@nodesecure/js-x-ray 9.1.0 → 10.0.0

package/dist/walker/walker.base.d.ts

@@ -0,0 +1,17 @@
+import type { ESTree } from "meriyah";
+export interface WalkerContext {
+    skip: () => void;
+    remove: () => void;
+    replace: (node: ESTree.Node | void) => void;
+    replaceAndSkip: (node: ESTree.Node | void) => void;
+}
+export declare class WalkerBase {
+    should_skip: boolean;
+    should_remove: boolean;
+    replacement: ESTree.Node | null;
+    context: WalkerContext;
+    constructor();
+    replace(parent: ESTree.Node | null | undefined, prop: string | number | symbol | null | undefined, index: number | null | undefined, node: ESTree.Node): void;
+    remove(parent: ESTree.Node | null | undefined, prop: string | number | symbol | null | undefined, index: number | null | undefined): void;
+}
+//# sourceMappingURL=walker.base.d.ts.map

package/dist/walker/walker.base.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"walker.base.d.ts","sourceRoot":"","sources":["../../src/walker/walker.base.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEtC,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,IAAI,CAAC;IACjB,MAAM,EAAE,MAAM,IAAI,CAAC;IACnB,OAAO,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC;IAC5C,cAAc,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC;CACpD;AAED,qBAAa,UAAU;IACrB,WAAW,UAAS;IACpB,aAAa,UAAS;IACtB,WAAW,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,CAAQ;IACvC,OAAO,EAAE,aAAa,CAAC;;IAqBvB,OAAO,CACL,MAAM,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,GAAG,SAAS,EACtC,IAAI,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS,EACjD,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EAChC,IAAI,EAAE,MAAM,CAAC,IAAI;IAYnB,MAAM,CACJ,MAAM,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,GAAG,SAAS,EACtC,IAAI,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS,EACjD,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS;CAWnC"}

package/dist/walker/walker.base.js

@@ -0,0 +1,45 @@
+export class WalkerBase {
+    should_skip = false;
+    should_remove = false;
+    replacement = null;
+    context;
+    constructor() {
+        this.context = {
+            skip: () => (this.should_skip = true),
+            remove: () => (this.should_remove = true),
+            replace: (node) => {
+                if (node !== undefined) {
+                    this.replacement = node;
+                }
+            },
+            replaceAndSkip: (node) => {
+                this.should_skip = true;
+                if (node !== undefined) {
+                    this.replacement = node;
+                }
+            }
+        };
+    }
+    // eslint-disable-next-line max-params
+    replace(parent, prop, index, node) {
+        if (parent && prop) {
+            if (index === null) {
+                parent[prop] = node;
+            }
+            else {
+                parent[prop][index] = node;
+            }
+        }
+    }
+    remove(parent, prop, index) {
+        if (parent && prop) {
+            if (index !== null && index !== undefined) {
+                parent[prop].splice(index, 1);
+            }
+            else {
+                delete parent[prop];
+            }
+        }
+    }
+}
+//# sourceMappingURL=walker.base.js.map

package/dist/walker/walker.base.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"walker.base.js","sourceRoot":"","sources":["../../src/walker/walker.base.ts"],"names":[],"mappings":"AAUA,MAAM,OAAO,UAAU;IACrB,WAAW,GAAG,KAAK,CAAC;IACpB,aAAa,GAAG,KAAK,CAAC;IACtB,WAAW,GAAuB,IAAI,CAAC;IACvC,OAAO,CAAgB;IAEvB;QACE,IAAI,CAAC,OAAO,GAAG;YACb,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;YACrC,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;YACzC,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE;gBAChB,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;oBACvB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;gBAC1B,CAAC;YACH,CAAC;YACD,cAAc,EAAE,CAAC,IAAI,EAAE,EAAE;gBACvB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;gBACxB,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;oBACvB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;gBAC1B,CAAC;YACH,CAAC;SACF,CAAC;IACJ,CAAC;IAED,sCAAsC;IACtC,OAAO,CACL,MAAsC,EACtC,IAAiD,EACjD,KAAgC,EAChC,IAAiB;QAEjB,IAAI,MAAM,IAAI,IAAI,EAAE,CAAC;YACnB,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;gBACnB,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;YACtB,CAAC;iBACI,CAAC;gBACJ,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC;YAC7B,CAAC;QACH,CAAC;IACH,CAAC;IAED,MAAM,CACJ,MAAsC,EACtC,IAAiD,EACjD,KAAgC;QAEhC,IAAI,MAAM,IAAI,IAAI,EAAE,CAAC;YACnB,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;gBAC1C,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;YAChC,CAAC;iBACI,CAAC;gBACJ,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC;YACtB,CAAC;QACH,CAAC;IACH,CAAC;CACF"}

package/dist/walker/walker.sync.d.ts

@@ -0,0 +1,15 @@
+import type { ESTree } from "meriyah";
+import { WalkerBase, type WalkerContext } from "./walker.base.js";
+export type SyncHandler = (this: WalkerContext, node: ESTree.Node, context: SyncWalkerVisitorContext) => void;
+export interface SyncWalkerVisitorContext {
+    parent: ESTree.Node | null;
+    prop?: string | number;
+    index?: number | null;
+}
+export declare class SyncWalker extends WalkerBase {
+    enter: SyncHandler | undefined;
+    leave: SyncHandler | undefined;
+    constructor(enter?: SyncHandler, leave?: SyncHandler);
+    visit(node: ESTree.Node, options: SyncWalkerVisitorContext): ESTree.Node | null;
+}
+//# sourceMappingURL=walker.sync.d.ts.map

package/dist/walker/walker.sync.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"walker.sync.d.ts","sourceRoot":"","sources":["../../src/walker/walker.sync.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,UAAU,EAAE,KAAK,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAGlE,MAAM,MAAM,WAAW,GAAG,CACxB,IAAI,EAAE,aAAa,EACnB,IAAI,EAAE,MAAM,CAAC,IAAI,EACjB,OAAO,EAAE,wBAAwB,KAC9B,IAAI,CAAC;AAEV,MAAM,WAAW,wBAAwB;IACvC,MAAM,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC;IAC3B,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACvB,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACvB;AAED,qBAAa,UAAW,SAAQ,UAAU;IACxC,KAAK,EAAE,WAAW,GAAG,SAAS,CAAC;IAC/B,KAAK,EAAE,WAAW,GAAG,SAAS,CAAC;gBAG7B,KAAK,CAAC,EAAE,WAAW,EACnB,KAAK,CAAC,EAAE,WAAW;IAOrB,KAAK,CACH,IAAI,EAAE,MAAM,CAAC,IAAI,EACjB,OAAO,EAAE,wBAAwB,GAChC,MAAM,CAAC,IAAI,GAAG,IAAI;CA4FtB"}

package/dist/walker/walker.sync.js

@@ -0,0 +1,87 @@
+// Import Internal Dependencies
+import { WalkerBase } from "./walker.base.js";
+import { isNode } from "../types/estree.js";
+export class SyncWalker extends WalkerBase {
+    enter;
+    leave;
+    constructor(enter, leave) {
+        super();
+        this.enter = enter;
+        this.leave = leave;
+    }
+    visit(node, options) {
+        if (!node) {
+            return null;
+        }
+        const { parent, prop, index } = options;
+        let returnedNode = node;
+        if (this.enter) {
+            const _should_skip = this.should_skip;
+            const _should_remove = this.should_remove;
+            const _replacement = this.replacement;
+            this.should_skip = false;
+            this.should_remove = false;
+            this.replacement = null;
+            this.enter.call(this.context, returnedNode, { parent, prop, index });
+            if (this.replacement) {
+                returnedNode = this.replacement;
+                this.replace(parent, prop, index, returnedNode);
+            }
+            if (this.should_remove) {
+                this.remove(parent, prop, index);
+            }
+            const skipped = this.should_skip;
+            const removed = this.should_remove;
+            this.should_skip = _should_skip;
+            this.should_remove = _should_remove;
+            this.replacement = _replacement;
+            if (skipped) {
+                return returnedNode;
+            }
+            if (removed) {
+                return null;
+            }
+        }
+        for (const key in returnedNode) {
+            if (!Object.hasOwn(returnedNode, key)) {
+                continue;
+            }
+            const value = returnedNode[key];
+            if (Array.isArray(value)) {
+                const nodes = value;
+                for (let i = 0; i < nodes.length; i++) {
+                    const item = nodes[i];
+                    const removeItem = isNode(item) && !this.visit(item, { parent: returnedNode, prop: key, index: i });
+                    if (removeItem) {
+                        i--;
+                    }
+                }
+            }
+            else if (isNode(value)) {
+                this.visit(value, { parent: returnedNode, prop: key, index: null });
+            }
+        }
+        if (this.leave) {
+            const _replacement = this.replacement;
+            const _should_remove = this.should_remove;
+            this.replacement = null;
+            this.should_remove = false;
+            this.leave.call(this.context, returnedNode, { parent, prop, index });
+            if (this.replacement) {
+                returnedNode = this.replacement;
+                this.replace(parent, prop, index, returnedNode);
+            }
+            if (this.should_remove) {
+                this.remove(parent, prop, index);
+            }
+            const removed = this.should_remove;
+            this.replacement = _replacement;
+            this.should_remove = _should_remove;
+            if (removed) {
+                return null;
+            }
+        }
+        return returnedNode;
+    }
+}
+//# sourceMappingURL=walker.sync.js.map

package/dist/walker/walker.sync.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"walker.sync.js","sourceRoot":"","sources":["../../src/walker/walker.sync.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAsB,MAAM,kBAAkB,CAAC;AAClE,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AAc5C,MAAM,OAAO,UAAW,SAAQ,UAAU;IACxC,KAAK,CAA0B;IAC/B,KAAK,CAA0B;IAE/B,YACE,KAAmB,EACnB,KAAmB;QAEnB,KAAK,EAAE,CAAC;QACR,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;IACrB,CAAC;IAED,KAAK,CACH,IAAiB,EACjB,OAAiC;QAEjC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,OAAO,CAAC;QACxC,IAAI,YAAY,GAAG,IAAI,CAAC;QAExB,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;YACtC,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC;YAC1C,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;YACtC,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC;YACzB,IAAI,CAAC,aAAa,GAAG,KAAK,CAAC;YAC3B,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;YAExB,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,YAAY,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;YAErE,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;gBACrB,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;gBAChC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;YAClD,CAAC;YAED,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;gBACvB,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;YACnC,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC;YACjC,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC;YAEnC,IAAI,CAAC,WAAW,GAAG,YAAY,CAAC;YAChC,IAAI,CAAC,aAAa,GAAG,cAAc,CAAC;YACpC,IAAI,CAAC,WAAW,GAAG,YAAY,CAAC;YAEhC,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,YAAY,CAAC;YACtB,CAAC;YACD,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,KAAK,MAAM,GAAG,IAAI,YAAY,EAAE,CAAC;YAC/B,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,YAAY,EAAE,GAAG,CAAC,EAAE,CAAC;gBACtC,SAAS;YACX,CAAC;YACD,MAAM,KAAK,GAAY,YAAY,CAAC,GAAG,CAAC,CAAC;YAEzC,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;gBACzB,MAAM,KAAK,GAAc,KAAK,CAAC;gBAC/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;oBACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;oBACtB,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,IAAI,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,CAAC;oBACpG,IAAI,UAAU,EAAE,CAAC;wBACf,CAAC,EAAE,CAAC;oBACN,CAAC;gBACH,CAAC;YACH,CAAC;iBACI,IAAI,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;gBACvB,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,IAAI,EAAE,GAAG,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YACtE,CAAC;QACH,CAAC;QAED,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;YACtC,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC;YAC1C,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;YACxB,IAAI,CAAC,aAAa,GAAG,KAAK,CAAC;YAE3B,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,YAAY,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;YAErE,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;gBACrB,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;gBAChC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;YAClD,CAAC;YAED,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;gBACvB,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;YACnC,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC;YAEnC,IAAI,CAAC,WAAW,GAAG,YAAY,CAAC;YAChC,IAAI,CAAC,aAAa,GAAG,cAAc,CAAC;YAEpC,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,OAAO,YAAY,CAAC;IACtB,CAAC;CACF"}

package/dist/warnings.d.ts

@@ -0,0 +1,93 @@
+import type { ESTree } from "meriyah";
+import { type SourceArrayLocation } from "./utils/toArrayLocation.js";
+export type OptionalWarningName = "synchronous-io";
+export type WarningName = "parsing-error" | "encoded-literal" | "unsafe-regex" | "unsafe-stmt" | "short-identifiers" | "suspicious-literal" | "suspicious-file" | "obfuscated-code" | "weak-crypto" | "shady-link" | "unsafe-command" | "unsafe-import" | "serialize-environment" | "data-exfiltration" | OptionalWarningName;
+export interface Warning<T = WarningName> {
+    kind: T | (string & {});
+    file?: string;
+    value: string | null;
+    source: string;
+    location: null | SourceArrayLocation | SourceArrayLocation[];
+    i18n: string;
+    severity: "Information" | "Warning" | "Critical";
+    experimental?: boolean;
+}
+export declare const warnings: Readonly<{
+    "parsing-error": {
+        i18n: string;
+        severity: "Information";
+    };
+    "unsafe-import": {
+        i18n: string;
+        severity: "Warning";
+    };
+    "unsafe-regex": {
+        i18n: string;
+        severity: "Warning";
+    };
+    "unsafe-stmt": {
+        code: string;
+        i18n: string;
+        severity: "Warning";
+    };
+    "encoded-literal": {
+        i18n: string;
+        severity: "Information";
+    };
+    "short-identifiers": {
+        i18n: string;
+        severity: "Warning";
+    };
+    "suspicious-literal": {
+        i18n: string;
+        severity: "Warning";
+    };
+    "suspicious-file": {
+        i18n: string;
+        severity: "Critical";
+        experimental: false;
+    };
+    "obfuscated-code": {
+        i18n: string;
+        severity: "Critical";
+        experimental: true;
+    };
+    "weak-crypto": {
+        i18n: string;
+        severity: "Information";
+        experimental: false;
+    };
+    "shady-link": {
+        i18n: string;
+        severity: "Warning";
+        experimental: false;
+    };
+    "unsafe-command": {
+        i18n: string;
+        severity: "Warning";
+        experimental: true;
+    };
+    "synchronous-io": {
+        i18n: string;
+        severity: "Warning";
+        experimental: true;
+    };
+    "serialize-environment": {
+        i18n: string;
+        severity: "Warning";
+        experimental: false;
+    };
+    "data-exfiltration": {
+        i18n: string;
+        severity: "Warning";
+        experimental: false;
+    };
+}>;
+export interface GenerateWarningOptions {
+    location?: ESTree.SourceLocation | null;
+    file?: string | null;
+    value: string | null;
+    source?: string;
+}
+export declare function generateWarning<T extends WarningName>(kind: T, options: GenerateWarningOptions): Warning<T>;
+//# sourceMappingURL=warnings.d.ts.map

package/dist/warnings.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"warnings.d.ts","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAGL,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AAGpC,MAAM,MAAM,mBAAmB,GAC3B,gBAAgB,CAAC;AAErB,MAAM,MAAM,WAAW,GACnB,eAAe,GACf,iBAAiB,GACjB,cAAc,GACd,aAAa,GACb,mBAAmB,GACnB,oBAAoB,GACpB,iBAAiB,GACjB,iBAAiB,GACjB,aAAa,GACb,YAAY,GACZ,gBAAgB,GAChB,eAAe,GACf,uBAAuB,GACvB,mBAAmB,GACnB,mBAAmB,CAAC;AAExB,MAAM,WAAW,OAAO,CAAC,CAAC,GAAG,WAAW;IACtC,IAAI,EAAE,CAAC,GAAG,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC;IACxB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,IAAI,GAAG,mBAAmB,GAAG,mBAAmB,EAAE,CAAC;IAC7D,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,aAAa,GAAG,SAAS,GAAG,UAAU,CAAC;IACjD,YAAY,CAAC,EAAE,OAAO,CAAC;CACxB;AAED,eAAO,MAAM,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAsEgE,CAAC;AAEtF,MAAM,WAAW,sBAAsB;IACrC,QAAQ,CAAC,EAAE,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC;IACxC,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,wBAAgB,eAAe,CAAC,CAAC,SAAS,WAAW,EACnD,IAAI,EAAE,CAAC,EACP,OAAO,EAAE,sBAAsB,GAC9B,OAAO,CAAC,CAAC,CAAC,CA0BZ"}

package/dist/warnings.js

@@ -0,0 +1,96 @@
+// Import Internal Dependencies
+import { toArrayLocation, rootLocation } from "./utils/toArrayLocation.js";
+import { notNullOrUndefined } from "./utils/notNullOrUndefined.js";
+export const warnings = Object.freeze({
+    "parsing-error": {
+        i18n: "sast_warnings.parsing_error",
+        severity: "Information"
+    },
+    "unsafe-import": {
+        i18n: "sast_warnings.unsafe_import",
+        severity: "Warning"
+    },
+    "unsafe-regex": {
+        i18n: "sast_warnings.unsafe_regex",
+        severity: "Warning"
+    },
+    "unsafe-stmt": {
+        code: "unsafe-stmt",
+        i18n: "sast_warnings.unsafe_stmt",
+        severity: "Warning"
+    },
+    "encoded-literal": {
+        i18n: "sast_warnings.encoded_literal",
+        severity: "Information"
+    },
+    "short-identifiers": {
+        i18n: "sast_warnings.short_identifiers",
+        severity: "Warning"
+    },
+    "suspicious-literal": {
+        i18n: "sast_warnings.suspicious_literal",
+        severity: "Warning"
+    },
+    "suspicious-file": {
+        i18n: "sast_warnings.suspicious_file",
+        severity: "Critical",
+        experimental: false
+    },
+    "obfuscated-code": {
+        i18n: "sast_warnings.obfuscated_code",
+        severity: "Critical",
+        experimental: true
+    },
+    "weak-crypto": {
+        i18n: "sast_warnings.weak_crypto",
+        severity: "Information",
+        experimental: false
+    },
+    "shady-link": {
+        i18n: "sast_warnings.shady_link",
+        severity: "Warning",
+        experimental: false
+    },
+    "unsafe-command": {
+        i18n: "sast_warnings.unsafe_command",
+        severity: "Warning",
+        experimental: true
+    },
+    "synchronous-io": {
+        i18n: "sast_warnings.synchronous_io",
+        severity: "Warning",
+        experimental: true
+    },
+    "serialize-environment": {
+        i18n: "sast_warnings.serialize_environment",
+        severity: "Warning",
+        experimental: false
+    },
+    "data-exfiltration": {
+        i18n: "sast_warnings.data_exfiltration",
+        severity: "Warning",
+        experimental: false
+    }
+});
+export function generateWarning(kind, options) {
+    const { file = null, value, source = "JS-X-Ray" } = options;
+    const location = options.location ?? rootLocation();
+    if (kind === "encoded-literal") {
+        return {
+            kind,
+            value,
+            location: [toArrayLocation(location)],
+            source,
+            ...warnings[kind]
+        };
+    }
+    return {
+        kind,
+        location: toArrayLocation(location),
+        source,
+        ...warnings[kind],
+        ...(notNullOrUndefined(file) ? { file } : {}),
+        ...(notNullOrUndefined(value) ? { value } : { value: null })
+    };
+}
+//# sourceMappingURL=warnings.js.map

package/dist/warnings.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"warnings.js","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EACL,eAAe,EACf,YAAY,EAEb,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAiCnE,MAAM,CAAC,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC;IACpC,eAAe,EAAE;QACf,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,aAAa;KACxB;IACD,eAAe,EAAE;QACf,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,SAAS;KACpB;IACD,cAAc,EAAE;QACd,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,SAAS;KACpB;IACD,aAAa,EAAE;QACb,IAAI,EAAE,aAAa;QACnB,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,SAAS;KACpB;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,aAAa;KACxB;IACD,mBAAmB,EAAE;QACnB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;KACpB;IACD,oBAAoB,EAAE;QACpB,IAAI,EAAE,kCAAkC;QACxC,QAAQ,EAAE,SAAS;KACpB;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,UAAU;QACpB,YAAY,EAAE,KAAK;KACpB;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,UAAU;QACpB,YAAY,EAAE,IAAI;KACnB;IACD,aAAa,EAAE;QACb,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,aAAa;QACvB,YAAY,EAAE,KAAK;KACpB;IACD,YAAY,EAAE;QACZ,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,gBAAgB,EAAE;QAChB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,IAAI;KACnB;IACD,gBAAgB,EAAE;QAChB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,IAAI;KACnB;IACD,uBAAuB,EAAE;QACvB,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;IACD,mBAAmB,EAAE;QACnB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,KAAK;KACpB;CACF,CAAoF,CAAC;AAStF,MAAM,UAAU,eAAe,CAC7B,IAAO,EACP,OAA+B;IAE/B,MAAM,EACJ,IAAI,GAAG,IAAI,EACX,KAAK,EACL,MAAM,GAAG,UAAU,EACpB,GAAG,OAAO,CAAC;IACZ,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,YAAY,EAAE,CAAC;IAEpD,IAAI,IAAI,KAAK,iBAAiB,EAAE,CAAC;QAC/B,OAAO;YACL,IAAI;YACJ,KAAK;YACL,QAAQ,EAAE,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;YACrC,MAAM;YACN,GAAG,QAAQ,CAAC,IAAI,CAAC;SAClB,CAAC;IACJ,CAAC;IAED,OAAO;QACL,IAAI;QACJ,QAAQ,EAAE,eAAe,CAAC,QAAQ,CAAC;QACnC,MAAM;QACN,GAAG,QAAQ,CAAC,IAAI,CAAC;QACjB,GAAG,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC7C,GAAG,CAAC,kBAAkB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;KAC7D,CAAC;AACJ,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nodesecure/js-x-ray",
-  "version": "9.1.0",
+  "version": "10.0.0",
   "description": "JavaScript AST XRay analysis",
   "type": "module",
   "exports": {
@@ -36,10 +36,7 @@
     "security"
   ],
   "files": [
-    "src",
-    "types",
-    "index.js",
-    "index.d.ts"
+    "dist"
   ],
   "author": "GENTILHOMME Thomas <gentilhomme.thomas@gmail.com>",
   "license": "MIT",
@@ -48,11 +45,10 @@
   },
   "homepage": "https://github.com/NodeSecure/js-x-ray#readme",
   "dependencies": {
-    "@nodesecure/estree-ast-utils": "^4.0.0",
+    "@nodesecure/estree-ast-utils": "^4.2.0",
     "@nodesecure/sec-literal": "^1.2.0",
-    "@nodesecure/tracer": "^2.0.0",
+    "@nodesecure/tracer": "^3.0.0",
     "digraph-js": "^2.2.3",
-    "estree-walker": "^3.0.1",
     "frequency-set": "^1.0.2",
     "is-minified-code": "^2.0.0",
     "meriyah": "^6.0.0",