eslint-plugin-sonarjs 4.0.1 → 4.0.2

package/cjs/S6270/rule.js

@@ -51,7 +51,10 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const ast_js_1 = require("../helpers/ast.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const module_js_1 = require("../helpers/module.js");
+const location_js_1 = require("../helpers/location.js");
 const result_js_1 = require("../helpers/result.js");
 const iam_js_1 = require("../helpers/aws/iam.js");
 const cdk_js_1 = require("../helpers/aws/cdk.js");
@@ -62,22 +65,22 @@ const MESSAGES = {
     message: 'Make sure granting public access is safe here.',
     secondary: 'Related effect',
 };
-exports.rule = (0, iam_js_1.AwsIamPolicyTemplate)(publicAccessStatementChecker, (0, index_js_1.generateMeta)(meta));
+exports.rule = (0, iam_js_1.AwsIamPolicyTemplate)(publicAccessStatementChecker, (0, generate_meta_js_1.generateMeta)(meta));
 function publicAccessStatementChecker(expr, ctx, options) {
     const properties = (0, result_js_1.getResultOfExpression)(ctx, expr);
     const effect = (0, iam_js_1.getSensitiveEffect)(properties, ctx, options);
     const principal = getSensitivePrincipal(properties, ctx, options);
     if (effect.isMissing && principal) {
-        (0, index_js_1.report)(ctx, {
+        (0, location_js_1.report)(ctx, {
             message: MESSAGES.message,
             node: principal,
         });
     }
     else if (effect.isFound && principal) {
-        (0, index_js_1.report)(ctx, {
+        (0, location_js_1.report)(ctx, {
             message: MESSAGES.message,
             node: principal,
-        }, [(0, index_js_1.toSecondaryLocation)(effect.node, MESSAGES.secondary)]);
+        }, [(0, location_js_1.toSecondaryLocation)(effect.node, MESSAGES.secondary)]);
     }
 }
 function getSensitivePrincipal(properties, ctx, options) {
@@ -97,7 +100,7 @@ function getSensitivePrincipalFromFullyQualifiedName(ctx, node, options) {
 }
 function getPrincipalNewExpressions(node) {
     const newExpressions = [];
-    if ((0, index_js_1.isArrayExpression)(node)) {
+    if ((0, ast_js_1.isArrayExpression)(node)) {
         for (const element of node.elements) {
             if (element?.type === 'NewExpression') {
                 newExpressions.push(element);
@@ -113,16 +116,16 @@ function isSensitivePrincipalNewExpression(ctx, newExpression, options) {
     return (options.principals.anyValues ?? []).some(anyValue => {
         if (anyValue === ARN_PRINCIPAL) {
             const argument = newExpression.arguments[0];
-            return (0, index_js_1.isStringLiteral)(argument) && (0, iam_js_1.isAnyLiteral)(argument);
+            return (0, ast_js_1.isStringLiteral)(argument) && (0, iam_js_1.isAnyLiteral)(argument);
         }
         else {
-            return anyValue === (0, cdk_js_1.normalizeFQN)((0, index_js_1.getFullyQualifiedName)(ctx, newExpression.callee));
+            return anyValue === (0, cdk_js_1.normalizeFQN)((0, module_js_1.getFullyQualifiedName)(ctx, newExpression.callee));
         }
     });
 }
 function getPrincipalLiterals(node, ctx) {
     const literals = [];
-    if ((0, index_js_1.isStringLiteral)(node)) {
+    if ((0, ast_js_1.isStringLiteral)(node)) {
         literals.push(node);
     }
     else {

package/cjs/S6275/rule.js

@@ -52,11 +52,11 @@ var __importStar = (this && this.__importStar) || (function () {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
 const cdk_js_1 = require("../helpers/aws/cdk.js");
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
 const meta = __importStar(require("./generated-meta.js"));
 exports.rule = (0, cdk_js_1.AwsCdkTemplate)({
     'aws-cdk-lib.aws-ec2.Volume': (0, cdk_js_1.AwsCdkCheckArguments)(['encryptionOmitted', 'encryptionDisabled'], true, 'encrypted', { primitives: { invalid: [false] } }),
-}, (0, index_js_1.generateMeta)(meta, {
+}, (0, generate_meta_js_1.generateMeta)(meta, {
     messages: {
         encryptionDisabled: 'Make sure that using unencrypted volumes is safe here.',
         encryptionOmitted: 'Omitting "encrypted" disables volumes encryption. Make sure it is safe here.',

package/cjs/S6281/rule.js

@@ -51,7 +51,12 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const s3_js_1 = require("../helpers/aws/s3.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const module_js_1 = require("../helpers/module.js");
+const ast_js_1 = require("../helpers/ast.js");
+const cdk_js_1 = require("../helpers/aws/cdk.js");
+const location_js_1 = require("../helpers/location.js");
 const meta = __importStar(require("./generated-meta.js"));
 const BLOCK_PUBLIC_ACCESS_KEY = 'blockPublicAccess';
 const BLOCK_PUBLIC_ACCESS_PROPERTY_KEYS = [
@@ -65,10 +70,10 @@ const messages = {
         'to be set on this S3 bucket. Make sure it is safe here.',
     public: 'Make sure allowing public ACL/policies to be set is safe here.',
 };
-exports.rule = (0, index_js_1.S3BucketTemplate)((bucket, context) => {
-    const blockPublicAccess = (0, index_js_1.getBucketProperty)(context, bucket, BLOCK_PUBLIC_ACCESS_KEY);
+exports.rule = (0, s3_js_1.S3BucketTemplate)((bucket, context) => {
+    const blockPublicAccess = (0, s3_js_1.getBucketProperty)(context, bucket, BLOCK_PUBLIC_ACCESS_KEY);
     if (blockPublicAccess == null) {
-        (0, index_js_1.report)(context, {
+        (0, location_js_1.report)(context, {
             message: messages['omitted'],
             node: bucket.callee,
         });
@@ -79,12 +84,12 @@ exports.rule = (0, index_js_1.S3BucketTemplate)((bucket, context) => {
     }
     /** Checks `blockPublicAccess: s3.BlockPublicAccess.BLOCK_ACLS` sensitive pattern */
     function checkBlockPublicAccessValue(blockPublicAccess) {
-        const blockPublicAccessMember = (0, index_js_1.getValueOfExpression)(context, blockPublicAccess.value, 'MemberExpression');
+        const blockPublicAccessMember = (0, ast_js_1.getValueOfExpression)(context, blockPublicAccess.value, 'MemberExpression');
         if (blockPublicAccessMember !== undefined &&
-            (0, index_js_1.normalizeFQN)((0, index_js_1.getFullyQualifiedName)(context, blockPublicAccessMember)) ===
+            (0, cdk_js_1.normalizeFQN)((0, module_js_1.getFullyQualifiedName)(context, blockPublicAccessMember)) ===
                 'aws_cdk_lib.aws_s3.BlockPublicAccess.BLOCK_ACLS') {
-            const propagated = (0, index_js_1.findPropagatedSetting)(blockPublicAccess, blockPublicAccessMember);
-            (0, index_js_1.report)(context, {
+            const propagated = (0, s3_js_1.findPropagatedSetting)(blockPublicAccess, blockPublicAccessMember);
+            (0, location_js_1.report)(context, {
                 message: messages['public'],
                 node: blockPublicAccess,
             }, propagated ? [propagated] : []);
@@ -92,12 +97,12 @@ exports.rule = (0, index_js_1.S3BucketTemplate)((bucket, context) => {
     }
     /** Checks `blockPublicAccess: new s3.BlockPublicAccess({...})` sensitive pattern */
     function checkBlockPublicAccessConstructor(blockPublicAccess) {
-        const blockPublicAccessNew = (0, index_js_1.getValueOfExpression)(context, blockPublicAccess.value, 'NewExpression');
+        const blockPublicAccessNew = (0, ast_js_1.getValueOfExpression)(context, blockPublicAccess.value, 'NewExpression');
         if (blockPublicAccessNew !== undefined &&
             isS3BlockPublicAccessConstructor(blockPublicAccessNew)) {
-            const blockPublicAccessConfig = (0, index_js_1.getValueOfExpression)(context, blockPublicAccessNew.arguments[0], 'ObjectExpression');
+            const blockPublicAccessConfig = (0, ast_js_1.getValueOfExpression)(context, blockPublicAccessNew.arguments[0], 'ObjectExpression');
             if (blockPublicAccessConfig === undefined) {
-                (0, index_js_1.report)(context, {
+                (0, location_js_1.report)(context, {
                     message: messages['omitted'],
                     node: blockPublicAccessNew,
                 });
@@ -109,12 +114,12 @@ exports.rule = (0, index_js_1.S3BucketTemplate)((bucket, context) => {
             }
         }
         function checkBlockPublicAccessConstructorProperty(blockPublicAccessConfig, key) {
-            const blockPublicAccessProperty = blockPublicAccessConfig.properties.find(property => (0, index_js_1.isProperty)(property) && (0, index_js_1.isIdentifier)(property.key, key));
+            const blockPublicAccessProperty = blockPublicAccessConfig.properties.find(property => (0, ast_js_1.isProperty)(property) && (0, ast_js_1.isIdentifier)(property.key, key));
             if (blockPublicAccessProperty !== undefined) {
-                const blockPublicAccessValue = (0, index_js_1.getValueOfExpression)(context, blockPublicAccessProperty.value, 'Literal');
+                const blockPublicAccessValue = (0, ast_js_1.getValueOfExpression)(context, blockPublicAccessProperty.value, 'Literal');
                 if (blockPublicAccessValue?.value === false) {
-                    const propagated = (0, index_js_1.findPropagatedSetting)(blockPublicAccessProperty, blockPublicAccessValue);
-                    (0, index_js_1.report)(context, {
+                    const propagated = (0, s3_js_1.findPropagatedSetting)(blockPublicAccessProperty, blockPublicAccessValue);
+                    (0, location_js_1.report)(context, {
                         message: messages['public'],
                         node: blockPublicAccessProperty,
                     }, propagated ? [propagated] : []);
@@ -123,8 +128,8 @@ exports.rule = (0, index_js_1.S3BucketTemplate)((bucket, context) => {
         }
         function isS3BlockPublicAccessConstructor(expr) {
             return (expr.callee.type === 'MemberExpression' &&
-                (0, index_js_1.normalizeFQN)((0, index_js_1.getFullyQualifiedName)(context, expr.callee)) ===
+                (0, cdk_js_1.normalizeFQN)((0, module_js_1.getFullyQualifiedName)(context, expr.callee)) ===
                     'aws_cdk_lib.aws_s3.BlockPublicAccess');
         }
     }
-}, (0, index_js_1.generateMeta)(meta));
+}, (0, generate_meta_js_1.generateMeta)(meta));

package/cjs/S6299/rule.js

@@ -51,10 +51,10 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
 const meta = __importStar(require("./generated-meta.js"));
 exports.rule = {
-    meta: (0, index_js_1.generateMeta)(meta, {
+    meta: (0, generate_meta_js_1.generateMeta)(meta, {
         messages: {
             safeVueBypassing: 'Make sure bypassing Vue built-in sanitization is safe here.',
         },

package/cjs/S6302/rule.js

@@ -53,28 +53,29 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
 const result_js_1 = require("../helpers/result.js");
 const iam_js_1 = require("../helpers/aws/iam.js");
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const location_js_1 = require("../helpers/location.js");
 const meta = __importStar(require("./generated-meta.js"));
 const MESSAGES = {
     message: 'Make sure granting all privileges is safe here.',
     secondary: 'Related effect',
 };
-exports.rule = (0, iam_js_1.AwsIamPolicyTemplate)(allPrivilegesStatementChecker, (0, index_js_1.generateMeta)(meta));
+exports.rule = (0, iam_js_1.AwsIamPolicyTemplate)(allPrivilegesStatementChecker, (0, generate_meta_js_1.generateMeta)(meta));
 function allPrivilegesStatementChecker(expr, ctx, options) {
     const properties = (0, result_js_1.getResultOfExpression)(ctx, expr);
     const effect = (0, iam_js_1.getSensitiveEffect)(properties, ctx, options);
     const action = getSensitiveAction(properties, options);
     if (effect.isMissing && action) {
-        (0, index_js_1.report)(ctx, {
+        (0, location_js_1.report)(ctx, {
             message: MESSAGES.message,
             node: action,
         });
     }
     else if (effect.isFound && action) {
-        (0, index_js_1.report)(ctx, {
+        (0, location_js_1.report)(ctx, {
             message: MESSAGES.message,
             node: action,
-        }, [(0, index_js_1.toSecondaryLocation)(effect.node, MESSAGES.secondary)]);
+        }, [(0, location_js_1.toSecondaryLocation)(effect.node, MESSAGES.secondary)]);
     }
 }
 function getSensitiveAction(properties, options) {

package/cjs/S6303/rule.js

@@ -51,7 +51,9 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const module_js_1 = require("../helpers/module.js");
+const ast_js_1 = require("../helpers/ast.js");
 const cdk_js_1 = require("../helpers/aws/cdk.js");
 const meta = __importStar(require("./generated-meta.js"));
 const CfnDBCluster = 'CfnDBCluster';
@@ -67,7 +69,7 @@ exports.rule = (0, cdk_js_1.AwsCdkTemplate)({
     'aws-cdk-lib.aws_rds.DatabaseClusterFromSnapshot': checkStorage(DatabaseClusterFromSnapshot),
     'aws-cdk-lib.aws_rds.DatabaseInstance': checkStorage(DatabaseInstance),
     'aws-cdk-lib.aws_rds.DatabaseInstanceReadReplica': checkStorage(DatabaseInstanceReadReplica),
-}, (0, index_js_1.generateMeta)(meta, {
+}, (0, generate_meta_js_1.generateMeta)(meta, {
     messages: {
         unsafe: 'Make sure that using unencrypted storage is safe here.',
         omitted: 'Omitting storageEncrypted disables RDS encryption. Make sure it is safe here.',
@@ -77,7 +79,7 @@ const PROPS_ARGUMENT_POSITION = 2;
 function checkStorage(storage) {
     return (expr, ctx) => {
         const argument = expr.arguments[PROPS_ARGUMENT_POSITION];
-        const props = (0, index_js_1.getValueOfExpression)(ctx, argument, 'ObjectExpression');
+        const props = (0, ast_js_1.getValueOfExpression)(ctx, argument, 'ObjectExpression');
         if (isUnresolved(argument, props)) {
             return;
         }
@@ -88,20 +90,20 @@ function checkStorage(storage) {
         if (isException(storage, props)) {
             return;
         }
-        const propertyKey = (0, index_js_1.getProperty)(props, 'storageEncrypted', ctx);
+        const propertyKey = (0, ast_js_1.getProperty)(props, 'storageEncrypted', ctx);
         if (propertyKey === null) {
             report(props, 'omitted');
         }
         if (!propertyKey) {
             return;
         }
-        const propertyValue = (0, index_js_1.getUniqueWriteUsageOrNode)(ctx, propertyKey.value);
-        if ((0, index_js_1.isFalseLiteral)(propertyValue)) {
+        const propertyValue = (0, ast_js_1.getUniqueWriteUsageOrNode)(ctx, propertyKey.value);
+        if ((0, ast_js_1.isFalseLiteral)(propertyValue)) {
             report(propertyKey.value, 'unsafe');
             return;
         }
         function isUnresolved(node, value) {
-            return node?.type === 'Identifier' && !(0, index_js_1.isUndefined)(node) && value === undefined;
+            return node?.type === 'Identifier' && !(0, ast_js_1.isUndefined)(node) && value === undefined;
         }
         function isException(storage, props) {
             if (![
@@ -112,15 +114,15 @@ function checkStorage(storage) {
             ].includes(storage)) {
                 return false;
             }
-            const exceptionKey = (0, index_js_1.getProperty)(props, 'storageEncryptionKey', ctx);
+            const exceptionKey = (0, ast_js_1.getProperty)(props, 'storageEncryptionKey', ctx);
             if (exceptionKey == null) {
                 return false;
             }
-            const exceptionValue = (0, index_js_1.getUniqueWriteUsageOrNode)(ctx, exceptionKey.value);
+            const exceptionValue = (0, ast_js_1.getUniqueWriteUsageOrNode)(ctx, exceptionKey.value);
             if (exceptionValue.type !== 'NewExpression') {
                 return false;
             }
-            const fqn = (0, cdk_js_1.normalizeFQN)((0, index_js_1.getFullyQualifiedName)(ctx, exceptionValue.callee));
+            const fqn = (0, cdk_js_1.normalizeFQN)((0, module_js_1.getFullyQualifiedName)(ctx, exceptionValue.callee));
             return fqn === 'aws_cdk_lib.aws_kms.Key' || fqn === 'aws_cdk_lib.aws_kms.Alias';
         }
         function report(node, messageId) {

package/cjs/S6304/rule.js

@@ -51,7 +51,8 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const location_js_1 = require("../helpers/location.js");
 const result_js_1 = require("../helpers/result.js");
 const iam_js_1 = require("../helpers/aws/iam.js");
 const meta = __importStar(require("./generated-meta.js"));
@@ -60,7 +61,7 @@ const MESSAGES = {
     secondary: 'Related effect',
 };
 const KMS_PREFIX = 'kms:';
-exports.rule = (0, iam_js_1.AwsIamPolicyTemplate)(allResourcesAccessibleStatementCheck, (0, index_js_1.generateMeta)(meta));
+exports.rule = (0, iam_js_1.AwsIamPolicyTemplate)(allResourcesAccessibleStatementCheck, (0, generate_meta_js_1.generateMeta)(meta));
 function allResourcesAccessibleStatementCheck(expr, ctx, options) {
     const properties = (0, result_js_1.getResultOfExpression)(ctx, expr);
     const effect = (0, iam_js_1.getSensitiveEffect)(properties, ctx, options);
@@ -69,16 +70,16 @@ function allResourcesAccessibleStatementCheck(expr, ctx, options) {
         return;
     }
     if (effect.isMissing && resource) {
-        (0, index_js_1.report)(ctx, {
+        (0, location_js_1.report)(ctx, {
             message: MESSAGES.message,
             node: resource,
         });
     }
     else if (effect.isFound && resource) {
-        (0, index_js_1.report)(ctx, {
+        (0, location_js_1.report)(ctx, {
             message: MESSAGES.message,
             node: resource,
-        }, [(0, index_js_1.toSecondaryLocation)(effect.node, MESSAGES.secondary)]);
+        }, [(0, location_js_1.toSecondaryLocation)(effect.node, MESSAGES.secondary)]);
     }
 }
 function isException(properties, options) {

package/cjs/S6308/rule.js

@@ -52,7 +52,9 @@ var __importStar = (this && this.__importStar) || (function () {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
 const cdk_js_1 = require("../helpers/aws/cdk.js");
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const module_js_1 = require("../helpers/module.js");
+const ast_js_1 = require("../helpers/ast.js");
 const result_js_1 = require("../helpers/result.js");
 const meta = __importStar(require("./generated-meta.js"));
 const DOMAIN_PROPS_POSITION = 2;
@@ -92,7 +94,7 @@ exports.rule = (0, cdk_js_1.AwsCdkTemplate)({
             defaultValue: ELASTIC_SEARCH,
         },
     }),
-}, (0, index_js_1.generateMeta)(meta, {
+}, (0, generate_meta_js_1.generateMeta)(meta, {
     messages: {
         encryptionDisabled: 'Make sure that using unencrypted {{search}} domains is safe here.',
         encryptionOmitted: 'Omitting {{encryptionPropertyName}} causes encryption of data at rest to be ' +
@@ -128,11 +130,11 @@ function domainChecker(options) {
         }
         function getSearchEngine(node) {
             let version;
-            if (options.version.valueType === 'string' && (0, index_js_1.isStringLiteral)(node)) {
+            if (options.version.valueType === 'string' && (0, ast_js_1.isStringLiteral)(node)) {
                 version = `${options.version.property}.${node.value}`;
             }
             else {
-                version = (0, index_js_1.getFullyQualifiedName)(ctx, node);
+                version = (0, module_js_1.getFullyQualifiedName)(ctx, node);
             }
             for (const name of version?.toLowerCase().split('.').reverse() ?? []) {
                 if (name.includes('opensearch')) {
@@ -147,5 +149,5 @@ function domainChecker(options) {
     };
 }
 function isUnencrypted(node) {
-    return (0, index_js_1.isBooleanLiteral)(node) && !node.value;
+    return (0, ast_js_1.isBooleanLiteral)(node) && !node.value;
 }

package/cjs/S6317/rule.js

@@ -51,7 +51,8 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const location_js_1 = require("../helpers/location.js");
 const result_js_1 = require("../helpers/result.js");
 const iam_js_1 = require("../helpers/aws/iam.js");
 const meta = __importStar(require("./generated-meta.js"));
@@ -89,7 +90,7 @@ const MESSAGES = {
         'Remove permissions or restrict the set of resources they apply to.',
     secondary: 'Permissions are granted on all resources.',
 };
-exports.rule = (0, iam_js_1.AwsIamPolicyTemplate)(privilegeEscalationStatementChecker, (0, index_js_1.generateMeta)(meta));
+exports.rule = (0, iam_js_1.AwsIamPolicyTemplate)(privilegeEscalationStatementChecker, (0, generate_meta_js_1.generateMeta)(meta));
 function privilegeEscalationStatementChecker(expr, ctx, options) {
     const properties = (0, result_js_1.getResultOfExpression)(ctx, expr);
     const effect = (0, iam_js_1.getSensitiveEffect)(properties, ctx, options);
@@ -99,10 +100,10 @@ function privilegeEscalationStatementChecker(expr, ctx, options) {
         (effect.isFound || effect.isMissing) &&
         resource &&
         action) {
-        (0, index_js_1.report)(ctx, {
+        (0, location_js_1.report)(ctx, {
             message: MESSAGES.message(action.value),
             node: resource,
-        }, [(0, index_js_1.toSecondaryLocation)(action, MESSAGES.secondary)]);
+        }, [(0, location_js_1.toSecondaryLocation)(action, MESSAGES.secondary)]);
     }
 }
 function getSensitiveAction(properties, options) {

package/cjs/S6319/rule.js

@@ -52,11 +52,11 @@ var __importStar = (this && this.__importStar) || (function () {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
 const cdk_js_1 = require("../helpers/aws/cdk.js");
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
 const meta = __importStar(require("./generated-meta.js"));
 exports.rule = (0, cdk_js_1.AwsCdkTemplate)({
     'aws-cdk-lib.aws_sagemaker.CfnNotebookInstance': (0, cdk_js_1.AwsCdkCheckArguments)('CfnNotebookInstance', true, 'kmsKeyId'),
-}, (0, index_js_1.generateMeta)(meta, {
+}, (0, generate_meta_js_1.generateMeta)(meta, {
     messages: {
         CfnNotebookInstance: 'Omitting "kmsKeyId" disables encryption of SageMaker notebook instances. Make sure it is safe here.',
     },

package/cjs/S6321/rule.js

@@ -52,7 +52,9 @@ var __importStar = (this && this.__importStar) || (function () {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
 const cdk_js_1 = require("../helpers/aws/cdk.js");
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const module_js_1 = require("../helpers/module.js");
+const ast_js_1 = require("../helpers/ast.js");
 const meta = __importStar(require("./generated-meta.js"));
 const TYPES_WITH_CONNECTIONS = [
     'aws_cdk_lib.aws_docdb.DatabaseCluster.connections',
@@ -134,15 +136,15 @@ templateCallback['aws_cdk_lib.aws_ec2.SecurityGroup.addIngressRule'] = {
 };
 templateCallback['aws_cdk_lib.aws_ec2.CfnSecurityGroup'] = (expr, ctx) => {
     const params = expr.arguments[2];
-    const objExpr = (0, index_js_1.getValueOfExpression)(ctx, params, 'ObjectExpression', true);
+    const objExpr = (0, ast_js_1.getValueOfExpression)(ctx, params, 'ObjectExpression', true);
     if (!objExpr) {
         return;
     }
-    const ingressProp = (0, index_js_1.getProperty)(objExpr, 'securityGroupIngress', ctx);
+    const ingressProp = (0, ast_js_1.getProperty)(objExpr, 'securityGroupIngress', ctx);
     if (!ingressProp) {
         return;
     }
-    const arrExpr = (0, index_js_1.getValueOfExpression)(ctx, ingressProp.value, 'ArrayExpression', true);
+    const arrExpr = (0, ast_js_1.getValueOfExpression)(ctx, ingressProp.value, 'ArrayExpression', true);
     if (arrExpr) {
         for (const ingressGroup of arrExpr.elements) {
             if (ingressGroup) {
@@ -154,7 +156,7 @@ templateCallback['aws_cdk_lib.aws_ec2.CfnSecurityGroup'] = (expr, ctx) => {
 templateCallback['aws_cdk_lib.aws_ec2.CfnSecurityGroupIngress'] = (expr, ctx) => {
     checkIngressObject(ctx, expr.arguments[2]);
 };
-exports.rule = (0, cdk_js_1.AwsCdkTemplate)(templateCallback, (0, index_js_1.generateMeta)(meta, {
+exports.rule = (0, cdk_js_1.AwsCdkTemplate)(templateCallback, (0, generate_meta_js_1.generateMeta)(meta, {
     messages: {
         allowFromAnyIpv4: 'Change this method for "allowFrom" and set "other" to a subset of trusted IP addresses.',
         allowFrom: 'Change this IP range to a subset of trusted IP addresses.',
@@ -162,7 +164,7 @@ exports.rule = (0, cdk_js_1.AwsCdkTemplate)(templateCallback, (0, index_js_1.gen
 }));
 const invalidDefaultPortChecker = (0, cdk_js_1.AwsCdkCheckArguments)('allowFrom', false, 'defaultPort', { customChecker: isBadEc2Port }, true, 0);
 function checkConstructorDefaultPort(ctx, node) {
-    const newExpr = (0, index_js_1.getValueOfExpression)(ctx, (0, index_js_1.reduceToIdentifier)(node.callee), 'NewExpression', true);
+    const newExpr = (0, ast_js_1.getValueOfExpression)(ctx, (0, module_js_1.reduceToIdentifier)(node.callee), 'NewExpression', true);
     if (newExpr && invalidDefaultPortChecker(newExpr, ctx)) {
         ctx.report({ messageId: 'allowFromAnyIpv4', node: node.callee });
     }
@@ -181,7 +183,7 @@ function checkAllowFromAnyIpv4(expr, ctx) {
     }
 }
 function checkIngressObject(ctx, node) {
-    const objExpr = (0, index_js_1.getValueOfExpression)(ctx, node, 'ObjectExpression', true);
+    const objExpr = (0, ast_js_1.getValueOfExpression)(ctx, node, 'ObjectExpression', true);
     if (!objExpr) {
         return;
     }
@@ -202,19 +204,19 @@ function checkIngressObject(ctx, node) {
     }
 }
 function disallowedPortObject(ctx, node) {
-    const objExpr = (0, index_js_1.getValueOfExpression)(ctx, node, 'ObjectExpression', true);
+    const objExpr = (0, ast_js_1.getValueOfExpression)(ctx, node, 'ObjectExpression', true);
     if (!objExpr) {
         return false;
     }
-    const protocol = (0, index_js_1.getProperty)(objExpr, 'protocol', ctx);
+    const protocol = (0, ast_js_1.getProperty)(objExpr, 'protocol', ctx);
     if (!protocol) {
         return false;
     }
-    const protocolValue = (0, index_js_1.getUniqueWriteUsageOrNode)(ctx, protocol.value, true);
-    if ((0, index_js_1.isUnresolved)(protocolValue, ctx) || (0, index_js_1.isUndefined)(protocolValue)) {
+    const protocolValue = (0, ast_js_1.getUniqueWriteUsageOrNode)(ctx, protocol.value, true);
+    if ((0, ast_js_1.isUnresolved)(protocolValue, ctx) || (0, ast_js_1.isUndefined)(protocolValue)) {
         return false;
     }
-    const protocolFQN = (0, cdk_js_1.normalizeFQN)((0, index_js_1.getFullyQualifiedName)(ctx, protocolValue));
+    const protocolFQN = (0, cdk_js_1.normalizeFQN)((0, module_js_1.getFullyQualifiedName)(ctx, protocolValue));
     if (protocolFQN && badFQNProtocols.has(protocolFQN)) {
         const fromPort = Number.parseInt(getPropertyValue(ctx, objExpr, 'fromPort')?.value);
         const toPort = Number.parseInt(getPropertyValue(ctx, objExpr, 'toPort')?.value);
@@ -223,7 +225,7 @@ function disallowedPortObject(ctx, node) {
     return false;
 }
 function isBadEc2Peer(ctx, node) {
-    const fqn = (0, cdk_js_1.normalizeFQN)((0, index_js_1.getFullyQualifiedName)(ctx, node));
+    const fqn = (0, cdk_js_1.normalizeFQN)((0, module_js_1.getFullyQualifiedName)(ctx, node));
     if (fqn === 'aws_cdk_lib.aws_ec2.Peer.anyIpv4' || fqn === 'aws_cdk_lib.aws_ec2.Peer.anyIpv6') {
         return true;
     }
@@ -236,7 +238,7 @@ function isBadEc2Peer(ctx, node) {
     return false;
 }
 function isBadEc2Port(ctx, node) {
-    const fqn = (0, cdk_js_1.normalizeFQN)((0, index_js_1.getFullyQualifiedName)(ctx, node));
+    const fqn = (0, cdk_js_1.normalizeFQN)((0, module_js_1.getFullyQualifiedName)(ctx, node));
     if (fqn === 'aws_cdk_lib.aws_ec2.Port.allTcp' || fqn === 'aws_cdk_lib.aws_ec2.Port.allTraffic') {
         return true;
     }
@@ -257,18 +259,18 @@ function isBadEc2Port(ctx, node) {
     return false;
 }
 function getArgument(ctx, node, position = 0) {
-    if (!node || (0, index_js_1.isUndefined)(node) || (0, index_js_1.isUnresolved)(node, ctx)) {
+    if (!node || (0, ast_js_1.isUndefined)(node) || (0, ast_js_1.isUnresolved)(node, ctx)) {
         return undefined;
     }
-    const callExpr = (0, index_js_1.getUniqueWriteUsageOrNode)(ctx, node, true);
-    if ((0, index_js_1.isUnresolved)(callExpr, ctx) ||
-        (0, index_js_1.isUndefined)(callExpr) ||
+    const callExpr = (0, ast_js_1.getUniqueWriteUsageOrNode)(ctx, node, true);
+    if ((0, ast_js_1.isUnresolved)(callExpr, ctx) ||
+        (0, ast_js_1.isUndefined)(callExpr) ||
         (callExpr.type !== 'CallExpression' && callExpr.type !== 'NewExpression')) {
         return undefined;
     }
     const argument = callExpr.arguments[position];
-    const argumentValue = (0, index_js_1.getUniqueWriteUsageOrNode)(ctx, argument, true);
-    if ((0, index_js_1.isUnresolved)(argumentValue, ctx) || (0, index_js_1.isUndefined)(argumentValue)) {
+    const argumentValue = (0, ast_js_1.getUniqueWriteUsageOrNode)(ctx, argument, true);
+    if ((0, ast_js_1.isUnresolved)(argumentValue, ctx) || (0, ast_js_1.isUndefined)(argumentValue)) {
         return undefined;
     }
     return argumentValue;
@@ -278,12 +280,12 @@ function getArgumentValue(ctx, node, position = 0) {
     return argument ? (0, cdk_js_1.getLiteralValue)(ctx, argument) : undefined;
 }
 function getPropertyValue(ctx, node, propertyName) {
-    const property = (0, index_js_1.getProperty)(node, propertyName, ctx);
+    const property = (0, ast_js_1.getProperty)(node, propertyName, ctx);
     if (!property) {
         return undefined;
     }
-    const propertyValue = (0, index_js_1.getUniqueWriteUsageOrNode)(ctx, property.value, true);
-    if ((0, index_js_1.isUnresolved)(propertyValue, ctx) || (0, index_js_1.isUndefined)(propertyValue)) {
+    const propertyValue = (0, ast_js_1.getUniqueWriteUsageOrNode)(ctx, property.value, true);
+    if ((0, ast_js_1.isUnresolved)(propertyValue, ctx) || (0, ast_js_1.isUndefined)(propertyValue)) {
         return undefined;
     }
     return (0, cdk_js_1.getLiteralValue)(ctx, propertyValue);

package/cjs/S6323/rule.js

@@ -51,7 +51,8 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
+const collection_js_1 = require("../helpers/collection.js");
 const meta = __importStar(require("./generated-meta.js"));
 const rule_template_js_1 = require("../helpers/regex/rule-template.js");
 exports.rule = (0, rule_template_js_1.createRegExpRule)(context => {
@@ -77,10 +78,10 @@ exports.rule = (0, rule_template_js_1.createRegExpRule)(context => {
         onGroupEnter: checkAlternation,
         onCapturingGroupEnter: checkAlternation,
     };
-}, (0, index_js_1.generateMeta)(meta));
+}, (0, generate_meta_js_1.generateMeta)(meta));
 function isLastEmptyInGroup(alt) {
     const group = alt.parent;
     return ((group.type === 'Group' || group.type === 'CapturingGroup') &&
-        (0, index_js_1.last)(group.alternatives) === alt &&
+        (0, collection_js_1.last)(group.alternatives) === alt &&
         group.parent.type !== 'Quantifier');
 }

package/cjs/S6324/rule.js

@@ -51,7 +51,7 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
 const meta = __importStar(require("./generated-meta.js"));
 const rule_template_js_1 = require("../helpers/regex/rule-template.js");
 const EXCEPTIONS = new Set(['\t', '\n']);
@@ -150,7 +150,7 @@ exports.rule = (0, rule_template_js_1.createRegExpRule)(context => {
             }
         },
     };
-}, (0, index_js_1.generateMeta)(meta));
+}, (0, generate_meta_js_1.generateMeta)(meta));
 /**
  * When the character has been interpreted, we need to compare its
  * code point value.

package/cjs/S6326/rule.js

@@ -51,7 +51,7 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
 const meta = __importStar(require("./generated-meta.js"));
 const rule_template_js_1 = require("../helpers/regex/rule-template.js");
 const range_js_1 = require("../helpers/regex/range.js");
@@ -89,7 +89,7 @@ exports.rule = (0, rule_template_js_1.createRegExpRule)(context => {
             }
         },
     };
-}, (0, index_js_1.generateMeta)(meta, { hasSuggestions: true }));
+}, (0, generate_meta_js_1.generateMeta)(meta, { hasSuggestions: true }));
 function countSpacesBefore(pattern, index) {
     let counter = 0;
     for (let i = index - 1; i > 0; i--) {

package/cjs/S6327/rule.js

@@ -52,12 +52,12 @@ var __importStar = (this && this.__importStar) || (function () {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.rule = void 0;
 const cdk_js_1 = require("../helpers/aws/cdk.js");
-const index_js_1 = require("../helpers/index.js");
+const generate_meta_js_1 = require("../helpers/generate-meta.js");
 const meta = __importStar(require("./generated-meta.js"));
 exports.rule = (0, cdk_js_1.AwsCdkTemplate)({
     'aws-cdk-lib.aws_sns.Topic': (0, cdk_js_1.AwsCdkCheckArguments)('SNSTopic', true, 'masterKey'),
     'aws-cdk-lib.aws_sns.CfnTopic': (0, cdk_js_1.AwsCdkCheckArguments)('SNSCfnTopic', true, 'kmsMasterKeyId'),
-}, (0, index_js_1.generateMeta)(meta, {
+}, (0, generate_meta_js_1.generateMeta)(meta, {
     messages: {
         SNSTopic: 'Omitting "masterKey" disables SNS topics encryption. Make sure it is safe here.',
         SNSCfnTopic: 'Omitting "kmsMasterKeyId" disables SNS topics encryption. Make sure it is safe here.',