@vltpkg/query 0.0.0-5 → 0.0.0-6

package/README.md

@@ -12,7 +12,7 @@ The **vlt** query syntax engine.
 ```js
 import { Query } from '@vltpkg/query'
 
-const query = new Query({ nodes })
+const query = new Query({ nodes, specOptions, securityArchive })
 query.search(':root > *')
 ```
 
@@ -160,3 +160,71 @@ e.g: `#foo` is the same as `[name=foo]`
 - `:root` Returns the root node, that represents the package defined
   at the top-level `package.json` of your project folder.
 - `:scope` Returns the current scope of a given selector
+
+### Security Selectors
+
+The following pseudo-selectors rely on security data provided by
+[Socket](https://socket.dev/), the usage of any of these selectors is
+going to require a network call to hydrate package report data. Keep
+in mind that this is going to slow down end-user query usage since the
+security data needs to be fetched prior to a `Query` instantiation.
+
+- `:abandoned` Matches packages that were published by an npm account
+  that no longer exists.
+- `:confused` Matches packages affected by manifest confusion. This
+  could be malicious or caused by an error when publishing the
+  package.
+- `:debug` Matches packages that use debug, reflection and dynamic
+  code execution features.
+- `:deprecated` Matches packages marked as deprecated. This could
+  indicate that a single version should not be used, or that the
+  package is no longer maintained and any new vulnerabilities will not
+  be fixed.
+- `:dynamic` Matches packages that uses dynamic imports.
+- `:entropic` Matches packages that contains high entropic strings.
+  This could be a sign of encrypted data, leaked secrets or obfuscated
+  code.
+- `:env` Matches packages that accesses environment variables, which
+  may be a sign of credential stuffing or data theft.
+- `:eval` Matches packages that use dynamic code execution (e.g.,
+  eval()), which is a dangerous practice. This can prevent the code
+  from running in certain environments and increases the risk that the
+  code may contain exploits or malicious behavior.
+- `:fs` Matches packages that accesses the file system, and could
+  potentially read sensitive data.
+- `:obfuscated` Matches packages that use obfuscated files,
+  intentionally packed to hide their behavior. This could be a sign of
+  malware.
+- `:minified` Matches packages that contain minified code. This may be
+  harmless in some cases where minified code is included in packaged
+  libraries.
+- `:native` Matches packages that contain native code (e.g., compiled
+  binaries or shared libraries). Including native code can obscure
+  malicious behavior.
+- `:network` Matches packages that access the network.
+- `:scripts` Matches packages that have scripts that are run when the
+  package is installed. The majority of malware in npm is hidden in
+  install scripts.
+- `:shell` Matches packages that accesses the system shell. Accessing
+  the system shell increases the risk of executing arbitrary code.
+- `:shrinkwrap` Matches packages that contains a shrinkwrap file. This
+  may allow the package to bypass normal install procedures.
+- `:suspicious` Matches packages that may have its GitHub repository
+  artificially inflated with stars (from bots, crowdsourcing, etc.).
+- `:tracker` Matches packages that contains telemetry which tracks how
+  it is used.
+- `:trivial` Matches packages that have less than 10 lines of code.
+  These packages are easily copied into your own project and may not
+  warrant the additional supply chain risk of an external dependency.
+- `:undesirable` Matches packages that are a joke, parody, or includes
+  undocumented or hidden behavior unrelated to its primary function.
+- `:unknown` Matches packages that have a new npm collaborator
+  publishing a version of the package for the first time. New
+  collaborators are usually benign additions to a project, but do
+  indicate a change to the security surface area of a package.
+- `:unmaintained` Matches packages that have not been updated in more
+  than 5 years and may be unmaintained.
+- `:unpopular` Matches packages that are not very popular.
+- `:unstable` Matches packages with unstable ownership. This indicates
+  a new collaborator has begun publishing package versions. Package
+  stability and security risk may be elevated.

package/dist/esm/index.d.ts

@@ -1,15 +1,26 @@
 import type { GraphLike } from '@vltpkg/graph';
 import type { SpecOptions } from '@vltpkg/spec/browser';
+import type { SecurityArchiveLike } from '@vltpkg/security-archive';
 import type { ParserState, QueryResponse } from './types.ts';
 export * from './types.ts';
 export declare const walk: (state: ParserState) => Promise<ParserState>;
 export type QueryOptions = {
     graph: GraphLike;
     specOptions: SpecOptions;
+    securityArchive: SecurityArchiveLike | undefined;
 };
 export declare class Query {
     #private;
-    constructor({ graph, specOptions }: QueryOptions);
+    /**
+     * Helper method to determine if a given query string is using any of
+     * the known security selectors. This is useful so that operations can
+     * skip hydrating the security archive if it's not needed.
+     */
+    static hasSecuritySelectors(query: string): boolean;
+    constructor({ graph, specOptions, securityArchive }: QueryOptions);
+    /**
+     * Search the graph for nodes and edges that match the given query.
+     */
     search(query: string, signal?: AbortSignal): Promise<QueryResponse>;
 }
 //# sourceMappingURL=index.d.ts.map

package/dist/esm/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAY,SAAS,EAAY,MAAM,eAAe,CAAA;AAClE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAA;AAYvD,OAAO,KAAK,EAEV,WAAW,EAEX,aAAa,EACd,MAAM,YAAY,CAAA;AAEnB,cAAc,YAAY,CAAA;AAiC1B,eAAO,MAAM,IAAI,UACR,WAAW,KACjB,OAAO,CAAC,WAAW,CAmDrB,CAAA;AAED,MAAM,MAAM,YAAY,GAAG;IACzB,KAAK,EAAE,SAAS,CAAA;IAChB,WAAW,EAAE,WAAW,CAAA;CACzB,CAAA;AAED,qBAAa,KAAK;;gBAKJ,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,YAAY;IAM1C,MAAM,CACV,KAAK,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,WAAW,GACnB,OAAO,CAAC,aAAa,CAAC;CAkD1B"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAY,SAAS,EAAY,MAAM,eAAe,CAAA;AAClE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAA;AACvD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAYnE,OAAO,KAAK,EAEV,WAAW,EAEX,aAAa,EACd,MAAM,YAAY,CAAA;AAEnB,cAAc,YAAY,CAAA;AAiC1B,eAAO,MAAM,IAAI,UACR,WAAW,KACjB,OAAO,CAAC,WAAW,CAmDrB,CAAA;AAED,MAAM,MAAM,YAAY,GAAG;IACzB,KAAK,EAAE,SAAS,CAAA;IAChB,WAAW,EAAE,WAAW,CAAA;IACxB,eAAe,EAAE,mBAAmB,GAAG,SAAS,CAAA;CACjD,CAAA;AA+BD,qBAAa,KAAK;;IAMhB;;;;OAIG;IACH,MAAM,CAAC,oBAAoB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO;gBASvC,EAAE,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,EAAE,YAAY;IAOjE;;OAEG;IACG,MAAM,CACV,KAAK,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,WAAW,GACnB,OAAO,CAAC,aAAa,CAAC;CAmD1B"}

package/dist/esm/index.js

@@ -74,15 +74,61 @@ export const walk = async (state) => {
     }
     return state;
 };
+// A list of known security selectors that rely on
+// data from the security-archive in order to work
+const securitySelectors = new Set([
+    ':abandoned',
+    ':confused',
+    ':debug',
+    ':deprecated',
+    ':dynamic',
+    ':entropic',
+    ':env',
+    ':eval',
+    ':fs',
+    ':obfuscated',
+    ':minified',
+    ':native',
+    ':network',
+    ':scripts',
+    ':shell',
+    ':shrinkwrap',
+    ':suspicious',
+    ':tracker',
+    ':trivial',
+    ':undesirable',
+    ':unknown',
+    ':unmaintained',
+    ':unpopular',
+    ':unstable',
+]);
 export class Query {
     #cache;
     #graph;
     #specOptions;
-    constructor({ graph, specOptions }) {
+    #securityArchive;
+    /**
+     * Helper method to determine if a given query string is using any of
+     * the known security selectors. This is useful so that operations can
+     * skip hydrating the security archive if it's not needed.
+     */
+    static hasSecuritySelectors(query) {
+        for (const selector of securitySelectors) {
+            if (query.includes(selector)) {
+                return true;
+            }
+        }
+        return false;
+    }
+    constructor({ graph, specOptions, securityArchive }) {
         this.#cache = new Map();
         this.#graph = graph;
         this.#specOptions = specOptions;
+        this.#securityArchive = securityArchive;
     }
+    /**
+     * Search the graph for nodes and edges that match the given query.
+     */
     async search(query, signal) {
         if (typeof query !== 'string') {
             throw new TypeError('Query search argument needs to be a string');
@@ -115,6 +161,7 @@ export class Query {
             },
             partial: { nodes, edges },
             signal,
+            securityArchive: this.#securityArchive,
             specOptions: this.#specOptions,
             walk,
         });

package/dist/esm/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAG3C,OAAO,qBAAqB,MAAM,yBAAyB,CAAA;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAC1C,OAAO,EAAE,OAAO,EAAE,MAAM,YAAY,CAAA;AACpC,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,OAAO,EAAE,EAAE,EAAE,MAAM,SAAS,CAAA;AAC5B,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AACpC,OAAO,EACL,yBAAyB,EACzB,yBAAyB,EACzB,cAAc,GACf,MAAM,YAAY,CAAA;AAQnB,cAAc,YAAY,CAAA;AAE1B,MAAM,MAAM,GAAG,KAAK,EAAE,KAAkB,EAAE,EAAE,CAAC,KAAK,CAAA;AAElD,MAAM,SAAS,GAAG;IAChB,SAAS;IACT,KAAK,EAAE,OAAO;IACd,UAAU;IACV,OAAO,EAAE,MAAM;IACf,EAAE;IACF,OAAO,EAAE,MAAM;IACf,MAAM;IACN,IAAI,EAAE,MAAM;IACZ,QAAQ,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QACrC,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QAClD,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QAClD,OAAO,KAAK,CAAA;IACd,CAAC;IACD,MAAM,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QACnC,MAAM,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;IAC/D,CAAC;IACD,GAAG,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QAChC,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,KAAK,GAAG,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,KAAK,GAAG,EAAE,CAAC;YAC/D,MAAM,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;QAC/D,CAAC;QACD,OAAO,KAAK,CAAA;IACd,CAAC;IACD,SAAS,EAAE,MAAM;CAClB,CAAA;AACD,MAAM,YAAY,GAAG,IAAI,GAAG,CAC1B,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAC1B,CAAA;AAED,MAAM,CAAC,MAAM,IAAI,GAAG,KAAK,EACvB,KAAkB,EACI,EAAE;IACxB,MAAM,KAAK,CAAC,WAAW,EAAE,CAAA;IAEzB,MAAM,QAAQ,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;IAErD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAChB,OAAO,KAAK,CAAA;QACd,CAAC;QAED,MAAM,IAAI,KAAK,CACb,kCAAkC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CACvD,CAAA;IACH,CAAC;IACD,KAAK,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,CAAA;IAE7B,kDAAkD;IAClD,IACE,yBAAyB,CAAC,KAAK,CAAC,OAAO,CAAC;QACxC,KAAK,CAAC,OAAO,CAAC,IAAI,KAAK,QAAQ,EAC/B,CAAC;QACD,MAAM,IAAI,GAA4B,yBAAyB,CAC7D,KAAK,CAAC,OAAO,CACd,CAAA;QAED,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;YACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;gBAC7B,2DAA2D;gBAC3D,IAAI,CAAC,OAAO;oBAAE,SAAQ;gBAEtB,MAAM,UAAU,GAAgB;oBAC9B,GAAG,KAAK;oBACR,OAAO;oBACP,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;oBACvB,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;iBACxB,CAAA;gBACD,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,CAAA;YAChC,CAAC;QACH,CAAC;QAED,IAAI,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC;YACzB,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACvC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;YACD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACvC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAA;AACd,CAAC,CAAA;AAOD,MAAM,OAAO,KAAK;IAChB,MAAM,CAA4B;IAClC,MAAM,CAAW;IACjB,YAAY,CAAa;IAEzB,YAAY,EAAE,KAAK,EAAE,WAAW,EAAgB;QAC9C,IAAI,CAAC,MAAM,GAAG,IAAI,GAAG,EAAE,CAAA;QACvB,IAAI,CAAC,MAAM,GAAG,KAAK,CAAA;QACnB,IAAI,CAAC,YAAY,GAAG,WAAW,CAAA;IACjC,CAAC;IAED,KAAK,CAAC,MAAM,CACV,KAAa,EACb,MAAoB;QAEpB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,MAAM,IAAI,SAAS,CACjB,4CAA4C,CAC7C,CAAA;QACH,CAAC;QAED,IAAI,CAAC,KAAK;YAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,CAAA;QAE3C,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;QAC3C,IAAI,YAAY,EAAE,CAAC;YACjB,OAAO,YAAY,CAAA;QACrB,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,GAAG,CACnB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,CACvC,CAAA;QACD,MAAM,KAAK,GAAG,IAAI,GAAG,CAAW,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAA;QAE9D,0CAA0C;QAC1C,kCAAkC;QAClC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC;YAC7B,WAAW,EAAE,KAAK,IAAI,EAAE;gBACtB,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE;oBAC1B,UAAU,CAAC,OAAO,EAAE,CAAC,CAAC,CAAA;gBACxB,CAAC,CAAC,CAAA;gBACF,MAAM,EAAE,cAAc,EAAE,CAAA;YAC1B,CAAC;YACD,OAAO,EAAE,qBAAqB,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;YAC/C,OAAO,EAAE;gBACP,KAAK,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC;gBACrB,KAAK,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC;aACtB;YACD,OAAO,EAAE;gBACP,KAAK,EAAE,IAAI,GAAG,EAAY;gBAC1B,KAAK,EAAE,IAAI,GAAG,EAAY;aAC3B;YACD,OAAO,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE;YACzB,MAAM;YACN,WAAW,EAAE,IAAI,CAAC,YAAY;YAC9B,IAAI;SACL,CAAC,CAAA;QAEF,MAAM,GAAG,GAAkB;YACzB,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;YAChC,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;SACjC,CAAA;QACD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,CAAA;QAC3B,OAAO,GAAG,CAAA;IACZ,CAAC;CACF","sourcesContent":["import { error } from '@vltpkg/error-cause'\nimport type { EdgeLike, GraphLike, NodeLike } from '@vltpkg/graph'\nimport type { SpecOptions } from '@vltpkg/spec/browser'\nimport postcssSelectorParser from 'postcss-selector-parser'\nimport { attribute } from './attribute.ts'\nimport { classFn } from './class.ts'\nimport { combinator } from './combinator.ts'\nimport { id } from './id.ts'\nimport { pseudo } from './pseudo.ts'\nimport {\n  isPostcssNodeWithChildren,\n  asPostcssNodeWithChildren,\n  isSelectorNode,\n} from './types.ts'\nimport type {\n  PostcssNodeWithChildren,\n  ParserState,\n  ParserFn,\n  QueryResponse,\n} from './types.ts'\n\nexport * from './types.ts'\n\nconst noopFn = async (state: ParserState) => state\n\nconst selectors = {\n  attribute,\n  class: classFn,\n  combinator,\n  comment: noopFn,\n  id,\n  nesting: noopFn,\n  pseudo,\n  root: noopFn,\n  selector: async (state: ParserState) => {\n    state.partial.nodes = new Set(state.initial.nodes)\n    state.partial.edges = new Set(state.initial.edges)\n    return state\n  },\n  string: async (state: ParserState) => {\n    throw error('Unsupported selector', { found: state.current })\n  },\n  tag: async (state: ParserState) => {\n    if (state.current.value !== '{' && state.current.value !== '}') {\n      throw error('Unsupported selector', { found: state.current })\n    }\n    return state\n  },\n  universal: noopFn,\n}\nconst selectorsMap = new Map<string, ParserFn>(\n  Object.entries(selectors),\n)\n\nexport const walk = async (\n  state: ParserState,\n): Promise<ParserState> => {\n  await state.cancellable()\n\n  const parserFn = selectorsMap.get(state.current.type)\n\n  if (!parserFn) {\n    if (state.loose) {\n      return state\n    }\n\n    throw new Error(\n      `Missing parser for query node: ${state.current.type}`,\n    )\n  }\n  state = await parserFn(state)\n\n  // pseudo selectors handle their own sub selectors\n  if (\n    isPostcssNodeWithChildren(state.current) &&\n    state.current.type !== 'pseudo'\n  ) {\n    const node: PostcssNodeWithChildren = asPostcssNodeWithChildren(\n      state.current,\n    )\n\n    if (node.nodes.length) {\n      for (let i = 0; i < node.nodes.length; i++) {\n        const current = node.nodes[i]\n        /* c8 ignore next -- impossible but TS doesn't know that */\n        if (!current) continue\n\n        const childState: ParserState = {\n          ...state,\n          current,\n          next: node.nodes[i + 1],\n          prev: node.nodes[i - 1],\n        }\n        state = await walk(childState)\n      }\n    }\n\n    if (isSelectorNode(node)) {\n      for (const edge of state.partial.edges) {\n        state.collect.edges.add(edge)\n      }\n      for (const node of state.partial.nodes) {\n        state.collect.nodes.add(node)\n      }\n    }\n  }\n  return state\n}\n\nexport type QueryOptions = {\n  graph: GraphLike\n  specOptions: SpecOptions\n}\n\nexport class Query {\n  #cache: Map<string, QueryResponse>\n  #graph: GraphLike\n  #specOptions: SpecOptions\n\n  constructor({ graph, specOptions }: QueryOptions) {\n    this.#cache = new Map()\n    this.#graph = graph\n    this.#specOptions = specOptions\n  }\n\n  async search(\n    query: string,\n    signal?: AbortSignal,\n  ): Promise<QueryResponse> {\n    if (typeof query !== 'string') {\n      throw new TypeError(\n        'Query search argument needs to be a string',\n      )\n    }\n\n    if (!query) return { edges: [], nodes: [] }\n\n    const cachedResult = this.#cache.get(query)\n    if (cachedResult) {\n      return cachedResult\n    }\n\n    const nodes = new Set<NodeLike>(\n      Array.from(this.#graph.nodes.values()),\n    )\n    const edges = new Set<EdgeLike>(Array.from(this.#graph.edges))\n\n    // builds initial state and walks over it,\n    // retrieving the collected result\n    const { collect } = await walk({\n      cancellable: async () => {\n        await new Promise(resolve => {\n          setTimeout(resolve, 0)\n        })\n        signal?.throwIfAborted()\n      },\n      current: postcssSelectorParser().astSync(query),\n      initial: {\n        nodes: new Set(nodes),\n        edges: new Set(edges),\n      },\n      collect: {\n        nodes: new Set<NodeLike>(),\n        edges: new Set<EdgeLike>(),\n      },\n      partial: { nodes, edges },\n      signal,\n      specOptions: this.#specOptions,\n      walk,\n    })\n\n    const res: QueryResponse = {\n      edges: Array.from(collect.edges),\n      nodes: Array.from(collect.nodes),\n    }\n    this.#cache.set(query, res)\n    return res\n  }\n}\n"]}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAI3C,OAAO,qBAAqB,MAAM,yBAAyB,CAAA;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAC1C,OAAO,EAAE,OAAO,EAAE,MAAM,YAAY,CAAA;AACpC,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,OAAO,EAAE,EAAE,EAAE,MAAM,SAAS,CAAA;AAC5B,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AACpC,OAAO,EACL,yBAAyB,EACzB,yBAAyB,EACzB,cAAc,GACf,MAAM,YAAY,CAAA;AAQnB,cAAc,YAAY,CAAA;AAE1B,MAAM,MAAM,GAAG,KAAK,EAAE,KAAkB,EAAE,EAAE,CAAC,KAAK,CAAA;AAElD,MAAM,SAAS,GAAG;IAChB,SAAS;IACT,KAAK,EAAE,OAAO;IACd,UAAU;IACV,OAAO,EAAE,MAAM;IACf,EAAE;IACF,OAAO,EAAE,MAAM;IACf,MAAM;IACN,IAAI,EAAE,MAAM;IACZ,QAAQ,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QACrC,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QAClD,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QAClD,OAAO,KAAK,CAAA;IACd,CAAC;IACD,MAAM,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QACnC,MAAM,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;IAC/D,CAAC;IACD,GAAG,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QAChC,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,KAAK,GAAG,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,KAAK,GAAG,EAAE,CAAC;YAC/D,MAAM,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;QAC/D,CAAC;QACD,OAAO,KAAK,CAAA;IACd,CAAC;IACD,SAAS,EAAE,MAAM;CAClB,CAAA;AACD,MAAM,YAAY,GAAG,IAAI,GAAG,CAC1B,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAC1B,CAAA;AAED,MAAM,CAAC,MAAM,IAAI,GAAG,KAAK,EACvB,KAAkB,EACI,EAAE;IACxB,MAAM,KAAK,CAAC,WAAW,EAAE,CAAA;IAEzB,MAAM,QAAQ,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;IAErD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAChB,OAAO,KAAK,CAAA;QACd,CAAC;QAED,MAAM,IAAI,KAAK,CACb,kCAAkC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CACvD,CAAA;IACH,CAAC;IACD,KAAK,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,CAAA;IAE7B,kDAAkD;IAClD,IACE,yBAAyB,CAAC,KAAK,CAAC,OAAO,CAAC;QACxC,KAAK,CAAC,OAAO,CAAC,IAAI,KAAK,QAAQ,EAC/B,CAAC;QACD,MAAM,IAAI,GAA4B,yBAAyB,CAC7D,KAAK,CAAC,OAAO,CACd,CAAA;QAED,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;YACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;gBAC7B,2DAA2D;gBAC3D,IAAI,CAAC,OAAO;oBAAE,SAAQ;gBAEtB,MAAM,UAAU,GAAgB;oBAC9B,GAAG,KAAK;oBACR,OAAO;oBACP,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;oBACvB,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;iBACxB,CAAA;gBACD,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,CAAA;YAChC,CAAC;QACH,CAAC;QAED,IAAI,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC;YACzB,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACvC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;YACD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACvC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAA;AACd,CAAC,CAAA;AAQD,kDAAkD;AAClD,kDAAkD;AAClD,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC;IAChC,YAAY;IACZ,WAAW;IACX,QAAQ;IACR,aAAa;IACb,UAAU;IACV,WAAW;IACX,MAAM;IACN,OAAO;IACP,KAAK;IACL,aAAa;IACb,WAAW;IACX,SAAS;IACT,UAAU;IACV,UAAU;IACV,QAAQ;IACR,aAAa;IACb,aAAa;IACb,UAAU;IACV,UAAU;IACV,cAAc;IACd,UAAU;IACV,eAAe;IACf,YAAY;IACZ,WAAW;CACZ,CAAC,CAAA;AAEF,MAAM,OAAO,KAAK;IAChB,MAAM,CAA4B;IAClC,MAAM,CAAW;IACjB,YAAY,CAAa;IACzB,gBAAgB,CAAiC;IAEjD;;;;OAIG;IACH,MAAM,CAAC,oBAAoB,CAAC,KAAa;QACvC,KAAK,MAAM,QAAQ,IAAI,iBAAiB,EAAE,CAAC;YACzC,IAAI,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC7B,OAAO,IAAI,CAAA;YACb,CAAC;QACH,CAAC;QACD,OAAO,KAAK,CAAA;IACd,CAAC;IAED,YAAY,EAAE,KAAK,EAAE,WAAW,EAAE,eAAe,EAAgB;QAC/D,IAAI,CAAC,MAAM,GAAG,IAAI,GAAG,EAAE,CAAA;QACvB,IAAI,CAAC,MAAM,GAAG,KAAK,CAAA;QACnB,IAAI,CAAC,YAAY,GAAG,WAAW,CAAA;QAC/B,IAAI,CAAC,gBAAgB,GAAG,eAAe,CAAA;IACzC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM,CACV,KAAa,EACb,MAAoB;QAEpB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,MAAM,IAAI,SAAS,CACjB,4CAA4C,CAC7C,CAAA;QACH,CAAC;QAED,IAAI,CAAC,KAAK;YAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,CAAA;QAE3C,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;QAC3C,IAAI,YAAY,EAAE,CAAC;YACjB,OAAO,YAAY,CAAA;QACrB,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,GAAG,CACnB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,CACvC,CAAA;QACD,MAAM,KAAK,GAAG,IAAI,GAAG,CAAW,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAA;QAE9D,0CAA0C;QAC1C,kCAAkC;QAClC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC;YAC7B,WAAW,EAAE,KAAK,IAAI,EAAE;gBACtB,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE;oBAC1B,UAAU,CAAC,OAAO,EAAE,CAAC,CAAC,CAAA;gBACxB,CAAC,CAAC,CAAA;gBACF,MAAM,EAAE,cAAc,EAAE,CAAA;YAC1B,CAAC;YACD,OAAO,EAAE,qBAAqB,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;YAC/C,OAAO,EAAE;gBACP,KAAK,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC;gBACrB,KAAK,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC;aACtB;YACD,OAAO,EAAE;gBACP,KAAK,EAAE,IAAI,GAAG,EAAY;gBAC1B,KAAK,EAAE,IAAI,GAAG,EAAY;aAC3B;YACD,OAAO,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE;YACzB,MAAM;YACN,eAAe,EAAE,IAAI,CAAC,gBAAgB;YACtC,WAAW,EAAE,IAAI,CAAC,YAAY;YAC9B,IAAI;SACL,CAAC,CAAA;QAEF,MAAM,GAAG,GAAkB;YACzB,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;YAChC,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;SACjC,CAAA;QACD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,CAAA;QAC3B,OAAO,GAAG,CAAA;IACZ,CAAC;CACF","sourcesContent":["import { error } from '@vltpkg/error-cause'\nimport type { EdgeLike, GraphLike, NodeLike } from '@vltpkg/graph'\nimport type { SpecOptions } from '@vltpkg/spec/browser'\nimport type { SecurityArchiveLike } from '@vltpkg/security-archive'\nimport postcssSelectorParser from 'postcss-selector-parser'\nimport { attribute } from './attribute.ts'\nimport { classFn } from './class.ts'\nimport { combinator } from './combinator.ts'\nimport { id } from './id.ts'\nimport { pseudo } from './pseudo.ts'\nimport {\n  isPostcssNodeWithChildren,\n  asPostcssNodeWithChildren,\n  isSelectorNode,\n} from './types.ts'\nimport type {\n  PostcssNodeWithChildren,\n  ParserState,\n  ParserFn,\n  QueryResponse,\n} from './types.ts'\n\nexport * from './types.ts'\n\nconst noopFn = async (state: ParserState) => state\n\nconst selectors = {\n  attribute,\n  class: classFn,\n  combinator,\n  comment: noopFn,\n  id,\n  nesting: noopFn,\n  pseudo,\n  root: noopFn,\n  selector: async (state: ParserState) => {\n    state.partial.nodes = new Set(state.initial.nodes)\n    state.partial.edges = new Set(state.initial.edges)\n    return state\n  },\n  string: async (state: ParserState) => {\n    throw error('Unsupported selector', { found: state.current })\n  },\n  tag: async (state: ParserState) => {\n    if (state.current.value !== '{' && state.current.value !== '}') {\n      throw error('Unsupported selector', { found: state.current })\n    }\n    return state\n  },\n  universal: noopFn,\n}\nconst selectorsMap = new Map<string, ParserFn>(\n  Object.entries(selectors),\n)\n\nexport const walk = async (\n  state: ParserState,\n): Promise<ParserState> => {\n  await state.cancellable()\n\n  const parserFn = selectorsMap.get(state.current.type)\n\n  if (!parserFn) {\n    if (state.loose) {\n      return state\n    }\n\n    throw new Error(\n      `Missing parser for query node: ${state.current.type}`,\n    )\n  }\n  state = await parserFn(state)\n\n  // pseudo selectors handle their own sub selectors\n  if (\n    isPostcssNodeWithChildren(state.current) &&\n    state.current.type !== 'pseudo'\n  ) {\n    const node: PostcssNodeWithChildren = asPostcssNodeWithChildren(\n      state.current,\n    )\n\n    if (node.nodes.length) {\n      for (let i = 0; i < node.nodes.length; i++) {\n        const current = node.nodes[i]\n        /* c8 ignore next -- impossible but TS doesn't know that */\n        if (!current) continue\n\n        const childState: ParserState = {\n          ...state,\n          current,\n          next: node.nodes[i + 1],\n          prev: node.nodes[i - 1],\n        }\n        state = await walk(childState)\n      }\n    }\n\n    if (isSelectorNode(node)) {\n      for (const edge of state.partial.edges) {\n        state.collect.edges.add(edge)\n      }\n      for (const node of state.partial.nodes) {\n        state.collect.nodes.add(node)\n      }\n    }\n  }\n  return state\n}\n\nexport type QueryOptions = {\n  graph: GraphLike\n  specOptions: SpecOptions\n  securityArchive: SecurityArchiveLike | undefined\n}\n\n// A list of known security selectors that rely on\n// data from the security-archive in order to work\nconst securitySelectors = new Set([\n  ':abandoned',\n  ':confused',\n  ':debug',\n  ':deprecated',\n  ':dynamic',\n  ':entropic',\n  ':env',\n  ':eval',\n  ':fs',\n  ':obfuscated',\n  ':minified',\n  ':native',\n  ':network',\n  ':scripts',\n  ':shell',\n  ':shrinkwrap',\n  ':suspicious',\n  ':tracker',\n  ':trivial',\n  ':undesirable',\n  ':unknown',\n  ':unmaintained',\n  ':unpopular',\n  ':unstable',\n])\n\nexport class Query {\n  #cache: Map<string, QueryResponse>\n  #graph: GraphLike\n  #specOptions: SpecOptions\n  #securityArchive: SecurityArchiveLike | undefined\n\n  /**\n   * Helper method to determine if a given query string is using any of\n   * the known security selectors. This is useful so that operations can\n   * skip hydrating the security archive if it's not needed.\n   */\n  static hasSecuritySelectors(query: string): boolean {\n    for (const selector of securitySelectors) {\n      if (query.includes(selector)) {\n        return true\n      }\n    }\n    return false\n  }\n\n  constructor({ graph, specOptions, securityArchive }: QueryOptions) {\n    this.#cache = new Map()\n    this.#graph = graph\n    this.#specOptions = specOptions\n    this.#securityArchive = securityArchive\n  }\n\n  /**\n   * Search the graph for nodes and edges that match the given query.\n   */\n  async search(\n    query: string,\n    signal?: AbortSignal,\n  ): Promise<QueryResponse> {\n    if (typeof query !== 'string') {\n      throw new TypeError(\n        'Query search argument needs to be a string',\n      )\n    }\n\n    if (!query) return { edges: [], nodes: [] }\n\n    const cachedResult = this.#cache.get(query)\n    if (cachedResult) {\n      return cachedResult\n    }\n\n    const nodes = new Set<NodeLike>(\n      Array.from(this.#graph.nodes.values()),\n    )\n    const edges = new Set<EdgeLike>(Array.from(this.#graph.edges))\n\n    // builds initial state and walks over it,\n    // retrieving the collected result\n    const { collect } = await walk({\n      cancellable: async () => {\n        await new Promise(resolve => {\n          setTimeout(resolve, 0)\n        })\n        signal?.throwIfAborted()\n      },\n      current: postcssSelectorParser().astSync(query),\n      initial: {\n        nodes: new Set(nodes),\n        edges: new Set(edges),\n      },\n      collect: {\n        nodes: new Set<NodeLike>(),\n        edges: new Set<EdgeLike>(),\n      },\n      partial: { nodes, edges },\n      signal,\n      securityArchive: this.#securityArchive,\n      specOptions: this.#specOptions,\n      walk,\n    })\n\n    const res: QueryResponse = {\n      edges: Array.from(collect.edges),\n      nodes: Array.from(collect.nodes),\n    }\n    this.#cache.set(query, res)\n    return res\n  }\n}\n"]}

package/dist/esm/pseudo/abandoned.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **missingAuthor** report alert.
+ */
+export declare const abandoned: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=abandoned.d.ts.map

package/dist/esm/pseudo/abandoned.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"abandoned.d.ts","sourceRoot":"","sources":["../../../src/pseudo/abandoned.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,SAAS,0FAGrB,CAAA"}

package/dist/esm/pseudo/abandoned.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **missingAuthor** report alert.
+ */
+export const abandoned = createSecuritySelectorFilter('abandoned', 'missingAuthor');
+//# sourceMappingURL=abandoned.js.map

package/dist/esm/pseudo/abandoned.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"abandoned.js","sourceRoot":"","sources":["../../../src/pseudo/abandoned.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,SAAS,GAAG,4BAA4B,CACnD,WAAW,EACX,eAAe,CAChB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **missingAuthor** report alert.\n */\nexport const abandoned = createSecuritySelectorFilter(\n  'abandoned',\n  'missingAuthor',\n)\n"]}

package/dist/esm/pseudo/confused.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **manifestConfusion** report alert.
+ */
+export declare const confused: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=confused.d.ts.map

package/dist/esm/pseudo/confused.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"confused.d.ts","sourceRoot":"","sources":["../../../src/pseudo/confused.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,QAAQ,0FAGpB,CAAA"}

package/dist/esm/pseudo/confused.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **manifestConfusion** report alert.
+ */
+export const confused = createSecuritySelectorFilter('confused', 'manifestConfusion');
+//# sourceMappingURL=confused.js.map

package/dist/esm/pseudo/confused.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"confused.js","sourceRoot":"","sources":["../../../src/pseudo/confused.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,4BAA4B,CAClD,UAAU,EACV,mBAAmB,CACpB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **manifestConfusion** report alert.\n */\nexport const confused = createSecuritySelectorFilter(\n  'confused',\n  'manifestConfusion',\n)\n"]}

package/dist/esm/pseudo/debug.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **debugAccess** report alert.
+ */
+export declare const debug: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=debug.d.ts.map

package/dist/esm/pseudo/debug.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"debug.d.ts","sourceRoot":"","sources":["../../../src/pseudo/debug.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,KAAK,0FAGjB,CAAA"}

package/dist/esm/pseudo/debug.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **debugAccess** report alert.
+ */
+export const debug = createSecuritySelectorFilter('debug', 'debugAccess');
+//# sourceMappingURL=debug.js.map

package/dist/esm/pseudo/debug.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"debug.js","sourceRoot":"","sources":["../../../src/pseudo/debug.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,KAAK,GAAG,4BAA4B,CAC/C,OAAO,EACP,aAAa,CACd,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **debugAccess** report alert.\n */\nexport const debug = createSecuritySelectorFilter(\n  'debug',\n  'debugAccess',\n)\n"]}

package/dist/esm/pseudo/deprecated.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **deprecated** report alert.
+ */
+export declare const deprecated: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=deprecated.d.ts.map

package/dist/esm/pseudo/deprecated.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"deprecated.d.ts","sourceRoot":"","sources":["../../../src/pseudo/deprecated.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,UAAU,0FAGtB,CAAA"}

package/dist/esm/pseudo/deprecated.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **deprecated** report alert.
+ */
+export const deprecated = createSecuritySelectorFilter('deprecated', 'deprecated');
+//# sourceMappingURL=deprecated.js.map

package/dist/esm/pseudo/deprecated.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"deprecated.js","sourceRoot":"","sources":["../../../src/pseudo/deprecated.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,4BAA4B,CACpD,YAAY,EACZ,YAAY,CACb,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **deprecated** report alert.\n */\nexport const deprecated = createSecuritySelectorFilter(\n  'deprecated',\n  'deprecated',\n)\n"]}

package/dist/esm/pseudo/dynamic.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **dynamicRequire** report alert.
+ */
+export declare const dynamic: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=dynamic.d.ts.map

package/dist/esm/pseudo/dynamic.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dynamic.d.ts","sourceRoot":"","sources":["../../../src/pseudo/dynamic.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,OAAO,0FAGnB,CAAA"}

package/dist/esm/pseudo/dynamic.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **dynamicRequire** report alert.
+ */
+export const dynamic = createSecuritySelectorFilter('dynamic', 'dynamicRequire');
+//# sourceMappingURL=dynamic.js.map

package/dist/esm/pseudo/dynamic.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dynamic.js","sourceRoot":"","sources":["../../../src/pseudo/dynamic.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,OAAO,GAAG,4BAA4B,CACjD,SAAS,EACT,gBAAgB,CACjB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **dynamicRequire** report alert.\n */\nexport const dynamic = createSecuritySelectorFilter(\n  'dynamic',\n  'dynamicRequire',\n)\n"]}

package/dist/esm/pseudo/entropic.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **highEntropyStrings** report alert.
+ */
+export declare const entropic: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=entropic.d.ts.map

package/dist/esm/pseudo/entropic.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"entropic.d.ts","sourceRoot":"","sources":["../../../src/pseudo/entropic.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,QAAQ,0FAGpB,CAAA"}

package/dist/esm/pseudo/entropic.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **highEntropyStrings** report alert.
+ */
+export const entropic = createSecuritySelectorFilter('entropic', 'highEntropyStrings');
+//# sourceMappingURL=entropic.js.map

package/dist/esm/pseudo/entropic.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"entropic.js","sourceRoot":"","sources":["../../../src/pseudo/entropic.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,4BAA4B,CAClD,UAAU,EACV,oBAAoB,CACrB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **highEntropyStrings** report alert.\n */\nexport const entropic = createSecuritySelectorFilter(\n  'entropic',\n  'highEntropyStrings',\n)\n"]}

package/dist/esm/pseudo/env.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **envVars** report alert.
+ */
+export declare const env: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=env.d.ts.map

package/dist/esm/pseudo/env.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"env.d.ts","sourceRoot":"","sources":["../../../src/pseudo/env.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,GAAG,0FAAiD,CAAA"}

package/dist/esm/pseudo/env.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **envVars** report alert.
+ */
+export const env = createSecuritySelectorFilter('env', 'envVars');
+//# sourceMappingURL=env.js.map

package/dist/esm/pseudo/env.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"env.js","sourceRoot":"","sources":["../../../src/pseudo/env.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,GAAG,GAAG,4BAA4B,CAAC,KAAK,EAAE,SAAS,CAAC,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **envVars** report alert.\n */\nexport const env = createSecuritySelectorFilter('env', 'envVars')\n"]}

package/dist/esm/pseudo/eval.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **usesEval** report alert.
+ */
+export declare const evalParser: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=eval.d.ts.map

package/dist/esm/pseudo/eval.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"eval.d.ts","sourceRoot":"","sources":["../../../src/pseudo/eval.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,UAAU,0FAGtB,CAAA"}

package/dist/esm/pseudo/eval.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **usesEval** report alert.
+ */
+export const evalParser = createSecuritySelectorFilter('eval', 'usesEval');
+//# sourceMappingURL=eval.js.map

package/dist/esm/pseudo/eval.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"eval.js","sourceRoot":"","sources":["../../../src/pseudo/eval.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,4BAA4B,CACpD,MAAM,EACN,UAAU,CACX,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **usesEval** report alert.\n */\nexport const evalParser = createSecuritySelectorFilter(\n  'eval',\n  'usesEval',\n)\n"]}

package/dist/esm/pseudo/fs.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **filesystemAccess** report alert.
+ */
+export declare const fs: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=fs.d.ts.map

package/dist/esm/pseudo/fs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fs.d.ts","sourceRoot":"","sources":["../../../src/pseudo/fs.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,EAAE,0FAGd,CAAA"}

package/dist/esm/pseudo/fs.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **filesystemAccess** report alert.
+ */
+export const fs = createSecuritySelectorFilter('fs', 'filesystemAccess');
+//# sourceMappingURL=fs.js.map

package/dist/esm/pseudo/fs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"fs.js","sourceRoot":"","sources":["../../../src/pseudo/fs.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,EAAE,GAAG,4BAA4B,CAC5C,IAAI,EACJ,kBAAkB,CACnB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **filesystemAccess** report alert.\n */\nexport const fs = createSecuritySelectorFilter(\n  'fs',\n  'filesystemAccess',\n)\n"]}

package/dist/esm/pseudo/helpers.d.ts

@@ -12,4 +12,8 @@ export declare const removeDanglingEdges: (state: ParserState) => void;
  * Removes quotes from a string value.
  */
 export declare const removeQuotes: (value: string) => string;
+/**
+ * Reusable security selector alert filter.
+ */
+export declare const createSecuritySelectorFilter: (name: string, type: string) => (state: ParserState) => Promise<ParserState>;
 //# sourceMappingURL=helpers.d.ts.map

package/dist/esm/pseudo/helpers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../../src/pseudo/helpers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AAC7C,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAE9C;;GAEG;AACH,eAAO,MAAM,UAAU,UAAW,WAAW,QAAQ,QAAQ,SAK5D,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,mBAAmB,UAAW,WAAW,SAMrD,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,YAAY,UAAW,MAAM,WACR,CAAA"}
+{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../../src/pseudo/helpers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AAC7C,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAE9C;;GAEG;AACH,eAAO,MAAM,UAAU,UAAW,WAAW,QAAQ,QAAQ,SAK5D,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,mBAAmB,UAAW,WAAW,SAMrD,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,YAAY,UAAW,MAAM,WACR,CAAA;AAElC;;GAEG;AACH,eAAO,MAAM,4BAA4B,SACjC,MAAM,QACN,MAAM,aAES,WAAW,yBAqBjC,CAAA"}

package/dist/esm/pseudo/helpers.js

@@ -21,4 +21,23 @@ export const removeDanglingEdges = (state) => {
  * Removes quotes from a string value.
  */
 export const removeQuotes = (value) => value.replace(/^"(.*?)"$/, '$1');
+/**
+ * Reusable security selector alert filter.
+ */
+export const createSecuritySelectorFilter = (name, type) => {
+    return async (state) => {
+        if (!state.securityArchive) {
+            throw new Error(`Missing security archive while trying to parse the :${name} security selector`);
+        }
+        for (const node of state.partial.nodes) {
+            const report = state.securityArchive.get(node.id);
+            const exclude = !report?.alerts.some(alert => alert.type === type);
+            if (exclude) {
+                removeNode(state, node);
+            }
+        }
+        removeDanglingEdges(state);
+        return state;
+    };
+};
 //# sourceMappingURL=helpers.js.map

package/dist/esm/pseudo/helpers.js.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.js","sourceRoot":"","sources":["../../../src/pseudo/helpers.ts"],"names":[],"mappings":"AAGA;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,KAAkB,EAAE,IAAc,EAAE,EAAE;IAC/D,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;QAChC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;IAClC,CAAC;IACD,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;AAClC,CAAC,CAAA;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,KAAkB,EAAE,EAAE;IACxD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACvC,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;YACb,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;QAClC,CAAC;IACH,CAAC;AACH,CAAC,CAAA;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,KAAa,EAAE,EAAE,CAC5C,KAAK,CAAC,OAAO,CAAC,WAAW,EAAE,IAAI,CAAC,CAAA","sourcesContent":["import type { NodeLike } from '@vltpkg/graph'\nimport type { ParserState } from '../types.js'\n\n/**\n * Removes a node and its incoming edges from the results.\n */\nexport const removeNode = (state: ParserState, node: NodeLike) => {\n  for (const edge of node.edgesIn) {\n    state.partial.edges.delete(edge)\n  }\n  state.partial.nodes.delete(node)\n}\n\n/**\n * Removes any edges that have no destination node from the results.\n */\nexport const removeDanglingEdges = (state: ParserState) => {\n  for (const edge of state.partial.edges) {\n    if (!edge.to) {\n      state.partial.edges.delete(edge)\n    }\n  }\n}\n\n/**\n * Removes quotes from a string value.\n */\nexport const removeQuotes = (value: string) =>\n  value.replace(/^\"(.*?)\"$/, '$1')\n"]}
+{"version":3,"file":"helpers.js","sourceRoot":"","sources":["../../../src/pseudo/helpers.ts"],"names":[],"mappings":"AAGA;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,KAAkB,EAAE,IAAc,EAAE,EAAE;IAC/D,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;QAChC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;IAClC,CAAC;IACD,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;AAClC,CAAC,CAAA;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,KAAkB,EAAE,EAAE;IACxD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACvC,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;YACb,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;QAClC,CAAC;IACH,CAAC;AACH,CAAC,CAAA;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,KAAa,EAAE,EAAE,CAC5C,KAAK,CAAC,OAAO,CAAC,WAAW,EAAE,IAAI,CAAC,CAAA;AAElC;;GAEG;AACH,MAAM,CAAC,MAAM,4BAA4B,GAAG,CAC1C,IAAY,EACZ,IAAY,EACZ,EAAE;IACF,OAAO,KAAK,EAAE,KAAkB,EAAE,EAAE;QAClC,IAAI,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC;YAC3B,MAAM,IAAI,KAAK,CACb,uDAAuD,IAAI,oBAAoB,CAChF,CAAA;QACH,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;YACvC,MAAM,MAAM,GAAG,KAAK,CAAC,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;YACjD,MAAM,OAAO,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,IAAI,CAClC,KAAK,CAAC,EAAE,CAAC,KAAK,CAAC,IAAI,KAAK,IAAI,CAC7B,CAAA;YACD,IAAI,OAAO,EAAE,CAAC;gBACZ,UAAU,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;YACzB,CAAC;QACH,CAAC;QAED,mBAAmB,CAAC,KAAK,CAAC,CAAA;QAE1B,OAAO,KAAK,CAAA;IACd,CAAC,CAAA;AACH,CAAC,CAAA","sourcesContent":["import type { NodeLike } from '@vltpkg/graph'\nimport type { ParserState } from '../types.js'\n\n/**\n * Removes a node and its incoming edges from the results.\n */\nexport const removeNode = (state: ParserState, node: NodeLike) => {\n  for (const edge of node.edgesIn) {\n    state.partial.edges.delete(edge)\n  }\n  state.partial.nodes.delete(node)\n}\n\n/**\n * Removes any edges that have no destination node from the results.\n */\nexport const removeDanglingEdges = (state: ParserState) => {\n  for (const edge of state.partial.edges) {\n    if (!edge.to) {\n      state.partial.edges.delete(edge)\n    }\n  }\n}\n\n/**\n * Removes quotes from a string value.\n */\nexport const removeQuotes = (value: string) =>\n  value.replace(/^\"(.*?)\"$/, '$1')\n\n/**\n * Reusable security selector alert filter.\n */\nexport const createSecuritySelectorFilter = (\n  name: string,\n  type: string,\n) => {\n  return async (state: ParserState) => {\n    if (!state.securityArchive) {\n      throw new Error(\n        `Missing security archive while trying to parse the :${name} security selector`,\n      )\n    }\n\n    for (const node of state.partial.nodes) {\n      const report = state.securityArchive.get(node.id)\n      const exclude = !report?.alerts.some(\n        alert => alert.type === type,\n      )\n      if (exclude) {\n        removeNode(state, node)\n      }\n    }\n\n    removeDanglingEdges(state)\n\n    return state\n  }\n}\n"]}

package/dist/esm/pseudo/minified.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **minifiedFile** report alert.
+ */
+export declare const minified: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=minified.d.ts.map

package/dist/esm/pseudo/minified.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"minified.d.ts","sourceRoot":"","sources":["../../../src/pseudo/minified.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,QAAQ,0FAGpB,CAAA"}

package/dist/esm/pseudo/minified.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **minifiedFile** report alert.
+ */
+export const minified = createSecuritySelectorFilter('minified', 'minifiedFile');
+//# sourceMappingURL=minified.js.map

package/dist/esm/pseudo/minified.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"minified.js","sourceRoot":"","sources":["../../../src/pseudo/minified.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,4BAA4B,CAClD,UAAU,EACV,cAAc,CACf,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **minifiedFile** report alert.\n */\nexport const minified = createSecuritySelectorFilter(\n  'minified',\n  'minifiedFile',\n)\n"]}

package/dist/esm/pseudo/native.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **hasNativeCode** report alert.
+ */
+export declare const nativeParser: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=native.d.ts.map

package/dist/esm/pseudo/native.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"native.d.ts","sourceRoot":"","sources":["../../../src/pseudo/native.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,YAAY,0FAGxB,CAAA"}

package/dist/esm/pseudo/native.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **hasNativeCode** report alert.
+ */
+export const nativeParser = createSecuritySelectorFilter('native', 'hasNativeCode');
+//# sourceMappingURL=native.js.map

package/dist/esm/pseudo/native.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"native.js","sourceRoot":"","sources":["../../../src/pseudo/native.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,4BAA4B,CACtD,QAAQ,EACR,eAAe,CAChB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **hasNativeCode** report alert.\n */\nexport const nativeParser = createSecuritySelectorFilter(\n  'native',\n  'hasNativeCode',\n)\n"]}

package/dist/esm/pseudo/network.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **networkAccess** report alert.
+ */
+export declare const network: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=network.d.ts.map

package/dist/esm/pseudo/network.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"network.d.ts","sourceRoot":"","sources":["../../../src/pseudo/network.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,OAAO,0FAGnB,CAAA"}

package/dist/esm/pseudo/network.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **networkAccess** report alert.
+ */
+export const network = createSecuritySelectorFilter('network', 'networkAccess');
+//# sourceMappingURL=network.js.map

package/dist/esm/pseudo/network.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"network.js","sourceRoot":"","sources":["../../../src/pseudo/network.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,OAAO,GAAG,4BAA4B,CACjD,SAAS,EACT,eAAe,CAChB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **networkAccess** report alert.\n */\nexport const network = createSecuritySelectorFilter(\n  'network',\n  'networkAccess',\n)\n"]}

package/dist/esm/pseudo/obfuscated.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have an **obfuscatedFile** report alert.
+ */
+export declare const obfuscated: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=obfuscated.d.ts.map

package/dist/esm/pseudo/obfuscated.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"obfuscated.d.ts","sourceRoot":"","sources":["../../../src/pseudo/obfuscated.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,UAAU,0FAGtB,CAAA"}

package/dist/esm/pseudo/obfuscated.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have an **obfuscatedFile** report alert.
+ */
+export const obfuscated = createSecuritySelectorFilter('obfuscated', 'obfuscatedFile');
+//# sourceMappingURL=obfuscated.js.map

package/dist/esm/pseudo/obfuscated.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"obfuscated.js","sourceRoot":"","sources":["../../../src/pseudo/obfuscated.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,4BAA4B,CACpD,YAAY,EACZ,gBAAgB,CACjB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have an **obfuscatedFile** report alert.\n */\nexport const obfuscated = createSecuritySelectorFilter(\n  'obfuscated',\n  'obfuscatedFile',\n)\n"]}

package/dist/esm/pseudo/scripts.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have an **installScripts** report alert.
+ */
+export declare const scripts: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=scripts.d.ts.map

package/dist/esm/pseudo/scripts.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scripts.d.ts","sourceRoot":"","sources":["../../../src/pseudo/scripts.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,OAAO,0FAGnB,CAAA"}