vaspera 2.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +184 -0
- package/LICENSE +21 -0
- package/README.md +809 -0
- package/dist/__tests__/integration/certification-flow.test.d.ts +5 -0
- package/dist/__tests__/integration/certification-flow.test.d.ts.map +1 -0
- package/dist/__tests__/integration/certification-flow.test.js +245 -0
- package/dist/__tests__/integration/certification-flow.test.js.map +1 -0
- package/dist/__tests__/integration/commands.test.d.ts +5 -0
- package/dist/__tests__/integration/commands.test.d.ts.map +1 -0
- package/dist/__tests__/integration/commands.test.js +93 -0
- package/dist/__tests__/integration/commands.test.js.map +1 -0
- package/dist/action/diff-mode.d.ts +34 -0
- package/dist/action/diff-mode.d.ts.map +1 -0
- package/dist/action/diff-mode.js +201 -0
- package/dist/action/diff-mode.js.map +1 -0
- package/dist/action/diff-mode.test.d.ts +5 -0
- package/dist/action/diff-mode.test.d.ts.map +1 -0
- package/dist/action/diff-mode.test.js +162 -0
- package/dist/action/diff-mode.test.js.map +1 -0
- package/dist/action/index.d.ts +10 -0
- package/dist/action/index.d.ts.map +1 -0
- package/dist/action/index.js +231 -0
- package/dist/action/index.js.map +1 -0
- package/dist/action/pr-comment.d.ts +30 -0
- package/dist/action/pr-comment.d.ts.map +1 -0
- package/dist/action/pr-comment.js +301 -0
- package/dist/action/pr-comment.js.map +1 -0
- package/dist/action/pr-comment.test.d.ts +5 -0
- package/dist/action/pr-comment.test.d.ts.map +1 -0
- package/dist/action/pr-comment.test.js +189 -0
- package/dist/action/pr-comment.test.js.map +1 -0
- package/dist/action/sarif-upload.d.ts +104 -0
- package/dist/action/sarif-upload.d.ts.map +1 -0
- package/dist/action/sarif-upload.js +188 -0
- package/dist/action/sarif-upload.js.map +1 -0
- package/dist/action/sarif-upload.test.d.ts +5 -0
- package/dist/action/sarif-upload.test.d.ts.map +1 -0
- package/dist/action/sarif-upload.test.js +206 -0
- package/dist/action/sarif-upload.test.js.map +1 -0
- package/dist/action/types.d.ts +104 -0
- package/dist/action/types.d.ts.map +1 -0
- package/dist/action/types.js +33 -0
- package/dist/action/types.js.map +1 -0
- package/dist/action/types.test.d.ts +5 -0
- package/dist/action/types.test.d.ts.map +1 -0
- package/dist/action/types.test.js +79 -0
- package/dist/action/types.test.js.map +1 -0
- package/dist/agents/agent-integrity.d.ts +111 -0
- package/dist/agents/agent-integrity.d.ts.map +1 -0
- package/dist/agents/agent-integrity.js +308 -0
- package/dist/agents/agent-integrity.js.map +1 -0
- package/dist/agents/agent-privacy.d.ts +68 -0
- package/dist/agents/agent-privacy.d.ts.map +1 -0
- package/dist/agents/agent-privacy.js +345 -0
- package/dist/agents/agent-privacy.js.map +1 -0
- package/dist/agents/exploit-chain.d.ts +64 -0
- package/dist/agents/exploit-chain.d.ts.map +1 -0
- package/dist/agents/exploit-chain.js +477 -0
- package/dist/agents/exploit-chain.js.map +1 -0
- package/dist/agents/exploit-chain.test.d.ts +5 -0
- package/dist/agents/exploit-chain.test.d.ts.map +1 -0
- package/dist/agents/exploit-chain.test.js +455 -0
- package/dist/agents/exploit-chain.test.js.map +1 -0
- package/dist/agents/index.d.ts +14 -0
- package/dist/agents/index.d.ts.map +1 -0
- package/dist/agents/index.js +19 -0
- package/dist/agents/index.js.map +1 -0
- package/dist/agents/logic-flaw-detector.d.ts +55 -0
- package/dist/agents/logic-flaw-detector.d.ts.map +1 -0
- package/dist/agents/logic-flaw-detector.js +454 -0
- package/dist/agents/logic-flaw-detector.js.map +1 -0
- package/dist/agents/zero-day-hunter.d.ts +69 -0
- package/dist/agents/zero-day-hunter.d.ts.map +1 -0
- package/dist/agents/zero-day-hunter.js +591 -0
- package/dist/agents/zero-day-hunter.js.map +1 -0
- package/dist/certification/artifacts.d.ts +21 -0
- package/dist/certification/artifacts.d.ts.map +1 -0
- package/dist/certification/artifacts.js +275 -0
- package/dist/certification/artifacts.js.map +1 -0
- package/dist/certification/autofix.d.ts +122 -0
- package/dist/certification/autofix.d.ts.map +1 -0
- package/dist/certification/autofix.js +476 -0
- package/dist/certification/autofix.js.map +1 -0
- package/dist/certification/badge.d.ts +56 -0
- package/dist/certification/badge.d.ts.map +1 -0
- package/dist/certification/badge.js +155 -0
- package/dist/certification/badge.js.map +1 -0
- package/dist/certification/cache.d.ts +121 -0
- package/dist/certification/cache.d.ts.map +1 -0
- package/dist/certification/cache.js +275 -0
- package/dist/certification/cache.js.map +1 -0
- package/dist/certification/cache.test.d.ts +5 -0
- package/dist/certification/cache.test.d.ts.map +1 -0
- package/dist/certification/cache.test.js +270 -0
- package/dist/certification/cache.test.js.map +1 -0
- package/dist/certification/consensus.d.ts +105 -0
- package/dist/certification/consensus.d.ts.map +1 -0
- package/dist/certification/consensus.js +353 -0
- package/dist/certification/consensus.js.map +1 -0
- package/dist/certification/consensus.test.d.ts +5 -0
- package/dist/certification/consensus.test.d.ts.map +1 -0
- package/dist/certification/consensus.test.js +342 -0
- package/dist/certification/consensus.test.js.map +1 -0
- package/dist/certification/index.d.ts +14 -0
- package/dist/certification/index.d.ts.map +1 -0
- package/dist/certification/index.js +14 -0
- package/dist/certification/index.js.map +1 -0
- package/dist/certification/rules.d.ts +89 -0
- package/dist/certification/rules.d.ts.map +1 -0
- package/dist/certification/rules.js +317 -0
- package/dist/certification/rules.js.map +1 -0
- package/dist/certification/sarif.d.ts +107 -0
- package/dist/certification/sarif.d.ts.map +1 -0
- package/dist/certification/sarif.js +191 -0
- package/dist/certification/sarif.js.map +1 -0
- package/dist/certification/store.d.ts +255 -0
- package/dist/certification/store.d.ts.map +1 -0
- package/dist/certification/store.js +835 -0
- package/dist/certification/store.js.map +1 -0
- package/dist/certification/store.test.d.ts +5 -0
- package/dist/certification/store.test.d.ts.map +1 -0
- package/dist/certification/store.test.js +468 -0
- package/dist/certification/store.test.js.map +1 -0
- package/dist/certification/summary.d.ts +72 -0
- package/dist/certification/summary.d.ts.map +1 -0
- package/dist/certification/summary.js +296 -0
- package/dist/certification/summary.js.map +1 -0
- package/dist/certification/types.d.ts +138 -0
- package/dist/certification/types.d.ts.map +1 -0
- package/dist/certification/types.js +34 -0
- package/dist/certification/types.js.map +1 -0
- package/dist/commands/audits/api-check.d.ts +3 -0
- package/dist/commands/audits/api-check.d.ts.map +1 -0
- package/dist/commands/audits/api-check.js +71 -0
- package/dist/commands/audits/api-check.js.map +1 -0
- package/dist/commands/audits/deadcode.d.ts +3 -0
- package/dist/commands/audits/deadcode.d.ts.map +1 -0
- package/dist/commands/audits/deadcode.js +63 -0
- package/dist/commands/audits/deadcode.js.map +1 -0
- package/dist/commands/audits/deps.d.ts +3 -0
- package/dist/commands/audits/deps.d.ts.map +1 -0
- package/dist/commands/audits/deps.js +56 -0
- package/dist/commands/audits/deps.js.map +1 -0
- package/dist/commands/audits/errors.d.ts +3 -0
- package/dist/commands/audits/errors.d.ts.map +1 -0
- package/dist/commands/audits/errors.js +65 -0
- package/dist/commands/audits/errors.js.map +1 -0
- package/dist/commands/audits/index.d.ts +3 -0
- package/dist/commands/audits/index.d.ts.map +1 -0
- package/dist/commands/audits/index.js +15 -0
- package/dist/commands/audits/index.js.map +1 -0
- package/dist/commands/audits/perf.d.ts +3 -0
- package/dist/commands/audits/perf.d.ts.map +1 -0
- package/dist/commands/audits/perf.js +85 -0
- package/dist/commands/audits/perf.js.map +1 -0
- package/dist/commands/audits/secrets.d.ts +3 -0
- package/dist/commands/audits/secrets.d.ts.map +1 -0
- package/dist/commands/audits/secrets.js +71 -0
- package/dist/commands/audits/secrets.js.map +1 -0
- package/dist/commands/certification/certify.d.ts +3 -0
- package/dist/commands/certification/certify.d.ts.map +1 -0
- package/dist/commands/certification/certify.js +108 -0
- package/dist/commands/certification/certify.js.map +1 -0
- package/dist/commands/certification/index.d.ts +3 -0
- package/dist/commands/certification/index.d.ts.map +1 -0
- package/dist/commands/certification/index.js +17 -0
- package/dist/commands/certification/index.js.map +1 -0
- package/dist/commands/certification/performance.d.ts +3 -0
- package/dist/commands/certification/performance.d.ts.map +1 -0
- package/dist/commands/certification/performance.js +89 -0
- package/dist/commands/certification/performance.js.map +1 -0
- package/dist/commands/certification/quality.d.ts +3 -0
- package/dist/commands/certification/quality.d.ts.map +1 -0
- package/dist/commands/certification/quality.js +92 -0
- package/dist/commands/certification/quality.js.map +1 -0
- package/dist/commands/certification/redteam.d.ts +3 -0
- package/dist/commands/certification/redteam.d.ts.map +1 -0
- package/dist/commands/certification/redteam.js +114 -0
- package/dist/commands/certification/redteam.js.map +1 -0
- package/dist/commands/certification/reliability.d.ts +3 -0
- package/dist/commands/certification/reliability.d.ts.map +1 -0
- package/dist/commands/certification/reliability.js +93 -0
- package/dist/commands/certification/reliability.js.map +1 -0
- package/dist/commands/certification/security.d.ts +3 -0
- package/dist/commands/certification/security.d.ts.map +1 -0
- package/dist/commands/certification/security.js +90 -0
- package/dist/commands/certification/security.js.map +1 -0
- package/dist/commands/certification/typesafety.d.ts +3 -0
- package/dist/commands/certification/typesafety.d.ts.map +1 -0
- package/dist/commands/certification/typesafety.js +87 -0
- package/dist/commands/certification/typesafety.js.map +1 -0
- package/dist/commands/core/add-tests.d.ts +3 -0
- package/dist/commands/core/add-tests.d.ts.map +1 -0
- package/dist/commands/core/add-tests.js +29 -0
- package/dist/commands/core/add-tests.js.map +1 -0
- package/dist/commands/core/audit.d.ts +3 -0
- package/dist/commands/core/audit.d.ts.map +1 -0
- package/dist/commands/core/audit.js +64 -0
- package/dist/commands/core/audit.js.map +1 -0
- package/dist/commands/core/fix-critical.d.ts +3 -0
- package/dist/commands/core/fix-critical.d.ts.map +1 -0
- package/dist/commands/core/fix-critical.js +22 -0
- package/dist/commands/core/fix-critical.js.map +1 -0
- package/dist/commands/core/fix-high.d.ts +3 -0
- package/dist/commands/core/fix-high.d.ts.map +1 -0
- package/dist/commands/core/fix-high.js +32 -0
- package/dist/commands/core/fix-high.js.map +1 -0
- package/dist/commands/core/fix-medium.d.ts +3 -0
- package/dist/commands/core/fix-medium.d.ts.map +1 -0
- package/dist/commands/core/fix-medium.js +29 -0
- package/dist/commands/core/fix-medium.js.map +1 -0
- package/dist/commands/core/fix-rls.d.ts +3 -0
- package/dist/commands/core/fix-rls.d.ts.map +1 -0
- package/dist/commands/core/fix-rls.js +17 -0
- package/dist/commands/core/fix-rls.js.map +1 -0
- package/dist/commands/core/harden.d.ts +3 -0
- package/dist/commands/core/harden.d.ts.map +1 -0
- package/dist/commands/core/harden.js +19 -0
- package/dist/commands/core/harden.js.map +1 -0
- package/dist/commands/core/index.d.ts +3 -0
- package/dist/commands/core/index.d.ts.map +1 -0
- package/dist/commands/core/index.js +21 -0
- package/dist/commands/core/index.js.map +1 -0
- package/dist/commands/core/preflight.d.ts +3 -0
- package/dist/commands/core/preflight.d.ts.map +1 -0
- package/dist/commands/core/preflight.js +50 -0
- package/dist/commands/core/preflight.js.map +1 -0
- package/dist/commands/core/verify.d.ts +3 -0
- package/dist/commands/core/verify.d.ts.map +1 -0
- package/dist/commands/core/verify.js +32 -0
- package/dist/commands/core/verify.js.map +1 -0
- package/dist/commands/index.d.ts +28 -0
- package/dist/commands/index.d.ts.map +1 -0
- package/dist/commands/index.js +37 -0
- package/dist/commands/index.js.map +1 -0
- package/dist/commands/types.d.ts +9 -0
- package/dist/commands/types.d.ts.map +1 -0
- package/dist/commands/types.js +5 -0
- package/dist/commands/types.js.map +1 -0
- package/dist/compliance/cis.d.ts +29 -0
- package/dist/compliance/cis.d.ts.map +1 -0
- package/dist/compliance/cis.js +316 -0
- package/dist/compliance/cis.js.map +1 -0
- package/dist/compliance/frameworks/eu-ai-act.d.ts +55 -0
- package/dist/compliance/frameworks/eu-ai-act.d.ts.map +1 -0
- package/dist/compliance/frameworks/eu-ai-act.js +621 -0
- package/dist/compliance/frameworks/eu-ai-act.js.map +1 -0
- package/dist/compliance/frameworks/index.d.ts +67 -0
- package/dist/compliance/frameworks/index.d.ts.map +1 -0
- package/dist/compliance/frameworks/index.js +97 -0
- package/dist/compliance/frameworks/index.js.map +1 -0
- package/dist/compliance/frameworks/iso-42001.d.ts +59 -0
- package/dist/compliance/frameworks/iso-42001.d.ts.map +1 -0
- package/dist/compliance/frameworks/iso-42001.js +719 -0
- package/dist/compliance/frameworks/iso-42001.js.map +1 -0
- package/dist/compliance/frameworks/mitre-atlas.d.ts +58 -0
- package/dist/compliance/frameworks/mitre-atlas.d.ts.map +1 -0
- package/dist/compliance/frameworks/mitre-atlas.js +686 -0
- package/dist/compliance/frameworks/mitre-atlas.js.map +1 -0
- package/dist/compliance/frameworks/nist-ai-rmf.d.ts +51 -0
- package/dist/compliance/frameworks/nist-ai-rmf.d.ts.map +1 -0
- package/dist/compliance/frameworks/nist-ai-rmf.js +677 -0
- package/dist/compliance/frameworks/nist-ai-rmf.js.map +1 -0
- package/dist/compliance/frameworks/owasp-llm.d.ts +58 -0
- package/dist/compliance/frameworks/owasp-llm.d.ts.map +1 -0
- package/dist/compliance/frameworks/owasp-llm.js +399 -0
- package/dist/compliance/frameworks/owasp-llm.js.map +1 -0
- package/dist/compliance/gdpr.d.ts +34 -0
- package/dist/compliance/gdpr.d.ts.map +1 -0
- package/dist/compliance/gdpr.js +319 -0
- package/dist/compliance/gdpr.js.map +1 -0
- package/dist/compliance/hipaa.d.ts +29 -0
- package/dist/compliance/hipaa.d.ts.map +1 -0
- package/dist/compliance/hipaa.js +205 -0
- package/dist/compliance/hipaa.js.map +1 -0
- package/dist/compliance/index.d.ts +18 -0
- package/dist/compliance/index.d.ts.map +1 -0
- package/dist/compliance/index.js +26 -0
- package/dist/compliance/index.js.map +1 -0
- package/dist/compliance/iso27001.d.ts +30 -0
- package/dist/compliance/iso27001.d.ts.map +1 -0
- package/dist/compliance/iso27001.js +332 -0
- package/dist/compliance/iso27001.js.map +1 -0
- package/dist/compliance/mapper.d.ts +42 -0
- package/dist/compliance/mapper.d.ts.map +1 -0
- package/dist/compliance/mapper.js +269 -0
- package/dist/compliance/mapper.js.map +1 -0
- package/dist/compliance/mapper.test.d.ts +5 -0
- package/dist/compliance/mapper.test.d.ts.map +1 -0
- package/dist/compliance/mapper.test.js +360 -0
- package/dist/compliance/mapper.test.js.map +1 -0
- package/dist/compliance/pci-dss.d.ts +29 -0
- package/dist/compliance/pci-dss.d.ts.map +1 -0
- package/dist/compliance/pci-dss.js +247 -0
- package/dist/compliance/pci-dss.js.map +1 -0
- package/dist/compliance/report.d.ts +25 -0
- package/dist/compliance/report.d.ts.map +1 -0
- package/dist/compliance/report.js +254 -0
- package/dist/compliance/report.js.map +1 -0
- package/dist/compliance/report.test.d.ts +5 -0
- package/dist/compliance/report.test.d.ts.map +1 -0
- package/dist/compliance/report.test.js +128 -0
- package/dist/compliance/report.test.js.map +1 -0
- package/dist/compliance/soc2.d.ts +30 -0
- package/dist/compliance/soc2.d.ts.map +1 -0
- package/dist/compliance/soc2.js +262 -0
- package/dist/compliance/soc2.js.map +1 -0
- package/dist/compliance/soc2.test.d.ts +5 -0
- package/dist/compliance/soc2.test.d.ts.map +1 -0
- package/dist/compliance/soc2.test.js +86 -0
- package/dist/compliance/soc2.test.js.map +1 -0
- package/dist/compliance/types.d.ts +125 -0
- package/dist/compliance/types.d.ts.map +1 -0
- package/dist/compliance/types.js +10 -0
- package/dist/compliance/types.js.map +1 -0
- package/dist/config/flags.d.ts +456 -0
- package/dist/config/flags.d.ts.map +1 -0
- package/dist/config/flags.js +464 -0
- package/dist/config/flags.js.map +1 -0
- package/dist/config/index.d.ts +10 -0
- package/dist/config/index.d.ts.map +1 -0
- package/dist/config/index.js +10 -0
- package/dist/config/index.js.map +1 -0
- package/dist/config/severity-overrides.d.ts +209 -0
- package/dist/config/severity-overrides.d.ts.map +1 -0
- package/dist/config/severity-overrides.js +380 -0
- package/dist/config/severity-overrides.js.map +1 -0
- package/dist/cost/index.d.ts +11 -0
- package/dist/cost/index.d.ts.map +1 -0
- package/dist/cost/index.js +12 -0
- package/dist/cost/index.js.map +1 -0
- package/dist/cost/pricing.d.ts +57 -0
- package/dist/cost/pricing.d.ts.map +1 -0
- package/dist/cost/pricing.js +196 -0
- package/dist/cost/pricing.js.map +1 -0
- package/dist/cost/pricing.test.d.ts +5 -0
- package/dist/cost/pricing.test.d.ts.map +1 -0
- package/dist/cost/pricing.test.js +195 -0
- package/dist/cost/pricing.test.js.map +1 -0
- package/dist/cost/tracker.d.ts +100 -0
- package/dist/cost/tracker.d.ts.map +1 -0
- package/dist/cost/tracker.js +366 -0
- package/dist/cost/tracker.js.map +1 -0
- package/dist/cost/tracker.test.d.ts +5 -0
- package/dist/cost/tracker.test.d.ts.map +1 -0
- package/dist/cost/tracker.test.js +360 -0
- package/dist/cost/tracker.test.js.map +1 -0
- package/dist/cost/types.d.ts +135 -0
- package/dist/cost/types.d.ts.map +1 -0
- package/dist/cost/types.js +9 -0
- package/dist/cost/types.js.map +1 -0
- package/dist/enterprise/auth/oidc.d.ts +231 -0
- package/dist/enterprise/auth/oidc.d.ts.map +1 -0
- package/dist/enterprise/auth/oidc.js +372 -0
- package/dist/enterprise/auth/oidc.js.map +1 -0
- package/dist/enterprise/auth/oidc.test.d.ts +5 -0
- package/dist/enterprise/auth/oidc.test.d.ts.map +1 -0
- package/dist/enterprise/auth/oidc.test.js +435 -0
- package/dist/enterprise/auth/oidc.test.js.map +1 -0
- package/dist/enterprise/index.d.ts +14 -0
- package/dist/enterprise/index.d.ts.map +1 -0
- package/dist/enterprise/index.js +19 -0
- package/dist/enterprise/index.js.map +1 -0
- package/dist/enterprise/integrations/chat.d.ts +205 -0
- package/dist/enterprise/integrations/chat.d.ts.map +1 -0
- package/dist/enterprise/integrations/chat.js +624 -0
- package/dist/enterprise/integrations/chat.js.map +1 -0
- package/dist/enterprise/integrations/chat.test.d.ts +5 -0
- package/dist/enterprise/integrations/chat.test.d.ts.map +1 -0
- package/dist/enterprise/integrations/chat.test.js +557 -0
- package/dist/enterprise/integrations/chat.test.js.map +1 -0
- package/dist/enterprise/integrations/ticketing.d.ts +257 -0
- package/dist/enterprise/integrations/ticketing.d.ts.map +1 -0
- package/dist/enterprise/integrations/ticketing.js +548 -0
- package/dist/enterprise/integrations/ticketing.js.map +1 -0
- package/dist/enterprise/integrations/ticketing.test.d.ts +5 -0
- package/dist/enterprise/integrations/ticketing.test.d.ts.map +1 -0
- package/dist/enterprise/integrations/ticketing.test.js +693 -0
- package/dist/enterprise/integrations/ticketing.test.js.map +1 -0
- package/dist/enterprise/policy/opa.d.ts +194 -0
- package/dist/enterprise/policy/opa.d.ts.map +1 -0
- package/dist/enterprise/policy/opa.js +385 -0
- package/dist/enterprise/policy/opa.js.map +1 -0
- package/dist/enterprise/policy/opa.test.d.ts +5 -0
- package/dist/enterprise/policy/opa.test.d.ts.map +1 -0
- package/dist/enterprise/policy/opa.test.js +702 -0
- package/dist/enterprise/policy/opa.test.js.map +1 -0
- package/dist/enterprise/signing/kms.d.ts +211 -0
- package/dist/enterprise/signing/kms.d.ts.map +1 -0
- package/dist/enterprise/signing/kms.js +480 -0
- package/dist/enterprise/signing/kms.js.map +1 -0
- package/dist/enterprise/signing/kms.test.d.ts +5 -0
- package/dist/enterprise/signing/kms.test.d.ts.map +1 -0
- package/dist/enterprise/signing/kms.test.js +511 -0
- package/dist/enterprise/signing/kms.test.js.map +1 -0
- package/dist/eval/fixtures.d.ts +58 -0
- package/dist/eval/fixtures.d.ts.map +1 -0
- package/dist/eval/fixtures.js +571 -0
- package/dist/eval/fixtures.js.map +1 -0
- package/dist/eval/fixtures.test.d.ts +5 -0
- package/dist/eval/fixtures.test.d.ts.map +1 -0
- package/dist/eval/fixtures.test.js +193 -0
- package/dist/eval/fixtures.test.js.map +1 -0
- package/dist/eval/harness.d.ts +30 -0
- package/dist/eval/harness.d.ts.map +1 -0
- package/dist/eval/harness.js +221 -0
- package/dist/eval/harness.js.map +1 -0
- package/dist/eval/harness.test.d.ts +5 -0
- package/dist/eval/harness.test.d.ts.map +1 -0
- package/dist/eval/harness.test.js +314 -0
- package/dist/eval/harness.test.js.map +1 -0
- package/dist/eval/index.d.ts +15 -0
- package/dist/eval/index.d.ts.map +1 -0
- package/dist/eval/index.js +18 -0
- package/dist/eval/index.js.map +1 -0
- package/dist/eval/metrics.d.ts +56 -0
- package/dist/eval/metrics.d.ts.map +1 -0
- package/dist/eval/metrics.js +298 -0
- package/dist/eval/metrics.js.map +1 -0
- package/dist/eval/metrics.test.d.ts +5 -0
- package/dist/eval/metrics.test.d.ts.map +1 -0
- package/dist/eval/metrics.test.js +426 -0
- package/dist/eval/metrics.test.js.map +1 -0
- package/dist/eval/report.d.ts +30 -0
- package/dist/eval/report.d.ts.map +1 -0
- package/dist/eval/report.js +333 -0
- package/dist/eval/report.js.map +1 -0
- package/dist/eval/report.test.d.ts +5 -0
- package/dist/eval/report.test.d.ts.map +1 -0
- package/dist/eval/report.test.js +275 -0
- package/dist/eval/report.test.js.map +1 -0
- package/dist/eval/types.d.ts +234 -0
- package/dist/eval/types.d.ts.map +1 -0
- package/dist/eval/types.js +27 -0
- package/dist/eval/types.js.map +1 -0
- package/dist/http-server.d.ts +3 -0
- package/dist/http-server.d.ts.map +1 -0
- package/dist/http-server.js +127 -0
- package/dist/http-server.js.map +1 -0
- package/dist/index.d.ts +33 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +4120 -0
- package/dist/index.js.map +1 -0
- package/dist/logger.d.ts +46 -0
- package/dist/logger.d.ts.map +1 -0
- package/dist/logger.js +131 -0
- package/dist/logger.js.map +1 -0
- package/dist/multimodel/consensus.d.ts +49 -0
- package/dist/multimodel/consensus.d.ts.map +1 -0
- package/dist/multimodel/consensus.js +454 -0
- package/dist/multimodel/consensus.js.map +1 -0
- package/dist/multimodel/consensus.test.d.ts +5 -0
- package/dist/multimodel/consensus.test.d.ts.map +1 -0
- package/dist/multimodel/consensus.test.js +415 -0
- package/dist/multimodel/consensus.test.js.map +1 -0
- package/dist/multimodel/index.d.ts +13 -0
- package/dist/multimodel/index.d.ts.map +1 -0
- package/dist/multimodel/index.js +14 -0
- package/dist/multimodel/index.js.map +1 -0
- package/dist/multimodel/runner.d.ts +95 -0
- package/dist/multimodel/runner.d.ts.map +1 -0
- package/dist/multimodel/runner.js +312 -0
- package/dist/multimodel/runner.js.map +1 -0
- package/dist/multimodel/runner.test.d.ts +5 -0
- package/dist/multimodel/runner.test.d.ts.map +1 -0
- package/dist/multimodel/runner.test.js +224 -0
- package/dist/multimodel/runner.test.js.map +1 -0
- package/dist/multimodel/types.d.ts +202 -0
- package/dist/multimodel/types.d.ts.map +1 -0
- package/dist/multimodel/types.js +10 -0
- package/dist/multimodel/types.js.map +1 -0
- package/dist/observability/index.d.ts +9 -0
- package/dist/observability/index.d.ts.map +1 -0
- package/dist/observability/index.js +9 -0
- package/dist/observability/index.js.map +1 -0
- package/dist/observability/otel.d.ts +102 -0
- package/dist/observability/otel.d.ts.map +1 -0
- package/dist/observability/otel.js +284 -0
- package/dist/observability/otel.js.map +1 -0
- package/dist/plugins/index.d.ts +10 -0
- package/dist/plugins/index.d.ts.map +1 -0
- package/dist/plugins/index.js +10 -0
- package/dist/plugins/index.js.map +1 -0
- package/dist/plugins/loader.d.ts +78 -0
- package/dist/plugins/loader.d.ts.map +1 -0
- package/dist/plugins/loader.js +470 -0
- package/dist/plugins/loader.js.map +1 -0
- package/dist/plugins/types.d.ts +304 -0
- package/dist/plugins/types.d.ts.map +1 -0
- package/dist/plugins/types.js +100 -0
- package/dist/plugins/types.js.map +1 -0
- package/dist/sbom/cyclonedx.d.ts +30 -0
- package/dist/sbom/cyclonedx.d.ts.map +1 -0
- package/dist/sbom/cyclonedx.js +392 -0
- package/dist/sbom/cyclonedx.js.map +1 -0
- package/dist/sbom/cyclonedx.test.d.ts +5 -0
- package/dist/sbom/cyclonedx.test.d.ts.map +1 -0
- package/dist/sbom/cyclonedx.test.js +244 -0
- package/dist/sbom/cyclonedx.test.js.map +1 -0
- package/dist/sbom/index.d.ts +13 -0
- package/dist/sbom/index.d.ts.map +1 -0
- package/dist/sbom/index.js +15 -0
- package/dist/sbom/index.js.map +1 -0
- package/dist/sbom/provenance.d.ts +37 -0
- package/dist/sbom/provenance.d.ts.map +1 -0
- package/dist/sbom/provenance.js +268 -0
- package/dist/sbom/provenance.js.map +1 -0
- package/dist/sbom/provenance.test.d.ts +5 -0
- package/dist/sbom/provenance.test.d.ts.map +1 -0
- package/dist/sbom/provenance.test.js +189 -0
- package/dist/sbom/provenance.test.js.map +1 -0
- package/dist/sbom/signing.d.ts +87 -0
- package/dist/sbom/signing.d.ts.map +1 -0
- package/dist/sbom/signing.js +354 -0
- package/dist/sbom/signing.js.map +1 -0
- package/dist/sbom/signing.test.d.ts +5 -0
- package/dist/sbom/signing.test.d.ts.map +1 -0
- package/dist/sbom/signing.test.js +170 -0
- package/dist/sbom/signing.test.js.map +1 -0
- package/dist/sbom/types.d.ts +384 -0
- package/dist/sbom/types.d.ts.map +1 -0
- package/dist/sbom/types.js +17 -0
- package/dist/sbom/types.js.map +1 -0
- package/dist/scanners/agent/credential-scope-audit.d.ts +40 -0
- package/dist/scanners/agent/credential-scope-audit.d.ts.map +1 -0
- package/dist/scanners/agent/credential-scope-audit.js +404 -0
- package/dist/scanners/agent/credential-scope-audit.js.map +1 -0
- package/dist/scanners/agent/exfil-path-graph.d.ts +50 -0
- package/dist/scanners/agent/exfil-path-graph.d.ts.map +1 -0
- package/dist/scanners/agent/exfil-path-graph.js +764 -0
- package/dist/scanners/agent/exfil-path-graph.js.map +1 -0
- package/dist/scanners/agent/index.d.ts +43 -0
- package/dist/scanners/agent/index.d.ts.map +1 -0
- package/dist/scanners/agent/index.js +616 -0
- package/dist/scanners/agent/index.js.map +1 -0
- package/dist/scanners/agent/manifest-audit.d.ts +43 -0
- package/dist/scanners/agent/manifest-audit.d.ts.map +1 -0
- package/dist/scanners/agent/manifest-audit.js +403 -0
- package/dist/scanners/agent/manifest-audit.js.map +1 -0
- package/dist/scanners/agent/payloads/index.d.ts +44 -0
- package/dist/scanners/agent/payloads/index.d.ts.map +1 -0
- package/dist/scanners/agent/payloads/index.js +184 -0
- package/dist/scanners/agent/payloads/index.js.map +1 -0
- package/dist/scanners/agent/permission-minimiser.d.ts +48 -0
- package/dist/scanners/agent/permission-minimiser.d.ts.map +1 -0
- package/dist/scanners/agent/permission-minimiser.js +551 -0
- package/dist/scanners/agent/permission-minimiser.js.map +1 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.d.ts +39 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.d.ts.map +1 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.js +720 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.js.map +1 -0
- package/dist/scanners/agent/sandbox-audit.d.ts +44 -0
- package/dist/scanners/agent/sandbox-audit.d.ts.map +1 -0
- package/dist/scanners/agent/sandbox-audit.js +425 -0
- package/dist/scanners/agent/sandbox-audit.js.map +1 -0
- package/dist/scanners/agent/supply-chain-mcp.d.ts +53 -0
- package/dist/scanners/agent/supply-chain-mcp.d.ts.map +1 -0
- package/dist/scanners/agent/supply-chain-mcp.js +479 -0
- package/dist/scanners/agent/supply-chain-mcp.js.map +1 -0
- package/dist/scanners/agent/tool-description-drift.d.ts +62 -0
- package/dist/scanners/agent/tool-description-drift.d.ts.map +1 -0
- package/dist/scanners/agent/tool-description-drift.js +365 -0
- package/dist/scanners/agent/tool-description-drift.js.map +1 -0
- package/dist/scanners/agent/types.d.ts +840 -0
- package/dist/scanners/agent/types.d.ts.map +1 -0
- package/dist/scanners/agent/types.js +149 -0
- package/dist/scanners/agent/types.js.map +1 -0
- package/dist/scanners/bandit.d.ts +25 -0
- package/dist/scanners/bandit.d.ts.map +1 -0
- package/dist/scanners/bandit.js +129 -0
- package/dist/scanners/bandit.js.map +1 -0
- package/dist/scanners/binary-analysis.d.ts +41 -0
- package/dist/scanners/binary-analysis.d.ts.map +1 -0
- package/dist/scanners/binary-analysis.js +587 -0
- package/dist/scanners/binary-analysis.js.map +1 -0
- package/dist/scanners/binary-analysis.test.d.ts +5 -0
- package/dist/scanners/binary-analysis.test.d.ts.map +1 -0
- package/dist/scanners/binary-analysis.test.js +291 -0
- package/dist/scanners/binary-analysis.test.js.map +1 -0
- package/dist/scanners/brakeman.d.ts +30 -0
- package/dist/scanners/brakeman.d.ts.map +1 -0
- package/dist/scanners/brakeman.js +271 -0
- package/dist/scanners/brakeman.js.map +1 -0
- package/dist/scanners/dependencies.d.ts +22 -0
- package/dist/scanners/dependencies.d.ts.map +1 -0
- package/dist/scanners/dependencies.js +202 -0
- package/dist/scanners/dependencies.js.map +1 -0
- package/dist/scanners/dependencies.test.d.ts +5 -0
- package/dist/scanners/dependencies.test.d.ts.map +1 -0
- package/dist/scanners/dependencies.test.js +185 -0
- package/dist/scanners/dependencies.test.js.map +1 -0
- package/dist/scanners/eslint.d.ts +25 -0
- package/dist/scanners/eslint.d.ts.map +1 -0
- package/dist/scanners/eslint.js +220 -0
- package/dist/scanners/eslint.js.map +1 -0
- package/dist/scanners/gosec.d.ts +25 -0
- package/dist/scanners/gosec.d.ts.map +1 -0
- package/dist/scanners/gosec.js +128 -0
- package/dist/scanners/gosec.js.map +1 -0
- package/dist/scanners/index.d.ts +128 -0
- package/dist/scanners/index.d.ts.map +1 -0
- package/dist/scanners/index.js +811 -0
- package/dist/scanners/index.js.map +1 -0
- package/dist/scanners/index.test.d.ts +5 -0
- package/dist/scanners/index.test.d.ts.map +1 -0
- package/dist/scanners/index.test.js +424 -0
- package/dist/scanners/index.test.js.map +1 -0
- package/dist/scanners/memory-safety.d.ts +44 -0
- package/dist/scanners/memory-safety.d.ts.map +1 -0
- package/dist/scanners/memory-safety.js +571 -0
- package/dist/scanners/memory-safety.js.map +1 -0
- package/dist/scanners/memory-safety.test.d.ts +5 -0
- package/dist/scanners/memory-safety.test.d.ts.map +1 -0
- package/dist/scanners/memory-safety.test.js +321 -0
- package/dist/scanners/memory-safety.test.js.map +1 -0
- package/dist/scanners/race-condition.d.ts +25 -0
- package/dist/scanners/race-condition.d.ts.map +1 -0
- package/dist/scanners/race-condition.js +443 -0
- package/dist/scanners/race-condition.js.map +1 -0
- package/dist/scanners/race-condition.test.d.ts +5 -0
- package/dist/scanners/race-condition.test.d.ts.map +1 -0
- package/dist/scanners/race-condition.test.js +428 -0
- package/dist/scanners/race-condition.test.js.map +1 -0
- package/dist/scanners/secrets.d.ts +25 -0
- package/dist/scanners/secrets.d.ts.map +1 -0
- package/dist/scanners/secrets.js +367 -0
- package/dist/scanners/secrets.js.map +1 -0
- package/dist/scanners/secrets.test.d.ts +5 -0
- package/dist/scanners/secrets.test.d.ts.map +1 -0
- package/dist/scanners/secrets.test.js +160 -0
- package/dist/scanners/secrets.test.js.map +1 -0
- package/dist/scanners/semgrep.d.ts +33 -0
- package/dist/scanners/semgrep.d.ts.map +1 -0
- package/dist/scanners/semgrep.js +350 -0
- package/dist/scanners/semgrep.js.map +1 -0
- package/dist/scanners/semgrep.test.d.ts +8 -0
- package/dist/scanners/semgrep.test.d.ts.map +1 -0
- package/dist/scanners/semgrep.test.js +254 -0
- package/dist/scanners/semgrep.test.js.map +1 -0
- package/dist/scanners/trivy.d.ts +26 -0
- package/dist/scanners/trivy.d.ts.map +1 -0
- package/dist/scanners/trivy.js +187 -0
- package/dist/scanners/trivy.js.map +1 -0
- package/dist/scanners/types.d.ts +210 -0
- package/dist/scanners/types.d.ts.map +1 -0
- package/dist/scanners/types.js +106 -0
- package/dist/scanners/types.js.map +1 -0
- package/dist/scanners/types.test.d.ts +5 -0
- package/dist/scanners/types.test.d.ts.map +1 -0
- package/dist/scanners/types.test.js +103 -0
- package/dist/scanners/types.test.js.map +1 -0
- package/dist/scanners/typescript.d.ts +32 -0
- package/dist/scanners/typescript.d.ts.map +1 -0
- package/dist/scanners/typescript.js +300 -0
- package/dist/scanners/typescript.js.map +1 -0
- package/dist/scanners/typescript.test.d.ts +5 -0
- package/dist/scanners/typescript.test.d.ts.map +1 -0
- package/dist/scanners/typescript.test.js +296 -0
- package/dist/scanners/typescript.test.js.map +1 -0
- package/dist/transcripts/index.d.ts +13 -0
- package/dist/transcripts/index.d.ts.map +1 -0
- package/dist/transcripts/index.js +17 -0
- package/dist/transcripts/index.js.map +1 -0
- package/dist/transcripts/logger.d.ts +190 -0
- package/dist/transcripts/logger.d.ts.map +1 -0
- package/dist/transcripts/logger.js +385 -0
- package/dist/transcripts/logger.js.map +1 -0
- package/dist/transcripts/logger.test.d.ts +5 -0
- package/dist/transcripts/logger.test.d.ts.map +1 -0
- package/dist/transcripts/logger.test.js +227 -0
- package/dist/transcripts/logger.test.js.map +1 -0
- package/dist/transcripts/redaction.d.ts +125 -0
- package/dist/transcripts/redaction.d.ts.map +1 -0
- package/dist/transcripts/redaction.js +416 -0
- package/dist/transcripts/redaction.js.map +1 -0
- package/dist/transcripts/redaction.test.d.ts +5 -0
- package/dist/transcripts/redaction.test.d.ts.map +1 -0
- package/dist/transcripts/redaction.test.js +267 -0
- package/dist/transcripts/redaction.test.js.map +1 -0
- package/dist/transcripts/signing.d.ts +108 -0
- package/dist/transcripts/signing.d.ts.map +1 -0
- package/dist/transcripts/signing.js +173 -0
- package/dist/transcripts/signing.js.map +1 -0
- package/dist/transcripts/verifier.d.ts +133 -0
- package/dist/transcripts/verifier.d.ts.map +1 -0
- package/dist/transcripts/verifier.js +489 -0
- package/dist/transcripts/verifier.js.map +1 -0
- package/dist/transcripts/verifier.test.d.ts +5 -0
- package/dist/transcripts/verifier.test.d.ts.map +1 -0
- package/dist/transcripts/verifier.test.js +330 -0
- package/dist/transcripts/verifier.test.js.map +1 -0
- package/dist/util/concurrency.d.ts +221 -0
- package/dist/util/concurrency.d.ts.map +1 -0
- package/dist/util/concurrency.js +339 -0
- package/dist/util/concurrency.js.map +1 -0
- package/dist/util/index.d.ts +12 -0
- package/dist/util/index.d.ts.map +1 -0
- package/dist/util/index.js +12 -0
- package/dist/util/index.js.map +1 -0
- package/dist/util/json.d.ts +63 -0
- package/dist/util/json.d.ts.map +1 -0
- package/dist/util/json.js +134 -0
- package/dist/util/json.js.map +1 -0
- package/dist/util/paths.d.ts +56 -0
- package/dist/util/paths.d.ts.map +1 -0
- package/dist/util/paths.js +128 -0
- package/dist/util/paths.js.map +1 -0
- package/dist/util/retry.d.ts +185 -0
- package/dist/util/retry.d.ts.map +1 -0
- package/dist/util/retry.js +338 -0
- package/dist/util/retry.js.map +1 -0
- package/package.json +79 -0
|
@@ -0,0 +1,316 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* CIS Critical Security Controls v8
|
|
3
|
+
*
|
|
4
|
+
* Center for Internet Security Controls
|
|
5
|
+
*
|
|
6
|
+
* @module compliance/cis
|
|
7
|
+
*/
|
|
8
|
+
/**
|
|
9
|
+
* CIS control categories (Implementation Groups)
|
|
10
|
+
*/
|
|
11
|
+
export const CIS_CATEGORIES = [
|
|
12
|
+
"Inventory and Control of Enterprise Assets",
|
|
13
|
+
"Inventory and Control of Software Assets",
|
|
14
|
+
"Data Protection",
|
|
15
|
+
"Secure Configuration",
|
|
16
|
+
"Account Management",
|
|
17
|
+
"Access Control Management",
|
|
18
|
+
"Continuous Vulnerability Management",
|
|
19
|
+
"Audit Log Management",
|
|
20
|
+
"Email and Web Browser Protections",
|
|
21
|
+
"Malware Defenses",
|
|
22
|
+
"Data Recovery",
|
|
23
|
+
"Network Infrastructure Management",
|
|
24
|
+
"Network Monitoring and Defense",
|
|
25
|
+
"Security Awareness Training",
|
|
26
|
+
"Service Provider Management",
|
|
27
|
+
"Application Software Security",
|
|
28
|
+
"Incident Response Management",
|
|
29
|
+
"Penetration Testing",
|
|
30
|
+
];
|
|
31
|
+
/**
|
|
32
|
+
* CIS Controls v8 relevant to code security
|
|
33
|
+
*/
|
|
34
|
+
export const CIS_CONTROLS = [
|
|
35
|
+
// Control 2: Inventory and Control of Software Assets
|
|
36
|
+
{
|
|
37
|
+
id: "2.1",
|
|
38
|
+
framework: "CIS",
|
|
39
|
+
category: "Inventory and Control of Software Assets",
|
|
40
|
+
title: "Establish and Maintain a Software Inventory",
|
|
41
|
+
description: "Establish and maintain a detailed inventory of all licensed software installed on enterprise assets.",
|
|
42
|
+
keywords: ["inventory", "SBOM", "software", "dependencies"],
|
|
43
|
+
findingCategories: ["dependencies", "sbom"],
|
|
44
|
+
},
|
|
45
|
+
{
|
|
46
|
+
id: "2.2",
|
|
47
|
+
framework: "CIS",
|
|
48
|
+
category: "Inventory and Control of Software Assets",
|
|
49
|
+
title: "Ensure Authorized Software is Currently Supported",
|
|
50
|
+
description: "Ensure that only currently supported software is designated as authorized.",
|
|
51
|
+
keywords: ["supported", "EOL", "outdated", "deprecated"],
|
|
52
|
+
findingCategories: ["dependencies", "vulnerabilities"],
|
|
53
|
+
},
|
|
54
|
+
{
|
|
55
|
+
id: "2.5",
|
|
56
|
+
framework: "CIS",
|
|
57
|
+
category: "Inventory and Control of Software Assets",
|
|
58
|
+
title: "Allowlist Authorized Software",
|
|
59
|
+
description: "Use technical controls to ensure only authorized software can execute.",
|
|
60
|
+
keywords: ["allowlist", "whitelist", "authorized"],
|
|
61
|
+
findingCategories: ["security", "configuration"],
|
|
62
|
+
},
|
|
63
|
+
// Control 3: Data Protection
|
|
64
|
+
{
|
|
65
|
+
id: "3.1",
|
|
66
|
+
framework: "CIS",
|
|
67
|
+
category: "Data Protection",
|
|
68
|
+
title: "Establish and Maintain a Data Management Process",
|
|
69
|
+
description: "Establish and maintain a data management process that addresses data sensitivity, ownership, and handling.",
|
|
70
|
+
keywords: ["data", "management", "classification"],
|
|
71
|
+
findingCategories: ["data-exposure", "data-protection"],
|
|
72
|
+
},
|
|
73
|
+
{
|
|
74
|
+
id: "3.10",
|
|
75
|
+
framework: "CIS",
|
|
76
|
+
category: "Data Protection",
|
|
77
|
+
title: "Encrypt Sensitive Data in Transit",
|
|
78
|
+
description: "Encrypt sensitive data in transit using strong encryption.",
|
|
79
|
+
keywords: ["encryption", "transit", "TLS", "HTTPS"],
|
|
80
|
+
findingCategories: ["encryption", "transport-security"],
|
|
81
|
+
cweIds: ["CWE-319"],
|
|
82
|
+
},
|
|
83
|
+
{
|
|
84
|
+
id: "3.11",
|
|
85
|
+
framework: "CIS",
|
|
86
|
+
category: "Data Protection",
|
|
87
|
+
title: "Encrypt Sensitive Data at Rest",
|
|
88
|
+
description: "Encrypt sensitive data at rest using strong encryption.",
|
|
89
|
+
keywords: ["encryption", "rest", "storage", "cryptography"],
|
|
90
|
+
findingCategories: ["encryption", "data-protection"],
|
|
91
|
+
cweIds: ["CWE-311", "CWE-312"],
|
|
92
|
+
},
|
|
93
|
+
// Control 4: Secure Configuration
|
|
94
|
+
{
|
|
95
|
+
id: "4.1",
|
|
96
|
+
framework: "CIS",
|
|
97
|
+
category: "Secure Configuration",
|
|
98
|
+
title: "Establish Secure Configuration Process",
|
|
99
|
+
description: "Establish and maintain a secure configuration process for enterprise assets.",
|
|
100
|
+
keywords: ["configuration", "hardening", "baseline"],
|
|
101
|
+
findingCategories: ["configuration", "security"],
|
|
102
|
+
},
|
|
103
|
+
{
|
|
104
|
+
id: "4.7",
|
|
105
|
+
framework: "CIS",
|
|
106
|
+
category: "Secure Configuration",
|
|
107
|
+
title: "Manage Default Accounts",
|
|
108
|
+
description: "Manage default accounts on enterprise assets and software.",
|
|
109
|
+
keywords: ["default", "accounts", "credentials"],
|
|
110
|
+
findingCategories: ["authentication", "secrets"],
|
|
111
|
+
cweIds: ["CWE-798"],
|
|
112
|
+
},
|
|
113
|
+
// Control 5: Account Management
|
|
114
|
+
{
|
|
115
|
+
id: "5.1",
|
|
116
|
+
framework: "CIS",
|
|
117
|
+
category: "Account Management",
|
|
118
|
+
title: "Establish Account Management Process",
|
|
119
|
+
description: "Establish and maintain an inventory of all accounts managed in the enterprise.",
|
|
120
|
+
keywords: ["accounts", "inventory", "management"],
|
|
121
|
+
findingCategories: ["authentication", "identity"],
|
|
122
|
+
},
|
|
123
|
+
{
|
|
124
|
+
id: "5.2",
|
|
125
|
+
framework: "CIS",
|
|
126
|
+
category: "Account Management",
|
|
127
|
+
title: "Use Unique Passwords",
|
|
128
|
+
description: "Use unique passwords for all enterprise assets.",
|
|
129
|
+
keywords: ["passwords", "unique", "credentials"],
|
|
130
|
+
findingCategories: ["authentication", "secrets"],
|
|
131
|
+
cweIds: ["CWE-521"],
|
|
132
|
+
},
|
|
133
|
+
// Control 6: Access Control Management
|
|
134
|
+
{
|
|
135
|
+
id: "6.1",
|
|
136
|
+
framework: "CIS",
|
|
137
|
+
category: "Access Control Management",
|
|
138
|
+
title: "Establish Access Granting Process",
|
|
139
|
+
description: "Establish and maintain an access granting process for enterprise assets.",
|
|
140
|
+
keywords: ["access", "granting", "authorization"],
|
|
141
|
+
findingCategories: ["authorization", "access-control"],
|
|
142
|
+
cweIds: ["CWE-284"],
|
|
143
|
+
},
|
|
144
|
+
{
|
|
145
|
+
id: "6.3",
|
|
146
|
+
framework: "CIS",
|
|
147
|
+
category: "Access Control Management",
|
|
148
|
+
title: "Require MFA for Externally-Exposed Applications",
|
|
149
|
+
description: "Require MFA for externally-exposed enterprise or third-party applications.",
|
|
150
|
+
keywords: ["MFA", "authentication", "external"],
|
|
151
|
+
findingCategories: ["authentication", "mfa"],
|
|
152
|
+
cweIds: ["CWE-308"],
|
|
153
|
+
},
|
|
154
|
+
{
|
|
155
|
+
id: "6.5",
|
|
156
|
+
framework: "CIS",
|
|
157
|
+
category: "Access Control Management",
|
|
158
|
+
title: "Require MFA for Administrative Access",
|
|
159
|
+
description: "Require MFA for all administrative access accounts.",
|
|
160
|
+
keywords: ["MFA", "admin", "administrative"],
|
|
161
|
+
findingCategories: ["authentication", "mfa"],
|
|
162
|
+
cweIds: ["CWE-308"],
|
|
163
|
+
},
|
|
164
|
+
// Control 7: Continuous Vulnerability Management
|
|
165
|
+
{
|
|
166
|
+
id: "7.1",
|
|
167
|
+
framework: "CIS",
|
|
168
|
+
category: "Continuous Vulnerability Management",
|
|
169
|
+
title: "Establish Vulnerability Management Process",
|
|
170
|
+
description: "Establish and maintain a documented vulnerability management process.",
|
|
171
|
+
keywords: ["vulnerability", "management", "process"],
|
|
172
|
+
findingCategories: ["vulnerabilities", "security"],
|
|
173
|
+
},
|
|
174
|
+
{
|
|
175
|
+
id: "7.3",
|
|
176
|
+
framework: "CIS",
|
|
177
|
+
category: "Continuous Vulnerability Management",
|
|
178
|
+
title: "Perform Automated Vulnerability Scans",
|
|
179
|
+
description: "Perform automated vulnerability scans of internal enterprise assets.",
|
|
180
|
+
keywords: ["scanning", "automated", "vulnerability"],
|
|
181
|
+
findingCategories: ["vulnerabilities", "security"],
|
|
182
|
+
},
|
|
183
|
+
{
|
|
184
|
+
id: "7.4",
|
|
185
|
+
framework: "CIS",
|
|
186
|
+
category: "Continuous Vulnerability Management",
|
|
187
|
+
title: "Remediate Detected Vulnerabilities",
|
|
188
|
+
description: "Remediate detected vulnerabilities in software through processes and tooling.",
|
|
189
|
+
keywords: ["remediation", "patching", "fixing"],
|
|
190
|
+
findingCategories: ["vulnerabilities", "dependencies"],
|
|
191
|
+
cweIds: ["CWE-1035"],
|
|
192
|
+
},
|
|
193
|
+
// Control 8: Audit Log Management
|
|
194
|
+
{
|
|
195
|
+
id: "8.2",
|
|
196
|
+
framework: "CIS",
|
|
197
|
+
category: "Audit Log Management",
|
|
198
|
+
title: "Collect Audit Logs",
|
|
199
|
+
description: "Collect audit logs from all enterprise assets capable of generating them.",
|
|
200
|
+
keywords: ["logging", "audit", "collection"],
|
|
201
|
+
findingCategories: ["logging", "audit"],
|
|
202
|
+
cweIds: ["CWE-778"],
|
|
203
|
+
},
|
|
204
|
+
{
|
|
205
|
+
id: "8.5",
|
|
206
|
+
framework: "CIS",
|
|
207
|
+
category: "Audit Log Management",
|
|
208
|
+
title: "Collect Detailed Audit Logs",
|
|
209
|
+
description: "Configure detailed audit logging for enterprise assets containing sensitive data.",
|
|
210
|
+
keywords: ["detailed", "logging", "sensitive"],
|
|
211
|
+
findingCategories: ["logging", "audit"],
|
|
212
|
+
},
|
|
213
|
+
// Control 16: Application Software Security
|
|
214
|
+
{
|
|
215
|
+
id: "16.1",
|
|
216
|
+
framework: "CIS",
|
|
217
|
+
category: "Application Software Security",
|
|
218
|
+
title: "Establish Application Security Process",
|
|
219
|
+
description: "Establish and maintain a secure application development process.",
|
|
220
|
+
keywords: ["application", "security", "SDLC"],
|
|
221
|
+
findingCategories: ["security", "code-quality"],
|
|
222
|
+
},
|
|
223
|
+
{
|
|
224
|
+
id: "16.2",
|
|
225
|
+
framework: "CIS",
|
|
226
|
+
category: "Application Software Security",
|
|
227
|
+
title: "Establish Process for Third-Party Libraries",
|
|
228
|
+
description: "Establish and maintain a process to accept and address reports of software vulnerabilities.",
|
|
229
|
+
keywords: ["third-party", "libraries", "dependencies"],
|
|
230
|
+
findingCategories: ["dependencies", "vulnerabilities"],
|
|
231
|
+
},
|
|
232
|
+
{
|
|
233
|
+
id: "16.4",
|
|
234
|
+
framework: "CIS",
|
|
235
|
+
category: "Application Software Security",
|
|
236
|
+
title: "Perform Root Cause Analysis",
|
|
237
|
+
description: "Conduct root cause analysis on security vulnerabilities.",
|
|
238
|
+
keywords: ["root-cause", "analysis", "vulnerabilities"],
|
|
239
|
+
findingCategories: ["security", "vulnerabilities"],
|
|
240
|
+
},
|
|
241
|
+
{
|
|
242
|
+
id: "16.5",
|
|
243
|
+
framework: "CIS",
|
|
244
|
+
category: "Application Software Security",
|
|
245
|
+
title: "Use Up-to-Date Components",
|
|
246
|
+
description: "Use up-to-date and trusted third-party software components.",
|
|
247
|
+
keywords: ["components", "up-to-date", "dependencies"],
|
|
248
|
+
findingCategories: ["dependencies", "vulnerabilities"],
|
|
249
|
+
cweIds: ["CWE-1035"],
|
|
250
|
+
},
|
|
251
|
+
{
|
|
252
|
+
id: "16.6",
|
|
253
|
+
framework: "CIS",
|
|
254
|
+
category: "Application Software Security",
|
|
255
|
+
title: "Establish Code Repository Security",
|
|
256
|
+
description: "Establish and maintain a process to protect code repositories.",
|
|
257
|
+
keywords: ["repository", "code", "security"],
|
|
258
|
+
findingCategories: ["secrets", "security"],
|
|
259
|
+
},
|
|
260
|
+
{
|
|
261
|
+
id: "16.9",
|
|
262
|
+
framework: "CIS",
|
|
263
|
+
category: "Application Software Security",
|
|
264
|
+
title: "Train Developers on Security",
|
|
265
|
+
description: "Ensure developers are trained in application security topics.",
|
|
266
|
+
keywords: ["training", "developers", "security"],
|
|
267
|
+
findingCategories: ["security"],
|
|
268
|
+
},
|
|
269
|
+
{
|
|
270
|
+
id: "16.10",
|
|
271
|
+
framework: "CIS",
|
|
272
|
+
category: "Application Software Security",
|
|
273
|
+
title: "Apply Secure Design Principles",
|
|
274
|
+
description: "Apply secure design principles in application architectures.",
|
|
275
|
+
keywords: ["secure-design", "architecture", "principles"],
|
|
276
|
+
findingCategories: ["security", "architecture"],
|
|
277
|
+
},
|
|
278
|
+
{
|
|
279
|
+
id: "16.11",
|
|
280
|
+
framework: "CIS",
|
|
281
|
+
category: "Application Software Security",
|
|
282
|
+
title: "Implement Web Application Firewalls",
|
|
283
|
+
description: "Implement a Web Application Firewall (WAF) for web applications.",
|
|
284
|
+
keywords: ["WAF", "firewall", "web"],
|
|
285
|
+
findingCategories: ["security", "injection", "xss"],
|
|
286
|
+
cweIds: ["CWE-89", "CWE-79"],
|
|
287
|
+
},
|
|
288
|
+
{
|
|
289
|
+
id: "16.12",
|
|
290
|
+
framework: "CIS",
|
|
291
|
+
category: "Application Software Security",
|
|
292
|
+
title: "Implement Code-Level Security Checks",
|
|
293
|
+
description: "Apply static and dynamic application security testing tools.",
|
|
294
|
+
keywords: ["SAST", "DAST", "testing", "security"],
|
|
295
|
+
findingCategories: ["security", "code-quality"],
|
|
296
|
+
},
|
|
297
|
+
];
|
|
298
|
+
/**
|
|
299
|
+
* Get all CIS controls
|
|
300
|
+
*/
|
|
301
|
+
export function getCISControls() {
|
|
302
|
+
return CIS_CONTROLS;
|
|
303
|
+
}
|
|
304
|
+
/**
|
|
305
|
+
* Get CIS controls by category
|
|
306
|
+
*/
|
|
307
|
+
export function getCISControlsByCategory(category) {
|
|
308
|
+
return CIS_CONTROLS.filter((c) => c.category === category);
|
|
309
|
+
}
|
|
310
|
+
/**
|
|
311
|
+
* Get CIS categories
|
|
312
|
+
*/
|
|
313
|
+
export function getCISCategories() {
|
|
314
|
+
return CIS_CATEGORIES;
|
|
315
|
+
}
|
|
316
|
+
//# sourceMappingURL=cis.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"cis.js","sourceRoot":"","sources":["../../src/compliance/cis.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH;;GAEG;AACH,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,4CAA4C;IAC5C,0CAA0C;IAC1C,iBAAiB;IACjB,sBAAsB;IACtB,oBAAoB;IACpB,2BAA2B;IAC3B,qCAAqC;IACrC,sBAAsB;IACtB,mCAAmC;IACnC,kBAAkB;IAClB,eAAe;IACf,mCAAmC;IACnC,gCAAgC;IAChC,6BAA6B;IAC7B,6BAA6B;IAC7B,+BAA+B;IAC/B,8BAA8B;IAC9B,qBAAqB;CACb,CAAC;AAEX;;GAEG;AACH,MAAM,CAAC,MAAM,YAAY,GAAwB;IAC/C,sDAAsD;IACtD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,0CAA0C;QACpD,KAAK,EAAE,6CAA6C;QACpD,WAAW,EACT,sGAAsG;QACxG,QAAQ,EAAE,CAAC,WAAW,EAAE,MAAM,EAAE,UAAU,EAAE,cAAc,CAAC;QAC3D,iBAAiB,EAAE,CAAC,cAAc,EAAE,MAAM,CAAC;KAC5C;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,0CAA0C;QACpD,KAAK,EAAE,mDAAmD;QAC1D,WAAW,EACT,4EAA4E;QAC9E,QAAQ,EAAE,CAAC,WAAW,EAAE,KAAK,EAAE,UAAU,EAAE,YAAY,CAAC;QACxD,iBAAiB,EAAE,CAAC,cAAc,EAAE,iBAAiB,CAAC;KACvD;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,0CAA0C;QACpD,KAAK,EAAE,+BAA+B;QACtC,WAAW,EACT,wEAAwE;QAC1E,QAAQ,EAAE,CAAC,WAAW,EAAE,WAAW,EAAE,YAAY,CAAC;QAClD,iBAAiB,EAAE,CAAC,UAAU,EAAE,eAAe,CAAC;KACjD;IAED,6BAA6B;IAC7B;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,kDAAkD;QACzD,WAAW,EACT,4GAA4G;QAC9G,QAAQ,EAAE,CAAC,MAAM,EAAE,YAAY,EAAE,gBAAgB,CAAC;QAClD,iBAAiB,EAAE,CAAC,eAAe,EAAE,iBAAiB,CAAC;KACxD;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,mCAAmC;QAC1C,WAAW,EACT,4DAA4D;QAC9D,QAAQ,EAAE,CAAC,YAAY,EAAE,SAAS,EAAE,KAAK,EAAE,OAAO,CAAC;QACnD,iBAAiB,EAAE,CAAC,YAAY,EAAE,oBAAoB,CAAC;QACvD,MAAM,EAAE,CAAC,SAAS,CAAC;KACpB;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,gCAAgC;QACvC,WAAW,EACT,yDAAyD;QAC3D,QAAQ,EAAE,CAAC,YAAY,EAAE,MAAM,EAAE,SAAS,EAAE,cAAc,CAAC;QAC3D,iBAAiB,EAAE,CAAC,YAAY,EAAE,iBAAiB,CAAC;QACpD,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;KAC/B;IAED,kCAAkC;IAClC;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,sBAAsB;QAChC,KAAK,EAAE,wCAAwC;QAC/C,WAAW,EACT,8EAA8E;QAChF,QAAQ,EAAE,CAAC,eAAe,EAAE,WAAW,EAAE,UAAU,CAAC;QACpD,iBAAiB,EAAE,CAAC,eAAe,EAAE,UAAU,CAAC;KACjD;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,sBAAsB;QAChC,KAAK,EAAE,yBAAyB;QAChC,WAAW,EACT,4DAA4D;QAC9D,QAAQ,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,aAAa,CAAC;QAChD,iBAAiB,EAAE,CAAC,gBAAgB,EAAE,SAAS,CAAC;QAChD,MAAM,EAAE,CAAC,SAAS,CAAC;KACpB;IAED,gCAAgC;IAChC;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,oBAAoB;QAC9B,KAAK,EAAE,sCAAsC;QAC7C,WAAW,EACT,gFAAgF;QAClF,QAAQ,EAAE,CAAC,UAAU,EAAE,WAAW,EAAE,YAAY,CAAC;QACjD,iBAAiB,EAAE,CAAC,gBAAgB,EAAE,UAAU,CAAC;KAClD;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,oBAAoB;QAC9B,KAAK,EAAE,sBAAsB;QAC7B,WAAW,EAAE,iDAAiD;QAC9D,QAAQ,EAAE,CAAC,WAAW,EAAE,QAAQ,EAAE,aAAa,CAAC;QAChD,iBAAiB,EAAE,CAAC,gBAAgB,EAAE,SAAS,CAAC;QAChD,MAAM,EAAE,CAAC,SAAS,CAAC;KACpB;IAED,uCAAuC;IACvC;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,2BAA2B;QACrC,KAAK,EAAE,mCAAmC;QAC1C,WAAW,EACT,0EAA0E;QAC5E,QAAQ,EAAE,CAAC,QAAQ,EAAE,UAAU,EAAE,eAAe,CAAC;QACjD,iBAAiB,EAAE,CAAC,eAAe,EAAE,gBAAgB,CAAC;QACtD,MAAM,EAAE,CAAC,SAAS,CAAC;KACpB;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,2BAA2B;QACrC,KAAK,EAAE,iDAAiD;QACxD,WAAW,EACT,4EAA4E;QAC9E,QAAQ,EAAE,CAAC,KAAK,EAAE,gBAAgB,EAAE,UAAU,CAAC;QAC/C,iBAAiB,EAAE,CAAC,gBAAgB,EAAE,KAAK,CAAC;QAC5C,MAAM,EAAE,CAAC,SAAS,CAAC;KACpB;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,2BAA2B;QACrC,KAAK,EAAE,uCAAuC;QAC9C,WAAW,EAAE,qDAAqD;QAClE,QAAQ,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,gBAAgB,CAAC;QAC5C,iBAAiB,EAAE,CAAC,gBAAgB,EAAE,KAAK,CAAC;QAC5C,MAAM,EAAE,CAAC,SAAS,CAAC;KACpB;IAED,iDAAiD;IACjD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,qCAAqC;QAC/C,KAAK,EAAE,4CAA4C;QACnD,WAAW,EACT,uEAAuE;QACzE,QAAQ,EAAE,CAAC,eAAe,EAAE,YAAY,EAAE,SAAS,CAAC;QACpD,iBAAiB,EAAE,CAAC,iBAAiB,EAAE,UAAU,CAAC;KACnD;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,qCAAqC;QAC/C,KAAK,EAAE,uCAAuC;QAC9C,WAAW,EACT,sEAAsE;QACxE,QAAQ,EAAE,CAAC,UAAU,EAAE,WAAW,EAAE,eAAe,CAAC;QACpD,iBAAiB,EAAE,CAAC,iBAAiB,EAAE,UAAU,CAAC;KACnD;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,qCAAqC;QAC/C,KAAK,EAAE,oCAAoC;QAC3C,WAAW,EACT,+EAA+E;QACjF,QAAQ,EAAE,CAAC,aAAa,EAAE,UAAU,EAAE,QAAQ,CAAC;QAC/C,iBAAiB,EAAE,CAAC,iBAAiB,EAAE,cAAc,CAAC;QACtD,MAAM,EAAE,CAAC,UAAU,CAAC;KACrB;IAED,kCAAkC;IAClC;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,sBAAsB;QAChC,KAAK,EAAE,oBAAoB;QAC3B,WAAW,EACT,2EAA2E;QAC7E,QAAQ,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,YAAY,CAAC;QAC5C,iBAAiB,EAAE,CAAC,SAAS,EAAE,OAAO,CAAC;QACvC,MAAM,EAAE,CAAC,SAAS,CAAC;KACpB;IACD;QACE,EAAE,EAAE,KAAK;QACT,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,sBAAsB;QAChC,KAAK,EAAE,6BAA6B;QACpC,WAAW,EACT,mFAAmF;QACrF,QAAQ,EAAE,CAAC,UAAU,EAAE,SAAS,EAAE,WAAW,CAAC;QAC9C,iBAAiB,EAAE,CAAC,SAAS,EAAE,OAAO,CAAC;KACxC;IAED,4CAA4C;IAC5C;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,wCAAwC;QAC/C,WAAW,EACT,kEAAkE;QACpE,QAAQ,EAAE,CAAC,aAAa,EAAE,UAAU,EAAE,MAAM,CAAC;QAC7C,iBAAiB,EAAE,CAAC,UAAU,EAAE,cAAc,CAAC;KAChD;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,6CAA6C;QACpD,WAAW,EACT,6FAA6F;QAC/F,QAAQ,EAAE,CAAC,aAAa,EAAE,WAAW,EAAE,cAAc,CAAC;QACtD,iBAAiB,EAAE,CAAC,cAAc,EAAE,iBAAiB,CAAC;KACvD;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,6BAA6B;QACpC,WAAW,EACT,0DAA0D;QAC5D,QAAQ,EAAE,CAAC,YAAY,EAAE,UAAU,EAAE,iBAAiB,CAAC;QACvD,iBAAiB,EAAE,CAAC,UAAU,EAAE,iBAAiB,CAAC;KACnD;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,2BAA2B;QAClC,WAAW,EACT,6DAA6D;QAC/D,QAAQ,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,cAAc,CAAC;QACtD,iBAAiB,EAAE,CAAC,cAAc,EAAE,iBAAiB,CAAC;QACtD,MAAM,EAAE,CAAC,UAAU,CAAC;KACrB;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,oCAAoC;QAC3C,WAAW,EACT,gEAAgE;QAClE,QAAQ,EAAE,CAAC,YAAY,EAAE,MAAM,EAAE,UAAU,CAAC;QAC5C,iBAAiB,EAAE,CAAC,SAAS,EAAE,UAAU,CAAC;KAC3C;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,8BAA8B;QACrC,WAAW,EACT,+DAA+D;QACjE,QAAQ,EAAE,CAAC,UAAU,EAAE,YAAY,EAAE,UAAU,CAAC;QAChD,iBAAiB,EAAE,CAAC,UAAU,CAAC;KAChC;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,gCAAgC;QACvC,WAAW,EACT,8DAA8D;QAChE,QAAQ,EAAE,CAAC,eAAe,EAAE,cAAc,EAAE,YAAY,CAAC;QACzD,iBAAiB,EAAE,CAAC,UAAU,EAAE,cAAc,CAAC;KAChD;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,qCAAqC;QAC5C,WAAW,EACT,kEAAkE;QACpE,QAAQ,EAAE,CAAC,KAAK,EAAE,UAAU,EAAE,KAAK,CAAC;QACpC,iBAAiB,EAAE,CAAC,UAAU,EAAE,WAAW,EAAE,KAAK,CAAC;QACnD,MAAM,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC;KAC7B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,KAAK;QAChB,QAAQ,EAAE,+BAA+B;QACzC,KAAK,EAAE,sCAAsC;QAC7C,WAAW,EACT,8DAA8D;QAChE,QAAQ,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,UAAU,CAAC;QACjD,iBAAiB,EAAE,CAAC,UAAU,EAAE,cAAc,CAAC;KAChD;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,UAAU,cAAc;IAC5B,OAAO,YAAY,CAAC;AACtB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,wBAAwB,CAAC,QAAgB;IACvD,OAAO,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;AAC7D,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB;IAC9B,OAAO,cAAc,CAAC;AACxB,CAAC"}
|
|
@@ -0,0 +1,55 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* EU AI Act Compliance Framework
|
|
3
|
+
*
|
|
4
|
+
* Maps security findings to EU AI Act requirements (Regulation 2024/1689).
|
|
5
|
+
* The EU AI Act establishes harmonized rules for AI systems within the EU,
|
|
6
|
+
* with risk-based categorization and specific requirements for high-risk systems.
|
|
7
|
+
*
|
|
8
|
+
* @see https://eur-lex.europa.eu/eli/reg/2024/1689
|
|
9
|
+
* @module compliance/frameworks/eu-ai-act
|
|
10
|
+
*/
|
|
11
|
+
import type { ComplianceControl } from "../types.js";
|
|
12
|
+
/**
|
|
13
|
+
* EU AI Act Risk Levels
|
|
14
|
+
*/
|
|
15
|
+
export type AIActRiskLevel = "Unacceptable" | "High" | "Limited" | "Minimal";
|
|
16
|
+
/**
|
|
17
|
+
* EU AI Act System Categories
|
|
18
|
+
*/
|
|
19
|
+
export type AIActCategory = "General Purpose AI" | "High-Risk AI" | "Limited Risk AI" | "Prohibited AI";
|
|
20
|
+
/**
|
|
21
|
+
* EU AI Act Controls
|
|
22
|
+
*
|
|
23
|
+
* Based on EU AI Act (Regulation 2024/1689) requirements.
|
|
24
|
+
* Controls are organized by Article with focus on high-risk AI requirements.
|
|
25
|
+
*/
|
|
26
|
+
export declare const EU_AI_ACT_CONTROLS: ComplianceControl[];
|
|
27
|
+
/**
|
|
28
|
+
* Get all EU AI Act controls
|
|
29
|
+
*/
|
|
30
|
+
export declare function getEUAIActControls(): ComplianceControl[];
|
|
31
|
+
/**
|
|
32
|
+
* Get EU AI Act control by ID
|
|
33
|
+
*/
|
|
34
|
+
export declare function getEUAIActControlById(id: string): ComplianceControl | undefined;
|
|
35
|
+
/**
|
|
36
|
+
* Get EU AI Act controls by category
|
|
37
|
+
*/
|
|
38
|
+
export declare function getEUAIActControlsByCategory(category: string): ComplianceControl[];
|
|
39
|
+
/**
|
|
40
|
+
* Get all EU AI Act categories
|
|
41
|
+
*/
|
|
42
|
+
export declare function getEUAIActCategories(): string[];
|
|
43
|
+
/**
|
|
44
|
+
* Determine AI system risk level based on findings
|
|
45
|
+
*/
|
|
46
|
+
export declare function determineRiskLevel(findingCategories: string[]): AIActRiskLevel;
|
|
47
|
+
/**
|
|
48
|
+
* Get applicable articles based on AI system type
|
|
49
|
+
*/
|
|
50
|
+
export declare function getApplicableArticles(isHighRisk: boolean, isGPAI: boolean, hasSystemicRisk: boolean): string[];
|
|
51
|
+
/**
|
|
52
|
+
* Cross-mapping to OWASP LLM Top 10
|
|
53
|
+
*/
|
|
54
|
+
export declare const EU_AI_ACT_TO_OWASP_LLM_MAPPING: Record<string, string[]>;
|
|
55
|
+
//# sourceMappingURL=eu-ai-act.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"eu-ai-act.d.ts","sourceRoot":"","sources":["../../../src/compliance/frameworks/eu-ai-act.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAErD;;GAEG;AACH,MAAM,MAAM,cAAc,GACtB,cAAc,GACd,MAAM,GACN,SAAS,GACT,SAAS,CAAC;AAEd;;GAEG;AACH,MAAM,MAAM,aAAa,GACrB,oBAAoB,GACpB,cAAc,GACd,iBAAiB,GACjB,eAAe,CAAC;AAEpB;;;;;GAKG;AACH,eAAO,MAAM,kBAAkB,EAAE,iBAAiB,EAijBjD,CAAC;AAEF;;GAEG;AACH,wBAAgB,kBAAkB,IAAI,iBAAiB,EAAE,CAExD;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,EAAE,EAAE,MAAM,GAAG,iBAAiB,GAAG,SAAS,CAE/E;AAED;;GAEG;AACH,wBAAgB,4BAA4B,CAAC,QAAQ,EAAE,MAAM,GAAG,iBAAiB,EAAE,CAElF;AAED;;GAEG;AACH,wBAAgB,oBAAoB,IAAI,MAAM,EAAE,CAE/C;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,iBAAiB,EAAE,MAAM,EAAE,GAC1B,cAAc,CAsBhB;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CACnC,UAAU,EAAE,OAAO,EACnB,MAAM,EAAE,OAAO,EACf,eAAe,EAAE,OAAO,GACvB,MAAM,EAAE,CA4BV;AAED;;GAEG;AACH,eAAO,MAAM,8BAA8B,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CASnE,CAAC"}
|