npm - securenow - Versions diffs - 5.18.0 → 6.0.1 - Mend

securenow 5.18.0 → 6.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (85) hide show

package/LICENSE +15 -0
package/README.md +40 -239
package/cli.js +455 -415
package/console-instrumentation.js +136 -147
package/docs/ALL-FRAMEWORKS-QUICKSTART.md +455 -1339
package/docs/ARCHITECTURE.md +3 -3
package/docs/AUTO-BODY-CAPTURE.md +1 -1
package/docs/AUTO-SETUP.md +4 -4
package/docs/AUTOMATIC-IP-CAPTURE.md +5 -5
package/docs/BODY-CAPTURE-QUICKSTART.md +2 -2
package/docs/CHANGELOG-NEXTJS.md +35 -1
package/docs/CUSTOMER-GUIDE.md +16 -16
package/docs/EASIEST-SETUP.md +5 -5
package/docs/ENVIRONMENT-VARIABLES.md +652 -880
package/docs/EXPRESS-BODY-CAPTURE.md +12 -13
package/docs/EXPRESS-SETUP-GUIDE.md +720 -719
package/docs/INDEX.md +4 -22
package/docs/LOGGING-GUIDE.md +708 -701
package/docs/LOGGING-QUICKSTART.md +255 -234
package/docs/NEXTJS-BODY-CAPTURE.md +2 -2
package/docs/NEXTJS-GUIDE.md +14 -14
package/docs/NEXTJS-QUICKSTART.md +1 -1
package/docs/NEXTJS-WRAPPER-APPROACH.md +1 -1
package/docs/QUICKSTART-BODY-CAPTURE.md +2 -2
package/docs/REDACTION-EXAMPLES.md +1 -1
package/docs/REQUEST-BODY-CAPTURE.md +10 -19
package/docs/VERCEL-OTEL-MIGRATION.md +3 -3
package/examples/README.md +6 -6
package/examples/instrumentation-with-auto-capture.ts +1 -1
package/examples/nextjs-env-example.txt +2 -2
package/examples/nextjs-instrumentation.js +1 -1
package/examples/nextjs-instrumentation.ts +1 -1
package/examples/nextjs-with-logging-example.md +6 -6
package/examples/nextjs-with-options.ts +1 -1
package/examples/test-nextjs-setup.js +1 -1
package/nextjs-auto-capture.js +207 -199
package/nextjs-middleware.js +181 -186
package/nextjs-webpack-config.js +53 -88
package/nextjs-wrapper.js +158 -158
package/nextjs.d.ts +1 -1
package/nextjs.js +198 -186
package/package.json +45 -67
package/postinstall.js +6 -6
package/register.d.ts +1 -1
package/register.js +4 -39
package/tracing.d.ts +1 -2
package/tracing.js +26 -286
package/web-vite.mjs +156 -239
package/CONSUMING-APPS-GUIDE.md +0 -455
package/NPM_README.md +0 -1933
package/SKILL-API.md +0 -600
package/SKILL-CLI.md +0 -409
package/cidr.js +0 -83
package/cli/apps.js +0 -585
package/cli/auth.js +0 -280
package/cli/client.js +0 -115
package/cli/config.js +0 -173
package/cli/firewall.js +0 -100
package/cli/fp.js +0 -638
package/cli/init.js +0 -201
package/cli/monitor.js +0 -440
package/cli/run.js +0 -133
package/cli/security.js +0 -1064
package/cli/ui.js +0 -386
package/docs/API-KEYS-GUIDE.md +0 -233
package/docs/AUTO-SETUP-SUMMARY.md +0 -331
package/docs/BODY-CAPTURE-FIX.md +0 -261
package/docs/COMPLETION-REPORT.md +0 -408
package/docs/FINAL-SOLUTION.md +0 -335
package/docs/FIREWALL-GUIDE.md +0 -426
package/docs/IMPLEMENTATION-SUMMARY.md +0 -410
package/docs/NEXTJS-BODY-CAPTURE-COMPARISON.md +0 -323
package/docs/NEXTJS-SETUP-COMPLETE.md +0 -795
package/docs/NUXT-GUIDE.md +0 -166
package/docs/SOLUTION-SUMMARY.md +0 -312
package/firewall-cloud.js +0 -212
package/firewall-iptables.js +0 -139
package/firewall-only.js +0 -38
package/firewall-tcp.js +0 -74
package/firewall.js +0 -720
package/free-trial-banner.js +0 -174
package/nuxt-server-plugin.mjs +0 -423
package/nuxt.d.ts +0 -60
package/nuxt.mjs +0 -75
package/resolve-ip.js +0 -77

package/nuxt.mjs DELETED Viewed

@@ -1,75 +0,0 @@
-/**
- * SecureNow Nuxt 3 Module
- *
- * Usage in nuxt.config.ts:
- *
- *   export default defineNuxtConfig({
- *     modules: ['securenow/nuxt'],
- *     securenow: {            // optional overrides
- *       serviceName: 'my-nuxt-app',
- *     },
- *   });
- *
- * Environment variables (same as all SecureNow integrations):
- *   SECURENOW_APPID, SECURENOW_INSTANCE, SECURENOW_LOGGING_ENABLED, etc.
- */
-import { defineNuxtModule, createResolver, addServerPlugin } from '@nuxt/kit';
-const OTEL_EXTERNALS = [
-  'securenow',
-  '@opentelemetry/api',
-  '@opentelemetry/api-logs',
-  '@opentelemetry/sdk-node',
-  '@opentelemetry/sdk-logs',
-  '@opentelemetry/auto-instrumentations-node',
-  '@opentelemetry/instrumentation',
-  '@opentelemetry/instrumentation-http',
-  '@opentelemetry/exporter-trace-otlp-http',
-  '@opentelemetry/exporter-logs-otlp-http',
-  '@opentelemetry/resources',
-  '@opentelemetry/semantic-conventions',
-];
-export default defineNuxtModule({
-  meta: {
-    name: 'securenow',
-    configKey: 'securenow',
-    compatibility: { nuxt: '>=3.0.0' },
-  },
-  defaults: {
-    serviceName: undefined,
-    endpoint: undefined,
-    noUuid: undefined,
-    captureBody: undefined,
-    logging: undefined,
-  },
-  setup(options, nuxt) {
-    const { resolve } = createResolver(import.meta.url);
-    // ── Externalize OTel packages so Nitro doesn't bundle them ──
-    nuxt.hook('nitro:config', (nitroConfig) => {
-      nitroConfig.externals = nitroConfig.externals || {};
-      nitroConfig.externals.external = [
-        ...(nitroConfig.externals.external || []),
-        ...OTEL_EXTERNALS,
-      ];
-    });
-    // ── Pass module options to the server plugin via runtimeConfig ──
-    nuxt.options.runtimeConfig.securenow = {
-      serviceName: options.serviceName,
-      endpoint: options.endpoint,
-      noUuid: options.noUuid,
-      captureBody: options.captureBody,
-      logging: options.logging,
-    };
-    // ── Register Nitro server plugin ──
-    addServerPlugin(resolve('./nuxt-server-plugin'));
-    console.log('[securenow] Nuxt module loaded — server plugin registered');
-  },
-});

package/resolve-ip.js DELETED Viewed

@@ -1,77 +0,0 @@
-'use strict';
-const os = require('os');
-const LOOPBACK_RE = /^(127\.|::1$|::ffff:127\.)/;
-const PRIVATE_IP_RE = /^(127\.|::1$|::ffff:127\.|10\.|172\.(1[6-9]|2\d|3[01])\.|192\.168\.|f[cd][0-9a-f]{2}:)/;
-const trustedProxyCsv = (process.env.SECURENOW_TRUSTED_PROXIES || '').trim();
-const trustedProxySet = trustedProxyCsv
-  ? new Set(trustedProxyCsv.split(',').map(s => s.trim()).filter(Boolean))
-  : null;
-let _hostIp = null;
-function getHostIp() {
-  if (_hostIp !== null) return _hostIp;
-  try {
-    const ifaces = os.networkInterfaces();
-    for (const name of Object.keys(ifaces)) {
-      for (const iface of ifaces[name]) {
-        if (!iface.internal && iface.family === 'IPv4') { _hostIp = iface.address; return _hostIp; }
-      }
-    }
-  } catch (_) {}
-  _hostIp = '';
-  return _hostIp;
-}
-function isFromTrustedProxy(socketIp) {
-  if (!socketIp) return false;
-  const normalized = socketIp.replace(/^::ffff:/, '');
-  if (trustedProxySet && trustedProxySet.has(normalized)) return true;
-  return PRIVATE_IP_RE.test(socketIp);
-}
-/**
- * Resolve the real client IP from an HTTP request, respecting trusted proxies.
- * Reads X-Forwarded-For / X-Real-IP only when the direct connection comes
- * from a private/trusted proxy IP. Prevents client-side IP spoofing.
- */
-function resolveClientIp(request) {
-  const socketIp = request.socket?.remoteAddress || '';
-  if (!isFromTrustedProxy(socketIp)) return socketIp;
-  const fwd = request.headers['x-forwarded-for'];
-  if (fwd) {
-    const chain = String(fwd).split(',').map(s => s.trim()).filter(Boolean);
-    for (let i = chain.length - 1; i >= 0; i--) {
-      if (!isFromTrustedProxy(chain[i])) return chain[i];
-    }
-    return socketIp;
-  }
-  const headerIp = request.headers['x-real-ip'];
-  if (headerIp) return headerIp;
-  if (LOOPBACK_RE.test(socketIp)) {
-    const hostIp = getHostIp();
-    if (hostIp) return hostIp;
-  }
-  return socketIp;
-}
-/**
- * Resolve IP from a raw TCP socket (no HTTP headers available).
- * Normalizes IPv6-mapped IPv4 addresses.
- */
-function resolveSocketIp(socket) {
-  const raw = socket?.remoteAddress || '';
-  return raw.replace(/^::ffff:/, '');
-}
-module.exports = {
-  resolveClientIp,
-  resolveSocketIp,
-  isFromTrustedProxy,
-  LOOPBACK_RE,
-  PRIVATE_IP_RE,
-};