@opensip-cli/checks-universal 0.1.12 → 0.1.14
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +3 -3
- package/dist/__tests__/behavior-fixtures-6.test.js.map +1 -1
- package/dist/__tests__/behavior-fixtures-7.test.js +1 -2
- package/dist/__tests__/behavior-fixtures-7.test.js.map +1 -1
- package/dist/__tests__/behavior-fixtures-8.test.js +4 -1
- package/dist/__tests__/behavior-fixtures-8.test.js.map +1 -1
- package/dist/__tests__/behavior-fixtures.test.js +6 -2
- package/dist/__tests__/behavior-fixtures.test.js.map +1 -1
- package/dist/__tests__/env-var-validation.test.js +3 -1
- package/dist/__tests__/env-var-validation.test.js.map +1 -1
- package/dist/__tests__/resilience-fp.test.js +24 -8
- package/dist/__tests__/resilience-fp.test.js.map +1 -1
- package/dist/checks/architecture/__tests__/tool-has-manifest.test.js +22 -4
- package/dist/checks/architecture/__tests__/tool-has-manifest.test.js.map +1 -1
- package/dist/checks/architecture/__tests__/tool-identity-single-source.test.js +5 -1
- package/dist/checks/architecture/__tests__/tool-identity-single-source.test.js.map +1 -1
- package/dist/checks/architecture/docker-best-practices-analyze.d.ts.map +1 -1
- package/dist/checks/architecture/docker-best-practices-analyze.js +10 -1
- package/dist/checks/architecture/docker-best-practices-analyze.js.map +1 -1
- package/dist/checks/architecture/heavy-import-detection.d.ts.map +1 -1
- package/dist/checks/architecture/heavy-import-detection.js +4 -1
- package/dist/checks/architecture/heavy-import-detection.js.map +1 -1
- package/dist/checks/architecture/modules/interface-implementation-consistency.d.ts.map +1 -1
- package/dist/checks/architecture/modules/interface-implementation-consistency.js +4 -1
- package/dist/checks/architecture/modules/interface-implementation-consistency.js.map +1 -1
- package/dist/checks/architecture/project-readme-existence.d.ts.map +1 -1
- package/dist/checks/architecture/project-readme-existence.js +4 -1
- package/dist/checks/architecture/project-readme-existence.js.map +1 -1
- package/dist/checks/architecture/stale-build-artifacts.d.ts.map +1 -1
- package/dist/checks/architecture/stale-build-artifacts.js +4 -1
- package/dist/checks/architecture/stale-build-artifacts.js.map +1 -1
- package/dist/checks/architecture/vitest-config-extends-base.d.ts.map +1 -1
- package/dist/checks/architecture/vitest-config-extends-base.js +4 -1
- package/dist/checks/architecture/vitest-config-extends-base.js.map +1 -1
- package/dist/checks/architecture/vitest-config-required-with-tests.d.ts.map +1 -1
- package/dist/checks/architecture/vitest-config-required-with-tests.js +4 -1
- package/dist/checks/architecture/vitest-config-required-with-tests.js.map +1 -1
- package/dist/checks/documentation/_directives/eslint.d.ts.map +1 -1
- package/dist/checks/documentation/_directives/eslint.js +9 -1
- package/dist/checks/documentation/_directives/eslint.js.map +1 -1
- package/dist/checks/documentation/directive-audit.d.ts.map +1 -1
- package/dist/checks/documentation/directive-audit.js +4 -1
- package/dist/checks/documentation/directive-audit.js.map +1 -1
- package/dist/checks/no-unimplemented-markers.d.ts.map +1 -1
- package/dist/checks/no-unimplemented-markers.js +12 -3
- package/dist/checks/no-unimplemented-markers.js.map +1 -1
- package/dist/checks/quality/code-structure/dead-code.d.ts.map +1 -1
- package/dist/checks/quality/code-structure/dead-code.js +4 -1
- package/dist/checks/quality/code-structure/dead-code.js.map +1 -1
- package/dist/checks/quality/code-structure/no-ai-attribution.d.ts.map +1 -1
- package/dist/checks/quality/code-structure/no-ai-attribution.js +4 -1
- package/dist/checks/quality/code-structure/no-ai-attribution.js.map +1 -1
- package/dist/checks/quality/code-structure/no-console-log.d.ts.map +1 -1
- package/dist/checks/quality/code-structure/no-console-log.js +4 -1
- package/dist/checks/quality/code-structure/no-console-log.js.map +1 -1
- package/dist/checks/quality/code-structure/no-process-artifacts.d.ts.map +1 -1
- package/dist/checks/quality/code-structure/no-process-artifacts.js +4 -1
- package/dist/checks/quality/code-structure/no-process-artifacts.js.map +1 -1
- package/dist/checks/quality/dependency-version-consistency.d.ts.map +1 -1
- package/dist/checks/quality/dependency-version-consistency.js.map +1 -1
- package/dist/checks/quality/graph-ignore-hygiene.d.ts.map +1 -1
- package/dist/checks/quality/graph-ignore-hygiene.js +4 -1
- package/dist/checks/quality/graph-ignore-hygiene.js.map +1 -1
- package/dist/checks/quality/linting/eslint-justifications.d.ts.map +1 -1
- package/dist/checks/quality/linting/eslint-justifications.js +4 -1
- package/dist/checks/quality/linting/eslint-justifications.js.map +1 -1
- package/dist/checks/quality/linting/semgrep-justifications.d.ts.map +1 -1
- package/dist/checks/quality/linting/semgrep-justifications.js +4 -1
- package/dist/checks/quality/linting/semgrep-justifications.js.map +1 -1
- package/dist/checks/quality/linting/typescript-directive-hygiene.d.ts.map +1 -1
- package/dist/checks/quality/linting/typescript-directive-hygiene.js +4 -1
- package/dist/checks/quality/linting/typescript-directive-hygiene.js.map +1 -1
- package/dist/checks/quality/no-compatibility-layer-names.d.ts.map +1 -1
- package/dist/checks/quality/no-compatibility-layer-names.js +4 -1
- package/dist/checks/quality/no-compatibility-layer-names.js.map +1 -1
- package/dist/checks/quality/no-deprecated-tags.d.ts.map +1 -1
- package/dist/checks/quality/no-deprecated-tags.js +4 -1
- package/dist/checks/quality/no-deprecated-tags.js.map +1 -1
- package/dist/checks/quality/no-markdown-references.d.ts.map +1 -1
- package/dist/checks/quality/no-markdown-references.js +4 -1
- package/dist/checks/quality/no-markdown-references.js.map +1 -1
- package/dist/checks/quality/no-temporary-workarounds.d.ts.map +1 -1
- package/dist/checks/quality/no-temporary-workarounds.js +4 -1
- package/dist/checks/quality/no-temporary-workarounds.js.map +1 -1
- package/dist/checks/resilience/batch-operation-limits.d.ts.map +1 -1
- package/dist/checks/resilience/batch-operation-limits.js +4 -1
- package/dist/checks/resilience/batch-operation-limits.js.map +1 -1
- package/dist/checks/resilience/catch-clause-safety.d.ts.map +1 -1
- package/dist/checks/resilience/catch-clause-safety.js +4 -1
- package/dist/checks/resilience/catch-clause-safety.js.map +1 -1
- package/dist/checks/resilience/exit-code-correctness.d.ts.map +1 -1
- package/dist/checks/resilience/exit-code-correctness.js +4 -1
- package/dist/checks/resilience/exit-code-correctness.js.map +1 -1
- package/dist/checks/resilience/no-process-exit-in-finally.d.ts.map +1 -1
- package/dist/checks/resilience/no-process-exit-in-finally.js +4 -1
- package/dist/checks/resilience/no-process-exit-in-finally.js.map +1 -1
- package/dist/checks/resilience/readline-cleanup.d.ts.map +1 -1
- package/dist/checks/resilience/readline-cleanup.js +4 -1
- package/dist/checks/resilience/readline-cleanup.js.map +1 -1
- package/dist/checks/resilience/reentrancy-guard.d.ts.map +1 -1
- package/dist/checks/resilience/reentrancy-guard.js +4 -1
- package/dist/checks/resilience/reentrancy-guard.js.map +1 -1
- package/dist/checks/resilience/sentry/sentry-dsn-configured.d.ts.map +1 -1
- package/dist/checks/resilience/sentry/sentry-dsn-configured.js +4 -1
- package/dist/checks/resilience/sentry/sentry-dsn-configured.js.map +1 -1
- package/dist/checks/resilience/sentry/sentry-environment-set.d.ts.map +1 -1
- package/dist/checks/resilience/sentry/sentry-environment-set.js +4 -1
- package/dist/checks/resilience/sentry/sentry-environment-set.js.map +1 -1
- package/dist/checks/resilience/sentry/sentry-pii-scrubbing.d.ts.map +1 -1
- package/dist/checks/resilience/sentry/sentry-pii-scrubbing.js +4 -1
- package/dist/checks/resilience/sentry/sentry-pii-scrubbing.js.map +1 -1
- package/dist/checks/resilience/sentry/sentry-release-set.d.ts.map +1 -1
- package/dist/checks/resilience/sentry/sentry-release-set.js +4 -1
- package/dist/checks/resilience/sentry/sentry-release-set.js.map +1 -1
- package/dist/checks/resilience/sentry/sentry-sample-rate.d.ts.map +1 -1
- package/dist/checks/resilience/sentry/sentry-sample-rate.js +4 -1
- package/dist/checks/resilience/sentry/sentry-sample-rate.js.map +1 -1
- package/dist/checks/resilience/sentry/sentry-source-maps.d.ts.map +1 -1
- package/dist/checks/resilience/sentry/sentry-source-maps.js +4 -1
- package/dist/checks/resilience/sentry/sentry-source-maps.js.map +1 -1
- package/dist/checks/resilience/timer-lifecycle.d.ts.map +1 -1
- package/dist/checks/resilience/timer-lifecycle.js +8 -2
- package/dist/checks/resilience/timer-lifecycle.js.map +1 -1
- package/dist/checks/security/__tests__/package-supply-chain-policy.test.js +243 -0
- package/dist/checks/security/__tests__/package-supply-chain-policy.test.js.map +1 -1
- package/dist/checks/security/dependency-vulnerability-audit.d.ts.map +1 -1
- package/dist/checks/security/dependency-vulnerability-audit.js +6 -1
- package/dist/checks/security/dependency-vulnerability-audit.js.map +1 -1
- package/dist/checks/security/jwt-validation.d.ts.map +1 -1
- package/dist/checks/security/jwt-validation.js +15 -3
- package/dist/checks/security/jwt-validation.js.map +1 -1
- package/dist/checks/security/no-eval.d.ts.map +1 -1
- package/dist/checks/security/no-eval.js +4 -1
- package/dist/checks/security/no-eval.js.map +1 -1
- package/dist/checks/security/no-hardcoded-secrets.d.ts.map +1 -1
- package/dist/checks/security/no-hardcoded-secrets.js +4 -1
- package/dist/checks/security/no-hardcoded-secrets.js.map +1 -1
- package/dist/checks/security/package-supply-chain-policy.d.ts.map +1 -1
- package/dist/checks/security/package-supply-chain-policy.js +117 -24
- package/dist/checks/security/package-supply-chain-policy.js.map +1 -1
- package/dist/checks/security/semgrep-scan.d.ts.map +1 -1
- package/dist/checks/security/semgrep-scan.js +4 -1
- package/dist/checks/security/semgrep-scan.js.map +1 -1
- package/dist/checks/security/webhook-signature-verification.d.ts.map +1 -1
- package/dist/checks/security/webhook-signature-verification.js +7 -1
- package/dist/checks/security/webhook-signature-verification.js.map +1 -1
- package/dist/checks/testing/no-skipped-tests.d.ts.map +1 -1
- package/dist/checks/testing/no-skipped-tests.js +40 -8
- package/dist/checks/testing/no-skipped-tests.js.map +1 -1
- package/package.json +7 -5
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sentry-pii-scrubbing.js","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-pii-scrubbing.ts"],"names":[],"mappings":"AAAA,6HAA6H;AAC7H;;;GAGG;AAEH,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAExE,OAAO,EAAE,aAAa,EAAE,sBAAsB,EAAE,MAAM,sBAAsB,CAAC;AAE7E,yEAAyE;AACzE,oCAAoC;AACpC,MAAM,oBAAoB,GAAG;IAC3B,UAAU;IACV,iBAAiB;IACjB,WAAW;IACX,kBAAkB;IAClB,aAAa;IACb,oBAAoB;CACrB,CAAC;AAEF,uDAAuD;AACvD,MAAM,eAAe,GAAG;IACtB,OAAO;IACP,OAAO;IACP,YAAY;IACZ,WAAW;IACX,UAAU;IACV,MAAM;IACN,SAAS;IACT,KAAK;IACL,YAAY;IACZ,aAAa;IACb,UAAU;IACV,OAAO;IACP,QAAQ;IACR,QAAQ;IACR,SAAS;CACV,CAAC;AAEF,sKAAsK;AACtK,SAAS,OAAO,CAAC,OAAe,EAAE,QAAgB;IAChD,MAAM,UAAU,GAAqB,EAAE,CAAC;IAExC,uFAAuF;IAEvF,IAAI,aAAa,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3B,MAAM,SAAS,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAClD,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,aAAa,GAAG,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;YAC7D,MAAM,mBAAmB,GAAG,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;YACzE,MAAM,wBAAwB,GAAG,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,uBAAuB,CAAC,CAAC;YAEnF,IAAI,CAAC,aAAa,IAAI,CAAC,mBAAmB,IAAI,CAAC,wBAAwB,EAAE,CAAC;gBACxE,UAAU,CAAC,IAAI,CAAC;oBACd,IAAI,EAAE,SAAS,CAAC,SAAS,GAAG,CAAC;oBAC7B,OAAO,EACL,qGAAqG;oBACvG,QAAQ,EAAE,SAAS;oBACnB,UAAU,EACR,+HAA+H;oBACjI,IAAI,EAAE,sBAAsB;oBAC5B,QAAQ;iBACT,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,8EAA8E;IAE9E,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,KAAK,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAE5B,gBAAgB;QAChB,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QAElE,kDAAkD;QAClD,MAAM,cAAc,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;QACtF,IAAI,CAAC,cAAc;YAAE,SAAS;QAE9B,wCAAwC;QACxC,KAAK,MAAM,KAAK,IAAI,eAAe,EAAE,CAAC;YACpC,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YACrC,IAAI,QAAQ,KAAK,CAAC,CAAC;gBAAE,SAAS;YAE9B,uDAAuD;YACvD,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,SAAS,EAAE,CAAC;YACnE,IAAI,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC3F,UAAU,CAAC,IAAI,CAAC;oBACd,IAAI,EAAE,CAAC,GAAG,CAAC;oBACX,MAAM,EAAE,QAAQ;oBAChB,OAAO,EAAE,cAAc,KAAK,oDAAoD;oBAChF,QAAQ,EAAE,SAAS;oBACnB,UAAU,EAAE,sBAAsB,KAAK,6GAA6G;oBACpJ,IAAI,EAAE,uBAAuB;oBAC7B,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;oBAC5B,QAAQ;iBACT,CAAC,CAAC;gBACH,MAAM,CAAC,mCAAmC;YAC5C,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,WAAW,CAAC;IAC5C,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,sBAAsB;IAC5B,KAAK,EAAE,
|
|
1
|
+
{"version":3,"file":"sentry-pii-scrubbing.js","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-pii-scrubbing.ts"],"names":[],"mappings":"AAAA,6HAA6H;AAC7H;;;GAGG;AAEH,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAExE,OAAO,EAAE,aAAa,EAAE,sBAAsB,EAAE,MAAM,sBAAsB,CAAC;AAE7E,yEAAyE;AACzE,oCAAoC;AACpC,MAAM,oBAAoB,GAAG;IAC3B,UAAU;IACV,iBAAiB;IACjB,WAAW;IACX,kBAAkB;IAClB,aAAa;IACb,oBAAoB;CACrB,CAAC;AAEF,uDAAuD;AACvD,MAAM,eAAe,GAAG;IACtB,OAAO;IACP,OAAO;IACP,YAAY;IACZ,WAAW;IACX,UAAU;IACV,MAAM;IACN,SAAS;IACT,KAAK;IACL,YAAY;IACZ,aAAa;IACb,UAAU;IACV,OAAO;IACP,QAAQ;IACR,QAAQ;IACR,SAAS;CACV,CAAC;AAEF,sKAAsK;AACtK,SAAS,OAAO,CAAC,OAAe,EAAE,QAAgB;IAChD,MAAM,UAAU,GAAqB,EAAE,CAAC;IAExC,uFAAuF;IAEvF,IAAI,aAAa,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3B,MAAM,SAAS,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAClD,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,aAAa,GAAG,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;YAC7D,MAAM,mBAAmB,GAAG,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;YACzE,MAAM,wBAAwB,GAAG,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,uBAAuB,CAAC,CAAC;YAEnF,IAAI,CAAC,aAAa,IAAI,CAAC,mBAAmB,IAAI,CAAC,wBAAwB,EAAE,CAAC;gBACxE,UAAU,CAAC,IAAI,CAAC;oBACd,IAAI,EAAE,SAAS,CAAC,SAAS,GAAG,CAAC;oBAC7B,OAAO,EACL,qGAAqG;oBACvG,QAAQ,EAAE,SAAS;oBACnB,UAAU,EACR,+HAA+H;oBACjI,IAAI,EAAE,sBAAsB;oBAC5B,QAAQ;iBACT,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,8EAA8E;IAE9E,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,KAAK,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAE5B,gBAAgB;QAChB,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QAElE,kDAAkD;QAClD,MAAM,cAAc,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;QACtF,IAAI,CAAC,cAAc;YAAE,SAAS;QAE9B,wCAAwC;QACxC,KAAK,MAAM,KAAK,IAAI,eAAe,EAAE,CAAC;YACpC,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YACrC,IAAI,QAAQ,KAAK,CAAC,CAAC;gBAAE,SAAS;YAE9B,uDAAuD;YACvD,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,SAAS,EAAE,CAAC;YACnE,IAAI,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC3F,UAAU,CAAC,IAAI,CAAC;oBACd,IAAI,EAAE,CAAC,GAAG,CAAC;oBACX,MAAM,EAAE,QAAQ;oBAChB,OAAO,EAAE,cAAc,KAAK,oDAAoD;oBAChF,QAAQ,EAAE,SAAS;oBACnB,UAAU,EAAE,sBAAsB,KAAK,6GAA6G;oBACpJ,IAAI,EAAE,uBAAuB;oBAC7B,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;oBAC5B,QAAQ;iBACT,CAAC,CAAC;gBACH,MAAM,CAAC,mCAAmC;YAC5C,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,WAAW,CAAC;IAC5C,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,sBAAsB;IAC5B,KAAK,EAAE;QACL,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;QACvC,QAAQ,EAAE,CAAC,SAAS,EAAE,UAAU,CAAC;KAClC;IACD,aAAa,EAAE,4BAA4B;IAC3C,WAAW,EAAE,iFAAiF;IAC9F,eAAe,EAAE;;;;;;;;;;;;+EAY4D;IAC7E,IAAI,EAAE,CAAC,QAAQ,EAAE,UAAU,EAAE,KAAK,EAAE,SAAS,CAAC;IAC9C,SAAS,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC;IAC5C,UAAU,EAAE,QAAQ;IACpB,OAAO;CACR,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sentry-release-set.d.ts","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-release-set.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAeH;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,
|
|
1
|
+
{"version":3,"file":"sentry-release-set.d.ts","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-release-set.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAeH;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,sCAqB3B,CAAC"}
|
|
@@ -20,7 +20,10 @@ const analyze = createMissingSentryInitOptionAnalyzer({
|
|
|
20
20
|
export const sentryReleaseSet = defineCheck({
|
|
21
21
|
id: 'c3e9a5b2-6d4f-4a0c-b123-f5e7c9d1a4b6',
|
|
22
22
|
slug: 'sentry-release-set',
|
|
23
|
-
scope: {
|
|
23
|
+
scope: {
|
|
24
|
+
languages: ['typescript', 'javascript'],
|
|
25
|
+
concerns: ['backend', 'frontend'],
|
|
26
|
+
},
|
|
24
27
|
contentFilter: 'strip-strings-and-comments',
|
|
25
28
|
description: 'Detects Sentry.init() without release — cannot track regressions across deploys',
|
|
26
29
|
longDescription: `**Purpose:** Ensures Sentry events include a release identifier so errors can be correlated with specific deploys and commits.
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sentry-release-set.js","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-release-set.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AAEnD,OAAO,EAAE,qCAAqC,EAAE,MAAM,sBAAsB,CAAC;AAE7E,MAAM,OAAO,GAAG,qCAAqC,CAAC;IACpD,YAAY,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,gBAAgB,CAAC;IACtF,OAAO,EAAE,iFAAiF;IAC1F,QAAQ,EAAE,SAAS;IACnB,UAAU,EACR,6LAA6L;IAC/L,IAAI,EAAE,wBAAwB;CAC/B,CAAC,CAAC;AAEH;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,WAAW,CAAC;IAC1C,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,oBAAoB;IAC1B,KAAK,EAAE,
|
|
1
|
+
{"version":3,"file":"sentry-release-set.js","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-release-set.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AAEnD,OAAO,EAAE,qCAAqC,EAAE,MAAM,sBAAsB,CAAC;AAE7E,MAAM,OAAO,GAAG,qCAAqC,CAAC;IACpD,YAAY,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,gBAAgB,CAAC;IACtF,OAAO,EAAE,iFAAiF;IAC1F,QAAQ,EAAE,SAAS;IACnB,UAAU,EACR,6LAA6L;IAC/L,IAAI,EAAE,wBAAwB;CAC/B,CAAC,CAAC;AAEH;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,WAAW,CAAC;IAC1C,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,oBAAoB;IAC1B,KAAK,EAAE;QACL,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;QACvC,QAAQ,EAAE,CAAC,SAAS,EAAE,UAAU,CAAC;KAClC;IACD,aAAa,EAAE,4BAA4B;IAC3C,WAAW,EAAE,iFAAiF;IAC9F,eAAe,EAAE;;;;;;;mFAOgE;IACjF,IAAI,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,eAAe,CAAC;IAC5C,SAAS,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC;IAC5C,UAAU,EAAE,MAAM;IAClB,OAAO;CACR,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sentry-sample-rate.d.ts","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-sample-rate.ts"],"names":[],"mappings":"AAAA;;;GAGG;AA8DH;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,
|
|
1
|
+
{"version":3,"file":"sentry-sample-rate.d.ts","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-sample-rate.ts"],"names":[],"mappings":"AAAA;;;GAGG;AA8DH;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,sCAsB3B,CAAC"}
|
|
@@ -58,7 +58,10 @@ function analyze(content, filePath) {
|
|
|
58
58
|
export const sentrySampleRate = defineCheck({
|
|
59
59
|
id: 'a7c3e9f6-0b8d-4e4a-f567-d9c1a3b5e8f0',
|
|
60
60
|
slug: 'sentry-sample-rate',
|
|
61
|
-
scope: {
|
|
61
|
+
scope: {
|
|
62
|
+
languages: ['typescript', 'javascript'],
|
|
63
|
+
concerns: ['backend', 'frontend'],
|
|
64
|
+
},
|
|
62
65
|
contentFilter: 'strip-strings-and-comments',
|
|
63
66
|
description: 'Detects missing or 1.0 tracesSampleRate — tracing disabled or too expensive',
|
|
64
67
|
longDescription: `**Purpose:** Ensures Sentry performance tracing is configured with an appropriate sample rate.
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sentry-sample-rate.js","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-sample-rate.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,WAAW,EAAuB,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAEvF,OAAO,EAAE,aAAa,EAAE,sBAAsB,EAAE,MAAM,sBAAsB,CAAC;AAE7E,SAAS,OAAO,CAAC,OAAe,EAAE,QAAgB;IAChD,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC;QAAE,OAAO,EAAE,CAAC;IAEvC,MAAM,SAAS,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;IAClD,IAAI,CAAC,SAAS;QAAE,OAAO,EAAE,CAAC;IAE1B,MAAM,UAAU,GAAqB,EAAE,CAAC;IAExC,mEAAmE;IACnE,MAAM,SAAS,GAAG,iCAAiC,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;IAC1E,IAAI,SAAS,EAAE,CAAC;QACd,MAAM,IAAI,GAAG,MAAM,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC;QACpD,IAAI,IAAI,KAAK,CAAC,EAAE,CAAC;YACf,MAAM,aAAa,GAAG,OAAO,CAAC,OAAO,CAAC,kBAAkB,EAAE,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;YAC1F,UAAU,CAAC,IAAI,CAAC;gBACd,IAAI,EACF,aAAa,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,OAAO,EAAE,aAAa,CAAC;gBACxF,OAAO,EACL,oFAAoF;gBACtF,QAAQ,EAAE,SAAS;gBACnB,UAAU,EACR,+KAA+K;gBACjL,IAAI,EAAE,yBAAyB;gBAC/B,KAAK,EAAE,SAAS,CAAC,CAAC,CAAC;gBACnB,QAAQ;aACT,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,8CAA8C;IAC9C,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QAChG,mFAAmF;QACnF,MAAM,gBAAgB,GACpB,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAC;YAClC,OAAO,CAAC,QAAQ,CAAC,2BAA2B,CAAC;YAC7C,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC;YACnC,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC;YACnC,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC;QAEzC,IAAI,gBAAgB,EAAE,CAAC;YACrB,UAAU,CAAC,IAAI,CAAC;gBACd,IAAI,EAAE,SAAS,CAAC,SAAS,GAAG,CAAC;gBAC7B,OAAO,EACL,qHAAqH;gBACvH,QAAQ,EAAE,SAAS;gBACnB,UAAU,EACR,wIAAwI;gBAC1I,IAAI,EAAE,4BAA4B;gBAClC,QAAQ;aACT,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,WAAW,CAAC;IAC1C,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,oBAAoB;IAC1B,KAAK,EAAE,
|
|
1
|
+
{"version":3,"file":"sentry-sample-rate.js","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-sample-rate.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,WAAW,EAAuB,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAEvF,OAAO,EAAE,aAAa,EAAE,sBAAsB,EAAE,MAAM,sBAAsB,CAAC;AAE7E,SAAS,OAAO,CAAC,OAAe,EAAE,QAAgB;IAChD,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC;QAAE,OAAO,EAAE,CAAC;IAEvC,MAAM,SAAS,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;IAClD,IAAI,CAAC,SAAS;QAAE,OAAO,EAAE,CAAC;IAE1B,MAAM,UAAU,GAAqB,EAAE,CAAC;IAExC,mEAAmE;IACnE,MAAM,SAAS,GAAG,iCAAiC,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;IAC1E,IAAI,SAAS,EAAE,CAAC;QACd,MAAM,IAAI,GAAG,MAAM,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC;QACpD,IAAI,IAAI,KAAK,CAAC,EAAE,CAAC;YACf,MAAM,aAAa,GAAG,OAAO,CAAC,OAAO,CAAC,kBAAkB,EAAE,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;YAC1F,UAAU,CAAC,IAAI,CAAC;gBACd,IAAI,EACF,aAAa,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,OAAO,EAAE,aAAa,CAAC;gBACxF,OAAO,EACL,oFAAoF;gBACtF,QAAQ,EAAE,SAAS;gBACnB,UAAU,EACR,+KAA+K;gBACjL,IAAI,EAAE,yBAAyB;gBAC/B,KAAK,EAAE,SAAS,CAAC,CAAC,CAAC;gBACnB,QAAQ;aACT,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,8CAA8C;IAC9C,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QAChG,mFAAmF;QACnF,MAAM,gBAAgB,GACpB,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAC;YAClC,OAAO,CAAC,QAAQ,CAAC,2BAA2B,CAAC;YAC7C,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC;YACnC,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC;YACnC,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC;QAEzC,IAAI,gBAAgB,EAAE,CAAC;YACrB,UAAU,CAAC,IAAI,CAAC;gBACd,IAAI,EAAE,SAAS,CAAC,SAAS,GAAG,CAAC;gBAC7B,OAAO,EACL,qHAAqH;gBACvH,QAAQ,EAAE,SAAS;gBACnB,UAAU,EACR,wIAAwI;gBAC1I,IAAI,EAAE,4BAA4B;gBAClC,QAAQ;aACT,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,WAAW,CAAC;IAC1C,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,oBAAoB;IAC1B,KAAK,EAAE;QACL,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;QACvC,QAAQ,EAAE,CAAC,SAAS,EAAE,UAAU,CAAC;KAClC;IACD,aAAa,EAAE,4BAA4B;IAC3C,WAAW,EAAE,6EAA6E;IAC1F,eAAe,EAAE;;;;;;;;mFAQgE;IACjF,IAAI,EAAE,CAAC,QAAQ,EAAE,YAAY,EAAE,aAAa,EAAE,eAAe,CAAC;IAC9D,SAAS,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC;IAC5C,UAAU,EAAE,MAAM;IAClB,OAAO;CACR,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sentry-source-maps.d.ts","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-source-maps.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAgEH;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,
|
|
1
|
+
{"version":3,"file":"sentry-source-maps.d.ts","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-source-maps.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAgEH;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,sCAoB3B,CAAC"}
|
|
@@ -65,7 +65,10 @@ function analyze(content, filePath) {
|
|
|
65
65
|
export const sentrySourceMaps = defineCheck({
|
|
66
66
|
id: 'e5a1c7d4-8f6b-4c2e-d345-b7a9e1f3c6d8',
|
|
67
67
|
slug: 'sentry-source-maps',
|
|
68
|
-
scope: {
|
|
68
|
+
scope: {
|
|
69
|
+
languages: ['typescript', 'javascript'],
|
|
70
|
+
concerns: ['backend', 'frontend'],
|
|
71
|
+
},
|
|
69
72
|
description: 'Detects missing Sentry source map upload — stack traces will be unreadable',
|
|
70
73
|
longDescription: `**Purpose:** Ensures bundler configurations include a Sentry source map upload plugin so production stack traces are readable.
|
|
71
74
|
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"sentry-source-maps.js","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-source-maps.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAExE,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAEtD,uDAAuD;AACvD,MAAM,kBAAkB,GAAG;IACzB,wBAAwB;IACxB,qBAAqB;IACrB,wBAAwB;IACxB,uBAAuB;IACvB,gBAAgB;IAChB,cAAc;IACd,eAAe;IACf,qBAAqB;IACrB,kBAAkB;IAClB,qBAAqB;IACrB,oBAAoB;CACrB,CAAC;AAEF,oDAAoD;AACpD,MAAM,uBAAuB,GAAG;IAC9B,gBAAgB;IAChB,aAAa;IACb,eAAe;IACf,gBAAgB;IAChB,aAAa;IACb,aAAa;IACb,cAAc;CACf,CAAC;AAEF,SAAS,eAAe,CAAC,QAAgB;IACvC,MAAM,KAAK,GAAG,QAAQ,CAAC,WAAW,EAAE,CAAC;IACrC,OAAO,uBAAuB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;AAC5E,CAAC;AAED,SAAS,OAAO,CAAC,OAAe,EAAE,QAAgB;IAChD,kCAAkC;IAClC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC;QAAE,OAAO,EAAE,CAAC;IAE1C,uEAAuE;IACvE,2BAA2B;IAC3B,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAAE,OAAO,EAAE,CAAC;IAEvE,sDAAsD;IACtD,MAAM,kBAAkB,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC;IACzF,IAAI,kBAAkB;QAAE,OAAO,EAAE,CAAC;IAElC,wDAAwD;IACxD,OAAO;QACL;YACE,IAAI,EAAE,CAAC;YACP,OAAO,EACL,kHAAkH;YACpH,QAAQ,EAAE,SAAS;YACnB,UAAU,EACR,gNAAgN;YAClN,IAAI,EAAE,4BAA4B;YAClC,QAAQ;SACT;KACF,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,WAAW,CAAC;IAC1C,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,oBAAoB;IAC1B,KAAK,EAAE,
|
|
1
|
+
{"version":3,"file":"sentry-source-maps.js","sourceRoot":"","sources":["../../../../src/checks/resilience/sentry/sentry-source-maps.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAExE,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAEtD,uDAAuD;AACvD,MAAM,kBAAkB,GAAG;IACzB,wBAAwB;IACxB,qBAAqB;IACrB,wBAAwB;IACxB,uBAAuB;IACvB,gBAAgB;IAChB,cAAc;IACd,eAAe;IACf,qBAAqB;IACrB,kBAAkB;IAClB,qBAAqB;IACrB,oBAAoB;CACrB,CAAC;AAEF,oDAAoD;AACpD,MAAM,uBAAuB,GAAG;IAC9B,gBAAgB;IAChB,aAAa;IACb,eAAe;IACf,gBAAgB;IAChB,aAAa;IACb,aAAa;IACb,cAAc;CACf,CAAC;AAEF,SAAS,eAAe,CAAC,QAAgB;IACvC,MAAM,KAAK,GAAG,QAAQ,CAAC,WAAW,EAAE,CAAC;IACrC,OAAO,uBAAuB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;AAC5E,CAAC;AAED,SAAS,OAAO,CAAC,OAAe,EAAE,QAAgB;IAChD,kCAAkC;IAClC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC;QAAE,OAAO,EAAE,CAAC;IAE1C,uEAAuE;IACvE,2BAA2B;IAC3B,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAAE,OAAO,EAAE,CAAC;IAEvE,sDAAsD;IACtD,MAAM,kBAAkB,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC;IACzF,IAAI,kBAAkB;QAAE,OAAO,EAAE,CAAC;IAElC,wDAAwD;IACxD,OAAO;QACL;YACE,IAAI,EAAE,CAAC;YACP,OAAO,EACL,kHAAkH;YACpH,QAAQ,EAAE,SAAS;YACnB,UAAU,EACR,gNAAgN;YAClN,IAAI,EAAE,4BAA4B;YAClC,QAAQ;SACT;KACF,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,WAAW,CAAC;IAC1C,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,oBAAoB;IAC1B,KAAK,EAAE;QACL,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;QACvC,QAAQ,EAAE,CAAC,SAAS,EAAE,UAAU,CAAC;KAClC;IACD,WAAW,EAAE,4EAA4E;IACzF,eAAe,EAAE;;;;;;;qIAOkH;IACnI,IAAI,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,eAAe,EAAE,OAAO,CAAC;IACrD,SAAS,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,CAAC;IACrC,UAAU,EAAE,MAAM;IAClB,OAAO;CACR,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"timer-lifecycle.d.ts","sourceRoot":"","sources":["../../../src/checks/resilience/timer-lifecycle.ts"],"names":[],"mappings":"AAAA;;GAEG;
|
|
1
|
+
{"version":3,"file":"timer-lifecycle.d.ts","sourceRoot":"","sources":["../../../src/checks/resilience/timer-lifecycle.ts"],"names":[],"mappings":"AAAA;;GAEG;AA6DH;;;;GAIG;AACH,eAAO,MAAM,cAAc,sCAuBzB,CAAC"}
|
|
@@ -25,7 +25,10 @@ function analyzeTimerLifecycle(content, _filePath) {
|
|
|
25
25
|
const intervalMatch = /(?:const|let|var)\s+(\w+)\s*=\s*setInterval\s*\(/.exec(line);
|
|
26
26
|
if (intervalMatch) {
|
|
27
27
|
/* v8 ignore next -- defensive: regex (\w+) capture group always yields a string */
|
|
28
|
-
intervalCreations.push({
|
|
28
|
+
intervalCreations.push({
|
|
29
|
+
line: i + 1,
|
|
30
|
+
varName: intervalMatch[1] ?? null,
|
|
31
|
+
});
|
|
29
32
|
}
|
|
30
33
|
else if (/\bsetInterval\s*\(/.test(line) && !line.includes('clearInterval')) {
|
|
31
34
|
// setInterval without variable capture
|
|
@@ -58,7 +61,10 @@ function analyzeTimerLifecycle(content, _filePath) {
|
|
|
58
61
|
export const timerLifecycle = defineCheck({
|
|
59
62
|
id: 'f42299e1-6d22-4c4b-a236-6157a95f0949',
|
|
60
63
|
slug: 'timer-lifecycle',
|
|
61
|
-
scope: {
|
|
64
|
+
scope: {
|
|
65
|
+
languages: ['typescript'],
|
|
66
|
+
concerns: ['backend', 'frontend', 'cli'],
|
|
67
|
+
},
|
|
62
68
|
description: 'Detects setInterval() calls without corresponding clearInterval() cleanup — prevents timer leaks',
|
|
63
69
|
longDescription: `**Purpose:** Detects \`setInterval()\` calls that have no corresponding \`clearInterval()\` in the same module, which causes timer leaks.
|
|
64
70
|
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"timer-lifecycle.js","sourceRoot":"","sources":["../../../src/checks/resilience/timer-lifecycle.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAExE;;GAEG;AACH,yKAAyK;AACzK,SAAS,qBAAqB,CAAC,OAAe,EAAE,SAAiB;IAC/D,MAAM,UAAU,GAAqB,EAAE,CAAC;IACxC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,8CAA8C;IAC9C,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC;QAAE,OAAO,UAAU,CAAC;IAExD,MAAM,iBAAiB,GAA+C,EAAE,CAAC;IACzE,IAAI,gBAAgB,GAAG,KAAK,CAAC;IAE7B,KAAK,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;QACzC,yEAAyE;QACzE,MAAM,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAE5B,gBAAgB;QAChB,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QAElE,2CAA2C;QAC3C,MAAM,aAAa,GAAG,kDAAkD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACpF,IAAI,aAAa,EAAE,CAAC;YAClB,mFAAmF;YACnF,iBAAiB,CAAC,IAAI,CAAC,
|
|
1
|
+
{"version":3,"file":"timer-lifecycle.js","sourceRoot":"","sources":["../../../src/checks/resilience/timer-lifecycle.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAExE;;GAEG;AACH,yKAAyK;AACzK,SAAS,qBAAqB,CAAC,OAAe,EAAE,SAAiB;IAC/D,MAAM,UAAU,GAAqB,EAAE,CAAC;IACxC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,8CAA8C;IAC9C,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC;QAAE,OAAO,UAAU,CAAC;IAExD,MAAM,iBAAiB,GAA+C,EAAE,CAAC;IACzE,IAAI,gBAAgB,GAAG,KAAK,CAAC;IAE7B,KAAK,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;QACzC,yEAAyE;QACzE,MAAM,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAE5B,gBAAgB;QAChB,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QAElE,2CAA2C;QAC3C,MAAM,aAAa,GAAG,kDAAkD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACpF,IAAI,aAAa,EAAE,CAAC;YAClB,mFAAmF;YACnF,iBAAiB,CAAC,IAAI,CAAC;gBACrB,IAAI,EAAE,CAAC,GAAG,CAAC;gBACX,OAAO,EAAE,aAAa,CAAC,CAAC,CAAC,IAAI,IAAI;aAClC,CAAC,CAAC;QACL,CAAC;aAAM,IAAI,oBAAoB,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;YAC9E,uCAAuC;YACvC,iBAAiB,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;QACzD,CAAC;QAED,iBAAiB;QACjB,IAAI,sBAAsB,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,gBAAgB,GAAG,IAAI,CAAC;IACjE,CAAC;IAED,+CAA+C;IAC/C,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACtB,KAAK,MAAM,QAAQ,IAAI,iBAAiB,EAAE,CAAC;YACzC,UAAU,CAAC,IAAI,CAAC;gBACd,IAAI,EAAE,QAAQ,CAAC,IAAI;gBACnB,0JAA0J;gBAC1J,OAAO,EAAE,wBAAwB,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,QAAQ,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,EAAE,oEAAoE;gBACrJ,QAAQ,EAAE,SAAS;gBACnB,UAAU,EACR,mFAAmF;gBACrF,IAAI,EAAE,0BAA0B;aACjC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,MAAM,cAAc,GAAG,WAAW,CAAC;IACxC,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,iBAAiB;IACvB,KAAK,EAAE;QACL,SAAS,EAAE,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,KAAK,CAAC;KACzC;IACD,WAAW,EACT,kGAAkG;IACpG,eAAe,EAAE;;;;;;;;oEAQiD;IAClE,IAAI,EAAE,CAAC,YAAY,EAAE,QAAQ,EAAE,WAAW,CAAC;IAC3C,SAAS,EAAE,CAAC,IAAI,CAAC;IACjB,aAAa,EAAE,eAAe;IAC9B,UAAU,EAAE,QAAQ;IACpB,OAAO,EAAE,qBAAqB;CAC/B,CAAC,CAAC"}
|
|
@@ -15,6 +15,7 @@ function writeFixture(cwd, relPath, content) {
|
|
|
15
15
|
}
|
|
16
16
|
async function runPolicy(cwd) {
|
|
17
17
|
return packageSupplyChainPolicy.run(cwd, {
|
|
18
|
+
fileCache,
|
|
18
19
|
targetFiles: [join(cwd, 'package.json')],
|
|
19
20
|
});
|
|
20
21
|
}
|
|
@@ -141,6 +142,248 @@ describe('package-supply-chain-policy', () => {
|
|
|
141
142
|
rmSync(cwd, { recursive: true, force: true });
|
|
142
143
|
}
|
|
143
144
|
});
|
|
145
|
+
it('flags npm publish inside a shell function without provenance', async () => {
|
|
146
|
+
const cwd = makeProject();
|
|
147
|
+
try {
|
|
148
|
+
writeFixture(cwd, 'package.json', JSON.stringify({
|
|
149
|
+
name: 'shell-fn-app',
|
|
150
|
+
private: true,
|
|
151
|
+
packageManager: 'pnpm@11.5.1+sha512.abc123',
|
|
152
|
+
}, null, 2));
|
|
153
|
+
writeFixture(cwd, 'pnpm-lock.yaml', ["lockfileVersion: '9.0'", 'packages: {}'].join('\n'));
|
|
154
|
+
writeFixture(cwd, 'pnpm-workspace.yaml', [
|
|
155
|
+
'packages:',
|
|
156
|
+
' - "."',
|
|
157
|
+
'allowBuilds:',
|
|
158
|
+
' esbuild: false',
|
|
159
|
+
'minimumReleaseAge: 1440',
|
|
160
|
+
'minimumReleaseAgeStrict: true',
|
|
161
|
+
].join('\n'));
|
|
162
|
+
writeFixture(cwd, '.github/workflows/release.yml', [
|
|
163
|
+
'name: Release',
|
|
164
|
+
'jobs:',
|
|
165
|
+
' publish:',
|
|
166
|
+
' permissions:',
|
|
167
|
+
' id-token: write',
|
|
168
|
+
' steps:',
|
|
169
|
+
' - run: pnpm install --frozen-lockfile',
|
|
170
|
+
' - run: |',
|
|
171
|
+
' publish_pkg() {',
|
|
172
|
+
' npm publish dist/app-1.0.0.tgz --access public',
|
|
173
|
+
' }',
|
|
174
|
+
' publish_pkg',
|
|
175
|
+
].join('\n'));
|
|
176
|
+
const result = await runPolicy(cwd);
|
|
177
|
+
const types = result.signals.map((signal) => signal.metadata.type);
|
|
178
|
+
expect(types).toContain('publish-provenance-missing');
|
|
179
|
+
}
|
|
180
|
+
finally {
|
|
181
|
+
rmSync(cwd, { recursive: true, force: true });
|
|
182
|
+
}
|
|
183
|
+
});
|
|
184
|
+
it('accepts NPM_CONFIG_PROVENANCE=true on npm publish steps', async () => {
|
|
185
|
+
const cwd = makeProject();
|
|
186
|
+
try {
|
|
187
|
+
writeFixture(cwd, 'package.json', JSON.stringify({
|
|
188
|
+
name: 'env-provenance-app',
|
|
189
|
+
private: true,
|
|
190
|
+
packageManager: 'pnpm@11.5.1+sha512.abc123',
|
|
191
|
+
}, null, 2));
|
|
192
|
+
writeFixture(cwd, 'pnpm-lock.yaml', ["lockfileVersion: '9.0'", 'packages: {}'].join('\n'));
|
|
193
|
+
writeFixture(cwd, 'pnpm-workspace.yaml', [
|
|
194
|
+
'packages:',
|
|
195
|
+
' - "."',
|
|
196
|
+
'allowBuilds:',
|
|
197
|
+
' esbuild: false',
|
|
198
|
+
'minimumReleaseAge: 1440',
|
|
199
|
+
'minimumReleaseAgeStrict: true',
|
|
200
|
+
].join('\n'));
|
|
201
|
+
writeFixture(cwd, '.github/workflows/release.yml', [
|
|
202
|
+
'name: Release',
|
|
203
|
+
'jobs:',
|
|
204
|
+
' publish:',
|
|
205
|
+
' permissions:',
|
|
206
|
+
' id-token: write',
|
|
207
|
+
' steps:',
|
|
208
|
+
' - run: pnpm install --frozen-lockfile',
|
|
209
|
+
' - run: npm publish dist/app-1.0.0.tgz --access public',
|
|
210
|
+
' env:',
|
|
211
|
+
' NPM_CONFIG_PROVENANCE: true',
|
|
212
|
+
].join('\n'));
|
|
213
|
+
const result = await runPolicy(cwd);
|
|
214
|
+
const types = result.signals.map((signal) => signal.metadata.type);
|
|
215
|
+
expect(types).not.toContain('publish-provenance-missing');
|
|
216
|
+
expect(types).not.toContain('publish-token-exposure');
|
|
217
|
+
}
|
|
218
|
+
finally {
|
|
219
|
+
rmSync(cwd, { recursive: true, force: true });
|
|
220
|
+
}
|
|
221
|
+
});
|
|
222
|
+
it('does not let provenance env on a previous step bless a publish step', async () => {
|
|
223
|
+
const cwd = makeProject();
|
|
224
|
+
try {
|
|
225
|
+
writeFixture(cwd, 'package.json', JSON.stringify({
|
|
226
|
+
name: 'env-provenance-wrong-step-app',
|
|
227
|
+
private: true,
|
|
228
|
+
packageManager: 'pnpm@11.5.1+sha512.abc123',
|
|
229
|
+
}, null, 2));
|
|
230
|
+
writeFixture(cwd, 'pnpm-lock.yaml', ["lockfileVersion: '9.0'", 'packages: {}'].join('\n'));
|
|
231
|
+
writeFixture(cwd, 'pnpm-workspace.yaml', [
|
|
232
|
+
'packages:',
|
|
233
|
+
' - "."',
|
|
234
|
+
'allowBuilds:',
|
|
235
|
+
' esbuild: false',
|
|
236
|
+
'minimumReleaseAge: 1440',
|
|
237
|
+
'minimumReleaseAgeStrict: true',
|
|
238
|
+
].join('\n'));
|
|
239
|
+
writeFixture(cwd, '.github/workflows/release.yml', [
|
|
240
|
+
'name: Release',
|
|
241
|
+
'jobs:',
|
|
242
|
+
' publish:',
|
|
243
|
+
' permissions:',
|
|
244
|
+
' id-token: write',
|
|
245
|
+
' steps:',
|
|
246
|
+
' - run: pnpm install --frozen-lockfile',
|
|
247
|
+
' env:',
|
|
248
|
+
' NPM_CONFIG_PROVENANCE: true',
|
|
249
|
+
' - run: npm publish dist/app-1.0.0.tgz --access public',
|
|
250
|
+
].join('\n'));
|
|
251
|
+
const result = await runPolicy(cwd);
|
|
252
|
+
const types = result.signals.map((signal) => signal.metadata.type);
|
|
253
|
+
expect(types).toContain('publish-provenance-missing');
|
|
254
|
+
}
|
|
255
|
+
finally {
|
|
256
|
+
rmSync(cwd, { recursive: true, force: true });
|
|
257
|
+
}
|
|
258
|
+
});
|
|
259
|
+
it('flags unsafe dependency automation automerge for major updates', async () => {
|
|
260
|
+
const cwd = makeProject();
|
|
261
|
+
try {
|
|
262
|
+
writeFixture(cwd, 'package.json', JSON.stringify({
|
|
263
|
+
name: 'deps-app',
|
|
264
|
+
private: true,
|
|
265
|
+
packageManager: 'pnpm@11.5.1+sha512.abc123',
|
|
266
|
+
}, null, 2));
|
|
267
|
+
writeFixture(cwd, 'pnpm-lock.yaml', ["lockfileVersion: '9.0'", 'packages: {}'].join('\n'));
|
|
268
|
+
writeFixture(cwd, 'pnpm-workspace.yaml', [
|
|
269
|
+
'packages:',
|
|
270
|
+
' - "."',
|
|
271
|
+
'allowBuilds:',
|
|
272
|
+
' esbuild: false',
|
|
273
|
+
'minimumReleaseAge: 1440',
|
|
274
|
+
'minimumReleaseAgeStrict: true',
|
|
275
|
+
].join('\n'));
|
|
276
|
+
writeFixture(cwd, '.github/dependabot.yml', [
|
|
277
|
+
'version: 2',
|
|
278
|
+
'updates:',
|
|
279
|
+
' - package-ecosystem: npm',
|
|
280
|
+
' directory: /',
|
|
281
|
+
' schedule:',
|
|
282
|
+
' interval: daily',
|
|
283
|
+
' automerge: true',
|
|
284
|
+
' update-types:',
|
|
285
|
+
' - major',
|
|
286
|
+
].join('\n'));
|
|
287
|
+
const result = await runPolicy(cwd);
|
|
288
|
+
const types = result.signals.map((signal) => signal.metadata.type);
|
|
289
|
+
expect(types).toContain('dependency-automation-unsafe-automerge');
|
|
290
|
+
}
|
|
291
|
+
finally {
|
|
292
|
+
rmSync(cwd, { recursive: true, force: true });
|
|
293
|
+
}
|
|
294
|
+
});
|
|
295
|
+
it('flags dependency automation that disables npm update surfaces', async () => {
|
|
296
|
+
const cwd = makeProject();
|
|
297
|
+
try {
|
|
298
|
+
writeFixture(cwd, 'package.json', JSON.stringify({
|
|
299
|
+
name: 'deps-app',
|
|
300
|
+
private: true,
|
|
301
|
+
packageManager: 'pnpm@11.5.1+sha512.abc123',
|
|
302
|
+
}, null, 2));
|
|
303
|
+
writeFixture(cwd, 'pnpm-lock.yaml', ["lockfileVersion: '9.0'", 'packages: {}'].join('\n'));
|
|
304
|
+
writeFixture(cwd, 'pnpm-workspace.yaml', [
|
|
305
|
+
'packages:',
|
|
306
|
+
' - "."',
|
|
307
|
+
'allowBuilds:',
|
|
308
|
+
' esbuild: false',
|
|
309
|
+
'minimumReleaseAge: 1440',
|
|
310
|
+
'minimumReleaseAgeStrict: true',
|
|
311
|
+
].join('\n'));
|
|
312
|
+
// `enabled: false` for the npm ecosystem opts the repo out of dependency updates.
|
|
313
|
+
writeFixture(cwd, '.github/dependabot.yml', [
|
|
314
|
+
'version: 2',
|
|
315
|
+
'updates:',
|
|
316
|
+
' - enabled: false',
|
|
317
|
+
' package-ecosystem: npm',
|
|
318
|
+
' directory: /',
|
|
319
|
+
].join('\n'));
|
|
320
|
+
const result = await runPolicy(cwd);
|
|
321
|
+
const types = result.signals.map((signal) => signal.metadata.type);
|
|
322
|
+
expect(types).toContain('dependency-automation-disabled-updates');
|
|
323
|
+
}
|
|
324
|
+
finally {
|
|
325
|
+
rmSync(cwd, { recursive: true, force: true });
|
|
326
|
+
}
|
|
327
|
+
});
|
|
328
|
+
it('does not flag a clean weekly dependency automation config', async () => {
|
|
329
|
+
const cwd = makeProject();
|
|
330
|
+
try {
|
|
331
|
+
writeFixture(cwd, 'package.json', JSON.stringify({
|
|
332
|
+
name: 'deps-app',
|
|
333
|
+
private: true,
|
|
334
|
+
packageManager: 'pnpm@11.5.1+sha512.abc123',
|
|
335
|
+
}, null, 2));
|
|
336
|
+
writeFixture(cwd, 'pnpm-lock.yaml', ["lockfileVersion: '9.0'", 'packages: {}'].join('\n'));
|
|
337
|
+
writeFixture(cwd, 'pnpm-workspace.yaml', [
|
|
338
|
+
'packages:',
|
|
339
|
+
' - "."',
|
|
340
|
+
'allowBuilds:',
|
|
341
|
+
' esbuild: false',
|
|
342
|
+
'minimumReleaseAge: 1440',
|
|
343
|
+
'minimumReleaseAgeStrict: true',
|
|
344
|
+
].join('\n'));
|
|
345
|
+
writeFixture(cwd, '.github/dependabot.yml', [
|
|
346
|
+
'version: 2',
|
|
347
|
+
'updates:',
|
|
348
|
+
' - package-ecosystem: npm',
|
|
349
|
+
' directory: /',
|
|
350
|
+
' schedule:',
|
|
351
|
+
' interval: weekly',
|
|
352
|
+
' open-pull-requests-limit: 10',
|
|
353
|
+
].join('\n'));
|
|
354
|
+
const result = await runPolicy(cwd);
|
|
355
|
+
const types = result.signals.map((signal) => signal.metadata.type);
|
|
356
|
+
expect(types.some((t) => String(t).startsWith('dependency-automation-'))).toBe(false);
|
|
357
|
+
}
|
|
358
|
+
finally {
|
|
359
|
+
rmSync(cwd, { recursive: true, force: true });
|
|
360
|
+
}
|
|
361
|
+
});
|
|
362
|
+
it('does not emit a consumer-verification violation for ordinary projects', async () => {
|
|
363
|
+
const cwd = makeProject();
|
|
364
|
+
try {
|
|
365
|
+
writeFixture(cwd, 'package.json', JSON.stringify({
|
|
366
|
+
name: 'consumer-gap-app',
|
|
367
|
+
private: true,
|
|
368
|
+
packageManager: 'pnpm@11.5.1+sha512.abc123',
|
|
369
|
+
}, null, 2));
|
|
370
|
+
writeFixture(cwd, 'pnpm-lock.yaml', ["lockfileVersion: '9.0'", 'packages: {}'].join('\n'));
|
|
371
|
+
writeFixture(cwd, 'pnpm-workspace.yaml', [
|
|
372
|
+
'packages:',
|
|
373
|
+
' - "."',
|
|
374
|
+
'allowBuilds:',
|
|
375
|
+
' esbuild: false',
|
|
376
|
+
'minimumReleaseAge: 1440',
|
|
377
|
+
'minimumReleaseAgeStrict: true',
|
|
378
|
+
].join('\n'));
|
|
379
|
+
const result = await runPolicy(cwd);
|
|
380
|
+
const types = result.signals.map((signal) => signal.metadata.type);
|
|
381
|
+
expect(types).not.toContain('consumption-verification-missing');
|
|
382
|
+
}
|
|
383
|
+
finally {
|
|
384
|
+
rmSync(cwd, { recursive: true, force: true });
|
|
385
|
+
}
|
|
386
|
+
});
|
|
144
387
|
it('still flags a publish token when the workflow has no dist-tag justification', async () => {
|
|
145
388
|
const cwd = makeProject();
|
|
146
389
|
try {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"package-supply-chain-policy.test.js","sourceRoot":"","sources":["../../../../src/checks/security/__tests__/package-supply-chain-policy.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxE,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAE1C,OAAO,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AACjD,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAEzD,OAAO,EAAE,wBAAwB,EAAE,MAAM,mCAAmC,CAAC;AAE7E,SAAS,WAAW;IAClB,OAAO,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,sBAAsB,CAAC,CAAC,CAAC;AAC7D,CAAC;AAED,SAAS,YAAY,CAAC,GAAW,EAAE,OAAe,EAAE,OAAe;IACjE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAC/B,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC7C,aAAa,CAAC,GAAG,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC;IACpC,OAAO,GAAG,CAAC;AACb,CAAC;AAED,KAAK,UAAU,SAAS,CAAC,GAAW;IAClC,OAAO,wBAAwB,CAAC,GAAG,CAAC,GAAG,EAAE;QACvC,WAAW,EAAE,CAAC,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;KACzC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,CAAC,GAAG,EAAE;IACb,SAAS,CAAC,KAAK,EAAE,CAAC;AACpB,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,6BAA6B,EAAE,GAAG,EAAE;IAC3C,EAAE,CAAC,iCAAiC,EAAE,KAAK,IAAI,EAAE;QAC/C,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;gBAC3C,YAAY,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;aACjC,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CACV,GAAG,EACH,gBAAgB,EAChB;gBACE,wBAAwB;gBACxB,WAAW;gBACX,eAAe;gBACf,2CAA2C;aAC5C,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;gBAC/B,2CAA2C;gBAC3C,2BAA2B;gBAC3B,sBAAsB;gBACtB,0BAA0B;aAC3B,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,0BAA0B,EAC1B;gBACE,UAAU;gBACV,OAAO;gBACP,SAAS;gBACT,YAAY;gBACZ,6CAA6C;aAC9C,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACzC,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sFAAsF,EAAE,KAAK,IAAI,EAAE;QACpG,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,UAAU;gBAChB,OAAO,EAAE,OAAO;gBAChB,OAAO,EAAE,EAAE,WAAW,EAAE,eAAe,EAAE;gBACzC,YAAY,EAAE,EAAE,UAAU,EAAE,yBAAyB,EAAE;aACxD,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,YAAY;gBACZ,0BAA0B;gBAC1B,0BAA0B;gBAC1B,cAAc;gBACd,qDAAqD;aACtD,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,yBAAyB,CAAC,CAAC;YACnD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,kBAAkB,CAAC,CAAC;YAC5C,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,0BAA0B,CAAC,CAAC;YACpD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,0BAA0B,CAAC,CAAC;YACpD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,uBAAuB,CAAC,CAAC;YACjD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,iCAAiC,CAAC,CAAC;YAC3D,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;YACtD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,wBAAwB,CAAC,CAAC;QACpD,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sEAAsE,EAAE,KAAK,IAAI,EAAE;QACpF,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,UAAU;gBAChB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,6DAA6D;YAC7D,uEAAuE;YACvE,oDAAoD;YACpD,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,kBAAkB;gBAClB,uBAAuB;gBACvB,YAAY;gBACZ,6CAA6C;gBAC7C,uDAAuD;gBACvD,gDAAgD;gBAChD,cAAc;gBACd,qDAAqD;gBACrD,mDAAmD;aACpD,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,wBAAwB,CAAC,CAAC;YACtD,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,iCAAiC,CAAC,CAAC;YAC/D,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;QAC5D,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6EAA6E,EAAE,KAAK,IAAI,EAAE;QAC3F,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,qBAAqB;gBAC3B,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,2DAA2D;YAC3D,yEAAyE;YACzE,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,kBAAkB;gBAClB,uBAAuB;gBACvB,YAAY;gBACZ,6CAA6C;gBAC7C,uDAAuD;gBACvD,cAAc;gBACd,qDAAqD;aACtD,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,wBAAwB,CAAC,CAAC;QACpD,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uDAAuD,EAAE,KAAK,IAAI,EAAE;QACrE,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,SAAS;gBACf,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,aAAa;aAC9B,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,QAAQ,EAAE,CAAC,qBAAqB,EAAE,mBAAmB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YACrF,YAAY,CACV,GAAG,EACH,mBAAmB,EACnB,IAAI,CAAC,SAAS,CACZ;gBACE,eAAe,EAAE,CAAC;gBAClB,QAAQ,EAAE;oBACR,kBAAkB,EAAE;wBAClB,OAAO,EAAE,OAAO;wBAChB,QAAQ,EAAE,gDAAgD;qBAC3D;iBACF;aACF,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CACV,GAAG,EACH,0BAA0B,EAC1B,CAAC,UAAU,EAAE,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,qBAAqB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CACjF,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,kCAAkC,CAAC,CAAC;QAC9D,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"package-supply-chain-policy.test.js","sourceRoot":"","sources":["../../../../src/checks/security/__tests__/package-supply-chain-policy.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxE,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAE1C,OAAO,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AACjD,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAEzD,OAAO,EAAE,wBAAwB,EAAE,MAAM,mCAAmC,CAAC;AAE7E,SAAS,WAAW;IAClB,OAAO,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,sBAAsB,CAAC,CAAC,CAAC;AAC7D,CAAC;AAED,SAAS,YAAY,CAAC,GAAW,EAAE,OAAe,EAAE,OAAe;IACjE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAC/B,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC7C,aAAa,CAAC,GAAG,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC;IACpC,OAAO,GAAG,CAAC;AACb,CAAC;AAED,KAAK,UAAU,SAAS,CAAC,GAAW;IAClC,OAAO,wBAAwB,CAAC,GAAG,CAAC,GAAG,EAAE;QACvC,SAAS;QACT,WAAW,EAAE,CAAC,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;KACzC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,CAAC,GAAG,EAAE;IACb,SAAS,CAAC,KAAK,EAAE,CAAC;AACpB,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,6BAA6B,EAAE,GAAG,EAAE;IAC3C,EAAE,CAAC,iCAAiC,EAAE,KAAK,IAAI,EAAE;QAC/C,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;gBAC3C,YAAY,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;aACjC,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CACV,GAAG,EACH,gBAAgB,EAChB;gBACE,wBAAwB;gBACxB,WAAW;gBACX,eAAe;gBACf,2CAA2C;aAC5C,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;gBAC/B,2CAA2C;gBAC3C,2BAA2B;gBAC3B,sBAAsB;gBACtB,0BAA0B;aAC3B,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,0BAA0B,EAC1B;gBACE,UAAU;gBACV,OAAO;gBACP,SAAS;gBACT,YAAY;gBACZ,6CAA6C;aAC9C,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACzC,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sFAAsF,EAAE,KAAK,IAAI,EAAE;QACpG,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,UAAU;gBAChB,OAAO,EAAE,OAAO;gBAChB,OAAO,EAAE,EAAE,WAAW,EAAE,eAAe,EAAE;gBACzC,YAAY,EAAE,EAAE,UAAU,EAAE,yBAAyB,EAAE;aACxD,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,YAAY;gBACZ,0BAA0B;gBAC1B,0BAA0B;gBAC1B,cAAc;gBACd,qDAAqD;aACtD,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,yBAAyB,CAAC,CAAC;YACnD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,kBAAkB,CAAC,CAAC;YAC5C,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,0BAA0B,CAAC,CAAC;YACpD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,0BAA0B,CAAC,CAAC;YACpD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,uBAAuB,CAAC,CAAC;YACjD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,iCAAiC,CAAC,CAAC;YAC3D,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;YACtD,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,wBAAwB,CAAC,CAAC;QACpD,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sEAAsE,EAAE,KAAK,IAAI,EAAE;QACpF,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,UAAU;gBAChB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,6DAA6D;YAC7D,uEAAuE;YACvE,oDAAoD;YACpD,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,kBAAkB;gBAClB,uBAAuB;gBACvB,YAAY;gBACZ,6CAA6C;gBAC7C,uDAAuD;gBACvD,gDAAgD;gBAChD,cAAc;gBACd,qDAAqD;gBACrD,mDAAmD;aACpD,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,wBAAwB,CAAC,CAAC;YACtD,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,iCAAiC,CAAC,CAAC;YAC/D,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;QAC5D,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8DAA8D,EAAE,KAAK,IAAI,EAAE;QAC5E,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,cAAc;gBACpB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,kBAAkB;gBAClB,uBAAuB;gBACvB,YAAY;gBACZ,6CAA6C;gBAC7C,gBAAgB;gBAChB,2BAA2B;gBAC3B,4DAA4D;gBAC5D,aAAa;gBACb,uBAAuB;aACxB,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;QACxD,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,oBAAoB;gBAC1B,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,kBAAkB;gBAClB,uBAAuB;gBACvB,YAAY;gBACZ,6CAA6C;gBAC7C,6DAA6D;gBAC7D,cAAc;gBACd,uCAAuC;aACxC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;YAC1D,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,wBAAwB,CAAC,CAAC;QACxD,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qEAAqE,EAAE,KAAK,IAAI,EAAE;QACnF,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,+BAA+B;gBACrC,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,kBAAkB;gBAClB,uBAAuB;gBACvB,YAAY;gBACZ,6CAA6C;gBAC7C,cAAc;gBACd,uCAAuC;gBACvC,6DAA6D;aAC9D,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;QACxD,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,gEAAgE,EAAE,KAAK,IAAI,EAAE;QAC9E,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,UAAU;gBAChB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,wBAAwB,EACxB;gBACE,YAAY;gBACZ,UAAU;gBACV,4BAA4B;gBAC5B,kBAAkB;gBAClB,eAAe;gBACf,uBAAuB;gBACvB,qBAAqB;gBACrB,mBAAmB;gBACnB,eAAe;aAChB,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,wCAAwC,CAAC,CAAC;QACpE,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,+DAA+D,EAAE,KAAK,IAAI,EAAE;QAC7E,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,UAAU;gBAChB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,kFAAkF;YAClF,YAAY,CACV,GAAG,EACH,wBAAwB,EACxB;gBACE,YAAY;gBACZ,UAAU;gBACV,oBAAoB;gBACpB,4BAA4B;gBAC5B,kBAAkB;aACnB,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,wCAAwC,CAAC,CAAC;QACpE,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2DAA2D,EAAE,KAAK,IAAI,EAAE;QACzE,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,UAAU;gBAChB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,YAAY,CACV,GAAG,EACH,wBAAwB,EACxB;gBACE,YAAY;gBACZ,UAAU;gBACV,4BAA4B;gBAC5B,kBAAkB;gBAClB,eAAe;gBACf,wBAAwB;gBACxB,kCAAkC;aACnC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,wBAAwB,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACxF,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uEAAuE,EAAE,KAAK,IAAI,EAAE;QACrF,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,kBAAkB;gBACxB,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,kCAAkC,CAAC,CAAC;QAClE,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6EAA6E,EAAE,KAAK,IAAI,EAAE;QAC3F,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,qBAAqB;gBAC3B,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,2BAA2B;aAC5C,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3F,YAAY,CACV,GAAG,EACH,qBAAqB,EACrB;gBACE,WAAW;gBACX,SAAS;gBACT,cAAc;gBACd,kBAAkB;gBAClB,yBAAyB;gBACzB,+BAA+B;aAChC,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YACF,2DAA2D;YAC3D,yEAAyE;YACzE,YAAY,CACV,GAAG,EACH,+BAA+B,EAC/B;gBACE,eAAe;gBACf,OAAO;gBACP,YAAY;gBACZ,kBAAkB;gBAClB,uBAAuB;gBACvB,YAAY;gBACZ,6CAA6C;gBAC7C,uDAAuD;gBACvD,cAAc;gBACd,qDAAqD;aACtD,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,wBAAwB,CAAC,CAAC;QACpD,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uDAAuD,EAAE,KAAK,IAAI,EAAE;QACrE,MAAM,GAAG,GAAG,WAAW,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,YAAY,CACV,GAAG,EACH,cAAc,EACd,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,SAAS;gBACf,OAAO,EAAE,IAAI;gBACb,cAAc,EAAE,aAAa;aAC9B,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CAAC,GAAG,EAAE,QAAQ,EAAE,CAAC,qBAAqB,EAAE,mBAAmB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YACrF,YAAY,CACV,GAAG,EACH,mBAAmB,EACnB,IAAI,CAAC,SAAS,CACZ;gBACE,eAAe,EAAE,CAAC;gBAClB,QAAQ,EAAE;oBACR,kBAAkB,EAAE;wBAClB,OAAO,EAAE,OAAO;wBAChB,QAAQ,EAAE,gDAAgD;qBAC3D;iBACF;aACF,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;YACF,YAAY,CACV,GAAG,EACH,0BAA0B,EAC1B,CAAC,UAAU,EAAE,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,qBAAqB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CACjF,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;YACpC,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,kCAAkC,CAAC,CAAC;QAC9D,CAAC;gBAAS,CAAC;YACT,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"dependency-vulnerability-audit.d.ts","sourceRoot":"","sources":["../../../src/checks/security/dependency-vulnerability-audit.ts"],"names":[],"mappings":"AACA;;;;;;GAMG;AAQH;;;;;GAKG;AACH,eAAO,MAAM,4BAA4B,
|
|
1
|
+
{"version":3,"file":"dependency-vulnerability-audit.d.ts","sourceRoot":"","sources":["../../../src/checks/security/dependency-vulnerability-audit.ts"],"names":[],"mappings":"AACA;;;;;;GAMG;AAQH;;;;;GAKG;AACH,eAAO,MAAM,4BAA4B,sCAsGvC,CAAC"}
|
|
@@ -140,7 +140,12 @@ function isProductionFinding(f) {
|
|
|
140
140
|
return paths.some((p) => isPathProduction(p));
|
|
141
141
|
}
|
|
142
142
|
function countProductionAdvisories(audit) {
|
|
143
|
-
const counts = {
|
|
143
|
+
const counts = {
|
|
144
|
+
critical: 0,
|
|
145
|
+
high: 0,
|
|
146
|
+
moderate: 0,
|
|
147
|
+
low: 0,
|
|
148
|
+
};
|
|
144
149
|
const advisories = audit.advisories;
|
|
145
150
|
const vulnerabilities = audit.vulnerabilities;
|
|
146
151
|
if (advisories) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"dependency-vulnerability-audit.js","sourceRoot":"","sources":["../../../src/checks/security/dependency-vulnerability-audit.ts"],"names":[],"mappings":"AAAA,+GAA+G;AAC/G;;;;;;GAMG;AAEH,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAExE,gFAAgF;AAChF,mBAAmB;AACnB,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,4BAA4B,GAAG,WAAW,CAAC;IACtD,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,gCAAgC;IACtC,KAAK,EAAE,EAAE,SAAS,EAAE,CAAC,YAAY,CAAC,EAAE,QAAQ,EAAE,CAAC,SAAS,CAAC,EAAE;IAE3D,UAAU,EAAE,QAAQ;IACpB,WAAW,EAAE,6DAA6D;IAC1E,eAAe,EAAE;;;;;;;;;uIASoH;IACrI,IAAI,EAAE,CAAC,UAAU,EAAE,YAAY,EAAE,SAAS,CAAC;IAC3C,SAAS,EAAE,CAAC,IAAI,EAAE,KAAK,CAAC;IACxB,OAAO,EAAE,OAAO,EAAE,yCAAyC;IAE3D,OAAO,EAAE;QACP,qFAAqF;QACrF,GAAG,EAAE,IAAI;QACT,IAAI,EAAE;YACJ,IAAI;YACJ,wKAAwK;SACzK;QACD,iBAAiB,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,kDAAkD;QAE7E,wGAAwG;QACxG,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,SAAS;YACpC,MAAM,UAAU,GAAqB,EAAE,CAAC;YAExC,gCAAgC;YAChC,EAAE;YACF,gEAAgE;YAChE,4DAA4D;YAC5D,gEAAgE;YAChE,gEAAgE;YAChE,kDAAkD;YAClD,IAAI,CAAC;
|
|
1
|
+
{"version":3,"file":"dependency-vulnerability-audit.js","sourceRoot":"","sources":["../../../src/checks/security/dependency-vulnerability-audit.ts"],"names":[],"mappings":"AAAA,+GAA+G;AAC/G;;;;;;GAMG;AAEH,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAExE,gFAAgF;AAChF,mBAAmB;AACnB,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,4BAA4B,GAAG,WAAW,CAAC;IACtD,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,gCAAgC;IACtC,KAAK,EAAE,EAAE,SAAS,EAAE,CAAC,YAAY,CAAC,EAAE,QAAQ,EAAE,CAAC,SAAS,CAAC,EAAE;IAE3D,UAAU,EAAE,QAAQ;IACpB,WAAW,EAAE,6DAA6D;IAC1E,eAAe,EAAE;;;;;;;;;uIASoH;IACrI,IAAI,EAAE,CAAC,UAAU,EAAE,YAAY,EAAE,SAAS,CAAC;IAC3C,SAAS,EAAE,CAAC,IAAI,EAAE,KAAK,CAAC;IACxB,OAAO,EAAE,OAAO,EAAE,yCAAyC;IAE3D,OAAO,EAAE;QACP,qFAAqF;QACrF,GAAG,EAAE,IAAI;QACT,IAAI,EAAE;YACJ,IAAI;YACJ,wKAAwK;SACzK;QACD,iBAAiB,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,kDAAkD;QAE7E,wGAAwG;QACxG,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,SAAS;YACpC,MAAM,UAAU,GAAqB,EAAE,CAAC;YAExC,gCAAgC;YAChC,EAAE;YACF,gEAAgE;YAChE,4DAA4D;YAC5D,gEAAgE;YAChE,gEAAgE;YAChE,kDAAkD;YAClD,IAAI,CAAC;gBA+BH,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAgB,CAAC;gBAEtD,0DAA0D;gBAC1D,yDAAyD;gBACzD,yDAAyD;gBACzD,6BAA6B;gBAC7B,MAAM,UAAU,GAAG,yBAAyB,CAAC,WAAW,CAAC,CAAC;gBAC1D,MAAM,KAAK,GAAG,UAAU,CAAC,QAAQ,GAAG,UAAU,CAAC,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC;gBAE1E,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;oBACd,MAAM,QAAQ,GAAG,6BAA6B,CAAC,UAAU,CAAC,CAAC;oBAC3D,UAAU,CAAC,IAAI,CAAC;wBACd,IAAI,EAAE,CAAC;wBACP,OAAO,EAAE,mBAAmB,KAAK,uCAAuC;wBACxE,QAAQ,EAAE,QAAQ,KAAK,UAAU,IAAI,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;wBAC9E,UAAU,EACR,gPAAgP;wBAClP,IAAI,EAAE,YAAY,QAAQ,EAAE;wBAC5B,KAAK,EAAE,WAAW;wBAClB,QAAQ,EAAE,cAAc;qBACzB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,kCAAkC;YACpC,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,oBAAoB;KACrB;CACF,CAAC,CAAC;AAUH;;;;;GAKG;AACH,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAC;IAClC,QAAQ;IACR,qBAAqB;IACrB,QAAQ;IACR,sBAAsB;IACtB,uBAAuB;IACvB,uBAAuB;IACvB,mCAAmC;IACnC,oBAAoB;IACpB,mBAAmB;IACnB,OAAO;IACP,MAAM;IACN,oBAAoB;IACpB,KAAK;IACL,MAAM;IACN,MAAM;IACN,OAAO;IACP,KAAK,EAAE,iDAAiD;CACzD,CAAC,CAAC;AAEH,SAAS,gBAAgB,CAAC,CAAS;IACjC,mEAAmE;IACnE,gEAAgE;IAChE,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC9B,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;QAC3B,IAAI,GAAG,CAAC,UAAU,CAAC,YAAY,CAAC;YAAE,SAAS;QAC3C,IAAI,GAAG,KAAK,GAAG;YAAE,SAAS;QAC1B,IAAI,mBAAmB,CAAC,GAAG,CAAC,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC;QAC/C,2DAA2D;QAC3D,8BAA8B;QAC9B,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;YAChC,IAAI,KAAK,KAAK,SAAS,IAAI,mBAAmB,CAAC,GAAG,CAAC,KAAK,CAAC;gBAAE,OAAO,KAAK,CAAC;QAC1E,CAAC;QACD,iEAAiE;QACjE,2CAA2C;QAC3C,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,mBAAmB,CAAC,CAA+C;IAC1E,IAAI,CAAC,CAAC,GAAG,KAAK,IAAI;QAAE,OAAO,KAAK,CAAC;IACjC,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;IAC5B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACpC,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAAC;AAChD,CAAC;AAUD,SAAS,yBAAyB,CAAC,KAiBlC;IACC,MAAM,MAAM,GAAwB;QAClC,QAAQ,EAAE,CAAC;QACX,IAAI,EAAE,CAAC;QACP,QAAQ,EAAE,CAAC;QACX,GAAG,EAAE,CAAC;KACP,CAAC;IACF,MAAM,UAAU,GAAG,KAAK,CAAC,UAAU,CAAC;IACpC,MAAM,eAAe,GAAG,KAAK,CAAC,eAAe,CAAC;IAE9C,IAAI,UAAU,EAAE,CAAC;QACf,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC,EAAE,CAAC;YAC5C,MAAM,GAAG,GAAG,GAAG,CAAC,QAAQ,IAAI,KAAK,CAAC;YAClC,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,IAAI,EAAE,CAAC;YACpC,MAAM,MAAM,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,mBAAmB,CAAC,CAAC,CAAC,CAAC,CAAC;YAC5D,IAAI,MAAM;gBAAE,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC/B,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,IAAI,eAAe,EAAE,CAAC;QACpB,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,eAAe,CAAC,EAAE,CAAC;YAC/C,MAAM,GAAG,GAAG,CAAC,CAAC,QAAQ,IAAI,KAAK,CAAC;YAChC,MAAM,GAAG,GAAG,CAAC,CAAC,GAAG,IAAI,EAAE,CAAC;YACxB,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,GAAG,KAAK,IAAI,CAAC,CAAC;YACpF,IAAI,MAAM;gBAAE,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC/B,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,+DAA+D;IAC/D,MAAM,IAAI,GAAG,KAAK,CAAC,QAAQ,EAAE,eAAe,IAAI,EAAE,CAAC;IACnD,MAAM,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAI,CAAC,CAAC;IACrC,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,IAAI,CAAC,CAAC;IAC7B,MAAM,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAI,CAAC,CAAC;IACrC,MAAM,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG,IAAI,CAAC,CAAC;IAC3B,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,6BAA6B,CAAC,MAA2B;IAChE,IAAI,MAAM,CAAC,QAAQ,GAAG,CAAC;QAAE,OAAO,UAAU,CAAC;IAC3C,IAAI,MAAM,CAAC,IAAI,GAAG,CAAC;QAAE,OAAO,MAAM,CAAC;IACnC,IAAI,MAAM,CAAC,QAAQ,GAAG,CAAC;QAAE,OAAO,UAAU,CAAC;IAC3C,OAAO,KAAK,CAAC;AACf,CAAC;AAED,oBAAoB"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"jwt-validation.d.ts","sourceRoot":"","sources":["../../../src/checks/security/jwt-validation.ts"],"names":[],"mappings":"AAAA;;GAEG;AA+
|
|
1
|
+
{"version":3,"file":"jwt-validation.d.ts","sourceRoot":"","sources":["../../../src/checks/security/jwt-validation.ts"],"names":[],"mappings":"AAAA;;GAEG;AA+SH;;;;;GAKG;AACH,eAAO,MAAM,aAAa,sCAgExB,CAAC"}
|
|
@@ -50,7 +50,11 @@ function checkJwtVerifyWithoutAlgorithm(line) {
|
|
|
50
50
|
// jwt.verify(token, secret) has 1 comma, jwt.verify(token, secret, options) has 2+
|
|
51
51
|
// Also check if 'algorithms' is mentioned
|
|
52
52
|
if (commaCount === 1 && !callContent.toLowerCase().includes('algorithm')) {
|
|
53
|
-
return {
|
|
53
|
+
return {
|
|
54
|
+
matched: true,
|
|
55
|
+
matchIndex: idx,
|
|
56
|
+
matchText: 'jwt.verify' + callContent,
|
|
57
|
+
};
|
|
54
58
|
}
|
|
55
59
|
return { matched: false, matchIndex: -1, matchText: '' };
|
|
56
60
|
}
|
|
@@ -101,7 +105,11 @@ function checkWeakJwtSecret(line) {
|
|
|
101
105
|
// @fitness-ignore-next-line sonarjs-regular-expr -- Simple pattern with bounded quantifier {0,20} and negated class [^'"`]; no backtracking risk
|
|
102
106
|
const assignMatch = /^\s*[:=]\s*['"`]([^'"`]{0,20})['"`]/.exec(afterKeyword);
|
|
103
107
|
if (assignMatch?.[1] !== undefined && assignMatch[1].length <= 20) {
|
|
104
|
-
return {
|
|
108
|
+
return {
|
|
109
|
+
matched: true,
|
|
110
|
+
matchIndex: idx,
|
|
111
|
+
matchText: keyword + assignMatch[0],
|
|
112
|
+
};
|
|
105
113
|
}
|
|
106
114
|
}
|
|
107
115
|
return { matched: false, matchIndex: -1, matchText: '' };
|
|
@@ -132,7 +140,11 @@ function checkAlgorithmNone(line) {
|
|
|
132
140
|
afterPattern.includes('`none`'));
|
|
133
141
|
if (hasNone) {
|
|
134
142
|
const matchEnd = line.slice(Math.max(0, idx)).indexOf(']') + 1;
|
|
135
|
-
return {
|
|
143
|
+
return {
|
|
144
|
+
matched: true,
|
|
145
|
+
matchIndex: idx,
|
|
146
|
+
matchText: line.slice(idx, idx + matchEnd),
|
|
147
|
+
};
|
|
136
148
|
}
|
|
137
149
|
}
|
|
138
150
|
return { matched: false, matchIndex: -1, matchText: '' };
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"jwt-validation.js","sourceRoot":"","sources":["../../../src/checks/security/jwt-validation.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAC;AAC3C,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;
|
|
1
|
+
{"version":3,"file":"jwt-validation.js","sourceRoot":"","sources":["../../../src/checks/security/jwt-validation.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAC;AAC3C,OAAO,EAAE,WAAW,EAAuB,MAAM,sBAAsB,CAAC;AAkBxE;;;;;;GAMG;AACH,SAAS,8BAA8B,CAAC,IAAY;IAKlD,MAAM,CAAC,KAAK,CAAC;QACX,GAAG,EAAE,kEAAkE;QACvE,GAAG,EAAE,kDAAkD;KACxD,CAAC,CAAC;IACH,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;IACvC,IAAI,GAAG,KAAK,CAAC,CAAC;QAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;IAEzE,kCAAkC;IAClC,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;IACjD,MAAM,UAAU,GAAG,WAAW,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IAC5C,IAAI,UAAU,KAAK,CAAC,CAAC;QAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;IAEhF,wCAAwC;IACxC,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,IAAI,QAAQ,GAAG,CAAC,CAAC,CAAC;IAClB,KAAK,IAAI,CAAC,GAAG,UAAU,EAAE,CAAC,GAAG,WAAW,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACrD,MAAM,IAAI,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;QAC5B,IAAI,IAAI,KAAK,GAAG,EAAE,CAAC;YACjB,KAAK,EAAE,CAAC;QACV,CAAC;aAAM,IAAI,IAAI,KAAK,GAAG,EAAE,CAAC;YACxB,KAAK,EAAE,CAAC;YACR,IAAI,KAAK,KAAK,CAAC,EAAE,CAAC;gBAChB,QAAQ,GAAG,CAAC,CAAC;gBACb,MAAM;YACR,CAAC;QACH,CAAC;aAAM,CAAC;YACN,2DAA2D;QAC7D,CAAC;IACH,CAAC;IAED,IAAI,QAAQ,KAAK,CAAC,CAAC;QAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;IAE9E,MAAM,WAAW,GAAG,WAAW,CAAC,KAAK,CAAC,UAAU,EAAE,QAAQ,GAAG,CAAC,CAAC,CAAC;IAEhE,8EAA8E;IAC9E,MAAM,UAAU,GAAG,CAAC,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IAE1D,mFAAmF;IACnF,0CAA0C;IAC1C,IAAI,UAAU,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;QACzE,OAAO;YACL,OAAO,EAAE,IAAI;YACb,UAAU,EAAE,GAAG;YACf,SAAS,EAAE,YAAY,GAAG,WAAW;SACtC,CAAC;IACJ,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;AAC3D,CAAC;AAED;;;;;GAKG;AACH,SAAS,qBAAqB,CAAC,IAAY;IAKzC,MAAM,CAAC,KAAK,CAAC;QACX,GAAG,EAAE,yDAAyD;QAC9D,GAAG,EAAE,iDAAiD;KACvD,CAAC,CAAC;IACH,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;IACvC,IAAI,GAAG,KAAK,CAAC,CAAC;QAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;IAEzE,+CAA+C;IAC/C,MAAM,SAAS,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;IACrC,MAAM,YAAY,GAAG,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;IAC1D,MAAM,cAAc,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC;IAEzE,IAAI,cAAc,EAAE,CAAC;QACnB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,GAAG,EAAE,SAAS,EAAE,YAAY,EAAE,CAAC;IACrE,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;AAC3D,CAAC;AAED,mHAAmH;AACnH;;;;;GAKG;AACH,SAAS,kBAAkB,CAAC,IAAY;IAKtC,MAAM,CAAC,KAAK,CAAC;QACX,GAAG,EAAE,qDAAqD;QAC1D,GAAG,EAAE,8BAA8B;KACpC,CAAC,CAAC;IACH,MAAM,SAAS,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;IACrC,MAAM,cAAc,GAAG,CAAC,WAAW,EAAE,YAAY,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC;IAE3E,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;QACrC,MAAM,GAAG,GAAG,SAAS,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QACvC,IAAI,GAAG,KAAK,CAAC,CAAC;YAAE,SAAS;QAEzB,qEAAqE;QACrE,MAAM,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC;QACnE,8CAA8C;QAC9C,iJAAiJ;QACjJ,MAAM,WAAW,GAAG,qCAAqC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAE7E,IAAI,WAAW,EAAE,CAAC,CAAC,CAAC,KAAK,SAAS,IAAI,WAAW,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,EAAE,EAAE,CAAC;YAClE,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,UAAU,EAAE,GAAG;gBACf,SAAS,EAAE,OAAO,GAAG,WAAW,CAAC,CAAC,CAAC;aACpC,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;AAC3D,CAAC;AAED;;;;;GAKG;AACH,SAAS,kBAAkB,CAAC,IAAY;IAKtC,MAAM,CAAC,KAAK,CAAC;QACX,GAAG,EAAE,oDAAoD;QACzD,GAAG,EAAE,sCAAsC;KAC5C,CAAC,CAAC;IACH,MAAM,SAAS,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;IAErC,uDAAuD;IACvD,MAAM,QAAQ,GAAG,CAAC,YAAY,EAAE,WAAW,CAAC,CAAC;IAC7C,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,GAAG,GAAG,SAAS,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QACvC,IAAI,GAAG,KAAK,CAAC,CAAC;YAAE,SAAS;QAEzB,MAAM,YAAY,GAAG,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;QACvD,kDAAkD;QAClD,MAAM,OAAO,GACX,YAAY,CAAC,QAAQ,CAAC,GAAG,CAAC;YAC1B,CAAC,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC;gBAC9B,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC;gBAC/B,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;QAErC,IAAI,OAAO,EAAE,CAAC;YACZ,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YAC/D,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,UAAU,EAAE,GAAG;gBACf,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,GAAG,GAAG,QAAQ,CAAC;aAC3C,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;AAC3D,CAAC;AACD,oBAAoB;AAEpB;;;;;;;GAOG;AACH,SAAS,0BAA0B,CAAC,IAAY;IAK9C,MAAM,CAAC,KAAK,CAAC;QACX,GAAG,EAAE,6DAA6D;QAClE,GAAG,EAAE,oDAAoD;KAC1D,CAAC,CAAC;IACH,iGAAiG;IACjG,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IACrC,IAAI,GAAG,KAAK,CAAC,CAAC;QAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;IAEzE,qCAAqC;IACrC,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;IACjD,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,GAAG,CAAC;QAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;IAEzF,8CAA8C;IAC9C,MAAM,UAAU,GAAG,WAAW,CAAC,WAAW,EAAE,CAAC;IAC7C,MAAM,aAAa,GACjB,UAAU,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAC7B,UAAU,CAAC,QAAQ,CAAC,UAAU,CAAC;QAC/B,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC;QAC1B,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAE7B,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,GAAG,EAAE,SAAS,EAAE,cAAc,EAAE,CAAC;IACvE,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;AAC3D,CAAC;AAED,MAAM,qBAAqB,GAAyB;IAClD;QACE,+HAA+H;QAC/H,EAAE,EAAE,yBAAyB;QAC7B,OAAO,EAAE,4EAA4E;QACrF,UAAU,EACR,8KAA8K;QAChL,QAAQ,EAAE,OAAO;QACjB,KAAK,EAAE,8BAA8B;KACtC;IACD;QACE,EAAE,EAAE,qBAAqB;QACzB,OAAO,EAAE,6DAA6D;QACtE,UAAU,EACR,sJAAsJ;QACxJ,QAAQ,EAAE,OAAO;QACjB,KAAK,EAAE,qBAAqB;KAC7B;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,OAAO,EAAE,kEAAkE;QAC3E,UAAU,EACR,mKAAmK;QACrK,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,kBAAkB;KAC1B;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,OAAO,EAAE,gEAAgE;QACzE,UAAU,EACR,2JAA2J;QAC7J,QAAQ,EAAE,OAAO;QACjB,KAAK,EAAE,kBAAkB;KAC1B;IACD;QACE,EAAE,EAAE,yBAAyB;QAC7B,OAAO,EAAE,kEAAkE;QAC3E,UAAU,EACR,sKAAsK;QACxK,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,0BAA0B;KAClC;CACF,CAAC;AAEF;;;;;;GAMG;AACH,SAAS,cAAc,CAAC,OAAe;IACrC,MAAM,CAAC,KAAK,CAAC;QACX,GAAG,EAAE,gDAAgD;QACrD,GAAG,EAAE,mDAAmD;KACzD,CAAC,CAAC;IACH,MAAM,YAAY,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IAC3C,OAAO,CACL,YAAY,CAAC,QAAQ,CAAC,KAAK,CAAC;QAC5B,YAAY,CAAC,QAAQ,CAAC,cAAc,CAAC;QACrC,YAAY,CAAC,QAAQ,CAAC,MAAM,CAAC,CAC9B,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,MAAM,aAAa,GAAG,WAAW,CAAC;IACvC,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,gBAAgB;IACtB,QAAQ,EAAE,IAAI;IACd,KAAK,EAAE,EAAE,SAAS,EAAE,CAAC,YAAY,CAAC,EAAE,QAAQ,EAAE,CAAC,SAAS,EAAE,QAAQ,CAAC,EAAE;IACrE,aAAa,EAAE,eAAe;IAE9B,UAAU,EAAE,QAAQ;IACpB,WAAW,EAAE,uDAAuD;IACpE,eAAe,EAAE;;;;;;;;;;;sIAWmH;IACpI,IAAI,EAAE,CAAC,UAAU,EAAE,KAAK,EAAE,gBAAgB,CAAC;IAC3C,SAAS,EAAE,CAAC,IAAI,CAAC;IAEjB,OAAO,CAAC,OAAe,EAAE,QAAgB;QACvC,MAAM,CAAC,KAAK,CAAC;YACX,GAAG,EAAE,uCAAuC;YAC5C,GAAG,EAAE,kDAAkD;SACxD,CAAC,CAAC;QACH,sCAAsC;QACtC,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,EAAE,CAAC;YAC7B,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,UAAU,GAAqB,EAAE,CAAC;QACxC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAElC,KAAK,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;YAC/C,MAAM,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;YAEzB,gBAAgB;YAChB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;YAC5B,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBACxD,SAAS;YACX,CAAC;YAED,KAAK,MAAM,OAAO,IAAI,qBAAqB,EAAE,CAAC;gBAC5C,MAAM,MAAM,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBACnC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;oBACnB,UAAU,CAAC,IAAI,CAAC;wBACd,IAAI,EAAE,OAAO,GAAG,CAAC;wBACjB,MAAM,EAAE,MAAM,CAAC,UAAU;wBACzB,OAAO,EAAE,OAAO,CAAC,OAAO;wBACxB,QAAQ,EAAE,OAAO,CAAC,QAAQ;wBAC1B,UAAU,EAAE,OAAO,CAAC,UAAU;wBAC9B,KAAK,EAAE,MAAM,CAAC,SAAS;wBACvB,QAAQ;qBACT,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,UAAU,CAAC;IACpB,CAAC;CACF,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"no-eval.d.ts","sourceRoot":"","sources":["../../../src/checks/security/no-eval.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AAIH;;;;;GAKG;AACH,eAAO,MAAM,MAAM,
|
|
1
|
+
{"version":3,"file":"no-eval.d.ts","sourceRoot":"","sources":["../../../src/checks/security/no-eval.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AAIH;;;;;GAKG;AACH,eAAO,MAAM,MAAM,sCAuEjB,CAAC"}
|
|
@@ -18,7 +18,10 @@ import { defineRegexListCheck } from '@opensip-cli/fitness';
|
|
|
18
18
|
export const noEval = defineRegexListCheck({
|
|
19
19
|
id: '9f6d299f-8155-4719-b605-897e9dcb1fdb',
|
|
20
20
|
slug: 'no-eval',
|
|
21
|
-
scope: {
|
|
21
|
+
scope: {
|
|
22
|
+
languages: ['typescript'],
|
|
23
|
+
concerns: ['backend', 'frontend', 'cli'],
|
|
24
|
+
},
|
|
22
25
|
contentFilter: 'strip-strings',
|
|
23
26
|
confidence: 'medium',
|
|
24
27
|
description: 'Detect dangerous eval and dynamic code execution',
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"no-eval.js","sourceRoot":"","sources":["../../../src/checks/security/no-eval.ts"],"names":[],"mappings":"AAAA,6IAA6I;AAC7I,mKAAmK;AACnK;;;;;;;GAOG;AAEH,OAAO,EAAE,oBAAoB,EAAE,MAAM,sBAAsB,CAAC;AAE5D;;;;;GAKG;AACH,MAAM,CAAC,MAAM,MAAM,GAAG,oBAAoB,CAAC;IACzC,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,SAAS;IACf,KAAK,EAAE,
|
|
1
|
+
{"version":3,"file":"no-eval.js","sourceRoot":"","sources":["../../../src/checks/security/no-eval.ts"],"names":[],"mappings":"AAAA,6IAA6I;AAC7I,mKAAmK;AACnK;;;;;;;GAOG;AAEH,OAAO,EAAE,oBAAoB,EAAE,MAAM,sBAAsB,CAAC;AAE5D;;;;;GAKG;AACH,MAAM,CAAC,MAAM,MAAM,GAAG,oBAAoB,CAAC;IACzC,EAAE,EAAE,sCAAsC;IAC1C,IAAI,EAAE,SAAS;IACf,KAAK,EAAE;QACL,SAAS,EAAE,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,KAAK,CAAC;KACzC;IACD,aAAa,EAAE,eAAe;IAC9B,UAAU,EAAE,QAAQ;IACpB,WAAW,EAAE,kDAAkD;IAC/D,eAAe,EAAE;;;;;;;;;;iGAU8E;IAC/F,IAAI,EAAE,CAAC,UAAU,EAAE,WAAW,EAAE,MAAM,CAAC;IACvC,SAAS,EAAE,CAAC,IAAI,EAAE,KAAK,CAAC;IACxB,OAAO,EAAE;QACP,kEAAkE;QAClE,oDAAoD;QACpD,mBAAmB,EAAE,IAAI;KAC1B;IACD,QAAQ,EAAE;QACR;YACE,EAAE,EAAE,sCAAsC;YAC1C,IAAI,EAAE,WAAW;YACjB,mEAAmE;YACnE,kEAAkE;YAClE,oEAAoE;YACpE,gEAAgE;YAChE,yDAAyD;YACzD,KAAK,EAAE,sBAAsB;YAC7B,OAAO,EAAE,mEAAmE;YAC5E,QAAQ,EAAE,OAAO;YACjB,UAAU,EACR,8KAA8K;SACjL;QACD;YACE,EAAE,EAAE,sCAAsC;YAC1C,IAAI,EAAE,cAAc;YACpB,KAAK,EAAE,uBAAuB;YAC9B,OAAO,EAAE,+DAA+D;YACxE,QAAQ,EAAE,OAAO;YACjB,UAAU,EACR,yLAAyL;SAC5L;QACD;YACE,EAAE,EAAE,sCAAsC;YAC1C,IAAI,EAAE,oBAAoB;YAC1B,KAAK,EAAE,qCAAqC;YAC5C,OAAO,EAAE,mEAAmE;YAC5E,QAAQ,EAAE,OAAO;YACjB,UAAU,EACR,oKAAoK;SACvK;QACD;YACE,EAAE,EAAE,sCAAsC;YAC1C,IAAI,EAAE,qBAAqB;YAC3B,KAAK,EAAE,sCAAsC;YAC7C,OAAO,EAAE,oEAAoE;YAC7E,QAAQ,EAAE,OAAO;YACjB,UAAU,EACR,sKAAsK;SACzK;KACF;CACF,CAAC,CAAC"}
|