npm - eslint-plugin-secure-coding - Versions diffs - 1.0.0 - Mend

eslint-plugin-secure-coding 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (155) hide show

package/src/index.js ADDED Viewed

@@ -0,0 +1,345 @@
+"use strict";
+/**
+ * eslint-plugin-secure-coding
+ *
+ * A comprehensive security-focused ESLint plugin with 48+ rules
+ * for detecting and preventing security vulnerabilities in JavaScript/TypeScript code.
+ *
+ * Features:
+ * - LLM-optimized error messages with CWE references
+ * - OWASP Top 10 coverage
+ * - Auto-fix capabilities where safe
+ * - Structured context for AI assistants
+ *
+ * @see https://github.com/ofri-peretz/eslint#readme
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.configs = exports.plugin = exports.rules = void 0;
+// Security rules - Injection
+const no_sql_injection_1 = require("./rules/security/no-sql-injection");
+const database_injection_1 = require("./rules/security/database-injection");
+const detect_eval_with_expression_1 = require("./rules/security/detect-eval-with-expression");
+const detect_child_process_1 = require("./rules/security/detect-child-process");
+const no_unsafe_dynamic_require_1 = require("./rules/security/no-unsafe-dynamic-require");
+const no_graphql_injection_1 = require("./rules/security/no-graphql-injection");
+const no_xxe_injection_1 = require("./rules/security/no-xxe-injection");
+const no_xpath_injection_1 = require("./rules/security/no-xpath-injection");
+const no_ldap_injection_1 = require("./rules/security/no-ldap-injection");
+const no_directive_injection_1 = require("./rules/security/no-directive-injection");
+const no_format_string_injection_1 = require("./rules/security/no-format-string-injection");
+// Security rules - Path & File
+const detect_non_literal_fs_filename_1 = require("./rules/security/detect-non-literal-fs-filename");
+const no_zip_slip_1 = require("./rules/security/no-zip-slip");
+const no_toctou_vulnerability_1 = require("./rules/security/no-toctou-vulnerability");
+// Security rules - Regex
+const detect_non_literal_regexp_1 = require("./rules/security/detect-non-literal-regexp");
+const no_redos_vulnerable_regex_1 = require("./rules/security/no-redos-vulnerable-regex");
+const no_unsafe_regex_construction_1 = require("./rules/security/no-unsafe-regex-construction");
+// Security rules - Object & Prototype
+const detect_object_injection_1 = require("./rules/security/detect-object-injection");
+const no_unsafe_deserialization_1 = require("./rules/security/no-unsafe-deserialization");
+// Security rules - Credentials & Crypto
+const no_hardcoded_credentials_1 = require("./rules/security/no-hardcoded-credentials");
+const no_weak_crypto_1 = require("./rules/security/no-weak-crypto");
+const no_insufficient_random_1 = require("./rules/security/no-insufficient-random");
+const no_timing_attack_1 = require("./rules/security/no-timing-attack");
+const no_insecure_comparison_1 = require("./rules/security/no-insecure-comparison");
+const no_insecure_jwt_1 = require("./rules/security/no-insecure-jwt");
+// Security rules - Input Validation & XSS
+const no_unvalidated_user_input_1 = require("./rules/security/no-unvalidated-user-input");
+const no_unsanitized_html_1 = require("./rules/security/no-unsanitized-html");
+const no_unescaped_url_parameter_1 = require("./rules/security/no-unescaped-url-parameter");
+const no_improper_sanitization_1 = require("./rules/security/no-improper-sanitization");
+const no_improper_type_validation_1 = require("./rules/security/no-improper-type-validation");
+// Security rules - Authentication & Authorization
+const no_missing_authentication_1 = require("./rules/security/no-missing-authentication");
+const no_privilege_escalation_1 = require("./rules/security/no-privilege-escalation");
+const no_weak_password_recovery_1 = require("./rules/security/no-weak-password-recovery");
+// Security rules - Session & Cookies
+const no_insecure_cookie_settings_1 = require("./rules/security/no-insecure-cookie-settings");
+const no_missing_csrf_protection_1 = require("./rules/security/no-missing-csrf-protection");
+const no_document_cookie_1 = require("./rules/security/no-document-cookie");
+// Security rules - Network & Headers
+const no_missing_cors_check_1 = require("./rules/security/no-missing-cors-check");
+const no_missing_security_headers_1 = require("./rules/security/no-missing-security-headers");
+const no_insecure_redirects_1 = require("./rules/security/no-insecure-redirects");
+const no_unencrypted_transmission_1 = require("./rules/security/no-unencrypted-transmission");
+const no_clickjacking_1 = require("./rules/security/no-clickjacking");
+// Security rules - Data Exposure
+const no_exposed_sensitive_data_1 = require("./rules/security/no-exposed-sensitive-data");
+const no_sensitive_data_exposure_1 = require("./rules/security/no-sensitive-data-exposure");
+// Security rules - Buffer & Memory
+const no_buffer_overread_1 = require("./rules/security/no-buffer-overread");
+// Security rules - Resource & DoS
+const no_unlimited_resource_allocation_1 = require("./rules/security/no-unlimited-resource-allocation");
+const no_unchecked_loop_condition_1 = require("./rules/security/no-unchecked-loop-condition");
+// Security rules - Platform Specific
+const no_electron_security_issues_1 = require("./rules/security/no-electron-security-issues");
+const no_insufficient_postmessage_validation_1 = require("./rules/security/no-insufficient-postmessage-validation");
+/**
+ * Collection of all security ESLint rules
+ */
+exports.rules = {
+    // Flat rule names (recommended usage)
+    'no-sql-injection': no_sql_injection_1.noSqlInjection,
+    'database-injection': database_injection_1.databaseInjection,
+    'detect-eval-with-expression': detect_eval_with_expression_1.detectEvalWithExpression,
+    'detect-child-process': detect_child_process_1.detectChildProcess,
+    'no-unsafe-dynamic-require': no_unsafe_dynamic_require_1.noUnsafeDynamicRequire,
+    'no-graphql-injection': no_graphql_injection_1.noGraphqlInjection,
+    'no-xxe-injection': no_xxe_injection_1.noXxeInjection,
+    'no-xpath-injection': no_xpath_injection_1.noXpathInjection,
+    'no-ldap-injection': no_ldap_injection_1.noLdapInjection,
+    'no-directive-injection': no_directive_injection_1.noDirectiveInjection,
+    'no-format-string-injection': no_format_string_injection_1.noFormatStringInjection,
+    'detect-non-literal-fs-filename': detect_non_literal_fs_filename_1.detectNonLiteralFsFilename,
+    'no-zip-slip': no_zip_slip_1.noZipSlip,
+    'no-toctou-vulnerability': no_toctou_vulnerability_1.noToctouVulnerability,
+    'detect-non-literal-regexp': detect_non_literal_regexp_1.detectNonLiteralRegexp,
+    'no-redos-vulnerable-regex': no_redos_vulnerable_regex_1.noRedosVulnerableRegex,
+    'no-unsafe-regex-construction': no_unsafe_regex_construction_1.noUnsafeRegexConstruction,
+    'detect-object-injection': detect_object_injection_1.detectObjectInjection,
+    'no-unsafe-deserialization': no_unsafe_deserialization_1.noUnsafeDeserialization,
+    'no-hardcoded-credentials': no_hardcoded_credentials_1.noHardcodedCredentials,
+    'no-weak-crypto': no_weak_crypto_1.noWeakCrypto,
+    'no-insufficient-random': no_insufficient_random_1.noInsufficientRandom,
+    'no-timing-attack': no_timing_attack_1.noTimingAttack,
+    'no-insecure-comparison': no_insecure_comparison_1.noInsecureComparison,
+    'no-insecure-jwt': no_insecure_jwt_1.noInsecureJwt,
+    'no-unvalidated-user-input': no_unvalidated_user_input_1.noUnvalidatedUserInput,
+    'no-unsanitized-html': no_unsanitized_html_1.noUnsanitizedHtml,
+    'no-unescaped-url-parameter': no_unescaped_url_parameter_1.noUnescapedUrlParameter,
+    'no-improper-sanitization': no_improper_sanitization_1.noImproperSanitization,
+    'no-improper-type-validation': no_improper_type_validation_1.noImproperTypeValidation,
+    'no-missing-authentication': no_missing_authentication_1.noMissingAuthentication,
+    'no-privilege-escalation': no_privilege_escalation_1.noPrivilegeEscalation,
+    'no-weak-password-recovery': no_weak_password_recovery_1.noWeakPasswordRecovery,
+    'no-insecure-cookie-settings': no_insecure_cookie_settings_1.noInsecureCookieSettings,
+    'no-missing-csrf-protection': no_missing_csrf_protection_1.noMissingCsrfProtection,
+    'no-document-cookie': no_document_cookie_1.noDocumentCookie,
+    'no-missing-cors-check': no_missing_cors_check_1.noMissingCorsCheck,
+    'no-missing-security-headers': no_missing_security_headers_1.noMissingSecurityHeaders,
+    'no-insecure-redirects': no_insecure_redirects_1.noInsecureRedirects,
+    'no-unencrypted-transmission': no_unencrypted_transmission_1.noUnencryptedTransmission,
+    'no-clickjacking': no_clickjacking_1.noClickjacking,
+    'no-exposed-sensitive-data': no_exposed_sensitive_data_1.noExposedSensitiveData,
+    'no-sensitive-data-exposure': no_sensitive_data_exposure_1.noSensitiveDataExposure,
+    'no-buffer-overread': no_buffer_overread_1.noBufferOverread,
+    'no-unlimited-resource-allocation': no_unlimited_resource_allocation_1.noUnlimitedResourceAllocation,
+    'no-unchecked-loop-condition': no_unchecked_loop_condition_1.noUncheckedLoopCondition,
+    'no-electron-security-issues': no_electron_security_issues_1.noElectronSecurityIssues,
+    'no-insufficient-postmessage-validation': no_insufficient_postmessage_validation_1.noInsufficientPostmessageValidation,
+};
+/**
+ * ESLint Plugin object
+ */
+exports.plugin = {
+    meta: {
+        name: 'eslint-plugin-secure-coding',
+        version: '1.0.0',
+    },
+    rules: exports.rules,
+};
+/**
+ * Preset configurations for security rules
+ */
+const recommendedRules = {
+    // Critical - Injection vulnerabilities (OWASP A03)
+    'secure-coding/no-sql-injection': 'error',
+    'secure-coding/database-injection': 'error',
+    'secure-coding/detect-eval-with-expression': 'error',
+    'secure-coding/detect-child-process': 'error',
+    'secure-coding/no-unsafe-dynamic-require': 'error',
+    'secure-coding/no-graphql-injection': 'error',
+    'secure-coding/no-xxe-injection': 'error',
+    'secure-coding/no-xpath-injection': 'error',
+    'secure-coding/no-ldap-injection': 'error',
+    'secure-coding/no-directive-injection': 'error',
+    'secure-coding/no-format-string-injection': 'error',
+    // Critical - Path traversal & file operations
+    'secure-coding/detect-non-literal-fs-filename': 'error',
+    'secure-coding/no-zip-slip': 'error',
+    'secure-coding/no-toctou-vulnerability': 'error',
+    // Critical - Deserialization
+    'secure-coding/no-unsafe-deserialization': 'error',
+    // High - Regex vulnerabilities
+    'secure-coding/detect-non-literal-regexp': 'warn',
+    'secure-coding/no-redos-vulnerable-regex': 'error',
+    'secure-coding/no-unsafe-regex-construction': 'warn',
+    // High - Prototype pollution
+    'secure-coding/detect-object-injection': 'warn',
+    // Critical - Cryptography (OWASP A02)
+    'secure-coding/no-hardcoded-credentials': 'error',
+    'secure-coding/no-weak-crypto': 'error',
+    'secure-coding/no-insufficient-random': 'warn',
+    'secure-coding/no-timing-attack': 'error',
+    'secure-coding/no-insecure-comparison': 'warn',
+    'secure-coding/no-insecure-jwt': 'error',
+    // Critical - XSS vulnerabilities (OWASP A03)
+    'secure-coding/no-unvalidated-user-input': 'warn',
+    'secure-coding/no-unsanitized-html': 'error',
+    'secure-coding/no-unescaped-url-parameter': 'warn',
+    'secure-coding/no-improper-sanitization': 'error',
+    'secure-coding/no-improper-type-validation': 'warn',
+    // High - Authentication & Authorization (OWASP A01, A07)
+    'secure-coding/no-missing-authentication': 'warn',
+    'secure-coding/no-privilege-escalation': 'warn',
+    'secure-coding/no-weak-password-recovery': 'error',
+    // High - Session & Cookies
+    'secure-coding/no-insecure-cookie-settings': 'warn',
+    'secure-coding/no-missing-csrf-protection': 'warn',
+    'secure-coding/no-document-cookie': 'warn',
+    // High - Network & Headers (OWASP A05)
+    'secure-coding/no-missing-cors-check': 'warn',
+    'secure-coding/no-missing-security-headers': 'warn',
+    'secure-coding/no-insecure-redirects': 'warn',
+    'secure-coding/no-unencrypted-transmission': 'warn',
+    'secure-coding/no-clickjacking': 'error',
+    // High - Data Exposure (OWASP A01)
+    'secure-coding/no-exposed-sensitive-data': 'error',
+    'secure-coding/no-sensitive-data-exposure': 'warn',
+    // Medium - Buffer & Memory
+    'secure-coding/no-buffer-overread': 'error',
+    // Medium - Resource & DoS
+    'secure-coding/no-unlimited-resource-allocation': 'error',
+    'secure-coding/no-unchecked-loop-condition': 'error',
+    // Medium - Platform specific
+    'secure-coding/no-electron-security-issues': 'error',
+    'secure-coding/no-insufficient-postmessage-validation': 'error',
+};
+exports.configs = {
+    /**
+     * Recommended security configuration
+     *
+     * Enables all security rules with sensible severity levels:
+     * - Critical injection vulnerabilities as errors
+     * - Important security issues as warnings
+     */
+    recommended: {
+        plugins: {
+            'secure-coding': exports.plugin,
+        },
+        rules: recommendedRules,
+    },
+    /**
+     * Strict security configuration
+     *
+     * All security rules set to 'error' for maximum protection
+     */
+    strict: {
+        plugins: {
+            'secure-coding': exports.plugin,
+        },
+        rules: Object.fromEntries(Object.keys(exports.rules).map(ruleName => [`secure-coding/${ruleName}`, 'error'])),
+    },
+    /**
+     * OWASP Top 10 focused configuration
+     *
+     * Rules mapped to OWASP Top 10 2021 categories
+     */
+    'owasp-top-10': {
+        plugins: {
+            'secure-coding': exports.plugin,
+        },
+        rules: {
+            // A01:2021 – Broken Access Control
+            'secure-coding/no-missing-authentication': 'error',
+            'secure-coding/no-privilege-escalation': 'error',
+            'secure-coding/no-exposed-sensitive-data': 'error',
+            'secure-coding/no-insecure-redirects': 'error',
+            // A02:2021 – Cryptographic Failures
+            'secure-coding/no-hardcoded-credentials': 'error',
+            'secure-coding/no-weak-crypto': 'error',
+            'secure-coding/no-insufficient-random': 'error',
+            'secure-coding/no-insecure-jwt': 'error',
+            'secure-coding/no-unencrypted-transmission': 'error',
+            'secure-coding/no-sensitive-data-exposure': 'error',
+            // A03:2021 – Injection
+            'secure-coding/no-sql-injection': 'error',
+            'secure-coding/database-injection': 'error',
+            'secure-coding/detect-eval-with-expression': 'error',
+            'secure-coding/detect-child-process': 'error',
+            'secure-coding/no-graphql-injection': 'error',
+            'secure-coding/no-xxe-injection': 'error',
+            'secure-coding/no-xpath-injection': 'error',
+            'secure-coding/no-ldap-injection': 'error',
+            'secure-coding/no-unsanitized-html': 'error',
+            'secure-coding/no-unescaped-url-parameter': 'error',
+            // A04:2021 – Insecure Design
+            'secure-coding/no-weak-password-recovery': 'error',
+            'secure-coding/no-improper-type-validation': 'error',
+            // A05:2021 – Security Misconfiguration
+            'secure-coding/no-missing-security-headers': 'error',
+            'secure-coding/no-missing-cors-check': 'error',
+            'secure-coding/no-insecure-cookie-settings': 'error',
+            'secure-coding/no-clickjacking': 'error',
+            'secure-coding/no-electron-security-issues': 'error',
+            // A07:2021 – Identification and Authentication Failures
+            'secure-coding/no-timing-attack': 'error',
+            'secure-coding/no-insecure-comparison': 'error',
+            'secure-coding/no-missing-csrf-protection': 'error',
+            // A08:2021 – Software and Data Integrity Failures
+            'secure-coding/no-unsafe-deserialization': 'error',
+            'secure-coding/no-unsafe-dynamic-require': 'error',
+        },
+    },
+    /**
+     * LLM-friendly recommended config
+     * - Mirrors `recommended` severities
+     * - Adds guardrails helpful for agent/tool code
+     */
+    'recommended-llm': {
+        plugins: {
+            'secure-coding': exports.plugin,
+        },
+        rules: {
+            // Start from recommended
+            ...recommendedRules,
+            // Emphasize data handling and deserialization for model/tool I/O
+            'secure-coding/no-unsafe-deserialization': 'error',
+            'secure-coding/detect-object-injection': 'error',
+            // Ensure outbound calls are constrained (common in agent tools)
+            'secure-coding/no-unencrypted-transmission': 'error',
+            'secure-coding/no-insecure-redirects': 'error',
+        },
+    },
+    /**
+     * MCP-focused baseline
+     * - Stricter on outbound/network/file/process surfaces typical for tools
+     */
+    'recommended-mcp': {
+        plugins: {
+            'secure-coding': exports.plugin,
+        },
+        rules: {
+            ...recommendedRules,
+            // Raise critical tool vectors
+            'secure-coding/detect-child-process': 'error',
+            'secure-coding/no-unsafe-dynamic-require': 'error',
+            'secure-coding/detect-non-literal-fs-filename': 'error',
+            'secure-coding/no-unsafe-deserialization': 'error',
+            'secure-coding/detect-object-injection': 'error',
+            'secure-coding/no-unlimited-resource-allocation': 'error',
+            'secure-coding/no-unchecked-loop-condition': 'error',
+            'secure-coding/no-unencrypted-transmission': 'error',
+            'secure-coding/no-insecure-redirects': 'error',
+            'secure-coding/no-missing-security-headers': 'error',
+            'secure-coding/no-missing-cors-check': 'error',
+        },
+    },
+    /**
+     * Strict MCP mode
+     * - All rules as errors (mirrors strict) with the same plugin wiring
+     */
+    'strict-mcp': {
+        plugins: {
+            'secure-coding': exports.plugin,
+        },
+        rules: Object.fromEntries(Object.keys(exports.rules).map(ruleName => [`secure-coding/${ruleName}`, 'error'])),
+    },
+};
+/**
+ * Default export for ESLint plugin
+ */
+exports.default = exports.plugin;
+//# sourceMappingURL=index.js.map

package/src/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../packages/eslint-plugin-secure-coding/src/index.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;GAaG;;;AAIH,6BAA6B;AAC7B,wEAAmE;AACnE,4EAAwE;AACxE,8FAAwF;AACxF,gFAA2E;AAC3E,0FAAoF;AACpF,gFAA2E;AAC3E,wEAAmE;AACnE,4EAAuE;AACvE,0EAAqE;AACrE,oFAA+E;AAC/E,4FAAsF;AAEtF,+BAA+B;AAC/B,oGAA6F;AAC7F,8DAAyD;AACzD,sFAAiF;AAEjF,yBAAyB;AACzB,0FAAoF;AACpF,0FAAoF;AACpF,gGAA0F;AAE1F,sCAAsC;AACtC,sFAAiF;AACjF,0FAAqF;AAErF,wCAAwC;AACxC,wFAAmF;AACnF,oEAA+D;AAC/D,oFAA+E;AAC/E,wEAAmE;AACnE,oFAA+E;AAC/E,sEAAiE;AAEjE,0CAA0C;AAC1C,0FAAoF;AACpF,8EAAyE;AACzE,4FAAsF;AACtF,wFAAmF;AACnF,8FAAwF;AAExF,kDAAkD;AAClD,0FAAqF;AACrF,sFAAiF;AACjF,0FAAoF;AAEpF,qCAAqC;AACrC,8FAAwF;AACxF,4FAAsF;AACtF,4EAAuE;AAEvE,qCAAqC;AACrC,kFAA4E;AAC5E,8FAAwF;AACxF,kFAA6E;AAC7E,8FAAyF;AACzF,sEAAkE;AAElE,iCAAiC;AACjC,0FAAoF;AACpF,4FAAsF;AAEtF,mCAAmC;AACnC,4EAAuE;AAEvE,kCAAkC;AAClC,wGAAkG;AAClG,8FAAwF;AAExF,qCAAqC;AACrC,8FAAwF;AACxF,oHAA8G;AAE9G;;GAEG;AACU,QAAA,KAAK,GAAoE;IACpF,sCAAsC;IACtC,kBAAkB,EAAE,iCAAc;IAClC,oBAAoB,EAAE,sCAAiB;IACvC,6BAA6B,EAAE,sDAAwB;IACvD,sBAAsB,EAAE,yCAAkB;IAC1C,2BAA2B,EAAE,kDAAsB;IACnD,sBAAsB,EAAE,yCAAkB;IAC1C,kBAAkB,EAAE,iCAAc;IAClC,oBAAoB,EAAE,qCAAgB;IACtC,mBAAmB,EAAE,mCAAe;IACpC,wBAAwB,EAAE,6CAAoB;IAC9C,4BAA4B,EAAE,oDAAuB;IACrD,gCAAgC,EAAE,2DAA0B;IAC5D,aAAa,EAAE,uBAAS;IACxB,yBAAyB,EAAE,+CAAqB;IAChD,2BAA2B,EAAE,kDAAsB;IACnD,2BAA2B,EAAE,kDAAsB;IACnD,8BAA8B,EAAE,wDAAyB;IACzD,yBAAyB,EAAE,+CAAqB;IAChD,2BAA2B,EAAE,mDAAuB;IACpD,0BAA0B,EAAE,iDAAsB;IAClD,gBAAgB,EAAE,6BAAY;IAC9B,wBAAwB,EAAE,6CAAoB;IAC9C,kBAAkB,EAAE,iCAAc;IAClC,wBAAwB,EAAE,6CAAoB;IAC9C,iBAAiB,EAAE,+BAAa;IAChC,2BAA2B,EAAE,kDAAsB;IACnD,qBAAqB,EAAE,uCAAiB;IACxC,4BAA4B,EAAE,oDAAuB;IACrD,0BAA0B,EAAE,iDAAsB;IAClD,6BAA6B,EAAE,sDAAwB;IACvD,2BAA2B,EAAE,mDAAuB;IACpD,yBAAyB,EAAE,+CAAqB;IAChD,2BAA2B,EAAE,kDAAsB;IACnD,6BAA6B,EAAE,sDAAwB;IACvD,4BAA4B,EAAE,oDAAuB;IACrD,oBAAoB,EAAE,qCAAgB;IACtC,uBAAuB,EAAE,0CAAkB;IAC3C,6BAA6B,EAAE,sDAAwB;IACvD,uBAAuB,EAAE,2CAAmB;IAC5C,6BAA6B,EAAE,uDAAyB;IACxD,iBAAiB,EAAE,gCAAc;IACjC,2BAA2B,EAAE,kDAAsB;IACnD,4BAA4B,EAAE,oDAAuB;IACrD,oBAAoB,EAAE,qCAAgB;IACtC,kCAAkC,EAAE,gEAA6B;IACjE,6BAA6B,EAAE,sDAAwB;IACvD,6BAA6B,EAAE,sDAAwB;IACvD,wCAAwC,EAAE,4EAAmC;CACJ,CAAC;AAE5E;;GAEG;AACU,QAAA,MAAM,GAA+B;IAChD,IAAI,EAAE;QACJ,IAAI,EAAE,6BAA6B;QACnC,OAAO,EAAE,OAAO;KACjB;IACD,KAAK,EAAL,aAAK;CAC+B,CAAC;AAEvC;;GAEG;AACH,MAAM,gBAAgB,GAAkD;IACtE,mDAAmD;IACnD,gCAAgC,EAAE,OAAO;IACzC,kCAAkC,EAAE,OAAO;IAC3C,2CAA2C,EAAE,OAAO;IACpD,oCAAoC,EAAE,OAAO;IAC7C,yCAAyC,EAAE,OAAO;IAClD,oCAAoC,EAAE,OAAO;IAC7C,gCAAgC,EAAE,OAAO;IACzC,kCAAkC,EAAE,OAAO;IAC3C,iCAAiC,EAAE,OAAO;IAC1C,sCAAsC,EAAE,OAAO;IAC/C,0CAA0C,EAAE,OAAO;IAEnD,8CAA8C;IAC9C,8CAA8C,EAAE,OAAO;IACvD,2BAA2B,EAAE,OAAO;IACpC,uCAAuC,EAAE,OAAO;IAEhD,6BAA6B;IAC7B,yCAAyC,EAAE,OAAO;IAElD,+BAA+B;IAC/B,yCAAyC,EAAE,MAAM;IACjD,yCAAyC,EAAE,OAAO;IAClD,4CAA4C,EAAE,MAAM;IAEpD,6BAA6B;IAC7B,uCAAuC,EAAE,MAAM;IAE/C,sCAAsC;IACtC,wCAAwC,EAAE,OAAO;IACjD,8BAA8B,EAAE,OAAO;IACvC,sCAAsC,EAAE,MAAM;IAC9C,gCAAgC,EAAE,OAAO;IACzC,sCAAsC,EAAE,MAAM;IAC9C,+BAA+B,EAAE,OAAO;IAExC,6CAA6C;IAC7C,yCAAyC,EAAE,MAAM;IACjD,mCAAmC,EAAE,OAAO;IAC5C,0CAA0C,EAAE,MAAM;IAClD,wCAAwC,EAAE,OAAO;IACjD,2CAA2C,EAAE,MAAM;IAEnD,yDAAyD;IACzD,yCAAyC,EAAE,MAAM;IACjD,uCAAuC,EAAE,MAAM;IAC/C,yCAAyC,EAAE,OAAO;IAElD,2BAA2B;IAC3B,2CAA2C,EAAE,MAAM;IACnD,0CAA0C,EAAE,MAAM;IAClD,kCAAkC,EAAE,MAAM;IAE1C,uCAAuC;IACvC,qCAAqC,EAAE,MAAM;IAC7C,2CAA2C,EAAE,MAAM;IACnD,qCAAqC,EAAE,MAAM;IAC7C,2CAA2C,EAAE,MAAM;IACnD,+BAA+B,EAAE,OAAO;IAExC,mCAAmC;IACnC,yCAAyC,EAAE,OAAO;IAClD,0CAA0C,EAAE,MAAM;IAElD,2BAA2B;IAC3B,kCAAkC,EAAE,OAAO;IAE3C,0BAA0B;IAC1B,gDAAgD,EAAE,OAAO;IACzD,2CAA2C,EAAE,OAAO;IAEpD,6BAA6B;IAC7B,2CAA2C,EAAE,OAAO;IACpD,sDAAsD,EAAE,OAAO;CAChE,CAAC;AAEW,QAAA,OAAO,GAA+C;IAEjE;;;;;;OAMG;IACH,WAAW,EAAE;QACX,OAAO,EAAE;YACP,eAAe,EAAE,cAAM;SACxB;QACD,KAAK,EAAE,gBAAgB;KACa;IAEtC;;;;OAIG;IACH,MAAM,EAAE;QACN,OAAO,EAAE;YACP,eAAe,EAAE,cAAM;SACxB;QACD,KAAK,EAAE,MAAM,CAAC,WAAW,CACvB,MAAM,CAAC,IAAI,CAAC,aAAK,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,iBAAiB,QAAQ,EAAE,EAAE,OAAO,CAAC,CAAC,CAC3E;KACmC;IAEtC;;;;OAIG;IACH,cAAc,EAAE;QACd,OAAO,EAAE;YACP,eAAe,EAAE,cAAM;SACxB;QACD,KAAK,EAAE;YACL,mCAAmC;YACnC,yCAAyC,EAAE,OAAO;YAClD,uCAAuC,EAAE,OAAO;YAChD,yCAAyC,EAAE,OAAO;YAClD,qCAAqC,EAAE,OAAO;YAE9C,oCAAoC;YACpC,wCAAwC,EAAE,OAAO;YACjD,8BAA8B,EAAE,OAAO;YACvC,sCAAsC,EAAE,OAAO;YAC/C,+BAA+B,EAAE,OAAO;YACxC,2CAA2C,EAAE,OAAO;YACpD,0CAA0C,EAAE,OAAO;YAEnD,uBAAuB;YACvB,gCAAgC,EAAE,OAAO;YACzC,kCAAkC,EAAE,OAAO;YAC3C,2CAA2C,EAAE,OAAO;YACpD,oCAAoC,EAAE,OAAO;YAC7C,oCAAoC,EAAE,OAAO;YAC7C,gCAAgC,EAAE,OAAO;YACzC,kCAAkC,EAAE,OAAO;YAC3C,iCAAiC,EAAE,OAAO;YAC1C,mCAAmC,EAAE,OAAO;YAC5C,0CAA0C,EAAE,OAAO;YAEnD,6BAA6B;YAC7B,yCAAyC,EAAE,OAAO;YAClD,2CAA2C,EAAE,OAAO;YAEpD,uCAAuC;YACvC,2CAA2C,EAAE,OAAO;YACpD,qCAAqC,EAAE,OAAO;YAC9C,2CAA2C,EAAE,OAAO;YACpD,+BAA+B,EAAE,OAAO;YACxC,2CAA2C,EAAE,OAAO;YAEpD,wDAAwD;YACxD,gCAAgC,EAAE,OAAO;YACzC,sCAAsC,EAAE,OAAO;YAC/C,0CAA0C,EAAE,OAAO;YAEnD,kDAAkD;YAClD,yCAAyC,EAAE,OAAO;YAClD,yCAAyC,EAAE,OAAO;SACnD;KACmC;IAEtC;;;;OAIG;IACH,iBAAiB,EAAE;QACjB,OAAO,EAAE;YACP,eAAe,EAAE,cAAM;SACxB;QACD,KAAK,EAAE;YACL,yBAAyB;YACzB,GAAG,gBAAgB;YAEnB,iEAAiE;YACjE,yCAAyC,EAAE,OAAO;YAClD,uCAAuC,EAAE,OAAO;YAEhD,gEAAgE;YAChE,2CAA2C,EAAE,OAAO;YACpD,qCAAqC,EAAE,OAAO;SAC/C;KACmC;IAEtC;;;OAGG;IACH,iBAAiB,EAAE;QACjB,OAAO,EAAE;YACP,eAAe,EAAE,cAAM;SACxB;QACD,KAAK,EAAE;YACL,GAAG,gBAAgB;YAEnB,8BAA8B;YAC9B,oCAAoC,EAAE,OAAO;YAC7C,yCAAyC,EAAE,OAAO;YAClD,8CAA8C,EAAE,OAAO;YACvD,yCAAyC,EAAE,OAAO;YAClD,uCAAuC,EAAE,OAAO;YAChD,gDAAgD,EAAE,OAAO;YACzD,2CAA2C,EAAE,OAAO;YACpD,2CAA2C,EAAE,OAAO;YACpD,qCAAqC,EAAE,OAAO;YAC9C,2CAA2C,EAAE,OAAO;YACpD,qCAAqC,EAAE,OAAO;SAC/C;KACmC;IAEtC;;;OAGG;IACH,YAAY,EAAE;QACZ,OAAO,EAAE;YACP,eAAe,EAAE,cAAM;SACxB;QACD,KAAK,EAAE,MAAM,CAAC,WAAW,CACvB,MAAM,CAAC,IAAI,CAAC,aAAK,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,iBAAiB,QAAQ,EAAE,EAAE,OAAO,CAAC,CAAC,CAC3E;KACmC;CACvC,CAAC;AAEF;;GAEG;AACH,kBAAe,cAAM,CAAC"}

package/src/rules/security/database-injection.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+export interface Options {
+    /** Detect NoSQL injection patterns. Default: true */
+    detectNoSQL?: boolean;
+    /** Detect ORM-specific vulnerabilities. Default: true */
+    detectORMs?: boolean;
+    /** Trusted data sources that bypass detection */
+    trustedSources?: string[];
+    /** Show framework-specific recommendations. Default: true */
+    frameworkHints?: boolean;
+    /** Strategy for fixing injection: 'parameterize', 'orm', 'sanitize', 'auto' */
+    strategy?: 'parameterize' | 'orm' | 'sanitize' | 'auto';
+}
+export declare const databaseInjection: ESLintUtils.RuleModule<MessageIds, Options, unknown, ESLintUtils.RuleListener>;