@trustify-da/trustify-da-javascript-client 0.2.4-ea-14 → 0.2.4-ea.2eeeeba

package/README.md

@@ -1,12 +1,14 @@
-# Exhort JavaScript API<br/>![latest-no-snapshot][0] ![latest-snapshot][1]
+# Trustify Dependency Analytics JavaScript Client<br/>![latest-no-snapshot][0] ![latest-snapshot][1]
 
-* Looking for the OpenAPI Spec? Try [Exhort API Spec](https://github.com/trustify-da/trustify-da-api-model)
-* Looking for our Java API? Try [Exhort Java API](https://github.com/guacsec/exhort-java-api).
-* Looking for our Backend implementation? Try [Exhort](https://github.com/guacsec/exhort).
+* Looking for the OpenAPI Spec? Try [Trustify Dependency Analytics API](https://github.com/guacsec/trustify-da-api-spec)
+* Looking for our Java API? Try [Trustify Dependency Analytics Java Client](https://github.com/guacsec/trustify-da-java-client).
+* Looking for our Backend implementation? Try [Trustify Dependency Analytics](https://github.com/guacsec/trustify-dependency-analytics).
 
 <h3>Usage</h3>
 <p>
 
+<strong>Prerequisites:</strong> The <code>TRUSTIFY_DA_BACKEND_URL</code> environment variable must be set to the URL of the Trustify Dependency Analytics backend service. You can set it as an environment variable or pass it in the options object (see <a href="#customization">Customization</a> section).
+
 <ul>
 <li>
 Use as ESM Module from an ESM module
@@ -15,16 +17,29 @@ Use as ESM Module from an ESM module
 npm install @trustify-da/trustify-da-javascript-client
 ```
 
+```shell
+# Set the mandatory backend URL
+export TRUSTIFY_DA_BACKEND_URL=https://trustify-da.example.com
+```
+
 ```javascript
-import exhort from '@trustify-da/trustify-da-javascript-client'
+import client from '@trustify-da/trustify-da-javascript-client'
 import fs from 'node:fs'
 
 // Get stack analysis in JSON format
-let stackAnalysis = await exhort.stackAnalysis('/path/to/pom.xml')
+let stackAnalysis = await client.stackAnalysis('/path/to/pom.xml')
 // Get stack analysis in HTML format (string)
-let stackAnalysisHtml = await exhort.stackAnalysis('/path/to/pom.xml', true)
+let stackAnalysisHtml = await client.stackAnalysis('/path/to/pom.xml', true)
 // Get component analysis in JSON format
-let componentAnalysis = await exhort.componentAnalysis('/path/to/pom.xml')
+let componentAnalysis = await client.componentAnalysis('/path/to/pom.xml')
+// Get image analysis in JSON format
+let imageAnalysis = await client.imageAnalysis(['docker.io/library/node:18'])
+// Get image analysis in HTML format (string)
+let imageAnalysisHtml = await client.imageAnalysis(['docker.io/library/node:18'], true)
+// Analyze multiple images
+let multipleImagesAnalysis = await client.imageAnalysis(['docker.io/library/node:18', 'docker.io/library/python:3.9'])
+// Specify architecture using ^^ notation (e.g., httpd:2.4.49^^amd64)
+let imageAnalysisWithArch = await client.imageAnalysis(['httpd:2.4.49^^amd64'])
 ```
 </li>
 </ul>
@@ -37,16 +52,16 @@ npm install @trustify-da/trustify-da-javascript-client
 ```
 
 ```javascript
-async function loadExhort()
+async function loadTrustifyDa()
 {
 // dynamic import is the only way to import ESM module into commonJS module
-  const { default: exhort } = await import('@trustify-da/trustify-da-javascript-client');
-  return exhort
+  const { default: client } = await import('@trustify-da/trustify-da-javascript-client');
+  return client
 }
-const runExhort = (manifestPath) => {
+const runTrustifyDa = (manifestPath) => {
   return new Promise(async ( resolve, reject) => {
     try {
-      let stackAnalysisReport = await (await loadExhort()).stackAnalysis(manifestPath,false)
+      let stackAnalysisReport = await (await loadTrustifyDa()).stackAnalysis(manifestPath,false)
       resolve(stackAnalysisReport)
 
     } catch (error)
@@ -56,7 +71,7 @@ const runExhort = (manifestPath) => {
   });
 };
 
-runExhort("./path/to/manifest").then(resp => console.log(JSON.stringify(resp,null,4)))
+runTrustifyDa("./path/to/manifest").then(resp => console.log(JSON.stringify(resp,null,4)))
 ```
 </li>
 
@@ -68,11 +83,12 @@ Use as CLI Script
 ```shell
 $ npx @trustify-da/trustify-da-javascript-client help
 
-Usage: trustify-da-javascript-client {component|stack}
+Usage: trustify-da-javascript-client {component|stack|image|validate-token}
 
 Commands:
   trustify-da-javascript-client stack </path/to/manifest> [--html|--summary]               produce stack report for manifest path
   trustify-da-javascript-client component <path/to/manifest> [--summary]   produce component report for a manifest type and content
+  trustify-da-javascript-client image <image-refs..> [--html|--summary]               produce image analysis report for OCI image references
 
 Options:
   --help  Show help                                                    [boolean]
@@ -91,6 +107,22 @@ $ npx @trustify-da/trustify-da-javascript-client stack /path/to/pom.xml --html
 
 # get component analysis
 $ npx @trustify-da/trustify-da-javascript-client component /path/to/pom.xml
+
+# get image analysis in json format
+$ npx @trustify-da/trustify-da-javascript-client image docker.io/library/node:18
+
+# get image analysis in json format (summary only)
+# Note: summary returns an object with imageRef as key
+$ npx @trustify-da/trustify-da-javascript-client image docker.io/library/node:18 --summary
+
+# get image analysis in html format
+$ npx @trustify-da/trustify-da-javascript-client image docker.io/library/node:18 --html
+
+# analyze multiple images
+$ npx @trustify-da/trustify-da-javascript-client image docker.io/library/node:18 docker.io/library/python:3.9
+
+# specify architecture using ^^ notation (e.g., httpd:2.4.49^^amd64)
+$ npx @trustify-da/trustify-da-javascript-client image httpd:2.4.49^^amd64
 ```
 </li>
 
@@ -113,6 +145,22 @@ $ trustify-da-javascript-client stack /path/to/pom.xml --html
 
 # get component analysis
 $ trustify-da-javascript-client component /path/to/pom.xml
+
+# get image analysis in json format
+$ trustify-da-javascript-client image docker.io/library/node:18
+
+# get image analysis in json format (summary only)
+# Note: summary returns an object with imageRef as key
+$ trustify-da-javascript-client image docker.io/library/node:18 --summary
+
+# get image analysis in html format
+$ trustify-da-javascript-client image docker.io/library/node:18 --html
+
+# analyze multiple images
+$ trustify-da-javascript-client image docker.io/library/node:18 docker.io/library/python:3.9
+
+# specify architecture using ^^ notation (e.g., httpd:2.4.49^^amd64)
+$ trustify-da-javascript-client image httpd:2.4.49^^amd64
 ```
 </li>
 </ul>
@@ -256,17 +304,21 @@ All of the 5 above examples are valid for marking a package to be ignored
 
 <h3>Customization</h3>
 <p>
-There are 2 approaches for customizing <em>Exhort JavaScript API</em>. Whether you're using this API as a
+There are 2 approaches for customizing <em>Trustify Dependency Analytics JavaScript Client</em>. Whether you're using this API as a
 <em>Global Module</em>, a <em>Remote Script</em>, or an <em>ESM Module</em>, you can use <em>Environment Variables</em>
 for various customization.
 
+<strong>Note:</strong> The <code>TRUSTIFY_DA_BACKEND_URL</code> environment variable is <strong>mandatory</strong> and must be set to the URL of the Trustify Dependency Analytics backend service. Without this variable, the API will throw an error.
+
 However, <em>ESM Module</em> users, can opt for customizing programmatically:
 
 ```javascript
-import exhort from '@trustify-da/trustify-da-javascript-client'
+import client from '@trustify-da/trustify-da-javascript-client'
 import fs from 'node:fs'
 
 let options = {
+  // Mandatory: Backend URL for Trustify Dependency Analytics service
+  'TRUSTIFY_DA_BACKEND_URL': 'https://api.trustify.dev',
   'TRUSTIFY_DA_MVN_PATH': '/path/to/my/mvn',
   'TRUSTIFY_DA_NPM_PATH': '/path/to/npm',
   'TRUSTIFY_DA_PNPM_PATH': '/path/to/pnpm',
@@ -282,12 +334,19 @@ let options = {
 }
 
 // Get stack analysis in JSON format ( all package managers, pom.xml is as an example here)
-let stackAnalysis = await exhort.stackAnalysis('/path/to/pom.xml', false, options)
+let stackAnalysis = await client.stackAnalysis('/path/to/pom.xml', false, options)
 // Get stack analysis in HTML format in string ( all package managers, pom.xml is as an example here)
-let stackAnalysisHtml = await exhort.stackAnalysis('/path/to/pom.xml', true, options)
+let stackAnalysisHtml = await client.stackAnalysis('/path/to/pom.xml', true, options)
 
 // Get component analysis in JSON format
-let componentAnalysis = await exhort.componentAnalysis('/path/to/pom.xml', options)
+let componentAnalysis = await client.componentAnalysis('/path/to/pom.xml', options)
+
+// Get image analysis in JSON format
+let imageAnalysis = await client.imageAnalysis(['docker.io/library/node:18'], false, options)
+// Get image analysis in HTML format in string
+let imageAnalysisHtml = await client.imageAnalysis(['docker.io/library/node:18'], true, options)
+// Specify architecture using ^^ notation (e.g., httpd:2.4.49^^amd64)
+let imageAnalysisWithArch = await client.imageAnalysis(['httpd:2.4.49^^amd64'], false, options)
 ```
  **_Environment variables takes precedence._**
 </p>

package/dist/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@trustify-da/trustify-da-javascript-client",
-    "version": "0.2.4-ea-14",
+    "version": "0.2.4",
     "description": "Code-Ready Dependency Analytics JavaScript API.",
     "license": "Apache-2.0",
     "homepage": "https://github.com/guacsec/trustify-da-javascript-client#README.md",
@@ -12,7 +12,9 @@
         "exhort",
         "secure",
         "supply-chain",
-        "vulnerability"
+        "vulnerability",
+        "trustify",
+        "dependency analytics"
     ],
     "engines": {
         "node": ">= 20.0.0",

package/dist/src/analysis.js

@@ -13,7 +13,7 @@ const rhdaPackageManagerHeader = "rhda-pkg-manager";
 /**
  * Adds proxy agent configuration to fetch options if a proxy URL is specified
  * @param {RequestInit} options - The base fetch options
- * @param {import("index.js").Options} opts - The exhort options that may contain proxy configuration
+ * @param {import("index.js").Options} opts - The trustify DA options that may contain proxy configuration
  * @returns {RequestInit} The fetch options with proxy agent if applicable
  */
 function addProxyAgent(options, opts) {
@@ -41,7 +41,7 @@ async function requestStack(provider, manifest, url, html = false, opts = {}) {
     let startTime = new Date();
     let endTime;
     if (process.env["TRUSTIFY_DA_DEBUG"] === "true") {
-        console.log("Starting time of sending stack analysis request to exhort server= " + startTime);
+        console.log("Starting time of sending stack analysis request to the dependency analytics server= " + startTime);
     }
     opts[rhdaPackageManagerHeader.toUpperCase().replaceAll("-", "_")] = provided.ecosystem;
     const fetchOptions = addProxyAgent({
@@ -72,15 +72,15 @@ async function requestStack(provider, manifest, url, html = false, opts = {}) {
                 console.log("Unique Identifier associated with this request - ex-request-id=" + exRequestId);
             }
             endTime = new Date();
-            console.log("Response body received from exhort server : " + EOL + EOL);
+            console.log("Response body received from Trustify DA backend server : " + EOL + EOL);
             console.log(console.log(JSON.stringify(result, null, 4)));
-            console.log("Ending time of sending stack analysis request to exhort server= " + endTime);
+            console.log("Ending time of sending stack analysis request to Trustify DA backend server= " + endTime);
             let time = (endTime - startTime) / 1000;
             console.log("Total Time in seconds: " + time);
         }
     }
     else {
-        throw new Error(`Got error response from exhort backend - http return code : ${resp.status},  error message =>  ${await resp.text()}`);
+        throw new Error(`Got error response from Trustify DA backend - http return code : ${resp.status},  error message =>  ${await resp.text()}`);
     }
     return Promise.resolve(result);
 }
@@ -98,7 +98,7 @@ async function requestComponent(provider, manifest, url, opts = {}) {
     opts["source-manifest"] = "";
     opts[rhdaOperationTypeHeader.toUpperCase().replaceAll("-", "_")] = "component-analysis";
     if (process.env["TRUSTIFY_DA_DEBUG"] === "true") {
-        console.log("Starting time of sending component analysis request to exhort server= " + new Date());
+        console.log("Starting time of sending component analysis request to Trustify DA backend server= " + new Date());
     }
     opts[rhdaPackageManagerHeader.toUpperCase().replaceAll("-", "_")] = provided.ecosystem;
     const fetchOptions = addProxyAgent({
@@ -123,13 +123,13 @@ async function requestComponent(provider, manifest, url, opts = {}) {
             if (exRequestId) {
                 console.log("Unique Identifier associated with this request - ex-request-id=" + exRequestId);
             }
-            console.log("Response body received from exhort server : " + EOL + EOL);
+            console.log("Response body received from Trustify DA backend server : " + EOL + EOL);
             console.log(JSON.stringify(result, null, 4));
-            console.log("Ending time of sending component analysis request to exhort server= " + new Date());
+            console.log("Ending time of sending component analysis request to Trustify DA backend server= " + new Date());
         }
     }
     else {
-        throw new Error(`Got error response from exhort backend - http return code : ${resp.status}, ex-request-id: ${resp.headers.get("ex-request-id")}  error message =>  ${await resp.text()}`);
+        throw new Error(`Got error response from Trustify DA backend - http return code : ${resp.status}, ex-request-id: ${resp.headers.get("ex-request-id")}  error message =>  ${await resp.text()}`);
     }
     return Promise.resolve(result);
 }
@@ -172,14 +172,14 @@ async function requestImages(imageRefs, url, html = false, opts = {}) {
             if (exRequestId) {
                 console.log("Unique Identifier associated with this request - ex-request-id=" + exRequestId);
             }
-            console.log("Response body received from exhort server : " + EOL + EOL);
+            console.log("Response body received from Trustify DA backend server : " + EOL + EOL);
             console.log(JSON.stringify(result, null, 4));
-            console.log("Ending time of sending component analysis request to exhort server= " + new Date());
+            console.log("Ending time of sending component analysis request to Trustify DA backend server= " + new Date());
         }
         return result;
     }
     else {
-        throw new Error(`Got error response from exhort backend - http return code : ${resp.status}, ex-request-id: ${resp.headers.get("ex-request-id")}  error message =>  ${await resp.text()}`);
+        throw new Error(`Got error response from Trustify DA backend - http return code : ${resp.status}, ex-request-id: ${resp.headers.get("ex-request-id")}  error message =>  ${await resp.text()}`);
     }
 }
 /**
@@ -241,7 +241,7 @@ function getTokenHeaders(opts = {}) {
     setRhdaHeader(rhdaPackageManagerHeader, headers, opts);
     setRhdaHeader(rhdaTelemetryId, headers, opts);
     if (process.env["TRUSTIFY_DA_DEBUG"] === "true") {
-        console.log("Headers Values to be sent to exhort:" + EOL);
+        console.log("Headers Values to be sent to Trustify DA backend:" + EOL);
         for (const headerKey in headers) {
             if (!headerKey.match(RegexNotToBeLogged)) {
                 console.log(`${headerKey}: ${headers[headerKey]}`);

package/dist/src/cli.js

@@ -2,7 +2,7 @@
 import * as path from "path";
 import yargs from 'yargs';
 import { hideBin } from 'yargs/helpers';
-import exhort from './index.js';
+import client from './index.js';
 // command for component analysis take manifest type and content
 const component = {
     command: 'component </path/to/manifest>',
@@ -14,7 +14,7 @@ const component = {
     }),
     handler: async (args) => {
         let manifestName = args['/path/to/manifest'];
-        let res = await exhort.componentAnalysis(manifestName);
+        let res = await client.componentAnalysis(manifestName);
         console.log(JSON.stringify(res, null, 2));
     }
 };
@@ -39,10 +39,64 @@ const validateToken = {
             let tokenValue = args['tokenValue'].trim();
             opts[`TRUSTIFY_DA_${tokenProvider}_TOKEN`] = tokenValue;
         }
-        let res = await exhort.validateToken(opts);
+        let res = await client.validateToken(opts);
         console.log(res);
     }
 };
+// command for image analysis takes OCI image references
+const image = {
+    command: 'image <image-refs..>',
+    desc: 'produce image analysis report for OCI image references',
+    builder: yargs => yargs.positional('image-refs', {
+        desc: 'OCI image references to analyze (one or more)',
+        type: 'string',
+        array: true,
+    }).options({
+        html: {
+            alias: 'r',
+            desc: 'Get the report as HTML instead of JSON',
+            type: 'boolean',
+            conflicts: 'summary'
+        },
+        summary: {
+            alias: 's',
+            desc: 'For JSON report, get only the \'summary\'',
+            type: 'boolean',
+            conflicts: 'html'
+        }
+    }),
+    handler: async (args) => {
+        let imageRefs = args['image-refs'];
+        if (!Array.isArray(imageRefs)) {
+            imageRefs = [imageRefs];
+        }
+        let html = args['html'];
+        let summary = args['summary'];
+        let res = await client.imageAnalysis(imageRefs, html);
+        if (summary && !html) {
+            let summaries = {};
+            for (let [imageRef, report] of Object.entries(res)) {
+                for (let provider in report.providers) {
+                    if (report.providers[provider].sources !== undefined) {
+                        for (let source in report.providers[provider].sources) {
+                            if (report.providers[provider].sources[source].summary) {
+                                if (!summaries[imageRef]) {
+                                    summaries[imageRef] = {};
+                                }
+                                if (!summaries[imageRef][provider]) {
+                                    summaries[imageRef][provider] = {};
+                                }
+                                summaries[imageRef][provider][source] = report.providers[provider].sources[source].summary;
+                            }
+                        }
+                    }
+                }
+            }
+            res = summaries;
+        }
+        console.log(html ? res : JSON.stringify(res, null, 2));
+    }
+};
 // command for stack analysis takes a manifest path
 const stack = {
     command: 'stack </path/to/manifest> [--html|--summary]',
@@ -71,7 +125,7 @@ const stack = {
         let summary = args['summary'];
         let theProvidersSummary = new Map();
         let theProvidersObject = {};
-        let res = await exhort.stackAnalysis(manifest, html);
+        let res = await client.stackAnalysis(manifest, html);
         if (summary) {
             for (let provider in res.providers) {
                 if (res.providers[provider].sources !== undefined) {
@@ -91,9 +145,10 @@ const stack = {
 };
 // parse and invoke the command
 yargs(hideBin(process.argv))
-    .usage(`Usage: ${process.argv[0].includes("node") ? path.parse(process.argv[1]).base : path.parse(process.argv[0]).base} {component|stack|validate-token}`)
+    .usage(`Usage: ${process.argv[0].includes("node") ? path.parse(process.argv[1]).base : path.parse(process.argv[0]).base} {component|stack|image|validate-token}`)
     .command(stack)
     .command(component)
+    .command(image)
     .command(validateToken)
     .scriptName('')
     .version(false)

package/dist/src/index.d.ts

@@ -1,17 +1,15 @@
 /**
- * This function is used to determine exhort theUrl backend according to the following logic:
- * If TRUSTIFY_DA_DEV_MODE = true, then take the value of the EXHORT BACKEND URL of dev/staging environment in such a way:
- * take it as environment variable if exists, otherwise, take it from opts object if exists, otherwise, use the hardcoded default of DEV environment.
- * If TRUSTIFY_DA_DEV_MODE = false , then select the production theUrl of EXHORT Backend, which is hardcoded.
- * TRUSTIFY_DA_DEV_MODE evaluated in the following order and selected when it finds it first:
+ * This function is used to determine the Trustify DA backend URL.
+ * The TRUSTIFY_DA_BACKEND_URL is evaluated in the following order and selected when it finds it first:
  * 1. Environment Variable
  * 2. (key,value) from opts object
- * 3. Default False ( points to production URL )
+ * If TRUSTIFY_DA_BACKEND_URL is not set, the function will throw an error.
  * @param {{TRUSTIFY_DA_DEBUG?: string | undefined; TRUSTIFY_DA_BACKEND_URL?: string | undefined}} [opts={}]
- * @return {string} - The selected exhort backend
+ * @return {string} - The selected Trustify DA backend URL
+ * @throws {Error} if TRUSTIFY_DA_BACKEND_URL is unset
  * @private
  */
-export function selectExhortBackend(opts?: {
+export function selectTrustifyDABackend(opts?: {
     TRUSTIFY_DA_DEBUG?: string | undefined;
     TRUSTIFY_DA_BACKEND_URL?: string | undefined;
 } | undefined): string;

package/dist/src/index.js

@@ -77,33 +77,25 @@ function readAndPrintVersionFromPackageJson() {
     logOptionsAndEnvironmentsVariables("trustify-da-javascript-client analysis started, version: ", packageJson.version);
 }
 /**
- * This function is used to determine exhort theUrl backend according to the following logic:
- * If TRUSTIFY_DA_DEV_MODE = true, then take the value of the EXHORT BACKEND URL of dev/staging environment in such a way:
- * take it as environment variable if exists, otherwise, take it from opts object if exists, otherwise, use the hardcoded default of DEV environment.
- * If TRUSTIFY_DA_DEV_MODE = false , then select the production theUrl of EXHORT Backend, which is hardcoded.
- * TRUSTIFY_DA_DEV_MODE evaluated in the following order and selected when it finds it first:
+ * This function is used to determine the Trustify DA backend URL.
+ * The TRUSTIFY_DA_BACKEND_URL is evaluated in the following order and selected when it finds it first:
  * 1. Environment Variable
  * 2. (key,value) from opts object
- * 3. Default False ( points to production URL )
+ * If TRUSTIFY_DA_BACKEND_URL is not set, the function will throw an error.
  * @param {{TRUSTIFY_DA_DEBUG?: string | undefined; TRUSTIFY_DA_BACKEND_URL?: string | undefined}} [opts={}]
- * @return {string} - The selected exhort backend
+ * @return {string} - The selected Trustify DA backend URL
+ * @throws {Error} if TRUSTIFY_DA_BACKEND_URL is unset
  * @private
  */
-export function selectExhortBackend(opts = {}) {
+export function selectTrustifyDABackend(opts = {}) {
     if (getCustom("TRUSTIFY_DA_DEBUG", "false", opts) === "true") {
         readAndPrintVersionFromPackageJson();
     }
-    let url;
-    if (getCustom('TRUSTIFY_DA_DEV_MODE', 'false', opts) === 'true') {
-        url = getCustom('DEV_TRUSTIFY_DA_BACKEND_URL', undefined, opts);
-    }
-    else {
-        url = getCustom('TRUSTIFY_DA_BACKEND_URL', undefined, opts);
-    }
+    let url = getCustom('TRUSTIFY_DA_BACKEND_URL', null, opts);
     if (!url) {
         throw new Error(`TRUSTIFY_DA_BACKEND_URL is unset`);
     }
-    logOptionsAndEnvironmentsVariables("Chosen exhort backend URL:", url);
+    logOptionsAndEnvironmentsVariables("Chosen Trustify DA backend URL:", url);
     return url;
 }
 /**
@@ -133,7 +125,7 @@ export function selectExhortBackend(opts = {}) {
  * 		or backend request failed
  */
 async function stackAnalysis(manifest, html = false, opts = {}) {
-    const theUrl = selectExhortBackend(opts);
+    const theUrl = selectTrustifyDABackend(opts);
     fs.accessSync(manifest, fs.constants.R_OK); // throws error if file unreadable
     let provider = match(manifest, availableProviders); // throws error if no matching provider
     return await analysis.requestStack(provider, manifest, theUrl, html, opts); // throws error request sending failed
@@ -146,7 +138,7 @@ async function stackAnalysis(manifest, html = false, opts = {}) {
  * @throws {Error} if no matching provider, failed to get create content, or backend request failed
  */
 async function componentAnalysis(manifest, opts = {}) {
-    const theUrl = selectExhortBackend(opts);
+    const theUrl = selectTrustifyDABackend(opts);
     fs.accessSync(manifest, fs.constants.R_OK);
     opts["manifest-type"] = path.basename(manifest);
     let provider = match(manifest, availableProviders); // throws error if no matching provider
@@ -179,7 +171,7 @@ async function componentAnalysis(manifest, opts = {}) {
  * 		or backend request failed
  */
 async function imageAnalysis(imageRefs, html = false, opts = {}) {
-    const theUrl = selectExhortBackend(opts);
+    const theUrl = selectTrustifyDABackend(opts);
     return await analysis.requestImages(imageRefs, theUrl, html, opts);
 }
 /**
@@ -189,6 +181,6 @@ async function imageAnalysis(imageRefs, html = false, opts = {}) {
  * @throws {Error} if the backend request failed.
  */
 async function validateToken(opts = {}) {
-    const theUrl = selectExhortBackend(opts);
+    const theUrl = selectTrustifyDABackend(opts);
     return await analysis.validateToken(theUrl, opts); // throws error request sending failed
 }

package/dist/src/providers/java_maven.js

@@ -73,7 +73,7 @@ export default class Java_maven extends Base_java {
             throw new Error(`failed to clean maven target`, { cause: error });
         }
         // create dependency graph in a temp file
-        let tmpDir = fs.mkdtempSync(path.join(os.tmpdir(), 'exhort_'));
+        let tmpDir = fs.mkdtempSync(path.join(os.tmpdir(), 'trustify_da_'));
         let tmpDepTree = path.join(tmpDir, 'mvn_deptree.txt');
         // build initial command (dot outputType is not available for verbose mode)
         let depTreeCmdArgs = ['-q', 'org.apache.maven.plugins:maven-dependency-plugin:3.6.0:tree',

package/dist/src/providers/python_controller.js

@@ -44,7 +44,7 @@ export default class Python_controller {
     }
     prepareEnvironment() {
         if (!this.realEnvironment) {
-            this.pythonEnvDir = path.join(path.sep, "tmp", "exhort_env_js");
+            this.pythonEnvDir = path.join(path.sep, "tmp", "trustify_da_env_js");
             try {
                 invokeCommand(this.pathToPythonBin, ['-m', 'venv', this.pythonEnvDir]);
             }

package/dist/src/providers/python_pip.js

@@ -188,7 +188,7 @@ function createSbomStackAnalysis(manifest, opts = {}) {
     });
     let requirementTxtContent = fs.readFileSync(manifest).toString();
     handleIgnoredDependencies(requirementTxtContent, sbom, opts);
-    // In python there is no root component, then we must remove the dummy root we added, so the sbom json will be accepted by exhort backend
+    // In python there is no root component, then we must remove the dummy root we added, so the sbom json will be accepted by the DA backend
     // sbom.removeRootComponent()
     return sbom.getAsJsonString(opts);
 }
@@ -212,7 +212,7 @@ function getSbomForComponentAnalysis(manifest, opts = {}) {
     });
     let requirementTxtContent = fs.readFileSync(manifest).toString();
     handleIgnoredDependencies(requirementTxtContent, sbom, opts);
-    // In python there is no root component, then we must remove the dummy root we added, so the sbom json will be accepted by exhort backend
+    // In python there is no root component, then we must remove the dummy root we added, so the sbom json will be accepted by the DA backend
     // sbom.removeRootComponent()
     return sbom.getAsJsonString(opts);
 }

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@trustify-da/trustify-da-javascript-client",
-	"version": "0.2.4-ea-14",
+	"version": "0.2.4-ea.2eeeeba",
 	"description": "Code-Ready Dependency Analytics JavaScript API.",
 	"license": "Apache-2.0",
 	"homepage": "https://github.com/guacsec/trustify-da-javascript-client#README.md",
@@ -12,7 +12,9 @@
 		"exhort",
 		"secure",
 		"supply-chain",
-		"vulnerability"
+		"vulnerability",
+		"trustify",
+		"dependency analytics"
 	],
 	"engines": {
 		"node": ">= 20.0.0",