist): ChecklistObject;
+}
+export {};

package/lib/src/ckl-mapper/checklist-jsonix-converter.js

@@ -0,0 +1,123 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ChecklistJsonixConverter = exports.Severity = void 0;
+const lodash_1 = __importDefault(require("lodash"));
+const jsonix_intermediate_converter_1 = require("../jsonix-intermediate-converter");
+var StatusMapping;
+(function (StatusMapping) {
+    StatusMapping["NotAFinding"] = "Passed";
+    StatusMapping["Open"] = "Failed";
+    StatusMapping["Not_Applicable"] = "Not Applicable";
+    StatusMapping["Not_Reviewed"] = "Not Reviewed";
+})(StatusMapping || (StatusMapping = {}));
+var Severity;
+(function (Severity) {
+    Severity["Empty"] = "";
+    Severity["High"] = "high";
+    Severity["Low"] = "low";
+    Severity["Medium"] = "medium";
+})(Severity = exports.Severity || (exports.Severity = {}));
+class ChecklistJsonixConverter extends jsonix_intermediate_converter_1.JsonixIntermediateConverter {
+    getValueFromAttributeName(data, tag) {
+        let keyName = 'vulnattribute';
+        let dataName = 'attributedata';
+        if (data.every((o) => 'sidname' in o)) {
+            keyName = 'sidname';
+            dataName = 'siddata';
+        }
+        const results = data.filter((attribute) => {
+            return lodash_1.default.get(attribute, keyName) == tag;
+        });
+        return results.map((result) => lodash_1.default.get(result, dataName)).join('; ');
+    }
+    toIntermediateObject(jsonixData) {
+        const asset = {
+            role: lodash_1.default.get(jsonixData, 'value.asset.role'),
+            assettype: lodash_1.default.get(jsonixData, 'value.asset.assettype'),
+            hostname: lodash_1.default.get(jsonixData, 'value.asset.hostname'),
+            hostip: lodash_1.default.get(jsonixData, 'value.asset.hostip'),
+            hostmac: lodash_1.default.get(jsonixData, 'value.asset.hostmac'),
+            hostfqdn: lodash_1.default.get(jsonixData, 'value.asset.hostfqdn'),
+            marking: lodash_1.default.get(jsonixData, 'value.asset.marking'),
+            targetcomment: lodash_1.default.get(jsonixData, 'value.asset.targetcomment'),
+            techarea: lodash_1.default.get(jsonixData, 'value.asset.techarea'),
+            targetkey: lodash_1.default.get(jsonixData, 'value.asset.targetkey'),
+            webordatabase: lodash_1.default.get(jsonixData, 'value.asset.webordatabase'),
+            webdbsite: lodash_1.default.get(jsonixData, 'value.asset.webdbsite'),
+            webdbinstance: lodash_1.default.get(jsonixData, 'value.asset.webdbinstance')
+        };
+        const rawStigs = lodash_1.default.get(jsonixData, 'value.stigs.istig');
+        const stigs = [];
+        for (const stig of rawStigs) {
+            const stigInfo = lodash_1.default.get(stig, 'stiginfo.sidata');
+            const header = {
+                version: this.getValueFromAttributeName(stigInfo, 'version'),
+                classification: this.getValueFromAttributeName(stigInfo, 'classification'),
+                customname: this.getValueFromAttributeName(stigInfo, 'customname'),
+                stigid: this.getValueFromAttributeName(stigInfo, 'stigid'),
+                description: this.getValueFromAttributeName(stigInfo, 'description'),
+                filename: this.getValueFromAttributeName(stigInfo, 'filename'),
+                releaseinfo: this.getValueFromAttributeName(stigInfo, 'releaseinfo'),
+                title: this.getValueFromAttributeName(stigInfo, 'title'),
+                uuid: this.getValueFromAttributeName(stigInfo, 'uuid'),
+                notice: this.getValueFromAttributeName(stigInfo, 'notice'),
+                source: this.getValueFromAttributeName(stigInfo, 'source')
+            };
+            const checklistVulns = [];
+            const vulns = lodash_1.default.get(stig, 'vuln');
+            for (const vuln of vulns) {
+                const stigdata = lodash_1.default.get(vuln, 'stigdata');
+                const checklistVuln = {
+                    status: StatusMapping[lodash_1.default.get(vuln, 'status')],
+                    findingdetails: lodash_1.default.get(vuln, 'findingdetails'),
+                    comments: lodash_1.default.get(vuln, 'comments'),
+                    severityoverride: lodash_1.default.get(vuln, 'severityoverride'),
+                    severityjustification: lodash_1.default.get(vuln, 'severityjustification'),
+                    vulnNum: this.getValueFromAttributeName(stigdata, 'Vuln_Num'),
+                    severity: this.getValueFromAttributeName(stigdata, 'Severity'),
+                    groupTitle: this.getValueFromAttributeName(stigdata, 'Group_Title'),
+                    ruleId: this.getValueFromAttributeName(stigdata, 'Rule_ID'),
+                    ruleVersion: this.getValueFromAttributeName(stigdata, 'Rule_Ver'),
+                    ruleTitle: this.getValueFromAttributeName(stigdata, 'Rule_Title'),
+                    vulnDiscuss: this.getValueFromAttributeName(stigdata, 'Vuln_Discuss'),
+                    iaControls: this.getValueFromAttributeName(stigdata, 'IA_Controls'),
+                    checkContent: this.getValueFromAttributeName(stigdata, 'Check_Content'),
+                    fixText: this.getValueFromAttributeName(stigdata, 'Fix_Text'),
+                    falsePositives: this.getValueFromAttributeName(stigdata, 'False_Positives'),
+                    falseNegatives: this.getValueFromAttributeName(stigdata, 'False_Negatives'),
+                    documentable: this.getValueFromAttributeName(stigdata, 'Documentable'),
+                    mitigations: this.getValueFromAttributeName(stigdata, 'Mitigations'),
+                    potentialImpact: this.getValueFromAttributeName(stigdata, 'Potential_Impact'),
+                    thirdPartyTools: this.getValueFromAttributeName(stigdata, 'Third_Party_Tools'),
+                    mitigationControl: this.getValueFromAttributeName(stigdata, 'Mitigation_Control'),
+                    responsibility: this.getValueFromAttributeName(stigdata, 'Responsibility'),
+                    securityOverrideGuidance: this.getValueFromAttributeName(stigdata, 'Security_Override_Guidance'),
+                    checkContentRef: this.getValueFromAttributeName(stigdata, 'Check_Content_Ref'),
+                    weight: this.getValueFromAttributeName(stigdata, 'Weight'),
+                    class: this.getValueFromAttributeName(stigdata, 'Class'),
+                    stigRef: this.getValueFromAttributeName(stigdata, 'STIGRef'),
+                    targetKey: this.getValueFromAttributeName(stigdata, 'TargetKey'),
+                    stigUuid: this.getValueFromAttributeName(stigdata, 'STIG_UUID'),
+                    legacyId: this.getValueFromAttributeName(stigdata, 'LEGACY_ID'),
+                    cciRef: this.getValueFromAttributeName(stigdata, 'CCI_REF')
+                };
+                checklistVulns.push(checklistVuln);
+            }
+            stigs.push({
+                header: header,
+                vulns: checklistVulns
+            });
+        }
+        const checklistObject = {
+            asset: asset,
+            stigs: stigs,
+            jsonixData: jsonixData
+        };
+        return checklistObject;
+    }
+}
+exports.ChecklistJsonixConverter = ChecklistJsonixConverter;
+//# sourceMappingURL=checklist-jsonix-converter.js.map

package/lib/src/ckl-mapper/checklist-jsonix-converter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"checklist-jsonix-converter.js","sourceRoot":"","sources":["../../../src/ckl-mapper/checklist-jsonix-converter.ts"],"names":[],"mappings":";;;;;;AAAA,oDAAuB;AASvB,oFAA6E;AAiE7E,IAAK,aAKJ;AALD,WAAK,aAAa;IAChB,uCAAsB,CAAA;IACtB,gCAAe,CAAA;IACf,kDAAiC,CAAA;IACjC,8CAA6B,CAAA;AAC/B,CAAC,EALI,aAAa,KAAb,aAAa,QAKjB;AAED,IAAY,QAKX;AALD,WAAY,QAAQ;IAClB,sBAAU,CAAA;IACV,yBAAa,CAAA;IACb,uBAAW,CAAA;IACX,6BAAiB,CAAA;AACnB,CAAC,EALW,QAAQ,GAAR,gBAAQ,KAAR,gBAAQ,QAKnB;AAED,MAAa,wBAAyB,SAAQ,2DAG7C;IACC,yBAAyB,CACvB,IAAS,EACT,GAAW;QAEX,IAAI,OAAO,GAAG,eAAe,CAAC;QAC9B,IAAI,QAAQ,GAAG,eAAe,CAAC;QAC/B,IAAI,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,SAAS,IAAI,CAAC,CAAC,EAAE;YACrC,OAAO,GAAG,SAAS,CAAC;YACpB,QAAQ,GAAG,SAAS,CAAC;SACtB;QACD,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,SAAY,EAAE,EAAE;YAC3C,OAAO,gBAAC,CAAC,GAAG,CAAC,SAAS,EAAE,OAAO,CAAC,IAAI,GAAG,CAAC;QAC1C,CAAC,CAAC,CAAC;QACH,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,MAAS,EAAE,EAAE,CAAC,gBAAC,CAAC,GAAG,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACxE,CAAC;IAOD,oBAAoB,CAAC,UAAqB;QACxC,MAAM,KAAK,GAAmB;YAC5B,IAAI,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,kBAAkB,CAAC;YAC3C,SAAS,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,uBAAuB,CAAC;YACrD,QAAQ,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,sBAAsB,CAAC;YACnD,MAAM,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,oBAAoB,CAAC;YAC/C,OAAO,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,qBAAqB,CAAC;YACjD,QAAQ,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,sBAAsB,CAAC;YACnD,OAAO,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,qBAAqB,CAAC;YACjD,aAAa,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,2BAA2B,CAAC;YAC7D,QAAQ,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,sBAAsB,CAAC;YACnD,SAAS,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,uBAAuB,CAAC;YACrD,aAAa,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,2BAA2B,CAAC;YAC7D,SAAS,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,uBAAuB,CAAC;YACrD,aAAa,EAAE,gBAAC,CAAC,GAAG,CAAC,UAAU,EAAE,2BAA2B,CAAC;SAC9D,CAAC;QAEF,MAAM,QAAQ,GAAY,gBAAC,CAAC,GAAG,CAC7B,UAAU,EACV,mBAAmB,CACE,CAAC;QACxB,MAAM,KAAK,GAAoB,EAAE,CAAC;QAClC,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE;YAC3B,MAAM,QAAQ,GAAa,gBAAC,CAAC,GAAG,CAC9B,IAAI,EACJ,iBAAiB,CACK,CAAC;YACzB,MAAM,MAAM,GAAe;gBACzB,OAAO,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,SAAS,CAAC;gBACpE,cAAc,EAAE,IAAI,CAAC,yBAAyB,CAC5C,QAAQ,EACR,gBAAgB,CAC0B;gBAC5C,UAAU,EAAE,IAAI,CAAC,yBAAyB,CACxC,QAAQ,EACR,YAAY,CACb;gBACD,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,QAAQ,CAAC;gBAClE,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,aAAa,CACd;gBACD,QAAQ,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,UAAU,CAAC;gBACtE,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,aAAa,CACd;gBACD,KAAK,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,OAAO,CAAC;gBAChE,IAAI,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,MAAM,CAAC;gBAC9D,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,QAAQ,CAAC;gBAClE,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,QAAQ,CAAC;aACnE,CAAC;YAEF,MAAM,cAAc,GAAoB,EAAE,CAAC;YAC3C,MAAM,KAAK,GAAW,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;YAC1C,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE;gBACxB,MAAM,QAAQ,GAAe,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;gBACrD,MAAM,aAAa,GAAkB;oBACnC,MAAM,EAAE,aAAa,CAAC,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;oBAC5C,cAAc,EAAE,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,gBAAgB,CAAC;oBAC7C,QAAQ,EAAE,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,UAAU,CAAC;oBACjC,gBAAgB,EAAE,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,kBAAkB,CAAC;oBACjD,qBAAqB,EAAE,gBAAC,CAAC,GAAG,CAAC,IAAI,EAAE,uBAAuB,CAAC;oBAC3D,OAAO,EAAE,IAAI,CAAC,yBAAyB,CACrC,QAAQ,EACR,UAAU,CACX;oBACD,QAAQ,EAAE,IAAI,CAAC,yBAAyB,CACtC,QAAQ,EACR,UAAU,CAC6B;oBACzC,UAAU,EAAE,IAAI,CAAC,yBAAyB,CACxC,QAAQ,EACR,aAAa,CACd;oBACD,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAW,QAAQ,EAAE,SAAS,CAAC;oBACrE,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,UAAU,CACX;oBACD,SAAS,EAAE,IAAI,CAAC,yBAAyB,CACvC,QAAQ,EACR,YAAY,CACb;oBACD,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,cAAc,CACf;oBACD,UAAU,EAAE,IAAI,CAAC,yBAAyB,CACxC,QAAQ,EACR,aAAa,CACd;oBACD,YAAY,EAAE,IAAI,CAAC,yBAAyB,CAC1C,QAAQ,EACR,eAAe,CAChB;oBACD,OAAO,EAAE,IAAI,CAAC,yBAAyB,CACrC,QAAQ,EACR,UAAU,CACX;oBACD,cAAc,EAAE,IAAI,CAAC,yBAAyB,CAC5C,QAAQ,EACR,iBAAiB,CAClB;oBACD,cAAc,EAAE,IAAI,CAAC,yBAAyB,CAC5C,QAAQ,EACR,iBAAiB,CAClB;oBACD,YAAY,EAAE,IAAI,CAAC,yBAAyB,CAC1C,QAAQ,EACR,cAAc,CACO;oBACvB,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,aAAa,CACd;oBACD,eAAe,EAAE,IAAI,CAAC,yBAAyB,CAC7C,QAAQ,EACR,kBAAkB,CACnB;oBACD,eAAe,EAAE,IAAI,CAAC,yBAAyB,CAC7C,QAAQ,EACR,mBAAmB,CACpB;oBACD,iBAAiB,EAAE,IAAI,CAAC,yBAAyB,CAC/C,QAAQ,EACR,oBAAoB,CACrB;oBACD,cAAc,EAAE,IAAI,CAAC,yBAAyB,CAC5C,QAAQ,EACR,gBAAgB,CACjB;oBACD,wBAAwB,EAAE,IAAI,CAAC,yBAAyB,CACtD,QAAQ,EACR,4BAA4B,CAC7B;oBACD,eAAe,EAAE,IAAI,CAAC,yBAAyB,CAC7C,QAAQ,EACR,mBAAmB,CACpB;oBACD,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAW,QAAQ,EAAE,QAAQ,CAAC;oBACpE,KAAK,EAAE,IAAI,CAAC,yBAAyB,CACnC,QAAQ,EACR,OAAO,CAC6B;oBACtC,OAAO,EAAE,IAAI,CAAC,yBAAyB,CACrC,QAAQ,EACR,SAAS,CACV;oBACD,SAAS,EAAE,IAAI,CAAC,yBAAyB,CACvC,QAAQ,EACR,WAAW,CACZ;oBACD,QAAQ,EAAE,IAAI,CAAC,yBAAyB,CACtC,QAAQ,EACR,WAAW,CACZ;oBACD,QAAQ,EAAE,IAAI,CAAC,yBAAyB,CACtC,QAAQ,EACR,WAAW,CACZ;oBACD,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAW,QAAQ,EAAE,SAAS,CAAC;iBACtE,CAAC;gBACF,cAAc,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;aACpC;YAED,KAAK,CAAC,IAAI,CAAC;gBACT,MAAM,EAAE,MAAM;gBACd,KAAK,EAAE,cAAc;aACtB,CAAC,CAAC;SACJ;QAED,MAAM,eAAe,GAAoB;YACvC,KAAK,EAAE,KAAK;YACZ,KAAK,EAAE,KAAK;YACZ,UAAU,EAAE,UAAU;SACvB,CAAC;QACF,OAAO,eAAe,CAAC;IACzB,CAAC;CACF;AA5MD,4DA4MC"}

package/lib/src/ckl-mapper/checklist-mapper.d.ts

@@ -0,0 +1,19 @@
+import { ExecJSON } from 'inspecjs';
+import { Checklist } from '../../types/checklistJsonix';
+import { BaseConverter, ILookupPath, MappedTransform } from '../base-converter';
+import { ChecklistJsonixConverter, ChecklistObject } from './checklist-jsonix-converter';
+export declare class ChecklistResults extends ChecklistJsonixConverter {
+    checklistXml: string;
+    jsonixData: Checklist;
+    checklistObject: ChecklistObject;
+    withRaw: boolean;
+    constructor(checklistXml: string, withRaw?: boolean);
+    toHdf(): ExecJSON.Execution;
+}
+export declare class ChecklistMapper extends BaseConverter {
+    withRaw: boolean;
+    mappings: MappedTransform<ExecJSON.Execution & {
+        passthrough: unknown;
+    }, ILookupPath>;
+    constructor(checklistObject: ChecklistObject, withRaw?: boolean);
+}

package/lib/src/ckl-mapper/checklist-mapper.js

@@ -0,0 +1,292 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ChecklistMapper = exports.ChecklistResults = void 0;
+const inspecjs_1 = require("inspecjs");
+const lodash_1 = __importDefault(require("lodash"));
+const package_json_1 = require("../../package.json");
+const base_converter_1 = require("../base-converter");
+const CciNistMapping_1 = require("../mappings/CciNistMapping");
+const global_1 = require("../utils/global");
+const checklist_jsonix_converter_1 = require("./checklist-jsonix-converter");
+const checklistMapping = __importStar(require("./jsonixMapping"));
+var ImpactMapping;
+(function (ImpactMapping) {
+    ImpactMapping[ImpactMapping["high"] = 0.7] = "high";
+    ImpactMapping[ImpactMapping["medium"] = 0.5] = "medium";
+    ImpactMapping[ImpactMapping["low"] = 0.3] = "low";
+})(ImpactMapping || (ImpactMapping = {}));
+const CCI_NIST_MAPPING = new CciNistMapping_1.CciNistMapping();
+function cciRef(input) {
+    return input.split('; ');
+}
+function nistTag(input) {
+    const identifiers = cciRef(input);
+    return CCI_NIST_MAPPING.nistFilter(identifiers, global_1.DEFAULT_STATIC_CODE_ANALYSIS_NIST_TAGS);
+}
+function findSeverity(vuln) {
+    if (vuln.severityoverride) {
+        return vuln.severityoverride;
+    }
+    return vuln.severity;
+}
+function transformImpact(vuln) {
+    if (vuln.status === 'Not Applicable')
+        return 0.0;
+    const severity = findSeverity(vuln);
+    const impact = ImpactMapping[severity.toLowerCase()];
+    if (!impact)
+        throw new Error(`Severity "${severity}" does not match low, medium, or high, please check severity for ${vuln.vulnNum}`);
+    return impact;
+}
+function getStatus(input) {
+    const status = input.toLowerCase();
+    switch (status) {
+        case 'notafinding':
+        case 'passed':
+            return inspecjs_1.ExecJSON.ControlResultStatus.Passed;
+        case 'open':
+        case 'failed':
+            return inspecjs_1.ExecJSON.ControlResultStatus.Failed;
+        case 'error':
+            return inspecjs_1.ExecJSON.ControlResultStatus.Error;
+        default:
+            return inspecjs_1.ExecJSON.ControlResultStatus.Skipped;
+    }
+}
+function parseFindingDetails(input) {
+    const findings = input;
+    const results = [];
+    const statusSet = ['passed', 'failed', 'skipped', 'error'];
+    for (const finding of findings) {
+        if (!finding.code_desc) {
+            results.push({
+                status: finding.status,
+                code_desc: finding.code_desc,
+                start_time: finding.start_time
+            });
+        }
+        else {
+            for (const details of finding.code_desc.split('--------------------------------\n')) {
+                let code_desc;
+                let status;
+                let message = '';
+                const [findingStatus, descAndMessage] = details.split(/\n(.*)/s, 2);
+                if (statusSet.includes(findingStatus)) {
+                    const indexOfExpected = descAndMessage.indexOf('\nexpected');
+                    if (indexOfExpected > 0) {
+                        code_desc = descAndMessage.slice(0, indexOfExpected - 1);
+                        message = descAndMessage.slice(indexOfExpected);
+                        status = getStatus(findingStatus);
+                    }
+                    else {
+                        code_desc = descAndMessage;
+                        status = getStatus(findingStatus);
+                    }
+                }
+                else {
+                    code_desc = details;
+                    status = finding.status;
+                }
+                results.push({
+                    code_desc,
+                    status,
+                    message: message ? message : null,
+                    start_time: ''
+                });
+            }
+        }
+    }
+    return results;
+}
+class ChecklistResults extends checklist_jsonix_converter_1.ChecklistJsonixConverter {
+    constructor(checklistXml, withRaw = false) {
+        super(checklistXml);
+        this.checklistXml = checklistXml;
+        this.withRaw = withRaw;
+        this.jsonixData = super.toJsonix(checklistMapping.jsonixMapping);
+        this.checklistObject = super.toIntermediateObject(this.jsonixData);
+    }
+    toHdf() {
+        var _a;
+        const numberOfStigs = this.checklistObject.stigs.length;
+        if (numberOfStigs === 1) {
+            const defaultChecklist = new ChecklistMapper(this.checklistObject);
+            return defaultChecklist.toHdf();
+        }
+        else {
+            const checklist = new ChecklistMapper(this.checklistObject);
+            const original = checklist.toHdf();
+            const parentProfileName = 'Parent Profile';
+            const parent_profile = {
+                name: parentProfileName,
+                version: package_json_1.version,
+                supports: [],
+                attributes: [],
+                groups: [],
+                depends: [],
+                controls: [],
+                sha256: ''
+            };
+            for (const profile of original.profiles) {
+                (_a = parent_profile.depends) === null || _a === void 0 ? void 0 : _a.push({ name: profile.name });
+                parent_profile.controls.push(...profile.controls);
+                profile.parent_profile = parentProfileName;
+                profile.sha256 = (0, base_converter_1.generateHash)(JSON.stringify(profile));
+            }
+            parent_profile.sha256 = (0, base_converter_1.generateHash)(JSON.stringify(parent_profile));
+            original.profiles.unshift(parent_profile);
+            return original;
+        }
+    }
+}
+exports.ChecklistResults = ChecklistResults;
+class ChecklistMapper extends base_converter_1.BaseConverter {
+    constructor(checklistObject, withRaw = false) {
+        super(checklistObject);
+        this.mappings = {
+            platform: {
+                name: 'Heimdall Tools',
+                release: package_json_1.version
+            },
+            version: package_json_1.version,
+            statistics: {},
+            profiles: [
+                {
+                    path: 'stigs',
+                    name: { path: 'header.title' },
+                    version: { path: 'header.version' },
+                    title: { path: 'header.title' },
+                    summary: { path: 'header.description' },
+                    license: { path: 'header.notice' },
+                    supports: [],
+                    attributes: [],
+                    groups: [],
+                    status: 'loaded',
+                    controls: [
+                        {
+                            path: 'vulns',
+                            key: 'id',
+                            tags: {
+                                gtitle: { path: 'groupTitle' },
+                                rid: { path: 'ruleId' },
+                                gid: { path: 'vulnNum' },
+                                stig_id: { path: 'ruleVersion' },
+                                cci: {
+                                    path: 'cciRef',
+                                    transformer: cciRef
+                                },
+                                nist: {
+                                    path: 'cciRef',
+                                    transformer: nistTag
+                                },
+                                weight: { path: 'weight' },
+                                transformer: (input) => {
+                                    const tags = [
+                                        ['IA Controls', 'iaControls'],
+                                        ['Legacy ID', 'legacyId'],
+                                        ['False Positives', 'falsePositives'],
+                                        ['False Negatives', 'falseNegatives'],
+                                        ['Mitigations', 'mitigations'],
+                                        ['Mitigation Controls', 'mitigationControl'],
+                                        ['Potential Impact', 'potentialImpact'],
+                                        ['Responsibility', 'responsibility'],
+                                        ['STIGRef', 'stigRef'],
+                                        ['Security Override Guidance', 'securityOverrideGuidance'],
+                                        ['Severity Justification', 'severityJustification']
+                                    ];
+                                    const fullTags = {};
+                                    for (const [key, path] of tags) {
+                                        const tagValue = lodash_1.default.get(input, path);
+                                        if (tagValue && tagValue !== '; ') {
+                                            fullTags[key] = tagValue;
+                                        }
+                                    }
+                                    return fullTags;
+                                }
+                            },
+                            refs: [],
+                            source_location: {},
+                            title: { path: 'ruleTitle' },
+                            id: { path: 'vulnNum' },
+                            desc: { path: 'vulnDiscuss' },
+                            descriptions: [
+                                {
+                                    data: { path: 'checkContent' },
+                                    label: 'check'
+                                },
+                                {
+                                    data: { path: 'fixText' },
+                                    label: 'fix'
+                                },
+                                {
+                                    data: { path: 'comments' },
+                                    label: 'comments'
+                                }
+                            ],
+                            impact: {
+                                transformer: (vulnerability) => transformImpact(vulnerability)
+                            },
+                            code: {
+                                transformer: (vulnerability) => JSON.stringify(vulnerability, null, 2)
+                            },
+                            results: [
+                                {
+                                    arrayTransformer: parseFindingDetails,
+                                    status: {
+                                        path: 'status',
+                                        transformer: getStatus
+                                    },
+                                    code_desc: { path: 'findingdetails' },
+                                    start_time: ''
+                                }
+                            ]
+                        }
+                    ],
+                    sha256: ''
+                }
+            ],
+            passthrough: {
+                transformer: (data) => {
+                    return {
+                        ...{
+                            checklist: {
+                                asset: data.asset,
+                                stigs: data.stigs
+                            }
+                        },
+                        ...(this.withRaw && { raw: data.jsonixData })
+                    };
+                }
+            }
+        };
+        this.withRaw = withRaw;
+    }
+}
+exports.ChecklistMapper = ChecklistMapper;
+//# sourceMappingURL=checklist-mapper.js.map

package/lib/src/ckl-mapper/checklist-mapper.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"checklist-mapper.js","sourceRoot":"","sources":["../../../src/ckl-mapper/checklist-mapper.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,uCAAkC;AAClC,oDAAuB;AACvB,qDAAmE;AAEnE,sDAK2B;AAC3B,+DAA0D;AAC1D,4CAAuE;AACvE,6EAIsC;AACtC,kEAAoD;AAEpD,IAAK,aAIJ;AAJD,WAAK,aAAa;IAChB,mDAAU,CAAA;IACV,uDAAY,CAAA;IACZ,iDAAS,CAAA;AACX,CAAC,EAJI,aAAa,KAAb,aAAa,QAIjB;AAED,MAAM,gBAAgB,GAAG,IAAI,+BAAc,EAAE,CAAC;AAO9C,SAAS,MAAM,CAAC,KAAa;IAC3B,OAAO,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;AAC3B,CAAC;AAQD,SAAS,OAAO,CAAC,KAAa;IAC5B,MAAM,WAAW,GAAa,MAAM,CAAC,KAAK,CAAC,CAAC;IAC5C,OAAO,gBAAgB,CAAC,UAAU,CAChC,WAAW,EACX,+CAAsC,CACvC,CAAC;AACJ,CAAC;AAQD,SAAS,YAAY,CAAC,IAAmB;IACvC,IAAI,IAAI,CAAC,gBAAgB,EAAE;QACzB,OAAO,IAAI,CAAC,gBAAgB,CAAC;KAC9B;IACD,OAAO,IAAI,CAAC,QAAQ,CAAC;AACvB,CAAC;AAQD,SAAS,eAAe,CAAC,IAAmB;IAC1C,IAAI,IAAI,CAAC,MAAM,KAAK,gBAAgB;QAAE,OAAO,GAAG,CAAC;IACjD,MAAM,QAAQ,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;IACpC,MAAM,MAAM,GACV,aAAa,CAAC,QAAQ,CAAC,WAAW,EAAgC,CAAC,CAAC;IACtE,IAAI,CAAC,MAAM;QACT,MAAM,IAAI,KAAK,CACb,aAAa,QAAQ,oEAAoE,IAAI,CAAC,OAAO,EAAE,CACxG,CAAC;IACJ,OAAO,MAAM,CAAC;AAChB,CAAC;AASD,SAAS,SAAS,CAAC,KAAa;IAC9B,MAAM,MAAM,GAAG,KAAK,CAAC,WAAW,EAAE,CAAC;IACnC,QAAQ,MAAM,EAAE;QACd,KAAK,aAAa,CAAC;QACnB,KAAK,QAAQ;YACX,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,MAAM,CAAC;QAC7C,KAAK,MAAM,CAAC;QACZ,KAAK,QAAQ;YACX,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,MAAM,CAAC;QAC7C,KAAK,OAAO;YACV,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,KAAK,CAAC;QAC5C;YACE,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,OAAO,CAAC;KAC/C;AACH,CAAC;AASD,SAAS,mBAAmB,CAAC,KAAgB;IAC3C,MAAM,QAAQ,GAAG,KAA4C,CAAC;IAC9D,MAAM,OAAO,GAA6B,EAAE,CAAC;IAC7C,MAAM,SAAS,GAAG,CAAC,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;IAE3D,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE;QAC9B,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE;YACtB,OAAO,CAAC,IAAI,CAAC;gBACX,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,UAAU,EAAE,OAAO,CAAC,UAAU;aAC/B,CAAC,CAAC;SACJ;aAAM;YAEL,KAAK,MAAM,OAAO,IAAI,OAAO,CAAC,SAAS,CAAC,KAAK,CAC3C,oCAAoC,CACrC,EAAE;gBACD,IAAI,SAAiB,CAAC;gBACtB,IAAI,MAAoC,CAAC;gBACzC,IAAI,OAAO,GAAG,EAAE,CAAC;gBAEjB,MAAM,CAAC,aAAa,EAAE,cAAc,CAAC,GAAG,OAAO,CAAC,KAAK,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC;gBACpE,IAAI,SAAS,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE;oBAKrC,MAAM,eAAe,GAAG,cAAc,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;oBAC7D,IAAI,eAAe,GAAG,CAAC,EAAE;wBACvB,SAAS,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,eAAe,GAAG,CAAC,CAAC,CAAC;wBACzD,OAAO,GAAG,cAAc,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;wBAChD,MAAM,GAAG,SAAS,CAAC,aAAa,CAAC,CAAC;qBACnC;yBAAM;wBACL,SAAS,GAAG,cAAc,CAAC;wBAC3B,MAAM,GAAG,SAAS,CAAC,aAAa,CAAC,CAAC;qBACnC;iBACF;qBAAM;oBACL,SAAS,GAAG,OAAO,CAAC;oBACpB,MAAM,GAAG,OAAO,CAAC,MAAsC,CAAC;iBACzD;gBACD,OAAO,CAAC,IAAI,CAAC;oBACX,SAAS;oBACT,MAAM;oBACN,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI;oBACjC,UAAU,EAAE,EAAE;iBACf,CAAC,CAAC;aACJ;SACF;KACF;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAQD,MAAa,gBAAiB,SAAQ,qDAAwB;IAU5D,YAAY,YAAoB,EAAE,OAAO,GAAG,KAAK;QAC/C,KAAK,CAAC,YAAY,CAAC,CAAC;QACpB,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;QACjC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC,gBAAgB,CAAC,aAAa,CAAC,CAAC;QACjE,IAAI,CAAC,eAAe,GAAG,KAAK,CAAC,oBAAoB,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IACrE,CAAC;IAED,KAAK;;QACH,MAAM,aAAa,GAAG,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,MAAM,CAAC;QACxD,IAAI,aAAa,KAAK,CAAC,EAAE;YACvB,MAAM,gBAAgB,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YACnE,OAAO,gBAAgB,CAAC,KAAK,EAAE,CAAC;SACjC;aAAM;YACL,MAAM,SAAS,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YAC5D,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,EAAE,CAAC;YACnC,MAAM,iBAAiB,GAAG,gBAAgB,CAAC;YAC3C,MAAM,cAAc,GAAqB;gBACvC,IAAI,EAAE,iBAAiB;gBACvB,OAAO,EAAE,sBAAoB;gBAC7B,QAAQ,EAAE,EAAE;gBACZ,UAAU,EAAE,EAAE;gBACd,MAAM,EAAE,EAAE;gBACV,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE,EAAE;gBACZ,MAAM,EAAE,EAAE;aACX,CAAC;YACF,KAAK,MAAM,OAAO,IAAI,QAAQ,CAAC,QAAQ,EAAE;gBACvC,MAAA,cAAc,CAAC,OAAO,0CAAE,IAAI,CAAC,EAAC,IAAI,EAAE,OAAO,CAAC,IAAI,EAAC,CAAC,CAAC;gBACnD,cAAc,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;gBAClD,OAAO,CAAC,cAAc,GAAG,iBAAiB,CAAC;gBAC3C,OAAO,CAAC,MAAM,GAAG,IAAA,6BAAY,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;aACxD;YACD,cAAc,CAAC,MAAM,GAAG,IAAA,6BAAY,EAAC,IAAI,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC,CAAC;YACrE,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;YAC1C,OAAO,QAAQ,CAAC;SACjB;IACH,CAAC;CACF;AAhDD,4CAgDC;AAKD,MAAa,eAAgB,SAAQ,8BAAa;IAkIhD,YAAY,eAAgC,EAAE,OAAO,GAAG,KAAK;QAC3D,KAAK,CAAC,eAAe,CAAC,CAAC;QAjIzB,aAAQ,GAGJ;YACF,QAAQ,EAAE;gBACR,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,sBAAoB;aAC9B;YACD,OAAO,EAAE,sBAAoB;YAC7B,UAAU,EAAE,EAAE;YACd,QAAQ,EAAE;gBACR;oBACE,IAAI,EAAE,OAAO;oBACb,IAAI,EAAE,EAAC,IAAI,EAAE,cAAc,EAAC;oBAC5B,OAAO,EAAE,EAAC,IAAI,EAAE,gBAAgB,EAAC;oBACjC,KAAK,EAAE,EAAC,IAAI,EAAE,cAAc,EAAC;oBAC7B,OAAO,EAAE,EAAC,IAAI,EAAE,oBAAoB,EAAC;oBACrC,OAAO,EAAE,EAAC,IAAI,EAAE,eAAe,EAAC;oBAChC,QAAQ,EAAE,EAAE;oBACZ,UAAU,EAAE,EAAE;oBACd,MAAM,EAAE,EAAE;oBACV,MAAM,EAAE,QAAQ;oBAChB,QAAQ,EAAE;wBACR;4BACE,IAAI,EAAE,OAAO;4BACb,GAAG,EAAE,IAAI;4BACT,IAAI,EAAE;gCACJ,MAAM,EAAE,EAAC,IAAI,EAAE,YAAY,EAAC;gCAC5B,GAAG,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC;gCACrB,GAAG,EAAE,EAAC,IAAI,EAAE,SAAS,EAAC;gCACtB,OAAO,EAAE,EAAC,IAAI,EAAE,aAAa,EAAC;gCAC9B,GAAG,EAAE;oCACH,IAAI,EAAE,QAAQ;oCACd,WAAW,EAAE,MAAM;iCACpB;gCACD,IAAI,EAAE;oCACJ,IAAI,EAAE,QAAQ;oCACd,WAAW,EAAE,OAAO;iCACrB;gCACD,MAAM,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC;gCAGxB,WAAW,EAAE,CAAC,KAAoB,EAA2B,EAAE;oCAC7D,MAAM,IAAI,GAAG;wCACX,CAAC,aAAa,EAAE,YAAY,CAAC;wCAC7B,CAAC,WAAW,EAAE,UAAU,CAAC;wCACzB,CAAC,iBAAiB,EAAE,gBAAgB,CAAC;wCACrC,CAAC,iBAAiB,EAAE,gBAAgB,CAAC;wCACrC,CAAC,aAAa,EAAE,aAAa,CAAC;wCAC9B,CAAC,qBAAqB,EAAE,mBAAmB,CAAC;wCAC5C,CAAC,kBAAkB,EAAE,iBAAiB,CAAC;wCACvC,CAAC,gBAAgB,EAAE,gBAAgB,CAAC;wCACpC,CAAC,SAAS,EAAE,SAAS,CAAC;wCACtB,CAAC,4BAA4B,EAAE,0BAA0B,CAAC;wCAC1D,CAAC,wBAAwB,EAAE,uBAAuB,CAAC;qCACpD,CAAC;oCACF,MAAM,QAAQ,GAA4B,EAAE,CAAC;oCAC7C,KAAK,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE;wCAC9B,MAAM,QAAQ,GAAG,gBAAC,CAAC,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;wCACpC,IAAI,QAAQ,IAAI,QAAQ,KAAK,IAAI,EAAE;4CACjC,QAAQ,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC;yCAC1B;qCACF;oCACD,OAAO,QAAQ,CAAC;gCAClB,CAAC;6BACF;4BACD,IAAI,EAAE,EAAE;4BACR,eAAe,EAAE,EAAE;4BACnB,KAAK,EAAE,EAAC,IAAI,EAAE,WAAW,EAAC;4BAC1B,EAAE,EAAE,EAAC,IAAI,EAAE,SAAS,EAAC;4BACrB,IAAI,EAAE,EAAC,IAAI,EAAE,aAAa,EAAC;4BAC3B,YAAY,EAAE;gCACZ;oCACE,IAAI,EAAE,EAAC,IAAI,EAAE,cAAc,EAAC;oCAC5B,KAAK,EAAE,OAAO;iCACf;gCACD;oCACE,IAAI,EAAE,EAAC,IAAI,EAAE,SAAS,EAAC;oCACvB,KAAK,EAAE,KAAK;iCACb;gCACD;oCACE,IAAI,EAAE,EAAC,IAAI,EAAE,UAAU,EAAC;oCACxB,KAAK,EAAE,UAAU;iCAClB;6BACF;4BACD,MAAM,EAAE;gCACN,WAAW,EAAE,CAAC,aAA4B,EAAU,EAAE,CACpD,eAAe,CAAC,aAAa,CAAC;6BACjC;4BACD,IAAI,EAAE;gCACJ,WAAW,EAAE,CAAC,aAA4B,EAAU,EAAE,CACpD,IAAI,CAAC,SAAS,CAAC,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;6BACzC;4BACD,OAAO,EAAE;gCACP;oCACE,gBAAgB,EAAE,mBAAmB;oCACrC,MAAM,EAAE;wCACN,IAAI,EAAE,QAAQ;wCACd,WAAW,EAAE,SAAS;qCACvB;oCACD,SAAS,EAAE,EAAC,IAAI,EAAE,gBAAgB,EAAC;oCACnC,UAAU,EAAE,EAAE;iCACf;6BACF;yBACF;qBACF;oBACD,MAAM,EAAE,EAAE;iBACX;aACF;YACD,WAAW,EAAE;gBACX,WAAW,EAAE,CAAC,IAAqB,EAA2B,EAAE;oBAC9D,OAAO;wBACL,GAAG;4BACD,SAAS,EAAE;gCACT,KAAK,EAAE,IAAI,CAAC,KAAK;gCACjB,KAAK,EAAE,IAAI,CAAC,KAAK;6BAClB;yBACF;wBACD,GAAG,CAAC,IAAI,CAAC,OAAO,IAAI,EAAC,GAAG,EAAE,IAAI,CAAC,UAAU,EAAC,CAAC;qBAC5C,CAAC;gBACJ,CAAC;aACF;SACF,CAAC;QAQA,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;IACzB,CAAC;CACF;AAtID,0CAsIC"}