@trailofbits/vsix-audit 0.1.2 → 0.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +26 -32
- package/dist/cli.d.ts.map +1 -1
- package/dist/cli.js +9 -242
- package/dist/cli.js.map +1 -1
- package/dist/formatters.d.ts +63 -0
- package/dist/formatters.d.ts.map +1 -0
- package/dist/formatters.js +268 -0
- package/dist/formatters.js.map +1 -0
- package/dist/scanner/bundler.d.ts +1 -2
- package/dist/scanner/bundler.d.ts.map +1 -1
- package/dist/scanner/bundler.js +12 -9
- package/dist/scanner/bundler.js.map +1 -1
- package/dist/scanner/cache.d.ts +10 -0
- package/dist/scanner/cache.d.ts.map +1 -1
- package/dist/scanner/cache.js +29 -1
- package/dist/scanner/cache.js.map +1 -1
- package/dist/scanner/capabilities.d.ts.map +1 -1
- package/dist/scanner/capabilities.js +26 -18
- package/dist/scanner/capabilities.js.map +1 -1
- package/dist/scanner/checks/ast.d.ts.map +1 -1
- package/dist/scanner/checks/ast.js +21 -41
- package/dist/scanner/checks/ast.js.map +1 -1
- package/dist/scanner/checks/ioc.d.ts.map +1 -1
- package/dist/scanner/checks/ioc.js +18 -8
- package/dist/scanner/checks/ioc.js.map +1 -1
- package/dist/scanner/checks/ioc.test.js +80 -0
- package/dist/scanner/checks/ioc.test.js.map +1 -1
- package/dist/scanner/checks/obfuscation.d.ts.map +1 -1
- package/dist/scanner/checks/obfuscation.js +11 -12
- package/dist/scanner/checks/obfuscation.js.map +1 -1
- package/dist/scanner/checks/package.d.ts.map +1 -1
- package/dist/scanner/checks/package.js +15 -1
- package/dist/scanner/checks/package.js.map +1 -1
- package/dist/scanner/checks/package.test.js +5 -1
- package/dist/scanner/checks/package.test.js.map +1 -1
- package/dist/scanner/checks/telemetry.d.ts +6 -0
- package/dist/scanner/checks/telemetry.d.ts.map +1 -0
- package/dist/scanner/checks/telemetry.js +470 -0
- package/dist/scanner/checks/telemetry.js.map +1 -0
- package/dist/scanner/checks/telemetry.test.d.ts +2 -0
- package/dist/scanner/checks/telemetry.test.d.ts.map +1 -0
- package/dist/scanner/checks/telemetry.test.js +583 -0
- package/dist/scanner/checks/telemetry.test.js.map +1 -0
- package/dist/scanner/checks/yara.d.ts +2 -5
- package/dist/scanner/checks/yara.d.ts.map +1 -1
- package/dist/scanner/checks/yara.js +112 -69
- package/dist/scanner/checks/yara.js.map +1 -1
- package/dist/scanner/checks/yara.test.js +1 -10
- package/dist/scanner/checks/yara.test.js.map +1 -1
- package/dist/scanner/download.d.ts +0 -5
- package/dist/scanner/download.d.ts.map +1 -1
- package/dist/scanner/download.js +94 -86
- package/dist/scanner/download.js.map +1 -1
- package/dist/scanner/download.test.js +1 -16
- package/dist/scanner/download.test.js.map +1 -1
- package/dist/scanner/index.d.ts +4 -3
- package/dist/scanner/index.d.ts.map +1 -1
- package/dist/scanner/index.js +83 -49
- package/dist/scanner/index.js.map +1 -1
- package/dist/scanner/loaders/zoo.d.ts.map +1 -1
- package/dist/scanner/loaders/zoo.js +35 -1
- package/dist/scanner/loaders/zoo.js.map +1 -1
- package/dist/scanner/types.d.ts +45 -29
- package/dist/scanner/types.d.ts.map +1 -1
- package/dist/scanner/types.js +1 -1
- package/dist/scanner/types.js.map +1 -1
- package/dist/scanner/utils.d.ts +26 -4
- package/dist/scanner/utils.d.ts.map +1 -1
- package/dist/scanner/utils.js +59 -13
- package/dist/scanner/utils.js.map +1 -1
- package/dist/scanner/vsix.d.ts +6 -0
- package/dist/scanner/vsix.d.ts.map +1 -1
- package/dist/scanner/vsix.js +60 -24
- package/dist/scanner/vsix.js.map +1 -1
- package/dist/scanner/vsix.test.js +240 -3
- package/dist/scanner/vsix.test.js.map +1 -1
- package/package.json +1 -1
- package/zoo/signatures/yara/README.md +7 -4
- package/zoo/telemetry/known-services.txt +27 -0
package/dist/scanner/download.js
CHANGED
|
@@ -3,11 +3,59 @@ import { copyFile, mkdir } from "node:fs/promises";
|
|
|
3
3
|
import { dirname, join } from "node:path";
|
|
4
4
|
import { pipeline } from "node:stream/promises";
|
|
5
5
|
import { Readable } from "node:stream";
|
|
6
|
-
import { ensureCacheDir, getCachedPath, isCached } from "./cache.js";
|
|
6
|
+
import { ensureCacheDir, evictStaleEntries, getCachedPath, isCached } from "./cache.js";
|
|
7
7
|
const GALLERY_API_URL = "https://marketplace.visualstudio.com/_apis/public/gallery/extensionquery";
|
|
8
8
|
const GALLERY_API_VERSION = "7.1-preview.1";
|
|
9
9
|
const OPENVSX_API_URL = "https://open-vsx.org/api";
|
|
10
10
|
const CURSOR_API_URL = "https://marketplace.cursorapi.com/_apis/public/gallery/extensionquery";
|
|
11
|
+
function isRecord(value) {
|
|
12
|
+
return typeof value === "object" && value !== null && !Array.isArray(value);
|
|
13
|
+
}
|
|
14
|
+
/**
|
|
15
|
+
* Validate that an API response matches the GalleryResponse shape.
|
|
16
|
+
* Throws with a descriptive message when the response structure
|
|
17
|
+
* is unexpected.
|
|
18
|
+
*/
|
|
19
|
+
function validateGalleryResponse(data, registryName) {
|
|
20
|
+
if (!isRecord(data)) {
|
|
21
|
+
throw new Error(`Unexpected response from ${registryName}: ` + `expected object, got ${typeof data}`);
|
|
22
|
+
}
|
|
23
|
+
const results = data["results"];
|
|
24
|
+
if (!Array.isArray(results)) {
|
|
25
|
+
throw new Error(`Unexpected response from ${registryName}: ` + "missing results array");
|
|
26
|
+
}
|
|
27
|
+
if (results.length === 0) {
|
|
28
|
+
throw new Error(`Unexpected response from ${registryName}: ` + "results array is empty");
|
|
29
|
+
}
|
|
30
|
+
const firstResult = results[0];
|
|
31
|
+
if (!isRecord(firstResult)) {
|
|
32
|
+
throw new Error(`Unexpected response from ${registryName}: ` + "results[0] is not an object");
|
|
33
|
+
}
|
|
34
|
+
if (!Array.isArray(firstResult["extensions"])) {
|
|
35
|
+
throw new Error(`Unexpected response from ${registryName}: ` + "missing extensions array");
|
|
36
|
+
}
|
|
37
|
+
return data;
|
|
38
|
+
}
|
|
39
|
+
/**
|
|
40
|
+
* Validate that an API response matches the OpenVSXExtension shape.
|
|
41
|
+
* Checks that required fields (namespace, name, version) exist and
|
|
42
|
+
* are strings.
|
|
43
|
+
*/
|
|
44
|
+
function validateOpenVSXResponse(data) {
|
|
45
|
+
if (!isRecord(data)) {
|
|
46
|
+
throw new Error("Unexpected response from OpenVSX: " + `expected object, got ${typeof data}`);
|
|
47
|
+
}
|
|
48
|
+
if (typeof data["namespace"] !== "string" || data["namespace"] === "") {
|
|
49
|
+
throw new Error("Unexpected response from OpenVSX: " + "missing or invalid namespace field");
|
|
50
|
+
}
|
|
51
|
+
if (typeof data["name"] !== "string" || data["name"] === "") {
|
|
52
|
+
throw new Error("Unexpected response from OpenVSX: " + "missing or invalid name field");
|
|
53
|
+
}
|
|
54
|
+
if (typeof data["version"] !== "string" || data["version"] === "") {
|
|
55
|
+
throw new Error("Unexpected response from OpenVSX: " + "missing or invalid version field");
|
|
56
|
+
}
|
|
57
|
+
return data;
|
|
58
|
+
}
|
|
11
59
|
/**
|
|
12
60
|
* Parse an extension ID in the format "publisher.name" or "publisher.name@version"
|
|
13
61
|
* Optionally with registry prefix: "openvsx:publisher.name" or "marketplace:publisher.name"
|
|
@@ -53,9 +101,11 @@ export function parseExtensionId(input) {
|
|
|
53
101
|
return result;
|
|
54
102
|
}
|
|
55
103
|
/**
|
|
56
|
-
*
|
|
104
|
+
* Shared Gallery API query for VS Code Marketplace and Cursor.
|
|
105
|
+
* Both registries use the same protocol; only the URL and
|
|
106
|
+
* registry label differ.
|
|
57
107
|
*/
|
|
58
|
-
|
|
108
|
+
async function queryGalleryApi(apiUrl, registry, registryLabel, publisher, name, version) {
|
|
59
109
|
const extensionId = `${publisher}.${name}`;
|
|
60
110
|
const requestBody = {
|
|
61
111
|
filters: [
|
|
@@ -67,7 +117,7 @@ export async function queryExtension(publisher, name, version) {
|
|
|
67
117
|
],
|
|
68
118
|
flags: 0x200 | 0x80 | 0x1, // Include versions, files, and statistics
|
|
69
119
|
};
|
|
70
|
-
const response = await fetch(
|
|
120
|
+
const response = await fetch(apiUrl, {
|
|
71
121
|
method: "POST",
|
|
72
122
|
headers: {
|
|
73
123
|
"Content-Type": "application/json",
|
|
@@ -76,16 +126,14 @@ export async function queryExtension(publisher, name, version) {
|
|
|
76
126
|
body: JSON.stringify(requestBody),
|
|
77
127
|
});
|
|
78
128
|
if (!response.ok) {
|
|
79
|
-
throw new Error(
|
|
129
|
+
throw new Error(`${registryLabel} API error: ${response.status} ${response.statusText}`);
|
|
80
130
|
}
|
|
81
|
-
const data = (await response.json());
|
|
82
|
-
const
|
|
83
|
-
const ext = extensions?.[0];
|
|
131
|
+
const data = validateGalleryResponse(await response.json(), registryLabel);
|
|
132
|
+
const ext = data.results[0]?.extensions[0];
|
|
84
133
|
if (!ext) {
|
|
85
|
-
throw new Error(`Extension not found: ${extensionId}`);
|
|
134
|
+
throw new Error(`Extension not found on ${registryLabel}: ${extensionId}`);
|
|
86
135
|
}
|
|
87
136
|
const versions = ext.versions ?? [];
|
|
88
|
-
// Find the requested version or use latest
|
|
89
137
|
let targetVersion = versions[0];
|
|
90
138
|
if (version) {
|
|
91
139
|
const found = versions.find((v) => v.version === version);
|
|
@@ -97,7 +145,6 @@ export async function queryExtension(publisher, name, version) {
|
|
|
97
145
|
if (!targetVersion) {
|
|
98
146
|
throw new Error(`No versions available for ${extensionId}`);
|
|
99
147
|
}
|
|
100
|
-
// Get install count from statistics
|
|
101
148
|
const installStat = ext.statistics?.find((s) => s.statisticName === "install");
|
|
102
149
|
const result = {
|
|
103
150
|
extensionId,
|
|
@@ -105,7 +152,7 @@ export async function queryExtension(publisher, name, version) {
|
|
|
105
152
|
name: ext.extensionName,
|
|
106
153
|
version: targetVersion.version,
|
|
107
154
|
lastUpdated: targetVersion.lastUpdated,
|
|
108
|
-
registry
|
|
155
|
+
registry,
|
|
109
156
|
};
|
|
110
157
|
if (ext.displayName) {
|
|
111
158
|
result.displayName = ext.displayName;
|
|
@@ -118,6 +165,12 @@ export async function queryExtension(publisher, name, version) {
|
|
|
118
165
|
}
|
|
119
166
|
return result;
|
|
120
167
|
}
|
|
168
|
+
/**
|
|
169
|
+
* Query the VS Code Marketplace for extension metadata
|
|
170
|
+
*/
|
|
171
|
+
export async function queryExtension(publisher, name, version) {
|
|
172
|
+
return queryGalleryApi(GALLERY_API_URL, "marketplace", "VS Code Marketplace", publisher, name, version);
|
|
173
|
+
}
|
|
121
174
|
/**
|
|
122
175
|
* Query OpenVSX for extension metadata
|
|
123
176
|
*/
|
|
@@ -133,7 +186,7 @@ export async function queryOpenVSX(publisher, name, version) {
|
|
|
133
186
|
}
|
|
134
187
|
throw new Error(`OpenVSX API error: ${response.status} ${response.statusText}`);
|
|
135
188
|
}
|
|
136
|
-
const data = (await response.json());
|
|
189
|
+
const data = validateOpenVSXResponse(await response.json());
|
|
137
190
|
const result = {
|
|
138
191
|
extensionId,
|
|
139
192
|
publisher: data.namespace,
|
|
@@ -159,67 +212,7 @@ export async function queryOpenVSX(publisher, name, version) {
|
|
|
159
212
|
* Query Cursor Extension Marketplace for extension metadata
|
|
160
213
|
*/
|
|
161
214
|
export async function queryCursor(publisher, name, version) {
|
|
162
|
-
|
|
163
|
-
const requestBody = {
|
|
164
|
-
filters: [
|
|
165
|
-
{
|
|
166
|
-
criteria: [{ filterType: 7, value: extensionId }],
|
|
167
|
-
pageSize: 1,
|
|
168
|
-
pageNumber: 1,
|
|
169
|
-
},
|
|
170
|
-
],
|
|
171
|
-
flags: 0x200 | 0x80 | 0x1, // Include versions, files, and statistics
|
|
172
|
-
};
|
|
173
|
-
const response = await fetch(CURSOR_API_URL, {
|
|
174
|
-
method: "POST",
|
|
175
|
-
headers: {
|
|
176
|
-
"Content-Type": "application/json",
|
|
177
|
-
Accept: `application/json;api-version=${GALLERY_API_VERSION}`,
|
|
178
|
-
},
|
|
179
|
-
body: JSON.stringify(requestBody),
|
|
180
|
-
});
|
|
181
|
-
if (!response.ok) {
|
|
182
|
-
throw new Error(`Cursor API error: ${response.status} ${response.statusText}`);
|
|
183
|
-
}
|
|
184
|
-
const data = (await response.json());
|
|
185
|
-
const extensions = data.results?.[0]?.extensions;
|
|
186
|
-
const ext = extensions?.[0];
|
|
187
|
-
if (!ext) {
|
|
188
|
-
throw new Error(`Extension not found on Cursor: ${extensionId}`);
|
|
189
|
-
}
|
|
190
|
-
const versions = ext.versions ?? [];
|
|
191
|
-
// Find the requested version or use latest
|
|
192
|
-
let targetVersion = versions[0];
|
|
193
|
-
if (version) {
|
|
194
|
-
const found = versions.find((v) => v.version === version);
|
|
195
|
-
if (!found) {
|
|
196
|
-
throw new Error(`Version ${version} not found for ${extensionId}. Latest: ${versions[0]?.version}`);
|
|
197
|
-
}
|
|
198
|
-
targetVersion = found;
|
|
199
|
-
}
|
|
200
|
-
if (!targetVersion) {
|
|
201
|
-
throw new Error(`No versions available for ${extensionId}`);
|
|
202
|
-
}
|
|
203
|
-
// Get install count from statistics
|
|
204
|
-
const installStat = ext.statistics?.find((s) => s.statisticName === "install");
|
|
205
|
-
const result = {
|
|
206
|
-
extensionId,
|
|
207
|
-
publisher: ext.publisher.publisherName,
|
|
208
|
-
name: ext.extensionName,
|
|
209
|
-
version: targetVersion.version,
|
|
210
|
-
lastUpdated: targetVersion.lastUpdated,
|
|
211
|
-
registry: "cursor",
|
|
212
|
-
};
|
|
213
|
-
if (ext.displayName) {
|
|
214
|
-
result.displayName = ext.displayName;
|
|
215
|
-
}
|
|
216
|
-
if (ext.shortDescription) {
|
|
217
|
-
result.description = ext.shortDescription;
|
|
218
|
-
}
|
|
219
|
-
if (installStat?.value !== undefined) {
|
|
220
|
-
result.installCount = installStat.value;
|
|
221
|
-
}
|
|
222
|
-
return result;
|
|
215
|
+
return queryGalleryApi(CURSOR_API_URL, "cursor", "Cursor Marketplace", publisher, name, version);
|
|
223
216
|
}
|
|
224
217
|
/**
|
|
225
218
|
* Get the download URL for a VSIX package from the VS Code Marketplace
|
|
@@ -239,15 +232,10 @@ export function getOpenVSXDownloadUrl(publisher, name, version) {
|
|
|
239
232
|
export function getCursorDownloadUrl(publisher, name, version) {
|
|
240
233
|
return `https://marketplace.cursorapi.com/_apis/public/gallery/publishers/${publisher}/vsextensions/${name}/${version}/vspackage`;
|
|
241
234
|
}
|
|
235
|
+
/** Maximum download size: 500 MB */
|
|
236
|
+
const MAX_DOWNLOAD_BYTES = 500 * 1024 * 1024;
|
|
242
237
|
/**
|
|
243
|
-
*
|
|
244
|
-
* @deprecated Use getMarketplaceDownloadUrl or getOpenVSXDownloadUrl instead
|
|
245
|
-
*/
|
|
246
|
-
export function getDownloadUrl(publisher, name, version) {
|
|
247
|
-
return getMarketplaceDownloadUrl(publisher, name, version);
|
|
248
|
-
}
|
|
249
|
-
/**
|
|
250
|
-
* Download a VSIX from a URL
|
|
238
|
+
* Download a VSIX from a URL with size limit enforcement.
|
|
251
239
|
*/
|
|
252
240
|
async function downloadVsixFromUrl(url, destPath) {
|
|
253
241
|
const response = await fetch(url);
|
|
@@ -257,12 +245,31 @@ async function downloadVsixFromUrl(url, destPath) {
|
|
|
257
245
|
if (!response.body) {
|
|
258
246
|
throw new Error("Empty response body");
|
|
259
247
|
}
|
|
260
|
-
//
|
|
248
|
+
// Check Content-Length if available
|
|
249
|
+
const contentLength = response.headers.get("content-length");
|
|
250
|
+
if (contentLength) {
|
|
251
|
+
const size = parseInt(contentLength, 10);
|
|
252
|
+
if (size > MAX_DOWNLOAD_BYTES) {
|
|
253
|
+
throw new Error(`Download too large: ${size} bytes ` + `(max ${MAX_DOWNLOAD_BYTES} bytes)`);
|
|
254
|
+
}
|
|
255
|
+
}
|
|
261
256
|
await mkdir(dirname(destPath), { recursive: true });
|
|
262
|
-
// Stream
|
|
257
|
+
// Stream with byte counter to enforce limit
|
|
258
|
+
let bytesWritten = 0;
|
|
263
259
|
const nodeStream = Readable.fromWeb(response.body);
|
|
264
260
|
const fileStream = createWriteStream(destPath);
|
|
265
|
-
await
|
|
261
|
+
const { Transform } = await import("node:stream");
|
|
262
|
+
const limiter = new Transform({
|
|
263
|
+
transform(chunk, _encoding, callback) {
|
|
264
|
+
bytesWritten += chunk.length;
|
|
265
|
+
if (bytesWritten > MAX_DOWNLOAD_BYTES) {
|
|
266
|
+
callback(new Error(`Download exceeded ${MAX_DOWNLOAD_BYTES} ` + `byte limit at ${bytesWritten} bytes`));
|
|
267
|
+
return;
|
|
268
|
+
}
|
|
269
|
+
callback(null, chunk);
|
|
270
|
+
},
|
|
271
|
+
});
|
|
272
|
+
await pipeline(nodeStream, limiter, fileStream);
|
|
266
273
|
}
|
|
267
274
|
/**
|
|
268
275
|
* Download a VSIX from the marketplace
|
|
@@ -331,8 +338,9 @@ export async function downloadExtension(extensionId, options) {
|
|
|
331
338
|
return { path: cachedPath, metadata, fromCache: true };
|
|
332
339
|
}
|
|
333
340
|
}
|
|
334
|
-
// Download to cache
|
|
341
|
+
// Download to cache, evicting stale entries first
|
|
335
342
|
await ensureCacheDir(registry);
|
|
343
|
+
await evictStaleEntries();
|
|
336
344
|
await downloadVsix(metadata.publisher, metadata.name, metadata.version, cachedPath, registry);
|
|
337
345
|
return { path: cachedPath, metadata, fromCache: false };
|
|
338
346
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"download.js","sourceRoot":"","sources":["../../src/scanner/download.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,SAAS,CAAC;AAC5C,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,kBAAkB,CAAC;AACnD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAChD,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACvC,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AA8CrE,MAAM,eAAe,GAAG,0EAA0E,CAAC;AAEnG,MAAM,mBAAmB,GAAG,eAAe,CAAC;AAE5C,MAAM,eAAe,GAAG,0BAA0B,CAAC;AAEnD,MAAM,cAAc,GAAG,uEAAuE,CAAC;AAsB/F;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAAC,KAAa;IAC5C,IAAI,QAAQ,GAAa,aAAa,CAAC;IACvC,IAAI,IAAI,GAAG,KAAK,CAAC;IAEjB,4BAA4B;IAC5B,IAAI,KAAK,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACjC,QAAQ,GAAG,SAAS,CAAC;QACrB,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACxB,CAAC;SAAM,IAAI,KAAK,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;QAC5C,QAAQ,GAAG,aAAa,CAAC;QACzB,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACzB,CAAC;SAAM,IAAI,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACvC,QAAQ,GAAG,QAAQ,CAAC;QACpB,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACxB,CAAC;IAED,2BAA2B;IAC3B,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;IACtC,IAAI,UAAU,GAAG,IAAI,CAAC;IACtB,IAAI,OAA2B,CAAC;IAEhC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;QAChB,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QACpC,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC;IACpC,CAAC;IAED,uBAAuB;IACvB,MAAM,QAAQ,GAAG,UAAU,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IACzC,IAAI,QAAQ,IAAI,CAAC,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CACb,0BAA0B,KAAK,8DAA8D,CAC9F,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;IAChD,MAAM,IAAI,GAAG,UAAU,CAAC,KAAK,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC;IAE5C,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CACb,0BAA0B,KAAK,8DAA8D,CAC9F,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAsB,EAAE,SAAS,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;IAChE,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,MAAM,CAAC,OAAO,GAAG,OAAO,CAAC;IAC3B,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAClC,SAAiB,EACjB,IAAY,EACZ,OAAgB;IAEhB,MAAM,WAAW,GAAG,GAAG,SAAS,IAAI,IAAI,EAAE,CAAC;IAE3C,MAAM,WAAW,GAAG;QAClB,OAAO,EAAE;YACP;gBACE,QAAQ,EAAE,CAAC,EAAE,UAAU,EAAE,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC;gBACjD,QAAQ,EAAE,CAAC;gBACX,UAAU,EAAE,CAAC;aACd;SACF;QACD,KAAK,EAAE,KAAK,GAAG,IAAI,GAAG,GAAG,EAAE,0CAA0C;KACtE,CAAC;IAEF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,eAAe,EAAE;QAC5C,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,MAAM,EAAE,gCAAgC,mBAAmB,EAAE;SAC9D;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;KAClC,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,0BAA0B,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IACtF,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAoB,CAAC;IACxD,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,UAAU,CAAC;IACjD,MAAM,GAAG,GAAG,UAAU,EAAE,CAAC,CAAC,CAAC,CAAC;IAE5B,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,MAAM,IAAI,KAAK,CAAC,wBAAwB,WAAW,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,IAAI,EAAE,CAAC;IAEpC,2CAA2C;IAC3C,IAAI,aAAa,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;IAChC,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,KAAK,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,OAAO,CAAC,CAAC;QAC1D,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CACb,WAAW,OAAO,kBAAkB,WAAW,aAAa,QAAQ,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,CACnF,CAAC;QACJ,CAAC;QACD,aAAa,GAAG,KAAK,CAAC;IACxB,CAAC;IAED,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,6BAA6B,WAAW,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,oCAAoC;IACpC,MAAM,WAAW,GAAG,GAAG,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,aAAa,KAAK,SAAS,CAAC,CAAC;IAE/E,MAAM,MAAM,GAAsB;QAChC,WAAW;QACX,SAAS,EAAE,GAAG,CAAC,SAAS,CAAC,aAAa;QACtC,IAAI,EAAE,GAAG,CAAC,aAAa;QACvB,OAAO,EAAE,aAAa,CAAC,OAAO;QAC9B,WAAW,EAAE,aAAa,CAAC,WAAW;QACtC,QAAQ,EAAE,aAAa;KACxB,CAAC;IAEF,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;QACpB,MAAM,CAAC,WAAW,GAAG,GAAG,CAAC,WAAW,CAAC;IACvC,CAAC;IACD,IAAI,GAAG,CAAC,gBAAgB,EAAE,CAAC;QACzB,MAAM,CAAC,WAAW,GAAG,GAAG,CAAC,gBAAgB,CAAC;IAC5C,CAAC;IACD,IAAI,WAAW,EAAE,KAAK,KAAK,SAAS,EAAE,CAAC;QACrC,MAAM,CAAC,YAAY,GAAG,WAAW,CAAC,KAAK,CAAC;IAC1C,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,SAAiB,EACjB,IAAY,EACZ,OAAgB;IAEhB,MAAM,WAAW,GAAG,GAAG,SAAS,IAAI,IAAI,EAAE,CAAC;IAC3C,MAAM,GAAG,GAAG,OAAO;QACjB,CAAC,CAAC,GAAG,eAAe,IAAI,SAAS,IAAI,IAAI,IAAI,OAAO,EAAE;QACtD,CAAC,CAAC,GAAG,eAAe,IAAI,SAAS,IAAI,IAAI,EAAE,CAAC;IAE9C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;IAClC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,mCAAmC,WAAW,EAAE,CAAC,CAAC;QACpE,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,sBAAsB,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAqB,CAAC;IAEzD,MAAM,MAAM,GAAsB;QAChC,WAAW;QACX,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,QAAQ,EAAE,SAAS;KACpB,CAAC;IAEF,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;QACnB,MAAM,CAAC,WAAW,GAAG,IAAI,CAAC,SAAS,CAAC;IACtC,CAAC;IACD,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;QACrB,MAAM,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC;IACxC,CAAC;IACD,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;QACrB,MAAM,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC;IACxC,CAAC;IACD,IAAI,IAAI,CAAC,aAAa,KAAK,SAAS,EAAE,CAAC;QACrC,MAAM,CAAC,YAAY,GAAG,IAAI,CAAC,aAAa,CAAC;IAC3C,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,SAAiB,EACjB,IAAY,EACZ,OAAgB;IAEhB,MAAM,WAAW,GAAG,GAAG,SAAS,IAAI,IAAI,EAAE,CAAC;IAE3C,MAAM,WAAW,GAAG;QAClB,OAAO,EAAE;YACP;gBACE,QAAQ,EAAE,CAAC,EAAE,UAAU,EAAE,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC;gBACjD,QAAQ,EAAE,CAAC;gBACX,UAAU,EAAE,CAAC;aACd;SACF;QACD,KAAK,EAAE,KAAK,GAAG,IAAI,GAAG,GAAG,EAAE,0CAA0C;KACtE,CAAC;IAEF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,cAAc,EAAE;QAC3C,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,MAAM,EAAE,gCAAgC,mBAAmB,EAAE;SAC9D;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;KAClC,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,qBAAqB,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IACjF,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAoB,CAAC;IACxD,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,UAAU,CAAC;IACjD,MAAM,GAAG,GAAG,UAAU,EAAE,CAAC,CAAC,CAAC,CAAC;IAE5B,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,MAAM,IAAI,KAAK,CAAC,kCAAkC,WAAW,EAAE,CAAC,CAAC;IACnE,CAAC;IAED,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,IAAI,EAAE,CAAC;IAEpC,2CAA2C;IAC3C,IAAI,aAAa,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;IAChC,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,KAAK,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,OAAO,CAAC,CAAC;QAC1D,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CACb,WAAW,OAAO,kBAAkB,WAAW,aAAa,QAAQ,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,CACnF,CAAC;QACJ,CAAC;QACD,aAAa,GAAG,KAAK,CAAC;IACxB,CAAC;IAED,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,6BAA6B,WAAW,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,oCAAoC;IACpC,MAAM,WAAW,GAAG,GAAG,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,aAAa,KAAK,SAAS,CAAC,CAAC;IAE/E,MAAM,MAAM,GAAsB;QAChC,WAAW;QACX,SAAS,EAAE,GAAG,CAAC,SAAS,CAAC,aAAa;QACtC,IAAI,EAAE,GAAG,CAAC,aAAa;QACvB,OAAO,EAAE,aAAa,CAAC,OAAO;QAC9B,WAAW,EAAE,aAAa,CAAC,WAAW;QACtC,QAAQ,EAAE,QAAQ;KACnB,CAAC;IAEF,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;QACpB,MAAM,CAAC,WAAW,GAAG,GAAG,CAAC,WAAW,CAAC;IACvC,CAAC;IACD,IAAI,GAAG,CAAC,gBAAgB,EAAE,CAAC;QACzB,MAAM,CAAC,WAAW,GAAG,GAAG,CAAC,gBAAgB,CAAC;IAC5C,CAAC;IACD,IAAI,WAAW,EAAE,KAAK,KAAK,SAAS,EAAE,CAAC;QACrC,MAAM,CAAC,YAAY,GAAG,WAAW,CAAC,KAAK,CAAC;IAC1C,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,yBAAyB,CACvC,SAAiB,EACjB,IAAY,EACZ,OAAe;IAEf,OAAO,WAAW,SAAS,uDAAuD,SAAS,cAAc,IAAI,IAAI,OAAO,0DAA0D,CAAC;AACrL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,SAAiB,EAAE,IAAY,EAAE,OAAe;IACpF,OAAO,GAAG,eAAe,IAAI,SAAS,IAAI,IAAI,IAAI,OAAO,SAAS,SAAS,IAAI,IAAI,IAAI,OAAO,OAAO,CAAC;AACxG,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,oBAAoB,CAAC,SAAiB,EAAE,IAAY,EAAE,OAAe;IACnF,OAAO,qEAAqE,SAAS,iBAAiB,IAAI,IAAI,OAAO,YAAY,CAAC;AACpI,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,cAAc,CAAC,SAAiB,EAAE,IAAY,EAAE,OAAe;IAC7E,OAAO,yBAAyB,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;AAC7D,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAAC,GAAW,EAAE,QAAgB;IAC9D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;IAClC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,oBAAoB,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IAChF,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;IACzC,CAAC;IAED,sCAAsC;IACtC,MAAM,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAEpD,gCAAgC;IAChC,MAAM,UAAU,GAAG,QAAQ,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAgD,CAAC,CAAC;IAC/F,MAAM,UAAU,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAC;IAE/C,MAAM,QAAQ,CAAC,UAAU,EAAE,UAAU,CAAC,CAAC;AACzC,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,SAAiB,EACjB,IAAY,EACZ,OAAe,EACf,QAAgB,EAChB,WAAqB,aAAa;IAElC,IAAI,GAAW,CAAC;IAChB,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QAC3B,GAAG,GAAG,qBAAqB,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IACxD,CAAC;SAAM,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,GAAG,GAAG,oBAAoB,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IACvD,CAAC;SAAM,CAAC;QACN,GAAG,GAAG,yBAAyB,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IAC5D,CAAC;IAED,MAAM,mBAAmB,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;AAC3C,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,WAAmB,EACnB,OAAyB;IAEzB,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,gBAAgB,CAAC,WAAW,CAAC,CAAC;IAC7E,MAAM,QAAQ,GAAG,OAAO,EAAE,QAAQ,KAAK,KAAK,CAAC;IAC7C,MAAM,aAAa,GAAG,OAAO,EAAE,aAAa,KAAK,IAAI,CAAC;IAEtD,8CAA8C;IAC9C,IAAI,QAA2B,CAAC;IAChC,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QAC3B,QAAQ,GAAG,MAAM,YAAY,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IAC1D,CAAC;SAAM,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,QAAQ,GAAG,MAAM,WAAW,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IACzD,CAAC;SAAM,CAAC;QACN,QAAQ,GAAG,MAAM,cAAc,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IAC5D,CAAC;IAED,8EAA8E;IAC9E,IAAI,OAAO,EAAE,OAAO,EAAE,CAAC;QACrB,MAAM,QAAQ,GAAG,GAAG,QAAQ,CAAC,SAAS,IAAI,QAAQ,CAAC,IAAI,IAAI,QAAQ,CAAC,OAAO,OAAO,CAAC;QACnF,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QAEjD,+BAA+B;QAC/B,IAAI,QAAQ,IAAI,CAAC,aAAa,EAAE,CAAC;YAC/B,MAAM,UAAU,GAAG,aAAa,CAC9B,QAAQ,EACR,QAAQ,CAAC,SAAS,EAClB,QAAQ,CAAC,IAAI,EACb,QAAQ,CAAC,OAAO,CACjB,CAAC;YACF,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;YAE7F,IAAI,MAAM,EAAE,CAAC;gBACX,iCAAiC;gBACjC,MAAM,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;gBAClD,MAAM,QAAQ,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBACrC,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;YACvD,CAAC;QACH,CAAC;QAED,iBAAiB;QACjB,MAAM,YAAY,CAAC,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAC5F,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IACxD,CAAC;IAED,sBAAsB;IACtB,MAAM,UAAU,GAAG,aAAa,CAAC,QAAQ,EAAE,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;IAEhG,0BAA0B;IAC1B,IAAI,QAAQ,IAAI,CAAC,aAAa,EAAE,CAAC;QAC/B,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;QAC7F,IAAI,MAAM,EAAE,CAAC;YACX,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QACzD,CAAC;IACH,CAAC;IAED,oBAAoB;IACpB,MAAM,cAAc,CAAC,QAAQ,CAAC,CAAC;IAC/B,MAAM,YAAY,CAAC,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAC;IAE9F,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;AAC1D,CAAC"}
|
|
1
|
+
{"version":3,"file":"download.js","sourceRoot":"","sources":["../../src/scanner/download.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,SAAS,CAAC;AAC5C,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,kBAAkB,CAAC;AACnD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAChD,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACvC,OAAO,EAAE,cAAc,EAAE,iBAAiB,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AA8CxF,MAAM,eAAe,GAAG,0EAA0E,CAAC;AAEnG,MAAM,mBAAmB,GAAG,eAAe,CAAC;AAE5C,MAAM,eAAe,GAAG,0BAA0B,CAAC;AAEnD,MAAM,cAAc,GAAG,uEAAuE,CAAC;AAe/F,SAAS,QAAQ,CAAC,KAAc;IAC9B,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;AAC9E,CAAC;AAED;;;;GAIG;AACH,SAAS,uBAAuB,CAAC,IAAa,EAAE,YAAoB;IAClE,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CACb,4BAA4B,YAAY,IAAI,GAAG,wBAAwB,OAAO,IAAI,EAAE,CACrF,CAAC;IACJ,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC;IAChC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,4BAA4B,YAAY,IAAI,GAAG,uBAAuB,CAAC,CAAC;IAC1F,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CAAC,4BAA4B,YAAY,IAAI,GAAG,wBAAwB,CAAC,CAAC;IAC3F,CAAC;IAED,MAAM,WAAW,GAAY,OAAO,CAAC,CAAC,CAAC,CAAC;IACxC,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,4BAA4B,YAAY,IAAI,GAAG,6BAA6B,CAAC,CAAC;IAChG,CAAC;IAED,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC,EAAE,CAAC;QAC9C,MAAM,IAAI,KAAK,CAAC,4BAA4B,YAAY,IAAI,GAAG,0BAA0B,CAAC,CAAC;IAC7F,CAAC;IAED,OAAO,IAAkC,CAAC;AAC5C,CAAC;AAED;;;;GAIG;AACH,SAAS,uBAAuB,CAAC,IAAa;IAC5C,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,oCAAoC,GAAG,wBAAwB,OAAO,IAAI,EAAE,CAAC,CAAC;IAChG,CAAC;IAED,IAAI,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,QAAQ,IAAI,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,EAAE,CAAC;QACtE,MAAM,IAAI,KAAK,CAAC,oCAAoC,GAAG,oCAAoC,CAAC,CAAC;IAC/F,CAAC;IAED,IAAI,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,QAAQ,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,EAAE,CAAC;QAC5D,MAAM,IAAI,KAAK,CAAC,oCAAoC,GAAG,+BAA+B,CAAC,CAAC;IAC1F,CAAC;IAED,IAAI,OAAO,IAAI,CAAC,SAAS,CAAC,KAAK,QAAQ,IAAI,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,CAAC;QAClE,MAAM,IAAI,KAAK,CAAC,oCAAoC,GAAG,kCAAkC,CAAC,CAAC;IAC7F,CAAC;IAED,OAAO,IAAmC,CAAC;AAC7C,CAAC;AASD;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAAC,KAAa;IAC5C,IAAI,QAAQ,GAAa,aAAa,CAAC;IACvC,IAAI,IAAI,GAAG,KAAK,CAAC;IAEjB,4BAA4B;IAC5B,IAAI,KAAK,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACjC,QAAQ,GAAG,SAAS,CAAC;QACrB,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACxB,CAAC;SAAM,IAAI,KAAK,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;QAC5C,QAAQ,GAAG,aAAa,CAAC;QACzB,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACzB,CAAC;SAAM,IAAI,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACvC,QAAQ,GAAG,QAAQ,CAAC;QACpB,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACxB,CAAC;IAED,2BAA2B;IAC3B,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;IACtC,IAAI,UAAU,GAAG,IAAI,CAAC;IACtB,IAAI,OAA2B,CAAC;IAEhC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;QAChB,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QACpC,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC;IACpC,CAAC;IAED,uBAAuB;IACvB,MAAM,QAAQ,GAAG,UAAU,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IACzC,IAAI,QAAQ,IAAI,CAAC,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CACb,0BAA0B,KAAK,8DAA8D,CAC9F,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;IAChD,MAAM,IAAI,GAAG,UAAU,CAAC,KAAK,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC;IAE5C,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CACb,0BAA0B,KAAK,8DAA8D,CAC9F,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAsB,EAAE,SAAS,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;IAChE,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,MAAM,CAAC,OAAO,GAAG,OAAO,CAAC;IAC3B,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,eAAe,CAC5B,MAAc,EACd,QAAkB,EAClB,aAAqB,EACrB,SAAiB,EACjB,IAAY,EACZ,OAAgB;IAEhB,MAAM,WAAW,GAAG,GAAG,SAAS,IAAI,IAAI,EAAE,CAAC;IAE3C,MAAM,WAAW,GAAG;QAClB,OAAO,EAAE;YACP;gBACE,QAAQ,EAAE,CAAC,EAAE,UAAU,EAAE,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC;gBACjD,QAAQ,EAAE,CAAC;gBACX,UAAU,EAAE,CAAC;aACd;SACF;QACD,KAAK,EAAE,KAAK,GAAG,IAAI,GAAG,GAAG,EAAE,0CAA0C;KACtE,CAAC;IAEF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,MAAM,EAAE;QACnC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,MAAM,EAAE,gCAAgC,mBAAmB,EAAE;SAC9D;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;KAClC,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,GAAG,aAAa,eAAe,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IAC3F,CAAC;IAED,MAAM,IAAI,GAAG,uBAAuB,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,EAAE,aAAa,CAAC,CAAC;IAC3E,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC;IAE3C,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,MAAM,IAAI,KAAK,CAAC,0BAA0B,aAAa,KAAK,WAAW,EAAE,CAAC,CAAC;IAC7E,CAAC;IAED,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,IAAI,EAAE,CAAC;IAEpC,IAAI,aAAa,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;IAChC,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,KAAK,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,OAAO,CAAC,CAAC;QAC1D,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CACb,WAAW,OAAO,kBAAkB,WAAW,aAAa,QAAQ,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,CACnF,CAAC;QACJ,CAAC;QACD,aAAa,GAAG,KAAK,CAAC;IACxB,CAAC;IAED,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,6BAA6B,WAAW,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,WAAW,GAAG,GAAG,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,aAAa,KAAK,SAAS,CAAC,CAAC;IAE/E,MAAM,MAAM,GAAsB;QAChC,WAAW;QACX,SAAS,EAAE,GAAG,CAAC,SAAS,CAAC,aAAa;QACtC,IAAI,EAAE,GAAG,CAAC,aAAa;QACvB,OAAO,EAAE,aAAa,CAAC,OAAO;QAC9B,WAAW,EAAE,aAAa,CAAC,WAAW;QACtC,QAAQ;KACT,CAAC;IAEF,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;QACpB,MAAM,CAAC,WAAW,GAAG,GAAG,CAAC,WAAW,CAAC;IACvC,CAAC;IACD,IAAI,GAAG,CAAC,gBAAgB,EAAE,CAAC;QACzB,MAAM,CAAC,WAAW,GAAG,GAAG,CAAC,gBAAgB,CAAC;IAC5C,CAAC;IACD,IAAI,WAAW,EAAE,KAAK,KAAK,SAAS,EAAE,CAAC;QACrC,MAAM,CAAC,YAAY,GAAG,WAAW,CAAC,KAAK,CAAC;IAC1C,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAClC,SAAiB,EACjB,IAAY,EACZ,OAAgB;IAEhB,OAAO,eAAe,CACpB,eAAe,EACf,aAAa,EACb,qBAAqB,EACrB,SAAS,EACT,IAAI,EACJ,OAAO,CACR,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,SAAiB,EACjB,IAAY,EACZ,OAAgB;IAEhB,MAAM,WAAW,GAAG,GAAG,SAAS,IAAI,IAAI,EAAE,CAAC;IAC3C,MAAM,GAAG,GAAG,OAAO;QACjB,CAAC,CAAC,GAAG,eAAe,IAAI,SAAS,IAAI,IAAI,IAAI,OAAO,EAAE;QACtD,CAAC,CAAC,GAAG,eAAe,IAAI,SAAS,IAAI,IAAI,EAAE,CAAC;IAE9C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;IAClC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,mCAAmC,WAAW,EAAE,CAAC,CAAC;QACpE,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,sBAAsB,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,IAAI,GAAG,uBAAuB,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;IAE5D,MAAM,MAAM,GAAsB;QAChC,WAAW;QACX,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,QAAQ,EAAE,SAAS;KACpB,CAAC;IAEF,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;QACnB,MAAM,CAAC,WAAW,GAAG,IAAI,CAAC,SAAS,CAAC;IACtC,CAAC;IACD,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;QACrB,MAAM,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC;IACxC,CAAC;IACD,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;QACrB,MAAM,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC;IACxC,CAAC;IACD,IAAI,IAAI,CAAC,aAAa,KAAK,SAAS,EAAE,CAAC;QACrC,MAAM,CAAC,YAAY,GAAG,IAAI,CAAC,aAAa,CAAC;IAC3C,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,SAAiB,EACjB,IAAY,EACZ,OAAgB;IAEhB,OAAO,eAAe,CAAC,cAAc,EAAE,QAAQ,EAAE,oBAAoB,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;AACnG,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,yBAAyB,CACvC,SAAiB,EACjB,IAAY,EACZ,OAAe;IAEf,OAAO,WAAW,SAAS,uDAAuD,SAAS,cAAc,IAAI,IAAI,OAAO,0DAA0D,CAAC;AACrL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,SAAiB,EAAE,IAAY,EAAE,OAAe;IACpF,OAAO,GAAG,eAAe,IAAI,SAAS,IAAI,IAAI,IAAI,OAAO,SAAS,SAAS,IAAI,IAAI,IAAI,OAAO,OAAO,CAAC;AACxG,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,oBAAoB,CAAC,SAAiB,EAAE,IAAY,EAAE,OAAe;IACnF,OAAO,qEAAqE,SAAS,iBAAiB,IAAI,IAAI,OAAO,YAAY,CAAC;AACpI,CAAC;AAED,oCAAoC;AACpC,MAAM,kBAAkB,GAAG,GAAG,GAAG,IAAI,GAAG,IAAI,CAAC;AAE7C;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAAC,GAAW,EAAE,QAAgB;IAC9D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;IAClC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,oBAAoB,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IAChF,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;IACzC,CAAC;IAED,oCAAoC;IACpC,MAAM,aAAa,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;IAC7D,IAAI,aAAa,EAAE,CAAC;QAClB,MAAM,IAAI,GAAG,QAAQ,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;QACzC,IAAI,IAAI,GAAG,kBAAkB,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,uBAAuB,IAAI,SAAS,GAAG,QAAQ,kBAAkB,SAAS,CAAC,CAAC;QAC9F,CAAC;IACH,CAAC;IAED,MAAM,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAEpD,4CAA4C;IAC5C,IAAI,YAAY,GAAG,CAAC,CAAC;IACrB,MAAM,UAAU,GAAG,QAAQ,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAgD,CAAC,CAAC;IAC/F,MAAM,UAAU,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAC;IAE/C,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAC;IAClD,MAAM,OAAO,GAAG,IAAI,SAAS,CAAC;QAC5B,SAAS,CAAC,KAAa,EAAE,SAAS,EAAE,QAAQ;YAC1C,YAAY,IAAI,KAAK,CAAC,MAAM,CAAC;YAC7B,IAAI,YAAY,GAAG,kBAAkB,EAAE,CAAC;gBACtC,QAAQ,CACN,IAAI,KAAK,CACP,qBAAqB,kBAAkB,GAAG,GAAG,iBAAiB,YAAY,QAAQ,CACnF,CACF,CAAC;gBACF,OAAO;YACT,CAAC;YACD,QAAQ,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;QACxB,CAAC;KACF,CAAC,CAAC;IAEH,MAAM,QAAQ,CAAC,UAAU,EAAE,OAAO,EAAE,UAAU,CAAC,CAAC;AAClD,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,SAAiB,EACjB,IAAY,EACZ,OAAe,EACf,QAAgB,EAChB,WAAqB,aAAa;IAElC,IAAI,GAAW,CAAC;IAChB,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QAC3B,GAAG,GAAG,qBAAqB,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IACxD,CAAC;SAAM,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,GAAG,GAAG,oBAAoB,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IACvD,CAAC;SAAM,CAAC;QACN,GAAG,GAAG,yBAAyB,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IAC5D,CAAC;IAED,MAAM,mBAAmB,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;AAC3C,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,WAAmB,EACnB,OAAyB;IAEzB,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,gBAAgB,CAAC,WAAW,CAAC,CAAC;IAC7E,MAAM,QAAQ,GAAG,OAAO,EAAE,QAAQ,KAAK,KAAK,CAAC;IAC7C,MAAM,aAAa,GAAG,OAAO,EAAE,aAAa,KAAK,IAAI,CAAC;IAEtD,8CAA8C;IAC9C,IAAI,QAA2B,CAAC;IAChC,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QAC3B,QAAQ,GAAG,MAAM,YAAY,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IAC1D,CAAC;SAAM,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,QAAQ,GAAG,MAAM,WAAW,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IACzD,CAAC;SAAM,CAAC;QACN,QAAQ,GAAG,MAAM,cAAc,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IAC5D,CAAC;IAED,8EAA8E;IAC9E,IAAI,OAAO,EAAE,OAAO,EAAE,CAAC;QACrB,MAAM,QAAQ,GAAG,GAAG,QAAQ,CAAC,SAAS,IAAI,QAAQ,CAAC,IAAI,IAAI,QAAQ,CAAC,OAAO,OAAO,CAAC;QACnF,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QAEjD,+BAA+B;QAC/B,IAAI,QAAQ,IAAI,CAAC,aAAa,EAAE,CAAC;YAC/B,MAAM,UAAU,GAAG,aAAa,CAC9B,QAAQ,EACR,QAAQ,CAAC,SAAS,EAClB,QAAQ,CAAC,IAAI,EACb,QAAQ,CAAC,OAAO,CACjB,CAAC;YACF,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;YAE7F,IAAI,MAAM,EAAE,CAAC;gBACX,iCAAiC;gBACjC,MAAM,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;gBAClD,MAAM,QAAQ,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBACrC,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;YACvD,CAAC;QACH,CAAC;QAED,iBAAiB;QACjB,MAAM,YAAY,CAAC,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAC5F,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IACxD,CAAC;IAED,sBAAsB;IACtB,MAAM,UAAU,GAAG,aAAa,CAAC,QAAQ,EAAE,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;IAEhG,0BAA0B;IAC1B,IAAI,QAAQ,IAAI,CAAC,aAAa,EAAE,CAAC;QAC/B,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;QAC7F,IAAI,MAAM,EAAE,CAAC;YACX,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;QACzD,CAAC;IACH,CAAC;IAED,kDAAkD;IAClD,MAAM,cAAc,CAAC,QAAQ,CAAC,CAAC;IAC/B,MAAM,iBAAiB,EAAE,CAAC;IAC1B,MAAM,YAAY,CAAC,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,OAAO,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAC;IAE9F,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;AAC1D,CAAC"}
|
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
import { describe, expect, it } from "vitest";
|
|
2
|
-
import { getCursorDownloadUrl,
|
|
2
|
+
import { getCursorDownloadUrl, getMarketplaceDownloadUrl, getOpenVSXDownloadUrl, parseExtensionId, } from "./download.js";
|
|
3
3
|
describe("parseExtensionId", () => {
|
|
4
4
|
it("parses publisher.name format", () => {
|
|
5
5
|
const result = parseExtensionId("ms-python.python");
|
|
@@ -92,21 +92,6 @@ describe("parseExtensionId", () => {
|
|
|
92
92
|
expect(() => parseExtensionId("openvsx:invalid")).toThrow("Invalid extension ID");
|
|
93
93
|
});
|
|
94
94
|
});
|
|
95
|
-
describe("getDownloadUrl", () => {
|
|
96
|
-
it("generates correct download URL", () => {
|
|
97
|
-
const url = getDownloadUrl("ms-python", "python", "2024.1.0");
|
|
98
|
-
expect(url).toBe("https://ms-python.gallery.vsassets.io/_apis/public/gallery/publisher/ms-python/extension/python/2024.1.0/assetbyname/Microsoft.VisualStudio.Services.VSIXPackage");
|
|
99
|
-
});
|
|
100
|
-
it("handles publisher with hyphen", () => {
|
|
101
|
-
const url = getDownloadUrl("ms-vscode", "cpptools", "1.0.0");
|
|
102
|
-
expect(url).toContain("ms-vscode.gallery.vsassets.io");
|
|
103
|
-
expect(url).toContain("/publisher/ms-vscode/");
|
|
104
|
-
});
|
|
105
|
-
it("handles extension name with special chars", () => {
|
|
106
|
-
const url = getDownloadUrl("pub", "my-ext", "1.0.0");
|
|
107
|
-
expect(url).toContain("/extension/my-ext/");
|
|
108
|
-
});
|
|
109
|
-
});
|
|
110
95
|
describe("getMarketplaceDownloadUrl", () => {
|
|
111
96
|
it("generates correct Marketplace download URL", () => {
|
|
112
97
|
const url = getMarketplaceDownloadUrl("ms-python", "python", "2024.1.0");
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"download.test.js","sourceRoot":"","sources":["../../src/scanner/download.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EACL,oBAAoB,EACpB,
|
|
1
|
+
{"version":3,"file":"download.test.js","sourceRoot":"","sources":["../../src/scanner/download.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EACL,oBAAoB,EACpB,yBAAyB,EACzB,qBAAqB,EACrB,gBAAgB,GACjB,MAAM,eAAe,CAAC;AAEvB,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;IAChC,EAAE,CAAC,8BAA8B,EAAE,GAAG,EAAE;QACtC,MAAM,MAAM,GAAG,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;QAEpD,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,aAAa,EAAE,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;QAC9C,MAAM,MAAM,GAAG,gBAAgB,CAAC,2BAA2B,CAAC,CAAC;QAE7D,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACxC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;QACxC,MAAM,MAAM,GAAG,gBAAgB,CAAC,0BAA0B,CAAC,CAAC;QAE5D,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,aAAa,EAAE,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2BAA2B,EAAE,GAAG,EAAE;QACnC,MAAM,MAAM,GAAG,gBAAgB,CAAC,0BAA0B,CAAC,CAAC;QAE5D,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACrC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACvC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6BAA6B,EAAE,GAAG,EAAE;QACrC,MAAM,MAAM,GAAG,gBAAgB,CAAC,4BAA4B,CAAC,CAAC;QAE9D,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wBAAwB,EAAE,GAAG,EAAE;QAChC,MAAM,MAAM,GAAG,gBAAgB,CAAC,qBAAqB,CAAC,CAAC;QAEvD,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACxC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,aAAa,EAAE,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;QAC7C,MAAM,MAAM,GAAG,gBAAgB,CAAC,2BAA2B,CAAC,CAAC;QAE7D,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACxC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACrC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,4BAA4B,EAAE,GAAG,EAAE;QACpC,MAAM,MAAM,GAAG,gBAAgB,CAAC,8BAA8B,CAAC,CAAC;QAEhE,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,aAAa,EAAE,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;QACjD,MAAM,MAAM,GAAG,gBAAgB,CAAC,uCAAuC,CAAC,CAAC;QAEzE,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACxC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uBAAuB,EAAE,GAAG,EAAE;QAC/B,MAAM,MAAM,GAAG,gBAAgB,CAAC,yBAAyB,CAAC,CAAC;QAE3D,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,aAAa,EAAE,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oCAAoC,EAAE,GAAG,EAAE;QAC5C,MAAM,MAAM,GAAG,gBAAgB,CAAC,kCAAkC,CAAC,CAAC;QAEpE,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACxC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6BAA6B,EAAE,GAAG,EAAE;QACrC,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;IAC3E,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2BAA2B,EAAE,GAAG,EAAE;QACnC,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;IAC5E,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sBAAsB,EAAE,GAAG,EAAE;QAC9B,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,YAAY,CAAC,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;IAC/E,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sBAAsB,EAAE,GAAG,EAAE;QAC9B,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACtE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;QACnD,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,iBAAiB,CAAC,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACpF,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,2BAA2B,EAAE,GAAG,EAAE;IACzC,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;QACpD,MAAM,GAAG,GAAG,yBAAyB,CAAC,WAAW,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC;QAEzE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CACd,kKAAkK,CACnK,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE;IACrC,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;QAChD,MAAM,GAAG,GAAG,qBAAqB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QAE7D,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,wEAAwE,CAAC,CAAC;IAC7F,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;QAC9C,MAAM,GAAG,GAAG,qBAAqB,CAAC,WAAW,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC;QAErE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CACd,wFAAwF,CACzF,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,sBAAsB,EAAE,GAAG,EAAE;IACpC,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;QAC/C,MAAM,GAAG,GAAG,oBAAoB,CAAC,WAAW,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC;QAEpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CACd,oHAAoH,CACrH,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oCAAoC,EAAE,GAAG,EAAE;QAC5C,MAAM,GAAG,GAAG,oBAAoB,CAAC,SAAS,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC;QAEjE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CACd,iHAAiH,CAClH,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,gDAAgD;AAChD,QAAQ,CAAC,IAAI,CAAC,iCAAiC,EAAE,GAAG,EAAE;IACpD,oEAAoE;IACpE,wDAAwD;IAExD,EAAE,CAAC,4BAA4B,EAAE,KAAK,IAAI,EAAE;QAC1C,oDAAoD;QACpD,wDAAwD;IAC1D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,4BAA4B,EAAE,KAAK,IAAI,EAAE;QAC1C,gDAAgD;QAChD,wDAAwD;IAC1D,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}
|
package/dist/scanner/index.d.ts
CHANGED
|
@@ -1,7 +1,8 @@
|
|
|
1
1
|
import type { BatchScanResult, CheckSummary, Finding, ModuleTimings, ScanOptions, ScanResult, Severity } from "./types.js";
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
export
|
|
2
|
+
import { MODULE_NAMES } from "./types.js";
|
|
3
|
+
import type { ModuleName } from "./types.js";
|
|
4
|
+
export { MODULE_NAMES };
|
|
5
|
+
export type { BatchScanResult, CheckSummary, Finding, ModuleName, ModuleTimings, ScanOptions, ScanResult, Severity, };
|
|
5
6
|
export type { BatchScanCallbacks, BatchScanOptions } from "./batch.js";
|
|
6
7
|
export { findVsixFiles, scanDirectory } from "./batch.js";
|
|
7
8
|
export declare function scanExtension(target: string, options: ScanOptions): Promise<ScanResult>;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":"AAkBA,OAAO,KAAK,EACV,eAAe,EACf,YAAY,EACZ,OAAO,EACP,aAAa,EACb,WAAW,EACX,UAAU,EACV,QAAQ,EAET,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC1C,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAG7C,OAAO,EAAE,YAAY,EAAE,CAAC;AACxB,YAAY,EACV,eAAe,EACf,YAAY,EACZ,OAAO,EACP,UAAU,EACV,aAAa,EACb,WAAW,EACX,UAAU,EACV,QAAQ,GACT,CAAC;AACF,YAAY,EAAE,kBAAkB,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AACvE,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AA0D1D,wBAAsB,aAAa,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC,CAgK7F"}
|
package/dist/scanner/index.js
CHANGED
|
@@ -3,11 +3,13 @@ import { checkAST } from "./checks/ast.js";
|
|
|
3
3
|
import { checkIocs } from "./checks/ioc.js";
|
|
4
4
|
import { checkObfuscation } from "./checks/obfuscation.js";
|
|
5
5
|
import { checkPackage } from "./checks/package.js";
|
|
6
|
-
import {
|
|
6
|
+
import { checkTelemetry } from "./checks/telemetry.js";
|
|
7
|
+
import { checkYara, getDefaultYaraRulesDir, isYaraAvailable, listYaraRules, } from "./checks/yara.js";
|
|
7
8
|
import { isScannable, SCANNABLE_EXTENSIONS_PATTERN, SCANNABLE_EXTENSIONS_UNICODE, } from "./constants.js";
|
|
8
9
|
import { loadZooData } from "./loaders/zoo.js";
|
|
10
|
+
import { MODULE_NAMES } from "./types.js";
|
|
9
11
|
import { loadExtension } from "./vsix.js";
|
|
10
|
-
export
|
|
12
|
+
export { MODULE_NAMES };
|
|
11
13
|
export { findVsixFiles, scanDirectory } from "./batch.js";
|
|
12
14
|
const SEVERITY_ORDER = {
|
|
13
15
|
low: 0,
|
|
@@ -69,70 +71,83 @@ export async function scanExtension(target, options) {
|
|
|
69
71
|
const inventory = [];
|
|
70
72
|
// Check YARA availability upfront
|
|
71
73
|
const yaraAvailable = await isYaraAvailable();
|
|
72
|
-
const
|
|
74
|
+
const yaraRulesDir = await getDefaultYaraRulesDir();
|
|
75
|
+
const yaraRules = yaraAvailable ? await listYaraRules(yaraRulesDir) : [];
|
|
76
|
+
// Initialize per-scan caches
|
|
77
|
+
contents.cache = new Map();
|
|
78
|
+
// Pre-compute string contents to avoid redundant conversions
|
|
79
|
+
const stringContents = new Map();
|
|
80
|
+
for (const [filename, buffer] of contents.files) {
|
|
81
|
+
if (isScannable(filename, SCANNABLE_EXTENSIONS_UNICODE)) {
|
|
82
|
+
stringContents.set(filename, buffer.toString("utf8"));
|
|
83
|
+
}
|
|
84
|
+
}
|
|
85
|
+
contents.stringContents = stringContents;
|
|
73
86
|
// Count files by type for inventory
|
|
74
87
|
const codeFileCount = countScannableFiles(contents, SCANNABLE_EXTENSIONS_PATTERN);
|
|
75
88
|
const textFileCount = countScannableFiles(contents, SCANNABLE_EXTENSIONS_UNICODE);
|
|
76
|
-
//
|
|
89
|
+
// Build module registry
|
|
90
|
+
const modules = [];
|
|
77
91
|
if (shouldRunModule("package", options)) {
|
|
78
|
-
|
|
79
|
-
|
|
80
|
-
|
|
81
|
-
|
|
82
|
-
|
|
83
|
-
|
|
84
|
-
|
|
92
|
+
modules.push({
|
|
93
|
+
name: "package",
|
|
94
|
+
run: () => checkPackage(contents, zooData),
|
|
95
|
+
inventory: {
|
|
96
|
+
name: "Package",
|
|
97
|
+
enabled: true,
|
|
98
|
+
description: "Blocklist, manifest analysis, " + "npm dependencies, lifecycle scripts",
|
|
99
|
+
},
|
|
85
100
|
});
|
|
86
101
|
}
|
|
87
|
-
// Obfuscation check (entropy + Unicode hiding)
|
|
88
102
|
if (shouldRunModule("obfuscation", options)) {
|
|
89
|
-
|
|
90
|
-
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
|
|
96
|
-
|
|
97
|
-
|
|
103
|
+
modules.push({
|
|
104
|
+
name: "obfuscation",
|
|
105
|
+
run: () => checkObfuscation(contents),
|
|
106
|
+
inventory: {
|
|
107
|
+
name: "Obfuscation",
|
|
108
|
+
enabled: true,
|
|
109
|
+
description: `Entropy and Unicode analysis ` + `across ${textFileCount} files`,
|
|
110
|
+
rulesApplied: 8,
|
|
111
|
+
filesExamined: textFileCount,
|
|
112
|
+
},
|
|
98
113
|
});
|
|
99
114
|
}
|
|
100
|
-
// AST analysis
|
|
101
115
|
if (shouldRunModule("ast", options)) {
|
|
102
|
-
|
|
103
|
-
|
|
104
|
-
|
|
105
|
-
|
|
106
|
-
|
|
107
|
-
|
|
108
|
-
|
|
109
|
-
|
|
110
|
-
|
|
116
|
+
modules.push({
|
|
117
|
+
name: "ast",
|
|
118
|
+
run: () => checkAST(contents),
|
|
119
|
+
inventory: {
|
|
120
|
+
name: "AST",
|
|
121
|
+
enabled: true,
|
|
122
|
+
description: `Structural code analysis across ` + `${codeFileCount} code files`,
|
|
123
|
+
rulesApplied: 7,
|
|
124
|
+
filesExamined: codeFileCount,
|
|
125
|
+
},
|
|
111
126
|
});
|
|
112
127
|
}
|
|
113
|
-
// IOC check
|
|
114
128
|
if (shouldRunModule("ioc", options)) {
|
|
115
|
-
|
|
116
|
-
|
|
117
|
-
|
|
118
|
-
|
|
119
|
-
|
|
120
|
-
|
|
121
|
-
|
|
129
|
+
modules.push({
|
|
130
|
+
name: "ioc",
|
|
131
|
+
run: () => checkIocs(contents, zooData),
|
|
132
|
+
inventory: {
|
|
133
|
+
name: "IOC",
|
|
134
|
+
enabled: true,
|
|
135
|
+
description: "Hashes, domains, IPs against threat intel",
|
|
136
|
+
},
|
|
122
137
|
});
|
|
123
138
|
}
|
|
124
|
-
// YARA check
|
|
125
139
|
if (shouldRunModule("yara", options)) {
|
|
126
140
|
if (yaraAvailable) {
|
|
127
|
-
|
|
128
|
-
|
|
129
|
-
|
|
130
|
-
|
|
131
|
-
|
|
132
|
-
|
|
133
|
-
|
|
134
|
-
|
|
135
|
-
|
|
141
|
+
modules.push({
|
|
142
|
+
name: "yara",
|
|
143
|
+
run: () => checkYara(contents),
|
|
144
|
+
inventory: {
|
|
145
|
+
name: "YARA",
|
|
146
|
+
enabled: true,
|
|
147
|
+
description: `${yaraRules.length} rules against all files`,
|
|
148
|
+
rulesApplied: yaraRules.length,
|
|
149
|
+
filesExamined: contents.files.size,
|
|
150
|
+
},
|
|
136
151
|
});
|
|
137
152
|
}
|
|
138
153
|
else {
|
|
@@ -144,6 +159,25 @@ export async function scanExtension(target, options) {
|
|
|
144
159
|
});
|
|
145
160
|
}
|
|
146
161
|
}
|
|
162
|
+
if (shouldRunModule("telemetry", options)) {
|
|
163
|
+
modules.push({
|
|
164
|
+
name: "telemetry",
|
|
165
|
+
run: () => checkTelemetry(contents, zooData),
|
|
166
|
+
inventory: {
|
|
167
|
+
name: "Telemetry",
|
|
168
|
+
enabled: true,
|
|
169
|
+
description: "Analytics and data collection detection",
|
|
170
|
+
filesExamined: codeFileCount,
|
|
171
|
+
},
|
|
172
|
+
});
|
|
173
|
+
}
|
|
174
|
+
// Execute all modules
|
|
175
|
+
for (const mod of modules) {
|
|
176
|
+
const start = performance.now();
|
|
177
|
+
findings.push(...(await mod.run()));
|
|
178
|
+
timings[mod.name] = performance.now() - start;
|
|
179
|
+
inventory.push(mod.inventory);
|
|
180
|
+
}
|
|
147
181
|
findings = deduplicateFindings(findings);
|
|
148
182
|
findings = filterBySeverity(findings, options.severity);
|
|
149
183
|
findings = sortFindings(findings);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AACxC,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACnD,OAAO,EACL,SAAS,EACT,sBAAsB,EACtB,eAAe,EACf,aAAa,GACd,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EACL,WAAW,EACX,4BAA4B,EAC5B,4BAA4B,GAC7B,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAW/C,OAAO,EAAE,
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AACxC,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACnD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EACL,SAAS,EACT,sBAAsB,EACtB,eAAe,EACf,aAAa,GACd,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EACL,WAAW,EACX,4BAA4B,EAC5B,4BAA4B,GAC7B,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAW/C,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAE1C,OAAO,EAAE,aAAa,EAAE,MAAM,WAAW,CAAC;AAE1C,OAAO,EAAE,YAAY,EAAE,CAAC;AAYxB,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAE1D,MAAM,cAAc,GAA6B;IAC/C,GAAG,EAAE,CAAC;IACN,MAAM,EAAE,CAAC;IACT,IAAI,EAAE,CAAC;IACP,QAAQ,EAAE,CAAC;CACZ,CAAC;AAEF,SAAS,gBAAgB,CAAC,QAAmB,EAAE,WAAqB;IAClE,MAAM,QAAQ,GAAG,cAAc,CAAC,WAAW,CAAC,CAAC;IAC7C,OAAO,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,QAAQ,CAAC,CAAC;AACxE,CAAC;AAED,SAAS,mBAAmB,CAAC,QAAmB;IAC9C,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAC/B,MAAM,MAAM,GAAc,EAAE,CAAC;IAE7B,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,EAAE,IAAI,OAAO,CAAC,QAAQ,EAAE,IAAI,IAAI,EAAE,IAAI,OAAO,CAAC,QAAQ,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC;QAC5F,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YACnB,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACd,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACvB,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,YAAY,CAAC,QAAmB;IACvC,OAAO,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QAC5B,MAAM,YAAY,GAAG,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;QAC7E,IAAI,YAAY,KAAK,CAAC;YAAE,OAAO,YAAY,CAAC;QAC5C,OAAO,CAAC,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;IAClC,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,mBAAmB,CAAC,QAAsB,EAAE,UAAuB;IAC1E,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,KAAK,MAAM,QAAQ,IAAI,QAAQ,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;QAC7C,IAAI,WAAW,CAAC,QAAQ,EAAE,UAAU,CAAC,EAAE,CAAC;YACtC,KAAK,EAAE,CAAC;QACV,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAQD,SAAS,eAAe,CAAC,IAAgB,EAAE,OAAoB;IAC7D,IAAI,CAAC,OAAO,CAAC,OAAO,IAAI,OAAO,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAClE,OAAO,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;AACxC,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,MAAc,EAAE,OAAoB;IACtE,MAAM,SAAS,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;IACpC,MAAM,OAAO,GAAkB,EAAE,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC;IAErD,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC;IAC1D,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CAAC,qBAAqB,MAAM,EAAE,CAAC,CAAC;IACjD,CAAC;IAED,MAAM,SAAS,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;IACpC,MAAM,CAAC,QAAQ,EAAE,OAAO,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,CAAC,aAAa,CAAC,MAAM,CAAC,EAAE,WAAW,EAAE,CAAC,CAAC,CAAC;IACtF,OAAO,CAAC,IAAI,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IAE7C,MAAM,EAAE,QAAQ,EAAE,GAAG,QAAQ,CAAC;IAC9B,MAAM,WAAW,GAAG,GAAG,QAAQ,CAAC,SAAS,IAAI,QAAQ,CAAC,IAAI,EAAE,CAAC;IAE7D,IAAI,QAAQ,GAAc,EAAE,CAAC;IAC7B,MAAM,SAAS,GAAmB,EAAE,CAAC;IAErC,kCAAkC;IAClC,MAAM,aAAa,GAAG,MAAM,eAAe,EAAE,CAAC;IAC9C,MAAM,YAAY,GAAG,MAAM,sBAAsB,EAAE,CAAC;IACpD,MAAM,SAAS,GAAG,aAAa,CAAC,CAAC,CAAC,MAAM,aAAa,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;IAEzE,6BAA6B;IAC7B,QAAQ,CAAC,KAAK,GAAG,IAAI,GAAG,EAAE,CAAC;IAE3B,6DAA6D;IAC7D,MAAM,cAAc,GAAG,IAAI,GAAG,EAAkB,CAAC;IACjD,KAAK,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,QAAQ,CAAC,KAAK,EAAE,CAAC;QAChD,IAAI,WAAW,CAAC,QAAQ,EAAE,4BAA4B,CAAC,EAAE,CAAC;YACxD,cAAc,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;IACD,QAAQ,CAAC,cAAc,GAAG,cAAc,CAAC;IAEzC,oCAAoC;IACpC,MAAM,aAAa,GAAG,mBAAmB,CAAC,QAAQ,EAAE,4BAA4B,CAAC,CAAC;IAClF,MAAM,aAAa,GAAG,mBAAmB,CAAC,QAAQ,EAAE,4BAA4B,CAAC,CAAC;IAElF,wBAAwB;IACxB,MAAM,OAAO,GAAiB,EAAE,CAAC;IAEjC,IAAI,eAAe,CAAC,SAAS,EAAE,OAAO,CAAC,EAAE,CAAC;QACxC,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,SAAS;YACf,GAAG,EAAE,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC;YAC1C,SAAS,EAAE;gBACT,IAAI,EAAE,SAAS;gBACf,OAAO,EAAE,IAAI;gBACb,WAAW,EAAE,gCAAgC,GAAG,qCAAqC;aACtF;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,eAAe,CAAC,aAAa,EAAE,OAAO,CAAC,EAAE,CAAC;QAC5C,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,aAAa;YACnB,GAAG,EAAE,GAAG,EAAE,CAAC,gBAAgB,CAAC,QAAQ,CAAC;YACrC,SAAS,EAAE;gBACT,IAAI,EAAE,aAAa;gBACnB,OAAO,EAAE,IAAI;gBACb,WAAW,EAAE,+BAA+B,GAAG,UAAU,aAAa,QAAQ;gBAC9E,YAAY,EAAE,CAAC;gBACf,aAAa,EAAE,aAAa;aAC7B;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,eAAe,CAAC,KAAK,EAAE,OAAO,CAAC,EAAE,CAAC;QACpC,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,KAAK;YACX,GAAG,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC;YAC7B,SAAS,EAAE;gBACT,IAAI,EAAE,KAAK;gBACX,OAAO,EAAE,IAAI;gBACb,WAAW,EAAE,kCAAkC,GAAG,GAAG,aAAa,aAAa;gBAC/E,YAAY,EAAE,CAAC;gBACf,aAAa,EAAE,aAAa;aAC7B;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,eAAe,CAAC,KAAK,EAAE,OAAO,CAAC,EAAE,CAAC;QACpC,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,KAAK;YACX,GAAG,EAAE,GAAG,EAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,OAAO,CAAC;YACvC,SAAS,EAAE;gBACT,IAAI,EAAE,KAAK;gBACX,OAAO,EAAE,IAAI;gBACb,WAAW,EAAE,2CAA2C;aACzD;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,eAAe,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;QACrC,IAAI,aAAa,EAAE,CAAC;YAClB,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,MAAM;gBACZ,GAAG,EAAE,GAAG,EAAE,CAAC,SAAS,CAAC,QAAQ,CAAC;gBAC9B,SAAS,EAAE;oBACT,IAAI,EAAE,MAAM;oBACZ,OAAO,EAAE,IAAI;oBACb,WAAW,EAAE,GAAG,SAAS,CAAC,MAAM,0BAA0B;oBAC1D,YAAY,EAAE,SAAS,CAAC,MAAM;oBAC9B,aAAa,EAAE,QAAQ,CAAC,KAAK,CAAC,IAAI;iBACnC;aACF,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,SAAS,CAAC,IAAI,CAAC;gBACb,IAAI,EAAE,MAAM;gBACZ,OAAO,EAAE,KAAK;gBACd,WAAW,EAAE,mCAAmC;gBAChD,UAAU,EAAE,oBAAoB;aACjC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,eAAe,CAAC,WAAW,EAAE,OAAO,CAAC,EAAE,CAAC;QAC1C,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,GAAG,EAAE,CAAC,cAAc,CAAC,QAAQ,EAAE,OAAO,CAAC;YAC5C,SAAS,EAAE;gBACT,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,IAAI;gBACb,WAAW,EAAE,yCAAyC;gBACtD,aAAa,EAAE,aAAa;aAC7B;SACF,CAAC,CAAC;IACL,CAAC;IAED,sBAAsB;IACtB,KAAK,MAAM,GAAG,IAAI,OAAO,EAAE,CAAC;QAC1B,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;QAChC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QACpC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC;QAC9C,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAChC,CAAC;IAED,QAAQ,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC;IACzC,QAAQ,GAAG,gBAAgB,CAAC,QAAQ,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;IACxD,QAAQ,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC;IAElC,OAAO,CAAC,KAAK,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IAE9C,OAAO;QACL,SAAS,EAAE;YACT,EAAE,EAAE,WAAW;YACf,IAAI,EAAE,QAAQ,CAAC,WAAW,IAAI,QAAQ,CAAC,IAAI;YAC3C,OAAO,EAAE,QAAQ,CAAC,OAAO;YACzB,SAAS,EAAE,QAAQ,CAAC,SAAS;SAC9B;QACD,QAAQ;QACR,SAAS;QACT,QAAQ,EAAE;YACR,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC;YACvC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SACxC;KACF,CAAC;AACJ,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"zoo.d.ts","sourceRoot":"","sources":["../../../src/scanner/loaders/zoo.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,
|
|
1
|
+
{"version":3,"file":"zoo.d.ts","sourceRoot":"","sources":["../../../src/scanner/loaders/zoo.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAA2D,OAAO,EAAE,MAAM,aAAa,CAAC;AAuIpG,wBAAsB,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC,CA2CpD"}
|