mobbdev 1.4.15 → 1.4.17
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/args/commands/upload_ai_blame.mjs +47 -29
- package/dist/index.mjs +48 -30
- package/package.json +1 -1
|
@@ -163,6 +163,7 @@ var init_client_generates = __esm({
|
|
|
163
163
|
Language2["Default"] = "DEFAULT";
|
|
164
164
|
Language2["Dockerfile"] = "DOCKERFILE";
|
|
165
165
|
Language2["Go"] = "GO";
|
|
166
|
+
Language2["Hcl"] = "HCL";
|
|
166
167
|
Language2["Java"] = "JAVA";
|
|
167
168
|
Language2["Js"] = "JS";
|
|
168
169
|
Language2["Php"] = "PHP";
|
|
@@ -217,6 +218,7 @@ var init_client_generates = __esm({
|
|
|
217
218
|
IssueLanguage_Enum2["Default"] = "Default";
|
|
218
219
|
IssueLanguage_Enum2["Dockerfile"] = "Dockerfile";
|
|
219
220
|
IssueLanguage_Enum2["Go"] = "Go";
|
|
221
|
+
IssueLanguage_Enum2["Hcl"] = "Hcl";
|
|
220
222
|
IssueLanguage_Enum2["Java"] = "Java";
|
|
221
223
|
IssueLanguage_Enum2["JavaScript"] = "JavaScript";
|
|
222
224
|
IssueLanguage_Enum2["Php"] = "PHP";
|
|
@@ -346,6 +348,7 @@ var init_client_generates = __esm({
|
|
|
346
348
|
IssueType_Enum2["TrustBoundaryViolation"] = "TRUST_BOUNDARY_VIOLATION";
|
|
347
349
|
IssueType_Enum2["TypeConfusion"] = "TYPE_CONFUSION";
|
|
348
350
|
IssueType_Enum2["UncheckedLoopCondition"] = "UNCHECKED_LOOP_CONDITION";
|
|
351
|
+
IssueType_Enum2["UnencryptedAwsSqsQueue"] = "UNENCRYPTED_AWS_SQS_QUEUE";
|
|
349
352
|
IssueType_Enum2["UnnecessaryImports"] = "UNNECESSARY_IMPORTS";
|
|
350
353
|
IssueType_Enum2["UnsafeDeserialization"] = "UNSAFE_DESERIALIZATION";
|
|
351
354
|
IssueType_Enum2["UnsafeTargetBlank"] = "UNSAFE_TARGET_BLANK";
|
|
@@ -1884,7 +1887,8 @@ var init_getIssueType = __esm({
|
|
|
1884
1887
|
["IMPROPER_VALIDATION_OF_ARRAY_INDEX" /* ImproperValidationOfArrayIndex */]: "Improper Validation of Array Index",
|
|
1885
1888
|
["INCORRECT_INTEGER_CONVERSION" /* IncorrectIntegerConversion */]: "Incorrect Integer Conversion",
|
|
1886
1889
|
["IMPROPER_CERTIFICATE_VALIDATION" /* ImproperCertificateValidation */]: "Improper Certificate Validation",
|
|
1887
|
-
["OFTEN_MISUSED_BOOLEAN_GET_BOOLEAN" /* OftenMisusedBooleanGetBoolean */]: "Often Misused: Boolean.getBoolean()"
|
|
1890
|
+
["OFTEN_MISUSED_BOOLEAN_GET_BOOLEAN" /* OftenMisusedBooleanGetBoolean */]: "Often Misused: Boolean.getBoolean()",
|
|
1891
|
+
["UNENCRYPTED_AWS_SQS_QUEUE" /* UnencryptedAwsSqsQueue */]: "AWS SQS Queue Unencrypted"
|
|
1888
1892
|
};
|
|
1889
1893
|
issueTypeZ = z5.nativeEnum(IssueType_Enum);
|
|
1890
1894
|
getIssueTypeFriendlyString = (issueType) => {
|
|
@@ -2338,6 +2342,10 @@ var init_types = __esm({
|
|
|
2338
2342
|
isDefault: z7.boolean().default(false),
|
|
2339
2343
|
organizationId: z7.string().uuid(),
|
|
2340
2344
|
vulnerabilityReports: z7.array(ProjectVulnerabilityReport),
|
|
2345
|
+
autoPrIncludeAiFixes: z7.preprocess(
|
|
2346
|
+
(val) => val === null || val === void 0 ? false : val,
|
|
2347
|
+
z7.boolean()
|
|
2348
|
+
),
|
|
2341
2349
|
projectIssueTypeSettings: z7.array(
|
|
2342
2350
|
IssueTypeSettingZ.merge(z7.object({ id: z7.string() }))
|
|
2343
2351
|
)
|
|
@@ -3542,6 +3550,7 @@ var init_FilePatterns = __esm({
|
|
|
3542
3550
|
".tf",
|
|
3543
3551
|
".hcl",
|
|
3544
3552
|
".tfvars",
|
|
3553
|
+
".tofu",
|
|
3545
3554
|
// TypeScript
|
|
3546
3555
|
".ts",
|
|
3547
3556
|
".tsx",
|
|
@@ -5104,7 +5113,11 @@ var fixDetailsData = {
|
|
|
5104
5113
|
["IMPROPER_VALIDATION_OF_ARRAY_INDEX" /* ImproperValidationOfArrayIndex */]: void 0,
|
|
5105
5114
|
["INCORRECT_INTEGER_CONVERSION" /* IncorrectIntegerConversion */]: void 0,
|
|
5106
5115
|
["IMPROPER_CERTIFICATE_VALIDATION" /* ImproperCertificateValidation */]: void 0,
|
|
5107
|
-
["OFTEN_MISUSED_BOOLEAN_GET_BOOLEAN" /* OftenMisusedBooleanGetBoolean */]: void 0
|
|
5116
|
+
["OFTEN_MISUSED_BOOLEAN_GET_BOOLEAN" /* OftenMisusedBooleanGetBoolean */]: void 0,
|
|
5117
|
+
["UNENCRYPTED_AWS_SQS_QUEUE" /* UnencryptedAwsSqsQueue */]: {
|
|
5118
|
+
issueDescription: "AWS SQS queue contents are unencrypted; data could be read if the queue is compromised.",
|
|
5119
|
+
fixInstructions: "Enable server-side encryption by setting sqs_managed_sse_enabled = true, or supply a KMS key via kms_master_key_id."
|
|
5120
|
+
}
|
|
5108
5121
|
};
|
|
5109
5122
|
|
|
5110
5123
|
// src/features/analysis/scm/shared/src/commitDescriptionMarkup.ts
|
|
@@ -5178,6 +5191,10 @@ var dockerfile_default = vulnerabilities2;
|
|
|
5178
5191
|
var vulnerabilities3 = {};
|
|
5179
5192
|
var go_default = vulnerabilities3;
|
|
5180
5193
|
|
|
5194
|
+
// src/features/analysis/scm/shared/src/storedFixData/hcl/index.ts
|
|
5195
|
+
var vulnerabilities4 = {};
|
|
5196
|
+
var hcl_default = vulnerabilities4;
|
|
5197
|
+
|
|
5181
5198
|
// src/features/analysis/scm/shared/src/storedFixData/java/index.ts
|
|
5182
5199
|
init_client_generates();
|
|
5183
5200
|
|
|
@@ -5231,13 +5248,13 @@ var systemInformationLeak = {
|
|
|
5231
5248
|
};
|
|
5232
5249
|
|
|
5233
5250
|
// src/features/analysis/scm/shared/src/storedFixData/java/index.ts
|
|
5234
|
-
var
|
|
5251
|
+
var vulnerabilities5 = {
|
|
5235
5252
|
["PASSWORD_IN_COMMENT" /* PasswordInComment */]: passwordInComment,
|
|
5236
5253
|
["J2EE_GET_CONNECTION" /* J2EeGetConnection */]: j2eeGetConnection,
|
|
5237
5254
|
["SQL_Injection" /* SqlInjection */]: sqlInjection,
|
|
5238
5255
|
["SYSTEM_INFORMATION_LEAK" /* SystemInformationLeak */]: systemInformationLeak
|
|
5239
5256
|
};
|
|
5240
|
-
var java_default =
|
|
5257
|
+
var java_default = vulnerabilities5;
|
|
5241
5258
|
|
|
5242
5259
|
// src/features/analysis/scm/shared/src/storedFixData/javascript/index.ts
|
|
5243
5260
|
init_client_generates();
|
|
@@ -5283,18 +5300,18 @@ var ssrf = {
|
|
|
5283
5300
|
};
|
|
5284
5301
|
|
|
5285
5302
|
// src/features/analysis/scm/shared/src/storedFixData/javascript/index.ts
|
|
5286
|
-
var
|
|
5303
|
+
var vulnerabilities6 = {
|
|
5287
5304
|
["SSRF" /* Ssrf */]: ssrf,
|
|
5288
5305
|
["HARDCODED_SECRETS" /* HardcodedSecrets */]: hardcodedSecrets,
|
|
5289
5306
|
["PASSWORD_IN_COMMENT" /* PasswordInComment */]: passwordInComment,
|
|
5290
5307
|
["NO_LIMITS_OR_THROTTLING" /* NoLimitsOrThrottling */]: noLimitsOrThrottling,
|
|
5291
5308
|
["CSRF" /* Csrf */]: csrf
|
|
5292
5309
|
};
|
|
5293
|
-
var javascript_default =
|
|
5310
|
+
var javascript_default = vulnerabilities6;
|
|
5294
5311
|
|
|
5295
5312
|
// src/features/analysis/scm/shared/src/storedFixData/php/index.ts
|
|
5296
|
-
var
|
|
5297
|
-
var php_default =
|
|
5313
|
+
var vulnerabilities7 = {};
|
|
5314
|
+
var php_default = vulnerabilities7;
|
|
5298
5315
|
|
|
5299
5316
|
// src/features/analysis/scm/shared/src/storedFixData/python/index.ts
|
|
5300
5317
|
init_client_generates();
|
|
@@ -5332,12 +5349,12 @@ See the [\`requests\` SSL verification docs](https://requests.readthedocs.io/en/
|
|
|
5332
5349
|
};
|
|
5333
5350
|
|
|
5334
5351
|
// src/features/analysis/scm/shared/src/storedFixData/python/index.ts
|
|
5335
|
-
var
|
|
5352
|
+
var vulnerabilities8 = {
|
|
5336
5353
|
["AUTO_ESCAPE_FALSE" /* AutoEscapeFalse */]: autoEscapeFalse,
|
|
5337
5354
|
["CSRF" /* Csrf */]: csrf,
|
|
5338
5355
|
["IMPROPER_CERTIFICATE_VALIDATION" /* ImproperCertificateValidation */]: improperCertificateValidation
|
|
5339
5356
|
};
|
|
5340
|
-
var python_default =
|
|
5357
|
+
var python_default = vulnerabilities8;
|
|
5341
5358
|
|
|
5342
5359
|
// src/features/analysis/scm/shared/src/storedFixData/sql/index.ts
|
|
5343
5360
|
init_client_generates();
|
|
@@ -5348,17 +5365,17 @@ var defaultRightsInObjDefinition = {
|
|
|
5348
5365
|
};
|
|
5349
5366
|
|
|
5350
5367
|
// src/features/analysis/scm/shared/src/storedFixData/sql/index.ts
|
|
5351
|
-
var
|
|
5368
|
+
var vulnerabilities9 = {
|
|
5352
5369
|
["DEFAULT_RIGHTS_IN_OBJ_DEFINITION" /* DefaultRightsInObjDefinition */]: defaultRightsInObjDefinition
|
|
5353
5370
|
};
|
|
5354
|
-
var sql_default =
|
|
5371
|
+
var sql_default = vulnerabilities9;
|
|
5355
5372
|
|
|
5356
5373
|
// src/features/analysis/scm/shared/src/storedFixData/xml/index.ts
|
|
5357
5374
|
init_client_generates();
|
|
5358
|
-
var
|
|
5375
|
+
var vulnerabilities10 = {
|
|
5359
5376
|
["PASSWORD_IN_COMMENT" /* PasswordInComment */]: passwordInComment
|
|
5360
5377
|
};
|
|
5361
|
-
var xml_default =
|
|
5378
|
+
var xml_default = vulnerabilities10;
|
|
5362
5379
|
|
|
5363
5380
|
// src/features/analysis/scm/shared/src/storedFixData/index.ts
|
|
5364
5381
|
var StoredFixDataItemZ = z10.object({
|
|
@@ -5373,7 +5390,8 @@ var languages = {
|
|
|
5373
5390
|
["Python" /* Python */]: python_default,
|
|
5374
5391
|
["PHP" /* Php */]: php_default,
|
|
5375
5392
|
["Go" /* Go */]: go_default,
|
|
5376
|
-
["Dockerfile" /* Dockerfile */]: dockerfile_default
|
|
5393
|
+
["Dockerfile" /* Dockerfile */]: dockerfile_default,
|
|
5394
|
+
["Hcl" /* Hcl */]: hcl_default
|
|
5377
5395
|
};
|
|
5378
5396
|
|
|
5379
5397
|
// src/features/analysis/scm/shared/src/storedQuestionData/index.ts
|
|
@@ -5676,7 +5694,7 @@ var xxe = {
|
|
|
5676
5694
|
};
|
|
5677
5695
|
|
|
5678
5696
|
// src/features/analysis/scm/shared/src/storedQuestionData/csharp/index.ts
|
|
5679
|
-
var
|
|
5697
|
+
var vulnerabilities11 = {
|
|
5680
5698
|
["LOG_FORGING" /* LogForging */]: logForging,
|
|
5681
5699
|
["SSRF" /* Ssrf */]: ssrf2,
|
|
5682
5700
|
["XXE" /* Xxe */]: xxe,
|
|
@@ -5697,7 +5715,7 @@ var vulnerabilities10 = {
|
|
|
5697
5715
|
["SQL_Injection" /* SqlInjection */]: sqlInjection2,
|
|
5698
5716
|
["REQUEST_PARAMETERS_BOUND_VIA_INPUT" /* RequestParametersBoundViaInput */]: requestParametersBoundViaInput
|
|
5699
5717
|
};
|
|
5700
|
-
var csharp_default2 =
|
|
5718
|
+
var csharp_default2 = vulnerabilities11;
|
|
5701
5719
|
|
|
5702
5720
|
// src/features/analysis/scm/shared/src/storedQuestionData/go/index.ts
|
|
5703
5721
|
init_client_generates();
|
|
@@ -5730,12 +5748,12 @@ var websocketMissingOriginCheck = {
|
|
|
5730
5748
|
};
|
|
5731
5749
|
|
|
5732
5750
|
// src/features/analysis/scm/shared/src/storedQuestionData/go/index.ts
|
|
5733
|
-
var
|
|
5751
|
+
var vulnerabilities12 = {
|
|
5734
5752
|
["LOG_FORGING" /* LogForging */]: logForging2,
|
|
5735
5753
|
["MISSING_SSL_MINVERSION" /* MissingSslMinversion */]: missingSslMinversion,
|
|
5736
5754
|
["WEBSOCKET_MISSING_ORIGIN_CHECK" /* WebsocketMissingOriginCheck */]: websocketMissingOriginCheck
|
|
5737
5755
|
};
|
|
5738
|
-
var go_default2 =
|
|
5756
|
+
var go_default2 = vulnerabilities12;
|
|
5739
5757
|
|
|
5740
5758
|
// src/features/analysis/scm/shared/src/storedQuestionData/java/index.ts
|
|
5741
5759
|
init_client_generates();
|
|
@@ -6186,7 +6204,7 @@ var xxe2 = {
|
|
|
6186
6204
|
};
|
|
6187
6205
|
|
|
6188
6206
|
// src/features/analysis/scm/shared/src/storedQuestionData/java/index.ts
|
|
6189
|
-
var
|
|
6207
|
+
var vulnerabilities13 = {
|
|
6190
6208
|
["SQL_Injection" /* SqlInjection */]: sqlInjection3,
|
|
6191
6209
|
["CMDi_relative_path_command" /* CmDiRelativePathCommand */]: relativePathCommand,
|
|
6192
6210
|
["CMDi" /* CmDi */]: commandInjection,
|
|
@@ -6213,7 +6231,7 @@ var vulnerabilities12 = {
|
|
|
6213
6231
|
["ERRONEOUS_STRING_COMPARE" /* ErroneousStringCompare */]: erroneousStringCompare,
|
|
6214
6232
|
["DUPLICATED_STRINGS" /* DuplicatedStrings */]: duplicatedStrings
|
|
6215
6233
|
};
|
|
6216
|
-
var java_default2 =
|
|
6234
|
+
var java_default2 = vulnerabilities13;
|
|
6217
6235
|
|
|
6218
6236
|
// src/features/analysis/scm/shared/src/storedQuestionData/js/index.ts
|
|
6219
6237
|
init_client_generates();
|
|
@@ -6542,7 +6560,7 @@ var xss3 = {
|
|
|
6542
6560
|
};
|
|
6543
6561
|
|
|
6544
6562
|
// src/features/analysis/scm/shared/src/storedQuestionData/js/index.ts
|
|
6545
|
-
var
|
|
6563
|
+
var vulnerabilities14 = {
|
|
6546
6564
|
["CMDi" /* CmDi */]: commandInjection2,
|
|
6547
6565
|
["GRAPHQL_DEPTH_LIMIT" /* GraphqlDepthLimit */]: graphqlDepthLimit,
|
|
6548
6566
|
["INSECURE_RANDOMNESS" /* InsecureRandomness */]: insecureRandomness2,
|
|
@@ -6565,7 +6583,7 @@ var vulnerabilities13 = {
|
|
|
6565
6583
|
["HARDCODED_DOMAIN_IN_HTML" /* HardcodedDomainInHtml */]: hardcodedDomainInHtml,
|
|
6566
6584
|
["CSRF" /* Csrf */]: csrf2
|
|
6567
6585
|
};
|
|
6568
|
-
var js_default =
|
|
6586
|
+
var js_default = vulnerabilities14;
|
|
6569
6587
|
|
|
6570
6588
|
// src/features/analysis/scm/shared/src/storedQuestionData/python/index.ts
|
|
6571
6589
|
init_client_generates();
|
|
@@ -6639,7 +6657,7 @@ var uncheckedLoopCondition3 = {
|
|
|
6639
6657
|
};
|
|
6640
6658
|
|
|
6641
6659
|
// src/features/analysis/scm/shared/src/storedQuestionData/python/index.ts
|
|
6642
|
-
var
|
|
6660
|
+
var vulnerabilities15 = {
|
|
6643
6661
|
["CSRF" /* Csrf */]: csrf2,
|
|
6644
6662
|
["LOG_FORGING" /* LogForging */]: logForging5,
|
|
6645
6663
|
["OPEN_REDIRECT" /* OpenRedirect */]: openRedirect3,
|
|
@@ -6648,7 +6666,7 @@ var vulnerabilities14 = {
|
|
|
6648
6666
|
["MISSING_ENCODING_FILE_OPEN" /* MissingEncodingFileOpen */]: missingEncoding,
|
|
6649
6667
|
["SSRF" /* Ssrf */]: ssrf5
|
|
6650
6668
|
};
|
|
6651
|
-
var python_default2 =
|
|
6669
|
+
var python_default2 = vulnerabilities15;
|
|
6652
6670
|
|
|
6653
6671
|
// src/features/analysis/scm/shared/src/storedQuestionData/xml/index.ts
|
|
6654
6672
|
init_client_generates();
|
|
@@ -6665,10 +6683,10 @@ A value too high will cause performance issues up to and including denial of ser
|
|
|
6665
6683
|
};
|
|
6666
6684
|
|
|
6667
6685
|
// src/features/analysis/scm/shared/src/storedQuestionData/xml/index.ts
|
|
6668
|
-
var
|
|
6686
|
+
var vulnerabilities16 = {
|
|
6669
6687
|
["WEAK_XML_SCHEMA_UNBOUNDED_OCCURRENCES" /* WeakXmlSchemaUnboundedOccurrences */]: unboundedOccurrences
|
|
6670
6688
|
};
|
|
6671
|
-
var xml_default2 =
|
|
6689
|
+
var xml_default2 = vulnerabilities16;
|
|
6672
6690
|
|
|
6673
6691
|
// src/features/analysis/scm/shared/src/storedQuestionData/yaml/index.ts
|
|
6674
6692
|
init_client_generates();
|
|
@@ -6701,12 +6719,12 @@ var writableFilesystemService = {
|
|
|
6701
6719
|
};
|
|
6702
6720
|
|
|
6703
6721
|
// src/features/analysis/scm/shared/src/storedQuestionData/yaml/index.ts
|
|
6704
|
-
var
|
|
6722
|
+
var vulnerabilities17 = {
|
|
6705
6723
|
["PORT_ALL_INTERFACES" /* PortAllInterfaces */]: portAllInterfaces,
|
|
6706
6724
|
["WRITABLE_FILESYSTEM_SERVICE" /* WritableFilesystemService */]: writableFilesystemService,
|
|
6707
6725
|
["NO_NEW_PRIVILEGES" /* NoNewPrivileges */]: noNewPrivileges
|
|
6708
6726
|
};
|
|
6709
|
-
var yaml_default =
|
|
6727
|
+
var yaml_default = vulnerabilities17;
|
|
6710
6728
|
|
|
6711
6729
|
// src/features/analysis/scm/shared/src/storedQuestionData/index.ts
|
|
6712
6730
|
var StoredQuestionDataItemZ = z11.object({
|
package/dist/index.mjs
CHANGED
|
@@ -163,6 +163,7 @@ var init_client_generates = __esm({
|
|
|
163
163
|
Language2["Default"] = "DEFAULT";
|
|
164
164
|
Language2["Dockerfile"] = "DOCKERFILE";
|
|
165
165
|
Language2["Go"] = "GO";
|
|
166
|
+
Language2["Hcl"] = "HCL";
|
|
166
167
|
Language2["Java"] = "JAVA";
|
|
167
168
|
Language2["Js"] = "JS";
|
|
168
169
|
Language2["Php"] = "PHP";
|
|
@@ -217,6 +218,7 @@ var init_client_generates = __esm({
|
|
|
217
218
|
IssueLanguage_Enum2["Default"] = "Default";
|
|
218
219
|
IssueLanguage_Enum2["Dockerfile"] = "Dockerfile";
|
|
219
220
|
IssueLanguage_Enum2["Go"] = "Go";
|
|
221
|
+
IssueLanguage_Enum2["Hcl"] = "Hcl";
|
|
220
222
|
IssueLanguage_Enum2["Java"] = "Java";
|
|
221
223
|
IssueLanguage_Enum2["JavaScript"] = "JavaScript";
|
|
222
224
|
IssueLanguage_Enum2["Php"] = "PHP";
|
|
@@ -346,6 +348,7 @@ var init_client_generates = __esm({
|
|
|
346
348
|
IssueType_Enum2["TrustBoundaryViolation"] = "TRUST_BOUNDARY_VIOLATION";
|
|
347
349
|
IssueType_Enum2["TypeConfusion"] = "TYPE_CONFUSION";
|
|
348
350
|
IssueType_Enum2["UncheckedLoopCondition"] = "UNCHECKED_LOOP_CONDITION";
|
|
351
|
+
IssueType_Enum2["UnencryptedAwsSqsQueue"] = "UNENCRYPTED_AWS_SQS_QUEUE";
|
|
349
352
|
IssueType_Enum2["UnnecessaryImports"] = "UNNECESSARY_IMPORTS";
|
|
350
353
|
IssueType_Enum2["UnsafeDeserialization"] = "UNSAFE_DESERIALIZATION";
|
|
351
354
|
IssueType_Enum2["UnsafeTargetBlank"] = "UNSAFE_TARGET_BLANK";
|
|
@@ -1550,7 +1553,8 @@ var init_getIssueType = __esm({
|
|
|
1550
1553
|
["IMPROPER_VALIDATION_OF_ARRAY_INDEX" /* ImproperValidationOfArrayIndex */]: "Improper Validation of Array Index",
|
|
1551
1554
|
["INCORRECT_INTEGER_CONVERSION" /* IncorrectIntegerConversion */]: "Incorrect Integer Conversion",
|
|
1552
1555
|
["IMPROPER_CERTIFICATE_VALIDATION" /* ImproperCertificateValidation */]: "Improper Certificate Validation",
|
|
1553
|
-
["OFTEN_MISUSED_BOOLEAN_GET_BOOLEAN" /* OftenMisusedBooleanGetBoolean */]: "Often Misused: Boolean.getBoolean()"
|
|
1556
|
+
["OFTEN_MISUSED_BOOLEAN_GET_BOOLEAN" /* OftenMisusedBooleanGetBoolean */]: "Often Misused: Boolean.getBoolean()",
|
|
1557
|
+
["UNENCRYPTED_AWS_SQS_QUEUE" /* UnencryptedAwsSqsQueue */]: "AWS SQS Queue Unencrypted"
|
|
1554
1558
|
};
|
|
1555
1559
|
issueTypeZ = z.nativeEnum(IssueType_Enum);
|
|
1556
1560
|
getIssueTypeFriendlyString = (issueType) => {
|
|
@@ -2383,6 +2387,10 @@ var init_types = __esm({
|
|
|
2383
2387
|
isDefault: z11.boolean().default(false),
|
|
2384
2388
|
organizationId: z11.string().uuid(),
|
|
2385
2389
|
vulnerabilityReports: z11.array(ProjectVulnerabilityReport),
|
|
2390
|
+
autoPrIncludeAiFixes: z11.preprocess(
|
|
2391
|
+
(val) => val === null || val === void 0 ? false : val,
|
|
2392
|
+
z11.boolean()
|
|
2393
|
+
),
|
|
2386
2394
|
projectIssueTypeSettings: z11.array(
|
|
2387
2395
|
IssueTypeSettingZ.merge(z11.object({ id: z11.string() }))
|
|
2388
2396
|
)
|
|
@@ -3594,6 +3602,7 @@ var init_FilePatterns = __esm({
|
|
|
3594
3602
|
".tf",
|
|
3595
3603
|
".hcl",
|
|
3596
3604
|
".tfvars",
|
|
3605
|
+
".tofu",
|
|
3597
3606
|
// TypeScript
|
|
3598
3607
|
".ts",
|
|
3599
3608
|
".tsx",
|
|
@@ -4808,7 +4817,11 @@ var fixDetailsData = {
|
|
|
4808
4817
|
["IMPROPER_VALIDATION_OF_ARRAY_INDEX" /* ImproperValidationOfArrayIndex */]: void 0,
|
|
4809
4818
|
["INCORRECT_INTEGER_CONVERSION" /* IncorrectIntegerConversion */]: void 0,
|
|
4810
4819
|
["IMPROPER_CERTIFICATE_VALIDATION" /* ImproperCertificateValidation */]: void 0,
|
|
4811
|
-
["OFTEN_MISUSED_BOOLEAN_GET_BOOLEAN" /* OftenMisusedBooleanGetBoolean */]: void 0
|
|
4820
|
+
["OFTEN_MISUSED_BOOLEAN_GET_BOOLEAN" /* OftenMisusedBooleanGetBoolean */]: void 0,
|
|
4821
|
+
["UNENCRYPTED_AWS_SQS_QUEUE" /* UnencryptedAwsSqsQueue */]: {
|
|
4822
|
+
issueDescription: "AWS SQS queue contents are unencrypted; data could be read if the queue is compromised.",
|
|
4823
|
+
fixInstructions: "Enable server-side encryption by setting sqs_managed_sse_enabled = true, or supply a KMS key via kms_master_key_id."
|
|
4824
|
+
}
|
|
4812
4825
|
};
|
|
4813
4826
|
|
|
4814
4827
|
// src/features/analysis/scm/shared/src/commitDescriptionMarkup.ts
|
|
@@ -4970,6 +4983,10 @@ var dockerfile_default = vulnerabilities2;
|
|
|
4970
4983
|
var vulnerabilities3 = {};
|
|
4971
4984
|
var go_default = vulnerabilities3;
|
|
4972
4985
|
|
|
4986
|
+
// src/features/analysis/scm/shared/src/storedFixData/hcl/index.ts
|
|
4987
|
+
var vulnerabilities4 = {};
|
|
4988
|
+
var hcl_default = vulnerabilities4;
|
|
4989
|
+
|
|
4973
4990
|
// src/features/analysis/scm/shared/src/storedFixData/java/index.ts
|
|
4974
4991
|
init_client_generates();
|
|
4975
4992
|
|
|
@@ -5023,13 +5040,13 @@ var systemInformationLeak = {
|
|
|
5023
5040
|
};
|
|
5024
5041
|
|
|
5025
5042
|
// src/features/analysis/scm/shared/src/storedFixData/java/index.ts
|
|
5026
|
-
var
|
|
5043
|
+
var vulnerabilities5 = {
|
|
5027
5044
|
["PASSWORD_IN_COMMENT" /* PasswordInComment */]: passwordInComment,
|
|
5028
5045
|
["J2EE_GET_CONNECTION" /* J2EeGetConnection */]: j2eeGetConnection,
|
|
5029
5046
|
["SQL_Injection" /* SqlInjection */]: sqlInjection,
|
|
5030
5047
|
["SYSTEM_INFORMATION_LEAK" /* SystemInformationLeak */]: systemInformationLeak
|
|
5031
5048
|
};
|
|
5032
|
-
var java_default =
|
|
5049
|
+
var java_default = vulnerabilities5;
|
|
5033
5050
|
|
|
5034
5051
|
// src/features/analysis/scm/shared/src/storedFixData/javascript/index.ts
|
|
5035
5052
|
init_client_generates();
|
|
@@ -5075,18 +5092,18 @@ var ssrf = {
|
|
|
5075
5092
|
};
|
|
5076
5093
|
|
|
5077
5094
|
// src/features/analysis/scm/shared/src/storedFixData/javascript/index.ts
|
|
5078
|
-
var
|
|
5095
|
+
var vulnerabilities6 = {
|
|
5079
5096
|
["SSRF" /* Ssrf */]: ssrf,
|
|
5080
5097
|
["HARDCODED_SECRETS" /* HardcodedSecrets */]: hardcodedSecrets,
|
|
5081
5098
|
["PASSWORD_IN_COMMENT" /* PasswordInComment */]: passwordInComment,
|
|
5082
5099
|
["NO_LIMITS_OR_THROTTLING" /* NoLimitsOrThrottling */]: noLimitsOrThrottling,
|
|
5083
5100
|
["CSRF" /* Csrf */]: csrf
|
|
5084
5101
|
};
|
|
5085
|
-
var javascript_default =
|
|
5102
|
+
var javascript_default = vulnerabilities6;
|
|
5086
5103
|
|
|
5087
5104
|
// src/features/analysis/scm/shared/src/storedFixData/php/index.ts
|
|
5088
|
-
var
|
|
5089
|
-
var php_default =
|
|
5105
|
+
var vulnerabilities7 = {};
|
|
5106
|
+
var php_default = vulnerabilities7;
|
|
5090
5107
|
|
|
5091
5108
|
// src/features/analysis/scm/shared/src/storedFixData/python/index.ts
|
|
5092
5109
|
init_client_generates();
|
|
@@ -5124,12 +5141,12 @@ See the [\`requests\` SSL verification docs](https://requests.readthedocs.io/en/
|
|
|
5124
5141
|
};
|
|
5125
5142
|
|
|
5126
5143
|
// src/features/analysis/scm/shared/src/storedFixData/python/index.ts
|
|
5127
|
-
var
|
|
5144
|
+
var vulnerabilities8 = {
|
|
5128
5145
|
["AUTO_ESCAPE_FALSE" /* AutoEscapeFalse */]: autoEscapeFalse,
|
|
5129
5146
|
["CSRF" /* Csrf */]: csrf,
|
|
5130
5147
|
["IMPROPER_CERTIFICATE_VALIDATION" /* ImproperCertificateValidation */]: improperCertificateValidation
|
|
5131
5148
|
};
|
|
5132
|
-
var python_default =
|
|
5149
|
+
var python_default = vulnerabilities8;
|
|
5133
5150
|
|
|
5134
5151
|
// src/features/analysis/scm/shared/src/storedFixData/sql/index.ts
|
|
5135
5152
|
init_client_generates();
|
|
@@ -5140,17 +5157,17 @@ var defaultRightsInObjDefinition = {
|
|
|
5140
5157
|
};
|
|
5141
5158
|
|
|
5142
5159
|
// src/features/analysis/scm/shared/src/storedFixData/sql/index.ts
|
|
5143
|
-
var
|
|
5160
|
+
var vulnerabilities9 = {
|
|
5144
5161
|
["DEFAULT_RIGHTS_IN_OBJ_DEFINITION" /* DefaultRightsInObjDefinition */]: defaultRightsInObjDefinition
|
|
5145
5162
|
};
|
|
5146
|
-
var sql_default =
|
|
5163
|
+
var sql_default = vulnerabilities9;
|
|
5147
5164
|
|
|
5148
5165
|
// src/features/analysis/scm/shared/src/storedFixData/xml/index.ts
|
|
5149
5166
|
init_client_generates();
|
|
5150
|
-
var
|
|
5167
|
+
var vulnerabilities10 = {
|
|
5151
5168
|
["PASSWORD_IN_COMMENT" /* PasswordInComment */]: passwordInComment
|
|
5152
5169
|
};
|
|
5153
|
-
var xml_default =
|
|
5170
|
+
var xml_default = vulnerabilities10;
|
|
5154
5171
|
|
|
5155
5172
|
// src/features/analysis/scm/shared/src/storedFixData/index.ts
|
|
5156
5173
|
var StoredFixDataItemZ = z3.object({
|
|
@@ -5165,7 +5182,8 @@ var languages = {
|
|
|
5165
5182
|
["Python" /* Python */]: python_default,
|
|
5166
5183
|
["PHP" /* Php */]: php_default,
|
|
5167
5184
|
["Go" /* Go */]: go_default,
|
|
5168
|
-
["Dockerfile" /* Dockerfile */]: dockerfile_default
|
|
5185
|
+
["Dockerfile" /* Dockerfile */]: dockerfile_default,
|
|
5186
|
+
["Hcl" /* Hcl */]: hcl_default
|
|
5169
5187
|
};
|
|
5170
5188
|
|
|
5171
5189
|
// src/features/analysis/scm/shared/src/storedQuestionData/index.ts
|
|
@@ -5468,7 +5486,7 @@ var xxe = {
|
|
|
5468
5486
|
};
|
|
5469
5487
|
|
|
5470
5488
|
// src/features/analysis/scm/shared/src/storedQuestionData/csharp/index.ts
|
|
5471
|
-
var
|
|
5489
|
+
var vulnerabilities11 = {
|
|
5472
5490
|
["LOG_FORGING" /* LogForging */]: logForging,
|
|
5473
5491
|
["SSRF" /* Ssrf */]: ssrf2,
|
|
5474
5492
|
["XXE" /* Xxe */]: xxe,
|
|
@@ -5489,7 +5507,7 @@ var vulnerabilities10 = {
|
|
|
5489
5507
|
["SQL_Injection" /* SqlInjection */]: sqlInjection2,
|
|
5490
5508
|
["REQUEST_PARAMETERS_BOUND_VIA_INPUT" /* RequestParametersBoundViaInput */]: requestParametersBoundViaInput
|
|
5491
5509
|
};
|
|
5492
|
-
var csharp_default2 =
|
|
5510
|
+
var csharp_default2 = vulnerabilities11;
|
|
5493
5511
|
|
|
5494
5512
|
// src/features/analysis/scm/shared/src/storedQuestionData/go/index.ts
|
|
5495
5513
|
init_client_generates();
|
|
@@ -5522,12 +5540,12 @@ var websocketMissingOriginCheck = {
|
|
|
5522
5540
|
};
|
|
5523
5541
|
|
|
5524
5542
|
// src/features/analysis/scm/shared/src/storedQuestionData/go/index.ts
|
|
5525
|
-
var
|
|
5543
|
+
var vulnerabilities12 = {
|
|
5526
5544
|
["LOG_FORGING" /* LogForging */]: logForging2,
|
|
5527
5545
|
["MISSING_SSL_MINVERSION" /* MissingSslMinversion */]: missingSslMinversion,
|
|
5528
5546
|
["WEBSOCKET_MISSING_ORIGIN_CHECK" /* WebsocketMissingOriginCheck */]: websocketMissingOriginCheck
|
|
5529
5547
|
};
|
|
5530
|
-
var go_default2 =
|
|
5548
|
+
var go_default2 = vulnerabilities12;
|
|
5531
5549
|
|
|
5532
5550
|
// src/features/analysis/scm/shared/src/storedQuestionData/java/index.ts
|
|
5533
5551
|
init_client_generates();
|
|
@@ -5978,7 +5996,7 @@ var xxe2 = {
|
|
|
5978
5996
|
};
|
|
5979
5997
|
|
|
5980
5998
|
// src/features/analysis/scm/shared/src/storedQuestionData/java/index.ts
|
|
5981
|
-
var
|
|
5999
|
+
var vulnerabilities13 = {
|
|
5982
6000
|
["SQL_Injection" /* SqlInjection */]: sqlInjection3,
|
|
5983
6001
|
["CMDi_relative_path_command" /* CmDiRelativePathCommand */]: relativePathCommand,
|
|
5984
6002
|
["CMDi" /* CmDi */]: commandInjection,
|
|
@@ -6005,7 +6023,7 @@ var vulnerabilities12 = {
|
|
|
6005
6023
|
["ERRONEOUS_STRING_COMPARE" /* ErroneousStringCompare */]: erroneousStringCompare,
|
|
6006
6024
|
["DUPLICATED_STRINGS" /* DuplicatedStrings */]: duplicatedStrings
|
|
6007
6025
|
};
|
|
6008
|
-
var java_default2 =
|
|
6026
|
+
var java_default2 = vulnerabilities13;
|
|
6009
6027
|
|
|
6010
6028
|
// src/features/analysis/scm/shared/src/storedQuestionData/js/index.ts
|
|
6011
6029
|
init_client_generates();
|
|
@@ -6334,7 +6352,7 @@ var xss3 = {
|
|
|
6334
6352
|
};
|
|
6335
6353
|
|
|
6336
6354
|
// src/features/analysis/scm/shared/src/storedQuestionData/js/index.ts
|
|
6337
|
-
var
|
|
6355
|
+
var vulnerabilities14 = {
|
|
6338
6356
|
["CMDi" /* CmDi */]: commandInjection2,
|
|
6339
6357
|
["GRAPHQL_DEPTH_LIMIT" /* GraphqlDepthLimit */]: graphqlDepthLimit,
|
|
6340
6358
|
["INSECURE_RANDOMNESS" /* InsecureRandomness */]: insecureRandomness2,
|
|
@@ -6357,7 +6375,7 @@ var vulnerabilities13 = {
|
|
|
6357
6375
|
["HARDCODED_DOMAIN_IN_HTML" /* HardcodedDomainInHtml */]: hardcodedDomainInHtml,
|
|
6358
6376
|
["CSRF" /* Csrf */]: csrf2
|
|
6359
6377
|
};
|
|
6360
|
-
var js_default =
|
|
6378
|
+
var js_default = vulnerabilities14;
|
|
6361
6379
|
|
|
6362
6380
|
// src/features/analysis/scm/shared/src/storedQuestionData/python/index.ts
|
|
6363
6381
|
init_client_generates();
|
|
@@ -6431,7 +6449,7 @@ var uncheckedLoopCondition3 = {
|
|
|
6431
6449
|
};
|
|
6432
6450
|
|
|
6433
6451
|
// src/features/analysis/scm/shared/src/storedQuestionData/python/index.ts
|
|
6434
|
-
var
|
|
6452
|
+
var vulnerabilities15 = {
|
|
6435
6453
|
["CSRF" /* Csrf */]: csrf2,
|
|
6436
6454
|
["LOG_FORGING" /* LogForging */]: logForging5,
|
|
6437
6455
|
["OPEN_REDIRECT" /* OpenRedirect */]: openRedirect3,
|
|
@@ -6440,7 +6458,7 @@ var vulnerabilities14 = {
|
|
|
6440
6458
|
["MISSING_ENCODING_FILE_OPEN" /* MissingEncodingFileOpen */]: missingEncoding,
|
|
6441
6459
|
["SSRF" /* Ssrf */]: ssrf5
|
|
6442
6460
|
};
|
|
6443
|
-
var python_default2 =
|
|
6461
|
+
var python_default2 = vulnerabilities15;
|
|
6444
6462
|
|
|
6445
6463
|
// src/features/analysis/scm/shared/src/storedQuestionData/xml/index.ts
|
|
6446
6464
|
init_client_generates();
|
|
@@ -6457,10 +6475,10 @@ A value too high will cause performance issues up to and including denial of ser
|
|
|
6457
6475
|
};
|
|
6458
6476
|
|
|
6459
6477
|
// src/features/analysis/scm/shared/src/storedQuestionData/xml/index.ts
|
|
6460
|
-
var
|
|
6478
|
+
var vulnerabilities16 = {
|
|
6461
6479
|
["WEAK_XML_SCHEMA_UNBOUNDED_OCCURRENCES" /* WeakXmlSchemaUnboundedOccurrences */]: unboundedOccurrences
|
|
6462
6480
|
};
|
|
6463
|
-
var xml_default2 =
|
|
6481
|
+
var xml_default2 = vulnerabilities16;
|
|
6464
6482
|
|
|
6465
6483
|
// src/features/analysis/scm/shared/src/storedQuestionData/yaml/index.ts
|
|
6466
6484
|
init_client_generates();
|
|
@@ -6493,12 +6511,12 @@ var writableFilesystemService = {
|
|
|
6493
6511
|
};
|
|
6494
6512
|
|
|
6495
6513
|
// src/features/analysis/scm/shared/src/storedQuestionData/yaml/index.ts
|
|
6496
|
-
var
|
|
6514
|
+
var vulnerabilities17 = {
|
|
6497
6515
|
["PORT_ALL_INTERFACES" /* PortAllInterfaces */]: portAllInterfaces,
|
|
6498
6516
|
["WRITABLE_FILESYSTEM_SERVICE" /* WritableFilesystemService */]: writableFilesystemService,
|
|
6499
6517
|
["NO_NEW_PRIVILEGES" /* NoNewPrivileges */]: noNewPrivileges
|
|
6500
6518
|
};
|
|
6501
|
-
var yaml_default =
|
|
6519
|
+
var yaml_default = vulnerabilities17;
|
|
6502
6520
|
|
|
6503
6521
|
// src/features/analysis/scm/shared/src/storedQuestionData/index.ts
|
|
6504
6522
|
var StoredQuestionDataItemZ = z4.object({
|
|
@@ -19399,7 +19417,7 @@ function createLogger(config2) {
|
|
|
19399
19417
|
|
|
19400
19418
|
// src/features/claude_code/hook_logger.ts
|
|
19401
19419
|
var DD_RUM_TOKEN = true ? "pubf59c0182545bfb4c299175119f1abf9b" : "";
|
|
19402
|
-
var CLI_VERSION = true ? "1.4.
|
|
19420
|
+
var CLI_VERSION = true ? "1.4.17" : "unknown";
|
|
19403
19421
|
var NAMESPACE = "mobbdev-claude-code-hook-logs";
|
|
19404
19422
|
var claudeCodeVersion;
|
|
19405
19423
|
function buildDdTags() {
|