@nodesecure/js-x-ray 9.1.0 → 10.0.0

package/dist/obfuscators/trojan-source.d.ts

@@ -0,0 +1,2 @@
+export declare function verify(sourceString: string): boolean;
+//# sourceMappingURL=trojan-source.d.ts.map

package/dist/obfuscators/trojan-source.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"trojan-source.d.ts","sourceRoot":"","sources":["../../src/obfuscators/trojan-source.ts"],"names":[],"mappings":"AAmBA,wBAAgB,MAAM,CACpB,YAAY,EAAE,MAAM,GACnB,OAAO,CAQT"}

package/dist/obfuscators/trojan-source.js

@@ -0,0 +1,27 @@
+/**
+ * Dangerous Unicode control characters that can be used by hackers
+ * to perform trojan source.
+ */
+const kUnsafeUnicodeControlCharacters = [
+    "\u202A",
+    "\u202B",
+    "\u202D",
+    "\u202E",
+    "\u202C",
+    "\u2066",
+    "\u2067",
+    "\u2068",
+    "\u2069",
+    "\u200E",
+    "\u200F",
+    "\u061C"
+];
+export function verify(sourceString) {
+    for (const unsafeCharacter of kUnsafeUnicodeControlCharacters) {
+        if (sourceString.includes(unsafeCharacter)) {
+            return true;
+        }
+    }
+    return false;
+}
+//# sourceMappingURL=trojan-source.js.map

package/dist/obfuscators/trojan-source.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"trojan-source.js","sourceRoot":"","sources":["../../src/obfuscators/trojan-source.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,+BAA+B,GAAG;IACtC,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;CACT,CAAC;AAEF,MAAM,UAAU,MAAM,CACpB,YAAoB;IAEpB,KAAK,MAAM,eAAe,IAAI,+BAA+B,EAAE,CAAC;QAC9D,IAAI,YAAY,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;YAC3C,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC"}

package/dist/pipelines/Runner.class.d.ts

@@ -0,0 +1,11 @@
+import type { ESTree } from "meriyah";
+export interface Pipeline {
+    name: string;
+    walk(body: ESTree.Program["body"]): ESTree.Program["body"];
+}
+export declare class PipelineRunner {
+    #private;
+    constructor(pipelines: Pipeline[]);
+    reduce(initialBody: ESTree.Program["body"]): ESTree.Program["body"];
+}
+//# sourceMappingURL=Runner.class.d.ts.map

package/dist/pipelines/Runner.class.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Runner.class.d.ts","sourceRoot":"","sources":["../../src/pipelines/Runner.class.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEtC,MAAM,WAAW,QAAQ;IACvB,IAAI,EAAE,MAAM,CAAC;IAEb,IAAI,CACF,IAAI,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,GAC3B,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;CAC3B;AAED,qBAAa,cAAc;;gBAIvB,SAAS,EAAE,QAAQ,EAAE;IAKvB,MAAM,CACJ,WAAW,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,GAClC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;CAM1B"}

package/dist/pipelines/Runner.class.js

@@ -0,0 +1,20 @@
+export class PipelineRunner {
+    #pipelines;
+    constructor(pipelines) {
+        this.#pipelines = removeDuplicatedPipelines(pipelines);
+    }
+    reduce(initialBody) {
+        return this.#pipelines.reduce((body, pipeline) => pipeline.walk(body), initialBody);
+    }
+}
+function removeDuplicatedPipelines(pipelines) {
+    const seen = new Set();
+    return pipelines.filter((pipeline) => {
+        if (seen.has(pipeline.name)) {
+            return false;
+        }
+        seen.add(pipeline.name);
+        return true;
+    });
+}
+//# sourceMappingURL=Runner.class.js.map

package/dist/pipelines/Runner.class.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Runner.class.js","sourceRoot":"","sources":["../../src/pipelines/Runner.class.ts"],"names":[],"mappings":"AAWA,MAAM,OAAO,cAAc;IACzB,UAAU,CAAa;IAEvB,YACE,SAAqB;QAErB,IAAI,CAAC,UAAU,GAAG,yBAAyB,CAAC,SAAS,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,CACJ,WAAmC;QAEnC,OAAO,IAAI,CAAC,UAAU,CAAC,MAAM,CAC3B,CAAC,IAAI,EAAE,QAAQ,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EACvC,WAAW,CACZ,CAAC;IACJ,CAAC;CACF;AAED,SAAS,yBAAyB,CAChC,SAAqB;IAErB,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAE/B,OAAO,SAAS,CAAC,MAAM,CAAC,CAAC,QAAQ,EAAE,EAAE;QACnC,IAAI,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5B,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAExB,OAAO,IAAI,CAAC;IACd,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/pipelines/deobfuscate.d.ts

@@ -0,0 +1,8 @@
+import type { ESTree } from "meriyah";
+import type { Pipeline } from "./Runner.class.js";
+export declare class Deobfuscate implements Pipeline {
+    #private;
+    name: string;
+    walk(body: ESTree.Program["body"]): ESTree.Program["body"];
+}
+//# sourceMappingURL=deobfuscate.d.ts.map

package/dist/pipelines/deobfuscate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"deobfuscate.d.ts","sourceRoot":"","sources":["../../src/pipelines/deobfuscate.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAMtC,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAElD,qBAAa,WAAY,YAAW,QAAQ;;IAC1C,IAAI,SAAiB;IAiBrB,IAAI,CACF,IAAI,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,GAC3B,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;CAgB1B"}

package/dist/pipelines/deobfuscate.js

@@ -0,0 +1,33 @@
+import { match } from "ts-pattern";
+import { joinArrayExpression } from "@nodesecure/estree-ast-utils";
+// Import Internal Dependencies
+import { walkEnter } from "../walker/index.js";
+export class Deobfuscate {
+    name = "deobfuscate";
+    #withCallExpression(node) {
+        const value = joinArrayExpression(node);
+        if (value !== null) {
+            return {
+                type: "Literal",
+                value,
+                raw: value
+            };
+        }
+        return void 0;
+    }
+    walk(body) {
+        const self = this;
+        walkEnter(body, function walk(node) {
+            if (Array.isArray(node)) {
+                return;
+            }
+            match(node)
+                .with({ type: "CallExpression" }, (node) => {
+                this.replaceAndSkip(self.#withCallExpression(node));
+            })
+                .otherwise(() => void 0);
+        });
+        return body;
+    }
+}
+//# sourceMappingURL=deobfuscate.js.map

package/dist/pipelines/deobfuscate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"deobfuscate.js","sourceRoot":"","sources":["../../src/pipelines/deobfuscate.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,KAAK,EAAE,MAAM,YAAY,CAAC;AACnC,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AAEnE,+BAA+B;AAC/B,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAG/C,MAAM,OAAO,WAAW;IACtB,IAAI,GAAG,aAAa,CAAC;IAErB,mBAAmB,CACjB,IAA2B;QAE3B,MAAM,KAAK,GAAG,mBAAmB,CAAC,IAAI,CAAC,CAAC;QACxC,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;YACnB,OAAO;gBACL,IAAI,EAAE,SAAS;gBACf,KAAK;gBACL,GAAG,EAAE,KAAK;aACX,CAAC;QACJ,CAAC;QAED,OAAO,KAAK,CAAC,CAAC;IAChB,CAAC;IAED,IAAI,CACF,IAA4B;QAE5B,MAAM,IAAI,GAAG,IAAI,CAAC;QAClB,SAAS,CAAC,IAAI,EAAE,SAAS,IAAI,CAAC,IAAI;YAChC,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;gBACxB,OAAO;YACT,CAAC;YAED,KAAK,CAAC,IAAI,CAAC;iBACR,IAAI,CAAC,EAAE,IAAI,EAAE,gBAAgB,EAAE,EAAE,CAAC,IAAI,EAAE,EAAE;gBACzC,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;YACtD,CAAC,CAAC;iBACD,SAAS,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}

package/dist/pipelines/index.d.ts

@@ -0,0 +1,8 @@
+import { Deobfuscate } from "./deobfuscate.js";
+import { PipelineRunner, type Pipeline } from "./Runner.class.js";
+export declare const Pipelines: Readonly<{
+    deobfuscate: typeof Deobfuscate;
+}>;
+export { PipelineRunner };
+export type { Pipeline };
+//# sourceMappingURL=index.d.ts.map

package/dist/pipelines/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/pipelines/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAC/C,OAAO,EACL,cAAc,EACd,KAAK,QAAQ,EACd,MAAM,mBAAmB,CAAC;AAE3B,eAAO,MAAM,SAAS;;EAEwB,CAAC;AAE/C,OAAO,EAAE,cAAc,EAAE,CAAC;AAC1B,YAAY,EAAE,QAAQ,EAAE,CAAC"}

package/dist/pipelines/index.js

@@ -0,0 +1,8 @@
+// Import Internal Dependencies
+import { Deobfuscate } from "./deobfuscate.js";
+import { PipelineRunner } from "./Runner.class.js";
+export const Pipelines = Object.freeze({
+    deobfuscate: Deobfuscate
+});
+export { PipelineRunner };
+//# sourceMappingURL=index.js.map

package/dist/pipelines/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/pipelines/index.ts"],"names":[],"mappings":"AAAA,+BAA+B;AAC/B,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAC/C,OAAO,EACL,cAAc,EAEf,MAAM,mBAAmB,CAAC;AAE3B,MAAM,CAAC,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC;IACrC,WAAW,EAAE,WAAW;CACzB,CAA6C,CAAC;AAE/C,OAAO,EAAE,cAAc,EAAE,CAAC"}

package/dist/probes/data-exfiltration.d.ts

@@ -0,0 +1,19 @@
+import type { ESTree } from "meriyah";
+import type { ProbeContext } from "../ProbeRunner.js";
+import { type SourceArrayLocation } from "../utils/toArrayLocation.js";
+type DataExfiltrationContextDef = Record<string, SourceArrayLocation[]>;
+declare function validateNode(node: ESTree.Node, ctx: ProbeContext): [boolean, any?];
+declare function main(node: ESTree.CallExpression, ctx: ProbeContext<DataExfiltrationContextDef>): void;
+declare function initialize(ctx: ProbeContext<DataExfiltrationContextDef>): void;
+declare function finalize(ctx: ProbeContext<DataExfiltrationContextDef>): void;
+declare const dateExifiltration: {
+    name: string;
+    validateNode: typeof validateNode;
+    initialize: typeof initialize;
+    finalize: typeof finalize;
+    main: typeof main;
+    breakOnMatch: boolean;
+    context: {};
+};
+export default dateExifiltration;
+//# sourceMappingURL=data-exfiltration.d.ts.map

package/dist/probes/data-exfiltration.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"data-exfiltration.d.ts","sourceRoot":"","sources":["../../src/probes/data-exfiltration.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAItC,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACtD,OAAO,EAAiC,KAAK,mBAAmB,EAAE,MAAM,6BAA6B,CAAC;AAUtG,KAAK,0BAA0B,GAAG,MAAM,CAAC,MAAM,EAAE,mBAAmB,EAAE,CAAC,CAAC;AAExE,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,EACjB,GAAG,EAAE,YAAY,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAmBjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,cAAc,EAC3B,GAAG,EAAE,YAAY,CAAC,0BAA0B,CAAC,QAoB9C;AAED,iBAAS,UAAU,CACjB,GAAG,EAAE,YAAY,CAAC,0BAA0B,CAAC,QAmB9C;AAED,iBAAS,QAAQ,CAAC,GAAG,EAAE,YAAY,CAAC,0BAA0B,CAAC,QAO9D;AAED,QAAA,MAAM,iBAAiB;;;;;;;;CAQtB,CAAC;AAEF,eAAe,iBAAiB,CAAC"}

package/dist/probes/data-exfiltration.js

@@ -0,0 +1,84 @@
+// Import Third-party Dependencies
+import { getCallExpressionIdentifier } from "@nodesecure/estree-ast-utils";
+// Import Internal Dependencies
+import { generateWarning } from "../warnings.js";
+import { rootLocation, toArrayLocation } from "../utils/toArrayLocation.js";
+// CONSTANTS
+const kSensitiveMethods = [
+    "os.userInfo",
+    "os.networkInterfaces",
+    "os.cpus",
+    "dns.getServers"
+];
+function validateNode(node, ctx) {
+    const tracer = ctx.sourceFile.tracer;
+    const id = getCallExpressionIdentifier(node);
+    if (id === null) {
+        return [false];
+    }
+    const data = tracer.getDataFromIdentifier(id);
+    if (data === null || data.identifierOrMemberExpr !== "JSON.stringify") {
+        return [false];
+    }
+    const castedNode = node;
+    if (castedNode.arguments.length === 0) {
+        return [false];
+    }
+    return [true];
+}
+function main(node, ctx) {
+    const { sourceFile } = ctx;
+    const firstArg = node.arguments[0];
+    if (firstArg.type !== "CallExpression") {
+        return;
+    }
+    const id = getCallExpressionIdentifier(firstArg);
+    const data = sourceFile.tracer.getDataFromIdentifier(id);
+    if (kSensitiveMethods.some((method) => data?.identifierOrMemberExpr === method
+        && sourceFile.tracer.importedModules.has(method.split(".")[0]))) {
+        const arrayLocation = ctx.context?.[data?.identifierOrMemberExpr];
+        if (arrayLocation) {
+            arrayLocation.push(toArrayLocation(firstArg.loc ?? rootLocation()));
+        }
+        else {
+            ctx.context[data?.identifierOrMemberExpr] = [toArrayLocation(firstArg.loc ?? rootLocation())];
+        }
+    }
+}
+function initialize(ctx) {
+    const { sourceFile: { tracer } } = ctx;
+    tracer
+        .trace("JSON.stringify", {
+        followConsecutiveAssignment: true
+    }).trace("os.userInfo", {
+        moduleName: "os",
+        followConsecutiveAssignment: true
+    }).trace("os.networkInterfaces", {
+        moduleName: "os",
+        followConsecutiveAssignment: true
+    }).trace("os.cpus", {
+        moduleName: "os",
+        followConsecutiveAssignment: true
+    }).trace("dns.getServers", {
+        moduleName: "dns",
+        followConsecutiveAssignment: true
+    });
+}
+function finalize(ctx) {
+    const { sourceFile, context } = ctx;
+    if (context && Object.keys(context).length > 0) {
+        const warning = generateWarning("data-exfiltration", { value: Object.keys(context).join(", ") });
+        sourceFile.warnings.push({ ...warning, location: Object.values(context).flat() });
+    }
+}
+const dateExifiltration = {
+    name: "dataExfiltration",
+    validateNode,
+    initialize,
+    finalize,
+    main,
+    breakOnMatch: false,
+    context: {}
+};
+export default dateExifiltration;
+//# sourceMappingURL=data-exfiltration.js.map

package/dist/probes/data-exfiltration.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"data-exfiltration.js","sourceRoot":"","sources":["../../src/probes/data-exfiltration.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EACL,2BAA2B,EAC5B,MAAM,8BAA8B,CAAC;AAGtC,+BAA+B;AAC/B,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAEjD,OAAO,EAAE,YAAY,EAAE,eAAe,EAA4B,MAAM,6BAA6B,CAAC;AAEtG,YAAY;AACZ,MAAM,iBAAiB,GAAG;IACxB,aAAa;IACb,sBAAsB;IACtB,SAAS;IACT,gBAAgB;CACjB,CAAC;AAIF,SAAS,YAAY,CACnB,IAAiB,EACjB,GAAiB;IAEjB,MAAM,MAAM,GAAG,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC;IACrC,MAAM,EAAE,GAAG,2BAA2B,CAAC,IAAI,CAAC,CAAC;IAE7C,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC;QAChB,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IACD,MAAM,IAAI,GAAG,MAAM,CAAC,qBAAqB,CAAC,EAAE,CAAC,CAAC;IAE9C,IAAI,IAAI,KAAK,IAAI,IAAI,IAAI,CAAC,sBAAsB,KAAK,gBAAgB,EAAE,CAAC;QACtE,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,MAAM,UAAU,GAAG,IAA6B,CAAC;IACjD,IAAI,UAAU,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtC,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,OAAO,CAAC,IAAI,CAAC,CAAC;AAChB,CAAC;AAED,SAAS,IAAI,CACX,IAA2B,EAC3B,GAA6C;IAE7C,MAAM,EAAE,UAAU,EAAE,GAAG,GAAG,CAAC;IAE3B,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;IACnC,IAAI,QAAQ,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;QACvC,OAAO;IACT,CAAC;IACD,MAAM,EAAE,GAAG,2BAA2B,CAAC,QAAQ,CAAE,CAAC;IAClD,MAAM,IAAI,GAAG,UAAU,CAAC,MAAM,CAAC,qBAAqB,CAAC,EAAE,CAAC,CAAC;IACzD,IAAI,iBAAiB,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,EAAE,sBAAsB,KAAK,MAAM;WACzE,UAAU,CAAC,MAAM,CAAC,eAAe,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAClE,MAAM,aAAa,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,IAAI,EAAE,sBAAuB,CAAC,CAAC;QACnE,IAAI,aAAa,EAAE,CAAC;YAClB,aAAa,CAAC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,GAAG,IAAI,YAAY,EAAE,CAAC,CAAC,CAAC;QACtE,CAAC;aACI,CAAC;YACJ,GAAG,CAAC,OAAQ,CAAC,IAAI,EAAE,sBAAuB,CAAC,GAAG,CAAC,eAAe,CAAC,QAAQ,CAAC,GAAG,IAAI,YAAY,EAAE,CAAC,CAAC,CAAC;QAClG,CAAC;IACH,CAAC;AACH,CAAC;AAED,SAAS,UAAU,CACjB,GAA6C;IAE7C,MAAM,EAAE,UAAU,EAAE,EAAE,MAAM,EAAE,EAAE,GAAG,GAAG,CAAC;IACvC,MAAM;SACH,KAAK,CAAC,gBAAgB,EAAE;QACvB,2BAA2B,EAAE,IAAI;KAClC,CAAC,CAAC,KAAK,CAAC,aAAa,EAAE;QACtB,UAAU,EAAE,IAAI;QAChB,2BAA2B,EAAE,IAAI;KAClC,CAAC,CAAC,KAAK,CAAC,sBAAsB,EAAE;QAC/B,UAAU,EAAE,IAAI;QAChB,2BAA2B,EAAE,IAAI;KAClC,CAAC,CAAC,KAAK,CAAC,SAAS,EAAE;QAClB,UAAU,EAAE,IAAI;QAChB,2BAA2B,EAAE,IAAI;KAClC,CAAC,CAAC,KAAK,CAAC,gBAAgB,EAAE;QACzB,UAAU,EAAE,KAAK;QACjB,2BAA2B,EAAE,IAAI;KAClC,CAAC,CAAC;AACP,CAAC;AAED,SAAS,QAAQ,CAAC,GAA6C;IAC7D,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC;IACpC,IAAI,OAAO,IAAI,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/C,MAAM,OAAO,GAAG,eAAe,CAAC,mBAAmB,EACjD,EAAE,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC9C,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,GAAG,OAAO,EAAE,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;IACpF,CAAC;AACH,CAAC;AAED,MAAM,iBAAiB,GAAG;IACxB,IAAI,EAAE,kBAAkB;IACxB,YAAY;IACZ,UAAU;IACV,QAAQ;IACR,IAAI;IACJ,YAAY,EAAE,KAAK;IACnB,OAAO,EAAE,EAAE;CACZ,CAAC;AAEF,eAAe,iBAAiB,CAAC"}

package/dist/probes/isArrayExpression.d.ts

@@ -0,0 +1,21 @@
+import type { ESTree } from "meriyah";
+import { SourceFile } from "../SourceFile.js";
+/**
+ * @description Search for ArrayExpression AST Node (Commonly known as JS Arrays)
+ *
+ * @see https://github.com/estree/estree/blob/master/es5.md#arrayexpression
+ * @example
+ * ["foo", "bar", 1]
+ */
+declare function validateNode(node: ESTree.Node): [boolean, any?];
+declare function main(node: ESTree.ArrayExpression, { sourceFile }: {
+    sourceFile: SourceFile;
+}): void;
+declare const _default: {
+    name: string;
+    validateNode: typeof validateNode;
+    main: typeof main;
+    breakOnMatch: boolean;
+};
+export default _default;
+//# sourceMappingURL=isArrayExpression.d.ts.map

package/dist/probes/isArrayExpression.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"isArrayExpression.d.ts","sourceRoot":"","sources":["../../src/probes/isArrayExpression.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAM9C;;;;;;GAMG;AACH,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAIjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,eAAe,EAC5B,EAAE,UAAU,EAAE,EAAE;IAAE,UAAU,EAAE,UAAU,CAAC;CAAE,QAM5C;;;;;;;AAED,wBAKE"}

package/dist/probes/isArrayExpression.js

@@ -0,0 +1,27 @@
+// Import Internal Dependencies
+import { SourceFile } from "../SourceFile.js";
+import { extractNode } from "../utils/index.js";
+// CONSTANTS
+const kLiteralExtractor = extractNode("Literal");
+/**
+ * @description Search for ArrayExpression AST Node (Commonly known as JS Arrays)
+ *
+ * @see https://github.com/estree/estree/blob/master/es5.md#arrayexpression
+ * @example
+ * ["foo", "bar", 1]
+ */
+function validateNode(node) {
+    return [
+        node.type === "ArrayExpression"
+    ];
+}
+function main(node, { sourceFile }) {
+    kLiteralExtractor((literalNode) => sourceFile.analyzeLiteral(literalNode, true), node.elements);
+}
+export default {
+    name: "isArrayExpression",
+    validateNode,
+    main,
+    breakOnMatch: false
+};
+//# sourceMappingURL=isArrayExpression.js.map

package/dist/probes/isArrayExpression.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"isArrayExpression.js","sourceRoot":"","sources":["../../src/probes/isArrayExpression.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAEhD,YAAY;AACZ,MAAM,iBAAiB,GAAG,WAAW,CAAiB,SAAS,CAAC,CAAC;AAEjE;;;;;;GAMG;AACH,SAAS,YAAY,CACnB,IAAiB;IAEjB,OAAO;QACL,IAAI,CAAC,IAAI,KAAK,iBAAiB;KAChC,CAAC;AACJ,CAAC;AAED,SAAS,IAAI,CACX,IAA4B,EAC5B,EAAE,UAAU,EAA+B;IAE3C,iBAAiB,CACf,CAAC,WAAW,EAAE,EAAE,CAAC,UAAU,CAAC,cAAc,CAAC,WAAW,EAAE,IAAI,CAAC,EAC7D,IAAI,CAAC,QAAQ,CACd,CAAC;AACJ,CAAC;AAED,eAAe;IACb,IAAI,EAAE,mBAAmB;IACzB,YAAY;IACZ,IAAI;IACJ,YAAY,EAAE,KAAK;CACpB,CAAC"}

package/dist/probes/isBinaryExpression.d.ts

@@ -0,0 +1,21 @@
+import type { ESTree } from "meriyah";
+import { SourceFile } from "../SourceFile.js";
+/**
+ * @description Search for BinaryExpression AST Node.
+ *
+ * @see https://github.com/estree/estree/blob/master/es5.md#binaryexpression
+ * @example
+ * 5 + 5 + 10
+ */
+declare function validateNode(node: ESTree.Node): [boolean, any?];
+declare function main(node: ESTree.BinaryExpression, options: {
+    sourceFile: SourceFile;
+}): void;
+declare const _default: {
+    name: string;
+    validateNode: typeof validateNode;
+    main: typeof main;
+    breakOnMatch: boolean;
+};
+export default _default;
+//# sourceMappingURL=isBinaryExpression.d.ts.map

package/dist/probes/isBinaryExpression.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"isBinaryExpression.d.ts","sourceRoot":"","sources":["../../src/probes/isBinaryExpression.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAE9C;;;;;;GAMG;AACH,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAIjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,gBAAgB,EAC7B,OAAO,EAAE;IAAE,UAAU,EAAE,UAAU,CAAC;CAAE,QAWrC;;;;;;;AAkCD,wBAKE"}

package/dist/probes/isBinaryExpression.js

@@ -0,0 +1,54 @@
+// Import Internal Dependencies
+import { SourceFile } from "../SourceFile.js";
+/**
+ * @description Search for BinaryExpression AST Node.
+ *
+ * @see https://github.com/estree/estree/blob/master/es5.md#binaryexpression
+ * @example
+ * 5 + 5 + 10
+ */
+function validateNode(node) {
+    return [
+        node.type === "BinaryExpression"
+    ];
+}
+function main(node, options) {
+    const { sourceFile } = options;
+    const [binaryExprDeepness, hasUnaryExpression] = walkBinaryExpression(node);
+    if (binaryExprDeepness >= 3 && hasUnaryExpression) {
+        sourceFile.deobfuscator.deepBinaryExpression++;
+    }
+}
+/**
+ * @description Look for suspicious BinaryExpression (read the Obfuscator.io section of the linked G.Doc)
+ * @see https://docs.google.com/document/d/11ZrfW0bDQ-kd7Gr_Ixqyk8p3TGvxckmhFH3Z8dFoPhY/edit?usp=sharing
+ * @see https://github.com/estree/estree/blob/master/es5.md#unaryexpression
+ * @example
+ * 0x1*-0x12df+-0x1fb9*-0x1+0x2*-0x66d
+ */
+function walkBinaryExpression(expr, level = 1) {
+    const [lt, rt] = [expr.left.type, expr.right.type];
+    let hasUnaryExpression = lt === "UnaryExpression" || rt === "UnaryExpression";
+    let currentLevel = lt === "BinaryExpression" || rt === "BinaryExpression" ?
+        level + 1 :
+        level;
+    for (const currExpr of [expr.left, expr.right]) {
+        if (currExpr.type === "BinaryExpression") {
+            const [deepLevel, deepHasUnaryExpression] = walkBinaryExpression(currExpr, currentLevel);
+            if (deepLevel > currentLevel) {
+                currentLevel = deepLevel;
+            }
+            if (!hasUnaryExpression && deepHasUnaryExpression) {
+                hasUnaryExpression = true;
+            }
+        }
+    }
+    return [currentLevel, hasUnaryExpression];
+}
+export default {
+    name: "isBinaryExpression",
+    validateNode,
+    main,
+    breakOnMatch: false
+};
+//# sourceMappingURL=isBinaryExpression.js.map

package/dist/probes/isBinaryExpression.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"isBinaryExpression.js","sourceRoot":"","sources":["../../src/probes/isBinaryExpression.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAE9C;;;;;;GAMG;AACH,SAAS,YAAY,CACnB,IAAiB;IAEjB,OAAO;QACL,IAAI,CAAC,IAAI,KAAK,kBAAkB;KACjC,CAAC;AACJ,CAAC;AAED,SAAS,IAAI,CACX,IAA6B,EAC7B,OAAoC;IAEpC,MAAM,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC;IAE/B,MAAM,CACJ,kBAAkB,EAClB,kBAAkB,CACnB,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC;IAC/B,IAAI,kBAAkB,IAAI,CAAC,IAAI,kBAAkB,EAAE,CAAC;QAClD,UAAU,CAAC,YAAY,CAAC,oBAAoB,EAAE,CAAC;IACjD,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,SAAS,oBAAoB,CAC3B,IAA6B,EAC7B,KAAK,GAAG,CAAC;IAET,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACnD,IAAI,kBAAkB,GAAG,EAAE,KAAK,iBAAiB,IAAI,EAAE,KAAK,iBAAiB,CAAC;IAC9E,IAAI,YAAY,GAAG,EAAE,KAAK,kBAAkB,IAAI,EAAE,KAAK,kBAAkB,CAAC,CAAC;QACzE,KAAK,GAAG,CAAC,CAAC,CAAC;QACX,KAAK,CAAC;IAER,KAAK,MAAM,QAAQ,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QAC/C,IAAI,QAAQ,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;YACzC,MAAM,CAAC,SAAS,EAAE,sBAAsB,CAAC,GAAG,oBAAoB,CAAC,QAAQ,EAAE,YAAY,CAAC,CAAC;YACzF,IAAI,SAAS,GAAG,YAAY,EAAE,CAAC;gBAC7B,YAAY,GAAG,SAAS,CAAC;YAC3B,CAAC;YACD,IAAI,CAAC,kBAAkB,IAAI,sBAAsB,EAAE,CAAC;gBAClD,kBAAkB,GAAG,IAAI,CAAC;YAC5B,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,CAAC,YAAY,EAAE,kBAAkB,CAAC,CAAC;AAC5C,CAAC;AAED,eAAe;IACb,IAAI,EAAE,oBAAoB;IAC1B,YAAY;IACZ,IAAI;IACJ,YAAY,EAAE,KAAK;CACpB,CAAC"}

package/dist/probes/isESMExport.d.ts

@@ -0,0 +1,24 @@
+import type { ESTree } from "meriyah";
+import { SourceFile } from "../SourceFile.js";
+import type { Literal } from "../types/estree.js";
+/**
+ * @description Search for ESM Export
+ *
+ * @example
+ * export { bar } from "./foo.js";
+ * export * from "./bar.js";
+ */
+declare function validateNode(node: ESTree.Node): [boolean, any?];
+declare function main(node: (ESTree.ExportNamedDeclaration | ESTree.ExportAllDeclaration) & {
+    source: Literal<string>;
+}, { sourceFile }: {
+    sourceFile: SourceFile;
+}): void;
+declare const _default: {
+    name: string;
+    validateNode: typeof validateNode;
+    main: typeof main;
+    breakOnMatch: boolean;
+};
+export default _default;
+//# sourceMappingURL=isESMExport.d.ts.map

package/dist/probes/isESMExport.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"isESMExport.d.ts","sourceRoot":"","sources":["../../src/probes/isESMExport.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAElD;;;;;;GAMG;AACH,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAajB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,CACF,MAAM,CAAC,sBAAsB,GAC7B,MAAM,CAAC,oBAAoB,CAC9B,GAAG;IAAE,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC;CAAE,EAChC,EAAE,UAAU,EAAE,EAAE;IAAE,UAAU,EAAE,UAAU,CAAC;CAAE,QAM5C;;;;;;;AAED,wBAKE"}

package/dist/probes/isESMExport.js

@@ -0,0 +1,30 @@
+// Import Internal Dependencies
+import { SourceFile } from "../SourceFile.js";
+/**
+ * @description Search for ESM Export
+ *
+ * @example
+ * export { bar } from "./foo.js";
+ * export * from "./bar.js";
+ */
+function validateNode(node) {
+    if (node.type !== "ExportNamedDeclaration" &&
+        node.type !== "ExportAllDeclaration") {
+        return [false];
+    }
+    return [
+        node.source !== null &&
+            node.source.type === "Literal" &&
+            typeof node.source.value === "string"
+    ];
+}
+function main(node, { sourceFile }) {
+    sourceFile.addDependency(node.source.value, node.loc);
+}
+export default {
+    name: "isESMExport",
+    validateNode,
+    main,
+    breakOnMatch: true
+};
+//# sourceMappingURL=isESMExport.js.map

package/dist/probes/isESMExport.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"isESMExport.js","sourceRoot":"","sources":["../../src/probes/isESMExport.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAG9C;;;;;;GAMG;AACH,SAAS,YAAY,CACnB,IAAiB;IAEjB,IACE,IAAI,CAAC,IAAI,KAAK,wBAAwB;QACtC,IAAI,CAAC,IAAI,KAAK,sBAAsB,EACpC,CAAC;QACD,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,OAAO;QACL,IAAI,CAAC,MAAM,KAAK,IAAI;YACpB,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,SAAS;YAC9B,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,KAAK,QAAQ;KACtC,CAAC;AACJ,CAAC;AAED,SAAS,IAAI,CACX,IAGgC,EAChC,EAAE,UAAU,EAA+B;IAE3C,UAAU,CAAC,aAAa,CACtB,IAAI,CAAC,MAAM,CAAC,KAAK,EACjB,IAAI,CAAC,GAAG,CACT,CAAC;AACJ,CAAC;AAED,eAAe;IACb,IAAI,EAAE,aAAa;IACnB,YAAY;IACZ,IAAI;IACJ,YAAY,EAAE,IAAI;CACnB,CAAC"}

package/dist/probes/isFetch.d.ts

@@ -0,0 +1,14 @@
+import type { ESTree } from "meriyah";
+import type { ProbeContext } from "../ProbeRunner.js";
+declare function validateNode(node: ESTree.Node, ctx: ProbeContext): [boolean, any?];
+declare function initialize(ctx: ProbeContext): void;
+declare function main(_node: ESTree.Node, { sourceFile }: ProbeContext): void;
+declare const _default: {
+    name: string;
+    validateNode: typeof validateNode;
+    initialize: typeof initialize;
+    main: typeof main;
+    breakOnMatch: boolean;
+};
+export default _default;
+//# sourceMappingURL=isFetch.d.ts.map

package/dist/probes/isFetch.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"isFetch.d.ts","sourceRoot":"","sources":["../../src/probes/isFetch.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEtD,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,EACjB,GAAG,EAAE,YAAY,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAWjB;AAED,iBAAS,UAAU,CACjB,GAAG,EAAE,YAAY,QAKlB;AAED,iBAAS,IAAI,CACX,KAAK,EAAE,MAAM,CAAC,IAAI,EAClB,EAAE,UAAU,EAAE,EAAE,YAAY,QAG7B;;;;;;;;AAED,wBAME"}

package/dist/probes/isFetch.js

@@ -0,0 +1,26 @@
+// Import Third-party Dependencies
+import { getCallExpressionIdentifier } from "@nodesecure/estree-ast-utils";
+function validateNode(node, ctx) {
+    const { tracer } = ctx.sourceFile;
+    const id = getCallExpressionIdentifier(node);
+    if (id === null) {
+        return [false];
+    }
+    const data = tracer.getDataFromIdentifier(id);
+    return [data !== null && data.identifierOrMemberExpr === "fetch"];
+}
+function initialize(ctx) {
+    const { sourceFile } = ctx;
+    sourceFile.tracer.trace("fetch", { followConsecutiveAssignment: true });
+}
+function main(_node, { sourceFile }) {
+    sourceFile.flags.add("fetch");
+}
+export default {
+    name: "isFetch",
+    validateNode,
+    initialize,
+    main,
+    breakOnMatch: false
+};
+//# sourceMappingURL=isFetch.js.map

package/dist/probes/isFetch.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"isFetch.js","sourceRoot":"","sources":["../../src/probes/isFetch.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EAAE,2BAA2B,EAAE,MAAM,8BAA8B,CAAC;AAM3E,SAAS,YAAY,CACnB,IAAiB,EACjB,GAAiB;IAEjB,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,UAAU,CAAC;IAClC,MAAM,EAAE,GAAG,2BAA2B,CAAC,IAAI,CAAC,CAAC;IAE7C,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC;QAChB,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,CAAC,qBAAqB,CAAC,EAAE,CAAC,CAAC;IAE9C,OAAO,CAAC,IAAI,KAAK,IAAI,IAAI,IAAI,CAAC,sBAAsB,KAAK,OAAO,CAAC,CAAC;AACpE,CAAC;AAED,SAAS,UAAU,CACjB,GAAiB;IAEjB,MAAM,EAAE,UAAU,EAAE,GAAG,GAAG,CAAC;IAE3B,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,2BAA2B,EAAE,IAAI,EAAE,CAAC,CAAC;AAC1E,CAAC;AAED,SAAS,IAAI,CACX,KAAkB,EAClB,EAAE,UAAU,EAAgB;IAE5B,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;AAChC,CAAC;AAED,eAAe;IACb,IAAI,EAAE,SAAS;IACf,YAAY;IACZ,UAAU;IACV,IAAI;IACJ,YAAY,EAAE,KAAK;CACpB,CAAC"}

package/dist/probes/isImportDeclaration.d.ts

@@ -0,0 +1,26 @@
+import type { ESTree } from "meriyah";
+import { SourceFile } from "../SourceFile.js";
+import type { Literal } from "../types/estree.js";
+/**
+ * @description Search for ESM ImportDeclaration
+ * @see https://github.com/estree/estree/blob/master/es2015.md#importdeclaration
+ * @example
+ * import * as foo from "bar";
+ * import fs from "fs";
+ * import "make-promises-safe";
+ */
+declare function validateNode(node: ESTree.Node): [boolean, any?];
+declare function main(node: (ESTree.ImportDeclaration | ESTree.ImportExpression) & {
+    source: Literal<string>;
+}, options: {
+    sourceFile: SourceFile;
+}): void;
+declare const _default: {
+    name: string;
+    validateNode: typeof validateNode;
+    main: typeof main;
+    breakOnMatch: boolean;
+    breakGroup: string;
+};
+export default _default;
+//# sourceMappingURL=isImportDeclaration.d.ts.map

package/dist/probes/isImportDeclaration.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"isImportDeclaration.d.ts","sourceRoot":"","sources":["../../src/probes/isImportDeclaration.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAE9C,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAElD;;;;;;;GAOG;AACH,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAUjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,CACF,MAAM,CAAC,iBAAiB,GACxB,MAAM,CAAC,gBAAgB,CAC1B,GAAG;IAAE,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC;CAAE,EAChC,OAAO,EAAE;IAAE,UAAU,EAAE,UAAU,CAAC;CAAE,QAcrC;;;;;;;;AAED,wBAME"}

package/dist/probes/isImportDeclaration.js

@@ -0,0 +1,38 @@
+// Import Internal Dependencies
+import { SourceFile } from "../SourceFile.js";
+import { generateWarning } from "../warnings.js";
+/**
+ * @description Search for ESM ImportDeclaration
+ * @see https://github.com/estree/estree/blob/master/es2015.md#importdeclaration
+ * @example
+ * import * as foo from "bar";
+ * import fs from "fs";
+ * import "make-promises-safe";
+ */
+function validateNode(node) {
+    if (node.type !== "ImportDeclaration" && node.type !== "ImportExpression") {
+        return [false];
+    }
+    // Note: the source property is the right-side Literal part of the Import
+    return [
+        node.source.type === "Literal" &&
+            typeof node.source.value === "string"
+    ];
+}
+function main(node, options) {
+    const { sourceFile } = options;
+    // Searching for dangerous import "data:text/javascript;..." statement.
+    // see: https://2ality.com/2019/10/eval-via-import.html
+    if (node.source.value.startsWith("data:text/javascript")) {
+        sourceFile.warnings.push(generateWarning("unsafe-import", { value: node.source.value, location: node.loc }));
+    }
+    sourceFile.addDependency(node.source.value, node.loc);
+}
+export default {
+    name: "isImportDeclaration",
+    validateNode,
+    main,
+    breakOnMatch: true,
+    breakGroup: "import"
+};
+//# sourceMappingURL=isImportDeclaration.js.map

package/dist/probes/isImportDeclaration.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"isImportDeclaration.js","sourceRoot":"","sources":["../../src/probes/isImportDeclaration.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAGjD;;;;;;;GAOG;AACH,SAAS,YAAY,CACnB,IAAiB;IAEjB,IAAI,IAAI,CAAC,IAAI,KAAK,mBAAmB,IAAI,IAAI,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;QAC1E,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,yEAAyE;IACzE,OAAO;QACL,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,SAAS;YAC9B,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,KAAK,QAAQ;KACtC,CAAC;AACJ,CAAC;AAED,SAAS,IAAI,CACX,IAGgC,EAChC,OAAoC;IAEpC,MAAM,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC;IAE/B,uEAAuE;IACvE,uDAAuD;IACvD,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,sBAAsB,CAAC,EAAE,CAAC;QACzD,UAAU,CAAC,QAAQ,CAAC,IAAI,CACtB,eAAe,CACb,eAAe,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,CAClE,CACF,CAAC;IACJ,CAAC;IACD,UAAU,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC;AACxD,CAAC;AAED,eAAe;IACb,IAAI,EAAE,qBAAqB;IAC3B,YAAY;IACZ,IAAI;IACJ,YAAY,EAAE,IAAI;IAClB,UAAU,EAAE,QAAQ;CACrB,CAAC"}

package/dist/probes/isLiteral.d.ts

@@ -0,0 +1,21 @@
+import type { ESTree } from "meriyah";
+import { SourceFile } from "../SourceFile.js";
+import type { Literal } from "../types/estree.js";
+/**
+ * @description Search for Literal AST Node
+ * @see https://github.com/estree/estree/blob/master/es5.md#literal
+ * @example
+ * "foobar"
+ */
+declare function validateNode(node: ESTree.Node): [boolean, any?];
+declare function main(node: Literal<string>, options: {
+    sourceFile: SourceFile;
+}): void;
+declare const _default: {
+    name: string;
+    validateNode: typeof validateNode;
+    main: typeof main;
+    breakOnMatch: boolean;
+};
+export default _default;
+//# sourceMappingURL=isLiteral.d.ts.map