vaspera 2.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +184 -0
- package/LICENSE +21 -0
- package/README.md +809 -0
- package/dist/__tests__/integration/certification-flow.test.d.ts +5 -0
- package/dist/__tests__/integration/certification-flow.test.d.ts.map +1 -0
- package/dist/__tests__/integration/certification-flow.test.js +245 -0
- package/dist/__tests__/integration/certification-flow.test.js.map +1 -0
- package/dist/__tests__/integration/commands.test.d.ts +5 -0
- package/dist/__tests__/integration/commands.test.d.ts.map +1 -0
- package/dist/__tests__/integration/commands.test.js +93 -0
- package/dist/__tests__/integration/commands.test.js.map +1 -0
- package/dist/action/diff-mode.d.ts +34 -0
- package/dist/action/diff-mode.d.ts.map +1 -0
- package/dist/action/diff-mode.js +201 -0
- package/dist/action/diff-mode.js.map +1 -0
- package/dist/action/diff-mode.test.d.ts +5 -0
- package/dist/action/diff-mode.test.d.ts.map +1 -0
- package/dist/action/diff-mode.test.js +162 -0
- package/dist/action/diff-mode.test.js.map +1 -0
- package/dist/action/index.d.ts +10 -0
- package/dist/action/index.d.ts.map +1 -0
- package/dist/action/index.js +231 -0
- package/dist/action/index.js.map +1 -0
- package/dist/action/pr-comment.d.ts +30 -0
- package/dist/action/pr-comment.d.ts.map +1 -0
- package/dist/action/pr-comment.js +301 -0
- package/dist/action/pr-comment.js.map +1 -0
- package/dist/action/pr-comment.test.d.ts +5 -0
- package/dist/action/pr-comment.test.d.ts.map +1 -0
- package/dist/action/pr-comment.test.js +189 -0
- package/dist/action/pr-comment.test.js.map +1 -0
- package/dist/action/sarif-upload.d.ts +104 -0
- package/dist/action/sarif-upload.d.ts.map +1 -0
- package/dist/action/sarif-upload.js +188 -0
- package/dist/action/sarif-upload.js.map +1 -0
- package/dist/action/sarif-upload.test.d.ts +5 -0
- package/dist/action/sarif-upload.test.d.ts.map +1 -0
- package/dist/action/sarif-upload.test.js +206 -0
- package/dist/action/sarif-upload.test.js.map +1 -0
- package/dist/action/types.d.ts +104 -0
- package/dist/action/types.d.ts.map +1 -0
- package/dist/action/types.js +33 -0
- package/dist/action/types.js.map +1 -0
- package/dist/action/types.test.d.ts +5 -0
- package/dist/action/types.test.d.ts.map +1 -0
- package/dist/action/types.test.js +79 -0
- package/dist/action/types.test.js.map +1 -0
- package/dist/agents/agent-integrity.d.ts +111 -0
- package/dist/agents/agent-integrity.d.ts.map +1 -0
- package/dist/agents/agent-integrity.js +308 -0
- package/dist/agents/agent-integrity.js.map +1 -0
- package/dist/agents/agent-privacy.d.ts +68 -0
- package/dist/agents/agent-privacy.d.ts.map +1 -0
- package/dist/agents/agent-privacy.js +345 -0
- package/dist/agents/agent-privacy.js.map +1 -0
- package/dist/agents/exploit-chain.d.ts +64 -0
- package/dist/agents/exploit-chain.d.ts.map +1 -0
- package/dist/agents/exploit-chain.js +477 -0
- package/dist/agents/exploit-chain.js.map +1 -0
- package/dist/agents/exploit-chain.test.d.ts +5 -0
- package/dist/agents/exploit-chain.test.d.ts.map +1 -0
- package/dist/agents/exploit-chain.test.js +455 -0
- package/dist/agents/exploit-chain.test.js.map +1 -0
- package/dist/agents/index.d.ts +14 -0
- package/dist/agents/index.d.ts.map +1 -0
- package/dist/agents/index.js +19 -0
- package/dist/agents/index.js.map +1 -0
- package/dist/agents/logic-flaw-detector.d.ts +55 -0
- package/dist/agents/logic-flaw-detector.d.ts.map +1 -0
- package/dist/agents/logic-flaw-detector.js +454 -0
- package/dist/agents/logic-flaw-detector.js.map +1 -0
- package/dist/agents/zero-day-hunter.d.ts +69 -0
- package/dist/agents/zero-day-hunter.d.ts.map +1 -0
- package/dist/agents/zero-day-hunter.js +591 -0
- package/dist/agents/zero-day-hunter.js.map +1 -0
- package/dist/certification/artifacts.d.ts +21 -0
- package/dist/certification/artifacts.d.ts.map +1 -0
- package/dist/certification/artifacts.js +275 -0
- package/dist/certification/artifacts.js.map +1 -0
- package/dist/certification/autofix.d.ts +122 -0
- package/dist/certification/autofix.d.ts.map +1 -0
- package/dist/certification/autofix.js +476 -0
- package/dist/certification/autofix.js.map +1 -0
- package/dist/certification/badge.d.ts +56 -0
- package/dist/certification/badge.d.ts.map +1 -0
- package/dist/certification/badge.js +155 -0
- package/dist/certification/badge.js.map +1 -0
- package/dist/certification/cache.d.ts +121 -0
- package/dist/certification/cache.d.ts.map +1 -0
- package/dist/certification/cache.js +275 -0
- package/dist/certification/cache.js.map +1 -0
- package/dist/certification/cache.test.d.ts +5 -0
- package/dist/certification/cache.test.d.ts.map +1 -0
- package/dist/certification/cache.test.js +270 -0
- package/dist/certification/cache.test.js.map +1 -0
- package/dist/certification/consensus.d.ts +105 -0
- package/dist/certification/consensus.d.ts.map +1 -0
- package/dist/certification/consensus.js +353 -0
- package/dist/certification/consensus.js.map +1 -0
- package/dist/certification/consensus.test.d.ts +5 -0
- package/dist/certification/consensus.test.d.ts.map +1 -0
- package/dist/certification/consensus.test.js +342 -0
- package/dist/certification/consensus.test.js.map +1 -0
- package/dist/certification/index.d.ts +14 -0
- package/dist/certification/index.d.ts.map +1 -0
- package/dist/certification/index.js +14 -0
- package/dist/certification/index.js.map +1 -0
- package/dist/certification/rules.d.ts +89 -0
- package/dist/certification/rules.d.ts.map +1 -0
- package/dist/certification/rules.js +317 -0
- package/dist/certification/rules.js.map +1 -0
- package/dist/certification/sarif.d.ts +107 -0
- package/dist/certification/sarif.d.ts.map +1 -0
- package/dist/certification/sarif.js +191 -0
- package/dist/certification/sarif.js.map +1 -0
- package/dist/certification/store.d.ts +255 -0
- package/dist/certification/store.d.ts.map +1 -0
- package/dist/certification/store.js +835 -0
- package/dist/certification/store.js.map +1 -0
- package/dist/certification/store.test.d.ts +5 -0
- package/dist/certification/store.test.d.ts.map +1 -0
- package/dist/certification/store.test.js +468 -0
- package/dist/certification/store.test.js.map +1 -0
- package/dist/certification/summary.d.ts +72 -0
- package/dist/certification/summary.d.ts.map +1 -0
- package/dist/certification/summary.js +296 -0
- package/dist/certification/summary.js.map +1 -0
- package/dist/certification/types.d.ts +138 -0
- package/dist/certification/types.d.ts.map +1 -0
- package/dist/certification/types.js +34 -0
- package/dist/certification/types.js.map +1 -0
- package/dist/commands/audits/api-check.d.ts +3 -0
- package/dist/commands/audits/api-check.d.ts.map +1 -0
- package/dist/commands/audits/api-check.js +71 -0
- package/dist/commands/audits/api-check.js.map +1 -0
- package/dist/commands/audits/deadcode.d.ts +3 -0
- package/dist/commands/audits/deadcode.d.ts.map +1 -0
- package/dist/commands/audits/deadcode.js +63 -0
- package/dist/commands/audits/deadcode.js.map +1 -0
- package/dist/commands/audits/deps.d.ts +3 -0
- package/dist/commands/audits/deps.d.ts.map +1 -0
- package/dist/commands/audits/deps.js +56 -0
- package/dist/commands/audits/deps.js.map +1 -0
- package/dist/commands/audits/errors.d.ts +3 -0
- package/dist/commands/audits/errors.d.ts.map +1 -0
- package/dist/commands/audits/errors.js +65 -0
- package/dist/commands/audits/errors.js.map +1 -0
- package/dist/commands/audits/index.d.ts +3 -0
- package/dist/commands/audits/index.d.ts.map +1 -0
- package/dist/commands/audits/index.js +15 -0
- package/dist/commands/audits/index.js.map +1 -0
- package/dist/commands/audits/perf.d.ts +3 -0
- package/dist/commands/audits/perf.d.ts.map +1 -0
- package/dist/commands/audits/perf.js +85 -0
- package/dist/commands/audits/perf.js.map +1 -0
- package/dist/commands/audits/secrets.d.ts +3 -0
- package/dist/commands/audits/secrets.d.ts.map +1 -0
- package/dist/commands/audits/secrets.js +71 -0
- package/dist/commands/audits/secrets.js.map +1 -0
- package/dist/commands/certification/certify.d.ts +3 -0
- package/dist/commands/certification/certify.d.ts.map +1 -0
- package/dist/commands/certification/certify.js +108 -0
- package/dist/commands/certification/certify.js.map +1 -0
- package/dist/commands/certification/index.d.ts +3 -0
- package/dist/commands/certification/index.d.ts.map +1 -0
- package/dist/commands/certification/index.js +17 -0
- package/dist/commands/certification/index.js.map +1 -0
- package/dist/commands/certification/performance.d.ts +3 -0
- package/dist/commands/certification/performance.d.ts.map +1 -0
- package/dist/commands/certification/performance.js +89 -0
- package/dist/commands/certification/performance.js.map +1 -0
- package/dist/commands/certification/quality.d.ts +3 -0
- package/dist/commands/certification/quality.d.ts.map +1 -0
- package/dist/commands/certification/quality.js +92 -0
- package/dist/commands/certification/quality.js.map +1 -0
- package/dist/commands/certification/redteam.d.ts +3 -0
- package/dist/commands/certification/redteam.d.ts.map +1 -0
- package/dist/commands/certification/redteam.js +114 -0
- package/dist/commands/certification/redteam.js.map +1 -0
- package/dist/commands/certification/reliability.d.ts +3 -0
- package/dist/commands/certification/reliability.d.ts.map +1 -0
- package/dist/commands/certification/reliability.js +93 -0
- package/dist/commands/certification/reliability.js.map +1 -0
- package/dist/commands/certification/security.d.ts +3 -0
- package/dist/commands/certification/security.d.ts.map +1 -0
- package/dist/commands/certification/security.js +90 -0
- package/dist/commands/certification/security.js.map +1 -0
- package/dist/commands/certification/typesafety.d.ts +3 -0
- package/dist/commands/certification/typesafety.d.ts.map +1 -0
- package/dist/commands/certification/typesafety.js +87 -0
- package/dist/commands/certification/typesafety.js.map +1 -0
- package/dist/commands/core/add-tests.d.ts +3 -0
- package/dist/commands/core/add-tests.d.ts.map +1 -0
- package/dist/commands/core/add-tests.js +29 -0
- package/dist/commands/core/add-tests.js.map +1 -0
- package/dist/commands/core/audit.d.ts +3 -0
- package/dist/commands/core/audit.d.ts.map +1 -0
- package/dist/commands/core/audit.js +64 -0
- package/dist/commands/core/audit.js.map +1 -0
- package/dist/commands/core/fix-critical.d.ts +3 -0
- package/dist/commands/core/fix-critical.d.ts.map +1 -0
- package/dist/commands/core/fix-critical.js +22 -0
- package/dist/commands/core/fix-critical.js.map +1 -0
- package/dist/commands/core/fix-high.d.ts +3 -0
- package/dist/commands/core/fix-high.d.ts.map +1 -0
- package/dist/commands/core/fix-high.js +32 -0
- package/dist/commands/core/fix-high.js.map +1 -0
- package/dist/commands/core/fix-medium.d.ts +3 -0
- package/dist/commands/core/fix-medium.d.ts.map +1 -0
- package/dist/commands/core/fix-medium.js +29 -0
- package/dist/commands/core/fix-medium.js.map +1 -0
- package/dist/commands/core/fix-rls.d.ts +3 -0
- package/dist/commands/core/fix-rls.d.ts.map +1 -0
- package/dist/commands/core/fix-rls.js +17 -0
- package/dist/commands/core/fix-rls.js.map +1 -0
- package/dist/commands/core/harden.d.ts +3 -0
- package/dist/commands/core/harden.d.ts.map +1 -0
- package/dist/commands/core/harden.js +19 -0
- package/dist/commands/core/harden.js.map +1 -0
- package/dist/commands/core/index.d.ts +3 -0
- package/dist/commands/core/index.d.ts.map +1 -0
- package/dist/commands/core/index.js +21 -0
- package/dist/commands/core/index.js.map +1 -0
- package/dist/commands/core/preflight.d.ts +3 -0
- package/dist/commands/core/preflight.d.ts.map +1 -0
- package/dist/commands/core/preflight.js +50 -0
- package/dist/commands/core/preflight.js.map +1 -0
- package/dist/commands/core/verify.d.ts +3 -0
- package/dist/commands/core/verify.d.ts.map +1 -0
- package/dist/commands/core/verify.js +32 -0
- package/dist/commands/core/verify.js.map +1 -0
- package/dist/commands/index.d.ts +28 -0
- package/dist/commands/index.d.ts.map +1 -0
- package/dist/commands/index.js +37 -0
- package/dist/commands/index.js.map +1 -0
- package/dist/commands/types.d.ts +9 -0
- package/dist/commands/types.d.ts.map +1 -0
- package/dist/commands/types.js +5 -0
- package/dist/commands/types.js.map +1 -0
- package/dist/compliance/cis.d.ts +29 -0
- package/dist/compliance/cis.d.ts.map +1 -0
- package/dist/compliance/cis.js +316 -0
- package/dist/compliance/cis.js.map +1 -0
- package/dist/compliance/frameworks/eu-ai-act.d.ts +55 -0
- package/dist/compliance/frameworks/eu-ai-act.d.ts.map +1 -0
- package/dist/compliance/frameworks/eu-ai-act.js +621 -0
- package/dist/compliance/frameworks/eu-ai-act.js.map +1 -0
- package/dist/compliance/frameworks/index.d.ts +67 -0
- package/dist/compliance/frameworks/index.d.ts.map +1 -0
- package/dist/compliance/frameworks/index.js +97 -0
- package/dist/compliance/frameworks/index.js.map +1 -0
- package/dist/compliance/frameworks/iso-42001.d.ts +59 -0
- package/dist/compliance/frameworks/iso-42001.d.ts.map +1 -0
- package/dist/compliance/frameworks/iso-42001.js +719 -0
- package/dist/compliance/frameworks/iso-42001.js.map +1 -0
- package/dist/compliance/frameworks/mitre-atlas.d.ts +58 -0
- package/dist/compliance/frameworks/mitre-atlas.d.ts.map +1 -0
- package/dist/compliance/frameworks/mitre-atlas.js +686 -0
- package/dist/compliance/frameworks/mitre-atlas.js.map +1 -0
- package/dist/compliance/frameworks/nist-ai-rmf.d.ts +51 -0
- package/dist/compliance/frameworks/nist-ai-rmf.d.ts.map +1 -0
- package/dist/compliance/frameworks/nist-ai-rmf.js +677 -0
- package/dist/compliance/frameworks/nist-ai-rmf.js.map +1 -0
- package/dist/compliance/frameworks/owasp-llm.d.ts +58 -0
- package/dist/compliance/frameworks/owasp-llm.d.ts.map +1 -0
- package/dist/compliance/frameworks/owasp-llm.js +399 -0
- package/dist/compliance/frameworks/owasp-llm.js.map +1 -0
- package/dist/compliance/gdpr.d.ts +34 -0
- package/dist/compliance/gdpr.d.ts.map +1 -0
- package/dist/compliance/gdpr.js +319 -0
- package/dist/compliance/gdpr.js.map +1 -0
- package/dist/compliance/hipaa.d.ts +29 -0
- package/dist/compliance/hipaa.d.ts.map +1 -0
- package/dist/compliance/hipaa.js +205 -0
- package/dist/compliance/hipaa.js.map +1 -0
- package/dist/compliance/index.d.ts +18 -0
- package/dist/compliance/index.d.ts.map +1 -0
- package/dist/compliance/index.js +26 -0
- package/dist/compliance/index.js.map +1 -0
- package/dist/compliance/iso27001.d.ts +30 -0
- package/dist/compliance/iso27001.d.ts.map +1 -0
- package/dist/compliance/iso27001.js +332 -0
- package/dist/compliance/iso27001.js.map +1 -0
- package/dist/compliance/mapper.d.ts +42 -0
- package/dist/compliance/mapper.d.ts.map +1 -0
- package/dist/compliance/mapper.js +269 -0
- package/dist/compliance/mapper.js.map +1 -0
- package/dist/compliance/mapper.test.d.ts +5 -0
- package/dist/compliance/mapper.test.d.ts.map +1 -0
- package/dist/compliance/mapper.test.js +360 -0
- package/dist/compliance/mapper.test.js.map +1 -0
- package/dist/compliance/pci-dss.d.ts +29 -0
- package/dist/compliance/pci-dss.d.ts.map +1 -0
- package/dist/compliance/pci-dss.js +247 -0
- package/dist/compliance/pci-dss.js.map +1 -0
- package/dist/compliance/report.d.ts +25 -0
- package/dist/compliance/report.d.ts.map +1 -0
- package/dist/compliance/report.js +254 -0
- package/dist/compliance/report.js.map +1 -0
- package/dist/compliance/report.test.d.ts +5 -0
- package/dist/compliance/report.test.d.ts.map +1 -0
- package/dist/compliance/report.test.js +128 -0
- package/dist/compliance/report.test.js.map +1 -0
- package/dist/compliance/soc2.d.ts +30 -0
- package/dist/compliance/soc2.d.ts.map +1 -0
- package/dist/compliance/soc2.js +262 -0
- package/dist/compliance/soc2.js.map +1 -0
- package/dist/compliance/soc2.test.d.ts +5 -0
- package/dist/compliance/soc2.test.d.ts.map +1 -0
- package/dist/compliance/soc2.test.js +86 -0
- package/dist/compliance/soc2.test.js.map +1 -0
- package/dist/compliance/types.d.ts +125 -0
- package/dist/compliance/types.d.ts.map +1 -0
- package/dist/compliance/types.js +10 -0
- package/dist/compliance/types.js.map +1 -0
- package/dist/config/flags.d.ts +456 -0
- package/dist/config/flags.d.ts.map +1 -0
- package/dist/config/flags.js +464 -0
- package/dist/config/flags.js.map +1 -0
- package/dist/config/index.d.ts +10 -0
- package/dist/config/index.d.ts.map +1 -0
- package/dist/config/index.js +10 -0
- package/dist/config/index.js.map +1 -0
- package/dist/config/severity-overrides.d.ts +209 -0
- package/dist/config/severity-overrides.d.ts.map +1 -0
- package/dist/config/severity-overrides.js +380 -0
- package/dist/config/severity-overrides.js.map +1 -0
- package/dist/cost/index.d.ts +11 -0
- package/dist/cost/index.d.ts.map +1 -0
- package/dist/cost/index.js +12 -0
- package/dist/cost/index.js.map +1 -0
- package/dist/cost/pricing.d.ts +57 -0
- package/dist/cost/pricing.d.ts.map +1 -0
- package/dist/cost/pricing.js +196 -0
- package/dist/cost/pricing.js.map +1 -0
- package/dist/cost/pricing.test.d.ts +5 -0
- package/dist/cost/pricing.test.d.ts.map +1 -0
- package/dist/cost/pricing.test.js +195 -0
- package/dist/cost/pricing.test.js.map +1 -0
- package/dist/cost/tracker.d.ts +100 -0
- package/dist/cost/tracker.d.ts.map +1 -0
- package/dist/cost/tracker.js +366 -0
- package/dist/cost/tracker.js.map +1 -0
- package/dist/cost/tracker.test.d.ts +5 -0
- package/dist/cost/tracker.test.d.ts.map +1 -0
- package/dist/cost/tracker.test.js +360 -0
- package/dist/cost/tracker.test.js.map +1 -0
- package/dist/cost/types.d.ts +135 -0
- package/dist/cost/types.d.ts.map +1 -0
- package/dist/cost/types.js +9 -0
- package/dist/cost/types.js.map +1 -0
- package/dist/enterprise/auth/oidc.d.ts +231 -0
- package/dist/enterprise/auth/oidc.d.ts.map +1 -0
- package/dist/enterprise/auth/oidc.js +372 -0
- package/dist/enterprise/auth/oidc.js.map +1 -0
- package/dist/enterprise/auth/oidc.test.d.ts +5 -0
- package/dist/enterprise/auth/oidc.test.d.ts.map +1 -0
- package/dist/enterprise/auth/oidc.test.js +435 -0
- package/dist/enterprise/auth/oidc.test.js.map +1 -0
- package/dist/enterprise/index.d.ts +14 -0
- package/dist/enterprise/index.d.ts.map +1 -0
- package/dist/enterprise/index.js +19 -0
- package/dist/enterprise/index.js.map +1 -0
- package/dist/enterprise/integrations/chat.d.ts +205 -0
- package/dist/enterprise/integrations/chat.d.ts.map +1 -0
- package/dist/enterprise/integrations/chat.js +624 -0
- package/dist/enterprise/integrations/chat.js.map +1 -0
- package/dist/enterprise/integrations/chat.test.d.ts +5 -0
- package/dist/enterprise/integrations/chat.test.d.ts.map +1 -0
- package/dist/enterprise/integrations/chat.test.js +557 -0
- package/dist/enterprise/integrations/chat.test.js.map +1 -0
- package/dist/enterprise/integrations/ticketing.d.ts +257 -0
- package/dist/enterprise/integrations/ticketing.d.ts.map +1 -0
- package/dist/enterprise/integrations/ticketing.js +548 -0
- package/dist/enterprise/integrations/ticketing.js.map +1 -0
- package/dist/enterprise/integrations/ticketing.test.d.ts +5 -0
- package/dist/enterprise/integrations/ticketing.test.d.ts.map +1 -0
- package/dist/enterprise/integrations/ticketing.test.js +693 -0
- package/dist/enterprise/integrations/ticketing.test.js.map +1 -0
- package/dist/enterprise/policy/opa.d.ts +194 -0
- package/dist/enterprise/policy/opa.d.ts.map +1 -0
- package/dist/enterprise/policy/opa.js +385 -0
- package/dist/enterprise/policy/opa.js.map +1 -0
- package/dist/enterprise/policy/opa.test.d.ts +5 -0
- package/dist/enterprise/policy/opa.test.d.ts.map +1 -0
- package/dist/enterprise/policy/opa.test.js +702 -0
- package/dist/enterprise/policy/opa.test.js.map +1 -0
- package/dist/enterprise/signing/kms.d.ts +211 -0
- package/dist/enterprise/signing/kms.d.ts.map +1 -0
- package/dist/enterprise/signing/kms.js +480 -0
- package/dist/enterprise/signing/kms.js.map +1 -0
- package/dist/enterprise/signing/kms.test.d.ts +5 -0
- package/dist/enterprise/signing/kms.test.d.ts.map +1 -0
- package/dist/enterprise/signing/kms.test.js +511 -0
- package/dist/enterprise/signing/kms.test.js.map +1 -0
- package/dist/eval/fixtures.d.ts +58 -0
- package/dist/eval/fixtures.d.ts.map +1 -0
- package/dist/eval/fixtures.js +571 -0
- package/dist/eval/fixtures.js.map +1 -0
- package/dist/eval/fixtures.test.d.ts +5 -0
- package/dist/eval/fixtures.test.d.ts.map +1 -0
- package/dist/eval/fixtures.test.js +193 -0
- package/dist/eval/fixtures.test.js.map +1 -0
- package/dist/eval/harness.d.ts +30 -0
- package/dist/eval/harness.d.ts.map +1 -0
- package/dist/eval/harness.js +221 -0
- package/dist/eval/harness.js.map +1 -0
- package/dist/eval/harness.test.d.ts +5 -0
- package/dist/eval/harness.test.d.ts.map +1 -0
- package/dist/eval/harness.test.js +314 -0
- package/dist/eval/harness.test.js.map +1 -0
- package/dist/eval/index.d.ts +15 -0
- package/dist/eval/index.d.ts.map +1 -0
- package/dist/eval/index.js +18 -0
- package/dist/eval/index.js.map +1 -0
- package/dist/eval/metrics.d.ts +56 -0
- package/dist/eval/metrics.d.ts.map +1 -0
- package/dist/eval/metrics.js +298 -0
- package/dist/eval/metrics.js.map +1 -0
- package/dist/eval/metrics.test.d.ts +5 -0
- package/dist/eval/metrics.test.d.ts.map +1 -0
- package/dist/eval/metrics.test.js +426 -0
- package/dist/eval/metrics.test.js.map +1 -0
- package/dist/eval/report.d.ts +30 -0
- package/dist/eval/report.d.ts.map +1 -0
- package/dist/eval/report.js +333 -0
- package/dist/eval/report.js.map +1 -0
- package/dist/eval/report.test.d.ts +5 -0
- package/dist/eval/report.test.d.ts.map +1 -0
- package/dist/eval/report.test.js +275 -0
- package/dist/eval/report.test.js.map +1 -0
- package/dist/eval/types.d.ts +234 -0
- package/dist/eval/types.d.ts.map +1 -0
- package/dist/eval/types.js +27 -0
- package/dist/eval/types.js.map +1 -0
- package/dist/http-server.d.ts +3 -0
- package/dist/http-server.d.ts.map +1 -0
- package/dist/http-server.js +127 -0
- package/dist/http-server.js.map +1 -0
- package/dist/index.d.ts +33 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +4120 -0
- package/dist/index.js.map +1 -0
- package/dist/logger.d.ts +46 -0
- package/dist/logger.d.ts.map +1 -0
- package/dist/logger.js +131 -0
- package/dist/logger.js.map +1 -0
- package/dist/multimodel/consensus.d.ts +49 -0
- package/dist/multimodel/consensus.d.ts.map +1 -0
- package/dist/multimodel/consensus.js +454 -0
- package/dist/multimodel/consensus.js.map +1 -0
- package/dist/multimodel/consensus.test.d.ts +5 -0
- package/dist/multimodel/consensus.test.d.ts.map +1 -0
- package/dist/multimodel/consensus.test.js +415 -0
- package/dist/multimodel/consensus.test.js.map +1 -0
- package/dist/multimodel/index.d.ts +13 -0
- package/dist/multimodel/index.d.ts.map +1 -0
- package/dist/multimodel/index.js +14 -0
- package/dist/multimodel/index.js.map +1 -0
- package/dist/multimodel/runner.d.ts +95 -0
- package/dist/multimodel/runner.d.ts.map +1 -0
- package/dist/multimodel/runner.js +312 -0
- package/dist/multimodel/runner.js.map +1 -0
- package/dist/multimodel/runner.test.d.ts +5 -0
- package/dist/multimodel/runner.test.d.ts.map +1 -0
- package/dist/multimodel/runner.test.js +224 -0
- package/dist/multimodel/runner.test.js.map +1 -0
- package/dist/multimodel/types.d.ts +202 -0
- package/dist/multimodel/types.d.ts.map +1 -0
- package/dist/multimodel/types.js +10 -0
- package/dist/multimodel/types.js.map +1 -0
- package/dist/observability/index.d.ts +9 -0
- package/dist/observability/index.d.ts.map +1 -0
- package/dist/observability/index.js +9 -0
- package/dist/observability/index.js.map +1 -0
- package/dist/observability/otel.d.ts +102 -0
- package/dist/observability/otel.d.ts.map +1 -0
- package/dist/observability/otel.js +284 -0
- package/dist/observability/otel.js.map +1 -0
- package/dist/plugins/index.d.ts +10 -0
- package/dist/plugins/index.d.ts.map +1 -0
- package/dist/plugins/index.js +10 -0
- package/dist/plugins/index.js.map +1 -0
- package/dist/plugins/loader.d.ts +78 -0
- package/dist/plugins/loader.d.ts.map +1 -0
- package/dist/plugins/loader.js +470 -0
- package/dist/plugins/loader.js.map +1 -0
- package/dist/plugins/types.d.ts +304 -0
- package/dist/plugins/types.d.ts.map +1 -0
- package/dist/plugins/types.js +100 -0
- package/dist/plugins/types.js.map +1 -0
- package/dist/sbom/cyclonedx.d.ts +30 -0
- package/dist/sbom/cyclonedx.d.ts.map +1 -0
- package/dist/sbom/cyclonedx.js +392 -0
- package/dist/sbom/cyclonedx.js.map +1 -0
- package/dist/sbom/cyclonedx.test.d.ts +5 -0
- package/dist/sbom/cyclonedx.test.d.ts.map +1 -0
- package/dist/sbom/cyclonedx.test.js +244 -0
- package/dist/sbom/cyclonedx.test.js.map +1 -0
- package/dist/sbom/index.d.ts +13 -0
- package/dist/sbom/index.d.ts.map +1 -0
- package/dist/sbom/index.js +15 -0
- package/dist/sbom/index.js.map +1 -0
- package/dist/sbom/provenance.d.ts +37 -0
- package/dist/sbom/provenance.d.ts.map +1 -0
- package/dist/sbom/provenance.js +268 -0
- package/dist/sbom/provenance.js.map +1 -0
- package/dist/sbom/provenance.test.d.ts +5 -0
- package/dist/sbom/provenance.test.d.ts.map +1 -0
- package/dist/sbom/provenance.test.js +189 -0
- package/dist/sbom/provenance.test.js.map +1 -0
- package/dist/sbom/signing.d.ts +87 -0
- package/dist/sbom/signing.d.ts.map +1 -0
- package/dist/sbom/signing.js +354 -0
- package/dist/sbom/signing.js.map +1 -0
- package/dist/sbom/signing.test.d.ts +5 -0
- package/dist/sbom/signing.test.d.ts.map +1 -0
- package/dist/sbom/signing.test.js +170 -0
- package/dist/sbom/signing.test.js.map +1 -0
- package/dist/sbom/types.d.ts +384 -0
- package/dist/sbom/types.d.ts.map +1 -0
- package/dist/sbom/types.js +17 -0
- package/dist/sbom/types.js.map +1 -0
- package/dist/scanners/agent/credential-scope-audit.d.ts +40 -0
- package/dist/scanners/agent/credential-scope-audit.d.ts.map +1 -0
- package/dist/scanners/agent/credential-scope-audit.js +404 -0
- package/dist/scanners/agent/credential-scope-audit.js.map +1 -0
- package/dist/scanners/agent/exfil-path-graph.d.ts +50 -0
- package/dist/scanners/agent/exfil-path-graph.d.ts.map +1 -0
- package/dist/scanners/agent/exfil-path-graph.js +764 -0
- package/dist/scanners/agent/exfil-path-graph.js.map +1 -0
- package/dist/scanners/agent/index.d.ts +43 -0
- package/dist/scanners/agent/index.d.ts.map +1 -0
- package/dist/scanners/agent/index.js +616 -0
- package/dist/scanners/agent/index.js.map +1 -0
- package/dist/scanners/agent/manifest-audit.d.ts +43 -0
- package/dist/scanners/agent/manifest-audit.d.ts.map +1 -0
- package/dist/scanners/agent/manifest-audit.js +403 -0
- package/dist/scanners/agent/manifest-audit.js.map +1 -0
- package/dist/scanners/agent/payloads/index.d.ts +44 -0
- package/dist/scanners/agent/payloads/index.d.ts.map +1 -0
- package/dist/scanners/agent/payloads/index.js +184 -0
- package/dist/scanners/agent/payloads/index.js.map +1 -0
- package/dist/scanners/agent/permission-minimiser.d.ts +48 -0
- package/dist/scanners/agent/permission-minimiser.d.ts.map +1 -0
- package/dist/scanners/agent/permission-minimiser.js +551 -0
- package/dist/scanners/agent/permission-minimiser.js.map +1 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.d.ts +39 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.d.ts.map +1 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.js +720 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.js.map +1 -0
- package/dist/scanners/agent/sandbox-audit.d.ts +44 -0
- package/dist/scanners/agent/sandbox-audit.d.ts.map +1 -0
- package/dist/scanners/agent/sandbox-audit.js +425 -0
- package/dist/scanners/agent/sandbox-audit.js.map +1 -0
- package/dist/scanners/agent/supply-chain-mcp.d.ts +53 -0
- package/dist/scanners/agent/supply-chain-mcp.d.ts.map +1 -0
- package/dist/scanners/agent/supply-chain-mcp.js +479 -0
- package/dist/scanners/agent/supply-chain-mcp.js.map +1 -0
- package/dist/scanners/agent/tool-description-drift.d.ts +62 -0
- package/dist/scanners/agent/tool-description-drift.d.ts.map +1 -0
- package/dist/scanners/agent/tool-description-drift.js +365 -0
- package/dist/scanners/agent/tool-description-drift.js.map +1 -0
- package/dist/scanners/agent/types.d.ts +840 -0
- package/dist/scanners/agent/types.d.ts.map +1 -0
- package/dist/scanners/agent/types.js +149 -0
- package/dist/scanners/agent/types.js.map +1 -0
- package/dist/scanners/bandit.d.ts +25 -0
- package/dist/scanners/bandit.d.ts.map +1 -0
- package/dist/scanners/bandit.js +129 -0
- package/dist/scanners/bandit.js.map +1 -0
- package/dist/scanners/binary-analysis.d.ts +41 -0
- package/dist/scanners/binary-analysis.d.ts.map +1 -0
- package/dist/scanners/binary-analysis.js +587 -0
- package/dist/scanners/binary-analysis.js.map +1 -0
- package/dist/scanners/binary-analysis.test.d.ts +5 -0
- package/dist/scanners/binary-analysis.test.d.ts.map +1 -0
- package/dist/scanners/binary-analysis.test.js +291 -0
- package/dist/scanners/binary-analysis.test.js.map +1 -0
- package/dist/scanners/brakeman.d.ts +30 -0
- package/dist/scanners/brakeman.d.ts.map +1 -0
- package/dist/scanners/brakeman.js +271 -0
- package/dist/scanners/brakeman.js.map +1 -0
- package/dist/scanners/dependencies.d.ts +22 -0
- package/dist/scanners/dependencies.d.ts.map +1 -0
- package/dist/scanners/dependencies.js +202 -0
- package/dist/scanners/dependencies.js.map +1 -0
- package/dist/scanners/dependencies.test.d.ts +5 -0
- package/dist/scanners/dependencies.test.d.ts.map +1 -0
- package/dist/scanners/dependencies.test.js +185 -0
- package/dist/scanners/dependencies.test.js.map +1 -0
- package/dist/scanners/eslint.d.ts +25 -0
- package/dist/scanners/eslint.d.ts.map +1 -0
- package/dist/scanners/eslint.js +220 -0
- package/dist/scanners/eslint.js.map +1 -0
- package/dist/scanners/gosec.d.ts +25 -0
- package/dist/scanners/gosec.d.ts.map +1 -0
- package/dist/scanners/gosec.js +128 -0
- package/dist/scanners/gosec.js.map +1 -0
- package/dist/scanners/index.d.ts +128 -0
- package/dist/scanners/index.d.ts.map +1 -0
- package/dist/scanners/index.js +811 -0
- package/dist/scanners/index.js.map +1 -0
- package/dist/scanners/index.test.d.ts +5 -0
- package/dist/scanners/index.test.d.ts.map +1 -0
- package/dist/scanners/index.test.js +424 -0
- package/dist/scanners/index.test.js.map +1 -0
- package/dist/scanners/memory-safety.d.ts +44 -0
- package/dist/scanners/memory-safety.d.ts.map +1 -0
- package/dist/scanners/memory-safety.js +571 -0
- package/dist/scanners/memory-safety.js.map +1 -0
- package/dist/scanners/memory-safety.test.d.ts +5 -0
- package/dist/scanners/memory-safety.test.d.ts.map +1 -0
- package/dist/scanners/memory-safety.test.js +321 -0
- package/dist/scanners/memory-safety.test.js.map +1 -0
- package/dist/scanners/race-condition.d.ts +25 -0
- package/dist/scanners/race-condition.d.ts.map +1 -0
- package/dist/scanners/race-condition.js +443 -0
- package/dist/scanners/race-condition.js.map +1 -0
- package/dist/scanners/race-condition.test.d.ts +5 -0
- package/dist/scanners/race-condition.test.d.ts.map +1 -0
- package/dist/scanners/race-condition.test.js +428 -0
- package/dist/scanners/race-condition.test.js.map +1 -0
- package/dist/scanners/secrets.d.ts +25 -0
- package/dist/scanners/secrets.d.ts.map +1 -0
- package/dist/scanners/secrets.js +367 -0
- package/dist/scanners/secrets.js.map +1 -0
- package/dist/scanners/secrets.test.d.ts +5 -0
- package/dist/scanners/secrets.test.d.ts.map +1 -0
- package/dist/scanners/secrets.test.js +160 -0
- package/dist/scanners/secrets.test.js.map +1 -0
- package/dist/scanners/semgrep.d.ts +33 -0
- package/dist/scanners/semgrep.d.ts.map +1 -0
- package/dist/scanners/semgrep.js +350 -0
- package/dist/scanners/semgrep.js.map +1 -0
- package/dist/scanners/semgrep.test.d.ts +8 -0
- package/dist/scanners/semgrep.test.d.ts.map +1 -0
- package/dist/scanners/semgrep.test.js +254 -0
- package/dist/scanners/semgrep.test.js.map +1 -0
- package/dist/scanners/trivy.d.ts +26 -0
- package/dist/scanners/trivy.d.ts.map +1 -0
- package/dist/scanners/trivy.js +187 -0
- package/dist/scanners/trivy.js.map +1 -0
- package/dist/scanners/types.d.ts +210 -0
- package/dist/scanners/types.d.ts.map +1 -0
- package/dist/scanners/types.js +106 -0
- package/dist/scanners/types.js.map +1 -0
- package/dist/scanners/types.test.d.ts +5 -0
- package/dist/scanners/types.test.d.ts.map +1 -0
- package/dist/scanners/types.test.js +103 -0
- package/dist/scanners/types.test.js.map +1 -0
- package/dist/scanners/typescript.d.ts +32 -0
- package/dist/scanners/typescript.d.ts.map +1 -0
- package/dist/scanners/typescript.js +300 -0
- package/dist/scanners/typescript.js.map +1 -0
- package/dist/scanners/typescript.test.d.ts +5 -0
- package/dist/scanners/typescript.test.d.ts.map +1 -0
- package/dist/scanners/typescript.test.js +296 -0
- package/dist/scanners/typescript.test.js.map +1 -0
- package/dist/transcripts/index.d.ts +13 -0
- package/dist/transcripts/index.d.ts.map +1 -0
- package/dist/transcripts/index.js +17 -0
- package/dist/transcripts/index.js.map +1 -0
- package/dist/transcripts/logger.d.ts +190 -0
- package/dist/transcripts/logger.d.ts.map +1 -0
- package/dist/transcripts/logger.js +385 -0
- package/dist/transcripts/logger.js.map +1 -0
- package/dist/transcripts/logger.test.d.ts +5 -0
- package/dist/transcripts/logger.test.d.ts.map +1 -0
- package/dist/transcripts/logger.test.js +227 -0
- package/dist/transcripts/logger.test.js.map +1 -0
- package/dist/transcripts/redaction.d.ts +125 -0
- package/dist/transcripts/redaction.d.ts.map +1 -0
- package/dist/transcripts/redaction.js +416 -0
- package/dist/transcripts/redaction.js.map +1 -0
- package/dist/transcripts/redaction.test.d.ts +5 -0
- package/dist/transcripts/redaction.test.d.ts.map +1 -0
- package/dist/transcripts/redaction.test.js +267 -0
- package/dist/transcripts/redaction.test.js.map +1 -0
- package/dist/transcripts/signing.d.ts +108 -0
- package/dist/transcripts/signing.d.ts.map +1 -0
- package/dist/transcripts/signing.js +173 -0
- package/dist/transcripts/signing.js.map +1 -0
- package/dist/transcripts/verifier.d.ts +133 -0
- package/dist/transcripts/verifier.d.ts.map +1 -0
- package/dist/transcripts/verifier.js +489 -0
- package/dist/transcripts/verifier.js.map +1 -0
- package/dist/transcripts/verifier.test.d.ts +5 -0
- package/dist/transcripts/verifier.test.d.ts.map +1 -0
- package/dist/transcripts/verifier.test.js +330 -0
- package/dist/transcripts/verifier.test.js.map +1 -0
- package/dist/util/concurrency.d.ts +221 -0
- package/dist/util/concurrency.d.ts.map +1 -0
- package/dist/util/concurrency.js +339 -0
- package/dist/util/concurrency.js.map +1 -0
- package/dist/util/index.d.ts +12 -0
- package/dist/util/index.d.ts.map +1 -0
- package/dist/util/index.js +12 -0
- package/dist/util/index.js.map +1 -0
- package/dist/util/json.d.ts +63 -0
- package/dist/util/json.d.ts.map +1 -0
- package/dist/util/json.js +134 -0
- package/dist/util/json.js.map +1 -0
- package/dist/util/paths.d.ts +56 -0
- package/dist/util/paths.d.ts.map +1 -0
- package/dist/util/paths.js +128 -0
- package/dist/util/paths.js.map +1 -0
- package/dist/util/retry.d.ts +185 -0
- package/dist/util/retry.d.ts.map +1 -0
- package/dist/util/retry.js +338 -0
- package/dist/util/retry.js.map +1 -0
- package/package.json +79 -0
|
@@ -0,0 +1,30 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* ISO 27001:2022 Annex A Controls
|
|
3
|
+
*
|
|
4
|
+
* ISO 27001 controls mapped to security finding categories.
|
|
5
|
+
* Based on ISO/IEC 27001:2022 Annex A.
|
|
6
|
+
*
|
|
7
|
+
* @module compliance/iso27001
|
|
8
|
+
*/
|
|
9
|
+
import type { ComplianceControl } from "./types.js";
|
|
10
|
+
/**
|
|
11
|
+
* ISO 27001 Annex A Controls relevant to code security
|
|
12
|
+
*/
|
|
13
|
+
export declare const ISO27001_CONTROLS: ComplianceControl[];
|
|
14
|
+
/**
|
|
15
|
+
* Get all ISO 27001 controls
|
|
16
|
+
*/
|
|
17
|
+
export declare function getISO27001Controls(): ComplianceControl[];
|
|
18
|
+
/**
|
|
19
|
+
* Get ISO 27001 controls by category
|
|
20
|
+
*/
|
|
21
|
+
export declare function getISO27001ControlsByCategory(category: string): ComplianceControl[];
|
|
22
|
+
/**
|
|
23
|
+
* Get ISO 27001 control by ID
|
|
24
|
+
*/
|
|
25
|
+
export declare function getISO27001ControlById(id: string): ComplianceControl | undefined;
|
|
26
|
+
/**
|
|
27
|
+
* Get ISO 27001 categories
|
|
28
|
+
*/
|
|
29
|
+
export declare function getISO27001Categories(): string[];
|
|
30
|
+
//# sourceMappingURL=iso27001.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"iso27001.d.ts","sourceRoot":"","sources":["../../src/compliance/iso27001.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAEpD;;GAEG;AACH,eAAO,MAAM,iBAAiB,EAAE,iBAAiB,EAmUhD,CAAC;AAEF;;GAEG;AACH,wBAAgB,mBAAmB,IAAI,iBAAiB,EAAE,CAEzD;AAED;;GAEG;AACH,wBAAgB,6BAA6B,CAAC,QAAQ,EAAE,MAAM,GAAG,iBAAiB,EAAE,CAEnF;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,EAAE,EAAE,MAAM,GAAG,iBAAiB,GAAG,SAAS,CAEhF;AAED;;GAEG;AACH,wBAAgB,qBAAqB,IAAI,MAAM,EAAE,CAEhD"}
|
|
@@ -0,0 +1,332 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* ISO 27001:2022 Annex A Controls
|
|
3
|
+
*
|
|
4
|
+
* ISO 27001 controls mapped to security finding categories.
|
|
5
|
+
* Based on ISO/IEC 27001:2022 Annex A.
|
|
6
|
+
*
|
|
7
|
+
* @module compliance/iso27001
|
|
8
|
+
*/
|
|
9
|
+
/**
|
|
10
|
+
* ISO 27001 Annex A Controls relevant to code security
|
|
11
|
+
*/
|
|
12
|
+
export const ISO27001_CONTROLS = [
|
|
13
|
+
// A.5 Organizational Controls
|
|
14
|
+
{
|
|
15
|
+
id: "A.5.1",
|
|
16
|
+
framework: "ISO27001",
|
|
17
|
+
category: "Organizational Controls",
|
|
18
|
+
title: "Policies for Information Security",
|
|
19
|
+
description: "Information security policy and topic-specific policies shall be defined, approved by management, published, communicated to and acknowledged by relevant personnel.",
|
|
20
|
+
keywords: ["policy", "security policy", "guidelines"],
|
|
21
|
+
findingCategories: ["security-misconfiguration"],
|
|
22
|
+
severityThreshold: "low",
|
|
23
|
+
},
|
|
24
|
+
{
|
|
25
|
+
id: "A.5.7",
|
|
26
|
+
framework: "ISO27001",
|
|
27
|
+
category: "Organizational Controls",
|
|
28
|
+
title: "Threat Intelligence",
|
|
29
|
+
description: "Information relating to information security threats shall be collected and analyzed to produce threat intelligence.",
|
|
30
|
+
keywords: ["threat intelligence", "vulnerability", "CVE", "security advisory"],
|
|
31
|
+
findingCategories: ["dependency-vuln"],
|
|
32
|
+
cweIds: ["CWE-1035"],
|
|
33
|
+
severityThreshold: "medium",
|
|
34
|
+
},
|
|
35
|
+
// A.8 Technological Controls
|
|
36
|
+
{
|
|
37
|
+
id: "A.8.2",
|
|
38
|
+
framework: "ISO27001",
|
|
39
|
+
category: "Technological Controls",
|
|
40
|
+
title: "Privileged Access Rights",
|
|
41
|
+
description: "The allocation and use of privileged access rights shall be restricted and managed.",
|
|
42
|
+
keywords: ["privileged access", "admin", "root", "sudo", "elevation"],
|
|
43
|
+
findingCategories: ["auth-bypass", "broken-access-control"],
|
|
44
|
+
cweIds: ["CWE-250", "CWE-269"],
|
|
45
|
+
severityThreshold: "high",
|
|
46
|
+
},
|
|
47
|
+
{
|
|
48
|
+
id: "A.8.3",
|
|
49
|
+
framework: "ISO27001",
|
|
50
|
+
category: "Technological Controls",
|
|
51
|
+
title: "Information Access Restriction",
|
|
52
|
+
description: "Access to information and other associated assets shall be restricted in accordance with the established topic-specific policy on access control.",
|
|
53
|
+
keywords: ["access control", "authorization", "permissions"],
|
|
54
|
+
findingCategories: ["broken-access-control", "auth-bypass", "rls-bypass"],
|
|
55
|
+
cweIds: ["CWE-862", "CWE-863"],
|
|
56
|
+
severityThreshold: "high",
|
|
57
|
+
},
|
|
58
|
+
{
|
|
59
|
+
id: "A.8.4",
|
|
60
|
+
framework: "ISO27001",
|
|
61
|
+
category: "Technological Controls",
|
|
62
|
+
title: "Access to Source Code",
|
|
63
|
+
description: "Read and write access to source code, development tools and software libraries shall be appropriately managed.",
|
|
64
|
+
keywords: ["source code", "repository", "git", "version control"],
|
|
65
|
+
findingCategories: ["secrets"],
|
|
66
|
+
cweIds: ["CWE-798"],
|
|
67
|
+
severityThreshold: "high",
|
|
68
|
+
},
|
|
69
|
+
{
|
|
70
|
+
id: "A.8.5",
|
|
71
|
+
framework: "ISO27001",
|
|
72
|
+
category: "Technological Controls",
|
|
73
|
+
title: "Secure Authentication",
|
|
74
|
+
description: "Secure authentication technologies and procedures shall be implemented based on information access restrictions and the topic-specific policy on access control.",
|
|
75
|
+
keywords: ["authentication", "login", "password", "MFA", "2FA"],
|
|
76
|
+
findingCategories: ["auth-bypass", "weak-password"],
|
|
77
|
+
cweIds: ["CWE-287", "CWE-521"],
|
|
78
|
+
severityThreshold: "high",
|
|
79
|
+
},
|
|
80
|
+
{
|
|
81
|
+
id: "A.8.6",
|
|
82
|
+
framework: "ISO27001",
|
|
83
|
+
category: "Technological Controls",
|
|
84
|
+
title: "Capacity Management",
|
|
85
|
+
description: "The use of resources shall be monitored and adjusted in line with current and expected capacity requirements.",
|
|
86
|
+
keywords: ["capacity", "resource", "performance", "DoS"],
|
|
87
|
+
findingCategories: ["resource-exhaustion", "denial-of-service"],
|
|
88
|
+
cweIds: ["CWE-400", "CWE-770"],
|
|
89
|
+
severityThreshold: "medium",
|
|
90
|
+
},
|
|
91
|
+
{
|
|
92
|
+
id: "A.8.7",
|
|
93
|
+
framework: "ISO27001",
|
|
94
|
+
category: "Technological Controls",
|
|
95
|
+
title: "Protection Against Malware",
|
|
96
|
+
description: "Protection against malware shall be implemented and supported by appropriate user awareness.",
|
|
97
|
+
keywords: ["malware", "virus", "injection", "XSS"],
|
|
98
|
+
findingCategories: ["xss", "sql-injection", "command-injection", "code-injection"],
|
|
99
|
+
cweIds: ["CWE-79", "CWE-89", "CWE-78", "CWE-94"],
|
|
100
|
+
severityThreshold: "high",
|
|
101
|
+
},
|
|
102
|
+
{
|
|
103
|
+
id: "A.8.8",
|
|
104
|
+
framework: "ISO27001",
|
|
105
|
+
category: "Technological Controls",
|
|
106
|
+
title: "Management of Technical Vulnerabilities",
|
|
107
|
+
description: "Information about technical vulnerabilities of information systems in use shall be obtained, the organization's exposure to such vulnerabilities shall be evaluated and appropriate measures shall be taken.",
|
|
108
|
+
keywords: ["vulnerability", "patch", "CVE", "security update"],
|
|
109
|
+
findingCategories: ["dependency-vuln"],
|
|
110
|
+
cweIds: ["CWE-1035"],
|
|
111
|
+
severityThreshold: "medium",
|
|
112
|
+
},
|
|
113
|
+
{
|
|
114
|
+
id: "A.8.9",
|
|
115
|
+
framework: "ISO27001",
|
|
116
|
+
category: "Technological Controls",
|
|
117
|
+
title: "Configuration Management",
|
|
118
|
+
description: "Configurations, including security configurations, of hardware, software, services and networks shall be established, documented, implemented, monitored and reviewed.",
|
|
119
|
+
keywords: ["configuration", "hardening", "baseline", "settings"],
|
|
120
|
+
findingCategories: ["security-misconfiguration"],
|
|
121
|
+
cweIds: ["CWE-16", "CWE-1188"],
|
|
122
|
+
severityThreshold: "medium",
|
|
123
|
+
},
|
|
124
|
+
{
|
|
125
|
+
id: "A.8.10",
|
|
126
|
+
framework: "ISO27001",
|
|
127
|
+
category: "Technological Controls",
|
|
128
|
+
title: "Information Deletion",
|
|
129
|
+
description: "Information stored in information systems, devices or in any other storage media shall be deleted when no longer required.",
|
|
130
|
+
keywords: ["data deletion", "secure delete", "data retention"],
|
|
131
|
+
findingCategories: ["data-exposure"],
|
|
132
|
+
cweIds: ["CWE-212", "CWE-226"],
|
|
133
|
+
severityThreshold: "medium",
|
|
134
|
+
},
|
|
135
|
+
{
|
|
136
|
+
id: "A.8.11",
|
|
137
|
+
framework: "ISO27001",
|
|
138
|
+
category: "Technological Controls",
|
|
139
|
+
title: "Data Masking",
|
|
140
|
+
description: "Data masking shall be used in accordance with the organization's topic-specific policy on access control and other related topic-specific policies, and business requirements, taking applicable legislation into consideration.",
|
|
141
|
+
keywords: ["data masking", "anonymization", "PII", "sensitive data"],
|
|
142
|
+
findingCategories: ["data-exposure", "secrets"],
|
|
143
|
+
cweIds: ["CWE-200", "CWE-359"],
|
|
144
|
+
severityThreshold: "medium",
|
|
145
|
+
},
|
|
146
|
+
{
|
|
147
|
+
id: "A.8.12",
|
|
148
|
+
framework: "ISO27001",
|
|
149
|
+
category: "Technological Controls",
|
|
150
|
+
title: "Data Leakage Prevention",
|
|
151
|
+
description: "Data leakage prevention measures shall be applied to systems, networks and any other devices that process, store or transmit sensitive information.",
|
|
152
|
+
keywords: ["DLP", "data leakage", "exfiltration", "sensitive data"],
|
|
153
|
+
findingCategories: ["data-exposure", "secrets", "ssrf"],
|
|
154
|
+
cweIds: ["CWE-200", "CWE-918"],
|
|
155
|
+
severityThreshold: "high",
|
|
156
|
+
},
|
|
157
|
+
{
|
|
158
|
+
id: "A.8.15",
|
|
159
|
+
framework: "ISO27001",
|
|
160
|
+
category: "Technological Controls",
|
|
161
|
+
title: "Logging",
|
|
162
|
+
description: "Logs that record activities, exceptions, faults and other relevant events shall be produced, stored, protected and analyzed.",
|
|
163
|
+
keywords: ["logging", "audit", "monitoring", "events"],
|
|
164
|
+
findingCategories: ["insufficient-logging"],
|
|
165
|
+
cweIds: ["CWE-778", "CWE-223"],
|
|
166
|
+
severityThreshold: "medium",
|
|
167
|
+
},
|
|
168
|
+
{
|
|
169
|
+
id: "A.8.16",
|
|
170
|
+
framework: "ISO27001",
|
|
171
|
+
category: "Technological Controls",
|
|
172
|
+
title: "Monitoring Activities",
|
|
173
|
+
description: "Networks, systems and applications shall be monitored for anomalous behavior and appropriate actions taken to evaluate potential information security incidents.",
|
|
174
|
+
keywords: ["monitoring", "anomaly detection", "alerting"],
|
|
175
|
+
findingCategories: ["insufficient-logging"],
|
|
176
|
+
cweIds: ["CWE-778"],
|
|
177
|
+
severityThreshold: "medium",
|
|
178
|
+
},
|
|
179
|
+
{
|
|
180
|
+
id: "A.8.20",
|
|
181
|
+
framework: "ISO27001",
|
|
182
|
+
category: "Technological Controls",
|
|
183
|
+
title: "Networks Security",
|
|
184
|
+
description: "Networks and network devices shall be secured, managed and controlled to protect information in systems and applications.",
|
|
185
|
+
keywords: ["network security", "firewall", "segmentation"],
|
|
186
|
+
findingCategories: ["ssrf", "security-misconfiguration"],
|
|
187
|
+
cweIds: ["CWE-918"],
|
|
188
|
+
severityThreshold: "medium",
|
|
189
|
+
},
|
|
190
|
+
{
|
|
191
|
+
id: "A.8.21",
|
|
192
|
+
framework: "ISO27001",
|
|
193
|
+
category: "Technological Controls",
|
|
194
|
+
title: "Security of Network Services",
|
|
195
|
+
description: "Security mechanisms, service levels and service requirements of network services shall be identified, implemented and monitored.",
|
|
196
|
+
keywords: ["network services", "API security", "service security"],
|
|
197
|
+
findingCategories: ["ssrf", "auth-bypass"],
|
|
198
|
+
cweIds: ["CWE-918", "CWE-287"],
|
|
199
|
+
severityThreshold: "medium",
|
|
200
|
+
},
|
|
201
|
+
{
|
|
202
|
+
id: "A.8.24",
|
|
203
|
+
framework: "ISO27001",
|
|
204
|
+
category: "Technological Controls",
|
|
205
|
+
title: "Use of Cryptography",
|
|
206
|
+
description: "Rules for the effective use of cryptography, including cryptographic key management, shall be defined and implemented.",
|
|
207
|
+
keywords: ["cryptography", "encryption", "keys", "TLS", "SSL"],
|
|
208
|
+
findingCategories: ["insecure-transmission", "weak-crypto"],
|
|
209
|
+
cweIds: ["CWE-327", "CWE-328", "CWE-319"],
|
|
210
|
+
severityThreshold: "high",
|
|
211
|
+
},
|
|
212
|
+
{
|
|
213
|
+
id: "A.8.25",
|
|
214
|
+
framework: "ISO27001",
|
|
215
|
+
category: "Technological Controls",
|
|
216
|
+
title: "Secure Development Life Cycle",
|
|
217
|
+
description: "Rules for the secure development of software and systems shall be established and applied.",
|
|
218
|
+
keywords: ["SDLC", "secure development", "security by design"],
|
|
219
|
+
findingCategories: ["type-safety", "security-misconfiguration"],
|
|
220
|
+
severityThreshold: "medium",
|
|
221
|
+
},
|
|
222
|
+
{
|
|
223
|
+
id: "A.8.26",
|
|
224
|
+
framework: "ISO27001",
|
|
225
|
+
category: "Technological Controls",
|
|
226
|
+
title: "Application Security Requirements",
|
|
227
|
+
description: "Information security requirements shall be identified, specified and approved when developing or acquiring applications.",
|
|
228
|
+
keywords: ["application security", "security requirements", "secure coding"],
|
|
229
|
+
findingCategories: ["sql-injection", "xss", "auth-bypass"],
|
|
230
|
+
cweIds: ["CWE-89", "CWE-79", "CWE-287"],
|
|
231
|
+
severityThreshold: "high",
|
|
232
|
+
},
|
|
233
|
+
{
|
|
234
|
+
id: "A.8.27",
|
|
235
|
+
framework: "ISO27001",
|
|
236
|
+
category: "Technological Controls",
|
|
237
|
+
title: "Secure System Architecture and Engineering Principles",
|
|
238
|
+
description: "Principles for engineering secure systems shall be established, documented, maintained and applied to any information system development activities.",
|
|
239
|
+
keywords: ["architecture", "secure design", "engineering"],
|
|
240
|
+
findingCategories: ["security-misconfiguration", "broken-access-control"],
|
|
241
|
+
severityThreshold: "medium",
|
|
242
|
+
},
|
|
243
|
+
{
|
|
244
|
+
id: "A.8.28",
|
|
245
|
+
framework: "ISO27001",
|
|
246
|
+
category: "Technological Controls",
|
|
247
|
+
title: "Secure Coding",
|
|
248
|
+
description: "Secure coding principles shall be applied to software development.",
|
|
249
|
+
keywords: ["secure coding", "OWASP", "input validation", "output encoding"],
|
|
250
|
+
findingCategories: ["sql-injection", "xss", "command-injection", "path-traversal"],
|
|
251
|
+
cweIds: ["CWE-89", "CWE-79", "CWE-78", "CWE-22"],
|
|
252
|
+
severityThreshold: "high",
|
|
253
|
+
},
|
|
254
|
+
{
|
|
255
|
+
id: "A.8.29",
|
|
256
|
+
framework: "ISO27001",
|
|
257
|
+
category: "Technological Controls",
|
|
258
|
+
title: "Security Testing in Development and Acceptance",
|
|
259
|
+
description: "Security testing processes shall be defined and implemented in the development life cycle.",
|
|
260
|
+
keywords: ["security testing", "SAST", "DAST", "penetration testing"],
|
|
261
|
+
findingCategories: ["type-safety"],
|
|
262
|
+
severityThreshold: "medium",
|
|
263
|
+
},
|
|
264
|
+
{
|
|
265
|
+
id: "A.8.30",
|
|
266
|
+
framework: "ISO27001",
|
|
267
|
+
category: "Technological Controls",
|
|
268
|
+
title: "Outsourced Development",
|
|
269
|
+
description: "The organization shall direct, monitor and review the activities related to outsourced system development.",
|
|
270
|
+
keywords: ["outsourcing", "third-party", "vendor", "contractor"],
|
|
271
|
+
findingCategories: ["dependency-vuln"],
|
|
272
|
+
cweIds: ["CWE-1035"],
|
|
273
|
+
severityThreshold: "medium",
|
|
274
|
+
},
|
|
275
|
+
{
|
|
276
|
+
id: "A.8.31",
|
|
277
|
+
framework: "ISO27001",
|
|
278
|
+
category: "Technological Controls",
|
|
279
|
+
title: "Separation of Development, Test and Production Environments",
|
|
280
|
+
description: "Development, testing and production environments shall be separated and secured.",
|
|
281
|
+
keywords: ["environment separation", "dev", "test", "production"],
|
|
282
|
+
findingCategories: ["secrets", "security-misconfiguration"],
|
|
283
|
+
cweIds: ["CWE-798"],
|
|
284
|
+
severityThreshold: "medium",
|
|
285
|
+
},
|
|
286
|
+
{
|
|
287
|
+
id: "A.8.32",
|
|
288
|
+
framework: "ISO27001",
|
|
289
|
+
category: "Technological Controls",
|
|
290
|
+
title: "Change Management",
|
|
291
|
+
description: "Changes to information processing facilities and information systems shall be subject to change management procedures.",
|
|
292
|
+
keywords: ["change management", "version control", "deployment"],
|
|
293
|
+
findingCategories: ["security-misconfiguration"],
|
|
294
|
+
severityThreshold: "low",
|
|
295
|
+
},
|
|
296
|
+
{
|
|
297
|
+
id: "A.8.33",
|
|
298
|
+
framework: "ISO27001",
|
|
299
|
+
category: "Technological Controls",
|
|
300
|
+
title: "Test Information",
|
|
301
|
+
description: "Test information shall be appropriately selected, protected and managed.",
|
|
302
|
+
keywords: ["test data", "test environment", "data protection"],
|
|
303
|
+
findingCategories: ["secrets", "data-exposure"],
|
|
304
|
+
cweIds: ["CWE-798"],
|
|
305
|
+
severityThreshold: "medium",
|
|
306
|
+
},
|
|
307
|
+
];
|
|
308
|
+
/**
|
|
309
|
+
* Get all ISO 27001 controls
|
|
310
|
+
*/
|
|
311
|
+
export function getISO27001Controls() {
|
|
312
|
+
return ISO27001_CONTROLS;
|
|
313
|
+
}
|
|
314
|
+
/**
|
|
315
|
+
* Get ISO 27001 controls by category
|
|
316
|
+
*/
|
|
317
|
+
export function getISO27001ControlsByCategory(category) {
|
|
318
|
+
return ISO27001_CONTROLS.filter((c) => c.category === category);
|
|
319
|
+
}
|
|
320
|
+
/**
|
|
321
|
+
* Get ISO 27001 control by ID
|
|
322
|
+
*/
|
|
323
|
+
export function getISO27001ControlById(id) {
|
|
324
|
+
return ISO27001_CONTROLS.find((c) => c.id === id);
|
|
325
|
+
}
|
|
326
|
+
/**
|
|
327
|
+
* Get ISO 27001 categories
|
|
328
|
+
*/
|
|
329
|
+
export function getISO27001Categories() {
|
|
330
|
+
return [...new Set(ISO27001_CONTROLS.map((c) => c.category))];
|
|
331
|
+
}
|
|
332
|
+
//# sourceMappingURL=iso27001.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"iso27001.js","sourceRoot":"","sources":["../../src/compliance/iso27001.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH;;GAEG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAwB;IACpD,8BAA8B;IAC9B;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,yBAAyB;QACnC,KAAK,EAAE,mCAAmC;QAC1C,WAAW,EACT,sKAAsK;QACxK,QAAQ,EAAE,CAAC,QAAQ,EAAE,iBAAiB,EAAE,YAAY,CAAC;QACrD,iBAAiB,EAAE,CAAC,2BAA2B,CAAC;QAChD,iBAAiB,EAAE,KAAK;KACzB;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,yBAAyB;QACnC,KAAK,EAAE,qBAAqB;QAC5B,WAAW,EACT,sHAAsH;QACxH,QAAQ,EAAE,CAAC,qBAAqB,EAAE,eAAe,EAAE,KAAK,EAAE,mBAAmB,CAAC;QAC9E,iBAAiB,EAAE,CAAC,iBAAiB,CAAC;QACtC,MAAM,EAAE,CAAC,UAAU,CAAC;QACpB,iBAAiB,EAAE,QAAQ;KAC5B;IAED,6BAA6B;IAC7B;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,0BAA0B;QACjC,WAAW,EACT,qFAAqF;QACvF,QAAQ,EAAE,CAAC,mBAAmB,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,CAAC;QACrE,iBAAiB,EAAE,CAAC,aAAa,EAAE,uBAAuB,CAAC;QAC3D,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,gCAAgC;QACvC,WAAW,EACT,mJAAmJ;QACrJ,QAAQ,EAAE,CAAC,gBAAgB,EAAE,eAAe,EAAE,aAAa,CAAC;QAC5D,iBAAiB,EAAE,CAAC,uBAAuB,EAAE,aAAa,EAAE,YAAY,CAAC;QACzE,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,uBAAuB;QAC9B,WAAW,EACT,gHAAgH;QAClH,QAAQ,EAAE,CAAC,aAAa,EAAE,YAAY,EAAE,KAAK,EAAE,iBAAiB,CAAC;QACjE,iBAAiB,EAAE,CAAC,SAAS,CAAC;QAC9B,MAAM,EAAE,CAAC,SAAS,CAAC;QACnB,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,uBAAuB;QAC9B,WAAW,EACT,kKAAkK;QACpK,QAAQ,EAAE,CAAC,gBAAgB,EAAE,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,KAAK,CAAC;QAC/D,iBAAiB,EAAE,CAAC,aAAa,EAAE,eAAe,CAAC;QACnD,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,qBAAqB;QAC5B,WAAW,EACT,+GAA+G;QACjH,QAAQ,EAAE,CAAC,UAAU,EAAE,UAAU,EAAE,aAAa,EAAE,KAAK,CAAC;QACxD,iBAAiB,EAAE,CAAC,qBAAqB,EAAE,mBAAmB,CAAC;QAC/D,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,4BAA4B;QACnC,WAAW,EACT,8FAA8F;QAChG,QAAQ,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,WAAW,EAAE,KAAK,CAAC;QAClD,iBAAiB,EAAE,CAAC,KAAK,EAAE,eAAe,EAAE,mBAAmB,EAAE,gBAAgB,CAAC;QAClF,MAAM,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,CAAC;QAChD,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,yCAAyC;QAChD,WAAW,EACT,8MAA8M;QAChN,QAAQ,EAAE,CAAC,eAAe,EAAE,OAAO,EAAE,KAAK,EAAE,iBAAiB,CAAC;QAC9D,iBAAiB,EAAE,CAAC,iBAAiB,CAAC;QACtC,MAAM,EAAE,CAAC,UAAU,CAAC;QACpB,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,0BAA0B;QACjC,WAAW,EACT,wKAAwK;QAC1K,QAAQ,EAAE,CAAC,eAAe,EAAE,WAAW,EAAE,UAAU,EAAE,UAAU,CAAC;QAChE,iBAAiB,EAAE,CAAC,2BAA2B,CAAC;QAChD,MAAM,EAAE,CAAC,QAAQ,EAAE,UAAU,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,sBAAsB;QAC7B,WAAW,EACT,4HAA4H;QAC9H,QAAQ,EAAE,CAAC,eAAe,EAAE,eAAe,EAAE,gBAAgB,CAAC;QAC9D,iBAAiB,EAAE,CAAC,eAAe,CAAC;QACpC,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,cAAc;QACrB,WAAW,EACT,kOAAkO;QACpO,QAAQ,EAAE,CAAC,cAAc,EAAE,eAAe,EAAE,KAAK,EAAE,gBAAgB,CAAC;QACpE,iBAAiB,EAAE,CAAC,eAAe,EAAE,SAAS,CAAC;QAC/C,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,yBAAyB;QAChC,WAAW,EACT,qJAAqJ;QACvJ,QAAQ,EAAE,CAAC,KAAK,EAAE,cAAc,EAAE,cAAc,EAAE,gBAAgB,CAAC;QACnE,iBAAiB,EAAE,CAAC,eAAe,EAAE,SAAS,EAAE,MAAM,CAAC;QACvD,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,SAAS;QAChB,WAAW,EACT,8HAA8H;QAChI,QAAQ,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,YAAY,EAAE,QAAQ,CAAC;QACtD,iBAAiB,EAAE,CAAC,sBAAsB,CAAC;QAC3C,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,uBAAuB;QAC9B,WAAW,EACT,kKAAkK;QACpK,QAAQ,EAAE,CAAC,YAAY,EAAE,mBAAmB,EAAE,UAAU,CAAC;QACzD,iBAAiB,EAAE,CAAC,sBAAsB,CAAC;QAC3C,MAAM,EAAE,CAAC,SAAS,CAAC;QACnB,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,mBAAmB;QAC1B,WAAW,EACT,2HAA2H;QAC7H,QAAQ,EAAE,CAAC,kBAAkB,EAAE,UAAU,EAAE,cAAc,CAAC;QAC1D,iBAAiB,EAAE,CAAC,MAAM,EAAE,2BAA2B,CAAC;QACxD,MAAM,EAAE,CAAC,SAAS,CAAC;QACnB,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,8BAA8B;QACrC,WAAW,EACT,kIAAkI;QACpI,QAAQ,EAAE,CAAC,kBAAkB,EAAE,cAAc,EAAE,kBAAkB,CAAC;QAClE,iBAAiB,EAAE,CAAC,MAAM,EAAE,aAAa,CAAC;QAC1C,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,qBAAqB;QAC5B,WAAW,EACT,wHAAwH;QAC1H,QAAQ,EAAE,CAAC,cAAc,EAAE,YAAY,EAAE,MAAM,EAAE,KAAK,EAAE,KAAK,CAAC;QAC9D,iBAAiB,EAAE,CAAC,uBAAuB,EAAE,aAAa,CAAC;QAC3D,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,EAAE,SAAS,CAAC;QACzC,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,+BAA+B;QACtC,WAAW,EACT,4FAA4F;QAC9F,QAAQ,EAAE,CAAC,MAAM,EAAE,oBAAoB,EAAE,oBAAoB,CAAC;QAC9D,iBAAiB,EAAE,CAAC,aAAa,EAAE,2BAA2B,CAAC;QAC/D,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,mCAAmC;QAC1C,WAAW,EACT,0HAA0H;QAC5H,QAAQ,EAAE,CAAC,sBAAsB,EAAE,uBAAuB,EAAE,eAAe,CAAC;QAC5E,iBAAiB,EAAE,CAAC,eAAe,EAAE,KAAK,EAAE,aAAa,CAAC;QAC1D,MAAM,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,SAAS,CAAC;QACvC,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,uDAAuD;QAC9D,WAAW,EACT,sJAAsJ;QACxJ,QAAQ,EAAE,CAAC,cAAc,EAAE,eAAe,EAAE,aAAa,CAAC;QAC1D,iBAAiB,EAAE,CAAC,2BAA2B,EAAE,uBAAuB,CAAC;QACzE,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,eAAe;QACtB,WAAW,EACT,oEAAoE;QACtE,QAAQ,EAAE,CAAC,eAAe,EAAE,OAAO,EAAE,kBAAkB,EAAE,iBAAiB,CAAC;QAC3E,iBAAiB,EAAE,CAAC,eAAe,EAAE,KAAK,EAAE,mBAAmB,EAAE,gBAAgB,CAAC;QAClF,MAAM,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,CAAC;QAChD,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,gDAAgD;QACvD,WAAW,EACT,4FAA4F;QAC9F,QAAQ,EAAE,CAAC,kBAAkB,EAAE,MAAM,EAAE,MAAM,EAAE,qBAAqB,CAAC;QACrE,iBAAiB,EAAE,CAAC,aAAa,CAAC;QAClC,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,wBAAwB;QAC/B,WAAW,EACT,4GAA4G;QAC9G,QAAQ,EAAE,CAAC,aAAa,EAAE,aAAa,EAAE,QAAQ,EAAE,YAAY,CAAC;QAChE,iBAAiB,EAAE,CAAC,iBAAiB,CAAC;QACtC,MAAM,EAAE,CAAC,UAAU,CAAC;QACpB,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,6DAA6D;QACpE,WAAW,EACT,kFAAkF;QACpF,QAAQ,EAAE,CAAC,wBAAwB,EAAE,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC;QACjE,iBAAiB,EAAE,CAAC,SAAS,EAAE,2BAA2B,CAAC;QAC3D,MAAM,EAAE,CAAC,SAAS,CAAC;QACnB,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,mBAAmB;QAC1B,WAAW,EACT,wHAAwH;QAC1H,QAAQ,EAAE,CAAC,mBAAmB,EAAE,iBAAiB,EAAE,YAAY,CAAC;QAChE,iBAAiB,EAAE,CAAC,2BAA2B,CAAC;QAChD,iBAAiB,EAAE,KAAK;KACzB;IACD;QACE,EAAE,EAAE,QAAQ;QACZ,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE,wBAAwB;QAClC,KAAK,EAAE,kBAAkB;QACzB,WAAW,EACT,0EAA0E;QAC5E,QAAQ,EAAE,CAAC,WAAW,EAAE,kBAAkB,EAAE,iBAAiB,CAAC;QAC9D,iBAAiB,EAAE,CAAC,SAAS,EAAE,eAAe,CAAC;QAC/C,MAAM,EAAE,CAAC,SAAS,CAAC;QACnB,iBAAiB,EAAE,QAAQ;KAC5B;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,UAAU,mBAAmB;IACjC,OAAO,iBAAiB,CAAC;AAC3B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,6BAA6B,CAAC,QAAgB;IAC5D,OAAO,iBAAiB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;AAClE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CAAC,EAAU;IAC/C,OAAO,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;AACpD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB;IACnC,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;AAChE,CAAC"}
|
|
@@ -0,0 +1,42 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Compliance Mapper
|
|
3
|
+
*
|
|
4
|
+
* Maps security findings to compliance framework controls.
|
|
5
|
+
*
|
|
6
|
+
* @module compliance/mapper
|
|
7
|
+
*/
|
|
8
|
+
import type { Finding } from "../certification/types.js";
|
|
9
|
+
import type { ComplianceControl, ComplianceFramework, ControlWithFindings, ComplianceStatus, ComplianceReport, ComplianceRecommendation, MultiFrameworkReport } from "./types.js";
|
|
10
|
+
/**
|
|
11
|
+
* Get controls for a framework
|
|
12
|
+
*/
|
|
13
|
+
export declare function getControlsForFramework(framework: ComplianceFramework): ComplianceControl[];
|
|
14
|
+
/**
|
|
15
|
+
* Check if a finding matches a control
|
|
16
|
+
*/
|
|
17
|
+
export declare function findingMatchesControl(finding: Finding, control: ComplianceControl): boolean;
|
|
18
|
+
/**
|
|
19
|
+
* Check if finding severity meets control threshold
|
|
20
|
+
*/
|
|
21
|
+
export declare function meetsSeverityThreshold(finding: Finding, control: ComplianceControl): boolean;
|
|
22
|
+
/**
|
|
23
|
+
* Map findings to controls for a framework
|
|
24
|
+
*/
|
|
25
|
+
export declare function mapFindingsToControls(findings: Finding[], framework: ComplianceFramework): ControlWithFindings[];
|
|
26
|
+
/**
|
|
27
|
+
* Calculate compliance status from control mappings
|
|
28
|
+
*/
|
|
29
|
+
export declare function calculateComplianceStatus(framework: ComplianceFramework, controlMappings: ControlWithFindings[]): ComplianceStatus;
|
|
30
|
+
/**
|
|
31
|
+
* Generate recommendations from control mappings
|
|
32
|
+
*/
|
|
33
|
+
export declare function generateRecommendations(controlMappings: ControlWithFindings[]): ComplianceRecommendation[];
|
|
34
|
+
/**
|
|
35
|
+
* Generate a compliance report for a framework
|
|
36
|
+
*/
|
|
37
|
+
export declare function generateComplianceReport(findings: Finding[], framework: ComplianceFramework, projectPath: string, certificationId?: string): ComplianceReport;
|
|
38
|
+
/**
|
|
39
|
+
* Generate a multi-framework compliance report
|
|
40
|
+
*/
|
|
41
|
+
export declare function generateMultiFrameworkReport(findings: Finding[], frameworks: ComplianceFramework[], projectPath: string, certificationId?: string): MultiFrameworkReport;
|
|
42
|
+
//# sourceMappingURL=mapper.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"mapper.d.ts","sourceRoot":"","sources":["../../src/compliance/mapper.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAY,MAAM,2BAA2B,CAAC;AACnE,OAAO,KAAK,EACV,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACnB,gBAAgB,EAChB,gBAAgB,EAChB,wBAAwB,EACxB,oBAAoB,EACrB,MAAM,YAAY,CAAC;AAqCpB;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,SAAS,EAAE,mBAAmB,GAAG,iBAAiB,EAAE,CA+B3F;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,iBAAiB,GAAG,OAAO,CAoB3F;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,iBAAiB,GAAG,OAAO,CAG5F;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CACnC,QAAQ,EAAE,OAAO,EAAE,EACnB,SAAS,EAAE,mBAAmB,GAC7B,mBAAmB,EAAE,CAoCvB;AAED;;GAEG;AACH,wBAAgB,yBAAyB,CACvC,SAAS,EAAE,mBAAmB,EAC9B,eAAe,EAAE,mBAAmB,EAAE,GACrC,gBAAgB,CAkClB;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CACrC,eAAe,EAAE,mBAAmB,EAAE,GACrC,wBAAwB,EAAE,CA4C5B;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CACtC,QAAQ,EAAE,OAAO,EAAE,EACnB,SAAS,EAAE,mBAAmB,EAC9B,WAAW,EAAE,MAAM,EACnB,eAAe,CAAC,EAAE,MAAM,GACvB,gBAAgB,CA0BlB;AAED;;GAEG;AACH,wBAAgB,4BAA4B,CAC1C,QAAQ,EAAE,OAAO,EAAE,EACnB,UAAU,EAAE,mBAAmB,EAAE,EACjC,WAAW,EAAE,MAAM,EACnB,eAAe,CAAC,EAAE,MAAM,GACvB,oBAAoB,CA+BtB"}
|