@nodesecure/js-x-ray 10.2.0 → 11.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/AstAnalyser.d.ts +7 -7
- package/dist/AstAnalyser.d.ts.map +1 -1
- package/dist/AstAnalyser.js +13 -13
- package/dist/AstAnalyser.js.map +1 -1
- package/dist/JsSourceParser.d.ts +1 -4
- package/dist/JsSourceParser.d.ts.map +1 -1
- package/dist/JsSourceParser.js +7 -15
- package/dist/JsSourceParser.js.map +1 -1
- package/dist/ShadyURL.d.ts +5 -0
- package/dist/ShadyURL.d.ts.map +1 -0
- package/dist/ShadyURL.js +38 -0
- package/dist/ShadyURL.js.map +1 -0
- package/dist/SourceFile.d.ts +7 -0
- package/dist/SourceFile.d.ts.map +1 -1
- package/dist/SourceFile.js +18 -0
- package/dist/SourceFile.js.map +1 -1
- package/dist/obfuscators/trojan-source.d.ts +8 -1
- package/dist/obfuscators/trojan-source.d.ts.map +1 -1
- package/dist/obfuscators/trojan-source.js +89 -10
- package/dist/obfuscators/trojan-source.js.map +1 -1
- package/dist/probes/isLiteral.d.ts.map +1 -1
- package/dist/probes/isLiteral.js +4 -16
- package/dist/probes/isLiteral.js.map +1 -1
- package/dist/probes/isRequire/RequireCallExpressionWalker.d.ts.map +1 -1
- package/dist/probes/isRequire/RequireCallExpressionWalker.js +1 -0
- package/dist/probes/isRequire/RequireCallExpressionWalker.js.map +1 -1
- package/dist/warnings.d.ts +7 -1
- package/dist/warnings.d.ts.map +1 -1
- package/dist/warnings.js +14 -8
- package/dist/warnings.js.map +1 -1
- package/package.json +10 -3
package/dist/AstAnalyser.d.ts
CHANGED
|
@@ -11,9 +11,9 @@ export interface Dependency {
|
|
|
11
11
|
}
|
|
12
12
|
export interface RuntimeOptions {
|
|
13
13
|
/**
|
|
14
|
-
*
|
|
14
|
+
* A filesystem location for the given source code.
|
|
15
15
|
*/
|
|
16
|
-
|
|
16
|
+
location?: string;
|
|
17
17
|
/**
|
|
18
18
|
* @default false
|
|
19
19
|
*/
|
|
@@ -24,6 +24,10 @@ export interface RuntimeOptions {
|
|
|
24
24
|
isMinified?: boolean;
|
|
25
25
|
initialize?: (sourceFile: SourceFile) => void;
|
|
26
26
|
finalize?: (sourceFile: SourceFile) => void;
|
|
27
|
+
/**
|
|
28
|
+
* @default JsSourceParser
|
|
29
|
+
*/
|
|
30
|
+
customParser?: SourceParser;
|
|
27
31
|
}
|
|
28
32
|
export interface RuntimeFileOptions extends Omit<RuntimeOptions, "isMinified"> {
|
|
29
33
|
packageName?: string;
|
|
@@ -45,10 +49,6 @@ export type ReportOnFile = {
|
|
|
45
49
|
warnings: Warning[];
|
|
46
50
|
};
|
|
47
51
|
export interface AstAnalyserOptions {
|
|
48
|
-
/**
|
|
49
|
-
* @default JsSourceParser
|
|
50
|
-
*/
|
|
51
|
-
customParser?: SourceParser;
|
|
52
52
|
/**
|
|
53
53
|
* @default []
|
|
54
54
|
*/
|
|
@@ -68,7 +68,7 @@ export interface PrepareSourceOptions {
|
|
|
68
68
|
}
|
|
69
69
|
export declare class AstAnalyser {
|
|
70
70
|
#private;
|
|
71
|
-
|
|
71
|
+
static DefaultParser: SourceParser;
|
|
72
72
|
probes: Probe[];
|
|
73
73
|
constructor(options?: AstAnalyserOptions);
|
|
74
74
|
analyse(str: string, options?: RuntimeOptions): Report;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"AstAnalyser.d.ts","sourceRoot":"","sources":["../src/AstAnalyser.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAEL,KAAK,OAAO,EACZ,KAAK,mBAAmB,EACzB,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,UAAU,EACV,KAAK,WAAW,EACjB,MAAM,iBAAiB,CAAC;AACzB,OAAO,EAAkB,KAAK,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACxE,OAAO,EAAe,KAAK,KAAK,EAAE,MAAM,kBAAkB,CAAC;AAO3D,OAAO,EAEL,KAAK,QAAQ,EACd,MAAM,sBAAsB,CAAC;AAE9B,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,OAAO,CAAC;IAChB,KAAK,EAAE,OAAO,CAAC;IACf,QAAQ,CAAC,EAAE,IAAI,GAAG,MAAM,CAAC,cAAc,CAAC;CACzC;AAED,MAAM,WAAW,cAAc;IAC7B;;OAEG;IACH,
|
|
1
|
+
{"version":3,"file":"AstAnalyser.d.ts","sourceRoot":"","sources":["../src/AstAnalyser.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAEL,KAAK,OAAO,EACZ,KAAK,mBAAmB,EACzB,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,UAAU,EACV,KAAK,WAAW,EACjB,MAAM,iBAAiB,CAAC;AACzB,OAAO,EAAkB,KAAK,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACxE,OAAO,EAAe,KAAK,KAAK,EAAE,MAAM,kBAAkB,CAAC;AAO3D,OAAO,EAEL,KAAK,QAAQ,EACd,MAAM,sBAAsB,CAAC;AAE9B,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,OAAO,CAAC;IAChB,KAAK,EAAE,OAAO,CAAC;IACf,QAAQ,CAAC,EAAE,IAAI,GAAG,MAAM,CAAC,cAAc,CAAC;CACzC;AAED,MAAM,WAAW,cAAc;IAC7B;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;OAEG;IACH,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B;;OAEG;IACH,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,UAAU,CAAC,EAAE,CAAC,UAAU,EAAE,UAAU,KAAK,IAAI,CAAC;IAC9C,QAAQ,CAAC,EAAE,CAAC,UAAU,EAAE,UAAU,KAAK,IAAI,CAAC;IAC5C;;OAEG;IACH,YAAY,CAAC,EAAE,YAAY,CAAC;CAC7B;AAED,MAAM,WAAW,kBAAmB,SAAQ,IAAI,CAAC,cAAc,EAAE,YAAY,CAAC;IAC5E,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,MAAM;IACrB,YAAY,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IACtC,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,KAAK,EAAE,GAAG,CAAC,WAAW,CAAC,CAAC;IACxB,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,MAAM,YAAY,GAAG;IACzB,EAAE,EAAE,IAAI,CAAC;IACT,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,YAAY,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IACtC,KAAK,EAAE,GAAG,CAAC,WAAW,CAAC,CAAC;CACzB,GAAG;IACF,EAAE,EAAE,KAAK,CAAC;IACV,QAAQ,EAAE,OAAO,EAAE,CAAC;CACrB,CAAC;AAEF,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,YAAY,CAAC,EAAE,KAAK,EAAE,CAAC;IACvB;;OAEG;IACH,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B;;OAEG;IACH,gBAAgB,CAAC,EAAE,OAAO,GAAG,QAAQ,CAAC,mBAAmB,CAAC,CAAC;IAC3D,SAAS,CAAC,EAAE,QAAQ,EAAE,CAAC;CACxB;AAED,MAAM,WAAW,oBAAoB;IACnC,kBAAkB,CAAC,EAAE,OAAO,CAAC;CAC9B;AAED,qBAAa,WAAW;;IACtB,MAAM,CAAC,aAAa,EAAE,YAAY,CAAwB;IAG1D,MAAM,EAAE,KAAK,EAAE,CAAC;gBAEJ,OAAO,GAAE,kBAAuB;IAmC5C,OAAO,CACL,GAAG,EAAE,MAAM,EACX,OAAO,GAAE,cAAmB,GAC3B,MAAM;IAkEH,WAAW,CACf,UAAU,EAAE,MAAM,GAAG,GAAG,EACxB,OAAO,GAAE,kBAAuB,GAC/B,OAAO,CAAC,YAAY,CAAC;IAmDxB,eAAe,CACb,UAAU,EAAE,MAAM,GAAG,GAAG,EACxB,OAAO,GAAE,kBAAuB,GAC/B,YAAY;IAmDf,aAAa,CACX,MAAM,EAAE,MAAM,EACd,OAAO,GAAE,oBAAyB,GACjC,MAAM;CAqBV"}
|
package/dist/AstAnalyser.js
CHANGED
|
@@ -12,13 +12,12 @@ import * as trojan from "./obfuscators/trojan-source.js";
|
|
|
12
12
|
import { isOneLineExpressionExport, isMinifiedCode } from "./utils/index.js";
|
|
13
13
|
import { PipelineRunner } from "./pipelines/index.js";
|
|
14
14
|
export class AstAnalyser {
|
|
15
|
+
static DefaultParser = new JsSourceParser();
|
|
15
16
|
#pipelineRunner;
|
|
16
|
-
parser;
|
|
17
17
|
probes;
|
|
18
18
|
constructor(options = {}) {
|
|
19
19
|
const { customProbes = [], optionalWarnings = false, skipDefaultProbes = false, pipelines = [] } = options;
|
|
20
20
|
this.#pipelineRunner = new PipelineRunner(pipelines);
|
|
21
|
-
this.parser = options.customParser ?? new JsSourceParser();
|
|
22
21
|
let probes = ProbeRunner.Defaults;
|
|
23
22
|
if (Array.isArray(customProbes) &&
|
|
24
23
|
customProbes.length > 0) {
|
|
@@ -39,11 +38,10 @@ export class AstAnalyser {
|
|
|
39
38
|
this.probes = probes;
|
|
40
39
|
}
|
|
41
40
|
analyse(str, options = {}) {
|
|
42
|
-
const { isMinified = false,
|
|
43
|
-
const
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
const source = new SourceFile();
|
|
41
|
+
const { location, isMinified = false, removeHTMLComments = false, initialize, finalize } = options;
|
|
42
|
+
const parser = options.customParser ?? AstAnalyser.DefaultParser;
|
|
43
|
+
const body = parser.parse(this.prepareSource(str, { removeHTMLComments }), void 0);
|
|
44
|
+
const source = new SourceFile(location);
|
|
47
45
|
if (trojan.verify(str)) {
|
|
48
46
|
source.warnings.push(generateWarning("obfuscated-code", { value: "trojan-source" }));
|
|
49
47
|
}
|
|
@@ -86,16 +84,17 @@ export class AstAnalyser {
|
|
|
86
84
|
}
|
|
87
85
|
async analyseFile(pathToFile, options = {}) {
|
|
88
86
|
try {
|
|
89
|
-
const { packageName = null,
|
|
87
|
+
const { packageName = null, removeHTMLComments = false, initialize, finalize, customParser } = options;
|
|
90
88
|
const str = await fs.readFile(pathToFile, "utf-8");
|
|
91
89
|
const filePathString = pathToFile instanceof URL ? pathToFile.href : pathToFile;
|
|
92
90
|
const isMin = filePathString.includes(".min") || isMinifiedCode(str);
|
|
93
91
|
const data = this.analyse(str, {
|
|
92
|
+
location: path.dirname(filePathString),
|
|
94
93
|
isMinified: isMin,
|
|
95
|
-
module: path.extname(filePathString) === ".mjs" ? true : module,
|
|
96
94
|
removeHTMLComments,
|
|
97
95
|
initialize,
|
|
98
|
-
finalize
|
|
96
|
+
finalize,
|
|
97
|
+
customParser
|
|
99
98
|
});
|
|
100
99
|
if (packageName !== null) {
|
|
101
100
|
data.dependencies.delete(packageName);
|
|
@@ -124,16 +123,17 @@ export class AstAnalyser {
|
|
|
124
123
|
}
|
|
125
124
|
analyseFileSync(pathToFile, options = {}) {
|
|
126
125
|
try {
|
|
127
|
-
const { packageName = null,
|
|
126
|
+
const { packageName = null, removeHTMLComments = false, initialize, finalize, customParser } = options;
|
|
128
127
|
const str = fsSync.readFileSync(pathToFile, "utf-8");
|
|
129
128
|
const filePathString = pathToFile instanceof URL ? pathToFile.href : pathToFile;
|
|
130
129
|
const isMin = filePathString.includes(".min") || isMinifiedCode(str);
|
|
131
130
|
const data = this.analyse(str, {
|
|
131
|
+
location: path.dirname(filePathString),
|
|
132
132
|
isMinified: isMin,
|
|
133
|
-
module: path.extname(filePathString) === ".mjs" ? true : module,
|
|
134
133
|
removeHTMLComments,
|
|
135
134
|
initialize,
|
|
136
|
-
finalize
|
|
135
|
+
finalize,
|
|
136
|
+
customParser
|
|
137
137
|
});
|
|
138
138
|
if (packageName !== null) {
|
|
139
139
|
data.dependencies.delete(packageName);
|
package/dist/AstAnalyser.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"AstAnalyser.js","sourceRoot":"","sources":["../src/AstAnalyser.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAClC,OAAO,MAAM,MAAM,SAAS,CAAC;AAC7B,OAAO,IAAI,MAAM,WAAW,CAAC;AAK7B,+BAA+B;AAC/B,OAAO,EACL,eAAe,EAGhB,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,UAAU,EAEX,MAAM,iBAAiB,CAAC;AACzB,OAAO,EAAE,cAAc,EAAqB,MAAM,qBAAqB,CAAC;AACxE,OAAO,EAAE,WAAW,EAAc,MAAM,kBAAkB,CAAC;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAC9C,OAAO,KAAK,MAAM,MAAM,gCAAgC,CAAC;AACzD,OAAO,EACL,yBAAyB,EACzB,cAAc,EACf,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EACL,cAAc,EAEf,MAAM,sBAAsB,CAAC;AAuE9B,MAAM,OAAO,WAAW;IACtB,eAAe,CAAiB;IAChC,MAAM,
|
|
1
|
+
{"version":3,"file":"AstAnalyser.js","sourceRoot":"","sources":["../src/AstAnalyser.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAClC,OAAO,MAAM,MAAM,SAAS,CAAC;AAC7B,OAAO,IAAI,MAAM,WAAW,CAAC;AAK7B,+BAA+B;AAC/B,OAAO,EACL,eAAe,EAGhB,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,UAAU,EAEX,MAAM,iBAAiB,CAAC;AACzB,OAAO,EAAE,cAAc,EAAqB,MAAM,qBAAqB,CAAC;AACxE,OAAO,EAAE,WAAW,EAAc,MAAM,kBAAkB,CAAC;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAC9C,OAAO,KAAK,MAAM,MAAM,gCAAgC,CAAC;AACzD,OAAO,EACL,yBAAyB,EACzB,cAAc,EACf,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EACL,cAAc,EAEf,MAAM,sBAAsB,CAAC;AAuE9B,MAAM,OAAO,WAAW;IACtB,MAAM,CAAC,aAAa,GAAiB,IAAI,cAAc,EAAE,CAAC;IAE1D,eAAe,CAAiB;IAChC,MAAM,CAAU;IAEhB,YAAY,UAA8B,EAAE;QAC1C,MAAM,EACJ,YAAY,GAAG,EAAE,EACjB,gBAAgB,GAAG,KAAK,EACxB,iBAAiB,GAAG,KAAK,EACzB,SAAS,GAAG,EAAE,EACf,GAAG,OAAO,CAAC;QAEZ,IAAI,CAAC,eAAe,GAAG,IAAI,cAAc,CAAC,SAAS,CAAC,CAAC;QAErD,IAAI,MAAM,GAAG,WAAW,CAAC,QAAQ,CAAC;QAClC,IACE,KAAK,CAAC,OAAO,CAAC,YAAY,CAAC;YAC3B,YAAY,CAAC,MAAM,GAAG,CAAC,EACvB,CAAC;YACD,MAAM,GAAG,iBAAiB,KAAK,IAAI,CAAC,CAAC;gBACnC,YAAY,CAAC,CAAC;gBACd,CAAC,GAAG,MAAM,EAAE,GAAG,YAAY,CAAC,CAAC;QACjC,CAAC;QAED,IAAI,OAAO,gBAAgB,KAAK,SAAS,EAAE,CAAC;YAC1C,IAAI,gBAAgB,EAAE,CAAC;gBACrB,MAAM,GAAG,CAAC,GAAG,MAAM,EAAE,GAAG,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC,CAAC;YAChE,CAAC;QACH,CAAC;aACI,CAAC;YACJ,MAAM,cAAc,GAAG,KAAK,CAAC,IAAI,CAAC,gBAAgB,IAAI,EAAE,CAAC;iBACtD,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,WAAW,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;YAE9D,MAAM,GAAG,CAAC,GAAG,MAAM,EAAE,GAAG,cAAc,CAAC,CAAC;QAC1C,CAAC;QAED,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED,OAAO,CACL,GAAW,EACX,UAA0B,EAAE;QAE5B,MAAM,EACJ,QAAQ,EACR,UAAU,GAAG,KAAK,EAClB,kBAAkB,GAAG,KAAK,EAC1B,UAAU,EACV,QAAQ,EACT,GAAG,OAAO,CAAC;QAEZ,MAAM,MAAM,GAAG,OAAO,CAAC,YAAY,IAAI,WAAW,CAAC,aAAa,CAAC;QAEjE,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,CACvB,IAAI,CAAC,aAAa,CAAC,GAAG,EAAE,EAAE,kBAAkB,EAAE,CAAC,EAC/C,KAAK,CAAC,CACP,CAAC;QAEF,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,QAAQ,CAAC,CAAC;QACxC,IAAI,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC;YACvB,MAAM,CAAC,QAAQ,CAAC,IAAI,CAClB,eAAe,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAC/D,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QACzD,IAAI,UAAU,EAAE,CAAC;YACf,IAAI,OAAO,UAAU,KAAK,UAAU,EAAE,CAAC;gBACrC,MAAM,IAAI,SAAS,CAAC,uCAAuC,CAAC,CAAC;YAC/D,CAAC;YACD,UAAU,CAAC,MAAM,CAAC,CAAC;QACrB,CAAC;QAED,2DAA2D;QAC3D,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QACtD,SAAS,CAAC,WAAW,EAAE,SAAS,IAAI,CAAC,IAAI;YACvC,4BAA4B;YAC5B,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;gBACxB,OAAO;YACT,CAAC;YAED,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAClB,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACtC,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;gBACtB,IAAI,CAAC,IAAI,EAAE,CAAC;YACd,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,IAAI,QAAQ,EAAE,CAAC;YACb,IAAI,OAAO,QAAQ,KAAK,UAAU,EAAE,CAAC;gBACnC,MAAM,IAAI,SAAS,CAAC,qCAAqC,CAAC,CAAC;YAC7D,CAAC;YACD,QAAQ,CAAC,MAAM,CAAC,CAAC;QACnB,CAAC;QACD,WAAW,CAAC,QAAQ,EAAE,CAAC;QAEvB,oEAAoE;QACpE,IAAI,yBAAyB,CAAC,IAAI,CAAC,EAAE,CAAC;YACpC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;QACtC,CAAC;QAED,OAAO;YACL,GAAG,MAAM,CAAC,SAAS,CAAC,UAAU,CAAC;YAC/B,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,KAAK,EAAE,MAAM,CAAC,KAAK;SACpB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,WAAW,CACf,UAAwB,EACxB,UAA8B,EAAE;QAEhC,IAAI,CAAC;YACH,MAAM,EACJ,WAAW,GAAG,IAAI,EAClB,kBAAkB,GAAG,KAAK,EAC1B,UAAU,EACV,QAAQ,EACR,YAAY,EACb,GAAG,OAAO,CAAC;YAEZ,MAAM,GAAG,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;YACnD,MAAM,cAAc,GAAG,UAAU,YAAY,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC;YAEhF,MAAM,KAAK,GAAG,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,cAAc,CAAC,GAAG,CAAC,CAAC;YACrE,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE;gBAC7B,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC;gBACtC,UAAU,EAAE,KAAK;gBACjB,kBAAkB;gBAClB,UAAU;gBACV,QAAQ;gBACR,YAAY;aACb,CAAC,CAAC;YAEH,IAAI,WAAW,KAAK,IAAI,EAAE,CAAC;gBACzB,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;YACxC,CAAC;YAED,0EAA0E;YAC1E,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,iBAAiB,CAAC,IAAI,KAAK,EAAE,CAAC;gBAChD,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC;YAChC,CAAC;YAED,OAAO;gBACL,EAAE,EAAE,IAAI;gBACR,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,KAAK,EAAE,IAAI,CAAC,KAAK;aAClB,CAAC;QACJ,CAAC;QACD,OAAO,KAAU,EAAE,CAAC;YAClB,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,QAAQ,EAAE;oBACR,eAAe,CAAC,eAAe,EAAE;wBAC/B,KAAK,EAAE,KAAK,CAAC,OAAO;qBACrB,CAAC;iBACH;aACF,CAAC;QACJ,CAAC;IACH,CAAC;IAED,eAAe,CACb,UAAwB,EACxB,UAA8B,EAAE;QAEhC,IAAI,CAAC;YACH,MAAM,EACJ,WAAW,GAAG,IAAI,EAClB,kBAAkB,GAAG,KAAK,EAC1B,UAAU,EACV,QAAQ,EACR,YAAY,EACb,GAAG,OAAO,CAAC;YAEZ,MAAM,GAAG,GAAG,MAAM,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;YACrD,MAAM,cAAc,GAAG,UAAU,YAAY,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC;YAEhF,MAAM,KAAK,GAAG,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,cAAc,CAAC,GAAG,CAAC,CAAC;YACrE,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE;gBAC7B,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC;gBACtC,UAAU,EAAE,KAAK;gBACjB,kBAAkB;gBAClB,UAAU;gBACV,QAAQ;gBACR,YAAY;aACb,CAAC,CAAC;YAEH,IAAI,WAAW,KAAK,IAAI,EAAE,CAAC;gBACzB,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;YACxC,CAAC;YAED,0EAA0E;YAC1E,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,iBAAiB,CAAC,IAAI,KAAK,EAAE,CAAC;gBAChD,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC;YAChC,CAAC;YAED,OAAO;gBACL,EAAE,EAAE,IAAI;gBACR,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,KAAK,EAAE,IAAI,CAAC,KAAK;aAClB,CAAC;QACJ,CAAC;QACD,OAAO,KAAU,EAAE,CAAC;YAClB,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,QAAQ,EAAE;oBACR,eAAe,CAAC,eAAe,EAAE;wBAC/B,KAAK,EAAE,KAAK,CAAC,OAAO;qBACrB,CAAC;iBACH;aACF,CAAC;QACJ,CAAC;IACH,CAAC;IAED,aAAa,CACX,MAAc,EACd,UAAgC,EAAE;QAElC,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC/B,MAAM,IAAI,SAAS,CAAC,yBAAyB,CAAC,CAAC;QACjD,CAAC;QACD,MAAM,EAAE,kBAAkB,GAAG,KAAK,EAAE,GAAG,OAAO,CAAC;QAE/C;;;;WAIG;QACH,MAAM,YAAY,GAAG,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;YAC3C,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;QAElD,OAAO,kBAAkB,CAAC,CAAC;YACzB,IAAI,CAAC,kBAAkB,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC;IACzD,CAAC;IAED,kBAAkB,CAAC,GAAW;QAC5B,OAAO,GAAG,CAAC,UAAU,CAAC,sBAAsB,EAAE,EAAE,CAAC,CAAC;IACpD,CAAC"}
|
package/dist/JsSourceParser.d.ts
CHANGED
|
@@ -9,10 +9,7 @@ export type SourceParserSyntaxError = SyntaxError & {
|
|
|
9
9
|
export interface SourceParser {
|
|
10
10
|
parse(source: string, options: unknown): ESTree.Statement[];
|
|
11
11
|
}
|
|
12
|
-
export interface JsSourceParserOptions {
|
|
13
|
-
isEcmaScriptModule?: boolean;
|
|
14
|
-
}
|
|
15
12
|
export declare class JsSourceParser implements SourceParser {
|
|
16
|
-
parse(source: string
|
|
13
|
+
parse(source: string): ESTree.Program["body"];
|
|
17
14
|
}
|
|
18
15
|
//# sourceMappingURL=JsSourceParser.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"JsSourceParser.d.ts","sourceRoot":"","sources":["../src/JsSourceParser.ts"],"names":[],"mappings":"AACA,OAAO,
|
|
1
|
+
{"version":3,"file":"JsSourceParser.d.ts","sourceRoot":"","sources":["../src/JsSourceParser.ts"],"names":[],"mappings":"AACA,OAAO,EAGL,KAAK,MAAM,EAEZ,MAAM,SAAS,CAAC;AAUjB,MAAM,MAAM,uBAAuB,GAAG,WAAW,GAAG;IAClD,KAAK,EAAE,MAAM,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACxB,WAAW,EAAE,MAAM,CAAC;IACpB,GAAG,EAAE,MAAM,CAAC,cAAc,CAAC;CAC5B,CAAC;AAEF,MAAM,WAAW,YAAY;IAC3B,KAAK,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,MAAM,CAAC,SAAS,EAAE,CAAC;CAC7D;AAED,qBAAa,cAAe,YAAW,YAAY;IACjD,KAAK,CACH,MAAM,EAAE,MAAM,GACb,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;CA4B1B"}
|
package/dist/JsSourceParser.js
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
// Import Third-party Dependencies
|
|
2
|
-
import {
|
|
2
|
+
import { parseModule, parse } from "meriyah";
|
|
3
3
|
// CONSTANTS
|
|
4
4
|
const kParsingOptions = {
|
|
5
5
|
next: true,
|
|
@@ -8,26 +8,18 @@ const kParsingOptions = {
|
|
|
8
8
|
jsx: true
|
|
9
9
|
};
|
|
10
10
|
export class JsSourceParser {
|
|
11
|
-
parse(source
|
|
12
|
-
const { isEcmaScriptModule } = options;
|
|
11
|
+
parse(source) {
|
|
13
12
|
try {
|
|
14
|
-
const { body } =
|
|
15
|
-
...kParsingOptions,
|
|
16
|
-
module: isEcmaScriptModule,
|
|
17
|
-
globalReturn: !isEcmaScriptModule
|
|
18
|
-
});
|
|
13
|
+
const { body } = parseModule(source, structuredClone(kParsingOptions));
|
|
19
14
|
return body;
|
|
20
15
|
}
|
|
21
16
|
catch (error) {
|
|
22
17
|
const syntaxError = error;
|
|
23
18
|
const isIllegalReturn = syntaxError.description.includes("Illegal return statement");
|
|
24
|
-
if (
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
...kParsingOptions,
|
|
29
|
-
module: true,
|
|
30
|
-
globalReturn: isIllegalReturn
|
|
19
|
+
if (isIllegalReturn) {
|
|
20
|
+
const { body } = parse(source, {
|
|
21
|
+
...structuredClone(kParsingOptions),
|
|
22
|
+
sourceType: "commonjs"
|
|
31
23
|
});
|
|
32
24
|
return body;
|
|
33
25
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"JsSourceParser.js","sourceRoot":"","sources":["../src/JsSourceParser.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EACL,WAAW,
|
|
1
|
+
{"version":3,"file":"JsSourceParser.js","sourceRoot":"","sources":["../src/JsSourceParser.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EACL,WAAW,EACX,KAAK,EAGN,MAAM,SAAS,CAAC;AAEjB,YAAY;AACZ,MAAM,eAAe,GAAqB;IACxC,IAAI,EAAE,IAAI;IACV,GAAG,EAAE,IAAI;IACT,GAAG,EAAE,IAAI;IACT,GAAG,EAAE,IAAI;CACV,CAAC;AAcF,MAAM,OAAO,cAAc;IACzB,KAAK,CACH,MAAc;QAEd,IAAI,CAAC;YACH,MAAM,EAAE,IAAI,EAAE,GAAG,WAAW,CAC1B,MAAM,EACN,eAAe,CAAC,eAAe,CAAC,CACjC,CAAC;YAEF,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,KAAc,EAAE,CAAC;YACtB,MAAM,WAAW,GAAG,KAAgC,CAAC;YACrD,MAAM,eAAe,GAAG,WAAW,CAAC,WAAW,CAAC,QAAQ,CAAC,0BAA0B,CAAC,CAAC;YAErF,IAAI,eAAe,EAAE,CAAC;gBACpB,MAAM,EAAE,IAAI,EAAE,GAAG,KAAK,CACpB,MAAM,EACN;oBACE,GAAG,eAAe,CAAC,eAAe,CAAC;oBACnC,UAAU,EAAE,UAAU;iBACvB,CACF,CAAC;gBAEF,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;CACF"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ShadyURL.d.ts","sourceRoot":"","sources":["../src/ShadyURL.ts"],"names":[],"mappings":"AASA,qBAAa,QAAQ;;IACnB,MAAM,CAAC,MAAM,CACX,KAAK,EAAE,MAAM,GACZ,OAAO;CAqCX"}
|
package/dist/ShadyURL.js
ADDED
|
@@ -0,0 +1,38 @@
|
|
|
1
|
+
// Import Third-party Dependencies
|
|
2
|
+
import ipaddress from "ipaddr.js";
|
|
3
|
+
// CONSTANTS
|
|
4
|
+
const kShadyLinkRegExps = [
|
|
5
|
+
/(http[s]?:\/\/(bit\.ly|ipinfo\.io|httpbin\.org|api\.ipify\.org).*)$/,
|
|
6
|
+
/(http[s]?:\/\/.*\.(link|xyz|tk|ml|ga|cf|gq|pw|top|club|mw|bd|ke|am|sbs|date|quest|cd|bid|ws|icu|cam|uno|email|stream))$/
|
|
7
|
+
];
|
|
8
|
+
export class ShadyURL {
|
|
9
|
+
static isSafe(input) {
|
|
10
|
+
if (!URL.canParse(input)) {
|
|
11
|
+
return true;
|
|
12
|
+
}
|
|
13
|
+
const parsedUrl = new URL(input);
|
|
14
|
+
const hostname = parsedUrl.hostname;
|
|
15
|
+
if (ipaddress.isValid(hostname)) {
|
|
16
|
+
if (this.#isPrivateIPAddress(hostname)) {
|
|
17
|
+
return true;
|
|
18
|
+
}
|
|
19
|
+
}
|
|
20
|
+
const scheme = parsedUrl.protocol.replace(":", "");
|
|
21
|
+
if (scheme !== "https") {
|
|
22
|
+
return false;
|
|
23
|
+
}
|
|
24
|
+
return kShadyLinkRegExps.every((regex) => !regex.test(input));
|
|
25
|
+
}
|
|
26
|
+
static #isPrivateIPAddress(ipAddress) {
|
|
27
|
+
let ip = ipaddress.parse(ipAddress);
|
|
28
|
+
if (ip instanceof ipaddress.IPv6 && ip.isIPv4MappedAddress()) {
|
|
29
|
+
ip = ip.toIPv4Address();
|
|
30
|
+
}
|
|
31
|
+
const range = ip.range();
|
|
32
|
+
if (range !== "unicast") {
|
|
33
|
+
return true;
|
|
34
|
+
}
|
|
35
|
+
return false;
|
|
36
|
+
}
|
|
37
|
+
}
|
|
38
|
+
//# sourceMappingURL=ShadyURL.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ShadyURL.js","sourceRoot":"","sources":["../src/ShadyURL.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,SAAS,MAAM,WAAW,CAAC;AAElC,YAAY;AACZ,MAAM,iBAAiB,GAAG;IACxB,qEAAqE;IACrE,yHAAyH;CAC1H,CAAC;AAEF,MAAM,OAAO,QAAQ;IACnB,MAAM,CAAC,MAAM,CACX,KAAa;QAEb,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YACzB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC;QACjC,MAAM,QAAQ,GAAG,SAAS,CAAC,QAAQ,CAAC;QACpC,IAAI,SAAS,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;YAChC,IAAI,IAAI,CAAC,mBAAmB,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACvC,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QACnD,IAAI,MAAM,KAAK,OAAO,EAAE,CAAC;YACvB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;IAChE,CAAC;IAED,MAAM,CAAC,mBAAmB,CACxB,SAAiB;QAEjB,IAAI,EAAE,GAAG,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAEpC,IAAI,EAAE,YAAY,SAAS,CAAC,IAAI,IAAI,EAAE,CAAC,mBAAmB,EAAE,EAAE,CAAC;YAC7D,EAAE,GAAG,EAAE,CAAC,aAAa,EAAE,CAAC;QAC1B,CAAC;QAED,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,EAAE,CAAC;QACzB,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;YACxB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;CACF"}
|
package/dist/SourceFile.d.ts
CHANGED
|
@@ -13,6 +13,8 @@ export declare class SourceFile {
|
|
|
13
13
|
encodedLiterals: Map<string, string>;
|
|
14
14
|
warnings: Warning[];
|
|
15
15
|
flags: Set<SourceFlags>;
|
|
16
|
+
path: SourceFilePath;
|
|
17
|
+
constructor(sourceLocation?: string);
|
|
16
18
|
addDependency(name: string, location?: ESTree.SourceLocation | null, unsafe?: boolean): void;
|
|
17
19
|
addEncodedLiteral(value: string, location?: ESTree.SourceLocation): void;
|
|
18
20
|
analyzeLiteral(node: any, inArrayExpr?: boolean): void;
|
|
@@ -23,4 +25,9 @@ export declare class SourceFile {
|
|
|
23
25
|
};
|
|
24
26
|
walk(node: ESTree.Node): void;
|
|
25
27
|
}
|
|
28
|
+
export declare class SourceFilePath {
|
|
29
|
+
location: string | null;
|
|
30
|
+
use(location?: string): void;
|
|
31
|
+
resolve(...parts: string[]): string;
|
|
32
|
+
}
|
|
26
33
|
//# sourceMappingURL=SourceFile.d.ts.map
|
package/dist/SourceFile.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"SourceFile.d.ts","sourceRoot":"","sources":["../src/SourceFile.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"SourceFile.d.ts","sourceRoot":"","sources":["../src/SourceFile.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AACpD,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAItC,OAAO,EAEL,KAAK,OAAO,EACb,MAAM,eAAe,CAAC;AACvB,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAKjD,MAAM,MAAM,WAAW,GACnB,OAAO,GACP,iBAAiB,GACjB,aAAa,CAAC;AAElB,qBAAa,UAAU;IACrB,MAAM,iBAA+C;IACrD,cAAc,UAAS;IACvB,qBAAqB,UAAS;IAC9B,YAAY,eAAsB;IAClC,YAAY,0BAAiC;IAC7C,eAAe,sBAA6B;IAC5C,QAAQ,EAAE,OAAO,EAAE,CAAM;IACzB,KAAK,mBAA0B;IAC/B,IAAI,iBAAwB;gBAEhB,cAAc,CAAC,EAAE,MAAM;IAInC,aAAa,CACX,IAAI,EAAE,MAAM,EACZ,QAAQ,CAAC,EAAE,MAAM,CAAC,cAAc,GAAG,IAAI,EACvC,MAAM,GAAE,OAAoC;IAwB9C,iBAAiB,CACf,KAAK,EAAE,MAAM,EACb,QAAQ,wBAAiB;IAiB3B,cAAc,CACZ,IAAI,EAAE,GAAG,EACT,WAAW,UAAQ;IAsBrB,SAAS,CACP,UAAU,EAAE,OAAO,GAClB;QAAE,YAAY,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,OAAO,EAAE,CAAC;KAAE;IA0CtE,IAAI,CACF,IAAI,EAAE,MAAM,CAAC,IAAI,GAChB,IAAI;CAYR;AAED,qBAAa,cAAc;IACzB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAQ;IAE/B,GAAG,CACD,QAAQ,CAAC,EAAE,MAAM;IAKnB,OAAO,CACL,GAAG,KAAK,EAAE,MAAM,EAAE;CAQrB"}
|
package/dist/SourceFile.js
CHANGED
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
// Import Node.js Dependencies
|
|
2
|
+
import path from "node:path";
|
|
1
3
|
// Import Third-party Dependencies
|
|
2
4
|
import { Utils, Literal } from "@nodesecure/sec-literal";
|
|
3
5
|
import { VariableTracer } from "@nodesecure/tracer";
|
|
@@ -16,6 +18,10 @@ export class SourceFile {
|
|
|
16
18
|
encodedLiterals = new Map();
|
|
17
19
|
warnings = [];
|
|
18
20
|
flags = new Set();
|
|
21
|
+
path = new SourceFilePath();
|
|
22
|
+
constructor(sourceLocation) {
|
|
23
|
+
this.path.use(sourceLocation);
|
|
24
|
+
}
|
|
19
25
|
addDependency(name, location, unsafe = this.dependencyAutoWarning) {
|
|
20
26
|
if (typeof name !== "string" || name.trim() === "") {
|
|
21
27
|
return;
|
|
@@ -102,6 +108,18 @@ export class SourceFile {
|
|
|
102
108
|
}
|
|
103
109
|
}
|
|
104
110
|
}
|
|
111
|
+
export class SourceFilePath {
|
|
112
|
+
location = null;
|
|
113
|
+
use(location) {
|
|
114
|
+
this.location = location ?? null;
|
|
115
|
+
}
|
|
116
|
+
resolve(...parts) {
|
|
117
|
+
if (this.location === null) {
|
|
118
|
+
return path.posix.join(...parts);
|
|
119
|
+
}
|
|
120
|
+
return path.posix.join(this.location, ...parts);
|
|
121
|
+
}
|
|
122
|
+
}
|
|
105
123
|
function sum(arr = []) {
|
|
106
124
|
return arr.length === 0 ? 0 : (arr.reduce((prev, curr) => prev + curr, 0) / arr.length);
|
|
107
125
|
}
|
package/dist/SourceFile.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"SourceFile.js","sourceRoot":"","sources":["../src/SourceFile.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM,yBAAyB,CAAC;AACzD,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAGpD,+BAA+B;AAC/B,OAAO,EAAE,YAAY,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AACjE,OAAO,EACL,eAAe,EAEhB,MAAM,eAAe,CAAC;AAEvB,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEjD,YAAY;AACZ,MAAM,uBAAuB,GAAG,EAAE,CAAC;AAOnC,MAAM,OAAO,UAAU;IACrB,MAAM,GAAG,IAAI,cAAc,EAAE,CAAC,oBAAoB,EAAE,CAAC;IACrD,cAAc,GAAG,KAAK,CAAC;IACvB,qBAAqB,GAAG,KAAK,CAAC;IAC9B,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC;IAClC,YAAY,GAAG,IAAI,GAAG,EAAsB,CAAC;IAC7C,eAAe,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC5C,QAAQ,GAAc,EAAE,CAAC;IACzB,KAAK,GAAG,IAAI,GAAG,EAAe,CAAC;IAC/B,aAAa,CACX,IAAY,EACZ,QAAuC,EACvC,SAAkB,IAAI,CAAC,qBAAqB;QAE5C,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YACnD,OAAO;QACT,CAAC;QAED,MAAM,cAAc,GAAG,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC;YAC3D,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAC3B,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE;YACpC,MAAM;YACN,KAAK,EAAE,IAAI,CAAC,cAAc;YAC1B,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAClC,CAAC,CAAC;QAEH,IAAI,IAAI,CAAC,qBAAqB,EAAE,CAAC;YAC/B,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,eAAe,EAAE;gBAC/B,KAAK,EAAE,cAAc;gBACrB,QAAQ,EAAE,QAAQ,IAAI,KAAK,CAAC;aAC7B,CAAC,CACH,CAAC;QACJ,CAAC;IACH,CAAC;IAED,iBAAiB,CACf,KAAa,EACb,QAAQ,GAAG,YAAY,EAAE;QAEzB,IAAI,IAAI,CAAC,eAAe,CAAC,IAAI,GAAG,uBAAuB,EAAE,CAAC;YACxD,OAAO;QACT,CAAC;QAED,IAAI,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YACpC,MAAM,KAAK,GAAG,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAE,CAAC;YAC/C,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC,CAAC;YAE9D,OAAO;QACT,CAAC;QAED,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC;QAC5E,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC;IACpE,CAAC;IAED,cAAc,CACZ,IAAS,EACT,WAAW,GAAG,KAAK;QAEnB,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YACxD,OAAO;QACT,CAAC;QACD,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAE5C,MAAM,EACJ,sBAAsB,EACtB,kBAAkB,EAClB,QAAQ,EACT,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAE,CAAC;QACnC,IAAI,CAAC,sBAAsB,IAAI,kBAAkB,CAAC,IAAI,QAAQ,EAAE,CAAC;YAC/D,IAAI,WAAW,EAAE,CAAC;gBAChB,IAAI,CAAC,YAAY,CAAC,iBAAiB,EAAE,CAAC;YACxC,CAAC;iBACI,CAAC;gBACJ,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC;YAC/C,CAAC;QACH,CAAC;IACH,CAAC;IAED,SAAS,CACP,UAAmB;QAEnB,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,iBAAiB,EAAE,CAAC;QAC7D,IAAI,cAAc,KAAK,IAAI,EAAE,CAAC;YAC5B,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,cAAc,EAAE,CAAC,CAC9D,CAAC;QACJ,CAAC;QAED,MAAM,oBAAoB,GAAG,IAAI,CAAC,YAAY,CAAC,WAAW;aACvD,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,KAAK,UAAU,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,CAAC;aAC9E,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAErC,MAAM,CAAC,YAAY,EAAE,WAAW,CAAC,GAAG;YAClC,GAAG,CAAC,oBAAoB,CAAC;YACzB,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC;SACrC,CAAC;QACF,IAAI,CAAC,UAAU,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,IAAI,YAAY,IAAI,GAAG,EAAE,CAAC;YAC1E,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,mBAAmB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,YAAY,CAAC,EAAE,CAAC,CACtE,CAAC;QACJ,CAAC;QACD,IAAI,WAAW,IAAI,CAAC,EAAE,CAAC;YACrB,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,oBAAoB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CACtE,CAAC;QACJ,CAAC;QAED,IAAI,IAAI,CAAC,eAAe,CAAC,IAAI,GAAG,uBAAuB,EAAE,CAAC;YACxD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CACpD,CAAC;YACF,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ;iBAC1B,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,KAAK,iBAAiB,CAAC,CAAC;QAC7D,CAAC;QAED,OAAO;YACL,YAAY;YACZ,WAAW;YACX,QAAQ,EAAE,IAAI,CAAC,QAAQ;SACxB,CAAC;IACJ,CAAC;IAED,IAAI,CACF,IAAiB;QAEjB,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACvB,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAE7B,+FAA+F;QAC/F,IAAI,IAAI,CAAC,IAAI,KAAK,cAAc,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjD,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;QAC7B,CAAC;aACI,IAAI,IAAI,CAAC,IAAI,KAAK,aAAa,EAAE,CAAC;YACrC,IAAI,CAAC,cAAc,GAAG,KAAK,CAAC;QAC9B,CAAC;IACH,CAAC;CACF;AAED,SAAS,GAAG,CACV,MAAgB,EAAE;IAElB,OAAO,GAAG,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,GAAG,IAAI,EAAE,CAAC,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC;AAC1F,CAAC"}
|
|
1
|
+
{"version":3,"file":"SourceFile.js","sourceRoot":"","sources":["../src/SourceFile.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,kCAAkC;AAClC,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM,yBAAyB,CAAC;AACzD,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAGpD,+BAA+B;AAC/B,OAAO,EAAE,YAAY,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AACjE,OAAO,EACL,eAAe,EAEhB,MAAM,eAAe,CAAC;AAEvB,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEjD,YAAY;AACZ,MAAM,uBAAuB,GAAG,EAAE,CAAC;AAOnC,MAAM,OAAO,UAAU;IACrB,MAAM,GAAG,IAAI,cAAc,EAAE,CAAC,oBAAoB,EAAE,CAAC;IACrD,cAAc,GAAG,KAAK,CAAC;IACvB,qBAAqB,GAAG,KAAK,CAAC;IAC9B,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC;IAClC,YAAY,GAAG,IAAI,GAAG,EAAsB,CAAC;IAC7C,eAAe,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC5C,QAAQ,GAAc,EAAE,CAAC;IACzB,KAAK,GAAG,IAAI,GAAG,EAAe,CAAC;IAC/B,IAAI,GAAG,IAAI,cAAc,EAAE,CAAC;IAE5B,YAAY,cAAuB;QACjC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;IAChC,CAAC;IAED,aAAa,CACX,IAAY,EACZ,QAAuC,EACvC,SAAkB,IAAI,CAAC,qBAAqB;QAE5C,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YACnD,OAAO;QACT,CAAC;QAED,MAAM,cAAc,GAAG,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC;YAC3D,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAC3B,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE;YACpC,MAAM;YACN,KAAK,EAAE,IAAI,CAAC,cAAc;YAC1B,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAClC,CAAC,CAAC;QAEH,IAAI,IAAI,CAAC,qBAAqB,EAAE,CAAC;YAC/B,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,eAAe,EAAE;gBAC/B,KAAK,EAAE,cAAc;gBACrB,QAAQ,EAAE,QAAQ,IAAI,KAAK,CAAC;aAC7B,CAAC,CACH,CAAC;QACJ,CAAC;IACH,CAAC;IAED,iBAAiB,CACf,KAAa,EACb,QAAQ,GAAG,YAAY,EAAE;QAEzB,IAAI,IAAI,CAAC,eAAe,CAAC,IAAI,GAAG,uBAAuB,EAAE,CAAC;YACxD,OAAO;QACT,CAAC;QAED,IAAI,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YACpC,MAAM,KAAK,GAAG,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAE,CAAC;YAC/C,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC,CAAC;YAE9D,OAAO;QACT,CAAC;QAED,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC;QAC5E,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC;IACpE,CAAC;IAED,cAAc,CACZ,IAAS,EACT,WAAW,GAAG,KAAK;QAEnB,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YACxD,OAAO;QACT,CAAC;QACD,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAE5C,MAAM,EACJ,sBAAsB,EACtB,kBAAkB,EAClB,QAAQ,EACT,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAE,CAAC;QACnC,IAAI,CAAC,sBAAsB,IAAI,kBAAkB,CAAC,IAAI,QAAQ,EAAE,CAAC;YAC/D,IAAI,WAAW,EAAE,CAAC;gBAChB,IAAI,CAAC,YAAY,CAAC,iBAAiB,EAAE,CAAC;YACxC,CAAC;iBACI,CAAC;gBACJ,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC;YAC/C,CAAC;QACH,CAAC;IACH,CAAC;IAED,SAAS,CACP,UAAmB;QAEnB,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,iBAAiB,EAAE,CAAC;QAC7D,IAAI,cAAc,KAAK,IAAI,EAAE,CAAC;YAC5B,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,cAAc,EAAE,CAAC,CAC9D,CAAC;QACJ,CAAC;QAED,MAAM,oBAAoB,GAAG,IAAI,CAAC,YAAY,CAAC,WAAW;aACvD,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,KAAK,UAAU,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,CAAC;aAC9E,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAErC,MAAM,CAAC,YAAY,EAAE,WAAW,CAAC,GAAG;YAClC,GAAG,CAAC,oBAAoB,CAAC;YACzB,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,aAAa,CAAC;SACrC,CAAC;QACF,IAAI,CAAC,UAAU,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,IAAI,YAAY,IAAI,GAAG,EAAE,CAAC;YAC1E,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,mBAAmB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,YAAY,CAAC,EAAE,CAAC,CACtE,CAAC;QACJ,CAAC;QACD,IAAI,WAAW,IAAI,CAAC,EAAE,CAAC;YACrB,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,oBAAoB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CACtE,CAAC;QACJ,CAAC;QAED,IAAI,IAAI,CAAC,eAAe,CAAC,IAAI,GAAG,uBAAuB,EAAE,CAAC;YACxD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,eAAe,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CACpD,CAAC;YACF,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ;iBAC1B,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,KAAK,iBAAiB,CAAC,CAAC;QAC7D,CAAC;QAED,OAAO;YACL,YAAY;YACZ,WAAW;YACX,QAAQ,EAAE,IAAI,CAAC,QAAQ;SACxB,CAAC;IACJ,CAAC;IAED,IAAI,CACF,IAAiB;QAEjB,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACvB,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAE7B,+FAA+F;QAC/F,IAAI,IAAI,CAAC,IAAI,KAAK,cAAc,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjD,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;QAC7B,CAAC;aACI,IAAI,IAAI,CAAC,IAAI,KAAK,aAAa,EAAE,CAAC;YACrC,IAAI,CAAC,cAAc,GAAG,KAAK,CAAC;QAC9B,CAAC;IACH,CAAC;CACF;AAED,MAAM,OAAO,cAAc;IACzB,QAAQ,GAAkB,IAAI,CAAC;IAE/B,GAAG,CACD,QAAiB;QAEjB,IAAI,CAAC,QAAQ,GAAG,QAAQ,IAAI,IAAI,CAAC;IACnC,CAAC;IAED,OAAO,CACL,GAAG,KAAe;QAElB,IAAI,IAAI,CAAC,QAAQ,KAAK,IAAI,EAAE,CAAC;YAC3B,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC;QACnC,CAAC;QAED,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,GAAG,KAAK,CAAC,CAAC;IAClD,CAAC;CACF;AAED,SAAS,GAAG,CACV,MAAgB,EAAE;IAElB,OAAO,GAAG,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,GAAG,IAAI,EAAE,CAAC,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC;AAC1F,CAAC"}
|
|
@@ -1,2 +1,9 @@
|
|
|
1
|
-
|
|
1
|
+
/**
|
|
2
|
+
* This code has been copy-pasted from:
|
|
3
|
+
* https://github.com/lirantal/anti-trojan-source
|
|
4
|
+
*
|
|
5
|
+
* WHY?
|
|
6
|
+
* Because of the high number of dependencies.
|
|
7
|
+
*/
|
|
8
|
+
export declare function verify(sourceTextToSearch: string): boolean;
|
|
2
9
|
//# sourceMappingURL=trojan-source.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"trojan-source.d.ts","sourceRoot":"","sources":["../../src/obfuscators/trojan-source.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"trojan-source.d.ts","sourceRoot":"","sources":["../../src/obfuscators/trojan-source.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AA8FH,wBAAgB,MAAM,CACpB,kBAAkB,EAAE,MAAM,GACzB,OAAO,CAQT"}
|
|
@@ -1,24 +1,103 @@
|
|
|
1
1
|
/**
|
|
2
|
-
*
|
|
3
|
-
*
|
|
2
|
+
* This code has been copy-pasted from:
|
|
3
|
+
* https://github.com/lirantal/anti-trojan-source
|
|
4
|
+
*
|
|
5
|
+
* WHY?
|
|
6
|
+
* Because of the high number of dependencies.
|
|
4
7
|
*/
|
|
5
|
-
|
|
8
|
+
// CONSTANTS
|
|
9
|
+
// Explicit list of dangerous confusable characters
|
|
10
|
+
const kExplicitConfusableChars = [
|
|
11
|
+
// ARABIC LETTER MARK
|
|
12
|
+
"\u061C",
|
|
13
|
+
// LEFT-TO-RIGHT MARK
|
|
14
|
+
"\u200E",
|
|
15
|
+
// RIGHT-TO-LEFT MARK
|
|
16
|
+
"\u200F",
|
|
17
|
+
// LEFT-TO-RIGHT EMBEDDING
|
|
6
18
|
"\u202A",
|
|
19
|
+
// RIGHT-TO-LEFT EMBEDDING
|
|
7
20
|
"\u202B",
|
|
21
|
+
// POP DIRECTIONAL FORMATTING
|
|
22
|
+
"\u202C",
|
|
23
|
+
// LEFT-TO-RIGHT OVERRIDE
|
|
8
24
|
"\u202D",
|
|
25
|
+
// RIGHT-TO-LEFT OVERRIDE
|
|
9
26
|
"\u202E",
|
|
10
|
-
|
|
27
|
+
// LEFT-TO-RIGHT ISOLATE
|
|
11
28
|
"\u2066",
|
|
29
|
+
// RIGHT-TO-LEFT ISOLATE
|
|
12
30
|
"\u2067",
|
|
31
|
+
// FIRST STRONG ISOLATE
|
|
13
32
|
"\u2068",
|
|
33
|
+
// POP DIRECTIONAL ISOLATE
|
|
14
34
|
"\u2069",
|
|
15
|
-
|
|
16
|
-
"\
|
|
17
|
-
|
|
35
|
+
// ZERO WIDTH SPACE
|
|
36
|
+
"\u200B",
|
|
37
|
+
// ZERO WIDTH NON-JOINER
|
|
38
|
+
"\u200C",
|
|
39
|
+
// ZERO WIDTH JOINER
|
|
40
|
+
"\u200D",
|
|
41
|
+
// WORD JOINER
|
|
42
|
+
"\u2060",
|
|
43
|
+
// INVISIBLE SEPARATOR
|
|
44
|
+
"\u2063",
|
|
45
|
+
// SOFT HYPHEN
|
|
46
|
+
"\u00AD",
|
|
47
|
+
// NO-BREAK SPACE
|
|
48
|
+
"\u00A0",
|
|
49
|
+
// VARIATION SELECTOR-1
|
|
50
|
+
"\uFE00",
|
|
51
|
+
// VARIATION SELECTOR-2
|
|
52
|
+
"\uFE01",
|
|
53
|
+
// VARIATION SELECTOR-3
|
|
54
|
+
"\uFE02",
|
|
55
|
+
// VARIATION SELECTOR-4
|
|
56
|
+
"\uFE03",
|
|
57
|
+
// VARIATION SELECTOR-5
|
|
58
|
+
"\uFE04",
|
|
59
|
+
// VARIATION SELECTOR-6
|
|
60
|
+
"\uFE05",
|
|
61
|
+
// VARIATION SELECTOR-7
|
|
62
|
+
"\uFE06",
|
|
63
|
+
// VARIATION SELECTOR-8
|
|
64
|
+
"\uFE07",
|
|
65
|
+
// VARIATION SELECTOR-9
|
|
66
|
+
"\uFE08",
|
|
67
|
+
// VARIATION SELECTOR-10
|
|
68
|
+
"\uFE09",
|
|
69
|
+
// VARIATION SELECTOR-11
|
|
70
|
+
"\uFE0A",
|
|
71
|
+
// VARIATION SELECTOR-12
|
|
72
|
+
"\uFE0B",
|
|
73
|
+
// VARIATION SELECTOR-13
|
|
74
|
+
"\uFE0C",
|
|
75
|
+
// VARIATION SELECTOR-14
|
|
76
|
+
"\uFE0D",
|
|
77
|
+
// VARIATION SELECTOR-15
|
|
78
|
+
"\uFE0E",
|
|
79
|
+
// VARIATION SELECTOR-16
|
|
80
|
+
"\uFE0F",
|
|
81
|
+
// ZERO WIDTH NO-BREAK SPACE (BOM)
|
|
82
|
+
"\uFEFF",
|
|
83
|
+
// MONGOLIAN VOWEL SEPARATOR
|
|
84
|
+
"\u180E"
|
|
85
|
+
];
|
|
86
|
+
// Combine all confusable characters
|
|
87
|
+
const kConfusableChars = [
|
|
88
|
+
...kExplicitConfusableChars,
|
|
89
|
+
...generateExtendedVariationSelectors()
|
|
18
90
|
];
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
91
|
+
// Generate Extended Variation Selectors (U+E0100 to U+E01EF)
|
|
92
|
+
// These are Variation Selectors Supplement - 240 characters
|
|
93
|
+
function* generateExtendedVariationSelectors() {
|
|
94
|
+
for (let codePoint = 0xe0100; codePoint <= 0xe01ef; codePoint++) {
|
|
95
|
+
yield String.fromCodePoint(codePoint);
|
|
96
|
+
}
|
|
97
|
+
}
|
|
98
|
+
export function verify(sourceTextToSearch) {
|
|
99
|
+
for (const confusableChar of kConfusableChars) {
|
|
100
|
+
if (sourceTextToSearch.includes(confusableChar)) {
|
|
22
101
|
return true;
|
|
23
102
|
}
|
|
24
103
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"trojan-source.js","sourceRoot":"","sources":["../../src/obfuscators/trojan-source.ts"],"names":[],"mappings":"AAAA
|
|
1
|
+
{"version":3,"file":"trojan-source.js","sourceRoot":"","sources":["../../src/obfuscators/trojan-source.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,YAAY;AACZ,mDAAmD;AACnD,MAAM,wBAAwB,GAAG;IAC/B,qBAAqB;IACrB,QAAQ;IACR,qBAAqB;IACrB,QAAQ;IACR,qBAAqB;IACrB,QAAQ;IACR,0BAA0B;IAC1B,QAAQ;IACR,0BAA0B;IAC1B,QAAQ;IACR,6BAA6B;IAC7B,QAAQ;IACR,yBAAyB;IACzB,QAAQ;IACR,yBAAyB;IACzB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,0BAA0B;IAC1B,QAAQ;IACR,mBAAmB;IACnB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,oBAAoB;IACpB,QAAQ;IACR,cAAc;IACd,QAAQ;IACR,sBAAsB;IACtB,QAAQ;IACR,cAAc;IACd,QAAQ;IACR,iBAAiB;IACjB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,uBAAuB;IACvB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,wBAAwB;IACxB,QAAQ;IACR,kCAAkC;IAClC,QAAQ;IACR,4BAA4B;IAC5B,QAAQ;CACT,CAAC;AACF,oCAAoC;AACpC,MAAM,gBAAgB,GAAG;IACvB,GAAG,wBAAwB;IAC3B,GAAG,kCAAkC,EAAE;CACxC,CAAC;AAEF,6DAA6D;AAC7D,4DAA4D;AAC5D,QAAQ,CAAC,CAAC,kCAAkC;IAC1C,KAAK,IAAI,SAAS,GAAG,OAAO,EAAE,SAAS,IAAI,OAAO,EAAE,SAAS,EAAE,EAAE,CAAC;QAChE,MAAM,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;IACxC,CAAC;AACH,CAAC;AAED,MAAM,UAAU,MAAM,CACpB,kBAA0B;IAE1B,KAAK,MAAM,cAAc,IAAI,gBAAgB,EAAE,CAAC;QAC9C,IAAI,kBAAkB,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YAChD,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isLiteral.d.ts","sourceRoot":"","sources":["../../src/probes/isLiteral.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;
|
|
1
|
+
{"version":3,"file":"isLiteral.d.ts","sourceRoot":"","sources":["../../src/probes/isLiteral.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAG9C,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAIlD;;;;;GAKG;AACH,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAIjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,EACrB,OAAO,EAAE;IAAE,UAAU,EAAE,UAAU,CAAC;CAAE,QAsCrC;;;;;;;AAED,wBAKE"}
|
package/dist/probes/isLiteral.js
CHANGED
|
@@ -5,19 +5,9 @@ import { Hex } from "@nodesecure/sec-literal";
|
|
|
5
5
|
// Import Internal Dependencies
|
|
6
6
|
import { SourceFile } from "../SourceFile.js";
|
|
7
7
|
import { generateWarning } from "../warnings.js";
|
|
8
|
-
|
|
9
|
-
// eslint-disable-next-line @stylistic/max-len
|
|
10
|
-
regexIPv4: /^(https?:\/\/)(?!127\.)(?!.*:(?:0{1,3}|25[6-9])\.)(?!.*:(?:25[6-9])\.(?:0{1,3}|25[6-9])\.)(?!.*:(?:25[6-9])\.(?:25[6-9])\.(?:0{1,3}|25[6-9])\.)(?!.*:(?:25[6-9])\.(?:25[6-9])\.(?:25[6-9])\.(?:0{1,3}|25[6-9]))((?:\d{1,2}|1\d{2}|2[0-4]\d|25[0-5])\.){3}(?:\d{1,2}|1\d{2}|2[0-4]\d|25[0-5])(?::\d{1,5})?(\/[^\s]*)?$/,
|
|
11
|
-
regexIPv6: /^(https?:\/\/)(\[[0-9A-Fa-f:]+\])(?::\d{1,5})?(\/[^\s]*)?$/
|
|
12
|
-
});
|
|
8
|
+
import { ShadyURL } from "../ShadyURL.js";
|
|
13
9
|
// CONSTANTS
|
|
14
10
|
const kNodeDeps = new Set(builtinModules);
|
|
15
|
-
const kShadyLinkRegExps = [
|
|
16
|
-
kMapRegexIps.regexIPv4,
|
|
17
|
-
kMapRegexIps.regexIPv6,
|
|
18
|
-
/(http[s]?:\/\/(bit\.ly|ipinfo\.io|httpbin\.org|api\.ipify\.org).*)$/,
|
|
19
|
-
/(http[s]?:\/\/.*\.(link|xyz|tk|ml|ga|cf|gq|pw|top|club|mw|bd|ke|am|sbs|date|quest|cd|bid|cd|ws|icu|cam|uno|email|stream))$/
|
|
20
|
-
];
|
|
21
11
|
/**
|
|
22
12
|
* @description Search for Literal AST Node
|
|
23
13
|
* @see https://github.com/estree/estree/blob/master/es5.md#literal
|
|
@@ -48,11 +38,9 @@ function main(node, options) {
|
|
|
48
38
|
}
|
|
49
39
|
// Else we are checking all other string with our suspect method
|
|
50
40
|
else {
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
return;
|
|
55
|
-
}
|
|
41
|
+
if (!ShadyURL.isSafe(node.value)) {
|
|
42
|
+
sourceFile.warnings.push(generateWarning("shady-link", { value: node.value, location }));
|
|
43
|
+
return;
|
|
56
44
|
}
|
|
57
45
|
sourceFile.analyzeLiteral(node);
|
|
58
46
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isLiteral.js","sourceRoot":"","sources":["../../src/probes/isLiteral.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAE7C,kCAAkC;AAClC,OAAO,EAAE,GAAG,EAAE,MAAM,yBAAyB,CAAC;AAG9C,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;
|
|
1
|
+
{"version":3,"file":"isLiteral.js","sourceRoot":"","sources":["../../src/probes/isLiteral.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAE7C,kCAAkC;AAClC,OAAO,EAAE,GAAG,EAAE,MAAM,yBAAyB,CAAC;AAG9C,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAG1C,YAAY;AACZ,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,cAAc,CAAC,CAAC;AAC1C;;;;;GAKG;AACH,SAAS,YAAY,CACnB,IAAiB;IAEjB,OAAO;QACL,IAAI,CAAC,IAAI,KAAK,SAAS,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ;KAC1D,CAAC;AACJ,CAAC;AAED,SAAS,IAAI,CACX,IAAqB,EACrB,OAAoC;IAEpC,MAAM,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC;IAC/B,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,IAAI,KAAK,CAAC,CAAC;IAEpC,yEAAyE;IACzE,IAAI,oBAAoB,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QAC1C,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,EAAE,CAAC;QACxD,UAAU,CAAC,YAAY,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;QAE7C,sEAAsE;QACtE,iGAAiG;QACjG,IAAI,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YACzB,UAAU,CAAC,aAAa,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC;YAC1C,UAAU,CAAC,QAAQ,CAAC,IAAI,CACtB,eAAe,CACb,eAAe,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,CAC3C,CACF,CAAC;QACJ,CAAC;aACI,IAAI,KAAK,KAAK,SAAS,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;YACxD,UAAU,CAAC,iBAAiB,CAAC,IAAI,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IACD,gEAAgE;SAC3D,CAAC;QACJ,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;YACjC,UAAU,CAAC,QAAQ,CAAC,IAAI,CACtB,eAAe,CACb,YAAY,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,QAAQ,EAAE,CAC9C,CACF,CAAC;YAEF,OAAO;QACT,CAAC;QAED,UAAU,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;IAClC,CAAC;AACH,CAAC;AAED,eAAe;IACb,IAAI,EAAE,WAAW;IACjB,YAAY;IACZ,IAAI;IACJ,YAAY,EAAE,KAAK;CACpB,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"RequireCallExpressionWalker.d.ts","sourceRoot":"","sources":["../../../src/probes/isRequire/RequireCallExpressionWalker.ts"],"names":[],"mappings":"AAUA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACtC,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AASpD,qBAAa,2BAA2B;;IACtC,MAAM,EAAE,cAAc,CAAC;IACvB,YAAY,cAAqB;IACjC,cAAc,UAAQ;gBAGpB,MAAM,EAAE,cAAc;IAKxB,KAAK;IAKL,IAAI,CACF,YAAY,EAAE,MAAM,CAAC,cAAc;;;;
|
|
1
|
+
{"version":3,"file":"RequireCallExpressionWalker.d.ts","sourceRoot":"","sources":["../../../src/probes/isRequire/RequireCallExpressionWalker.ts"],"names":[],"mappings":"AAUA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACtC,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AASpD,qBAAa,2BAA2B;;IACtC,MAAM,EAAE,cAAc,CAAC;IACvB,YAAY,cAAqB;IACjC,cAAc,UAAQ;gBAGpB,MAAM,EAAE,cAAc;IAKxB,KAAK;IAKL,IAAI,CACF,YAAY,EAAE,MAAM,CAAC,cAAc;;;;CAsGtC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"RequireCallExpressionWalker.js","sourceRoot":"","sources":["../../../src/probes/isRequire/RequireCallExpressionWalker.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,kCAAkC;AAClC,OAAO,EAAE,GAAG,EAAE,MAAM,yBAAyB,CAAC;AAC9C,OAAO,EACL,uBAAuB,EACvB,6BAA6B,EAC7B,0BAA0B,EAC3B,MAAM,8BAA8B,CAAC;AAEtC,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEpD,+BAA+B;AAC/B,OAAO,EACL,SAAS,EACT,gBAAgB,EACjB,MAAM,uBAAuB,CAAC;AAC/B,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,MAAM,OAAO,2BAA2B;IACtC,MAAM,CAAiB;IACvB,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;IACjC,cAAc,GAAG,IAAI,CAAC;IAEtB,YACE,MAAsB;QAEtB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED,KAAK;QACH,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QAC1B,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;IAC7B,CAAC;IAED,IAAI,CACF,YAAmC;QAEnC,IAAI,CAAC,KAAK,EAAE,CAAC;QAEb,6CAA6C;QAC7C,MAAM,IAAI,GAAG,IAAI,CAAC;QAClB,SAAS,CAAC,YAAY,EAAE,SAAS,KAAK,CAAC,IAAI;YACzC,IACE,CAAC,gBAAgB,CAAC,IAAI,CAAC;gBACvB,IAAI,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC,EAC3B,CAAC;gBACD,OAAO;YACT,CAAC;YAED,MAAM,UAAU,GAAG,IAA6B,CAAC;YACjD,MAAM,YAAY,GAAG,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAE,CAAC;YACjD,IACE,YAAY,CAAC,IAAI,KAAK,SAAS;gBAC/B,OAAO,YAAY,CAAC,KAAK,KAAK,QAAQ;gBACtC,GAAG,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,CAAC,EAC7B,CAAC;gBACD,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;gBACzE,IAAI,CAAC,IAAI,EAAE,CAAC;gBAEZ,OAAO;YACT,CAAC;YAED,MAAM,QAAQ,GAAG,UAAU,CAAC,MAAM,CAAC,IAAI,KAAK,kBAAkB,CAAC,CAAC;gBAC9D,CAAC,GAAG,6BAA6B,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;gBACjE,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC;YACzB,MAAM,cAAc,GAAG,IAAI,CAAC,MAAM,CAAC,qBAAqB,CAAC,QAAQ,CAAC,EAAE,sBAAsB,IAAI,QAAQ,CAAC;YACvG,QAAQ,cAAc,EAAE,CAAC;gBACvB,KAAK,MAAM;oBACT,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;oBAC7B,MAAM;gBACR,KAAK,aAAa;oBAChB,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;oBACnC,MAAM;gBACR,KAAK,iBAAiB;oBACpB,IAAI,CAAC,qBAAqB,CAAC,YAAY,CAAC,CAAC;oBACzC,MAAM;gBACR,KAAK,WAAW;
|
|
1
|
+
{"version":3,"file":"RequireCallExpressionWalker.js","sourceRoot":"","sources":["../../../src/probes/isRequire/RequireCallExpressionWalker.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,kCAAkC;AAClC,OAAO,EAAE,GAAG,EAAE,MAAM,yBAAyB,CAAC;AAC9C,OAAO,EACL,uBAAuB,EACvB,6BAA6B,EAC7B,0BAA0B,EAC3B,MAAM,8BAA8B,CAAC;AAEtC,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEpD,+BAA+B;AAC/B,OAAO,EACL,SAAS,EACT,gBAAgB,EACjB,MAAM,uBAAuB,CAAC;AAC/B,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD,MAAM,OAAO,2BAA2B;IACtC,MAAM,CAAiB;IACvB,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;IACjC,cAAc,GAAG,IAAI,CAAC;IAEtB,YACE,MAAsB;QAEtB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED,KAAK;QACH,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QAC1B,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;IAC7B,CAAC;IAED,IAAI,CACF,YAAmC;QAEnC,IAAI,CAAC,KAAK,EAAE,CAAC;QAEb,6CAA6C;QAC7C,MAAM,IAAI,GAAG,IAAI,CAAC;QAClB,SAAS,CAAC,YAAY,EAAE,SAAS,KAAK,CAAC,IAAI;YACzC,IACE,CAAC,gBAAgB,CAAC,IAAI,CAAC;gBACvB,IAAI,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC,EAC3B,CAAC;gBACD,OAAO;YACT,CAAC;YAED,MAAM,UAAU,GAAG,IAA6B,CAAC;YACjD,MAAM,YAAY,GAAG,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAE,CAAC;YACjD,IACE,YAAY,CAAC,IAAI,KAAK,SAAS;gBAC/B,OAAO,YAAY,CAAC,KAAK,KAAK,QAAQ;gBACtC,GAAG,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,CAAC,EAC7B,CAAC;gBACD,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;gBACzE,IAAI,CAAC,IAAI,EAAE,CAAC;gBAEZ,OAAO;YACT,CAAC;YAED,MAAM,QAAQ,GAAG,UAAU,CAAC,MAAM,CAAC,IAAI,KAAK,kBAAkB,CAAC,CAAC;gBAC9D,CAAC,GAAG,6BAA6B,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;gBACjE,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC;YACzB,MAAM,cAAc,GAAG,IAAI,CAAC,MAAM,CAAC,qBAAqB,CAAC,QAAQ,CAAC,EAAE,sBAAsB,IAAI,QAAQ,CAAC;YACvG,QAAQ,cAAc,EAAE,CAAC;gBACvB,KAAK,MAAM;oBACT,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;oBAC7B,MAAM;gBACR,KAAK,aAAa;oBAChB,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;oBACnC,MAAM;gBACR,KAAK,iBAAiB;oBACpB,IAAI,CAAC,qBAAqB,CAAC,YAAY,CAAC,CAAC;oBACzC,MAAM;gBACR,KAAK,WAAW,CAAC;gBACjB,KAAK,cAAc;oBACjB,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC;oBACjC,MAAM;YACV,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,OAAO;YACL,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,cAAc,EAAE,IAAI,CAAC,cAAc;SACpC,CAAC;IACJ,CAAC;IAED,WAAW,CACT,IAA2B;QAE3B,MAAM,aAAa,GAAG,0BAA0B,CAC9C,IAAI,EACJ;YACE,wBAAwB,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI;SACrF,CACF,CAAC;QAEF,IAAI,aAAa,KAAK,IAAI,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACvD,IAAI,CAAC,YAAY,CAAC,GAAG,CACnB,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC,CAAC,CAAE,EAAE,QAAQ,CAAC,CAAC,QAAQ,EAAE,CACvD,CAAC;QACJ,CAAC;IACH,CAAC;IAED,iBAAiB,CACf,IAA2B;QAE3B,MAAM,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC;QACjC,IAAI,OAAO,CAAC,IAAI,KAAK,iBAAiB,EAAE,CAAC;YACvC,MAAM,OAAO,GAAG,CAAC,GAAG,uBAAuB,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;YACtE,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACjC,CAAC;IACH,CAAC;IAED,qBAAqB,CACnB,IAAiB;QAEjB,IAAI,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC;YACpB,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACpC,CAAC;IACH,CAAC;IAED,eAAe,CACb,IAA2B;QAE3B,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;YACnD,OAAO;QACT,CAAC;QAED,MAAM,eAAe,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CACrC,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,KAAK,CAAC,CAC1C,CAAC;QACF,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;QACvC,IAAI,CAAC,cAAc,GAAG,KAAK,CAAC;IAC9B,CAAC;CACF"}
|
package/dist/warnings.d.ts
CHANGED
|
@@ -16,31 +16,37 @@ export declare const warnings: Readonly<{
|
|
|
16
16
|
"parsing-error": {
|
|
17
17
|
i18n: string;
|
|
18
18
|
severity: "Information";
|
|
19
|
+
experimental: false;
|
|
19
20
|
};
|
|
20
21
|
"unsafe-import": {
|
|
21
22
|
i18n: string;
|
|
22
23
|
severity: "Warning";
|
|
24
|
+
experimental: false;
|
|
23
25
|
};
|
|
24
26
|
"unsafe-regex": {
|
|
25
27
|
i18n: string;
|
|
26
28
|
severity: "Warning";
|
|
29
|
+
experimental: false;
|
|
27
30
|
};
|
|
28
31
|
"unsafe-stmt": {
|
|
29
|
-
code: string;
|
|
30
32
|
i18n: string;
|
|
31
33
|
severity: "Warning";
|
|
34
|
+
experimental: false;
|
|
32
35
|
};
|
|
33
36
|
"encoded-literal": {
|
|
34
37
|
i18n: string;
|
|
35
38
|
severity: "Information";
|
|
39
|
+
experimental: false;
|
|
36
40
|
};
|
|
37
41
|
"short-identifiers": {
|
|
38
42
|
i18n: string;
|
|
39
43
|
severity: "Warning";
|
|
44
|
+
experimental: false;
|
|
40
45
|
};
|
|
41
46
|
"suspicious-literal": {
|
|
42
47
|
i18n: string;
|
|
43
48
|
severity: "Warning";
|
|
49
|
+
experimental: false;
|
|
44
50
|
};
|
|
45
51
|
"suspicious-file": {
|
|
46
52
|
i18n: string;
|
package/dist/warnings.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"warnings.d.ts","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAGL,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AAGpC,MAAM,MAAM,mBAAmB,GAC3B,gBAAgB,CAAC;AAErB,MAAM,MAAM,WAAW,GACnB,eAAe,GACf,iBAAiB,GACjB,cAAc,GACd,aAAa,GACb,mBAAmB,GACnB,oBAAoB,GACpB,iBAAiB,GACjB,iBAAiB,GACjB,aAAa,GACb,YAAY,GACZ,gBAAgB,GAChB,eAAe,GACf,uBAAuB,GACvB,mBAAmB,GACnB,mBAAmB,CAAC;AAExB,MAAM,WAAW,OAAO,CAAC,CAAC,GAAG,WAAW;IACtC,IAAI,EAAE,CAAC,GAAG,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC;IACxB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,IAAI,GAAG,mBAAmB,GAAG,mBAAmB,EAAE,CAAC;IAC7D,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,aAAa,GAAG,SAAS,GAAG,UAAU,CAAC;IACjD,YAAY,CAAC,EAAE,OAAO,CAAC;CACxB;AAED,eAAO,MAAM,QAAQ
|
|
1
|
+
{"version":3,"file":"warnings.d.ts","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAGL,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AAGpC,MAAM,MAAM,mBAAmB,GAC3B,gBAAgB,CAAC;AAErB,MAAM,MAAM,WAAW,GACnB,eAAe,GACf,iBAAiB,GACjB,cAAc,GACd,aAAa,GACb,mBAAmB,GACnB,oBAAoB,GACpB,iBAAiB,GACjB,iBAAiB,GACjB,aAAa,GACb,YAAY,GACZ,gBAAgB,GAChB,eAAe,GACf,uBAAuB,GACvB,mBAAmB,GACnB,mBAAmB,CAAC;AAExB,MAAM,WAAW,OAAO,CAAC,CAAC,GAAG,WAAW;IACtC,IAAI,EAAE,CAAC,GAAG,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC;IACxB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,IAAI,GAAG,mBAAmB,GAAG,mBAAmB,EAAE,CAAC;IAC7D,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,aAAa,GAAG,SAAS,GAAG,UAAU,CAAC;IACjD,YAAY,CAAC,EAAE,OAAO,CAAC;CACxB;AAED,eAAO,MAAM,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA4EgE,CAAC;AAEtF,MAAM,WAAW,sBAAsB;IACrC,QAAQ,CAAC,EAAE,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC;IACxC,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,wBAAgB,eAAe,CAAC,CAAC,SAAS,WAAW,EACnD,IAAI,EAAE,CAAC,EACP,OAAO,EAAE,sBAAsB,GAC9B,OAAO,CAAC,CAAC,CAAC,CA0BZ"}
|
package/dist/warnings.js
CHANGED
|
@@ -4,32 +4,38 @@ import { notNullOrUndefined } from "./utils/notNullOrUndefined.js";
|
|
|
4
4
|
export const warnings = Object.freeze({
|
|
5
5
|
"parsing-error": {
|
|
6
6
|
i18n: "sast_warnings.parsing_error",
|
|
7
|
-
severity: "Information"
|
|
7
|
+
severity: "Information",
|
|
8
|
+
experimental: false
|
|
8
9
|
},
|
|
9
10
|
"unsafe-import": {
|
|
10
11
|
i18n: "sast_warnings.unsafe_import",
|
|
11
|
-
severity: "Warning"
|
|
12
|
+
severity: "Warning",
|
|
13
|
+
experimental: false
|
|
12
14
|
},
|
|
13
15
|
"unsafe-regex": {
|
|
14
16
|
i18n: "sast_warnings.unsafe_regex",
|
|
15
|
-
severity: "Warning"
|
|
17
|
+
severity: "Warning",
|
|
18
|
+
experimental: false
|
|
16
19
|
},
|
|
17
20
|
"unsafe-stmt": {
|
|
18
|
-
code: "unsafe-stmt",
|
|
19
21
|
i18n: "sast_warnings.unsafe_stmt",
|
|
20
|
-
severity: "Warning"
|
|
22
|
+
severity: "Warning",
|
|
23
|
+
experimental: false
|
|
21
24
|
},
|
|
22
25
|
"encoded-literal": {
|
|
23
26
|
i18n: "sast_warnings.encoded_literal",
|
|
24
|
-
severity: "Information"
|
|
27
|
+
severity: "Information",
|
|
28
|
+
experimental: false
|
|
25
29
|
},
|
|
26
30
|
"short-identifiers": {
|
|
27
31
|
i18n: "sast_warnings.short_identifiers",
|
|
28
|
-
severity: "Warning"
|
|
32
|
+
severity: "Warning",
|
|
33
|
+
experimental: false
|
|
29
34
|
},
|
|
30
35
|
"suspicious-literal": {
|
|
31
36
|
i18n: "sast_warnings.suspicious_literal",
|
|
32
|
-
severity: "Warning"
|
|
37
|
+
severity: "Warning",
|
|
38
|
+
experimental: false
|
|
33
39
|
},
|
|
34
40
|
"suspicious-file": {
|
|
35
41
|
i18n: "sast_warnings.suspicious_file",
|
package/dist/warnings.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"warnings.js","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EACL,eAAe,EACf,YAAY,EAEb,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAiCnE,MAAM,CAAC,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC;IACpC,eAAe,EAAE;QACf,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,aAAa;
|
|
1
|
+
{"version":3,"file":"warnings.js","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EACL,eAAe,EACf,YAAY,EAEb,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAiCnE,MAAM,CAAC,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC;IACpC,eAAe,EAAE;QACf,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,aAAa;QACvB,YAAY,EAAE,KAAK;KACpB;IACD,eAAe,EAAE;QACf,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,cAAc,EAAE;QACd,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,aAAa,EAAE;QACb,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,aAAa;QACvB,YAAY,EAAE,KAAK;KACpB;IACD,mBAAmB,EAAE;QACnB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,oBAAoB,EAAE;QACpB,IAAI,EAAE,kCAAkC;QACxC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,UAAU;QACpB,YAAY,EAAE,KAAK;KACpB;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,UAAU;QACpB,YAAY,EAAE,IAAI;KACnB;IACD,aAAa,EAAE;QACb,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,aAAa;QACvB,YAAY,EAAE,KAAK;KACpB;IACD,YAAY,EAAE;QACZ,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,gBAAgB,EAAE;QAChB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,IAAI;KACnB;IACD,gBAAgB,EAAE;QAChB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,IAAI;KACnB;IACD,uBAAuB,EAAE;QACvB,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,mBAAmB,EAAE;QACnB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;CACF,CAAoF,CAAC;AAStF,MAAM,UAAU,eAAe,CAC7B,IAAO,EACP,OAA+B;IAE/B,MAAM,EACJ,IAAI,GAAG,IAAI,EACX,KAAK,EACL,MAAM,GAAG,UAAU,EACpB,GAAG,OAAO,CAAC;IACZ,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,YAAY,EAAE,CAAC;IAEpD,IAAI,IAAI,KAAK,iBAAiB,EAAE,CAAC;QAC/B,OAAO;YACL,IAAI;YACJ,KAAK;YACL,QAAQ,EAAE,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;YACrC,MAAM;YACN,GAAG,QAAQ,CAAC,IAAI,CAAC;SAClB,CAAC;IACJ,CAAC;IAED,OAAO;QACL,IAAI;QACJ,QAAQ,EAAE,eAAe,CAAC,QAAQ,CAAC;QACnC,MAAM;QACN,GAAG,QAAQ,CAAC,IAAI,CAAC;QACjB,GAAG,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC7C,GAAG,CAAC,kBAAkB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;KAC7D,CAAC;AACJ,CAAC"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@nodesecure/js-x-ray",
|
|
3
|
-
"version": "
|
|
3
|
+
"version": "11.0.0",
|
|
4
4
|
"description": "JavaScript AST XRay analysis",
|
|
5
5
|
"type": "module",
|
|
6
6
|
"exports": {
|
|
@@ -23,9 +23,15 @@
|
|
|
23
23
|
"test-only": "tsx --test-reporter=spec --test \"./test/**/*.spec.ts\"",
|
|
24
24
|
"test": "c8 --all --src ./src -r html npm run test-only"
|
|
25
25
|
},
|
|
26
|
+
"publishConfig": {
|
|
27
|
+
"registry": "https://registry.npmjs.org",
|
|
28
|
+
"access": "public",
|
|
29
|
+
"provenance": true
|
|
30
|
+
},
|
|
26
31
|
"repository": {
|
|
27
32
|
"type": "git",
|
|
28
|
-
"url": "
|
|
33
|
+
"url": "https://github.com/NodeSecure/js-x-ray",
|
|
34
|
+
"directory": "workspaces/js-x-ray"
|
|
29
35
|
},
|
|
30
36
|
"keywords": [
|
|
31
37
|
"ast",
|
|
@@ -50,7 +56,8 @@
|
|
|
50
56
|
"@nodesecure/tracer": "^3.0.0",
|
|
51
57
|
"digraph-js": "2.2.4",
|
|
52
58
|
"frequency-set": "^2.1.0",
|
|
53
|
-
"
|
|
59
|
+
"ipaddr.js": "2.3.0",
|
|
60
|
+
"meriyah": "7.0.0",
|
|
54
61
|
"safe-regex": "^2.1.1",
|
|
55
62
|
"ts-pattern": "^5.0.6"
|
|
56
63
|
}
|