npm - securenow - Versions diffs - 6.0.2 → 6.1.0 - Mend

securenow 6.0.2 → 6.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (87) hide show

package/CONSUMING-APPS-GUIDE.md +455 -0
package/NPM_README.md +2029 -0
package/README.md +297 -40
package/SKILL-API.md +634 -0
package/SKILL-CLI.md +454 -0
package/cidr.js +83 -0
package/cli/apps.js +585 -0
package/cli/auth.js +280 -0
package/cli/client.js +115 -0
package/cli/config.js +173 -0
package/cli/diagnostics.js +387 -0
package/cli/firewall.js +100 -0
package/cli/fp.js +638 -0
package/cli/init.js +201 -0
package/cli/monitor.js +440 -0
package/cli/run.js +148 -0
package/cli/security.js +980 -0
package/cli/ui.js +386 -0
package/cli/utils.js +127 -0
package/cli.js +466 -455
package/console-instrumentation.js +147 -136
package/docs/ALL-FRAMEWORKS-QUICKSTART.md +1377 -455
package/docs/API-KEYS-GUIDE.md +233 -0
package/docs/ARCHITECTURE.md +3 -3
package/docs/AUTO-BODY-CAPTURE.md +1 -1
package/docs/AUTO-SETUP-SUMMARY.md +331 -0
package/docs/AUTO-SETUP.md +4 -4
package/docs/AUTOMATIC-IP-CAPTURE.md +5 -5
package/docs/BODY-CAPTURE-FIX.md +261 -0
package/docs/BODY-CAPTURE-QUICKSTART.md +2 -2
package/docs/CHANGELOG-NEXTJS.md +1 -35
package/docs/COMPLETION-REPORT.md +408 -0
package/docs/CUSTOMER-GUIDE.md +16 -16
package/docs/EASIEST-SETUP.md +5 -5
package/docs/ENVIRONMENT-VARIABLES.md +880 -652
package/docs/EXPRESS-BODY-CAPTURE.md +13 -12
package/docs/EXPRESS-SETUP-GUIDE.md +719 -720
package/docs/FINAL-SOLUTION.md +335 -0
package/docs/FIREWALL-GUIDE.md +426 -0
package/docs/IMPLEMENTATION-SUMMARY.md +410 -0
package/docs/INDEX.md +22 -4
package/docs/LOGGING-GUIDE.md +701 -708
package/docs/LOGGING-QUICKSTART.md +234 -255
package/docs/NEXTJS-BODY-CAPTURE-COMPARISON.md +323 -0
package/docs/NEXTJS-BODY-CAPTURE.md +2 -2
package/docs/NEXTJS-GUIDE.md +14 -14
package/docs/NEXTJS-QUICKSTART.md +1 -1
package/docs/NEXTJS-SETUP-COMPLETE.md +795 -0
package/docs/NEXTJS-WRAPPER-APPROACH.md +1 -1
package/docs/NUXT-GUIDE.md +166 -0
package/docs/QUICKSTART-BODY-CAPTURE.md +2 -2
package/docs/REDACTION-EXAMPLES.md +1 -1
package/docs/REQUEST-BODY-CAPTURE.md +19 -10
package/docs/SOLUTION-SUMMARY.md +312 -0
package/docs/VERCEL-OTEL-MIGRATION.md +3 -3
package/examples/README.md +6 -6
package/examples/instrumentation-with-auto-capture.ts +1 -1
package/examples/nextjs-env-example.txt +2 -2
package/examples/nextjs-instrumentation.js +1 -1
package/examples/nextjs-instrumentation.ts +1 -1
package/examples/nextjs-with-logging-example.md +6 -6
package/examples/nextjs-with-options.ts +1 -1
package/examples/test-nextjs-setup.js +1 -1
package/firewall-cloud.js +212 -0
package/firewall-iptables.js +139 -0
package/firewall-only.js +38 -0
package/firewall-tcp.js +74 -0
package/firewall.js +720 -0
package/free-trial-banner.js +174 -0
package/nextjs-auto-capture.js +199 -207
package/nextjs-middleware.js +186 -181
package/nextjs-webpack-config.js +88 -53
package/nextjs-wrapper.js +158 -158
package/nextjs.d.ts +1 -1
package/nextjs.js +639 -647
package/nuxt-server-plugin.mjs +423 -0
package/nuxt.d.ts +60 -0
package/nuxt.mjs +75 -0
package/package.json +186 -164
package/postinstall.js +6 -6
package/register.d.ts +1 -1
package/register.js +39 -4
package/resolve-ip.js +77 -0
package/tracing.d.ts +2 -1
package/tracing.js +295 -34
package/web-vite.mjs +239 -156
package/LICENSE +0 -15

package/docs/EXPRESS-BODY-CAPTURE.md CHANGED Viewed

@@ -55,7 +55,7 @@ Create `.env` or set in PM2 ecosystem file:
 ```bash
 SECURENOW_APPID=my-express-api
-SECURENOW_INSTANCE=http://your-signoz-server:4318
+SECURENOW_INSTANCE=http://your-otlp-backend:4318
 SECURENOW_CAPTURE_BODY=1
 SECURENOW_MAX_BODY_SIZE=10240
 ```
@@ -192,6 +192,7 @@ import express from 'express';
 | `SECURENOW_CAPTURE_BODY` | Enable body capture (`1` or `true`) | `0` (disabled) |
 | `SECURENOW_MAX_BODY_SIZE` | Max body size in bytes | `10240` (10KB) |
 | `SECURENOW_SENSITIVE_FIELDS` | Comma-separated additional sensitive fields | (see below) |
+| `SECURENOW_CAPTURE_MULTIPART` | Enable multipart/form-data streaming capture (`1` or `true`) | `0` (disabled) |
 ### Default Sensitive Fields
@@ -227,7 +228,7 @@ module.exports = {
     env: {
       NODE_ENV: 'production',
       SECURENOW_APPID: 'express-api',
-      SECURENOW_INSTANCE: 'http://signoz:4318',
+      SECURENOW_INSTANCE: 'http://otel-collector:4318',
       SECURENOW_CAPTURE_BODY: '1',
       SECURENOW_NO_UUID: '1',      // Same service.name
       SECURENOW_STRICT: '1',       // Fail if APPID missing
@@ -274,10 +275,10 @@ pm2 logs express-api --lines 100
 | `application/json` | ✅ Yes | ✅ Yes | ✅ Yes |
 | `application/graphql` | ✅ Yes | ✅ Yes | ✅ Yes |
 | `application/x-www-form-urlencoded` | ✅ Yes | ✅ Yes | ✅ Yes |
-| `multipart/form-data` | ❌ No | N/A | N/A |
+| `multipart/form-data` | ✅ Metadata | ✅ Streaming | ✅ Yes |
 | `text/plain` | ❌ No | N/A | N/A |
-**Note**: File uploads (`multipart/form-data`) are intentionally NOT captured for performance and privacy reasons.
+**Note**: Multipart capture requires `SECURENOW_CAPTURE_MULTIPART=1` (v5.8.0+). Uses a streaming parser — text field values and file metadata (name, filename, content-type, size) are captured; file binary content is never buffered or stored.
 ## 🔍 Example: Complete Express + PM2 Setup
@@ -419,7 +420,7 @@ module.exports = {
       NODE_ENV: 'production',
       PORT: 3000,
       SECURENOW_APPID: 'express-api',
-      SECURENOW_INSTANCE: 'http://signoz.company.com:4318',
+      SECURENOW_INSTANCE: 'http://otel-collector.company.com:4318',
       SECURENOW_CAPTURE_BODY: '1',
       SECURENOW_MAX_BODY_SIZE: '10240',
       SECURENOW_NO_UUID: '1',
@@ -451,7 +452,7 @@ module.exports = {
       NODE_ENV: 'production',
       PORT: 3000,
       SECURENOW_APPID: 'express-api',
-      SECURENOW_INSTANCE: 'http://signoz.company.com:4318',
+      SECURENOW_INSTANCE: 'http://otel-collector.company.com:4318',
       SECURENOW_CAPTURE_BODY: '1',
       SECURENOW_MAX_BODY_SIZE: '10240',
       SECURENOW_NO_UUID: '1',
@@ -541,7 +542,7 @@ curl -X POST http://localhost:3000/api/login \
 ### Expected Trace Attributes
-In your SigNoz dashboard, you should see:
+In your SecureNow dashboard, you should see:
 ```json
 {
@@ -612,14 +613,14 @@ app.post('/api/upload', (req, res) => {
 - Add custom sensitive fields: `SECURENOW_SENSITIVE_FIELDS`
 - Test with production-like data
-- Review traces in SigNoz
+- Review traces in SecureNow
 ### 2. Body Size Limits
 **Large bodies can cause:**
 - Memory issues
 - Performance degradation
-- Storage costs in SigNoz
+- Storage costs in SecureNow
 **Recommendation:**
 - Keep `SECURENOW_MAX_BODY_SIZE` under 20KB
@@ -861,7 +862,7 @@ module.exports = {
       NODE_ENV: 'production',
       PORT: 3000,
       SECURENOW_APPID: 'express-ts-api',
-      SECURENOW_INSTANCE: 'http://signoz.company.com:4318',
+      SECURENOW_INSTANCE: 'http://otel-collector.company.com:4318',
       SECURENOW_CAPTURE_BODY: '1',
       SECURENOW_MAX_BODY_SIZE: '10240',
       SECURENOW_NO_UUID: '1',
@@ -1001,7 +1002,7 @@ Currently not customizable. Default fields are comprehensive.
 SecureNow uses OpenTelemetry standard, so it works with:
-- ✅ SigNoz (recommended)
+- ✅ SecureNow (recommended)
 - ✅ Jaeger
 - ✅ Zipkin
 - ✅ Any OTLP-compatible backend
@@ -1019,7 +1020,7 @@ If you encounter issues:
 1. Check [Troubleshooting](#-troubleshooting) section
 2. Enable debug logs: `OTEL_LOG_LEVEL=debug`
 3. Check PM2 logs: `pm2 logs express-api`
-4. Review your SigNoz dashboard for traces
+4. Review your SecureNow dashboard for traces
 ---