npm - @sun-asterisk/sunlint - Versions diffs - 1.3.8 → 1.3.10 - Mend

@sun-asterisk/sunlint 1.3.8 → 1.3.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (27) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -2,6 +2,31 @@
 ---
+## 🔧 **v1.3.9 - File Targeting Regression Fix (October 2, 2025)**
+**Release Date**: October 2, 2025
+**Type**: Bug Fix
+**Branch**: `feature.sunlint.heuristic_rule_c065`
+### 🐛 **Critical Bug Fixes**
+- **FIXED**: File targeting regression where user-specified source directories were incorrectly optimized
+  - **Issue**: When using `--input=examples/project-samples/replace-fe/src`, file count dropped from 2.2K to 254 files
+  - **Root Cause**: `optimizeProjectPaths` function incorrectly treated user-specified source directories as project roots
+  - **Solution**: Added source directory detection logic to bypass optimization for `src`, `lib`, `app`, `packages`, `test` directories
+  - **Impact**: Full file coverage restored - all 1507 .tsx files now properly included
+### ⚡ **Performance Improvements**
+- **ENHANCED**: File targeting logic with smart source directory detection
+- **OPTIMIZED**: Direct targeting for user-specified source paths
+### 📝 **Technical Details**
+- Modified `file-targeting-service.js` `optimizeProjectPaths` function
+- Added `sourceDirectoryNames` array for known source directory patterns
+- Implemented basename checking to detect when users specify source directories directly
+- Maintained backward compatibility with existing project structure detection
+---
 ## 🧪 **v1.3.8 - C065 Rule Enhancement & Advanced Context Analysis (October 1, 2025)**
 **Release Date**: October 1, 2025

package/config/rules/enhanced-rules-registry.json CHANGED Viewed

@@ -375,6 +375,24 @@
         }
       }
     },
+    "C060": {
+      "name": "Do not override superclass methods and ignore critical logic",
+      "description": "Preserve important behavior or lifecycle logic defined in the superclass to ensure correctness and prevent silent errors.",
+      "category": "logging",
+      "severity": "warning",
+      "languages": ["typescript", "javascript", "dart"],
+      "analyzer": "./rules/common/C060_no_override_superclass/analyzer.js",
+      "version": "1.0.0",
+      "status": "stable",
+      "tags": ["logging", "production", "debugging", "console"],
+      "strategy": {
+        "preferred": "regex",
+        "fallbacks": ["regex"],
+        "accuracy": {
+          "regex": 90
+        }
+      }
+    },
     "S001": {
       "name": "Fail Securely",
       "description": "Verify that if there is an error in access control, the system fails securely",
@@ -660,16 +678,51 @@
       "tags": ["security", "email", "injection"]
     },
     "S020": {
-      "name": "No Eval Dynamic Execution",
-      "description": "Prevent eval and dynamic code execution",
+      "name": "Avoid using eval() or executing dynamic code",
+      "description": "Avoid using eval() or executing dynamic code as it can lead to code injection vulnerabilities and compromise application security.",
       "category": "security",
       "severity": "error",
       "languages": ["typescript", "javascript"],
-      "analyzer": "eslint",
-      "eslintRule": "custom/typescript_s020",
+      "analyzer": "./rules/security/S020_no_eval_dynamic_code/analyzer.js",
+      "config": "./rules/security/S020_no_eval_dynamic_code/config.json",
       "version": "1.0.0",
-      "status": "stable",
-      "tags": ["security", "eval", "dynamic-execution"]
+      "status": "experimental",
+      "tags": ["security", "eval", "dynamic-execution", "code-injection"],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": ["ast", "regex"],
+        "accuracy": { "ast": 95, "regex": 85 }
+      },
+      "engineMappings": {
+        "heuristic": ["rules/security/S020_no_eval_dynamic_code/analyzer.js"]
+      }
+    },
+    "S030": {
+      "name": "Disable directory browsing and protect sensitive metadata files",
+      "description": "Disable directory browsing and protect sensitive metadata files (.git/, .env, config files, etc.) to prevent information disclosure and potential security vulnerabilities.",
+      "category": "security",
+      "severity": "error",
+      "languages": ["typescript", "javascript"],
+      "analyzer": "./rules/security/S030_directory_browsing_protection/analyzer.js",
+      "config": "./rules/security/S030_directory_browsing_protection/config.json",
+      "version": "1.0.0",
+      "status": "experimental",
+      "tags": [
+        "security",
+        "directory-browsing",
+        "information-disclosure",
+        "metadata-protection"
+      ],
+      "strategy": {
+        "preferred": "ast",
+        "fallbacks": ["ast", "regex"],
+        "accuracy": { "ast": 90, "regex": 75 }
+      },
+      "engineMappings": {
+        "heuristic": [
+          "rules/security/S030_directory_browsing_protection/analyzer.js"
+        ]
+      }
     },
     "S022": {
       "name": "Output Encoding Required",
@@ -791,18 +844,6 @@
       "status": "stable",
       "tags": ["security", "csrf", "protection"]
     },
-    "S030": {
-      "name": "No Directory Browsing",
-      "description": "Prevent directory browsing vulnerabilities",
-      "category": "security",
-      "severity": "error",
-      "languages": ["typescript", "javascript"],
-      "analyzer": "eslint",
-      "eslintRule": "custom/typescript_s030",
-      "version": "1.0.0",
-      "status": "stable",
-      "tags": ["security", "directory-browsing", "information-disclosure"]
-    },
     "S031": {
       "name": "Set Secure flag for Session Cookies",
       "description": "Set Secure flag for Session Cookies to protect via HTTPS. This ensures cookies are only transmitted over secure connections, preventing interception.",
@@ -1141,7 +1182,7 @@
       "name": "Password length policy enforcement (12-64 chars recommended, reject >128)",
       "description": "Enforce strong password length policies with multi-signal detection. Prevent weak validators, missing limits, and FE/BE mismatches.",
       "category": "security",
-      "severity": "error",
+      "severity": "error",
       "languages": ["typescript", "javascript"],
       "analyzer": "./rules/security/S051_password_length_policy/analyzer.js",
       "config": "./rules/security/S051_password_length_policy/config.json",
@@ -1151,7 +1192,9 @@
       "tags": ["security", "password", "validation", "length", "policy"],
       "engineMappings": {
         "eslint": ["custom/typescript_s051"],
-        "heuristic": ["./rules/security/S051_password_length_policy/analyzer.js"]
+        "heuristic": [
+          "./rules/security/S051_password_length_policy/analyzer.js"
+        ]
       }
     },
     "C065": {
@@ -1191,13 +1234,27 @@
       "description": "Prevent use of default or shared accounts. Enforce per-user identities, initial password change, and disabling well-known built-ins.",
       "category": "security",
       "severity": "error",
-      "languages": ["typescript", "javascript", "sql", "terraform", "yaml", "dockerfile", "all"],
+      "languages": [
+        "typescript",
+        "javascript",
+        "sql",
+        "terraform",
+        "yaml",
+        "dockerfile",
+        "all"
+      ],
       "analyzer": "./rules/security/S054_no_default_accounts/analyzer.js",
       "config": "./rules/security/S054_no_default_accounts/config.json",
       "eslintRule": "custom/typescript_s054",
       "version": "1.0.0",
       "status": "stable",
-      "tags": ["security", "accounts", "default", "authentication", "authorization"],
+      "tags": [
+        "security",
+        "accounts",
+        "default",
+        "authentication",
+        "authorization"
+      ],
       "engines": {
         "eslint": ["custom/typescript_s054"],
         "heuristic": ["./rules/security/S054_no_default_accounts/analyzer.js"]

package/core/cli-program.js CHANGED Viewed

@@ -71,7 +71,7 @@ function createCliProgram() {
     .option('--debug', 'Enable debug mode')
     .option('--ai', 'Enable AI-powered analysis')
     .option('--no-ai', 'Force disable AI analysis')
-    .option('--max-semantic-files <number>', 'Symbol table file limit for TypeScript analysis (default: auto)', '0')
+    .option('--max-semantic-files <number>', 'Symbol table file limit for TypeScript analysis (default: 1000, -1 for unlimited)')
     .option('--list-engines', 'List available analysis engines');
   // ESLint Integration options

package/core/file-targeting-service.js CHANGED Viewed

@@ -163,6 +163,21 @@ class FileTargetingService {
     for (const inputPath of inputPaths) {
       // If targeting entire project directory, try to find source/test subdirectories
       if (fs.existsSync(inputPath) && fs.statSync(inputPath).isDirectory()) {
+        const absoluteInputPath = path.resolve(inputPath);
+        const inputDirName = path.basename(absoluteInputPath);
+        // If user already specified a source directory (src, lib, app, packages, test, etc.),
+        // don't try to optimize further - use it as is
+        const sourceDirectoryNames = ['src', 'lib', 'app', 'packages', 'test', 'tests', '__tests__', 'spec', 'specs'];
+        if (sourceDirectoryNames.includes(inputDirName)) {
+          if (cliOptions.verbose) {
+            console.log(chalk.blue(`🎯 Direct targeting: Using specified source directory ${inputDirName}`));
+          }
+          optimizedPaths.push(inputPath);
+          continue;
+        }
+        // Only optimize if this appears to be a project root directory
         const projectOptimization = this.findProjectSourceDirs(inputPath, cliOptions);
         if (projectOptimization.length > 0) {
           if (cliOptions.verbose) {

package/core/semantic-engine.js CHANGED Viewed

@@ -102,7 +102,7 @@ class SemanticEngine {
       );
       if (targetFiles) {
-        console.log(`🎯 Targeted files received: ${targetFiles.length} total, ${semanticFiles.length} TS/JS files`);
+        console.log(`🎯 Targeted files received: ${targetFiles.length} total, ${semanticFiles.length} TypeScript/JavaScript files (TS/TSX/JS/JSX)`);
         if (semanticFiles.length < 10) {
           console.log(`   Files: ${semanticFiles.map(f => path.basename(f)).join(', ')}`);
         }
@@ -119,7 +119,9 @@ class SemanticEngine {
       } else if (userMaxFiles === 0) {
         // Disable semantic analysis
         maxFiles = 0;
-        console.log(`🔧 Semantic Engine config: DISABLED semantic analysis (heuristic only)`);
+        console.log(`🔧 Semantic Engine config: DISABLED semantic analysis (heuristic only mode)`);
+        console.log(`   💡 Semantic analysis explicitly disabled with --max-semantic-files=0`);
+        console.log(`   💡 To enable: omit the option (default: 1000) or use --max-semantic-files=1000 (or higher)`);
       } else if (userMaxFiles > 0) {
         // User-specified limit
         maxFiles = Math.min(userMaxFiles, semanticFiles.length);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@sun-asterisk/sunlint",
-  "version": "1.3.8",
+  "version": "1.3.10",
   "description": "☀️ SunLint - Multi-language static analysis tool for code quality and security | Sun* Engineering Standards",
   "main": "cli.js",
   "bin": {

package/rules/common/C024_no_scatter_hardcoded_constants/symbol-based-analyzer.js CHANGED Viewed

@@ -48,6 +48,14 @@ class C024SymbolBasedAnalyzer {
     }
     try {
+      // skip ignored files
+      if (this.isIgnoredFile(filePath)) {
+        if (verbose) {
+          console.log(`🔍 [C024 Symbol-Based] Skipping ignored file: ${filePath}`);
+        }
+        return violations;
+      }
       const sourceFile = this.semanticEngine.project.getSourceFile(filePath);
       if (!sourceFile) {
         return violations;
@@ -99,9 +107,7 @@ class C024SymbolBasedAnalyzer {
     const kind = node.getKind();
     if (
       kind === SyntaxKind.StringLiteral ||
-      kind === SyntaxKind.NumericLiteral ||
-      kind === SyntaxKind.TrueKeyword ||
-      kind === SyntaxKind.FalseKeyword
+      kind === SyntaxKind.NumericLiteral
     ) {
       const text = node.getText().replace(/['"`]/g, ""); // strip quotes
       if (this.isAllowedLiteral(node, text)) return;
@@ -120,9 +126,27 @@ class C024SymbolBasedAnalyzer {
     const kind = node.getKind();
     if (kind === SyntaxKind.VariableDeclaration) {
       const parentKind = node.getParent()?.getKind();
+      // Skip detection for `for ... of` loop variable
+      const loopAncestor = node.getFirstAncestor((ancestor) => {
+        const kind = ancestor.getKind?.();
+        return (
+          kind === SyntaxKind.ForOfStatement ||
+          kind === SyntaxKind.ForInStatement ||
+          kind === SyntaxKind.ForStatement ||
+          kind === SyntaxKind.WhileStatement ||
+          kind === SyntaxKind.DoStatement ||
+          kind === SyntaxKind.SwitchStatement
+        );
+      });
+      if (loopAncestor) {
+        return; // skip for all loop/switch contexts, no matter how nested
+      }
       if (
         parentKind === SyntaxKind.VariableDeclarationList &&
-        node.getParent().getDeclarationKind() === "const"
+        node.getParent().getDeclarationKind() === "const" &&
+        !node.getInitializer()
       ) {
         this.pushViolation(
           violations,
@@ -154,27 +178,109 @@ class C024SymbolBasedAnalyzer {
   // --- helper: allow safe literals ---
   isAllowedLiteral(node, text) {
-    // skip imports
-    if (node.getParent()?.getKind() === SyntaxKind.ImportDeclaration) {
+    const parent = node.getParent();
+    // 1 Skip imports/exports
+    if (parent?.getKind() === SyntaxKind.ImportDeclaration) return true;
+    if (parent?.getKind() === SyntaxKind.ExportDeclaration) return true;
+    // 2 Skip literals that are inside call expressions (direct or nested)
+    if (
+      parent?.getKind() === SyntaxKind.CallExpression ||
+      parent?.getFirstAncestorByKind(SyntaxKind.CallExpression)
+    ) {
       return true;
     }
-    // allow short strings
+    if (
+      parent?.getKind() === SyntaxKind.ElementAccessExpression &&
+      parent.getArgumentExpression?.() === node
+    ) {
+      return true; // skip array/object key
+    }
+    // 3 Allow short strings
     if (typeof text === "string" && text.length <= 1) return true;
-    // allow sentinel numbers
+    // 4 Allow sentinel numbers
     if (text === "0" || text === "1" || text === "-1") return true;
-    // allow known safe strings (like "UNKNOWN")
+    // 5 Allow known safe strings (like "UNKNOWN")
     if (this.safeStrings.includes(text)) return true;
+    // 6 Allow SQL-style placeholders (:variable) inside string/template
+    if (typeof text === "string" && /:\w+/.test(text)) {
+      return true;
+    }
     return false;
   }
   // helper to check if file is a constants file
   isConstantsFile(filePath) {
     const lower = filePath.toLowerCase();
-    return lower.endsWith("constants.ts") || lower.includes("/constants/");
+    // common suffixes/patterns for utility or structural files
+    const ignoredSuffixes = [
+      ".constants.ts",
+      ".const.ts",
+      ".enum.ts",
+      ".interface.ts",
+      ".response.ts",
+      ".request.ts",
+      ".res.ts",
+      ".req.ts",
+    ];
+    // 1 direct suffix match
+    if (ignoredSuffixes.some(suffix => lower.endsWith(suffix))) {
+      return true;
+    }
+    // 2 matches dto.xxx.ts (multi-dot dto files)
+    if (/\.dto\.[^.]+\.ts$/.test(lower)) {
+      return true;
+    }
+    // 3 matches folder-based conventions
+    if (
+      lower.includes("/constants/") ||
+      lower.includes("/enums/") ||
+      lower.includes("/interfaces/")
+    ) {
+      return true;
+    }
+    return false;
+  }
+  isIgnoredFile(filePath) {
+    const ignoredPatterns = [
+      /\.test\./i,
+      /\.tests\./i,
+      /\.spec\./i,
+      /\.mock\./i,
+      /\.css$/i,
+      /\.scss$/i,
+      /\.html$/i,
+      /\.json$/i,
+      /\.md$/i,
+      /\.svg$/i,
+      /\.png$/i,
+      /\.jpg$/i,
+      /\.jpeg$/i,
+      /\.gif$/i,
+      /\.bmp$/i,
+      /\.ico$/i,
+      /\.lock$/i,
+      /\.log$/i,
+      /\/test\//i,
+      /\/tests\//i,
+      /\/spec\//i
+    ];
+    return ignoredPatterns.some((regex) => regex.test(filePath));
   }
 }

package/rules/common/C060_no_override_superclass/analyzer.js ADDED Viewed

@@ -0,0 +1,180 @@
+/**
+ * C060 Main Analyzer - Do not override superclass methods and ignore critical logic
+ * Primary: Preserve important behavior or lifecycle logic defined in the superclass to ensure correctness and prevent silent errors.
+ * Fallback: Regex-based for all other cases
+ */
+const C060SymbolBasedAnalyzer = require('./symbol-based-analyzer');
+class C060Analyzer {
+  constructor(options = {}) {
+    if (process.env.SUNLINT_DEBUG) {
+      console.log(`🔧 [C060] Constructor called with options:`, !!options);
+      console.log(`🔧 [C060] Options type:`, typeof options, Object.keys(options || {}));
+    }
+    this.ruleId = 'C060';
+    this.ruleName = 'Do not override superclass methods and ignore critical logic';
+    this.description = 'Preserve important behavior or lifecycle logic defined in the superclass to ensure correctness and prevent silent errors.';
+    this.semanticEngine = options.semanticEngine || null;
+    this.verbose = options.verbose || false;
+    // Configuration
+    this.config = {
+      useSymbolBased: true,      // Primary approach
+      fallbackToRegex: false,     // Only when symbol fails completely
+      symbolBasedOnly: false     // Can be set to true for pure mode
+    };
+    // Initialize both analyzers
+    try {
+      this.symbolAnalyzer = new C060SymbolBasedAnalyzer(this.semanticEngine);
+      if (process.env.SUNLINT_DEBUG) {
+        console.log(`🔧 [C060] Symbol analyzer created successfully`);
+      }
+    } catch (error) {
+      console.error(`🔧 [C060] Error creating symbol analyzer:`, error);
+    }
+  }
+  /**
+   * Initialize with semantic engine
+   */
+  async initialize(semanticEngine = null) {
+    if (semanticEngine) {
+      this.semanticEngine = semanticEngine;
+    }
+    this.verbose = semanticEngine?.verbose || false;
+    // Initialize both analyzers
+    await this.symbolAnalyzer.initialize(semanticEngine);
+    // Ensure verbose flag is propagated
+    this.symbolAnalyzer.verbose = this.verbose;
+    if (this.verbose) {
+      console.log(`🔧 [C060 Hybrid] Analyzer initialized - verbose: ${this.verbose}`);
+    }
+  }
+  async analyze(files, language, options = {}) {
+    if (process.env.SUNLINT_DEBUG) {
+      console.log(`🔧 [C060] analyze() method called with ${files.length} files, language: ${language}`);
+    }
+    const violations = [];
+    for (const filePath of files) {
+      try {
+        if (process.env.SUNLINT_DEBUG) {
+          console.log(`🔧 [C060] Processing file: ${filePath}`);
+        }
+        const fileViolations = await this.analyzeFile(filePath, options);
+        violations.push(...fileViolations);
+        if (process.env.SUNLINT_DEBUG) {
+          console.log(`🔧 [C060] File ${filePath}: Found ${fileViolations.length} violations`);
+        }
+      } catch (error) {
+        console.warn(`❌ [C060] Analysis failed for ${filePath}:`, error.message);
+      }
+    }
+    if (process.env.SUNLINT_DEBUG) {
+      console.log(`🔧 [C060] Total violations found: ${violations.length}`);
+    }
+    return violations;
+  }
+  async analyzeFile(filePath, options = {}) {
+    if (process.env.SUNLINT_DEBUG) {
+      console.log(`🔧 [C060] analyzeFile() called for: ${filePath}`);
+    }
+    // 1. Try Symbol-based analysis first (primary)
+    if (this.config.useSymbolBased &&
+        this.semanticEngine?.project &&
+        this.semanticEngine?.initialized) {
+      try {
+        if (process.env.SUNLINT_DEBUG) {
+          console.log(`🔧 [C060] Trying symbol-based analysis...`);
+        }
+        const sourceFile = this.semanticEngine.project.getSourceFile(filePath);
+        if (sourceFile) {
+          if (process.env.SUNLINT_DEBUG) {
+            console.log(`🔧 [C060] Source file found, analyzing with symbol-based...`);
+          }
+          const violations = await this.symbolAnalyzer.analyzeFileWithSymbols(filePath, { ...options, verbose: options.verbose });
+          // Mark violations with analysis strategy
+          violations.forEach(v => v.analysisStrategy = 'symbol-based');
+          if (process.env.SUNLINT_DEBUG) {
+            console.log(`✅ [C060] Symbol-based analysis: ${violations.length} violations`);
+          }
+          return violations; // Return even if 0 violations - symbol analysis completed successfully
+        } else {
+          if (process.env.SUNLINT_DEBUG) {
+            console.log(`⚠️ [C060] Source file not found in project`);
+          }
+        }
+      } catch (error) {
+        console.warn(`⚠️ [C060] Symbol analysis failed: ${error.message}`);
+        // Continue to fallback
+      }
+    } else {
+      if (process.env.SUNLINT_DEBUG) {
+        console.log(`🔄 [C060] Symbol analysis conditions check:`);
+        console.log(`  - useSymbolBased: ${this.config.useSymbolBased}`);
+        console.log(`  - semanticEngine: ${!!this.semanticEngine}`);
+        console.log(`  - semanticEngine.project: ${!!this.semanticEngine?.project}`);
+        console.log(`  - semanticEngine.initialized: ${this.semanticEngine?.initialized}`);
+        console.log(`🔄 [C060] Symbol analysis unavailable, using regex fallback`);
+      }
+    }
+    if (options?.verbose) {
+      console.log(`🔧 [C060] No analysis methods succeeded, returning empty`);
+    }
+    return [];
+  }
+  async analyzeFileBasic(filePath, options = {}) {
+    console.log(`🔧 [C060] analyzeFileBasic() called for: ${filePath}`);
+    console.log(`🔧 [C060] semanticEngine exists: ${!!this.semanticEngine}`);
+    console.log(`🔧 [C060] symbolAnalyzer exists: ${!!this.symbolAnalyzer}`);
+    try {
+      // Try symbol-based analysis first
+      if (this.semanticEngine?.isSymbolEngineReady?.() &&
+          this.semanticEngine.project) {
+        if (this.verbose) {
+          console.log(`🔍 [C060] Using symbol-based analysis for ${filePath}`);
+        }
+        const violations = await this.symbolAnalyzer.analyzeFileBasic(filePath, options);
+        return violations;
+      }
+    } catch (error) {
+      if (this.verbose) {
+        console.warn(`⚠️ [C060] Symbol analysis failed: ${error.message}`);
+      }
+    }
+  }
+  /**
+   * Methods for compatibility with different engine invocation patterns
+   */
+  async analyzeFileWithSymbols(filePath, options = {}) {
+    return this.analyzeFile(filePath, options);
+  }
+  async analyzeWithSemantics(filePath, options = {}) {
+    return this.analyzeFile(filePath, options);
+  }
+}
+module.exports = C060Analyzer;

package/rules/common/C060_no_override_superclass/config.json ADDED Viewed

@@ -0,0 +1,50 @@
+{
+  "id": "C060",
+  "name": "C060_do_not_override_superclass_methods_and_ignore_critical_logic",
+  "category": "architecture",
+  "description": "C060 - Do not override superclass methods and ignore critical logic",
+  "severity": "warning",
+  "enabled": true,
+  "semantic": {
+    "enabled": true,
+    "priority": "high",
+    "fallback": "heuristic"
+  },
+  "patterns": {
+    "include": [
+      "**/*.js",
+      "**/*.ts",
+      "**/*.jsx",
+      "**/*.tsx"
+    ],
+    "exclude": [
+      "**/*.test.*",
+      "**/*.spec.*",
+      "**/*.mock.*",
+      "**/test/**",
+      "**/tests/**",
+      "**/spec/**"
+    ]
+  },
+  "options": {
+    "strictMode": false,
+    "allowedDbMethods": [],
+    "repositoryPatterns": [
+      "*Repository*",
+      "*Repo*",
+      "*DAO*",
+      "*Store*"
+    ],
+    "servicePatterns": [
+      "*Service*",
+      "*UseCase*",
+      "*Handler*",
+      "*Manager*"
+    ],
+    "complexityThreshold": {
+      "methodLength": 200,
+      "cyclomaticComplexity": 5,
+      "nestedDepth": 3
+    }
+  }
+}