@nodesecure/tarball 2.3.0 → 3.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +1 -1
- package/dist/class/DnsResolver.class.d.ts +8 -0
- package/dist/class/DnsResolver.class.d.ts.map +1 -0
- package/dist/class/DnsResolver.class.js +24 -0
- package/dist/class/DnsResolver.class.js.map +1 -0
- package/dist/class/NpmTarball.class.d.ts +8 -3
- package/dist/class/NpmTarball.class.d.ts.map +1 -1
- package/dist/class/NpmTarball.class.js +37 -4
- package/dist/class/NpmTarball.class.js.map +1 -1
- package/dist/class/SourceCodeScanner.class.js +10 -12
- package/dist/class/SourceCodeScanner.class.js.map +1 -1
- package/dist/index.d.ts +2 -2
- package/dist/tarball.d.ts.map +1 -1
- package/dist/tarball.js +3 -4
- package/dist/tarball.js.map +1 -1
- package/dist/utils/index.d.ts +5 -5
- package/dist/warnings.d.ts +7 -1
- package/dist/warnings.d.ts.map +1 -1
- package/package.json +17 -10
package/README.md
CHANGED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"DnsResolver.class.d.ts","sourceRoot":"","sources":["../../src/class/DnsResolver.class.ts"],"names":[],"mappings":"AAOA,MAAM,WAAW,QAAQ;IACvB,aAAa,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CACnD;AAED,qBAAa,WAAY,YAAW,QAAQ;;IACpC,aAAa,CAAC,QAAQ,EAAE,MAAM;CAqBrC"}
|
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
// Import Node.js Dependencies
|
|
2
|
+
import { lookup } from "node:dns/promises";
|
|
3
|
+
import {} from "node:dns";
|
|
4
|
+
// Import Third-party Dependencies
|
|
5
|
+
import ipaddress from "ipaddr.js";
|
|
6
|
+
export class DnsResolver {
|
|
7
|
+
async isPrivateHost(hostname) {
|
|
8
|
+
const ipAddressListDetails = await lookup(hostname, { all: true });
|
|
9
|
+
const ipAddressList = ipAddressListDetails.map((ipAddressDetails) => ipAddressDetails.address);
|
|
10
|
+
return ipAddressList.some(this.#isPrivateIPAddress);
|
|
11
|
+
}
|
|
12
|
+
#isPrivateIPAddress(ipAddress) {
|
|
13
|
+
let ip = ipaddress.parse(ipAddress);
|
|
14
|
+
if (ip instanceof ipaddress.IPv6 && ip.isIPv4MappedAddress()) {
|
|
15
|
+
ip = ip.toIPv4Address();
|
|
16
|
+
}
|
|
17
|
+
const range = ip.range();
|
|
18
|
+
if (range !== "unicast") {
|
|
19
|
+
return true;
|
|
20
|
+
}
|
|
21
|
+
return false;
|
|
22
|
+
}
|
|
23
|
+
}
|
|
24
|
+
//# sourceMappingURL=DnsResolver.class.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"DnsResolver.class.js","sourceRoot":"","sources":["../../src/class/DnsResolver.class.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAC;AAC3C,OAAO,EAAsB,MAAM,UAAU,CAAC;AAE9C,kCAAkC;AAClC,OAAO,SAAS,MAAM,WAAW,CAAC;AAMlC,MAAM,OAAO,WAAW;IACtB,KAAK,CAAC,aAAa,CAAC,QAAgB;QAClC,MAAM,oBAAoB,GAAoB,MAAM,MAAM,CAAC,QAAQ,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC;QACpF,MAAM,aAAa,GAAG,oBAAoB,CAAC,GAAG,CAAC,CAAC,gBAAgB,EAAE,EAAE,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;QAE/F,OAAO,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IACtD,CAAC;IAED,mBAAmB,CAAC,SAAiB;QACnC,IAAI,EAAE,GAAG,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAEpC,IAAI,EAAE,YAAY,SAAS,CAAC,IAAI,IAAI,EAAE,CAAC,mBAAmB,EAAE,EAAE,CAAC;YAC7D,EAAE,GAAG,EAAE,CAAC,aAAa,EAAE,CAAC;QAC1B,CAAC;QAED,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,EAAE,CAAC;QACzB,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;YACxB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;CACF"}
|
|
@@ -1,17 +1,22 @@
|
|
|
1
1
|
import * as conformance from "@nodesecure/conformance";
|
|
2
2
|
import { ManifestManager, type LocatedManifestManager } from "@nodesecure/mama";
|
|
3
3
|
import { type AstAnalyserOptions } from "@nodesecure/js-x-ray";
|
|
4
|
-
import { SourceCodeReport } from "./SourceCodeScanner.class.
|
|
5
|
-
import { type TarballComposition } from "../utils/index.
|
|
4
|
+
import { SourceCodeReport } from "./SourceCodeScanner.class.ts";
|
|
5
|
+
import { type TarballComposition } from "../utils/index.ts";
|
|
6
|
+
import { type Resolver } from "./DnsResolver.class.ts";
|
|
6
7
|
export interface ScannedFilesResult {
|
|
7
8
|
composition: TarballComposition;
|
|
8
9
|
conformance: conformance.SpdxExtractedResult;
|
|
9
10
|
code: SourceCodeReport;
|
|
10
11
|
}
|
|
12
|
+
export type NpmTarballOptions = {
|
|
13
|
+
resolver?: Resolver;
|
|
14
|
+
};
|
|
11
15
|
export declare class NpmTarball {
|
|
16
|
+
#private;
|
|
12
17
|
static JS_EXTENSIONS: Set<string>;
|
|
13
18
|
manifest: LocatedManifestManager;
|
|
14
|
-
constructor(mama: ManifestManager);
|
|
19
|
+
constructor(mama: ManifestManager, options?: NpmTarballOptions);
|
|
15
20
|
scanFiles(astAnalyserOptions?: AstAnalyserOptions): Promise<ScannedFilesResult>;
|
|
16
21
|
}
|
|
17
22
|
//# sourceMappingURL=NpmTarball.class.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"NpmTarball.class.d.ts","sourceRoot":"","sources":["../../src/class/NpmTarball.class.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,WAAW,MAAM,yBAAyB,CAAC;AACvD,OAAO,EACL,eAAe,EACf,KAAK,sBAAsB,EAC5B,MAAM,kBAAkB,CAAC;AAC1B,OAAO,
|
|
1
|
+
{"version":3,"file":"NpmTarball.class.d.ts","sourceRoot":"","sources":["../../src/class/NpmTarball.class.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,WAAW,MAAM,yBAAyB,CAAC;AACvD,OAAO,EACL,eAAe,EACf,KAAK,sBAAsB,EAC5B,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EAIL,KAAK,kBAAkB,EACxB,MAAM,sBAAsB,CAAC;AAG9B,OAAO,EACL,gBAAgB,EAEjB,MAAM,8BAA8B,CAAC;AACtC,OAAO,EAEL,KAAK,kBAAkB,EACxB,MAAM,mBAAmB,CAAC;AAC3B,OAAO,EAAE,KAAK,QAAQ,EAAe,MAAM,wBAAwB,CAAC;AAEpE,MAAM,WAAW,kBAAkB;IACjC,WAAW,EAAE,kBAAkB,CAAC;IAChC,WAAW,EAAE,WAAW,CAAC,mBAAmB,CAAC;IAC7C,IAAI,EAAE,gBAAgB,CAAC;CACxB;AAED,MAAM,MAAM,iBAAiB,GAAG;IAC9B,QAAQ,CAAC,EAAE,QAAQ,CAAC;CACrB,CAAC;AAEF,qBAAa,UAAU;;IACrB,MAAM,CAAC,aAAa,cAIjB;IAEH,QAAQ,EAAE,sBAAsB,CAAC;gBAI/B,IAAI,EAAE,eAAe,EACrB,OAAO,GAAE,iBAAsB;IAU3B,SAAS,CACb,kBAAkB,CAAC,EAAE,kBAAkB,GACtC,OAAO,CAAC,kBAAkB,CAAC;CAgE/B"}
|
|
@@ -3,18 +3,25 @@ import path from "node:path";
|
|
|
3
3
|
// Import Third-party Dependencies
|
|
4
4
|
import * as conformance from "@nodesecure/conformance";
|
|
5
5
|
import { ManifestManager } from "@nodesecure/mama";
|
|
6
|
-
import { AstAnalyser } from "@nodesecure/js-x-ray";
|
|
6
|
+
import { AstAnalyser, CollectableSet, warnings } from "@nodesecure/js-x-ray";
|
|
7
7
|
// Import Internal Dependencies
|
|
8
8
|
import { SourceCodeReport, SourceCodeScanner } from "./SourceCodeScanner.class.js";
|
|
9
9
|
import { getTarballComposition } from "../utils/index.js";
|
|
10
|
+
import { DnsResolver } from "./DnsResolver.class.js";
|
|
10
11
|
export class NpmTarball {
|
|
11
|
-
static JS_EXTENSIONS = new Set([
|
|
12
|
+
static JS_EXTENSIONS = new Set([
|
|
13
|
+
".js", ".mjs", ".cjs",
|
|
14
|
+
".ts", ".mts", ".cts",
|
|
15
|
+
".jsx", ".tsx"
|
|
16
|
+
]);
|
|
12
17
|
manifest;
|
|
13
|
-
|
|
18
|
+
#resolver;
|
|
19
|
+
constructor(mama, options = {}) {
|
|
14
20
|
if (!ManifestManager.isLocated(mama)) {
|
|
15
21
|
throw new Error("ManifestManager must have a location");
|
|
16
22
|
}
|
|
17
23
|
this.manifest = mama;
|
|
24
|
+
this.#resolver = options?.resolver ?? new DnsResolver();
|
|
18
25
|
}
|
|
19
26
|
async scanFiles(astAnalyserOptions) {
|
|
20
27
|
const location = this.manifest.location;
|
|
@@ -27,13 +34,32 @@ export class NpmTarball {
|
|
|
27
34
|
code = new SourceCodeReport();
|
|
28
35
|
}
|
|
29
36
|
else {
|
|
30
|
-
const
|
|
37
|
+
const options = this.#optionsWithHostnameSet(astAnalyserOptions ?? {});
|
|
38
|
+
const hostNameSet = options?.collectables?.find((collectable) => collectable.type === "hostname");
|
|
39
|
+
const astAnalyser = new AstAnalyser(options);
|
|
31
40
|
code = await new SourceCodeScanner(this.manifest, { astAnalyser }).iterate({
|
|
32
41
|
manifest: [...this.manifest.getEntryFiles()]
|
|
33
42
|
.flatMap(filterJavaScriptFiles()),
|
|
34
43
|
javascript: composition.files
|
|
35
44
|
.flatMap(filterJavaScriptFiles())
|
|
36
45
|
});
|
|
46
|
+
const operationQueue = Array.from(hostNameSet)
|
|
47
|
+
.map(({ value, locations }) => this.#resolver.isPrivateHost(value)
|
|
48
|
+
.then((isPrivate) => {
|
|
49
|
+
if (isPrivate) {
|
|
50
|
+
locations.forEach(({ file, location }) => {
|
|
51
|
+
code.warnings.push({
|
|
52
|
+
kind: "shady-link",
|
|
53
|
+
...warnings["shady-link"],
|
|
54
|
+
file: file ?? undefined,
|
|
55
|
+
location,
|
|
56
|
+
value,
|
|
57
|
+
source: "Scanner"
|
|
58
|
+
});
|
|
59
|
+
});
|
|
60
|
+
}
|
|
61
|
+
}));
|
|
62
|
+
await Promise.allSettled(operationQueue);
|
|
37
63
|
}
|
|
38
64
|
return {
|
|
39
65
|
conformance: spdx,
|
|
@@ -41,6 +67,13 @@ export class NpmTarball {
|
|
|
41
67
|
code
|
|
42
68
|
};
|
|
43
69
|
}
|
|
70
|
+
#optionsWithHostnameSet(options) {
|
|
71
|
+
const hasHostnameSet = options?.collectables?.some((collectable) => collectable.type === "hostname");
|
|
72
|
+
if (hasHostnameSet) {
|
|
73
|
+
return options;
|
|
74
|
+
}
|
|
75
|
+
return { ...options, collectables: [...options.collectables ?? [], new CollectableSet("hostname")] };
|
|
76
|
+
}
|
|
44
77
|
}
|
|
45
78
|
function filterJavaScriptFiles() {
|
|
46
79
|
return (file) => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"NpmTarball.class.js","sourceRoot":"","sources":["../../src/class/NpmTarball.class.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,kCAAkC;AAClC,OAAO,KAAK,WAAW,MAAM,yBAAyB,CAAC;AACvD,OAAO,EACL,eAAe,EAEhB,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EACL,WAAW,
|
|
1
|
+
{"version":3,"file":"NpmTarball.class.js","sourceRoot":"","sources":["../../src/class/NpmTarball.class.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,kCAAkC;AAClC,OAAO,KAAK,WAAW,MAAM,yBAAyB,CAAC;AACvD,OAAO,EACL,eAAe,EAEhB,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EACL,WAAW,EACX,cAAc,EACd,QAAQ,EAET,MAAM,sBAAsB,CAAC;AAE9B,+BAA+B;AAC/B,OAAO,EACL,gBAAgB,EAChB,iBAAiB,EAClB,MAAM,8BAA8B,CAAC;AACtC,OAAO,EACL,qBAAqB,EAEtB,MAAM,mBAAmB,CAAC;AAC3B,OAAO,EAAiB,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAYpE,MAAM,OAAO,UAAU;IACrB,MAAM,CAAC,aAAa,GAAG,IAAI,GAAG,CAAC;QAC7B,KAAK,EAAE,MAAM,EAAE,MAAM;QACrB,KAAK,EAAE,MAAM,EAAE,MAAM;QACrB,MAAM,EAAE,MAAM;KACf,CAAC,CAAC;IAEH,QAAQ,CAAyB;IACjC,SAAS,CAAW;IAEpB,YACE,IAAqB,EACrB,UAA6B,EAAE;QAE/B,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC;YACrC,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;QAC1D,CAAC;QAED,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QACrB,IAAI,CAAC,SAAS,GAAG,OAAO,EAAE,QAAQ,IAAI,IAAI,WAAW,EAAE,CAAC;IAC1D,CAAC;IAED,KAAK,CAAC,SAAS,CACb,kBAAuC;QAEvC,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC;QACxC,MAAM,CACJ,WAAW,EACX,IAAI,CACL,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACpB,qBAAqB,CAAC,QAAQ,CAAC;YAC/B,WAAW,CAAC,eAAe,CAAC,QAAQ,CAAC;SACtC,CAAC,CAAC;QAEH,IAAI,IAAsB,CAAC;QAC3B,IAAI,WAAW,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC,IAAI,WAAW,CAAC,KAAK,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YACjF,IAAI,GAAG,IAAI,gBAAgB,EAAE,CAAC;QAChC,CAAC;aACI,CAAC;YACJ,MAAM,OAAO,GAAG,IAAI,CAAC,uBAAuB,CAAC,kBAAkB,IAAI,EAAE,CAAC,CAAC;YAEvE,MAAM,WAAW,GAAG,OAAO,EAAE,YAAY,EAAE,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,WAAW,CAAC,IAAI,KAAK,UAAU,CAAE,CAAC;YAEnG,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,OAAO,CAAC,CAAC;YAE7C,IAAI,GAAG,MAAM,IAAI,iBAAiB,CAAC,IAAI,CAAC,QAAQ,EAAE,EAAE,WAAW,EAAE,CAAC,CAAC,OAAO,CAAC;gBACzE,QAAQ,EAAE,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,aAAa,EAAE,CAAC;qBACzC,OAAO,CAAC,qBAAqB,EAAE,CAAC;gBACnC,UAAU,EAAE,WAAW,CAAC,KAAK;qBAC1B,OAAO,CAAC,qBAAqB,EAAE,CAAC;aACpC,CAAC,CAAC;YAEH,MAAM,cAAc,GAClB,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC;iBACpB,GAAG,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,KAAK,CAAC;iBAC/D,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE;gBAClB,IAAI,SAAS,EAAE,CAAC;oBACd,SAAS,CAAC,OAAO,CAAC,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE;wBACvC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC;4BACjB,IAAI,EAAE,YAAY;4BAClB,GAAG,QAAQ,CAAC,YAAY,CAAC;4BACzB,IAAI,EAAE,IAAI,IAAI,SAAS;4BACvB,QAAQ;4BACR,KAAK;4BACL,MAAM,EAAE,SAAS;yBAClB,CAAC,CAAC;oBACL,CAAC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC,CAAC,CACH,CAAC;YACN,MAAM,OAAO,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;QAC3C,CAAC;QAED,OAAO;YACL,WAAW,EAAE,IAAI;YACjB,WAAW;YACX,IAAI;SACL,CAAC;IACJ,CAAC;IAED,uBAAuB,CAAC,OAA2B;QACjD,MAAM,cAAc,GAAG,OAAO,EAAE,YAAY,EAAE,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,WAAW,CAAC,IAAI,KAAK,UAAU,CAAC,CAAC;QACrG,IAAI,cAAc,EAAE,CAAC;YACnB,OAAO,OAAO,CAAC;QACjB,CAAC;QAED,OAAO,EAAE,GAAG,OAAO,EAAE,YAAY,EAAE,CAAC,GAAG,OAAO,CAAC,YAAY,IAAI,EAAE,EAAE,IAAI,cAAc,CAAC,UAAU,CAAC,CAAC,EAAE,CAAC;IACvG,CAAC;;AAGH,SAAS,qBAAqB;IAC5B,OAAO,CAAC,IAAY,EAAE,EAAE;QACtB,IAAI,UAAU,CAAC,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC;YACrD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,EAAE,CAAC;IACZ,CAAC,CAAC;AACJ,CAAC"}
|
|
@@ -67,16 +67,16 @@ export class SourceCodeScanner {
|
|
|
67
67
|
this.#initNewReport = reportInitiator;
|
|
68
68
|
}
|
|
69
69
|
async iterate(entries) {
|
|
70
|
+
const report = this.#initNewReport();
|
|
70
71
|
if (entries.manifest.length === 0 &&
|
|
71
72
|
entries.javascript.length === 0) {
|
|
72
|
-
|
|
73
|
+
return report;
|
|
73
74
|
}
|
|
74
75
|
return entries.manifest.length > 0 ?
|
|
75
|
-
this.#iterateWithEntries(entries) :
|
|
76
|
-
this.#iterateAll(entries.javascript);
|
|
76
|
+
this.#iterateWithEntries(report, entries) :
|
|
77
|
+
this.#iterateAll(report, entries.javascript);
|
|
77
78
|
}
|
|
78
|
-
async #iterateWithEntries(entries) {
|
|
79
|
-
const report = this.#initNewReport();
|
|
79
|
+
async #iterateWithEntries(report, entries) {
|
|
80
80
|
const { location } = this.manifest;
|
|
81
81
|
const efa = new EntryFilesAnalyser({
|
|
82
82
|
astAnalyzer: this.#astAnalyser,
|
|
@@ -89,19 +89,17 @@ export class SourceCodeScanner {
|
|
|
89
89
|
}
|
|
90
90
|
return report.consumed ?
|
|
91
91
|
report :
|
|
92
|
-
this.#iterateAll(entries.javascript);
|
|
92
|
+
this.#iterateAll(report, entries.javascript);
|
|
93
93
|
}
|
|
94
|
-
async #iterateAll(sourceFiles) {
|
|
94
|
+
async #iterateAll(report, sourceFiles) {
|
|
95
95
|
if (sourceFiles.length === 0) {
|
|
96
|
-
|
|
96
|
+
return report;
|
|
97
97
|
}
|
|
98
|
-
const { location, document: { name: packageName
|
|
99
|
-
const report = this.#initNewReport();
|
|
98
|
+
const { location, document: { name: packageName } } = this.manifest;
|
|
100
99
|
await Promise.allSettled(sourceFiles.map(async (relativeFile) => {
|
|
101
100
|
const filePath = path.join(location, relativeFile);
|
|
102
101
|
const fileReport = await this.#astAnalyser.analyseFile(filePath, {
|
|
103
|
-
packageName
|
|
104
|
-
module: type === "module"
|
|
102
|
+
packageName
|
|
105
103
|
});
|
|
106
104
|
report.push({ ...fileReport, file: relativeFile });
|
|
107
105
|
}));
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"SourceCodeScanner.class.js","sourceRoot":"","sources":["../../src/class/SourceCodeScanner.class.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,kCAAkC;AAClC,OAAO,EACL,kBAAkB,EAClB,WAAW,EAIZ,MAAM,sBAAsB,CAAC;AAC9B,OAAO,EACL,eAAe,EAEhB,MAAM,kBAAkB,CAAC;AAE1B,+BAA+B;AAC/B,OAAO,EACL,oBAAoB,EACpB,mBAAmB,EACpB,MAAM,mBAAmB,CAAC;AAmB3B,MAAM,OAAO,gBAAgB;IAC3B,WAAW,GAAG,KAAK,CAAC;IAEpB,QAAQ,GAAc,EAAE,CAAC;IACzB,YAAY,GAGR,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACxB,QAAQ,GAAa,EAAE,CAAC;IACxB,KAAK,GAAG;QACN,mBAAmB,EAAE,KAAK;KAC3B,CAAC;IAEF,IAAI,QAAQ;QACV,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,IAAI,CACF,MAAwC;QAExC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QACxB,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE;YACjC,OAAO,EAAE,GAAG,OAAO,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,CAAC;QAC3C,CAAC,CAAC,CACH,CAAC;QAEF,IAAI,MAAM,CAAC,EAAE,EAAE,CAAC;YACd,IAAI,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC9B,IAAI,CAAC,KAAK,CAAC,mBAAmB,GAAG,IAAI,CAAC;YACxC,CAAC;YACD,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,WAAW,CACjD,MAAM,CAAC,YAAY,CACpB,CAAC;YACF,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QACrE,CAAC;IACH,CAAC;IAED,2BAA2B,CACzB,IAAqB;QAErB,MAAM,KAAK,GAAG,IAAI,GAAG,EAAU,CAAC;QAChC,MAAM,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;QACvC,MAAM,sBAAsB,GAAG,IAAI,GAAG,EAAU,CAAC;QAEjD,KAAK,MAAM,CAAC,IAAI,EAAE,QAAQ,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;YACjE,MAAM,QAAQ,GAAG,oBAAoB,CACnC,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAC1B,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CACnB,CAAC;YAEF,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;iBAC1B,OAAO,CAAC,CAAC,CAAC,IAAI,EAAE,UAAU,CAAC,EAAE,EAAE,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;iBACjE,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,sBAAsB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;YAEvD,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;YAC5D,QAAQ,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;QACpD,CAAC;QAED,MAAM,EACJ,gBAAgB,EAChB,sBAAsB,EACtB,0BAA0B,EAC1B,mBAAmB,EACnB,kBAAkB,EAClB,KAAK,EACN,GAAG,mBAAmB,CACrB,CAAC,GAAG,YAAY,CAAC,EACjB,EAAE,IAAI,EAAE,eAAe,EAAE,sBAAsB,EAAE,CAClD,CAAC;QAEF,OAAO;YACL,KAAK;YACL,sBAAsB,EAAE,CAAC,GAAG,sBAAsB,CAAC;YACnD,YAAY,EAAE;gBACZ,MAAM,EAAE,gBAAgB;gBACxB,cAAc,EAAE,0BAA0B;gBAC1C,UAAU,EAAE,sBAAsB;gBAClC,OAAO,EAAE,mBAAmB;gBAC5B,MAAM,EAAE,kBAAkB;aAC3B;YACD,KAAK;SACN,CAAC;IACJ,CAAC;CACF;AAOD,MAAM,OAAO,iBAAiB;IAG5B,YAAY,CAAc;IAC1B,cAAc,CAAU;IAExB,QAAQ,CAAyB;IAEjC,YACE,QAAgC,EAChC,UAAuC,EAAE;QAEzC,MAAM,EACJ,eAAe,GAAG,GAAG,EAAE,CAAC,IAAI,gBAAgB,EAAE,EAC9C,WAAW,GAAG,IAAI,WAAW,EAAE,EAChC,GAAG,OAAO,CAAC;QAEZ,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC;QAChC,IAAI,CAAC,cAAc,GAAG,eAA0B,CAAC;IACnD,CAAC;IAED,KAAK,CAAC,OAAO,CACX,OAA0B;QAE1B,IACE,OAAO,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC;YAC7B,OAAO,CAAC,UAAU,CAAC,MAAM,KAAK,CAAC,EAC/B,CAAC;YACD,MAAM,
|
|
1
|
+
{"version":3,"file":"SourceCodeScanner.class.js","sourceRoot":"","sources":["../../src/class/SourceCodeScanner.class.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,kCAAkC;AAClC,OAAO,EACL,kBAAkB,EAClB,WAAW,EAIZ,MAAM,sBAAsB,CAAC;AAC9B,OAAO,EACL,eAAe,EAEhB,MAAM,kBAAkB,CAAC;AAE1B,+BAA+B;AAC/B,OAAO,EACL,oBAAoB,EACpB,mBAAmB,EACpB,MAAM,mBAAmB,CAAC;AAmB3B,MAAM,OAAO,gBAAgB;IAC3B,WAAW,GAAG,KAAK,CAAC;IAEpB,QAAQ,GAAc,EAAE,CAAC;IACzB,YAAY,GAGR,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACxB,QAAQ,GAAa,EAAE,CAAC;IACxB,KAAK,GAAG;QACN,mBAAmB,EAAE,KAAK;KAC3B,CAAC;IAEF,IAAI,QAAQ;QACV,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,IAAI,CACF,MAAwC;QAExC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QACxB,IAAI,CAAC,QAAQ,CAAC,IAAI,CAChB,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE;YACjC,OAAO,EAAE,GAAG,OAAO,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,CAAC;QAC3C,CAAC,CAAC,CACH,CAAC;QAEF,IAAI,MAAM,CAAC,EAAE,EAAE,CAAC;YACd,IAAI,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC9B,IAAI,CAAC,KAAK,CAAC,mBAAmB,GAAG,IAAI,CAAC;YACxC,CAAC;YACD,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,WAAW,CACjD,MAAM,CAAC,YAAY,CACpB,CAAC;YACF,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QACrE,CAAC;IACH,CAAC;IAED,2BAA2B,CACzB,IAAqB;QAErB,MAAM,KAAK,GAAG,IAAI,GAAG,EAAU,CAAC;QAChC,MAAM,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;QACvC,MAAM,sBAAsB,GAAG,IAAI,GAAG,EAAU,CAAC;QAEjD,KAAK,MAAM,CAAC,IAAI,EAAE,QAAQ,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;YACjE,MAAM,QAAQ,GAAG,oBAAoB,CACnC,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAC1B,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CACnB,CAAC;YAEF,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;iBAC1B,OAAO,CAAC,CAAC,CAAC,IAAI,EAAE,UAAU,CAAC,EAAE,EAAE,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;iBACjE,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,sBAAsB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;YAEvD,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;YAC5D,QAAQ,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;QACpD,CAAC;QAED,MAAM,EACJ,gBAAgB,EAChB,sBAAsB,EACtB,0BAA0B,EAC1B,mBAAmB,EACnB,kBAAkB,EAClB,KAAK,EACN,GAAG,mBAAmB,CACrB,CAAC,GAAG,YAAY,CAAC,EACjB,EAAE,IAAI,EAAE,eAAe,EAAE,sBAAsB,EAAE,CAClD,CAAC;QAEF,OAAO;YACL,KAAK;YACL,sBAAsB,EAAE,CAAC,GAAG,sBAAsB,CAAC;YACnD,YAAY,EAAE;gBACZ,MAAM,EAAE,gBAAgB;gBACxB,cAAc,EAAE,0BAA0B;gBAC1C,UAAU,EAAE,sBAAsB;gBAClC,OAAO,EAAE,mBAAmB;gBAC5B,MAAM,EAAE,kBAAkB;aAC3B;YACD,KAAK;SACN,CAAC;IACJ,CAAC;CACF;AAOD,MAAM,OAAO,iBAAiB;IAG5B,YAAY,CAAc;IAC1B,cAAc,CAAU;IAExB,QAAQ,CAAyB;IAEjC,YACE,QAAgC,EAChC,UAAuC,EAAE;QAEzC,MAAM,EACJ,eAAe,GAAG,GAAG,EAAE,CAAC,IAAI,gBAAgB,EAAE,EAC9C,WAAW,GAAG,IAAI,WAAW,EAAE,EAChC,GAAG,OAAO,CAAC;QAEZ,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC;QAChC,IAAI,CAAC,cAAc,GAAG,eAA0B,CAAC;IACnD,CAAC;IAED,KAAK,CAAC,OAAO,CACX,OAA0B;QAE1B,MAAM,MAAM,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;QACrC,IACE,OAAO,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC;YAC7B,OAAO,CAAC,UAAU,CAAC,MAAM,KAAK,CAAC,EAC/B,CAAC;YACD,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,OAAO,OAAO,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YAClC,IAAI,CAAC,mBAAmB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;YAC3C,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC;IACjD,CAAC;IAED,KAAK,CAAC,mBAAmB,CACvB,MAAS,EACT,OAA0B;QAE1B,MAAM,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC,QAAQ,CAAC;QAEnC,MAAM,GAAG,GAAG,IAAI,kBAAkB,CAAC;YACjC,WAAW,EAAE,IAAI,CAAC,YAAY;YAC9B,QAAQ,EAAE,QAAQ;YAClB,YAAY,EAAE,IAAI;SACnB,CAAC,CAAC;QAEH,MAAM,kBAAkB,GAAG,OAAO,CAAC,QAAQ,CAAC,GAAG,CAC7C,CAAC,QAAQ,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAC5C,CAAC;QAEF,IAAI,KAAK,EAAE,MAAM,UAAU,IAAI,GAAG,CAAC,OAAO,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAC/D,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAC1B,CAAC;QAED,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC;YACtB,MAAM,CAAC,CAAC;YACR,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC;IACjD,CAAC;IAED,KAAK,CAAC,WAAW,CACf,MAAS,EACT,WAAqB;QAErB,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC7B,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,MAAM,EACJ,QAAQ,EACR,QAAQ,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,EAChC,GAAG,IAAI,CAAC,QAAQ,CAAC;QAElB,MAAM,OAAO,CAAC,UAAU,CACtB,WAAW,CAAC,GAAG,CAAC,KAAK,EAAC,YAAY,EAAE,EAAE;YACpC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,YAAY,CAAC,CAAC;YACnD,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,WAAW,CACpD,QAAQ,EACR;gBACE,WAAW;aACZ,CACF,CAAC;YAEF,MAAM,CAAC,IAAI,CAAC,EAAE,GAAG,UAAU,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC,CAAC;QACrD,CAAC,CAAC,CACH,CAAC;QAEF,OAAO,MAAM,CAAC;IAChB,CAAC;CACF"}
|
package/dist/index.d.ts
CHANGED
|
@@ -1,3 +1,3 @@
|
|
|
1
|
-
export * from "./tarball.
|
|
2
|
-
export * from "./class/NpmTarball.class.
|
|
1
|
+
export * from "./tarball.ts";
|
|
2
|
+
export * from "./class/NpmTarball.class.ts";
|
|
3
3
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/tarball.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"tarball.d.ts","sourceRoot":"","sources":["../src/tarball.ts"],"names":[],"mappings":"AAKA,OAAO,EACL,KAAK,OAAO,EACZ,KAAK,UAAU,EACf,KAAK,kBAAkB,EACxB,MAAM,sBAAsB,CAAC;AAC9B,OAAO,KAAK,WAAW,MAAM,yBAAyB,CAAC;AACvD,OAAO,EACL,eAAe,EACf,KAAK,iBAAiB,EACvB,MAAM,kBAAkB,CAAC;
|
|
1
|
+
{"version":3,"file":"tarball.d.ts","sourceRoot":"","sources":["../src/tarball.ts"],"names":[],"mappings":"AAKA,OAAO,EACL,KAAK,OAAO,EACZ,KAAK,UAAU,EACf,KAAK,kBAAkB,EACxB,MAAM,sBAAsB,CAAC;AAC9B,OAAO,KAAK,WAAW,MAAM,yBAAyB,CAAC;AACvD,OAAO,EACL,eAAe,EACf,KAAK,iBAAiB,EACvB,MAAM,kBAAkB,CAAC;AAc1B,MAAM,WAAW,aAAa;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,iBAAiB,CAAC;IACxB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/B,eAAe,EAAE,OAAO,CAAC;IACzB,qBAAqB,EAAE,OAAO,CAAC;IAC/B,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAC5B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAC7B,UAAU,EAAE,GAAG,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,QAAQ,EAAE,GAAG,CAAC;IACd,QAAQ,EAAE,WAAW,CAAC,0BAA0B,EAAE,CAAC;IACnD,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9B,WAAW,EAAE;QACX,UAAU,EAAE,MAAM,EAAE,CAAC;QACrB,KAAK,EAAE,MAAM,EAAE,CAAC;QAChB,QAAQ,EAAE,MAAM,EAAE,CAAC;QACnB,MAAM,EAAE,MAAM,EAAE,CAAC;QACjB,OAAO,EAAE,MAAM,EAAE,CAAC;QAClB,cAAc,EAAE,MAAM,EAAE,CAAC;QACzB,eAAe,EAAE,MAAM,EAAE,CAAC;QAC1B,mBAAmB,EAAE,MAAM,EAAE,CAAC;QAC9B,gBAAgB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KAC1C,CAAC;CACH;AAQD,MAAM,WAAW,WAAW;IAC1B,kBAAkB,CAAC,EAAE,kBAAkB,CAAC;CACzC;AAED,wBAAsB,gBAAgB,CACpC,kBAAkB,EAAE,MAAM,GAAG,eAAe,EAC5C,GAAG,EAAE,aAAa,EAClB,OAAO,GAAE,WAAgB,GACxB,OAAO,CAAC,IAAI,CAAC,CAmEf;AAED,MAAM,WAAW,oBAAoB;IACnC,KAAK,EAAE;QACL,mDAAmD;QACnD,IAAI,EAAE,MAAM,EAAE,CAAC;QACf,kDAAkD;QAClD,UAAU,EAAE,MAAM,EAAE,CAAC;QACrB,wCAAwC;QACxC,QAAQ,EAAE,MAAM,EAAE,CAAC;KACpB,CAAC;IACF,qCAAqC;IACrC,aAAa,EAAE,MAAM,CAAC;IACtB,4DAA4D;IAC5D,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,mCAAmC;IACnC,QAAQ,EAAE,WAAW,CAAC,0BAA0B,EAAE,CAAC;IACnD,GAAG,EAAE;QACH,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC;QACzD,QAAQ,EAAE,OAAO,EAAE,CAAC;KACrB,CAAC;CACH;AAED,wBAAsB,WAAW,CAC/B,kBAAkB,EAAE,MAAM,GAAG,eAAe,EAC5C,OAAO,GAAE,WAAgB,GACxB,OAAO,CAAC,oBAAoB,CAAC,CAkC/B;AAED,MAAM,WAAW,wBAAwB;IACvC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,wBAAsB,iBAAiB,CACrC,QAAQ,EAAE,MAAM,EAChB,OAAO,EAAE,wBAAwB,GAChC,OAAO,CAAC,eAAe,CAAC,CAiB1B"}
|
package/dist/tarball.js
CHANGED
|
@@ -9,8 +9,7 @@ import pacote from "pacote";
|
|
|
9
9
|
// Import Internal Dependencies
|
|
10
10
|
import { isSensitiveFile, booleanToFlags } from "./utils/index.js";
|
|
11
11
|
import { NpmTarball } from "./class/NpmTarball.class.js";
|
|
12
|
-
import
|
|
13
|
-
import { getEmptyPackageWarning } from "./warnings.js";
|
|
12
|
+
import { getEmptyPackageWarning, getSemVerWarning } from "./warnings.js";
|
|
14
13
|
// CONSTANTS
|
|
15
14
|
const kNativeCodeExtensions = new Set([".gyp", ".c", ".cpp", ".node", ".so", ".h"]);
|
|
16
15
|
const kNpmToken = typeof process.env.NODE_SECURE_TOKEN === "string" ?
|
|
@@ -31,10 +30,10 @@ export async function scanDirOrArchive(locationOrManifest, ref, options = {}) {
|
|
|
31
30
|
}
|
|
32
31
|
if (composition.files.length === 1 &&
|
|
33
32
|
composition.files.includes("package.json")) {
|
|
34
|
-
ref.warnings.push(
|
|
33
|
+
ref.warnings.push(getEmptyPackageWarning());
|
|
35
34
|
}
|
|
36
35
|
if (mama.hasZeroSemver) {
|
|
37
|
-
ref.warnings.push(
|
|
36
|
+
ref.warnings.push(getSemVerWarning(mama.document.version));
|
|
38
37
|
}
|
|
39
38
|
ref.warnings.push(...code.warnings);
|
|
40
39
|
const { files, dependencies, flags } = code.groupAndAnalyseDependencies(mama);
|
package/dist/tarball.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"tarball.js","sourceRoot":"","sources":["../src/tarball.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,MAAM,SAAS,CAAC;AAEzB,kCAAkC;AAClC,OAAO,EAIN,MAAM,sBAAsB,CAAC;AAC9B,OAAO,KAAK,WAAW,MAAM,yBAAyB,CAAC;AACvD,OAAO,EACL,eAAe,EAEhB,MAAM,kBAAkB,CAAC;AAC1B,OAAO,MAAM,MAAM,QAAQ,CAAC;AAE5B,+BAA+B;AAC/B,OAAO,EACL,eAAe,EACf,cAAc,EACf,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,
|
|
1
|
+
{"version":3,"file":"tarball.js","sourceRoot":"","sources":["../src/tarball.ts"],"names":[],"mappings":"AAAA,8BAA8B;AAC9B,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,MAAM,SAAS,CAAC;AAEzB,kCAAkC;AAClC,OAAO,EAIN,MAAM,sBAAsB,CAAC;AAC9B,OAAO,KAAK,WAAW,MAAM,yBAAyB,CAAC;AACvD,OAAO,EACL,eAAe,EAEhB,MAAM,kBAAkB,CAAC;AAC1B,OAAO,MAAM,MAAM,QAAQ,CAAC;AAE5B,+BAA+B;AAC/B,OAAO,EACL,eAAe,EACf,cAAc,EACf,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EACL,sBAAsB,EACtB,gBAAgB,EACjB,MAAM,eAAe,CAAC;AAiCvB,YAAY;AACZ,MAAM,qBAAqB,GAAG,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC,CAAC;AACpF,MAAM,SAAS,GAAG,OAAO,OAAO,CAAC,GAAG,CAAC,iBAAiB,KAAK,QAAQ,CAAC,CAAC;IACnE,EAAE,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB,EAAE,CAAC,CAAC;IAC1C,EAAE,CAAC;AAML,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,kBAA4C,EAC5C,GAAkB,EAClB,UAAuB,EAAE;IAEzB,MAAM,EAAE,kBAAkB,EAAE,GAAG,OAAO,CAAC;IAEvC,MAAM,IAAI,GAAG,MAAM,eAAe,CAAC,eAAe,CAChD,kBAAkB,CACnB,CAAC;IACF,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,CAAC;IAEnC,MAAM,EACJ,WAAW,EACX,WAAW,EACX,IAAI,EACL,GAAG,MAAM,KAAK,CAAC,SAAS,CAAC,kBAAkB,CAAC,CAAC;IAE9C,CAAC;QACC,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,UAAU,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC,QAAQ,CAAC;QACpE,MAAM,CAAC,MAAM,CAAC,GAAG,EAAE;YACjB,WAAW,EAAE,OAAO,EAAE,UAAU,EAAE,OAAO;YACzC,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS;SACpD,CAAC,CAAC;IACL,CAAC;IAED,IACE,WAAW,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC;QAC9B,WAAW,CAAC,KAAK,CAAC,QAAQ,CAAC,cAAc,CAAC,EAC1C,CAAC;QACD,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,sBAAsB,EAAE,CAAC,CAAC;IAC9C,CAAC;IAED,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;QACvB,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,QAAQ,CAAC,OAAQ,CAAC,CAAC,CAAC;IAC9D,CAAC;IACD,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC;IAEpC,MAAM,EACJ,KAAK,EACL,YAAY,EACZ,KAAK,EACN,GAAG,IAAI,CAAC,2BAA2B,CAAC,IAAI,CAAC,CAAC;IAE3C,GAAG,CAAC,QAAQ,GAAG,WAAW,CAAC,QAAQ,CAAC;IACpC,GAAG,CAAC,gBAAgB,GAAG,WAAW,CAAC,gBAAgB,CAAC;IACpD,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,UAAU,CAAC;IAC3B,GAAG,CAAC,IAAI,GAAG,WAAW,CAAC,IAAI,CAAC;IAC5B,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;IACpD,GAAG,CAAC,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC;IACjD,GAAG,CAAC,WAAW,CAAC,mBAAmB,GAAG,YAAY,CAAC,UAAU,CAAC;IAC9D,GAAG,CAAC,WAAW,CAAC,gBAAgB,GAAG,YAAY,CAAC,cAAc,CAAC;IAC/D,GAAG,CAAC,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IACpD,GAAG,CAAC,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;IACtD,GAAG,CAAC,WAAW,CAAC,cAAc,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC;IAC5C,GAAG,CAAC,WAAW,CAAC,eAAe,GAAG,YAAY,CAAC,MAAM,CAAC;IACtD,GAAG,CAAC,WAAW,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC;IAEzC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC;QAC/B,GAAG,KAAK;QACR,mBAAmB,EAAE,IAAI,CAAC,KAAK,CAAC,mBAAmB,IAAI,KAAK,CAAC,mBAAmB;QAChF,YAAY,EAAE,WAAW,CAAC,gBAAgB,CAAC,MAAM,KAAK,CAAC;QACvD,mBAAmB,EAAE,WAAW,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC;QAC5D,eAAe,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC;QACzC,WAAW,EAAE,GAAG,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,aAAa,CAAC;QAC1E,aAAa,EAAE,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;QACtE,aAAa,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ;YAChC,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,qBAAqB,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;QACjF,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,gBAAgB;KACvC,CAAC,CAAC,CAAC;AACN,CAAC;AAuBD,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,kBAA4C,EAC5C,UAAuB,EAAE;IAEzB,MAAM,EAAE,kBAAkB,EAAE,GAAG,OAAO,CAAC;IAEvC,MAAM,IAAI,GAAG,MAAM,eAAe,CAAC,eAAe,CAChD,kBAAkB,CACnB,CAAC;IACF,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,CAAC;IAEvC,MAAM,EACJ,WAAW,EACX,WAAW,EACX,IAAI,EACL,GAAG,MAAM,SAAS,CAAC,SAAS,CAAC,kBAAkB,CAAC,CAAC;IAElD,0BAA0B;IAC1B,MAAM,QAAQ,GAAG,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC;IACpC,IAAI,WAAW,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC,IAAI,WAAW,CAAC,KAAK,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;QACjF,QAAQ,CAAC,IAAI,CAAC,sBAAsB,EAAE,CAAC,CAAC;IAC1C,CAAC;IAED,OAAO;QACL,KAAK,EAAE;YACL,IAAI,EAAE,WAAW,CAAC,KAAK;YACvB,UAAU,EAAE,CAAC,GAAG,WAAW,CAAC,GAAG,CAAC;YAChC,QAAQ,EAAE,IAAI,CAAC,QAAQ;SACxB;QACD,aAAa,EAAE,WAAW,CAAC,IAAI;QAC/B,gBAAgB,EAAE,WAAW,CAAC,gBAAgB;QAC9C,QAAQ,EAAE,WAAW,CAAC,QAAQ;QAC9B,GAAG,EAAE;YACH,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,QAAQ;SACT;KACF,CAAC;AACJ,CAAC;AAOD,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,QAAgB,EAChB,OAAiC;IAEjC,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC;IAEnC,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;IACvE,MAAM,MAAM,CAAC,OAAO,CAClB,IAAI,EACJ,eAAe,EACf;QACE,GAAG,SAAS;QACZ,QAAQ;QACR,KAAK,EAAE,GAAG,EAAE,CAAC,OAAO,EAAE,OAAO;KAC9B,CACF,CAAC;IAEF,OAAO,eAAe,CAAC,eAAe,CACpC,eAAe,CAChB,CAAC;AACJ,CAAC"}
|
package/dist/utils/index.d.ts
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
|
-
export * from "./analyzeDependencies.
|
|
2
|
-
export * from "./booleanToFlags.
|
|
3
|
-
export * from "./isSensitiveFile.
|
|
4
|
-
export * from "./getTarballComposition.
|
|
5
|
-
export * from "./filterDependencyKind.
|
|
1
|
+
export * from "./analyzeDependencies.ts";
|
|
2
|
+
export * from "./booleanToFlags.ts";
|
|
3
|
+
export * from "./isSensitiveFile.ts";
|
|
4
|
+
export * from "./getTarballComposition.ts";
|
|
5
|
+
export * from "./filterDependencyKind.ts";
|
|
6
6
|
//# sourceMappingURL=index.d.ts.map
|
package/dist/warnings.d.ts
CHANGED
|
@@ -14,31 +14,37 @@ export declare const warnings: Readonly<{
|
|
|
14
14
|
"parsing-error": {
|
|
15
15
|
i18n: string;
|
|
16
16
|
severity: "Information";
|
|
17
|
+
experimental: false;
|
|
17
18
|
};
|
|
18
19
|
"unsafe-import": {
|
|
19
20
|
i18n: string;
|
|
20
21
|
severity: "Warning";
|
|
22
|
+
experimental: false;
|
|
21
23
|
};
|
|
22
24
|
"unsafe-regex": {
|
|
23
25
|
i18n: string;
|
|
24
26
|
severity: "Warning";
|
|
27
|
+
experimental: false;
|
|
25
28
|
};
|
|
26
29
|
"unsafe-stmt": {
|
|
27
|
-
code: string;
|
|
28
30
|
i18n: string;
|
|
29
31
|
severity: "Warning";
|
|
32
|
+
experimental: false;
|
|
30
33
|
};
|
|
31
34
|
"encoded-literal": {
|
|
32
35
|
i18n: string;
|
|
33
36
|
severity: "Information";
|
|
37
|
+
experimental: false;
|
|
34
38
|
};
|
|
35
39
|
"short-identifiers": {
|
|
36
40
|
i18n: string;
|
|
37
41
|
severity: "Warning";
|
|
42
|
+
experimental: false;
|
|
38
43
|
};
|
|
39
44
|
"suspicious-literal": {
|
|
40
45
|
i18n: string;
|
|
41
46
|
severity: "Warning";
|
|
47
|
+
experimental: false;
|
|
42
48
|
};
|
|
43
49
|
"suspicious-file": {
|
|
44
50
|
i18n: string;
|
package/dist/warnings.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"warnings.d.ts","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AACA,OAAO,EAEL,KAAK,OAAO,EACZ,KAAK,WAAW,EACjB,MAAM,+BAA+B,CAAC;AAEvC,MAAM,MAAM,kBAAkB,GAC1B,WAAW,GACX,aAAa,GACb,eAAe,CAAC;AAEpB,eAAO,MAAM,QAAQ
|
|
1
|
+
{"version":3,"file":"warnings.d.ts","sourceRoot":"","sources":["../src/warnings.ts"],"names":[],"mappings":"AACA,OAAO,EAEL,KAAK,OAAO,EACZ,KAAK,WAAW,EACjB,MAAM,+BAA+B,CAAC;AAEvC,MAAM,MAAM,kBAAkB,GAC1B,WAAW,GACX,aAAa,GACb,eAAe,CAAC;AAEpB,eAAO,MAAM,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAYuE,CAAC;AAE7F,wBAAgB,gBAAgB,CAC9B,KAAK,EAAE,MAAM,GACZ,OAAO,CAWT;AAED,wBAAgB,sBAAsB,IAAI,OAAO,CAWhD"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@nodesecure/tarball",
|
|
3
|
-
"version": "
|
|
3
|
+
"version": "3.1.0",
|
|
4
4
|
"description": "NodeSecure tarball scanner",
|
|
5
5
|
"type": "module",
|
|
6
6
|
"exports": {
|
|
@@ -15,12 +15,22 @@
|
|
|
15
15
|
"./package.json": "./package.json"
|
|
16
16
|
},
|
|
17
17
|
"scripts": {
|
|
18
|
-
"build": "tsc",
|
|
18
|
+
"build": "tsc -b",
|
|
19
19
|
"prepublishOnly": "npm run build",
|
|
20
|
-
"test-only": "
|
|
20
|
+
"test-only": "node --test ./test/**/*.spec.ts",
|
|
21
21
|
"test-types": "attw --pack . --profile esm-only",
|
|
22
22
|
"test": "c8 -r html npm run test-only && npm run test-types"
|
|
23
23
|
},
|
|
24
|
+
"publishConfig": {
|
|
25
|
+
"registry": "https://registry.npmjs.org",
|
|
26
|
+
"access": "public",
|
|
27
|
+
"provenance": true
|
|
28
|
+
},
|
|
29
|
+
"repository": {
|
|
30
|
+
"type": "git",
|
|
31
|
+
"url": "https://github.com/NodeSecure/scanner",
|
|
32
|
+
"directory": "workspaces/tarball"
|
|
33
|
+
},
|
|
24
34
|
"files": [
|
|
25
35
|
"dist"
|
|
26
36
|
],
|
|
@@ -30,21 +40,18 @@
|
|
|
30
40
|
],
|
|
31
41
|
"author": "GENTILHOMME Thomas <gentilhomme.thomas@gmail.com>",
|
|
32
42
|
"license": "MIT",
|
|
33
|
-
"repository": {
|
|
34
|
-
"type": "git",
|
|
35
|
-
"url": "git+https://github.com/NodeSecure/scanner.git"
|
|
36
|
-
},
|
|
37
43
|
"bugs": {
|
|
38
44
|
"url": "https://github.com/NodeSecure/scanner/issues"
|
|
39
45
|
},
|
|
40
46
|
"homepage": "https://github.com/NodeSecure/tree/master/workspaces/tarball#readme",
|
|
41
47
|
"dependencies": {
|
|
42
|
-
"@nodesecure/conformance": "^1.2.
|
|
48
|
+
"@nodesecure/conformance": "^1.2.1",
|
|
43
49
|
"@nodesecure/fs-walk": "^2.0.0",
|
|
44
|
-
"@nodesecure/js-x-ray": "
|
|
45
|
-
"@nodesecure/mama": "^2.
|
|
50
|
+
"@nodesecure/js-x-ray": "11.3.0",
|
|
51
|
+
"@nodesecure/mama": "^2.1.1",
|
|
46
52
|
"@nodesecure/npm-types": "^1.2.0",
|
|
47
53
|
"@nodesecure/utils": "^2.3.0",
|
|
54
|
+
"ipaddr.js": "2.3.0",
|
|
48
55
|
"pacote": "^21.0.0"
|
|
49
56
|
},
|
|
50
57
|
"devDependencies": {
|