cognium-dev 3.34.0 → 3.35.0

package/dist/cli.js

@@ -10381,6 +10381,22 @@ var DEFAULT_SINKS = [
   { method: "parse", class: "GroovyShell", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [0] },
   { method: "parseClass", class: "GroovyClassLoader", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [0] },
   { method: "run", class: "GroovyScriptEngine", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [0] },
+  { method: "onMethodCall", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onStaticCall", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onGetProperty", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onSetProperty", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onGetAttribute", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onSetAttribute", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onMethodPointer", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onSuperCall", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onSuperConstructor", class: "SandboxInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onMethodCall", class: "GroovyInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onNewInstance", class: "GroovyInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onStaticCall", class: "GroovyInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onGetProperty", class: "GroovyInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "onSetProperty", class: "GroovyInterceptor", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "call", class: "SandboxTransformer", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
+  { method: "runInSandbox", class: "GroovySandbox", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [] },
   { method: "eval", class: "Bindings", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [0] },
   { method: "eval", class: "ScriptContext", type: "code_injection", cwe: "CWE-94", severity: "critical", arg_positions: [0] },
   { method: "forName", class: "Class", type: "code_injection", cwe: "CWE-94", severity: "high", arg_positions: [0] },
@@ -26859,7 +26875,7 @@ var colors = {
 };
 
 // src/version.ts
-var version = "3.34.0";
+var version = "3.35.0";
 
 // src/formatters.ts
 var SINK_SEVERITY = {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cognium-dev",
-  "version": "3.34.0",
+  "version": "3.35.0",
   "description": "Static Application Security Testing CLI for detecting security vulnerabilities via taint tracking",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -65,7 +65,7 @@
     "registry": "https://registry.npmjs.org/"
   },
   "dependencies": {
-    "circle-ir": "^3.34.0"
+    "circle-ir": "^3.35.0"
   },
   "devDependencies": {
     "@types/node": "^25.5.0",