scanoss 0.19.0 → 0.20.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (79) hide show
  1. package/CHANGELOG.md +10 -0
  2. package/build/main/index.d.ts +6 -2
  3. package/build/main/index.js +9 -3
  4. package/build/main/sdk/BaseConfig.js +1 -2
  5. package/build/main/sdk/Clients/Cryptography/{CryptographyClient.d.ts → CryptographyGRPCClient.d.ts} +2 -2
  6. package/build/main/sdk/Clients/Cryptography/CryptographyGRPCClient.js +142 -0
  7. package/build/main/sdk/Clients/Cryptography/CryptographyHttpClient.d.ts +1 -1
  8. package/build/main/sdk/Clients/Cryptography/CryptographyHttpClient.js +3 -3
  9. package/build/main/sdk/Clients/Cryptography/ICryptographyClient.d.ts +1 -1
  10. package/build/main/sdk/Clients/Dependency/{DependencyClient.d.ts → DependencyGRPCClient.d.ts} +1 -1
  11. package/build/main/sdk/Clients/Dependency/{DependencyClient.js → DependencyGRPCClient.js} +6 -6
  12. package/build/main/sdk/Clients/Dependency/IDependencyClient.d.ts +1 -1
  13. package/build/main/sdk/Clients/Grpc/BaseGRPCClient.js +1 -1
  14. package/build/main/sdk/Clients/Vulnerability/IVulnerabilityClient.d.ts +4 -3
  15. package/build/main/sdk/Clients/Vulnerability/VulnerabilityHttpClient.d.ts +4 -3
  16. package/build/main/sdk/Clients/Vulnerability/VulnerabilityHttpClient.js +5 -10
  17. package/build/main/sdk/Clients/helper/clientHelper.d.ts +1 -1
  18. package/build/main/sdk/Clients/helper/clientHelper.js +2 -2
  19. package/build/main/sdk/Cryptography/Algorithm/Components/ComponentAlgorithmScanner.d.ts +1 -1
  20. package/build/main/sdk/Cryptography/Algorithm/Components/ComponentAlgorithmScanner.js +3 -3
  21. package/build/main/sdk/Cryptography/CryptoCfg.js +6 -7
  22. package/build/main/sdk/Cryptography/CryptographyScanner.d.ts +1 -1
  23. package/build/main/sdk/Cryptography/CryptographyScanner.js +1 -1
  24. package/build/main/sdk/Cryptography/CryptographyTypes.d.ts +1 -1
  25. package/build/main/sdk/Cryptography/Hint/Components/ComponentHintScanner.d.ts +1 -1
  26. package/build/main/sdk/Cryptography/Hint/Components/ComponentHintScanner.js +3 -3
  27. package/build/main/sdk/Dependencies/DependencyScannerCfg.js +6 -10
  28. package/build/main/sdk/Report/DataLayer/DataLayerTypes.d.ts +1 -11
  29. package/build/main/sdk/Vulnerability/VulnerabilityCfg.d.ts +1 -1
  30. package/build/main/sdk/Vulnerability/VulnerabilityCfg.js +10 -7
  31. package/build/main/sdk/Vulnerability/VulnerabilityScanner.d.ts +4 -2
  32. package/build/main/sdk/Vulnerability/VulnerabilityScanner.js +64 -10
  33. package/build/main/sdk/types/common/types.js +3 -0
  34. package/build/main/sdk/types/vulnerability/types.d.ts +35 -0
  35. package/build/main/sdk/types/vulnerability/types.js +3 -0
  36. package/build/main/tsconfig.tsbuildinfo +1 -1
  37. package/build/module/index.d.ts +6 -2
  38. package/build/module/index.js +9 -3
  39. package/build/module/sdk/BaseConfig.js +1 -2
  40. package/build/module/sdk/Clients/Cryptography/{CryptographyClient.d.ts → CryptographyGRPCClient.d.ts} +2 -2
  41. package/build/module/sdk/Clients/Cryptography/CryptographyGRPCClient.js +131 -0
  42. package/build/module/sdk/Clients/Cryptography/CryptographyHttpClient.d.ts +1 -1
  43. package/build/module/sdk/Clients/Cryptography/CryptographyHttpClient.js +3 -3
  44. package/build/module/sdk/Clients/Cryptography/ICryptographyClient.d.ts +1 -1
  45. package/build/module/sdk/Clients/Dependency/{DependencyClient.d.ts → DependencyGRPCClient.d.ts} +1 -1
  46. package/build/module/sdk/Clients/Dependency/DependencyGRPCClient.js +74 -0
  47. package/build/module/sdk/Clients/Dependency/IDependencyClient.d.ts +1 -1
  48. package/build/module/sdk/Clients/Grpc/BaseGRPCClient.js +1 -1
  49. package/build/module/sdk/Clients/Vulnerability/IVulnerabilityClient.d.ts +4 -3
  50. package/build/module/sdk/Clients/Vulnerability/VulnerabilityHttpClient.d.ts +4 -3
  51. package/build/module/sdk/Clients/Vulnerability/VulnerabilityHttpClient.js +5 -10
  52. package/build/module/sdk/Clients/helper/clientHelper.d.ts +1 -1
  53. package/build/module/sdk/Clients/helper/clientHelper.js +2 -2
  54. package/build/module/sdk/Cryptography/Algorithm/Components/ComponentAlgorithmScanner.d.ts +1 -1
  55. package/build/module/sdk/Cryptography/Algorithm/Components/ComponentAlgorithmScanner.js +3 -3
  56. package/build/module/sdk/Cryptography/CryptoCfg.js +6 -7
  57. package/build/module/sdk/Cryptography/CryptographyScanner.d.ts +1 -1
  58. package/build/module/sdk/Cryptography/CryptographyScanner.js +1 -1
  59. package/build/module/sdk/Cryptography/CryptographyTypes.d.ts +1 -1
  60. package/build/module/sdk/Cryptography/Hint/Components/ComponentHintScanner.d.ts +1 -1
  61. package/build/module/sdk/Cryptography/Hint/Components/ComponentHintScanner.js +3 -3
  62. package/build/module/sdk/Dependencies/DependencyScannerCfg.js +6 -10
  63. package/build/module/sdk/Report/DataLayer/DataLayerTypes.d.ts +1 -11
  64. package/build/module/sdk/Vulnerability/VulnerabilityCfg.d.ts +1 -1
  65. package/build/module/sdk/Vulnerability/VulnerabilityCfg.js +9 -7
  66. package/build/module/sdk/Vulnerability/VulnerabilityScanner.d.ts +4 -2
  67. package/build/module/sdk/Vulnerability/VulnerabilityScanner.js +64 -10
  68. package/build/module/sdk/types/common/types.js +2 -0
  69. package/build/module/sdk/types/vulnerability/types.d.ts +35 -0
  70. package/build/module/sdk/types/vulnerability/types.js +2 -0
  71. package/build/module/tsconfig.module.tsbuildinfo +1 -1
  72. package/package.json +1 -1
  73. package/build/main/sdk/Clients/Cryptography/CryptographyClient.js +0 -142
  74. package/build/main/sdk/shared/interfaces/Component.js +0 -3
  75. package/build/module/sdk/Clients/Cryptography/CryptographyClient.js +0 -131
  76. package/build/module/sdk/Clients/Dependency/DependencyClient.js +0 -74
  77. package/build/module/sdk/shared/interfaces/Component.js +0 -2
  78. /package/build/main/sdk/{shared/interfaces/Component.d.ts → types/common/types.d.ts} +0 -0
  79. /package/build/module/sdk/{shared/interfaces/Component.d.ts → types/common/types.d.ts} +0 -0
package/build/module/sdk/Report/DataLayer/DataLayerTypes.d.ts CHANGED
@@ -1,4 +1,5 @@
1
1
  import { CryptoAlgorithm } from "../../Cryptography/CryptographyTypes";
2
+ import { Vulnerability } from "../../types/vulnerability/types";
2
3
  /************* Component interface definition *************/
3
4
  export interface ComponentDataLayer {
4
5
  key: string;
@@ -56,17 +57,6 @@ export interface Dependency {
56
57
  licenses: License[];
57
58
  }
58
59
  /************* Dependency interface definition *************/
59
- /************* Vulnerability interface definition *************/
60
- export interface Vulnerability {
61
- id: string;
62
- cve: string;
63
- url: string;
64
- summary: string;
65
- severity: string;
66
- published: string;
67
- modified: string;
68
- source: string;
69
- }
70
60
  export interface VulnerabilityDataLayer {
71
61
  purl: string;
72
62
  vulnerability: Vulnerability[];
package/build/module/sdk/Vulnerability/VulnerabilityCfg.d.ts CHANGED
@@ -16,7 +16,7 @@ export declare class VulnerabilityCfg extends BaseConfig {
16
16
  API_KEY: string;
17
17
  constructor(config?: VulnerabilityCfg);
18
18
  /**
19
- * Resolves the appropriate API URL based on API key presence and current URL.
19
+ * Resolves the appropriate API URL based on API key presence and current URL. See: src/sdk/BaseConfig.ts
20
20
  * If an API key is provided and the current URL is the default, returns the premium
21
21
  * URL, otherwise returns the current URL.
22
22
  * @param apiKey - The API key (if any)
package/build/module/sdk/Vulnerability/VulnerabilityCfg.js CHANGED
@@ -16,9 +16,11 @@ export class VulnerabilityCfg extends BaseConfig {
16
16
  API_KEY = "";
17
17
  constructor(config) {
18
18
  super(config);
19
+ this.REQUEST_CHUNK_SIZE = config?.REQUEST_CHUNK_SIZE ?? this.REQUEST_CHUNK_SIZE;
20
+ this.API_KEY = config?.API_KEY ?? this.API_KEY;
19
21
  }
20
22
  /**
21
- * Resolves the appropriate API URL based on API key presence and current URL.
23
+ * Resolves the appropriate API URL based on API key presence and current URL. See: src/sdk/BaseConfig.ts
22
24
  * If an API key is provided and the current URL is the default, returns the premium
23
25
  * URL, otherwise returns the current URL.
24
26
  * @param apiKey - The API key (if any)
@@ -26,19 +28,19 @@ export class VulnerabilityCfg extends BaseConfig {
26
28
  * @returns The resolved API URL
27
29
  */
28
30
  resolveApiUrl(apiKey, currentUrl) {
29
- // Case 1: Has API key and using default URL -> upgrade to premium URL
30
- if (apiKey && currentUrl === BaseConfig.getPremiumURL())
31
+ // Case 1: Has API key and using default URL -> upgrade to premium URL. The default URL is set on the BaseConfig.ts file
32
+ if (apiKey && currentUrl === BaseConfig.getDefaultURL())
31
33
  return BaseConfig.getPremiumURL();
32
34
  // Case 2: Has API key and using custom URL -> keep custom URL
33
- if (apiKey && currentUrl !== BaseConfig.getDefaultURL()) {
34
- // Only remove /scan/direct for official SCANOSS API endpoints
35
+ if (apiKey && currentUrl.startsWith(BaseConfig.getPremiumURL()) || currentUrl.startsWith(BaseConfig.getDefaultURL())) {
36
+ // Check if custom URL is not the same as the default one.
35
37
  if (currentUrl.startsWith(BaseConfig.getPremiumURL()) || currentUrl.startsWith(BaseConfig.getDefaultURL())) {
36
38
  return currentUrl.replace(/\/scan\/direct$/, '');
37
39
  }
38
40
  return currentUrl;
39
41
  }
40
42
  // Case 4: No API key and default/empty URL -> use default URL
41
- return BaseConfig.getPremiumURL();
43
+ return BaseConfig.getDefaultURL();
42
44
  }
43
45
  get API_URL() {
44
46
  return this.resolveApiUrl(this.API_KEY, super.API_URL);
@@ -47,4 +49,4 @@ export class VulnerabilityCfg extends BaseConfig {
47
49
  super.API_URL = url;
48
50
  }
49
51
  }
50
- //# sourceMappingURL=data:application/json;base64,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
52
+ //# sourceMappingURL=data:application/json;base64,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
package/build/module/sdk/Vulnerability/VulnerabilityScanner.d.ts CHANGED
@@ -1,8 +1,10 @@
1
1
  import { VulnerabilityCfg } from "./VulnerabilityCfg";
2
- import { Component } from "../shared/interfaces/Component";
2
+ import { ComponentsVulnerabilitiesResponse, ComponentVulnerabilityResponse } from "../types/vulnerability/types";
3
+ import { Component } from "../types/common/types";
3
4
  export declare class VulnerabilityScanner {
4
5
  private config;
5
6
  private vulnerabilityClient;
6
7
  constructor(config?: VulnerabilityCfg);
7
- getVulnerabilities(components: Array<Component>): Promise<any[]>;
8
+ getVulnerabilitiesComponents(components: Array<Component>): Promise<ComponentsVulnerabilitiesResponse>;
9
+ getVulnerabilitiesComponent(component: Component): Promise<ComponentVulnerabilityResponse>;
8
10
  }
package/build/module/sdk/Vulnerability/VulnerabilityScanner.js CHANGED
@@ -12,21 +12,75 @@ export class VulnerabilityScanner {
12
12
  this.config = new VulnerabilityCfg();
13
13
  this.vulnerabilityClient = new VulnerabilityHttpClient(this.config.API_KEY, this.config.API_URL ? this.config.API_URL : '', this.config.HTTPS_PROXY ? this.config.HTTPS_PROXY : '', this.config.CA_CERT);
14
14
  }
15
- async getVulnerabilities(components) {
15
+ async getVulnerabilitiesComponents(components) {
16
16
  const requests = chunkRequest(components, this.config.REQUEST_CHUNK_SIZE);
17
- const vulnerabilities = [];
17
+ const response = {
18
+ components: [],
19
+ status: {
20
+ status: "SUCCESS",
21
+ message: "Vulnerabilities retrieved successfully"
22
+ }
23
+ };
24
+ const failedRequests = [];
25
+ const componentVulnerabilities = new Map();
18
26
  for (const request of requests) {
19
- const r = await this.vulnerabilityClient.getVulnerabilitiesComponents(request);
20
- if (r.ok) {
21
- const json = await r.json();
22
- vulnerabilities.push(...json);
27
+ try {
28
+ const r = await this.vulnerabilityClient.getVulnerabilitiesComponents(request);
29
+ if (r.components) {
30
+ for (const c of r.components) {
31
+ const key = c.purl + c.requirement + c.version;
32
+ if (componentVulnerabilities.has(key)) {
33
+ componentVulnerabilities.get(key).vulnerabilities.push(...c.vulnerabilities);
34
+ }
35
+ else {
36
+ componentVulnerabilities.set(key, c);
37
+ }
38
+ }
39
+ }
40
+ }
41
+ catch (error) {
42
+ failedRequests.push(request);
43
+ logger.error(error);
44
+ }
45
+ }
46
+ if (failedRequests.length > 0) {
47
+ if (failedRequests.length >= requests.length) {
48
+ response.status.status = "FAILED";
49
+ response.status.message = "Error while retrieving vulnerabilities";
50
+ return response;
23
51
  }
24
52
  else {
25
- const badReq = request.map(c => `${c.purl}@${c.requirement}`);
26
- logger.log(`ERROR: Error getting vulnerabilities for components: ${badReq}, Status: ${r.status} ${r.statusText}`);
53
+ response.status.status = "SUCCEEDED_WITH_WARNINGS";
54
+ response.status.message = `Warning: some vulnerabilities were not retrieved: ${failedRequests.map(r => r.map((c) => `${c.purl}${c.requirement}`)).join(", ")}`;
55
+ return response;
27
56
  }
28
57
  }
29
- return vulnerabilities;
58
+ response.components = Array.from(componentVulnerabilities.values());
59
+ return response;
60
+ }
61
+ async getVulnerabilitiesComponent(component) {
62
+ const response = {
63
+ purl: component.purl,
64
+ version: component.requirement,
65
+ requirement: component.requirement,
66
+ vulnerabilities: [],
67
+ status: {
68
+ status: "SUCCESS",
69
+ message: "Vulnerabilities retrieved successfully"
70
+ }
71
+ };
72
+ try {
73
+ const componentVulnerabilities = await this.vulnerabilityClient.getVulnerabilitiesComponent(component);
74
+ response.vulnerabilities = componentVulnerabilities.vulnerabilities;
75
+ response.version = componentVulnerabilities.version;
76
+ return response;
77
+ }
78
+ catch (error) {
79
+ logger.error(error);
80
+ response.status.status = "FAILED";
81
+ response.status.message = "Error while retrieving vulnerabilities";
82
+ return response;
83
+ }
30
84
  }
31
85
  }
32
- //# sourceMappingURL=data:application/json;base64,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
86
+ //# sourceMappingURL=data:application/json;base64,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
package/build/module/sdk/types/common/types.js ADDED
@@ -0,0 +1,2 @@
1
+ export {};
2
+ //# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoidHlwZXMuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi8uLi8uLi9zcmMvc2RrL3R5cGVzL2NvbW1vbi90eXBlcy50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiIn0=
package/build/module/sdk/types/vulnerability/types.d.ts ADDED
@@ -0,0 +1,35 @@
1
+ export interface CVSS {
2
+ cvss: string;
3
+ cvss_score: number;
4
+ cvss_severity: string;
5
+ }
6
+ export interface Vulnerability {
7
+ id: string;
8
+ cve: string;
9
+ url: string;
10
+ summary: string;
11
+ severity: string;
12
+ published: string;
13
+ modified: string;
14
+ source: string;
15
+ cvss: CVSS[];
16
+ }
17
+ export interface ComponentVulnerability {
18
+ purl: string;
19
+ version: string;
20
+ requirement: string;
21
+ vulnerabilities: Vulnerability[];
22
+ }
23
+ export interface ComponentsVulnerabilitiesResponse {
24
+ components: Array<ComponentVulnerability>;
25
+ status: {
26
+ "status": "SUCCESS" | "FAILED" | "SUCCEEDED_WITH_WARNINGS";
27
+ "message": string;
28
+ };
29
+ }
30
+ export interface ComponentVulnerabilityResponse extends ComponentVulnerability {
31
+ status: {
32
+ "status": "SUCCESS" | "FAILED" | "SUCCEEDED_WITH_WARNINGS";
33
+ "message": string;
34
+ };
35
+ }
package/build/module/sdk/types/vulnerability/types.js ADDED
@@ -0,0 +1,2 @@
1
+ export {};
2
+ //# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoidHlwZXMuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi8uLi8uLi9zcmMvc2RrL3R5cGVzL3Z1bG5lcmFiaWxpdHkvdHlwZXMudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IiJ9