@vltpkg/query 0.0.0-5 → 0.0.0-7

package/README.md

@@ -12,7 +12,7 @@ The **vlt** query syntax engine.
 ```js
 import { Query } from '@vltpkg/query'
 
-const query = new Query({ nodes })
+const query = new Query({ nodes, specOptions, securityArchive })
 query.search(':root > *')
 ```
 
@@ -160,3 +160,109 @@ e.g: `#foo` is the same as `[name=foo]`
 - `:root` Returns the root node, that represents the package defined
   at the top-level `package.json` of your project folder.
 - `:scope` Returns the current scope of a given selector
+
+### Security Selectors
+
+The following pseudo-selectors rely on security data provided by
+[Socket](https://socket.dev/), the usage of any of these selectors is
+going to require a network call to hydrate package report data. Keep
+in mind that this is going to slow down end-user query usage since the
+security data needs to be fetched prior to a `Query` instantiation.
+
+- `:abandoned` Matches packages that were published by an npm account
+  that no longer exists.
+- `:confused` Matches packages affected by manifest confusion. This
+  could be malicious or caused by an error when publishing the
+  package.
+- `:cve(<id>)` Matches packages that have a CVE alert with the
+  specified CVE ID. The ID parameter is required and should be a valid
+  CVE identifier (e.g., `CVE-2023-1234`). This selector can be used to
+  find packages affected by specific known vulnerabilities.
+- `:cwe(<id>)` Matches packages that have a CWE alert with the
+  specified CWE ID. The ID parameter is required and should be a valid
+  CWE identifier (e.g., `CWE-79`).
+- `:debug` Matches packages that use debug, reflection and dynamic
+  code execution features.
+- `:deprecated` Matches packages marked as deprecated. This could
+  indicate that a single version should not be used, or that the
+  package is no longer maintained and any new vulnerabilities will not
+  be fixed.
+- `:dynamic` Matches packages that uses dynamic imports.
+- `:entropic` Matches packages that contains high entropic strings.
+  This could be a sign of encrypted data, leaked secrets or obfuscated
+  code.
+- `:env` Matches packages that accesses environment variables, which
+  may be a sign of credential stuffing or data theft.
+- `:eval` Matches packages that use dynamic code execution (e.g.,
+  eval()), which is a dangerous practice. This can prevent the code
+  from running in certain environments and increases the risk that the
+  code may contain exploits or malicious behavior.
+- `:fs` Matches packages that accesses the file system, and could
+  potentially read sensitive data.
+- `:license(<type>)` Matches packages based on different potential
+  license issues:
+  - `:license(unlicensed)` Matches packages with no license.
+  - `:license(misc)` Matches packages with fine-grained problems.
+  - `:license(restricted)` Matches packages with a license that is not
+    permissive.
+  - `:license(ambiguous)` Matches packages with ambiguous licensing.
+  - `:license(copyleft)` Matches packages with a copyleft license.
+  - `:license(unknown)` Matches packages that have potential license
+    data but its type could not be determined.
+  - `:license(none)` Matches packages that have no license data.
+  - `:license(exception)` Matches packages that have SPDX license
+    exception.
+- `:malware(<type>)` Matches packages that may contain malware. The
+  type parameter is required and can be one of the following:
+  - `critical` or `0`
+  - `high` or `1`
+  - `medium` or `2`
+  - `low` or `3`
+- `:minified` Matches packages that contain minified code. This may be
+  harmless in some cases where minified code is included in packaged
+  libraries.
+- `:native` Matches packages that contain native code (e.g., compiled
+  binaries or shared libraries). Including native code can obscure
+  malicious behavior.
+- `:network` Matches packages that access the network.
+- `:obfuscated` Matches packages that use obfuscated files,
+  intentionally packed to hide their behavior. This could be a sign of
+  malware.
+- `:scripts` Matches packages that have scripts that are run when the
+  package is installed. The majority of malware in npm is hidden in
+  install scripts.
+- `:severity` Matches packages based of the severity level of any
+  attached CVE. The type paremeter is required and can be one of the
+  following:
+  - `critical` or `0`
+  - `high` or `1`
+  - `medium` or `2`
+  - `low` or `3`
+- `:shell` Matches packages that accesses the system shell. Accessing
+  the system shell increases the risk of executing arbitrary code.
+- `:shrinkwrap` Matches packages that contains a shrinkwrap file. This
+  may allow the package to bypass normal install procedures.
+- `:squat(<type>)` Matches packages with names similar to other
+  popular packages and may not be the package you want. The type
+  parameter is required and can be one of the following:
+  - `critical` or `0`
+  - `medium` or `2`
+- `:suspicious` Matches packages that may have its GitHub repository
+  artificially inflated with stars (from bots, crowdsourcing, etc.).
+- `:tracker` Matches packages that contains telemetry which tracks how
+  it is used.
+- `:trivial` Matches packages that have less than 10 lines of code.
+  These packages are easily copied into your own project and may not
+  warrant the additional supply chain risk of an external dependency.
+- `:undesirable` Matches packages that are a joke, parody, or includes
+  undocumented or hidden behavior unrelated to its primary function.
+- `:unknown` Matches packages that have a new npm collaborator
+  publishing a version of the package for the first time. New
+  collaborators are usually benign additions to a project, but do
+  indicate a change to the security surface area of a package.
+- `:unmaintained` Matches packages that have not been updated in more
+  than 5 years and may be unmaintained.
+- `:unpopular` Matches packages that are not very popular.
+- `:unstable` Matches packages with unstable ownership. This indicates
+  a new collaborator has begun publishing package versions. Package
+  stability and security risk may be elevated.

package/dist/esm/index.d.ts

@@ -1,15 +1,26 @@
 import type { GraphLike } from '@vltpkg/graph';
 import type { SpecOptions } from '@vltpkg/spec/browser';
+import type { SecurityArchiveLike } from '@vltpkg/security-archive';
 import type { ParserState, QueryResponse } from './types.ts';
 export * from './types.ts';
 export declare const walk: (state: ParserState) => Promise<ParserState>;
 export type QueryOptions = {
     graph: GraphLike;
     specOptions: SpecOptions;
+    securityArchive: SecurityArchiveLike | undefined;
 };
 export declare class Query {
     #private;
-    constructor({ graph, specOptions }: QueryOptions);
+    /**
+     * Helper method to determine if a given query string is using any of
+     * the known security selectors. This is useful so that operations can
+     * skip hydrating the security archive if it's not needed.
+     */
+    static hasSecuritySelectors(query: string): boolean;
+    constructor({ graph, specOptions, securityArchive }: QueryOptions);
+    /**
+     * Search the graph for nodes and edges that match the given query.
+     */
     search(query: string, signal?: AbortSignal): Promise<QueryResponse>;
 }
 //# sourceMappingURL=index.d.ts.map

package/dist/esm/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAY,SAAS,EAAY,MAAM,eAAe,CAAA;AAClE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAA;AAYvD,OAAO,KAAK,EAEV,WAAW,EAEX,aAAa,EACd,MAAM,YAAY,CAAA;AAEnB,cAAc,YAAY,CAAA;AAiC1B,eAAO,MAAM,IAAI,UACR,WAAW,KACjB,OAAO,CAAC,WAAW,CAmDrB,CAAA;AAED,MAAM,MAAM,YAAY,GAAG;IACzB,KAAK,EAAE,SAAS,CAAA;IAChB,WAAW,EAAE,WAAW,CAAA;CACzB,CAAA;AAED,qBAAa,KAAK;;gBAKJ,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,YAAY;IAM1C,MAAM,CACV,KAAK,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,WAAW,GACnB,OAAO,CAAC,aAAa,CAAC;CAkD1B"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAY,SAAS,EAAY,MAAM,eAAe,CAAA;AAClE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAA;AACvD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAYnE,OAAO,KAAK,EAEV,WAAW,EAEX,aAAa,EACd,MAAM,YAAY,CAAA;AAEnB,cAAc,YAAY,CAAA;AAiC1B,eAAO,MAAM,IAAI,UACR,WAAW,KACjB,OAAO,CAAC,WAAW,CAmDrB,CAAA;AAED,MAAM,MAAM,YAAY,GAAG;IACzB,KAAK,EAAE,SAAS,CAAA;IAChB,WAAW,EAAE,WAAW,CAAA;IACxB,eAAe,EAAE,mBAAmB,GAAG,SAAS,CAAA;CACjD,CAAA;AAqCD,qBAAa,KAAK;;IAMhB;;;;OAIG;IACH,MAAM,CAAC,oBAAoB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO;gBASvC,EAAE,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,EAAE,YAAY;IAOjE;;OAEG;IACG,MAAM,CACV,KAAK,EAAE,MAAM,EACb,MAAM,CAAC,EAAE,WAAW,GACnB,OAAO,CAAC,aAAa,CAAC;CAmD1B"}

package/dist/esm/index.js

@@ -74,15 +74,67 @@ export const walk = async (state) => {
     }
     return state;
 };
+// A list of known security selectors that rely on
+// data from the security-archive in order to work
+const securitySelectors = new Set([
+    ':abandoned',
+    ':confused',
+    ':cve',
+    ':debug',
+    ':deprecated',
+    ':dynamic',
+    ':entropic',
+    ':env',
+    ':eval',
+    ':fs',
+    ':license',
+    ':malware',
+    ':minified',
+    ':native',
+    ':network',
+    ':obfuscated',
+    ':scripts',
+    ':sev',
+    ':severity',
+    ':shell',
+    ':shrinkwrap',
+    ':squat',
+    ':suspicious',
+    ':tracker',
+    ':trivial',
+    ':undesirable',
+    ':unknown',
+    ':unmaintained',
+    ':unpopular',
+    ':unstable',
+]);
 export class Query {
     #cache;
     #graph;
     #specOptions;
-    constructor({ graph, specOptions }) {
+    #securityArchive;
+    /**
+     * Helper method to determine if a given query string is using any of
+     * the known security selectors. This is useful so that operations can
+     * skip hydrating the security archive if it's not needed.
+     */
+    static hasSecuritySelectors(query) {
+        for (const selector of securitySelectors) {
+            if (query.includes(selector)) {
+                return true;
+            }
+        }
+        return false;
+    }
+    constructor({ graph, specOptions, securityArchive }) {
         this.#cache = new Map();
         this.#graph = graph;
         this.#specOptions = specOptions;
+        this.#securityArchive = securityArchive;
     }
+    /**
+     * Search the graph for nodes and edges that match the given query.
+     */
     async search(query, signal) {
         if (typeof query !== 'string') {
             throw new TypeError('Query search argument needs to be a string');
@@ -115,6 +167,7 @@ export class Query {
             },
             partial: { nodes, edges },
             signal,
+            securityArchive: this.#securityArchive,
             specOptions: this.#specOptions,
             walk,
         });

package/dist/esm/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAG3C,OAAO,qBAAqB,MAAM,yBAAyB,CAAA;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAC1C,OAAO,EAAE,OAAO,EAAE,MAAM,YAAY,CAAA;AACpC,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,OAAO,EAAE,EAAE,EAAE,MAAM,SAAS,CAAA;AAC5B,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AACpC,OAAO,EACL,yBAAyB,EACzB,yBAAyB,EACzB,cAAc,GACf,MAAM,YAAY,CAAA;AAQnB,cAAc,YAAY,CAAA;AAE1B,MAAM,MAAM,GAAG,KAAK,EAAE,KAAkB,EAAE,EAAE,CAAC,KAAK,CAAA;AAElD,MAAM,SAAS,GAAG;IAChB,SAAS;IACT,KAAK,EAAE,OAAO;IACd,UAAU;IACV,OAAO,EAAE,MAAM;IACf,EAAE;IACF,OAAO,EAAE,MAAM;IACf,MAAM;IACN,IAAI,EAAE,MAAM;IACZ,QAAQ,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QACrC,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QAClD,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QAClD,OAAO,KAAK,CAAA;IACd,CAAC;IACD,MAAM,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QACnC,MAAM,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;IAC/D,CAAC;IACD,GAAG,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QAChC,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,KAAK,GAAG,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,KAAK,GAAG,EAAE,CAAC;YAC/D,MAAM,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;QAC/D,CAAC;QACD,OAAO,KAAK,CAAA;IACd,CAAC;IACD,SAAS,EAAE,MAAM;CAClB,CAAA;AACD,MAAM,YAAY,GAAG,IAAI,GAAG,CAC1B,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAC1B,CAAA;AAED,MAAM,CAAC,MAAM,IAAI,GAAG,KAAK,EACvB,KAAkB,EACI,EAAE;IACxB,MAAM,KAAK,CAAC,WAAW,EAAE,CAAA;IAEzB,MAAM,QAAQ,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;IAErD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAChB,OAAO,KAAK,CAAA;QACd,CAAC;QAED,MAAM,IAAI,KAAK,CACb,kCAAkC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CACvD,CAAA;IACH,CAAC;IACD,KAAK,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,CAAA;IAE7B,kDAAkD;IAClD,IACE,yBAAyB,CAAC,KAAK,CAAC,OAAO,CAAC;QACxC,KAAK,CAAC,OAAO,CAAC,IAAI,KAAK,QAAQ,EAC/B,CAAC;QACD,MAAM,IAAI,GAA4B,yBAAyB,CAC7D,KAAK,CAAC,OAAO,CACd,CAAA;QAED,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;YACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;gBAC7B,2DAA2D;gBAC3D,IAAI,CAAC,OAAO;oBAAE,SAAQ;gBAEtB,MAAM,UAAU,GAAgB;oBAC9B,GAAG,KAAK;oBACR,OAAO;oBACP,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;oBACvB,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;iBACxB,CAAA;gBACD,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,CAAA;YAChC,CAAC;QACH,CAAC;QAED,IAAI,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC;YACzB,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACvC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;YACD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACvC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAA;AACd,CAAC,CAAA;AAOD,MAAM,OAAO,KAAK;IAChB,MAAM,CAA4B;IAClC,MAAM,CAAW;IACjB,YAAY,CAAa;IAEzB,YAAY,EAAE,KAAK,EAAE,WAAW,EAAgB;QAC9C,IAAI,CAAC,MAAM,GAAG,IAAI,GAAG,EAAE,CAAA;QACvB,IAAI,CAAC,MAAM,GAAG,KAAK,CAAA;QACnB,IAAI,CAAC,YAAY,GAAG,WAAW,CAAA;IACjC,CAAC;IAED,KAAK,CAAC,MAAM,CACV,KAAa,EACb,MAAoB;QAEpB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,MAAM,IAAI,SAAS,CACjB,4CAA4C,CAC7C,CAAA;QACH,CAAC;QAED,IAAI,CAAC,KAAK;YAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,CAAA;QAE3C,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;QAC3C,IAAI,YAAY,EAAE,CAAC;YACjB,OAAO,YAAY,CAAA;QACrB,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,GAAG,CACnB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,CACvC,CAAA;QACD,MAAM,KAAK,GAAG,IAAI,GAAG,CAAW,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAA;QAE9D,0CAA0C;QAC1C,kCAAkC;QAClC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC;YAC7B,WAAW,EAAE,KAAK,IAAI,EAAE;gBACtB,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE;oBAC1B,UAAU,CAAC,OAAO,EAAE,CAAC,CAAC,CAAA;gBACxB,CAAC,CAAC,CAAA;gBACF,MAAM,EAAE,cAAc,EAAE,CAAA;YAC1B,CAAC;YACD,OAAO,EAAE,qBAAqB,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;YAC/C,OAAO,EAAE;gBACP,KAAK,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC;gBACrB,KAAK,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC;aACtB;YACD,OAAO,EAAE;gBACP,KAAK,EAAE,IAAI,GAAG,EAAY;gBAC1B,KAAK,EAAE,IAAI,GAAG,EAAY;aAC3B;YACD,OAAO,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE;YACzB,MAAM;YACN,WAAW,EAAE,IAAI,CAAC,YAAY;YAC9B,IAAI;SACL,CAAC,CAAA;QAEF,MAAM,GAAG,GAAkB;YACzB,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;YAChC,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;SACjC,CAAA;QACD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,CAAA;QAC3B,OAAO,GAAG,CAAA;IACZ,CAAC;CACF","sourcesContent":["import { error } from '@vltpkg/error-cause'\nimport type { EdgeLike, GraphLike, NodeLike } from '@vltpkg/graph'\nimport type { SpecOptions } from '@vltpkg/spec/browser'\nimport postcssSelectorParser from 'postcss-selector-parser'\nimport { attribute } from './attribute.ts'\nimport { classFn } from './class.ts'\nimport { combinator } from './combinator.ts'\nimport { id } from './id.ts'\nimport { pseudo } from './pseudo.ts'\nimport {\n  isPostcssNodeWithChildren,\n  asPostcssNodeWithChildren,\n  isSelectorNode,\n} from './types.ts'\nimport type {\n  PostcssNodeWithChildren,\n  ParserState,\n  ParserFn,\n  QueryResponse,\n} from './types.ts'\n\nexport * from './types.ts'\n\nconst noopFn = async (state: ParserState) => state\n\nconst selectors = {\n  attribute,\n  class: classFn,\n  combinator,\n  comment: noopFn,\n  id,\n  nesting: noopFn,\n  pseudo,\n  root: noopFn,\n  selector: async (state: ParserState) => {\n    state.partial.nodes = new Set(state.initial.nodes)\n    state.partial.edges = new Set(state.initial.edges)\n    return state\n  },\n  string: async (state: ParserState) => {\n    throw error('Unsupported selector', { found: state.current })\n  },\n  tag: async (state: ParserState) => {\n    if (state.current.value !== '{' && state.current.value !== '}') {\n      throw error('Unsupported selector', { found: state.current })\n    }\n    return state\n  },\n  universal: noopFn,\n}\nconst selectorsMap = new Map<string, ParserFn>(\n  Object.entries(selectors),\n)\n\nexport const walk = async (\n  state: ParserState,\n): Promise<ParserState> => {\n  await state.cancellable()\n\n  const parserFn = selectorsMap.get(state.current.type)\n\n  if (!parserFn) {\n    if (state.loose) {\n      return state\n    }\n\n    throw new Error(\n      `Missing parser for query node: ${state.current.type}`,\n    )\n  }\n  state = await parserFn(state)\n\n  // pseudo selectors handle their own sub selectors\n  if (\n    isPostcssNodeWithChildren(state.current) &&\n    state.current.type !== 'pseudo'\n  ) {\n    const node: PostcssNodeWithChildren = asPostcssNodeWithChildren(\n      state.current,\n    )\n\n    if (node.nodes.length) {\n      for (let i = 0; i < node.nodes.length; i++) {\n        const current = node.nodes[i]\n        /* c8 ignore next -- impossible but TS doesn't know that */\n        if (!current) continue\n\n        const childState: ParserState = {\n          ...state,\n          current,\n          next: node.nodes[i + 1],\n          prev: node.nodes[i - 1],\n        }\n        state = await walk(childState)\n      }\n    }\n\n    if (isSelectorNode(node)) {\n      for (const edge of state.partial.edges) {\n        state.collect.edges.add(edge)\n      }\n      for (const node of state.partial.nodes) {\n        state.collect.nodes.add(node)\n      }\n    }\n  }\n  return state\n}\n\nexport type QueryOptions = {\n  graph: GraphLike\n  specOptions: SpecOptions\n}\n\nexport class Query {\n  #cache: Map<string, QueryResponse>\n  #graph: GraphLike\n  #specOptions: SpecOptions\n\n  constructor({ graph, specOptions }: QueryOptions) {\n    this.#cache = new Map()\n    this.#graph = graph\n    this.#specOptions = specOptions\n  }\n\n  async search(\n    query: string,\n    signal?: AbortSignal,\n  ): Promise<QueryResponse> {\n    if (typeof query !== 'string') {\n      throw new TypeError(\n        'Query search argument needs to be a string',\n      )\n    }\n\n    if (!query) return { edges: [], nodes: [] }\n\n    const cachedResult = this.#cache.get(query)\n    if (cachedResult) {\n      return cachedResult\n    }\n\n    const nodes = new Set<NodeLike>(\n      Array.from(this.#graph.nodes.values()),\n    )\n    const edges = new Set<EdgeLike>(Array.from(this.#graph.edges))\n\n    // builds initial state and walks over it,\n    // retrieving the collected result\n    const { collect } = await walk({\n      cancellable: async () => {\n        await new Promise(resolve => {\n          setTimeout(resolve, 0)\n        })\n        signal?.throwIfAborted()\n      },\n      current: postcssSelectorParser().astSync(query),\n      initial: {\n        nodes: new Set(nodes),\n        edges: new Set(edges),\n      },\n      collect: {\n        nodes: new Set<NodeLike>(),\n        edges: new Set<EdgeLike>(),\n      },\n      partial: { nodes, edges },\n      signal,\n      specOptions: this.#specOptions,\n      walk,\n    })\n\n    const res: QueryResponse = {\n      edges: Array.from(collect.edges),\n      nodes: Array.from(collect.nodes),\n    }\n    this.#cache.set(query, res)\n    return res\n  }\n}\n"]}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAI3C,OAAO,qBAAqB,MAAM,yBAAyB,CAAA;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAC1C,OAAO,EAAE,OAAO,EAAE,MAAM,YAAY,CAAA;AACpC,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,OAAO,EAAE,EAAE,EAAE,MAAM,SAAS,CAAA;AAC5B,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAA;AACpC,OAAO,EACL,yBAAyB,EACzB,yBAAyB,EACzB,cAAc,GACf,MAAM,YAAY,CAAA;AAQnB,cAAc,YAAY,CAAA;AAE1B,MAAM,MAAM,GAAG,KAAK,EAAE,KAAkB,EAAE,EAAE,CAAC,KAAK,CAAA;AAElD,MAAM,SAAS,GAAG;IAChB,SAAS;IACT,KAAK,EAAE,OAAO;IACd,UAAU;IACV,OAAO,EAAE,MAAM;IACf,EAAE;IACF,OAAO,EAAE,MAAM;IACf,MAAM;IACN,IAAI,EAAE,MAAM;IACZ,QAAQ,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QACrC,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QAClD,KAAK,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QAClD,OAAO,KAAK,CAAA;IACd,CAAC;IACD,MAAM,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QACnC,MAAM,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;IAC/D,CAAC;IACD,GAAG,EAAE,KAAK,EAAE,KAAkB,EAAE,EAAE;QAChC,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,KAAK,GAAG,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,KAAK,GAAG,EAAE,CAAC;YAC/D,MAAM,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;QAC/D,CAAC;QACD,OAAO,KAAK,CAAA;IACd,CAAC;IACD,SAAS,EAAE,MAAM;CAClB,CAAA;AACD,MAAM,YAAY,GAAG,IAAI,GAAG,CAC1B,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAC1B,CAAA;AAED,MAAM,CAAC,MAAM,IAAI,GAAG,KAAK,EACvB,KAAkB,EACI,EAAE;IACxB,MAAM,KAAK,CAAC,WAAW,EAAE,CAAA;IAEzB,MAAM,QAAQ,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;IAErD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAChB,OAAO,KAAK,CAAA;QACd,CAAC;QAED,MAAM,IAAI,KAAK,CACb,kCAAkC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CACvD,CAAA;IACH,CAAC;IACD,KAAK,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,CAAA;IAE7B,kDAAkD;IAClD,IACE,yBAAyB,CAAC,KAAK,CAAC,OAAO,CAAC;QACxC,KAAK,CAAC,OAAO,CAAC,IAAI,KAAK,QAAQ,EAC/B,CAAC;QACD,MAAM,IAAI,GAA4B,yBAAyB,CAC7D,KAAK,CAAC,OAAO,CACd,CAAA;QAED,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;YACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;gBAC7B,2DAA2D;gBAC3D,IAAI,CAAC,OAAO;oBAAE,SAAQ;gBAEtB,MAAM,UAAU,GAAgB;oBAC9B,GAAG,KAAK;oBACR,OAAO;oBACP,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;oBACvB,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;iBACxB,CAAA;gBACD,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,CAAA;YAChC,CAAC;QACH,CAAC;QAED,IAAI,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC;YACzB,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACvC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;YACD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACvC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAA;AACd,CAAC,CAAA;AAQD,kDAAkD;AAClD,kDAAkD;AAClD,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC;IAChC,YAAY;IACZ,WAAW;IACX,MAAM;IACN,QAAQ;IACR,aAAa;IACb,UAAU;IACV,WAAW;IACX,MAAM;IACN,OAAO;IACP,KAAK;IACL,UAAU;IACV,UAAU;IACV,WAAW;IACX,SAAS;IACT,UAAU;IACV,aAAa;IACb,UAAU;IACV,MAAM;IACN,WAAW;IACX,QAAQ;IACR,aAAa;IACb,QAAQ;IACR,aAAa;IACb,UAAU;IACV,UAAU;IACV,cAAc;IACd,UAAU;IACV,eAAe;IACf,YAAY;IACZ,WAAW;CACZ,CAAC,CAAA;AAEF,MAAM,OAAO,KAAK;IAChB,MAAM,CAA4B;IAClC,MAAM,CAAW;IACjB,YAAY,CAAa;IACzB,gBAAgB,CAAiC;IAEjD;;;;OAIG;IACH,MAAM,CAAC,oBAAoB,CAAC,KAAa;QACvC,KAAK,MAAM,QAAQ,IAAI,iBAAiB,EAAE,CAAC;YACzC,IAAI,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC7B,OAAO,IAAI,CAAA;YACb,CAAC;QACH,CAAC;QACD,OAAO,KAAK,CAAA;IACd,CAAC;IAED,YAAY,EAAE,KAAK,EAAE,WAAW,EAAE,eAAe,EAAgB;QAC/D,IAAI,CAAC,MAAM,GAAG,IAAI,GAAG,EAAE,CAAA;QACvB,IAAI,CAAC,MAAM,GAAG,KAAK,CAAA;QACnB,IAAI,CAAC,YAAY,GAAG,WAAW,CAAA;QAC/B,IAAI,CAAC,gBAAgB,GAAG,eAAe,CAAA;IACzC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM,CACV,KAAa,EACb,MAAoB;QAEpB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,MAAM,IAAI,SAAS,CACjB,4CAA4C,CAC7C,CAAA;QACH,CAAC;QAED,IAAI,CAAC,KAAK;YAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,CAAA;QAE3C,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;QAC3C,IAAI,YAAY,EAAE,CAAC;YACjB,OAAO,YAAY,CAAA;QACrB,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,GAAG,CACnB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,CACvC,CAAA;QACD,MAAM,KAAK,GAAG,IAAI,GAAG,CAAW,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAA;QAE9D,0CAA0C;QAC1C,kCAAkC;QAClC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC;YAC7B,WAAW,EAAE,KAAK,IAAI,EAAE;gBACtB,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE;oBAC1B,UAAU,CAAC,OAAO,EAAE,CAAC,CAAC,CAAA;gBACxB,CAAC,CAAC,CAAA;gBACF,MAAM,EAAE,cAAc,EAAE,CAAA;YAC1B,CAAC;YACD,OAAO,EAAE,qBAAqB,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;YAC/C,OAAO,EAAE;gBACP,KAAK,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC;gBACrB,KAAK,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC;aACtB;YACD,OAAO,EAAE;gBACP,KAAK,EAAE,IAAI,GAAG,EAAY;gBAC1B,KAAK,EAAE,IAAI,GAAG,EAAY;aAC3B;YACD,OAAO,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE;YACzB,MAAM;YACN,eAAe,EAAE,IAAI,CAAC,gBAAgB;YACtC,WAAW,EAAE,IAAI,CAAC,YAAY;YAC9B,IAAI;SACL,CAAC,CAAA;QAEF,MAAM,GAAG,GAAkB;YACzB,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;YAChC,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC;SACjC,CAAA;QACD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,CAAA;QAC3B,OAAO,GAAG,CAAA;IACZ,CAAC;CACF","sourcesContent":["import { error } from '@vltpkg/error-cause'\nimport type { EdgeLike, GraphLike, NodeLike } from '@vltpkg/graph'\nimport type { SpecOptions } from '@vltpkg/spec/browser'\nimport type { SecurityArchiveLike } from '@vltpkg/security-archive'\nimport postcssSelectorParser from 'postcss-selector-parser'\nimport { attribute } from './attribute.ts'\nimport { classFn } from './class.ts'\nimport { combinator } from './combinator.ts'\nimport { id } from './id.ts'\nimport { pseudo } from './pseudo.ts'\nimport {\n  isPostcssNodeWithChildren,\n  asPostcssNodeWithChildren,\n  isSelectorNode,\n} from './types.ts'\nimport type {\n  PostcssNodeWithChildren,\n  ParserState,\n  ParserFn,\n  QueryResponse,\n} from './types.ts'\n\nexport * from './types.ts'\n\nconst noopFn = async (state: ParserState) => state\n\nconst selectors = {\n  attribute,\n  class: classFn,\n  combinator,\n  comment: noopFn,\n  id,\n  nesting: noopFn,\n  pseudo,\n  root: noopFn,\n  selector: async (state: ParserState) => {\n    state.partial.nodes = new Set(state.initial.nodes)\n    state.partial.edges = new Set(state.initial.edges)\n    return state\n  },\n  string: async (state: ParserState) => {\n    throw error('Unsupported selector', { found: state.current })\n  },\n  tag: async (state: ParserState) => {\n    if (state.current.value !== '{' && state.current.value !== '}') {\n      throw error('Unsupported selector', { found: state.current })\n    }\n    return state\n  },\n  universal: noopFn,\n}\nconst selectorsMap = new Map<string, ParserFn>(\n  Object.entries(selectors),\n)\n\nexport const walk = async (\n  state: ParserState,\n): Promise<ParserState> => {\n  await state.cancellable()\n\n  const parserFn = selectorsMap.get(state.current.type)\n\n  if (!parserFn) {\n    if (state.loose) {\n      return state\n    }\n\n    throw new Error(\n      `Missing parser for query node: ${state.current.type}`,\n    )\n  }\n  state = await parserFn(state)\n\n  // pseudo selectors handle their own sub selectors\n  if (\n    isPostcssNodeWithChildren(state.current) &&\n    state.current.type !== 'pseudo'\n  ) {\n    const node: PostcssNodeWithChildren = asPostcssNodeWithChildren(\n      state.current,\n    )\n\n    if (node.nodes.length) {\n      for (let i = 0; i < node.nodes.length; i++) {\n        const current = node.nodes[i]\n        /* c8 ignore next -- impossible but TS doesn't know that */\n        if (!current) continue\n\n        const childState: ParserState = {\n          ...state,\n          current,\n          next: node.nodes[i + 1],\n          prev: node.nodes[i - 1],\n        }\n        state = await walk(childState)\n      }\n    }\n\n    if (isSelectorNode(node)) {\n      for (const edge of state.partial.edges) {\n        state.collect.edges.add(edge)\n      }\n      for (const node of state.partial.nodes) {\n        state.collect.nodes.add(node)\n      }\n    }\n  }\n  return state\n}\n\nexport type QueryOptions = {\n  graph: GraphLike\n  specOptions: SpecOptions\n  securityArchive: SecurityArchiveLike | undefined\n}\n\n// A list of known security selectors that rely on\n// data from the security-archive in order to work\nconst securitySelectors = new Set([\n  ':abandoned',\n  ':confused',\n  ':cve',\n  ':debug',\n  ':deprecated',\n  ':dynamic',\n  ':entropic',\n  ':env',\n  ':eval',\n  ':fs',\n  ':license',\n  ':malware',\n  ':minified',\n  ':native',\n  ':network',\n  ':obfuscated',\n  ':scripts',\n  ':sev',\n  ':severity',\n  ':shell',\n  ':shrinkwrap',\n  ':squat',\n  ':suspicious',\n  ':tracker',\n  ':trivial',\n  ':undesirable',\n  ':unknown',\n  ':unmaintained',\n  ':unpopular',\n  ':unstable',\n])\n\nexport class Query {\n  #cache: Map<string, QueryResponse>\n  #graph: GraphLike\n  #specOptions: SpecOptions\n  #securityArchive: SecurityArchiveLike | undefined\n\n  /**\n   * Helper method to determine if a given query string is using any of\n   * the known security selectors. This is useful so that operations can\n   * skip hydrating the security archive if it's not needed.\n   */\n  static hasSecuritySelectors(query: string): boolean {\n    for (const selector of securitySelectors) {\n      if (query.includes(selector)) {\n        return true\n      }\n    }\n    return false\n  }\n\n  constructor({ graph, specOptions, securityArchive }: QueryOptions) {\n    this.#cache = new Map()\n    this.#graph = graph\n    this.#specOptions = specOptions\n    this.#securityArchive = securityArchive\n  }\n\n  /**\n   * Search the graph for nodes and edges that match the given query.\n   */\n  async search(\n    query: string,\n    signal?: AbortSignal,\n  ): Promise<QueryResponse> {\n    if (typeof query !== 'string') {\n      throw new TypeError(\n        'Query search argument needs to be a string',\n      )\n    }\n\n    if (!query) return { edges: [], nodes: [] }\n\n    const cachedResult = this.#cache.get(query)\n    if (cachedResult) {\n      return cachedResult\n    }\n\n    const nodes = new Set<NodeLike>(\n      Array.from(this.#graph.nodes.values()),\n    )\n    const edges = new Set<EdgeLike>(Array.from(this.#graph.edges))\n\n    // builds initial state and walks over it,\n    // retrieving the collected result\n    const { collect } = await walk({\n      cancellable: async () => {\n        await new Promise(resolve => {\n          setTimeout(resolve, 0)\n        })\n        signal?.throwIfAborted()\n      },\n      current: postcssSelectorParser().astSync(query),\n      initial: {\n        nodes: new Set(nodes),\n        edges: new Set(edges),\n      },\n      collect: {\n        nodes: new Set<NodeLike>(),\n        edges: new Set<EdgeLike>(),\n      },\n      partial: { nodes, edges },\n      signal,\n      securityArchive: this.#securityArchive,\n      specOptions: this.#specOptions,\n      walk,\n    })\n\n    const res: QueryResponse = {\n      edges: Array.from(collect.edges),\n      nodes: Array.from(collect.nodes),\n    }\n    this.#cache.set(query, res)\n    return res\n  }\n}\n"]}

package/dist/esm/pseudo/abandoned.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **missingAuthor** report alert.
+ */
+export declare const abandoned: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=abandoned.d.ts.map

package/dist/esm/pseudo/abandoned.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"abandoned.d.ts","sourceRoot":"","sources":["../../../src/pseudo/abandoned.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,SAAS,0FAGrB,CAAA"}

package/dist/esm/pseudo/abandoned.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **missingAuthor** report alert.
+ */
+export const abandoned = createSecuritySelectorFilter('abandoned', 'missingAuthor');
+//# sourceMappingURL=abandoned.js.map

package/dist/esm/pseudo/abandoned.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"abandoned.js","sourceRoot":"","sources":["../../../src/pseudo/abandoned.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,SAAS,GAAG,4BAA4B,CACnD,WAAW,EACX,eAAe,CAChB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **missingAuthor** report alert.\n */\nexport const abandoned = createSecuritySelectorFilter(\n  'abandoned',\n  'missingAuthor',\n)\n"]}

package/dist/esm/pseudo/confused.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **manifestConfusion** report alert.
+ */
+export declare const confused: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=confused.d.ts.map

package/dist/esm/pseudo/confused.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"confused.d.ts","sourceRoot":"","sources":["../../../src/pseudo/confused.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,QAAQ,0FAGpB,CAAA"}

package/dist/esm/pseudo/confused.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **manifestConfusion** report alert.
+ */
+export const confused = createSecuritySelectorFilter('confused', 'manifestConfusion');
+//# sourceMappingURL=confused.js.map

package/dist/esm/pseudo/confused.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"confused.js","sourceRoot":"","sources":["../../../src/pseudo/confused.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,4BAA4B,CAClD,UAAU,EACV,mBAAmB,CACpB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **manifestConfusion** report alert.\n */\nexport const confused = createSecuritySelectorFilter(\n  'confused',\n  'manifestConfusion',\n)\n"]}

package/dist/esm/pseudo/cve.d.ts

@@ -0,0 +1,10 @@
+import type { ParserState, PostcssNode } from '../types.ts';
+export type CveInternals = {
+    cveId: string;
+};
+export declare const parseInternals: (nodes: PostcssNode[]) => CveInternals;
+/**
+ * Filters out any node that does not have a CVE alert with the specified CVE ID.
+ */
+export declare const cve: (state: ParserState) => Promise<ParserState>;
+//# sourceMappingURL=cve.d.ts.map

package/dist/esm/pseudo/cve.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cve.d.ts","sourceRoot":"","sources":["../../../src/pseudo/cve.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAO3D,MAAM,MAAM,YAAY,GAAG;IACzB,KAAK,EAAE,MAAM,CAAA;CACd,CAAA;AAED,eAAO,MAAM,cAAc,UAClB,WAAW,EAAE,KACnB,YAuBF,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,GAAG,UAAiB,WAAW,yBAiC3C,CAAA"}

package/dist/esm/pseudo/cve.js

@@ -0,0 +1,47 @@
+import { error } from '@vltpkg/error-cause';
+import { asPostcssNodeWithChildren, asStringNode, asTagNode, isStringNode, isTagNode, } from "../types.js";
+import { removeDanglingEdges, removeNode, removeQuotes, } from "./helpers.js";
+export const parseInternals = (nodes) => {
+    let cveId = '';
+    if (isStringNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])) {
+        cveId = removeQuotes(asStringNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])
+            .value);
+    }
+    else if (isTagNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])) {
+        cveId = asTagNode(asPostcssNodeWithChildren(nodes[0]).nodes[0]).value;
+    }
+    if (!cveId) {
+        throw error('Expected a CVE ID', {
+            found: asPostcssNodeWithChildren(nodes[0]).nodes[0],
+        });
+    }
+    return { cveId };
+};
+/**
+ * Filters out any node that does not have a CVE alert with the specified CVE ID.
+ */
+export const cve = async (state) => {
+    if (!state.securityArchive) {
+        throw new Error('Missing security archive while trying to parse ' +
+            'the :cve security selector');
+    }
+    let internals;
+    try {
+        internals = parseInternals(asPostcssNodeWithChildren(state.current).nodes);
+    }
+    catch (err) {
+        throw error('Failed to parse :cve selector', { cause: err });
+    }
+    const { cveId } = internals;
+    for (const node of state.partial.nodes) {
+        const report = state.securityArchive.get(node.id);
+        const exclude = !report?.alerts.some(alert => alert.props.cveId.trim().toLowerCase() ===
+            cveId.trim().toLowerCase());
+        if (exclude) {
+            removeNode(state, node);
+        }
+    }
+    removeDanglingEdges(state);
+    return state;
+};
+//# sourceMappingURL=cve.js.map

package/dist/esm/pseudo/cve.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cve.js","sourceRoot":"","sources":["../../../src/pseudo/cve.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAC3C,OAAO,EACL,yBAAyB,EACzB,YAAY,EACZ,SAAS,EACT,YAAY,EACZ,SAAS,GACV,MAAM,aAAa,CAAA;AAEpB,OAAO,EACL,mBAAmB,EACnB,UAAU,EACV,YAAY,GACb,MAAM,cAAc,CAAA;AAMrB,MAAM,CAAC,MAAM,cAAc,GAAG,CAC5B,KAAoB,EACN,EAAE;IAChB,IAAI,KAAK,GAAG,EAAE,CAAA;IAEd,IAAI,YAAY,CAAC,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAC/D,KAAK,GAAG,YAAY,CAClB,YAAY,CAAC,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;aACvD,KAAK,CACT,CAAA;IACH,CAAC;SAAM,IACL,SAAS,CAAC,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EACvD,CAAC;QACD,KAAK,GAAG,SAAS,CACf,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAC7C,CAAC,KAAK,CAAA;IACT,CAAC;IAED,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,KAAK,CAAC,mBAAmB,EAAE;YAC/B,KAAK,EAAE,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC;SACpD,CAAC,CAAA;IACJ,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,CAAA;AAClB,CAAC,CAAA;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,GAAG,GAAG,KAAK,EAAE,KAAkB,EAAE,EAAE;IAC9C,IAAI,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CACb,iDAAiD;YAC/C,4BAA4B,CAC/B,CAAA;IACH,CAAC;IAED,IAAI,SAAS,CAAA;IACb,IAAI,CAAC;QACH,SAAS,GAAG,cAAc,CACxB,yBAAyB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,KAAK,CAC/C,CAAA;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,KAAK,CAAC,+BAA+B,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAA;IAC9D,CAAC;IAED,MAAM,EAAE,KAAK,EAAE,GAAG,SAAS,CAAA;IAC3B,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACvC,MAAM,MAAM,GAAG,KAAK,CAAC,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;QACjD,MAAM,OAAO,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,IAAI,CAClC,KAAK,CAAC,EAAE,CACN,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE;YACtC,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAC7B,CAAA;QACD,IAAI,OAAO,EAAE,CAAC;YACZ,UAAU,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;QACzB,CAAC;IACH,CAAC;IAED,mBAAmB,CAAC,KAAK,CAAC,CAAA;IAE1B,OAAO,KAAK,CAAA;AACd,CAAC,CAAA","sourcesContent":["import { error } from '@vltpkg/error-cause'\nimport {\n  asPostcssNodeWithChildren,\n  asStringNode,\n  asTagNode,\n  isStringNode,\n  isTagNode,\n} from '../types.ts'\nimport type { ParserState, PostcssNode } from '../types.ts'\nimport {\n  removeDanglingEdges,\n  removeNode,\n  removeQuotes,\n} from './helpers.ts'\n\nexport type CveInternals = {\n  cveId: string\n}\n\nexport const parseInternals = (\n  nodes: PostcssNode[],\n): CveInternals => {\n  let cveId = ''\n\n  if (isStringNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])) {\n    cveId = removeQuotes(\n      asStringNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])\n        .value,\n    )\n  } else if (\n    isTagNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])\n  ) {\n    cveId = asTagNode(\n      asPostcssNodeWithChildren(nodes[0]).nodes[0],\n    ).value\n  }\n\n  if (!cveId) {\n    throw error('Expected a CVE ID', {\n      found: asPostcssNodeWithChildren(nodes[0]).nodes[0],\n    })\n  }\n\n  return { cveId }\n}\n\n/**\n * Filters out any node that does not have a CVE alert with the specified CVE ID.\n */\nexport const cve = async (state: ParserState) => {\n  if (!state.securityArchive) {\n    throw new Error(\n      'Missing security archive while trying to parse ' +\n        'the :cve security selector',\n    )\n  }\n\n  let internals\n  try {\n    internals = parseInternals(\n      asPostcssNodeWithChildren(state.current).nodes,\n    )\n  } catch (err) {\n    throw error('Failed to parse :cve selector', { cause: err })\n  }\n\n  const { cveId } = internals\n  for (const node of state.partial.nodes) {\n    const report = state.securityArchive.get(node.id)\n    const exclude = !report?.alerts.some(\n      alert =>\n        alert.props.cveId.trim().toLowerCase() ===\n        cveId.trim().toLowerCase(),\n    )\n    if (exclude) {\n      removeNode(state, node)\n    }\n  }\n\n  removeDanglingEdges(state)\n\n  return state\n}\n"]}

package/dist/esm/pseudo/cwe.d.ts

@@ -0,0 +1,10 @@
+import type { ParserState, PostcssNode } from '../types.ts';
+export type CweInternals = {
+    cweId: string;
+};
+export declare const parseInternals: (nodes: PostcssNode[]) => CweInternals;
+/**
+ * Filters out any node that does not have a CWE alert with the specified CWE ID.
+ */
+export declare const cwe: (state: ParserState) => Promise<ParserState>;
+//# sourceMappingURL=cwe.d.ts.map

package/dist/esm/pseudo/cwe.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cwe.d.ts","sourceRoot":"","sources":["../../../src/pseudo/cwe.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAO3D,MAAM,MAAM,YAAY,GAAG;IACzB,KAAK,EAAE,MAAM,CAAA;CACd,CAAA;AAED,eAAO,MAAM,cAAc,UAClB,WAAW,EAAE,KACnB,YAuBF,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,GAAG,UAAiB,WAAW,yBAkC3C,CAAA"}

package/dist/esm/pseudo/cwe.js

@@ -0,0 +1,46 @@
+import { error } from '@vltpkg/error-cause';
+import { asPostcssNodeWithChildren, asStringNode, asTagNode, isStringNode, isTagNode, } from "../types.js";
+import { removeDanglingEdges, removeNode, removeQuotes, } from "./helpers.js";
+export const parseInternals = (nodes) => {
+    let cweId = '';
+    if (isStringNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])) {
+        cweId = removeQuotes(asStringNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])
+            .value);
+    }
+    else if (isTagNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])) {
+        cweId = asTagNode(asPostcssNodeWithChildren(nodes[0]).nodes[0]).value;
+    }
+    if (!cweId) {
+        throw error('Expected a CWE ID', {
+            found: asPostcssNodeWithChildren(nodes[0]).nodes[0],
+        });
+    }
+    return { cweId };
+};
+/**
+ * Filters out any node that does not have a CWE alert with the specified CWE ID.
+ */
+export const cwe = async (state) => {
+    if (!state.securityArchive) {
+        throw new Error('Missing security archive while trying to parse ' +
+            'the :cwe security selector');
+    }
+    let internals;
+    try {
+        internals = parseInternals(asPostcssNodeWithChildren(state.current).nodes);
+    }
+    catch (err) {
+        throw error('Failed to parse :cwe selector', { cause: err });
+    }
+    const { cweId } = internals;
+    for (const node of state.partial.nodes) {
+        const report = state.securityArchive.get(node.id);
+        const exclude = !report?.alerts.some(alert => alert.props.cwes.some(cwe => cwe.id.trim().toLowerCase() === cweId.trim().toLowerCase()));
+        if (exclude) {
+            removeNode(state, node);
+        }
+    }
+    removeDanglingEdges(state);
+    return state;
+};
+//# sourceMappingURL=cwe.js.map

package/dist/esm/pseudo/cwe.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cwe.js","sourceRoot":"","sources":["../../../src/pseudo/cwe.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAA;AAC3C,OAAO,EACL,yBAAyB,EACzB,YAAY,EACZ,SAAS,EACT,YAAY,EACZ,SAAS,GACV,MAAM,aAAa,CAAA;AAEpB,OAAO,EACL,mBAAmB,EACnB,UAAU,EACV,YAAY,GACb,MAAM,cAAc,CAAA;AAMrB,MAAM,CAAC,MAAM,cAAc,GAAG,CAC5B,KAAoB,EACN,EAAE;IAChB,IAAI,KAAK,GAAG,EAAE,CAAA;IAEd,IAAI,YAAY,CAAC,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAC/D,KAAK,GAAG,YAAY,CAClB,YAAY,CAAC,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;aACvD,KAAK,CACT,CAAA;IACH,CAAC;SAAM,IACL,SAAS,CAAC,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EACvD,CAAC;QACD,KAAK,GAAG,SAAS,CACf,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAC7C,CAAC,KAAK,CAAA;IACT,CAAC;IAED,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,KAAK,CAAC,mBAAmB,EAAE;YAC/B,KAAK,EAAE,yBAAyB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC;SACpD,CAAC,CAAA;IACJ,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,CAAA;AAClB,CAAC,CAAA;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,GAAG,GAAG,KAAK,EAAE,KAAkB,EAAE,EAAE;IAC9C,IAAI,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CACb,iDAAiD;YAC/C,4BAA4B,CAC/B,CAAA;IACH,CAAC;IAED,IAAI,SAAS,CAAA;IACb,IAAI,CAAC;QACH,SAAS,GAAG,cAAc,CACxB,yBAAyB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,KAAK,CAC/C,CAAA;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,KAAK,CAAC,+BAA+B,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAA;IAC9D,CAAC;IAED,MAAM,EAAE,KAAK,EAAE,GAAG,SAAS,CAAA;IAC3B,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACvC,MAAM,MAAM,GAAG,KAAK,CAAC,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;QACjD,MAAM,OAAO,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAC3C,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CACnB,GAAG,CAAC,EAAE,CACJ,GAAG,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAC7D,CACF,CAAA;QACD,IAAI,OAAO,EAAE,CAAC;YACZ,UAAU,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;QACzB,CAAC;IACH,CAAC;IAED,mBAAmB,CAAC,KAAK,CAAC,CAAA;IAE1B,OAAO,KAAK,CAAA;AACd,CAAC,CAAA","sourcesContent":["import { error } from '@vltpkg/error-cause'\nimport {\n  asPostcssNodeWithChildren,\n  asStringNode,\n  asTagNode,\n  isStringNode,\n  isTagNode,\n} from '../types.ts'\nimport type { ParserState, PostcssNode } from '../types.ts'\nimport {\n  removeDanglingEdges,\n  removeNode,\n  removeQuotes,\n} from './helpers.ts'\n\nexport type CweInternals = {\n  cweId: string\n}\n\nexport const parseInternals = (\n  nodes: PostcssNode[],\n): CweInternals => {\n  let cweId = ''\n\n  if (isStringNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])) {\n    cweId = removeQuotes(\n      asStringNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])\n        .value,\n    )\n  } else if (\n    isTagNode(asPostcssNodeWithChildren(nodes[0]).nodes[0])\n  ) {\n    cweId = asTagNode(\n      asPostcssNodeWithChildren(nodes[0]).nodes[0],\n    ).value\n  }\n\n  if (!cweId) {\n    throw error('Expected a CWE ID', {\n      found: asPostcssNodeWithChildren(nodes[0]).nodes[0],\n    })\n  }\n\n  return { cweId }\n}\n\n/**\n * Filters out any node that does not have a CWE alert with the specified CWE ID.\n */\nexport const cwe = async (state: ParserState) => {\n  if (!state.securityArchive) {\n    throw new Error(\n      'Missing security archive while trying to parse ' +\n        'the :cwe security selector',\n    )\n  }\n\n  let internals\n  try {\n    internals = parseInternals(\n      asPostcssNodeWithChildren(state.current).nodes,\n    )\n  } catch (err) {\n    throw error('Failed to parse :cwe selector', { cause: err })\n  }\n\n  const { cweId } = internals\n  for (const node of state.partial.nodes) {\n    const report = state.securityArchive.get(node.id)\n    const exclude = !report?.alerts.some(alert =>\n      alert.props.cwes.some(\n        cwe =>\n          cwe.id.trim().toLowerCase() === cweId.trim().toLowerCase(),\n      ),\n    )\n    if (exclude) {\n      removeNode(state, node)\n    }\n  }\n\n  removeDanglingEdges(state)\n\n  return state\n}\n"]}

package/dist/esm/pseudo/debug.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **debugAccess** report alert.
+ */
+export declare const debug: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=debug.d.ts.map

package/dist/esm/pseudo/debug.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"debug.d.ts","sourceRoot":"","sources":["../../../src/pseudo/debug.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,KAAK,0FAGjB,CAAA"}

package/dist/esm/pseudo/debug.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **debugAccess** report alert.
+ */
+export const debug = createSecuritySelectorFilter('debug', 'debugAccess');
+//# sourceMappingURL=debug.js.map

package/dist/esm/pseudo/debug.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"debug.js","sourceRoot":"","sources":["../../../src/pseudo/debug.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,KAAK,GAAG,4BAA4B,CAC/C,OAAO,EACP,aAAa,CACd,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **debugAccess** report alert.\n */\nexport const debug = createSecuritySelectorFilter(\n  'debug',\n  'debugAccess',\n)\n"]}

package/dist/esm/pseudo/deprecated.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **deprecated** report alert.
+ */
+export declare const deprecated: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=deprecated.d.ts.map

package/dist/esm/pseudo/deprecated.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"deprecated.d.ts","sourceRoot":"","sources":["../../../src/pseudo/deprecated.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,UAAU,0FAGtB,CAAA"}

package/dist/esm/pseudo/deprecated.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **deprecated** report alert.
+ */
+export const deprecated = createSecuritySelectorFilter('deprecated', 'deprecated');
+//# sourceMappingURL=deprecated.js.map

package/dist/esm/pseudo/deprecated.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"deprecated.js","sourceRoot":"","sources":["../../../src/pseudo/deprecated.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,4BAA4B,CACpD,YAAY,EACZ,YAAY,CACb,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **deprecated** report alert.\n */\nexport const deprecated = createSecuritySelectorFilter(\n  'deprecated',\n  'deprecated',\n)\n"]}

package/dist/esm/pseudo/dynamic.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **dynamicRequire** report alert.
+ */
+export declare const dynamic: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=dynamic.d.ts.map

package/dist/esm/pseudo/dynamic.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dynamic.d.ts","sourceRoot":"","sources":["../../../src/pseudo/dynamic.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,OAAO,0FAGnB,CAAA"}

package/dist/esm/pseudo/dynamic.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **dynamicRequire** report alert.
+ */
+export const dynamic = createSecuritySelectorFilter('dynamic', 'dynamicRequire');
+//# sourceMappingURL=dynamic.js.map

package/dist/esm/pseudo/dynamic.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dynamic.js","sourceRoot":"","sources":["../../../src/pseudo/dynamic.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,OAAO,GAAG,4BAA4B,CACjD,SAAS,EACT,gBAAgB,CACjB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **dynamicRequire** report alert.\n */\nexport const dynamic = createSecuritySelectorFilter(\n  'dynamic',\n  'dynamicRequire',\n)\n"]}

package/dist/esm/pseudo/entropic.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **highEntropyStrings** report alert.
+ */
+export declare const entropic: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=entropic.d.ts.map

package/dist/esm/pseudo/entropic.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"entropic.d.ts","sourceRoot":"","sources":["../../../src/pseudo/entropic.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,QAAQ,0FAGpB,CAAA"}

package/dist/esm/pseudo/entropic.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **highEntropyStrings** report alert.
+ */
+export const entropic = createSecuritySelectorFilter('entropic', 'highEntropyStrings');
+//# sourceMappingURL=entropic.js.map

package/dist/esm/pseudo/entropic.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"entropic.js","sourceRoot":"","sources":["../../../src/pseudo/entropic.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAG,4BAA4B,CAClD,UAAU,EACV,oBAAoB,CACrB,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **highEntropyStrings** report alert.\n */\nexport const entropic = createSecuritySelectorFilter(\n  'entropic',\n  'highEntropyStrings',\n)\n"]}

package/dist/esm/pseudo/env.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **envVars** report alert.
+ */
+export declare const env: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=env.d.ts.map

package/dist/esm/pseudo/env.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"env.d.ts","sourceRoot":"","sources":["../../../src/pseudo/env.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,GAAG,0FAAiD,CAAA"}

package/dist/esm/pseudo/env.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **envVars** report alert.
+ */
+export const env = createSecuritySelectorFilter('env', 'envVars');
+//# sourceMappingURL=env.js.map

package/dist/esm/pseudo/env.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"env.js","sourceRoot":"","sources":["../../../src/pseudo/env.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,GAAG,GAAG,4BAA4B,CAAC,KAAK,EAAE,SAAS,CAAC,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **envVars** report alert.\n */\nexport const env = createSecuritySelectorFilter('env', 'envVars')\n"]}

package/dist/esm/pseudo/eval.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **usesEval** report alert.
+ */
+export declare const evalParser: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=eval.d.ts.map

package/dist/esm/pseudo/eval.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"eval.d.ts","sourceRoot":"","sources":["../../../src/pseudo/eval.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,eAAO,MAAM,UAAU,0FAGtB,CAAA"}

package/dist/esm/pseudo/eval.js

@@ -0,0 +1,6 @@
+import { createSecuritySelectorFilter } from "./helpers.js";
+/**
+ * Filters out any node that does not have a **usesEval** report alert.
+ */
+export const evalParser = createSecuritySelectorFilter('eval', 'usesEval');
+//# sourceMappingURL=eval.js.map

package/dist/esm/pseudo/eval.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"eval.js","sourceRoot":"","sources":["../../../src/pseudo/eval.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAA;AAE3D;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAG,4BAA4B,CACpD,MAAM,EACN,UAAU,CACX,CAAA","sourcesContent":["import { createSecuritySelectorFilter } from './helpers.ts'\n\n/**\n * Filters out any node that does not have a **usesEval** report alert.\n */\nexport const evalParser = createSecuritySelectorFilter(\n  'eval',\n  'usesEval',\n)\n"]}

package/dist/esm/pseudo/fs.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Filters out any node that does not have a **filesystemAccess** report alert.
+ */
+export declare const fs: (state: import("../types.ts").ParserState) => Promise<import("../types.ts").ParserState>;
+//# sourceMappingURL=fs.d.ts.map