npm - mobbdev - Versions diffs - 1.0.137 → 1.0.139 - Mend

mobbdev 1.0.137 → 1.0.139

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.mjs +48 -3
package/package.json +1 -1

package/dist/index.mjs CHANGED Viewed

@@ -1582,6 +1582,7 @@ var IssueType_Enum = /* @__PURE__ */ ((IssueType_Enum2) => {
   IssueType_Enum2["NoEquivalenceMethod"] = "NO_EQUIVALENCE_METHOD";
   IssueType_Enum2["NoLimitsOrThrottling"] = "NO_LIMITS_OR_THROTTLING";
   IssueType_Enum2["NoNestedTry"] = "NO_NESTED_TRY";
+  IssueType_Enum2["NoNewPrivileges"] = "NO_NEW_PRIVILEGES";
   IssueType_Enum2["NoOpOverhead"] = "NO_OP_OVERHEAD";
   IssueType_Enum2["NoPrintStatement"] = "NO_PRINT_STATEMENT";
   IssueType_Enum2["NoReturnInFinally"] = "NO_RETURN_IN_FINALLY";
@@ -1592,6 +1593,7 @@ var IssueType_Enum = /* @__PURE__ */ ((IssueType_Enum2) => {
   IssueType_Enum2["OverlyLargeRange"] = "OVERLY_LARGE_RANGE";
   IssueType_Enum2["PasswordInComment"] = "PASSWORD_IN_COMMENT";
   IssueType_Enum2["PoorErrorHandlingEmptyCatchBlock"] = "POOR_ERROR_HANDLING_EMPTY_CATCH_BLOCK";
+  IssueType_Enum2["PortAllInterfaces"] = "PORT_ALL_INTERFACES";
   IssueType_Enum2["PrivacyViolation"] = "PRIVACY_VIOLATION";
   IssueType_Enum2["PrototypePollution"] = "PROTOTYPE_POLLUTION";
   IssueType_Enum2["Pt"] = "PT";
@@ -1627,6 +1629,7 @@ var IssueType_Enum = /* @__PURE__ */ ((IssueType_Enum2) => {
   IssueType_Enum2["WeakXmlSchemaUnboundedOccurrences"] = "WEAK_XML_SCHEMA_UNBOUNDED_OCCURRENCES";
   IssueType_Enum2["WebsocketMissingOriginCheck"] = "WEBSOCKET_MISSING_ORIGIN_CHECK";
   IssueType_Enum2["WildcardImports"] = "WILDCARD_IMPORTS";
+  IssueType_Enum2["WritableFilesystemService"] = "WRITABLE_FILESYSTEM_SERVICE";
   IssueType_Enum2["Xss"] = "XSS";
   IssueType_Enum2["Xxe"] = "XXE";
   IssueType_Enum2["ZipSlip"] = "ZIP_SLIP";
@@ -2656,7 +2659,10 @@ var fixDetailsData = {
     issueDescription: "Missing User occurs when a user is not specified in the Dockerfile, leading to security vulnerabilities.",
     fixInstructions: "Specify a user in the Dockerfile to prevent security vulnerabilities."
   },
-  ["MISSING_ENCODING_FILE_OPEN" /* MissingEncodingFileOpen */]: void 0
+  ["MISSING_ENCODING_FILE_OPEN" /* MissingEncodingFileOpen */]: void 0,
+  ["PORT_ALL_INTERFACES" /* PortAllInterfaces */]: void 0,
+  ["WRITABLE_FILESYSTEM_SERVICE" /* WritableFilesystemService */]: void 0,
+  ["NO_NEW_PRIVILEGES" /* NoNewPrivileges */]: void 0
 };
 // src/features/analysis/scm/shared/src/getIssueType.ts
@@ -2778,7 +2784,10 @@ var issueTypeMap = {
   ["CREDENTIAL_DISCLOSURE" /* CredentialDisclosure */]: "Credential Disclosure",
   ["INSECURE_POSTMESSAGE" /* InsecurePostmessage */]: "Insecure Postmessage",
   ["MISSING_USER" /* MissingUser */]: "Missing User",
-  ["MISSING_ENCODING_FILE_OPEN" /* MissingEncodingFileOpen */]: "Missing Encoding File Open"
+  ["MISSING_ENCODING_FILE_OPEN" /* MissingEncodingFileOpen */]: "Missing Encoding File Open",
+  ["PORT_ALL_INTERFACES" /* PortAllInterfaces */]: "Port All Interfaces",
+  ["WRITABLE_FILESYSTEM_SERVICE" /* WritableFilesystemService */]: "Writable Filesystem Service",
+  ["NO_NEW_PRIVILEGES" /* NoNewPrivileges */]: "No New Privileges"
 };
 var issueTypeZ = z.nativeEnum(IssueType_Enum);
 var getIssueTypeFriendlyString = (issueType) => {
@@ -4367,6 +4376,41 @@ var vulnerabilities15 = {
 };
 var xml_default2 = vulnerabilities15;
+// src/features/analysis/scm/shared/src/storedQuestionData/yaml/noNewPrivileges.ts
+var noNewPrivileges = {
+  requireNewPrivileges: {
+    content: () => "Does the container require new privileges?",
+    description: () => "",
+    guidance: () => `If the container requires new privileges, setting the no-new-privileges option might harm the container functionality.`
+  }
+};
+// src/features/analysis/scm/shared/src/storedQuestionData/yaml/portAllInterfaces.ts
+var portAllInterfaces = {
+  trustedIP: {
+    content: () => "Enter trusted Network IP",
+    description: () => "",
+    guidance: () => `Properly set this value to prevent access from untrusted network adapters. Setting this to a wrong value would prevent accessing the container and might break the system.`
+  }
+};
+// src/features/analysis/scm/shared/src/storedQuestionData/yaml/writableFilesystemService.ts
+var writableFilesystemService = {
+  requireWriteAccess: {
+    content: () => "Does the container require writable filesystem access?",
+    description: () => "",
+    guidance: () => `If the container requires writable filesystem access, setting the filesystem as readonly might harm the container functionality.`
+  }
+};
+// src/features/analysis/scm/shared/src/storedQuestionData/yaml/index.ts
+var vulnerabilities16 = {
+  ["PORT_ALL_INTERFACES" /* PortAllInterfaces */]: portAllInterfaces,
+  ["WRITABLE_FILESYSTEM_SERVICE" /* WritableFilesystemService */]: writableFilesystemService,
+  ["NO_NEW_PRIVILEGES" /* NoNewPrivileges */]: noNewPrivileges
+};
+var yaml_default = vulnerabilities16;
 // src/features/analysis/scm/shared/src/storedQuestionData/index.ts
 var StoredQuestionDataItemZ = z4.object({
   content: z4.function().args(z4.any()).returns(z4.string()),
@@ -4379,7 +4423,8 @@ var languages2 = {
   ["XML" /* Xml */]: xml_default2,
   ["CSharp" /* CSharp */]: csharp_default2,
   ["Python" /* Python */]: python_default2,
-  ["Go" /* Go */]: go_default2
+  ["Go" /* Go */]: go_default2,
+  ["YAML" /* Yaml */]: yaml_default
 };
 var storedQuestionData_default = languages2;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "mobbdev",
-  "version": "1.0.137",
+  "version": "1.0.139",
   "description": "Automated secure code remediation tool",
   "repository": "git+https://github.com/mobb-dev/bugsy.git",
   "main": "dist/index.js",