kastell 2.0.0 → 2.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +85 -0
- package/README.md +1 -1
- package/README.tr.md +1 -1
- package/dist/commands/audit.d.ts +3 -0
- package/dist/commands/audit.d.ts.map +1 -1
- package/dist/commands/audit.js +61 -32
- package/dist/commands/audit.js.map +1 -1
- package/dist/commands/config.js +1 -1
- package/dist/commands/config.js.map +1 -1
- package/dist/commands/doctor.d.ts +1 -0
- package/dist/commands/doctor.d.ts.map +1 -1
- package/dist/commands/doctor.js +25 -7
- package/dist/commands/doctor.js.map +1 -1
- package/dist/commands/explain.d.ts +6 -0
- package/dist/commands/explain.d.ts.map +1 -0
- package/dist/commands/explain.js +28 -0
- package/dist/commands/explain.js.map +1 -0
- package/dist/commands/fix.d.ts +2 -0
- package/dist/commands/fix.d.ts.map +1 -1
- package/dist/commands/fix.js +54 -15
- package/dist/commands/fix.js.map +1 -1
- package/dist/commands/fleet.d.ts.map +1 -1
- package/dist/commands/fleet.js +1 -0
- package/dist/commands/fleet.js.map +1 -1
- package/dist/commands/init.d.ts.map +1 -1
- package/dist/commands/init.js +175 -1
- package/dist/commands/init.js.map +1 -1
- package/dist/commands/interactive.d.ts.map +1 -1
- package/dist/commands/interactive.js +59 -1
- package/dist/commands/interactive.js.map +1 -1
- package/dist/commands/plugin.d.ts +8 -0
- package/dist/commands/plugin.d.ts.map +1 -0
- package/dist/commands/plugin.js +87 -0
- package/dist/commands/plugin.js.map +1 -0
- package/dist/commands/regression.d.ts +5 -0
- package/dist/commands/regression.d.ts.map +1 -0
- package/dist/commands/regression.js +40 -0
- package/dist/commands/regression.js.map +1 -0
- package/dist/core/audit/checkIds.d.ts +516 -0
- package/dist/core/audit/checkIds.d.ts.map +1 -0
- package/dist/core/audit/checkIds.js +515 -0
- package/dist/core/audit/checkIds.js.map +1 -0
- package/dist/core/audit/checks/accounts.d.ts.map +1 -1
- package/dist/core/audit/checks/accounts.js +23 -22
- package/dist/core/audit/checks/accounts.js.map +1 -1
- package/dist/core/audit/checks/auth.d.ts.map +1 -1
- package/dist/core/audit/checks/auth.js +23 -22
- package/dist/core/audit/checks/auth.js.map +1 -1
- package/dist/core/audit/checks/backup.d.ts.map +1 -1
- package/dist/core/audit/checks/backup.js +9 -8
- package/dist/core/audit/checks/backup.js.map +1 -1
- package/dist/core/audit/checks/banners.d.ts.map +1 -1
- package/dist/core/audit/checks/banners.js +7 -6
- package/dist/core/audit/checks/banners.js.map +1 -1
- package/dist/core/audit/checks/boot.d.ts.map +1 -1
- package/dist/core/audit/checks/boot.js +12 -11
- package/dist/core/audit/checks/boot.js.map +1 -1
- package/dist/core/audit/checks/cloudmeta.d.ts.map +1 -1
- package/dist/core/audit/checks/cloudmeta.js +7 -6
- package/dist/core/audit/checks/cloudmeta.js.map +1 -1
- package/dist/core/audit/checks/crypto.d.ts +0 -5
- package/dist/core/audit/checks/crypto.d.ts.map +1 -1
- package/dist/core/audit/checks/crypto.js +20 -19
- package/dist/core/audit/checks/crypto.js.map +1 -1
- package/dist/core/audit/checks/ddos.d.ts.map +1 -1
- package/dist/core/audit/checks/ddos.js +9 -8
- package/dist/core/audit/checks/ddos.js.map +1 -1
- package/dist/core/audit/checks/dns.d.ts.map +1 -1
- package/dist/core/audit/checks/dns.js +9 -8
- package/dist/core/audit/checks/dns.js.map +1 -1
- package/dist/core/audit/checks/docker.d.ts.map +1 -1
- package/dist/core/audit/checks/docker.js +65 -64
- package/dist/core/audit/checks/docker.js.map +1 -1
- package/dist/core/audit/checks/fileintegrity.d.ts.map +1 -1
- package/dist/core/audit/checks/fileintegrity.js +11 -10
- package/dist/core/audit/checks/fileintegrity.js.map +1 -1
- package/dist/core/audit/checks/filesystem.d.ts.map +1 -1
- package/dist/core/audit/checks/filesystem.js +21 -20
- package/dist/core/audit/checks/filesystem.js.map +1 -1
- package/dist/core/audit/checks/firewall.d.ts.map +1 -1
- package/dist/core/audit/checks/firewall.js +18 -17
- package/dist/core/audit/checks/firewall.js.map +1 -1
- package/dist/core/audit/checks/httpHeaders.d.ts.map +1 -1
- package/dist/core/audit/checks/httpHeaders.js +7 -6
- package/dist/core/audit/checks/httpHeaders.js.map +1 -1
- package/dist/core/audit/checks/incidentready.d.ts.map +1 -1
- package/dist/core/audit/checks/incidentready.js +13 -12
- package/dist/core/audit/checks/incidentready.js.map +1 -1
- package/dist/core/audit/checks/kernel.d.ts.map +1 -1
- package/dist/core/audit/checks/kernel.js +32 -31
- package/dist/core/audit/checks/kernel.js.map +1 -1
- package/dist/core/audit/checks/logging.d.ts.map +1 -1
- package/dist/core/audit/checks/logging.js +21 -20
- package/dist/core/audit/checks/logging.js.map +1 -1
- package/dist/core/audit/checks/mac.d.ts.map +1 -1
- package/dist/core/audit/checks/mac.js +11 -10
- package/dist/core/audit/checks/mac.js.map +1 -1
- package/dist/core/audit/checks/malware.d.ts.map +1 -1
- package/dist/core/audit/checks/malware.js +12 -11
- package/dist/core/audit/checks/malware.js.map +1 -1
- package/dist/core/audit/checks/memory.d.ts.map +1 -1
- package/dist/core/audit/checks/memory.js +12 -11
- package/dist/core/audit/checks/memory.js.map +1 -1
- package/dist/core/audit/checks/network.d.ts.map +1 -1
- package/dist/core/audit/checks/network.js +22 -21
- package/dist/core/audit/checks/network.js.map +1 -1
- package/dist/core/audit/checks/nginx.d.ts.map +1 -1
- package/dist/core/audit/checks/nginx.js +17 -16
- package/dist/core/audit/checks/nginx.js.map +1 -1
- package/dist/core/audit/checks/resourcelimits.d.ts.map +1 -1
- package/dist/core/audit/checks/resourcelimits.js +9 -8
- package/dist/core/audit/checks/resourcelimits.js.map +1 -1
- package/dist/core/audit/checks/scheduling.d.ts.map +1 -1
- package/dist/core/audit/checks/scheduling.js +13 -12
- package/dist/core/audit/checks/scheduling.js.map +1 -1
- package/dist/core/audit/checks/secrets.d.ts.map +1 -1
- package/dist/core/audit/checks/secrets.js +16 -15
- package/dist/core/audit/checks/secrets.js.map +1 -1
- package/dist/core/audit/checks/services.d.ts.map +1 -1
- package/dist/core/audit/checks/services.js +26 -25
- package/dist/core/audit/checks/services.js.map +1 -1
- package/dist/core/audit/checks/ssh.d.ts.map +1 -1
- package/dist/core/audit/checks/ssh.js +23 -22
- package/dist/core/audit/checks/ssh.js.map +1 -1
- package/dist/core/audit/checks/supplychain.d.ts.map +1 -1
- package/dist/core/audit/checks/supplychain.js +13 -12
- package/dist/core/audit/checks/supplychain.js.map +1 -1
- package/dist/core/audit/checks/time.d.ts.map +1 -1
- package/dist/core/audit/checks/time.js +10 -9
- package/dist/core/audit/checks/time.js.map +1 -1
- package/dist/core/audit/checks/tls.d.ts.map +1 -1
- package/dist/core/audit/checks/tls.js +9 -8
- package/dist/core/audit/checks/tls.js.map +1 -1
- package/dist/core/audit/checks/updates.d.ts.map +1 -1
- package/dist/core/audit/checks/updates.js +12 -11
- package/dist/core/audit/checks/updates.js.map +1 -1
- package/dist/core/audit/compliance/categories/index.d.ts +3 -0
- package/dist/core/audit/compliance/categories/index.d.ts.map +1 -0
- package/dist/core/audit/compliance/categories/index.js +737 -0
- package/dist/core/audit/compliance/categories/index.js.map +1 -0
- package/dist/core/audit/compliance/helpers.d.ts +17 -0
- package/dist/core/audit/compliance/helpers.d.ts.map +1 -0
- package/dist/core/audit/compliance/helpers.js +40 -0
- package/dist/core/audit/compliance/helpers.js.map +1 -0
- package/dist/core/audit/compliance/mapper.d.ts +4 -16
- package/dist/core/audit/compliance/mapper.d.ts.map +1 -1
- package/dist/core/audit/compliance/mapper.js +3 -776
- package/dist/core/audit/compliance/mapper.js.map +1 -1
- package/dist/core/audit/diff.d.ts +12 -1
- package/dist/core/audit/diff.d.ts.map +1 -1
- package/dist/core/audit/diff.js +121 -0
- package/dist/core/audit/diff.js.map +1 -1
- package/dist/core/audit/explainCheck.d.ts +26 -0
- package/dist/core/audit/explainCheck.d.ts.map +1 -0
- package/dist/core/audit/explainCheck.js +165 -0
- package/dist/core/audit/explainCheck.js.map +1 -0
- package/dist/core/audit/fix-history.d.ts +16 -7
- package/dist/core/audit/fix-history.d.ts.map +1 -1
- package/dist/core/audit/fix-history.js +25 -2
- package/dist/core/audit/fix-history.js.map +1 -1
- package/dist/core/audit/fix.d.ts +21 -6
- package/dist/core/audit/fix.d.ts.map +1 -1
- package/dist/core/audit/fix.js +139 -49
- package/dist/core/audit/fix.js.map +1 -1
- package/dist/core/audit/history.d.ts.map +1 -1
- package/dist/core/audit/history.js +2 -1
- package/dist/core/audit/history.js.map +1 -1
- package/dist/core/audit/index.d.ts.map +1 -1
- package/dist/core/audit/index.js +3 -2
- package/dist/core/audit/index.js.map +1 -1
- package/dist/core/audit/listChecks.d.ts +7 -0
- package/dist/core/audit/listChecks.d.ts.map +1 -1
- package/dist/core/audit/listChecks.js +1 -1
- package/dist/core/audit/listChecks.js.map +1 -1
- package/dist/core/audit/regression.d.ts +15 -0
- package/dist/core/audit/regression.d.ts.map +1 -0
- package/dist/core/audit/regression.js +149 -0
- package/dist/core/audit/regression.js.map +1 -0
- package/dist/core/audit/snapshot.d.ts.map +1 -1
- package/dist/core/audit/snapshot.js +91 -29
- package/dist/core/audit/snapshot.js.map +1 -1
- package/dist/core/audit/types.d.ts +63 -1
- package/dist/core/audit/types.d.ts.map +1 -1
- package/dist/core/audit/watch.d.ts.map +1 -1
- package/dist/core/audit/watch.js +3 -2
- package/dist/core/audit/watch.js.map +1 -1
- package/dist/core/bot/handlers.d.ts.map +1 -1
- package/dist/core/bot/handlers.js +9 -18
- package/dist/core/bot/handlers.js.map +1 -1
- package/dist/core/completions.d.ts.map +1 -1
- package/dist/core/completions.js +24 -2
- package/dist/core/completions.js.map +1 -1
- package/dist/core/defaults.d.ts +4 -0
- package/dist/core/defaults.d.ts.map +1 -0
- package/dist/core/defaults.js +34 -0
- package/dist/core/defaults.js.map +1 -0
- package/dist/core/doctor-fix.d.ts +1 -1
- package/dist/core/doctor-fix.d.ts.map +1 -1
- package/dist/core/doctor-fix.js +17 -2
- package/dist/core/doctor-fix.js.map +1 -1
- package/dist/core/doctor.d.ts +4 -0
- package/dist/core/doctor.d.ts.map +1 -1
- package/dist/core/doctor.js +26 -2
- package/dist/core/doctor.js.map +1 -1
- package/dist/core/firewall.d.ts +1 -4
- package/dist/core/firewall.d.ts.map +1 -1
- package/dist/core/firewall.js +19 -25
- package/dist/core/firewall.js.map +1 -1
- package/dist/core/fleet.d.ts +8 -0
- package/dist/core/fleet.d.ts.map +1 -1
- package/dist/core/fleet.js +49 -5
- package/dist/core/fleet.js.map +1 -1
- package/dist/core/manage.d.ts +9 -6
- package/dist/core/manage.d.ts.map +1 -1
- package/dist/core/manage.js +2 -1
- package/dist/core/manage.js.map +1 -1
- package/dist/core/notify.d.ts.map +1 -1
- package/dist/core/notify.js +2 -1
- package/dist/core/notify.js.map +1 -1
- package/dist/core/plugin.d.ts +23 -0
- package/dist/core/plugin.d.ts.map +1 -0
- package/dist/core/plugin.js +107 -0
- package/dist/core/plugin.js.map +1 -0
- package/dist/core/scheduleManager.d.ts +2 -1
- package/dist/core/scheduleManager.d.ts.map +1 -1
- package/dist/core/scheduleManager.js +8 -5
- package/dist/core/scheduleManager.js.map +1 -1
- package/dist/core/status.d.ts +1 -0
- package/dist/core/status.d.ts.map +1 -1
- package/dist/core/status.js +20 -6
- package/dist/core/status.js.map +1 -1
- package/dist/index.js +65 -2
- package/dist/index.js.map +1 -1
- package/dist/mcp/index.js +5 -9
- package/dist/mcp/index.js.map +1 -1
- package/dist/mcp/server.d.ts.map +1 -1
- package/dist/mcp/server.js +44 -2
- package/dist/mcp/server.js.map +1 -1
- package/dist/mcp/tools/serverAudit.d.ts.map +1 -1
- package/dist/mcp/tools/serverAudit.js +15 -0
- package/dist/mcp/tools/serverAudit.js.map +1 -1
- package/dist/mcp/tools/serverCompare.d.ts +15 -0
- package/dist/mcp/tools/serverCompare.d.ts.map +1 -0
- package/dist/mcp/tools/serverCompare.js +43 -0
- package/dist/mcp/tools/serverCompare.js.map +1 -0
- package/dist/mcp/tools/serverDoctor.d.ts.map +1 -1
- package/dist/mcp/tools/serverDoctor.js +2 -1
- package/dist/mcp/tools/serverDoctor.js.map +1 -1
- package/dist/mcp/tools/serverExplain.d.ts +8 -0
- package/dist/mcp/tools/serverExplain.d.ts.map +1 -0
- package/dist/mcp/tools/serverExplain.js +14 -0
- package/dist/mcp/tools/serverExplain.js.map +1 -0
- package/dist/mcp/tools/serverFix.d.ts +2 -0
- package/dist/mcp/tools/serverFix.d.ts.map +1 -1
- package/dist/mcp/tools/serverFix.js +40 -2
- package/dist/mcp/tools/serverFix.js.map +1 -1
- package/dist/mcp/tools/serverFleet.d.ts +2 -0
- package/dist/mcp/tools/serverFleet.d.ts.map +1 -1
- package/dist/mcp/tools/serverFleet.js +10 -1
- package/dist/mcp/tools/serverFleet.js.map +1 -1
- package/dist/mcp/tools/serverManage.d.ts.map +1 -1
- package/dist/mcp/tools/serverManage.js +10 -9
- package/dist/mcp/tools/serverManage.js.map +1 -1
- package/dist/mcp/tools/serverPlugin.d.ts +12 -0
- package/dist/mcp/tools/serverPlugin.d.ts.map +1 -0
- package/dist/mcp/tools/serverPlugin.js +22 -0
- package/dist/mcp/tools/serverPlugin.js.map +1 -0
- package/dist/plugin/loader.d.ts +10 -0
- package/dist/plugin/loader.d.ts.map +1 -0
- package/dist/plugin/loader.js +88 -0
- package/dist/plugin/loader.js.map +1 -0
- package/dist/plugin/registry.d.ts +16 -0
- package/dist/plugin/registry.d.ts.map +1 -0
- package/dist/plugin/registry.js +99 -0
- package/dist/plugin/registry.js.map +1 -0
- package/dist/plugin/sdk/constants.d.ts +3 -0
- package/dist/plugin/sdk/constants.d.ts.map +1 -0
- package/dist/plugin/sdk/constants.js +3 -0
- package/dist/plugin/sdk/constants.js.map +1 -0
- package/dist/plugin/sdk/types.d.ts +29 -0
- package/dist/plugin/sdk/types.d.ts.map +1 -0
- package/dist/plugin/sdk/types.js +2 -0
- package/dist/plugin/sdk/types.js.map +1 -0
- package/dist/plugin/validate.d.ts +3 -0
- package/dist/plugin/validate.d.ts.map +1 -0
- package/dist/plugin/validate.js +31 -0
- package/dist/plugin/validate.js.map +1 -0
- package/dist/providers/base.d.ts.map +1 -1
- package/dist/providers/base.js +2 -1
- package/dist/providers/base.js.map +1 -1
- package/dist/types/index.d.ts +8 -1
- package/dist/types/index.d.ts.map +1 -1
- package/dist/types/index.js +1 -1
- package/dist/types/index.js.map +1 -1
- package/dist/utils/dates.d.ts +3 -0
- package/dist/utils/dates.d.ts.map +1 -0
- package/dist/utils/dates.js +10 -0
- package/dist/utils/dates.js.map +1 -0
- package/dist/utils/errorMapper.d.ts.map +1 -1
- package/dist/utils/errorMapper.js +2 -1
- package/dist/utils/errorMapper.js.map +1 -1
- package/dist/utils/errors.d.ts +1 -0
- package/dist/utils/errors.d.ts.map +1 -1
- package/dist/utils/errors.js +3 -0
- package/dist/utils/errors.js.map +1 -1
- package/dist/utils/migration.d.ts.map +1 -1
- package/dist/utils/migration.js +2 -1
- package/dist/utils/migration.js.map +1 -1
- package/dist/utils/paths.d.ts +4 -0
- package/dist/utils/paths.d.ts.map +1 -1
- package/dist/utils/paths.js +4 -0
- package/dist/utils/paths.js.map +1 -1
- package/dist/utils/prompts.d.ts +6 -0
- package/dist/utils/prompts.d.ts.map +1 -1
- package/dist/utils/prompts.js +11 -0
- package/dist/utils/prompts.js.map +1 -1
- package/dist/utils/{defaults.d.ts → providerConfig.d.ts} +1 -1
- package/dist/utils/providerConfig.d.ts.map +1 -0
- package/dist/utils/{defaults.js → providerConfig.js} +1 -1
- package/dist/utils/providerConfig.js.map +1 -0
- package/dist/utils/secureWrite.d.ts.map +1 -1
- package/dist/utils/secureWrite.js +2 -1
- package/dist/utils/secureWrite.js.map +1 -1
- package/dist/utils/version.d.ts +4 -0
- package/dist/utils/version.d.ts.map +1 -0
- package/dist/utils/version.js +22 -0
- package/dist/utils/version.js.map +1 -0
- package/dist/utils/yamlConfig.d.ts.map +1 -1
- package/dist/utils/yamlConfig.js +3 -2
- package/dist/utils/yamlConfig.js.map +1 -1
- package/package.json +3 -1
- package/dist/utils/defaults.d.ts.map +0 -1
- package/dist/utils/defaults.js.map +0 -1
|
@@ -2,9 +2,10 @@
|
|
|
2
2
|
* Accounts security check parser.
|
|
3
3
|
* Parses /etc/passwd, /etc/shadow, and home directory data into 15 security checks.
|
|
4
4
|
*/
|
|
5
|
+
import { CHECK_IDS } from "../checkIds.js";
|
|
5
6
|
const ACCOUNTS_CHECKS = [
|
|
6
7
|
{
|
|
7
|
-
id:
|
|
8
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_NO_EXTRA_UID0,
|
|
8
9
|
name: "No Extra UID 0 Accounts",
|
|
9
10
|
severity: "critical",
|
|
10
11
|
check: (output) => {
|
|
@@ -27,7 +28,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
27
28
|
explain: "Multiple accounts with UID 0 grant full root access, making privilege control and audit trails impossible.",
|
|
28
29
|
},
|
|
29
30
|
{
|
|
30
|
-
id:
|
|
31
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_NO_EMPTY_PASSWORD,
|
|
31
32
|
name: "No Empty Password Hashes",
|
|
32
33
|
severity: "critical",
|
|
33
34
|
check: (output) => {
|
|
@@ -46,7 +47,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
46
47
|
explain: "Accounts with empty password hashes allow login without any credentials, providing trivial unauthorized access.",
|
|
47
48
|
},
|
|
48
49
|
{
|
|
49
|
-
id:
|
|
50
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_NO_RHOSTS,
|
|
50
51
|
name: "No .rhosts Files",
|
|
51
52
|
severity: "critical",
|
|
52
53
|
check: (output) => {
|
|
@@ -62,7 +63,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
62
63
|
explain: "The .rhosts file allows remote login without password authentication, bypassing all security controls.",
|
|
63
64
|
},
|
|
64
65
|
{
|
|
65
|
-
id:
|
|
66
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_HOSTS_EQUIV,
|
|
66
67
|
name: "No /etc/hosts.equiv",
|
|
67
68
|
severity: "critical",
|
|
68
69
|
check: (output) => {
|
|
@@ -78,7 +79,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
78
79
|
explain: "The hosts.equiv file grants trust relationships between hosts, allowing passwordless remote access.",
|
|
79
80
|
},
|
|
80
81
|
{
|
|
81
|
-
id:
|
|
82
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_NO_NETRC,
|
|
82
83
|
name: "No .netrc Files",
|
|
83
84
|
severity: "warning",
|
|
84
85
|
check: (output) => {
|
|
@@ -94,7 +95,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
94
95
|
explain: "The .netrc file stores plaintext credentials for FTP and other services, risking credential exposure.",
|
|
95
96
|
},
|
|
96
97
|
{
|
|
97
|
-
id:
|
|
98
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_NO_FORWARD,
|
|
98
99
|
name: "No .forward Files",
|
|
99
100
|
severity: "warning",
|
|
100
101
|
check: (output) => {
|
|
@@ -110,7 +111,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
110
111
|
explain: "The .forward file can redirect mail to external addresses, potentially leaking sensitive information.",
|
|
111
112
|
},
|
|
112
113
|
{
|
|
113
|
-
id:
|
|
114
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_SYSTEM_SHELL,
|
|
114
115
|
name: "System Accounts No Interactive Shell",
|
|
115
116
|
severity: "warning",
|
|
116
117
|
check: (output) => {
|
|
@@ -131,7 +132,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
131
132
|
explain: "System accounts with interactive shells can be exploited if compromised, providing a login vector.",
|
|
132
133
|
},
|
|
133
134
|
{
|
|
134
|
-
id:
|
|
135
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_ROOT_HOME_PERMS,
|
|
135
136
|
name: "Root Home Directory Restricted",
|
|
136
137
|
severity: "warning",
|
|
137
138
|
check: (output) => {
|
|
@@ -153,7 +154,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
153
154
|
explain: "A world-readable root home directory may expose sensitive configuration files and credentials.",
|
|
154
155
|
},
|
|
155
156
|
{
|
|
156
|
-
id:
|
|
157
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_NO_DUPLICATE_UID,
|
|
157
158
|
name: "No Duplicate UIDs",
|
|
158
159
|
severity: "warning",
|
|
159
160
|
check: (output) => {
|
|
@@ -173,7 +174,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
173
174
|
explain: "Duplicate UIDs cause file ownership confusion, making it impossible to correctly attribute actions to users.",
|
|
174
175
|
},
|
|
175
176
|
{
|
|
176
|
-
id:
|
|
177
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_HOME_OWNERSHIP,
|
|
177
178
|
name: "Home Directory Ownership Correct",
|
|
178
179
|
severity: "info",
|
|
179
180
|
check: (output) => {
|
|
@@ -200,7 +201,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
200
201
|
explain: "Mismatched home directory ownership can allow other users to access private files and configurations.",
|
|
201
202
|
},
|
|
202
203
|
{
|
|
203
|
-
id:
|
|
204
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_SHADOW_PERMS,
|
|
204
205
|
name: "/etc/shadow Permissions Restricted",
|
|
205
206
|
severity: "warning",
|
|
206
207
|
check: (output) => {
|
|
@@ -220,7 +221,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
220
221
|
explain: "The /etc/shadow file contains password hashes and must be restricted to prevent offline password cracking.",
|
|
221
222
|
},
|
|
222
223
|
{
|
|
223
|
-
id:
|
|
224
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_MAX_PASSWORD_DAYS,
|
|
224
225
|
name: "Password Maximum Age Set",
|
|
225
226
|
severity: "warning",
|
|
226
227
|
check: (output) => {
|
|
@@ -240,7 +241,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
240
241
|
explain: "Password maximum age ensures credentials are rotated periodically, limiting the window of exposure for compromised passwords.",
|
|
241
242
|
},
|
|
242
243
|
{
|
|
243
|
-
id:
|
|
244
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_MIN_PASSWORD_DAYS,
|
|
244
245
|
name: "Password Minimum Age Set",
|
|
245
246
|
severity: "warning",
|
|
246
247
|
check: (output) => {
|
|
@@ -260,7 +261,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
260
261
|
explain: "Password minimum age prevents users from immediately changing back to an old password after a forced change.",
|
|
261
262
|
},
|
|
262
263
|
{
|
|
263
|
-
id:
|
|
264
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_INACTIVE_LOCK,
|
|
264
265
|
name: "Inactive Account Lockout Configured",
|
|
265
266
|
severity: "info",
|
|
266
267
|
check: (output) => {
|
|
@@ -279,7 +280,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
279
280
|
explain: "Automatically locking inactive accounts reduces the attack surface by disabling unused credentials.",
|
|
280
281
|
},
|
|
281
282
|
{
|
|
282
|
-
id:
|
|
283
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_DEFAULT_UMASK,
|
|
283
284
|
name: "Default umask Restrictive",
|
|
284
285
|
severity: "info",
|
|
285
286
|
check: (output) => {
|
|
@@ -299,7 +300,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
299
300
|
explain: "A restrictive default umask ensures newly created files are not world-readable, protecting sensitive data by default.",
|
|
300
301
|
},
|
|
301
302
|
{
|
|
302
|
-
id:
|
|
303
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_NO_EMPTY_HOME,
|
|
303
304
|
name: "No Users with Missing Home Directories",
|
|
304
305
|
severity: "warning",
|
|
305
306
|
check: (output) => {
|
|
@@ -333,7 +334,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
333
334
|
explain: "Users with valid login shells but missing home directories may indicate misconfigured or orphaned accounts.",
|
|
334
335
|
},
|
|
335
336
|
{
|
|
336
|
-
id:
|
|
337
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_INACTIVE_ACCOUNTS,
|
|
337
338
|
name: "No Excessive Inactive Accounts",
|
|
338
339
|
severity: "info",
|
|
339
340
|
check: (output) => {
|
|
@@ -361,7 +362,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
361
362
|
explain: "Dormant accounts with valid credentials are targets for brute force and credential reuse attacks.",
|
|
362
363
|
},
|
|
363
364
|
{
|
|
364
|
-
id:
|
|
365
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_TOTAL_USERS_REASONABLE,
|
|
365
366
|
name: "Total User Count Reasonable",
|
|
366
367
|
severity: "info",
|
|
367
368
|
check: (output) => {
|
|
@@ -396,7 +397,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
396
397
|
explain: "Excessive user accounts on a VPS indicate poor account hygiene and increase the attack surface.",
|
|
397
398
|
},
|
|
398
399
|
{
|
|
399
|
-
id:
|
|
400
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_NO_WORLD_WRITABLE_HOME,
|
|
400
401
|
name: "No World-Writable Home Directories",
|
|
401
402
|
severity: "warning",
|
|
402
403
|
check: (output) => {
|
|
@@ -424,7 +425,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
424
425
|
explain: "World-writable home directories allow any user to plant malicious files like .bashrc or .ssh/authorized_keys.",
|
|
425
426
|
},
|
|
426
427
|
{
|
|
427
|
-
id:
|
|
428
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_LOGIN_DEFS_UID_MAX,
|
|
428
429
|
name: "Login UID Ranges Configured",
|
|
429
430
|
severity: "info",
|
|
430
431
|
check: (output) => {
|
|
@@ -449,7 +450,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
449
450
|
explain: "Standard UID ranges prevent accidental overlap between system and user accounts, which can lead to privilege confusion.",
|
|
450
451
|
},
|
|
451
452
|
{
|
|
452
|
-
id:
|
|
453
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_LOGIN_SHELL_AUDIT,
|
|
453
454
|
name: "Limited Accounts with Login Shells",
|
|
454
455
|
severity: "warning",
|
|
455
456
|
check: (output) => {
|
|
@@ -483,7 +484,7 @@ const ACCOUNTS_CHECKS = [
|
|
|
483
484
|
explain: "Excessive accounts with login shells increase the attack surface for brute-force and credential stuffing attacks.",
|
|
484
485
|
},
|
|
485
486
|
{
|
|
486
|
-
id:
|
|
487
|
+
id: CHECK_IDS.ACCOUNTS.ACCT_GID_CONSISTENCY,
|
|
487
488
|
name: "No Duplicate Group IDs",
|
|
488
489
|
severity: "info",
|
|
489
490
|
check: (output) => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"accounts.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/accounts.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAgBH,MAAM,eAAe,GAAuB;IAC1C;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,UAAU;QACpB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC;YAClD,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;gBACnC,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC5B,OAAO,GAAG,KAAK,GAAG,CAAC;YACrB,CAAC,CAAC,CAAC;YACH,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC;YAC/D,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;gBAC3B,YAAY,EACV,MAAM,CAAC,MAAM,GAAG,CAAC;oBACf,CAAC,CAAC,gBAAgB,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBACjE,CAAC,CAAC,qBAAqB;aAC5B,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,qBAAqB;QACpC,UAAU,EACR,uGAAuG;QACzG,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,4GAA4G;KAC/G;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,UAAU;QACpB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yDAAyD;YACzD,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC;YACjD,OAAO;gBACL,MAAM,EAAE,OAAO,CAAC,MAAM,KAAK,CAAC;gBAC5B,YAAY,EACV,OAAO,CAAC,MAAM,GAAG,CAAC;oBAChB,CAAC,CAAC,mBAAmB,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBACrE,CAAC,CAAC,0BAA0B;aACjC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,kCAAkC;QACjD,UAAU,EAAE,2DAA2D;QACvE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,iHAAiH;KACpH;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,kBAAkB;QACxB,QAAQ,EAAE,UAAU;QACpB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,SAAS,GAAG,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACpG,OAAO;gBACL,MAAM,EAAE,CAAC,SAAS;gBAClB,YAAY,EAAE,SAAS,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,kBAAkB;aACpE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,0BAA0B;QACzC,UAAU,EAAE,0CAA0C;QACtD,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,wGAAwG;KAC3G;IACD;QACE,EAAE,EAAE,kBAAkB;QACtB,IAAI,EAAE,qBAAqB;QAC3B,QAAQ,EAAE,UAAU;QACpB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,aAAa,GACjB,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACxF,OAAO;gBACL,MAAM,EAAE,CAAC,aAAa;gBACtB,YAAY,EAAE,aAAa,CAAC,CAAC,CAAC,wBAAwB,CAAC,CAAC,CAAC,qBAAqB;aAC/E,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,0BAA0B;QACzC,UAAU,EAAE,wBAAwB;QACpC,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,qGAAqG;KACxG;IACD;QACE,EAAE,EAAE,eAAe;QACnB,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,QAAQ,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAClG,OAAO;gBACL,MAAM,EAAE,CAAC,QAAQ;gBACjB,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,iBAAiB;aACjE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,yBAAyB;QACxC,UAAU,EAAE,yCAAyC;QACrD,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,uGAAuG;KAC1G;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,UAAU,GACd,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACrF,OAAO;gBACL,MAAM,EAAE,CAAC,UAAU;gBACnB,YAAY,EAAE,UAAU,CAAC,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,mBAAmB;aACvE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,2BAA2B;QAC1C,UAAU,EAAE,2CAA2C;QACvD,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,uGAAuG;KAC1G;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,sCAAsC;QAC5C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yDAAyD;YACzD,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAC/B,2DAA2D,CAC5D,IAAI,EAAE,CAAC;YACR,mCAAmC;YACnC,MAAM,OAAO,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC;YACnE,OAAO;gBACL,MAAM,EAAE,OAAO,CAAC,MAAM,KAAK,CAAC;gBAC5B,YAAY,EACV,OAAO,CAAC,MAAM,GAAG,CAAC;oBAChB,CAAC,CAAC,gCAAgC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBAClF,CAAC,CAAC,+CAA+C;aACtD,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,qDAAqD;QACpE,UAAU,EACR,iFAAiF;QACnF,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,oGAAoG;KACvG;IACD;QACE,EAAE,EAAE,sBAAsB;QAC1B,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,4BAA4B;YAC5B,MAAM,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC,2BAA2B,CAAC,CAAC;YAC5D,IAAI,CAAC,SAAS;gBAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,kCAAkC,EAAE,CAAC;YAC3F,MAAM,KAAK,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;YAC3B,MAAM,UAAU,GAAG,QAAQ,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACjD,MAAM,MAAM,GAAG,UAAU,KAAK,CAAC,CAAC;YAChC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM,CAAC,CAAC,CAAC,sBAAsB,KAAK,EAAE,CAAC,CAAC,CAAC,sBAAsB,KAAK,sBAAsB;aACzG,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,mDAAmD;QAClE,UAAU,EAAE,iBAAiB;QAC7B,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,gGAAgG;KACnG;IACD;QACE,EAAE,EAAE,uBAAuB;QAC3B,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,sDAAsD;YACtD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC;YAClD,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,MAAM,CAAC,CAAC;YACvE,OAAO;gBACL,MAAM,EAAE,SAAS,CAAC,MAAM,KAAK,CAAC;gBAC9B,YAAY,EACV,SAAS,CAAC,MAAM,GAAG,CAAC;oBAClB,CAAC,CAAC,mBAAmB,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBAC3C,CAAC,CAAC,yBAAyB;aAChC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,kCAAkC;QACjD,UAAU,EAAE,qFAAqF;QACjG,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,8GAA8G;KACjH;IACD;QACE,EAAE,EAAE,qBAAqB;QACzB,IAAI,EAAE,kCAAkC;QACxC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,sCAAsC;YACtC,MAAM,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC,oBAAoB,CAAC,IAAI,EAAE,CAAC;YAC3D,MAAM,UAAU,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;gBAC3C,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;gBACvC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;oBAAE,OAAO,KAAK,CAAC;gBACnC,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC;gBAChD,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;gBACvB,OAAO,OAAO,KAAK,KAAK,CAAC;YAC3B,CAAC,CAAC,CAAC;YACH,OAAO;gBACL,MAAM,EAAE,UAAU,CAAC,MAAM,KAAK,CAAC;gBAC/B,YAAY,EACV,UAAU,CAAC,MAAM,GAAG,CAAC;oBACnB,CAAC,CAAC,eAAe,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBACxC,CAAC,CAAC,sCAAsC;aAC7C,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,0CAA0C;QACzD,UAAU,EAAE,yEAAyE;QACrF,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,uGAAuG;KAC1G;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,iFAAiF;YACjF,4FAA4F;YAC5F,MAAM,aAAa,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;YACpF,OAAO;gBACL,MAAM,EAAE,aAAa;gBACrB,YAAY,EAAE,aAAa;oBACzB,CAAC,CAAC,mCAAmC;oBACrC,CAAC,CAAC,mCAAmC;aACxC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,8DAA8D;QAC7E,UAAU,EAAE,wDAAwD;QACpE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,4GAA4G;KAC/G;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;YACpD,IAAI,CAAC,KAAK;gBAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,8BAA8B,EAAE,CAAC;YACnF,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACpC,MAAM,MAAM,GAAG,IAAI,IAAI,GAAG,IAAI,IAAI,GAAG,CAAC,CAAC;YACvC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,mBAAmB,IAAI,EAAE;aACxC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,sBAAsB;QACrC,UAAU,EACR,gEAAgE;QAClE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,+HAA+H;KAClI;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;YACpD,IAAI,CAAC,KAAK;gBAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,8BAA8B,EAAE,CAAC;YACnF,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACpC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,CAAC;YACxB,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,mBAAmB,IAAI,EAAE;aACxC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,mBAAmB;QAClC,UAAU,EACR,8DAA8D;QAChE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,8GAA8G;KACjH;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yDAAyD;YACzD,MAAM,WAAW,GAAG,qBAAqB,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC3F,OAAO;gBACL,MAAM,EAAE,WAAW;gBACnB,YAAY,EAAE,WAAW;oBACvB,CAAC,CAAC,6BAA6B;oBAC/B,CAAC,CAAC,oCAAoC;aACzC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,4CAA4C;QAC3D,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,qGAAqG;KACxG;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;YAC5C,IAAI,CAAC,KAAK;gBAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,oCAAoC,EAAE,CAAC;YACzF,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACvB,MAAM,MAAM,GAAG,KAAK,KAAK,KAAK,IAAI,KAAK,KAAK,KAAK,CAAC;YAClD,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,WAAW,KAAK,EAAE;aACjC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,kBAAkB;QACjC,UAAU,EAAE,gDAAgD;QAC5D,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,uHAAuH;KAC1H;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,wCAAwC;QAC9C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,6CAA6C;YAC7C,6DAA6D;YAC7D,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,IAAI,EAAE,CAAC;YAC/D,MAAM,WAAW,GAAG,CAAC,WAAW,EAAE,SAAS,EAAE,UAAU,EAAE,UAAU,EAAE,WAAW,CAAC,CAAC;YAClF,MAAM,UAAU,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;gBAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;gBAC9B,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;oBAAE,OAAO,KAAK,CAAC;gBACnC,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;gBAC9B,OAAO,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC;YAC9C,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;gBACjB,sDAAsD;gBACtD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;gBAChC,OAAO,IAAI,KAAK,MAAM,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;YAClD,CAAC,CAAC,CAAC;YACH,kFAAkF;YAClF,yCAAyC;YACzC,OAAO;gBACL,MAAM,EAAE,UAAU,CAAC,MAAM,KAAK,CAAC,IAAI,UAAU,CAAC,MAAM,GAAG,EAAE;gBACzD,YAAY,EAAE,UAAU,CAAC,MAAM,GAAG,CAAC;oBACjC,CAAC,CAAC,GAAG,UAAU,CAAC,MAAM,kCAAkC;oBACxD,CAAC,CAAC,oDAAoD;aACzD,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,yDAAyD;QACxE,UAAU,EAAE,+IAA+I;QAC3J,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,6GAA6G;KAChH;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,8FAA8F;YAC9F,6EAA6E;YAC7E,IAAI,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC3B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,sCAAsC,EAAE,CAAC;YAChF,CAAC;YACD,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;gBACnD,MAAM,OAAO,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;gBACzB,OAAO,OAAO,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;YAC7F,CAAC,CAAC,CAAC;YACH,MAAM,aAAa,GAAG,YAAY,CAAC,MAAM,CAAC;YAC1C,MAAM,MAAM,GAAG,aAAa,GAAG,CAAC,CAAC;YACjC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,GAAG,aAAa,gDAAgD;oBAClE,CAAC,CAAC,GAAG,aAAa,kDAAkD;aACvE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,6CAA6C;QAC5D,UAAU,EAAE,uGAAuG;QACnH,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,mGAAmG;KACtG;IACD;QACE,EAAE,EAAE,6BAA6B;QACjC,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,uDAAuD;YACvD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACjC,IAAI,SAAS,GAAkB,IAAI,CAAC;YACpC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,mDAAmD;gBACnD,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;oBAClC,IAAI,GAAG,GAAG,CAAC,EAAE,CAAC;wBACZ,SAAS,GAAG,GAAG,CAAC;wBAChB,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;YACD,IAAI,SAAS,KAAK,IAAI,EAAE,CAAC;gBACvB,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,6BAA6B,EAAE,CAAC;YACxE,CAAC;YACD,MAAM,MAAM,GAAG,SAAS,GAAG,EAAE,CAAC;YAC9B,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,GAAG,SAAS,6BAA6B;oBAC3C,CAAC,CAAC,GAAG,SAAS,sCAAsC;aACvD,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,sCAAsC;QACrD,UAAU,EAAE,wFAAwF;QACpG,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,iGAAiG;KACpG;IACD;QACE,EAAE,EAAE,6BAA6B;QACjC,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,8DAA8D;YAC9D,iEAAiE;YACjE,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,yBAAyB,CAAC,IAAI,EAAE,CAAC;YACnE,MAAM,aAAa,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;gBACjD,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC1C,IAAI,CAAC,KAAK;oBAAE,OAAO,KAAK,CAAC;gBACzB,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACxD,uDAAuD;gBACvD,OAAO,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;YAC1C,CAAC,CAAC,CAAC;YACH,OAAO;gBACL,MAAM,EAAE,aAAa,CAAC,MAAM,KAAK,CAAC;gBAClC,YAAY,EAAE,aAAa,CAAC,MAAM,GAAG,CAAC;oBACpC,CAAC,CAAC,GAAG,aAAa,CAAC,MAAM,0CAA0C;oBACnE,CAAC,CAAC,oCAAoC;aACzC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,iDAAiD;QAChE,UAAU,EAAE,8EAA8E;QAC1F,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,+GAA+G;KAClH;IACD;QACE,EAAE,EAAE,yBAAyB;QAC7B,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;YACpD,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;YACpD,IAAI,CAAC,WAAW,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,4CAA4C,EAAE,CAAC;YACvF,CAAC;YACD,MAAM,MAAM,GAAG,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC5C,MAAM,MAAM,GAAG,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC5C,MAAM,MAAM,GAAG,MAAM,IAAI,IAAI,IAAI,MAAM,IAAI,KAAK,CAAC;YACjD,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,WAAW,MAAM,aAAa,MAAM,oBAAoB;oBAC1D,CAAC,CAAC,WAAW,MAAM,aAAa,MAAM,wBAAwB;aACjE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,yDAAyD;QACxE,UAAU,EAAE,0DAA0D;QACtE,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,yHAAyH;KAC5H;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,gEAAgE;YAChE,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACjC,IAAI,UAAU,GAAkB,IAAI,CAAC;YACrC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;oBAClC,gCAAgC;oBAChC,IAAI,GAAG,IAAI,CAAC,IAAI,GAAG,GAAG,GAAG,EAAE,CAAC;wBAC1B,UAAU,GAAG,GAAG,CAAC;oBACnB,CAAC;gBACH,CAAC;YACH,CAAC;YACD,IAAI,UAAU,KAAK,IAAI,EAAE,CAAC;gBACxB,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,oCAAoC,EAAE,CAAC;YAC/E,CAAC;YACD,MAAM,MAAM,GAAG,UAAU,IAAI,EAAE,CAAC;YAChC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,GAAG,UAAU,0CAA0C;oBACzD,CAAC,CAAC,GAAG,UAAU,kDAAkD;aACpE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,oDAAoD;QACnE,UAAU,EAAE,+HAA+H;QAC3I,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,mHAAmH;KACtH;IACD;QACE,EAAE,EAAE,sBAAsB;QAC1B,IAAI,EAAE,wBAAwB;QAC9B,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yDAAyD;YACzD,MAAM,MAAM,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACtC,IAAI,MAAM,EAAE,CAAC;gBACX,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,yBAAyB,EAAE,CAAC;YACnE,CAAC;YACD,gEAAgE;YAChE,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;gBAClD,MAAM,OAAO,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;gBACzB,wCAAwC;gBACxC,OAAO,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC/B,CAAC,CAAC,CAAC;YACH,MAAM,MAAM,GAAG,WAAW,CAAC,MAAM,KAAK,CAAC,CAAC;YACxC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,yBAAyB;oBAC3B,CAAC,CAAC,yBAAyB,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;aAClE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,iCAAiC;QAChD,UAAU,EAAE,4EAA4E;QACxF,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,kHAAkH;KACrH;CACF,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAgB,CAC9C,aAAqB,EACrB,SAAiB,EACH,EAAE;IAChB,MAAM,IAAI,GACR,CAAC,aAAa;QACd,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK;QAC9B,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IAC9B,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC;IAEzC,OAAO,eAAe,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;QACjC,IAAI,IAAI,EAAE,CAAC;YACT,OAAO;gBACL,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,QAAQ,EAAE,UAAU;gBACpB,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;gBACtB,MAAM,EAAE,KAAK;gBACb,YAAY,EAAE,qBAAqB;gBACnC,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,UAAU,EAAE,GAAG,CAAC,UAAU;gBAE1B,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,OAAO,EAAE,GAAG,CAAC,OAAO;aACrB,CAAC;QACJ,CAAC;QACD,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QACnD,OAAO;YACL,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,QAAQ,EAAE,UAAU;YACpB,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;YACtB,MAAM;YACN,YAAY;YACZ,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,UAAU,EAAE,GAAG,CAAC,UAAU;YAE1B,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,OAAO,EAAE,GAAG,CAAC,OAAO;SACrB,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"accounts.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/accounts.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,EAAC,SAAS,EAAC,MAAM,gBAAgB,CAAC;AAazC,MAAM,eAAe,GAAuB;IAC1C;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,kBAAkB;QACzC,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,UAAU;QACpB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC;YAClD,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;gBACnC,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC5B,OAAO,GAAG,KAAK,GAAG,CAAC;YACrB,CAAC,CAAC,CAAC;YACH,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC;YAC/D,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;gBAC3B,YAAY,EACV,MAAM,CAAC,MAAM,GAAG,CAAC;oBACf,CAAC,CAAC,gBAAgB,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBACjE,CAAC,CAAC,qBAAqB;aAC5B,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,qBAAqB;QACpC,UAAU,EACR,uGAAuG;QACzG,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,4GAA4G;KAC/G;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,sBAAsB;QAC7C,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,UAAU;QACpB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yDAAyD;YACzD,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC;YACjD,OAAO;gBACL,MAAM,EAAE,OAAO,CAAC,MAAM,KAAK,CAAC;gBAC5B,YAAY,EACV,OAAO,CAAC,MAAM,GAAG,CAAC;oBAChB,CAAC,CAAC,mBAAmB,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBACrE,CAAC,CAAC,0BAA0B;aACjC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,kCAAkC;QACjD,UAAU,EAAE,2DAA2D;QACvE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,iHAAiH;KACpH;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,cAAc;QACrC,IAAI,EAAE,kBAAkB;QACxB,QAAQ,EAAE,UAAU;QACpB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,SAAS,GAAG,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACpG,OAAO;gBACL,MAAM,EAAE,CAAC,SAAS;gBAClB,YAAY,EAAE,SAAS,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,kBAAkB;aACpE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,0BAA0B;QACzC,UAAU,EAAE,0CAA0C;QACtD,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,wGAAwG;KAC3G;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,gBAAgB;QACvC,IAAI,EAAE,qBAAqB;QAC3B,QAAQ,EAAE,UAAU;QACpB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,aAAa,GACjB,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACxF,OAAO;gBACL,MAAM,EAAE,CAAC,aAAa;gBACtB,YAAY,EAAE,aAAa,CAAC,CAAC,CAAC,wBAAwB,CAAC,CAAC,CAAC,qBAAqB;aAC/E,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,0BAA0B;QACzC,UAAU,EAAE,wBAAwB;QACpC,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,qGAAqG;KACxG;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,aAAa;QACpC,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,QAAQ,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAClG,OAAO;gBACL,MAAM,EAAE,CAAC,QAAQ;gBACjB,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,iBAAiB;aACjE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,yBAAyB;QACxC,UAAU,EAAE,yCAAyC;QACrD,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,uGAAuG;KAC1G;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,eAAe;QACtC,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,UAAU,GACd,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACrF,OAAO;gBACL,MAAM,EAAE,CAAC,UAAU;gBACnB,YAAY,EAAE,UAAU,CAAC,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,mBAAmB;aACvE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,2BAA2B;QAC1C,UAAU,EAAE,2CAA2C;QACvD,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,uGAAuG;KAC1G;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,iBAAiB;QACxC,IAAI,EAAE,sCAAsC;QAC5C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yDAAyD;YACzD,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAC/B,2DAA2D,CAC5D,IAAI,EAAE,CAAC;YACR,mCAAmC;YACnC,MAAM,OAAO,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC;YACnE,OAAO;gBACL,MAAM,EAAE,OAAO,CAAC,MAAM,KAAK,CAAC;gBAC5B,YAAY,EACV,OAAO,CAAC,MAAM,GAAG,CAAC;oBAChB,CAAC,CAAC,gCAAgC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBAClF,CAAC,CAAC,+CAA+C;aACtD,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,qDAAqD;QACpE,UAAU,EACR,iFAAiF;QACnF,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,oGAAoG;KACvG;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,oBAAoB;QAC3C,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,4BAA4B;YAC5B,MAAM,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC,2BAA2B,CAAC,CAAC;YAC5D,IAAI,CAAC,SAAS;gBAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,kCAAkC,EAAE,CAAC;YAC3F,MAAM,KAAK,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;YAC3B,MAAM,UAAU,GAAG,QAAQ,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACjD,MAAM,MAAM,GAAG,UAAU,KAAK,CAAC,CAAC;YAChC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM,CAAC,CAAC,CAAC,sBAAsB,KAAK,EAAE,CAAC,CAAC,CAAC,sBAAsB,KAAK,sBAAsB;aACzG,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,mDAAmD;QAClE,UAAU,EAAE,iBAAiB;QAC7B,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,gGAAgG;KACnG;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,qBAAqB;QAC5C,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,sDAAsD;YACtD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC;YAClD,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,MAAM,CAAC,CAAC;YACvE,OAAO;gBACL,MAAM,EAAE,SAAS,CAAC,MAAM,KAAK,CAAC;gBAC9B,YAAY,EACV,SAAS,CAAC,MAAM,GAAG,CAAC;oBAClB,CAAC,CAAC,mBAAmB,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBAC3C,CAAC,CAAC,yBAAyB;aAChC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,kCAAkC;QACjD,UAAU,EAAE,qFAAqF;QACjG,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,8GAA8G;KACjH;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,mBAAmB;QAC1C,IAAI,EAAE,kCAAkC;QACxC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,sCAAsC;YACtC,MAAM,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC,oBAAoB,CAAC,IAAI,EAAE,CAAC;YAC3D,MAAM,UAAU,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;gBAC3C,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;gBACvC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;oBAAE,OAAO,KAAK,CAAC;gBACnC,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC;gBAChD,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;gBACvB,OAAO,OAAO,KAAK,KAAK,CAAC;YAC3B,CAAC,CAAC,CAAC;YACH,OAAO;gBACL,MAAM,EAAE,UAAU,CAAC,MAAM,KAAK,CAAC;gBAC/B,YAAY,EACV,UAAU,CAAC,MAAM,GAAG,CAAC;oBACnB,CAAC,CAAC,eAAe,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBACxC,CAAC,CAAC,sCAAsC;aAC7C,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,0CAA0C;QACzD,UAAU,EAAE,yEAAyE;QACrF,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,uGAAuG;KAC1G;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,iBAAiB;QACxC,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,iFAAiF;YACjF,4FAA4F;YAC5F,MAAM,aAAa,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;YACpF,OAAO;gBACL,MAAM,EAAE,aAAa;gBACrB,YAAY,EAAE,aAAa;oBACzB,CAAC,CAAC,mCAAmC;oBACrC,CAAC,CAAC,mCAAmC;aACxC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,8DAA8D;QAC7E,UAAU,EAAE,wDAAwD;QACpE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,4GAA4G;KAC/G;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,sBAAsB;QAC7C,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;YACpD,IAAI,CAAC,KAAK;gBAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,8BAA8B,EAAE,CAAC;YACnF,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACpC,MAAM,MAAM,GAAG,IAAI,IAAI,GAAG,IAAI,IAAI,GAAG,CAAC,CAAC;YACvC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,mBAAmB,IAAI,EAAE;aACxC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,sBAAsB;QACrC,UAAU,EACR,gEAAgE;QAClE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,+HAA+H;KAClI;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,sBAAsB;QAC7C,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;YACpD,IAAI,CAAC,KAAK;gBAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,8BAA8B,EAAE,CAAC;YACnF,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACpC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,CAAC;YACxB,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,mBAAmB,IAAI,EAAE;aACxC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,mBAAmB;QAClC,UAAU,EACR,8DAA8D;QAChE,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,8GAA8G;KACjH;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,kBAAkB;QACzC,IAAI,EAAE,qCAAqC;QAC3C,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yDAAyD;YACzD,MAAM,WAAW,GAAG,qBAAqB,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC3F,OAAO;gBACL,MAAM,EAAE,WAAW;gBACnB,YAAY,EAAE,WAAW;oBACvB,CAAC,CAAC,6BAA6B;oBAC/B,CAAC,CAAC,oCAAoC;aACzC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,4CAA4C;QAC3D,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,qGAAqG;KACxG;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,kBAAkB;QACzC,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;YAC5C,IAAI,CAAC,KAAK;gBAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,oCAAoC,EAAE,CAAC;YACzF,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACvB,MAAM,MAAM,GAAG,KAAK,KAAK,KAAK,IAAI,KAAK,KAAK,KAAK,CAAC;YAClD,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,WAAW,KAAK,EAAE;aACjC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,kBAAkB;QACjC,UAAU,EAAE,gDAAgD;QAC5D,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,uHAAuH;KAC1H;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,kBAAkB;QACzC,IAAI,EAAE,wCAAwC;QAC9C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,6CAA6C;YAC7C,6DAA6D;YAC7D,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,sBAAsB,CAAC,IAAI,EAAE,CAAC;YAC/D,MAAM,WAAW,GAAG,CAAC,WAAW,EAAE,SAAS,EAAE,UAAU,EAAE,UAAU,EAAE,WAAW,CAAC,CAAC;YAClF,MAAM,UAAU,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;gBAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;gBAC9B,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;oBAAE,OAAO,KAAK,CAAC;gBACnC,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;gBAC9B,OAAO,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC;YAC9C,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;gBACjB,sDAAsD;gBACtD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;gBAChC,OAAO,IAAI,KAAK,MAAM,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;YAClD,CAAC,CAAC,CAAC;YACH,kFAAkF;YAClF,yCAAyC;YACzC,OAAO;gBACL,MAAM,EAAE,UAAU,CAAC,MAAM,KAAK,CAAC,IAAI,UAAU,CAAC,MAAM,GAAG,EAAE;gBACzD,YAAY,EAAE,UAAU,CAAC,MAAM,GAAG,CAAC;oBACjC,CAAC,CAAC,GAAG,UAAU,CAAC,MAAM,kCAAkC;oBACxD,CAAC,CAAC,oDAAoD;aACzD,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,yDAAyD;QACxE,UAAU,EAAE,+IAA+I;QAC3J,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,6GAA6G;KAChH;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,sBAAsB;QAC7C,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,8FAA8F;YAC9F,6EAA6E;YAC7E,IAAI,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC3B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,sCAAsC,EAAE,CAAC;YAChF,CAAC;YACD,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;gBACnD,MAAM,OAAO,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;gBACzB,OAAO,OAAO,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;YAC7F,CAAC,CAAC,CAAC;YACH,MAAM,aAAa,GAAG,YAAY,CAAC,MAAM,CAAC;YAC1C,MAAM,MAAM,GAAG,aAAa,GAAG,CAAC,CAAC;YACjC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,GAAG,aAAa,gDAAgD;oBAClE,CAAC,CAAC,GAAG,aAAa,kDAAkD;aACvE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,6CAA6C;QAC5D,UAAU,EAAE,uGAAuG;QACnH,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,mGAAmG;KACtG;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,2BAA2B;QAClD,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,uDAAuD;YACvD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACjC,IAAI,SAAS,GAAkB,IAAI,CAAC;YACpC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,mDAAmD;gBACnD,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;oBAClC,IAAI,GAAG,GAAG,CAAC,EAAE,CAAC;wBACZ,SAAS,GAAG,GAAG,CAAC;wBAChB,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;YACD,IAAI,SAAS,KAAK,IAAI,EAAE,CAAC;gBACvB,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,6BAA6B,EAAE,CAAC;YACxE,CAAC;YACD,MAAM,MAAM,GAAG,SAAS,GAAG,EAAE,CAAC;YAC9B,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,GAAG,SAAS,6BAA6B;oBAC3C,CAAC,CAAC,GAAG,SAAS,sCAAsC;aACvD,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,sCAAsC;QACrD,UAAU,EAAE,wFAAwF;QACpG,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,iGAAiG;KACpG;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,2BAA2B;QAClD,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,8DAA8D;YAC9D,iEAAiE;YACjE,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,yBAAyB,CAAC,IAAI,EAAE,CAAC;YACnE,MAAM,aAAa,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;gBACjD,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC1C,IAAI,CAAC,KAAK;oBAAE,OAAO,KAAK,CAAC;gBACzB,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACxD,uDAAuD;gBACvD,OAAO,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;YAC1C,CAAC,CAAC,CAAC;YACH,OAAO;gBACL,MAAM,EAAE,aAAa,CAAC,MAAM,KAAK,CAAC;gBAClC,YAAY,EAAE,aAAa,CAAC,MAAM,GAAG,CAAC;oBACpC,CAAC,CAAC,GAAG,aAAa,CAAC,MAAM,0CAA0C;oBACnE,CAAC,CAAC,oCAAoC;aACzC,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,iDAAiD;QAChE,UAAU,EAAE,8EAA8E;QAC1F,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,+GAA+G;KAClH;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,uBAAuB;QAC9C,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;YACpD,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;YACpD,IAAI,CAAC,WAAW,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,4CAA4C,EAAE,CAAC;YACvF,CAAC;YACD,MAAM,MAAM,GAAG,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC5C,MAAM,MAAM,GAAG,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC5C,MAAM,MAAM,GAAG,MAAM,IAAI,IAAI,IAAI,MAAM,IAAI,KAAK,CAAC;YACjD,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,WAAW,MAAM,aAAa,MAAM,oBAAoB;oBAC1D,CAAC,CAAC,WAAW,MAAM,aAAa,MAAM,wBAAwB;aACjE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,yDAAyD;QACxE,UAAU,EAAE,0DAA0D;QACtE,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,yHAAyH;KAC5H;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,sBAAsB;QAC7C,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,gEAAgE;YAChE,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACjC,IAAI,UAAU,GAAkB,IAAI,CAAC;YACrC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;oBAClC,gCAAgC;oBAChC,IAAI,GAAG,IAAI,CAAC,IAAI,GAAG,GAAG,GAAG,EAAE,CAAC;wBAC1B,UAAU,GAAG,GAAG,CAAC;oBACnB,CAAC;gBACH,CAAC;YACH,CAAC;YACD,IAAI,UAAU,KAAK,IAAI,EAAE,CAAC;gBACxB,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,oCAAoC,EAAE,CAAC;YAC/E,CAAC;YACD,MAAM,MAAM,GAAG,UAAU,IAAI,EAAE,CAAC;YAChC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,GAAG,UAAU,0CAA0C;oBACzD,CAAC,CAAC,GAAG,UAAU,kDAAkD;aACpE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,oDAAoD;QACnE,UAAU,EAAE,+HAA+H;QAC3I,aAAa,EAAE,SAAS;QACxB,OAAO,EACL,mHAAmH;KACtH;IACD;QACE,EAAE,EAAE,SAAS,CAAC,QAAQ,CAAC,oBAAoB;QAC3C,IAAI,EAAE,wBAAwB;QAC9B,QAAQ,EAAE,MAAM;QAChB,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;YAChB,yDAAyD;YACzD,MAAM,MAAM,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACtC,IAAI,MAAM,EAAE,CAAC;gBACX,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,yBAAyB,EAAE,CAAC;YACnE,CAAC;YACD,gEAAgE;YAChE,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;gBAClD,MAAM,OAAO,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;gBACzB,wCAAwC;gBACxC,OAAO,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC/B,CAAC,CAAC,CAAC;YACH,MAAM,MAAM,GAAG,WAAW,CAAC,MAAM,KAAK,CAAC,CAAC;YACxC,OAAO;gBACL,MAAM;gBACN,YAAY,EAAE,MAAM;oBAClB,CAAC,CAAC,yBAAyB;oBAC3B,CAAC,CAAC,yBAAyB,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;aAClE,CAAC;QACJ,CAAC;QACD,aAAa,EAAE,iCAAiC;QAChD,UAAU,EAAE,4EAA4E;QACxF,aAAa,EAAE,MAAM;QACrB,OAAO,EACL,kHAAkH;KACrH;CACF,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAgB,CAC9C,aAAqB,EACrB,SAAiB,EACH,EAAE;IAChB,MAAM,IAAI,GACR,CAAC,aAAa;QACd,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK;QAC9B,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IAC9B,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC;IAEzC,OAAO,eAAe,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;QACjC,IAAI,IAAI,EAAE,CAAC;YACT,OAAO;gBACL,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,QAAQ,EAAE,UAAU;gBACpB,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;gBACtB,MAAM,EAAE,KAAK;gBACb,YAAY,EAAE,qBAAqB;gBACnC,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,UAAU,EAAE,GAAG,CAAC,UAAU;gBAC1B,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,OAAO,EAAE,GAAG,CAAC,OAAO;aACrB,CAAC;QACJ,CAAC;QACD,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QACnD,OAAO;YACL,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,QAAQ,EAAE,UAAU;YACpB,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;YACtB,MAAM;YACN,YAAY;YACZ,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,UAAU,EAAE,GAAG,CAAC,UAAU;YAC1B,aAAa,EAAE,GAAG,CAAC,aAAa;YAChC,OAAO,EAAE,GAAG,CAAC,OAAO;SACrB,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/auth.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAc,WAAW,EAAE,MAAM,aAAa,CAAC;
|
|
1
|
+
{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/auth.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAc,WAAW,EAAE,MAAM,aAAa,CAAC;AAG3D,eAAO,MAAM,eAAe,EAAE,WA8d7B,CAAC"}
|
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
* Authentication & Authorization check parser.
|
|
3
3
|
* Parses sudoers/passwd/shadow output into 5 security checks with semantic IDs.
|
|
4
4
|
*/
|
|
5
|
+
import { CHECK_IDS } from "../checkIds.js";
|
|
5
6
|
export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
6
7
|
const isNA = !sectionOutput || sectionOutput.trim() === "N/A" || sectionOutput.trim() === "";
|
|
7
8
|
const output = isNA ? "" : sectionOutput;
|
|
@@ -13,7 +14,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
13
14
|
// AUTH-NO-NOPASSWD-ALL: No NOPASSWD: ALL in sudoers
|
|
14
15
|
const hasNopasswdAll = /NOPASSWD:\s*ALL/i.test(output);
|
|
15
16
|
const auth01 = {
|
|
16
|
-
id:
|
|
17
|
+
id: CHECK_IDS.AUTH.AUTH_NO_NOPASSWD_ALL,
|
|
17
18
|
category: "Auth",
|
|
18
19
|
name: "No Passwordless Sudo (ALL)",
|
|
19
20
|
severity: "critical",
|
|
@@ -32,7 +33,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
32
33
|
const passMaxMatch = output.match(/PASS_MAX_DAYS\s+(\d+)/);
|
|
33
34
|
const passMaxDays = passMaxMatch ? parseInt(passMaxMatch[1], 10) : null;
|
|
34
35
|
const auth02 = {
|
|
35
|
-
id:
|
|
36
|
+
id: CHECK_IDS.AUTH.AUTH_PASSWORD_AGING,
|
|
36
37
|
category: "Auth",
|
|
37
38
|
name: "Password Aging Policy",
|
|
38
39
|
severity: "info",
|
|
@@ -69,7 +70,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
69
70
|
}
|
|
70
71
|
}
|
|
71
72
|
const auth03 = {
|
|
72
|
-
id:
|
|
73
|
+
id: CHECK_IDS.AUTH.AUTH_NO_EMPTY_PASSWORDS,
|
|
73
74
|
category: "Auth",
|
|
74
75
|
name: "No Empty Password Accounts",
|
|
75
76
|
severity: "critical",
|
|
@@ -89,7 +90,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
89
90
|
// Check for PermitRootLogin in SSH context or root password status
|
|
90
91
|
const rootDirectLogin = /^root$/m.test(output) && !output.includes("prohibit-password");
|
|
91
92
|
const auth04 = {
|
|
92
|
-
id:
|
|
93
|
+
id: CHECK_IDS.AUTH.AUTH_ROOT_LOGIN_RESTRICTED,
|
|
93
94
|
category: "Auth",
|
|
94
95
|
name: "Root Direct Login Restricted",
|
|
95
96
|
severity: "warning",
|
|
@@ -107,7 +108,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
107
108
|
// AUTH-PWD-QUALITY: PAM config has password quality module
|
|
108
109
|
const hasPwQuality = /pam_pwquality/i.test(output) || /pam_cracklib/i.test(output);
|
|
109
110
|
const auth05 = {
|
|
110
|
-
id:
|
|
111
|
+
id: CHECK_IDS.AUTH.AUTH_PWD_QUALITY,
|
|
111
112
|
category: "Auth",
|
|
112
113
|
name: "Password Quality Module",
|
|
113
114
|
severity: "info",
|
|
@@ -126,7 +127,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
126
127
|
// AUTH-FAILLOCK-CONFIGURED: pam_faillock or pam_tally2 configured
|
|
127
128
|
const hasFaillock = /pam_faillock|pam_tally2/i.test(output);
|
|
128
129
|
const auth06 = {
|
|
129
|
-
id:
|
|
130
|
+
id: CHECK_IDS.AUTH.AUTH_FAILLOCK_CONFIGURED,
|
|
130
131
|
category: "Auth",
|
|
131
132
|
name: "Account Lockout Configured",
|
|
132
133
|
severity: "warning",
|
|
@@ -146,7 +147,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
146
147
|
const shadowPerms = shadowStatMatch ? shadowStatMatch[1] : null;
|
|
147
148
|
const shadowSecure = shadowPerms !== null && ["000", "600", "640"].includes(shadowPerms);
|
|
148
149
|
const auth07 = {
|
|
149
|
-
id:
|
|
150
|
+
id: CHECK_IDS.AUTH.AUTH_SHADOW_PERMISSIONS,
|
|
150
151
|
category: "Auth",
|
|
151
152
|
name: "/etc/shadow Permissions",
|
|
152
153
|
severity: "critical",
|
|
@@ -164,7 +165,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
164
165
|
// AUTH-SUDO-LOG: sudo logging configured
|
|
165
166
|
const hasSudoLog = /log_output|syslog/i.test(output);
|
|
166
167
|
const auth08 = {
|
|
167
|
-
id:
|
|
168
|
+
id: CHECK_IDS.AUTH.AUTH_SUDO_LOG,
|
|
168
169
|
category: "Auth",
|
|
169
170
|
name: "Sudo Logging Configured",
|
|
170
171
|
severity: "warning",
|
|
@@ -182,7 +183,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
182
183
|
// AUTH-SUDO-REQUIRETTY: requiretty in sudoers
|
|
183
184
|
const hasRequiretty = /requiretty/i.test(output);
|
|
184
185
|
const auth09 = {
|
|
185
|
-
id:
|
|
186
|
+
id: CHECK_IDS.AUTH.AUTH_SUDO_REQUIRETTY,
|
|
186
187
|
category: "Auth",
|
|
187
188
|
name: "Sudo requiretty Configured",
|
|
188
189
|
severity: "info",
|
|
@@ -202,7 +203,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
202
203
|
// We check for "toor" or any non-root username that could be a UID 0 alias
|
|
203
204
|
const hasOnlyRoot = !output.includes("toor") && !output.match(/^(?!root)[a-z_][a-z0-9_-]{0,31}\s*$/m);
|
|
204
205
|
const auth10 = {
|
|
205
|
-
id:
|
|
206
|
+
id: CHECK_IDS.AUTH.AUTH_NO_UID0_DUPS,
|
|
206
207
|
category: "Auth",
|
|
207
208
|
name: "No Duplicate UID 0 Accounts",
|
|
208
209
|
severity: "critical",
|
|
@@ -221,7 +222,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
221
222
|
const passMinMatch = output.match(/PASS_MIN_DAYS\s+(\d+)/);
|
|
222
223
|
const passMinDays = passMinMatch ? parseInt(passMinMatch[1], 10) : null;
|
|
223
224
|
const auth11 = {
|
|
224
|
-
id:
|
|
225
|
+
id: CHECK_IDS.AUTH.AUTH_PASS_MIN_DAYS,
|
|
225
226
|
category: "Auth",
|
|
226
227
|
name: "Minimum Password Age",
|
|
227
228
|
severity: "info",
|
|
@@ -240,7 +241,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
240
241
|
const passWarnMatch = output.match(/PASS_WARN_AGE\s+(\d+)/);
|
|
241
242
|
const passWarnAge = passWarnMatch ? parseInt(passWarnMatch[1], 10) : null;
|
|
242
243
|
const auth12 = {
|
|
243
|
-
id:
|
|
244
|
+
id: CHECK_IDS.AUTH.AUTH_PASS_WARN_AGE,
|
|
244
245
|
category: "Auth",
|
|
245
246
|
name: "Password Expiry Warning",
|
|
246
247
|
severity: "info",
|
|
@@ -260,7 +261,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
260
261
|
const inactiveDays = inactiveMatch ? parseInt(inactiveMatch[1], 10) : null;
|
|
261
262
|
const inactiveConfigured = inactiveDays !== null && inactiveDays >= 0 && inactiveDays <= 90;
|
|
262
263
|
const auth13 = {
|
|
263
|
-
id:
|
|
264
|
+
id: CHECK_IDS.AUTH.AUTH_INACTIVE_LOCK,
|
|
264
265
|
category: "Auth",
|
|
265
266
|
name: "Inactive Account Auto-Lock",
|
|
266
267
|
severity: "info",
|
|
@@ -282,7 +283,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
282
283
|
? sudoGroupMatch[1].split(",").map((m) => m.trim()).filter(Boolean)
|
|
283
284
|
: [];
|
|
284
285
|
const auth14 = {
|
|
285
|
-
id:
|
|
286
|
+
id: CHECK_IDS.AUTH.AUTH_SUDO_WHEEL_ONLY,
|
|
286
287
|
category: "Auth",
|
|
287
288
|
name: "Limited Sudo Group Members",
|
|
288
289
|
severity: "info",
|
|
@@ -300,7 +301,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
300
301
|
// AUTH-MFA-PRESENT: MFA package installed
|
|
301
302
|
const hasMFA = /libpam-google-authenticator|libpam-oath/i.test(output);
|
|
302
303
|
const auth15 = {
|
|
303
|
-
id:
|
|
304
|
+
id: CHECK_IDS.AUTH.AUTH_MFA_PRESENT,
|
|
304
305
|
category: "Auth",
|
|
305
306
|
name: "MFA Package Installed",
|
|
306
307
|
severity: "info",
|
|
@@ -318,7 +319,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
318
319
|
// AUTH-SU-RESTRICTED: su restricted to wheel group via pam_wheel
|
|
319
320
|
const hasPamWheel = /pam_wheel/i.test(output);
|
|
320
321
|
const auth16 = {
|
|
321
|
-
id:
|
|
322
|
+
id: CHECK_IDS.AUTH.AUTH_SU_RESTRICTED,
|
|
322
323
|
category: "Auth",
|
|
323
324
|
name: "su Restricted to Wheel Group",
|
|
324
325
|
severity: "info",
|
|
@@ -337,7 +338,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
337
338
|
const passMaxDaysSetMatch = output.match(/PASS_MAX_DAYS\s+(\d+)/);
|
|
338
339
|
const passMaxDaysSet = passMaxDaysSetMatch ? parseInt(passMaxDaysSetMatch[1], 10) : null;
|
|
339
340
|
const auth17 = {
|
|
340
|
-
id:
|
|
341
|
+
id: CHECK_IDS.AUTH.AUTH_PASS_MAX_DAYS_SET,
|
|
341
342
|
category: "Auth",
|
|
342
343
|
name: "Password Maximum Age Configured",
|
|
343
344
|
severity: "info",
|
|
@@ -360,7 +361,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
360
361
|
const gshadowPerms = allPermMatches.length >= 2 ? allPermMatches[1] : null;
|
|
361
362
|
const gshadowSecure = gshadowPerms !== null && ["000", "600", "640"].includes(gshadowPerms);
|
|
362
363
|
const auth18 = {
|
|
363
|
-
id:
|
|
364
|
+
id: CHECK_IDS.AUTH.AUTH_GSHADOW_PERMISSIONS,
|
|
364
365
|
category: "Auth",
|
|
365
366
|
name: "/etc/gshadow Permissions",
|
|
366
367
|
severity: "warning",
|
|
@@ -379,7 +380,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
379
380
|
// grep -rE 'pam_pwquality|pam_cracklib' /etc/pam.d/ output
|
|
380
381
|
const hasPwqualityConfig = /pam_pwquality|pam_cracklib/i.test(output);
|
|
381
382
|
const auth19 = {
|
|
382
|
-
id:
|
|
383
|
+
id: CHECK_IDS.AUTH.AUTH_PWQUALITY_CONFIGURED,
|
|
383
384
|
category: "Auth",
|
|
384
385
|
name: "PAM Password Quality Module Configured",
|
|
385
386
|
severity: "warning",
|
|
@@ -399,7 +400,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
399
400
|
const umaskValue = umaskMatch ? umaskMatch[1] : null;
|
|
400
401
|
const umaskSecure = umaskValue !== null && (umaskValue === "027" || umaskValue === "022");
|
|
401
402
|
const auth20 = {
|
|
402
|
-
id:
|
|
403
|
+
id: CHECK_IDS.AUTH.AUTH_UMASK_LOGIN_DEFS,
|
|
403
404
|
category: "Auth",
|
|
404
405
|
name: "Default UMASK Configured Securely",
|
|
405
406
|
severity: "info",
|
|
@@ -419,7 +420,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
419
420
|
const encryptMethod = encryptMethodMatch ? encryptMethodMatch[1].toUpperCase() : null;
|
|
420
421
|
const encryptSecure = encryptMethod === "SHA512" || encryptMethod === "YESCRYPT";
|
|
421
422
|
const auth21 = {
|
|
422
|
-
id:
|
|
423
|
+
id: CHECK_IDS.AUTH.AUTH_SHA512_HASH,
|
|
423
424
|
category: "Auth",
|
|
424
425
|
name: "Strong Password Hash Algorithm",
|
|
425
426
|
severity: "warning",
|
|
@@ -439,7 +440,7 @@ export const parseAuthChecks = (sectionOutput, _platform) => {
|
|
|
439
440
|
const pwqualityMinlen = pwqualityMinlenMatch ? parseInt(pwqualityMinlenMatch[1], 10) : null;
|
|
440
441
|
const minlenSecure = pwqualityMinlen !== null && pwqualityMinlen >= 12;
|
|
441
442
|
const auth22 = {
|
|
442
|
-
id:
|
|
443
|
+
id: CHECK_IDS.AUTH.AUTH_PWQUALITY_MINLEN,
|
|
443
444
|
category: "Auth",
|
|
444
445
|
name: "Password Minimum Length Configured",
|
|
445
446
|
severity: "warning",
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/auth.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,MAAM,CAAC,MAAM,eAAe,GAAgB,CAAC,aAAqB,EAAE,SAAiB,EAAgB,EAAE;IACrG,MAAM,IAAI,GAAG,CAAC,aAAa,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IAC7F,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC;IAEzC,kDAAkD;IAClD,4CAA4C;IAC5C,uBAAuB;IACvB,wEAAwE;IACxE,+CAA+C;IAE/C,oDAAoD;IACpD,MAAM,cAAc,GAAG,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACvD,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,sBAAsB;QAC1B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,cAAc;QACtC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc;gBACd,CAAC,CAAC,oCAAoC;gBACtC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EAAE,wCAAwC;QACpD,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yFAAyF;KACnG,CAAC;IAEF,iDAAiD;IACjD,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC3D,MAAM,WAAW,GAAG,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACxE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,qBAAqB;QACzB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;QAC7B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,KAAK,IAAI;QAC3C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,mBAAmB,WAAW,EAAE;gBAClC,CAAC,CAAC,+BAA+B;QACrC,aAAa,EAAE,0BAA0B;QACzC,UAAU,EAAE,+DAA+D;QAC3E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,mGAAmG;KAC7G,CAAC;IAEF,sDAAsD;IACtD,6DAA6D;IAC7D,iEAAiE;IACjE,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACtE,2EAA2E;IAC3E,MAAM,YAAY,GAAa,EAAE,CAAC;IAClC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,+CAA+C;QAC/C,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;YACnE,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC;YAC9E,IAAI,KAAK,KAAK,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC;YACrE,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC;YAChF,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC;YACrF,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;YACpF,SAAS;QACX,CAAC;QACD,2DAA2D;QAC3D,IAAI,2BAA2B,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3C,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IACD,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,yBAAyB;QAC7B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY,CAAC,MAAM,KAAK,CAAC;QAChD,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC;gBACvB,CAAC,CAAC,8BAA8B,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;gBACzD,CAAC,CAAC,kCAAkC;QACxC,aAAa,EAAE,kCAAkC;QACjD,UAAU,EAAE,YAAY,CAAC,MAAM,GAAG,CAAC;YACjC,CAAC,CAAC,aAAa,YAAY,CAAC,CAAC,CAAC,EAAE;YAChC,CAAC,CAAC,+CAA+C;QACnD,OAAO,EAAE,8EAA8E;KACxF,CAAC;IAEF,yDAAyD;IACzD,mEAAmE;IACnE,MAAM,eAAe,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;IACxF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,4BAA4B;QAChC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,eAAe;QACvC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,eAAe;gBACf,CAAC,CAAC,kCAAkC;gBACpC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,wCAAwC;QACvD,UAAU,EAAE,gBAAgB;QAC5B,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,2EAA2E;KACrF,CAAC;IAEF,2DAA2D;IAC3D,MAAM,YAAY,GAAG,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,kBAAkB;QACtB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;QACnC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY;gBACZ,CAAC,CAAC,oCAAoC;gBACtC,CAAC,CAAC,kCAAkC;QACxC,aAAa,EAAE,0CAA0C;QACzD,UAAU,EAAE,oDAAoD;QAChE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,sFAAsF;KAChG,CAAC;IAEF,sEAAsE;IAEtE,kEAAkE;IAClE,MAAM,WAAW,GAAG,0BAA0B,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC5D,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,0BAA0B;QAC9B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW;QAClC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW;gBACX,CAAC,CAAC,uCAAuC;gBACzC,CAAC,CAAC,+CAA+C;QACrD,aAAa,EAAE,0CAA0C;QACzD,UAAU,EAAE,qEAAqE;QACjF,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,4EAA4E;KACtF,CAAC;IAEF,mEAAmE;IACnE,MAAM,eAAe,GAAG,MAAM,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;IACzD,MAAM,WAAW,GAAG,eAAe,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAChE,MAAM,YAAY,GAAG,WAAW,KAAK,IAAI,IAAI,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACzF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,yBAAyB;QAC7B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;QACnC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,SAAS,WAAW,EAAE;gBACxB,CAAC,CAAC,6CAA6C;QACnD,aAAa,EAAE,+CAA+C;QAC9D,UAAU,EAAE,wDAAwD;QACpE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,+FAA+F;KACzG,CAAC;IAEF,yCAAyC;IACzC,MAAM,UAAU,GAAG,oBAAoB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACrD,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,eAAe;QACnB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU;QACjC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,UAAU;gBACV,CAAC,CAAC,gDAAgD;gBAClD,CAAC,CAAC,6BAA6B;QACnC,aAAa,EAAE,mDAAmD;QAClE,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yEAAyE;KACnF,CAAC;IAEF,8CAA8C;IAC9C,MAAM,aAAa,GAAG,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,sBAAsB;QAC1B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa;QACpC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,aAAa;gBACb,CAAC,CAAC,kCAAkC;gBACpC,CAAC,CAAC,sCAAsC;QAC5C,aAAa,EAAE,gCAAgC;QAC/C,UAAU,EAAE,iEAAiE;QAC7E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,mGAAmG;KAC7G,CAAC;IAEF,iDAAiD;IACjD,0FAA0F;IAC1F,2EAA2E;IAC3E,MAAM,WAAW,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;IACtG,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,mBAAmB;QACvB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW;QAClC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW;gBACX,CAAC,CAAC,qBAAqB;gBACvB,CAAC,CAAC,uCAAuC;QAC7C,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EAAE,4EAA4E;QACxF,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kGAAkG;KAC5G,CAAC;IAEF,yCAAyC;IACzC,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC3D,MAAM,WAAW,GAAG,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACxE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,oBAAoB;QACxB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,KAAK,IAAI,IAAI,WAAW,IAAI,CAAC;QAC/D,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,mBAAmB,WAAW,EAAE;gBAClC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,oBAAoB;QACnC,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,4FAA4F;KACtG,CAAC;IAEF,yCAAyC;IACzC,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC5D,MAAM,WAAW,GAAG,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC1E,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,oBAAoB;QACxB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,KAAK,IAAI,IAAI,WAAW,IAAI,CAAC;QAC/D,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,mBAAmB,WAAW,EAAE;gBAClC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,oBAAoB;QACnC,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,oFAAoF;KAC9F,CAAC;IAEF,yDAAyD;IACzD,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC;IAC7D,MAAM,YAAY,GAAG,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC3E,MAAM,kBAAkB,GAAG,YAAY,KAAK,IAAI,IAAI,YAAY,IAAI,CAAC,IAAI,YAAY,IAAI,EAAE,CAAC;IAC5F,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,oBAAoB;QACxB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,kBAAkB;QACzC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY,KAAK,IAAI;gBACrB,CAAC,CAAC,cAAc,YAAY,OAAO;gBACnC,CAAC,CAAC,yBAAyB;QAC/B,aAAa,EAAE,0CAA0C;QACzD,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,8FAA8F;KACxG,CAAC;IAEF,8DAA8D;IAC9D,qDAAqD;IACrD,MAAM,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;IAC3D,MAAM,WAAW,GAAG,cAAc;QAChC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC;QACnE,CAAC,CAAC,EAAE,CAAC;IACP,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,sBAAsB;QAC1B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,CAAC,MAAM,IAAI,CAAC;QAC9C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC;gBACtB,CAAC,CAAC,GAAG,WAAW,CAAC,MAAM,oBAAoB,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;gBACnE,CAAC,CAAC,6BAA6B;QACnC,aAAa,EAAE,mCAAmC;QAClD,UAAU,EAAE,6DAA6D;QACzE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,6FAA6F;KACvG,CAAC;IAEF,0CAA0C;IAC1C,MAAM,MAAM,GAAG,0CAA0C,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACvE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,kBAAkB;QACtB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;QAC7B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM;QAC7B,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,MAAM;gBACN,CAAC,CAAC,mEAAmE;gBACrE,CAAC,CAAC,0BAA0B;QAChC,aAAa,EAAE,sDAAsD;QACrE,UAAU,EAAE,iGAAiG;QAC7G,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kGAAkG;KAC5G,CAAC;IAEF,iEAAiE;IACjE,MAAM,WAAW,GAAG,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC9C,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,oBAAoB;QACxB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW;QAClC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW;gBACX,CAAC,CAAC,uCAAuC;gBACzC,CAAC,CAAC,sCAAsC;QAC5C,aAAa,EAAE,uCAAuC;QACtD,UAAU,EAAE,4DAA4D;QACxE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,sGAAsG;KAChH,CAAC;IAEF,kEAAkE;IAClE,MAAM,mBAAmB,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAClE,MAAM,cAAc,GAAG,mBAAmB,CAAC,CAAC,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACzF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,wBAAwB;QAC5B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,cAAc,KAAK,IAAI,IAAI,cAAc,IAAI,GAAG,IAAI,cAAc,GAAG,CAAC;QAC7F,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc,KAAK,IAAI;gBACvB,CAAC,CAAC,mBAAmB,cAAc,EAAE;gBACrC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,8BAA8B;QAC7C,UAAU,EAAE,+DAA+D;QAC3E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kHAAkH;KAC5H,CAAC;IAEF,iEAAiE;IACjE,kEAAkE;IAClE,uFAAuF;IACvF,MAAM,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,2CAA2C,CAAC,IAAI,EAAE,CAAC;IACvF,+DAA+D;IAC/D,MAAM,YAAY,GAAG,cAAc,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC3E,MAAM,aAAa,GAAG,YAAY,KAAK,IAAI,IAAI,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;IAC5F,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,0BAA0B;QAC9B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa;QACpC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY,KAAK,IAAI;gBACrB,CAAC,CAAC,SAAS,YAAY,EAAE;gBACzB,CAAC,CAAC,8CAA8C;QACpD,aAAa,EAAE,gDAAgD;QAC/D,UAAU,EAAE,0DAA0D;QACtE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,+EAA+E;KACzF,CAAC;IAEF,+EAA+E;IAC/E,2DAA2D;IAC3D,MAAM,kBAAkB,GAAG,6BAA6B,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACtE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,2BAA2B;QAC/B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,wCAAwC;QAC9C,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,kBAAkB;QACzC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,kBAAkB;gBAClB,CAAC,CAAC,yDAAyD;gBAC3D,CAAC,CAAC,2CAA2C;QACjD,aAAa,EAAE,8CAA8C;QAC7D,UAAU,EAAE,4HAA4H;QACxI,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,iHAAiH;KAC3H,CAAC;IAEF,gEAAgE;IAChE,MAAM,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACnD,MAAM,UAAU,GAAG,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACrD,MAAM,WAAW,GAAG,UAAU,KAAK,IAAI,IAAI,CAAC,UAAU,KAAK,KAAK,IAAI,UAAU,KAAK,KAAK,CAAC,CAAC;IAC1F,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,uBAAuB;QAC3B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mCAAmC;QACzC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW;QAClC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,UAAU,KAAK,IAAI;gBACnB,CAAC,CAAC,WAAW,UAAU,EAAE;gBACzB,CAAC,CAAC,kCAAkC;QACxC,aAAa,EAAE,qCAAqC;QACpD,UAAU,EAAE,gDAAgD;QAC5D,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yHAAyH;KACnI,CAAC;IAEF,yDAAyD;IACzD,MAAM,kBAAkB,GAAG,MAAM,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;IACpE,MAAM,aAAa,GAAG,kBAAkB,CAAC,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACtF,MAAM,aAAa,GAAG,aAAa,KAAK,QAAQ,IAAI,aAAa,KAAK,UAAU,CAAC;IACjF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,kBAAkB;QACtB,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa;QACpC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,aAAa,KAAK,IAAI;gBACtB,CAAC,CAAC,oBAAoB,aAAa,EAAE;gBACrC,CAAC,CAAC,+BAA+B;QACrC,aAAa,EAAE,mCAAmC;QAClD,UAAU,EAAE,qEAAqE;QACjF,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,4HAA4H;KACtI,CAAC;IAEF,sEAAsE;IACtE,MAAM,oBAAoB,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IACnE,MAAM,eAAe,GAAG,oBAAoB,CAAC,CAAC,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC5F,MAAM,YAAY,GAAG,eAAe,KAAK,IAAI,IAAI,eAAe,IAAI,EAAE,CAAC;IACvE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,uBAAuB;QAC3B,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;QACnC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,eAAe,KAAK,IAAI;gBACxB,CAAC,CAAC,YAAY,eAAe,EAAE;gBAC/B,CAAC,CAAC,yCAAyC;QAC/C,aAAa,EAAE,8CAA8C;QAC7D,UAAU,EAAE,oDAAoD;QAChE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,2FAA2F;KACrG,CAAC;IAEF,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;AAC1L,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../../src/core/audit/checks/auth.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAE3C,MAAM,CAAC,MAAM,eAAe,GAAgB,CAAC,aAAqB,EAAE,SAAiB,EAAgB,EAAE;IACrG,MAAM,IAAI,GAAG,CAAC,aAAa,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,KAAK,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;IAC7F,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC;IAEzC,kDAAkD;IAClD,4CAA4C;IAC5C,uBAAuB;IACvB,wEAAwE;IACxE,+CAA+C;IAE/C,oDAAoD;IACpD,MAAM,cAAc,GAAG,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACvD,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,oBAAoB;QACvC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,cAAc;QACtC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc;gBACd,CAAC,CAAC,oCAAoC;gBACtC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EAAE,wCAAwC;QACpD,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yFAAyF;KACnG,CAAC;IAEF,iDAAiD;IACjD,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC3D,MAAM,WAAW,GAAG,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACxE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,mBAAmB;QACtC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;QAC7B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,KAAK,IAAI;QAC3C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,mBAAmB,WAAW,EAAE;gBAClC,CAAC,CAAC,+BAA+B;QACrC,aAAa,EAAE,0BAA0B;QACzC,UAAU,EAAE,+DAA+D;QAC3E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,mGAAmG;KAC7G,CAAC;IAEF,sDAAsD;IACtD,6DAA6D;IAC7D,iEAAiE;IACjE,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACtE,2EAA2E;IAC3E,MAAM,YAAY,GAAa,EAAE,CAAC;IAClC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,+CAA+C;QAC/C,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;YACnE,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC;YAC9E,IAAI,KAAK,KAAK,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC;YACrE,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC;YAChF,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC;YACrF,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;YACpF,SAAS;QACX,CAAC;QACD,2DAA2D;QAC3D,IAAI,2BAA2B,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3C,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IACD,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,uBAAuB;QAC1C,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY,CAAC,MAAM,KAAK,CAAC;QAChD,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC;gBACvB,CAAC,CAAC,8BAA8B,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;gBACzD,CAAC,CAAC,kCAAkC;QACxC,aAAa,EAAE,kCAAkC;QACjD,UAAU,EAAE,YAAY,CAAC,MAAM,GAAG,CAAC;YACjC,CAAC,CAAC,aAAa,YAAY,CAAC,CAAC,CAAC,EAAE;YAChC,CAAC,CAAC,+CAA+C;QACnD,OAAO,EAAE,8EAA8E;KACxF,CAAC;IAEF,yDAAyD;IACzD,mEAAmE;IACnE,MAAM,eAAe,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;IACxF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,0BAA0B;QAC7C,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,eAAe;QACvC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,eAAe;gBACf,CAAC,CAAC,kCAAkC;gBACpC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,wCAAwC;QACvD,UAAU,EAAE,gBAAgB;QAC5B,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,2EAA2E;KACrF,CAAC;IAEF,2DAA2D;IAC3D,MAAM,YAAY,GAAG,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,gBAAgB;QACnC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;QACnC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY;gBACZ,CAAC,CAAC,oCAAoC;gBACtC,CAAC,CAAC,kCAAkC;QACxC,aAAa,EAAE,0CAA0C;QACzD,UAAU,EAAE,oDAAoD;QAChE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,sFAAsF;KAChG,CAAC;IAEF,sEAAsE;IAEtE,kEAAkE;IAClE,MAAM,WAAW,GAAG,0BAA0B,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC5D,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,wBAAwB;QAC3C,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW;QAClC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW;gBACX,CAAC,CAAC,uCAAuC;gBACzC,CAAC,CAAC,+CAA+C;QACrD,aAAa,EAAE,0CAA0C;QACzD,UAAU,EAAE,qEAAqE;QACjF,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,4EAA4E;KACtF,CAAC;IAEF,mEAAmE;IACnE,MAAM,eAAe,GAAG,MAAM,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;IACzD,MAAM,WAAW,GAAG,eAAe,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAChE,MAAM,YAAY,GAAG,WAAW,KAAK,IAAI,IAAI,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACzF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,uBAAuB;QAC1C,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;QACnC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,SAAS,WAAW,EAAE;gBACxB,CAAC,CAAC,6CAA6C;QACnD,aAAa,EAAE,+CAA+C;QAC9D,UAAU,EAAE,wDAAwD;QACpE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,+FAA+F;KACzG,CAAC;IAEF,yCAAyC;IACzC,MAAM,UAAU,GAAG,oBAAoB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACrD,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,aAAa;QAChC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU;QACjC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,UAAU;gBACV,CAAC,CAAC,gDAAgD;gBAClD,CAAC,CAAC,6BAA6B;QACnC,aAAa,EAAE,mDAAmD;QAClE,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yEAAyE;KACnF,CAAC;IAEF,8CAA8C;IAC9C,MAAM,aAAa,GAAG,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACjD,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,oBAAoB;QACvC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa;QACpC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,aAAa;gBACb,CAAC,CAAC,kCAAkC;gBACpC,CAAC,CAAC,sCAAsC;QAC5C,aAAa,EAAE,gCAAgC;QAC/C,UAAU,EAAE,iEAAiE;QAC7E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,mGAAmG;KAC7G,CAAC;IAEF,iDAAiD;IACjD,0FAA0F;IAC1F,2EAA2E;IAC3E,MAAM,WAAW,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;IACtG,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,iBAAiB;QACpC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW;QAClC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW;gBACX,CAAC,CAAC,qBAAqB;gBACvB,CAAC,CAAC,uCAAuC;QAC7C,aAAa,EAAE,6BAA6B;QAC5C,UAAU,EAAE,4EAA4E;QACxF,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kGAAkG;KAC5G,CAAC;IAEF,yCAAyC;IACzC,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC3D,MAAM,WAAW,GAAG,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACxE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,kBAAkB;QACrC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,KAAK,IAAI,IAAI,WAAW,IAAI,CAAC;QAC/D,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,mBAAmB,WAAW,EAAE;gBAClC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,oBAAoB;QACnC,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,4FAA4F;KACtG,CAAC;IAEF,yCAAyC;IACzC,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC5D,MAAM,WAAW,GAAG,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC1E,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,kBAAkB;QACrC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,KAAK,IAAI,IAAI,WAAW,IAAI,CAAC;QAC/D,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,KAAK,IAAI;gBACpB,CAAC,CAAC,mBAAmB,WAAW,EAAE;gBAClC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,oBAAoB;QACnC,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,oFAAoF;KAC9F,CAAC;IAEF,yDAAyD;IACzD,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC;IAC7D,MAAM,YAAY,GAAG,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC3E,MAAM,kBAAkB,GAAG,YAAY,KAAK,IAAI,IAAI,YAAY,IAAI,CAAC,IAAI,YAAY,IAAI,EAAE,CAAC;IAC5F,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,kBAAkB;QACrC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,kBAAkB;QACzC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY,KAAK,IAAI;gBACrB,CAAC,CAAC,cAAc,YAAY,OAAO;gBACnC,CAAC,CAAC,yBAAyB;QAC/B,aAAa,EAAE,0CAA0C;QACzD,UAAU,EAAE,8DAA8D;QAC1E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,8FAA8F;KACxG,CAAC;IAEF,8DAA8D;IAC9D,qDAAqD;IACrD,MAAM,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;IAC3D,MAAM,WAAW,GAAG,cAAc;QAChC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC;QACnE,CAAC,CAAC,EAAE,CAAC;IACP,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,oBAAoB;QACvC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW,CAAC,MAAM,IAAI,CAAC;QAC9C,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC;gBACtB,CAAC,CAAC,GAAG,WAAW,CAAC,MAAM,oBAAoB,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;gBACnE,CAAC,CAAC,6BAA6B;QACnC,aAAa,EAAE,mCAAmC;QAClD,UAAU,EAAE,6DAA6D;QACzE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,6FAA6F;KACvG,CAAC;IAEF,0CAA0C;IAC1C,MAAM,MAAM,GAAG,0CAA0C,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACvE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,gBAAgB;QACnC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;QAC7B,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM;QAC7B,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,MAAM;gBACN,CAAC,CAAC,mEAAmE;gBACrE,CAAC,CAAC,0BAA0B;QAChC,aAAa,EAAE,sDAAsD;QACrE,UAAU,EAAE,iGAAiG;QAC7G,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kGAAkG;KAC5G,CAAC;IAEF,iEAAiE;IACjE,MAAM,WAAW,GAAG,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC9C,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,kBAAkB;QACrC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW;QAClC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,WAAW;gBACX,CAAC,CAAC,uCAAuC;gBACzC,CAAC,CAAC,sCAAsC;QAC5C,aAAa,EAAE,uCAAuC;QACtD,UAAU,EAAE,4DAA4D;QACxE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,sGAAsG;KAChH,CAAC;IAEF,kEAAkE;IAClE,MAAM,mBAAmB,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAClE,MAAM,cAAc,GAAG,mBAAmB,CAAC,CAAC,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACzF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,sBAAsB;QACzC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,cAAc,KAAK,IAAI,IAAI,cAAc,IAAI,GAAG,IAAI,cAAc,GAAG,CAAC;QAC7F,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,cAAc,KAAK,IAAI;gBACvB,CAAC,CAAC,mBAAmB,cAAc,EAAE;gBACrC,CAAC,CAAC,8BAA8B;QACpC,aAAa,EAAE,8BAA8B;QAC7C,UAAU,EAAE,+DAA+D;QAC3E,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,kHAAkH;KAC5H,CAAC;IAEF,iEAAiE;IACjE,kEAAkE;IAClE,uFAAuF;IACvF,MAAM,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,2CAA2C,CAAC,IAAI,EAAE,CAAC;IACvF,+DAA+D;IAC/D,MAAM,YAAY,GAAG,cAAc,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC3E,MAAM,aAAa,GAAG,YAAY,KAAK,IAAI,IAAI,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;IAC5F,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,wBAAwB;QAC3C,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa;QACpC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,YAAY,KAAK,IAAI;gBACrB,CAAC,CAAC,SAAS,YAAY,EAAE;gBACzB,CAAC,CAAC,8CAA8C;QACpD,aAAa,EAAE,gDAAgD;QAC/D,UAAU,EAAE,0DAA0D;QACtE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,+EAA+E;KACzF,CAAC;IAEF,+EAA+E;IAC/E,2DAA2D;IAC3D,MAAM,kBAAkB,GAAG,6BAA6B,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACtE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,yBAAyB;QAC5C,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,wCAAwC;QAC9C,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,kBAAkB;QACzC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,kBAAkB;gBAClB,CAAC,CAAC,yDAAyD;gBAC3D,CAAC,CAAC,2CAA2C;QACjD,aAAa,EAAE,8CAA8C;QAC7D,UAAU,EAAE,4HAA4H;QACxI,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,iHAAiH;KAC3H,CAAC;IAEF,gEAAgE;IAChE,MAAM,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACnD,MAAM,UAAU,GAAG,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACrD,MAAM,WAAW,GAAG,UAAU,KAAK,IAAI,IAAI,CAAC,UAAU,KAAK,KAAK,IAAI,UAAU,KAAK,KAAK,CAAC,CAAC;IAC1F,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,qBAAqB;QACxC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mCAAmC;QACzC,QAAQ,EAAE,MAAM;QAChB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,WAAW;QAClC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,UAAU,KAAK,IAAI;gBACnB,CAAC,CAAC,WAAW,UAAU,EAAE;gBACzB,CAAC,CAAC,kCAAkC;QACxC,aAAa,EAAE,qCAAqC;QACpD,UAAU,EAAE,gDAAgD;QAC5D,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,yHAAyH;KACnI,CAAC;IAEF,yDAAyD;IACzD,MAAM,kBAAkB,GAAG,MAAM,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;IACpE,MAAM,aAAa,GAAG,kBAAkB,CAAC,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACtF,MAAM,aAAa,GAAG,aAAa,KAAK,QAAQ,IAAI,aAAa,KAAK,UAAU,CAAC;IACjF,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,gBAAgB;QACnC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,gCAAgC;QACtC,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa;QACpC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,aAAa,KAAK,IAAI;gBACtB,CAAC,CAAC,oBAAoB,aAAa,EAAE;gBACrC,CAAC,CAAC,+BAA+B;QACrC,aAAa,EAAE,mCAAmC;QAClD,UAAU,EAAE,qEAAqE;QACjF,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,4HAA4H;KACtI,CAAC;IAEF,sEAAsE;IACtE,MAAM,oBAAoB,GAAG,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;IACnE,MAAM,eAAe,GAAG,oBAAoB,CAAC,CAAC,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC5F,MAAM,YAAY,GAAG,eAAe,KAAK,IAAI,IAAI,eAAe,IAAI,EAAE,CAAC;IACvE,MAAM,MAAM,GAAe;QACzB,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,qBAAqB;QACxC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;QACnC,YAAY,EAAE,IAAI;YAChB,CAAC,CAAC,qBAAqB;YACvB,CAAC,CAAC,eAAe,KAAK,IAAI;gBACxB,CAAC,CAAC,YAAY,eAAe,EAAE;gBAC/B,CAAC,CAAC,yCAAyC;QAC/C,aAAa,EAAE,8CAA8C;QAC7D,UAAU,EAAE,oDAAoD;QAChE,aAAa,EAAE,MAAM;QACrB,OAAO,EAAE,2FAA2F;KACrG,CAAC;IAEF,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;AAC1L,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"backup.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/backup.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAa,WAAW,EAAoB,MAAM,aAAa,CAAC;AA0L5E,eAAO,MAAM,iBAAiB,EAAE,
|
|
1
|
+
{"version":3,"file":"backup.d.ts","sourceRoot":"","sources":["../../../../src/core/audit/checks/backup.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAa,WAAW,EAAoB,MAAM,aAAa,CAAC;AA0L5E,eAAO,MAAM,iBAAiB,EAAE,WAuC/B,CAAC"}
|
|
@@ -3,9 +3,10 @@
|
|
|
3
3
|
* Parses Kastell backup presence, file permissions, script safety,
|
|
4
4
|
* tool installation, cron job existence, and /var/backups into 6 security checks.
|
|
5
5
|
*/
|
|
6
|
+
import { CHECK_IDS } from "../checkIds.js";
|
|
6
7
|
const BACKUP_CHECKS = [
|
|
7
8
|
{
|
|
8
|
-
id:
|
|
9
|
+
id: CHECK_IDS.BACKUP.BACKUP_RECENT_BACKUP,
|
|
9
10
|
name: "Recent Kastell Backup Exists",
|
|
10
11
|
severity: "warning",
|
|
11
12
|
check: (output) => {
|
|
@@ -23,7 +24,7 @@ const BACKUP_CHECKS = [
|
|
|
23
24
|
explain: "A recent backup in /root/.kastell/backups/ confirms that server configuration and data are being backed up regularly. Without a recent backup, data loss after a failure or compromise cannot be recovered.",
|
|
24
25
|
},
|
|
25
26
|
{
|
|
26
|
-
id:
|
|
27
|
+
id: CHECK_IDS.BACKUP.BACKUP_ENCRYPTION_PRESENT,
|
|
27
28
|
name: "Backup Files Have Restricted Permissions",
|
|
28
29
|
severity: "warning",
|
|
29
30
|
check: (output) => {
|
|
@@ -50,7 +51,7 @@ const BACKUP_CHECKS = [
|
|
|
50
51
|
explain: "Backup files may contain sensitive configuration, credentials, or database dumps. Restricting permissions to 600/640 owned by root prevents other users from reading or modifying backup data.",
|
|
51
52
|
},
|
|
52
53
|
{
|
|
53
|
-
id:
|
|
54
|
+
id: CHECK_IDS.BACKUP.BACKUP_SCRIPT_PERMS,
|
|
54
55
|
name: "Backup Scripts Not World-Writable",
|
|
55
56
|
severity: "warning",
|
|
56
57
|
check: (output) => {
|
|
@@ -68,7 +69,7 @@ const BACKUP_CHECKS = [
|
|
|
68
69
|
explain: "World-writable backup scripts allow any local user to inject arbitrary code that runs as root during scheduled backups, providing an easy privilege escalation vector.",
|
|
69
70
|
},
|
|
70
71
|
{
|
|
71
|
-
id:
|
|
72
|
+
id: CHECK_IDS.BACKUP.BACKUP_TOOL_INSTALLED,
|
|
72
73
|
name: "Backup Tool Installed",
|
|
73
74
|
severity: "info",
|
|
74
75
|
check: (output) => {
|
|
@@ -87,7 +88,7 @@ const BACKUP_CHECKS = [
|
|
|
87
88
|
explain: "A dedicated backup tool (rsync, borg, or restic) enables reliable, incremental, and verifiable backups. Its absence suggests backups may not be performed or rely on ad-hoc scripts with limited reliability.",
|
|
88
89
|
},
|
|
89
90
|
{
|
|
90
|
-
id:
|
|
91
|
+
id: CHECK_IDS.BACKUP.BACKUP_CRON_JOB,
|
|
91
92
|
name: "Scheduled Backup Job Configured",
|
|
92
93
|
severity: "info",
|
|
93
94
|
check: (output) => {
|
|
@@ -105,7 +106,7 @@ const BACKUP_CHECKS = [
|
|
|
105
106
|
explain: "A scheduled cron backup job ensures backups run automatically without manual intervention. Without it, backups depend on manual execution and are likely to be missed.",
|
|
106
107
|
},
|
|
107
108
|
{
|
|
108
|
-
id:
|
|
109
|
+
id: CHECK_IDS.BACKUP.BACKUP_VAR_BACKUPS,
|
|
109
110
|
name: "/var/backups Exists and Has Content",
|
|
110
111
|
severity: "info",
|
|
111
112
|
check: (output) => {
|
|
@@ -123,7 +124,7 @@ const BACKUP_CHECKS = [
|
|
|
123
124
|
explain: "/var/backups is the standard system backup location on Debian/Ubuntu systems. Its presence with content indicates system configuration and package state are being preserved for recovery purposes.",
|
|
124
125
|
},
|
|
125
126
|
{
|
|
126
|
-
id:
|
|
127
|
+
id: CHECK_IDS.BACKUP.BKUP_ENCRYPTED_BACKUPS,
|
|
127
128
|
name: "Backup Files Are Encrypted",
|
|
128
129
|
severity: "info",
|
|
129
130
|
check: (output) => {
|
|
@@ -144,7 +145,7 @@ const BACKUP_CHECKS = [
|
|
|
144
145
|
explain: "Unencrypted backup files expose sensitive data if backup storage is compromised.",
|
|
145
146
|
},
|
|
146
147
|
{
|
|
147
|
-
id:
|
|
148
|
+
id: CHECK_IDS.BACKUP.BKUP_BACKUP_TOOL_INSTALLED,
|
|
148
149
|
name: "Backup Tool Installed",
|
|
149
150
|
severity: "info",
|
|
150
151
|
check: (output) => {
|