@nodesecure/js-x-ray 9.2.0 → 10.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/AstAnalyser.d.ts +19 -4
- package/dist/AstAnalyser.d.ts.map +1 -1
- package/dist/AstAnalyser.js +43 -25
- package/dist/AstAnalyser.js.map +1 -1
- package/dist/ProbeRunner.d.ts +21 -16
- package/dist/ProbeRunner.d.ts.map +1 -1
- package/dist/ProbeRunner.js +46 -16
- package/dist/ProbeRunner.js.map +1 -1
- package/dist/SourceFile.d.ts +2 -19
- package/dist/SourceFile.d.ts.map +1 -1
- package/dist/SourceFile.js +1 -30
- package/dist/SourceFile.js.map +1 -1
- package/dist/index.d.ts +1 -0
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +1 -0
- package/dist/index.js.map +1 -1
- package/dist/pipelines/Runner.class.d.ts +11 -0
- package/dist/pipelines/Runner.class.d.ts.map +1 -0
- package/dist/pipelines/Runner.class.js +20 -0
- package/dist/pipelines/Runner.class.js.map +1 -0
- package/dist/pipelines/deobfuscate.d.ts +8 -0
- package/dist/pipelines/deobfuscate.d.ts.map +1 -0
- package/dist/pipelines/deobfuscate.js +33 -0
- package/dist/pipelines/deobfuscate.js.map +1 -0
- package/dist/pipelines/index.d.ts +8 -0
- package/dist/pipelines/index.d.ts.map +1 -0
- package/dist/pipelines/index.js +8 -0
- package/dist/pipelines/index.js.map +1 -0
- package/dist/probes/data-exfiltration.d.ts +19 -0
- package/dist/probes/data-exfiltration.d.ts.map +1 -0
- package/dist/probes/data-exfiltration.js +84 -0
- package/dist/probes/data-exfiltration.js.map +1 -0
- package/dist/probes/isFetch.d.ts +5 -5
- package/dist/probes/isFetch.d.ts.map +1 -1
- package/dist/probes/isFetch.js +12 -4
- package/dist/probes/isFetch.js.map +1 -1
- package/dist/probes/isLiteral.js +1 -1
- package/dist/probes/isLiteral.js.map +1 -1
- package/dist/probes/isRequire/RequireCallExpressionWalker.d.ts.map +1 -1
- package/dist/probes/isRequire/RequireCallExpressionWalker.js +32 -35
- package/dist/probes/isRequire/RequireCallExpressionWalker.js.map +1 -1
- package/dist/probes/isRequire/isRequire.d.ts +4 -9
- package/dist/probes/isRequire/isRequire.d.ts.map +1 -1
- package/dist/probes/isRequire/isRequire.js +7 -9
- package/dist/probes/isRequire/isRequire.js.map +1 -1
- package/dist/probes/isSerializeEnv.d.ts +4 -6
- package/dist/probes/isSerializeEnv.d.ts.map +1 -1
- package/dist/probes/isSerializeEnv.js +13 -11
- package/dist/probes/isSerializeEnv.js.map +1 -1
- package/dist/probes/isSyncIO.d.ts +4 -6
- package/dist/probes/isSyncIO.d.ts.map +1 -1
- package/dist/probes/isSyncIO.js +6 -7
- package/dist/probes/isSyncIO.js.map +1 -1
- package/dist/probes/isUnsafeCallee.d.ts +2 -5
- package/dist/probes/isUnsafeCallee.d.ts.map +1 -1
- package/dist/probes/isUnsafeCallee.js +5 -7
- package/dist/probes/isUnsafeCallee.js.map +1 -1
- package/dist/probes/isUnsafeCommand.d.ts +2 -5
- package/dist/probes/isUnsafeCommand.d.ts.map +1 -1
- package/dist/probes/isUnsafeCommand.js +19 -9
- package/dist/probes/isUnsafeCommand.js.map +1 -1
- package/dist/probes/isWeakCrypto.d.ts +4 -6
- package/dist/probes/isWeakCrypto.d.ts.map +1 -1
- package/dist/probes/isWeakCrypto.js +7 -7
- package/dist/probes/isWeakCrypto.js.map +1 -1
- package/dist/types/estree.d.ts +4 -3
- package/dist/types/estree.d.ts.map +1 -1
- package/dist/types/estree.js +11 -0
- package/dist/types/estree.js.map +1 -1
- package/dist/walker/index.d.ts +9 -0
- package/dist/walker/index.d.ts.map +1 -0
- package/dist/walker/index.js +10 -0
- package/dist/walker/index.js.map +1 -0
- package/dist/walker/walker.base.d.ts +17 -0
- package/dist/walker/walker.base.d.ts.map +1 -0
- package/dist/walker/walker.base.js +45 -0
- package/dist/walker/walker.base.js.map +1 -0
- package/dist/walker/walker.sync.d.ts +15 -0
- package/dist/walker/walker.sync.d.ts.map +1 -0
- package/dist/walker/walker.sync.js +87 -0
- package/dist/walker/walker.sync.js.map +1 -0
- package/dist/warnings.d.ts +6 -1
- package/dist/warnings.d.ts.map +1 -1
- package/dist/warnings.js +8 -3
- package/dist/warnings.js.map +1 -1
- package/package.json +5 -6
package/dist/probes/isSyncIO.js
CHANGED
|
@@ -1,7 +1,5 @@
|
|
|
1
1
|
// Import Third-party Dependencies
|
|
2
2
|
import { getCallExpressionIdentifier } from "@nodesecure/estree-ast-utils";
|
|
3
|
-
// Import Internal Dependencies
|
|
4
|
-
import { SourceFile } from "../SourceFile.js";
|
|
5
3
|
import { generateWarning } from "../warnings.js";
|
|
6
4
|
// CONSTANTS
|
|
7
5
|
const kTracedNodeCoreModules = ["fs", "crypto", "child_process", "zlib"];
|
|
@@ -34,7 +32,8 @@ const kSyncIOIdentifierOrMemberExps = [
|
|
|
34
32
|
"zlib.brotliCompressSync",
|
|
35
33
|
"zlib.brotliDecompressSync"
|
|
36
34
|
];
|
|
37
|
-
function validateNode(node,
|
|
35
|
+
function validateNode(node, ctx) {
|
|
36
|
+
const { tracer } = ctx.sourceFile;
|
|
38
37
|
const id = getCallExpressionIdentifier(node, {
|
|
39
38
|
externalIdentifierLookup: (name) => tracer.literalIdentifiers.get(name) ?? null
|
|
40
39
|
});
|
|
@@ -48,21 +47,21 @@ function validateNode(node, { tracer }) {
|
|
|
48
47
|
data.identifierOrMemberExpr.endsWith("Sync")
|
|
49
48
|
];
|
|
50
49
|
}
|
|
51
|
-
function initialize(
|
|
50
|
+
function initialize(ctx) {
|
|
52
51
|
kSyncIOIdentifierOrMemberExps.forEach((identifierOrMemberExp) => {
|
|
53
52
|
const moduleName = identifierOrMemberExp.split(".")[0];
|
|
54
|
-
|
|
53
|
+
ctx.sourceFile.tracer.trace(identifierOrMemberExp, {
|
|
55
54
|
followConsecutiveAssignment: true,
|
|
56
55
|
moduleName
|
|
57
56
|
});
|
|
58
57
|
});
|
|
59
58
|
}
|
|
60
|
-
function main(node,
|
|
59
|
+
function main(node, ctx) {
|
|
61
60
|
const warning = generateWarning("synchronous-io", {
|
|
62
61
|
value: node.callee.name,
|
|
63
62
|
location: node.loc
|
|
64
63
|
});
|
|
65
|
-
sourceFile.warnings.push(warning);
|
|
64
|
+
ctx.sourceFile.warnings.push(warning);
|
|
66
65
|
}
|
|
67
66
|
export default {
|
|
68
67
|
name: "isSyncIO",
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isSyncIO.js","sourceRoot":"","sources":["../../src/probes/isSyncIO.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EAAE,2BAA2B,EAAE,MAAM,8BAA8B,CAAC;
|
|
1
|
+
{"version":3,"file":"isSyncIO.js","sourceRoot":"","sources":["../../src/probes/isSyncIO.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EAAE,2BAA2B,EAAE,MAAM,8BAA8B,CAAC;AAK3E,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAEjD,YAAY;AACZ,MAAM,sBAAsB,GAAG,CAAC,IAAI,EAAE,QAAQ,EAAE,eAAe,EAAE,MAAM,CAAC,CAAC;AACzE,MAAM,6BAA6B,GAAG;IACpC,mBAAmB;IACnB,mBAAmB;IACnB,4BAA4B;IAC5B,iBAAiB;IACjB,kBAAkB;IAClB,mBAAmB;IACnB,aAAa;IACb,cAAc;IACd,gBAAgB;IAChB,aAAa;IACb,cAAc;IACd,eAAe;IACf,eAAe;IACf,gBAAgB;IAChB,aAAa;IACb,cAAc;IACd,aAAa;IACb,iBAAiB;IACjB,wBAAwB;IACxB,yBAAyB;IACzB,4BAA4B;IAC5B,kBAAkB;IAClB,kBAAkB;IAClB,eAAe;IACf,iBAAiB;IACjB,yBAAyB;IACzB,2BAA2B;CAC5B,CAAC;AAEF,SAAS,YAAY,CACnB,IAAiB,EACjB,GAAiB;IAEjB,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,UAAU,CAAC;IAClC,MAAM,EAAE,GAAG,2BAA2B,CACpC,IAAI,EACJ;QACE,wBAAwB,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,MAAM,CAAC,kBAAkB,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI;KAChF,CACF,CAAC;IACF,IACE,EAAE,KAAK,IAAI;QACX,CAAC,sBAAsB,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,MAAM,CAAC,eAAe,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,EACpF,CAAC;QACD,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,CAAC,qBAAqB,CAAC,EAAE,CAAC,CAAC;IAE9C,OAAO;QACL,IAAI,KAAK,IAAI;YACb,IAAI,CAAC,sBAAsB,CAAC,QAAQ,CAAC,MAAM,CAAC;KAC7C,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CACjB,GAAiB;IAEjB,6BAA6B,CAAC,OAAO,CAAC,CAAC,qBAAqB,EAAE,EAAE;QAC9D,MAAM,UAAU,GAAG,qBAAqB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAEvD,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,qBAAqB,EAAE;YACjD,2BAA2B,EAAE,IAAI;YACjC,UAAU;SACX,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,IAAI,CACX,IAA2B,EAC3B,GAAiB;IAEjB,MAAM,OAAO,GAAG,eAAe,CAAC,gBAAgB,EAAE;QAChD,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI;QACvB,QAAQ,EAAE,IAAI,CAAC,GAAG;KACnB,CAAC,CAAC;IACH,GAAG,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;AACxC,CAAC;AAED,eAAe;IACb,IAAI,EAAE,UAAU;IAChB,YAAY;IACZ,IAAI;IACJ,UAAU;IACV,YAAY,EAAE,KAAK;CACpB,CAAC"}
|
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
import type { ESTree } from "meriyah";
|
|
2
|
-
import {
|
|
2
|
+
import type { ProbeMainContext } from "../ProbeRunner.js";
|
|
3
3
|
/**
|
|
4
4
|
* @description Detect unsafe statement
|
|
5
5
|
* @example
|
|
@@ -7,10 +7,7 @@ import { SourceFile } from "../SourceFile.js";
|
|
|
7
7
|
* Function("return this")();
|
|
8
8
|
*/
|
|
9
9
|
declare function validateNode(node: ESTree.Node): [boolean, any?];
|
|
10
|
-
declare function main(node: ESTree.CallExpression,
|
|
11
|
-
sourceFile: SourceFile;
|
|
12
|
-
data?: string;
|
|
13
|
-
}): symbol;
|
|
10
|
+
declare function main(node: ESTree.CallExpression, ctx: ProbeMainContext): symbol;
|
|
14
11
|
export declare function isUnsafeCallee(node: ESTree.CallExpression | ESTree.Node): [boolean, "eval" | "Function" | null];
|
|
15
12
|
declare const _default: {
|
|
16
13
|
name: string;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isUnsafeCallee.d.ts","sourceRoot":"","sources":["../../src/probes/isUnsafeCallee.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;
|
|
1
|
+
{"version":3,"file":"isUnsafeCallee.d.ts","sourceRoot":"","sources":["../../src/probes/isUnsafeCallee.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAKtC,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAE1D;;;;;GAKG;AACH,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAEjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,cAAc,EAC3B,GAAG,EAAE,gBAAgB,UAsBtB;AAoBD,wBAAgB,cAAc,CAC5B,IAAI,EAAE,MAAM,CAAC,cAAc,GAAG,MAAM,CAAC,IAAI,GACxC,CAAC,OAAO,EAAE,MAAM,GAAG,UAAU,GAAG,IAAI,CAAC,CAcvC;;;;;;;AAED,wBAKE"}
|
|
@@ -1,8 +1,6 @@
|
|
|
1
1
|
import { getCallExpressionIdentifier } from "@nodesecure/estree-ast-utils";
|
|
2
2
|
// Import Internal Dependencies
|
|
3
|
-
import { SourceFile } from "../SourceFile.js";
|
|
4
3
|
import { generateWarning } from "../warnings.js";
|
|
5
|
-
import { ProbeSignals } from "../ProbeRunner.js";
|
|
6
4
|
/**
|
|
7
5
|
* @description Detect unsafe statement
|
|
8
6
|
* @example
|
|
@@ -12,22 +10,22 @@ import { ProbeSignals } from "../ProbeRunner.js";
|
|
|
12
10
|
function validateNode(node) {
|
|
13
11
|
return isUnsafeCallee(node);
|
|
14
12
|
}
|
|
15
|
-
function main(node,
|
|
16
|
-
const { sourceFile, data: calleeName } =
|
|
13
|
+
function main(node, ctx) {
|
|
14
|
+
const { sourceFile, data: calleeName, signals } = ctx;
|
|
17
15
|
if (!calleeName) {
|
|
18
|
-
return
|
|
16
|
+
return signals.Skip;
|
|
19
17
|
}
|
|
20
18
|
if (calleeName === "Function" &&
|
|
21
19
|
node.callee.arguments.length > 0 &&
|
|
22
20
|
node.callee.arguments[0].value === "return this") {
|
|
23
|
-
return
|
|
21
|
+
return signals.Skip;
|
|
24
22
|
}
|
|
25
23
|
const warning = generateWarning("unsafe-stmt", {
|
|
26
24
|
value: calleeName,
|
|
27
25
|
location: node.loc
|
|
28
26
|
});
|
|
29
27
|
sourceFile.warnings.push(warning);
|
|
30
|
-
return
|
|
28
|
+
return signals.Skip;
|
|
31
29
|
}
|
|
32
30
|
function isEvalCallee(node) {
|
|
33
31
|
const identifier = getCallExpressionIdentifier(node, {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isUnsafeCallee.js","sourceRoot":"","sources":["../../src/probes/isUnsafeCallee.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,2BAA2B,EAAE,MAAM,8BAA8B,CAAC;AAE3E,+BAA+B;AAC/B,OAAO,EAAE,
|
|
1
|
+
{"version":3,"file":"isUnsafeCallee.js","sourceRoot":"","sources":["../../src/probes/isUnsafeCallee.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,2BAA2B,EAAE,MAAM,8BAA8B,CAAC;AAE3E,+BAA+B;AAC/B,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAGjD;;;;;GAKG;AACH,SAAS,YAAY,CACnB,IAAiB;IAEjB,OAAO,cAAc,CAAC,IAAI,CAAC,CAAC;AAC9B,CAAC;AAED,SAAS,IAAI,CACX,IAA2B,EAC3B,GAAqB;IAErB,MAAM,EAAE,UAAU,EAAE,IAAI,EAAE,UAAU,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC;IAEtD,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,OAAO,CAAC,IAAI,CAAC;IACtB,CAAC;IACD,IACE,UAAU,KAAK,UAAU;QACzB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC;QAChC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,KAAK,KAAK,aAAa,EAChD,CAAC;QACD,OAAO,OAAO,CAAC,IAAI,CAAC;IACtB,CAAC;IAED,MAAM,OAAO,GAAG,eAAe,CAAC,aAAa,EAAE;QAC7C,KAAK,EAAE,UAAU;QACjB,QAAQ,EAAE,IAAI,CAAC,GAAG;KACnB,CAAC,CAAC;IACH,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAElC,OAAO,OAAO,CAAC,IAAI,CAAC;AACtB,CAAC;AAED,SAAS,YAAY,CACnB,IAA2B;IAE3B,MAAM,UAAU,GAAG,2BAA2B,CAAC,IAAI,EAAE;QACnD,qBAAqB,EAAE,KAAK;KAC7B,CAAC,CAAC;IAEH,OAAO,UAAU,KAAK,MAAM,CAAC;AAC/B,CAAC;AAED,SAAS,gBAAgB,CACvB,IAA2B;IAE3B,MAAM,UAAU,GAAG,2BAA2B,CAAC,IAAI,CAAC,CAAC;IAErD,OAAO,UAAU,KAAK,UAAU,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,gBAAgB,CAAC;AAC5E,CAAC;AAED,MAAM,UAAU,cAAc,CAC5B,IAAyC;IAEzC,IAAI,IAAI,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;QACnC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;IACvB,CAAC;IAED,IAAI,YAAY,CAAC,IAAI,CAAC,EAAE,CAAC;QACvB,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;IACxB,CAAC;IAED,IAAI,gBAAgB,CAAC,IAAI,CAAC,EAAE,CAAC;QAC3B,OAAO,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;IAC5B,CAAC;IAED,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;AACvB,CAAC;AAED,eAAe;IACb,IAAI,EAAE,gBAAgB;IACtB,YAAY;IACZ,IAAI;IACJ,YAAY,EAAE,KAAK;CACpB,CAAC"}
|
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
import type { ESTree } from "meriyah";
|
|
2
|
-
import {
|
|
2
|
+
import type { ProbeMainContext } from "../ProbeRunner.js";
|
|
3
3
|
/**
|
|
4
4
|
* @description Detect spawn or exec unsafe commands
|
|
5
5
|
* @example
|
|
@@ -11,10 +11,7 @@ import { SourceFile } from "../SourceFile.js";
|
|
|
11
11
|
* exec("csrutil status");
|
|
12
12
|
*/
|
|
13
13
|
declare function validateNode(node: ESTree.Node): [boolean, any?];
|
|
14
|
-
declare function main(node: ESTree.CallExpression,
|
|
15
|
-
sourceFile: SourceFile;
|
|
16
|
-
data?: string;
|
|
17
|
-
}): symbol | null;
|
|
14
|
+
declare function main(node: ESTree.CallExpression, ctx: ProbeMainContext): symbol | null;
|
|
18
15
|
declare const _default: {
|
|
19
16
|
name: string;
|
|
20
17
|
validateNode: typeof validateNode;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isUnsafeCommand.d.ts","sourceRoot":"","sources":["../../src/probes/isUnsafeCommand.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;
|
|
1
|
+
{"version":3,"file":"isUnsafeCommand.d.ts","sourceRoot":"","sources":["../../src/probes/isUnsafeCommand.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAQtC,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAkC1D;;;;;;;;;GASG;AACH,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CA+CjB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,cAAc,EAC3B,GAAG,EAAE,gBAAgB,iBAoCtB;;;;;;AAED,wBAIE"}
|
|
@@ -1,10 +1,8 @@
|
|
|
1
1
|
// Import Internal Dependencies
|
|
2
|
-
import { SourceFile } from "../SourceFile.js";
|
|
3
2
|
import { generateWarning } from "../warnings.js";
|
|
4
|
-
import {
|
|
5
|
-
import { isLiteral } from "../types/estree.js";
|
|
3
|
+
import { isLiteral, isTemplateLiteral } from "../types/estree.js";
|
|
6
4
|
// CONSTANTS
|
|
7
|
-
const kUnsafeCommands = ["csrutil"];
|
|
5
|
+
const kUnsafeCommands = ["csrutil", "uname", "ping", "curl"];
|
|
8
6
|
function isUnsafeCommand(command) {
|
|
9
7
|
return kUnsafeCommands.some((unsafeCommand) => command.includes(unsafeCommand));
|
|
10
8
|
}
|
|
@@ -14,6 +12,18 @@ function isSpawnOrExec(name) {
|
|
|
14
12
|
name === "spawnSync" ||
|
|
15
13
|
name === "execSync";
|
|
16
14
|
}
|
|
15
|
+
function getCommand(commandArg) {
|
|
16
|
+
let command = "";
|
|
17
|
+
switch (commandArg.type) {
|
|
18
|
+
case "Literal":
|
|
19
|
+
command = commandArg.value;
|
|
20
|
+
break;
|
|
21
|
+
case "TemplateLiteral":
|
|
22
|
+
command = commandArg.quasis.at(0)?.value.raw;
|
|
23
|
+
break;
|
|
24
|
+
}
|
|
25
|
+
return command;
|
|
26
|
+
}
|
|
17
27
|
/**
|
|
18
28
|
* @description Detect spawn or exec unsafe commands
|
|
19
29
|
* @example
|
|
@@ -62,13 +72,13 @@ function validateNode(node) {
|
|
|
62
72
|
}
|
|
63
73
|
return [false];
|
|
64
74
|
}
|
|
65
|
-
function main(node,
|
|
66
|
-
const { sourceFile, data: methodName } =
|
|
75
|
+
function main(node, ctx) {
|
|
76
|
+
const { sourceFile, data: methodName, signals } = ctx;
|
|
67
77
|
const commandArg = node.arguments[0];
|
|
68
|
-
if (!isLiteral(commandArg)) {
|
|
78
|
+
if (!isLiteral(commandArg) && !isTemplateLiteral(commandArg)) {
|
|
69
79
|
return null;
|
|
70
80
|
}
|
|
71
|
-
let command = commandArg
|
|
81
|
+
let command = getCommand(commandArg);
|
|
72
82
|
if (isUnsafeCommand(command)) {
|
|
73
83
|
// Spawned command arguments are filled into an Array
|
|
74
84
|
// as second arguments. This is why we should add them
|
|
@@ -88,7 +98,7 @@ function main(node, options) {
|
|
|
88
98
|
location: node.loc
|
|
89
99
|
});
|
|
90
100
|
sourceFile.warnings.push(warning);
|
|
91
|
-
return
|
|
101
|
+
return signals.Skip;
|
|
92
102
|
}
|
|
93
103
|
return null;
|
|
94
104
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isUnsafeCommand.js","sourceRoot":"","sources":["../../src/probes/isUnsafeCommand.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,
|
|
1
|
+
{"version":3,"file":"isUnsafeCommand.js","sourceRoot":"","sources":["../../src/probes/isUnsafeCommand.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EACL,SAAS,EACT,iBAAiB,EAClB,MAAM,oBAAoB,CAAC;AAG5B,YAAY;AACZ,MAAM,eAAe,GAAG,CAAC,SAAS,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;AAE7D,SAAS,eAAe,CACtB,OAAe;IAEf,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;AAClF,CAAC;AAED,SAAS,aAAa,CACpB,IAAY;IAEZ,OAAO,IAAI,KAAK,OAAO;QACrB,IAAI,KAAK,MAAM;QACf,IAAI,KAAK,WAAW;QACpB,IAAI,KAAK,UAAU,CAAC;AACxB,CAAC;AAED,SAAS,UAAU,CAAC,UAAmD;IACrE,IAAI,OAAO,GAAG,EAAE,CAAC;IACjB,QAAQ,UAAU,CAAC,IAAI,EAAE,CAAC;QACxB,KAAK,SAAS;YACZ,OAAO,GAAG,UAAU,CAAC,KAAe,CAAC;YACrC,MAAM;QACR,KAAK,iBAAiB;YACpB,OAAO,GAAG,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,GAAa,CAAC;YACvD,MAAM;IACV,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;;;;;;GASG;AACH,SAAS,YAAY,CACnB,IAAiB;IAEjB,IAAI,IAAI,CAAC,IAAI,KAAK,gBAAgB,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAClE,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,8CAA8C;IAC9C,yBAAyB;IACzB,KAAK;IACL,6CAA6C;IAC7C,aAAa;IACb,IAAI,IAAI,CAAC,IAAI,KAAK,gBAAgB;QAChC,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,YAAY;QACjC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,EAC/B,CAAC;QACD,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,kEAAkE;IAClE,gEAAgE;IAChE,IACE,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,kBAAkB;QACvC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,KAAK,YAAY;QAC1C,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,EACxC,CAAC;QACD,2BAA2B;QAC3B,0BAA0B;QAC1B,IACE,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,KAAK,YAAY;YACxC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,KAAK,eAAe,EAC3C,CAAC;YACD,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAC3C,CAAC;QACD,sCAAsC;QACtC,qCAAqC;QACrC,IACE,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,KAAK,gBAAgB;YAC5C,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,KAAK,YAAY;YAC/C,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,KAAK,SAAS;YAC5C,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC;YACzC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,SAAS;YAClD,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,KAAK,KAAK,eAAe,EACzD,CAAC;YACD,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAED,OAAO,CAAC,KAAK,CAAC,CAAC;AACjB,CAAC;AAED,SAAS,IAAI,CACX,IAA2B,EAC3B,GAAqB;IAErB,MAAM,EAAE,UAAU,EAAE,IAAI,EAAE,UAAU,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC;IAEtD,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;IACrC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,EAAE,CAAC;QAC7D,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,OAAO,GAAG,UAAU,CAAC,UAAU,CAAC,CAAC;IACrC,IAAI,eAAe,CAAC,OAAO,CAAC,EAAE,CAAC;QAC7B,qDAAqD;QACrD,sDAAsD;QACtD,kCAAkC;QAClC,IAAI,UAAU,KAAK,OAAO,IAAI,UAAU,KAAK,WAAW,EAAE,CAAC;YACzD,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;YAErC,IAAI,OAAO,IAAI,OAAO,CAAC,IAAI,KAAK,iBAAiB,EAAE,CAAC;gBAClD,OAAO,CAAC,QAAQ;qBACb,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;qBACvC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;oBACnB,OAAO,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;gBACjC,CAAC,CAAC,CAAC;YACP,CAAC;QACH,CAAC;QAED,MAAM,OAAO,GAAG,eAAe,CAAC,gBAAgB,EAAE;YAChD,KAAK,EAAE,OAAO;YACd,QAAQ,EAAE,IAAI,CAAC,GAAG;SACnB,CAAC,CAAC;QACH,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAElC,OAAO,OAAO,CAAC,IAAI,CAAC;IACtB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,eAAe;IACb,IAAI,EAAE,iBAAiB;IACvB,YAAY;IACZ,IAAI;CACL,CAAC"}
|
|
@@ -1,10 +1,8 @@
|
|
|
1
1
|
import type { ESTree } from "meriyah";
|
|
2
|
-
import {
|
|
3
|
-
declare function validateNode(node: ESTree.Node,
|
|
4
|
-
declare function initialize(
|
|
5
|
-
declare function main(node: ESTree.CallExpression,
|
|
6
|
-
sourceFile: SourceFile;
|
|
7
|
-
}): void;
|
|
2
|
+
import type { ProbeContext } from "../ProbeRunner.js";
|
|
3
|
+
declare function validateNode(node: ESTree.Node, ctx: ProbeContext): [boolean, any?];
|
|
4
|
+
declare function initialize(ctx: ProbeContext): void;
|
|
5
|
+
declare function main(node: ESTree.CallExpression, ctx: ProbeContext): void;
|
|
8
6
|
declare const _default: {
|
|
9
7
|
name: string;
|
|
10
8
|
validateNode: typeof validateNode;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isWeakCrypto.d.ts","sourceRoot":"","sources":["../../src/probes/isWeakCrypto.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,
|
|
1
|
+
{"version":3,"file":"isWeakCrypto.d.ts","sourceRoot":"","sources":["../../src/probes/isWeakCrypto.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAetD,iBAAS,YAAY,CACnB,IAAI,EAAE,MAAM,CAAC,IAAI,EACjB,GAAG,EAAE,YAAY,GAChB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAajB;AAED,iBAAS,UAAU,CACjB,GAAG,EAAE,YAAY,QAQlB;AAED,iBAAS,IAAI,CACX,IAAI,EAAE,MAAM,CAAC,cAAc,EAC3B,GAAG,EAAE,YAAY,QAYlB;;;;;;;;AAED,wBAME"}
|
|
@@ -1,7 +1,5 @@
|
|
|
1
1
|
// Import Third-party Dependencies
|
|
2
2
|
import { getCallExpressionIdentifier } from "@nodesecure/estree-ast-utils";
|
|
3
|
-
// Import Internal Dependencies
|
|
4
|
-
import { SourceFile } from "../SourceFile.js";
|
|
5
3
|
import { generateWarning } from "../warnings.js";
|
|
6
4
|
import { isLiteral } from "../types/estree.js";
|
|
7
5
|
// CONSTANTS
|
|
@@ -12,8 +10,8 @@ const kWeakAlgorithms = new Set([
|
|
|
12
10
|
"md4",
|
|
13
11
|
"md2"
|
|
14
12
|
]);
|
|
15
|
-
function validateNode(node,
|
|
16
|
-
const { tracer } = sourceFile;
|
|
13
|
+
function validateNode(node, ctx) {
|
|
14
|
+
const { tracer } = ctx.sourceFile;
|
|
17
15
|
const id = getCallExpressionIdentifier(node);
|
|
18
16
|
if (id === null || !tracer.importedModules.has("crypto")) {
|
|
19
17
|
return [false];
|
|
@@ -23,13 +21,15 @@ function validateNode(node, sourceFile) {
|
|
|
23
21
|
data !== null && data.identifierOrMemberExpr === "crypto.createHash"
|
|
24
22
|
];
|
|
25
23
|
}
|
|
26
|
-
function initialize(
|
|
27
|
-
|
|
24
|
+
function initialize(ctx) {
|
|
25
|
+
const { tracer } = ctx.sourceFile;
|
|
26
|
+
tracer.trace("crypto.createHash", {
|
|
28
27
|
followConsecutiveAssignment: true,
|
|
29
28
|
moduleName: "crypto"
|
|
30
29
|
});
|
|
31
30
|
}
|
|
32
|
-
function main(node,
|
|
31
|
+
function main(node, ctx) {
|
|
32
|
+
const { sourceFile } = ctx;
|
|
33
33
|
const arg = node.arguments.at(0);
|
|
34
34
|
if (isLiteral(arg) && kWeakAlgorithms.has(arg.value)) {
|
|
35
35
|
const warning = generateWarning("weak-crypto", { value: arg.value, location: node.loc });
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"isWeakCrypto.js","sourceRoot":"","sources":["../../src/probes/isWeakCrypto.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EAAE,2BAA2B,EAAE,MAAM,8BAA8B,CAAC;
|
|
1
|
+
{"version":3,"file":"isWeakCrypto.js","sourceRoot":"","sources":["../../src/probes/isWeakCrypto.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAClC,OAAO,EAAE,2BAA2B,EAAE,MAAM,8BAA8B,CAAC;AAK3E,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EACL,SAAS,EACV,MAAM,oBAAoB,CAAC;AAE5B,YAAY;AACZ,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IAC9B,KAAK;IACL,MAAM;IACN,WAAW;IACX,KAAK;IACL,KAAK;CACN,CAAC,CAAC;AAEH,SAAS,YAAY,CACnB,IAAiB,EACjB,GAAiB;IAEjB,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,UAAU,CAAC;IAElC,MAAM,EAAE,GAAG,2BAA2B,CAAC,IAAI,CAAC,CAAC;IAC7C,IAAI,EAAE,KAAK,IAAI,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACzD,OAAO,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,CAAC,qBAAqB,CAAC,EAAE,CAAC,CAAC;IAE9C,OAAO;QACL,IAAI,KAAK,IAAI,IAAI,IAAI,CAAC,sBAAsB,KAAK,mBAAmB;KACrE,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CACjB,GAAiB;IAEjB,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,UAAU,CAAC;IAElC,MAAM,CAAC,KAAK,CAAC,mBAAmB,EAAE;QAChC,2BAA2B,EAAE,IAAI;QACjC,UAAU,EAAE,QAAQ;KACrB,CAAC,CAAC;AACL,CAAC;AAED,SAAS,IAAI,CACX,IAA2B,EAC3B,GAAiB;IAEjB,MAAM,EAAE,UAAU,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAEjC,IAAI,SAAS,CAAC,GAAG,CAAC,IAAI,eAAe,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;QACrD,MAAM,OAAO,GAAG,eAAe,CAC7B,aAAa,EACb,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,CACzC,CAAC;QACF,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACpC,CAAC;AACH,CAAC;AAED,eAAe;IACb,IAAI,EAAE,cAAc;IACpB,YAAY;IACZ,IAAI;IACJ,UAAU;IACV,YAAY,EAAE,KAAK;CACpB,CAAC"}
|
package/dist/types/estree.d.ts
CHANGED
|
@@ -5,7 +5,8 @@ export type Literal<T> = ESTree.Literal & {
|
|
|
5
5
|
export type RegExpLiteral<T> = ESTree.RegExpLiteral & {
|
|
6
6
|
value: T;
|
|
7
7
|
};
|
|
8
|
-
export declare function isNode(value:
|
|
9
|
-
export declare function isLiteral(node:
|
|
10
|
-
export declare function
|
|
8
|
+
export declare function isNode(value: unknown): value is ESTree.Node;
|
|
9
|
+
export declare function isLiteral(node: unknown): node is Literal<string>;
|
|
10
|
+
export declare function isTemplateLiteral(node: unknown): node is ESTree.TemplateLiteral;
|
|
11
|
+
export declare function isCallExpression(node: unknown): node is ESTree.CallExpression;
|
|
11
12
|
//# sourceMappingURL=estree.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"estree.d.ts","sourceRoot":"","sources":["../../src/types/estree.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEtC,MAAM,MAAM,OAAO,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,GAAG;IACxC,KAAK,EAAE,CAAC,CAAC;CACV,CAAC;AAEF,MAAM,MAAM,aAAa,CAAC,CAAC,IAAI,MAAM,CAAC,aAAa,GAAG;IACpD,KAAK,EAAE,CAAC,CAAC;CACV,CAAC;AAEF,wBAAgB,MAAM,CACpB,KAAK,EAAE,
|
|
1
|
+
{"version":3,"file":"estree.d.ts","sourceRoot":"","sources":["../../src/types/estree.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEtC,MAAM,MAAM,OAAO,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,GAAG;IACxC,KAAK,EAAE,CAAC,CAAC;CACV,CAAC;AAEF,MAAM,MAAM,aAAa,CAAC,CAAC,IAAI,MAAM,CAAC,aAAa,GAAG;IACpD,KAAK,EAAE,CAAC,CAAC;CACV,CAAC;AAEF,wBAAgB,MAAM,CACpB,KAAK,EAAE,OAAO,GACb,KAAK,IAAI,MAAM,CAAC,IAAI,CAOtB;AAED,wBAAgB,SAAS,CACvB,IAAI,EAAE,OAAO,GACZ,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC,CAIzB;AAED,wBAAgB,iBAAiB,CAC/B,IAAI,EAAE,OAAO,GACZ,IAAI,IAAI,MAAM,CAAC,eAAe,CAchC;AAED,wBAAgB,gBAAgB,CAC9B,IAAI,EAAE,OAAO,GACZ,IAAI,IAAI,MAAM,CAAC,cAAc,CAE/B"}
|
package/dist/types/estree.js
CHANGED
|
@@ -9,6 +9,17 @@ export function isLiteral(node) {
|
|
|
9
9
|
node.type === "Literal" &&
|
|
10
10
|
typeof node.value === "string";
|
|
11
11
|
}
|
|
12
|
+
export function isTemplateLiteral(node) {
|
|
13
|
+
if (!isNode(node) || node.type !== "TemplateLiteral") {
|
|
14
|
+
return false;
|
|
15
|
+
}
|
|
16
|
+
const firstQuasi = node.quasis.at(0);
|
|
17
|
+
if (!firstQuasi) {
|
|
18
|
+
return false;
|
|
19
|
+
}
|
|
20
|
+
return (firstQuasi.type === "TemplateElement" &&
|
|
21
|
+
typeof firstQuasi.value.raw === "string");
|
|
22
|
+
}
|
|
12
23
|
export function isCallExpression(node) {
|
|
13
24
|
return isNode(node) && node.type === "CallExpression";
|
|
14
25
|
}
|
package/dist/types/estree.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"estree.js","sourceRoot":"","sources":["../../src/types/estree.ts"],"names":[],"mappings":"AAWA,MAAM,UAAU,MAAM,CACpB,
|
|
1
|
+
{"version":3,"file":"estree.js","sourceRoot":"","sources":["../../src/types/estree.ts"],"names":[],"mappings":"AAWA,MAAM,UAAU,MAAM,CACpB,KAAc;IAEd,OAAO,CACL,KAAK,KAAK,IAAI;QACd,OAAO,KAAK,KAAK,QAAQ;QACzB,MAAM,IAAI,KAAK;QACf,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,CAC/B,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,SAAS,CACvB,IAAa;IAEb,OAAO,MAAM,CAAC,IAAI,CAAC;QACjB,IAAI,CAAC,IAAI,KAAK,SAAS;QACvB,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,CAAC;AACnC,CAAC;AAED,MAAM,UAAU,iBAAiB,CAC/B,IAAa;IAEb,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,KAAK,iBAAiB,EAAE,CAAC;QACrD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACrC,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,KAAK,CAAC;IACf,CAAC;IAED,OAAO,CACL,UAAU,CAAC,IAAI,KAAK,iBAAiB;QACrC,OAAO,UAAU,CAAC,KAAK,CAAC,GAAG,KAAK,QAAQ,CACzC,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,gBAAgB,CAC9B,IAAa;IAEb,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,KAAK,gBAAgB,CAAC;AACxD,CAAC"}
|
|
@@ -0,0 +1,9 @@
|
|
|
1
|
+
import type { ESTree } from "meriyah";
|
|
2
|
+
import { type SyncHandler } from "./walker.sync.js";
|
|
3
|
+
export type WalkRootNode = ESTree.Program | ESTree.Program["body"] | ESTree.Node;
|
|
4
|
+
export declare function walk(ast: WalkRootNode, { enter, leave }?: {
|
|
5
|
+
enter?: SyncHandler;
|
|
6
|
+
leave?: SyncHandler;
|
|
7
|
+
}): ESTree.Node | null;
|
|
8
|
+
export declare function walkEnter(ast: WalkRootNode, enter: SyncHandler): ESTree.Node | null;
|
|
9
|
+
//# sourceMappingURL=index.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/walker/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAc,KAAK,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAEhE,MAAM,MAAM,YAAY,GAAG,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC;AAEjF,wBAAgB,IAAI,CAClB,GAAG,EAAE,YAAY,EACjB,EAAE,KAAK,EAAE,KAAK,EAAE,GAAE;IAAE,KAAK,CAAC,EAAE,WAAW,CAAC;IAAC,KAAK,CAAC,EAAE,WAAW,CAAC;CAAO,sBAQrE;AAED,wBAAgB,SAAS,CACvB,GAAG,EAAE,YAAY,EACjB,KAAK,EAAE,WAAW,GACjB,MAAM,CAAC,IAAI,GAAG,IAAI,CAEpB"}
|
|
@@ -0,0 +1,10 @@
|
|
|
1
|
+
// Import Internal Dependencies
|
|
2
|
+
import { SyncWalker } from "./walker.sync.js";
|
|
3
|
+
export function walk(ast, { enter, leave } = {}) {
|
|
4
|
+
const instance = new SyncWalker(enter, leave);
|
|
5
|
+
return instance.visit(ast, { parent: null });
|
|
6
|
+
}
|
|
7
|
+
export function walkEnter(ast, enter) {
|
|
8
|
+
return walk(ast, { enter });
|
|
9
|
+
}
|
|
10
|
+
//# sourceMappingURL=index.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/walker/index.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAoB,MAAM,kBAAkB,CAAC;AAIhE,MAAM,UAAU,IAAI,CAClB,GAAiB,EACjB,EAAE,KAAK,EAAE,KAAK,KAAoD,EAAE;IAEpE,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IAE9C,OAAO,QAAQ,CAAC,KAAK,CACnB,GAA6B,EAC7B,EAAE,MAAM,EAAE,IAAI,EAAE,CACjB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,SAAS,CACvB,GAAiB,EACjB,KAAkB;IAElB,OAAO,IAAI,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;AAC9B,CAAC"}
|
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
import type { ESTree } from "meriyah";
|
|
2
|
+
export interface WalkerContext {
|
|
3
|
+
skip: () => void;
|
|
4
|
+
remove: () => void;
|
|
5
|
+
replace: (node: ESTree.Node | void) => void;
|
|
6
|
+
replaceAndSkip: (node: ESTree.Node | void) => void;
|
|
7
|
+
}
|
|
8
|
+
export declare class WalkerBase {
|
|
9
|
+
should_skip: boolean;
|
|
10
|
+
should_remove: boolean;
|
|
11
|
+
replacement: ESTree.Node | null;
|
|
12
|
+
context: WalkerContext;
|
|
13
|
+
constructor();
|
|
14
|
+
replace(parent: ESTree.Node | null | undefined, prop: string | number | symbol | null | undefined, index: number | null | undefined, node: ESTree.Node): void;
|
|
15
|
+
remove(parent: ESTree.Node | null | undefined, prop: string | number | symbol | null | undefined, index: number | null | undefined): void;
|
|
16
|
+
}
|
|
17
|
+
//# sourceMappingURL=walker.base.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"walker.base.d.ts","sourceRoot":"","sources":["../../src/walker/walker.base.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEtC,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,IAAI,CAAC;IACjB,MAAM,EAAE,MAAM,IAAI,CAAC;IACnB,OAAO,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC;IAC5C,cAAc,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC;CACpD;AAED,qBAAa,UAAU;IACrB,WAAW,UAAS;IACpB,aAAa,UAAS;IACtB,WAAW,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,CAAQ;IACvC,OAAO,EAAE,aAAa,CAAC;;IAqBvB,OAAO,CACL,MAAM,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,GAAG,SAAS,EACtC,IAAI,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS,EACjD,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EAChC,IAAI,EAAE,MAAM,CAAC,IAAI;IAYnB,MAAM,CACJ,MAAM,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,GAAG,SAAS,EACtC,IAAI,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS,EACjD,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS;CAWnC"}
|
|
@@ -0,0 +1,45 @@
|
|
|
1
|
+
export class WalkerBase {
|
|
2
|
+
should_skip = false;
|
|
3
|
+
should_remove = false;
|
|
4
|
+
replacement = null;
|
|
5
|
+
context;
|
|
6
|
+
constructor() {
|
|
7
|
+
this.context = {
|
|
8
|
+
skip: () => (this.should_skip = true),
|
|
9
|
+
remove: () => (this.should_remove = true),
|
|
10
|
+
replace: (node) => {
|
|
11
|
+
if (node !== undefined) {
|
|
12
|
+
this.replacement = node;
|
|
13
|
+
}
|
|
14
|
+
},
|
|
15
|
+
replaceAndSkip: (node) => {
|
|
16
|
+
this.should_skip = true;
|
|
17
|
+
if (node !== undefined) {
|
|
18
|
+
this.replacement = node;
|
|
19
|
+
}
|
|
20
|
+
}
|
|
21
|
+
};
|
|
22
|
+
}
|
|
23
|
+
// eslint-disable-next-line max-params
|
|
24
|
+
replace(parent, prop, index, node) {
|
|
25
|
+
if (parent && prop) {
|
|
26
|
+
if (index === null) {
|
|
27
|
+
parent[prop] = node;
|
|
28
|
+
}
|
|
29
|
+
else {
|
|
30
|
+
parent[prop][index] = node;
|
|
31
|
+
}
|
|
32
|
+
}
|
|
33
|
+
}
|
|
34
|
+
remove(parent, prop, index) {
|
|
35
|
+
if (parent && prop) {
|
|
36
|
+
if (index !== null && index !== undefined) {
|
|
37
|
+
parent[prop].splice(index, 1);
|
|
38
|
+
}
|
|
39
|
+
else {
|
|
40
|
+
delete parent[prop];
|
|
41
|
+
}
|
|
42
|
+
}
|
|
43
|
+
}
|
|
44
|
+
}
|
|
45
|
+
//# sourceMappingURL=walker.base.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"walker.base.js","sourceRoot":"","sources":["../../src/walker/walker.base.ts"],"names":[],"mappings":"AAUA,MAAM,OAAO,UAAU;IACrB,WAAW,GAAG,KAAK,CAAC;IACpB,aAAa,GAAG,KAAK,CAAC;IACtB,WAAW,GAAuB,IAAI,CAAC;IACvC,OAAO,CAAgB;IAEvB;QACE,IAAI,CAAC,OAAO,GAAG;YACb,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;YACrC,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;YACzC,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE;gBAChB,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;oBACvB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;gBAC1B,CAAC;YACH,CAAC;YACD,cAAc,EAAE,CAAC,IAAI,EAAE,EAAE;gBACvB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;gBACxB,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;oBACvB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;gBAC1B,CAAC;YACH,CAAC;SACF,CAAC;IACJ,CAAC;IAED,sCAAsC;IACtC,OAAO,CACL,MAAsC,EACtC,IAAiD,EACjD,KAAgC,EAChC,IAAiB;QAEjB,IAAI,MAAM,IAAI,IAAI,EAAE,CAAC;YACnB,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;gBACnB,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;YACtB,CAAC;iBACI,CAAC;gBACJ,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC;YAC7B,CAAC;QACH,CAAC;IACH,CAAC;IAED,MAAM,CACJ,MAAsC,EACtC,IAAiD,EACjD,KAAgC;QAEhC,IAAI,MAAM,IAAI,IAAI,EAAE,CAAC;YACnB,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;gBAC1C,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;YAChC,CAAC;iBACI,CAAC;gBACJ,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC;YACtB,CAAC;QACH,CAAC;IACH,CAAC;CACF"}
|
|
@@ -0,0 +1,15 @@
|
|
|
1
|
+
import type { ESTree } from "meriyah";
|
|
2
|
+
import { WalkerBase, type WalkerContext } from "./walker.base.js";
|
|
3
|
+
export type SyncHandler = (this: WalkerContext, node: ESTree.Node, context: SyncWalkerVisitorContext) => void;
|
|
4
|
+
export interface SyncWalkerVisitorContext {
|
|
5
|
+
parent: ESTree.Node | null;
|
|
6
|
+
prop?: string | number;
|
|
7
|
+
index?: number | null;
|
|
8
|
+
}
|
|
9
|
+
export declare class SyncWalker extends WalkerBase {
|
|
10
|
+
enter: SyncHandler | undefined;
|
|
11
|
+
leave: SyncHandler | undefined;
|
|
12
|
+
constructor(enter?: SyncHandler, leave?: SyncHandler);
|
|
13
|
+
visit(node: ESTree.Node, options: SyncWalkerVisitorContext): ESTree.Node | null;
|
|
14
|
+
}
|
|
15
|
+
//# sourceMappingURL=walker.sync.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"walker.sync.d.ts","sourceRoot":"","sources":["../../src/walker/walker.sync.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAAE,UAAU,EAAE,KAAK,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAGlE,MAAM,MAAM,WAAW,GAAG,CACxB,IAAI,EAAE,aAAa,EACnB,IAAI,EAAE,MAAM,CAAC,IAAI,EACjB,OAAO,EAAE,wBAAwB,KAC9B,IAAI,CAAC;AAEV,MAAM,WAAW,wBAAwB;IACvC,MAAM,EAAE,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC;IAC3B,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACvB,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACvB;AAED,qBAAa,UAAW,SAAQ,UAAU;IACxC,KAAK,EAAE,WAAW,GAAG,SAAS,CAAC;IAC/B,KAAK,EAAE,WAAW,GAAG,SAAS,CAAC;gBAG7B,KAAK,CAAC,EAAE,WAAW,EACnB,KAAK,CAAC,EAAE,WAAW;IAOrB,KAAK,CACH,IAAI,EAAE,MAAM,CAAC,IAAI,EACjB,OAAO,EAAE,wBAAwB,GAChC,MAAM,CAAC,IAAI,GAAG,IAAI;CA4FtB"}
|
|
@@ -0,0 +1,87 @@
|
|
|
1
|
+
// Import Internal Dependencies
|
|
2
|
+
import { WalkerBase } from "./walker.base.js";
|
|
3
|
+
import { isNode } from "../types/estree.js";
|
|
4
|
+
export class SyncWalker extends WalkerBase {
|
|
5
|
+
enter;
|
|
6
|
+
leave;
|
|
7
|
+
constructor(enter, leave) {
|
|
8
|
+
super();
|
|
9
|
+
this.enter = enter;
|
|
10
|
+
this.leave = leave;
|
|
11
|
+
}
|
|
12
|
+
visit(node, options) {
|
|
13
|
+
if (!node) {
|
|
14
|
+
return null;
|
|
15
|
+
}
|
|
16
|
+
const { parent, prop, index } = options;
|
|
17
|
+
let returnedNode = node;
|
|
18
|
+
if (this.enter) {
|
|
19
|
+
const _should_skip = this.should_skip;
|
|
20
|
+
const _should_remove = this.should_remove;
|
|
21
|
+
const _replacement = this.replacement;
|
|
22
|
+
this.should_skip = false;
|
|
23
|
+
this.should_remove = false;
|
|
24
|
+
this.replacement = null;
|
|
25
|
+
this.enter.call(this.context, returnedNode, { parent, prop, index });
|
|
26
|
+
if (this.replacement) {
|
|
27
|
+
returnedNode = this.replacement;
|
|
28
|
+
this.replace(parent, prop, index, returnedNode);
|
|
29
|
+
}
|
|
30
|
+
if (this.should_remove) {
|
|
31
|
+
this.remove(parent, prop, index);
|
|
32
|
+
}
|
|
33
|
+
const skipped = this.should_skip;
|
|
34
|
+
const removed = this.should_remove;
|
|
35
|
+
this.should_skip = _should_skip;
|
|
36
|
+
this.should_remove = _should_remove;
|
|
37
|
+
this.replacement = _replacement;
|
|
38
|
+
if (skipped) {
|
|
39
|
+
return returnedNode;
|
|
40
|
+
}
|
|
41
|
+
if (removed) {
|
|
42
|
+
return null;
|
|
43
|
+
}
|
|
44
|
+
}
|
|
45
|
+
for (const key in returnedNode) {
|
|
46
|
+
if (!Object.hasOwn(returnedNode, key)) {
|
|
47
|
+
continue;
|
|
48
|
+
}
|
|
49
|
+
const value = returnedNode[key];
|
|
50
|
+
if (Array.isArray(value)) {
|
|
51
|
+
const nodes = value;
|
|
52
|
+
for (let i = 0; i < nodes.length; i++) {
|
|
53
|
+
const item = nodes[i];
|
|
54
|
+
const removeItem = isNode(item) && !this.visit(item, { parent: returnedNode, prop: key, index: i });
|
|
55
|
+
if (removeItem) {
|
|
56
|
+
i--;
|
|
57
|
+
}
|
|
58
|
+
}
|
|
59
|
+
}
|
|
60
|
+
else if (isNode(value)) {
|
|
61
|
+
this.visit(value, { parent: returnedNode, prop: key, index: null });
|
|
62
|
+
}
|
|
63
|
+
}
|
|
64
|
+
if (this.leave) {
|
|
65
|
+
const _replacement = this.replacement;
|
|
66
|
+
const _should_remove = this.should_remove;
|
|
67
|
+
this.replacement = null;
|
|
68
|
+
this.should_remove = false;
|
|
69
|
+
this.leave.call(this.context, returnedNode, { parent, prop, index });
|
|
70
|
+
if (this.replacement) {
|
|
71
|
+
returnedNode = this.replacement;
|
|
72
|
+
this.replace(parent, prop, index, returnedNode);
|
|
73
|
+
}
|
|
74
|
+
if (this.should_remove) {
|
|
75
|
+
this.remove(parent, prop, index);
|
|
76
|
+
}
|
|
77
|
+
const removed = this.should_remove;
|
|
78
|
+
this.replacement = _replacement;
|
|
79
|
+
this.should_remove = _should_remove;
|
|
80
|
+
if (removed) {
|
|
81
|
+
return null;
|
|
82
|
+
}
|
|
83
|
+
}
|
|
84
|
+
return returnedNode;
|
|
85
|
+
}
|
|
86
|
+
}
|
|
87
|
+
//# sourceMappingURL=walker.sync.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"walker.sync.js","sourceRoot":"","sources":["../../src/walker/walker.sync.ts"],"names":[],"mappings":"AAGA,+BAA+B;AAC/B,OAAO,EAAE,UAAU,EAAsB,MAAM,kBAAkB,CAAC;AAClE,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AAc5C,MAAM,OAAO,UAAW,SAAQ,UAAU;IACxC,KAAK,CAA0B;IAC/B,KAAK,CAA0B;IAE/B,YACE,KAAmB,EACnB,KAAmB;QAEnB,KAAK,EAAE,CAAC;QACR,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;IACrB,CAAC;IAED,KAAK,CACH,IAAiB,EACjB,OAAiC;QAEjC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,OAAO,CAAC;QACxC,IAAI,YAAY,GAAG,IAAI,CAAC;QAExB,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;YACtC,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC;YAC1C,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;YACtC,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC;YACzB,IAAI,CAAC,aAAa,GAAG,KAAK,CAAC;YAC3B,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;YAExB,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,YAAY,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;YAErE,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;gBACrB,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;gBAChC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;YAClD,CAAC;YAED,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;gBACvB,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;YACnC,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC;YACjC,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC;YAEnC,IAAI,CAAC,WAAW,GAAG,YAAY,CAAC;YAChC,IAAI,CAAC,aAAa,GAAG,cAAc,CAAC;YACpC,IAAI,CAAC,WAAW,GAAG,YAAY,CAAC;YAEhC,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,YAAY,CAAC;YACtB,CAAC;YACD,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,KAAK,MAAM,GAAG,IAAI,YAAY,EAAE,CAAC;YAC/B,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,YAAY,EAAE,GAAG,CAAC,EAAE,CAAC;gBACtC,SAAS;YACX,CAAC;YACD,MAAM,KAAK,GAAY,YAAY,CAAC,GAAG,CAAC,CAAC;YAEzC,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;gBACzB,MAAM,KAAK,GAAc,KAAK,CAAC;gBAC/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;oBACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;oBACtB,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,IAAI,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,CAAC;oBACpG,IAAI,UAAU,EAAE,CAAC;wBACf,CAAC,EAAE,CAAC;oBACN,CAAC;gBACH,CAAC;YACH,CAAC;iBACI,IAAI,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;gBACvB,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,IAAI,EAAE,GAAG,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YACtE,CAAC;QACH,CAAC;QAED,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;YACtC,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC;YAC1C,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;YACxB,IAAI,CAAC,aAAa,GAAG,KAAK,CAAC;YAE3B,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,YAAY,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;YAErE,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;gBACrB,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;gBAChC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;YAClD,CAAC;YAED,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;gBACvB,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;YACnC,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC;YAEnC,IAAI,CAAC,WAAW,GAAG,YAAY,CAAC;YAChC,IAAI,CAAC,aAAa,GAAG,cAAc,CAAC;YAEpC,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,OAAO,YAAY,CAAC;IACtB,CAAC;CACF"}
|
package/dist/warnings.d.ts
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
import type { ESTree } from "meriyah";
|
|
2
2
|
import { type SourceArrayLocation } from "./utils/toArrayLocation.js";
|
|
3
3
|
export type OptionalWarningName = "synchronous-io";
|
|
4
|
-
export type WarningName = "parsing-error" | "encoded-literal" | "unsafe-regex" | "unsafe-stmt" | "short-identifiers" | "suspicious-literal" | "suspicious-file" | "obfuscated-code" | "weak-crypto" | "shady-link" | "unsafe-command" | "unsafe-import" | "serialize-environment" | OptionalWarningName;
|
|
4
|
+
export type WarningName = "parsing-error" | "encoded-literal" | "unsafe-regex" | "unsafe-stmt" | "short-identifiers" | "suspicious-literal" | "suspicious-file" | "obfuscated-code" | "weak-crypto" | "shady-link" | "unsafe-command" | "unsafe-import" | "serialize-environment" | "data-exfiltration" | OptionalWarningName;
|
|
5
5
|
export interface Warning<T = WarningName> {
|
|
6
6
|
kind: T | (string & {});
|
|
7
7
|
file?: string;
|
|
@@ -77,6 +77,11 @@ export declare const warnings: Readonly<{
|
|
|
77
77
|
severity: "Warning";
|
|
78
78
|
experimental: false;
|
|
79
79
|
};
|
|
80
|
+
"data-exfiltration": {
|
|
81
|
+
i18n: string;
|
|
82
|
+
severity: "Warning";
|
|
83
|
+
experimental: false;
|
|
84
|
+
};
|
|
80
85
|
}>;
|
|
81
86
|
export interface GenerateWarningOptions {
|
|
82
87
|
location?: ESTree.SourceLocation | null;
|
package/dist/warnings.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"warnings.d.ts","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAGL,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AAGpC,MAAM,MAAM,mBAAmB,GAC3B,gBAAgB,CAAC;AAErB,MAAM,MAAM,WAAW,GACnB,eAAe,GACf,iBAAiB,GACjB,cAAc,GACd,aAAa,GACb,mBAAmB,GACnB,oBAAoB,GACpB,iBAAiB,GACjB,iBAAiB,GACjB,aAAa,GACb,YAAY,GACZ,gBAAgB,GAChB,eAAe,GACf,uBAAuB,GACvB,mBAAmB,CAAC;AAExB,MAAM,WAAW,OAAO,CAAC,CAAC,GAAG,WAAW;IACtC,IAAI,EAAE,CAAC,GAAG,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC;IACxB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,IAAI,GAAG,mBAAmB,GAAG,mBAAmB,EAAE,CAAC;IAC7D,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,aAAa,GAAG,SAAS,GAAG,UAAU,CAAC;IACjD,YAAY,CAAC,EAAE,OAAO,CAAC;CACxB;AAED,eAAO,MAAM,QAAQ
|
|
1
|
+
{"version":3,"file":"warnings.d.ts","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,OAAO,EAGL,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AAGpC,MAAM,MAAM,mBAAmB,GAC3B,gBAAgB,CAAC;AAErB,MAAM,MAAM,WAAW,GACnB,eAAe,GACf,iBAAiB,GACjB,cAAc,GACd,aAAa,GACb,mBAAmB,GACnB,oBAAoB,GACpB,iBAAiB,GACjB,iBAAiB,GACjB,aAAa,GACb,YAAY,GACZ,gBAAgB,GAChB,eAAe,GACf,uBAAuB,GACvB,mBAAmB,GACnB,mBAAmB,CAAC;AAExB,MAAM,WAAW,OAAO,CAAC,CAAC,GAAG,WAAW;IACtC,IAAI,EAAE,CAAC,GAAG,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC;IACxB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,IAAI,GAAG,mBAAmB,GAAG,mBAAmB,EAAE,CAAC;IAC7D,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,aAAa,GAAG,SAAS,GAAG,UAAU,CAAC;IACjD,YAAY,CAAC,EAAE,OAAO,CAAC;CACxB;AAED,eAAO,MAAM,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAsEgE,CAAC;AAEtF,MAAM,WAAW,sBAAsB;IACrC,QAAQ,CAAC,EAAE,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC;IACxC,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,wBAAgB,eAAe,CAAC,CAAC,SAAS,WAAW,EACnD,IAAI,EAAE,CAAC,EACP,OAAO,EAAE,sBAAsB,GAC9B,OAAO,CAAC,CAAC,CAAC,CA0BZ"}
|