@paa1997/metho 1.0.2 → 1.0.4

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@paa1997/metho",
-  "version": "1.0.2",
+  "version": "1.0.4",
   "description": "Automated recon pipeline: subfinder → gau → filter → katana → findsomething",
   "type": "module",
   "bin": {
@@ -15,7 +15,13 @@
     "start": "node bin/metho.js",
     "gui": "node bin/metho.js --gui"
   },
-  "keywords": ["recon", "bugbounty", "subdomain", "crawl", "pipeline"],
+  "keywords": [
+    "recon",
+    "bugbounty",
+    "subdomain",
+    "crawl",
+    "pipeline"
+  ],
   "license": "MIT",
   "dependencies": {
     "chalk": "^5.4.1",

package/scripts/findsomething_secrets.py

@@ -859,7 +859,7 @@ def main():
         help="Output file path. Default: <list_file>_secrets.txt when --list is used.",
     )
     parser.add_argument(
-        "--html-output",
+        "--html",
         nargs="?",
         const="",
         help="Generate HTML report. Optional path (defaults to <output>.html).",
@@ -893,13 +893,13 @@ def main():
         list_stem = os.path.splitext(os.path.basename(args.list.rstrip(os.sep)))[0] or "scan"
         args.output = f"{list_stem}_secrets.txt"
 
-    html_requested = args.html_output is not None
+    html_requested = args.html is not None
     html_output_path: Optional[str] = None
     if html_requested:
         if not args.output:
-            parser.error("--html-output requires --output to be set.")
+            parser.error("--html requires --output to be set.")
         base, _ = os.path.splitext(args.output)
-        html_output_path = args.html_output if args.html_output else (base or args.output) + ".html"
+        html_output_path = args.html if args.html else (base or args.output) + ".html"
 
     # Reset globals per run
     STOP_EVENT.clear()

package/scripts/html_secret_gen.py

@@ -0,0 +1,711 @@
+#!/usr/bin/env python3
+import re
+import argparse
+import html
+import json
+from pathlib import Path
+from datetime import datetime
+
+HEADER_RE = re.compile(r"^=== Results for (.+?) ===\s*$")
+SECRET_LINE_RE = re.compile(r"^\[secret\]")
+
+
+def parse_results_streaming(filepath):
+    """
+    Generator that yields blocks one at a time by reading the file line-by-line.
+    Each block is: {"url": "...", "secret_lines": [...], "has_secrets": bool}
+    """
+    current_url = None
+    current_lines = []
+
+    def flush():
+        nonlocal current_url, current_lines
+        if current_url is None:
+            return None
+        secret_lines = [l.strip() for l in current_lines if SECRET_LINE_RE.match(l.strip())]
+        block = {
+            "url": current_url.strip(),
+            "secret_lines": secret_lines,
+            "has_secrets": bool(secret_lines),
+        }
+        current_url = None
+        current_lines = []
+        return block
+
+    with open(filepath, "r", encoding="utf-8", errors="replace") as fh:
+        for line in fh:
+            line = line.rstrip("\n\r")
+            m = HEADER_RE.match(line)
+            if m:
+                block = flush()
+                if block is not None:
+                    yield block
+                current_url = m.group(1)
+                current_lines = []
+            else:
+                if current_url is not None:
+                    current_lines.append(line)
+
+    block = flush()
+    if block is not None:
+        yield block
+
+
+def write_html_streaming(blocks_iter, out_fh, input_name="input"):
+    """
+    Two-pass approach for large files:
+      Pass 1: iterate blocks, collect them in a list (only metadata, not raw text).
+      Pass 2: stream JSON array into the HTML file piece by piece.
+
+    This avoids holding the full JSON string in memory — we write each
+    element individually instead of json.dumps(entire_list).
+    """
+    # Collect parsed blocks — this is the essential data we need and is much
+    # smaller than the raw input file (we already discarded non-secret lines).
+    blocks = list(blocks_iter)
+
+    total_blocks = len(blocks)
+    blocks_with_secrets = sum(1 for b in blocks if b["has_secrets"])
+    total_secret_lines = sum(len(b["secret_lines"]) for b in blocks if b["has_secrets"])
+
+    now = datetime.now().strftime("%Y-%m-%d %H:%M:%S")
+
+    # We'll write the HTML in parts, streaming the JSON array element-by-element
+    # so we never build the full JSON string in memory.
+
+    w = out_fh.write
+
+    # --- Part 1: HTML head + CSS + body header (with dynamic stats) ---
+    w(f"""<!doctype html>
+<html lang="en">
+<head>
+  <meta charset="utf-8" />
+  <title>Secrets Report</title>
+  <meta name="viewport" content="width=device-width, initial-scale=1" />
+  <style>
+    :root {{
+      --bg: #0f172a;
+      --panel: #111827;
+      --muted: #9ca3af;
+      --text: #e5e7eb;
+      --accent: #60a5fa;
+      --accent-2: #34d399;
+      --danger: #f87171;
+      --border: rgba(255,255,255,0.08);
+      --shadow: 0 10px 30px rgba(0,0,0,0.35);
+      --radius: 14px;
+      --mono: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", monospace;
+      --sans: ui-sans-serif, system-ui, -apple-system, Segoe UI, Roboto, "Helvetica Neue", Arial, "Noto Sans";
+    }}
+    body {{
+      margin: 0;
+      font-family: var(--sans);
+      background:
+        radial-gradient(1200px 600px at 10% 10%, rgba(96,165,250,0.12), transparent),
+        radial-gradient(1200px 600px at 90% 20%, rgba(52,211,153,0.10), transparent),
+        var(--bg);
+      color: var(--text);
+    }}
+    .container {{
+      max-width: 1100px;
+      margin: 0 auto;
+      padding: 28px 18px 60px;
+    }}
+    header {{
+      display: flex;
+      flex-direction: column;
+      gap: 10px;
+      margin-bottom: 18px;
+    }}
+    h1 {{
+      font-size: clamp(22px, 3vw, 30px);
+      margin: 0;
+    }}
+    .meta {{
+      color: var(--muted);
+      font-size: 12px;
+    }}
+
+    .summary {{
+      display: grid;
+      grid-template-columns: repeat(3, minmax(0, 1fr));
+      gap: 10px;
+      margin: 16px 0 22px;
+    }}
+    .summary .box {{
+      background:
+        linear-gradient(180deg, rgba(255,255,255,0.02), transparent),
+        var(--panel);
+      border: 1px solid var(--border);
+      border-radius: var(--radius);
+      padding: 14px 14px 12px;
+      box-shadow: var(--shadow);
+    }}
+    .label {{
+      color: var(--muted);
+      font-size: 11px;
+      text-transform: uppercase;
+      letter-spacing: 0.08em;
+    }}
+    .value {{
+      font-size: 22px;
+      font-weight: 650;
+      margin-top: 4px;
+    }}
+
+    .toolbar {{
+      display: flex;
+      gap: 10px;
+      align-items: center;
+      margin-bottom: 12px;
+      flex-wrap: wrap;
+    }}
+    input[type="search"] {{
+      flex: 1;
+      min-width: 220px;
+      background: var(--panel);
+      border: 1px solid var(--border);
+      color: var(--text);
+      padding: 10px 12px;
+      border-radius: 10px;
+      outline: none;
+    }}
+    .toggle {{
+      display: inline-flex;
+      align-items: center;
+      gap: 8px;
+      background: var(--panel);
+      border: 1px solid var(--border);
+      padding: 8px 10px;
+      border-radius: 10px;
+      font-size: 12px;
+      color: var(--muted);
+      white-space: nowrap;
+    }}
+    .toggle input {{
+      cursor: pointer;
+      transform: translateY(1px);
+    }}
+
+    button {{
+      background: rgba(96,165,250,0.12);
+      border: 1px solid rgba(96,165,250,0.35);
+      color: var(--text);
+      padding: 9px 12px;
+      border-radius: 10px;
+      cursor: pointer;
+      font-size: 12px;
+      white-space: nowrap;
+    }}
+    button:hover {{
+      background: rgba(96,165,250,0.2);
+    }}
+
+    .status {{
+      display: flex;
+      gap: 10px;
+      align-items: center;
+      color: var(--muted);
+      font-size: 11px;
+      margin: 6px 0 14px;
+    }}
+    .dot {{
+      width: 6px;
+      height: 6px;
+      border-radius: 50%;
+      background: rgba(52,211,153,0.6);
+      display: inline-block;
+    }}
+
+    .cards {{
+      display: flex;
+      flex-direction: column;
+      gap: 12px;
+    }}
+
+    details.card {{
+      background:
+        linear-gradient(180deg, rgba(255,255,255,0.02), transparent),
+        var(--panel);
+      border: 1px solid var(--border);
+      border-radius: var(--radius);
+      box-shadow: var(--shadow);
+      overflow: hidden;
+    }}
+    details.card summary {{
+      list-style: none;
+      cursor: pointer;
+      padding: 14px 14px;
+      display: grid;
+      grid-template-columns: auto 1fr auto;
+      gap: 10px;
+      align-items: center;
+    }}
+    details.card summary::-webkit-details-marker {{
+      display: none;
+    }}
+
+    .badge {{
+      display: inline-flex;
+      align-items: center;
+      justify-content: center;
+      font-size: 10px;
+      padding: 3px 7px;
+      border-radius: 999px;
+      background: rgba(52,211,153,0.12);
+      border: 1px solid rgba(52,211,153,0.35);
+      color: #c7f9e8;
+      white-space: nowrap;
+    }}
+
+    a.url {{
+      font-size: 13px;
+      color: var(--accent);
+      text-decoration: none;
+      word-break: break-all;
+    }}
+    a.url:hover {{
+      text-decoration: underline;
+    }}
+
+    .right-pack {{
+      display: inline-flex;
+      align-items: center;
+      gap: 8px;
+      justify-self: end;
+    }}
+
+    .visited-wrap {{
+      display: inline-flex;
+      align-items: center;
+      gap: 6px;
+      font-size: 10px;
+      color: var(--muted);
+      background: rgba(255,255,255,0.03);
+      border: 1px solid var(--border);
+      padding: 4px 8px;
+      border-radius: 999px;
+      white-space: nowrap;
+    }}
+    .visited-wrap input {{
+      cursor: pointer;
+      transform: translateY(1px);
+    }}
+
+    .count {{
+      font-size: 11px;
+      color: var(--muted);
+      white-space: nowrap;
+    }}
+
+    .card-body {{
+      border-top: 1px solid var(--border);
+      padding: 12px 16px 16px;
+    }}
+
+    ul.secrets {{
+      margin: 0;
+      padding-left: 18px;
+      display: flex;
+      flex-direction: column;
+      gap: 8px;
+    }}
+    .secret-item {{
+      display: flex;
+      gap: 8px;
+      align-items: center;
+      flex-wrap: wrap;
+    }}
+    code {{
+      font-family: var(--mono);
+      font-size: 11.5px;
+      background: rgba(248,113,113,0.08);
+      border: 1px solid rgba(248,113,113,0.25);
+      padding: 2px 6px;
+      border-radius: 6px;
+      color: #ffd7d7;
+      word-break: break-all;
+    }}
+    .src-link {{
+      font-size: 10px;
+      color: #ffd7d7;
+      text-decoration: none;
+      border: 1px solid rgba(248,113,113,0.25);
+      padding: 2px 6px;
+      border-radius: 999px;
+      background: rgba(248,113,113,0.06);
+    }}
+    .src-link:hover {{
+      text-decoration: underline;
+    }}
+
+    .no-secrets-note {{
+      color: var(--muted);
+      font-size: 12px;
+    }}
+
+    .empty {{
+      background: var(--panel);
+      border: 1px dashed var(--border);
+      border-radius: var(--radius);
+      padding: 18px;
+      color: var(--muted);
+    }}
+
+    @media (max-width: 700px) {{
+      .summary {{ grid-template-columns: 1fr; }}
+      details.card summary {{ grid-template-columns: 1fr; }}
+      .right-pack {{ justify-self: start; }}
+    }}
+  </style>
+</head>
+<body>
+  <div class="container">
+    <header>
+      <h1>Secrets Report</h1>
+      <div class="meta">
+        Source: {html.escape(input_name)} &nbsp;•&nbsp; Generated: {now}
+      </div>
+    </header>
+
+    <section class="summary">
+      <div class="box">
+        <div class="label">Total result blocks found</div>
+        <div class="value">{total_blocks}</div>
+      </div>
+      <div class="box">
+        <div class="label">Blocks with secrets</div>
+        <div class="value">{blocks_with_secrets}</div>
+      </div>
+      <div class="box">
+        <div class="label">Total secret lines</div>
+        <div class="value">{total_secret_lines}</div>
+      </div>
+    </section>
+
+    <div class="toolbar">
+      <input id="search" type="search" placeholder="Filter by URL or secret text..." />
+
+      <label class="toggle">
+        <input id="onlySecrets" type="checkbox" checked />
+        Show only secret entries
+      </label>
+
+      <label class="toggle">
+        <input id="hideVisited" type="checkbox" />
+        Hide visited
+      </label>
+
+      <button id="expandAll">Expand rendered</button>
+      <button id="collapseAll">Collapse rendered</button>
+      <button id="clearVisited">Clear visited</button>
+    </div>
+
+    <div class="status">
+      <span class="dot"></span>
+      <span id="statusText">Ready</span>
+    </div>
+
+    <main class="cards" id="cards">
+      <div class="empty" id="emptyBox" style="display:none;">No matching entries.</div>
+    </main>
+  </div>
+
+  <script>
+    const DATA = [""")
+
+    # --- Part 2: Stream JSON array elements one at a time ---
+    # We must escape '</' to '<\/' in JSON output, otherwise a secret line
+    # containing '</script>' will break the HTML parser out of the script tag.
+    for idx, block in enumerate(blocks):
+        if idx > 0:
+            w(",")
+        chunk = json.dumps(block, ensure_ascii=False)
+        w(chunk.replace("</", "<\\/"))
+
+    # --- Part 3: Close the JSON array and write the rest of the JS + HTML ---
+    w("""];
+
+    const cardsContainer = document.getElementById('cards');
+    const emptyBox = document.getElementById('emptyBox');
+    const searchEl = document.getElementById('search');
+    const onlySecretsEl = document.getElementById('onlySecrets');
+    const hideVisitedEl = document.getElementById('hideVisited');
+    const statusText = document.getElementById('statusText');
+    const expandAllBtn = document.getElementById('expandAll');
+    const collapseAllBtn = document.getElementById('collapseAll');
+    const clearVisitedBtn = document.getElementById('clearVisited');
+
+    let renderToken = 0;
+
+    // ---------------- Visited state ----------------
+    const VISITED_KEY = "secrets_report_visited_v1";
+
+    function loadVisited() {
+      try {
+        const raw = localStorage.getItem(VISITED_KEY);
+        const arr = raw ? JSON.parse(raw) : [];
+        return new Set(Array.isArray(arr) ? arr : []);
+      } catch {
+        return new Set();
+      }
+    }
+
+    function saveVisited(set) {
+      localStorage.setItem(VISITED_KEY, JSON.stringify(Array.from(set)));
+    }
+
+    let visitedSet = loadVisited();
+
+    function applyVisitedUI(root = document) {
+      root.querySelectorAll('details.card').forEach(card => {
+        const url = card.dataset.url;
+        const box = card.querySelector('.visited-box');
+        if (!box) return;
+        box.checked = visitedSet.has(url);
+      });
+    }
+
+    // ---------------- Helpers ----------------
+    function escapeHtml(str) {
+      return str.replace(/[&<>"']/g, s => {
+        switch (s) {
+          case '&': return '&amp;';
+          case '<': return '&lt;';
+          case '>': return '&gt;';
+          case '"': return '&quot;';
+          case "'": return '&#39;';
+          default: return s;
+        }
+      });
+    }
+
+    function parseSecretLine(line) {
+      const m = line.match(/^(.*?)(\\s*\\[(https?:\\/\\/[^\\]]+)\\]\\s*)$/);
+      if (!m) {
+        return `<li><code>${escapeHtml(line)}</code></li>`;
+      }
+      const before = m[1].trim();
+      const url = m[3].trim();
+      const beforeEsc = escapeHtml(before);
+      const urlEsc = escapeHtml(url);
+      return `
+        <li class="secret-item">
+          <code>${beforeEsc}</code>
+          <a class="src-link" href="${urlEsc}" target="_blank" rel="noopener noreferrer">source</a>
+        </li>
+      `;
+    }
+
+    function buildCardHTML(item, index) {
+      const urlEsc = escapeHtml(item.url);
+      const badge = `#${index + 1}`;
+      const count = item.secret_lines.length;
+
+      let bodyHtml = '';
+      if (item.has_secrets) {
+        const secrets = item.secret_lines.map(parseSecretLine).join('');
+        bodyHtml = `<ul class="secrets">${secrets}</ul>`;
+      } else {
+        bodyHtml = `<div class="no-secrets-note">No secrets detected.</div>`;
+      }
+
+      const openAttr = item.has_secrets ? 'open' : '';
+
+      return `
+        <details class="card" data-url="${urlEsc}" data-has-secrets="${item.has_secrets}" ${openAttr}>
+          <summary>
+            <span class="badge">${badge}</span>
+            <a class="url" href="${urlEsc}" target="_blank" rel="noopener noreferrer">${urlEsc}</a>
+            <span class="right-pack">
+              <label class="visited-wrap">
+                <input class="visited-box" type="checkbox" />
+                Visited
+              </label>
+              <span class="count">${count} secret(s)</span>
+            </span>
+          </summary>
+          <div class="card-body">
+            ${bodyHtml}
+          </div>
+        </details>
+      `;
+    }
+
+    function getFilteredData() {
+      const q = searchEl.value.toLowerCase().trim();
+      const onlySecrets = onlySecretsEl.checked;
+      const hideVisited = hideVisitedEl.checked;
+
+      return DATA.filter(item => {
+        const urlLower = item.url.toLowerCase();
+
+        if (onlySecrets && !item.has_secrets) return false;
+        if (hideVisited && visitedSet.has(item.url)) return false;
+
+        if (!q) return true;
+
+        if (urlLower.includes(q)) return true;
+
+        if (item.has_secrets) {
+          return item.secret_lines.some(s => s.toLowerCase().includes(q));
+        }
+        return false;
+      });
+    }
+
+    function clearCards() {
+      const nodes = Array.from(cardsContainer.querySelectorAll('details.card'));
+      nodes.forEach(n => n.remove());
+    }
+
+    function setStatus(msg) {
+      statusText.textContent = msg;
+    }
+
+    let scheduleRender = null;
+
+    function wireVisitedForRenderedCards() {
+      cardsContainer.querySelectorAll('details.card').forEach(card => {
+        if (card.dataset.visitedWired) return;
+        card.dataset.visitedWired = "1";
+
+        const url = card.dataset.url;
+        const box = card.querySelector('.visited-box');
+        const link = card.querySelector('a.url');
+
+        if (box) {
+          box.addEventListener('change', () => {
+            if (box.checked) visitedSet.add(url);
+            else visitedSet.delete(url);
+            saveVisited(visitedSet);
+
+            if (hideVisitedEl.checked && scheduleRender) {
+              scheduleRender();
+            }
+          });
+        }
+
+        if (link) {
+          link.addEventListener('click', () => {
+            visitedSet.add(url);
+            saveVisited(visitedSet);
+            if (box) box.checked = true;
+
+            if (hideVisitedEl.checked && scheduleRender) {
+              scheduleRender();
+            }
+          });
+        }
+      });
+    }
+
+    function renderIncrementally(items) {
+      const myToken = ++renderToken;
+      clearCards();
+
+      if (items.length === 0) {
+        emptyBox.style.display = '';
+        setStatus('No matches');
+        return;
+      }
+      emptyBox.style.display = 'none';
+
+      const chunkSize = 200;
+      let i = 0;
+
+      setStatus(`Rendering 0 / ${items.length}`);
+
+      function step() {
+        if (myToken !== renderToken) return;
+
+        const end = Math.min(i + chunkSize, items.length);
+        let htmlChunk = '';
+        for (; i < end; i++) {
+          htmlChunk += buildCardHTML(items[i], i);
+        }
+        cardsContainer.insertAdjacentHTML('beforeend', htmlChunk);
+
+        applyVisitedUI(cardsContainer);
+        wireVisitedForRenderedCards();
+
+        setStatus(`Rendering ${end} / ${items.length}`);
+
+        if (i < items.length) {
+          requestAnimationFrame(step);
+        } else {
+          setStatus(`Done \u2022 Rendered ${items.length} entries`);
+        }
+      }
+
+      requestAnimationFrame(step);
+    }
+
+    // ---------------- Debounce search/render ----------------
+    let searchTimer = null;
+    scheduleRender = function() {
+      if (searchTimer) clearTimeout(searchTimer);
+      searchTimer = setTimeout(() => {
+        renderIncrementally(getFilteredData());
+      }, 120);
+    };
+
+    searchEl.addEventListener('input', scheduleRender);
+    onlySecretsEl.addEventListener('change', scheduleRender);
+    hideVisitedEl.addEventListener('change', scheduleRender);
+
+    expandAllBtn.addEventListener('click', () => {
+      document.querySelectorAll('details.card').forEach(d => d.open = true);
+    });
+
+    collapseAllBtn.addEventListener('click', () => {
+      document.querySelectorAll('details.card').forEach(d => d.open = false);
+    });
+
+    clearVisitedBtn.addEventListener('click', () => {
+      visitedSet = new Set();
+      saveVisited(visitedSet);
+      applyVisitedUI(cardsContainer);
+
+      if (hideVisitedEl.checked) {
+        scheduleRender();
+      } else {
+        setStatus("Visited cleared");
+      }
+    });
+
+    // Initial render
+    renderIncrementally(getFilteredData());
+  </script>
+</body>
+</html>
+""")
+
+    return total_blocks, blocks_with_secrets
+
+
+def main():
+    ap = argparse.ArgumentParser(
+        description="Re-organize secret scanner results into a neat HTML report (fast, visited tracking + hide visited filter)."
+    )
+    ap.add_argument("-i", "--input", required=True, help="Input text file with results.")
+    ap.add_argument("-o", "--output", required=True, help="Output HTML file.")
+    args = ap.parse_args()
+
+    in_path = Path(args.input)
+    out_path = Path(args.output)
+
+    blocks_iter = parse_results_streaming(in_path)
+
+    with open(out_path, "w", encoding="utf-8") as out_fh:
+        total_blocks, blocks_with_secrets = write_html_streaming(
+            blocks_iter, out_fh, input_name=in_path.name
+        )
+
+    print(f"[+] Parsed blocks: {total_blocks}")
+    print(f"[+] Blocks with secrets: {blocks_with_secrets}")
+    print(f"[+] Wrote HTML: {out_path}")
+
+
+if __name__ == "__main__":
+    main()

package/src/steps/findsomething.js

@@ -34,7 +34,7 @@ export class FindSomethingStep extends BaseStep {
 
     this.logger.debug(`Using findsomething script: ${scriptPath}`);
     const pythonBin = isWin ? 'python' : 'python3';
-    const args = [scriptPath, '-l', inputFile, '-o', outputFile];
+    const args = [scriptPath, '-l', inputFile, '-o', outputFile, '--html'];
 
     const result = await this.runCommand(pythonBin, args, { outputFile });
     return result;

package/src/steps/katana.js

@@ -14,10 +14,13 @@ export class KatanaStep extends BaseStep {
     const chunkSize = config.katanaChunkSize;
     const depth = config.katanaDepth;
 
+    // Exclude media, images, fonts, stylesheets and other non-useful extensions
+    const excludeExt = 'png,jpg,jpeg,gif,svg,ico,webp,bmp,tiff,mp4,mp3,avi,mov,wmv,flv,webm,ogg,wav,css,woff,woff2,ttf,eot,otf,pdf,zip,gz,tar,rar,7z,mp2,mkv';
+
     if (lineCount <= chunkSize) {
       // Small enough to run in one shot
       this.logger.debug(`Katana: ${lineCount} URLs, running single batch`);
-      const args = ['-list', inputFile, '-d', String(depth), '-o', outputFile];
+      const args = ['-list', inputFile, '-d', String(depth), '-ef', excludeExt, '-o', outputFile];
       return this.runCommand('katana', args, { outputFile });
     }
 
@@ -32,7 +35,7 @@ export class KatanaStep extends BaseStep {
     for (let i = 0; i < chunks.length; i++) {
       this.logger.info(`Katana chunk ${i + 1}/${chunks.length}...`);
       const chunkOutput = join(tmpDir, `katana-out-${i}.txt`);
-      const args = ['-list', chunks[i], '-d', String(depth), '-o', chunkOutput];
+      const args = ['-list', chunks[i], '-d', String(depth), '-ef', excludeExt, '-o', chunkOutput];
 
       try {
         await this.runCommand('katana', args, { outputFile: chunkOutput });