@nodesecure/js-x-ray 11.4.0 → 11.7.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/AstAnalyser.d.ts +1 -1
- package/dist/AstAnalyser.d.ts.map +1 -1
- package/dist/AstAnalyser.js +7 -5
- package/dist/AstAnalyser.js.map +1 -1
- package/dist/Deobfuscator.d.ts.map +1 -1
- package/dist/Deobfuscator.js +8 -7
- package/dist/Deobfuscator.js.map +1 -1
- package/dist/EntryFilesAnalyser.d.ts +1 -1
- package/dist/EntryFilesAnalyser.d.ts.map +1 -1
- package/dist/EntryFilesAnalyser.js +2 -2
- package/dist/EntryFilesAnalyser.js.map +1 -1
- package/dist/NodeCounter.js +1 -1
- package/dist/ProbeRunner.d.ts +1 -1
- package/dist/ProbeRunner.d.ts.map +1 -1
- package/dist/ProbeRunner.js +44 -21
- package/dist/ProbeRunner.js.map +1 -1
- package/dist/SourceFile.d.ts +3 -3
- package/dist/SourceFile.d.ts.map +1 -1
- package/dist/SourceFile.js +14 -8
- package/dist/SourceFile.js.map +1 -1
- package/dist/VariableTracer.d.ts +100 -0
- package/dist/VariableTracer.d.ts.map +1 -0
- package/dist/VariableTracer.js +463 -0
- package/dist/VariableTracer.js.map +1 -0
- package/dist/contants.d.ts +2 -0
- package/dist/contants.d.ts.map +1 -0
- package/dist/contants.js +3 -0
- package/dist/contants.js.map +1 -0
- package/dist/estree/functions/arrayExpression.d.ts +15 -0
- package/dist/estree/functions/arrayExpression.d.ts.map +1 -0
- package/dist/estree/functions/arrayExpression.js +69 -0
- package/dist/estree/functions/arrayExpression.js.map +1 -0
- package/dist/estree/functions/concatBinaryExpression.d.ts +15 -0
- package/dist/estree/functions/concatBinaryExpression.d.ts.map +1 -0
- package/dist/estree/functions/concatBinaryExpression.js +46 -0
- package/dist/estree/functions/concatBinaryExpression.js.map +1 -0
- package/dist/estree/functions/extractLogicalExpression.d.ts +6 -0
- package/dist/estree/functions/extractLogicalExpression.d.ts.map +1 -0
- package/dist/estree/functions/extractLogicalExpression.js +18 -0
- package/dist/estree/functions/extractLogicalExpression.js.map +1 -0
- package/dist/estree/functions/getCallExpressionArguments.d.ts +4 -0
- package/dist/estree/functions/getCallExpressionArguments.d.ts.map +1 -0
- package/dist/estree/functions/getCallExpressionArguments.js +52 -0
- package/dist/estree/functions/getCallExpressionArguments.js.map +1 -0
- package/dist/estree/functions/getCallExpressionIdentifier.d.ts +15 -0
- package/dist/estree/functions/getCallExpressionIdentifier.d.ts.map +1 -0
- package/dist/estree/functions/getCallExpressionIdentifier.js +24 -0
- package/dist/estree/functions/getCallExpressionIdentifier.js.map +1 -0
- package/dist/estree/functions/getMemberExpressionIdentifier.d.ts +7 -0
- package/dist/estree/functions/getMemberExpressionIdentifier.d.ts.map +1 -0
- package/dist/estree/functions/getMemberExpressionIdentifier.js +63 -0
- package/dist/estree/functions/getMemberExpressionIdentifier.js.map +1 -0
- package/dist/estree/functions/getVariableDeclarationIdentifiers.d.ts +13 -0
- package/dist/estree/functions/getVariableDeclarationIdentifiers.d.ts.map +1 -0
- package/dist/estree/functions/getVariableDeclarationIdentifiers.js +123 -0
- package/dist/estree/functions/getVariableDeclarationIdentifiers.js.map +1 -0
- package/dist/estree/functions/toLiteral.d.ts.map +1 -0
- package/dist/estree/functions/toLiteral.js.map +1 -0
- package/dist/estree/index.d.ts +11 -0
- package/dist/estree/index.d.ts.map +1 -0
- package/dist/estree/index.js +11 -0
- package/dist/estree/index.js.map +1 -0
- package/dist/estree/literal.d.ts +4 -0
- package/dist/estree/literal.d.ts.map +1 -0
- package/dist/estree/literal.js +7 -0
- package/dist/estree/literal.js.map +1 -0
- package/dist/{types/estree.d.ts → estree/types.d.ts} +5 -1
- package/dist/estree/types.d.ts.map +1 -0
- package/dist/{types/estree.js → estree/types.js} +4 -1
- package/dist/estree/types.js.map +1 -0
- package/dist/i18n/arabic.d.ts +29 -0
- package/dist/i18n/arabic.d.ts.map +1 -0
- package/dist/i18n/arabic.js +28 -0
- package/dist/i18n/arabic.js.map +1 -0
- package/dist/i18n/english.d.ts +29 -0
- package/dist/i18n/english.d.ts.map +1 -0
- package/dist/i18n/english.js +28 -0
- package/dist/i18n/english.js.map +1 -0
- package/dist/i18n/french.d.ts +29 -0
- package/dist/i18n/french.d.ts.map +1 -0
- package/dist/i18n/french.js +30 -0
- package/dist/i18n/french.js.map +1 -0
- package/dist/i18n/turkish.d.ts +29 -0
- package/dist/i18n/turkish.d.ts.map +1 -0
- package/dist/i18n/turkish.js +28 -0
- package/dist/i18n/turkish.js.map +1 -0
- package/dist/index.d.ts +5 -1
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +9 -1
- package/dist/index.js.map +1 -1
- package/dist/obfuscators/freejsobfuscator.d.ts +5 -0
- package/dist/obfuscators/freejsobfuscator.d.ts.map +1 -1
- package/dist/obfuscators/freejsobfuscator.js +1 -3
- package/dist/obfuscators/freejsobfuscator.js.map +1 -1
- package/dist/{JsSourceParser.d.ts → parsers/JsSourceParser.d.ts} +8 -0
- package/dist/parsers/JsSourceParser.d.ts.map +1 -0
- package/dist/{JsSourceParser.js → parsers/JsSourceParser.js} +9 -2
- package/dist/parsers/JsSourceParser.js.map +1 -0
- package/dist/parsers/TsSourceParser.d.ts +7 -0
- package/dist/parsers/TsSourceParser.d.ts.map +1 -0
- package/dist/parsers/TsSourceParser.js +25 -0
- package/dist/parsers/TsSourceParser.js.map +1 -0
- package/dist/pipelines/deobfuscate.d.ts.map +1 -1
- package/dist/pipelines/deobfuscate.js +1 -2
- package/dist/pipelines/deobfuscate.js.map +1 -1
- package/dist/probes/data-exfiltration.d.ts.map +1 -1
- package/dist/probes/data-exfiltration.js +5 -10
- package/dist/probes/data-exfiltration.js.map +1 -1
- package/dist/probes/isESMExport.d.ts +1 -1
- package/dist/probes/isFetch.d.ts.map +1 -1
- package/dist/probes/isFetch.js +2 -2
- package/dist/probes/isFetch.js.map +1 -1
- package/dist/probes/isImportDeclaration.d.ts +1 -1
- package/dist/probes/isLiteral.d.ts +1 -1
- package/dist/probes/isLiteral.d.ts.map +1 -1
- package/dist/probes/isLiteral.js +2 -4
- package/dist/probes/isLiteral.js.map +1 -1
- package/dist/probes/isMonkeyPatch.d.ts +17 -0
- package/dist/probes/isMonkeyPatch.d.ts.map +1 -0
- package/dist/probes/isMonkeyPatch.js +99 -0
- package/dist/probes/isMonkeyPatch.js.map +1 -0
- package/dist/probes/isPrototypePollution.d.ts +18 -0
- package/dist/probes/isPrototypePollution.d.ts.map +1 -0
- package/dist/probes/isPrototypePollution.js +31 -0
- package/dist/probes/isPrototypePollution.js.map +1 -0
- package/dist/probes/isRandom.d.ts +15 -0
- package/dist/probes/isRandom.d.ts.map +1 -0
- package/dist/probes/isRandom.js +29 -0
- package/dist/probes/isRandom.js.map +1 -0
- package/dist/probes/isRequire/InlinedRequire.d.ts.map +1 -1
- package/dist/probes/isRequire/InlinedRequire.js +1 -2
- package/dist/probes/isRequire/InlinedRequire.js.map +1 -1
- package/dist/probes/isRequire/RequireCallExpressionWalker.d.ts +1 -1
- package/dist/probes/isRequire/RequireCallExpressionWalker.d.ts.map +1 -1
- package/dist/probes/isRequire/RequireCallExpressionWalker.js +4 -6
- package/dist/probes/isRequire/RequireCallExpressionWalker.js.map +1 -1
- package/dist/probes/isRequire/isRequire.d.ts.map +1 -1
- package/dist/probes/isRequire/isRequire.js +6 -6
- package/dist/probes/isRequire/isRequire.js.map +1 -1
- package/dist/probes/isSerializeEnv.d.ts +1 -0
- package/dist/probes/isSerializeEnv.d.ts.map +1 -1
- package/dist/probes/isSerializeEnv.js +6 -9
- package/dist/probes/isSerializeEnv.js.map +1 -1
- package/dist/probes/isSyncIO.d.ts +2 -1
- package/dist/probes/isSyncIO.d.ts.map +1 -1
- package/dist/probes/isSyncIO.js +12 -12
- package/dist/probes/isSyncIO.js.map +1 -1
- package/dist/probes/isUnsafeCallee.d.ts.map +1 -1
- package/dist/probes/isUnsafeCallee.js +2 -2
- package/dist/probes/isUnsafeCallee.js.map +1 -1
- package/dist/probes/isUnsafeCommand.d.ts +2 -1
- package/dist/probes/isUnsafeCommand.d.ts.map +1 -1
- package/dist/probes/isUnsafeCommand.js +8 -14
- package/dist/probes/isUnsafeCommand.js.map +1 -1
- package/dist/probes/isWeakCrypto.d.ts +2 -1
- package/dist/probes/isWeakCrypto.d.ts.map +1 -1
- package/dist/probes/isWeakCrypto.js +7 -9
- package/dist/probes/isWeakCrypto.js.map +1 -1
- package/dist/probes/log-usage.d.ts +1 -1
- package/dist/probes/log-usage.d.ts.map +1 -1
- package/dist/probes/log-usage.js +7 -13
- package/dist/probes/log-usage.js.map +1 -1
- package/dist/probes/sql-injection.d.ts +2 -2
- package/dist/probes/sql-injection.d.ts.map +1 -1
- package/dist/probes/sql-injection.js +25 -8
- package/dist/probes/sql-injection.js.map +1 -1
- package/dist/utils/extractNode.js +1 -1
- package/dist/utils/getSubMemberExpressionSegments.d.ts +2 -0
- package/dist/utils/getSubMemberExpressionSegments.d.ts.map +1 -0
- package/dist/utils/getSubMemberExpressionSegments.js +9 -0
- package/dist/utils/getSubMemberExpressionSegments.js.map +1 -0
- package/dist/utils/hex.d.ts +14 -0
- package/dist/utils/hex.d.ts.map +1 -0
- package/dist/utils/hex.js +44 -0
- package/dist/utils/hex.js.map +1 -0
- package/dist/utils/index.d.ts +9 -0
- package/dist/utils/index.d.ts.map +1 -1
- package/dist/utils/index.js +9 -0
- package/dist/utils/index.js.map +1 -1
- package/dist/utils/isEvilIdentifier.d.ts +3 -0
- package/dist/utils/isEvilIdentifier.d.ts.map +1 -0
- package/dist/utils/isEvilIdentifier.js +11 -0
- package/dist/utils/isEvilIdentifier.js.map +1 -0
- package/dist/utils/isOneLineExpressionExport.d.ts.map +1 -1
- package/dist/utils/isOneLineExpressionExport.js +2 -1
- package/dist/utils/isOneLineExpressionExport.js.map +1 -1
- package/dist/utils/isStringBase64.d.ts +8 -0
- package/dist/utils/isStringBase64.d.ts.map +1 -0
- package/dist/utils/isStringBase64.js +18 -0
- package/dist/utils/isStringBase64.js.map +1 -0
- package/dist/utils/isSvg.d.ts +7 -0
- package/dist/utils/isSvg.d.ts.map +1 -0
- package/dist/utils/isSvg.js +26 -0
- package/dist/utils/isSvg.js.map +1 -0
- package/dist/utils/makePrefixRemover.d.ts +2 -0
- package/dist/utils/makePrefixRemover.d.ts.map +1 -0
- package/dist/utils/makePrefixRemover.js +13 -0
- package/dist/utils/makePrefixRemover.js.map +1 -0
- package/dist/utils/patterns.d.ts +24 -0
- package/dist/utils/patterns.d.ts.map +1 -0
- package/dist/utils/patterns.js +77 -0
- package/dist/utils/patterns.js.map +1 -0
- package/dist/utils/stringSuspicionScore.d.ts +12 -0
- package/dist/utils/stringSuspicionScore.d.ts.map +1 -0
- package/dist/utils/stringSuspicionScore.js +53 -0
- package/dist/utils/stringSuspicionScore.js.map +1 -0
- package/dist/utils/stripNodePrefix.d.ts +2 -0
- package/dist/utils/stripNodePrefix.d.ts.map +1 -0
- package/dist/utils/stripNodePrefix.js +11 -0
- package/dist/utils/stripNodePrefix.js.map +1 -0
- package/dist/walker/walker.sync.js +1 -1
- package/dist/warnings.d.ts +17 -2
- package/dist/warnings.d.ts.map +1 -1
- package/dist/warnings.js +15 -0
- package/dist/warnings.js.map +1 -1
- package/package.json +8 -7
- package/dist/JsSourceParser.d.ts.map +0 -1
- package/dist/JsSourceParser.js.map +0 -1
- package/dist/types/estree.d.ts.map +0 -1
- package/dist/types/estree.js.map +0 -1
- package/dist/utils/toLiteral.d.ts.map +0 -1
- package/dist/utils/toLiteral.js.map +0 -1
- /package/dist/{utils → estree/functions}/toLiteral.d.ts +0 -0
- /package/dist/{utils → estree/functions}/toLiteral.js +0 -0
|
@@ -10,7 +10,7 @@ import type { ProbeMainContext, ProbeContext } from "../ProbeRunner.ts";
|
|
|
10
10
|
* const { exec } = require("child_process");
|
|
11
11
|
* exec("csrutil status");
|
|
12
12
|
*/
|
|
13
|
-
declare function validateNode(
|
|
13
|
+
declare function validateNode(_node: ESTree.Node, ctx: ProbeContext): [boolean, any?];
|
|
14
14
|
declare function main(node: ESTree.CallExpression, ctx: ProbeMainContext): symbol | null;
|
|
15
15
|
declare function initialize(ctx: ProbeContext): void;
|
|
16
16
|
declare const _default: {
|
|
@@ -18,6 +18,7 @@ declare const _default: {
|
|
|
18
18
|
validateNode: typeof validateNode;
|
|
19
19
|
main: typeof main;
|
|
20
20
|
initialize: typeof initialize;
|
|
21
|
+
context: {};
|
|
21
22
|
};
|
|
22
23
|
export default _default;
|
|
23
24
|
//# sourceMappingURL=isUnsafeCommand.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isUnsafeCommand.d.ts","sourceRoot":"","sources":["../../src/probes/isUnsafeCommand.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"isUnsafeCommand.d.ts","sourceRoot":"","sources":["../../src/probes/isUnsafeCommand.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAItC,OAAO,KAAK,EACV,gBAAgB,EAChB,YAAY,EACb,MAAM,mBAAmB,CAAC;AAyD3B;;;;;;;;;GASG;AACH,iBAAS,YAAY,CACnB,KAAK,EAAE,MAAM,CAAC,IAAI,EAClB,GAAG,EAAE,YAAY,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAOjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,cAAc,EAC3B,GAAG,EAAE,gBAAgB,iBA8CtB;AAED,iBAAS,UAAU,CACjB,GAAG,EAAE,YAAY,QAUlB;;;;;;;;AAED,wBAME"}
|
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
// Import
|
|
2
|
-
import {
|
|
3
|
-
import {
|
|
1
|
+
// Import Internal Dependencies
|
|
2
|
+
import { toLiteral } from "../estree/index.js";
|
|
3
|
+
import { CALL_EXPRESSION_DATA } from "../contants.js";
|
|
4
|
+
import { isLiteral, isTemplateLiteral } from "../estree/types.js";
|
|
4
5
|
import { generateWarning } from "../warnings.js";
|
|
5
|
-
import { toLiteral } from "../utils/toLiteral.js";
|
|
6
6
|
// CONSTANTS
|
|
7
7
|
const kUnsafeCommands = ["csrutil", "uname", "ping", "curl"];
|
|
8
8
|
// CONSTANTS
|
|
@@ -49,15 +49,8 @@ function concatArrayArgs(command, node) {
|
|
|
49
49
|
* const { exec } = require("child_process");
|
|
50
50
|
* exec("csrutil status");
|
|
51
51
|
*/
|
|
52
|
-
function validateNode(
|
|
53
|
-
const
|
|
54
|
-
const id = getCallExpressionIdentifier(node, {
|
|
55
|
-
externalIdentifierLookup: (name) => tracer.literalIdentifiers.get(name) ?? null
|
|
56
|
-
});
|
|
57
|
-
if (id === null) {
|
|
58
|
-
return [false];
|
|
59
|
-
}
|
|
60
|
-
const data = tracer.getDataFromIdentifier(id);
|
|
52
|
+
function validateNode(_node, ctx) {
|
|
53
|
+
const data = ctx.context?.[CALL_EXPRESSION_DATA];
|
|
61
54
|
return data && kIdentifierOrMemberExps.includes(data.name) ? [
|
|
62
55
|
true,
|
|
63
56
|
data.name.slice("child_process.".length)
|
|
@@ -113,6 +106,7 @@ export default {
|
|
|
113
106
|
name: "isUnsafeCommand",
|
|
114
107
|
validateNode,
|
|
115
108
|
main,
|
|
116
|
-
initialize
|
|
109
|
+
initialize,
|
|
110
|
+
context: {}
|
|
117
111
|
};
|
|
118
112
|
//# sourceMappingURL=isUnsafeCommand.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isUnsafeCommand.js","sourceRoot":"","sources":["../../src/probes/isUnsafeCommand.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"isUnsafeCommand.js","sourceRoot":"","sources":["../../src/probes/isUnsafeCommand.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAK/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AACtD,OAAO,EACL,SAAS,EACT,iBAAiB,EAClB,MAAM,oBAAoB,CAAC;AAC5B,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAEjD,YAAY;AACZ,MAAM,eAAe,GAAG,CAAC,SAAS,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;AAE7D,YAAY;AACZ,MAAM,uBAAuB,GAAG;IAC9B,qBAAqB;IACrB,yBAAyB;IACzB,oBAAoB;IACpB,wBAAwB;CACzB,CAAC;AAEF,SAAS,eAAe,CACtB,OAAe;IAEf,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;AAClF,CAAC;AAED,SAAS,UAAU,CAAC,UAAmD;IACrE,IAAI,OAAO,GAAG,EAAE,CAAC;IACjB,QAAQ,UAAU,CAAC,IAAI,EAAE,CAAC;QACxB,KAAK,SAAS;YACZ,OAAO,GAAG,UAAU,CAAC,KAAe,CAAC;YACrC,MAAM;QACR,KAAK,iBAAiB;YACpB,OAAO,GAAG,SAAS,CAAC,UAAU,CAAC,CAAC;YAChC,MAAM;IACV,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,eAAe,CACtB,OAAe,EACf,IAA2B;IAE3B,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACrC,IAAI,gBAAgB,GAAG,OAAO,CAAC;IAE/B,IAAI,OAAO,IAAI,OAAO,CAAC,IAAI,KAAK,iBAAiB,EAAE,CAAC;QAClD,OAAO,CAAC,QAAQ;aACb,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;aACvC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YACnB,gBAAgB,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;QAC1C,CAAC,CAAC,CAAC;IACP,CAAC;IAED,OAAO,gBAAgB,CAAC;AAC1B,CAAC;AAED;;;;;;;;;GASG;AACH,SAAS,YAAY,CACnB,KAAkB,EAClB,GAAiB;IAEjB,MAAM,IAAI,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,oBAAoB,CAAC,CAAC;IAEjD,OAAO,IAAI,IAAI,uBAAuB,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC3D,IAAI;QACJ,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,MAAM,CAAC;KACzC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;AACd,CAAC;AAED,SAAS,IAAI,CACX,IAA2B,EAC3B,GAAqB;IAErB,MAAM,EAAE,UAAU,EAAE,IAAI,EAAE,UAAU,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC;IAEtD,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;IACrC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,EAAE,CAAC;QAC7D,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,OAAO,GAAG,UAAU,CAAC,UAAU,CAAC,CAAC;IAErC,mDAAmD;IACnD,IAAI,UAAU,CAAC,WAAW,KAAK,YAAY,EAAE,CAAC;QAC5C,yCAAyC;QACzC,IAAI,UAAU,KAAK,OAAO,IAAI,UAAU,KAAK,WAAW,EAAE,CAAC;YACzD,OAAO,GAAG,eAAe,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAC3C,CAAC;QAED,MAAM,OAAO,GAAG,eAAe,CAAC,gBAAgB,EAAE;YAChD,KAAK,EAAE,OAAO;YACd,QAAQ,EAAE,IAAI,CAAC,GAAG;SACnB,CAAC,CAAC;QACH,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAElC,OAAO,OAAO,CAAC,IAAI,CAAC;IACtB,CAAC;IAED,gDAAgD;IAChD,IAAI,eAAe,CAAC,OAAO,CAAC,EAAE,CAAC;QAC7B,qDAAqD;QACrD,sDAAsD;QACtD,kCAAkC;QAClC,IAAI,UAAU,KAAK,OAAO,IAAI,UAAU,KAAK,WAAW,EAAE,CAAC;YACzD,OAAO,GAAG,eAAe,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAC3C,CAAC;QAED,MAAM,OAAO,GAAG,eAAe,CAAC,gBAAgB,EAAE;YAChD,KAAK,EAAE,OAAO;YACd,QAAQ,EAAE,IAAI,CAAC,GAAG;SACnB,CAAC,CAAC;QACH,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAElC,OAAO,OAAO,CAAC,IAAI,CAAC;IACtB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,UAAU,CACjB,GAAiB;IAEjB,uBAAuB,CAAC,OAAO,CAAC,CAAC,qBAAqB,EAAE,EAAE;QACxD,MAAM,UAAU,GAAG,qBAAqB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAEvD,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,qBAAqB,EAAE;YACjD,2BAA2B,EAAE,IAAI;YACjC,UAAU;SACX,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED,eAAe;IACb,IAAI,EAAE,iBAAiB;IACvB,YAAY;IACZ,IAAI;IACJ,UAAU;IACV,OAAO,EAAE,EAAE;CACZ,CAAC"}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
import type { ESTree } from "meriyah";
|
|
2
2
|
import type { ProbeContext } from "../ProbeRunner.ts";
|
|
3
|
-
declare function validateNode(
|
|
3
|
+
declare function validateNode(_node: ESTree.Node, ctx: ProbeContext): [boolean, any?];
|
|
4
4
|
declare function initialize(ctx: ProbeContext): void;
|
|
5
5
|
declare function main(node: ESTree.CallExpression, ctx: ProbeContext): void;
|
|
6
6
|
declare const _default: {
|
|
@@ -9,6 +9,7 @@ declare const _default: {
|
|
|
9
9
|
main: typeof main;
|
|
10
10
|
initialize: typeof initialize;
|
|
11
11
|
breakOnMatch: boolean;
|
|
12
|
+
context: {};
|
|
12
13
|
};
|
|
13
14
|
export default _default;
|
|
14
15
|
//# sourceMappingURL=isWeakCrypto.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isWeakCrypto.d.ts","sourceRoot":"","sources":["../../src/probes/isWeakCrypto.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"isWeakCrypto.d.ts","sourceRoot":"","sources":["../../src/probes/isWeakCrypto.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAgBtD,iBAAS,YAAY,CACnB,KAAK,EAAE,MAAM,CAAC,IAAI,EAClB,GAAG,EAAE,YAAY,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAUjB;AAED,iBAAS,UAAU,CACjB,GAAG,EAAE,YAAY,QAQlB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,cAAc,EAC3B,GAAG,EAAE,YAAY,QAYlB;;;;;;;;;AAED,wBAOE"}
|
|
@@ -1,6 +1,5 @@
|
|
|
1
|
-
|
|
2
|
-
import {
|
|
3
|
-
import { isLiteral } from "../types/estree.js";
|
|
1
|
+
import { CALL_EXPRESSION_DATA } from "../contants.js";
|
|
2
|
+
import { isLiteral } from "../estree/types.js";
|
|
4
3
|
import { generateWarning } from "../warnings.js";
|
|
5
4
|
// CONSTANTS
|
|
6
5
|
const kWeakAlgorithms = new Set([
|
|
@@ -10,15 +9,13 @@ const kWeakAlgorithms = new Set([
|
|
|
10
9
|
"md4",
|
|
11
10
|
"md2"
|
|
12
11
|
]);
|
|
13
|
-
function validateNode(
|
|
12
|
+
function validateNode(_node, ctx) {
|
|
14
13
|
const { tracer } = ctx.sourceFile;
|
|
15
|
-
|
|
16
|
-
if (id === null || !tracer.importedModules.has("crypto")) {
|
|
14
|
+
if (!tracer.importedModules.has("crypto")) {
|
|
17
15
|
return [false];
|
|
18
16
|
}
|
|
19
|
-
const data = tracer.getDataFromIdentifier(id);
|
|
20
17
|
return [
|
|
21
|
-
|
|
18
|
+
ctx.context[CALL_EXPRESSION_DATA]?.identifierOrMemberExpr === "crypto.createHash"
|
|
22
19
|
];
|
|
23
20
|
}
|
|
24
21
|
function initialize(ctx) {
|
|
@@ -41,6 +38,7 @@ export default {
|
|
|
41
38
|
validateNode,
|
|
42
39
|
main,
|
|
43
40
|
initialize,
|
|
44
|
-
breakOnMatch: false
|
|
41
|
+
breakOnMatch: false,
|
|
42
|
+
context: {}
|
|
45
43
|
};
|
|
46
44
|
//# sourceMappingURL=isWeakCrypto.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isWeakCrypto.js","sourceRoot":"","sources":["../../src/probes/isWeakCrypto.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"isWeakCrypto.js","sourceRoot":"","sources":["../../src/probes/isWeakCrypto.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AACtD,OAAO,EACL,SAAS,EACV,MAAM,oBAAoB,CAAC;AAC5B,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAEjD,YAAY;AACZ,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IAC9B,KAAK;IACL,MAAM;IACN,WAAW;IACX,KAAK;IACL,KAAK;CACN,CAAC,CAAC;AAEH,SAAS,YAAY,CACnB,KAAkB,EAClB,GAAiB;IAEjB,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,UAAU,CAAC;IAElC,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC1C,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,OAAO;QACL,GAAG,CAAC,OAAQ,CAAC,oBAAoB,CAAC,EAAE,sBAAsB,KAAK,mBAAmB;KACnF,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CACjB,GAAiB;IAEjB,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,UAAU,CAAC;IAElC,MAAM,CAAC,KAAK,CAAC,mBAAmB,EAAE;QAChC,2BAA2B,EAAE,IAAI;QACjC,UAAU,EAAE,QAAQ;KACrB,CAAC,CAAC;AACL,CAAC;AAED,SAAS,IAAI,CACX,IAA2B,EAC3B,GAAiB;IAEjB,MAAM,EAAE,UAAU,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAEjC,IAAI,SAAS,CAAC,GAAG,CAAC,IAAI,eAAe,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;QACrD,MAAM,OAAO,GAAG,eAAe,CAC7B,aAAa,EACb,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,CACzC,CAAC;QACF,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACpC,CAAC;AACH,CAAC;AAED,eAAe;IACb,IAAI,EAAE,cAAc;IACpB,YAAY;IACZ,IAAI;IACJ,UAAU;IACV,YAAY,EAAE,KAAK;IACnB,OAAO,EAAE,EAAE;CACZ,CAAC"}
|
|
@@ -2,7 +2,7 @@ import type { ESTree } from "meriyah";
|
|
|
2
2
|
import type { ProbeContext, ProbeMainContext } from "../ProbeRunner.ts";
|
|
3
3
|
import { type SourceArrayLocation } from "../utils/toArrayLocation.ts";
|
|
4
4
|
type LogUsageContextDef = Record<string, SourceArrayLocation[]>;
|
|
5
|
-
declare function validateNode(
|
|
5
|
+
declare function validateNode(_node: ESTree.Node, ctx: ProbeContext): [boolean, any?];
|
|
6
6
|
declare function initialize(ctx: ProbeContext): void;
|
|
7
7
|
declare function main(node: ESTree.CallExpression, ctx: ProbeMainContext<LogUsageContextDef>): void;
|
|
8
8
|
declare function finalize(ctx: ProbeContext<LogUsageContextDef>): void;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"log-usage.d.ts","sourceRoot":"","sources":["../../src/probes/log-usage.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"log-usage.d.ts","sourceRoot":"","sources":["../../src/probes/log-usage.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,KAAK,EAAE,YAAY,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAGxE,OAAO,EAAmB,KAAK,mBAAmB,EAAE,MAAM,6BAA6B,CAAC;AAKxF,KAAK,kBAAkB,GAAG,MAAM,CAAC,MAAM,EAAE,mBAAmB,EAAE,CAAC,CAAC;AAEhE,iBAAS,YAAY,CACnB,KAAK,EAAE,MAAM,CAAC,IAAI,EAClB,GAAG,EAAE,YAAY,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAMjB;AAED,iBAAS,UAAU,CACjB,GAAG,EAAE,YAAY,QASlB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,cAAc,EAC3B,GAAG,EAAE,gBAAgB,CAAC,kBAAkB,CAAC,QAU1C;AAED,iBAAS,QAAQ,CAAC,GAAG,EAAE,YAAY,CAAC,kBAAkB,CAAC,QAOtD;;;;;;;;;;AAED,wBAQE"}
|
package/dist/probes/log-usage.js
CHANGED
|
@@ -1,20 +1,14 @@
|
|
|
1
|
-
|
|
2
|
-
import { getCallExpressionIdentifier } from "@nodesecure/estree-ast-utils";
|
|
1
|
+
import { CALL_EXPRESSION_DATA } from "../contants.js";
|
|
3
2
|
import { generateWarning } from "../warnings.js";
|
|
4
3
|
import { toArrayLocation } from "../utils/toArrayLocation.js";
|
|
5
4
|
// CONSTANTS
|
|
6
5
|
const kLogUsageMethods = new Set(["console.log", "console.info", "console.warn", "console.error", "console.debug"]);
|
|
7
|
-
function validateNode(
|
|
8
|
-
const
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
const data = tracer.getDataFromIdentifier(id);
|
|
14
|
-
return [data !== null &&
|
|
15
|
-
Boolean(data.identifierOrMemberExpr) &&
|
|
16
|
-
kLogUsageMethods.has(data.identifierOrMemberExpr),
|
|
17
|
-
data?.identifierOrMemberExpr];
|
|
6
|
+
function validateNode(_node, ctx) {
|
|
7
|
+
const identifierOrMemberExpr = ctx.context?.[CALL_EXPRESSION_DATA]?.identifierOrMemberExpr;
|
|
8
|
+
return [
|
|
9
|
+
kLogUsageMethods.has(identifierOrMemberExpr),
|
|
10
|
+
identifierOrMemberExpr
|
|
11
|
+
];
|
|
18
12
|
}
|
|
19
13
|
function initialize(ctx) {
|
|
20
14
|
const { sourceFile } = ctx;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"log-usage.js","sourceRoot":"","sources":["../../src/probes/log-usage.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"log-usage.js","sourceRoot":"","sources":["../../src/probes/log-usage.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AACtD,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EAAE,eAAe,EAA4B,MAAM,6BAA6B,CAAC;AAExF,YAAY;AACZ,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,aAAa,EAAE,cAAc,EAAE,cAAc,EAAE,eAAe,EAAE,eAAe,CAAC,CAAC,CAAC;AAIpH,SAAS,YAAY,CACnB,KAAkB,EAClB,GAAiB;IAEjB,MAAM,sBAAsB,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,oBAAoB,CAAC,EAAE,sBAAsB,CAAC;IAE3F,OAAO;QACL,gBAAgB,CAAC,GAAG,CAAC,sBAAsB,CAAC;QAC5C,sBAAsB;KAAC,CAAC;AAC5B,CAAC;AAED,SAAS,UAAU,CACjB,GAAiB;IAEjB,MAAM,EAAE,UAAU,EAAE,GAAG,GAAG,CAAC;IAE3B,KAAK,MAAM,cAAc,IAAI,gBAAgB,EAAE,CAAC;QAC9C,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,cAAc,EAAE;YACtC,2BAA2B,EAAE,IAAI;SAClC,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,SAAS,IAAI,CACX,IAA2B,EAC3B,GAAyC;IAEzC,MAAM,YAAY,GAAG,GAAG,CAAC,IAAI,CAAC;IAC9B,MAAM,aAAa,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,YAAY,CAAC,CAAC;IAClD,IAAI,aAAa,EAAE,CAAC;QAClB,aAAa,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,IAAI,SAAS,CAAC,CAAC,CAAC;IAC7D,CAAC;SACI,CAAC;QACJ,GAAG,CAAC,OAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,IAAI,SAAS,CAAC,CAAC,CAAC;IACxE,CAAC;AACH,CAAC;AAED,SAAS,QAAQ,CAAC,GAAqC;IACrD,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC;IACpC,IAAI,OAAO,IAAI,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/C,MAAM,OAAO,GAAG,eAAe,CAAC,WAAW,EACzC,EAAE,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC9C,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,GAAG,OAAO,EAAE,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;IACpF,CAAC;AACH,CAAC;AAED,eAAe;IACb,IAAI,EAAE,WAAW;IACjB,YAAY;IACZ,UAAU;IACV,IAAI;IACJ,QAAQ;IACR,YAAY,EAAE,KAAK;IACnB,OAAO,EAAE,EAAE;CACZ,CAAC"}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
import type { ESTree } from "meriyah";
|
|
2
|
-
import type { ProbeMainContext } from "../ProbeRunner.ts";
|
|
3
|
-
declare function validateNode(node: ESTree.Node): [boolean, any?];
|
|
2
|
+
import type { ProbeMainContext, ProbeContext } from "../ProbeRunner.ts";
|
|
3
|
+
declare function validateNode(node: ESTree.Node, { sourceFile: { tracer } }: ProbeContext): [boolean, any?];
|
|
4
4
|
declare function main(node: ESTree.TemplateLiteral, ctx: ProbeMainContext): void;
|
|
5
5
|
declare const _default: {
|
|
6
6
|
name: string;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sql-injection.d.ts","sourceRoot":"","sources":["../../src/probes/sql-injection.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;
|
|
1
|
+
{"version":3,"file":"sql-injection.d.ts","sourceRoot":"","sources":["../../src/probes/sql-injection.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAItC,OAAO,KAAK,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAMxE,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,EACjB,EAAE,UAAU,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,YAAY,GACvC,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAqCjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,eAAe,EAC5B,GAAG,EAAE,gBAAgB,QAQtB;;;;;;;AAED,wBAKE"}
|
|
@@ -1,18 +1,35 @@
|
|
|
1
|
-
|
|
1
|
+
// Import Internal Dependencies
|
|
2
|
+
import { toLiteral } from "../estree/index.js";
|
|
2
3
|
import { generateWarning } from "../warnings.js";
|
|
3
4
|
// CONSTANTS
|
|
4
5
|
const kSqlInjectionRegex = /(select\s+.*\s+from|insert\s+into|delete\s+from|update\s+.*\s+set)/i;
|
|
5
|
-
function validateNode(node) {
|
|
6
|
+
function validateNode(node, { sourceFile: { tracer } }) {
|
|
6
7
|
if (node.type !== "CallExpression") {
|
|
7
8
|
return [false];
|
|
8
9
|
}
|
|
9
10
|
for (const argNode of node.arguments) {
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
11
|
+
switch (argNode.type) {
|
|
12
|
+
case "Identifier": {
|
|
13
|
+
if (!tracer.literalIdentifiers.has(argNode.name)) {
|
|
14
|
+
break;
|
|
15
|
+
}
|
|
16
|
+
const literalIdentifier = tracer.literalIdentifiers.get(argNode.name);
|
|
17
|
+
if (literalIdentifier.type !== "TemplateLiteral" ||
|
|
18
|
+
!kSqlInjectionRegex.test(literalIdentifier.value)) {
|
|
19
|
+
break;
|
|
20
|
+
}
|
|
21
|
+
return [true, tracer.literalIdentifiers.get(argNode.name)?.value];
|
|
22
|
+
}
|
|
23
|
+
case "TemplateLiteral": {
|
|
24
|
+
if (argNode.expressions.length === 0) {
|
|
25
|
+
break;
|
|
26
|
+
}
|
|
27
|
+
const literal = toLiteral(argNode);
|
|
28
|
+
if (!kSqlInjectionRegex.test(literal)) {
|
|
29
|
+
break;
|
|
30
|
+
}
|
|
31
|
+
return [true, literal];
|
|
32
|
+
}
|
|
16
33
|
}
|
|
17
34
|
}
|
|
18
35
|
return [false];
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sql-injection.js","sourceRoot":"","sources":["../../src/probes/sql-injection.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"sql-injection.js","sourceRoot":"","sources":["../../src/probes/sql-injection.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAE/C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAEjD,YAAY;AACZ,MAAM,kBAAkB,GAAG,qEAAqE,CAAC;AAEjG,SAAS,YAAY,CACnB,IAAiB,EACjB,EAAE,UAAU,EAAE,EAAE,MAAM,EAAE,EAAgB;IAExC,IAAI,IAAI,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;QACnC,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;QACrC,QAAQ,OAAO,CAAC,IAAI,EAAE,CAAC;YACrB,KAAK,YAAY,CAAC,CAAC,CAAC;gBAClB,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;oBACjD,MAAM;gBACR,CAAC;gBAED,MAAM,iBAAiB,GAAG,MAAM,CAAC,kBAAkB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;gBAEtE,IAAI,iBAAkB,CAAC,IAAI,KAAK,iBAAiB;oBAC/C,CAAC,kBAAkB,CAAC,IAAI,CAAC,iBAAkB,CAAC,KAAK,CAAC,EAAE,CAAC;oBACrD,MAAM;gBACR,CAAC;gBAED,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC,kBAAkB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,KAAK,CAAC,CAAC;YACpE,CAAC;YAED,KAAK,iBAAiB,CAAC,CAAC,CAAC;gBACvB,IAAI,OAAO,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBACrC,MAAM;gBACR,CAAC;gBACD,MAAM,OAAO,GAAG,SAAS,CAAC,OAAO,CAAC,CAAC;gBACnC,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBACtC,MAAM;gBACR,CAAC;gBAED,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,CAAC,KAAK,CAAC,CAAC;AACjB,CAAC;AAED,SAAS,IAAI,CACX,IAA4B,EAC5B,GAAqB;IAErB,GAAG,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,CAC1B,eAAe,CAAC,eAAe,EAAE;QAC/B,KAAK,EAAE,GAAG,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,GAAG;KACnB,CAAC,CACH,CAAC;AACJ,CAAC;AAED,eAAe;IACb,IAAI,EAAE,eAAe;IACrB,YAAY;IACZ,IAAI;IACJ,YAAY,EAAE,KAAK;CACpB,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"getSubMemberExpressionSegments.d.ts","sourceRoot":"","sources":["../../src/utils/getSubMemberExpressionSegments.ts"],"names":[],"mappings":"AAAA,wBAAiB,8BAA8B,CAC7C,wBAAwB,EAAE,MAAM,GAC/B,gBAAgB,CAAC,MAAM,CAAC,CAQ1B"}
|
|
@@ -0,0 +1,9 @@
|
|
|
1
|
+
export function* getSubMemberExpressionSegments(memberExpressionFullpath) {
|
|
2
|
+
const identifiers = memberExpressionFullpath.split(".");
|
|
3
|
+
const segments = [];
|
|
4
|
+
for (let i = 0; i < identifiers.length - 1; i++) {
|
|
5
|
+
segments.push(identifiers[i]);
|
|
6
|
+
yield segments.join(".");
|
|
7
|
+
}
|
|
8
|
+
}
|
|
9
|
+
//# sourceMappingURL=getSubMemberExpressionSegments.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"getSubMemberExpressionSegments.js","sourceRoot":"","sources":["../../src/utils/getSubMemberExpressionSegments.ts"],"names":[],"mappings":"AAAA,MAAM,SAAS,CAAC,CAAC,8BAA8B,CAC7C,wBAAgC;IAEhC,MAAM,WAAW,GAAG,wBAAwB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACxD,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAChD,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC;QAC9B,MAAM,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC3B,CAAC;AACH,CAAC"}
|
|
@@ -0,0 +1,14 @@
|
|
|
1
|
+
import type { ESTree } from "meriyah";
|
|
2
|
+
export declare const CONSTANTS: Readonly<{
|
|
3
|
+
SAFE_HEXA_VALUES: string[];
|
|
4
|
+
UNSAFE_HEXA_VALUES: string[];
|
|
5
|
+
}>;
|
|
6
|
+
/**
|
|
7
|
+
* @description detect if the given string is an Hexadecimal value
|
|
8
|
+
*/
|
|
9
|
+
export declare function isHex(anyValue: ESTree.Literal | string): boolean;
|
|
10
|
+
/**
|
|
11
|
+
* @description detect if the given string is a safe Hexadecimal value
|
|
12
|
+
*/
|
|
13
|
+
export declare function isSafe(anyValue: ESTree.Literal | string): boolean;
|
|
14
|
+
//# sourceMappingURL=hex.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"hex.d.ts","sourceRoot":"","sources":["../../src/utils/hex.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAoBtC,eAAO,MAAM,SAAS;;;EAGpB,CAAC;AAEH;;GAEG;AACH,wBAAgB,KAAK,CACnB,QAAQ,EAAE,MAAM,CAAC,OAAO,GAAG,MAAM,GAChC,OAAO,CAIT;AAED;;GAEG;AACH,wBAAgB,MAAM,CACpB,QAAQ,EAAE,MAAM,CAAC,OAAO,GAAG,MAAM,GAChC,OAAO,CAkBT"}
|
|
@@ -0,0 +1,44 @@
|
|
|
1
|
+
// Import Internal Dependencies
|
|
2
|
+
import { toValue, toRaw } from "../estree/index.js";
|
|
3
|
+
import { stringCharDiversity } from "./stringSuspicionScore.js";
|
|
4
|
+
// CONSTANTS
|
|
5
|
+
const kUnsafeHexValues = new Set([
|
|
6
|
+
"require",
|
|
7
|
+
"length"
|
|
8
|
+
].map((value) => Buffer.from(value).toString("hex")));
|
|
9
|
+
const kSafeHexValues = new Set([
|
|
10
|
+
"0123456789",
|
|
11
|
+
"123456789",
|
|
12
|
+
"abcdef",
|
|
13
|
+
"abc123456789",
|
|
14
|
+
"0123456789abcdef",
|
|
15
|
+
"abcdef0123456789abcdef"
|
|
16
|
+
]);
|
|
17
|
+
export const CONSTANTS = Object.freeze({
|
|
18
|
+
SAFE_HEXA_VALUES: [...kSafeHexValues],
|
|
19
|
+
UNSAFE_HEXA_VALUES: [...kUnsafeHexValues]
|
|
20
|
+
});
|
|
21
|
+
/**
|
|
22
|
+
* @description detect if the given string is an Hexadecimal value
|
|
23
|
+
*/
|
|
24
|
+
export function isHex(anyValue) {
|
|
25
|
+
const value = toValue(anyValue);
|
|
26
|
+
return typeof value === "string" && /^[0-9A-Fa-f]{4,}$/g.test(value);
|
|
27
|
+
}
|
|
28
|
+
/**
|
|
29
|
+
* @description detect if the given string is a safe Hexadecimal value
|
|
30
|
+
*/
|
|
31
|
+
export function isSafe(anyValue) {
|
|
32
|
+
const rawValue = toRaw(anyValue);
|
|
33
|
+
if (typeof rawValue === "undefined" || kUnsafeHexValues.has(rawValue)) {
|
|
34
|
+
return false;
|
|
35
|
+
}
|
|
36
|
+
const charCount = stringCharDiversity(rawValue);
|
|
37
|
+
if (/^([0-9]+|[a-z]+|[A-Z]+)$/g.test(rawValue)
|
|
38
|
+
|| rawValue.length <= 5
|
|
39
|
+
|| charCount <= 2) {
|
|
40
|
+
return true;
|
|
41
|
+
}
|
|
42
|
+
return [...kSafeHexValues].some((value) => rawValue.toLowerCase().startsWith(value));
|
|
43
|
+
}
|
|
44
|
+
//# sourceMappingURL=hex.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"hex.js","sourceRoot":"","sources":["../../src/utils/hex.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,oBAAoB,CAAC;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,2BAA2B,CAAC;AAEhE,YAAY;AACZ,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC;IAC/B,SAAS;IACT,QAAQ;CACT,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AACtD,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC;IAC7B,YAAY;IACZ,WAAW;IACX,QAAQ;IACR,cAAc;IACd,kBAAkB;IAClB,wBAAwB;CACzB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC;IACrC,gBAAgB,EAAE,CAAC,GAAG,cAAc,CAAC;IACrC,kBAAkB,EAAE,CAAC,GAAG,gBAAgB,CAAC;CAC1C,CAAC,CAAC;AAEH;;GAEG;AACH,MAAM,UAAU,KAAK,CACnB,QAAiC;IAEjC,MAAM,KAAK,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;IAEhC,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,oBAAoB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;AACvE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,MAAM,CACpB,QAAiC;IAEjC,MAAM,QAAQ,GAAG,KAAK,CAAC,QAAQ,CAAC,CAAC;IACjC,IAAI,OAAO,QAAQ,KAAK,WAAW,IAAI,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACtE,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,SAAS,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC;IAChD,IACE,2BAA2B,CAAC,IAAI,CAAC,QAAQ,CAAC;WACvC,QAAQ,CAAC,MAAM,IAAI,CAAC;WACpB,SAAS,IAAI,CAAC,EACjB,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO,CAAC,GAAG,cAAc,CAAC,CAAC,IAAI,CAC7B,CAAC,KAAK,EAAE,EAAE,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,CACpD,CAAC;AACJ,CAAC"}
|
package/dist/utils/index.d.ts
CHANGED
|
@@ -3,4 +3,13 @@ export * from "./isMinifiedCode.ts";
|
|
|
3
3
|
export * from "./isOneLineExpressionExport.ts";
|
|
4
4
|
export * from "./notNullOrUndefined.ts";
|
|
5
5
|
export * from "./toArrayLocation.ts";
|
|
6
|
+
export * from "./isEvilIdentifier.ts";
|
|
7
|
+
export * from "./stripNodePrefix.ts";
|
|
8
|
+
export * from "./getSubMemberExpressionSegments.ts";
|
|
9
|
+
export * from "./makePrefixRemover.ts";
|
|
10
|
+
export * from "./stringSuspicionScore.ts";
|
|
11
|
+
export * from "./isSvg.ts";
|
|
12
|
+
export * from "./isStringBase64.ts";
|
|
13
|
+
export * from "./patterns.ts";
|
|
14
|
+
export * as Hex from "./hex.ts";
|
|
6
15
|
//# sourceMappingURL=index.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC;AACjC,cAAc,qBAAqB,CAAC;AACpC,cAAc,gCAAgC,CAAC;AAC/C,cAAc,yBAAyB,CAAC;AACxC,cAAc,sBAAsB,CAAC"}
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC;AACjC,cAAc,qBAAqB,CAAC;AACpC,cAAc,gCAAgC,CAAC;AAC/C,cAAc,yBAAyB,CAAC;AACxC,cAAc,sBAAsB,CAAC;AACrC,cAAc,uBAAuB,CAAC;AACtC,cAAc,sBAAsB,CAAC;AACrC,cAAc,qCAAqC,CAAC;AACpD,cAAc,wBAAwB,CAAC;AACvC,cAAc,2BAA2B,CAAC;AAC1C,cAAc,YAAY,CAAC;AAC3B,cAAc,qBAAqB,CAAC;AACpC,cAAc,eAAe,CAAC;AAC9B,OAAO,KAAK,GAAG,MAAM,UAAU,CAAC"}
|
package/dist/utils/index.js
CHANGED
|
@@ -3,4 +3,13 @@ export * from "./isMinifiedCode.js";
|
|
|
3
3
|
export * from "./isOneLineExpressionExport.js";
|
|
4
4
|
export * from "./notNullOrUndefined.js";
|
|
5
5
|
export * from "./toArrayLocation.js";
|
|
6
|
+
export * from "./isEvilIdentifier.js";
|
|
7
|
+
export * from "./stripNodePrefix.js";
|
|
8
|
+
export * from "./getSubMemberExpressionSegments.js";
|
|
9
|
+
export * from "./makePrefixRemover.js";
|
|
10
|
+
export * from "./stringSuspicionScore.js";
|
|
11
|
+
export * from "./isSvg.js";
|
|
12
|
+
export * from "./isStringBase64.js";
|
|
13
|
+
export * from "./patterns.js";
|
|
14
|
+
export * as Hex from "./hex.js";
|
|
6
15
|
//# sourceMappingURL=index.js.map
|
package/dist/utils/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC;AACjC,cAAc,qBAAqB,CAAC;AACpC,cAAc,gCAAgC,CAAC;AAC/C,cAAc,yBAAyB,CAAC;AACxC,cAAc,sBAAsB,CAAC"}
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC;AACjC,cAAc,qBAAqB,CAAC;AACpC,cAAc,gCAAgC,CAAC;AAC/C,cAAc,yBAAyB,CAAC;AACxC,cAAc,sBAAsB,CAAC;AACrC,cAAc,uBAAuB,CAAC;AACtC,cAAc,sBAAsB,CAAC;AACrC,cAAc,qCAAqC,CAAC;AACpD,cAAc,wBAAwB,CAAC;AACvC,cAAc,2BAA2B,CAAC;AAC1C,cAAc,YAAY,CAAC;AAC3B,cAAc,qBAAqB,CAAC;AACpC,cAAc,eAAe,CAAC;AAC9B,OAAO,KAAK,GAAG,MAAM,UAAU,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"isEvilIdentifier.d.ts","sourceRoot":"","sources":["../../src/utils/isEvilIdentifier.ts"],"names":[],"mappings":"AAAA,wBAAgB,oBAAoB,CAClC,UAAU,EAAE,MAAM,GACjB,OAAO,CAET;AAED,wBAAgB,iBAAiB,CAC/B,UAAU,EAAE,MAAM,GACjB,OAAO,CAET"}
|
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
export function isEvilIdentifierPath(identifier) {
|
|
2
|
+
return isFunctionPrototype(identifier);
|
|
3
|
+
}
|
|
4
|
+
export function isNeutralCallable(identifier) {
|
|
5
|
+
return identifier === "Function.prototype.call";
|
|
6
|
+
}
|
|
7
|
+
function isFunctionPrototype(identifier) {
|
|
8
|
+
return identifier.startsWith("Function.prototype")
|
|
9
|
+
&& /call|apply|bind/i.test(identifier);
|
|
10
|
+
}
|
|
11
|
+
//# sourceMappingURL=isEvilIdentifier.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"isEvilIdentifier.js","sourceRoot":"","sources":["../../src/utils/isEvilIdentifier.ts"],"names":[],"mappings":"AAAA,MAAM,UAAU,oBAAoB,CAClC,UAAkB;IAElB,OAAO,mBAAmB,CAAC,UAAU,CAAC,CAAC;AACzC,CAAC;AAED,MAAM,UAAU,iBAAiB,CAC/B,UAAkB;IAElB,OAAO,UAAU,KAAK,yBAAyB,CAAC;AAClD,CAAC;AAED,SAAS,mBAAmB,CAC1B,UAAkB;IAElB,OAAO,UAAU,CAAC,UAAU,CAAC,oBAAoB,CAAC;WAC7C,kBAAkB,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;AAC3C,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isOneLineExpressionExport.d.ts","sourceRoot":"","sources":["../../src/utils/isOneLineExpressionExport.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;
|
|
1
|
+
{"version":3,"file":"isOneLineExpressionExport.d.ts","sourceRoot":"","sources":["../../src/utils/isOneLineExpressionExport.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAOtC,wBAAgB,yBAAyB,CACvC,IAAI,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,GAC3B,OAAO,CAoBT"}
|
|
@@ -1,4 +1,5 @@
|
|
|
1
|
-
|
|
1
|
+
// Import Internal Dependencies
|
|
2
|
+
import { getCallExpressionIdentifier } from "../estree/index.js";
|
|
2
3
|
export function isOneLineExpressionExport(body) {
|
|
3
4
|
if (body.length === 0 || body.length > 1) {
|
|
4
5
|
return false;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isOneLineExpressionExport.js","sourceRoot":"","sources":["../../src/utils/isOneLineExpressionExport.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"isOneLineExpressionExport.js","sourceRoot":"","sources":["../../src/utils/isOneLineExpressionExport.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EACL,2BAA2B,EAC5B,MAAM,oBAAoB,CAAC;AAE5B,MAAM,UAAU,yBAAyB,CACvC,IAA4B;IAE5B,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC;IACzB,IAAI,SAAS,CAAC,IAAI,KAAK,qBAAqB,EAAE,CAAC;QAC7C,OAAO,KAAK,CAAC;IACf,CAAC;IAED,QAAQ,SAAS,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;QAClC,mCAAmC;QACnC,KAAK,sBAAsB;YACzB,OAAO,+BAA+B,CAAC,SAAS,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QACrE,kBAAkB;QAClB,KAAK,gBAAgB;YACnB,OAAO,+BAA+B,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QAC/D;YACE,OAAO,KAAK,CAAC;IACjB,CAAC;AACH,CAAC;AAED,SAAS,+BAA+B,CACtC,IAAuB;IAEvB,IAAI,IAAI,CAAC,IAAI,KAAK,mBAAmB,EAAE,CAAC;QACtC,OAAO,+BAA+B,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;IAChE,CAAC;IAED,IAAI,IAAI,CAAC,IAAI,KAAK,uBAAuB,EAAE,CAAC;QAC1C,OAAO,+BAA+B,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC;IAC1E,CAAC;IAED,IAAI,IAAI,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;QACnC,OAAO,2BAA2B,CAAC,IAAI,CAAC,KAAK,SAAS,CAAC;IACzD,CAAC;IAED,IAAI,IAAI,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;QACrC,IAAI,UAAU,GAAG,IAAI,CAAC,MAAM,CAAC;QAC7B,OAAO,UAAU,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;YAC9C,UAAU,GAAG,UAAU,CAAC,MAAM,CAAC;QACjC,CAAC;QAED,IAAI,UAAU,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;YACzC,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,2BAA2B,CAAC,UAAU,CAAC,KAAK,SAAS,CAAC;IAC/D,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,+BAA+B,CACtC,IAAuB,EACvB,KAAwB;IAExB,OAAO;QACL,+BAA+B,CAAC,IAAI,CAAC;QACrC,+BAA+B,CAAC,KAAK,CAAC;KACvC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,CAAC;AACrC,CAAC"}
|
|
@@ -0,0 +1,8 @@
|
|
|
1
|
+
export interface Base64Options {
|
|
2
|
+
allowMime?: boolean;
|
|
3
|
+
mimeRequired?: boolean;
|
|
4
|
+
paddingRequired?: boolean;
|
|
5
|
+
allowEmpty?: boolean;
|
|
6
|
+
}
|
|
7
|
+
export declare function isStringBase64(v: string, opts?: Base64Options): boolean;
|
|
8
|
+
//# sourceMappingURL=isStringBase64.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"isStringBase64.d.ts","sourceRoot":"","sources":["../../src/utils/isStringBase64.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,aAAa;IAC5B,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB;AAED,wBAAgB,cAAc,CAC5B,CAAC,EAAE,MAAM,EACT,IAAI,GAAE,aAAkB,GACvB,OAAO,CAoBT"}
|
|
@@ -0,0 +1,18 @@
|
|
|
1
|
+
export function isStringBase64(v, opts = {}) {
|
|
2
|
+
if (opts.allowEmpty === false && v === "") {
|
|
3
|
+
return false;
|
|
4
|
+
}
|
|
5
|
+
let regex = "(?:[A-Za-z0-9+\\/]{4})*(?:[A-Za-z0-9+/]{2}==|[A-Za-z0-9+\\/]{3}=)?";
|
|
6
|
+
const mimeRegex = "(data:\\w+\\/[a-zA-Z\\+\\-\\.]+;base64,)";
|
|
7
|
+
if (opts.mimeRequired === true) {
|
|
8
|
+
regex = mimeRegex + regex;
|
|
9
|
+
}
|
|
10
|
+
else if (opts.allowMime === true) {
|
|
11
|
+
regex = mimeRegex + "?" + regex;
|
|
12
|
+
}
|
|
13
|
+
if (opts.paddingRequired === false) {
|
|
14
|
+
regex = "(?:[A-Za-z0-9+\\/]{4})*(?:[A-Za-z0-9+\\/]{2}(==)?|[A-Za-z0-9+\\/]{3}=?)?";
|
|
15
|
+
}
|
|
16
|
+
return (new RegExp("^" + regex + "$", "gi")).test(v);
|
|
17
|
+
}
|
|
18
|
+
//# sourceMappingURL=isStringBase64.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"isStringBase64.js","sourceRoot":"","sources":["../../src/utils/isStringBase64.ts"],"names":[],"mappings":"AAOA,MAAM,UAAU,cAAc,CAC5B,CAAS,EACT,OAAsB,EAAE;IAExB,IAAI,IAAI,CAAC,UAAU,KAAK,KAAK,IAAI,CAAC,KAAK,EAAE,EAAE,CAAC;QAC1C,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI,KAAK,GAAG,oEAAoE,CAAC;IACjF,MAAM,SAAS,GAAG,0CAA0C,CAAC;IAE7D,IAAI,IAAI,CAAC,YAAY,KAAK,IAAI,EAAE,CAAC;QAC/B,KAAK,GAAG,SAAS,GAAG,KAAK,CAAC;IAC5B,CAAC;SACI,IAAI,IAAI,CAAC,SAAS,KAAK,IAAI,EAAE,CAAC;QACjC,KAAK,GAAG,SAAS,GAAG,GAAG,GAAG,KAAK,CAAC;IAClC,CAAC;IAED,IAAI,IAAI,CAAC,eAAe,KAAK,KAAK,EAAE,CAAC;QACnC,KAAK,GAAG,0EAA0E,CAAC;IACrF,CAAC;IAED,OAAO,CAAC,IAAI,MAAM,CAAC,GAAG,GAAG,KAAK,GAAG,GAAG,EAAE,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AACvD,CAAC"}
|
|
@@ -0,0 +1,7 @@
|
|
|
1
|
+
import type { ESTree } from "meriyah";
|
|
2
|
+
export declare function isSvg(strOrLiteral: ESTree.Literal | string): boolean;
|
|
3
|
+
/**
|
|
4
|
+
* @description detect if a given string is a svg path or not.
|
|
5
|
+
*/
|
|
6
|
+
export declare function isSvgPath(str: string): boolean;
|
|
7
|
+
//# sourceMappingURL=isSvg.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"isSvg.d.ts","sourceRoot":"","sources":["../../src/utils/isSvg.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAKtC,wBAAgB,KAAK,CACnB,YAAY,EAAE,MAAM,CAAC,OAAO,GAAG,MAAM,GACpC,OAAO,CAST;AAED;;GAEG;AACH,wBAAgB,SAAS,CACvB,GAAG,EAAE,MAAM,GACV,OAAO,CAST"}
|
|
@@ -0,0 +1,26 @@
|
|
|
1
|
+
// Import Third-party Dependencies
|
|
2
|
+
import isStringSvg from "is-svg";
|
|
3
|
+
// Import Internal Dependencies
|
|
4
|
+
import { toValue } from "../estree/index.js";
|
|
5
|
+
export function isSvg(strOrLiteral) {
|
|
6
|
+
try {
|
|
7
|
+
const value = toValue(strOrLiteral);
|
|
8
|
+
return isStringSvg(value) || isSvgPath(value);
|
|
9
|
+
}
|
|
10
|
+
catch {
|
|
11
|
+
return false;
|
|
12
|
+
}
|
|
13
|
+
}
|
|
14
|
+
/**
|
|
15
|
+
* @description detect if a given string is a svg path or not.
|
|
16
|
+
*/
|
|
17
|
+
export function isSvgPath(str) {
|
|
18
|
+
if (typeof str !== "string") {
|
|
19
|
+
return false;
|
|
20
|
+
}
|
|
21
|
+
const trimStr = str.trim();
|
|
22
|
+
return trimStr.length > 4
|
|
23
|
+
&& /^[mzlhvcsqta]\s*[-+.0-9][^mlhvzcsqta]+/i.test(trimStr)
|
|
24
|
+
&& /[\dz]$/i.test(trimStr);
|
|
25
|
+
}
|
|
26
|
+
//# sourceMappingURL=isSvg.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"isSvg.js","sourceRoot":"","sources":["../../src/utils/isSvg.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,WAAW,MAAM,QAAQ,CAAC;AAGjC,+BAA+B;AAC/B,OAAO,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAE7C,MAAM,UAAU,KAAK,CACnB,YAAqC;IAErC,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;QAEpC,OAAO,WAAW,CAAC,KAAK,CAAC,IAAI,SAAS,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IACD,MAAM,CAAC;QACL,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,SAAS,CACvB,GAAW;IAEX,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5B,OAAO,KAAK,CAAC;IACf,CAAC;IACD,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,EAAE,CAAC;IAE3B,OAAO,OAAO,CAAC,MAAM,GAAG,CAAC;WACpB,yCAAyC,CAAC,IAAI,CAAC,OAAO,CAAC;WACvD,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;AAC/B,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"makePrefixRemover.d.ts","sourceRoot":"","sources":["../../src/utils/makePrefixRemover.ts"],"names":[],"mappings":"AACA,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC,GACzB,CAAC,IAAI,EAAE,MAAM,KAAK,MAAM,CAe1B"}
|
|
@@ -0,0 +1,13 @@
|
|
|
1
|
+
export function makePrefixRemover(prefixes) {
|
|
2
|
+
return (expr) => {
|
|
3
|
+
if (!expr.includes(".")) {
|
|
4
|
+
return expr;
|
|
5
|
+
}
|
|
6
|
+
const matchedPrefix = Array.from(prefixes)
|
|
7
|
+
.find((globalId) => expr.startsWith(globalId));
|
|
8
|
+
return matchedPrefix ?
|
|
9
|
+
expr.slice(matchedPrefix.length + 1) :
|
|
10
|
+
expr;
|
|
11
|
+
};
|
|
12
|
+
}
|
|
13
|
+
//# sourceMappingURL=makePrefixRemover.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"makePrefixRemover.js","sourceRoot":"","sources":["../../src/utils/makePrefixRemover.ts"],"names":[],"mappings":"AACA,MAAM,UAAU,iBAAiB,CAC/B,QAA0B;IAE1B,OAAO,CACL,IAAI,EACJ,EAAE;QACF,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,aAAa,GAAG,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC;aACvC,IAAI,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC;QAEjD,OAAO,aAAa,CAAC,CAAC;YACpB,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC;YACtC,IAAI,CAAC;IACT,CAAC,CAAC;AACJ,CAAC"}
|
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
import type { ESTree } from "meriyah";
|
|
2
|
+
/**
|
|
3
|
+
* @description get the common string prefix (at the start) pattern
|
|
4
|
+
* @example
|
|
5
|
+
* commonStringPrefix("boo", "foo"); // null
|
|
6
|
+
* commonStringPrefix("bromance", "brother"); // "bro"
|
|
7
|
+
*/
|
|
8
|
+
export declare function commonStringPrefix(leftAnyValue: ESTree.Literal | string, rightAnyValue: ESTree.Literal | string): string | null;
|
|
9
|
+
/**
|
|
10
|
+
* @description get the common string suffixes (at the end) pattern
|
|
11
|
+
* @param {!string} leftStr
|
|
12
|
+
* @param {!string} rightStr
|
|
13
|
+
* @returns {string | null}
|
|
14
|
+
*
|
|
15
|
+
* @example
|
|
16
|
+
* commonStringSuffix("boo", "foo"); // oo
|
|
17
|
+
* commonStringSuffix("bromance", "brother"); // null
|
|
18
|
+
*/
|
|
19
|
+
export declare function commonStringSuffix(leftStr: string, rightStr: string): string | null;
|
|
20
|
+
export declare function commonHexadecimalPrefix(identifiersArray: string[]): {
|
|
21
|
+
oneTimeOccurence: number;
|
|
22
|
+
prefix: Record<string, number>;
|
|
23
|
+
};
|
|
24
|
+
//# sourceMappingURL=patterns.d.ts.map
|