@mitre/hdf-converters 2.7.0 → 2.7.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +21 -20
- package/lib/data/converters/xml2json.js +25 -2
- package/lib/data/converters/xml2json.js.map +1 -1
- package/lib/data/converters/xml2json.ts +1 -1
- package/lib/index.d.ts +1 -0
- package/lib/index.js +1 -0
- package/lib/index.js.map +1 -1
- package/lib/package.json +3 -3
- package/lib/src/asff-mapper/asff-mapper.js +78 -58
- package/lib/src/asff-mapper/asff-mapper.js.map +1 -1
- package/lib/src/asff-mapper/case-cms-inspec.js +29 -9
- package/lib/src/asff-mapper/case-cms-inspec.js.map +1 -1
- package/lib/src/asff-mapper/case-firewall-manager.js +25 -5
- package/lib/src/asff-mapper/case-firewall-manager.js.map +1 -1
- package/lib/src/asff-mapper/case-guardduty.js +24 -4
- package/lib/src/asff-mapper/case-guardduty.js.map +1 -1
- package/lib/src/asff-mapper/case-inspector.js +24 -4
- package/lib/src/asff-mapper/case-inspector.js.map +1 -1
- package/lib/src/asff-mapper/case-previously-hdf.js +81 -61
- package/lib/src/asff-mapper/case-previously-hdf.js.map +1 -1
- package/lib/src/asff-mapper/case-prowler.js +26 -6
- package/lib/src/asff-mapper/case-prowler.js.map +1 -1
- package/lib/src/asff-mapper/case-security-hub.js +44 -24
- package/lib/src/asff-mapper/case-security-hub.js.map +1 -1
- package/lib/src/asff-mapper/case-trivy.js +30 -10
- package/lib/src/asff-mapper/case-trivy.js.map +1 -1
- package/lib/src/aws-config-mapper.js +31 -8
- package/lib/src/aws-config-mapper.js.map +1 -1
- package/lib/src/base-converter.js +35 -35
- package/lib/src/base-converter.js.map +1 -1
- package/lib/src/burpsuite-mapper.js +31 -11
- package/lib/src/burpsuite-mapper.js.map +1 -1
- package/lib/src/ckl-mapper/checklist-jsonix-converter.js +47 -27
- package/lib/src/ckl-mapper/checklist-jsonix-converter.js.map +1 -1
- package/lib/src/ckl-mapper/checklist-mapper.js +2 -5
- package/lib/src/ckl-mapper/checklist-mapper.js.map +1 -1
- package/lib/src/converters-from-hdf/asff/reverse-asff-mapper.js +26 -6
- package/lib/src/converters-from-hdf/asff/reverse-asff-mapper.js.map +1 -1
- package/lib/src/converters-from-hdf/asff/transformers.js +42 -19
- package/lib/src/converters-from-hdf/asff/transformers.js.map +1 -1
- package/lib/src/converters-from-hdf/caat/reverse-caat-mapper.d.ts +31 -0
- package/lib/src/converters-from-hdf/caat/reverse-caat-mapper.js +200 -0
- package/lib/src/converters-from-hdf/caat/reverse-caat-mapper.js.map +1 -0
- package/lib/src/converters-from-hdf/reverse-base-converter.js +29 -9
- package/lib/src/converters-from-hdf/reverse-base-converter.js.map +1 -1
- package/lib/src/converters-from-hdf/splunk/reverse-splunk-mapper.d.ts +0 -1
- package/lib/src/converters-from-hdf/splunk/reverse-splunk-mapper.js +29 -16
- package/lib/src/converters-from-hdf/splunk/reverse-splunk-mapper.js.map +1 -1
- package/lib/src/converters-from-hdf/xccdf/reverse-xccdf-mapper.js +25 -2
- package/lib/src/converters-from-hdf/xccdf/reverse-xccdf-mapper.js.map +1 -1
- package/lib/src/conveyor-mapper.js +52 -32
- package/lib/src/conveyor-mapper.js.map +1 -1
- package/lib/src/dbprotect-mapper.js +36 -16
- package/lib/src/dbprotect-mapper.js.map +1 -1
- package/lib/src/fortify-mapper.js +50 -30
- package/lib/src/fortify-mapper.js.map +1 -1
- package/lib/src/gosec-mapper.js +26 -6
- package/lib/src/gosec-mapper.js.map +1 -1
- package/lib/src/ionchannel-mapper.js +28 -5
- package/lib/src/ionchannel-mapper.js.map +1 -1
- package/lib/src/jfrog-xray-mapper.js +41 -21
- package/lib/src/jfrog-xray-mapper.js.map +1 -1
- package/lib/src/mappings/AwsConfigMapping.js +24 -4
- package/lib/src/mappings/AwsConfigMapping.js.map +1 -1
- package/lib/src/nessus-mapper.js +70 -50
- package/lib/src/nessus-mapper.js.map +1 -1
- package/lib/src/netsparker-mapper.js +49 -29
- package/lib/src/netsparker-mapper.js.map +1 -1
- package/lib/src/nikto-mapper.js +26 -6
- package/lib/src/nikto-mapper.js.map +1 -1
- package/lib/src/prisma-mapper.js +24 -4
- package/lib/src/prisma-mapper.js.map +1 -1
- package/lib/src/sarif-mapper.js +32 -12
- package/lib/src/sarif-mapper.js.map +1 -1
- package/lib/src/scoutsuite-mapper.js +39 -19
- package/lib/src/scoutsuite-mapper.js.map +1 -1
- package/lib/src/snyk-mapper.js +27 -7
- package/lib/src/snyk-mapper.js.map +1 -1
- package/lib/src/splunk-mapper.js +29 -6
- package/lib/src/splunk-mapper.js.map +1 -1
- package/lib/src/twistlock-mapper.js +43 -23
- package/lib/src/twistlock-mapper.js.map +1 -1
- package/lib/src/utils/attestations.js +31 -8
- package/lib/src/utils/attestations.js.map +1 -1
- package/lib/src/utils/fingerprinting.js +27 -7
- package/lib/src/utils/fingerprinting.js.map +1 -1
- package/lib/src/utils/global.d.ts +2 -1
- package/lib/src/utils/global.js +35 -5
- package/lib/src/utils/global.js.map +1 -1
- package/lib/src/utils/splunk-tools.js +26 -3
- package/lib/src/utils/splunk-tools.js.map +1 -1
- package/lib/src/veracode-mapper.js +84 -64
- package/lib/src/veracode-mapper.js.map +1 -1
- package/lib/src/xccdf-results-mapper.js +69 -49
- package/lib/src/xccdf-results-mapper.js.map +1 -1
- package/lib/src/zap-mapper.js +39 -19
- package/lib/src/zap-mapper.js.map +1 -1
- package/package.json +3 -3
|
@@ -1,11 +1,31 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
-
var
|
|
3
|
-
|
|
2
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
3
|
+
if (k2 === undefined) k2 = k;
|
|
4
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
5
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
6
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
7
|
+
}
|
|
8
|
+
Object.defineProperty(o, k2, desc);
|
|
9
|
+
}) : (function(o, m, k, k2) {
|
|
10
|
+
if (k2 === undefined) k2 = k;
|
|
11
|
+
o[k2] = m[k];
|
|
12
|
+
}));
|
|
13
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
14
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
15
|
+
}) : function(o, v) {
|
|
16
|
+
o["default"] = v;
|
|
17
|
+
});
|
|
18
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
19
|
+
if (mod && mod.__esModule) return mod;
|
|
20
|
+
var result = {};
|
|
21
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
22
|
+
__setModuleDefault(result, mod);
|
|
23
|
+
return result;
|
|
4
24
|
};
|
|
5
25
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
26
|
exports.BurpSuiteMapper = void 0;
|
|
7
27
|
const inspecjs_1 = require("inspecjs");
|
|
8
|
-
const
|
|
28
|
+
const _ = __importStar(require("lodash"));
|
|
9
29
|
const package_json_1 = require("../package.json");
|
|
10
30
|
const base_converter_1 = require("./base-converter");
|
|
11
31
|
const CweNistMapping_1 = require("./mappings/CweNistMapping");
|
|
@@ -20,23 +40,23 @@ const NAME = 'BurpSuite Pro Scan';
|
|
|
20
40
|
const CWE_NIST_MAPPING = new CweNistMapping_1.CweNistMapping();
|
|
21
41
|
function formatCodeDesc(issue) {
|
|
22
42
|
const text = [];
|
|
23
|
-
if (
|
|
24
|
-
text.push(`Host: ip: ${
|
|
43
|
+
if (_.has(issue, 'host.ip') && _.has(issue, 'host.text')) {
|
|
44
|
+
text.push(`Host: ip: ${_.get(issue, 'host.ip')}, url: ${_.get(issue, 'host.text')}`);
|
|
25
45
|
}
|
|
26
46
|
else {
|
|
27
47
|
text.push('Host: ip: , url: ');
|
|
28
48
|
}
|
|
29
|
-
if (
|
|
30
|
-
text.push(`Location: ${(0, base_converter_1.parseHtml)(
|
|
49
|
+
if (_.has(issue, 'location')) {
|
|
50
|
+
text.push(`Location: ${(0, base_converter_1.parseHtml)(_.get(issue, 'location'))}`);
|
|
31
51
|
}
|
|
32
52
|
else {
|
|
33
53
|
text.push('Location: ');
|
|
34
54
|
}
|
|
35
|
-
if (
|
|
36
|
-
text.push(`issueDetail: ${(0, base_converter_1.parseHtml)(
|
|
55
|
+
if (_.has(issue, 'issueDetail')) {
|
|
56
|
+
text.push(`issueDetail: ${(0, base_converter_1.parseHtml)(_.get(issue, 'issueDetail'))}`);
|
|
37
57
|
}
|
|
38
|
-
if (
|
|
39
|
-
text.push(`confidence: ${(0, base_converter_1.parseHtml)(
|
|
58
|
+
if (_.has(issue, 'confidence')) {
|
|
59
|
+
text.push(`confidence: ${(0, base_converter_1.parseHtml)(_.get(issue, 'confidence'))}`);
|
|
40
60
|
}
|
|
41
61
|
else {
|
|
42
62
|
text.push('confidence: ');
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"burpsuite-mapper.js","sourceRoot":"","sources":["../../src/burpsuite-mapper.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"burpsuite-mapper.js","sourceRoot":"","sources":["../../src/burpsuite-mapper.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,uCAAkC;AAClC,0CAA4B;AAC5B,kDAAgE;AAChE,qDAO0B;AAC1B,8DAAyD;AACzD,2CAGwB;AAGxB,MAAM,cAAc,GAAwB,IAAI,GAAG,CAAC;IAClD,CAAC,MAAM,EAAE,GAAG,CAAC;IACb,CAAC,QAAQ,EAAE,GAAG,CAAC;IACf,CAAC,KAAK,EAAE,GAAG,CAAC;IACZ,CAAC,aAAa,EAAE,GAAG,CAAC;CACrB,CAAC,CAAC;AACH,MAAM,IAAI,GAAG,oBAAoB,CAAC;AAClC,MAAM,gBAAgB,GAAG,IAAI,+BAAc,EAAE,CAAC;AAG9C,SAAS,cAAc,CAAC,KAAc;IACpC,MAAM,IAAI,GAAG,EAAE,CAAC;IAChB,IAAI,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,SAAS,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,EAAE;QACxD,IAAI,CAAC,IAAI,CACP,aAAa,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,SAAS,CAAC,UAAU,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,EAAE,CAC1E,CAAC;KACH;SAAM;QACL,IAAI,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;KAChC;IACD,IAAI,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,UAAU,CAAC,EAAE;QAC5B,IAAI,CAAC,IAAI,CAAC,aAAa,IAAA,0BAAS,EAAC,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC,EAAE,CAAC,CAAC;KAC/D;SAAM;QACL,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;KACzB;IACD,IAAI,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,aAAa,CAAC,EAAE;QAC/B,IAAI,CAAC,IAAI,CAAC,gBAAgB,IAAA,0BAAS,EAAC,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,aAAa,CAAC,CAAC,EAAE,CAAC,CAAC;KACrE;IACD,IAAI,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,YAAY,CAAC,EAAE;QAC9B,IAAI,CAAC,IAAI,CAAC,eAAe,IAAA,0BAAS,EAAC,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC,EAAE,CAAC,CAAC;KACnE;SAAM;QACL,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;KAC3B;IACD,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;AAChC,CAAC;AACD,SAAS,UAAU,CAAC,EAAW;IAC7B,IAAI,OAAO,EAAE,KAAK,QAAQ,IAAI,OAAO,EAAE,KAAK,QAAQ,EAAE;QACpD,OAAO,EAAE,CAAC,QAAQ,EAAE,CAAC;KACtB;SAAM;QACL,OAAO,EAAE,CAAC;KACX;AACH,CAAC;AACD,SAAS,WAAW,CAAC,KAAa;IAChC,OAAO,IAAA,0BAAS,EAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,EAAE,CAAC;AACnD,CAAC;AAED,SAAS,OAAO,CAAC,KAAa;IAC5B,IAAI,GAAG,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC3C,GAAG,CAAC,KAAK,EAAE,CAAC;IACZ,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACtC,OAAO,gBAAgB,CAAC,UAAU,CAChC,GAAG,EACH,+CAAsC,CACvC,CAAC;AACJ,CAAC;AAED,MAAa,eAAgB,SAAQ,8BAAa;IAqFhD,YAAY,QAAgB,EAAE,OAAO,GAAG,KAAK;QAC3C,KAAK,CAAC,IAAA,yBAAQ,EAAC,QAAQ,CAAC,CAAC,CAAC;QAnF5B,aAAQ,GAGJ;YACF,QAAQ,EAAE;gBACR,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,sBAAoB;aAC9B;YACD,OAAO,EAAE,sBAAoB;YAC7B,UAAU,EAAE,EAAE;YACd,QAAQ,EAAE;gBACR;oBACE,IAAI,EAAE,IAAI;oBACV,OAAO,EAAE,EAAC,IAAI,EAAE,oBAAoB,EAAC;oBACrC,KAAK,EAAE,IAAI;oBACX,OAAO,EAAE,IAAI;oBACb,QAAQ,EAAE,EAAE;oBACZ,UAAU,EAAE,EAAE;oBACd,MAAM,EAAE,EAAE;oBACV,MAAM,EAAE,QAAQ;oBAChB,QAAQ,EAAE;wBACR;4BACE,IAAI,EAAE,cAAc;4BACpB,GAAG,EAAE,IAAI;4BACT,IAAI,EAAE;gCACJ,IAAI,EAAE;oCACJ,IAAI,EAAE,8BAA8B;oCACpC,WAAW,EAAE,OAAO;iCACrB;gCACD,KAAK,EAAE;oCACL,IAAI,EAAE,8BAA8B;oCACpC,WAAW,EAAE,WAAW;iCACzB;gCACD,GAAG,EAAE;oCACH,IAAI,EAAE,8BAA8B;oCACpC,WAAW,EAAE,CAAC,IAAY,EAAE,EAAE,CAAC,IAAA,2BAAkB,EAAC,OAAO,CAAC,IAAI,CAAC,CAAC;iCACjE;gCACD,UAAU,EAAE,EAAC,IAAI,EAAE,YAAY,EAAC;6BACjC;4BACD,IAAI,EAAE,EAAE;4BACR,eAAe,EAAE,EAAE;4BACnB,KAAK,EAAE,EAAC,IAAI,EAAE,MAAM,EAAC;4BACrB,EAAE,EAAE,EAAC,IAAI,EAAE,MAAM,EAAE,WAAW,EAAE,UAAU,EAAC;4BAC3C,IAAI,EAAE,EAAC,IAAI,EAAE,iBAAiB,EAAE,WAAW,EAAE,0BAAS,EAAC;4BACvD,YAAY,EAAE;gCACZ;oCACE,IAAI,EAAE,EAAC,IAAI,EAAE,iBAAiB,EAAE,WAAW,EAAE,0BAAS,EAAC;oCACvD,KAAK,EAAE,OAAO;iCACf;gCACD;oCACE,IAAI,EAAE,EAAC,IAAI,EAAE,uBAAuB,EAAE,WAAW,EAAE,0BAAS,EAAC;oCAC7D,KAAK,EAAE,KAAK;iCACb;6BACF;4BACD,MAAM,EAAE;gCACN,IAAI,EAAE,UAAU;gCAChB,WAAW,EAAE,IAAA,8BAAa,EAAC,cAAc,CAAC;6BAC3C;4BACD,IAAI,EAAE;gCACJ,WAAW,EAAE,CAAC,aAAsC,EAAU,EAAE,CAC9D,IAAI,CAAC,SAAS,CAAC,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;6BACzC;4BACD,OAAO,EAAE;gCACP;oCACE,MAAM,EAAE,mBAAQ,CAAC,mBAAmB,CAAC,MAAM;oCAC3C,SAAS,EAAE,EAAC,WAAW,EAAE,cAAc,EAAC;oCACxC,UAAU,EAAE,EAAC,IAAI,EAAE,qBAAqB,EAAC;iCAC1C;6BACF;yBACF;qBACF;oBACD,MAAM,EAAE,EAAE;iBACX;aACF;YACD,WAAW,EAAE;gBACX,WAAW,EAAE,CAAC,IAA6B,EAA2B,EAAE;oBACtE,OAAO;wBACL,GAAG,CAAC,IAAI,CAAC,OAAO,IAAI,EAAC,GAAG,EAAE,IAAI,EAAC,CAAC;qBACjC,CAAC;gBACJ,CAAC;aACF;SACF,CAAC;QAGA,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;IACzB,CAAC;CACF;AAzFD,0CAyFC"}
|
|
@@ -1,10 +1,30 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
-
var
|
|
3
|
-
|
|
2
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
3
|
+
if (k2 === undefined) k2 = k;
|
|
4
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
5
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
6
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
7
|
+
}
|
|
8
|
+
Object.defineProperty(o, k2, desc);
|
|
9
|
+
}) : (function(o, m, k, k2) {
|
|
10
|
+
if (k2 === undefined) k2 = k;
|
|
11
|
+
o[k2] = m[k];
|
|
12
|
+
}));
|
|
13
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
14
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
15
|
+
}) : function(o, v) {
|
|
16
|
+
o["default"] = v;
|
|
17
|
+
});
|
|
18
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
19
|
+
if (mod && mod.__esModule) return mod;
|
|
20
|
+
var result = {};
|
|
21
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
22
|
+
__setModuleDefault(result, mod);
|
|
23
|
+
return result;
|
|
4
24
|
};
|
|
5
25
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
26
|
exports.ChecklistJsonixConverter = exports.Severity = void 0;
|
|
7
|
-
const
|
|
27
|
+
const _ = __importStar(require("lodash"));
|
|
8
28
|
const jsonix_intermediate_converter_1 = require("../jsonix-intermediate-converter");
|
|
9
29
|
var StatusMapping;
|
|
10
30
|
(function (StatusMapping) {
|
|
@@ -29,30 +49,30 @@ class ChecklistJsonixConverter extends jsonix_intermediate_converter_1.JsonixInt
|
|
|
29
49
|
dataName = 'siddata';
|
|
30
50
|
}
|
|
31
51
|
const results = data.filter((attribute) => {
|
|
32
|
-
return
|
|
52
|
+
return _.get(attribute, keyName) == tag;
|
|
33
53
|
});
|
|
34
|
-
return results.map((result) =>
|
|
54
|
+
return results.map((result) => _.get(result, dataName)).join('; ');
|
|
35
55
|
}
|
|
36
56
|
toIntermediateObject(jsonixData) {
|
|
37
57
|
const asset = {
|
|
38
|
-
role:
|
|
39
|
-
assettype:
|
|
40
|
-
hostname:
|
|
41
|
-
hostip:
|
|
42
|
-
hostmac:
|
|
43
|
-
hostfqdn:
|
|
44
|
-
marking:
|
|
45
|
-
targetcomment:
|
|
46
|
-
techarea:
|
|
47
|
-
targetkey:
|
|
48
|
-
webordatabase:
|
|
49
|
-
webdbsite:
|
|
50
|
-
webdbinstance:
|
|
58
|
+
role: _.get(jsonixData, 'value.asset.role'),
|
|
59
|
+
assettype: _.get(jsonixData, 'value.asset.assettype'),
|
|
60
|
+
hostname: _.get(jsonixData, 'value.asset.hostname'),
|
|
61
|
+
hostip: _.get(jsonixData, 'value.asset.hostip'),
|
|
62
|
+
hostmac: _.get(jsonixData, 'value.asset.hostmac'),
|
|
63
|
+
hostfqdn: _.get(jsonixData, 'value.asset.hostfqdn'),
|
|
64
|
+
marking: _.get(jsonixData, 'value.asset.marking'),
|
|
65
|
+
targetcomment: _.get(jsonixData, 'value.asset.targetcomment'),
|
|
66
|
+
techarea: _.get(jsonixData, 'value.asset.techarea'),
|
|
67
|
+
targetkey: _.get(jsonixData, 'value.asset.targetkey'),
|
|
68
|
+
webordatabase: _.get(jsonixData, 'value.asset.webordatabase'),
|
|
69
|
+
webdbsite: _.get(jsonixData, 'value.asset.webdbsite'),
|
|
70
|
+
webdbinstance: _.get(jsonixData, 'value.asset.webdbinstance')
|
|
51
71
|
};
|
|
52
|
-
const rawStigs =
|
|
72
|
+
const rawStigs = _.get(jsonixData, 'value.stigs.istig');
|
|
53
73
|
const stigs = [];
|
|
54
74
|
for (const stig of rawStigs) {
|
|
55
|
-
const stigInfo =
|
|
75
|
+
const stigInfo = _.get(stig, 'stiginfo.sidata');
|
|
56
76
|
const header = {
|
|
57
77
|
version: this.getValueFromAttributeName(stigInfo, 'version'),
|
|
58
78
|
classification: this.getValueFromAttributeName(stigInfo, 'classification'),
|
|
@@ -67,15 +87,15 @@ class ChecklistJsonixConverter extends jsonix_intermediate_converter_1.JsonixInt
|
|
|
67
87
|
source: this.getValueFromAttributeName(stigInfo, 'source')
|
|
68
88
|
};
|
|
69
89
|
const checklistVulns = [];
|
|
70
|
-
const vulns =
|
|
90
|
+
const vulns = _.get(stig, 'vuln');
|
|
71
91
|
for (const vuln of vulns) {
|
|
72
|
-
const stigdata =
|
|
92
|
+
const stigdata = _.get(vuln, 'stigdata');
|
|
73
93
|
const checklistVuln = {
|
|
74
|
-
status: StatusMapping[
|
|
75
|
-
findingdetails:
|
|
76
|
-
comments:
|
|
77
|
-
severityoverride:
|
|
78
|
-
severityjustification:
|
|
94
|
+
status: StatusMapping[_.get(vuln, 'status')],
|
|
95
|
+
findingdetails: _.get(vuln, 'findingdetails'),
|
|
96
|
+
comments: _.get(vuln, 'comments'),
|
|
97
|
+
severityoverride: _.get(vuln, 'severityoverride'),
|
|
98
|
+
severityjustification: _.get(vuln, 'severityjustification'),
|
|
79
99
|
vulnNum: this.getValueFromAttributeName(stigdata, 'Vuln_Num'),
|
|
80
100
|
severity: this.getValueFromAttributeName(stigdata, 'Severity'),
|
|
81
101
|
groupTitle: this.getValueFromAttributeName(stigdata, 'Group_Title'),
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"checklist-jsonix-converter.js","sourceRoot":"","sources":["../../../src/ckl-mapper/checklist-jsonix-converter.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"checklist-jsonix-converter.js","sourceRoot":"","sources":["../../../src/ckl-mapper/checklist-jsonix-converter.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,0CAA4B;AAS5B,oFAA6E;AAiE7E,IAAK,aAKJ;AALD,WAAK,aAAa;IAChB,uCAAsB,CAAA;IACtB,gCAAe,CAAA;IACf,kDAAiC,CAAA;IACjC,8CAA6B,CAAA;AAC/B,CAAC,EALI,aAAa,KAAb,aAAa,QAKjB;AAED,IAAY,QAKX;AALD,WAAY,QAAQ;IAClB,sBAAU,CAAA;IACV,yBAAa,CAAA;IACb,uBAAW,CAAA;IACX,6BAAiB,CAAA;AACnB,CAAC,EALW,QAAQ,GAAR,gBAAQ,KAAR,gBAAQ,QAKnB;AAED,MAAa,wBAAyB,SAAQ,2DAG7C;IACC,yBAAyB,CACvB,IAAS,EACT,GAAW;QAEX,IAAI,OAAO,GAAG,eAAe,CAAC;QAC9B,IAAI,QAAQ,GAAG,eAAe,CAAC;QAC/B,IAAI,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,SAAS,IAAI,CAAC,CAAC,EAAE;YACrC,OAAO,GAAG,SAAS,CAAC;YACpB,QAAQ,GAAG,SAAS,CAAC;SACtB;QACD,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,SAAY,EAAE,EAAE;YAC3C,OAAO,CAAC,CAAC,GAAG,CAAC,SAAS,EAAE,OAAO,CAAC,IAAI,GAAG,CAAC;QAC1C,CAAC,CAAC,CAAC;QACH,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,MAAS,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACxE,CAAC;IAOD,oBAAoB,CAAC,UAAqB;QACxC,MAAM,KAAK,GAAmB;YAC5B,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,kBAAkB,CAAC;YAC3C,SAAS,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,uBAAuB,CAAC;YACrD,QAAQ,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,sBAAsB,CAAC;YACnD,MAAM,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,oBAAoB,CAAC;YAC/C,OAAO,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,qBAAqB,CAAC;YACjD,QAAQ,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,sBAAsB,CAAC;YACnD,OAAO,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,qBAAqB,CAAC;YACjD,aAAa,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,2BAA2B,CAAC;YAC7D,QAAQ,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,sBAAsB,CAAC;YACnD,SAAS,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,uBAAuB,CAAC;YACrD,aAAa,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,2BAA2B,CAAC;YAC7D,SAAS,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,uBAAuB,CAAC;YACrD,aAAa,EAAE,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,2BAA2B,CAAC;SAC9D,CAAC;QAEF,MAAM,QAAQ,GAAY,CAAC,CAAC,GAAG,CAC7B,UAAU,EACV,mBAAmB,CACE,CAAC;QACxB,MAAM,KAAK,GAAoB,EAAE,CAAC;QAClC,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE;YAC3B,MAAM,QAAQ,GAAa,CAAC,CAAC,GAAG,CAC9B,IAAI,EACJ,iBAAiB,CACK,CAAC;YACzB,MAAM,MAAM,GAAe;gBACzB,OAAO,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,SAAS,CAAC;gBACpE,cAAc,EAAE,IAAI,CAAC,yBAAyB,CAC5C,QAAQ,EACR,gBAAgB,CAC0B;gBAC5C,UAAU,EAAE,IAAI,CAAC,yBAAyB,CACxC,QAAQ,EACR,YAAY,CACb;gBACD,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,QAAQ,CAAC;gBAClE,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,aAAa,CACd;gBACD,QAAQ,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,UAAU,CAAC;gBACtE,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,aAAa,CACd;gBACD,KAAK,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,OAAO,CAAC;gBAChE,IAAI,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,MAAM,CAAC;gBAC9D,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,QAAQ,CAAC;gBAClE,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAS,QAAQ,EAAE,QAAQ,CAAC;aACnE,CAAC;YAEF,MAAM,cAAc,GAAoB,EAAE,CAAC;YAC3C,MAAM,KAAK,GAAW,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;YAC1C,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE;gBACxB,MAAM,QAAQ,GAAe,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;gBACrD,MAAM,aAAa,GAAkB;oBACnC,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;oBAC5C,cAAc,EAAE,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,gBAAgB,CAAC;oBAC7C,QAAQ,EAAE,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,UAAU,CAAC;oBACjC,gBAAgB,EAAE,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,kBAAkB,CAAC;oBACjD,qBAAqB,EAAE,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,uBAAuB,CAAC;oBAC3D,OAAO,EAAE,IAAI,CAAC,yBAAyB,CACrC,QAAQ,EACR,UAAU,CACX;oBACD,QAAQ,EAAE,IAAI,CAAC,yBAAyB,CACtC,QAAQ,EACR,UAAU,CAC6B;oBACzC,UAAU,EAAE,IAAI,CAAC,yBAAyB,CACxC,QAAQ,EACR,aAAa,CACd;oBACD,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAW,QAAQ,EAAE,SAAS,CAAC;oBACrE,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,UAAU,CACX;oBACD,SAAS,EAAE,IAAI,CAAC,yBAAyB,CACvC,QAAQ,EACR,YAAY,CACb;oBACD,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,cAAc,CACf;oBACD,UAAU,EAAE,IAAI,CAAC,yBAAyB,CACxC,QAAQ,EACR,aAAa,CACd;oBACD,YAAY,EAAE,IAAI,CAAC,yBAAyB,CAC1C,QAAQ,EACR,eAAe,CAChB;oBACD,OAAO,EAAE,IAAI,CAAC,yBAAyB,CACrC,QAAQ,EACR,UAAU,CACX;oBACD,cAAc,EAAE,IAAI,CAAC,yBAAyB,CAC5C,QAAQ,EACR,iBAAiB,CAClB;oBACD,cAAc,EAAE,IAAI,CAAC,yBAAyB,CAC5C,QAAQ,EACR,iBAAiB,CAClB;oBACD,YAAY,EAAE,IAAI,CAAC,yBAAyB,CAC1C,QAAQ,EACR,cAAc,CACO;oBACvB,WAAW,EAAE,IAAI,CAAC,yBAAyB,CACzC,QAAQ,EACR,aAAa,CACd;oBACD,eAAe,EAAE,IAAI,CAAC,yBAAyB,CAC7C,QAAQ,EACR,kBAAkB,CACnB;oBACD,eAAe,EAAE,IAAI,CAAC,yBAAyB,CAC7C,QAAQ,EACR,mBAAmB,CACpB;oBACD,iBAAiB,EAAE,IAAI,CAAC,yBAAyB,CAC/C,QAAQ,EACR,oBAAoB,CACrB;oBACD,cAAc,EAAE,IAAI,CAAC,yBAAyB,CAC5C,QAAQ,EACR,gBAAgB,CACjB;oBACD,wBAAwB,EAAE,IAAI,CAAC,yBAAyB,CACtD,QAAQ,EACR,4BAA4B,CAC7B;oBACD,eAAe,EAAE,IAAI,CAAC,yBAAyB,CAC7C,QAAQ,EACR,mBAAmB,CACpB;oBACD,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAW,QAAQ,EAAE,QAAQ,CAAC;oBACpE,KAAK,EAAE,IAAI,CAAC,yBAAyB,CACnC,QAAQ,EACR,OAAO,CAC6B;oBACtC,OAAO,EAAE,IAAI,CAAC,yBAAyB,CACrC,QAAQ,EACR,SAAS,CACV;oBACD,SAAS,EAAE,IAAI,CAAC,yBAAyB,CACvC,QAAQ,EACR,WAAW,CACZ;oBACD,QAAQ,EAAE,IAAI,CAAC,yBAAyB,CACtC,QAAQ,EACR,WAAW,CACZ;oBACD,QAAQ,EAAE,IAAI,CAAC,yBAAyB,CACtC,QAAQ,EACR,WAAW,CACZ;oBACD,MAAM,EAAE,IAAI,CAAC,yBAAyB,CAAW,QAAQ,EAAE,SAAS,CAAC;iBACtE,CAAC;gBACF,cAAc,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;aACpC;YAED,KAAK,CAAC,IAAI,CAAC;gBACT,MAAM,EAAE,MAAM;gBACd,KAAK,EAAE,cAAc;aACtB,CAAC,CAAC;SACJ;QAED,MAAM,eAAe,GAAoB;YACvC,KAAK,EAAE,KAAK;YACZ,KAAK,EAAE,KAAK;YACZ,UAAU,EAAE,UAAU;SACvB,CAAC;QACF,OAAO,eAAe,CAAC;IACzB,CAAC;CACF;AA5MD,4DA4MC"}
|
|
@@ -22,13 +22,10 @@ var __importStar = (this && this.__importStar) || function (mod) {
|
|
|
22
22
|
__setModuleDefault(result, mod);
|
|
23
23
|
return result;
|
|
24
24
|
};
|
|
25
|
-
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
26
|
-
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
27
|
-
};
|
|
28
25
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
29
26
|
exports.ChecklistMapper = exports.ChecklistResults = void 0;
|
|
30
27
|
const inspecjs_1 = require("inspecjs");
|
|
31
|
-
const
|
|
28
|
+
const _ = __importStar(require("lodash"));
|
|
32
29
|
const package_json_1 = require("../../package.json");
|
|
33
30
|
const base_converter_1 = require("../base-converter");
|
|
34
31
|
const CciNistMapping_1 = require("../mappings/CciNistMapping");
|
|
@@ -222,7 +219,7 @@ class ChecklistMapper extends base_converter_1.BaseConverter {
|
|
|
222
219
|
];
|
|
223
220
|
const fullTags = {};
|
|
224
221
|
for (const [key, path] of tags) {
|
|
225
|
-
const tagValue =
|
|
222
|
+
const tagValue = _.get(input, path);
|
|
226
223
|
if (tagValue && tagValue !== '; ') {
|
|
227
224
|
fullTags[key] = tagValue;
|
|
228
225
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"checklist-mapper.js","sourceRoot":"","sources":["../../../src/ckl-mapper/checklist-mapper.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"checklist-mapper.js","sourceRoot":"","sources":["../../../src/ckl-mapper/checklist-mapper.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,uCAAkC;AAClC,0CAA4B;AAC5B,qDAAmE;AAEnE,sDAK2B;AAC3B,+DAA0D;AAC1D,4CAAuE;AACvE,6EAIsC;AACtC,kEAAoD;AAEpD,IAAK,aAIJ;AAJD,WAAK,aAAa;IAChB,mDAAU,CAAA;IACV,uDAAY,CAAA;IACZ,iDAAS,CAAA;AACX,CAAC,EAJI,aAAa,KAAb,aAAa,QAIjB;AAED,MAAM,gBAAgB,GAAG,IAAI,+BAAc,EAAE,CAAC;AAO9C,SAAS,MAAM,CAAC,KAAa;IAC3B,OAAO,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;AAC3B,CAAC;AAQD,SAAS,OAAO,CAAC,KAAa;IAC5B,MAAM,WAAW,GAAa,MAAM,CAAC,KAAK,CAAC,CAAC;IAC5C,OAAO,gBAAgB,CAAC,UAAU,CAChC,WAAW,EACX,+CAAsC,CACvC,CAAC;AACJ,CAAC;AAQD,SAAS,YAAY,CAAC,IAAmB;IACvC,IAAI,IAAI,CAAC,gBAAgB,EAAE;QACzB,OAAO,IAAI,CAAC,gBAAgB,CAAC;KAC9B;IACD,OAAO,IAAI,CAAC,QAAQ,CAAC;AACvB,CAAC;AAQD,SAAS,eAAe,CAAC,IAAmB;IAC1C,IAAI,IAAI,CAAC,MAAM,KAAK,gBAAgB;QAAE,OAAO,GAAG,CAAC;IACjD,MAAM,QAAQ,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;IACpC,MAAM,MAAM,GACV,aAAa,CAAC,QAAQ,CAAC,WAAW,EAAgC,CAAC,CAAC;IACtE,IAAI,CAAC,MAAM;QACT,MAAM,IAAI,KAAK,CACb,aAAa,QAAQ,oEAAoE,IAAI,CAAC,OAAO,EAAE,CACxG,CAAC;IACJ,OAAO,MAAM,CAAC;AAChB,CAAC;AASD,SAAS,SAAS,CAAC,KAAa;IAC9B,MAAM,MAAM,GAAG,KAAK,CAAC,WAAW,EAAE,CAAC;IACnC,QAAQ,MAAM,EAAE;QACd,KAAK,aAAa,CAAC;QACnB,KAAK,QAAQ;YACX,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,MAAM,CAAC;QAC7C,KAAK,MAAM,CAAC;QACZ,KAAK,QAAQ;YACX,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,MAAM,CAAC;QAC7C,KAAK,OAAO;YACV,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,KAAK,CAAC;QAC5C;YACE,OAAO,mBAAQ,CAAC,mBAAmB,CAAC,OAAO,CAAC;KAC/C;AACH,CAAC;AASD,SAAS,mBAAmB,CAAC,KAAgB;IAC3C,MAAM,QAAQ,GAAG,KAA4C,CAAC;IAC9D,MAAM,OAAO,GAA6B,EAAE,CAAC;IAC7C,MAAM,SAAS,GAAG,CAAC,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;IAE3D,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE;QAC9B,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE;YACtB,OAAO,CAAC,IAAI,CAAC;gBACX,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,UAAU,EAAE,OAAO,CAAC,UAAU;aAC/B,CAAC,CAAC;SACJ;aAAM;YAEL,KAAK,MAAM,OAAO,IAAI,OAAO,CAAC,SAAS,CAAC,KAAK,CAC3C,oCAAoC,CACrC,EAAE;gBACD,IAAI,SAAiB,CAAC;gBACtB,IAAI,MAAoC,CAAC;gBACzC,IAAI,OAAO,GAAG,EAAE,CAAC;gBAEjB,MAAM,CAAC,aAAa,EAAE,cAAc,CAAC,GAAG,OAAO,CAAC,KAAK,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC;gBACpE,IAAI,SAAS,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE;oBAKrC,MAAM,eAAe,GAAG,cAAc,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;oBAC7D,IAAI,eAAe,GAAG,CAAC,EAAE;wBACvB,SAAS,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,eAAe,GAAG,CAAC,CAAC,CAAC;wBACzD,OAAO,GAAG,cAAc,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;wBAChD,MAAM,GAAG,SAAS,CAAC,aAAa,CAAC,CAAC;qBACnC;yBAAM;wBACL,SAAS,GAAG,cAAc,CAAC;wBAC3B,MAAM,GAAG,SAAS,CAAC,aAAa,CAAC,CAAC;qBACnC;iBACF;qBAAM;oBACL,SAAS,GAAG,OAAO,CAAC;oBACpB,MAAM,GAAG,OAAO,CAAC,MAAsC,CAAC;iBACzD;gBACD,OAAO,CAAC,IAAI,CAAC;oBACX,SAAS;oBACT,MAAM;oBACN,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI;oBACjC,UAAU,EAAE,EAAE;iBACf,CAAC,CAAC;aACJ;SACF;KACF;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAQD,MAAa,gBAAiB,SAAQ,qDAAwB;IAU5D,YAAY,YAAoB,EAAE,OAAO,GAAG,KAAK;QAC/C,KAAK,CAAC,YAAY,CAAC,CAAC;QACpB,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;QACjC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC,gBAAgB,CAAC,aAAa,CAAC,CAAC;QACjE,IAAI,CAAC,eAAe,GAAG,KAAK,CAAC,oBAAoB,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IACrE,CAAC;IAED,KAAK;;QACH,MAAM,aAAa,GAAG,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,MAAM,CAAC;QACxD,IAAI,aAAa,KAAK,CAAC,EAAE;YACvB,MAAM,gBAAgB,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YACnE,OAAO,gBAAgB,CAAC,KAAK,EAAE,CAAC;SACjC;aAAM;YACL,MAAM,SAAS,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YAC5D,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,EAAE,CAAC;YACnC,MAAM,iBAAiB,GAAG,gBAAgB,CAAC;YAC3C,MAAM,cAAc,GAAqB;gBACvC,IAAI,EAAE,iBAAiB;gBACvB,OAAO,EAAE,sBAAoB;gBAC7B,QAAQ,EAAE,EAAE;gBACZ,UAAU,EAAE,EAAE;gBACd,MAAM,EAAE,EAAE;gBACV,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE,EAAE;gBACZ,MAAM,EAAE,EAAE;aACX,CAAC;YACF,KAAK,MAAM,OAAO,IAAI,QAAQ,CAAC,QAAQ,EAAE;gBACvC,MAAA,cAAc,CAAC,OAAO,0CAAE,IAAI,CAAC,EAAC,IAAI,EAAE,OAAO,CAAC,IAAI,EAAC,CAAC,CAAC;gBACnD,cAAc,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;gBAClD,OAAO,CAAC,cAAc,GAAG,iBAAiB,CAAC;gBAC3C,OAAO,CAAC,MAAM,GAAG,IAAA,6BAAY,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;aACxD;YACD,cAAc,CAAC,MAAM,GAAG,IAAA,6BAAY,EAAC,IAAI,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC,CAAC;YACrE,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;YAC1C,OAAO,QAAQ,CAAC;SACjB;IACH,CAAC;CACF;AAhDD,4CAgDC;AAKD,MAAa,eAAgB,SAAQ,8BAAa;IAkIhD,YAAY,eAAgC,EAAE,OAAO,GAAG,KAAK;QAC3D,KAAK,CAAC,eAAe,CAAC,CAAC;QAjIzB,aAAQ,GAGJ;YACF,QAAQ,EAAE;gBACR,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,sBAAoB;aAC9B;YACD,OAAO,EAAE,sBAAoB;YAC7B,UAAU,EAAE,EAAE;YACd,QAAQ,EAAE;gBACR;oBACE,IAAI,EAAE,OAAO;oBACb,IAAI,EAAE,EAAC,IAAI,EAAE,cAAc,EAAC;oBAC5B,OAAO,EAAE,EAAC,IAAI,EAAE,gBAAgB,EAAC;oBACjC,KAAK,EAAE,EAAC,IAAI,EAAE,cAAc,EAAC;oBAC7B,OAAO,EAAE,EAAC,IAAI,EAAE,oBAAoB,EAAC;oBACrC,OAAO,EAAE,EAAC,IAAI,EAAE,eAAe,EAAC;oBAChC,QAAQ,EAAE,EAAE;oBACZ,UAAU,EAAE,EAAE;oBACd,MAAM,EAAE,EAAE;oBACV,MAAM,EAAE,QAAQ;oBAChB,QAAQ,EAAE;wBACR;4BACE,IAAI,EAAE,OAAO;4BACb,GAAG,EAAE,IAAI;4BACT,IAAI,EAAE;gCACJ,MAAM,EAAE,EAAC,IAAI,EAAE,YAAY,EAAC;gCAC5B,GAAG,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC;gCACrB,GAAG,EAAE,EAAC,IAAI,EAAE,SAAS,EAAC;gCACtB,OAAO,EAAE,EAAC,IAAI,EAAE,aAAa,EAAC;gCAC9B,GAAG,EAAE;oCACH,IAAI,EAAE,QAAQ;oCACd,WAAW,EAAE,MAAM;iCACpB;gCACD,IAAI,EAAE;oCACJ,IAAI,EAAE,QAAQ;oCACd,WAAW,EAAE,OAAO;iCACrB;gCACD,MAAM,EAAE,EAAC,IAAI,EAAE,QAAQ,EAAC;gCAGxB,WAAW,EAAE,CAAC,KAAoB,EAA2B,EAAE;oCAC7D,MAAM,IAAI,GAAG;wCACX,CAAC,aAAa,EAAE,YAAY,CAAC;wCAC7B,CAAC,WAAW,EAAE,UAAU,CAAC;wCACzB,CAAC,iBAAiB,EAAE,gBAAgB,CAAC;wCACrC,CAAC,iBAAiB,EAAE,gBAAgB,CAAC;wCACrC,CAAC,aAAa,EAAE,aAAa,CAAC;wCAC9B,CAAC,qBAAqB,EAAE,mBAAmB,CAAC;wCAC5C,CAAC,kBAAkB,EAAE,iBAAiB,CAAC;wCACvC,CAAC,gBAAgB,EAAE,gBAAgB,CAAC;wCACpC,CAAC,SAAS,EAAE,SAAS,CAAC;wCACtB,CAAC,4BAA4B,EAAE,0BAA0B,CAAC;wCAC1D,CAAC,wBAAwB,EAAE,uBAAuB,CAAC;qCACpD,CAAC;oCACF,MAAM,QAAQ,GAA4B,EAAE,CAAC;oCAC7C,KAAK,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE;wCAC9B,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;wCACpC,IAAI,QAAQ,IAAI,QAAQ,KAAK,IAAI,EAAE;4CACjC,QAAQ,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC;yCAC1B;qCACF;oCACD,OAAO,QAAQ,CAAC;gCAClB,CAAC;6BACF;4BACD,IAAI,EAAE,EAAE;4BACR,eAAe,EAAE,EAAE;4BACnB,KAAK,EAAE,EAAC,IAAI,EAAE,WAAW,EAAC;4BAC1B,EAAE,EAAE,EAAC,IAAI,EAAE,SAAS,EAAC;4BACrB,IAAI,EAAE,EAAC,IAAI,EAAE,aAAa,EAAC;4BAC3B,YAAY,EAAE;gCACZ;oCACE,IAAI,EAAE,EAAC,IAAI,EAAE,cAAc,EAAC;oCAC5B,KAAK,EAAE,OAAO;iCACf;gCACD;oCACE,IAAI,EAAE,EAAC,IAAI,EAAE,SAAS,EAAC;oCACvB,KAAK,EAAE,KAAK;iCACb;gCACD;oCACE,IAAI,EAAE,EAAC,IAAI,EAAE,UAAU,EAAC;oCACxB,KAAK,EAAE,UAAU;iCAClB;6BACF;4BACD,MAAM,EAAE;gCACN,WAAW,EAAE,CAAC,aAA4B,EAAU,EAAE,CACpD,eAAe,CAAC,aAAa,CAAC;6BACjC;4BACD,IAAI,EAAE;gCACJ,WAAW,EAAE,CAAC,aAA4B,EAAU,EAAE,CACpD,IAAI,CAAC,SAAS,CAAC,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;6BACzC;4BACD,OAAO,EAAE;gCACP;oCACE,gBAAgB,EAAE,mBAAmB;oCACrC,MAAM,EAAE;wCACN,IAAI,EAAE,QAAQ;wCACd,WAAW,EAAE,SAAS;qCACvB;oCACD,SAAS,EAAE,EAAC,IAAI,EAAE,gBAAgB,EAAC;oCACnC,UAAU,EAAE,EAAE;iCACf;6BACF;yBACF;qBACF;oBACD,MAAM,EAAE,EAAE;iBACX;aACF;YACD,WAAW,EAAE;gBACX,WAAW,EAAE,CAAC,IAAqB,EAA2B,EAAE;oBAC9D,OAAO;wBACL,GAAG;4BACD,SAAS,EAAE;gCACT,KAAK,EAAE,IAAI,CAAC,KAAK;gCACjB,KAAK,EAAE,IAAI,CAAC,KAAK;6BAClB;yBACF;wBACD,GAAG,CAAC,IAAI,CAAC,OAAO,IAAI,EAAC,GAAG,EAAE,IAAI,CAAC,UAAU,EAAC,CAAC;qBAC5C,CAAC;gBACJ,CAAC;aACF;SACF,CAAC;QAQA,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;IACzB,CAAC;CACF;AAtID,0CAsIC"}
|
|
@@ -1,16 +1,36 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
-
var
|
|
3
|
-
|
|
2
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
3
|
+
if (k2 === undefined) k2 = k;
|
|
4
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
5
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
6
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
7
|
+
}
|
|
8
|
+
Object.defineProperty(o, k2, desc);
|
|
9
|
+
}) : (function(o, m, k, k2) {
|
|
10
|
+
if (k2 === undefined) k2 = k;
|
|
11
|
+
o[k2] = m[k];
|
|
12
|
+
}));
|
|
13
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
14
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
15
|
+
}) : function(o, v) {
|
|
16
|
+
o["default"] = v;
|
|
17
|
+
});
|
|
18
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
19
|
+
if (mod && mod.__esModule) return mod;
|
|
20
|
+
var result = {};
|
|
21
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
22
|
+
__setModuleDefault(result, mod);
|
|
23
|
+
return result;
|
|
4
24
|
};
|
|
5
25
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
26
|
exports.FromHdfToAsffMapper = exports.escapeForwardSlashes = exports.TO_ASFF_TYPES_SLASH_REPLACEMENT = void 0;
|
|
7
27
|
const inspecjs_1 = require("inspecjs");
|
|
8
|
-
const
|
|
28
|
+
const _ = __importStar(require("lodash"));
|
|
9
29
|
const reverse_base_converter_1 = require("../reverse-base-converter");
|
|
10
30
|
const transformers_1 = require("./transformers");
|
|
11
31
|
exports.TO_ASFF_TYPES_SLASH_REPLACEMENT = '{{{SLASH}}}';
|
|
12
32
|
function escapeForwardSlashes(s) {
|
|
13
|
-
return
|
|
33
|
+
return _.isString(s)
|
|
14
34
|
? s.replace(/\//g, exports.TO_ASFF_TYPES_SLASH_REPLACEMENT)
|
|
15
35
|
: JSON.stringify(s).replace(/\//g, exports.TO_ASFF_TYPES_SLASH_REPLACEMENT);
|
|
16
36
|
}
|
|
@@ -130,7 +150,7 @@ class FromHdfToAsffMapper extends reverse_base_converter_1.FromHdfBaseConverter
|
|
|
130
150
|
restrictionAttributesLessThan32KiB(finding) {
|
|
131
151
|
const ATTRIBUTE_CHARACTER_LIMIT = 30000;
|
|
132
152
|
if (finding.Resources.length > 1) {
|
|
133
|
-
|
|
153
|
+
_.set(finding, 'Resources[1].Details.AwsIamRole.AssumeRolePolicyDocument', _.get(finding, 'Resources[1].Details.AwsIamRole.AssumeRolePolicyDocument', '').slice(0, ATTRIBUTE_CHARACTER_LIMIT));
|
|
134
154
|
}
|
|
135
155
|
finding.FindingProviderFields.Types = finding.FindingProviderFields.Types
|
|
136
156
|
.map((typeString) => {
|
|
@@ -138,7 +158,7 @@ class FromHdfToAsffMapper extends reverse_base_converter_1.FromHdfBaseConverter
|
|
|
138
158
|
return typeString;
|
|
139
159
|
}
|
|
140
160
|
const [type, attribute, value] = typeString.split('/');
|
|
141
|
-
return
|
|
161
|
+
return _.chunk(value, ATTRIBUTE_CHARACTER_LIMIT -
|
|
142
162
|
(type.length + attribute.length + 2)).map((chunk) => `${type}/${attribute}/${chunk.join('')}`);
|
|
143
163
|
})
|
|
144
164
|
.flat();
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"reverse-asff-mapper.js","sourceRoot":"","sources":["../../../../src/converters-from-hdf/asff/reverse-asff-mapper.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"reverse-asff-mapper.js","sourceRoot":"","sources":["../../../../src/converters-from-hdf/asff/reverse-asff-mapper.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,uCAA2D;AAC3D,0CAA4B;AAE5B,sEAA+D;AAE/D,iDAsBwB;AAEX,QAAA,+BAA+B,GAAG,aAAa,CAAC;AAE7D,SAAgB,oBAAoB,CAAI,CAAI;IAC1C,OAAO,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;QAClB,CAAC,CAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,uCAA+B,CAAkB;QACrE,CAAC,CAAE,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,OAAO,CACxB,KAAK,EACL,uCAA+B,CACf,CAAC;AACzB,CAAC;AAPD,oDAOC;AAqBD,MAAa,mBAAoB,SAAQ,6CAAoB;IAuF3D,YAAY,MAA0B,EAAE,OAA6B;QACnE,KAAK,CAAC,MAAM,CAAC,CAAC;QAvFhB,aAAQ,GAA0D,GAAG,EAAE,CAAC,CAAC;YACvE,QAAQ,EAAE;gBACR;oBACE,aAAa,EAAE,YAAY;oBAC3B,EAAE,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,sBAAO,EAAE,UAAU,EAAE,IAAI,EAAC;oBACtD,UAAU,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,8BAAe,EAAE,UAAU,EAAE,IAAI,EAAC;oBACtE,YAAY,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,2BAAY,EAAE,UAAU,EAAE,IAAI,EAAC;oBACrE,KAAK,EAAE;wBACL,WAAW,EAAE,GAAG,EAAE,CAAC,CAAC,mCAAmC,CAAC;qBACzD;oBACD,SAAS,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,2BAAY,EAAC;oBAChD,SAAS,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,2BAAY,EAAE,UAAU,EAAE,IAAI,EAAC;oBAClE,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,eAAe,IAAI;wBACnC,MAAM,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,0BAAW,EAAE,UAAU,EAAE,IAAI,EAAC;qBAC/D,CAAC;oBACF,WAAW,EAAE;wBACX,IAAI,EAAE,EAAE;wBACR,WAAW,EAAE,+BAAgB;wBAC7B,UAAU,EAAE,IAAI;qBACjB;oBACD,KAAK,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,yBAAU,EAAC;oBAC1C,WAAW,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,yBAAU,EAAC;oBAChD,qBAAqB,EAAE;wBACrB,QAAQ,EAAE;4BACR,KAAK,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,4BAAa,EAAE,UAAU,EAAE,IAAI,EAAC;4BAC/D,QAAQ,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,4BAAa,EAAE,UAAU,EAAE,IAAI,EAAC;yBACnE;wBACD,KAAK,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,+BAAgB,EAAE,UAAU,EAAE,IAAI,EAAC;qBACnE;oBACD,WAAW,EAAE;wBACX,cAAc,EAAE;4BACd,IAAI,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,0BAAW,EAAC;yBAC3C;qBACF;oBACD,aAAa,EAAE;wBACb,KAAK,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,kCAAmB,EAAC;qBACpD;oBACD,QAAQ,EAAE;wBACR,KAAK,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,4BAAa,EAAE,UAAU,EAAE,IAAI,EAAC;wBAC/D,QAAQ,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,+BAAgB,EAAC;qBACpD;oBACD,SAAS,EAAE;wBACT;4BACE,IAAI,EAAE,YAAY;4BAClB,EAAE,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,+BAAgB,EAAE,UAAU,EAAE,IAAI,EAAC;4BAC/D,SAAS,EAAE,KAAK;4BAChB,MAAM,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,0BAAW,EAAE,UAAU,EAAE,IAAI,EAAC;yBAC/D;wBACD;4BACE,EAAE,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,gCAAiB,EAAC;4BAC9C,IAAI,EAAE,YAAY;4BAClB,OAAO,EAAE;gCACP,UAAU,EAAE;oCACV,wBAAwB,EAAE;wCACxB,IAAI,EAAE,EAAE;wCACR,WAAW,EAAE,iCAAkB;qCAChC;iCACF;6BACF;yBACF;qBACF;oBACD,UAAU,EAAE;wBACV,mBAAmB,EAAE;4BACnB,WAAW,EAAE,GAAG,EAAE,CAAC;gCACjB,6DAA6D;6BAC9D;yBACF;wBACD,MAAM,EAAE,EAAC,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,iCAAkB,EAAC;qBACpD;iBACF;aACF;SACF,CAAC,CAAC;QAOH,kBAAa,GAAwB,IAAI,GAAG,CAAC;YAC3C,CAAC,GAAG,EAAE,UAAU,CAAC;YACjB,CAAC,GAAG,EAAE,MAAM,CAAC;YACb,CAAC,GAAG,EAAE,QAAQ,CAAC;YACf,CAAC,GAAG,EAAE,KAAK,CAAC;YACZ,CAAC,GAAG,EAAE,eAAe,CAAC;SACvB,CAAC,CAAC;QAID,IAAI,CAAC,QAAQ,GAAG,OAAO,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC;QACxE,IAAI,CAAC,MAAM,GAAG,IAAA,0BAAW,EAAC,IAAA,kCAAuB,EAAC,MAAM,CAAC,CAAC,CAAC;IAC7D,CAAC;IAED,cAAc;QACZ,OAAO;YACL,KAAK,EAAE,EAAE;YACT,YAAY,EAAE,EAAE;YAChB,MAAM,EAAE,SAAS;YACjB,MAAM,EAAE,EAAE;YACV,eAAe,EAAE,KAAK;SACvB,CAAC;IACJ,CAAC;IAED,WAAW,CACT,cAA+D;QAE/D,KAAK,CAAC,WAAW,CAAC,cAAc,CAAC,CAAC;IACpC,CAAC;IAGD,kBAAkB;QAChB,MAAM,QAAQ,GAAuB,EAAE,CAAC;QACxC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YACrC,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;gBAC7C,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;oBAElC,QAAQ,CAAC,IAAI,CAAC;wBACZ,GAAG,OAAO;wBACV,MAAM,EAAE,OAAO;wBACf,eAAe,EAAE,IAAA,2BAAY,EAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC;qBAClD,CAAC,CAAC;gBACL,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,OAAO,QAAQ,CAAC;IAClB,CAAC;IAGD,kCAAkC,CAAC,OAAqB;QACtD,MAAM,yBAAyB,GAAG,KAAK,CAAC;QACxC,IAAI,OAAO,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE;YAChC,CAAC,CAAC,GAAG,CACH,OAAO,EACP,0DAA0D,EAExD,CAAC,CAAC,GAAG,CACH,OAAO,EACP,0DAA0D,EAC1D,EAAE,CAEL,CAAC,KAAK,CAAC,CAAC,EAAE,yBAAyB,CAAC,CACtC,CAAC;SAEH;QACD,OAAO,CAAC,qBAAqB,CAAC,KAAK,GACjC,OAAO,CAAC,qBAAqB,CAAC,KAC/B;aACE,GAAG,CAAC,CAAC,UAAU,EAAE,EAAE;YAClB,IAAI,UAAU,CAAC,MAAM,IAAI,yBAAyB,EAAE;gBAClD,OAAO,UAAU,CAAC;aACnB;YACD,MAAM,CAAC,IAAI,EAAE,SAAS,EAAE,KAAK,CAAC,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACvD,OAAO,CAAC,CAAC,KAAK,CACZ,KAAK,EACL,yBAAyB;gBACvB,CAAC,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC,CACvC,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,GAAG,IAAI,IAAI,SAAS,IAAI,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QAC7D,CAAC,CAAC;aACD,IAAI,EAAE,CAAC;QACV,OAAO,OAAO,CAAC;IACjB,CAAC;IAGD,+BAA+B,CAC7B,oBAA4B,EAC5B,OAAqB,EACrB,UAAkB,EAClB,YAAoB;QAEpB,MAAM,QAAQ,GAAG,MAAM,CAAC;QACxB,MAAM,YAAY,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAC3C,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CACxB,CAAC,MAAM,CAAC;QACT,IAAI,IAAI,GAAG,YAAY,CAAC;QACxB,IAAI,MAAM,CAAC;QACX,OACE,IAAI,GAAG,QAAQ;YACd,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,MAAM,GAAG,CAAC,EAC5D;YACA,MAAM,GAAI,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,GAAG,EAAE,CAAC;YACjE,IAAI,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;SACjE;QACD,IAAI,IAAI,GAAG,QAAQ,EAAE;YACnB,OAAO,CAAC,KAAK,CACX;cACM,OAAO,EAAE,CAChB,CAAC;YACF,IAAI,OAAO,CAAC,EAAE,KAAK,oBAAoB,EAAE;gBACvC,OAAO,CAAC,KAAK,CACX,+FAA+F,CAChG,CAAC;aACH;YACD,IAAI,OAAO,CAAC,EAAE,KAAK,oBAAoB,EAAE;gBAEvC,UAAU,EAAE,CAAC;aACd;YACD,OAAO,CAAC,SAAS,EAAE,UAAU,EAAE,YAAY,CAAC,CAAC;SAC9C;QACD,IAAI,YAAY,KAAK,IAAI,EAAE;YACxB,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,IAAI,CACpD,IAAI,WAAW,EAAE,CAAC,MAAM,CACtB,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,QAAQ,GAAG,IAAI,CAAC,CAC9D,CACF,CAAC;YACD,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,IAAI,CACpD,0IAA0I,CAC3I,CAAC;YACF,OAAO,CAAC,KAAK,CACX,qGAAqG,OAAO,CAAC,EAAE,EAAE,CAClH,CAAC;YACF,IAAI,OAAO,CAAC,EAAE,KAAK,oBAAoB,EAAE;gBACvC,YAAY,EAAE,CAAC;aAChB;SACF;QACD,OAAO,CAAC,OAAO,EAAE,UAAU,EAAE,YAAY,CAAC,CAAC;IAC7C,CAAC;IAGD,qCAAqC,CACnC,oBAA4B,EAC5B,OAAqB,EACrB,YAAoB;QAEpB,MAAM,MAAM,GAAI,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,MAAM,CACrE,EAAE,EACD,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,MAAM,GAAG,EAAE,CAC9D,CAAC;QACF,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE;YACpB,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,GAAG,EAAE,CAAC;YACvD,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,IAAI,CACpD,0IAA0I,CAC3I,CAAC;YACF,OAAO,CAAC,KAAK,CACX,qGAAqG,OAAO,CAAC,EAAE,EAAE,CAClH,CAAC;YACF,IAAI,OAAO,CAAC,EAAE,KAAK,oBAAoB,EAAE;gBACvC,YAAY,EAAE,CAAC;aAChB;SACF;QACD,OAAO,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;IACjC,CAAC;IAGD,iCAAiC,CAC/B,oBAA4B,EAC5B,OAAqB,EACrB,UAAkB;QAElB,IACG,OAAO,CAAC,qBAAqB,CAAC,KAAkB,CAAC,MAAM;YACxD,IAAI,GAAG,CAAC,OAAO,CAAC,qBAAqB,CAAC,KAAiB,CAAC,CAAC,IAAI,EAC7D;YACA,OAAO,CAAC,KAAK,CACX;cACM,OAAO,EAAE,CAChB,CAAC;YACF,IAAI,OAAO,CAAC,EAAE,KAAK,oBAAoB,EAAE;gBACvC,OAAO,CAAC,KAAK,CACX,+FAA+F,CAChG,CAAC;aACH;YACD,IAAI,OAAO,CAAC,EAAE,KAAK,oBAAoB,EAAE;gBACvC,UAAU,EAAE,CAAC;aACd;YACD,OAAO,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;SAChC;QACD,OAAO,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;IAC/B,CAAC;IAGD,qBAAqB,CAAC,OAAuB;QAC3C,MAAM,oBAAoB,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QACrD,IAAI,UAAU,GAAG,CAAC,CAAC;QACnB,IAAI,YAAY,GAAG,CAAC,CAAC;QACrB,MAAM,iBAAiB,GAAmB,EAAE,CAAC;QAC7C,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE;YACvB,IAAI,OAAO,GAA6B,CAAC,CAAC;YAC1C,OAAO,GAAG,IAAI,CAAC,kCAAkC,CAAC,OAAO,CAAC,CAAC;YAC3D,CAAC,OAAO,EAAE,UAAU,EAAE,YAAY,CAAC;gBACjC,IAAI,CAAC,+BAA+B,CAClC,oBAAoB,EACpB,OAAO,EACP,UAAU,EACV,YAAY,CACb,CAAC;YACJ,IAAI,CAAC,OAAO,EAAE;gBACZ,SAAS;aACV;YACD,CAAC,OAAO,EAAE,YAAY,CAAC,GAAG,IAAI,CAAC,qCAAqC,CAClE,oBAAoB,EACpB,OAAO,EACP,YAAY,CACb,CAAC;YACF,CAAC,OAAO,EAAE,UAAU,CAAC,GAAG,IAAI,CAAC,iCAAiC,CAC5D,oBAAoB,EACpB,OAAO,EACP,UAAU,CACX,CAAC;YACF,IAAI,CAAC,OAAO,EAAE;gBACZ,SAAS;aACV;YACD,iBAAiB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;SACjC;QAED,IACE,CAAC,UAAU,GAAG,CAAC,IAAI,YAAY,GAAG,CAAC,CAAC;YACpC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,KAAK,oBAAoB,EAC1D;YACA,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW,GAAG,GAC3C,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,WACjC,qEAAqE,YAAY,0EAA0E,UAAU,uDAAuD,CAAC;SAC9N;QAED,OAAO,iBAAiB,CAAC;IAC3B,CAAC;IAGD,MAAM;QACJ,IAAI,IAAI,CAAC,QAAQ,EAAE,KAAK,SAAS,EAAE;YACjC,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;SAC9C;aAAM;YAGL,IAAI,OAAO,GAAmB,IAAI,CAAC,kBAAkB,EAAE,CAAC,GAAG,CACzD,CAAC,OAAO,EAAE,KAAK,EAAE,EAAE;gBACjB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;gBACnB,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,EAAE,CAAC,CACnD,UAAU,CACX,CAAC,CAAC,CAAiB,CAAC;YACvB,CAAC,CACF,CAAC;YACF,OAAO,CAAC,IAAI,CAAC,IAAA,uCAAwB,EAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;YAEjE,OAAO,GAAG,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC,CAAC;YAE9C,OAAO,OAAO,CAAC;SAChB;IACH,CAAC;CACF;AAnVD,kDAmVC"}
|
|
@@ -1,4 +1,27 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
3
|
+
if (k2 === undefined) k2 = k;
|
|
4
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
5
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
6
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
7
|
+
}
|
|
8
|
+
Object.defineProperty(o, k2, desc);
|
|
9
|
+
}) : (function(o, m, k, k2) {
|
|
10
|
+
if (k2 === undefined) k2 = k;
|
|
11
|
+
o[k2] = m[k];
|
|
12
|
+
}));
|
|
13
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
14
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
15
|
+
}) : function(o, v) {
|
|
16
|
+
o["default"] = v;
|
|
17
|
+
});
|
|
18
|
+
var __importStar = (this && this.__importStar) || function (mod) {
|
|
19
|
+
if (mod && mod.__esModule) return mod;
|
|
20
|
+
var result = {};
|
|
21
|
+
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
|
22
|
+
__setModuleDefault(result, mod);
|
|
23
|
+
return result;
|
|
24
|
+
};
|
|
2
25
|
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
26
|
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
27
|
};
|
|
@@ -6,7 +29,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
6
29
|
exports.setupControlStatus = exports.setupDetailsAssume = exports.setupResourcesID2 = exports.setupResourcesID = exports.setupProdFieldCheck = exports.setupRemRec = exports.getFixForControl = exports.setupFindingType = exports.setupSevOriginal = exports.setupSevLabel = exports.setupDescr = exports.setupTitle = exports.setupGeneratorId = exports.setupUpdated = exports.setupRegion = exports.setupCreated = exports.setupAwsAcct = exports.setupProductARN = exports.setupId = exports.createCode = exports.createNote = exports.getAllLayers = exports.cleanText = exports.createAssumeRolePolicyDocument = exports.createDescription = exports.statusCount = exports.createProfileInfoFinding = exports.getRunTime = void 0;
|
|
7
30
|
const crypto_1 = require("crypto");
|
|
8
31
|
const inspecjs_1 = require("inspecjs");
|
|
9
|
-
const
|
|
32
|
+
const _ = __importStar(require("lodash"));
|
|
10
33
|
const moment_1 = __importDefault(require("moment"));
|
|
11
34
|
const package_json_1 = require("../../../package.json");
|
|
12
35
|
const global_1 = require("../../utils/global");
|
|
@@ -142,7 +165,7 @@ function getAllLayers(hdf, knownControl) {
|
|
|
142
165
|
{
|
|
143
166
|
...knownControl,
|
|
144
167
|
profileInfo: {
|
|
145
|
-
...
|
|
168
|
+
..._.omit(hdf.profiles[0], 'controls')
|
|
146
169
|
}
|
|
147
170
|
}
|
|
148
171
|
];
|
|
@@ -154,7 +177,7 @@ function getAllLayers(hdf, knownControl) {
|
|
|
154
177
|
if (control.id === knownControl.id) {
|
|
155
178
|
foundControls.push({
|
|
156
179
|
...control,
|
|
157
|
-
profileInfo: { ...
|
|
180
|
+
profileInfo: { ..._.omit(profile, 'controls') }
|
|
158
181
|
});
|
|
159
182
|
}
|
|
160
183
|
});
|
|
@@ -183,10 +206,10 @@ function cleanObjectValues(value) {
|
|
|
183
206
|
}
|
|
184
207
|
function createCode(control) {
|
|
185
208
|
var _a, _b;
|
|
186
|
-
const noCodeValue = (
|
|
209
|
+
const noCodeValue = (_.get(control, 'profileInfo.depends') || [])
|
|
187
210
|
.length > 0
|
|
188
211
|
? ''
|
|
189
|
-
: JSON.stringify(
|
|
212
|
+
: JSON.stringify(_.omitBy(_.omit(control, ['results', 'profileInfo']), cleanObjectValues));
|
|
190
213
|
if (!control.code && noCodeValue === '') {
|
|
191
214
|
return '';
|
|
192
215
|
}
|
|
@@ -235,17 +258,17 @@ function setupGeneratorId(control, context) {
|
|
|
235
258
|
exports.setupGeneratorId = setupGeneratorId;
|
|
236
259
|
function setupTitle(control) {
|
|
237
260
|
const nistTags = control.tags.nist ? `[${control.tags.nist.join(', ')}]` : '';
|
|
238
|
-
return
|
|
261
|
+
return _.truncate(`${control.id} | ${nistTags} | ${cleanText(control.title)}`, { length: 256 });
|
|
239
262
|
}
|
|
240
263
|
exports.setupTitle = setupTitle;
|
|
241
264
|
function setupDescr(control) {
|
|
242
265
|
const checkText = (0, global_1.getDescription)(control.descriptions || [], 'check') ||
|
|
243
266
|
control.tags.check ||
|
|
244
267
|
'Check not available';
|
|
245
|
-
const currentVal =
|
|
268
|
+
const currentVal = _.truncate(cleanText(`${control.desc} -- Check Text: ${checkText}`), { length: 1024, omission: '[SEE FULL TEXT IN AssumeRolePolicyDocument]' });
|
|
246
269
|
const caveat = (0, global_1.getDescription)(control.descriptions || [], 'caveat');
|
|
247
270
|
if (caveat) {
|
|
248
|
-
return
|
|
271
|
+
return _.truncate(`Caveat: ${cleanText(caveat)} --- Description: ${currentVal}`, { length: 1024, omission: '' });
|
|
249
272
|
}
|
|
250
273
|
return currentVal;
|
|
251
274
|
}
|
|
@@ -296,8 +319,8 @@ function createProfileInfoFindingFields(hdf, options) {
|
|
|
296
319
|
];
|
|
297
320
|
const executionTargets = ['platform', 'statistics', 'version'];
|
|
298
321
|
executionTargets.forEach((target) => {
|
|
299
|
-
const value =
|
|
300
|
-
if (
|
|
322
|
+
const value = _.get(hdf, target);
|
|
323
|
+
if (_.isString(value) && value.trim()) {
|
|
301
324
|
typesArr.push(`Execution/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(target)}/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(value)}`);
|
|
302
325
|
}
|
|
303
326
|
else {
|
|
@@ -326,7 +349,7 @@ function createProfileInfoFindingFields(hdf, options) {
|
|
|
326
349
|
'status_message'
|
|
327
350
|
];
|
|
328
351
|
targets.forEach((target) => {
|
|
329
|
-
const value =
|
|
352
|
+
const value = _.get(profile, target);
|
|
330
353
|
if (typeof value === 'string' && value) {
|
|
331
354
|
typesArr.push(`${(0, reverse_asff_mapper_1.escapeForwardSlashes)(profile.name)}/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(target)}/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(value)}`);
|
|
332
355
|
}
|
|
@@ -335,8 +358,8 @@ function createProfileInfoFindingFields(hdf, options) {
|
|
|
335
358
|
}
|
|
336
359
|
});
|
|
337
360
|
});
|
|
338
|
-
const passthrough =
|
|
339
|
-
if (
|
|
361
|
+
const passthrough = _.get(hdf, 'passthrough');
|
|
362
|
+
if (_.isString(passthrough) && passthrough.trim()) {
|
|
340
363
|
typesArr.push(`Execution/passthrough/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(passthrough)}`);
|
|
341
364
|
}
|
|
342
365
|
else if (passthrough !== undefined) {
|
|
@@ -358,12 +381,12 @@ function createSegmentInfo(segment) {
|
|
|
358
381
|
'status'
|
|
359
382
|
];
|
|
360
383
|
targets.forEach((target) => {
|
|
361
|
-
if (
|
|
362
|
-
if (
|
|
384
|
+
if (_.has(segment, target) && _.get(segment, target) !== undefined) {
|
|
385
|
+
if (_.get(segment, target) === '') {
|
|
363
386
|
typesArr.push(`Segment/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(target)}/''`);
|
|
364
387
|
}
|
|
365
388
|
else {
|
|
366
|
-
typesArr.push(`Segment/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(target)}/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(
|
|
389
|
+
typesArr.push(`Segment/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(target)}/${(0, reverse_asff_mapper_1.escapeForwardSlashes)(_.get(segment, target))}`);
|
|
367
390
|
}
|
|
368
391
|
}
|
|
369
392
|
});
|
|
@@ -414,7 +437,7 @@ function setupFindingType(control, context) {
|
|
|
414
437
|
.map((layer) => createCode(layer))
|
|
415
438
|
.join('\n\n'))}`;
|
|
416
439
|
const codeDesc = typesArr.splice(typesArr.findIndex((typeString) => typeString.startsWith('Segment/code_desc/')), 1)[0];
|
|
417
|
-
typesArr.push(...
|
|
440
|
+
typesArr.push(..._.compact([desc, code, codeDesc]));
|
|
418
441
|
return typesArr;
|
|
419
442
|
}
|
|
420
443
|
exports.setupFindingType = setupFindingType;
|
|
@@ -425,14 +448,14 @@ function getFixForControl(control) {
|
|
|
425
448
|
}
|
|
426
449
|
exports.getFixForControl = getFixForControl;
|
|
427
450
|
function setupRemRec(control) {
|
|
428
|
-
return
|
|
451
|
+
return _.truncate(cleanText(`${createNote(control.result)} --- Fix: ${getFixForControl(control)}`), { length: 512, omission: '... [SEE FULL TEXT IN AssumeRolePolicyDocument]' });
|
|
429
452
|
}
|
|
430
453
|
exports.setupRemRec = setupRemRec;
|
|
431
454
|
function setupProdFieldCheck(control) {
|
|
432
455
|
const checkText = (0, global_1.getDescription)(control.descriptions || [], 'check') ||
|
|
433
456
|
control.tags.check ||
|
|
434
457
|
'Check not available';
|
|
435
|
-
return
|
|
458
|
+
return _.truncate(checkText, { length: 2048, omission: '' });
|
|
436
459
|
}
|
|
437
460
|
exports.setupProdFieldCheck = setupProdFieldCheck;
|
|
438
461
|
function setupResourcesID(_val, context) {
|