@sectester/scan 0.46.0 → 0.48.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +1 -1
- package/src/DefaultScans.d.ts +3 -0
- package/src/DefaultScans.js +42 -1
- package/src/DefaultScans.js.map +1 -1
- package/src/ScanSettings.d.ts +3 -3
- package/src/ScanSettings.js +17 -3
- package/src/ScanSettings.js.map +1 -1
- package/src/models/ScanConfig.d.ts +2 -1
- package/src/models/Test.d.ts +10 -0
- package/src/models/Test.js +3 -0
- package/src/models/Test.js.map +1 -0
- package/src/models/TestMetadata.d.ts +6 -0
- package/src/models/TestMetadata.js +3 -0
- package/src/models/TestMetadata.js.map +1 -0
- package/src/models/index.d.ts +2 -0
- package/src/models/index.js +2 -0
- package/src/models/index.js.map +1 -1
package/package.json
CHANGED
package/src/DefaultScans.d.ts
CHANGED
|
@@ -12,4 +12,7 @@ export declare class DefaultScans implements Scans {
|
|
|
12
12
|
stopScan(id: string): Promise<void>;
|
|
13
13
|
deleteScan(id: string): Promise<void>;
|
|
14
14
|
getScan(id: string): Promise<ScanState>;
|
|
15
|
+
private convertToBackendFormat;
|
|
16
|
+
private mapTest;
|
|
17
|
+
private mapBrokenAccessControl;
|
|
15
18
|
}
|
package/src/DefaultScans.js
CHANGED
|
@@ -17,7 +17,7 @@ let DefaultScans = class DefaultScans {
|
|
|
17
17
|
'content-type': 'application/json'
|
|
18
18
|
},
|
|
19
19
|
body: JSON.stringify({
|
|
20
|
-
...config,
|
|
20
|
+
...this.convertToBackendFormat(config),
|
|
21
21
|
info: {
|
|
22
22
|
source: 'utlib',
|
|
23
23
|
provider: ci_info_1.default.name,
|
|
@@ -69,6 +69,47 @@ let DefaultScans = class DefaultScans {
|
|
|
69
69
|
const result = (await response.json());
|
|
70
70
|
return result;
|
|
71
71
|
}
|
|
72
|
+
convertToBackendFormat(config) {
|
|
73
|
+
if (!config.tests) {
|
|
74
|
+
return { ...config };
|
|
75
|
+
}
|
|
76
|
+
const mapped = config.tests.map(test => this.mapTest(test));
|
|
77
|
+
const tests = mapped.map(t => t.name);
|
|
78
|
+
const testMetadata = mapped.reduce((acc, { metadata }) => {
|
|
79
|
+
if (!metadata)
|
|
80
|
+
return acc;
|
|
81
|
+
if (!acc)
|
|
82
|
+
return metadata;
|
|
83
|
+
return {
|
|
84
|
+
...acc,
|
|
85
|
+
...metadata
|
|
86
|
+
};
|
|
87
|
+
}, undefined);
|
|
88
|
+
return { ...config, tests, ...(testMetadata && { testMetadata }) };
|
|
89
|
+
}
|
|
90
|
+
mapTest(test) {
|
|
91
|
+
if (typeof test === 'string') {
|
|
92
|
+
return { name: test };
|
|
93
|
+
}
|
|
94
|
+
switch (test.name) {
|
|
95
|
+
case 'broken_access_control':
|
|
96
|
+
return this.mapBrokenAccessControl(test);
|
|
97
|
+
default:
|
|
98
|
+
throw new Error(`Unsupported configurable test: ${test.name}`);
|
|
99
|
+
}
|
|
100
|
+
}
|
|
101
|
+
mapBrokenAccessControl(test) {
|
|
102
|
+
const { auth } = test.options;
|
|
103
|
+
const authObjectId = typeof auth === 'string' ? [null, auth] : [auth[0], auth[1]];
|
|
104
|
+
return {
|
|
105
|
+
name: test.name,
|
|
106
|
+
metadata: {
|
|
107
|
+
broken_access_control: {
|
|
108
|
+
authObjectId
|
|
109
|
+
}
|
|
110
|
+
}
|
|
111
|
+
};
|
|
112
|
+
}
|
|
72
113
|
};
|
|
73
114
|
exports.DefaultScans = DefaultScans;
|
|
74
115
|
exports.DefaultScans = DefaultScans = tslib_1.__decorate([
|
package/src/DefaultScans.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"DefaultScans.js","sourceRoot":"","sources":["../../../../packages/scan/src/DefaultScans.ts"],"names":[],"mappings":";;;;
|
|
1
|
+
{"version":3,"file":"DefaultScans.js","sourceRoot":"","sources":["../../../../packages/scan/src/DefaultScans.ts"],"names":[],"mappings":";;;;AAIA,uCAA8C;AAC9C,0CAAqE;AACrE,8DAAyB;AAGlB,IAAM,YAAY,GAAlB,MAAM,YAAY;IACvB,YACmB,aAA4B,EAE5B,MAAiB;QAFjB,kBAAa,GAAb,aAAa,CAAe;QAE5B,WAAM,GAAN,MAAM,CAAW;IACjC,CAAC;IAEG,KAAK,CAAC,UAAU,CAAC,MAAkB;QACxC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,eAAe,EAAE;YAC1D,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;aACnC;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,GAAG,IAAI,CAAC,sBAAsB,CAAC,MAAM,CAAC;gBACtC,IAAI,EAAE;oBACJ,MAAM,EAAE,OAAO;oBACf,QAAQ,EAAE,iBAAE,CAAC,IAAI;oBACjB,MAAM,EAAE;wBACN,IAAI,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI;wBAC7B,OAAO,EAAE,IAAI,CAAC,aAAa,CAAC,OAAO;qBACpC;iBACF;aACF,CAAC;SACH,CAAC,CAAC;QACH,MAAM,MAAM,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAmB,CAAC;QAEzD,OAAO,MAAM,CAAC;IAChB,CAAC;IAEM,KAAK,CAAC,UAAU,CAAC,EAAU;QAChC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,iBAAiB,EAAE,SAAS,CAAC,CAAC;QACzE,MAAM,MAAM,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAEjC,CAAC;QAEL,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YACtB,GAAG,CAAC;YACJ,IAAI,EAAE,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;YACtB,IAAI,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC,OAAO,UAAU,EAAE,WAAW,CAAC,CAAC,EAAE,EAAE;SACjE,CAAC,CAAC,CAAC;IACN,CAAC;IAEM,KAAK,CAAC,QAAQ,CAAC,EAAU;QAC9B,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,iBAAiB,EAAE,OAAO,CAAC,CAAC;QACxD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,eAAQ,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC/D,OAAO;YACT,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAEM,KAAK,CAAC,UAAU,CAAC,EAAU;QAChC,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,EAAE;gBAC/C,MAAM,EAAE,QAAQ;aACjB,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,eAAQ,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC/D,OAAO;YACT,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAEM,KAAK,CAAC,OAAO,CAAC,EAAU;QAC7B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC;QAClE,MAAM,MAAM,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAc,CAAC;QAEpD,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,sBAAsB,CAAC,MAAkB;QAC/C,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;YAClB,OAAO,EAAE,GAAG,MAAM,EAAE,CAAC;QACvB,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;QAC5D,MAAM,KAAK,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;QACtC,MAAM,YAAY,GAAG,MAAM,CAAC,MAAM,CAChC,CAAC,GAAG,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE;YACpB,IAAI,CAAC,QAAQ;gBAAE,OAAO,GAAG,CAAC;YAC1B,IAAI,CAAC,GAAG;gBAAE,OAAO,QAAQ,CAAC;YAE1B,OAAO;gBACL,GAAG,GAAG;gBACN,GAAG,QAAQ;aACZ,CAAC;QACJ,CAAC,EACD,SAAS,CACV,CAAC;QAEF,OAAO,EAAE,GAAG,MAAM,EAAE,KAAK,EAAE,GAAG,CAAC,YAAY,IAAI,EAAE,YAAY,EAAE,CAAC,EAAE,CAAC;IACrE,CAAC;IAEO,OAAO,CAAC,IAAU;QAIxB,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC;QACxB,CAAC;QAED,QAAQ,IAAI,CAAC,IAAI,EAAE,CAAC;YAClB,KAAK,uBAAuB;gBAC1B,OAAO,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,CAAC;YAE3C;gBACE,MAAM,IAAI,KAAK,CAAC,kCAAkC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;QACnE,CAAC;IACH,CAAC;IAEO,sBAAsB,CAAC,IAA6B;QAI1D,MAAM,EAAE,IAAI,EAAE,GAAG,IAAI,CAAC,OAAO,CAAC;QAC9B,MAAM,YAAY,GAChB,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;QAE/D,OAAO;YACL,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE;gBACR,qBAAqB,EAAE;oBACrB,YAAY;iBACb;aACF;SACF,CAAC;IACJ,CAAC;CACF,CAAA;AArIY,oCAAY;uBAAZ,YAAY;IADxB,IAAA,qBAAU,GAAE;IAIR,mBAAA,IAAA,iBAAM,EAAC,gBAAS,CAAC,CAAA;6CADc,oBAAa;GAFpC,YAAY,CAqIxB"}
|
package/src/ScanSettings.d.ts
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
|
-
import { AttackParamLocation } from './models';
|
|
1
|
+
import { AttackParamLocation, Test } from './models';
|
|
2
2
|
import { Target, TargetOptions } from './target';
|
|
3
3
|
export interface ScanSettingsOptions {
|
|
4
|
-
tests:
|
|
4
|
+
tests: Test[];
|
|
5
5
|
target: Target | TargetOptions;
|
|
6
6
|
name?: string;
|
|
7
7
|
repeaterId?: string;
|
|
@@ -42,7 +42,7 @@ export declare class ScanSettings implements ScanSettingsOptions {
|
|
|
42
42
|
get requestsRateLimit(): number;
|
|
43
43
|
private set requestsRateLimit(value);
|
|
44
44
|
private _tests;
|
|
45
|
-
get tests():
|
|
45
|
+
get tests(): Test[];
|
|
46
46
|
private set tests(value);
|
|
47
47
|
private _attackParamLocations;
|
|
48
48
|
get attackParamLocations(): AttackParamLocation[];
|
package/src/ScanSettings.js
CHANGED
|
@@ -66,11 +66,25 @@ class ScanSettings {
|
|
|
66
66
|
return this._tests;
|
|
67
67
|
}
|
|
68
68
|
set tests(value) {
|
|
69
|
-
|
|
70
|
-
if (uniqueTestTypes.size < 1) {
|
|
69
|
+
if (value.length < 1) {
|
|
71
70
|
throw new Error('Please provide at least one test.');
|
|
72
71
|
}
|
|
73
|
-
|
|
72
|
+
const simpleTests = new Set();
|
|
73
|
+
const configurableTests = [];
|
|
74
|
+
const seenTestConfigurations = new Set();
|
|
75
|
+
for (const test of value) {
|
|
76
|
+
const testName = typeof test === 'string' ? test : test.name;
|
|
77
|
+
if (typeof test === 'string') {
|
|
78
|
+
simpleTests.add(test);
|
|
79
|
+
continue;
|
|
80
|
+
}
|
|
81
|
+
if (seenTestConfigurations.has(testName) || simpleTests.has(testName)) {
|
|
82
|
+
throw new Error(`Please remove a duplicate for the ${testName} test`);
|
|
83
|
+
}
|
|
84
|
+
seenTestConfigurations.add(testName);
|
|
85
|
+
configurableTests.push(test);
|
|
86
|
+
}
|
|
87
|
+
this._tests = [...simpleTests, ...configurableTests];
|
|
74
88
|
}
|
|
75
89
|
get attackParamLocations() {
|
|
76
90
|
return this._attackParamLocations;
|
package/src/ScanSettings.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ScanSettings.js","sourceRoot":"","sources":["../../../../packages/scan/src/ScanSettings.ts"],"names":[],"mappings":";;;AAAA,
|
|
1
|
+
{"version":3,"file":"ScanSettings.js","sourceRoot":"","sources":["../../../../packages/scan/src/ScanSettings.ts"],"names":[],"mappings":";;;AAAA,qCAAiE;AACjE,qCAAiD;AACjD,0CAAsE;AA4BtE,MAAa,YAAY;IAGvB,IAAI,YAAY;QACd,OAAO,IAAI,CAAC,aAAa,CAAC;IAC5B,CAAC;IAED,IAAY,YAAY,CAAC,KAA0C;QACjE,IAAI,CAAC,aAAa,GAAG,KAAK,CAAC;IAC7B,CAAC;IAID,IAAI,IAAI;QACN,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAED,IAAY,IAAI,CAAC,KAAa;QAC5B,IAAI,KAAK,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QACD,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;IACrB,CAAC;IAID,IAAI,UAAU;QACZ,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,IAAY,UAAU,CAAC,KAAK;QAC1B,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC;IAC3B,CAAC;IAID,IAAI,gBAAgB;QAClB,OAAO,IAAI,CAAC,iBAAiB,CAAC;IAChC,CAAC;IAED,IAAY,gBAAgB,CAAC,KAAc;QACzC,IAAI,CAAC,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC;IACnC,CAAC;IAID,IAAI,KAAK;QACP,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED,IAAI,KAAK,CAAC,KAAc;QACtB,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC;IACxB,CAAC;IAID,IAAI,MAAM;QACR,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAED,IAAY,MAAM,CAAC,KAA6B;QAC9C,IAAI,CAAC,OAAO,GAAG,IAAI,eAAM,CAAC,KAAK,CAAC,CAAC;IACnC,CAAC;IAID,IAAI,QAAQ;QACV,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAED,IAAY,QAAQ,CAAC,KAAa;QAChC,IAAI,CAAC,IAAA,sBAAe,EAAC,KAAK,EAAE,EAAE,GAAG,EAAE,CAAC,EAAE,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC;YACjD,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;QACxC,CAAC;QAED,IAAI,CAAC,SAAS,GAAG,KAAK,CAAC;IACzB,CAAC;IAID,IAAI,iBAAiB;QACnB,OAAO,IAAI,CAAC,kBAAkB,CAAC;IACjC,CAAC;IAED,IAAY,iBAAiB,CAAC,KAAa;QACzC,IAAI,CAAC,IAAA,sBAAe,EAAC,KAAK,EAAE,EAAE,GAAG,EAAE,CAAC,EAAE,GAAG,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;YACnD,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAClD,CAAC;QAED,IAAI,CAAC,kBAAkB,GAAG,KAAK,CAAC;IAClC,CAAC;IAID,IAAI,KAAK;QACP,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED,IAAY,KAAK,CAAC,KAAa;QAC7B,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACvD,CAAC;QAED,MAAM,WAAW,GAAG,IAAI,GAAG,EAAU,CAAC;QACtC,MAAM,iBAAiB,GAAW,EAAE,CAAC;QACrC,MAAM,sBAAsB,GAAG,IAAI,GAAG,EAAU,CAAC;QAEjD,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,QAAQ,GAAG,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;YAE7D,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;gBAC7B,WAAW,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBACtB,SAAS;YACX,CAAC;YAED,IAAI,sBAAsB,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACtE,MAAM,IAAI,KAAK,CAAC,qCAAqC,QAAQ,OAAO,CAAC,CAAC;YACxE,CAAC;YACD,sBAAsB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACrC,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC/B,CAAC;QAED,IAAI,CAAC,MAAM,GAAG,CAAC,GAAG,WAAW,EAAE,GAAG,iBAAiB,CAAC,CAAC;IACvD,CAAC;IAID,IAAI,oBAAoB;QACtB,OAAO,IAAI,CAAC,qBAAqB,CAAC;IACpC,CAAC;IAED,IAAY,oBAAoB,CAAC,KAA4B;QAC3D,IAAI,CAAC,IAAA,eAAQ,EAAC,4BAAmB,EAAE,KAAK,CAAC,EAAE,CAAC;YAC1C,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;QAC7D,CAAC;QAED,IAAI,CAAC,qBAAqB,GAAG,IAAI,CAAC,2BAA2B,CAAC,KAAK,CAAC,CAAC;IACvE,CAAC;IAED,YAAY,EACV,IAAI,EACJ,KAAK,EACL,MAAM,EACN,UAAU,EACV,KAAK,GAAG,IAAI,EACZ,YAAY,EACZ,iBAAiB,GAAG,CAAC,EAAE,0BAA0B;IACjD,QAAQ,GAAG,EAAE,EAAE,uCAAuC;IACtD,gBAAgB,GAAG,IAAI,EACvB,oBAAoB,GAAG,EAAE,EACL;QACpB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC;QAC1C,IAAI,CAAC,IAAI,GAAG,IAAI,IAAI,IAAA,eAAQ,EAAC,GAAG,MAAM,IAAI,SAAS,CAAC,QAAQ,EAAE,EAAE,GAAG,CAAC,CAAC;QACrE,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,iBAAiB,GAAG,iBAAiB,CAAC;QAC3C,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAC7B,IAAI,CAAC,gBAAgB,GAAG,gBAAgB,CAAC;QACzC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,oBAAoB,GAAG,oBAAoB,CAAC;QACjD,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;IACnC,CAAC;IAEO,2BAA2B,CACjC,iBAAwC;QAExC,IAAI,iBAAiB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACjC,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,iBAAiB,CAAC,CAAC,CAAC;QACzC,CAAC;QAED,MAAM,iBAAiB,GAAG,IAAI,CAAC,0BAA0B,EAAE,CAAC;QAE5D,yCAAyC;QACzC,OAAO,iBAAiB,CAAC,MAAM,GAAG,CAAC;YACjC,CAAC,CAAC,iBAAiB;YACnB,CAAC,CAAC;gBACE,4BAAmB,CAAC,IAAI;gBACxB,4BAAmB,CAAC,KAAK;gBACzB,4BAAmB,CAAC,QAAQ;aAC7B,CAAC;IACR,CAAC;IAEO,0BAA0B;QAChC,MAAM,SAAS,GAA0B,EAAE,CAAC;QAE5C,MAAM,OAAO,GACX,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,SAAS;YAC9B,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,mBAAU,CAAC,GAAG;YACrC,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,mBAAU,CAAC,IAAI,CAAC;QAEzC,IAAI,OAAO,EAAE,CAAC;YACZ,SAAS,CAAC,IAAI,CAAC,4BAAmB,CAAC,IAAI,CAAC,CAAC;QAC3C,CAAC;QAED,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;YACtB,SAAS,CAAC,IAAI,CAAC,4BAAmB,CAAC,KAAK,CAAC,CAAC;QAC5C,CAAC;QAED,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC;YACzB,SAAS,CAAC,IAAI,CAAC,4BAAmB,CAAC,QAAQ,CAAC,CAAC;QAC/C,CAAC;QAED,OAAO,SAAS,CAAC;IACnB,CAAC;CACF;AA7MD,oCA6MC"}
|
|
@@ -1,9 +1,10 @@
|
|
|
1
1
|
import { AttackParamLocation } from './AttackParamLocation';
|
|
2
|
+
import { Test } from './Test';
|
|
2
3
|
export interface ScanConfig {
|
|
3
4
|
name: string;
|
|
4
5
|
projectId: string;
|
|
5
6
|
entryPointIds: string[];
|
|
6
|
-
tests?:
|
|
7
|
+
tests?: Test[];
|
|
7
8
|
poolSize?: number;
|
|
8
9
|
requestsRateLimit?: number;
|
|
9
10
|
attackParamLocations?: AttackParamLocation[];
|
|
@@ -0,0 +1,10 @@
|
|
|
1
|
+
export type Test = string | BrokenAccessControlTest;
|
|
2
|
+
export type BrokenAccessControlOptions = {
|
|
3
|
+
auth: string;
|
|
4
|
+
} | {
|
|
5
|
+
auth: [string, string];
|
|
6
|
+
};
|
|
7
|
+
export type BrokenAccessControlTest = {
|
|
8
|
+
name: 'broken_access_control';
|
|
9
|
+
options: BrokenAccessControlOptions;
|
|
10
|
+
};
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"Test.js","sourceRoot":"","sources":["../../../../../packages/scan/src/models/Test.ts"],"names":[],"mappings":""}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"TestMetadata.js","sourceRoot":"","sources":["../../../../../packages/scan/src/models/TestMetadata.ts"],"names":[],"mappings":""}
|
package/src/models/index.d.ts
CHANGED
package/src/models/index.js
CHANGED
|
@@ -9,4 +9,6 @@ tslib_1.__exportStar(require("./IssueGroup"), exports);
|
|
|
9
9
|
tslib_1.__exportStar(require("./ScanState"), exports);
|
|
10
10
|
tslib_1.__exportStar(require("./ScanConfig"), exports);
|
|
11
11
|
tslib_1.__exportStar(require("./HttpMethod"), exports);
|
|
12
|
+
tslib_1.__exportStar(require("./Test"), exports);
|
|
13
|
+
tslib_1.__exportStar(require("./TestMetadata"), exports);
|
|
12
14
|
//# sourceMappingURL=index.js.map
|
package/src/models/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/scan/src/models/index.ts"],"names":[],"mappings":";;;AAAA,gEAAsC;AACtC,qDAA2B;AAC3B,uDAA6B;AAC7B,kDAAwB;AACxB,uDAA6B;AAC7B,sDAA4B;AAC5B,uDAA6B;AAC7B,uDAA6B"}
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/scan/src/models/index.ts"],"names":[],"mappings":";;;AAAA,gEAAsC;AACtC,qDAA2B;AAC3B,uDAA6B;AAC7B,kDAAwB;AACxB,uDAA6B;AAC7B,sDAA4B;AAC5B,uDAA6B;AAC7B,uDAA6B;AAC7B,iDAAuB;AACvB,yDAA+B"}
|