kastell 2.0.0 → 2.2.0

package/dist/core/audit/checkIds.d.ts

@@ -0,0 +1,516 @@
+/** Auto-generated — do not edit manually */
+export declare const CHECK_IDS: {
+    readonly ACCOUNTS: {
+        readonly ACCT_NO_EXTRA_UID0: "ACCT-NO-EXTRA-UID0";
+        readonly ACCT_NO_EMPTY_PASSWORD: "ACCT-NO-EMPTY-PASSWORD";
+        readonly ACCT_NO_RHOSTS: "ACCT-NO-RHOSTS";
+        readonly ACCT_HOSTS_EQUIV: "ACCT-HOSTS-EQUIV";
+        readonly ACCT_NO_NETRC: "ACCT-NO-NETRC";
+        readonly ACCT_NO_FORWARD: "ACCT-NO-FORWARD";
+        readonly ACCT_SYSTEM_SHELL: "ACCT-SYSTEM-SHELL";
+        readonly ACCT_ROOT_HOME_PERMS: "ACCT-ROOT-HOME-PERMS";
+        readonly ACCT_NO_DUPLICATE_UID: "ACCT-NO-DUPLICATE-UID";
+        readonly ACCT_HOME_OWNERSHIP: "ACCT-HOME-OWNERSHIP";
+        readonly ACCT_SHADOW_PERMS: "ACCT-SHADOW-PERMS";
+        readonly ACCT_MAX_PASSWORD_DAYS: "ACCT-MAX-PASSWORD-DAYS";
+        readonly ACCT_MIN_PASSWORD_DAYS: "ACCT-MIN-PASSWORD-DAYS";
+        readonly ACCT_INACTIVE_LOCK: "ACCT-INACTIVE-LOCK";
+        readonly ACCT_DEFAULT_UMASK: "ACCT-DEFAULT-UMASK";
+        readonly ACCT_NO_EMPTY_HOME: "ACCT-NO-EMPTY-HOME";
+        readonly ACCT_INACTIVE_ACCOUNTS: "ACCT-INACTIVE-ACCOUNTS";
+        readonly ACCT_TOTAL_USERS_REASONABLE: "ACCT-TOTAL-USERS-REASONABLE";
+        readonly ACCT_NO_WORLD_WRITABLE_HOME: "ACCT-NO-WORLD-WRITABLE-HOME";
+        readonly ACCT_LOGIN_DEFS_UID_MAX: "ACCT-LOGIN-DEFS-UID-MAX";
+        readonly ACCT_LOGIN_SHELL_AUDIT: "ACCT-LOGIN-SHELL-AUDIT";
+        readonly ACCT_GID_CONSISTENCY: "ACCT-GID-CONSISTENCY";
+    };
+    readonly AUTH: {
+        readonly AUTH_NO_NOPASSWD_ALL: "AUTH-NO-NOPASSWD-ALL";
+        readonly AUTH_PASSWORD_AGING: "AUTH-PASSWORD-AGING";
+        readonly AUTH_NO_EMPTY_PASSWORDS: "AUTH-NO-EMPTY-PASSWORDS";
+        readonly AUTH_ROOT_LOGIN_RESTRICTED: "AUTH-ROOT-LOGIN-RESTRICTED";
+        readonly AUTH_PWD_QUALITY: "AUTH-PWD-QUALITY";
+        readonly AUTH_FAILLOCK_CONFIGURED: "AUTH-FAILLOCK-CONFIGURED";
+        readonly AUTH_SHADOW_PERMISSIONS: "AUTH-SHADOW-PERMISSIONS";
+        readonly AUTH_SUDO_LOG: "AUTH-SUDO-LOG";
+        readonly AUTH_SUDO_REQUIRETTY: "AUTH-SUDO-REQUIRETTY";
+        readonly AUTH_NO_UID0_DUPS: "AUTH-NO-UID0-DUPS";
+        readonly AUTH_PASS_MIN_DAYS: "AUTH-PASS-MIN-DAYS";
+        readonly AUTH_PASS_WARN_AGE: "AUTH-PASS-WARN-AGE";
+        readonly AUTH_INACTIVE_LOCK: "AUTH-INACTIVE-LOCK";
+        readonly AUTH_SUDO_WHEEL_ONLY: "AUTH-SUDO-WHEEL-ONLY";
+        readonly AUTH_MFA_PRESENT: "AUTH-MFA-PRESENT";
+        readonly AUTH_SU_RESTRICTED: "AUTH-SU-RESTRICTED";
+        readonly AUTH_PASS_MAX_DAYS_SET: "AUTH-PASS-MAX-DAYS-SET";
+        readonly AUTH_GSHADOW_PERMISSIONS: "AUTH-GSHADOW-PERMISSIONS";
+        readonly AUTH_PWQUALITY_CONFIGURED: "AUTH-PWQUALITY-CONFIGURED";
+        readonly AUTH_UMASK_LOGIN_DEFS: "AUTH-UMASK-LOGIN-DEFS";
+        readonly AUTH_SHA512_HASH: "AUTH-SHA512-HASH";
+        readonly AUTH_PWQUALITY_MINLEN: "AUTH-PWQUALITY-MINLEN";
+    };
+    readonly BACKUP: {
+        readonly BACKUP_RECENT_BACKUP: "BACKUP-RECENT-BACKUP";
+        readonly BACKUP_ENCRYPTION_PRESENT: "BACKUP-ENCRYPTION-PRESENT";
+        readonly BACKUP_SCRIPT_PERMS: "BACKUP-SCRIPT-PERMS";
+        readonly BACKUP_TOOL_INSTALLED: "BACKUP-TOOL-INSTALLED";
+        readonly BACKUP_CRON_JOB: "BACKUP-CRON-JOB";
+        readonly BACKUP_VAR_BACKUPS: "BACKUP-VAR-BACKUPS";
+        readonly BKUP_ENCRYPTED_BACKUPS: "BKUP-ENCRYPTED-BACKUPS";
+        readonly BKUP_BACKUP_TOOL_INSTALLED: "BKUP-BACKUP-TOOL-INSTALLED";
+    };
+    readonly BANNERS: {
+        readonly BANNER_ISSUE_EXISTS: "BANNER-ISSUE-EXISTS";
+        readonly BANNER_ISSUE_NET_EXISTS: "BANNER-ISSUE-NET-EXISTS";
+        readonly BANNER_MOTD_EXISTS: "BANNER-MOTD-EXISTS";
+        readonly BANNER_SSH_BANNER: "BANNER-SSH-BANNER";
+        readonly BANNER_NO_OS_INFO: "BANNER-NO-OS-INFO";
+        readonly BNR_ISSUE_NET_SET: "BNR-ISSUE-NET-SET";
+    };
+    readonly BOOT: {
+        readonly BOOT_GRUB_PERMS: "BOOT-GRUB-PERMS";
+        readonly BOOT_GRUB_PASSWORD: "BOOT-GRUB-PASSWORD";
+        readonly BOOT_SECURE_BOOT: "BOOT-SECURE-BOOT";
+        readonly BOOT_CMDLINE_SECURITY: "BOOT-CMDLINE-SECURITY";
+        readonly BOOT_GRUB_DIR_PERMS: "BOOT-GRUB-DIR-PERMS";
+        readonly BOOT_BOOT_PARTITION: "BOOT-BOOT-PARTITION";
+        readonly BOOT_SINGLE_USER_AUTH: "BOOT-SINGLE-USER-AUTH";
+        readonly BOOT_KERNEL_MODULES: "BOOT-KERNEL-MODULES";
+        readonly BOOT_UEFI_SECURE: "BOOT-UEFI-SECURE";
+        readonly BOOT_RESCUE_AUTH: "BOOT-RESCUE-AUTH";
+        readonly BOOT_GRUB_UNRESTRICTED: "BOOT-GRUB-UNRESTRICTED";
+    };
+    readonly CLOUDMETA: {
+        readonly CLOUDMETA_ENDPOINT_BLOCKED: "CLOUDMETA-ENDPOINT-BLOCKED";
+        readonly CLOUDMETA_INIT_LOG_CLEAN: "CLOUDMETA-INIT-LOG-CLEAN";
+        readonly CLOUDMETA_IMDSV2_ENFORCED: "CLOUDMETA-IMDSV2-ENFORCED";
+        readonly CLOUDMETA_SENSITIVE_ENV_NOT_IN_CLOUDINIT: "CLOUDMETA-SENSITIVE-ENV-NOT-IN-CLOUDINIT";
+        readonly CLOUDMETA_VPC_METADATA_FIREWALL: "CLOUDMETA-VPC-METADATA-FIREWALL";
+        readonly CLOUDMETA_IMDSV1_DISABLED: "CLOUDMETA-IMDSV1-DISABLED";
+    };
+    readonly CRYPTO: {
+        readonly CRYPTO_OPENSSL_INSTALLED: "CRYPTO-OPENSSL-INSTALLED";
+        readonly CRYPTO_SSH_WEAK_CIPHERS: "CRYPTO-SSH-WEAK-CIPHERS";
+        readonly CRYPTO_SSH_WEAK_MACS: "CRYPTO-SSH-WEAK-MACS";
+        readonly CRYPTO_SSH_WEAK_KEX: "CRYPTO-SSH-WEAK-KEX";
+        readonly CRYPTO_SSH_ED25519_KEY: "CRYPTO-SSH-ED25519-KEY";
+        readonly CRYPTO_LUKS_DISK: "CRYPTO-LUKS-DISK";
+        readonly CRYPTO_TLS_MIN_PROTOCOL: "CRYPTO-TLS-MIN-PROTOCOL";
+        readonly CRYPTO_CERT_NOT_EXPIRED: "CRYPTO-CERT-NOT-EXPIRED";
+        readonly CRYPTO_NO_SSLV3: "CRYPTO-NO-SSLV3";
+        readonly CRYPTO_OPENSSL_MODERN: "CRYPTO-OPENSSL-MODERN";
+        readonly CRYPTO_WEAK_SSH_KEYS: "CRYPTO-WEAK-SSH-KEYS";
+        readonly CRYPTO_HOST_KEY_PERMS: "CRYPTO-HOST-KEY-PERMS";
+        readonly CRYPTO_NO_WEAK_OPENSSL_CIPHERS: "CRYPTO-NO-WEAK-OPENSSL-CIPHERS";
+        readonly CRYPTO_MIN_PROTOCOL: "CRYPTO-MIN-PROTOCOL";
+        readonly CRYPTO_LUKS_KEY_SIZE: "CRYPTO-LUKS-KEY-SIZE";
+        readonly CRYPTO_DH_PARAMS_SIZE: "CRYPTO-DH-PARAMS-SIZE";
+        readonly CRYPTO_NO_WORLD_READABLE_KEYS: "CRYPTO-NO-WORLD-READABLE-KEYS";
+        readonly CRYPTO_CERT_COUNT: "CRYPTO-CERT-COUNT";
+        readonly CRYPTO_NGINX_TLS_MODERN: "CRYPTO-NGINX-TLS-MODERN";
+    };
+    readonly DDOS: {
+        readonly DDOS_SYN_BACKLOG: "DDOS-SYN-BACKLOG";
+        readonly DDOS_SYNACK_RETRIES: "DDOS-SYNACK-RETRIES";
+        readonly DDOS_FIN_TIMEOUT: "DDOS-FIN-TIMEOUT";
+        readonly DDOS_TW_REUSE: "DDOS-TW-REUSE";
+        readonly DDOS_ICMP_RATELIMIT: "DDOS-ICMP-RATELIMIT";
+        readonly DDOS_ICMP_BOGUS: "DDOS-ICMP-BOGUS";
+        readonly DDOS_SOMAXCONN: "DDOS-SOMAXCONN";
+        readonly DDOS_SYN_RETRIES: "DDOS-SYN-RETRIES";
+    };
+    readonly DNS: {
+        readonly DNS_DNSSEC_ENABLED: "DNS-DNSSEC-ENABLED";
+        readonly DNS_DOH_DOT_AVAILABLE: "DNS-DOH-DOT-AVAILABLE";
+        readonly DNS_RESOLV_IMMUTABLE: "DNS-RESOLV-IMMUTABLE";
+        readonly DNS_NAMESERVER_CONFIGURED: "DNS-NAMESERVER-CONFIGURED";
+        readonly DNS_MULTIPLE_NAMESERVERS: "DNS-MULTIPLE-NAMESERVERS";
+        readonly DNS_RESOLV_NOT_LOCALHOST_ONLY: "DNS-RESOLV-NOT-LOCALHOST-ONLY";
+        readonly DNS_LOCAL_RESOLVER_ACTIVE: "DNS-LOCAL-RESOLVER-ACTIVE";
+        readonly DNS_SEARCH_DOMAIN_SET: "DNS-SEARCH-DOMAIN-SET";
+    };
+    readonly DOCKER: {
+        readonly DCK_NO_TCP_SOCKET: "DCK-NO-TCP-SOCKET";
+        readonly DCK_NO_PRIVILEGED: "DCK-NO-PRIVILEGED";
+        readonly DCK_VERSION_CURRENT: "DCK-VERSION-CURRENT";
+        readonly DCK_USER_NAMESPACE: "DCK-USER-NAMESPACE";
+        readonly DCK_NO_HOST_NETWORK: "DCK-NO-HOST-NETWORK";
+        readonly DCK_LOGGING_DRIVER: "DCK-LOGGING-DRIVER";
+        readonly DCK_LIVE_RESTORE: "DCK-LIVE-RESTORE";
+        readonly DCK_NO_NEW_PRIVILEGES: "DCK-NO-NEW-PRIVILEGES";
+        readonly DCK_ICC_DISABLED: "DCK-ICC-DISABLED";
+        readonly DCK_TLS_VERIFY: "DCK-TLS-VERIFY";
+        readonly DCK_SOCKET_PERMS: "DCK-SOCKET-PERMS";
+        readonly DCK_NO_ROOT_CONTAINERS: "DCK-NO-ROOT-CONTAINERS";
+        readonly DCK_READ_ONLY_ROOTFS: "DCK-READ-ONLY-ROOTFS";
+        readonly DCK_LOG_MAX_SIZE: "DCK-LOG-MAX-SIZE";
+        readonly DCK_DEFAULT_ULIMITS: "DCK-DEFAULT-ULIMITS";
+        readonly DCK_SECCOMP_ENABLED: "DCK-SECCOMP-ENABLED";
+        readonly DCK_CONTENT_TRUST: "DCK-CONTENT-TRUST";
+        readonly DCK_NO_SENSITIVE_MOUNTS: "DCK-NO-SENSITIVE-MOUNTS";
+        readonly DCK_APPARMOR_PROFILE: "DCK-APPARMOR-PROFILE";
+        readonly DCK_NO_PRIVILEGED_PORTS: "DCK-NO-PRIVILEGED-PORTS";
+        readonly DCK_NETWORK_DISABLED: "DCK-NETWORK-DISABLED";
+        readonly DCK_LOG_DRIVER_CONFIGURED: "DCK-LOG-DRIVER-CONFIGURED";
+        readonly DCK_ROOTLESS_MODE: "DCK-ROOTLESS-MODE";
+        readonly DCK_NO_HOST_NETWORK_INSPECT: "DCK-NO-HOST-NETWORK-INSPECT";
+        readonly DCK_HEALTH_CHECK: "DCK-HEALTH-CHECK";
+        readonly DCK_BRIDGE_NFCALL: "DCK-BRIDGE-NFCALL";
+        readonly DCK_NO_INSECURE_REGISTRY: "DCK-NO-INSECURE-REGISTRY";
+        readonly DCK_NO_EXPERIMENTAL: "DCK-NO-EXPERIMENTAL";
+        readonly DCK_AUTH_PLUGIN: "DCK-AUTH-PLUGIN";
+        readonly DCK_REGISTRY_CERTS: "DCK-REGISTRY-CERTS";
+        readonly DCK_SWARM_INACTIVE: "DCK-SWARM-INACTIVE";
+        readonly DCK_PID_MODE: "DCK-PID-MODE";
+    };
+    readonly FILEINTEGRITY: {
+        readonly FINT_AIDE_INSTALLED: "FINT-AIDE-INSTALLED";
+        readonly FINT_TRIPWIRE_INSTALLED: "FINT-TRIPWIRE-INSTALLED";
+        readonly FINT_AIDE_DB_EXISTS: "FINT-AIDE-DB-EXISTS";
+        readonly FINT_AIDE_CRON: "FINT-AIDE-CRON";
+        readonly FINT_AUDITD_INSTALLED: "FINT-AUDITD-INSTALLED";
+        readonly FINT_AUDITD_RUNNING: "FINT-AUDITD-RUNNING";
+        readonly FINT_AUDIT_PASSWD_RULE: "FINT-AUDIT-PASSWD-RULE";
+        readonly FINT_AUDIT_SHADOW_RULE: "FINT-AUDIT-SHADOW-RULE";
+        readonly FINT_AIDE_DB_RECENT: "FINT-AIDE-DB-RECENT";
+        readonly FINT_CRITICAL_FILE_MONITORING: "FINT-CRITICAL-FILE-MONITORING";
+    };
+    readonly FILESYSTEM: {
+        readonly FS_TMP_STICKY_BIT: "FS-TMP-STICKY-BIT";
+        readonly FS_NO_WORLD_WRITABLE: "FS-NO-WORLD-WRITABLE";
+        readonly FS_SUID_THRESHOLD: "FS-SUID-THRESHOLD";
+        readonly FS_HOME_PERMISSIONS: "FS-HOME-PERMISSIONS";
+        readonly FS_DISK_USAGE: "FS-DISK-USAGE";
+        readonly FS_UMASK_RESTRICTIVE: "FS-UMASK-RESTRICTIVE";
+        readonly FS_NO_UNOWNED_FILES: "FS-NO-UNOWNED-FILES";
+        readonly FS_VAR_LOG_SEPARATE: "FS-VAR-LOG-SEPARATE";
+        readonly FS_SUID_SYSTEM_COUNT: "FS-SUID-SYSTEM-COUNT";
+        readonly FS_HOME_NOEXEC: "FS-HOME-NOEXEC";
+        readonly FS_HOME_NOSUID: "FS-HOME-NOSUID";
+        readonly FS_VAR_TMP_NOEXEC: "FS-VAR-TMP-NOEXEC";
+        readonly FS_VAR_TMP_NOSUID: "FS-VAR-TMP-NOSUID";
+        readonly FS_DEV_SHM_NOEXEC: "FS-DEV-SHM-NOEXEC";
+        readonly FS_DEV_SHM_NOSUID: "FS-DEV-SHM-NOSUID";
+        readonly FS_TMP_NOEXEC: "FS-TMP-NOEXEC";
+        readonly FS_TMP_NOSUID: "FS-TMP-NOSUID";
+        readonly FS_NODEV_REMOVABLE: "FS-NODEV-REMOVABLE";
+        readonly FS_BOOT_NOSUID: "FS-BOOT-NOSUID";
+        readonly FS_VAR_NOEXEC: "FS-VAR-NOEXEC";
+    };
+    readonly FIREWALL: {
+        readonly FW_UFW_ACTIVE: "FW-UFW-ACTIVE";
+        readonly FW_DEFAULT_DENY: "FW-DEFAULT-DENY";
+        readonly FW_SSH_ALLOWED: "FW-SSH-ALLOWED";
+        readonly FW_NO_WIDE_OPEN: "FW-NO-WIDE-OPEN";
+        readonly FW_IPV6_RULES: "FW-IPV6-RULES";
+        readonly FW_NFTABLES_PRESENT: "FW-NFTABLES-PRESENT";
+        readonly FW_FAIL2BAN_ACTIVE: "FW-FAIL2BAN-ACTIVE";
+        readonly FW_IPTABLES_BASELINE: "FW-IPTABLES-BASELINE";
+        readonly FW_INPUT_CHAIN_DENY: "FW-INPUT-CHAIN-DENY";
+        readonly FW_REJECT_NOT_DROP: "FW-REJECT-NOT-DROP";
+        readonly FW_OUTBOUND_RESTRICTED: "FW-OUTBOUND-RESTRICTED";
+        readonly FW_RATE_LIMIT: "FW-RATE-LIMIT";
+        readonly FW_FORWARD_CHAIN_DENY: "FW-FORWARD-CHAIN-DENY";
+        readonly FW_IPV6_DISABLED_OR_FILTERED: "FW-IPV6-DISABLED-OR-FILTERED";
+        readonly FW_NO_WILDCARD_ACCEPT: "FW-NO-WILDCARD-ACCEPT";
+        readonly FW_CONNTRACK_MAX: "FW-CONNTRACK-MAX";
+        readonly FW_LOG_DROPPED: "FW-LOG-DROPPED";
+    };
+    readonly HTTPHEADERS: {
+        readonly HDR_001: "HDR-001";
+        readonly HDR_002: "HDR-002";
+        readonly HDR_003: "HDR-003";
+        readonly HDR_004: "HDR-004";
+        readonly HDR_005: "HDR-005";
+        readonly HDR_006: "HDR-006";
+    };
+    readonly INCIDENTREADY: {
+        readonly INCIDENT_AUDITD_INSTALLED: "INCIDENT-AUDITD-INSTALLED";
+        readonly INCIDENT_AUDITD_RUNNING: "INCIDENT-AUDITD-RUNNING";
+        readonly INCIDENT_AUDITD_PASSWD_RULE: "INCIDENT-AUDITD-PASSWD-RULE";
+        readonly INCIDENT_AUDITD_SUDO_RULE: "INCIDENT-AUDITD-SUDO-RULE";
+        readonly INCIDENT_LOG_FORWARDING: "INCIDENT-LOG-FORWARDING";
+        readonly INCIDENT_LAST_ACCESSIBLE: "INCIDENT-LAST-ACCESSIBLE";
+        readonly INCIDENT_LASTB_ACCESSIBLE: "INCIDENT-LASTB-ACCESSIBLE";
+        readonly INCIDENT_WTMP_ROTATION: "INCIDENT-WTMP-ROTATION";
+        readonly INCID_WTMP_EXISTS: "INCID-WTMP-EXISTS";
+        readonly INCID_BTMP_EXISTS: "INCID-BTMP-EXISTS";
+        readonly INCID_FORENSIC_TOOLS: "INCID-FORENSIC-TOOLS";
+        readonly INCID_LOG_ARCHIVE_EXISTS: "INCID-LOG-ARCHIVE-EXISTS";
+    };
+    readonly KERNEL: {
+        readonly KRN_ASLR_ENABLED: "KRN-ASLR-ENABLED";
+        readonly KRN_CORE_DUMPS_RESTRICTED: "KRN-CORE-DUMPS-RESTRICTED";
+        readonly KRN_NETWORK_HARDENING: "KRN-NETWORK-HARDENING";
+        readonly KRN_KERNEL_VERSION: "KRN-KERNEL-VERSION";
+        readonly KRN_DMESG_RESTRICTED: "KRN-DMESG-RESTRICTED";
+        readonly KRN_PTRACE_SCOPE: "KRN-PTRACE-SCOPE";
+        readonly KRN_KPTR_RESTRICT: "KRN-KPTR-RESTRICT";
+        readonly KRN_PERF_PARANOID: "KRN-PERF-PARANOID";
+        readonly KRN_SYN_COOKIES: "KRN-SYN-COOKIES";
+        readonly KRN_IP_FORWARD_DISABLED: "KRN-IP-FORWARD-DISABLED";
+        readonly KRN_RP_FILTER: "KRN-RP-FILTER";
+        readonly KRN_TCP_TIMESTAMPS: "KRN-TCP-TIMESTAMPS";
+        readonly KRN_ICMP_BROADCAST: "KRN-ICMP-BROADCAST";
+        readonly KRN_ACCEPT_REDIRECTS_V6: "KRN-ACCEPT-REDIRECTS-V6";
+        readonly KRN_BPF_UNPRIVILEGED: "KRN-BPF-UNPRIVILEGED";
+        readonly KRN_MODULES_DISABLED: "KRN-MODULES-DISABLED";
+        readonly KRN_IP_FORWARD_V6: "KRN-IP-FORWARD-V6";
+        readonly KRN_SEND_REDIRECTS: "KRN-SEND-REDIRECTS";
+        readonly KRN_SECURE_REDIRECTS: "KRN-SECURE-REDIRECTS";
+        readonly KRN_SYSRQ_DISABLED: "KRN-SYSRQ-DISABLED";
+        readonly KRN_CORE_PATTERN_SAFE: "KRN-CORE-PATTERN-SAFE";
+        readonly KRN_PANIC_ON_OOPS: "KRN-PANIC-ON-OOPS";
+        readonly KRN_NMI_WATCHDOG_DISABLED: "KRN-NMI-WATCHDOG-DISABLED";
+        readonly KRN_UNPRIVILEGED_USERNS: "KRN-UNPRIVILEGED-USERNS";
+        readonly KRN_EXEC_SHIELD: "KRN-EXEC-SHIELD";
+        readonly KRN_MODULE_BLACKLIST: "KRN-MODULE-BLACKLIST";
+        readonly KRN_PANIC_REBOOT: "KRN-PANIC-REBOOT";
+        readonly KRN_SYSCTL_HARDENED: "KRN-SYSCTL-HARDENED";
+        readonly KRN_COREDUMP_SYSTEMD: "KRN-COREDUMP-SYSTEMD";
+        readonly KRN_LOCKDOWN_MODE: "KRN-LOCKDOWN-MODE";
+        readonly KRN_BPF_JIT_HARDEN: "KRN-BPF-JIT-HARDEN";
+    };
+    readonly LOGGING: {
+        readonly LOG_SYSLOG_ACTIVE: "LOG-SYSLOG-ACTIVE";
+        readonly LOG_AUTH_LOG_PRESENT: "LOG-AUTH-LOG-PRESENT";
+        readonly LOG_ROTATION_CONFIGURED: "LOG-ROTATION-CONFIGURED";
+        readonly LOG_REMOTE_LOGGING: "LOG-REMOTE-LOGGING";
+        readonly LOG_AUDIT_DAEMON: "LOG-AUDIT-DAEMON";
+        readonly LOG_AUDITD_ACTIVE: "LOG-AUDITD-ACTIVE";
+        readonly LOG_AUDIT_LOGIN_RULES: "LOG-AUDIT-LOGIN-RULES";
+        readonly LOG_AUDIT_SUDO_RULES: "LOG-AUDIT-SUDO-RULES";
+        readonly LOG_AUDIT_FILE_RULES: "LOG-AUDIT-FILE-RULES";
+        readonly LOG_VARLOG_PERMISSIONS: "LOG-VARLOG-PERMISSIONS";
+        readonly LOG_CENTRAL_LOGGING: "LOG-CENTRAL-LOGGING";
+        readonly LOG_SECURE_JOURNAL: "LOG-SECURE-JOURNAL";
+        readonly LOG_NO_WORLD_READABLE_LOGS: "LOG-NO-WORLD-READABLE-LOGS";
+        readonly LOG_SYSLOG_REMOTE: "LOG-SYSLOG-REMOTE";
+        readonly LOG_LOGROTATE_ACTIVE: "LOG-LOGROTATE-ACTIVE";
+        readonly LOG_AUDIT_WATCH_COUNT: "LOG-AUDIT-WATCH-COUNT";
+        readonly LOG_AUDITD_SPACE_ACTION: "LOG-AUDITD-SPACE-ACTION";
+        readonly LOG_AUDIT_TIME_RULES: "LOG-AUDIT-TIME-RULES";
+        readonly LOG_AUDIT_NETWORK_RULES: "LOG-AUDIT-NETWORK-RULES";
+        readonly LOG_AUDIT_MODULE_RULES: "LOG-AUDIT-MODULE-RULES";
+    };
+    readonly MAC: {
+        readonly MAC_LSM_ACTIVE: "MAC-LSM-ACTIVE";
+        readonly MAC_APPARMOR_ACTIVE: "MAC-APPARMOR-ACTIVE";
+        readonly MAC_APPARMOR_PROFILES: "MAC-APPARMOR-PROFILES";
+        readonly MAC_APPARMOR_NO_UNCONFINED: "MAC-APPARMOR-NO-UNCONFINED";
+        readonly MAC_SELINUX_ENFORCING: "MAC-SELINUX-ENFORCING";
+        readonly MAC_SELINUX_CONFIG: "MAC-SELINUX-CONFIG";
+        readonly MAC_SECCOMP_ENABLED: "MAC-SECCOMP-ENABLED";
+        readonly MAC_APPARMOR_ENFORCE_COUNT: "MAC-APPARMOR-ENFORCE-COUNT";
+        readonly MAC_NO_UNCONFINED_PROCS: "MAC-NO-UNCONFINED-PROCS";
+        readonly MAC_SECCOMP_STRICT: "MAC-SECCOMP-STRICT";
+    };
+    readonly MALWARE: {
+        readonly MALWARE_CHKROOTKIT_INSTALLED: "MALWARE-CHKROOTKIT-INSTALLED";
+        readonly MALWARE_RKHUNTER_INSTALLED: "MALWARE-RKHUNTER-INSTALLED";
+        readonly MALWARE_NO_SUID_IN_TMP: "MALWARE-NO-SUID-IN-TMP";
+        readonly MALWARE_NO_SUID_IN_DEV: "MALWARE-NO-SUID-IN-DEV";
+        readonly MALWARE_RKHUNTER_RECENT_SCAN: "MALWARE-RKHUNTER-RECENT-SCAN";
+        readonly MALWARE_NO_ROOT_WRITABLE: "MALWARE-NO-ROOT-WRITABLE";
+        readonly MALWARE_NO_HIDDEN_PROCS: "MALWARE-NO-HIDDEN-PROCS";
+        readonly MALWARE_NO_HIGH_CPU: "MALWARE-NO-HIGH-CPU";
+        readonly MALWARE_RKHUNTER_UPDATED: "MALWARE-RKHUNTER-UPDATED";
+        readonly MALWARE_NO_WORLD_WRITABLE_DEV: "MALWARE-NO-WORLD-WRITABLE-DEV";
+        readonly MALWARE_NO_HIDDEN_IN_TMP: "MALWARE-NO-HIDDEN-IN-TMP";
+    };
+    readonly MEMORY: {
+        readonly MEM_OVERCOMMIT_POLICY: "MEM-OVERCOMMIT-POLICY";
+        readonly MEM_NO_ZOMBIE_EXCESS: "MEM-NO-ZOMBIE-EXCESS";
+        readonly MEM_CORE_DUMP_RESTRICTED: "MEM-CORE-DUMP-RESTRICTED";
+        readonly MEM_OOM_KILL_POLICY: "MEM-OOM-KILL-POLICY";
+        readonly MEM_HUGEPAGES_CONFIG: "MEM-HUGEPAGES-CONFIG";
+        readonly MEM_PID_MAX_REASONABLE: "MEM-PID-MAX-REASONABLE";
+        readonly MEM_ULIMIT_NOFILE: "MEM-ULIMIT-NOFILE";
+        readonly MEM_SWAP_ENCRYPTED: "MEM-SWAP-ENCRYPTED";
+        readonly MEM_SWAPPINESS_REASONABLE: "MEM-SWAPPINESS-REASONABLE";
+        readonly MEM_HUGEPAGES_NOT_EXCESSIVE: "MEM-HUGEPAGES-NOT-EXCESSIVE";
+        readonly MEM_MAX_MAP_COUNT: "MEM-MAX-MAP-COUNT";
+    };
+    readonly NETWORK: {
+        readonly NET_NO_DANGEROUS_PORTS: "NET-NO-DANGEROUS-PORTS";
+        readonly NET_DNS_RESOLVER: "NET-DNS-RESOLVER";
+        readonly NET_TIME_SYNC: "NET-TIME-SYNC";
+        readonly NET_IP_FORWARDING: "NET-IP-FORWARDING";
+        readonly NET_SYN_COOKIES: "NET-SYN-COOKIES";
+        readonly NET_HOSTS_ACCESS: "NET-HOSTS-ACCESS";
+        readonly NET_HOSTS_DENY: "NET-HOSTS-DENY";
+        readonly NET_IPV6_DISABLED: "NET-IPV6-DISABLED";
+        readonly NET_ICMP_REDIRECT_SEND: "NET-ICMP-REDIRECT-SEND";
+        readonly NET_ICMP_SECURE_REDIRECT: "NET-ICMP-SECURE-REDIRECT";
+        readonly NET_SOURCE_ROUTING_V6: "NET-SOURCE-ROUTING-V6";
+        readonly NET_MARTIAN_LOGGING: "NET-MARTIAN-LOGGING";
+        readonly NET_NO_EXPOSED_MGMT_PORTS: "NET-NO-EXPOSED-MGMT-PORTS";
+        readonly NET_RP_FILTER: "NET-RP-FILTER";
+        readonly NET_NO_MAIL_PORTS: "NET-NO-MAIL-PORTS";
+        readonly NET_LISTENING_SERVICES_AUDIT: "NET-LISTENING-SERVICES-AUDIT";
+        readonly NET_NO_PROMISCUOUS_INTERFACES: "NET-NO-PROMISCUOUS-INTERFACES";
+        readonly NET_ARP_ANNOUNCE: "NET-ARP-ANNOUNCE";
+        readonly NET_ARP_IGNORE: "NET-ARP-IGNORE";
+        readonly NET_TCP_WRAPPERS_CONFIGURED: "NET-TCP-WRAPPERS-CONFIGURED";
+        readonly NET_LISTENING_PORT_COUNT: "NET-LISTENING-PORT-COUNT";
+    };
+    readonly NGINX: {
+        readonly NGX_SERVER_TOKENS: "NGX-SERVER-TOKENS";
+        readonly NGX_SSL_PROTOCOLS: "NGX-SSL-PROTOCOLS";
+        readonly NGX_RATE_LIMIT: "NGX-RATE-LIMIT";
+        readonly NGX_GZIP_CONFIG: "NGX-GZIP-CONFIG";
+        readonly NGX_CLIENT_BODY_SIZE: "NGX-CLIENT-BODY-SIZE";
+        readonly NGX_SERVER_HEADER: "NGX-SERVER-HEADER";
+        readonly NGX_ACCESS_LOG: "NGX-ACCESS-LOG";
+        readonly NGX_ERROR_LOG: "NGX-ERROR-LOG";
+        readonly NGX_WAF_DETECTED: "NGX-WAF-DETECTED";
+        readonly NGX_WAF_IP_ACL: "NGX-WAF-IP-ACL";
+        readonly NGX_WAF_RATE_LIMIT: "NGX-WAF-RATE-LIMIT";
+        readonly NGX_WAF_INPUT_SANITIZE: "NGX-WAF-INPUT-SANITIZE";
+        readonly NGX_WAF_DETECTION_ENGINE: "NGX-WAF-DETECTION-ENGINE";
+        readonly NGX_WAF_DATA_MASKING: "NGX-WAF-DATA-MASKING";
+        readonly NGX_WAF_BOT_DETECT: "NGX-WAF-BOT-DETECT";
+        readonly NGX_WAF_CHALLENGE_MODE: "NGX-WAF-CHALLENGE-MODE";
+    };
+    readonly RESOURCELIMITS: {
+        readonly RLIMIT_CGROUPS_V2: "RLIMIT-CGROUPS-V2";
+        readonly RLIMIT_NPROC_SOFT: "RLIMIT-NPROC-SOFT";
+        readonly RLIMIT_NPROC_HARD: "RLIMIT-NPROC-HARD";
+        readonly RLIMIT_THREADS_MAX: "RLIMIT-THREADS-MAX";
+        readonly RLIMIT_LIMITS_CONF_NPROC: "RLIMIT-LIMITS-CONF-NPROC";
+        readonly RLIMIT_MAXLOGINS: "RLIMIT-MAXLOGINS";
+        readonly RLIMIT_LIMITS_CONF_CONFIGURED: "RLIMIT-LIMITS-CONF-CONFIGURED";
+        readonly RLIMIT_NPROC_LIMITED: "RLIMIT-NPROC-LIMITED";
+    };
+    readonly SCHEDULING: {
+        readonly SCHED_CRON_ACCESS_CONTROL: "SCHED-CRON-ACCESS-CONTROL";
+        readonly SCHED_CRON_DENY: "SCHED-CRON-DENY";
+        readonly SCHED_AT_ACCESS_CONTROL: "SCHED-AT-ACCESS-CONTROL";
+        readonly SCHED_AT_DENY: "SCHED-AT-DENY";
+        readonly SCHED_CRON_DIR_PERMS: "SCHED-CRON-DIR-PERMS";
+        readonly SCHED_CRONTAB_PERMS: "SCHED-CRONTAB-PERMS";
+        readonly SCHED_CRON_D_PERMS: "SCHED-CRON-D-PERMS";
+        readonly SCHED_CRON_DAILY_PERMS: "SCHED-CRON-DAILY-PERMS";
+        readonly SCHED_CRONTAB_OWNER: "SCHED-CRONTAB-OWNER";
+        readonly SCHED_NO_USER_CRONTABS: "SCHED-NO-USER-CRONTABS";
+        readonly SCHED_CRON_D_FILE_COUNT: "SCHED-CRON-D-FILE-COUNT";
+        readonly SCHED_NO_WORLD_READABLE_CRONTABS: "SCHED-NO-WORLD-READABLE-CRONTABS";
+    };
+    readonly SECRETS: {
+        readonly SECRETS_ENV_WORLD_READABLE: "SECRETS-ENV-WORLD-READABLE";
+        readonly SECRETS_SSH_KEY_PERMS: "SECRETS-SSH-KEY-PERMS";
+        readonly SECRETS_GIT_CONFIG_TOKEN: "SECRETS-GIT-CONFIG-TOKEN";
+        readonly SECRETS_ETC_PLAINTEXT_CRED: "SECRETS-ETC-PLAINTEXT-CRED";
+        readonly SECRETS_ENV_IN_HOME: "SECRETS-ENV-IN-HOME";
+        readonly SECRETS_WORLD_READABLE_KEYS: "SECRETS-WORLD-READABLE-KEYS";
+        readonly SECRETS_AWS_CREDS_PERMS: "SECRETS-AWS-CREDS-PERMS";
+        readonly SECRETS_DOCKER_ENV_PERMS: "SECRETS-DOCKER-ENV-PERMS";
+        readonly SECRETS_NPMRC_TOKEN: "SECRETS-NPMRC-TOKEN";
+        readonly SECRETS_SSH_AUTHORIZED_KEYS_PERMS: "SECRETS-SSH-AUTHORIZED-KEYS-PERMS";
+        readonly SECRETS_NO_READABLE_HISTORY: "SECRETS-NO-READABLE-HISTORY";
+        readonly SECRETS_NO_SSH_AGENT_FORWARDING: "SECRETS-NO-SSH-AGENT-FORWARDING";
+        readonly SECRETS_NO_AWS_CREDS_PLAINTEXT: "SECRETS-NO-AWS-CREDS-PLAINTEXT";
+        readonly SECRETS_NO_KUBECONFIG_EXPOSED: "SECRETS-NO-KUBECONFIG-EXPOSED";
+        readonly SECRETS_NO_SHELL_RC_SECRETS: "SECRETS-NO-SHELL-RC-SECRETS";
+    };
+    readonly SERVICES: {
+        readonly SVC_NO_TELNET: "SVC-NO-TELNET";
+        readonly SVC_NO_RSH: "SVC-NO-RSH";
+        readonly SVC_NO_RLOGIN: "SVC-NO-RLOGIN";
+        readonly SVC_NO_FTP: "SVC-NO-FTP";
+        readonly SVC_NO_TFTP: "SVC-NO-TFTP";
+        readonly SVC_NFS_RESTRICTED: "SVC-NFS-RESTRICTED";
+        readonly SVC_NO_RPCBIND: "SVC-NO-RPCBIND";
+        readonly SVC_SAMBA_RESTRICTED: "SVC-SAMBA-RESTRICTED";
+        readonly SVC_NO_AVAHI: "SVC-NO-AVAHI";
+        readonly SVC_NO_CUPS: "SVC-NO-CUPS";
+        readonly SVC_NO_DHCP_SERVER: "SVC-NO-DHCP-SERVER";
+        readonly SVC_NO_DNS_SERVER: "SVC-NO-DNS-SERVER";
+        readonly SVC_NO_SNMP: "SVC-NO-SNMP";
+        readonly SVC_NO_SQUID: "SVC-NO-SQUID";
+        readonly SVC_NO_XINETD: "SVC-NO-XINETD";
+        readonly SVC_NO_YPSERV: "SVC-NO-YPSERV";
+        readonly SVC_NO_INETD: "SVC-NO-INETD";
+        readonly SVC_NO_CHARGEN: "SVC-NO-CHARGEN";
+        readonly SVC_NO_DAYTIME: "SVC-NO-DAYTIME";
+        readonly SVC_NO_DISCARD: "SVC-NO-DISCARD";
+        readonly SVC_NO_ECHO_SVC: "SVC-NO-ECHO-SVC";
+        readonly SVC_RUNNING_COUNT_REASONABLE: "SVC-RUNNING-COUNT-REASONABLE";
+        readonly SVC_NO_WILDCARD_LISTENERS: "SVC-NO-WILDCARD-LISTENERS";
+        readonly SVC_NO_XINETD_SERVICES: "SVC-NO-XINETD-SERVICES";
+        readonly SVC_NO_WORLD_READABLE_CONFIGS: "SVC-NO-WORLD-READABLE-CONFIGS";
+    };
+    readonly SSH: {
+        readonly SSH_PASSWORD_AUTH: "SSH-PASSWORD-AUTH";
+        readonly SSH_ROOT_LOGIN: "SSH-ROOT-LOGIN";
+        readonly SSH_EMPTY_PASSWORDS: "SSH-EMPTY-PASSWORDS";
+        readonly SSH_PUBKEY_AUTH: "SSH-PUBKEY-AUTH";
+        readonly SSH_MAX_AUTH_TRIES: "SSH-MAX-AUTH-TRIES";
+        readonly SSH_X11_FORWARDING: "SSH-X11-FORWARDING";
+        readonly SSH_CLIENT_ALIVE_INTERVAL: "SSH-CLIENT-ALIVE-INTERVAL";
+        readonly SSH_CLIENT_ALIVE_COUNT: "SSH-CLIENT-ALIVE-COUNT";
+        readonly SSH_LOGIN_GRACE_TIME: "SSH-LOGIN-GRACE-TIME";
+        readonly SSH_IGNORE_RHOSTS: "SSH-IGNORE-RHOSTS";
+        readonly SSH_HOSTBASED_AUTH: "SSH-HOSTBASED-AUTH";
+        readonly SSH_MAX_SESSIONS: "SSH-MAX-SESSIONS";
+        readonly SSH_USE_DNS: "SSH-USE-DNS";
+        readonly SSH_PERMIT_USER_ENV: "SSH-PERMIT-USER-ENV";
+        readonly SSH_LOG_LEVEL: "SSH-LOG-LEVEL";
+        readonly SSH_STRONG_CIPHERS: "SSH-STRONG-CIPHERS";
+        readonly SSH_STRONG_MACS: "SSH-STRONG-MACS";
+        readonly SSH_STRONG_KEX: "SSH-STRONG-KEX";
+        readonly SSH_MAX_STARTUPS: "SSH-MAX-STARTUPS";
+        readonly SSH_STRICT_MODES: "SSH-STRICT-MODES";
+        readonly SSH_NO_AGENT_FORWARDING: "SSH-NO-AGENT-FORWARDING";
+        readonly SSH_PRINT_MOTD: "SSH-PRINT-MOTD";
+    };
+    readonly SUPPLYCHAIN: {
+        readonly SUPPLY_APT_HTTPS_REPOS: "SUPPLY-APT-HTTPS-REPOS";
+        readonly SUPPLY_GPG_KEYS_TRUSTED: "SUPPLY-GPG-KEYS-TRUSTED";
+        readonly SUPPLY_NO_UNSIGNED_PACKAGES: "SUPPLY-NO-UNSIGNED-PACKAGES";
+        readonly SUPPLY_APT_KEY_DEPRECATED: "SUPPLY-APT-KEY-DEPRECATED";
+        readonly SUPPLY_REPOS_SIGNED: "SUPPLY-REPOS-SIGNED";
+        readonly SUPPLY_GPG_VERIFY_OK: "SUPPLY-GPG-VERIFY-OK";
+        readonly SUPPLY_NO_UNAUTH_SOURCES: "SUPPLY-NO-UNAUTH-SOURCES";
+        readonly SUPPLY_DPKG_AUDIT_CLEAN: "SUPPLY-DPKG-AUDIT-CLEAN";
+        readonly SUPPLY_NO_INSECURE_REPOS: "SUPPLY-NO-INSECURE-REPOS";
+        readonly SUPPLY_GPG_KEYS_PRESENT: "SUPPLY-GPG-KEYS-PRESENT";
+        readonly SUPPLY_PACKAGE_VERIFY_CLEAN: "SUPPLY-PACKAGE-VERIFY-CLEAN";
+        readonly SUPPLY_DEBSUMS_INSTALLED: "SUPPLY-DEBSUMS-INSTALLED";
+    };
+    readonly TIME: {
+        readonly TIME_NTP_ACTIVE: "TIME-NTP-ACTIVE";
+        readonly TIME_SYNCHRONIZED: "TIME-SYNCHRONIZED";
+        readonly TIME_TIMEZONE_SET: "TIME-TIMEZONE-SET";
+        readonly TIME_HWCLOCK_SYNC: "TIME-HWCLOCK-SYNC";
+        readonly TIME_CHRONY_SOURCES: "TIME-CHRONY-SOURCES";
+        readonly TIME_DRIFT_CHECK: "TIME-DRIFT-CHECK";
+        readonly TIME_NTP_PEERS_CONFIGURED: "TIME-NTP-PEERS-CONFIGURED";
+        readonly TIME_NO_DRIFT: "TIME-NO-DRIFT";
+        readonly TIME_NTP_SYNCHRONIZED: "TIME-NTP-SYNCHRONIZED";
+    };
+    readonly TLS: {
+        readonly TLS_MIN_VERSION: "TLS-MIN-VERSION";
+        readonly TLS_WEAK_CIPHERS: "TLS-WEAK-CIPHERS";
+        readonly TLS_HSTS: "TLS-HSTS";
+        readonly TLS_OCSP: "TLS-OCSP";
+        readonly TLS_CERT_EXPIRY: "TLS-CERT-EXPIRY";
+        readonly TLS_DH_PARAM: "TLS-DH-PARAM";
+        readonly TLS_COMPRESSION: "TLS-COMPRESSION";
+        readonly TLS_CERT_CHAIN: "TLS-CERT-CHAIN";
+    };
+    readonly UPDATES: {
+        readonly UPD_SECURITY_PATCHES: "UPD-SECURITY-PATCHES";
+        readonly UPD_AUTO_UPDATES: "UPD-AUTO-UPDATES";
+        readonly UPD_CACHE_FRESH: "UPD-CACHE-FRESH";
+        readonly UPD_REBOOT_REQUIRED: "UPD-REBOOT-REQUIRED";
+        readonly UPD_LAST_UPGRADE_RECENT: "UPD-LAST-UPGRADE-RECENT";
+        readonly UPD_CVE_SCANNER_PRESENT: "UPD-CVE-SCANNER-PRESENT";
+        readonly UPD_DPKG_NO_PARTIAL: "UPD-DPKG-NO-PARTIAL";
+        readonly UPD_KERNEL_CURRENT: "UPD-KERNEL-CURRENT";
+        readonly UPD_UNATTENDED_ENABLED: "UPD-UNATTENDED-ENABLED";
+        readonly UPD_APT_HTTPS: "UPD-APT-HTTPS";
+        readonly UPD_SECURITY_REPO_PRIORITY: "UPD-SECURITY-REPO-PRIORITY";
+    };
+};
+export type CheckId = typeof CHECK_IDS[keyof typeof CHECK_IDS][keyof typeof CHECK_IDS[keyof typeof CHECK_IDS]];
+//# sourceMappingURL=checkIds.d.ts.map

package/dist/core/audit/checkIds.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"checkIds.d.ts","sourceRoot":"","sources":["../../../src/core/audit/checkIds.ts"],"names":[],"mappings":"AAAA,4CAA4C;AAC5C,eAAO,MAAM,SAAS;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAggBZ,CAAC;AAEX,MAAM,MAAM,OAAO,GAAG,OAAO,SAAS,CAAC,MAAM,OAAO,SAAS,CAAC,CAAC,MAAM,OAAO,SAAS,CAAC,MAAM,OAAO,SAAS,CAAC,CAAC,CAAC"}