vaspera 2.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +184 -0
- package/LICENSE +21 -0
- package/README.md +809 -0
- package/dist/__tests__/integration/certification-flow.test.d.ts +5 -0
- package/dist/__tests__/integration/certification-flow.test.d.ts.map +1 -0
- package/dist/__tests__/integration/certification-flow.test.js +245 -0
- package/dist/__tests__/integration/certification-flow.test.js.map +1 -0
- package/dist/__tests__/integration/commands.test.d.ts +5 -0
- package/dist/__tests__/integration/commands.test.d.ts.map +1 -0
- package/dist/__tests__/integration/commands.test.js +93 -0
- package/dist/__tests__/integration/commands.test.js.map +1 -0
- package/dist/action/diff-mode.d.ts +34 -0
- package/dist/action/diff-mode.d.ts.map +1 -0
- package/dist/action/diff-mode.js +201 -0
- package/dist/action/diff-mode.js.map +1 -0
- package/dist/action/diff-mode.test.d.ts +5 -0
- package/dist/action/diff-mode.test.d.ts.map +1 -0
- package/dist/action/diff-mode.test.js +162 -0
- package/dist/action/diff-mode.test.js.map +1 -0
- package/dist/action/index.d.ts +10 -0
- package/dist/action/index.d.ts.map +1 -0
- package/dist/action/index.js +231 -0
- package/dist/action/index.js.map +1 -0
- package/dist/action/pr-comment.d.ts +30 -0
- package/dist/action/pr-comment.d.ts.map +1 -0
- package/dist/action/pr-comment.js +301 -0
- package/dist/action/pr-comment.js.map +1 -0
- package/dist/action/pr-comment.test.d.ts +5 -0
- package/dist/action/pr-comment.test.d.ts.map +1 -0
- package/dist/action/pr-comment.test.js +189 -0
- package/dist/action/pr-comment.test.js.map +1 -0
- package/dist/action/sarif-upload.d.ts +104 -0
- package/dist/action/sarif-upload.d.ts.map +1 -0
- package/dist/action/sarif-upload.js +188 -0
- package/dist/action/sarif-upload.js.map +1 -0
- package/dist/action/sarif-upload.test.d.ts +5 -0
- package/dist/action/sarif-upload.test.d.ts.map +1 -0
- package/dist/action/sarif-upload.test.js +206 -0
- package/dist/action/sarif-upload.test.js.map +1 -0
- package/dist/action/types.d.ts +104 -0
- package/dist/action/types.d.ts.map +1 -0
- package/dist/action/types.js +33 -0
- package/dist/action/types.js.map +1 -0
- package/dist/action/types.test.d.ts +5 -0
- package/dist/action/types.test.d.ts.map +1 -0
- package/dist/action/types.test.js +79 -0
- package/dist/action/types.test.js.map +1 -0
- package/dist/agents/agent-integrity.d.ts +111 -0
- package/dist/agents/agent-integrity.d.ts.map +1 -0
- package/dist/agents/agent-integrity.js +308 -0
- package/dist/agents/agent-integrity.js.map +1 -0
- package/dist/agents/agent-privacy.d.ts +68 -0
- package/dist/agents/agent-privacy.d.ts.map +1 -0
- package/dist/agents/agent-privacy.js +345 -0
- package/dist/agents/agent-privacy.js.map +1 -0
- package/dist/agents/exploit-chain.d.ts +64 -0
- package/dist/agents/exploit-chain.d.ts.map +1 -0
- package/dist/agents/exploit-chain.js +477 -0
- package/dist/agents/exploit-chain.js.map +1 -0
- package/dist/agents/exploit-chain.test.d.ts +5 -0
- package/dist/agents/exploit-chain.test.d.ts.map +1 -0
- package/dist/agents/exploit-chain.test.js +455 -0
- package/dist/agents/exploit-chain.test.js.map +1 -0
- package/dist/agents/index.d.ts +14 -0
- package/dist/agents/index.d.ts.map +1 -0
- package/dist/agents/index.js +19 -0
- package/dist/agents/index.js.map +1 -0
- package/dist/agents/logic-flaw-detector.d.ts +55 -0
- package/dist/agents/logic-flaw-detector.d.ts.map +1 -0
- package/dist/agents/logic-flaw-detector.js +454 -0
- package/dist/agents/logic-flaw-detector.js.map +1 -0
- package/dist/agents/zero-day-hunter.d.ts +69 -0
- package/dist/agents/zero-day-hunter.d.ts.map +1 -0
- package/dist/agents/zero-day-hunter.js +591 -0
- package/dist/agents/zero-day-hunter.js.map +1 -0
- package/dist/certification/artifacts.d.ts +21 -0
- package/dist/certification/artifacts.d.ts.map +1 -0
- package/dist/certification/artifacts.js +275 -0
- package/dist/certification/artifacts.js.map +1 -0
- package/dist/certification/autofix.d.ts +122 -0
- package/dist/certification/autofix.d.ts.map +1 -0
- package/dist/certification/autofix.js +476 -0
- package/dist/certification/autofix.js.map +1 -0
- package/dist/certification/badge.d.ts +56 -0
- package/dist/certification/badge.d.ts.map +1 -0
- package/dist/certification/badge.js +155 -0
- package/dist/certification/badge.js.map +1 -0
- package/dist/certification/cache.d.ts +121 -0
- package/dist/certification/cache.d.ts.map +1 -0
- package/dist/certification/cache.js +275 -0
- package/dist/certification/cache.js.map +1 -0
- package/dist/certification/cache.test.d.ts +5 -0
- package/dist/certification/cache.test.d.ts.map +1 -0
- package/dist/certification/cache.test.js +270 -0
- package/dist/certification/cache.test.js.map +1 -0
- package/dist/certification/consensus.d.ts +105 -0
- package/dist/certification/consensus.d.ts.map +1 -0
- package/dist/certification/consensus.js +353 -0
- package/dist/certification/consensus.js.map +1 -0
- package/dist/certification/consensus.test.d.ts +5 -0
- package/dist/certification/consensus.test.d.ts.map +1 -0
- package/dist/certification/consensus.test.js +342 -0
- package/dist/certification/consensus.test.js.map +1 -0
- package/dist/certification/index.d.ts +14 -0
- package/dist/certification/index.d.ts.map +1 -0
- package/dist/certification/index.js +14 -0
- package/dist/certification/index.js.map +1 -0
- package/dist/certification/rules.d.ts +89 -0
- package/dist/certification/rules.d.ts.map +1 -0
- package/dist/certification/rules.js +317 -0
- package/dist/certification/rules.js.map +1 -0
- package/dist/certification/sarif.d.ts +107 -0
- package/dist/certification/sarif.d.ts.map +1 -0
- package/dist/certification/sarif.js +191 -0
- package/dist/certification/sarif.js.map +1 -0
- package/dist/certification/store.d.ts +255 -0
- package/dist/certification/store.d.ts.map +1 -0
- package/dist/certification/store.js +835 -0
- package/dist/certification/store.js.map +1 -0
- package/dist/certification/store.test.d.ts +5 -0
- package/dist/certification/store.test.d.ts.map +1 -0
- package/dist/certification/store.test.js +468 -0
- package/dist/certification/store.test.js.map +1 -0
- package/dist/certification/summary.d.ts +72 -0
- package/dist/certification/summary.d.ts.map +1 -0
- package/dist/certification/summary.js +296 -0
- package/dist/certification/summary.js.map +1 -0
- package/dist/certification/types.d.ts +138 -0
- package/dist/certification/types.d.ts.map +1 -0
- package/dist/certification/types.js +34 -0
- package/dist/certification/types.js.map +1 -0
- package/dist/commands/audits/api-check.d.ts +3 -0
- package/dist/commands/audits/api-check.d.ts.map +1 -0
- package/dist/commands/audits/api-check.js +71 -0
- package/dist/commands/audits/api-check.js.map +1 -0
- package/dist/commands/audits/deadcode.d.ts +3 -0
- package/dist/commands/audits/deadcode.d.ts.map +1 -0
- package/dist/commands/audits/deadcode.js +63 -0
- package/dist/commands/audits/deadcode.js.map +1 -0
- package/dist/commands/audits/deps.d.ts +3 -0
- package/dist/commands/audits/deps.d.ts.map +1 -0
- package/dist/commands/audits/deps.js +56 -0
- package/dist/commands/audits/deps.js.map +1 -0
- package/dist/commands/audits/errors.d.ts +3 -0
- package/dist/commands/audits/errors.d.ts.map +1 -0
- package/dist/commands/audits/errors.js +65 -0
- package/dist/commands/audits/errors.js.map +1 -0
- package/dist/commands/audits/index.d.ts +3 -0
- package/dist/commands/audits/index.d.ts.map +1 -0
- package/dist/commands/audits/index.js +15 -0
- package/dist/commands/audits/index.js.map +1 -0
- package/dist/commands/audits/perf.d.ts +3 -0
- package/dist/commands/audits/perf.d.ts.map +1 -0
- package/dist/commands/audits/perf.js +85 -0
- package/dist/commands/audits/perf.js.map +1 -0
- package/dist/commands/audits/secrets.d.ts +3 -0
- package/dist/commands/audits/secrets.d.ts.map +1 -0
- package/dist/commands/audits/secrets.js +71 -0
- package/dist/commands/audits/secrets.js.map +1 -0
- package/dist/commands/certification/certify.d.ts +3 -0
- package/dist/commands/certification/certify.d.ts.map +1 -0
- package/dist/commands/certification/certify.js +108 -0
- package/dist/commands/certification/certify.js.map +1 -0
- package/dist/commands/certification/index.d.ts +3 -0
- package/dist/commands/certification/index.d.ts.map +1 -0
- package/dist/commands/certification/index.js +17 -0
- package/dist/commands/certification/index.js.map +1 -0
- package/dist/commands/certification/performance.d.ts +3 -0
- package/dist/commands/certification/performance.d.ts.map +1 -0
- package/dist/commands/certification/performance.js +89 -0
- package/dist/commands/certification/performance.js.map +1 -0
- package/dist/commands/certification/quality.d.ts +3 -0
- package/dist/commands/certification/quality.d.ts.map +1 -0
- package/dist/commands/certification/quality.js +92 -0
- package/dist/commands/certification/quality.js.map +1 -0
- package/dist/commands/certification/redteam.d.ts +3 -0
- package/dist/commands/certification/redteam.d.ts.map +1 -0
- package/dist/commands/certification/redteam.js +114 -0
- package/dist/commands/certification/redteam.js.map +1 -0
- package/dist/commands/certification/reliability.d.ts +3 -0
- package/dist/commands/certification/reliability.d.ts.map +1 -0
- package/dist/commands/certification/reliability.js +93 -0
- package/dist/commands/certification/reliability.js.map +1 -0
- package/dist/commands/certification/security.d.ts +3 -0
- package/dist/commands/certification/security.d.ts.map +1 -0
- package/dist/commands/certification/security.js +90 -0
- package/dist/commands/certification/security.js.map +1 -0
- package/dist/commands/certification/typesafety.d.ts +3 -0
- package/dist/commands/certification/typesafety.d.ts.map +1 -0
- package/dist/commands/certification/typesafety.js +87 -0
- package/dist/commands/certification/typesafety.js.map +1 -0
- package/dist/commands/core/add-tests.d.ts +3 -0
- package/dist/commands/core/add-tests.d.ts.map +1 -0
- package/dist/commands/core/add-tests.js +29 -0
- package/dist/commands/core/add-tests.js.map +1 -0
- package/dist/commands/core/audit.d.ts +3 -0
- package/dist/commands/core/audit.d.ts.map +1 -0
- package/dist/commands/core/audit.js +64 -0
- package/dist/commands/core/audit.js.map +1 -0
- package/dist/commands/core/fix-critical.d.ts +3 -0
- package/dist/commands/core/fix-critical.d.ts.map +1 -0
- package/dist/commands/core/fix-critical.js +22 -0
- package/dist/commands/core/fix-critical.js.map +1 -0
- package/dist/commands/core/fix-high.d.ts +3 -0
- package/dist/commands/core/fix-high.d.ts.map +1 -0
- package/dist/commands/core/fix-high.js +32 -0
- package/dist/commands/core/fix-high.js.map +1 -0
- package/dist/commands/core/fix-medium.d.ts +3 -0
- package/dist/commands/core/fix-medium.d.ts.map +1 -0
- package/dist/commands/core/fix-medium.js +29 -0
- package/dist/commands/core/fix-medium.js.map +1 -0
- package/dist/commands/core/fix-rls.d.ts +3 -0
- package/dist/commands/core/fix-rls.d.ts.map +1 -0
- package/dist/commands/core/fix-rls.js +17 -0
- package/dist/commands/core/fix-rls.js.map +1 -0
- package/dist/commands/core/harden.d.ts +3 -0
- package/dist/commands/core/harden.d.ts.map +1 -0
- package/dist/commands/core/harden.js +19 -0
- package/dist/commands/core/harden.js.map +1 -0
- package/dist/commands/core/index.d.ts +3 -0
- package/dist/commands/core/index.d.ts.map +1 -0
- package/dist/commands/core/index.js +21 -0
- package/dist/commands/core/index.js.map +1 -0
- package/dist/commands/core/preflight.d.ts +3 -0
- package/dist/commands/core/preflight.d.ts.map +1 -0
- package/dist/commands/core/preflight.js +50 -0
- package/dist/commands/core/preflight.js.map +1 -0
- package/dist/commands/core/verify.d.ts +3 -0
- package/dist/commands/core/verify.d.ts.map +1 -0
- package/dist/commands/core/verify.js +32 -0
- package/dist/commands/core/verify.js.map +1 -0
- package/dist/commands/index.d.ts +28 -0
- package/dist/commands/index.d.ts.map +1 -0
- package/dist/commands/index.js +37 -0
- package/dist/commands/index.js.map +1 -0
- package/dist/commands/types.d.ts +9 -0
- package/dist/commands/types.d.ts.map +1 -0
- package/dist/commands/types.js +5 -0
- package/dist/commands/types.js.map +1 -0
- package/dist/compliance/cis.d.ts +29 -0
- package/dist/compliance/cis.d.ts.map +1 -0
- package/dist/compliance/cis.js +316 -0
- package/dist/compliance/cis.js.map +1 -0
- package/dist/compliance/frameworks/eu-ai-act.d.ts +55 -0
- package/dist/compliance/frameworks/eu-ai-act.d.ts.map +1 -0
- package/dist/compliance/frameworks/eu-ai-act.js +621 -0
- package/dist/compliance/frameworks/eu-ai-act.js.map +1 -0
- package/dist/compliance/frameworks/index.d.ts +67 -0
- package/dist/compliance/frameworks/index.d.ts.map +1 -0
- package/dist/compliance/frameworks/index.js +97 -0
- package/dist/compliance/frameworks/index.js.map +1 -0
- package/dist/compliance/frameworks/iso-42001.d.ts +59 -0
- package/dist/compliance/frameworks/iso-42001.d.ts.map +1 -0
- package/dist/compliance/frameworks/iso-42001.js +719 -0
- package/dist/compliance/frameworks/iso-42001.js.map +1 -0
- package/dist/compliance/frameworks/mitre-atlas.d.ts +58 -0
- package/dist/compliance/frameworks/mitre-atlas.d.ts.map +1 -0
- package/dist/compliance/frameworks/mitre-atlas.js +686 -0
- package/dist/compliance/frameworks/mitre-atlas.js.map +1 -0
- package/dist/compliance/frameworks/nist-ai-rmf.d.ts +51 -0
- package/dist/compliance/frameworks/nist-ai-rmf.d.ts.map +1 -0
- package/dist/compliance/frameworks/nist-ai-rmf.js +677 -0
- package/dist/compliance/frameworks/nist-ai-rmf.js.map +1 -0
- package/dist/compliance/frameworks/owasp-llm.d.ts +58 -0
- package/dist/compliance/frameworks/owasp-llm.d.ts.map +1 -0
- package/dist/compliance/frameworks/owasp-llm.js +399 -0
- package/dist/compliance/frameworks/owasp-llm.js.map +1 -0
- package/dist/compliance/gdpr.d.ts +34 -0
- package/dist/compliance/gdpr.d.ts.map +1 -0
- package/dist/compliance/gdpr.js +319 -0
- package/dist/compliance/gdpr.js.map +1 -0
- package/dist/compliance/hipaa.d.ts +29 -0
- package/dist/compliance/hipaa.d.ts.map +1 -0
- package/dist/compliance/hipaa.js +205 -0
- package/dist/compliance/hipaa.js.map +1 -0
- package/dist/compliance/index.d.ts +18 -0
- package/dist/compliance/index.d.ts.map +1 -0
- package/dist/compliance/index.js +26 -0
- package/dist/compliance/index.js.map +1 -0
- package/dist/compliance/iso27001.d.ts +30 -0
- package/dist/compliance/iso27001.d.ts.map +1 -0
- package/dist/compliance/iso27001.js +332 -0
- package/dist/compliance/iso27001.js.map +1 -0
- package/dist/compliance/mapper.d.ts +42 -0
- package/dist/compliance/mapper.d.ts.map +1 -0
- package/dist/compliance/mapper.js +269 -0
- package/dist/compliance/mapper.js.map +1 -0
- package/dist/compliance/mapper.test.d.ts +5 -0
- package/dist/compliance/mapper.test.d.ts.map +1 -0
- package/dist/compliance/mapper.test.js +360 -0
- package/dist/compliance/mapper.test.js.map +1 -0
- package/dist/compliance/pci-dss.d.ts +29 -0
- package/dist/compliance/pci-dss.d.ts.map +1 -0
- package/dist/compliance/pci-dss.js +247 -0
- package/dist/compliance/pci-dss.js.map +1 -0
- package/dist/compliance/report.d.ts +25 -0
- package/dist/compliance/report.d.ts.map +1 -0
- package/dist/compliance/report.js +254 -0
- package/dist/compliance/report.js.map +1 -0
- package/dist/compliance/report.test.d.ts +5 -0
- package/dist/compliance/report.test.d.ts.map +1 -0
- package/dist/compliance/report.test.js +128 -0
- package/dist/compliance/report.test.js.map +1 -0
- package/dist/compliance/soc2.d.ts +30 -0
- package/dist/compliance/soc2.d.ts.map +1 -0
- package/dist/compliance/soc2.js +262 -0
- package/dist/compliance/soc2.js.map +1 -0
- package/dist/compliance/soc2.test.d.ts +5 -0
- package/dist/compliance/soc2.test.d.ts.map +1 -0
- package/dist/compliance/soc2.test.js +86 -0
- package/dist/compliance/soc2.test.js.map +1 -0
- package/dist/compliance/types.d.ts +125 -0
- package/dist/compliance/types.d.ts.map +1 -0
- package/dist/compliance/types.js +10 -0
- package/dist/compliance/types.js.map +1 -0
- package/dist/config/flags.d.ts +456 -0
- package/dist/config/flags.d.ts.map +1 -0
- package/dist/config/flags.js +464 -0
- package/dist/config/flags.js.map +1 -0
- package/dist/config/index.d.ts +10 -0
- package/dist/config/index.d.ts.map +1 -0
- package/dist/config/index.js +10 -0
- package/dist/config/index.js.map +1 -0
- package/dist/config/severity-overrides.d.ts +209 -0
- package/dist/config/severity-overrides.d.ts.map +1 -0
- package/dist/config/severity-overrides.js +380 -0
- package/dist/config/severity-overrides.js.map +1 -0
- package/dist/cost/index.d.ts +11 -0
- package/dist/cost/index.d.ts.map +1 -0
- package/dist/cost/index.js +12 -0
- package/dist/cost/index.js.map +1 -0
- package/dist/cost/pricing.d.ts +57 -0
- package/dist/cost/pricing.d.ts.map +1 -0
- package/dist/cost/pricing.js +196 -0
- package/dist/cost/pricing.js.map +1 -0
- package/dist/cost/pricing.test.d.ts +5 -0
- package/dist/cost/pricing.test.d.ts.map +1 -0
- package/dist/cost/pricing.test.js +195 -0
- package/dist/cost/pricing.test.js.map +1 -0
- package/dist/cost/tracker.d.ts +100 -0
- package/dist/cost/tracker.d.ts.map +1 -0
- package/dist/cost/tracker.js +366 -0
- package/dist/cost/tracker.js.map +1 -0
- package/dist/cost/tracker.test.d.ts +5 -0
- package/dist/cost/tracker.test.d.ts.map +1 -0
- package/dist/cost/tracker.test.js +360 -0
- package/dist/cost/tracker.test.js.map +1 -0
- package/dist/cost/types.d.ts +135 -0
- package/dist/cost/types.d.ts.map +1 -0
- package/dist/cost/types.js +9 -0
- package/dist/cost/types.js.map +1 -0
- package/dist/enterprise/auth/oidc.d.ts +231 -0
- package/dist/enterprise/auth/oidc.d.ts.map +1 -0
- package/dist/enterprise/auth/oidc.js +372 -0
- package/dist/enterprise/auth/oidc.js.map +1 -0
- package/dist/enterprise/auth/oidc.test.d.ts +5 -0
- package/dist/enterprise/auth/oidc.test.d.ts.map +1 -0
- package/dist/enterprise/auth/oidc.test.js +435 -0
- package/dist/enterprise/auth/oidc.test.js.map +1 -0
- package/dist/enterprise/index.d.ts +14 -0
- package/dist/enterprise/index.d.ts.map +1 -0
- package/dist/enterprise/index.js +19 -0
- package/dist/enterprise/index.js.map +1 -0
- package/dist/enterprise/integrations/chat.d.ts +205 -0
- package/dist/enterprise/integrations/chat.d.ts.map +1 -0
- package/dist/enterprise/integrations/chat.js +624 -0
- package/dist/enterprise/integrations/chat.js.map +1 -0
- package/dist/enterprise/integrations/chat.test.d.ts +5 -0
- package/dist/enterprise/integrations/chat.test.d.ts.map +1 -0
- package/dist/enterprise/integrations/chat.test.js +557 -0
- package/dist/enterprise/integrations/chat.test.js.map +1 -0
- package/dist/enterprise/integrations/ticketing.d.ts +257 -0
- package/dist/enterprise/integrations/ticketing.d.ts.map +1 -0
- package/dist/enterprise/integrations/ticketing.js +548 -0
- package/dist/enterprise/integrations/ticketing.js.map +1 -0
- package/dist/enterprise/integrations/ticketing.test.d.ts +5 -0
- package/dist/enterprise/integrations/ticketing.test.d.ts.map +1 -0
- package/dist/enterprise/integrations/ticketing.test.js +693 -0
- package/dist/enterprise/integrations/ticketing.test.js.map +1 -0
- package/dist/enterprise/policy/opa.d.ts +194 -0
- package/dist/enterprise/policy/opa.d.ts.map +1 -0
- package/dist/enterprise/policy/opa.js +385 -0
- package/dist/enterprise/policy/opa.js.map +1 -0
- package/dist/enterprise/policy/opa.test.d.ts +5 -0
- package/dist/enterprise/policy/opa.test.d.ts.map +1 -0
- package/dist/enterprise/policy/opa.test.js +702 -0
- package/dist/enterprise/policy/opa.test.js.map +1 -0
- package/dist/enterprise/signing/kms.d.ts +211 -0
- package/dist/enterprise/signing/kms.d.ts.map +1 -0
- package/dist/enterprise/signing/kms.js +480 -0
- package/dist/enterprise/signing/kms.js.map +1 -0
- package/dist/enterprise/signing/kms.test.d.ts +5 -0
- package/dist/enterprise/signing/kms.test.d.ts.map +1 -0
- package/dist/enterprise/signing/kms.test.js +511 -0
- package/dist/enterprise/signing/kms.test.js.map +1 -0
- package/dist/eval/fixtures.d.ts +58 -0
- package/dist/eval/fixtures.d.ts.map +1 -0
- package/dist/eval/fixtures.js +571 -0
- package/dist/eval/fixtures.js.map +1 -0
- package/dist/eval/fixtures.test.d.ts +5 -0
- package/dist/eval/fixtures.test.d.ts.map +1 -0
- package/dist/eval/fixtures.test.js +193 -0
- package/dist/eval/fixtures.test.js.map +1 -0
- package/dist/eval/harness.d.ts +30 -0
- package/dist/eval/harness.d.ts.map +1 -0
- package/dist/eval/harness.js +221 -0
- package/dist/eval/harness.js.map +1 -0
- package/dist/eval/harness.test.d.ts +5 -0
- package/dist/eval/harness.test.d.ts.map +1 -0
- package/dist/eval/harness.test.js +314 -0
- package/dist/eval/harness.test.js.map +1 -0
- package/dist/eval/index.d.ts +15 -0
- package/dist/eval/index.d.ts.map +1 -0
- package/dist/eval/index.js +18 -0
- package/dist/eval/index.js.map +1 -0
- package/dist/eval/metrics.d.ts +56 -0
- package/dist/eval/metrics.d.ts.map +1 -0
- package/dist/eval/metrics.js +298 -0
- package/dist/eval/metrics.js.map +1 -0
- package/dist/eval/metrics.test.d.ts +5 -0
- package/dist/eval/metrics.test.d.ts.map +1 -0
- package/dist/eval/metrics.test.js +426 -0
- package/dist/eval/metrics.test.js.map +1 -0
- package/dist/eval/report.d.ts +30 -0
- package/dist/eval/report.d.ts.map +1 -0
- package/dist/eval/report.js +333 -0
- package/dist/eval/report.js.map +1 -0
- package/dist/eval/report.test.d.ts +5 -0
- package/dist/eval/report.test.d.ts.map +1 -0
- package/dist/eval/report.test.js +275 -0
- package/dist/eval/report.test.js.map +1 -0
- package/dist/eval/types.d.ts +234 -0
- package/dist/eval/types.d.ts.map +1 -0
- package/dist/eval/types.js +27 -0
- package/dist/eval/types.js.map +1 -0
- package/dist/http-server.d.ts +3 -0
- package/dist/http-server.d.ts.map +1 -0
- package/dist/http-server.js +127 -0
- package/dist/http-server.js.map +1 -0
- package/dist/index.d.ts +33 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +4120 -0
- package/dist/index.js.map +1 -0
- package/dist/logger.d.ts +46 -0
- package/dist/logger.d.ts.map +1 -0
- package/dist/logger.js +131 -0
- package/dist/logger.js.map +1 -0
- package/dist/multimodel/consensus.d.ts +49 -0
- package/dist/multimodel/consensus.d.ts.map +1 -0
- package/dist/multimodel/consensus.js +454 -0
- package/dist/multimodel/consensus.js.map +1 -0
- package/dist/multimodel/consensus.test.d.ts +5 -0
- package/dist/multimodel/consensus.test.d.ts.map +1 -0
- package/dist/multimodel/consensus.test.js +415 -0
- package/dist/multimodel/consensus.test.js.map +1 -0
- package/dist/multimodel/index.d.ts +13 -0
- package/dist/multimodel/index.d.ts.map +1 -0
- package/dist/multimodel/index.js +14 -0
- package/dist/multimodel/index.js.map +1 -0
- package/dist/multimodel/runner.d.ts +95 -0
- package/dist/multimodel/runner.d.ts.map +1 -0
- package/dist/multimodel/runner.js +312 -0
- package/dist/multimodel/runner.js.map +1 -0
- package/dist/multimodel/runner.test.d.ts +5 -0
- package/dist/multimodel/runner.test.d.ts.map +1 -0
- package/dist/multimodel/runner.test.js +224 -0
- package/dist/multimodel/runner.test.js.map +1 -0
- package/dist/multimodel/types.d.ts +202 -0
- package/dist/multimodel/types.d.ts.map +1 -0
- package/dist/multimodel/types.js +10 -0
- package/dist/multimodel/types.js.map +1 -0
- package/dist/observability/index.d.ts +9 -0
- package/dist/observability/index.d.ts.map +1 -0
- package/dist/observability/index.js +9 -0
- package/dist/observability/index.js.map +1 -0
- package/dist/observability/otel.d.ts +102 -0
- package/dist/observability/otel.d.ts.map +1 -0
- package/dist/observability/otel.js +284 -0
- package/dist/observability/otel.js.map +1 -0
- package/dist/plugins/index.d.ts +10 -0
- package/dist/plugins/index.d.ts.map +1 -0
- package/dist/plugins/index.js +10 -0
- package/dist/plugins/index.js.map +1 -0
- package/dist/plugins/loader.d.ts +78 -0
- package/dist/plugins/loader.d.ts.map +1 -0
- package/dist/plugins/loader.js +470 -0
- package/dist/plugins/loader.js.map +1 -0
- package/dist/plugins/types.d.ts +304 -0
- package/dist/plugins/types.d.ts.map +1 -0
- package/dist/plugins/types.js +100 -0
- package/dist/plugins/types.js.map +1 -0
- package/dist/sbom/cyclonedx.d.ts +30 -0
- package/dist/sbom/cyclonedx.d.ts.map +1 -0
- package/dist/sbom/cyclonedx.js +392 -0
- package/dist/sbom/cyclonedx.js.map +1 -0
- package/dist/sbom/cyclonedx.test.d.ts +5 -0
- package/dist/sbom/cyclonedx.test.d.ts.map +1 -0
- package/dist/sbom/cyclonedx.test.js +244 -0
- package/dist/sbom/cyclonedx.test.js.map +1 -0
- package/dist/sbom/index.d.ts +13 -0
- package/dist/sbom/index.d.ts.map +1 -0
- package/dist/sbom/index.js +15 -0
- package/dist/sbom/index.js.map +1 -0
- package/dist/sbom/provenance.d.ts +37 -0
- package/dist/sbom/provenance.d.ts.map +1 -0
- package/dist/sbom/provenance.js +268 -0
- package/dist/sbom/provenance.js.map +1 -0
- package/dist/sbom/provenance.test.d.ts +5 -0
- package/dist/sbom/provenance.test.d.ts.map +1 -0
- package/dist/sbom/provenance.test.js +189 -0
- package/dist/sbom/provenance.test.js.map +1 -0
- package/dist/sbom/signing.d.ts +87 -0
- package/dist/sbom/signing.d.ts.map +1 -0
- package/dist/sbom/signing.js +354 -0
- package/dist/sbom/signing.js.map +1 -0
- package/dist/sbom/signing.test.d.ts +5 -0
- package/dist/sbom/signing.test.d.ts.map +1 -0
- package/dist/sbom/signing.test.js +170 -0
- package/dist/sbom/signing.test.js.map +1 -0
- package/dist/sbom/types.d.ts +384 -0
- package/dist/sbom/types.d.ts.map +1 -0
- package/dist/sbom/types.js +17 -0
- package/dist/sbom/types.js.map +1 -0
- package/dist/scanners/agent/credential-scope-audit.d.ts +40 -0
- package/dist/scanners/agent/credential-scope-audit.d.ts.map +1 -0
- package/dist/scanners/agent/credential-scope-audit.js +404 -0
- package/dist/scanners/agent/credential-scope-audit.js.map +1 -0
- package/dist/scanners/agent/exfil-path-graph.d.ts +50 -0
- package/dist/scanners/agent/exfil-path-graph.d.ts.map +1 -0
- package/dist/scanners/agent/exfil-path-graph.js +764 -0
- package/dist/scanners/agent/exfil-path-graph.js.map +1 -0
- package/dist/scanners/agent/index.d.ts +43 -0
- package/dist/scanners/agent/index.d.ts.map +1 -0
- package/dist/scanners/agent/index.js +616 -0
- package/dist/scanners/agent/index.js.map +1 -0
- package/dist/scanners/agent/manifest-audit.d.ts +43 -0
- package/dist/scanners/agent/manifest-audit.d.ts.map +1 -0
- package/dist/scanners/agent/manifest-audit.js +403 -0
- package/dist/scanners/agent/manifest-audit.js.map +1 -0
- package/dist/scanners/agent/payloads/index.d.ts +44 -0
- package/dist/scanners/agent/payloads/index.d.ts.map +1 -0
- package/dist/scanners/agent/payloads/index.js +184 -0
- package/dist/scanners/agent/payloads/index.js.map +1 -0
- package/dist/scanners/agent/permission-minimiser.d.ts +48 -0
- package/dist/scanners/agent/permission-minimiser.d.ts.map +1 -0
- package/dist/scanners/agent/permission-minimiser.js +551 -0
- package/dist/scanners/agent/permission-minimiser.js.map +1 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.d.ts +39 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.d.ts.map +1 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.js +720 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.js.map +1 -0
- package/dist/scanners/agent/sandbox-audit.d.ts +44 -0
- package/dist/scanners/agent/sandbox-audit.d.ts.map +1 -0
- package/dist/scanners/agent/sandbox-audit.js +425 -0
- package/dist/scanners/agent/sandbox-audit.js.map +1 -0
- package/dist/scanners/agent/supply-chain-mcp.d.ts +53 -0
- package/dist/scanners/agent/supply-chain-mcp.d.ts.map +1 -0
- package/dist/scanners/agent/supply-chain-mcp.js +479 -0
- package/dist/scanners/agent/supply-chain-mcp.js.map +1 -0
- package/dist/scanners/agent/tool-description-drift.d.ts +62 -0
- package/dist/scanners/agent/tool-description-drift.d.ts.map +1 -0
- package/dist/scanners/agent/tool-description-drift.js +365 -0
- package/dist/scanners/agent/tool-description-drift.js.map +1 -0
- package/dist/scanners/agent/types.d.ts +840 -0
- package/dist/scanners/agent/types.d.ts.map +1 -0
- package/dist/scanners/agent/types.js +149 -0
- package/dist/scanners/agent/types.js.map +1 -0
- package/dist/scanners/bandit.d.ts +25 -0
- package/dist/scanners/bandit.d.ts.map +1 -0
- package/dist/scanners/bandit.js +129 -0
- package/dist/scanners/bandit.js.map +1 -0
- package/dist/scanners/binary-analysis.d.ts +41 -0
- package/dist/scanners/binary-analysis.d.ts.map +1 -0
- package/dist/scanners/binary-analysis.js +587 -0
- package/dist/scanners/binary-analysis.js.map +1 -0
- package/dist/scanners/binary-analysis.test.d.ts +5 -0
- package/dist/scanners/binary-analysis.test.d.ts.map +1 -0
- package/dist/scanners/binary-analysis.test.js +291 -0
- package/dist/scanners/binary-analysis.test.js.map +1 -0
- package/dist/scanners/brakeman.d.ts +30 -0
- package/dist/scanners/brakeman.d.ts.map +1 -0
- package/dist/scanners/brakeman.js +271 -0
- package/dist/scanners/brakeman.js.map +1 -0
- package/dist/scanners/dependencies.d.ts +22 -0
- package/dist/scanners/dependencies.d.ts.map +1 -0
- package/dist/scanners/dependencies.js +202 -0
- package/dist/scanners/dependencies.js.map +1 -0
- package/dist/scanners/dependencies.test.d.ts +5 -0
- package/dist/scanners/dependencies.test.d.ts.map +1 -0
- package/dist/scanners/dependencies.test.js +185 -0
- package/dist/scanners/dependencies.test.js.map +1 -0
- package/dist/scanners/eslint.d.ts +25 -0
- package/dist/scanners/eslint.d.ts.map +1 -0
- package/dist/scanners/eslint.js +220 -0
- package/dist/scanners/eslint.js.map +1 -0
- package/dist/scanners/gosec.d.ts +25 -0
- package/dist/scanners/gosec.d.ts.map +1 -0
- package/dist/scanners/gosec.js +128 -0
- package/dist/scanners/gosec.js.map +1 -0
- package/dist/scanners/index.d.ts +128 -0
- package/dist/scanners/index.d.ts.map +1 -0
- package/dist/scanners/index.js +811 -0
- package/dist/scanners/index.js.map +1 -0
- package/dist/scanners/index.test.d.ts +5 -0
- package/dist/scanners/index.test.d.ts.map +1 -0
- package/dist/scanners/index.test.js +424 -0
- package/dist/scanners/index.test.js.map +1 -0
- package/dist/scanners/memory-safety.d.ts +44 -0
- package/dist/scanners/memory-safety.d.ts.map +1 -0
- package/dist/scanners/memory-safety.js +571 -0
- package/dist/scanners/memory-safety.js.map +1 -0
- package/dist/scanners/memory-safety.test.d.ts +5 -0
- package/dist/scanners/memory-safety.test.d.ts.map +1 -0
- package/dist/scanners/memory-safety.test.js +321 -0
- package/dist/scanners/memory-safety.test.js.map +1 -0
- package/dist/scanners/race-condition.d.ts +25 -0
- package/dist/scanners/race-condition.d.ts.map +1 -0
- package/dist/scanners/race-condition.js +443 -0
- package/dist/scanners/race-condition.js.map +1 -0
- package/dist/scanners/race-condition.test.d.ts +5 -0
- package/dist/scanners/race-condition.test.d.ts.map +1 -0
- package/dist/scanners/race-condition.test.js +428 -0
- package/dist/scanners/race-condition.test.js.map +1 -0
- package/dist/scanners/secrets.d.ts +25 -0
- package/dist/scanners/secrets.d.ts.map +1 -0
- package/dist/scanners/secrets.js +367 -0
- package/dist/scanners/secrets.js.map +1 -0
- package/dist/scanners/secrets.test.d.ts +5 -0
- package/dist/scanners/secrets.test.d.ts.map +1 -0
- package/dist/scanners/secrets.test.js +160 -0
- package/dist/scanners/secrets.test.js.map +1 -0
- package/dist/scanners/semgrep.d.ts +33 -0
- package/dist/scanners/semgrep.d.ts.map +1 -0
- package/dist/scanners/semgrep.js +350 -0
- package/dist/scanners/semgrep.js.map +1 -0
- package/dist/scanners/semgrep.test.d.ts +8 -0
- package/dist/scanners/semgrep.test.d.ts.map +1 -0
- package/dist/scanners/semgrep.test.js +254 -0
- package/dist/scanners/semgrep.test.js.map +1 -0
- package/dist/scanners/trivy.d.ts +26 -0
- package/dist/scanners/trivy.d.ts.map +1 -0
- package/dist/scanners/trivy.js +187 -0
- package/dist/scanners/trivy.js.map +1 -0
- package/dist/scanners/types.d.ts +210 -0
- package/dist/scanners/types.d.ts.map +1 -0
- package/dist/scanners/types.js +106 -0
- package/dist/scanners/types.js.map +1 -0
- package/dist/scanners/types.test.d.ts +5 -0
- package/dist/scanners/types.test.d.ts.map +1 -0
- package/dist/scanners/types.test.js +103 -0
- package/dist/scanners/types.test.js.map +1 -0
- package/dist/scanners/typescript.d.ts +32 -0
- package/dist/scanners/typescript.d.ts.map +1 -0
- package/dist/scanners/typescript.js +300 -0
- package/dist/scanners/typescript.js.map +1 -0
- package/dist/scanners/typescript.test.d.ts +5 -0
- package/dist/scanners/typescript.test.d.ts.map +1 -0
- package/dist/scanners/typescript.test.js +296 -0
- package/dist/scanners/typescript.test.js.map +1 -0
- package/dist/transcripts/index.d.ts +13 -0
- package/dist/transcripts/index.d.ts.map +1 -0
- package/dist/transcripts/index.js +17 -0
- package/dist/transcripts/index.js.map +1 -0
- package/dist/transcripts/logger.d.ts +190 -0
- package/dist/transcripts/logger.d.ts.map +1 -0
- package/dist/transcripts/logger.js +385 -0
- package/dist/transcripts/logger.js.map +1 -0
- package/dist/transcripts/logger.test.d.ts +5 -0
- package/dist/transcripts/logger.test.d.ts.map +1 -0
- package/dist/transcripts/logger.test.js +227 -0
- package/dist/transcripts/logger.test.js.map +1 -0
- package/dist/transcripts/redaction.d.ts +125 -0
- package/dist/transcripts/redaction.d.ts.map +1 -0
- package/dist/transcripts/redaction.js +416 -0
- package/dist/transcripts/redaction.js.map +1 -0
- package/dist/transcripts/redaction.test.d.ts +5 -0
- package/dist/transcripts/redaction.test.d.ts.map +1 -0
- package/dist/transcripts/redaction.test.js +267 -0
- package/dist/transcripts/redaction.test.js.map +1 -0
- package/dist/transcripts/signing.d.ts +108 -0
- package/dist/transcripts/signing.d.ts.map +1 -0
- package/dist/transcripts/signing.js +173 -0
- package/dist/transcripts/signing.js.map +1 -0
- package/dist/transcripts/verifier.d.ts +133 -0
- package/dist/transcripts/verifier.d.ts.map +1 -0
- package/dist/transcripts/verifier.js +489 -0
- package/dist/transcripts/verifier.js.map +1 -0
- package/dist/transcripts/verifier.test.d.ts +5 -0
- package/dist/transcripts/verifier.test.d.ts.map +1 -0
- package/dist/transcripts/verifier.test.js +330 -0
- package/dist/transcripts/verifier.test.js.map +1 -0
- package/dist/util/concurrency.d.ts +221 -0
- package/dist/util/concurrency.d.ts.map +1 -0
- package/dist/util/concurrency.js +339 -0
- package/dist/util/concurrency.js.map +1 -0
- package/dist/util/index.d.ts +12 -0
- package/dist/util/index.d.ts.map +1 -0
- package/dist/util/index.js +12 -0
- package/dist/util/index.js.map +1 -0
- package/dist/util/json.d.ts +63 -0
- package/dist/util/json.d.ts.map +1 -0
- package/dist/util/json.js +134 -0
- package/dist/util/json.js.map +1 -0
- package/dist/util/paths.d.ts +56 -0
- package/dist/util/paths.d.ts.map +1 -0
- package/dist/util/paths.js +128 -0
- package/dist/util/paths.js.map +1 -0
- package/dist/util/retry.d.ts +185 -0
- package/dist/util/retry.d.ts.map +1 -0
- package/dist/util/retry.js +338 -0
- package/dist/util/retry.js.map +1 -0
- package/package.json +79 -0
|
@@ -0,0 +1,128 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Tests for compliance report generator
|
|
3
|
+
*/
|
|
4
|
+
import { describe, it, expect } from "vitest";
|
|
5
|
+
import { formatComplianceReportAsMarkdown, formatMultiFrameworkReportAsMarkdown, formatComplianceReportAsJson, generateCompactComplianceSummary, } from "./report.js";
|
|
6
|
+
import { generateComplianceReport, generateMultiFrameworkReport } from "./mapper.js";
|
|
7
|
+
describe("compliance report", () => {
|
|
8
|
+
const mockFindings = [
|
|
9
|
+
{
|
|
10
|
+
id: "sec-001",
|
|
11
|
+
severity: "critical",
|
|
12
|
+
category: "sql-injection",
|
|
13
|
+
description: "SQL injection vulnerability in user query",
|
|
14
|
+
evidence: "Test evidence",
|
|
15
|
+
confidence: 90,
|
|
16
|
+
file: "db/queries.ts",
|
|
17
|
+
line: 42,
|
|
18
|
+
verifications: [],
|
|
19
|
+
created_at: new Date().toISOString(),
|
|
20
|
+
},
|
|
21
|
+
{
|
|
22
|
+
id: "sec-002",
|
|
23
|
+
severity: "high",
|
|
24
|
+
category: "xss",
|
|
25
|
+
description: "Cross-site scripting in user input",
|
|
26
|
+
evidence: "Test evidence",
|
|
27
|
+
confidence: 85,
|
|
28
|
+
file: "components/Form.tsx",
|
|
29
|
+
line: 15,
|
|
30
|
+
verifications: [],
|
|
31
|
+
created_at: new Date().toISOString(),
|
|
32
|
+
},
|
|
33
|
+
];
|
|
34
|
+
describe("formatComplianceReportAsMarkdown", () => {
|
|
35
|
+
it("generates markdown with header", () => {
|
|
36
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
37
|
+
const markdown = formatComplianceReportAsMarkdown(report);
|
|
38
|
+
expect(markdown).toContain("# SOC2 Compliance Report");
|
|
39
|
+
expect(markdown).toContain("## Compliance Status");
|
|
40
|
+
});
|
|
41
|
+
it("includes compliance status table", () => {
|
|
42
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
43
|
+
const markdown = formatComplianceReportAsMarkdown(report);
|
|
44
|
+
expect(markdown).toContain("**Compliance Score**");
|
|
45
|
+
expect(markdown).toContain("**Risk Score**");
|
|
46
|
+
expect(markdown).toContain("Total Controls");
|
|
47
|
+
});
|
|
48
|
+
it("includes non-compliant controls section", () => {
|
|
49
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
50
|
+
const markdown = formatComplianceReportAsMarkdown(report);
|
|
51
|
+
expect(markdown).toContain("## Non-Compliant Controls");
|
|
52
|
+
});
|
|
53
|
+
it("includes recommendations section", () => {
|
|
54
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
55
|
+
const markdown = formatComplianceReportAsMarkdown(report);
|
|
56
|
+
expect(markdown).toContain("## Recommendations");
|
|
57
|
+
});
|
|
58
|
+
it("includes footer", () => {
|
|
59
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
60
|
+
const markdown = formatComplianceReportAsMarkdown(report);
|
|
61
|
+
expect(markdown).toContain("Vaspera Hardening");
|
|
62
|
+
});
|
|
63
|
+
it("includes certification ID when provided", () => {
|
|
64
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path", "cert-123");
|
|
65
|
+
const markdown = formatComplianceReportAsMarkdown(report);
|
|
66
|
+
expect(markdown).toContain("cert-123");
|
|
67
|
+
});
|
|
68
|
+
});
|
|
69
|
+
describe("formatMultiFrameworkReportAsMarkdown", () => {
|
|
70
|
+
it("generates markdown for multiple frameworks", () => {
|
|
71
|
+
const report = generateMultiFrameworkReport(mockFindings, ["SOC2", "ISO27001"], "/test/path");
|
|
72
|
+
const markdown = formatMultiFrameworkReportAsMarkdown(report);
|
|
73
|
+
expect(markdown).toContain("# Multi-Framework Compliance Report");
|
|
74
|
+
expect(markdown).toContain("## Framework Summary");
|
|
75
|
+
expect(markdown).toContain("SOC2");
|
|
76
|
+
expect(markdown).toContain("ISO27001");
|
|
77
|
+
});
|
|
78
|
+
it("includes framework summary table", () => {
|
|
79
|
+
const report = generateMultiFrameworkReport(mockFindings, ["SOC2", "ISO27001"], "/test/path");
|
|
80
|
+
const markdown = formatMultiFrameworkReportAsMarkdown(report);
|
|
81
|
+
expect(markdown).toContain("| Framework | Compliance | Risk |");
|
|
82
|
+
});
|
|
83
|
+
it("includes prioritized recommendations", () => {
|
|
84
|
+
const report = generateMultiFrameworkReport(mockFindings, ["SOC2", "ISO27001"], "/test/path");
|
|
85
|
+
const markdown = formatMultiFrameworkReportAsMarkdown(report);
|
|
86
|
+
expect(markdown).toContain("## Prioritized Recommendations");
|
|
87
|
+
});
|
|
88
|
+
});
|
|
89
|
+
describe("formatComplianceReportAsJson", () => {
|
|
90
|
+
it("returns valid JSON", () => {
|
|
91
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
92
|
+
const json = formatComplianceReportAsJson(report);
|
|
93
|
+
expect(() => JSON.parse(json)).not.toThrow();
|
|
94
|
+
});
|
|
95
|
+
it("contains all report fields", () => {
|
|
96
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
97
|
+
const json = formatComplianceReportAsJson(report);
|
|
98
|
+
const parsed = JSON.parse(json);
|
|
99
|
+
expect(parsed.id).toBeDefined();
|
|
100
|
+
expect(parsed.framework).toBe("SOC2");
|
|
101
|
+
expect(parsed.status).toBeDefined();
|
|
102
|
+
expect(parsed.controls).toBeDefined();
|
|
103
|
+
expect(parsed.recommendations).toBeDefined();
|
|
104
|
+
});
|
|
105
|
+
});
|
|
106
|
+
describe("generateCompactComplianceSummary", () => {
|
|
107
|
+
it("generates single-line summary", () => {
|
|
108
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
109
|
+
const summary = generateCompactComplianceSummary(report);
|
|
110
|
+
expect(summary).toContain("SOC2 Compliance:");
|
|
111
|
+
expect(summary).toContain("Score:");
|
|
112
|
+
expect(summary).toContain("Risk:");
|
|
113
|
+
});
|
|
114
|
+
it("shows correct status based on score", () => {
|
|
115
|
+
// With critical findings, should not be compliant
|
|
116
|
+
const report = generateComplianceReport(mockFindings, "SOC2", "/test/path");
|
|
117
|
+
const summary = generateCompactComplianceSummary(report);
|
|
118
|
+
// Score should be less than 100 due to findings
|
|
119
|
+
expect(summary).not.toContain("100%");
|
|
120
|
+
});
|
|
121
|
+
it("shows COMPLIANT for perfect score", () => {
|
|
122
|
+
const report = generateComplianceReport([], "SOC2", "/test/path");
|
|
123
|
+
const summary = generateCompactComplianceSummary(report);
|
|
124
|
+
expect(summary).toContain("COMPLIANT");
|
|
125
|
+
});
|
|
126
|
+
});
|
|
127
|
+
});
|
|
128
|
+
//# sourceMappingURL=report.test.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"report.test.js","sourceRoot":"","sources":["../../src/compliance/report.test.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EACL,gCAAgC,EAChC,oCAAoC,EACpC,4BAA4B,EAC5B,gCAAgC,GACjC,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,wBAAwB,EAAE,4BAA4B,EAAE,MAAM,aAAa,CAAC;AAGrF,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;IACjC,MAAM,YAAY,GAAc;QAC9B;YACE,EAAE,EAAE,SAAS;YACb,QAAQ,EAAE,UAAU;YACpB,QAAQ,EAAE,eAAe;YACzB,WAAW,EAAE,2CAA2C;YACxD,QAAQ,EAAE,eAAe;YACzB,UAAU,EAAE,EAAE;YACd,IAAI,EAAE,eAAe;YACrB,IAAI,EAAE,EAAE;YACR,aAAa,EAAE,EAAE;YACjB,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACrC;QACD;YACE,EAAE,EAAE,SAAS;YACb,QAAQ,EAAE,MAAM;YAChB,QAAQ,EAAE,KAAK;YACf,WAAW,EAAE,oCAAoC;YACjD,QAAQ,EAAE,eAAe;YACzB,UAAU,EAAE,EAAE;YACd,IAAI,EAAE,qBAAqB;YAC3B,IAAI,EAAE,EAAE;YACR,aAAa,EAAE,EAAE;YACjB,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACrC;KACF,CAAC;IAEF,QAAQ,CAAC,kCAAkC,EAAE,GAAG,EAAE;QAChD,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;YACxC,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,QAAQ,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAE1D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,0BAA0B,CAAC,CAAC;YACvD,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,sBAAsB,CAAC,CAAC;QACrD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,QAAQ,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAE1D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,sBAAsB,CAAC,CAAC;YACnD,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,gBAAgB,CAAC,CAAC;YAC7C,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,gBAAgB,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;YACjD,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,QAAQ,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAE1D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,2BAA2B,CAAC,CAAC;QAC1D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,QAAQ,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAE1D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,oBAAoB,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iBAAiB,EAAE,GAAG,EAAE;YACzB,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,QAAQ,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAE1D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,mBAAmB,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;YACjD,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,UAAU,CAAC,CAAC;YACxF,MAAM,QAAQ,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAE1D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QACzC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,sCAAsC,EAAE,GAAG,EAAE;QACpD,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,MAAM,GAAG,4BAA4B,CAAC,YAAY,EAAE,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE,YAAY,CAAC,CAAC;YAC9F,MAAM,QAAQ,GAAG,oCAAoC,CAAC,MAAM,CAAC,CAAC;YAE9D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,qCAAqC,CAAC,CAAC;YAClE,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,sBAAsB,CAAC,CAAC;YACnD,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YACnC,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QACzC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,MAAM,GAAG,4BAA4B,CAAC,YAAY,EAAE,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE,YAAY,CAAC,CAAC;YAC9F,MAAM,QAAQ,GAAG,oCAAoC,CAAC,MAAM,CAAC,CAAC;YAE9D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,mCAAmC,CAAC,CAAC;QAClE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,MAAM,MAAM,GAAG,4BAA4B,CAAC,YAAY,EAAE,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE,YAAY,CAAC,CAAC;YAC9F,MAAM,QAAQ,GAAG,oCAAoC,CAAC,MAAM,CAAC,CAAC;YAE9D,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,gCAAgC,CAAC,CAAC;QAC/D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,8BAA8B,EAAE,GAAG,EAAE;QAC5C,EAAE,CAAC,oBAAoB,EAAE,GAAG,EAAE;YAC5B,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,IAAI,GAAG,4BAA4B,CAAC,MAAM,CAAC,CAAC;YAElD,MAAM,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;QAC/C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4BAA4B,EAAE,GAAG,EAAE;YACpC,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,IAAI,GAAG,4BAA4B,CAAC,MAAM,CAAC,CAAC;YAClD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAEhC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;YAChC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACtC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,WAAW,EAAE,CAAC;YACpC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;YACtC,MAAM,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC,WAAW,EAAE,CAAC;QAC/C,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kCAAkC,EAAE,GAAG,EAAE;QAChD,EAAE,CAAC,+BAA+B,EAAE,GAAG,EAAE;YACvC,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,OAAO,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAEzD,MAAM,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,kBAAkB,CAAC,CAAC;YAC9C,MAAM,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;YACpC,MAAM,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;QACrC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;YAC7C,kDAAkD;YAClD,MAAM,MAAM,GAAG,wBAAwB,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAC5E,MAAM,OAAO,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAEzD,gDAAgD;YAChD,MAAM,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mCAAmC,EAAE,GAAG,EAAE;YAC3C,MAAM,MAAM,GAAG,wBAAwB,CAAC,EAAE,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;YAClE,MAAM,OAAO,GAAG,gCAAgC,CAAC,MAAM,CAAC,CAAC;YAEzD,MAAM,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QACzC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}
|
|
@@ -0,0 +1,30 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* SOC 2 Trust Services Criteria Controls
|
|
3
|
+
*
|
|
4
|
+
* SOC 2 Common Criteria (CC) controls mapped to security finding categories.
|
|
5
|
+
* Based on AICPA Trust Services Criteria 2017.
|
|
6
|
+
*
|
|
7
|
+
* @module compliance/soc2
|
|
8
|
+
*/
|
|
9
|
+
import type { ComplianceControl } from "./types.js";
|
|
10
|
+
/**
|
|
11
|
+
* SOC 2 Common Criteria Controls relevant to code security
|
|
12
|
+
*/
|
|
13
|
+
export declare const SOC2_CONTROLS: ComplianceControl[];
|
|
14
|
+
/**
|
|
15
|
+
* Get all SOC 2 controls
|
|
16
|
+
*/
|
|
17
|
+
export declare function getSOC2Controls(): ComplianceControl[];
|
|
18
|
+
/**
|
|
19
|
+
* Get SOC 2 controls by category
|
|
20
|
+
*/
|
|
21
|
+
export declare function getSOC2ControlsByCategory(category: string): ComplianceControl[];
|
|
22
|
+
/**
|
|
23
|
+
* Get SOC 2 control by ID
|
|
24
|
+
*/
|
|
25
|
+
export declare function getSOC2ControlById(id: string): ComplianceControl | undefined;
|
|
26
|
+
/**
|
|
27
|
+
* Get SOC 2 categories
|
|
28
|
+
*/
|
|
29
|
+
export declare function getSOC2Categories(): string[];
|
|
30
|
+
//# sourceMappingURL=soc2.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"soc2.d.ts","sourceRoot":"","sources":["../../src/compliance/soc2.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAEpD;;GAEG;AACH,eAAO,MAAM,aAAa,EAAE,iBAAiB,EA2P5C,CAAC;AAEF;;GAEG;AACH,wBAAgB,eAAe,IAAI,iBAAiB,EAAE,CAErD;AAED;;GAEG;AACH,wBAAgB,yBAAyB,CAAC,QAAQ,EAAE,MAAM,GAAG,iBAAiB,EAAE,CAE/E;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,EAAE,EAAE,MAAM,GAAG,iBAAiB,GAAG,SAAS,CAE5E;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,MAAM,EAAE,CAE5C"}
|
|
@@ -0,0 +1,262 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* SOC 2 Trust Services Criteria Controls
|
|
3
|
+
*
|
|
4
|
+
* SOC 2 Common Criteria (CC) controls mapped to security finding categories.
|
|
5
|
+
* Based on AICPA Trust Services Criteria 2017.
|
|
6
|
+
*
|
|
7
|
+
* @module compliance/soc2
|
|
8
|
+
*/
|
|
9
|
+
/**
|
|
10
|
+
* SOC 2 Common Criteria Controls relevant to code security
|
|
11
|
+
*/
|
|
12
|
+
export const SOC2_CONTROLS = [
|
|
13
|
+
// CC6: Logical and Physical Access Controls
|
|
14
|
+
{
|
|
15
|
+
id: "CC6.1",
|
|
16
|
+
framework: "SOC2",
|
|
17
|
+
category: "Logical and Physical Access",
|
|
18
|
+
title: "Logical Access Security Software",
|
|
19
|
+
description: "The entity implements logical access security software, infrastructure, and architectures over protected information assets to protect them from security events.",
|
|
20
|
+
keywords: ["authentication", "authorization", "access control", "login", "session"],
|
|
21
|
+
findingCategories: ["auth-bypass", "broken-access-control", "session-management"],
|
|
22
|
+
cweIds: ["CWE-287", "CWE-862", "CWE-863", "CWE-384"],
|
|
23
|
+
severityThreshold: "medium",
|
|
24
|
+
},
|
|
25
|
+
{
|
|
26
|
+
id: "CC6.2",
|
|
27
|
+
framework: "SOC2",
|
|
28
|
+
category: "Logical and Physical Access",
|
|
29
|
+
title: "User Authentication",
|
|
30
|
+
description: "Prior to issuing system credentials and granting system access, the entity registers and authorizes new internal and external users.",
|
|
31
|
+
keywords: ["registration", "credential", "password", "user management"],
|
|
32
|
+
findingCategories: ["auth-bypass", "weak-password"],
|
|
33
|
+
cweIds: ["CWE-521", "CWE-620", "CWE-640"],
|
|
34
|
+
severityThreshold: "medium",
|
|
35
|
+
},
|
|
36
|
+
{
|
|
37
|
+
id: "CC6.3",
|
|
38
|
+
framework: "SOC2",
|
|
39
|
+
category: "Logical and Physical Access",
|
|
40
|
+
title: "Access Removal",
|
|
41
|
+
description: "The entity authorizes, modifies, or removes access to data, software, functions, and other protected information assets based on roles, responsibilities, or the system design and changes.",
|
|
42
|
+
keywords: ["deprovisioning", "access removal", "role-based access"],
|
|
43
|
+
findingCategories: ["broken-access-control", "auth-bypass"],
|
|
44
|
+
cweIds: ["CWE-269", "CWE-266"],
|
|
45
|
+
severityThreshold: "medium",
|
|
46
|
+
},
|
|
47
|
+
{
|
|
48
|
+
id: "CC6.6",
|
|
49
|
+
framework: "SOC2",
|
|
50
|
+
category: "Logical and Physical Access",
|
|
51
|
+
title: "Security Boundaries",
|
|
52
|
+
description: "The entity implements logical access security measures to protect against threats from sources outside its system boundaries.",
|
|
53
|
+
keywords: ["firewall", "network security", "boundary", "external threat"],
|
|
54
|
+
findingCategories: ["ssrf", "path-traversal", "command-injection"],
|
|
55
|
+
cweIds: ["CWE-918", "CWE-22", "CWE-78"],
|
|
56
|
+
severityThreshold: "high",
|
|
57
|
+
},
|
|
58
|
+
{
|
|
59
|
+
id: "CC6.7",
|
|
60
|
+
framework: "SOC2",
|
|
61
|
+
category: "Logical and Physical Access",
|
|
62
|
+
title: "Transmission Protection",
|
|
63
|
+
description: "The entity restricts the transmission, movement, and removal of information to authorized internal and external users and processes.",
|
|
64
|
+
keywords: ["encryption", "TLS", "data transmission", "data leakage"],
|
|
65
|
+
findingCategories: ["insecure-transmission", "data-exposure"],
|
|
66
|
+
cweIds: ["CWE-319", "CWE-523"],
|
|
67
|
+
severityThreshold: "medium",
|
|
68
|
+
},
|
|
69
|
+
{
|
|
70
|
+
id: "CC6.8",
|
|
71
|
+
framework: "SOC2",
|
|
72
|
+
category: "Logical and Physical Access",
|
|
73
|
+
title: "Malicious Software Prevention",
|
|
74
|
+
description: "The entity implements controls to prevent or detect and act upon the introduction of unauthorized or malicious software.",
|
|
75
|
+
keywords: ["malware", "injection", "code execution", "xss"],
|
|
76
|
+
findingCategories: ["xss", "sql-injection", "command-injection", "code-injection"],
|
|
77
|
+
cweIds: ["CWE-79", "CWE-89", "CWE-78", "CWE-94"],
|
|
78
|
+
severityThreshold: "high",
|
|
79
|
+
},
|
|
80
|
+
// CC7: System Operations
|
|
81
|
+
{
|
|
82
|
+
id: "CC7.1",
|
|
83
|
+
framework: "SOC2",
|
|
84
|
+
category: "System Operations",
|
|
85
|
+
title: "Security Event Detection",
|
|
86
|
+
description: "To meet its objectives, the entity uses detection and monitoring procedures to identify anomalies that could represent security events.",
|
|
87
|
+
keywords: ["logging", "monitoring", "detection", "audit trail"],
|
|
88
|
+
findingCategories: ["insufficient-logging", "security-misconfiguration"],
|
|
89
|
+
cweIds: ["CWE-778", "CWE-223"],
|
|
90
|
+
severityThreshold: "medium",
|
|
91
|
+
},
|
|
92
|
+
{
|
|
93
|
+
id: "CC7.2",
|
|
94
|
+
framework: "SOC2",
|
|
95
|
+
category: "System Operations",
|
|
96
|
+
title: "Security Incident Response",
|
|
97
|
+
description: "The entity monitors system components and the operation of those components for anomalies that are indicative of malicious acts.",
|
|
98
|
+
keywords: ["incident response", "anomaly detection", "security monitoring"],
|
|
99
|
+
findingCategories: ["insufficient-logging"],
|
|
100
|
+
cweIds: ["CWE-778"],
|
|
101
|
+
severityThreshold: "medium",
|
|
102
|
+
},
|
|
103
|
+
{
|
|
104
|
+
id: "CC7.3",
|
|
105
|
+
framework: "SOC2",
|
|
106
|
+
category: "System Operations",
|
|
107
|
+
title: "Security Event Analysis",
|
|
108
|
+
description: "The entity evaluates security events to determine whether they could or have resulted in a failure to meet objectives.",
|
|
109
|
+
keywords: ["event analysis", "security assessment", "threat analysis"],
|
|
110
|
+
findingCategories: ["security-misconfiguration"],
|
|
111
|
+
severityThreshold: "low",
|
|
112
|
+
},
|
|
113
|
+
{
|
|
114
|
+
id: "CC7.4",
|
|
115
|
+
framework: "SOC2",
|
|
116
|
+
category: "System Operations",
|
|
117
|
+
title: "Security Event Response",
|
|
118
|
+
description: "The entity responds to identified security incidents by executing a defined incident response program.",
|
|
119
|
+
keywords: ["incident response", "remediation", "recovery"],
|
|
120
|
+
findingCategories: [],
|
|
121
|
+
severityThreshold: "medium",
|
|
122
|
+
},
|
|
123
|
+
// CC8: Change Management
|
|
124
|
+
{
|
|
125
|
+
id: "CC8.1",
|
|
126
|
+
framework: "SOC2",
|
|
127
|
+
category: "Change Management",
|
|
128
|
+
title: "Change Authorization",
|
|
129
|
+
description: "The entity authorizes, designs, develops or acquires, configures, documents, tests, approves, and implements changes to infrastructure, data, software, and procedures.",
|
|
130
|
+
keywords: ["change management", "code review", "testing", "deployment"],
|
|
131
|
+
findingCategories: ["security-misconfiguration", "type-safety"],
|
|
132
|
+
cweIds: ["CWE-1188"],
|
|
133
|
+
severityThreshold: "medium",
|
|
134
|
+
},
|
|
135
|
+
// CC9: Risk Mitigation
|
|
136
|
+
{
|
|
137
|
+
id: "CC9.1",
|
|
138
|
+
framework: "SOC2",
|
|
139
|
+
category: "Risk Mitigation",
|
|
140
|
+
title: "Risk Identification and Assessment",
|
|
141
|
+
description: "The entity identifies, selects, and develops risk mitigation activities for risks arising from potential business disruptions.",
|
|
142
|
+
keywords: ["risk assessment", "vulnerability", "threat modeling"],
|
|
143
|
+
findingCategories: ["dependency-vuln"],
|
|
144
|
+
cweIds: ["CWE-1035"],
|
|
145
|
+
severityThreshold: "medium",
|
|
146
|
+
},
|
|
147
|
+
{
|
|
148
|
+
id: "CC9.2",
|
|
149
|
+
framework: "SOC2",
|
|
150
|
+
category: "Risk Mitigation",
|
|
151
|
+
title: "Vendor Risk Management",
|
|
152
|
+
description: "The entity assesses and manages risks associated with vendors and business partners.",
|
|
153
|
+
keywords: ["vendor", "third-party", "supply chain", "dependency"],
|
|
154
|
+
findingCategories: ["dependency-vuln"],
|
|
155
|
+
cweIds: ["CWE-1035", "CWE-829"],
|
|
156
|
+
severityThreshold: "medium",
|
|
157
|
+
},
|
|
158
|
+
// Confidentiality Controls (C Series)
|
|
159
|
+
{
|
|
160
|
+
id: "C1.1",
|
|
161
|
+
framework: "SOC2",
|
|
162
|
+
category: "Confidentiality",
|
|
163
|
+
title: "Confidential Information Identification",
|
|
164
|
+
description: "The entity identifies and maintains confidential information to meet the entity's objectives related to confidentiality.",
|
|
165
|
+
keywords: ["confidential", "sensitive data", "PII", "secrets"],
|
|
166
|
+
findingCategories: ["secrets", "data-exposure"],
|
|
167
|
+
cweIds: ["CWE-200", "CWE-359"],
|
|
168
|
+
severityThreshold: "high",
|
|
169
|
+
},
|
|
170
|
+
{
|
|
171
|
+
id: "C1.2",
|
|
172
|
+
framework: "SOC2",
|
|
173
|
+
category: "Confidentiality",
|
|
174
|
+
title: "Confidential Information Disposal",
|
|
175
|
+
description: "The entity disposes of confidential information to meet the entity's objectives related to confidentiality.",
|
|
176
|
+
keywords: ["data disposal", "secure delete", "data retention"],
|
|
177
|
+
findingCategories: ["data-exposure"],
|
|
178
|
+
cweIds: ["CWE-226", "CWE-212"],
|
|
179
|
+
severityThreshold: "medium",
|
|
180
|
+
},
|
|
181
|
+
// Availability Controls (A Series)
|
|
182
|
+
{
|
|
183
|
+
id: "A1.1",
|
|
184
|
+
framework: "SOC2",
|
|
185
|
+
category: "Availability",
|
|
186
|
+
title: "Capacity Management",
|
|
187
|
+
description: "The entity maintains, monitors, and evaluates current processing capacity and use of system components.",
|
|
188
|
+
keywords: ["capacity", "performance", "resource exhaustion", "DoS"],
|
|
189
|
+
findingCategories: ["resource-exhaustion", "denial-of-service"],
|
|
190
|
+
cweIds: ["CWE-400", "CWE-770"],
|
|
191
|
+
severityThreshold: "medium",
|
|
192
|
+
},
|
|
193
|
+
{
|
|
194
|
+
id: "A1.2",
|
|
195
|
+
framework: "SOC2",
|
|
196
|
+
category: "Availability",
|
|
197
|
+
title: "Recovery Planning",
|
|
198
|
+
description: "The entity authorizes, designs, develops or acquires, implements, operates, approves, maintains, and monitors environmental protections, software, data backup processes, and recovery infrastructure.",
|
|
199
|
+
keywords: ["backup", "disaster recovery", "business continuity"],
|
|
200
|
+
findingCategories: [],
|
|
201
|
+
severityThreshold: "medium",
|
|
202
|
+
},
|
|
203
|
+
// Processing Integrity (PI Series)
|
|
204
|
+
{
|
|
205
|
+
id: "PI1.1",
|
|
206
|
+
framework: "SOC2",
|
|
207
|
+
category: "Processing Integrity",
|
|
208
|
+
title: "Processing Accuracy",
|
|
209
|
+
description: "The entity implements policies and procedures over system processing to result in products, services, and reporting to meet the entity's objectives.",
|
|
210
|
+
keywords: ["data validation", "input validation", "data integrity"],
|
|
211
|
+
findingCategories: ["sql-injection", "xss", "insecure-deserialization"],
|
|
212
|
+
cweIds: ["CWE-20", "CWE-89", "CWE-79", "CWE-502"],
|
|
213
|
+
severityThreshold: "high",
|
|
214
|
+
},
|
|
215
|
+
{
|
|
216
|
+
id: "PI1.2",
|
|
217
|
+
framework: "SOC2",
|
|
218
|
+
category: "Processing Integrity",
|
|
219
|
+
title: "System Input Controls",
|
|
220
|
+
description: "The entity implements policies and procedures over system inputs that result in products, services, and reporting to meet the entity's objectives.",
|
|
221
|
+
keywords: ["input validation", "sanitization", "encoding"],
|
|
222
|
+
findingCategories: ["sql-injection", "xss", "command-injection", "path-traversal"],
|
|
223
|
+
cweIds: ["CWE-20", "CWE-89", "CWE-79", "CWE-78", "CWE-22"],
|
|
224
|
+
severityThreshold: "high",
|
|
225
|
+
},
|
|
226
|
+
{
|
|
227
|
+
id: "PI1.3",
|
|
228
|
+
framework: "SOC2",
|
|
229
|
+
category: "Processing Integrity",
|
|
230
|
+
title: "System Processing Controls",
|
|
231
|
+
description: "The entity implements policies and procedures over system processing to result in products, services, and reporting to meet the entity's objectives.",
|
|
232
|
+
keywords: ["data processing", "transaction integrity", "error handling"],
|
|
233
|
+
findingCategories: ["type-safety", "error-handling"],
|
|
234
|
+
cweIds: ["CWE-754", "CWE-755"],
|
|
235
|
+
severityThreshold: "medium",
|
|
236
|
+
},
|
|
237
|
+
];
|
|
238
|
+
/**
|
|
239
|
+
* Get all SOC 2 controls
|
|
240
|
+
*/
|
|
241
|
+
export function getSOC2Controls() {
|
|
242
|
+
return SOC2_CONTROLS;
|
|
243
|
+
}
|
|
244
|
+
/**
|
|
245
|
+
* Get SOC 2 controls by category
|
|
246
|
+
*/
|
|
247
|
+
export function getSOC2ControlsByCategory(category) {
|
|
248
|
+
return SOC2_CONTROLS.filter((c) => c.category === category);
|
|
249
|
+
}
|
|
250
|
+
/**
|
|
251
|
+
* Get SOC 2 control by ID
|
|
252
|
+
*/
|
|
253
|
+
export function getSOC2ControlById(id) {
|
|
254
|
+
return SOC2_CONTROLS.find((c) => c.id === id);
|
|
255
|
+
}
|
|
256
|
+
/**
|
|
257
|
+
* Get SOC 2 categories
|
|
258
|
+
*/
|
|
259
|
+
export function getSOC2Categories() {
|
|
260
|
+
return [...new Set(SOC2_CONTROLS.map((c) => c.category))];
|
|
261
|
+
}
|
|
262
|
+
//# sourceMappingURL=soc2.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"soc2.js","sourceRoot":"","sources":["../../src/compliance/soc2.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH;;GAEG;AACH,MAAM,CAAC,MAAM,aAAa,GAAwB;IAChD,4CAA4C;IAC5C;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,6BAA6B;QACvC,KAAK,EAAE,kCAAkC;QACzC,WAAW,EACT,mKAAmK;QACrK,QAAQ,EAAE,CAAC,gBAAgB,EAAE,eAAe,EAAE,gBAAgB,EAAE,OAAO,EAAE,SAAS,CAAC;QACnF,iBAAiB,EAAE,CAAC,aAAa,EAAE,uBAAuB,EAAE,oBAAoB,CAAC;QACjF,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,EAAE,SAAS,EAAE,SAAS,CAAC;QACpD,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,6BAA6B;QACvC,KAAK,EAAE,qBAAqB;QAC5B,WAAW,EACT,sIAAsI;QACxI,QAAQ,EAAE,CAAC,cAAc,EAAE,YAAY,EAAE,UAAU,EAAE,iBAAiB,CAAC;QACvE,iBAAiB,EAAE,CAAC,aAAa,EAAE,eAAe,CAAC;QACnD,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,EAAE,SAAS,CAAC;QACzC,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,6BAA6B;QACvC,KAAK,EAAE,gBAAgB;QACvB,WAAW,EACT,6LAA6L;QAC/L,QAAQ,EAAE,CAAC,gBAAgB,EAAE,gBAAgB,EAAE,mBAAmB,CAAC;QACnE,iBAAiB,EAAE,CAAC,uBAAuB,EAAE,aAAa,CAAC;QAC3D,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,6BAA6B;QACvC,KAAK,EAAE,qBAAqB;QAC5B,WAAW,EACT,+HAA+H;QACjI,QAAQ,EAAE,CAAC,UAAU,EAAE,kBAAkB,EAAE,UAAU,EAAE,iBAAiB,CAAC;QACzE,iBAAiB,EAAE,CAAC,MAAM,EAAE,gBAAgB,EAAE,mBAAmB,CAAC;QAClE,MAAM,EAAE,CAAC,SAAS,EAAE,QAAQ,EAAE,QAAQ,CAAC;QACvC,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,6BAA6B;QACvC,KAAK,EAAE,yBAAyB;QAChC,WAAW,EACT,sIAAsI;QACxI,QAAQ,EAAE,CAAC,YAAY,EAAE,KAAK,EAAE,mBAAmB,EAAE,cAAc,CAAC;QACpE,iBAAiB,EAAE,CAAC,uBAAuB,EAAE,eAAe,CAAC;QAC7D,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,6BAA6B;QACvC,KAAK,EAAE,+BAA+B;QACtC,WAAW,EACT,0HAA0H;QAC5H,QAAQ,EAAE,CAAC,SAAS,EAAE,WAAW,EAAE,gBAAgB,EAAE,KAAK,CAAC;QAC3D,iBAAiB,EAAE,CAAC,KAAK,EAAE,eAAe,EAAE,mBAAmB,EAAE,gBAAgB,CAAC;QAClF,MAAM,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,CAAC;QAChD,iBAAiB,EAAE,MAAM;KAC1B;IAED,yBAAyB;IACzB;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,mBAAmB;QAC7B,KAAK,EAAE,0BAA0B;QACjC,WAAW,EACT,yIAAyI;QAC3I,QAAQ,EAAE,CAAC,SAAS,EAAE,YAAY,EAAE,WAAW,EAAE,aAAa,CAAC;QAC/D,iBAAiB,EAAE,CAAC,sBAAsB,EAAE,2BAA2B,CAAC;QACxE,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,mBAAmB;QAC7B,KAAK,EAAE,4BAA4B;QACnC,WAAW,EACT,kIAAkI;QACpI,QAAQ,EAAE,CAAC,mBAAmB,EAAE,mBAAmB,EAAE,qBAAqB,CAAC;QAC3E,iBAAiB,EAAE,CAAC,sBAAsB,CAAC;QAC3C,MAAM,EAAE,CAAC,SAAS,CAAC;QACnB,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,mBAAmB;QAC7B,KAAK,EAAE,yBAAyB;QAChC,WAAW,EACT,wHAAwH;QAC1H,QAAQ,EAAE,CAAC,gBAAgB,EAAE,qBAAqB,EAAE,iBAAiB,CAAC;QACtE,iBAAiB,EAAE,CAAC,2BAA2B,CAAC;QAChD,iBAAiB,EAAE,KAAK;KACzB;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,mBAAmB;QAC7B,KAAK,EAAE,yBAAyB;QAChC,WAAW,EACT,wGAAwG;QAC1G,QAAQ,EAAE,CAAC,mBAAmB,EAAE,aAAa,EAAE,UAAU,CAAC;QAC1D,iBAAiB,EAAE,EAAE;QACrB,iBAAiB,EAAE,QAAQ;KAC5B;IAED,yBAAyB;IACzB;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,mBAAmB;QAC7B,KAAK,EAAE,sBAAsB;QAC7B,WAAW,EACT,yKAAyK;QAC3K,QAAQ,EAAE,CAAC,mBAAmB,EAAE,aAAa,EAAE,SAAS,EAAE,YAAY,CAAC;QACvE,iBAAiB,EAAE,CAAC,2BAA2B,EAAE,aAAa,CAAC;QAC/D,MAAM,EAAE,CAAC,UAAU,CAAC;QACpB,iBAAiB,EAAE,QAAQ;KAC5B;IAED,uBAAuB;IACvB;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,oCAAoC;QAC3C,WAAW,EACT,gIAAgI;QAClI,QAAQ,EAAE,CAAC,iBAAiB,EAAE,eAAe,EAAE,iBAAiB,CAAC;QACjE,iBAAiB,EAAE,CAAC,iBAAiB,CAAC;QACtC,MAAM,EAAE,CAAC,UAAU,CAAC;QACpB,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,wBAAwB;QAC/B,WAAW,EACT,sFAAsF;QACxF,QAAQ,EAAE,CAAC,QAAQ,EAAE,aAAa,EAAE,cAAc,EAAE,YAAY,CAAC;QACjE,iBAAiB,EAAE,CAAC,iBAAiB,CAAC;QACtC,MAAM,EAAE,CAAC,UAAU,EAAE,SAAS,CAAC;QAC/B,iBAAiB,EAAE,QAAQ;KAC5B;IAED,sCAAsC;IACtC;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,yCAAyC;QAChD,WAAW,EACT,0HAA0H;QAC5H,QAAQ,EAAE,CAAC,cAAc,EAAE,gBAAgB,EAAE,KAAK,EAAE,SAAS,CAAC;QAC9D,iBAAiB,EAAE,CAAC,SAAS,EAAE,eAAe,CAAC;QAC/C,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,mCAAmC;QAC1C,WAAW,EACT,6GAA6G;QAC/G,QAAQ,EAAE,CAAC,eAAe,EAAE,eAAe,EAAE,gBAAgB,CAAC;QAC9D,iBAAiB,EAAE,CAAC,eAAe,CAAC;QACpC,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IAED,mCAAmC;IACnC;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,cAAc;QACxB,KAAK,EAAE,qBAAqB;QAC5B,WAAW,EACT,yGAAyG;QAC3G,QAAQ,EAAE,CAAC,UAAU,EAAE,aAAa,EAAE,qBAAqB,EAAE,KAAK,CAAC;QACnE,iBAAiB,EAAE,CAAC,qBAAqB,EAAE,mBAAmB,CAAC;QAC/D,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;IACD;QACE,EAAE,EAAE,MAAM;QACV,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,cAAc;QACxB,KAAK,EAAE,mBAAmB;QAC1B,WAAW,EACT,wMAAwM;QAC1M,QAAQ,EAAE,CAAC,QAAQ,EAAE,mBAAmB,EAAE,qBAAqB,CAAC;QAChE,iBAAiB,EAAE,EAAE;QACrB,iBAAiB,EAAE,QAAQ;KAC5B;IAED,mCAAmC;IACnC;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,sBAAsB;QAChC,KAAK,EAAE,qBAAqB;QAC5B,WAAW,EACT,sJAAsJ;QACxJ,QAAQ,EAAE,CAAC,iBAAiB,EAAE,kBAAkB,EAAE,gBAAgB,CAAC;QACnE,iBAAiB,EAAE,CAAC,eAAe,EAAE,KAAK,EAAE,0BAA0B,CAAC;QACvE,MAAM,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,CAAC;QACjD,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,sBAAsB;QAChC,KAAK,EAAE,uBAAuB;QAC9B,WAAW,EACT,oJAAoJ;QACtJ,QAAQ,EAAE,CAAC,kBAAkB,EAAE,cAAc,EAAE,UAAU,CAAC;QAC1D,iBAAiB,EAAE,CAAC,eAAe,EAAE,KAAK,EAAE,mBAAmB,EAAE,gBAAgB,CAAC;QAClF,MAAM,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ,CAAC;QAC1D,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,EAAE,EAAE,OAAO;QACX,SAAS,EAAE,MAAM;QACjB,QAAQ,EAAE,sBAAsB;QAChC,KAAK,EAAE,4BAA4B;QACnC,WAAW,EACT,sJAAsJ;QACxJ,QAAQ,EAAE,CAAC,iBAAiB,EAAE,uBAAuB,EAAE,gBAAgB,CAAC;QACxE,iBAAiB,EAAE,CAAC,aAAa,EAAE,gBAAgB,CAAC;QACpD,MAAM,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;QAC9B,iBAAiB,EAAE,QAAQ;KAC5B;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,UAAU,eAAe;IAC7B,OAAO,aAAa,CAAC;AACvB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,yBAAyB,CAAC,QAAgB;IACxD,OAAO,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;AAC9D,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,kBAAkB,CAAC,EAAU;IAC3C,OAAO,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;AAChD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB;IAC/B,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;AAC5D,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"soc2.test.d.ts","sourceRoot":"","sources":["../../src/compliance/soc2.test.ts"],"names":[],"mappings":"AAAA;;GAEG"}
|
|
@@ -0,0 +1,86 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Tests for SOC 2 controls
|
|
3
|
+
*/
|
|
4
|
+
import { describe, it, expect } from "vitest";
|
|
5
|
+
import { SOC2_CONTROLS, getSOC2Controls, getSOC2ControlsByCategory, getSOC2ControlById, getSOC2Categories, } from "./soc2.js";
|
|
6
|
+
describe("SOC 2 controls", () => {
|
|
7
|
+
describe("SOC2_CONTROLS", () => {
|
|
8
|
+
it("has controls defined", () => {
|
|
9
|
+
expect(SOC2_CONTROLS.length).toBeGreaterThan(0);
|
|
10
|
+
});
|
|
11
|
+
it("all controls have required fields", () => {
|
|
12
|
+
for (const control of SOC2_CONTROLS) {
|
|
13
|
+
expect(control.id).toBeDefined();
|
|
14
|
+
expect(control.framework).toBe("SOC2");
|
|
15
|
+
expect(control.category).toBeDefined();
|
|
16
|
+
expect(control.title).toBeDefined();
|
|
17
|
+
expect(control.description).toBeDefined();
|
|
18
|
+
expect(control.keywords).toBeInstanceOf(Array);
|
|
19
|
+
expect(control.findingCategories).toBeInstanceOf(Array);
|
|
20
|
+
}
|
|
21
|
+
});
|
|
22
|
+
it("has unique control IDs", () => {
|
|
23
|
+
const ids = SOC2_CONTROLS.map((c) => c.id);
|
|
24
|
+
const uniqueIds = new Set(ids);
|
|
25
|
+
expect(uniqueIds.size).toBe(ids.length);
|
|
26
|
+
});
|
|
27
|
+
it("includes Common Criteria controls (CC)", () => {
|
|
28
|
+
const ccControls = SOC2_CONTROLS.filter((c) => c.id.startsWith("CC"));
|
|
29
|
+
expect(ccControls.length).toBeGreaterThan(0);
|
|
30
|
+
});
|
|
31
|
+
it("includes Confidentiality controls (C)", () => {
|
|
32
|
+
const cControls = SOC2_CONTROLS.filter((c) => c.id.startsWith("C1"));
|
|
33
|
+
expect(cControls.length).toBeGreaterThan(0);
|
|
34
|
+
});
|
|
35
|
+
it("includes Availability controls (A)", () => {
|
|
36
|
+
const aControls = SOC2_CONTROLS.filter((c) => c.id.startsWith("A1"));
|
|
37
|
+
expect(aControls.length).toBeGreaterThan(0);
|
|
38
|
+
});
|
|
39
|
+
it("includes Processing Integrity controls (PI)", () => {
|
|
40
|
+
const piControls = SOC2_CONTROLS.filter((c) => c.id.startsWith("PI"));
|
|
41
|
+
expect(piControls.length).toBeGreaterThan(0);
|
|
42
|
+
});
|
|
43
|
+
});
|
|
44
|
+
describe("getSOC2Controls", () => {
|
|
45
|
+
it("returns all controls", () => {
|
|
46
|
+
const controls = getSOC2Controls();
|
|
47
|
+
expect(controls).toEqual(SOC2_CONTROLS);
|
|
48
|
+
});
|
|
49
|
+
});
|
|
50
|
+
describe("getSOC2ControlsByCategory", () => {
|
|
51
|
+
it("returns controls for valid category", () => {
|
|
52
|
+
const controls = getSOC2ControlsByCategory("Logical and Physical Access");
|
|
53
|
+
expect(controls.length).toBeGreaterThan(0);
|
|
54
|
+
expect(controls.every((c) => c.category === "Logical and Physical Access")).toBe(true);
|
|
55
|
+
});
|
|
56
|
+
it("returns empty array for invalid category", () => {
|
|
57
|
+
const controls = getSOC2ControlsByCategory("Invalid Category");
|
|
58
|
+
expect(controls).toEqual([]);
|
|
59
|
+
});
|
|
60
|
+
});
|
|
61
|
+
describe("getSOC2ControlById", () => {
|
|
62
|
+
it("returns control for valid ID", () => {
|
|
63
|
+
const control = getSOC2ControlById("CC6.1");
|
|
64
|
+
expect(control).toBeDefined();
|
|
65
|
+
expect(control.id).toBe("CC6.1");
|
|
66
|
+
});
|
|
67
|
+
it("returns undefined for invalid ID", () => {
|
|
68
|
+
const control = getSOC2ControlById("INVALID");
|
|
69
|
+
expect(control).toBeUndefined();
|
|
70
|
+
});
|
|
71
|
+
});
|
|
72
|
+
describe("getSOC2Categories", () => {
|
|
73
|
+
it("returns unique categories", () => {
|
|
74
|
+
const categories = getSOC2Categories();
|
|
75
|
+
expect(categories.length).toBeGreaterThan(0);
|
|
76
|
+
const uniqueCategories = new Set(categories);
|
|
77
|
+
expect(uniqueCategories.size).toBe(categories.length);
|
|
78
|
+
});
|
|
79
|
+
it("includes expected categories", () => {
|
|
80
|
+
const categories = getSOC2Categories();
|
|
81
|
+
expect(categories).toContain("Logical and Physical Access");
|
|
82
|
+
expect(categories).toContain("System Operations");
|
|
83
|
+
});
|
|
84
|
+
});
|
|
85
|
+
});
|
|
86
|
+
//# sourceMappingURL=soc2.test.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"soc2.test.js","sourceRoot":"","sources":["../../src/compliance/soc2.test.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EACL,aAAa,EACb,eAAe,EACf,yBAAyB,EACzB,kBAAkB,EAClB,iBAAiB,GAClB,MAAM,WAAW,CAAC;AAEnB,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;IAC9B,QAAQ,CAAC,eAAe,EAAE,GAAG,EAAE;QAC7B,EAAE,CAAC,sBAAsB,EAAE,GAAG,EAAE;YAC9B,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mCAAmC,EAAE,GAAG,EAAE;YAC3C,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE,CAAC;gBACpC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;gBACjC,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;gBACvC,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;gBACvC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC;gBACpC,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,WAAW,EAAE,CAAC;gBAC1C,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;gBAC/C,MAAM,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;YAC1D,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wBAAwB,EAAE,GAAG,EAAE;YAChC,MAAM,GAAG,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YAC3C,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;YAC/B,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAC1C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;YAChD,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;YACtE,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;YAC/C,MAAM,SAAS,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;YACrE,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,oCAAoC,EAAE,GAAG,EAAE;YAC5C,MAAM,SAAS,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;YACrE,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;YACtE,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;QAC/B,EAAE,CAAC,sBAAsB,EAAE,GAAG,EAAE;YAC9B,MAAM,QAAQ,GAAG,eAAe,EAAE,CAAC;YACnC,MAAM,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;QAC1C,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,2BAA2B,EAAE,GAAG,EAAE;QACzC,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;YAC7C,MAAM,QAAQ,GAAG,yBAAyB,CAAC,6BAA6B,CAAC,CAAC;YAC1E,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;YAC3C,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,6BAA6B,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACzF,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,QAAQ,GAAG,yBAAyB,CAAC,kBAAkB,CAAC,CAAC;YAC/D,MAAM,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QAC/B,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,oBAAoB,EAAE,GAAG,EAAE;QAClC,EAAE,CAAC,8BAA8B,EAAE,GAAG,EAAE;YACtC,MAAM,OAAO,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;YAC5C,MAAM,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,CAAC;YAC9B,MAAM,CAAC,OAAQ,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,OAAO,GAAG,kBAAkB,CAAC,SAAS,CAAC,CAAC;YAC9C,MAAM,CAAC,OAAO,CAAC,CAAC,aAAa,EAAE,CAAC;QAClC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;QACjC,EAAE,CAAC,2BAA2B,EAAE,GAAG,EAAE;YACnC,MAAM,UAAU,GAAG,iBAAiB,EAAE,CAAC;YACvC,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;YAE7C,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC;YAC7C,MAAM,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8BAA8B,EAAE,GAAG,EAAE;YACtC,MAAM,UAAU,GAAG,iBAAiB,EAAE,CAAC;YACvC,MAAM,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,6BAA6B,CAAC,CAAC;YAC5D,MAAM,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,mBAAmB,CAAC,CAAC;QACpD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}
|