kastell 2.0.0 → 2.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +85 -0
- package/README.md +1 -1
- package/README.tr.md +1 -1
- package/dist/commands/audit.d.ts +3 -0
- package/dist/commands/audit.d.ts.map +1 -1
- package/dist/commands/audit.js +61 -32
- package/dist/commands/audit.js.map +1 -1
- package/dist/commands/config.js +1 -1
- package/dist/commands/config.js.map +1 -1
- package/dist/commands/doctor.d.ts +1 -0
- package/dist/commands/doctor.d.ts.map +1 -1
- package/dist/commands/doctor.js +25 -7
- package/dist/commands/doctor.js.map +1 -1
- package/dist/commands/explain.d.ts +6 -0
- package/dist/commands/explain.d.ts.map +1 -0
- package/dist/commands/explain.js +28 -0
- package/dist/commands/explain.js.map +1 -0
- package/dist/commands/fix.d.ts +2 -0
- package/dist/commands/fix.d.ts.map +1 -1
- package/dist/commands/fix.js +54 -15
- package/dist/commands/fix.js.map +1 -1
- package/dist/commands/fleet.d.ts.map +1 -1
- package/dist/commands/fleet.js +1 -0
- package/dist/commands/fleet.js.map +1 -1
- package/dist/commands/init.d.ts.map +1 -1
- package/dist/commands/init.js +175 -1
- package/dist/commands/init.js.map +1 -1
- package/dist/commands/interactive.d.ts.map +1 -1
- package/dist/commands/interactive.js +59 -1
- package/dist/commands/interactive.js.map +1 -1
- package/dist/commands/plugin.d.ts +8 -0
- package/dist/commands/plugin.d.ts.map +1 -0
- package/dist/commands/plugin.js +87 -0
- package/dist/commands/plugin.js.map +1 -0
- package/dist/commands/regression.d.ts +5 -0
- package/dist/commands/regression.d.ts.map +1 -0
- package/dist/commands/regression.js +40 -0
- package/dist/commands/regression.js.map +1 -0
- package/dist/core/audit/checkIds.d.ts +516 -0
- package/dist/core/audit/checkIds.d.ts.map +1 -0
- package/dist/core/audit/checkIds.js +515 -0
- package/dist/core/audit/checkIds.js.map +1 -0
- package/dist/core/audit/checks/accounts.d.ts.map +1 -1
- package/dist/core/audit/checks/accounts.js +23 -22
- package/dist/core/audit/checks/accounts.js.map +1 -1
- package/dist/core/audit/checks/auth.d.ts.map +1 -1
- package/dist/core/audit/checks/auth.js +23 -22
- package/dist/core/audit/checks/auth.js.map +1 -1
- package/dist/core/audit/checks/backup.d.ts.map +1 -1
- package/dist/core/audit/checks/backup.js +9 -8
- package/dist/core/audit/checks/backup.js.map +1 -1
- package/dist/core/audit/checks/banners.d.ts.map +1 -1
- package/dist/core/audit/checks/banners.js +7 -6
- package/dist/core/audit/checks/banners.js.map +1 -1
- package/dist/core/audit/checks/boot.d.ts.map +1 -1
- package/dist/core/audit/checks/boot.js +12 -11
- package/dist/core/audit/checks/boot.js.map +1 -1
- package/dist/core/audit/checks/cloudmeta.d.ts.map +1 -1
- package/dist/core/audit/checks/cloudmeta.js +7 -6
- package/dist/core/audit/checks/cloudmeta.js.map +1 -1
- package/dist/core/audit/checks/crypto.d.ts +0 -5
- package/dist/core/audit/checks/crypto.d.ts.map +1 -1
- package/dist/core/audit/checks/crypto.js +20 -19
- package/dist/core/audit/checks/crypto.js.map +1 -1
- package/dist/core/audit/checks/ddos.d.ts.map +1 -1
- package/dist/core/audit/checks/ddos.js +9 -8
- package/dist/core/audit/checks/ddos.js.map +1 -1
- package/dist/core/audit/checks/dns.d.ts.map +1 -1
- package/dist/core/audit/checks/dns.js +9 -8
- package/dist/core/audit/checks/dns.js.map +1 -1
- package/dist/core/audit/checks/docker.d.ts.map +1 -1
- package/dist/core/audit/checks/docker.js +65 -64
- package/dist/core/audit/checks/docker.js.map +1 -1
- package/dist/core/audit/checks/fileintegrity.d.ts.map +1 -1
- package/dist/core/audit/checks/fileintegrity.js +11 -10
- package/dist/core/audit/checks/fileintegrity.js.map +1 -1
- package/dist/core/audit/checks/filesystem.d.ts.map +1 -1
- package/dist/core/audit/checks/filesystem.js +21 -20
- package/dist/core/audit/checks/filesystem.js.map +1 -1
- package/dist/core/audit/checks/firewall.d.ts.map +1 -1
- package/dist/core/audit/checks/firewall.js +18 -17
- package/dist/core/audit/checks/firewall.js.map +1 -1
- package/dist/core/audit/checks/httpHeaders.d.ts.map +1 -1
- package/dist/core/audit/checks/httpHeaders.js +7 -6
- package/dist/core/audit/checks/httpHeaders.js.map +1 -1
- package/dist/core/audit/checks/incidentready.d.ts.map +1 -1
- package/dist/core/audit/checks/incidentready.js +13 -12
- package/dist/core/audit/checks/incidentready.js.map +1 -1
- package/dist/core/audit/checks/kernel.d.ts.map +1 -1
- package/dist/core/audit/checks/kernel.js +32 -31
- package/dist/core/audit/checks/kernel.js.map +1 -1
- package/dist/core/audit/checks/logging.d.ts.map +1 -1
- package/dist/core/audit/checks/logging.js +21 -20
- package/dist/core/audit/checks/logging.js.map +1 -1
- package/dist/core/audit/checks/mac.d.ts.map +1 -1
- package/dist/core/audit/checks/mac.js +11 -10
- package/dist/core/audit/checks/mac.js.map +1 -1
- package/dist/core/audit/checks/malware.d.ts.map +1 -1
- package/dist/core/audit/checks/malware.js +12 -11
- package/dist/core/audit/checks/malware.js.map +1 -1
- package/dist/core/audit/checks/memory.d.ts.map +1 -1
- package/dist/core/audit/checks/memory.js +12 -11
- package/dist/core/audit/checks/memory.js.map +1 -1
- package/dist/core/audit/checks/network.d.ts.map +1 -1
- package/dist/core/audit/checks/network.js +22 -21
- package/dist/core/audit/checks/network.js.map +1 -1
- package/dist/core/audit/checks/nginx.d.ts.map +1 -1
- package/dist/core/audit/checks/nginx.js +17 -16
- package/dist/core/audit/checks/nginx.js.map +1 -1
- package/dist/core/audit/checks/resourcelimits.d.ts.map +1 -1
- package/dist/core/audit/checks/resourcelimits.js +9 -8
- package/dist/core/audit/checks/resourcelimits.js.map +1 -1
- package/dist/core/audit/checks/scheduling.d.ts.map +1 -1
- package/dist/core/audit/checks/scheduling.js +13 -12
- package/dist/core/audit/checks/scheduling.js.map +1 -1
- package/dist/core/audit/checks/secrets.d.ts.map +1 -1
- package/dist/core/audit/checks/secrets.js +16 -15
- package/dist/core/audit/checks/secrets.js.map +1 -1
- package/dist/core/audit/checks/services.d.ts.map +1 -1
- package/dist/core/audit/checks/services.js +26 -25
- package/dist/core/audit/checks/services.js.map +1 -1
- package/dist/core/audit/checks/ssh.d.ts.map +1 -1
- package/dist/core/audit/checks/ssh.js +23 -22
- package/dist/core/audit/checks/ssh.js.map +1 -1
- package/dist/core/audit/checks/supplychain.d.ts.map +1 -1
- package/dist/core/audit/checks/supplychain.js +13 -12
- package/dist/core/audit/checks/supplychain.js.map +1 -1
- package/dist/core/audit/checks/time.d.ts.map +1 -1
- package/dist/core/audit/checks/time.js +10 -9
- package/dist/core/audit/checks/time.js.map +1 -1
- package/dist/core/audit/checks/tls.d.ts.map +1 -1
- package/dist/core/audit/checks/tls.js +9 -8
- package/dist/core/audit/checks/tls.js.map +1 -1
- package/dist/core/audit/checks/updates.d.ts.map +1 -1
- package/dist/core/audit/checks/updates.js +12 -11
- package/dist/core/audit/checks/updates.js.map +1 -1
- package/dist/core/audit/compliance/categories/index.d.ts +3 -0
- package/dist/core/audit/compliance/categories/index.d.ts.map +1 -0
- package/dist/core/audit/compliance/categories/index.js +737 -0
- package/dist/core/audit/compliance/categories/index.js.map +1 -0
- package/dist/core/audit/compliance/helpers.d.ts +17 -0
- package/dist/core/audit/compliance/helpers.d.ts.map +1 -0
- package/dist/core/audit/compliance/helpers.js +40 -0
- package/dist/core/audit/compliance/helpers.js.map +1 -0
- package/dist/core/audit/compliance/mapper.d.ts +4 -16
- package/dist/core/audit/compliance/mapper.d.ts.map +1 -1
- package/dist/core/audit/compliance/mapper.js +3 -776
- package/dist/core/audit/compliance/mapper.js.map +1 -1
- package/dist/core/audit/diff.d.ts +12 -1
- package/dist/core/audit/diff.d.ts.map +1 -1
- package/dist/core/audit/diff.js +121 -0
- package/dist/core/audit/diff.js.map +1 -1
- package/dist/core/audit/explainCheck.d.ts +26 -0
- package/dist/core/audit/explainCheck.d.ts.map +1 -0
- package/dist/core/audit/explainCheck.js +165 -0
- package/dist/core/audit/explainCheck.js.map +1 -0
- package/dist/core/audit/fix-history.d.ts +16 -7
- package/dist/core/audit/fix-history.d.ts.map +1 -1
- package/dist/core/audit/fix-history.js +25 -2
- package/dist/core/audit/fix-history.js.map +1 -1
- package/dist/core/audit/fix.d.ts +21 -6
- package/dist/core/audit/fix.d.ts.map +1 -1
- package/dist/core/audit/fix.js +139 -49
- package/dist/core/audit/fix.js.map +1 -1
- package/dist/core/audit/history.d.ts.map +1 -1
- package/dist/core/audit/history.js +2 -1
- package/dist/core/audit/history.js.map +1 -1
- package/dist/core/audit/index.d.ts.map +1 -1
- package/dist/core/audit/index.js +3 -2
- package/dist/core/audit/index.js.map +1 -1
- package/dist/core/audit/listChecks.d.ts +7 -0
- package/dist/core/audit/listChecks.d.ts.map +1 -1
- package/dist/core/audit/listChecks.js +1 -1
- package/dist/core/audit/listChecks.js.map +1 -1
- package/dist/core/audit/regression.d.ts +15 -0
- package/dist/core/audit/regression.d.ts.map +1 -0
- package/dist/core/audit/regression.js +149 -0
- package/dist/core/audit/regression.js.map +1 -0
- package/dist/core/audit/snapshot.d.ts.map +1 -1
- package/dist/core/audit/snapshot.js +91 -29
- package/dist/core/audit/snapshot.js.map +1 -1
- package/dist/core/audit/types.d.ts +63 -1
- package/dist/core/audit/types.d.ts.map +1 -1
- package/dist/core/audit/watch.d.ts.map +1 -1
- package/dist/core/audit/watch.js +3 -2
- package/dist/core/audit/watch.js.map +1 -1
- package/dist/core/bot/handlers.d.ts.map +1 -1
- package/dist/core/bot/handlers.js +9 -18
- package/dist/core/bot/handlers.js.map +1 -1
- package/dist/core/completions.d.ts.map +1 -1
- package/dist/core/completions.js +24 -2
- package/dist/core/completions.js.map +1 -1
- package/dist/core/defaults.d.ts +4 -0
- package/dist/core/defaults.d.ts.map +1 -0
- package/dist/core/defaults.js +34 -0
- package/dist/core/defaults.js.map +1 -0
- package/dist/core/doctor-fix.d.ts +1 -1
- package/dist/core/doctor-fix.d.ts.map +1 -1
- package/dist/core/doctor-fix.js +17 -2
- package/dist/core/doctor-fix.js.map +1 -1
- package/dist/core/doctor.d.ts +4 -0
- package/dist/core/doctor.d.ts.map +1 -1
- package/dist/core/doctor.js +26 -2
- package/dist/core/doctor.js.map +1 -1
- package/dist/core/firewall.d.ts +1 -4
- package/dist/core/firewall.d.ts.map +1 -1
- package/dist/core/firewall.js +19 -25
- package/dist/core/firewall.js.map +1 -1
- package/dist/core/fleet.d.ts +8 -0
- package/dist/core/fleet.d.ts.map +1 -1
- package/dist/core/fleet.js +49 -5
- package/dist/core/fleet.js.map +1 -1
- package/dist/core/manage.d.ts +9 -6
- package/dist/core/manage.d.ts.map +1 -1
- package/dist/core/manage.js +2 -1
- package/dist/core/manage.js.map +1 -1
- package/dist/core/notify.d.ts.map +1 -1
- package/dist/core/notify.js +2 -1
- package/dist/core/notify.js.map +1 -1
- package/dist/core/plugin.d.ts +23 -0
- package/dist/core/plugin.d.ts.map +1 -0
- package/dist/core/plugin.js +107 -0
- package/dist/core/plugin.js.map +1 -0
- package/dist/core/scheduleManager.d.ts +2 -1
- package/dist/core/scheduleManager.d.ts.map +1 -1
- package/dist/core/scheduleManager.js +8 -5
- package/dist/core/scheduleManager.js.map +1 -1
- package/dist/core/status.d.ts +1 -0
- package/dist/core/status.d.ts.map +1 -1
- package/dist/core/status.js +20 -6
- package/dist/core/status.js.map +1 -1
- package/dist/index.js +65 -2
- package/dist/index.js.map +1 -1
- package/dist/mcp/index.js +5 -9
- package/dist/mcp/index.js.map +1 -1
- package/dist/mcp/server.d.ts.map +1 -1
- package/dist/mcp/server.js +44 -2
- package/dist/mcp/server.js.map +1 -1
- package/dist/mcp/tools/serverAudit.d.ts.map +1 -1
- package/dist/mcp/tools/serverAudit.js +15 -0
- package/dist/mcp/tools/serverAudit.js.map +1 -1
- package/dist/mcp/tools/serverCompare.d.ts +15 -0
- package/dist/mcp/tools/serverCompare.d.ts.map +1 -0
- package/dist/mcp/tools/serverCompare.js +43 -0
- package/dist/mcp/tools/serverCompare.js.map +1 -0
- package/dist/mcp/tools/serverDoctor.d.ts.map +1 -1
- package/dist/mcp/tools/serverDoctor.js +2 -1
- package/dist/mcp/tools/serverDoctor.js.map +1 -1
- package/dist/mcp/tools/serverExplain.d.ts +8 -0
- package/dist/mcp/tools/serverExplain.d.ts.map +1 -0
- package/dist/mcp/tools/serverExplain.js +14 -0
- package/dist/mcp/tools/serverExplain.js.map +1 -0
- package/dist/mcp/tools/serverFix.d.ts +2 -0
- package/dist/mcp/tools/serverFix.d.ts.map +1 -1
- package/dist/mcp/tools/serverFix.js +40 -2
- package/dist/mcp/tools/serverFix.js.map +1 -1
- package/dist/mcp/tools/serverFleet.d.ts +2 -0
- package/dist/mcp/tools/serverFleet.d.ts.map +1 -1
- package/dist/mcp/tools/serverFleet.js +10 -1
- package/dist/mcp/tools/serverFleet.js.map +1 -1
- package/dist/mcp/tools/serverManage.d.ts.map +1 -1
- package/dist/mcp/tools/serverManage.js +10 -9
- package/dist/mcp/tools/serverManage.js.map +1 -1
- package/dist/mcp/tools/serverPlugin.d.ts +12 -0
- package/dist/mcp/tools/serverPlugin.d.ts.map +1 -0
- package/dist/mcp/tools/serverPlugin.js +22 -0
- package/dist/mcp/tools/serverPlugin.js.map +1 -0
- package/dist/plugin/loader.d.ts +10 -0
- package/dist/plugin/loader.d.ts.map +1 -0
- package/dist/plugin/loader.js +88 -0
- package/dist/plugin/loader.js.map +1 -0
- package/dist/plugin/registry.d.ts +16 -0
- package/dist/plugin/registry.d.ts.map +1 -0
- package/dist/plugin/registry.js +99 -0
- package/dist/plugin/registry.js.map +1 -0
- package/dist/plugin/sdk/constants.d.ts +3 -0
- package/dist/plugin/sdk/constants.d.ts.map +1 -0
- package/dist/plugin/sdk/constants.js +3 -0
- package/dist/plugin/sdk/constants.js.map +1 -0
- package/dist/plugin/sdk/types.d.ts +29 -0
- package/dist/plugin/sdk/types.d.ts.map +1 -0
- package/dist/plugin/sdk/types.js +2 -0
- package/dist/plugin/sdk/types.js.map +1 -0
- package/dist/plugin/validate.d.ts +3 -0
- package/dist/plugin/validate.d.ts.map +1 -0
- package/dist/plugin/validate.js +31 -0
- package/dist/plugin/validate.js.map +1 -0
- package/dist/providers/base.d.ts.map +1 -1
- package/dist/providers/base.js +2 -1
- package/dist/providers/base.js.map +1 -1
- package/dist/types/index.d.ts +8 -1
- package/dist/types/index.d.ts.map +1 -1
- package/dist/types/index.js +1 -1
- package/dist/types/index.js.map +1 -1
- package/dist/utils/dates.d.ts +3 -0
- package/dist/utils/dates.d.ts.map +1 -0
- package/dist/utils/dates.js +10 -0
- package/dist/utils/dates.js.map +1 -0
- package/dist/utils/errorMapper.d.ts.map +1 -1
- package/dist/utils/errorMapper.js +2 -1
- package/dist/utils/errorMapper.js.map +1 -1
- package/dist/utils/errors.d.ts +1 -0
- package/dist/utils/errors.d.ts.map +1 -1
- package/dist/utils/errors.js +3 -0
- package/dist/utils/errors.js.map +1 -1
- package/dist/utils/migration.d.ts.map +1 -1
- package/dist/utils/migration.js +2 -1
- package/dist/utils/migration.js.map +1 -1
- package/dist/utils/paths.d.ts +4 -0
- package/dist/utils/paths.d.ts.map +1 -1
- package/dist/utils/paths.js +4 -0
- package/dist/utils/paths.js.map +1 -1
- package/dist/utils/prompts.d.ts +6 -0
- package/dist/utils/prompts.d.ts.map +1 -1
- package/dist/utils/prompts.js +11 -0
- package/dist/utils/prompts.js.map +1 -1
- package/dist/utils/{defaults.d.ts → providerConfig.d.ts} +1 -1
- package/dist/utils/providerConfig.d.ts.map +1 -0
- package/dist/utils/{defaults.js → providerConfig.js} +1 -1
- package/dist/utils/providerConfig.js.map +1 -0
- package/dist/utils/secureWrite.d.ts.map +1 -1
- package/dist/utils/secureWrite.js +2 -1
- package/dist/utils/secureWrite.js.map +1 -1
- package/dist/utils/version.d.ts +4 -0
- package/dist/utils/version.d.ts.map +1 -0
- package/dist/utils/version.js +22 -0
- package/dist/utils/version.js.map +1 -0
- package/dist/utils/yamlConfig.d.ts.map +1 -1
- package/dist/utils/yamlConfig.js +3 -2
- package/dist/utils/yamlConfig.js.map +1 -1
- package/package.json +3 -1
- package/dist/utils/defaults.d.ts.map +0 -1
- package/dist/utils/defaults.js.map +0 -1
|
@@ -3,9 +3,10 @@
|
|
|
3
3
|
* Parses kernel memory policies, overcommit settings, zombie processes,
|
|
4
4
|
* core dump restrictions, and process limits into 7 security checks.
|
|
5
5
|
*/
|
|
6
|
+
import { CHECK_IDS } from "../checkIds.js";
|
|
6
7
|
const MEMORY_CHECKS = [
|
|
7
8
|
{
|
|
8
|
-
id:
|
|
9
|
+
id: CHECK_IDS.MEMORY.MEM_OVERCOMMIT_POLICY,
|
|
9
10
|
name: "Memory Overcommit Controlled",
|
|
10
11
|
severity: "info",
|
|
11
12
|
check: (output) => {
|
|
@@ -31,7 +32,7 @@ const MEMORY_CHECKS = [
|
|
|
31
32
|
explain: "vm.overcommit_memory=1 (always overcommit) allows any memory allocation regardless of available memory, increasing OOM kill risk and potential denial-of-service conditions.",
|
|
32
33
|
},
|
|
33
34
|
{
|
|
34
|
-
id:
|
|
35
|
+
id: CHECK_IDS.MEMORY.MEM_NO_ZOMBIE_EXCESS,
|
|
35
36
|
name: "No Excessive Zombie Processes",
|
|
36
37
|
severity: "warning",
|
|
37
38
|
check: (output) => {
|
|
@@ -65,7 +66,7 @@ const MEMORY_CHECKS = [
|
|
|
65
66
|
explain: "Excessive zombie processes indicate a parent process is not properly reaping children, suggesting a software fault. Large numbers can exhaust process table entries causing system-wide failures.",
|
|
66
67
|
},
|
|
67
68
|
{
|
|
68
|
-
id:
|
|
69
|
+
id: CHECK_IDS.MEMORY.MEM_CORE_DUMP_RESTRICTED,
|
|
69
70
|
name: "Core Dumps Restricted (SUID)",
|
|
70
71
|
severity: "warning",
|
|
71
72
|
check: (output) => {
|
|
@@ -88,7 +89,7 @@ const MEMORY_CHECKS = [
|
|
|
88
89
|
explain: "fs.suid_dumpable=0 prevents SUID/SGID programs from generating core dumps, protecting against leaking privileged process memory (credentials, keys) to disk.",
|
|
89
90
|
},
|
|
90
91
|
{
|
|
91
|
-
id:
|
|
92
|
+
id: CHECK_IDS.MEMORY.MEM_OOM_KILL_POLICY,
|
|
92
93
|
name: "OOM Killer Policy Configured",
|
|
93
94
|
severity: "info",
|
|
94
95
|
check: (output) => {
|
|
@@ -108,7 +109,7 @@ const MEMORY_CHECKS = [
|
|
|
108
109
|
explain: "The OOM killer policy controls which process is terminated when memory runs out. Having it explicitly configured ensures predictable behavior during memory pressure events.",
|
|
109
110
|
},
|
|
110
111
|
{
|
|
111
|
-
id:
|
|
112
|
+
id: CHECK_IDS.MEMORY.MEM_HUGEPAGES_CONFIG,
|
|
112
113
|
name: "Transparent Hugepages Configured",
|
|
113
114
|
severity: "info",
|
|
114
115
|
check: (output) => {
|
|
@@ -134,7 +135,7 @@ const MEMORY_CHECKS = [
|
|
|
134
135
|
explain: "Transparent hugepages configuration affects memory management performance and fragmentation. Having it explicitly configured is a sign of deliberate memory tuning.",
|
|
135
136
|
},
|
|
136
137
|
{
|
|
137
|
-
id:
|
|
138
|
+
id: CHECK_IDS.MEMORY.MEM_PID_MAX_REASONABLE,
|
|
138
139
|
name: "PID Max Configured",
|
|
139
140
|
severity: "info",
|
|
140
141
|
check: (output) => {
|
|
@@ -158,7 +159,7 @@ const MEMORY_CHECKS = [
|
|
|
158
159
|
explain: "The pid_max value limits how many processes can run simultaneously. Values above 4096 indicate the system is configured for normal multi-process operation.",
|
|
159
160
|
},
|
|
160
161
|
{
|
|
161
|
-
id:
|
|
162
|
+
id: CHECK_IDS.MEMORY.MEM_ULIMIT_NOFILE,
|
|
162
163
|
name: "Open Files Limit Configured",
|
|
163
164
|
severity: "warning",
|
|
164
165
|
check: (output) => {
|
|
@@ -183,7 +184,7 @@ const MEMORY_CHECKS = [
|
|
|
183
184
|
explain: "An unlimited open files ulimit allows a single process to consume all available file descriptors, potentially causing denial-of-service by exhausting system resources.",
|
|
184
185
|
},
|
|
185
186
|
{
|
|
186
|
-
id:
|
|
187
|
+
id: CHECK_IDS.MEMORY.MEM_SWAP_ENCRYPTED,
|
|
187
188
|
name: "Swap Encrypted or Disabled",
|
|
188
189
|
severity: "info",
|
|
189
190
|
check: (output) => {
|
|
@@ -209,7 +210,7 @@ const MEMORY_CHECKS = [
|
|
|
209
210
|
explain: "Unencrypted swap can contain sensitive data like passwords and encryption keys that persist after power loss.",
|
|
210
211
|
},
|
|
211
212
|
{
|
|
212
|
-
id:
|
|
213
|
+
id: CHECK_IDS.MEMORY.MEM_SWAPPINESS_REASONABLE,
|
|
213
214
|
name: "Swappiness Value Reasonable",
|
|
214
215
|
severity: "info",
|
|
215
216
|
check: (output) => {
|
|
@@ -244,7 +245,7 @@ const MEMORY_CHECKS = [
|
|
|
244
245
|
explain: "High swappiness increases the chance of sensitive memory pages being written to potentially unencrypted swap.",
|
|
245
246
|
},
|
|
246
247
|
{
|
|
247
|
-
id:
|
|
248
|
+
id: CHECK_IDS.MEMORY.MEM_HUGEPAGES_NOT_EXCESSIVE,
|
|
248
249
|
name: "Transparent Hugepages Not Always Mode",
|
|
249
250
|
severity: "info",
|
|
250
251
|
check: (output) => {
|
|
@@ -268,7 +269,7 @@ const MEMORY_CHECKS = [
|
|
|
268
269
|
explain: "Transparent hugepages set to 'always' can cause memory fragmentation and latency spikes; 'madvise' gives application control.",
|
|
269
270
|
},
|
|
270
271
|
{
|
|
271
|
-
id:
|
|
272
|
+
id: CHECK_IDS.MEMORY.MEM_MAX_MAP_COUNT,
|
|
272
273
|
name: "vm.max_map_count Meets Minimum",
|
|
273
274
|
severity: "info",
|
|
274
275
|
check: (output) => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"memory.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/memory.ts"],"names":[],"mappings":"AAAA;;;;GAIG;
|
|
1
|
+
{"version":3,"file":"memory.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/memory.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAa3C,MAAM,aAAa,GAAqB;IACtC;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,qBAAqB;QAC1C,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC;YAChE,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,gCAAgC,EAAE,CAAC;YAC3E,CAAC;YACD,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACrC,iDAAiD;YACjD,gCAAgC;YAChC,0CAA0C;YAC1C,MAAM,MAAM,GAAG,KAAK,KAAK,CAAC,IAAI,KAAK,KAAK,CAAC,CAAC;YAC1C,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,0BAA0B,KAAK,eAAe;oBAChD,CAAC,CAAC,0BAA0B,KAAK,sBAAsB;aAC1D,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,uCAAuC;QACtD,UAAU,EAAE,uFAAuF;QACnG,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,8KAA8K;KACjL;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,oBAAoB;QACzC,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,2DAA2D;YAC3D,wEAAwE;YACxE,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACjC,IAAI,WAAW,GAAG,CAAC,CAAC,CAAC;YACrB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;oBAClC,IAAI,WAAW,KAAK,CAAC,CAAC,EAAE,CAAC;wBACvB,WAAW,GAAG,GAAG,CAAC;oBACpB,CAAC;gBACH,CAAC;YACH,CAAC;YACD,IAAI,WAAW,KAAK,CAAC,CAAC,EAAE,CAAC;gBACvB,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,+BAA+B,EAAE,CAAC;YAC1E,CAAC;YACD,MAAM,MAAM,GAAG,WAAW,GAAG,EAAE,CAAC;YAChC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,GAAG,WAAW,gCAAgC;oBAChD,CAAC,CAAC,GAAG,WAAW,+BAA+B;aAClD,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,2BAA2B;QAC1C,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,mMAAmM;KACtM;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,wBAAwB;QAC7C,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,+BAA+B,CAAC,CAAC;YAC5D,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,4BAA4B,EAAE,CAAC;YACvE,CAAC;YACD,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACrC,MAAM,MAAM,GAAG,KAAK,KAAK,CAAC,CAAC;YAC3B,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,8CAA8C;oBAChD,CAAC,CAAC,sBAAsB,KAAK,iCAAiC;aACjE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,sBAAsB;QACrC,UAAU,EAAE,+EAA+E;QAC3F,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,8JAA8J;KACjK;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,mBAAmB;QACxC,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,0CAA0C,CAAC,CAAC;YACvE,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,uCAAuC,EAAE,CAAC;YAClF,CAAC;YACD,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACvB,OAAO;gBACL,MAAM,EAAE,IAAI;gBACZ,YAAY,EAAE,iCAAiC,KAAK,eAAe;aACpE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,sDAAsD;QACrE,UAAU,EAAE,qGAAqG;QACjH,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,8KAA8K;KACjL;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,oBAAoB;QACzC,IAAI,EAAE,kCAAkC;QACxC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,8FAA8F;YAC9F,MAAM,YAAY,GAAG,4BAA4B,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC/D,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,mDAAmD;gBACnD,MAAM,UAAU,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;gBACvG,OAAO;oBACL,MAAM,EAAE,UAAU;oBAClB,YAAY,EAAE,UAAU,CAAC,CAAC,CAAC,kCAAkC,CAAC,CAAC,CAAC,sCAAsC;iBACvG,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC,4BAA4B,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,SAAS,CAAC;YAC1E,OAAO;gBACL,MAAM,EAAE,IAAI;gBACZ,YAAY,EAAE,0BAA0B,IAAI,EAAE;aAC/C,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,sFAAsF;QACrG,UAAU,EAAE,4DAA4D;QACxE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,qKAAqK;KACxK;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,sBAAsB;QAC3C,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,2DAA2D;YAC3D,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;YACvD,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,yBAAyB,EAAE,CAAC;YACpE,CAAC;YACD,MAAM,MAAM,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACtC,MAAM,MAAM,GAAG,MAAM,GAAG,IAAI,CAAC;YAC7B,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,aAAa,MAAM,eAAe;oBACpC,CAAC,CAAC,aAAa,MAAM,YAAY;aACpC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,2DAA2D;QAC1E,UAAU,EAAE,mFAAmF;QAC/F,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,6JAA6J;KAChK;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,iBAAiB;QACtC,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,uDAAuD;YACvD,sFAAsF;YACtF,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,kEAAkE,CAAC,CAAC;YAC/F,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,6CAA6C,EAAE,CAAC;YACxF,CAAC;YACD,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACvB,MAAM,WAAW,GAAG,KAAK,KAAK,WAAW,IAAI,KAAK,KAAK,IAAI,CAAC;YAC5D,OAAO;gBACL,MAAM,EAAE,CAAC,WAAW;gBACpB,YAAY,EAAE,WAAW;oBACvB,CAAC,CAAC,8CAA8C;oBAChD,CAAC,CAAC,qBAAqB,KAAK,EAAE;aACjC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,6DAA6D;QAC5E,UAAU,EAAE,8EAA8E;QAC1F,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,yKAAyK;KAC5K;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,kBAAkB;QACvC,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,4CAA4C;YAC5C,MAAM,MAAM,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACtC,IAAI,MAAM,EAAE,CAAC;gBACX,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,oBAAoB,EAAE,CAAC;YAC9D,CAAC;YACD,0DAA0D;YAC1D,MAAM,gBAAgB,GAAG,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC1D,OAAO;gBACL,MAAM,EAAE,MAAM,IAAI,gBAAgB;gBAClC,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,oBAAoB;oBACtB,CAAC,CAAC,gBAAgB;wBAChB,CAAC,CAAC,0BAA0B;wBAC5B,CAAC,CAAC,2BAA2B;aAClC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,sCAAsC;QACrD,UAAU,EAAE,gGAAgG;QAC5G,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,+GAA+G;KAClH;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,yBAAyB;QAC9C,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,8CAA8C;YAC9C,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACjC,IAAI,UAAU,GAAkB,IAAI,CAAC;YACrC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,gEAAgE;gBAChE,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;oBAClC,IAAI,GAAG,IAAI,CAAC,IAAI,GAAG,IAAI,GAAG,EAAE,CAAC;wBAC3B,UAAU,GAAG,GAAG,CAAC;wBACjB,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;YACD,IAAI,UAAU,KAAK,IAAI,EAAE,CAAC;gBACxB,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,yBAAyB,EAAE,CAAC;YACpE,CAAC;YACD,MAAM,MAAM,GAAG,UAAU,IAAI,EAAE,CAAC;YAChC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,mBAAmB,UAAU,eAAe;oBAC9C,CAAC,CAAC,mBAAmB,UAAU,4CAA4C;aAC9E,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,qBAAqB;QACpC,UAAU,EAAE,2EAA2E;QACvF,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,+GAA+G;KAClH;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,2BAA2B;QAChD,IAAI,EAAE,uCAAuC;QAC7C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,8FAA8F;YAC9F,MAAM,UAAU,GAAG,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC7C,MAAM,SAAS,GAAG,4BAA4B,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC5D,IAAI,CAAC,SAAS,EAAE,CAAC;gBACf,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,mDAAmD,EAAE,CAAC;YAC7F,CAAC;YACD,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC,4BAA4B,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,SAAS,CAAC;YAC1E,OAAO;gBACL,MAAM,EAAE,CAAC,UAAU;gBACnB,YAAY,EAAE,UAAU;oBACtB,CAAC,CAAC,mDAAmD;oBACrD,CAAC,CAAC,0BAA0B,IAAI,eAAe;aAClD,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,iEAAiE;QAChF,UAAU,EAAE,4DAA4D;QACxE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,+HAA+H;KAClI;IACD;QACE,EAAE,EAAE,SAAS,CAAC,MAAM,CAAC,iBAAiB;QACtC,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,qDAAqD;YACrD,yEAAyE;YACzE,oDAAoD;YACpD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACjC,IAAI,WAAW,GAAkB,IAAI,CAAC;YACtC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;oBAClC,2CAA2C;oBAC3C,IAAI,GAAG,IAAI,IAAI,IAAI,GAAG,IAAI,WAAW,EAAE,CAAC;wBACtC,WAAW,GAAG,GAAG,CAAC;wBAClB,+DAA+D;oBACjE,CAAC;gBACH,CAAC;YACH,CAAC;YACD,IAAI,WAAW,KAAK,IAAI,EAAE,CAAC;gBACzB,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,mCAAmC,EAAE,CAAC;YAC9E,CAAC;YACD,MAAM,MAAM,GAAG,WAAW,IAAI,KAAK,CAAC;YACpC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,sBAAsB,WAAW,eAAe;oBAClD,CAAC,CAAC,sBAAsB,WAAW,wBAAwB;aAC9D,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,6CAA6C;QAC5D,UAAU,EAAE,kCAAkC;QAC9C,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,0GAA0G;KAC7G;CACF,CAAC;AAEF,MAAM,CAAC,MAAM,iBAAiB,GAAgB,CAC5C,aAAqB,EACrB,SAAiB,EACH,EAAE;IAChB,MAAM,IAAI,GACR,CAAC,aAAa;QACd,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK;QAC9B,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IAC9B,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC;IAEzC,OAAO,aAAa,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;QAC/B,IAAI,IAAI,EAAE,CAAC;YACT,OAAO;gBACL,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,QAAQ,EAAE,QAAQ;gBAClB,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;gBACtB,MAAM,EAAE,KAAK;gBACb,YAAY,EAAE,qBAAqB;gBACnC,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,UAAU,EAAE,GAAG,CAAC,UAAU;gBAC1B,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,OAAO,EAAE,GAAG,CAAC,OAAO;aACrB,CAAC;QACJ,CAAC;QACD,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QACnD,OAAO;YACL,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,QAAQ,EAAE,QAAQ;YAClB,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;YACtB,MAAM;YACN,YAAY;YACZ,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,UAAU,EAAE,GAAG,CAAC,UAAU;YAC1B,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,OAAO,EAAE,GAAG,CAAC,OAAO;SACrB,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"network.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/network.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAc,WAAW,EAAE,MAAM,aAAa,CAAC;
|
|
1
|
+
{"version":3,"file":"network.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/network.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAc,WAAW,EAAE,MAAM,aAAa,CAAC;AAgB3D,eAAO,MAAM,kBAAkB,EAAE,WA2bhC,CAAC"}
|
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
* Network check parser.
|
|
3
3
|
* Parses ss/sysctl output into 5 security checks with semantic IDs.
|
|
4
4
|
*/
|
|
5
|
+
import { CHECK_IDS } from "../checkIds.js";
|
|
5
6
|
// CodeQL suppression: fixCommand strings are display-only recommendations;
|
|
6
7
|
// no user input reaches shell execution
|
|
7
8
|
/** Ports commonly associated with databases/services that should NOT be publicly exposed */
|
|
@@ -26,7 +27,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
26
27
|
}
|
|
27
28
|
}
|
|
28
29
|
const net01 = {
|
|
29
|
-
id:
|
|
30
|
+
id: CHECK_IDS.NETWORK.NET_NO_DANGEROUS_PORTS,
|
|
30
31
|
category: "Network",
|
|
31
32
|
name: "No Dangerous Ports Exposed",
|
|
32
33
|
severity: "warning",
|
|
@@ -45,7 +46,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
45
46
|
// NET-02: DNS resolver configured
|
|
46
47
|
const hasDNS = /nameserver\s+\S+/i.test(output);
|
|
47
48
|
const net02 = {
|
|
48
|
-
id:
|
|
49
|
+
id: CHECK_IDS.NETWORK.NET_DNS_RESOLVER,
|
|
49
50
|
category: "Network",
|
|
50
51
|
name: "DNS Resolver Configured",
|
|
51
52
|
severity: "info",
|
|
@@ -64,7 +65,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
64
65
|
const hasNTP = /NTP\s*synchronized:\s*yes/i.test(output) ||
|
|
65
66
|
/System clock synchronized:\s*yes/i.test(output);
|
|
66
67
|
const net03 = {
|
|
67
|
-
id:
|
|
68
|
+
id: CHECK_IDS.NETWORK.NET_TIME_SYNC,
|
|
68
69
|
category: "Network",
|
|
69
70
|
name: "Time Synchronization",
|
|
70
71
|
severity: "info",
|
|
@@ -84,7 +85,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
84
85
|
const isPlatform = platform === "coolify" || platform === "dokploy";
|
|
85
86
|
const forwardingOff = ipForward === "0";
|
|
86
87
|
const net04 = {
|
|
87
|
-
id:
|
|
88
|
+
id: CHECK_IDS.NETWORK.NET_IP_FORWARDING,
|
|
88
89
|
category: "Network",
|
|
89
90
|
name: "IP Forwarding Status",
|
|
90
91
|
severity: "warning",
|
|
@@ -104,7 +105,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
104
105
|
// NET-05: TCP SYN cookies enabled
|
|
105
106
|
const syncookies = extractSysctlValue(output, "net.ipv4.tcp_syncookies");
|
|
106
107
|
const net05 = {
|
|
107
|
-
id:
|
|
108
|
+
id: CHECK_IDS.NETWORK.NET_SYN_COOKIES,
|
|
108
109
|
category: "Network",
|
|
109
110
|
name: "TCP SYN Cookies Enabled",
|
|
110
111
|
severity: "warning",
|
|
@@ -122,7 +123,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
122
123
|
// NET-06: hosts.allow exists
|
|
123
124
|
const hostsAllowPresent = !output.includes("NO_HOSTS_ALLOW");
|
|
124
125
|
const net06 = {
|
|
125
|
-
id:
|
|
126
|
+
id: CHECK_IDS.NETWORK.NET_HOSTS_ACCESS,
|
|
126
127
|
category: "Network",
|
|
127
128
|
name: "TCP Wrappers hosts.allow Configured",
|
|
128
129
|
severity: "info",
|
|
@@ -140,7 +141,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
140
141
|
// NET-07: hosts.deny has default deny (ALL : ALL)
|
|
141
142
|
const hostsDenyAll = /ALL\s*:\s*ALL/i.test(output);
|
|
142
143
|
const net07 = {
|
|
143
|
-
id:
|
|
144
|
+
id: CHECK_IDS.NETWORK.NET_HOSTS_DENY,
|
|
144
145
|
category: "Network",
|
|
145
146
|
name: "TCP Wrappers Default Deny Configured",
|
|
146
147
|
severity: "warning",
|
|
@@ -158,7 +159,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
158
159
|
// NET-08: IPv6 disabled if not needed
|
|
159
160
|
const ipv6Disabled = extractSysctlValue(output, "net.ipv6.conf.all.disable_ipv6");
|
|
160
161
|
const net08 = {
|
|
161
|
-
id:
|
|
162
|
+
id: CHECK_IDS.NETWORK.NET_IPV6_DISABLED,
|
|
162
163
|
category: "Network",
|
|
163
164
|
name: "IPv6 Disabled If Not Needed",
|
|
164
165
|
severity: "info",
|
|
@@ -176,7 +177,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
176
177
|
// NET-09: Send redirects disabled
|
|
177
178
|
const sendRedirectsNet = extractSysctlValue(output, "net.ipv4.conf.all.send_redirects");
|
|
178
179
|
const net09 = {
|
|
179
|
-
id:
|
|
180
|
+
id: CHECK_IDS.NETWORK.NET_ICMP_REDIRECT_SEND,
|
|
180
181
|
category: "Network",
|
|
181
182
|
name: "ICMP Redirect Sending Disabled",
|
|
182
183
|
severity: "warning",
|
|
@@ -194,7 +195,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
194
195
|
// NET-10: Secure redirects disabled
|
|
195
196
|
const secureRedirectsNet = extractSysctlValue(output, "net.ipv4.conf.all.secure_redirects");
|
|
196
197
|
const net10 = {
|
|
197
|
-
id:
|
|
198
|
+
id: CHECK_IDS.NETWORK.NET_ICMP_SECURE_REDIRECT,
|
|
198
199
|
category: "Network",
|
|
199
200
|
name: "Secure ICMP Redirects Disabled",
|
|
200
201
|
severity: "warning",
|
|
@@ -212,7 +213,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
212
213
|
// NET-11: IPv6 source routing disabled
|
|
213
214
|
const ipv6SourceRoute = extractSysctlValue(output, "net.ipv6.conf.all.accept_source_route");
|
|
214
215
|
const net11 = {
|
|
215
|
-
id:
|
|
216
|
+
id: CHECK_IDS.NETWORK.NET_SOURCE_ROUTING_V6,
|
|
216
217
|
category: "Network",
|
|
217
218
|
name: "IPv6 Source Routing Disabled",
|
|
218
219
|
severity: "warning",
|
|
@@ -230,7 +231,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
230
231
|
// NET-12: Martian packet logging
|
|
231
232
|
const logMartiansNet = extractSysctlValue(output, "net.ipv4.conf.all.log_martians");
|
|
232
233
|
const net12 = {
|
|
233
|
-
id:
|
|
234
|
+
id: CHECK_IDS.NETWORK.NET_MARTIAN_LOGGING,
|
|
234
235
|
category: "Network",
|
|
235
236
|
name: "Martian Packet Logging Enabled",
|
|
236
237
|
severity: "info",
|
|
@@ -248,7 +249,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
248
249
|
// NET-13: No management ports exposed on 0.0.0.0
|
|
249
250
|
const noExposedMgmt = output.includes("NONE") || !/:8080 |:8443 |:9000 |:3000 /.test(output);
|
|
250
251
|
const net13 = {
|
|
251
|
-
id:
|
|
252
|
+
id: CHECK_IDS.NETWORK.NET_NO_EXPOSED_MGMT_PORTS,
|
|
252
253
|
category: "Network",
|
|
253
254
|
name: "No Management Ports Exposed Publicly",
|
|
254
255
|
severity: "warning",
|
|
@@ -266,7 +267,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
266
267
|
// NET-14: Reverse path filter enabled
|
|
267
268
|
const rpFilterNet = extractSysctlValue(output, "net.ipv4.conf.all.rp_filter");
|
|
268
269
|
const net14 = {
|
|
269
|
-
id:
|
|
270
|
+
id: CHECK_IDS.NETWORK.NET_RP_FILTER,
|
|
270
271
|
category: "Network",
|
|
271
272
|
name: "Reverse Path Filtering Enabled",
|
|
272
273
|
severity: "warning",
|
|
@@ -289,7 +290,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
289
290
|
const mailPortsNone = output.split("\n").some((l) => l.trim() === "NONE");
|
|
290
291
|
const mailPortsFound = !mailPortsNone && /:(25|110|143)\s/.test(output);
|
|
291
292
|
const net16 = {
|
|
292
|
-
id:
|
|
293
|
+
id: CHECK_IDS.NETWORK.NET_NO_MAIL_PORTS,
|
|
293
294
|
category: "Network",
|
|
294
295
|
name: "No Unnecessary Mail Ports Open",
|
|
295
296
|
severity: "info",
|
|
@@ -308,7 +309,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
308
309
|
// Count 0.0.0.0 and :: listening TCP services from ss output
|
|
309
310
|
const listeningCount = (output.match(/(?:0\.0\.0\.0|::|\*):(\d+)/g) ?? []).length;
|
|
310
311
|
const net17 = {
|
|
311
|
-
id:
|
|
312
|
+
id: CHECK_IDS.NETWORK.NET_LISTENING_SERVICES_AUDIT,
|
|
312
313
|
category: "Network",
|
|
313
314
|
name: "Listening Services Count Reasonable",
|
|
314
315
|
severity: "info",
|
|
@@ -326,7 +327,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
326
327
|
const promiscNone = output.split("\n").some((l) => l.trim() === "NONE");
|
|
327
328
|
const hasPromiscuousIface = !promiscNone && /PROMISC/i.test(output);
|
|
328
329
|
const net18 = {
|
|
329
|
-
id:
|
|
330
|
+
id: CHECK_IDS.NETWORK.NET_NO_PROMISCUOUS_INTERFACES,
|
|
330
331
|
category: "Network",
|
|
331
332
|
name: "No Promiscuous Mode Interfaces",
|
|
332
333
|
severity: "warning",
|
|
@@ -344,7 +345,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
344
345
|
// NET-19: ARP announce protection (net.ipv4.conf.all.arp_announce = 2)
|
|
345
346
|
const arpAnnounce = extractSysctlValue(output, "net.ipv4.conf.all.arp_announce");
|
|
346
347
|
const net19 = {
|
|
347
|
-
id:
|
|
348
|
+
id: CHECK_IDS.NETWORK.NET_ARP_ANNOUNCE,
|
|
348
349
|
category: "Network",
|
|
349
350
|
name: "ARP Announce Protection Enabled",
|
|
350
351
|
severity: "warning",
|
|
@@ -363,7 +364,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
363
364
|
const arpIgnore = extractSysctlValue(output, "net.ipv4.conf.all.arp_ignore");
|
|
364
365
|
const arpIgnoreVal = arpIgnore !== null ? parseInt(arpIgnore, 10) : null;
|
|
365
366
|
const net20 = {
|
|
366
|
-
id:
|
|
367
|
+
id: CHECK_IDS.NETWORK.NET_ARP_IGNORE,
|
|
367
368
|
category: "Network",
|
|
368
369
|
name: "ARP Ignore Protection Enabled",
|
|
369
370
|
severity: "warning",
|
|
@@ -385,7 +386,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
385
386
|
&& tcpWrappersOutput.trim() !== "EMPTY"
|
|
386
387
|
&& tcpWrappersOutput.trim() !== "";
|
|
387
388
|
const net22 = {
|
|
388
|
-
id:
|
|
389
|
+
id: CHECK_IDS.NETWORK.NET_TCP_WRAPPERS_CONFIGURED,
|
|
389
390
|
category: "Network",
|
|
390
391
|
name: "TCP Wrappers Active Rules Present",
|
|
391
392
|
severity: "info",
|
|
@@ -416,7 +417,7 @@ export const parseNetworkChecks = (sectionOutput, platform) => {
|
|
|
416
417
|
}
|
|
417
418
|
}
|
|
418
419
|
const net23 = {
|
|
419
|
-
id:
|
|
420
|
+
id: CHECK_IDS.NETWORK.NET_LISTENING_PORT_COUNT,
|
|
420
421
|
category: "Network",
|
|
421
422
|
name: "Listening Port Count Reasonable",
|
|
422
423
|
severity: "info",
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"network.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/network.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,2EAA2E;AAC3E,wCAAwC;AAGxC,4FAA4F;AAC5F,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC;AAE5F,SAAS,kBAAkB,CAAC,MAAc,EAAE,GAAW;IACrD,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,iBAAiB,EAAE,GAAG,CAAC,CAAC;IAC7E,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;IAClC,OAAO,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;AACxC,CAAC;AAED,MAAM,CAAC,MAAM,kBAAkB,GAAgB,CAAC,aAAqB,EAAE,QAAgB,EAAgB,EAAE;IACvG,MAAM,IAAI,GAAG,CAAC,aAAa,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IAC7F,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC;IAEzC,uEAAuE;IACvE,MAAM,WAAW,GAAG,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;IACzD,MAAM,YAAY,GAAa,EAAE,CAAC;IAClC,MAAM,cAAc,GAAa,EAAE,CAAC;IACpC,KAAK,MAAM,KAAK,IAAI,WAAW,EAAE,CAAC;QAChC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACtB,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACxB,IAAI,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;IACD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,wBAAwB;QAC5B,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,cAAc,CAAC,MAAM,KAAK,CAAC;QAClD,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC;gBACzB,CAAC,CAAC,8BAA8B,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;gBAC3D,CAAC,CAAC,GAAG,YAAY,CAAC,MAAM,gDAAgD;QAC5E,aAAa,EAAE,4CAA4C;QAC3D,UAAU,EAAE,cAAc,CAAC,MAAM,GAAG,CAAC;YACnC,CAAC,CAAC,YAAY,cAAc,CAAC,CAAC,CAAC,MAAM;YACrC,CAAC,CAAC,uCAAuC;QAC3C,OAAO,EAAE,6EAA6E;KACvF,CAAC;IAEF,kCAAkC;IAClC,MAAM,MAAM,GAAG,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAChD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,kBAAkB;QACtB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM;QAC7B,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,MAAM;gBACN,CAAC,CAAC,yBAAyB;gBAC3B,CAAC,CAAC,uBAAuB;QAC7B,aAAa,EAAE,yBAAyB;QACxC,UAAU,EAAE,+CAA+C;QAC3D,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yEAAyE;KACnF,CAAC;IAEF,8CAA8C;IAC9C,MAAM,MAAM,GAAG,4BAA4B,CAAC,IAAI,CAAC,MAAM,CAAC;QACtD,mCAAmC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,eAAe;QACnB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM;QAC7B,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,MAAM;gBACN,CAAC,CAAC,kBAAkB;gBACpB,CAAC,CAAC,oBAAoB;QAC1B,aAAa,EAAE,kBAAkB;QACjC,UAAU,EAAE,0BAA0B;QACtC,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,0FAA0F;KACpG,CAAC;IAEF,0EAA0E;IAC1E,MAAM,SAAS,GAAG,kBAAkB,CAAC,MAAM,EAAE,qBAAqB,CAAC,CAAC;IACpE,MAAM,UAAU,GAAG,QAAQ,KAAK,SAAS,IAAI,QAAQ,KAAK,SAAS,CAAC;IACpE,MAAM,aAAa,GAAG,SAAS,KAAK,GAAG,CAAC;IACxC,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,mBAAmB;QACvB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,aAAa;QACxD,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,SAAS,KAAK,IAAI;gBAClB,CAAC,CAAC,yBAAyB,SAAS,EAAE;gBACtC,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,UAAU,CAAC,CAAC,CAAC,+BAA+B,CAAC,CAAC,CAAC,oCAAoC;QAClG,UAAU,EAAE,qFAAqF;QACjG,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,UAAU;YACjB,CAAC,CAAC,mEAAmE;YACrE,CAAC,CAAC,gFAAgF;KACrF,CAAC;IAEF,kCAAkC;IAClC,MAAM,UAAU,GAAG,kBAAkB,CAAC,MAAM,EAAE,yBAAyB,CAAC,CAAC;IACzE,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,iBAAiB;QACrB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,KAAK,GAAG;QACzC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,UAAU,KAAK,IAAI;gBACnB,CAAC,CAAC,6BAA6B,UAAU,EAAE;gBAC3C,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EAAE,6FAA6F;QACzG,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kEAAkE;KAC5E,CAAC;IAEF,6BAA6B;IAC7B,MAAM,iBAAiB,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;IAC7D,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,kBAAkB;QACtB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,iBAAiB;QACxC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,iBAAiB;gBACjB,CAAC,CAAC,yBAAyB;gBAC3B,CAAC,CAAC,4BAA4B;QAClC,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EAAE,qCAAqC;QACjD,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,oHAAoH;KAC9H,CAAC;IAEF,kDAAkD;IAClD,MAAM,YAAY,GAAG,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,gBAAgB;QACpB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,sCAAsC;QAC5C,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;QACnC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY;gBACZ,CAAC,CAAC,uCAAuC;gBACzC,CAAC,CAAC,4CAA4C;QAClD,aAAa,EAAE,oCAAoC;QACnD,UAAU,EAAE,oCAAoC;QAChD,aAAa,EAAE,SAAS;QACxB,OAAO,EAAE,gMAAgM;KAC1M,CAAC;IAEF,sCAAsC;IACtC,MAAM,YAAY,GAAG,kBAAkB,CAAC,MAAM,EAAE,gCAAgC,CAAC,CAAC;IAClF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,mBAAmB;QACvB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY,KAAK,GAAG;QAC3C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY,KAAK,IAAI;gBACrB,CAAC,CAAC,oCAAoC,YAAY,EAAE;gBACpD,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,oCAAoC;QACnD,UAAU,EAAE,2GAA2G;QACvH,aAAa,EAAE,SAAS;QACxB,OAAO,EAAE,uKAAuK;KACjL,CAAC;IAEF,kCAAkC;IAClC,MAAM,gBAAgB,GAAG,kBAAkB,CAAC,MAAM,EAAE,kCAAkC,CAAC,CAAC;IACxF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,wBAAwB;QAC5B,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,gBAAgB,KAAK,GAAG;QAC/C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,gBAAgB,KAAK,IAAI;gBACzB,CAAC,CAAC,sCAAsC,gBAAgB,EAAE;gBAC1D,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,sCAAsC;QACrD,UAAU,EAAE,+GAA+G;QAC3H,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,0GAA0G;KACpH,CAAC;IAEF,oCAAoC;IACpC,MAAM,kBAAkB,GAAG,kBAAkB,CAAC,MAAM,EAAE,oCAAoC,CAAC,CAAC;IAC5F,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,0BAA0B;QAC9B,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,kBAAkB,KAAK,GAAG;QACjD,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,kBAAkB,KAAK,IAAI;gBAC3B,CAAC,CAAC,wCAAwC,kBAAkB,EAAE;gBAC9D,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,wCAAwC;QACvD,UAAU,EAAE,mHAAmH;QAC/H,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yGAAyG;KACnH,CAAC;IAEF,uCAAuC;IACvC,MAAM,eAAe,GAAG,kBAAkB,CAAC,MAAM,EAAE,uCAAuC,CAAC,CAAC;IAC5F,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,uBAAuB;QAC3B,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,eAAe,KAAK,GAAG;QAC9C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,eAAe,KAAK,IAAI;gBACxB,CAAC,CAAC,2CAA2C,eAAe,EAAE;gBAC9D,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,2CAA2C;QAC1D,UAAU,EAAE,yHAAyH;QACrI,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,iHAAiH;KAC3H,CAAC;IAEF,iCAAiC;IACjC,MAAM,cAAc,GAAG,kBAAkB,CAAC,MAAM,EAAE,gCAAgC,CAAC,CAAC;IACpF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,qBAAqB;QACzB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,cAAc,KAAK,GAAG;QAC7C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc,KAAK,IAAI;gBACvB,CAAC,CAAC,oCAAoC,cAAc,EAAE;gBACtD,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,oCAAoC;QACnD,UAAU,EAAE,2GAA2G;QACvH,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,oGAAoG;KAC9G,CAAC;IAEF,iDAAiD;IACjD,MAAM,aAAa,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,6BAA6B,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC7F,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,2BAA2B;QAC/B,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,sCAAsC;QAC5C,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa;QACpC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,aAAa;gBACb,CAAC,CAAC,yDAAyD;gBAC3D,CAAC,CAAC,uCAAuC;QAC7C,aAAa,EAAE,qDAAqD;QACpE,UAAU,EAAE,kFAAkF;QAC9F,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kHAAkH;KAC5H,CAAC;IAEF,sCAAsC;IACtC,MAAM,WAAW,GAAG,kBAAkB,CAAC,MAAM,EAAE,6BAA6B,CAAC,CAAC;IAC9E,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,eAAe;QACnB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,WAAW,KAAK,GAAG,IAAI,WAAW,KAAK,GAAG,CAAC,CAAC,CAAC,WAAW,KAAK,GAAG;QACpG,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,iCAAiC,WAAW,EAAE;gBAChD,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,UAAU,CAAC,CAAC,CAAC,iEAAiE,CAAC,CAAC,CAAC,iCAAiC;QACjI,UAAU,EAAE,UAAU;YACpB,CAAC,CAAC,qGAAqG;YACvG,CAAC,CAAC,qGAAqG;QACzG,OAAO,EAAE,UAAU;YACjB,CAAC,CAAC,mHAAmH;YACrH,CAAC,CAAC,qGAAqG;KAC1G,CAAC;IAEF,yCAAyC;IACzC,+CAA+C;IAC/C,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,MAAM,CAAC,CAAC;IAC1E,MAAM,cAAc,GAAG,CAAC,aAAa,IAAI,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACxE,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,mBAAmB;QACvB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,cAAc;QACtC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc;gBACd,CAAC,CAAC,4CAA4C;gBAC9C,CAAC,CAAC,+BAA+B;QACrC,aAAa,EAAE,uDAAuD;QACtE,UAAU,EAAE,8GAA8G;QAC1H,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,0GAA0G;KACpH,CAAC;IAEF,oDAAoD;IACpD,6DAA6D;IAC7D,MAAM,cAAc,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,6BAA6B,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IAClF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,8BAA8B;QAClC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,cAAc,GAAG,EAAE;QAC1C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,GAAG,cAAc,kCAAkC;QACvD,aAAa,EAAE,sCAAsC;QACrD,UAAU,EAAE,uFAAuF;QACnG,aAAa,EAAE,SAAS;QACxB,OAAO,EAAE,qGAAqG;KAC/G,CAAC;IAEF,4CAA4C;IAC5C,0CAA0C;IAC1C,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,MAAM,CAAC,CAAC;IACxE,MAAM,mBAAmB,GAAG,CAAC,WAAW,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACpE,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,+BAA+B;QACnC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,mBAAmB;QAC3C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,mBAAmB;gBACnB,CAAC,CAAC,wCAAwC;gBAC1C,CAAC,CAAC,gCAAgC;QACtC,aAAa,EAAE,uCAAuC;QACtD,UAAU,EAAE,gFAAgF;QAC5F,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,2GAA2G;KACrH,CAAC;IAEF,uEAAuE;IACvE,MAAM,WAAW,GAAG,kBAAkB,CAAC,MAAM,EAAE,gCAAgC,CAAC,CAAC;IACjF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,kBAAkB;QACtB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,KAAK,GAAG;QAC1C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,oCAAoC,WAAW,EAAE;gBACnD,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,oCAAoC;QACnD,UAAU,EAAE,0HAA0H;QACtI,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,uHAAuH;KACjI,CAAC;IAEF,oEAAoE;IACpE,MAAM,SAAS,GAAG,kBAAkB,CAAC,MAAM,EAAE,8BAA8B,CAAC,CAAC;IAC7E,MAAM,YAAY,GAAG,SAAS,KAAK,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACzE,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,gBAAgB;QACpB,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY,KAAK,IAAI,IAAI,YAAY,IAAI,CAAC;QACjE,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,SAAS,KAAK,IAAI;gBAClB,CAAC,CAAC,kCAAkC,SAAS,EAAE;gBAC/C,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,mCAAmC;QAClD,UAAU,EAAE,sHAAsH;QAClI,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,+HAA+H;KACzI,CAAC;IAEF,wDAAwD;IACxD,uFAAuF;IACvF,MAAM,iBAAiB,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,OAAO,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;IAC1H,MAAM,kBAAkB,GAAG,iBAAiB,KAAK,SAAS;WACrD,iBAAiB,CAAC,IAAI,EAAE,KAAK,OAAO;WACpC,iBAAiB,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IACrC,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,6BAA6B;QACjC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,mCAAmC;QACzC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,kBAAkB;QACzC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,kBAAkB;gBAClB,CAAC,CAAC,wCAAwC;gBAC1C,CAAC,CAAC,qCAAqC;QAC3C,aAAa,EAAE,6DAA6D;QAC5E,UAAU,EAAE,mFAAmF;QAC/F,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,wGAAwG;KAClH,CAAC;IAEF,gDAAgD;IAChD,6DAA6D;IAC7D,MAAM,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC1C,IAAI,mBAAmB,GAAkB,IAAI,CAAC;IAC9C,KAAK,MAAM,IAAI,IAAI,cAAc,EAAE,CAAC;QAClC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAC5B,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;YAClC,wCAAwC;YACxC,IAAI,GAAG,IAAI,CAAC,IAAI,GAAG,GAAG,GAAG,EAAE,CAAC;gBAC1B,mBAAmB,GAAG,GAAG,CAAC;gBAC1B,MAAM;YACR,CAAC;QACH,CAAC;IACH,CAAC;IACD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,0BAA0B;QAC9B,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,mBAAmB,KAAK,IAAI,IAAI,mBAAmB,IAAI,EAAE;QAChF,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,mBAAmB,KAAK,IAAI;gBAC5B,CAAC,CAAC,GAAG,mBAAmB,sBAAsB;gBAC9C,CAAC,CAAC,6BAA6B;QACnC,aAAa,EAAE,iCAAiC;QAChD,UAAU,EAAE,yDAAyD;QACrE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,uGAAuG;KACjH,CAAC;IAEF,OAAO,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;AAC7J,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"network.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/network.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAE3C,2EAA2E;AAC3E,wCAAwC;AAGxC,4FAA4F;AAC5F,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC;AAE5F,SAAS,kBAAkB,CAAC,MAAc,EAAE,GAAW;IACrD,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,iBAAiB,EAAE,GAAG,CAAC,CAAC;IAC7E,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;IAClC,OAAO,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;AACxC,CAAC;AAED,MAAM,CAAC,MAAM,kBAAkB,GAAgB,CAAC,aAAqB,EAAE,QAAgB,EAAgB,EAAE;IACvG,MAAM,IAAI,GAAG,CAAC,aAAa,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IAC7F,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC;IAEzC,uEAAuE;IACvE,MAAM,WAAW,GAAG,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;IACzD,MAAM,YAAY,GAAa,EAAE,CAAC;IAClC,MAAM,cAAc,GAAa,EAAE,CAAC;IACpC,KAAK,MAAM,KAAK,IAAI,WAAW,EAAE,CAAC;QAChC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACtB,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACxB,IAAI,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;IACD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,sBAAsB;QAC5C,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,cAAc,CAAC,MAAM,KAAK,CAAC;QAClD,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC;gBACzB,CAAC,CAAC,8BAA8B,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;gBAC3D,CAAC,CAAC,GAAG,YAAY,CAAC,MAAM,gDAAgD;QAC5E,aAAa,EAAE,4CAA4C;QAC3D,UAAU,EAAE,cAAc,CAAC,MAAM,GAAG,CAAC;YACnC,CAAC,CAAC,YAAY,cAAc,CAAC,CAAC,CAAC,MAAM;YACrC,CAAC,CAAC,uCAAuC;QAC3C,OAAO,EAAE,6EAA6E;KACvF,CAAC;IAEF,kCAAkC;IAClC,MAAM,MAAM,GAAG,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAChD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,gBAAgB;QACtC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM;QAC7B,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,MAAM;gBACN,CAAC,CAAC,yBAAyB;gBAC3B,CAAC,CAAC,uBAAuB;QAC7B,aAAa,EAAE,yBAAyB;QACxC,UAAU,EAAE,+CAA+C;QAC3D,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yEAAyE;KACnF,CAAC;IAEF,8CAA8C;IAC9C,MAAM,MAAM,GAAG,4BAA4B,CAAC,IAAI,CAAC,MAAM,CAAC;QACtD,mCAAmC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,aAAa;QACnC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM;QAC7B,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,MAAM;gBACN,CAAC,CAAC,kBAAkB;gBACpB,CAAC,CAAC,oBAAoB;QAC1B,aAAa,EAAE,kBAAkB;QACjC,UAAU,EAAE,0BAA0B;QACtC,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,0FAA0F;KACpG,CAAC;IAEF,0EAA0E;IAC1E,MAAM,SAAS,GAAG,kBAAkB,CAAC,MAAM,EAAE,qBAAqB,CAAC,CAAC;IACpE,MAAM,UAAU,GAAG,QAAQ,KAAK,SAAS,IAAI,QAAQ,KAAK,SAAS,CAAC;IACpE,MAAM,aAAa,GAAG,SAAS,KAAK,GAAG,CAAC;IACxC,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,iBAAiB;QACvC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,aAAa;QACxD,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,SAAS,KAAK,IAAI;gBAClB,CAAC,CAAC,yBAAyB,SAAS,EAAE;gBACtC,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,UAAU,CAAC,CAAC,CAAC,+BAA+B,CAAC,CAAC,CAAC,oCAAoC;QAClG,UAAU,EAAE,qFAAqF;QACjG,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,UAAU;YACjB,CAAC,CAAC,mEAAmE;YACrE,CAAC,CAAC,gFAAgF;KACrF,CAAC;IAEF,kCAAkC;IAClC,MAAM,UAAU,GAAG,kBAAkB,CAAC,MAAM,EAAE,yBAAyB,CAAC,CAAC;IACzE,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,eAAe;QACrC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,KAAK,GAAG;QACzC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,UAAU,KAAK,IAAI;gBACnB,CAAC,CAAC,6BAA6B,UAAU,EAAE;gBAC3C,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EAAE,6FAA6F;QACzG,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kEAAkE;KAC5E,CAAC;IAEF,6BAA6B;IAC7B,MAAM,iBAAiB,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;IAC7D,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,gBAAgB;QACtC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,iBAAiB;QACxC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,iBAAiB;gBACjB,CAAC,CAAC,yBAAyB;gBAC3B,CAAC,CAAC,4BAA4B;QAClC,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EAAE,qCAAqC;QACjD,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,oHAAoH;KAC9H,CAAC;IAEF,kDAAkD;IAClD,MAAM,YAAY,GAAG,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,cAAc;QACpC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,sCAAsC;QAC5C,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;QACnC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY;gBACZ,CAAC,CAAC,uCAAuC;gBACzC,CAAC,CAAC,4CAA4C;QAClD,aAAa,EAAE,oCAAoC;QACnD,UAAU,EAAE,oCAAoC;QAChD,aAAa,EAAE,SAAS;QACxB,OAAO,EAAE,gMAAgM;KAC1M,CAAC;IAEF,sCAAsC;IACtC,MAAM,YAAY,GAAG,kBAAkB,CAAC,MAAM,EAAE,gCAAgC,CAAC,CAAC;IAClF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,iBAAiB;QACvC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY,KAAK,GAAG;QAC3C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY,KAAK,IAAI;gBACrB,CAAC,CAAC,oCAAoC,YAAY,EAAE;gBACpD,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,oCAAoC;QACnD,UAAU,EAAE,2GAA2G;QACvH,aAAa,EAAE,SAAS;QACxB,OAAO,EAAE,uKAAuK;KACjL,CAAC;IAEF,kCAAkC;IAClC,MAAM,gBAAgB,GAAG,kBAAkB,CAAC,MAAM,EAAE,kCAAkC,CAAC,CAAC;IACxF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,sBAAsB;QAC5C,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,gBAAgB,KAAK,GAAG;QAC/C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,gBAAgB,KAAK,IAAI;gBACzB,CAAC,CAAC,sCAAsC,gBAAgB,EAAE;gBAC1D,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,sCAAsC;QACrD,UAAU,EAAE,+GAA+G;QAC3H,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,0GAA0G;KACpH,CAAC;IAEF,oCAAoC;IACpC,MAAM,kBAAkB,GAAG,kBAAkB,CAAC,MAAM,EAAE,oCAAoC,CAAC,CAAC;IAC5F,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,wBAAwB;QAC9C,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,kBAAkB,KAAK,GAAG;QACjD,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,kBAAkB,KAAK,IAAI;gBAC3B,CAAC,CAAC,wCAAwC,kBAAkB,EAAE;gBAC9D,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,wCAAwC;QACvD,UAAU,EAAE,mHAAmH;QAC/H,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yGAAyG;KACnH,CAAC;IAEF,uCAAuC;IACvC,MAAM,eAAe,GAAG,kBAAkB,CAAC,MAAM,EAAE,uCAAuC,CAAC,CAAC;IAC5F,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,qBAAqB;QAC3C,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,eAAe,KAAK,GAAG;QAC9C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,eAAe,KAAK,IAAI;gBACxB,CAAC,CAAC,2CAA2C,eAAe,EAAE;gBAC9D,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,2CAA2C;QAC1D,UAAU,EAAE,yHAAyH;QACrI,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,iHAAiH;KAC3H,CAAC;IAEF,iCAAiC;IACjC,MAAM,cAAc,GAAG,kBAAkB,CAAC,MAAM,EAAE,gCAAgC,CAAC,CAAC;IACpF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,mBAAmB;QACzC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,cAAc,KAAK,GAAG;QAC7C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc,KAAK,IAAI;gBACvB,CAAC,CAAC,oCAAoC,cAAc,EAAE;gBACtD,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,oCAAoC;QACnD,UAAU,EAAE,2GAA2G;QACvH,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,oGAAoG;KAC9G,CAAC;IAEF,iDAAiD;IACjD,MAAM,aAAa,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,6BAA6B,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC7F,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,yBAAyB;QAC/C,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,sCAAsC;QAC5C,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa;QACpC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,aAAa;gBACb,CAAC,CAAC,yDAAyD;gBAC3D,CAAC,CAAC,uCAAuC;QAC7C,aAAa,EAAE,qDAAqD;QACpE,UAAU,EAAE,kFAAkF;QAC9F,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kHAAkH;KAC5H,CAAC;IAEF,sCAAsC;IACtC,MAAM,WAAW,GAAG,kBAAkB,CAAC,MAAM,EAAE,6BAA6B,CAAC,CAAC;IAC9E,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,aAAa;QACnC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,WAAW,KAAK,GAAG,IAAI,WAAW,KAAK,GAAG,CAAC,CAAC,CAAC,WAAW,KAAK,GAAG;QACpG,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,iCAAiC,WAAW,EAAE;gBAChD,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,UAAU,CAAC,CAAC,CAAC,iEAAiE,CAAC,CAAC,CAAC,iCAAiC;QACjI,UAAU,EAAE,UAAU;YACpB,CAAC,CAAC,qGAAqG;YACvG,CAAC,CAAC,qGAAqG;QACzG,OAAO,EAAE,UAAU;YACjB,CAAC,CAAC,mHAAmH;YACrH,CAAC,CAAC,qGAAqG;KAC1G,CAAC;IAEF,yCAAyC;IACzC,+CAA+C;IAC/C,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,MAAM,CAAC,CAAC;IAC1E,MAAM,cAAc,GAAG,CAAC,aAAa,IAAI,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACxE,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,iBAAiB;QACvC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,cAAc;QACtC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc;gBACd,CAAC,CAAC,4CAA4C;gBAC9C,CAAC,CAAC,+BAA+B;QACrC,aAAa,EAAE,uDAAuD;QACtE,UAAU,EAAE,8GAA8G;QAC1H,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,0GAA0G;KACpH,CAAC;IAEF,oDAAoD;IACpD,6DAA6D;IAC7D,MAAM,cAAc,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,6BAA6B,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IAClF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,4BAA4B;QAClD,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,cAAc,GAAG,EAAE;QAC1C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,GAAG,cAAc,kCAAkC;QACvD,aAAa,EAAE,sCAAsC;QACrD,UAAU,EAAE,uFAAuF;QACnG,aAAa,EAAE,SAAS;QACxB,OAAO,EAAE,qGAAqG;KAC/G,CAAC;IAEF,4CAA4C;IAC5C,0CAA0C;IAC1C,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,MAAM,CAAC,CAAC;IACxE,MAAM,mBAAmB,GAAG,CAAC,WAAW,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACpE,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,6BAA6B;QACnD,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,mBAAmB;QAC3C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,mBAAmB;gBACnB,CAAC,CAAC,wCAAwC;gBAC1C,CAAC,CAAC,gCAAgC;QACtC,aAAa,EAAE,uCAAuC;QACtD,UAAU,EAAE,gFAAgF;QAC5F,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,2GAA2G;KACrH,CAAC;IAEF,uEAAuE;IACvE,MAAM,WAAW,GAAG,kBAAkB,CAAC,MAAM,EAAE,gCAAgC,CAAC,CAAC;IACjF,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,gBAAgB;QACtC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,KAAK,GAAG;QAC1C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,oCAAoC,WAAW,EAAE;gBACnD,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,oCAAoC;QACnD,UAAU,EAAE,0HAA0H;QACtI,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,uHAAuH;KACjI,CAAC;IAEF,oEAAoE;IACpE,MAAM,SAAS,GAAG,kBAAkB,CAAC,MAAM,EAAE,8BAA8B,CAAC,CAAC;IAC7E,MAAM,YAAY,GAAG,SAAS,KAAK,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACzE,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,cAAc;QACpC,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY,KAAK,IAAI,IAAI,YAAY,IAAI,CAAC;QACjE,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,SAAS,KAAK,IAAI;gBAClB,CAAC,CAAC,kCAAkC,SAAS,EAAE;gBAC/C,CAAC,CAAC,qBAAqB;QAC3B,aAAa,EAAE,mCAAmC;QAClD,UAAU,EAAE,sHAAsH;QAClI,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,+HAA+H;KACzI,CAAC;IAEF,wDAAwD;IACxD,uFAAuF;IACvF,MAAM,iBAAiB,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,OAAO,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;IAC1H,MAAM,kBAAkB,GAAG,iBAAiB,KAAK,SAAS;WACrD,iBAAiB,CAAC,IAAI,EAAE,KAAK,OAAO;WACpC,iBAAiB,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IACrC,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,2BAA2B;QACjD,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,mCAAmC;QACzC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,kBAAkB;QACzC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,kBAAkB;gBAClB,CAAC,CAAC,wCAAwC;gBAC1C,CAAC,CAAC,qCAAqC;QAC3C,aAAa,EAAE,6DAA6D;QAC5E,UAAU,EAAE,mFAAmF;QAC/F,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,wGAAwG;KAClH,CAAC;IAEF,gDAAgD;IAChD,6DAA6D;IAC7D,MAAM,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC1C,IAAI,mBAAmB,GAAkB,IAAI,CAAC;IAC9C,KAAK,MAAM,IAAI,IAAI,cAAc,EAAE,CAAC;QAClC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAC5B,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;YAClC,wCAAwC;YACxC,IAAI,GAAG,IAAI,CAAC,IAAI,GAAG,GAAG,GAAG,EAAE,CAAC;gBAC1B,mBAAmB,GAAG,GAAG,CAAC;gBAC1B,MAAM;YACR,CAAC;QACH,CAAC;IACH,CAAC;IACD,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,wBAAwB;QAC9C,QAAQ,EAAE,SAAS;QACnB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,mBAAmB,KAAK,IAAI,IAAI,mBAAmB,IAAI,EAAE;QAChF,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,mBAAmB,KAAK,IAAI;gBAC5B,CAAC,CAAC,GAAG,mBAAmB,sBAAsB;gBAC9C,CAAC,CAAC,6BAA6B;QACnC,aAAa,EAAE,iCAAiC;QAChD,UAAU,EAAE,yDAAyD;QACrE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,uGAAuG;KACjH,CAAC;IAEF,OAAO,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;AAC7J,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"nginx.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/nginx.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAa,WAAW,EAAoB,MAAM,aAAa,CAAC;
|
|
1
|
+
{"version":3,"file":"nginx.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/nginx.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAa,WAAW,EAAoB,MAAM,aAAa,CAAC;AA2V5E,eAAO,MAAM,gBAAgB,EAAE,WAmC9B,CAAC"}
|
|
@@ -4,11 +4,12 @@
|
|
|
4
4
|
* If Nginx is not installed, returns info-level skipped checks (score-neutral).
|
|
5
5
|
* Detects Caddy/Traefik as alternative reverse proxies and reports in skip message.
|
|
6
6
|
*/
|
|
7
|
+
import { CHECK_IDS } from "../checkIds.js";
|
|
7
8
|
import { makeSkippedChecks } from "./shared/skipChecks.js";
|
|
8
9
|
const CATEGORY = "WAF & Reverse Proxy";
|
|
9
10
|
const NGX_CHECKS = [
|
|
10
11
|
{
|
|
11
|
-
id:
|
|
12
|
+
id: CHECK_IDS.NGINX.NGX_SERVER_TOKENS,
|
|
12
13
|
name: "server_tokens off",
|
|
13
14
|
severity: "warning",
|
|
14
15
|
check: (output) => {
|
|
@@ -26,7 +27,7 @@ const NGX_CHECKS = [
|
|
|
26
27
|
explain: "Hiding Nginx version information prevents attackers from targeting known vulnerabilities for a specific version. The server_tokens directive controls whether Nginx sends its version number in the Server HTTP response header and on error pages.",
|
|
27
28
|
},
|
|
28
29
|
{
|
|
29
|
-
id:
|
|
30
|
+
id: CHECK_IDS.NGINX.NGX_SSL_PROTOCOLS,
|
|
30
31
|
name: "ssl_protocols explicitly configured",
|
|
31
32
|
severity: "warning",
|
|
32
33
|
check: (output) => {
|
|
@@ -41,7 +42,7 @@ const NGX_CHECKS = [
|
|
|
41
42
|
explain: "Explicitly configuring ssl_protocols ensures only modern TLS versions are accepted. Without explicit configuration, Nginx may accept outdated protocols depending on the compiled defaults.",
|
|
42
43
|
},
|
|
43
44
|
{
|
|
44
|
-
id:
|
|
45
|
+
id: CHECK_IDS.NGINX.NGX_RATE_LIMIT,
|
|
45
46
|
name: "Rate limiting configured",
|
|
46
47
|
severity: "warning",
|
|
47
48
|
check: (output) => {
|
|
@@ -56,7 +57,7 @@ const NGX_CHECKS = [
|
|
|
56
57
|
explain: "Rate limiting protects against brute-force attacks and resource exhaustion by restricting the number of requests per client. Without rate limiting, a single client can overwhelm the server.",
|
|
57
58
|
},
|
|
58
59
|
{
|
|
59
|
-
id:
|
|
60
|
+
id: CHECK_IDS.NGINX.NGX_GZIP_CONFIG,
|
|
60
61
|
name: "gzip compression configured",
|
|
61
62
|
severity: "info",
|
|
62
63
|
check: (output) => {
|
|
@@ -71,7 +72,7 @@ const NGX_CHECKS = [
|
|
|
71
72
|
explain: "Configuring gzip compression reduces bandwidth usage and improves page load times. Note: gzip on dynamic content with HTTPS can be vulnerable to BREACH attacks. Consider limiting gzip_types to static assets only.",
|
|
72
73
|
},
|
|
73
74
|
{
|
|
74
|
-
id:
|
|
75
|
+
id: CHECK_IDS.NGINX.NGX_CLIENT_BODY_SIZE,
|
|
75
76
|
name: "client_max_body_size configured",
|
|
76
77
|
severity: "warning",
|
|
77
78
|
check: (output) => {
|
|
@@ -86,7 +87,7 @@ const NGX_CHECKS = [
|
|
|
86
87
|
explain: "Setting client_max_body_size limits the maximum request body size, preventing large file uploads that could exhaust server resources or be used in denial-of-service attacks. Nginx default is 1MB, which may be too permissive or too restrictive depending on application needs.",
|
|
87
88
|
},
|
|
88
89
|
{
|
|
89
|
-
id:
|
|
90
|
+
id: CHECK_IDS.NGINX.NGX_SERVER_HEADER,
|
|
90
91
|
name: "Server header suppression configured",
|
|
91
92
|
severity: "info",
|
|
92
93
|
check: (output) => {
|
|
@@ -101,7 +102,7 @@ const NGX_CHECKS = [
|
|
|
101
102
|
explain: "Suppressing the Server response header reduces information disclosure. While server_tokens off hides the version, the Server header still reveals Nginx is in use. Full suppression requires the headers-more module or proxy_hide_header directive.",
|
|
102
103
|
},
|
|
103
104
|
{
|
|
104
|
-
id:
|
|
105
|
+
id: CHECK_IDS.NGINX.NGX_ACCESS_LOG,
|
|
105
106
|
name: "access_log enabled",
|
|
106
107
|
severity: "warning",
|
|
107
108
|
check: (output) => {
|
|
@@ -119,7 +120,7 @@ const NGX_CHECKS = [
|
|
|
119
120
|
explain: "Access logs are essential for incident investigation, traffic analysis, and compliance. Disabling access logging creates blind spots in security monitoring and makes forensic analysis impossible after an incident.",
|
|
120
121
|
},
|
|
121
122
|
{
|
|
122
|
-
id:
|
|
123
|
+
id: CHECK_IDS.NGINX.NGX_ERROR_LOG,
|
|
123
124
|
name: "error_log directive present",
|
|
124
125
|
severity: "warning",
|
|
125
126
|
check: (output) => {
|
|
@@ -135,7 +136,7 @@ const NGX_CHECKS = [
|
|
|
135
136
|
},
|
|
136
137
|
];
|
|
137
138
|
const WAF_CHECK = {
|
|
138
|
-
id:
|
|
139
|
+
id: CHECK_IDS.NGINX.NGX_WAF_DETECTED,
|
|
139
140
|
name: "WAF detection (ModSecurity/Coraza)",
|
|
140
141
|
severity: "info",
|
|
141
142
|
check: (output) => {
|
|
@@ -166,7 +167,7 @@ const RE_CHALLENGE_MODSEC = /redirect:\/captcha|redirect:\/challenge|SecAction.*
|
|
|
166
167
|
const RE_CHALLENGE_NGINX = /error_page.*challenge/i;
|
|
167
168
|
const WAF_DEEP_CHECKS = [
|
|
168
169
|
{
|
|
169
|
-
id:
|
|
170
|
+
id: CHECK_IDS.NGINX.NGX_WAF_IP_ACL,
|
|
170
171
|
name: "IP ACL rules configured (deny/allow directives)",
|
|
171
172
|
severity: "warning",
|
|
172
173
|
check: (output) => {
|
|
@@ -185,7 +186,7 @@ const WAF_DEEP_CHECKS = [
|
|
|
185
186
|
explain: "IP ACL rules (deny/allow directives) restrict access to specific IP addresses or ranges, providing a first line of defense against known malicious sources. Without IP ACLs, any IP address can attempt to access the server. Configure deny directives to block known bad actors and allow directives to whitelist trusted sources.",
|
|
186
187
|
},
|
|
187
188
|
{
|
|
188
|
-
id:
|
|
189
|
+
id: CHECK_IDS.NGINX.NGX_WAF_RATE_LIMIT,
|
|
189
190
|
name: "WAF rate limit rules active",
|
|
190
191
|
severity: "info",
|
|
191
192
|
check: (output, noWaf) => {
|
|
@@ -203,7 +204,7 @@ const WAF_DEEP_CHECKS = [
|
|
|
203
204
|
explain: "ModSecurity rate limit rules complement nginx's built-in rate limiting by providing WAF-level request throttling with deeper inspection capabilities. They can detect and block volumetric attacks and brute-force attempts at the application layer, providing more granular control than IP-level rate limits.",
|
|
204
205
|
},
|
|
205
206
|
{
|
|
206
|
-
id:
|
|
207
|
+
id: CHECK_IDS.NGINX.NGX_WAF_INPUT_SANITIZE,
|
|
207
208
|
name: "SecRuleEngine active (On or DetectionOnly)",
|
|
208
209
|
severity: "info",
|
|
209
210
|
check: (output, noWaf) => {
|
|
@@ -221,7 +222,7 @@ const WAF_DEEP_CHECKS = [
|
|
|
221
222
|
explain: "SecRuleEngine On activates ModSecurity's rule engine to inspect and sanitize incoming requests, blocking SQL injection, XSS, path traversal, and other OWASP Top 10 attacks. DetectionOnly mode logs violations without blocking — useful for initial rollout. Without this setting active, the WAF provides no protection even if installed.",
|
|
222
223
|
},
|
|
223
224
|
{
|
|
224
|
-
id:
|
|
225
|
+
id: CHECK_IDS.NGINX.NGX_WAF_DETECTION_ENGINE,
|
|
225
226
|
name: "CRS rules installed (>0 rule files)",
|
|
226
227
|
severity: "info",
|
|
227
228
|
check: (output, noWaf) => {
|
|
@@ -242,7 +243,7 @@ const WAF_DEEP_CHECKS = [
|
|
|
242
243
|
explain: "The OWASP Core Rule Set (CRS) provides ModSecurity with pre-built detection rules covering OWASP Top 10 threats. Without CRS rules, a WAF engine is present but has no detection capability. CRS includes rules for SQL injection, XSS, local/remote file inclusion, command injection, and many other attack vectors.",
|
|
243
244
|
},
|
|
244
245
|
{
|
|
245
|
-
id:
|
|
246
|
+
id: CHECK_IDS.NGINX.NGX_WAF_DATA_MASKING,
|
|
246
247
|
name: "Sensitive response headers filtered",
|
|
247
248
|
severity: "info",
|
|
248
249
|
check: (output) => {
|
|
@@ -260,7 +261,7 @@ const WAF_DEEP_CHECKS = [
|
|
|
260
261
|
explain: "Filtering sensitive response headers like X-Powered-By and X-AspNet-Version prevents information disclosure about the backend technology stack. Attackers use this information to target known vulnerabilities in specific framework versions. proxy_hide_header removes upstream headers, while more_clear_headers (from headers-more module) can remove any header.",
|
|
261
262
|
},
|
|
262
263
|
{
|
|
263
|
-
id:
|
|
264
|
+
id: CHECK_IDS.NGINX.NGX_WAF_BOT_DETECT,
|
|
264
265
|
name: "Bot detection rules configured (ModSec CRS 913 or UA map)",
|
|
265
266
|
severity: "info",
|
|
266
267
|
check: (output, noWaf) => {
|
|
@@ -281,7 +282,7 @@ const WAF_DEEP_CHECKS = [
|
|
|
281
282
|
explain: "Bot detection rules identify and block automated scanning tools and known bad bots. OWASP CRS rules 913xxx detect scanners (Nmap, Nikto, etc.). Nginx UA map blocks by user agent string. Without bot detection, automated reconnaissance runs unchallenged.",
|
|
282
283
|
},
|
|
283
284
|
{
|
|
284
|
-
id:
|
|
285
|
+
id: CHECK_IDS.NGINX.NGX_WAF_CHALLENGE_MODE,
|
|
285
286
|
name: "Challenge mode configured (JS PoW/CAPTCHA redirect)",
|
|
286
287
|
severity: "info",
|
|
287
288
|
check: (output, noWaf) => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"nginx.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/nginx.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAE3D,MAAM,QAAQ,GAAG,qBAAqB,CAAC;AAavC,MAAM,UAAU,GAAkB;IAChC;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,sBAAsB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACxC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,mBAAmB,EAAE,CAAC;YAC7D,CAAC;YACD,IAAI,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,8BAA8B,EAAE,CAAC;YACzE,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,mCAAmC,EAAE,CAAC;QAC9E,CAAC;QACD,aAAa,EAAE,mBAAmB;QAClC,UAAU,EAAE,mDAAmD;QAC/D,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,qPAAqP;KACxP;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,iCAAiC,EAAE,CAAC;YAC3E,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,mCAAmC,EAAE,CAAC;QAC9E,CAAC;QACD,aAAa,EAAE,iCAAiC;QAChD,UAAU,EAAE,yEAAyE;QACrF,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,6LAA6L;KAChM;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,6BAA6B,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC/C,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,wDAAwD,EAAE,CAAC;YAClG,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,mCAAmC,EAAE,CAAC;QAC9E,CAAC;QACD,aAAa,EAAE,wDAAwD;QACvE,UAAU,EACR,+IAA+I;QACjJ,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,+LAA+L;KAClM;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACzB,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,2BAA2B,EAAE,CAAC;YACrE,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,0BAA0B,EAAE,CAAC;QACrE,CAAC;QACD,aAAa,EAAE,2BAA2B;QAC1C,UAAU,EACR,iHAAiH;QACnH,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,sNAAsN;KACzN;IACD;QACE,EAAE,EAAE,sBAAsB;QAC1B,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,uBAAuB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACzC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,wCAAwC,EAAE,CAAC;YAClF,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,0CAA0C,EAAE,CAAC;QACrF,CAAC;QACD,aAAa,EAAE,wCAAwC;QACvD,UAAU,EAAE,mFAAmF;QAC/F,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,oRAAoR;KACvR;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,sCAAsC;QAC5C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,mEAAmE,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACrF,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,sCAAsC,EAAE,CAAC;YAChF,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,0CAA0C,EAAE,CAAC;QACrF,CAAC;QACD,aAAa,EAAE,sCAAsC;QACrD,UAAU,EACR,4IAA4I;QAC9I,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,sPAAsP;KACzP;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACpE,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,8BAA8B,EAAE,CAAC;YACxE,CAAC;YACD,IAAI,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACrC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,0BAA0B,EAAE,CAAC;YACrE,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,gCAAgC,EAAE,CAAC;QAC3E,CAAC;QACD,aAAa,EAAE,8BAA8B;QAC7C,UAAU,EAAE,sEAAsE;QAClF,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,uNAAuN;KAC1N;IACD;QACE,EAAE,EAAE,eAAe;QACnB,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC9B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,6BAA6B,EAAE,CAAC;YACvE,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,+BAA+B,EAAE,CAAC;QAC1E,CAAC;QACD,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EACR,mGAAmG;QACrG,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,yKAAyK;KAC5K;CACF,CAAC;AAEF,MAAM,SAAS,GAAgB;IAC7B,EAAE,EAAE,kBAAkB;IACtB,IAAI,EAAE,oCAAoC;IAC1C,QAAQ,EAAE,MAAM;IAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;QAChB,IAAI,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YAC3D,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,oBAAoB,EAAE,CAAC;QAC9D,CAAC;QACD,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YACtD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,mBAAmB,EAAE,CAAC;QAC7D,CAAC;QACD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,oDAAoD,EAAE,CAAC;IAC9F,CAAC;IACD,aAAa,EAAE,+BAA+B;IAC9C,UAAU,EACR,sLAAsL;IACxL,aAAa,EAAE,SAAS;IACxB,OAAO,EACL,kSAAkS;CACrS,CAAC;AAEF,6EAA6E;AAC7E,SAAS,OAAO,CAAC,MAAc;IAC7B,OAAO,CAAC,qBAAqB,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;AACvE,CAAC;AAED,MAAM,YAAY,GAAG,kDAAkD,CAAC;AAExE,MAAM,SAAS,GAAG,gCAAgC,CAAC;AACnD,MAAM,gBAAgB,GAAG,mEAAmE,CAAC;AAC7F,MAAM,gBAAgB,GAAG,sCAAsC,CAAC;AAChE,MAAM,UAAU,GAAG,8CAA8C,CAAC;AAClE,MAAM,aAAa,GAAG,0BAA0B,CAAC;AACjD,MAAM,mBAAmB,GAAG,+DAA+D,CAAC;AAC5F,MAAM,kBAAkB,GAAG,wBAAwB,CAAC;AAEpD,MAAM,eAAe,GAAkB;IACrC;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,iDAAiD;QACvD,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC9B,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,sDAAsD,EAAE,CAAC;YACjG,CAAC;YACD,iFAAiF;YACjF,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC3B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,yDAAyD,EAAE,CAAC;YACnG,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,sDAAsD,EAAE,CAAC;QACjG,CAAC;QACD,aAAa,EAAE,iDAAiD;QAChE,UAAU,EAAE,sEAAsE;QAClF,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,sUAAsU;KACzU;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,IAAI,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACnE,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,qCAAqC,EAAE,CAAC;YAC/E,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,uCAAuC,EAAE,CAAC;QAClF,CAAC;QACD,aAAa,EAAE,qCAAqC;QACpD,UAAU,EACR,wGAAwG;QAC1G,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,kTAAkT;KACrT;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,4CAA4C;QAClD,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,IAAI,qCAAqC,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACvD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,mDAAmD,EAAE,CAAC;YAC7F,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,wCAAwC,EAAE,CAAC;QACnF,CAAC;QACD,aAAa,EAAE,4CAA4C;QAC3D,UAAU,EACR,qGAAqG;QACvG,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,+UAA+U;KAClV;IACD;QACE,EAAE,EAAE,0BAA0B;QAC9B,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,+EAA+E;YAC/E,sEAAsE;YACtE,MAAM,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YAC5C,IAAI,UAAU,IAAI,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC;gBAClD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,wBAAwB,UAAU,CAAC,CAAC,CAAC,cAAc,EAAE,CAAC;YAC7F,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,wCAAwC,EAAE,CAAC;QACnF,CAAC;QACD,aAAa,EAAE,qCAAqC;QACpD,UAAU,EACR,yHAAyH;QAC3H,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,wTAAwT;KAC3T;IACD;QACE,EAAE,EAAE,sBAAsB;QAC1B,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yFAAyF;YACzF,+DAA+D;YAC/D,IAAI,0DAA0D,CAAC,IAAI,CAAC,MAAM,CAAC;gBACvE,gEAAgE,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClF,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,4EAA4E,EAAE,CAAC;YACtH,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,qCAAqC,EAAE,CAAC;QAChF,CAAC;QACD,aAAa,EAAE,4EAA4E;QAC3F,UAAU,EACR,yGAAyG;QAC3G,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,uWAAuW;KAC1W;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,2DAA2D;QACjE,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,MAAM,SAAS,GAAG,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC1C,MAAM,QAAQ,GAAG,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC5C,IAAI,SAAS,IAAI,QAAQ,EAAE,CAAC;gBAC1B,MAAM,QAAQ,GAAG,CAAC,SAAS,IAAI,eAAe,EAAE,QAAQ,IAAI,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAClG,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,6BAA6B,QAAQ,GAAG,EAAE,CAAC;YAClF,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,yDAAyD,EAAE,CAAC;QACpG,CAAC;QACD,aAAa,EAAE,gCAAgC;QAC/C,UAAU,EACR,+JAA+J;QACjK,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,8PAA8P;KACjQ;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,qDAAqD;QAC3D,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,MAAM,kBAAkB,GAAG,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC5D,MAAM,iBAAiB,GAAG,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC1D,IAAI,kBAAkB,IAAI,iBAAiB,EAAE,CAAC;gBAC5C,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,+DAA+D,EAAE,CAAC;YACzG,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,iEAAiE,EAAE,CAAC;QAC5G,CAAC;QACD,aAAa,EAAE,2BAA2B;QAC1C,UAAU,EACR,oIAAoI;QACtI,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,mSAAmS;KACtS;CACF,CAAC;AAEF,MAAM,UAAU,GAAkB,CAAC,GAAG,UAAU,EAAE,SAAS,EAAE,GAAG,eAAe,CAAC,CAAC;AAEjF,MAAM,CAAC,MAAM,gBAAgB,GAAgB,CAC3C,aAAqB,EACrB,SAAiB,EACH,EAAE;IAChB,MAAM,aAAa,GACjB,CAAC,aAAa;QACd,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE;QAC3B,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK;QAC9B,aAAa,CAAC,QAAQ,CAAC,qBAAqB,CAAC,CAAC;IAEhD,IAAI,aAAa,EAAE,CAAC;QAClB,MAAM,QAAQ,GAAG,aAAa,EAAE,KAAK,CAAC,cAAc,CAAC,CAAC;QACtD,MAAM,MAAM,GAAG,QAAQ;YACrB,CAAC,CAAC,uCAAuC,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,yBAAyB;YAC5H,CAAC,CAAC,qBAAqB,CAAC;QAC1B,OAAO,iBAAiB,CAAC,UAAU,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,KAAK,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;IAErC,OAAO,UAAU,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;QAC5B,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,aAAa,EAAE,KAAK,CAAC,CAAC;QACjE,OAAO;YACL,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,QAAQ,EAAE,QAAQ;YAClB,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;YACtB,MAAM;YACN,YAAY;YACZ,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,UAAU,EAAE,GAAG,CAAC,UAAU;YAC1B,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,OAAO,EAAE,GAAG,CAAC,OAAO;SACrB,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"nginx.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/nginx.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAC3C,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAE3D,MAAM,QAAQ,GAAG,qBAAqB,CAAC;AAavC,MAAM,UAAU,GAAkB;IAChC;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,iBAAiB;QACrC,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,sBAAsB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACxC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,mBAAmB,EAAE,CAAC;YAC7D,CAAC;YACD,IAAI,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,8BAA8B,EAAE,CAAC;YACzE,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,mCAAmC,EAAE,CAAC;QAC9E,CAAC;QACD,aAAa,EAAE,mBAAmB;QAClC,UAAU,EAAE,mDAAmD;QAC/D,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,qPAAqP;KACxP;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,iBAAiB;QACrC,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,iCAAiC,EAAE,CAAC;YAC3E,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,mCAAmC,EAAE,CAAC;QAC9E,CAAC;QACD,aAAa,EAAE,iCAAiC;QAChD,UAAU,EAAE,yEAAyE;QACrF,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,6LAA6L;KAChM;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,cAAc;QAClC,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,6BAA6B,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC/C,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,wDAAwD,EAAE,CAAC;YAClG,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,mCAAmC,EAAE,CAAC;QAC9E,CAAC;QACD,aAAa,EAAE,wDAAwD;QACvE,UAAU,EACR,+IAA+I;QACjJ,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,+LAA+L;KAClM;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,eAAe;QACnC,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACzB,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,2BAA2B,EAAE,CAAC;YACrE,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,0BAA0B,EAAE,CAAC;QACrE,CAAC;QACD,aAAa,EAAE,2BAA2B;QAC1C,UAAU,EACR,iHAAiH;QACnH,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,sNAAsN;KACzN;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,oBAAoB;QACxC,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,uBAAuB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACzC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,wCAAwC,EAAE,CAAC;YAClF,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,0CAA0C,EAAE,CAAC;QACrF,CAAC;QACD,aAAa,EAAE,wCAAwC;QACvD,UAAU,EAAE,mFAAmF;QAC/F,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,oRAAoR;KACvR;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,iBAAiB;QACrC,IAAI,EAAE,sCAAsC;QAC5C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,mEAAmE,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACrF,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,sCAAsC,EAAE,CAAC;YAChF,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,0CAA0C,EAAE,CAAC;QACrF,CAAC;QACD,aAAa,EAAE,sCAAsC;QACrD,UAAU,EACR,4IAA4I;QAC9I,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,sPAAsP;KACzP;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,cAAc;QAClC,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACpE,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,8BAA8B,EAAE,CAAC;YACxE,CAAC;YACD,IAAI,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACrC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,0BAA0B,EAAE,CAAC;YACrE,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,gCAAgC,EAAE,CAAC;QAC3E,CAAC;QACD,aAAa,EAAE,8BAA8B;QAC7C,UAAU,EAAE,sEAAsE;QAClF,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,uNAAuN;KAC1N;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,aAAa;QACjC,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC9B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,6BAA6B,EAAE,CAAC;YACvE,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,+BAA+B,EAAE,CAAC;QAC1E,CAAC;QACD,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EACR,mGAAmG;QACrG,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,yKAAyK;KAC5K;CACF,CAAC;AAEF,MAAM,SAAS,GAAgB;IAC7B,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,gBAAgB;IACpC,IAAI,EAAE,oCAAoC;IAC1C,QAAQ,EAAE,MAAM;IAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;QAChB,IAAI,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YAC3D,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,oBAAoB,EAAE,CAAC;QAC9D,CAAC;QACD,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YACtD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,mBAAmB,EAAE,CAAC;QAC7D,CAAC;QACD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,oDAAoD,EAAE,CAAC;IAC9F,CAAC;IACD,aAAa,EAAE,+BAA+B;IAC9C,UAAU,EACR,sLAAsL;IACxL,aAAa,EAAE,SAAS;IACxB,OAAO,EACL,kSAAkS;CACrS,CAAC;AAEF,6EAA6E;AAC7E,SAAS,OAAO,CAAC,MAAc;IAC7B,OAAO,CAAC,qBAAqB,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;AACvE,CAAC;AAED,MAAM,YAAY,GAAG,kDAAkD,CAAC;AAExE,MAAM,SAAS,GAAG,gCAAgC,CAAC;AACnD,MAAM,gBAAgB,GAAG,mEAAmE,CAAC;AAC7F,MAAM,gBAAgB,GAAG,sCAAsC,CAAC;AAChE,MAAM,UAAU,GAAG,8CAA8C,CAAC;AAClE,MAAM,aAAa,GAAG,0BAA0B,CAAC;AACjD,MAAM,mBAAmB,GAAG,+DAA+D,CAAC;AAC5F,MAAM,kBAAkB,GAAG,wBAAwB,CAAC;AAEpD,MAAM,eAAe,GAAkB;IACrC;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,cAAc;QAClC,IAAI,EAAE,iDAAiD;QACvD,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,IAAI,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC9B,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,sDAAsD,EAAE,CAAC;YACjG,CAAC;YACD,iFAAiF;YACjF,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC3B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,yDAAyD,EAAE,CAAC;YACnG,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,sDAAsD,EAAE,CAAC;QACjG,CAAC;QACD,aAAa,EAAE,iDAAiD;QAChE,UAAU,EAAE,sEAAsE;QAClF,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,sUAAsU;KACzU;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,kBAAkB;QACtC,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,IAAI,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACnE,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,qCAAqC,EAAE,CAAC;YAC/E,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,uCAAuC,EAAE,CAAC;QAClF,CAAC;QACD,aAAa,EAAE,qCAAqC;QACpD,UAAU,EACR,wGAAwG;QAC1G,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,kTAAkT;KACrT;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,sBAAsB;QAC1C,IAAI,EAAE,4CAA4C;QAClD,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,IAAI,qCAAqC,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACvD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,mDAAmD,EAAE,CAAC;YAC7F,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,wCAAwC,EAAE,CAAC;QACnF,CAAC;QACD,aAAa,EAAE,4CAA4C;QAC3D,UAAU,EACR,qGAAqG;QACvG,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,+UAA+U;KAClV;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,wBAAwB;QAC5C,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,+EAA+E;YAC/E,sEAAsE;YACtE,MAAM,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YAC5C,IAAI,UAAU,IAAI,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC;gBAClD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,wBAAwB,UAAU,CAAC,CAAC,CAAC,cAAc,EAAE,CAAC;YAC7F,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,wCAAwC,EAAE,CAAC;QACnF,CAAC;QACD,aAAa,EAAE,qCAAqC;QACpD,UAAU,EACR,yHAAyH;QAC3H,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,wTAAwT;KAC3T;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,oBAAoB;QACxC,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yFAAyF;YACzF,+DAA+D;YAC/D,IAAI,0DAA0D,CAAC,IAAI,CAAC,MAAM,CAAC;gBACvE,gEAAgE,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClF,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,4EAA4E,EAAE,CAAC;YACtH,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,qCAAqC,EAAE,CAAC;QAChF,CAAC;QACD,aAAa,EAAE,4EAA4E;QAC3F,UAAU,EACR,yGAAyG;QAC3G,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,uWAAuW;KAC1W;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,kBAAkB;QACtC,IAAI,EAAE,2DAA2D;QACjE,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,MAAM,SAAS,GAAG,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC1C,MAAM,QAAQ,GAAG,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC5C,IAAI,SAAS,IAAI,QAAQ,EAAE,CAAC;gBAC1B,MAAM,QAAQ,GAAG,CAAC,SAAS,IAAI,eAAe,EAAE,QAAQ,IAAI,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAClG,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,6BAA6B,QAAQ,GAAG,EAAE,CAAC;YAClF,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,yDAAyD,EAAE,CAAC;QACpG,CAAC;QACD,aAAa,EAAE,gCAAgC;QAC/C,UAAU,EACR,+JAA+J;QACjK,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,8PAA8P;KACjQ;IACD;QACE,EAAE,EAAE,SAAS,CAAC,KAAK,CAAC,sBAAsB;QAC1C,IAAI,EAAE,qDAAqD;QAC3D,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;YACvB,IAAI,KAAK,EAAE,CAAC;gBACV,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;YACtD,CAAC;YACD,MAAM,kBAAkB,GAAG,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC5D,MAAM,iBAAiB,GAAG,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC1D,IAAI,kBAAkB,IAAI,iBAAiB,EAAE,CAAC;gBAC5C,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,+DAA+D,EAAE,CAAC;YACzG,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,iEAAiE,EAAE,CAAC;QAC5G,CAAC;QACD,aAAa,EAAE,2BAA2B;QAC1C,UAAU,EACR,oIAAoI;QACtI,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,mSAAmS;KACtS;CACF,CAAC;AAEF,MAAM,UAAU,GAAkB,CAAC,GAAG,UAAU,EAAE,SAAS,EAAE,GAAG,eAAe,CAAC,CAAC;AAEjF,MAAM,CAAC,MAAM,gBAAgB,GAAgB,CAC3C,aAAqB,EACrB,SAAiB,EACH,EAAE;IAChB,MAAM,aAAa,GACjB,CAAC,aAAa;QACd,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE;QAC3B,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK;QAC9B,aAAa,CAAC,QAAQ,CAAC,qBAAqB,CAAC,CAAC;IAEhD,IAAI,aAAa,EAAE,CAAC;QAClB,MAAM,QAAQ,GAAG,aAAa,EAAE,KAAK,CAAC,cAAc,CAAC,CAAC;QACtD,MAAM,MAAM,GAAG,QAAQ;YACrB,CAAC,CAAC,uCAAuC,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,yBAAyB;YAC5H,CAAC,CAAC,qBAAqB,CAAC;QAC1B,OAAO,iBAAiB,CAAC,UAAU,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,KAAK,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;IAErC,OAAO,UAAU,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;QAC5B,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,aAAa,EAAE,KAAK,CAAC,CAAC;QACjE,OAAO;YACL,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,QAAQ,EAAE,QAAQ;YAClB,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;YACtB,MAAM;YACN,YAAY;YACZ,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,UAAU,EAAE,GAAG,CAAC,UAAU;YAC1B,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,OAAO,EAAE,GAAG,CAAC,OAAO;SACrB,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"resourcelimits.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/resourcelimits.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAa,WAAW,EAAoB,MAAM,aAAa,CAAC;AAsN5E,eAAO,MAAM,yBAAyB,EAAE,
|
|
1
|
+
{"version":3,"file":"resourcelimits.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/resourcelimits.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAa,WAAW,EAAoB,MAAM,aAAa,CAAC;AAsN5E,eAAO,MAAM,yBAAyB,EAAE,WAuCvC,CAAC"}
|