vaspera 2.14.0 → 2.15.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +45 -0
- package/README.md +15 -2
- package/dist/__tests__/certification/agent-certificate-e2e.test.d.ts +2 -0
- package/dist/__tests__/certification/agent-certificate-e2e.test.d.ts.map +1 -0
- package/dist/__tests__/certification/agent-certificate-e2e.test.js +90 -0
- package/dist/__tests__/certification/agent-certificate-e2e.test.js.map +1 -0
- package/dist/__tests__/certification/agent-certificate-map.test.d.ts +2 -0
- package/dist/__tests__/certification/agent-certificate-map.test.d.ts.map +1 -0
- package/dist/__tests__/certification/agent-certificate-map.test.js +107 -0
- package/dist/__tests__/certification/agent-certificate-map.test.js.map +1 -0
- package/dist/__tests__/certification/agent-certificate.test.d.ts +2 -0
- package/dist/__tests__/certification/agent-certificate.test.d.ts.map +1 -0
- package/dist/__tests__/certification/agent-certificate.test.js +78 -0
- package/dist/__tests__/certification/agent-certificate.test.js.map +1 -0
- package/dist/__tests__/certification/verify-endpoint.test.d.ts +2 -0
- package/dist/__tests__/certification/verify-endpoint.test.d.ts.map +1 -0
- package/dist/__tests__/certification/verify-endpoint.test.js +81 -0
- package/dist/__tests__/certification/verify-endpoint.test.js.map +1 -0
- package/dist/__tests__/compliance/ai-frameworks.test.d.ts +2 -0
- package/dist/__tests__/compliance/ai-frameworks.test.d.ts.map +1 -0
- package/dist/__tests__/compliance/ai-frameworks.test.js +87 -0
- package/dist/__tests__/compliance/ai-frameworks.test.js.map +1 -0
- package/dist/__tests__/eval/llm-analyzer.test.d.ts +2 -0
- package/dist/__tests__/eval/llm-analyzer.test.d.ts.map +1 -0
- package/dist/__tests__/eval/llm-analyzer.test.js +93 -0
- package/dist/__tests__/eval/llm-analyzer.test.js.map +1 -0
- package/dist/__tests__/eval/redteam-harness.test.d.ts +2 -0
- package/dist/__tests__/eval/redteam-harness.test.d.ts.map +1 -0
- package/dist/__tests__/eval/redteam-harness.test.js +136 -0
- package/dist/__tests__/eval/redteam-harness.test.js.map +1 -0
- package/dist/__tests__/evidence/evidence.test.d.ts +2 -0
- package/dist/__tests__/evidence/evidence.test.d.ts.map +1 -0
- package/dist/__tests__/evidence/evidence.test.js +240 -0
- package/dist/__tests__/evidence/evidence.test.js.map +1 -0
- package/dist/__tests__/history/decisions.test.d.ts +2 -0
- package/dist/__tests__/history/decisions.test.d.ts.map +1 -0
- package/dist/__tests__/history/decisions.test.js +54 -0
- package/dist/__tests__/history/decisions.test.js.map +1 -0
- package/dist/__tests__/http-auth.test.d.ts +2 -0
- package/dist/__tests__/http-auth.test.d.ts.map +1 -0
- package/dist/__tests__/http-auth.test.js +55 -0
- package/dist/__tests__/http-auth.test.js.map +1 -0
- package/dist/__tests__/http-policy.test.d.ts +2 -0
- package/dist/__tests__/http-policy.test.d.ts.map +1 -0
- package/dist/__tests__/http-policy.test.js +69 -0
- package/dist/__tests__/http-policy.test.js.map +1 -0
- package/dist/__tests__/http-server-transport.test.d.ts +2 -0
- package/dist/__tests__/http-server-transport.test.d.ts.map +1 -0
- package/dist/__tests__/http-server-transport.test.js +132 -0
- package/dist/__tests__/http-server-transport.test.js.map +1 -0
- package/dist/__tests__/integration/destructive-guards.test.d.ts +2 -0
- package/dist/__tests__/integration/destructive-guards.test.d.ts.map +1 -0
- package/dist/__tests__/integration/destructive-guards.test.js +49 -0
- package/dist/__tests__/integration/destructive-guards.test.js.map +1 -0
- package/dist/__tests__/logger-redaction.test.d.ts +2 -0
- package/dist/__tests__/logger-redaction.test.d.ts.map +1 -0
- package/dist/__tests__/logger-redaction.test.js +74 -0
- package/dist/__tests__/logger-redaction.test.js.map +1 -0
- package/dist/__tests__/manifest-schema.test.d.ts +2 -0
- package/dist/__tests__/manifest-schema.test.d.ts.map +1 -0
- package/dist/__tests__/manifest-schema.test.js +43 -0
- package/dist/__tests__/manifest-schema.test.js.map +1 -0
- package/dist/__tests__/scanners/builtin-rules.test.d.ts +2 -0
- package/dist/__tests__/scanners/builtin-rules.test.d.ts.map +1 -0
- package/dist/__tests__/scanners/builtin-rules.test.js +51 -0
- package/dist/__tests__/scanners/builtin-rules.test.js.map +1 -0
- package/dist/__tests__/scanners/runtime/golden-path-runner.test.js +13 -1
- package/dist/__tests__/scanners/runtime/golden-path-runner.test.js.map +1 -1
- package/dist/__tests__/tool-guard.test.d.ts +2 -0
- package/dist/__tests__/tool-guard.test.d.ts.map +1 -0
- package/dist/__tests__/tool-guard.test.js +97 -0
- package/dist/__tests__/tool-guard.test.js.map +1 -0
- package/dist/__tests__/util/contained-file.test.d.ts +2 -0
- package/dist/__tests__/util/contained-file.test.d.ts.map +1 -0
- package/dist/__tests__/util/contained-file.test.js +78 -0
- package/dist/__tests__/util/contained-file.test.js.map +1 -0
- package/dist/__tests__/util/subprocess.test.d.ts +2 -0
- package/dist/__tests__/util/subprocess.test.d.ts.map +1 -0
- package/dist/__tests__/util/subprocess.test.js +48 -0
- package/dist/__tests__/util/subprocess.test.js.map +1 -0
- package/dist/action/diff-mode.d.ts.map +1 -1
- package/dist/action/diff-mode.js +31 -12
- package/dist/action/diff-mode.js.map +1 -1
- package/dist/certification/agent-certificate-map.d.ts +51 -0
- package/dist/certification/agent-certificate-map.d.ts.map +1 -0
- package/dist/certification/agent-certificate-map.js +265 -0
- package/dist/certification/agent-certificate-map.js.map +1 -0
- package/dist/certification/agent-certificate-sample.d.ts +25 -0
- package/dist/certification/agent-certificate-sample.d.ts.map +1 -0
- package/dist/certification/agent-certificate-sample.js +207 -0
- package/dist/certification/agent-certificate-sample.js.map +1 -0
- package/dist/certification/agent-certificate.d.ts +1981 -0
- package/dist/certification/agent-certificate.d.ts.map +1 -0
- package/dist/certification/agent-certificate.js +309 -0
- package/dist/certification/agent-certificate.js.map +1 -0
- package/dist/certification/autofix.d.ts.map +1 -1
- package/dist/certification/autofix.js +5 -3
- package/dist/certification/autofix.js.map +1 -1
- package/dist/certification/store.d.ts.map +1 -1
- package/dist/certification/store.js +5 -2
- package/dist/certification/store.js.map +1 -1
- package/dist/certification/verify-endpoint.d.ts +48 -0
- package/dist/certification/verify-endpoint.d.ts.map +1 -0
- package/dist/certification/verify-endpoint.js +79 -0
- package/dist/certification/verify-endpoint.js.map +1 -0
- package/dist/compliance/index.d.ts +2 -0
- package/dist/compliance/index.d.ts.map +1 -1
- package/dist/compliance/index.js +4 -0
- package/dist/compliance/index.js.map +1 -1
- package/dist/compliance/iso42001.d.ts +21 -0
- package/dist/compliance/iso42001.d.ts.map +1 -0
- package/dist/compliance/iso42001.js +160 -0
- package/dist/compliance/iso42001.js.map +1 -0
- package/dist/compliance/mapper.d.ts.map +1 -1
- package/dist/compliance/mapper.js +12 -0
- package/dist/compliance/mapper.js.map +1 -1
- package/dist/compliance/nist-ai-rmf.d.ts +20 -0
- package/dist/compliance/nist-ai-rmf.d.ts.map +1 -0
- package/dist/compliance/nist-ai-rmf.js +140 -0
- package/dist/compliance/nist-ai-rmf.js.map +1 -0
- package/dist/config/flags.d.ts +4 -4
- package/dist/eval/fixtures.d.ts.map +1 -1
- package/dist/eval/fixtures.js +161 -119
- package/dist/eval/fixtures.js.map +1 -1
- package/dist/eval/fixtures.test.js +4 -2
- package/dist/eval/fixtures.test.js.map +1 -1
- package/dist/eval/llm-analyzer.d.ts +40 -0
- package/dist/eval/llm-analyzer.d.ts.map +1 -0
- package/dist/eval/llm-analyzer.js +154 -0
- package/dist/eval/llm-analyzer.js.map +1 -0
- package/dist/eval/redteam-harness.d.ts +95 -0
- package/dist/eval/redteam-harness.d.ts.map +1 -0
- package/dist/eval/redteam-harness.js +137 -0
- package/dist/eval/redteam-harness.js.map +1 -0
- package/dist/evidence/collector.d.ts.map +1 -1
- package/dist/evidence/collector.js +21 -1
- package/dist/evidence/collector.js.map +1 -1
- package/dist/evidence/store.d.ts.map +1 -1
- package/dist/evidence/store.js +29 -5
- package/dist/evidence/store.js.map +1 -1
- package/dist/evidence/types.d.ts +16 -9
- package/dist/evidence/types.d.ts.map +1 -1
- package/dist/history/decisions.d.ts +63 -0
- package/dist/history/decisions.d.ts.map +1 -0
- package/dist/history/decisions.js +60 -0
- package/dist/history/decisions.js.map +1 -0
- package/dist/history/index.d.ts +2 -0
- package/dist/history/index.d.ts.map +1 -1
- package/dist/history/index.js +2 -0
- package/dist/history/index.js.map +1 -1
- package/dist/history/types.d.ts +34 -5
- package/dist/history/types.d.ts.map +1 -1
- package/dist/history/types.js +2 -0
- package/dist/history/types.js.map +1 -1
- package/dist/http-auth.d.ts +22 -0
- package/dist/http-auth.d.ts.map +1 -0
- package/dist/http-auth.js +58 -0
- package/dist/http-auth.js.map +1 -0
- package/dist/http-policy.d.ts +30 -0
- package/dist/http-policy.d.ts.map +1 -0
- package/dist/http-policy.js +54 -0
- package/dist/http-policy.js.map +1 -0
- package/dist/http-server.js +195 -12
- package/dist/http-server.js.map +1 -1
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +247 -15
- package/dist/index.js.map +1 -1
- package/dist/logger.d.ts.map +1 -1
- package/dist/logger.js +56 -2
- package/dist/logger.js.map +1 -1
- package/dist/plugins/types.d.ts +2 -2
- package/dist/scanners/agent/prompt-injection-fuzzer.d.ts.map +1 -1
- package/dist/scanners/agent/prompt-injection-fuzzer.js +26 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.js.map +1 -1
- package/dist/scanners/agent/types.d.ts +10 -10
- package/dist/scanners/bandit.d.ts.map +1 -1
- package/dist/scanners/bandit.js +35 -29
- package/dist/scanners/bandit.js.map +1 -1
- package/dist/scanners/binary-analysis.d.ts.map +1 -1
- package/dist/scanners/binary-analysis.js +24 -49
- package/dist/scanners/binary-analysis.js.map +1 -1
- package/dist/scanners/brakeman.d.ts.map +1 -1
- package/dist/scanners/brakeman.js +19 -33
- package/dist/scanners/brakeman.js.map +1 -1
- package/dist/scanners/builtin-rules.d.ts +24 -0
- package/dist/scanners/builtin-rules.d.ts.map +1 -0
- package/dist/scanners/builtin-rules.js +175 -0
- package/dist/scanners/builtin-rules.js.map +1 -0
- package/dist/scanners/dast.d.ts.map +1 -1
- package/dist/scanners/dast.js +24 -34
- package/dist/scanners/dast.js.map +1 -1
- package/dist/scanners/deploy/types.d.ts +6 -6
- package/dist/scanners/eslint.d.ts.map +1 -1
- package/dist/scanners/eslint.js +15 -24
- package/dist/scanners/eslint.js.map +1 -1
- package/dist/scanners/gosec.d.ts.map +1 -1
- package/dist/scanners/gosec.js +14 -62
- package/dist/scanners/gosec.js.map +1 -1
- package/dist/scanners/index.d.ts.map +1 -1
- package/dist/scanners/index.js +38 -7
- package/dist/scanners/index.js.map +1 -1
- package/dist/scanners/memory-safety.d.ts.map +1 -1
- package/dist/scanners/memory-safety.js +27 -28
- package/dist/scanners/memory-safety.js.map +1 -1
- package/dist/scanners/openapi.d.ts.map +1 -1
- package/dist/scanners/openapi.js +14 -22
- package/dist/scanners/openapi.js.map +1 -1
- package/dist/scanners/race-condition.d.ts.map +1 -1
- package/dist/scanners/race-condition.js +17 -16
- package/dist/scanners/race-condition.js.map +1 -1
- package/dist/scanners/runtime/types.d.ts +4 -4
- package/dist/scanners/rust.d.ts.map +1 -1
- package/dist/scanners/rust.js +38 -37
- package/dist/scanners/rust.js.map +1 -1
- package/dist/scanners/scale/types.d.ts +16 -16
- package/dist/scanners/secrets.d.ts.map +1 -1
- package/dist/scanners/secrets.js +66 -78
- package/dist/scanners/secrets.js.map +1 -1
- package/dist/scanners/semgrep.d.ts +2 -0
- package/dist/scanners/semgrep.d.ts.map +1 -1
- package/dist/scanners/semgrep.js +12 -0
- package/dist/scanners/semgrep.js.map +1 -1
- package/dist/scanners/terraform.d.ts.map +1 -1
- package/dist/scanners/terraform.js +47 -40
- package/dist/scanners/terraform.js.map +1 -1
- package/dist/scanners/trivy.d.ts.map +1 -1
- package/dist/scanners/trivy.js +38 -30
- package/dist/scanners/trivy.js.map +1 -1
- package/dist/tool-guard.d.ts +40 -0
- package/dist/tool-guard.d.ts.map +1 -0
- package/dist/tool-guard.js +55 -0
- package/dist/tool-guard.js.map +1 -0
- package/dist/util/index.d.ts +2 -1
- package/dist/util/index.d.ts.map +1 -1
- package/dist/util/index.js +2 -1
- package/dist/util/index.js.map +1 -1
- package/dist/util/paths.d.ts +20 -3
- package/dist/util/paths.d.ts.map +1 -1
- package/dist/util/paths.js +84 -4
- package/dist/util/paths.js.map +1 -1
- package/dist/util/subprocess.d.ts +51 -0
- package/dist/util/subprocess.d.ts.map +1 -0
- package/dist/util/subprocess.js +77 -0
- package/dist/util/subprocess.js.map +1 -0
- package/package.json +12 -2
- package/dist/eval/fixtures/healthcare/audit-gaps.d.ts +0 -28
- package/dist/eval/fixtures/healthcare/audit-gaps.d.ts.map +0 -1
- package/dist/eval/fixtures/healthcare/audit-gaps.js +0 -90
- package/dist/eval/fixtures/healthcare/audit-gaps.js.map +0 -1
- package/dist/eval/fixtures/healthcare/consent-bypass.d.ts +0 -31
- package/dist/eval/fixtures/healthcare/consent-bypass.d.ts.map +0 -1
- package/dist/eval/fixtures/healthcare/consent-bypass.js +0 -61
- package/dist/eval/fixtures/healthcare/consent-bypass.js.map +0 -1
- package/dist/eval/fixtures/healthcare/phi-in-logs.d.ts +0 -24
- package/dist/eval/fixtures/healthcare/phi-in-logs.d.ts.map +0 -1
- package/dist/eval/fixtures/healthcare/phi-in-logs.js +0 -41
- package/dist/eval/fixtures/healthcare/phi-in-logs.js.map +0 -1
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"binary-analysis.js","sourceRoot":"","sources":["../../src/scanners/binary-analysis.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,eAAe,CAAC;AACrC,OAAO,EAAE,SAAS,EAAE,MAAM,MAAM,CAAC;AACjC,OAAO,KAAK,EAAE,MAAM,aAAa,CAAC;AAClC,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAG5B,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;AAmBlC,0CAA0C;AAC1C,MAAM,WAAW,GAA6B;IAC5C,gBAAgB,EAAE,CAAC,SAAS,CAAC,EAAE,8BAA8B;IAC7D,YAAY,EAAE,CAAC,SAAS,CAAC,EAAE,mDAAmD;IAC9E,aAAa,EAAE,CAAC,SAAS,CAAC,EAAE,oCAAoC;IAChE,eAAe,EAAE,CAAC,SAAS,CAAC,EAAE,6CAA6C;IAC3E,eAAe,EAAE,CAAC,SAAS,CAAC;IAC5B,iBAAiB,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC,EAAE,sBAAsB;IACjE,cAAc,EAAE,CAAC,SAAS,CAAC,EAAE,wBAAwB;CACtD,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,4BAA4B;IAMhD,MAAM,OAAO,GAAG;QACd,QAAQ,EAAE,KAAK;QACf,EAAE,EAAE,KAAK;QACT,OAAO,EAAE,KAAK;QACd,IAAI,EAAE,KAAK;KACZ,CAAC;IAEF,qDAAqD;IACrD,IAAI,CAAC;QACH,MAAM,SAAS,CAAC,qEAAqE,CAAC,CAAC;QACvF,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAC1B,CAAC;IAAC,MAAM,CAAC;QACP,yBAAyB;IAC3B,CAAC;IAED,eAAe;IACf,IAAI,CAAC;QACH,MAAM,SAAS,CAAC,cAAc,CAAC,CAAC;QAChC,OAAO,CAAC,EAAE,GAAG,IAAI,CAAC;IACpB,CAAC;IAAC,MAAM,CAAC;QACP,mBAAmB;IACrB,CAAC;IAED,oBAAoB;IACpB,IAAI,CAAC;QACH,MAAM,SAAS,CAAC,mBAAmB,CAAC,CAAC;QACrC,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC;IACzB,CAAC;IAAC,MAAM,CAAC;QACP,wBAAwB;IAC1B,CAAC;IAED,yBAAyB;IACzB,IAAI,CAAC;QACH,MAAM,SAAS,CAAC,gBAAgB,CAAC,CAAC;QAClC,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC;IACtB,CAAC;IAAC,MAAM,CAAC;QACP,qBAAqB;IACvB,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CAAC,WAAmB;IAC3D,MAAM,OAAO,GAAmB,EAAE,CAAC;IACnC,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;IAE/C,gCAAgC;IAChC,MAAM,QAAQ,GAAG;QACf,EAAE,IAAI,EAAE,gBAAgB,EAAE,IAAI,EAAE,aAAsB,EAAE;QACxD,EAAE,IAAI,EAAE,WAAW,EAAE,IAAI,EAAE,YAAqB,EAAE;QAClD,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,YAAqB,EAAE;QAChD,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,YAAqB,EAAE;QACnD,EAAE,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,YAAqB,EAAE;KAClD,CAAC;IAEF,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE;gBACvC,GAAG,EAAE,YAAY;gBACjB,MAAM,EAAE,CAAC,0BAA0B,EAAE,2BAA2B,CAAC;gBACjE,KAAK,EAAE,IAAI;aACZ,CAAC,CAAC;YAEH,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;gBAC5B,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,KAAK,CAAC;oBACpC,IAAI,EAAE,OAAO,CAAC,IAAI;oBAClB,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC;iBAC3B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,kCAAkC;QACpC,CAAC;IACH,CAAC;IAED,4CAA4C;IAC5C,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,eAAe,EAAE;YAC7C,GAAG,EAAE,YAAY;YACjB,MAAM,EAAE,CAAC,oBAAoB,EAAE,cAAc,CAAC;SAC/C,CAAC,CAAC;QAEH,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;YACnC,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC,EAAE,OAAO,CAAC,CAAC;YAC/E,IAAI,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC9F,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC;oBACxC,IAAI,EAAE,UAAU;oBAChB,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;iBAC7C,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,mBAAmB;IACrB,CAAC;IAED,mBAAmB;IACnB,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE;YACpC,GAAG,EAAE,YAAY;YACjB,MAAM,EAAE,CAAC,cAAc,EAAE,oBAAoB,CAAC;SAC/C,CAAC,CAAC;QAEH,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;YAC7B,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,EAAE,OAAO,CAAC,CAAC;YAC5E,IAAI,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;gBAC5E,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC;oBACrC,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;iBAC5B,CAAC,CAAC;gBACH,MAAM,CAAC,0CAA0C;YACnD,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,iBAAiB;IACnB,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,MAAc;IACzC,MAAM,KAAK,GAAkB;QAC3B,KAAK,EAAE,MAAM;QACb,EAAE,EAAE,KAAK;QACT,GAAG,EAAE,KAAK;QACV,MAAM,EAAE,KAAK;QACb,OAAO,EAAE,KAAK;QACd,KAAK,EAAE,KAAK;QACZ,OAAO,EAAE,KAAK;KACf,CAAC;IAEF,6DAA6D;IAC7D,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;IAEzC,QAAQ;IACR,IAAI,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QACvC,KAAK,CAAC,KAAK,GAAG,MAAM,CAAC;IACvB,CAAC;SAAM,IAAI,WAAW,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QACjD,KAAK,CAAC,KAAK,GAAG,SAAS,CAAC;IAC1B,CAAC;IAED,kBAAkB;IAClB,IAAI,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAChH,KAAK,CAAC,EAAE,GAAG,IAAI,CAAC;IAClB,CAAC;IAED,wCAAwC;IACxC,IAAI,WAAW,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE,CAAC;QACnH,KAAK,CAAC,GAAG,GAAG,IAAI,CAAC;IACnB,CAAC;IAED,eAAe;IACf,IAAI,WAAW,CAAC,QAAQ,CAAC,cAAc,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;QAC1H,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC;IACtB,CAAC;IAED,UAAU;IACV,IAAI,WAAW,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAC3E,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC;IACvB,CAAC;IAED,kDAAkD;IAClD,IAAI,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;QACxE,KAAK,CAAC,KAAK,GAAG,IAAI,CAAC;IACrB,CAAC;IACD,IAAI,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAC5E,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC;IACvB,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAAC,UAAkB;IACnD,IAAI,CAAC;QACH,kDAAkD;QAClD,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,SAAS,CAAC,oBAAoB,UAAU,mDAAmD,UAAU,eAAe,EAAE;YAC7I,OAAO,EAAE,KAAK;SACf,CAAC,CAAC;QACH,OAAO,mBAAmB,CAAC,MAAM,CAAC,CAAC;IACrC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,aAAa,CAAC,UAAkB;IAC7C,MAAM,KAAK,GAA2B,EAAE,CAAC;IAEzC,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,SAAS,CAAC,UAAU,UAAU,2BAA2B,EAAE;YAClF,OAAO,EAAE,KAAK;SACf,CAAC,CAAC;QAEH,uDAAuD;QACvD,IAAI,MAAM,CAAC,QAAQ,CAAC,kBAAkB,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;YAChF,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC;QACtB,CAAC;QAED,4BAA4B;QAC5B,IAAI,MAAM,CAAC,QAAQ,CAAC,gBAAgB,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAClE,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC;QACvB,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,YAAY;IACd,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAChC,MAAoB,EACpB,KAAoB,EACpB,WAAmB;IAEnB,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAC5C,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC;IAE7D,oDAAoD;IACpD,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;QAClB,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,6BAA6B;YACrC,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,6FAA6F;YACnI,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,gBAAgB,CAAC;YACrC,QAAQ,EAAE,0BAA0B,KAAK,CAAC,MAAM,EAAE;YAClD,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,gCAAgC;IAChC,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;QACd,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,mBAAmB;YAC3B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,qFAAqF;YAC3H,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,YAAY,CAAC;YACjC,QAAQ,EAAE,sBAAsB,KAAK,CAAC,EAAE,EAAE;YAC1C,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,cAAc;IACd,IAAI,CAAC,KAAK,CAAC,GAAG,IAAI,MAAM,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;QAC/C,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,oBAAoB;YAC5B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,qFAAqF;YAC3H,QAAQ,EAAE,QAAQ;YAClB,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,aAAa,CAAC;YAClC,QAAQ,EAAE,uBAAuB,KAAK,CAAC,GAAG,EAAE;YAC5C,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,2BAA2B;IAC3B,IAAI,KAAK,CAAC,KAAK,KAAK,MAAM,EAAE,CAAC;QAC3B,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,sBAAsB;YAC9B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,0EAA0E;YAChH,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,eAAe,CAAC;YACpC,QAAQ,EAAE,yBAAyB,KAAK,CAAC,KAAK,EAAE;YAChD,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,KAAK,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;QACrC,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,sBAAsB;YAC9B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,qFAAqF;YAC3H,QAAQ,EAAE,KAAK;YACf,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,eAAe,CAAC;YACpC,QAAQ,EAAE,yBAAyB,KAAK,CAAC,KAAK,EAAE;YAChD,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,uBAAuB;IACvB,IAAI,KAAK,CAAC,KAAK,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;QACjC,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,qBAAqB;YAC7B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,sEAAsE;YAC5G,QAAQ,EAAE,QAAQ;YAClB,UAAU,EAAE,EAAE;YACd,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,cAAc,CAAC;YACnC,QAAQ,EAAE,yBAAyB,KAAK,CAAC,KAAK,aAAa,KAAK,CAAC,OAAO,EAAE;YAC1E,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,iBAAiB,CAC9B,MAAoB,EACpB,WAAmB;IAEnB,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAC5C,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC;IAE7D,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAExD,kCAAkC;QAClC,IAAI,OAAO,CAAC,QAAQ,CAAC,sBAAsB,CAAC,EAAE,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC;gBACZ,OAAO,EAAE,iBAAiB;gBAC1B,MAAM,EAAE,iCAAiC;gBACzC,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,cAAc,CAAC,OAAO,EAAE,sBAAsB,CAAC;gBACrD,MAAM,EAAE,CAAC;gBACT,OAAO,EAAE,8FAA8F;gBACvG,QAAQ,EAAE,UAAU;gBACpB,UAAU,EAAE,GAAG;gBACf,QAAQ,EAAE,iBAAiB;gBAC3B,MAAM,EAAE,CAAC,SAAS,CAAC;gBACnB,QAAQ,EAAE,6BAA6B;gBACvC,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;aACtC,CAAC,CAAC;QACL,CAAC;QAED,kCAAkC;QAClC,IAAI,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YACrC,QAAQ,CAAC,IAAI,CAAC;gBACZ,OAAO,EAAE,iBAAiB;gBAC1B,MAAM,EAAE,8BAA8B;gBACtC,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,cAAc,CAAC,OAAO,EAAE,cAAc,CAAC;gBAC7C,MAAM,EAAE,CAAC;gBACT,OAAO,EAAE,6FAA6F;gBACtG,QAAQ,EAAE,UAAU;gBACpB,UAAU,EAAE,GAAG;gBACf,QAAQ,EAAE,iBAAiB;gBAC3B,MAAM,EAAE,CAAC,SAAS,CAAC;gBACnB,QAAQ,EAAE,qBAAqB;gBAC/B,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;aACtC,CAAC,CAAC;QACL,CAAC;QAED,2BAA2B;QAC3B,IAAI,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;YACnC,QAAQ,CAAC,IAAI,CAAC;gBACZ,OAAO,EAAE,iBAAiB;gBAC1B,MAAM,EAAE,uBAAuB;gBAC/B,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,cAAc,CAAC,OAAO,EAAE,YAAY,CAAC;gBAC3C,MAAM,EAAE,CAAC;gBACT,OAAO,EAAE,+EAA+E;gBACxF,QAAQ,EAAE,MAAM;gBAChB,UAAU,EAAE,GAAG;gBACf,QAAQ,EAAE,iBAAiB;gBAC3B,MAAM,EAAE,CAAC,SAAS,CAAC;gBACnB,QAAQ,EAAE,mBAAmB;gBAC7B,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;aACtC,CAAC,CAAC;QACL,CAAC;QAED,oCAAoC;QACpC,IAAI,OAAO,CAAC,QAAQ,CAAC,qBAAqB,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;YACrF,QAAQ,CAAC,IAAI,CAAC;gBACZ,OAAO,EAAE,iBAAiB;gBAC1B,MAAM,EAAE,yBAAyB;gBACjC,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,cAAc,CAAC,OAAO,EAAE,iBAAiB,CAAC;gBAChD,MAAM,EAAE,CAAC;gBACT,OAAO,EAAE,gFAAgF;gBACzF,QAAQ,EAAE,MAAM;gBAChB,UAAU,EAAE,GAAG;gBACf,QAAQ,EAAE,iBAAiB;gBAC3B,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;gBAC9B,QAAQ,EAAE,gCAAgC;gBAC1C,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;aACtC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,6BAA6B;IAC/B,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,OAAe,EAAE,OAAe;IACtD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,GAAG,CAAC,CAAC;QACf,CAAC;IACH,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,WAAmB,EACnB,OAAkD;IAElD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAE5C,IAAI,CAAC;QACH,wCAAwC;QACxC,MAAM,OAAO,GAAG,MAAM,mBAAmB,CAAC,WAAW,CAAC,CAAC;QAEvD,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzB,OAAO;gBACL,OAAO,EAAE,iBAAiB;gBAC1B,QAAQ,EAAE,EAAE;gBACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBAChC,OAAO,EAAE,IAAI;gBACb,QAAQ,EAAE;oBACR,OAAO,EAAE,wCAAwC;oBACjD,cAAc,EAAE,CAAC;iBAClB;aACF,CAAC;QACJ,CAAC;QAED,6BAA6B;QAC7B,MAAM,KAAK,GAAG,MAAM,4BAA4B,EAAE,CAAC;QACnD,MAAM,WAAW,GAAG,KAAK,CAAC,QAAQ,CAAC;QACnC,MAAM,KAAK,GAAG,KAAK,CAAC,EAAE,CAAC;QAEvB,yBAAyB;QACzB,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;YAC7B,wCAAwC;YACxC,IAAI,MAAM,CAAC,IAAI,KAAK,aAAa,EAAE,CAAC;gBAClC,MAAM,WAAW,GAAG,MAAM,iBAAiB,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;gBACjE,QAAQ,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,CAAC;gBAC9B,SAAS;YACX,CAAC;YAED,qCAAqC;YACrC,IAAI,MAAM,CAAC,IAAI,KAAK,YAAY,IAAI,MAAM,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBACjE,IAAI,KAAK,GAAyB,IAAI,CAAC;gBAEvC,qBAAqB;gBACrB,IAAI,WAAW,EAAE,CAAC;oBAChB,KAAK,GAAG,MAAM,mBAAmB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;gBACjD,CAAC;gBAED,0BAA0B;gBAC1B,IAAI,CAAC,KAAK,IAAI,KAAK,EAAE,CAAC;oBACpB,MAAM,YAAY,GAAG,MAAM,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;oBACtD,KAAK,GAAG;wBACN,KAAK,EAAE,MAAM,EAAE,iCAAiC;wBAChD,EAAE,EAAE,IAAI,EAAE,gCAAgC;wBAC1C,GAAG,EAAE,IAAI,EAAE,gCAAgC;wBAC3C,MAAM,EAAE,YAAY,CAAC,MAAM,IAAI,KAAK;wBACpC,OAAO,EAAE,YAAY,CAAC,OAAO,IAAI,KAAK;wBACtC,KAAK,EAAE,KAAK;wBACZ,OAAO,EAAE,KAAK;qBACf,CAAC;gBACJ,CAAC;gBAED,+BAA+B;gBAC/B,IAAI,KAAK,EAAE,CAAC;oBACV,MAAM,YAAY,GAAG,yBAAyB,CAAC,MAAM,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC;oBAC3E,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;gBACjC,CAAC;qBAAM,CAAC;oBACN,oDAAoD;oBACpD,QAAQ,CAAC,IAAI,CAAC;wBACZ,OAAO,EAAE,iBAAiB;wBAC1B,MAAM,EAAE,mBAAmB;wBAC3B,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC;wBAC7C,IAAI,EAAE,CAAC;wBACP,MAAM,EAAE,CAAC;wBACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,iFAAiF;wBACvH,QAAQ,EAAE,MAAM;wBAChB,UAAU,EAAE,GAAG;wBACf,QAAQ,EAAE,iBAAiB;wBAC3B,MAAM,EAAE,EAAE;wBACV,QAAQ,EAAE,oCAAoC;wBAC9C,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;qBACtC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,iDAAiD;YACjD,IAAI,MAAM,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;gBAC/B,QAAQ,CAAC,IAAI,CAAC;oBACZ,OAAO,EAAE,iBAAiB;oBAC1B,MAAM,EAAE,0BAA0B;oBAClC,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC;oBAC7C,IAAI,EAAE,CAAC;oBACP,MAAM,EAAE,CAAC;oBACT,OAAO,EAAE,8BAA8B,MAAM,CAAC,IAAI,mDAAmD;oBACrG,QAAQ,EAAE,MAAM;oBAChB,UAAU,EAAE,GAAG;oBACf,QAAQ,EAAE,iBAAiB;oBAC3B,MAAM,EAAE,EAAE;oBACV,QAAQ,EAAE,uCAAuC;oBACjD,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;iBACtC,CAAC,CAAC;YACL,CAAC;YAED,IAAI,MAAM,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBAC7B,QAAQ,CAAC,IAAI,CAAC;oBACZ,OAAO,EAAE,iBAAiB;oBAC1B,MAAM,EAAE,wBAAwB;oBAChC,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC;oBAC7C,IAAI,EAAE,CAAC;oBACP,MAAM,EAAE,CAAC;oBACT,OAAO,EAAE,0BAA0B,MAAM,CAAC,IAAI,kDAAkD;oBAChG,QAAQ,EAAE,MAAM;oBAChB,UAAU,EAAE,GAAG;oBACf,QAAQ,EAAE,iBAAiB;oBAC3B,MAAM,EAAE,EAAE;oBACV,QAAQ,EAAE,mBAAmB;oBAC7B,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;iBACtC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,iBAAiB;YAC1B,QAAQ;YACR,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE;gBACR,cAAc,EAAE,OAAO,CAAC,MAAM;gBAC9B,cAAc,EAAE,KAAK;aACtB;SACF,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO;YACL,OAAO,EAAE,iBAAiB;YAC1B,QAAQ;YACR,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;SAChE,CAAC;IACJ,CAAC;AACH,CAAC"}
|
|
1
|
+
{"version":3,"file":"binary-analysis.js","sourceRoot":"","sources":["../../src/scanners/binary-analysis.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,KAAK,EAAE,MAAM,aAAa,CAAC;AAClC,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAoBhE,0CAA0C;AAC1C,MAAM,WAAW,GAA6B;IAC5C,gBAAgB,EAAE,CAAC,SAAS,CAAC,EAAE,8BAA8B;IAC7D,YAAY,EAAE,CAAC,SAAS,CAAC,EAAE,mDAAmD;IAC9E,aAAa,EAAE,CAAC,SAAS,CAAC,EAAE,oCAAoC;IAChE,eAAe,EAAE,CAAC,SAAS,CAAC,EAAE,6CAA6C;IAC3E,eAAe,EAAE,CAAC,SAAS,CAAC;IAC5B,iBAAiB,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC,EAAE,sBAAsB;IACjE,cAAc,EAAE,CAAC,SAAS,CAAC,EAAE,wBAAwB;CACtD,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,4BAA4B;IAMhD,yDAAyD;IACzD,MAAM,QAAQ,GACZ,CAAC,MAAM,WAAW,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,MAAM,WAAW,CAAC,aAAa,CAAC,CAAC,CAAC;IAExE,OAAO;QACL,QAAQ,EAAE,QAAQ,KAAK,IAAI;QAC3B,EAAE,EAAE,CAAC,MAAM,WAAW,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI;QACtC,OAAO,EAAE,CAAC,MAAM,WAAW,CAAC,SAAS,CAAC,CAAC,KAAK,IAAI;QAChD,IAAI,EAAE,CAAC,MAAM,WAAW,CAAC,MAAM,CAAC,CAAC,KAAK,IAAI;KAC3C,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CAAC,WAAmB;IAC3D,MAAM,OAAO,GAAmB,EAAE,CAAC;IACnC,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;IAE/C,gCAAgC;IAChC,MAAM,QAAQ,GAAG;QACf,EAAE,IAAI,EAAE,gBAAgB,EAAE,IAAI,EAAE,aAAsB,EAAE;QACxD,EAAE,IAAI,EAAE,WAAW,EAAE,IAAI,EAAE,YAAqB,EAAE;QAClD,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,YAAqB,EAAE;QAChD,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,YAAqB,EAAE;QACnD,EAAE,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,YAAqB,EAAE;KAClD,CAAC;IAEF,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE;gBACvC,GAAG,EAAE,YAAY;gBACjB,MAAM,EAAE,CAAC,0BAA0B,EAAE,2BAA2B,CAAC;gBACjE,KAAK,EAAE,IAAI;aACZ,CAAC,CAAC;YAEH,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;gBAC5B,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,KAAK,CAAC;oBACpC,IAAI,EAAE,OAAO,CAAC,IAAI;oBAClB,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC;iBAC3B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,kCAAkC;QACpC,CAAC;IACH,CAAC;IAED,4CAA4C;IAC5C,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,eAAe,EAAE;YAC7C,GAAG,EAAE,YAAY;YACjB,MAAM,EAAE,CAAC,oBAAoB,EAAE,cAAc,CAAC;SAC/C,CAAC,CAAC;QAEH,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;YACnC,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC,EAAE,OAAO,CAAC,CAAC;YAC/E,IAAI,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC9F,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC;oBACxC,IAAI,EAAE,UAAU;oBAChB,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;iBAC7C,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,mBAAmB;IACrB,CAAC;IAED,mBAAmB;IACnB,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE;YACpC,GAAG,EAAE,YAAY;YACjB,MAAM,EAAE,CAAC,cAAc,EAAE,oBAAoB,CAAC;SAC/C,CAAC,CAAC;QAEH,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;YAC7B,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,EAAE,OAAO,CAAC,CAAC;YAC5E,IAAI,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;gBAC5E,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC;oBACrC,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;iBAC5B,CAAC,CAAC;gBACH,MAAM,CAAC,0CAA0C;YACnD,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,iBAAiB;IACnB,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,MAAc;IACzC,MAAM,KAAK,GAAkB;QAC3B,KAAK,EAAE,MAAM;QACb,EAAE,EAAE,KAAK;QACT,GAAG,EAAE,KAAK;QACV,MAAM,EAAE,KAAK;QACb,OAAO,EAAE,KAAK;QACd,KAAK,EAAE,KAAK;QACZ,OAAO,EAAE,KAAK;KACf,CAAC;IAEF,6DAA6D;IAC7D,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;IAEzC,QAAQ;IACR,IAAI,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QACvC,KAAK,CAAC,KAAK,GAAG,MAAM,CAAC;IACvB,CAAC;SAAM,IAAI,WAAW,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QACjD,KAAK,CAAC,KAAK,GAAG,SAAS,CAAC;IAC1B,CAAC;IAED,kBAAkB;IAClB,IAAI,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAChH,KAAK,CAAC,EAAE,GAAG,IAAI,CAAC;IAClB,CAAC;IAED,wCAAwC;IACxC,IAAI,WAAW,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE,CAAC;QACnH,KAAK,CAAC,GAAG,GAAG,IAAI,CAAC;IACnB,CAAC;IAED,eAAe;IACf,IAAI,WAAW,CAAC,QAAQ,CAAC,cAAc,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;QAC1H,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC;IACtB,CAAC;IAED,UAAU;IACV,IAAI,WAAW,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAC3E,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC;IACvB,CAAC;IAED,kDAAkD;IAClD,IAAI,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;QACxE,KAAK,CAAC,KAAK,GAAG,IAAI,CAAC;IACrB,CAAC;IACD,IAAI,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAC5E,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC;IACvB,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAAC,UAAkB;IACnD,qEAAqE;IACrE,4CAA4C;IAC5C,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,UAAU,CACjC,UAAU,EACV,CAAC,UAAU,UAAU,EAAE,EAAE,eAAe,CAAC,EACzC,EAAE,OAAO,EAAE,KAAK,EAAE,CACnB,CAAC;QACF,OAAO,mBAAmB,CAAC,MAAM,CAAC,CAAC;IACrC,CAAC;IAAC,MAAM,CAAC;QACP,IAAI,CAAC;YACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,UAAU,CAAC,UAAU,EAAE,CAAC,UAAU,UAAU,EAAE,CAAC,EAAE;gBACxE,OAAO,EAAE,KAAK;aACf,CAAC,CAAC;YACH,OAAO,mBAAmB,CAAC,MAAM,CAAC,CAAC;QACrC,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,aAAa,CAAC,UAAkB;IAC7C,MAAM,KAAK,GAA2B,EAAE,CAAC;IAEzC,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,UAAU,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,UAAU,CAAC,EAAE;YAC5D,OAAO,EAAE,KAAK;SACf,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAEzD,uDAAuD;QACvD,IAAI,IAAI,CAAC,QAAQ,CAAC,kBAAkB,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;YAC5E,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC;QACtB,CAAC;QAED,4BAA4B;QAC5B,IAAI,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC9D,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC;QACvB,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,YAAY;IACd,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAChC,MAAoB,EACpB,KAAoB,EACpB,WAAmB;IAEnB,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAC5C,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC;IAE7D,oDAAoD;IACpD,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;QAClB,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,6BAA6B;YACrC,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,6FAA6F;YACnI,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,gBAAgB,CAAC;YACrC,QAAQ,EAAE,0BAA0B,KAAK,CAAC,MAAM,EAAE;YAClD,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,gCAAgC;IAChC,IAAI,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;QACd,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,mBAAmB;YAC3B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,qFAAqF;YAC3H,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,YAAY,CAAC;YACjC,QAAQ,EAAE,sBAAsB,KAAK,CAAC,EAAE,EAAE;YAC1C,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,cAAc;IACd,IAAI,CAAC,KAAK,CAAC,GAAG,IAAI,MAAM,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;QAC/C,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,oBAAoB;YAC5B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,qFAAqF;YAC3H,QAAQ,EAAE,QAAQ;YAClB,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,aAAa,CAAC;YAClC,QAAQ,EAAE,uBAAuB,KAAK,CAAC,GAAG,EAAE;YAC5C,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,2BAA2B;IAC3B,IAAI,KAAK,CAAC,KAAK,KAAK,MAAM,EAAE,CAAC;QAC3B,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,sBAAsB;YAC9B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,0EAA0E;YAChH,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,eAAe,CAAC;YACpC,QAAQ,EAAE,yBAAyB,KAAK,CAAC,KAAK,EAAE;YAChD,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,KAAK,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;QACrC,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,sBAAsB;YAC9B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,qFAAqF;YAC3H,QAAQ,EAAE,KAAK;YACf,UAAU,EAAE,GAAG;YACf,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,eAAe,CAAC;YACpC,QAAQ,EAAE,yBAAyB,KAAK,CAAC,KAAK,EAAE;YAChD,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,uBAAuB;IACvB,IAAI,KAAK,CAAC,KAAK,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;QACjC,QAAQ,CAAC,IAAI,CAAC;YACZ,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE,qBAAqB;YAC7B,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,sEAAsE;YAC5G,QAAQ,EAAE,QAAQ;YAClB,UAAU,EAAE,EAAE;YACd,QAAQ,EAAE,iBAAiB;YAC3B,MAAM,EAAE,WAAW,CAAC,cAAc,CAAC;YACnC,QAAQ,EAAE,yBAAyB,KAAK,CAAC,KAAK,aAAa,KAAK,CAAC,OAAO,EAAE;YAC1E,QAAQ,EAAE;gBACR,UAAU,EAAE,MAAM,CAAC,IAAI;gBACvB,WAAW,EAAE,KAAK;aACnB;SACF,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,iBAAiB,CAC9B,MAAoB,EACpB,WAAmB;IAEnB,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAC5C,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC;IAE7D,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAExD,kCAAkC;QAClC,IAAI,OAAO,CAAC,QAAQ,CAAC,sBAAsB,CAAC,EAAE,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC;gBACZ,OAAO,EAAE,iBAAiB;gBAC1B,MAAM,EAAE,iCAAiC;gBACzC,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,cAAc,CAAC,OAAO,EAAE,sBAAsB,CAAC;gBACrD,MAAM,EAAE,CAAC;gBACT,OAAO,EAAE,8FAA8F;gBACvG,QAAQ,EAAE,UAAU;gBACpB,UAAU,EAAE,GAAG;gBACf,QAAQ,EAAE,iBAAiB;gBAC3B,MAAM,EAAE,CAAC,SAAS,CAAC;gBACnB,QAAQ,EAAE,6BAA6B;gBACvC,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;aACtC,CAAC,CAAC;QACL,CAAC;QAED,kCAAkC;QAClC,IAAI,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YACrC,QAAQ,CAAC,IAAI,CAAC;gBACZ,OAAO,EAAE,iBAAiB;gBAC1B,MAAM,EAAE,8BAA8B;gBACtC,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,cAAc,CAAC,OAAO,EAAE,cAAc,CAAC;gBAC7C,MAAM,EAAE,CAAC;gBACT,OAAO,EAAE,6FAA6F;gBACtG,QAAQ,EAAE,UAAU;gBACpB,UAAU,EAAE,GAAG;gBACf,QAAQ,EAAE,iBAAiB;gBAC3B,MAAM,EAAE,CAAC,SAAS,CAAC;gBACnB,QAAQ,EAAE,qBAAqB;gBAC/B,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;aACtC,CAAC,CAAC;QACL,CAAC;QAED,2BAA2B;QAC3B,IAAI,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;YACnC,QAAQ,CAAC,IAAI,CAAC;gBACZ,OAAO,EAAE,iBAAiB;gBAC1B,MAAM,EAAE,uBAAuB;gBAC/B,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,cAAc,CAAC,OAAO,EAAE,YAAY,CAAC;gBAC3C,MAAM,EAAE,CAAC;gBACT,OAAO,EAAE,+EAA+E;gBACxF,QAAQ,EAAE,MAAM;gBAChB,UAAU,EAAE,GAAG;gBACf,QAAQ,EAAE,iBAAiB;gBAC3B,MAAM,EAAE,CAAC,SAAS,CAAC;gBACnB,QAAQ,EAAE,mBAAmB;gBAC7B,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;aACtC,CAAC,CAAC;QACL,CAAC;QAED,oCAAoC;QACpC,IAAI,OAAO,CAAC,QAAQ,CAAC,qBAAqB,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;YACrF,QAAQ,CAAC,IAAI,CAAC;gBACZ,OAAO,EAAE,iBAAiB;gBAC1B,MAAM,EAAE,yBAAyB;gBACjC,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,cAAc,CAAC,OAAO,EAAE,iBAAiB,CAAC;gBAChD,MAAM,EAAE,CAAC;gBACT,OAAO,EAAE,gFAAgF;gBACzF,QAAQ,EAAE,MAAM;gBAChB,UAAU,EAAE,GAAG;gBACf,QAAQ,EAAE,iBAAiB;gBAC3B,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;gBAC9B,QAAQ,EAAE,gCAAgC;gBAC1C,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;aACtC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,6BAA6B;IAC/B,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,OAAe,EAAE,OAAe;IACtD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,GAAG,CAAC,CAAC;QACf,CAAC;IACH,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,WAAmB,EACnB,OAAkD;IAElD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAE5C,IAAI,CAAC;QACH,wCAAwC;QACxC,MAAM,OAAO,GAAG,MAAM,mBAAmB,CAAC,WAAW,CAAC,CAAC;QAEvD,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzB,OAAO;gBACL,OAAO,EAAE,iBAAiB;gBAC1B,QAAQ,EAAE,EAAE;gBACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBAChC,OAAO,EAAE,IAAI;gBACb,QAAQ,EAAE;oBACR,OAAO,EAAE,wCAAwC;oBACjD,cAAc,EAAE,CAAC;iBAClB;aACF,CAAC;QACJ,CAAC;QAED,6BAA6B;QAC7B,MAAM,KAAK,GAAG,MAAM,4BAA4B,EAAE,CAAC;QACnD,MAAM,WAAW,GAAG,KAAK,CAAC,QAAQ,CAAC;QACnC,MAAM,KAAK,GAAG,KAAK,CAAC,EAAE,CAAC;QAEvB,yBAAyB;QACzB,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;YAC7B,wCAAwC;YACxC,IAAI,MAAM,CAAC,IAAI,KAAK,aAAa,EAAE,CAAC;gBAClC,MAAM,WAAW,GAAG,MAAM,iBAAiB,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;gBACjE,QAAQ,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,CAAC;gBAC9B,SAAS;YACX,CAAC;YAED,qCAAqC;YACrC,IAAI,MAAM,CAAC,IAAI,KAAK,YAAY,IAAI,MAAM,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBACjE,IAAI,KAAK,GAAyB,IAAI,CAAC;gBAEvC,qBAAqB;gBACrB,IAAI,WAAW,EAAE,CAAC;oBAChB,KAAK,GAAG,MAAM,mBAAmB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;gBACjD,CAAC;gBAED,0BAA0B;gBAC1B,IAAI,CAAC,KAAK,IAAI,KAAK,EAAE,CAAC;oBACpB,MAAM,YAAY,GAAG,MAAM,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;oBACtD,KAAK,GAAG;wBACN,KAAK,EAAE,MAAM,EAAE,iCAAiC;wBAChD,EAAE,EAAE,IAAI,EAAE,gCAAgC;wBAC1C,GAAG,EAAE,IAAI,EAAE,gCAAgC;wBAC3C,MAAM,EAAE,YAAY,CAAC,MAAM,IAAI,KAAK;wBACpC,OAAO,EAAE,YAAY,CAAC,OAAO,IAAI,KAAK;wBACtC,KAAK,EAAE,KAAK;wBACZ,OAAO,EAAE,KAAK;qBACf,CAAC;gBACJ,CAAC;gBAED,+BAA+B;gBAC/B,IAAI,KAAK,EAAE,CAAC;oBACV,MAAM,YAAY,GAAG,yBAAyB,CAAC,MAAM,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC;oBAC3E,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;gBACjC,CAAC;qBAAM,CAAC;oBACN,oDAAoD;oBACpD,QAAQ,CAAC,IAAI,CAAC;wBACZ,OAAO,EAAE,iBAAiB;wBAC1B,MAAM,EAAE,mBAAmB;wBAC3B,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC;wBAC7C,IAAI,EAAE,CAAC;wBACP,MAAM,EAAE,CAAC;wBACT,OAAO,EAAE,kBAAkB,MAAM,CAAC,IAAI,iFAAiF;wBACvH,QAAQ,EAAE,MAAM;wBAChB,UAAU,EAAE,GAAG;wBACf,QAAQ,EAAE,iBAAiB;wBAC3B,MAAM,EAAE,EAAE;wBACV,QAAQ,EAAE,oCAAoC;wBAC9C,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;qBACtC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,iDAAiD;YACjD,IAAI,MAAM,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;gBAC/B,QAAQ,CAAC,IAAI,CAAC;oBACZ,OAAO,EAAE,iBAAiB;oBAC1B,MAAM,EAAE,0BAA0B;oBAClC,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC;oBAC7C,IAAI,EAAE,CAAC;oBACP,MAAM,EAAE,CAAC;oBACT,OAAO,EAAE,8BAA8B,MAAM,CAAC,IAAI,mDAAmD;oBACrG,QAAQ,EAAE,MAAM;oBAChB,UAAU,EAAE,GAAG;oBACf,QAAQ,EAAE,iBAAiB;oBAC3B,MAAM,EAAE,EAAE;oBACV,QAAQ,EAAE,uCAAuC;oBACjD,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;iBACtC,CAAC,CAAC;YACL,CAAC;YAED,IAAI,MAAM,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBAC7B,QAAQ,CAAC,IAAI,CAAC;oBACZ,OAAO,EAAE,iBAAiB;oBAC1B,MAAM,EAAE,wBAAwB;oBAChC,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC;oBAC7C,IAAI,EAAE,CAAC;oBACP,MAAM,EAAE,CAAC;oBACT,OAAO,EAAE,0BAA0B,MAAM,CAAC,IAAI,kDAAkD;oBAChG,QAAQ,EAAE,MAAM;oBAChB,UAAU,EAAE,GAAG;oBACf,QAAQ,EAAE,iBAAiB;oBAC3B,MAAM,EAAE,EAAE;oBACV,QAAQ,EAAE,mBAAmB;oBAC7B,QAAQ,EAAE,EAAE,UAAU,EAAE,MAAM,CAAC,IAAI,EAAE;iBACtC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,iBAAiB;YAC1B,QAAQ;YACR,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE;gBACR,cAAc,EAAE,OAAO,CAAC,MAAM;gBAC9B,cAAc,EAAE,KAAK;aACtB;SACF,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO;YACL,OAAO,EAAE,iBAAiB;YAC1B,QAAQ;YACR,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;SAChE,CAAC;IACJ,CAAC;AACH,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"brakeman.d.ts","sourceRoot":"","sources":["../../src/scanners/brakeman.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAMH,OAAO,KAAK,EAAwB,aAAa,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;
|
|
1
|
+
{"version":3,"file":"brakeman.d.ts","sourceRoot":"","sources":["../../src/scanners/brakeman.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAMH,OAAO,KAAK,EAAwB,aAAa,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AA4E3F;;GAEG;AACH,wBAAsB,sBAAsB,IAAI,OAAO,CAAC,mBAAmB,CAAC,CAc3E;AAgCD;;GAEG;AACH,wBAAsB,WAAW,CAC/B,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE;IACR,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB,GACA,OAAO,CAAC,aAAa,CAAC,CAiIxB;AAED;;GAEG;AACH,wBAAsB,WAAW,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAwBvE;AAED;;GAEG;AACH,wBAAsB,UAAU,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAsBtE"}
|
|
@@ -5,11 +5,10 @@
|
|
|
5
5
|
*
|
|
6
6
|
* @module scanners/brakeman
|
|
7
7
|
*/
|
|
8
|
-
import { exec } from "child_process";
|
|
9
|
-
import { promisify } from "util";
|
|
10
8
|
import { access } from "fs/promises";
|
|
11
9
|
import { join } from "path";
|
|
12
|
-
|
|
10
|
+
import { runCommand, probeBinary } from "../util/subprocess.js";
|
|
11
|
+
import { parseJson } from "../util/json.js";
|
|
13
12
|
/**
|
|
14
13
|
* CWE mappings for common Brakeman warning types
|
|
15
14
|
*/
|
|
@@ -38,22 +37,19 @@ const WARNING_TO_CWE = {
|
|
|
38
37
|
* Check if Brakeman is available
|
|
39
38
|
*/
|
|
40
39
|
export async function checkBrakemanAvailable() {
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
const version = stdout.trim();
|
|
40
|
+
const version = await probeBinary("brakeman");
|
|
41
|
+
if (version !== null) {
|
|
44
42
|
return {
|
|
45
43
|
scanner: "brakeman",
|
|
46
44
|
available: true,
|
|
47
45
|
version,
|
|
48
46
|
};
|
|
49
47
|
}
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
};
|
|
56
|
-
}
|
|
48
|
+
return {
|
|
49
|
+
scanner: "brakeman",
|
|
50
|
+
available: false,
|
|
51
|
+
error: "Brakeman not found",
|
|
52
|
+
};
|
|
57
53
|
}
|
|
58
54
|
/**
|
|
59
55
|
* Convert Brakeman confidence to vaspera severity
|
|
@@ -108,37 +104,27 @@ export async function runBrakeman(projectPath, options) {
|
|
|
108
104
|
error: "Not a Ruby on Rails project (no Gemfile or config/application.rb found)",
|
|
109
105
|
};
|
|
110
106
|
}
|
|
111
|
-
|
|
112
|
-
let command = `brakeman "${projectPath}" -f json --no-pager --no-progress`;
|
|
107
|
+
const args = [projectPath, "-f", "json", "--no-pager", "--no-progress"];
|
|
113
108
|
if (options?.skip && options.skip.length > 0) {
|
|
114
|
-
|
|
109
|
+
args.push("--skip-checks", options.skip.join(","));
|
|
115
110
|
}
|
|
116
111
|
if (options?.only && options.only.length > 0) {
|
|
117
|
-
|
|
112
|
+
args.push("--only-checks", options.only.join(","));
|
|
118
113
|
}
|
|
119
114
|
if (options?.configFile) {
|
|
120
|
-
|
|
115
|
+
args.push("-c", options.configFile);
|
|
121
116
|
}
|
|
122
|
-
//
|
|
123
|
-
|
|
117
|
+
// Brakeman exits 3 when warnings are found and 4 on scan errors;
|
|
118
|
+
// runCommand tolerates non-zero exits that still produced stdout.
|
|
119
|
+
const { stdout } = await runCommand("brakeman", args, {
|
|
124
120
|
timeout: options?.timeout || 300000, // 5 minutes default
|
|
125
121
|
maxBuffer: 10 * 1024 * 1024, // 10MB
|
|
126
|
-
}).catch((error) => {
|
|
127
|
-
// Brakeman exits with different codes for warnings
|
|
128
|
-
// Exit code 0: No warnings
|
|
129
|
-
// Exit code 3: Warnings found
|
|
130
|
-
// Exit code 4: Errors during scan
|
|
131
|
-
if (error.stdout) {
|
|
132
|
-
return { stdout: error.stdout, stderr: error.stderr || "" };
|
|
133
|
-
}
|
|
134
|
-
throw error;
|
|
135
122
|
});
|
|
136
|
-
// Parse JSON output
|
|
137
123
|
let output;
|
|
138
124
|
try {
|
|
139
|
-
output =
|
|
125
|
+
output = parseJson(stdout, "brakeman output");
|
|
140
126
|
}
|
|
141
|
-
catch
|
|
127
|
+
catch {
|
|
142
128
|
return {
|
|
143
129
|
scanner: "brakeman",
|
|
144
130
|
findings: [],
|
|
@@ -259,7 +245,7 @@ export async function detectRuby(projectPath) {
|
|
|
259
245
|
catch {
|
|
260
246
|
// Check for .rb files
|
|
261
247
|
try {
|
|
262
|
-
const { stdout } = await
|
|
248
|
+
const { stdout } = await runCommand("find", [projectPath, "-maxdepth", "3", "-name", "*.rb"], { timeout: 5000 });
|
|
263
249
|
return stdout.trim().length > 0;
|
|
264
250
|
}
|
|
265
251
|
catch {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"brakeman.js","sourceRoot":"","sources":["../../src/scanners/brakeman.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,
|
|
1
|
+
{"version":3,"file":"brakeman.js","sourceRoot":"","sources":["../../src/scanners/brakeman.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AACrC,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAChE,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAoD5C;;GAEG;AACH,MAAM,cAAc,GAA2B;IAC7C,eAAe,EAAE,QAAQ;IACzB,sBAAsB,EAAE,QAAQ;IAChC,4BAA4B,EAAE,SAAS;IACvC,uBAAuB,EAAE,QAAQ;IACjC,mBAAmB,EAAE,QAAQ;IAC7B,gBAAgB,EAAE,QAAQ;IAC1B,UAAU,EAAE,SAAS;IACrB,iBAAiB,EAAE,SAAS;IAC5B,iBAAiB,EAAE,SAAS;IAC5B,mBAAmB,EAAE,SAAS;IAC9B,aAAa,EAAE,QAAQ;IACvB,qBAAqB,EAAE,QAAQ;IAC/B,gBAAgB,EAAE,QAAQ;IAC1B,gBAAgB,EAAE,QAAQ;IAC1B,yBAAyB,EAAE,SAAS;IACpC,wBAAwB,EAAE,SAAS;IACnC,gBAAgB,EAAE,SAAS;IAC3B,eAAe,EAAE,SAAS;IAC1B,WAAW,EAAE,SAAS;CACvB,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB;IAC1C,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC,UAAU,CAAC,CAAC;IAC9C,IAAI,OAAO,KAAK,IAAI,EAAE,CAAC;QACrB,OAAO;YACL,OAAO,EAAE,UAAU;YACnB,SAAS,EAAE,IAAI;YACf,OAAO;SACR,CAAC;IACJ,CAAC;IACD,OAAO;QACL,OAAO,EAAE,UAAU;QACnB,SAAS,EAAE,KAAK;QAChB,KAAK,EAAE,oBAAoB;KAC5B,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,SAAS,WAAW,CAAC,UAAsC,EAAE,WAAmB;IAC9E,qEAAqE;IACrE,MAAM,aAAa,GAAG;QACpB,eAAe;QACf,uBAAuB;QACvB,mBAAmB;QACnB,gBAAgB;KACjB,CAAC;IAEF,IAAI,aAAa,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QACjE,OAAO,UAAU,CAAC;IACpB,CAAC;IAED,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QAC1B,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,IAAI,UAAU,KAAK,QAAQ,EAAE,CAAC;QAC5B,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,WAAmB,EACnB,OAKC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,IAAI,CAAC;QACH,iCAAiC;QACjC,MAAM,YAAY,GAAG,MAAM,sBAAsB,EAAE,CAAC;QACpD,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,CAAC;YAC5B,OAAO;gBACL,OAAO,EAAE,UAAU;gBACnB,QAAQ,EAAE,EAAE;gBACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBAChC,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,+DAA+D;aACvE,CAAC;QACJ,CAAC;QAED,mCAAmC;QACnC,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC,WAAW,CAAC,CAAC;QAC/C,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO;gBACL,OAAO,EAAE,UAAU;gBACnB,QAAQ,EAAE,EAAE;gBACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBAChC,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,yEAAyE;aACjF,CAAC;QACJ,CAAC;QAED,MAAM,IAAI,GAAG,CAAC,WAAW,EAAE,IAAI,EAAE,MAAM,EAAE,YAAY,EAAE,eAAe,CAAC,CAAC;QAExE,IAAI,OAAO,EAAE,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7C,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QACrD,CAAC;QAED,IAAI,OAAO,EAAE,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7C,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QACrD,CAAC;QAED,IAAI,OAAO,EAAE,UAAU,EAAE,CAAC;YACxB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC;QACtC,CAAC;QAED,iEAAiE;QACjE,kEAAkE;QAClE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,UAAU,CAAC,UAAU,EAAE,IAAI,EAAE;YACpD,OAAO,EAAE,OAAO,EAAE,OAAO,IAAI,MAAM,EAAE,oBAAoB;YACzD,SAAS,EAAE,EAAE,GAAG,IAAI,GAAG,IAAI,EAAE,OAAO;SACrC,CAAC,CAAC;QAEH,IAAI,MAAsB,CAAC;QAC3B,IAAI,CAAC;YACH,MAAM,GAAG,SAAS,CAAiB,MAAM,EAAE,iBAAiB,CAAC,CAAC;QAChE,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;gBACL,OAAO,EAAE,UAAU;gBACnB,QAAQ,EAAE,EAAE;gBACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBAChC,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,sCAAsC;aAC9C,CAAC;QACJ,CAAC;QAED,mCAAmC;QACnC,MAAM,QAAQ,GAA2B,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE;YACvE,MAAM,KAAK,GAAG,cAAc,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;YAEnD,OAAO;gBACL,OAAO,EAAE,UAAmB;gBAC5B,MAAM,EAAE,YAAY,OAAO,CAAC,YAAY,EAAE;gBAC1C,IAAI,EAAE,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,WAAW,GAAG,GAAG,EAAE,EAAE,CAAC;gBACjD,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,CAAC;gBACvB,OAAO,EAAE,GAAG,OAAO,CAAC,YAAY,KAAK,OAAO,CAAC,OAAO,EAAE;gBACtD,QAAQ,EAAE,WAAW,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,YAAY,CAAC;gBAC/D,UAAU,EAAE,GAAG;gBACf,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS;gBACnC,QAAQ,EAAE,OAAO,CAAC,IAAI,IAAI,SAAS;gBACnC,GAAG,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,SAAS;gBACtD,QAAQ,EAAE;oBACR,WAAW,EAAE,OAAO,CAAC,YAAY;oBACjC,WAAW,EAAE,OAAO,CAAC,YAAY;oBACjC,SAAS,EAAE,OAAO,CAAC,UAAU;oBAC7B,WAAW,EAAE,OAAO,CAAC,WAAW;oBAChC,kBAAkB,EAAE,OAAO,CAAC,UAAU;oBACtC,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,SAAS,EAAE,OAAO,CAAC,UAAU;oBAC7B,IAAI,EAAE,OAAO,CAAC,IAAI;iBACnB;aACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,gCAAgC;QAChC,IAAI,MAAM,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC9C,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;gBAClC,QAAQ,CAAC,IAAI,CAAC;oBACZ,OAAO,EAAE,UAAmB;oBAC5B,MAAM,EAAE,gBAAgB;oBACxB,IAAI,EAAE,SAAS;oBACf,IAAI,EAAE,CAAC;oBACP,OAAO,EAAE,mBAAmB,KAAK,CAAC,KAAK,EAAE;oBACzC,QAAQ,EAAE,MAAM;oBAChB,UAAU,EAAE,GAAG;oBACf,QAAQ,EAAE;wBACR,SAAS,EAAE,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;qBACvC;iBACF,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,UAAU;YACnB,QAAQ;YACR,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,OAAO,EAAE,IAAI;YACb,OAAO,EAAE,YAAY,CAAC,OAAO;YAC7B,YAAY,EAAE,MAAM,CAAC,SAAS;gBAC5B,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,qBAAqB;oBACtC,MAAM,CAAC,SAAS,CAAC,gBAAgB;oBACjC,MAAM,CAAC,SAAS,CAAC,mBAAmB;gBACtC,CAAC,CAAC,SAAS;SACd,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO;YACL,OAAO,EAAE,UAAU;YACnB,QAAQ,EAAE,EAAE;YACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;SAChE,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAAC,WAAmB;IACnD,IAAI,CAAC;QACH,oBAAoB;QACpB,MAAM,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,CAAC;QAE3C,iCAAiC;QACjC,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,QAAQ,EAAE,gBAAgB,CAAC,CAAC,CAAC;YAC5D,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,0DAA0D;YAC1D,IAAI,CAAC;gBACH,MAAM,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,QAAQ,EAAE,gBAAgB,CAAC,CAAC,CAAC;gBAC5D,OAAO,IAAI,CAAC;YACd,CAAC;YAAC,MAAM,CAAC;gBACP,8BAA8B;gBAC9B,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAC;gBACjD,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,EAAE,OAAO,CAAC,CAAC;gBACtE,OAAO,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;YAC5E,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,WAAmB;IAClD,IAAI,CAAC;QACH,MAAM,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,CAAC;QAC3C,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC,CAAC;YAC5C,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,sBAAsB;YACtB,IAAI,CAAC;gBACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,UAAU,CACjC,MAAM,EACN,CAAC,WAAW,EAAE,WAAW,EAAE,GAAG,EAAE,OAAO,EAAE,MAAM,CAAC,EAChD,EAAE,OAAO,EAAE,IAAI,EAAE,CAClB,CAAC;gBACF,OAAO,MAAM,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC;YAClC,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC"}
|
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Built-in Semgrep taint rules.
|
|
3
|
+
*
|
|
4
|
+
* Semgrep's free community rulesets (p/owasp-top-ten, p/javascript, …)
|
|
5
|
+
* do NOT include the taint-tracking rules for SQL injection, command
|
|
6
|
+
* injection, and SSRF — those require `semgrep login` (a registry
|
|
7
|
+
* account). That left a major detection gap: the product could not catch
|
|
8
|
+
* three of the most important vulnerability classes offline.
|
|
9
|
+
*
|
|
10
|
+
* These embedded taint rules close that gap with zero login/network —
|
|
11
|
+
* they ship with the package as a string and are written to a temp file
|
|
12
|
+
* at scan time, then passed to semgrep with `--config`. Verified against
|
|
13
|
+
* the eval fixtures.
|
|
14
|
+
*
|
|
15
|
+
* @module scanners/builtin-rules
|
|
16
|
+
*/
|
|
17
|
+
/** Embedded Semgrep taint rules (YAML). */
|
|
18
|
+
export declare const BUILTIN_SEMGREP_RULES = "rules:\n - id: vaspera-sql-injection\n mode: taint\n severity: ERROR\n languages: [javascript, typescript]\n message: >-\n Untrusted request input flows into a SQL query without\n parameterization (SQL injection).\n metadata:\n category: security\n cwe: \"CWE-89\"\n owasp: \"A03:2021\"\n vaspera: builtin\n pattern-sources:\n - pattern: req.query\n - pattern: req.params\n - pattern: req.body\n - pattern: req.headers\n pattern-sinks:\n - patterns:\n - pattern: $X.query($SQL, ...)\n - focus-metavariable: $SQL\n - patterns:\n - pattern: $X.execute($SQL, ...)\n - focus-metavariable: $SQL\n - pattern: $X.raw(...)\n - id: vaspera-command-injection\n mode: taint\n severity: ERROR\n languages: [javascript, typescript]\n message: >-\n Untrusted request input flows into a shell command\n (command injection).\n metadata:\n category: security\n cwe: \"CWE-78\"\n owasp: \"A03:2021\"\n vaspera: builtin\n pattern-sources:\n - pattern: req.query\n - pattern: req.params\n - pattern: req.body\n # exec/execSync run a shell string (dangerous with interpolation).\n # Array-form spawn(cmd, [args]) is the SAFE alternative, so it is\n # intentionally NOT a sink \u2014 flagging it would be a false positive.\n pattern-sinks:\n - pattern: exec(...)\n - pattern: execSync(...)\n - pattern: $CP.exec(...)\n - pattern: $CP.execSync(...)\n - patterns:\n - pattern: spawn($CMD, ...)\n - focus-metavariable: $CMD\n - patterns:\n - pattern: $CP.spawn($CMD, ...)\n - focus-metavariable: $CMD\n - id: vaspera-ssrf\n mode: taint\n severity: ERROR\n languages: [javascript, typescript]\n message: >-\n Untrusted request input flows into an outbound request URL\n (server-side request forgery).\n metadata:\n category: security\n cwe: \"CWE-918\"\n owasp: \"A10:2021\"\n vaspera: builtin\n pattern-sources:\n - pattern: req.query\n - pattern: req.params\n - pattern: req.body\n # Focus on the URL argument \u2014 taint in a request body/payload\n # argument is not SSRF, so flagging it would be a false positive.\n pattern-sinks:\n - patterns:\n - pattern: fetch($URL, ...)\n - focus-metavariable: $URL\n - patterns:\n - pattern: axios.get($URL, ...)\n - focus-metavariable: $URL\n - patterns:\n - pattern: axios.post($URL, ...)\n - focus-metavariable: $URL\n - patterns:\n - pattern: axios($URL, ...)\n - focus-metavariable: $URL\n - patterns:\n - pattern: http.get($URL, ...)\n - focus-metavariable: $URL\n - patterns:\n - pattern: https.get($URL, ...)\n - focus-metavariable: $URL\n - patterns:\n - pattern: got($URL, ...)\n - focus-metavariable: $URL\n - id: vaspera-insecure-deserialization\n severity: ERROR\n languages: [javascript, typescript]\n message: >-\n Insecure deserialization (CWE-502): untrusted input is executed as code\n via eval, the Function constructor, or an unsafe yaml.load. Use JSON.parse\n or a safe schema (yaml.load(x, { schema: JSON_SCHEMA })).\n metadata:\n category: security\n cwe: \"CWE-502\"\n owasp: \"A08:2021\"\n vaspera: builtin\n # Not taint-tracked: these sinks execute their argument as code regardless\n # of provenance, so the construct itself is the vulnerability.\n pattern-either:\n - pattern: eval(...)\n - pattern: new Function(...)\n # Single-arg yaml.load (no safe schema). A 1-arg pattern (no \"...\")\n # naturally excludes the safe 2-arg form yaml.load(x, { schema }).\n # Constrain the receiver to yaml-ish names so it doesn't match every\n # unrelated .load() call.\n - patterns:\n - pattern: $YAML.load($X)\n - metavariable-regex:\n metavariable: $YAML\n regex: (?i)(yaml|jsyaml)\n - id: vaspera-xxe\n severity: ERROR\n languages: [javascript, typescript]\n message: >-\n XML external entity injection (XXE, CWE-611): an XML parser is constructed\n without disabling external entity resolution. Disable DTD/entity expansion\n or use a parser that is safe by default.\n metadata:\n category: security\n cwe: \"CWE-611\"\n owasp: \"A05:2021\"\n vaspera: builtin\n # xmldom's DOMParser resolves external entities by default; fast-xml-parser's\n # XMLParser is safe by default and is intentionally NOT flagged.\n pattern-either:\n - pattern: new DOMParser()\n - pattern: new DOMParser(...).parseFromString(...)\n";
|
|
19
|
+
/**
|
|
20
|
+
* Write the built-in rules to a temp file (once per process) and return
|
|
21
|
+
* the path, for passing to `semgrep --config`.
|
|
22
|
+
*/
|
|
23
|
+
export declare function getBuiltinRulesPath(): Promise<string>;
|
|
24
|
+
//# sourceMappingURL=builtin-rules.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"builtin-rules.d.ts","sourceRoot":"","sources":["../../src/scanners/builtin-rules.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAMH,2CAA2C;AAC3C,eAAO,MAAM,qBAAqB,svJA2IjC,CAAC;AAIF;;;GAGG;AACH,wBAAsB,mBAAmB,IAAI,OAAO,CAAC,MAAM,CAAC,CAO3D"}
|
|
@@ -0,0 +1,175 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Built-in Semgrep taint rules.
|
|
3
|
+
*
|
|
4
|
+
* Semgrep's free community rulesets (p/owasp-top-ten, p/javascript, …)
|
|
5
|
+
* do NOT include the taint-tracking rules for SQL injection, command
|
|
6
|
+
* injection, and SSRF — those require `semgrep login` (a registry
|
|
7
|
+
* account). That left a major detection gap: the product could not catch
|
|
8
|
+
* three of the most important vulnerability classes offline.
|
|
9
|
+
*
|
|
10
|
+
* These embedded taint rules close that gap with zero login/network —
|
|
11
|
+
* they ship with the package as a string and are written to a temp file
|
|
12
|
+
* at scan time, then passed to semgrep with `--config`. Verified against
|
|
13
|
+
* the eval fixtures.
|
|
14
|
+
*
|
|
15
|
+
* @module scanners/builtin-rules
|
|
16
|
+
*/
|
|
17
|
+
import { writeFile, mkdtemp } from "fs/promises";
|
|
18
|
+
import { tmpdir } from "os";
|
|
19
|
+
import { join } from "path";
|
|
20
|
+
/** Embedded Semgrep taint rules (YAML). */
|
|
21
|
+
export const BUILTIN_SEMGREP_RULES = `rules:
|
|
22
|
+
- id: vaspera-sql-injection
|
|
23
|
+
mode: taint
|
|
24
|
+
severity: ERROR
|
|
25
|
+
languages: [javascript, typescript]
|
|
26
|
+
message: >-
|
|
27
|
+
Untrusted request input flows into a SQL query without
|
|
28
|
+
parameterization (SQL injection).
|
|
29
|
+
metadata:
|
|
30
|
+
category: security
|
|
31
|
+
cwe: "CWE-89"
|
|
32
|
+
owasp: "A03:2021"
|
|
33
|
+
vaspera: builtin
|
|
34
|
+
pattern-sources:
|
|
35
|
+
- pattern: req.query
|
|
36
|
+
- pattern: req.params
|
|
37
|
+
- pattern: req.body
|
|
38
|
+
- pattern: req.headers
|
|
39
|
+
pattern-sinks:
|
|
40
|
+
- patterns:
|
|
41
|
+
- pattern: $X.query($SQL, ...)
|
|
42
|
+
- focus-metavariable: $SQL
|
|
43
|
+
- patterns:
|
|
44
|
+
- pattern: $X.execute($SQL, ...)
|
|
45
|
+
- focus-metavariable: $SQL
|
|
46
|
+
- pattern: $X.raw(...)
|
|
47
|
+
- id: vaspera-command-injection
|
|
48
|
+
mode: taint
|
|
49
|
+
severity: ERROR
|
|
50
|
+
languages: [javascript, typescript]
|
|
51
|
+
message: >-
|
|
52
|
+
Untrusted request input flows into a shell command
|
|
53
|
+
(command injection).
|
|
54
|
+
metadata:
|
|
55
|
+
category: security
|
|
56
|
+
cwe: "CWE-78"
|
|
57
|
+
owasp: "A03:2021"
|
|
58
|
+
vaspera: builtin
|
|
59
|
+
pattern-sources:
|
|
60
|
+
- pattern: req.query
|
|
61
|
+
- pattern: req.params
|
|
62
|
+
- pattern: req.body
|
|
63
|
+
# exec/execSync run a shell string (dangerous with interpolation).
|
|
64
|
+
# Array-form spawn(cmd, [args]) is the SAFE alternative, so it is
|
|
65
|
+
# intentionally NOT a sink — flagging it would be a false positive.
|
|
66
|
+
pattern-sinks:
|
|
67
|
+
- pattern: exec(...)
|
|
68
|
+
- pattern: execSync(...)
|
|
69
|
+
- pattern: $CP.exec(...)
|
|
70
|
+
- pattern: $CP.execSync(...)
|
|
71
|
+
- patterns:
|
|
72
|
+
- pattern: spawn($CMD, ...)
|
|
73
|
+
- focus-metavariable: $CMD
|
|
74
|
+
- patterns:
|
|
75
|
+
- pattern: $CP.spawn($CMD, ...)
|
|
76
|
+
- focus-metavariable: $CMD
|
|
77
|
+
- id: vaspera-ssrf
|
|
78
|
+
mode: taint
|
|
79
|
+
severity: ERROR
|
|
80
|
+
languages: [javascript, typescript]
|
|
81
|
+
message: >-
|
|
82
|
+
Untrusted request input flows into an outbound request URL
|
|
83
|
+
(server-side request forgery).
|
|
84
|
+
metadata:
|
|
85
|
+
category: security
|
|
86
|
+
cwe: "CWE-918"
|
|
87
|
+
owasp: "A10:2021"
|
|
88
|
+
vaspera: builtin
|
|
89
|
+
pattern-sources:
|
|
90
|
+
- pattern: req.query
|
|
91
|
+
- pattern: req.params
|
|
92
|
+
- pattern: req.body
|
|
93
|
+
# Focus on the URL argument — taint in a request body/payload
|
|
94
|
+
# argument is not SSRF, so flagging it would be a false positive.
|
|
95
|
+
pattern-sinks:
|
|
96
|
+
- patterns:
|
|
97
|
+
- pattern: fetch($URL, ...)
|
|
98
|
+
- focus-metavariable: $URL
|
|
99
|
+
- patterns:
|
|
100
|
+
- pattern: axios.get($URL, ...)
|
|
101
|
+
- focus-metavariable: $URL
|
|
102
|
+
- patterns:
|
|
103
|
+
- pattern: axios.post($URL, ...)
|
|
104
|
+
- focus-metavariable: $URL
|
|
105
|
+
- patterns:
|
|
106
|
+
- pattern: axios($URL, ...)
|
|
107
|
+
- focus-metavariable: $URL
|
|
108
|
+
- patterns:
|
|
109
|
+
- pattern: http.get($URL, ...)
|
|
110
|
+
- focus-metavariable: $URL
|
|
111
|
+
- patterns:
|
|
112
|
+
- pattern: https.get($URL, ...)
|
|
113
|
+
- focus-metavariable: $URL
|
|
114
|
+
- patterns:
|
|
115
|
+
- pattern: got($URL, ...)
|
|
116
|
+
- focus-metavariable: $URL
|
|
117
|
+
- id: vaspera-insecure-deserialization
|
|
118
|
+
severity: ERROR
|
|
119
|
+
languages: [javascript, typescript]
|
|
120
|
+
message: >-
|
|
121
|
+
Insecure deserialization (CWE-502): untrusted input is executed as code
|
|
122
|
+
via eval, the Function constructor, or an unsafe yaml.load. Use JSON.parse
|
|
123
|
+
or a safe schema (yaml.load(x, { schema: JSON_SCHEMA })).
|
|
124
|
+
metadata:
|
|
125
|
+
category: security
|
|
126
|
+
cwe: "CWE-502"
|
|
127
|
+
owasp: "A08:2021"
|
|
128
|
+
vaspera: builtin
|
|
129
|
+
# Not taint-tracked: these sinks execute their argument as code regardless
|
|
130
|
+
# of provenance, so the construct itself is the vulnerability.
|
|
131
|
+
pattern-either:
|
|
132
|
+
- pattern: eval(...)
|
|
133
|
+
- pattern: new Function(...)
|
|
134
|
+
# Single-arg yaml.load (no safe schema). A 1-arg pattern (no "...")
|
|
135
|
+
# naturally excludes the safe 2-arg form yaml.load(x, { schema }).
|
|
136
|
+
# Constrain the receiver to yaml-ish names so it doesn't match every
|
|
137
|
+
# unrelated .load() call.
|
|
138
|
+
- patterns:
|
|
139
|
+
- pattern: $YAML.load($X)
|
|
140
|
+
- metavariable-regex:
|
|
141
|
+
metavariable: $YAML
|
|
142
|
+
regex: (?i)(yaml|jsyaml)
|
|
143
|
+
- id: vaspera-xxe
|
|
144
|
+
severity: ERROR
|
|
145
|
+
languages: [javascript, typescript]
|
|
146
|
+
message: >-
|
|
147
|
+
XML external entity injection (XXE, CWE-611): an XML parser is constructed
|
|
148
|
+
without disabling external entity resolution. Disable DTD/entity expansion
|
|
149
|
+
or use a parser that is safe by default.
|
|
150
|
+
metadata:
|
|
151
|
+
category: security
|
|
152
|
+
cwe: "CWE-611"
|
|
153
|
+
owasp: "A05:2021"
|
|
154
|
+
vaspera: builtin
|
|
155
|
+
# xmldom's DOMParser resolves external entities by default; fast-xml-parser's
|
|
156
|
+
# XMLParser is safe by default and is intentionally NOT flagged.
|
|
157
|
+
pattern-either:
|
|
158
|
+
- pattern: new DOMParser()
|
|
159
|
+
- pattern: new DOMParser(...).parseFromString(...)
|
|
160
|
+
`;
|
|
161
|
+
let cachedRulesPath = null;
|
|
162
|
+
/**
|
|
163
|
+
* Write the built-in rules to a temp file (once per process) and return
|
|
164
|
+
* the path, for passing to `semgrep --config`.
|
|
165
|
+
*/
|
|
166
|
+
export async function getBuiltinRulesPath() {
|
|
167
|
+
if (cachedRulesPath)
|
|
168
|
+
return cachedRulesPath;
|
|
169
|
+
const dir = await mkdtemp(join(tmpdir(), "vaspera-semgrep-rules-"));
|
|
170
|
+
const path = join(dir, "vaspera-builtin.yaml");
|
|
171
|
+
await writeFile(path, BUILTIN_SEMGREP_RULES, "utf-8");
|
|
172
|
+
cachedRulesPath = path;
|
|
173
|
+
return path;
|
|
174
|
+
}
|
|
175
|
+
//# sourceMappingURL=builtin-rules.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"builtin-rules.js","sourceRoot":"","sources":["../../src/scanners/builtin-rules.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,MAAM,EAAE,MAAM,IAAI,CAAC;AAC5B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAE5B,2CAA2C;AAC3C,MAAM,CAAC,MAAM,qBAAqB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA2IpC,CAAC;AAEF,IAAI,eAAe,GAAkB,IAAI,CAAC;AAE1C;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB;IACvC,IAAI,eAAe;QAAE,OAAO,eAAe,CAAC;IAC5C,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;IACpE,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,sBAAsB,CAAC,CAAC;IAC/C,MAAM,SAAS,CAAC,IAAI,EAAE,qBAAqB,EAAE,OAAO,CAAC,CAAC;IACtD,eAAe,GAAG,IAAI,CAAC;IACvB,OAAO,IAAI,CAAC;AACd,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"dast.d.ts","sourceRoot":"","sources":["../../src/scanners/dast.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,KAAK,EAAE,oBAAoB,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;
|
|
1
|
+
{"version":3,"file":"dast.d.ts","sourceRoot":"","sources":["../../src/scanners/dast.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,KAAK,EAAE,oBAAoB,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAiC3F,wBAAsB,oBAAoB,IAAI,OAAO,CAAC,mBAAmB,CAAC,CAczE;AAiBD,MAAM,WAAW,WAAW;IAC1B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACjC,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B;AAED,wBAAsB,SAAS,CAC7B,SAAS,EAAE,MAAM,EACjB,OAAO,CAAC,EAAE,WAAW,GACpB,OAAO,CAAC,aAAa,CAAC,CAiHxB;AAED,wBAAsB,WAAW,CAC/B,SAAS,EAAE,MAAM,EACjB,OAAO,CAAC,EAAE,WAAW,GACpB,OAAO,CAAC,aAAa,CAAC,CAExB;AAED,wBAAsB,gBAAgB,CACpC,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,aAAa,CAAC,CAOxB;AAED,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,oBAAoB,EAAE,CAAC;IACjC,OAAO,EAAE;QACP,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,MAAM,CAAC;QACf,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;CACH;AAED,wBAAgB,kBAAkB,CAChC,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,aAAa,GACpB,UAAU,CAgBZ;AAED,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,UAAU,GAAG,MAAM,CAiD3D"}
|
package/dist/scanners/dast.js
CHANGED
|
@@ -6,26 +6,22 @@
|
|
|
6
6
|
*
|
|
7
7
|
* @module scanners/dast
|
|
8
8
|
*/
|
|
9
|
-
import {
|
|
10
|
-
import {
|
|
11
|
-
const execAsync = promisify(exec);
|
|
9
|
+
import { runCommand, probeBinary } from "../util/subprocess.js";
|
|
10
|
+
import { parseJson } from "../util/json.js";
|
|
12
11
|
export async function checkNucleiAvailable() {
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
const version = stdout.match(/v[\d.]+/)?.[0] || stdout.trim();
|
|
12
|
+
const output = await probeBinary("nuclei", ["-version"], 10000);
|
|
13
|
+
if (output !== null) {
|
|
16
14
|
return {
|
|
17
15
|
scanner: "nuclei",
|
|
18
16
|
available: true,
|
|
19
|
-
version,
|
|
20
|
-
};
|
|
21
|
-
}
|
|
22
|
-
catch {
|
|
23
|
-
return {
|
|
24
|
-
scanner: "nuclei",
|
|
25
|
-
available: false,
|
|
26
|
-
error: "Nuclei not found. Install from: https://github.com/projectdiscovery/nuclei",
|
|
17
|
+
version: output.match(/v[\d.]+/)?.[0] || output,
|
|
27
18
|
};
|
|
28
19
|
}
|
|
20
|
+
return {
|
|
21
|
+
scanner: "nuclei",
|
|
22
|
+
available: false,
|
|
23
|
+
error: "Nuclei not found. Install from: https://github.com/projectdiscovery/nuclei",
|
|
24
|
+
};
|
|
29
25
|
}
|
|
30
26
|
function mapSeverity(severity) {
|
|
31
27
|
switch (severity.toLowerCase()) {
|
|
@@ -54,60 +50,54 @@ export async function runNuclei(targetUrl, options) {
|
|
|
54
50
|
error: availability.error,
|
|
55
51
|
};
|
|
56
52
|
}
|
|
57
|
-
|
|
58
|
-
let command = `nuclei -u "${targetUrl}" -jsonl -silent`;
|
|
53
|
+
const args = ["-u", targetUrl, "-jsonl", "-silent"];
|
|
59
54
|
// Add template filters
|
|
60
55
|
if (options?.templates && options.templates.length > 0) {
|
|
61
|
-
|
|
56
|
+
args.push("-t", options.templates.join(","));
|
|
62
57
|
}
|
|
63
58
|
else {
|
|
64
59
|
// Default to common security templates
|
|
65
|
-
|
|
60
|
+
args.push("-tags", "cve,exposure,misconfiguration,default-login");
|
|
66
61
|
}
|
|
67
62
|
if (options?.severity && options.severity.length > 0) {
|
|
68
|
-
|
|
63
|
+
args.push("-severity", options.severity.join(","));
|
|
69
64
|
}
|
|
70
65
|
else {
|
|
71
66
|
// Default to medium and above
|
|
72
|
-
|
|
67
|
+
args.push("-severity", "medium,high,critical");
|
|
73
68
|
}
|
|
74
69
|
if (options?.tags && options.tags.length > 0) {
|
|
75
|
-
|
|
70
|
+
args.push("-tags", options.tags.join(","));
|
|
76
71
|
}
|
|
77
72
|
if (options?.excludeTags && options.excludeTags.length > 0) {
|
|
78
|
-
|
|
73
|
+
args.push("-etags", options.excludeTags.join(","));
|
|
79
74
|
}
|
|
80
75
|
if (options?.rateLimit) {
|
|
81
|
-
|
|
76
|
+
args.push("-rl", String(options.rateLimit));
|
|
82
77
|
}
|
|
83
78
|
else {
|
|
84
|
-
|
|
79
|
+
args.push("-rl", "50"); // Default rate limit
|
|
85
80
|
}
|
|
86
81
|
if (options?.concurrency) {
|
|
87
|
-
|
|
82
|
+
args.push("-c", String(options.concurrency));
|
|
88
83
|
}
|
|
89
84
|
if (options?.headers) {
|
|
90
85
|
for (const [key, value] of Object.entries(options.headers)) {
|
|
91
|
-
|
|
86
|
+
args.push("-H", `${key}: ${value}`);
|
|
92
87
|
}
|
|
93
88
|
}
|
|
94
89
|
if (options?.followRedirects === false) {
|
|
95
|
-
|
|
90
|
+
args.push("-no-redirect");
|
|
96
91
|
}
|
|
97
|
-
const { stdout
|
|
92
|
+
const { stdout } = await runCommand("nuclei", args, {
|
|
98
93
|
timeout: options?.timeout || 300000, // 5 minutes default
|
|
99
94
|
maxBuffer: 50 * 1024 * 1024,
|
|
100
|
-
}).catch((error) => {
|
|
101
|
-
if (error.stdout) {
|
|
102
|
-
return { stdout: error.stdout, stderr: error.stderr || "" };
|
|
103
|
-
}
|
|
104
|
-
throw error;
|
|
105
95
|
});
|
|
106
96
|
const findings = [];
|
|
107
97
|
const lines = stdout.split("\n").filter((l) => l.trim());
|
|
108
98
|
for (const line of lines) {
|
|
109
99
|
try {
|
|
110
|
-
const result =
|
|
100
|
+
const result = parseJson(line, "nuclei output line");
|
|
111
101
|
findings.push({
|
|
112
102
|
scanner: "nuclei",
|
|
113
103
|
ruleId: `nuclei:${result["template-id"]}`,
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"dast.js","sourceRoot":"","sources":["../../src/scanners/dast.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,
|
|
1
|
+
{"version":3,"file":"dast.js","sourceRoot":"","sources":["../../src/scanners/dast.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAChE,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAkC5C,MAAM,CAAC,KAAK,UAAU,oBAAoB;IACxC,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,QAAQ,EAAE,CAAC,UAAU,CAAC,EAAE,KAAK,CAAC,CAAC;IAChE,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;QACpB,OAAO;YACL,OAAO,EAAE,QAAQ;YACjB,SAAS,EAAE,IAAI;YACf,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,MAAM;SAChD,CAAC;IACJ,CAAC;IACD,OAAO;QACL,OAAO,EAAE,QAAQ;QACjB,SAAS,EAAE,KAAK;QAChB,KAAK,EAAE,4EAA4E;KACpF,CAAC;AACJ,CAAC;AAED,SAAS,WAAW,CAAC,QAAgB;IACnC,QAAQ,QAAQ,CAAC,WAAW,EAAE,EAAE,CAAC;QAC/B,KAAK,UAAU;YACb,OAAO,UAAU,CAAC;QACpB,KAAK,MAAM;YACT,OAAO,MAAM,CAAC;QAChB,KAAK,QAAQ;YACX,OAAO,QAAQ,CAAC;QAClB,KAAK,KAAK;YACR,OAAO,KAAK,CAAC;QACf;YACE,OAAO,MAAM,CAAC;IAClB,CAAC;AACH,CAAC;AAcD,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,SAAiB,EACjB,OAAqB;IAErB,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,IAAI,CAAC;QACH,MAAM,YAAY,GAAG,MAAM,oBAAoB,EAAE,CAAC;QAClD,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,CAAC;YAC5B,OAAO;gBACL,OAAO,EAAE,QAAQ;gBACjB,QAAQ,EAAE,EAAE;gBACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBAChC,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,YAAY,CAAC,KAAK;aAC1B,CAAC;QACJ,CAAC;QAED,MAAM,IAAI,GAAG,CAAC,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,SAAS,CAAC,CAAC;QAEpD,uBAAuB;QACvB,IAAI,OAAO,EAAE,SAAS,IAAI,OAAO,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACvD,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QAC/C,CAAC;aAAM,CAAC;YACN,uCAAuC;YACvC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,6CAA6C,CAAC,CAAC;QACpE,CAAC;QAED,IAAI,OAAO,EAAE,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrD,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QACrD,CAAC;aAAM,CAAC;YACN,8BAA8B;YAC9B,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,sBAAsB,CAAC,CAAC;QACjD,CAAC;QAED,IAAI,OAAO,EAAE,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7C,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QAC7C,CAAC;QAED,IAAI,OAAO,EAAE,WAAW,IAAI,OAAO,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3D,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,OAAO,CAAC,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QACrD,CAAC;QAED,IAAI,OAAO,EAAE,SAAS,EAAE,CAAC;YACvB,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC;QAC9C,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC,CAAC,qBAAqB;QAC/C,CAAC;QAED,IAAI,OAAO,EAAE,WAAW,EAAE,CAAC;YACzB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC;QAC/C,CAAC;QAED,IAAI,OAAO,EAAE,OAAO,EAAE,CAAC;YACrB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC3D,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,GAAG,KAAK,KAAK,EAAE,CAAC,CAAC;YACtC,CAAC;QACH,CAAC;QAED,IAAI,OAAO,EAAE,eAAe,KAAK,KAAK,EAAE,CAAC;YACvC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC5B,CAAC;QAED,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,UAAU,CAAC,QAAQ,EAAE,IAAI,EAAE;YAClD,OAAO,EAAE,OAAO,EAAE,OAAO,IAAI,MAAM,EAAE,oBAAoB;YACzD,SAAS,EAAE,EAAE,GAAG,IAAI,GAAG,IAAI;SAC5B,CAAC,CAAC;QAEH,MAAM,QAAQ,GAA2B,EAAE,CAAC;QAC5C,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QAEjE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,SAAS,CAAe,IAAI,EAAE,oBAAoB,CAAC,CAAC;gBACnE,QAAQ,CAAC,IAAI,CAAC;oBACZ,OAAO,EAAE,QAAiB;oBAC1B,MAAM,EAAE,UAAU,MAAM,CAAC,aAAa,CAAC,EAAE;oBACzC,IAAI,EAAE,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,IAAI;oBACnC,IAAI,EAAE,CAAC;oBACP,OAAO,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,KAAK,MAAM,CAAC,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,OAAO,EAAE;oBAC5E,QAAQ,EAAE,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC;oBAC3C,UAAU,EAAE,GAAG;oBACf,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC,QAAQ,CAAC;oBAC9C,QAAQ,EAAE;wBACR,IAAI,EAAE,MAAM,CAAC,IAAI;wBACjB,SAAS,EAAE,MAAM,CAAC,YAAY,CAAC;wBAC/B,QAAQ,EAAE,MAAM,CAAC,QAAQ;wBACzB,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI;wBACtB,UAAU,EAAE,MAAM,CAAC,IAAI,CAAC,SAAS;wBACjC,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC,QAAQ,CAAC;wBAC9C,SAAS,EAAE,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,IAAI,EAAE,KAAK;wBAClD,WAAW,EAAE,MAAM,CAAC,cAAc,CAAC;wBACnC,gBAAgB,EAAE,MAAM,CAAC,mBAAmB,CAAC;qBAC9C;iBACF,CAAC,CAAC;YACL,CAAC;YAAC,MAAM,CAAC;gBACP,sBAAsB;YACxB,CAAC;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,QAAQ;YACjB,QAAQ;YACR,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,OAAO,EAAE,IAAI;YACb,OAAO,EAAE,YAAY,CAAC,OAAO;SAC9B,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO;YACL,OAAO,EAAE,QAAQ;YACjB,QAAQ,EAAE,EAAE;YACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;YAChC,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;SAChE,CAAC;IACJ,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,SAAiB,EACjB,OAAqB;IAErB,OAAO,SAAS,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;AACvC,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,SAAiB;IAEjB,OAAO,SAAS,CAAC,SAAS,EAAE;QAC1B,OAAO,EAAE,KAAK;QACd,QAAQ,EAAE,CAAC,MAAM,EAAE,UAAU,CAAC;QAC9B,IAAI,EAAE,CAAC,KAAK,EAAE,UAAU,EAAE,eAAe,CAAC;QAC1C,SAAS,EAAE,GAAG;KACf,CAAC,CAAC;AACL,CAAC;AAgBD,MAAM,UAAU,kBAAkB,CAChC,SAAiB,EACjB,MAAqB;IAErB,MAAM,OAAO,GAAG;QACd,KAAK,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM;QAC7B,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;QACzE,IAAI,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM;QACjE,MAAM,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM;QACrE,GAAG,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM;KAChE,CAAC;IAEF,OAAO;QACL,MAAM,EAAE,SAAS;QACjB,QAAQ,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QAClC,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,OAAO;KACR,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,MAAkB;IACjD,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;IACjC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IAC3C,KAAK,CAAC,IAAI,CAAC,kBAAkB,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;IAChD,KAAK,CAAC,IAAI,CAAC,iBAAiB,MAAM,CAAC,QAAQ,IAAI,CAAC,CAAC;IACjD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IACzB,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;IACnC,KAAK,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;IACnC,KAAK,CAAC,IAAI,CAAC,gBAAgB,MAAM,CAAC,OAAO,CAAC,QAAQ,IAAI,CAAC,CAAC;IACxD,KAAK,CAAC,IAAI,CAAC,YAAY,MAAM,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC;IAChD,KAAK,CAAC,IAAI,CAAC,cAAc,MAAM,CAAC,OAAO,CAAC,MAAM,IAAI,CAAC,CAAC;IACpD,KAAK,CAAC,IAAI,CAAC,WAAW,MAAM,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC;IAC9C,KAAK,CAAC,IAAI,CAAC,mBAAmB,MAAM,CAAC,OAAO,CAAC,KAAK,MAAM,CAAC,CAAC;IAC1D,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/B,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAC1B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEf,KAAK,MAAM,OAAO,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YACtC,KAAK,CAAC,IAAI,CAAC,QAAQ,OAAO,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;YACxE,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;YAC5B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,MAAM,WAAW,GAAG,OAAO,CAAC,QAAQ,EAAE,WAAiC,CAAC;YACxE,IAAI,WAAW,EAAE,CAAC;gBAChB,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;gBAC7B,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;gBACtB,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;gBACxB,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAClB,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACjB,CAAC;YACD,MAAM,UAAU,GAAG,OAAO,CAAC,QAAQ,EAAE,UAAkC,CAAC;YACxE,IAAI,UAAU,EAAE,CAAC;gBACf,KAAK,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;gBAC9B,KAAK,MAAM,GAAG,IAAI,UAAU,EAAE,CAAC;oBAC7B,KAAK,CAAC,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC,CAAC;gBACzB,CAAC;gBACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACjB,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}
|