vaspera 2.9.0 → 2.10.0

package/dist/scanners/dast/nuclei.js

@@ -0,0 +1,354 @@
+/**
+ * Nuclei Scanner Integration
+ *
+ * Integrates with ProjectDiscovery's Nuclei for dynamic
+ * application security testing using template-based scanning.
+ *
+ * @module scanners/dast/nuclei
+ */
+import spawn from "cross-spawn";
+import { logger } from "../../logger.js";
+import { NUCLEI_SEVERITY_MAPPING } from "./types.js";
+/**
+ * Check if Nuclei is available
+ */
+export async function checkNucleiAvailable() {
+    return new Promise((resolve) => {
+        const child = spawn("nuclei", ["-version"], { timeout: 10000 });
+        let stdout = "";
+        let stderr = "";
+        child.stdout?.on("data", (data) => {
+            stdout += data.toString();
+        });
+        child.stderr?.on("data", (data) => {
+            stderr += data.toString();
+        });
+        child.on("close", (code) => {
+            if (code === 0) {
+                // Parse version from output (e.g., "Nuclei Engine Version: v3.1.0")
+                const versionMatch = (stdout + stderr).match(/v?\d+\.\d+\.\d+/);
+                const version = versionMatch ? versionMatch[0] : "unknown";
+                resolve({
+                    scanner: "nuclei",
+                    available: true,
+                    version,
+                    path: "nuclei",
+                    features: {
+                        passiveScan: true,
+                        activeScan: true,
+                        apiScan: true,
+                        authentication: true,
+                    },
+                });
+            }
+            else {
+                resolve({
+                    scanner: "nuclei",
+                    available: false,
+                    error: "Nuclei not found. Install via: go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest",
+                });
+            }
+        });
+        child.on("error", () => {
+            resolve({
+                scanner: "nuclei",
+                available: false,
+                error: "Nuclei not found. Install via: go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest",
+            });
+        });
+    });
+}
+/**
+ * Build Nuclei command arguments
+ */
+function buildNucleiArgs(target, policy) {
+    const args = [
+        "-u", target.url,
+        "-json", // JSON output
+        "-silent", // Minimal output
+        "-no-color", // No ANSI colors
+    ];
+    // Add severity filter based on risk threshold
+    if (policy.riskThreshold) {
+        const severityMap = {
+            high: "critical,high",
+            medium: "critical,high,medium",
+            low: "critical,high,medium,low",
+            informational: "critical,high,medium,low,info",
+        };
+        args.push("-severity", severityMap[policy.riskThreshold] || "critical,high,medium");
+    }
+    // Add specific templates if provided
+    if (policy.templates && policy.templates.length > 0) {
+        for (const template of policy.templates) {
+            args.push("-t", template);
+        }
+    }
+    // Add template tags
+    if (policy.templateTags && policy.templateTags.length > 0) {
+        args.push("-tags", policy.templateTags.join(","));
+    }
+    // Exclude tags
+    if (policy.excludeTags && policy.excludeTags.length > 0) {
+        args.push("-etags", policy.excludeTags.join(","));
+    }
+    // Passive-only mode (no active exploitation)
+    if (policy.passiveOnly) {
+        args.push("-passive");
+    }
+    // Rate limiting
+    if (policy.requestDelay && policy.requestDelay > 0) {
+        // Nuclei uses rate-limit as requests per second
+        const rps = Math.floor(1000 / policy.requestDelay);
+        args.push("-rate-limit", String(Math.max(1, rps)));
+    }
+    // Concurrency
+    if (policy.threads) {
+        args.push("-concurrency", String(policy.threads));
+    }
+    // Add custom headers
+    if (target.headers) {
+        for (const [key, value] of Object.entries(target.headers)) {
+            args.push("-header", `${key}: ${value}`);
+        }
+    }
+    // Add authentication header
+    if (target.authentication) {
+        const auth = target.authentication;
+        switch (auth.type) {
+            case "bearer":
+                if (auth.credentials.token) {
+                    args.push("-header", `Authorization: Bearer ${auth.credentials.token}`);
+                }
+                break;
+            case "basic":
+                if (auth.credentials.username && auth.credentials.password) {
+                    const encoded = Buffer.from(`${auth.credentials.username}:${auth.credentials.password}`).toString("base64");
+                    args.push("-header", `Authorization: Basic ${encoded}`);
+                }
+                break;
+            case "api-key":
+                if (auth.credentials.apiKey && auth.credentials.apiKeyHeader) {
+                    args.push("-header", `${auth.credentials.apiKeyHeader}: ${auth.credentials.apiKey}`);
+                }
+                break;
+            case "cookie":
+                if (auth.credentials.cookie) {
+                    args.push("-header", `Cookie: ${auth.credentials.cookie}`);
+                }
+                break;
+        }
+    }
+    return args;
+}
+/**
+ * Parse Nuclei JSON line output to DASTFinding
+ */
+export function parseNucleiResult(result) {
+    const severity = NUCLEI_SEVERITY_MAPPING[result.info.severity] || "info";
+    // Extract CWE and CVE IDs
+    const cweIds = result.info.classification?.["cwe-id"]?.map((id) => id.startsWith("CWE-") ? id : `CWE-${id}`);
+    const cveIds = result.info.classification?.["cve-id"];
+    // Build references array
+    const references = [];
+    if (result.info.reference) {
+        references.push(...result.info.reference);
+    }
+    if (result["template-url"]) {
+        references.push(result["template-url"]);
+    }
+    return {
+        scanner: "nuclei",
+        ruleId: `nuclei-${result["template-id"]}`,
+        name: result.info.name,
+        description: result.info.description || `${result.info.name} detected`,
+        severity,
+        confidence: getConfidenceFromSeverity(result.info.severity),
+        url: result.matched || result.host,
+        method: extractMethod(result.request),
+        evidence: result["extracted-results"]?.join("\n"),
+        cweIds,
+        cveIds,
+        references,
+        tags: result.info.tags,
+        timestamp: result.timestamp || new Date().toISOString(),
+        rawOutput: result,
+    };
+}
+/**
+ * Extract HTTP method from curl command or request
+ */
+function extractMethod(request) {
+    if (!request)
+        return undefined;
+    const methodMatch = request.match(/^(GET|POST|PUT|DELETE|PATCH|HEAD|OPTIONS)\s/);
+    return methodMatch ? methodMatch[1] : undefined;
+}
+/**
+ * Get confidence score based on severity
+ */
+function getConfidenceFromSeverity(severity) {
+    switch (severity.toLowerCase()) {
+        case "critical":
+            return 95;
+        case "high":
+            return 90;
+        case "medium":
+            return 80;
+        case "low":
+            return 70;
+        default:
+            return 60;
+    }
+}
+/**
+ * Run Nuclei scan
+ */
+export async function runNuclei(target, policy = {}) {
+    const startTime = new Date();
+    const mergedPolicy = { ...{ passiveOnly: true, maxDuration: 300, riskThreshold: "medium" }, ...policy };
+    logger.info("nuclei.scan_start", {
+        target: target.url,
+        passiveOnly: mergedPolicy.passiveOnly,
+    });
+    // Check availability
+    const availability = await checkNucleiAvailable();
+    if (!availability.available) {
+        return {
+            scanner: "nuclei",
+            target,
+            findings: [],
+            duration: Date.now() - startTime.getTime(),
+            success: false,
+            error: availability.error || "Nuclei not available",
+            stats: {
+                requestCount: 0,
+                urlsDiscovered: 0,
+                uniqueFindings: 0,
+                bySeverity: {},
+            },
+            startTime: startTime.toISOString(),
+            endTime: new Date().toISOString(),
+            policy: mergedPolicy,
+        };
+    }
+    return new Promise((resolve) => {
+        const args = buildNucleiArgs(target, mergedPolicy);
+        logger.debug("nuclei.command", { args: args.join(" ") });
+        const child = spawn("nuclei", args, {
+            timeout: (mergedPolicy.maxDuration || 300) * 1000,
+        });
+        let stdout = "";
+        let stderr = "";
+        child.stdout?.on("data", (data) => {
+            stdout += data.toString();
+        });
+        child.stderr?.on("data", (data) => {
+            stderr += data.toString();
+        });
+        child.on("close", (code) => {
+            const endTime = new Date();
+            const findings = [];
+            // Parse JSON lines output
+            const lines = stdout.split("\n").filter(Boolean);
+            for (const line of lines) {
+                try {
+                    const result = JSON.parse(line);
+                    findings.push(parseNucleiResult(result));
+                }
+                catch {
+                    // Skip non-JSON lines
+                    logger.debug("nuclei.parse_skip", { line: line.slice(0, 100) });
+                }
+            }
+            // Calculate stats
+            const bySeverity = {};
+            for (const finding of findings) {
+                bySeverity[finding.severity] = (bySeverity[finding.severity] || 0) + 1;
+            }
+            const success = code === 0 || findings.length > 0;
+            const result = {
+                scanner: "nuclei",
+                target,
+                findings,
+                duration: endTime.getTime() - startTime.getTime(),
+                success,
+                error: !success && stderr ? stderr.slice(0, 500) : undefined,
+                stats: {
+                    requestCount: 0, // Not available from Nuclei output
+                    urlsDiscovered: new Set(findings.map((f) => f.url)).size,
+                    uniqueFindings: findings.length,
+                    bySeverity,
+                },
+                version: availability.version,
+                startTime: startTime.toISOString(),
+                endTime: endTime.toISOString(),
+                policy: mergedPolicy,
+            };
+            logger.info("nuclei.scan_complete", {
+                findings: findings.length,
+                duration: result.duration,
+                success,
+            });
+            resolve(result);
+        });
+        child.on("error", (error) => {
+            const endTime = new Date();
+            resolve({
+                scanner: "nuclei",
+                target,
+                findings: [],
+                duration: endTime.getTime() - startTime.getTime(),
+                success: false,
+                error: String(error),
+                stats: {
+                    requestCount: 0,
+                    urlsDiscovered: 0,
+                    uniqueFindings: 0,
+                    bySeverity: {},
+                },
+                version: availability.version,
+                startTime: startTime.toISOString(),
+                endTime: endTime.toISOString(),
+                policy: mergedPolicy,
+            });
+        });
+    });
+}
+/**
+ * Get Nuclei installation instructions
+ */
+export function getNucleiInstallInstructions() {
+    return `
+# Nuclei Installation
+
+## Go (Recommended)
+\`\`\`bash
+go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest
+\`\`\`
+
+## Homebrew (macOS)
+\`\`\`bash
+brew install nuclei
+\`\`\`
+
+## Docker
+\`\`\`bash
+docker pull projectdiscovery/nuclei:latest
+\`\`\`
+
+## Binary Download
+Download from https://github.com/projectdiscovery/nuclei/releases
+
+## Update Templates
+\`\`\`bash
+nuclei -update-templates
+\`\`\`
+
+## Verify Installation
+\`\`\`bash
+nuclei -version
+\`\`\`
+`;
+}
+//# sourceMappingURL=nuclei.js.map

package/dist/scanners/dast/nuclei.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"nuclei.js","sourceRoot":"","sources":["../../../src/scanners/dast/nuclei.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,MAAM,aAAa,CAAC;AAChC,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAC;AASzC,OAAO,EAAE,uBAAuB,EAAE,MAAM,YAAY,CAAC;AAErD;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB;IACxC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC,UAAU,CAAC,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;QAEhE,IAAI,MAAM,GAAG,EAAE,CAAC;QAChB,IAAI,MAAM,GAAG,EAAE,CAAC;QAEhB,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YAChC,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC5B,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YAChC,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC5B,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE;YACzB,IAAI,IAAI,KAAK,CAAC,EAAE,CAAC;gBACf,oEAAoE;gBACpE,MAAM,YAAY,GAAG,CAAC,MAAM,GAAG,MAAM,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;gBAChE,MAAM,OAAO,GAAG,YAAY,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;gBAE3D,OAAO,CAAC;oBACN,OAAO,EAAE,QAAQ;oBACjB,SAAS,EAAE,IAAI;oBACf,OAAO;oBACP,IAAI,EAAE,QAAQ;oBACd,QAAQ,EAAE;wBACR,WAAW,EAAE,IAAI;wBACjB,UAAU,EAAE,IAAI;wBAChB,OAAO,EAAE,IAAI;wBACb,cAAc,EAAE,IAAI;qBACrB;iBACF,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC;oBACN,OAAO,EAAE,QAAQ;oBACjB,SAAS,EAAE,KAAK;oBAChB,KAAK,EAAE,sGAAsG;iBAC9G,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACrB,OAAO,CAAC;gBACN,OAAO,EAAE,QAAQ;gBACjB,SAAS,EAAE,KAAK;gBAChB,KAAK,EAAE,sGAAsG;aAC9G,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CACtB,MAAkB,EAClB,MAAkB;IAElB,MAAM,IAAI,GAAa;QACrB,IAAI,EAAE,MAAM,CAAC,GAAG;QAChB,OAAO,EAAQ,cAAc;QAC7B,SAAS,EAAM,iBAAiB;QAChC,WAAW,EAAI,iBAAiB;KACjC,CAAC;IAEF,8CAA8C;IAC9C,IAAI,MAAM,CAAC,aAAa,EAAE,CAAC;QACzB,MAAM,WAAW,GAA2B;YAC1C,IAAI,EAAE,eAAe;YACrB,MAAM,EAAE,sBAAsB;YAC9B,GAAG,EAAE,0BAA0B;YAC/B,aAAa,EAAE,+BAA+B;SAC/C,CAAC;QACF,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,CAAC,MAAM,CAAC,aAAa,CAAC,IAAI,sBAAsB,CAAC,CAAC;IACtF,CAAC;IAED,qCAAqC;IACrC,IAAI,MAAM,CAAC,SAAS,IAAI,MAAM,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpD,KAAK,MAAM,QAAQ,IAAI,MAAM,CAAC,SAAS,EAAE,CAAC;YACxC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;IAED,oBAAoB;IACpB,IAAI,MAAM,CAAC,YAAY,IAAI,MAAM,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1D,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IACpD,CAAC;IAED,eAAe;IACf,IAAI,MAAM,CAAC,WAAW,IAAI,MAAM,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxD,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IACpD,CAAC;IAED,6CAA6C;IAC7C,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QACvB,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IACxB,CAAC;IAED,gBAAgB;IAChB,IAAI,MAAM,CAAC,YAAY,IAAI,MAAM,CAAC,YAAY,GAAG,CAAC,EAAE,CAAC;QACnD,gDAAgD;QAChD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,CAAC;QACnD,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC;IACrD,CAAC;IAED,cAAc;IACd,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;IACpD,CAAC;IAED,qBAAqB;IACrB,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1D,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,GAAG,KAAK,KAAK,EAAE,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAED,4BAA4B;IAC5B,IAAI,MAAM,CAAC,cAAc,EAAE,CAAC;QAC1B,MAAM,IAAI,GAAG,MAAM,CAAC,cAAc,CAAC;QACnC,QAAQ,IAAI,CAAC,IAAI,EAAE,CAAC;YAClB,KAAK,QAAQ;gBACX,IAAI,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC;oBAC3B,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,yBAAyB,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC,CAAC;gBAC1E,CAAC;gBACD,MAAM;YACR,KAAK,OAAO;gBACV,IAAI,IAAI,CAAC,WAAW,CAAC,QAAQ,IAAI,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC;oBAC3D,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CACzB,GAAG,IAAI,CAAC,WAAW,CAAC,QAAQ,IAAI,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAC5D,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;oBACrB,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,wBAAwB,OAAO,EAAE,CAAC,CAAC;gBAC1D,CAAC;gBACD,MAAM;YACR,KAAK,SAAS;gBACZ,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,IAAI,IAAI,CAAC,WAAW,CAAC,YAAY,EAAE,CAAC;oBAC7D,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,IAAI,CAAC,WAAW,CAAC,YAAY,KAAK,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,CAAC,CAAC;gBACvF,CAAC;gBACD,MAAM;YACR,KAAK,QAAQ;gBACX,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,CAAC;oBAC5B,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,CAAC,CAAC;gBAC7D,CAAC;gBACD,MAAM;QACV,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAoB;IACpD,MAAM,QAAQ,GAAG,uBAAuB,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,MAAM,CAAC;IAEzE,0BAA0B;IAC1B,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC,QAAQ,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAChE,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,EAAE,EAAE,CACzC,CAAC;IACF,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC,QAAQ,CAAC,CAAC;IAEtD,yBAAyB;IACzB,MAAM,UAAU,GAAa,EAAE,CAAC;IAChC,IAAI,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;QAC1B,UAAU,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC5C,CAAC;IACD,IAAI,MAAM,CAAC,cAAc,CAAC,EAAE,CAAC;QAC3B,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC;IAC1C,CAAC;IAED,OAAO;QACL,OAAO,EAAE,QAAiB;QAC1B,MAAM,EAAE,UAAU,MAAM,CAAC,aAAa,CAAC,EAAE;QACzC,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI;QACtB,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC,WAAW,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,WAAW;QACtE,QAAQ;QACR,UAAU,EAAE,yBAAyB,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC;QAC3D,GAAG,EAAE,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,IAAI;QAClC,MAAM,EAAE,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC;QACrC,QAAQ,EAAE,MAAM,CAAC,mBAAmB,CAAC,EAAE,IAAI,CAAC,IAAI,CAAC;QACjD,MAAM;QACN,MAAM;QACN,UAAU;QACV,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI;QACtB,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACvD,SAAS,EAAE,MAA4C;KACxD,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,aAAa,CAAC,OAAgB;IACrC,IAAI,CAAC,OAAO;QAAE,OAAO,SAAS,CAAC;IAE/B,MAAM,WAAW,GAAG,OAAO,CAAC,KAAK,CAAC,6CAA6C,CAAC,CAAC;IACjF,OAAO,WAAW,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;AAClD,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAAC,QAAgB;IACjD,QAAQ,QAAQ,CAAC,WAAW,EAAE,EAAE,CAAC;QAC/B,KAAK,UAAU;YACb,OAAO,EAAE,CAAC;QACZ,KAAK,MAAM;YACT,OAAO,EAAE,CAAC;QACZ,KAAK,QAAQ;YACX,OAAO,EAAE,CAAC;QACZ,KAAK,KAAK;YACR,OAAO,EAAE,CAAC;QACZ;YACE,OAAO,EAAE,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,MAAkB,EAClB,SAAqB,EAAE;IAEvB,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC;IAC7B,MAAM,YAAY,GAAG,EAAE,GAAG,EAAE,WAAW,EAAE,IAAI,EAAE,WAAW,EAAE,GAAG,EAAE,aAAa,EAAE,QAAiB,EAAE,EAAE,GAAG,MAAM,EAAE,CAAC;IAEjH,MAAM,CAAC,IAAI,CAAC,mBAAmB,EAAE;QAC/B,MAAM,EAAE,MAAM,CAAC,GAAG;QAClB,WAAW,EAAE,YAAY,CAAC,WAAW;KACtC,CAAC,CAAC;IAEH,qBAAqB;IACrB,MAAM,YAAY,GAAG,MAAM,oBAAoB,EAAE,CAAC;IAElD,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,CAAC;QAC5B,OAAO;YACL,OAAO,EAAE,QAAQ;YACjB,MAAM;YACN,QAAQ,EAAE,EAAE;YACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,OAAO,EAAE;YAC1C,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,YAAY,CAAC,KAAK,IAAI,sBAAsB;YACnD,KAAK,EAAE;gBACL,YAAY,EAAE,CAAC;gBACf,cAAc,EAAE,CAAC;gBACjB,cAAc,EAAE,CAAC;gBACjB,UAAU,EAAE,EAAE;aACf;YACD,SAAS,EAAE,SAAS,CAAC,WAAW,EAAE;YAClC,OAAO,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACjC,MAAM,EAAE,YAAY;SACrB,CAAC;IACJ,CAAC;IAED,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,MAAM,IAAI,GAAG,eAAe,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;QAEnD,MAAM,CAAC,KAAK,CAAC,gBAAgB,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEzD,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE;YAClC,OAAO,EAAE,CAAC,YAAY,CAAC,WAAW,IAAI,GAAG,CAAC,GAAG,IAAI;SAClD,CAAC,CAAC;QAEH,IAAI,MAAM,GAAG,EAAE,CAAC;QAChB,IAAI,MAAM,GAAG,EAAE,CAAC;QAEhB,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YAChC,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC5B,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YAChC,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC5B,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE;YACzB,MAAM,OAAO,GAAG,IAAI,IAAI,EAAE,CAAC;YAC3B,MAAM,QAAQ,GAAkB,EAAE,CAAC;YAEnC,0BAA0B;YAC1B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;YAEjD,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAiB,CAAC;oBAChD,QAAQ,CAAC,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAC,CAAC;gBAC3C,CAAC;gBAAC,MAAM,CAAC;oBACP,sBAAsB;oBACtB,MAAM,CAAC,KAAK,CAAC,mBAAmB,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;gBAClE,CAAC;YACH,CAAC;YAED,kBAAkB;YAClB,MAAM,UAAU,GAAoC,EAAE,CAAC;YACvD,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;gBAC/B,UAAU,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;YACzE,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,KAAK,CAAC,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC;YAElD,MAAM,MAAM,GAAmB;gBAC7B,OAAO,EAAE,QAAQ;gBACjB,MAAM;gBACN,QAAQ;gBACR,QAAQ,EAAE,OAAO,CAAC,OAAO,EAAE,GAAG,SAAS,CAAC,OAAO,EAAE;gBACjD,OAAO;gBACP,KAAK,EAAE,CAAC,OAAO,IAAI,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS;gBAC5D,KAAK,EAAE;oBACL,YAAY,EAAE,CAAC,EAAE,mCAAmC;oBACpD,cAAc,EAAE,IAAI,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI;oBACxD,cAAc,EAAE,QAAQ,CAAC,MAAM;oBAC/B,UAAU;iBACX;gBACD,OAAO,EAAE,YAAY,CAAC,OAAO;gBAC7B,SAAS,EAAE,SAAS,CAAC,WAAW,EAAE;gBAClC,OAAO,EAAE,OAAO,CAAC,WAAW,EAAE;gBAC9B,MAAM,EAAE,YAAY;aACrB,CAAC;YAEF,MAAM,CAAC,IAAI,CAAC,sBAAsB,EAAE;gBAClC,QAAQ,EAAE,QAAQ,CAAC,MAAM;gBACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,OAAO;aACR,CAAC,CAAC;YAEH,OAAO,CAAC,MAAM,CAAC,CAAC;QAClB,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE;YAC1B,MAAM,OAAO,GAAG,IAAI,IAAI,EAAE,CAAC;YAE3B,OAAO,CAAC;gBACN,OAAO,EAAE,QAAQ;gBACjB,MAAM;gBACN,QAAQ,EAAE,EAAE;gBACZ,QAAQ,EAAE,OAAO,CAAC,OAAO,EAAE,GAAG,SAAS,CAAC,OAAO,EAAE;gBACjD,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC;gBACpB,KAAK,EAAE;oBACL,YAAY,EAAE,CAAC;oBACf,cAAc,EAAE,CAAC;oBACjB,cAAc,EAAE,CAAC;oBACjB,UAAU,EAAE,EAAE;iBACf;gBACD,OAAO,EAAE,YAAY,CAAC,OAAO;gBAC7B,SAAS,EAAE,SAAS,CAAC,WAAW,EAAE;gBAClC,OAAO,EAAE,OAAO,CAAC,WAAW,EAAE;gBAC9B,MAAM,EAAE,YAAY;aACrB,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,4BAA4B;IAC1C,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA8BR,CAAC;AACF,CAAC"}

package/dist/scanners/dast/types.d.ts

@@ -0,0 +1,306 @@
+/**
+ * DAST Scanner Types
+ *
+ * Types for Dynamic Application Security Testing integrations
+ * with OWASP ZAP and Nuclei.
+ *
+ * @module scanners/dast/types
+ */
+import type { Severity } from "../../certification/types.js";
+/**
+ * DAST scanner types
+ */
+export type DASTScanner = "zap" | "nuclei";
+/**
+ * Authentication types for DAST scans
+ */
+export type AuthType = "none" | "basic" | "bearer" | "cookie" | "oauth2" | "api-key";
+/**
+ * Target for DAST scanning
+ */
+export interface DASTTarget {
+    /** Base URL to scan */
+    url: string;
+    /** Optional name for the target */
+    name?: string;
+    /** Authentication configuration */
+    authentication?: DASTAuthentication;
+    /** Custom headers to include */
+    headers?: Record<string, string>;
+    /** URL patterns to include in scan scope */
+    scope?: string[];
+    /** URL patterns to exclude from scan */
+    exclude?: string[];
+    /** OpenAPI/Swagger spec URL for API scanning */
+    openApiUrl?: string;
+    /** GraphQL endpoint for GraphQL scanning */
+    graphqlUrl?: string;
+}
+/**
+ * Authentication configuration
+ */
+export interface DASTAuthentication {
+    /** Authentication type */
+    type: AuthType;
+    /** Credentials based on auth type */
+    credentials: {
+        /** Username for basic auth */
+        username?: string;
+        /** Password for basic auth */
+        password?: string;
+        /** Bearer token */
+        token?: string;
+        /** Cookie string */
+        cookie?: string;
+        /** API key */
+        apiKey?: string;
+        /** API key header name */
+        apiKeyHeader?: string;
+        /** OAuth2 client ID */
+        clientId?: string;
+        /** OAuth2 client secret */
+        clientSecret?: string;
+        /** OAuth2 token URL */
+        tokenUrl?: string;
+    };
+}
+/**
+ * Scan policy/configuration
+ */
+export interface DASTPolicy {
+    /** Only run passive scans (no active attacks) */
+    passiveOnly?: boolean;
+    /** Risk threshold to report */
+    riskThreshold?: "high" | "medium" | "low" | "informational";
+    /** Maximum scan duration in seconds */
+    maxDuration?: number;
+    /** Specific Nuclei template paths or tags */
+    templates?: string[];
+    /** Nuclei template tags to include */
+    templateTags?: string[];
+    /** Nuclei template tags to exclude */
+    excludeTags?: string[];
+    /** ZAP scan policy name */
+    zapPolicy?: string;
+    /** Enable AJAX spider for JavaScript-heavy apps */
+    ajaxSpider?: boolean;
+    /** Maximum depth for spidering */
+    maxDepth?: number;
+    /** Maximum children per node for spidering */
+    maxChildren?: number;
+    /** Delay between requests in milliseconds */
+    requestDelay?: number;
+    /** Number of concurrent threads */
+    threads?: number;
+}
+/**
+ * Default DAST policy
+ */
+export declare const DEFAULT_DAST_POLICY: DASTPolicy;
+/**
+ * A finding from a DAST scanner
+ */
+export interface DASTFinding {
+    /** Which scanner found this */
+    scanner: DASTScanner;
+    /** Rule/template ID */
+    ruleId: string;
+    /** Human-readable name */
+    name: string;
+    /** Description of the vulnerability */
+    description: string;
+    /** Severity level */
+    severity: Severity;
+    /** Confidence level (0-100) */
+    confidence: number;
+    /** Affected URL */
+    url: string;
+    /** HTTP method */
+    method?: string;
+    /** Attack parameter/input */
+    parameter?: string;
+    /** Evidence/proof of vulnerability */
+    evidence?: string;
+    /** Attack payload used */
+    attack?: string;
+    /** CWE IDs */
+    cweIds?: string[];
+    /** CVE IDs */
+    cveIds?: string[];
+    /** Reference URLs */
+    references?: string[];
+    /** Suggested solution */
+    solution?: string;
+    /** Raw scanner output */
+    rawOutput?: Record<string, unknown>;
+    /** Tags/labels */
+    tags?: string[];
+    /** Timestamp when found */
+    timestamp: string;
+}
+/**
+ * Result from running a DAST scanner
+ */
+export interface DASTScanResult {
+    /** Scanner used */
+    scanner: DASTScanner;
+    /** Target that was scanned */
+    target: DASTTarget;
+    /** Findings discovered */
+    findings: DASTFinding[];
+    /** Scan duration in milliseconds */
+    duration: number;
+    /** Whether scan completed successfully */
+    success: boolean;
+    /** Error message if failed */
+    error?: string;
+    /** Scan statistics */
+    stats: {
+        /** Total requests made */
+        requestCount: number;
+        /** URLs discovered */
+        urlsDiscovered: number;
+        /** Unique findings */
+        uniqueFindings: number;
+        /** Findings by severity */
+        bySeverity: Partial<Record<Severity, number>>;
+    };
+    /** Scanner version */
+    version?: string;
+    /** Scan start time */
+    startTime: string;
+    /** Scan end time */
+    endTime: string;
+    /** Policy used */
+    policy: DASTPolicy;
+}
+/**
+ * Aggregated results from multiple DAST scanners
+ */
+export interface AggregatedDASTResult {
+    /** Timestamp */
+    timestamp: string;
+    /** Target scanned */
+    target: DASTTarget;
+    /** Results from each scanner */
+    scanners: DASTScanResult[];
+    /** Total findings across all scanners */
+    totalFindings: number;
+    /** Deduplicated findings */
+    uniqueFindings: DASTFinding[];
+    /** Findings by severity */
+    bySeverity: Partial<Record<Severity, number>>;
+    /** Findings by scanner */
+    byScanner: Record<DASTScanner, number>;
+    /** Total scan duration */
+    totalDuration: number;
+    /** Whether all scanners succeeded */
+    allSucceeded: boolean;
+    /** Scanners that failed */
+    failedScanners: DASTScanner[];
+}
+/**
+ * DAST scanner availability status
+ */
+export interface DASTAvailability {
+    scanner: DASTScanner;
+    available: boolean;
+    version?: string;
+    path?: string;
+    error?: string;
+    features?: {
+        passiveScan: boolean;
+        activeScan: boolean;
+        apiScan: boolean;
+        authentication: boolean;
+    };
+}
+/**
+ * Options for running DAST scans
+ */
+export interface DASTScanOptions {
+    /** Scanners to run */
+    scanners?: DASTScanner[];
+    /** Scan policy */
+    policy?: DASTPolicy;
+    /** Output format */
+    outputFormat?: "json" | "sarif" | "html";
+    /** Save report to file */
+    reportPath?: string;
+    /** Verbose output */
+    verbose?: boolean;
+    /** Confirmation that scan is authorized */
+    authorized: boolean;
+}
+/**
+ * ZAP-specific alert structure
+ */
+export interface ZAPAlert {
+    sourceid: string;
+    other: string;
+    method: string;
+    evidence: string;
+    pluginId: string;
+    cweid: string;
+    confidence: string;
+    wascid: string;
+    description: string;
+    messageId: string;
+    inputVector: string;
+    url: string;
+    tags: Record<string, string>;
+    reference: string;
+    solution: string;
+    alert: string;
+    param: string;
+    attack: string;
+    name: string;
+    risk: string;
+    id: string;
+    alertRef: string;
+}
+/**
+ * Nuclei-specific result structure
+ */
+export interface NucleiResult {
+    template: string;
+    "template-url"?: string;
+    "template-id": string;
+    "template-path"?: string;
+    info: {
+        name: string;
+        author: string[];
+        tags: string[];
+        description?: string;
+        reference?: string[];
+        severity: string;
+        metadata?: Record<string, unknown>;
+        classification?: {
+            "cve-id"?: string[];
+            "cwe-id"?: string[];
+        };
+    };
+    type: string;
+    host: string;
+    matched: string;
+    "extracted-results"?: string[];
+    ip?: string;
+    timestamp: string;
+    matcher?: string;
+    "curl-command"?: string;
+    request?: string;
+    response?: string;
+}
+/**
+ * Map ZAP risk levels to severity
+ */
+export declare const ZAP_RISK_MAPPING: Record<string, Severity>;
+/**
+ * Map ZAP confidence levels to numeric values
+ */
+export declare const ZAP_CONFIDENCE_MAPPING: Record<string, number>;
+/**
+ * Map Nuclei severity to vaspera severity
+ */
+export declare const NUCLEI_SEVERITY_MAPPING: Record<string, Severity>;
+//# sourceMappingURL=types.d.ts.map

package/dist/scanners/dast/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/scanners/dast/types.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,8BAA8B,CAAC;AAE7D;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG,KAAK,GAAG,QAAQ,CAAC;AAE3C;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,OAAO,GAAG,QAAQ,GAAG,QAAQ,GAAG,QAAQ,GAAG,SAAS,CAAC;AAErF;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,uBAAuB;IACvB,GAAG,EAAE,MAAM,CAAC;IAEZ,mCAAmC;IACnC,IAAI,CAAC,EAAE,MAAM,CAAC;IAEd,mCAAmC;IACnC,cAAc,CAAC,EAAE,kBAAkB,CAAC;IAEpC,gCAAgC;IAChC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAEjC,4CAA4C;IAC5C,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IAEjB,wCAAwC;IACxC,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IAEnB,gDAAgD;IAChD,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,4CAA4C;IAC5C,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,0BAA0B;IAC1B,IAAI,EAAE,QAAQ,CAAC;IAEf,qCAAqC;IACrC,WAAW,EAAE;QACX,8BAA8B;QAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,8BAA8B;QAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,mBAAmB;QACnB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,oBAAoB;QACpB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,cAAc;QACd,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,0BAA0B;QAC1B,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,uBAAuB;QACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,2BAA2B;QAC3B,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,uBAAuB;QACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,iDAAiD;IACjD,WAAW,CAAC,EAAE,OAAO,CAAC;IAEtB,+BAA+B;IAC/B,aAAa,CAAC,EAAE,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,eAAe,CAAC;IAE5D,uCAAuC;IACvC,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,6CAA6C;IAC7C,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;IAErB,sCAAsC;IACtC,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IAExB,sCAAsC;IACtC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IAEvB,2BAA2B;IAC3B,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,mDAAmD;IACnD,UAAU,CAAC,EAAE,OAAO,CAAC;IAErB,kCAAkC;IAClC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,8CAA8C;IAC9C,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,6CAA6C;IAC7C,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB,mCAAmC;IACnC,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,eAAO,MAAM,mBAAmB,EAAE,UASjC,CAAC;AAEF;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,+BAA+B;IAC/B,OAAO,EAAE,WAAW,CAAC;IAErB,uBAAuB;IACvB,MAAM,EAAE,MAAM,CAAC;IAEf,0BAA0B;IAC1B,IAAI,EAAE,MAAM,CAAC;IAEb,uCAAuC;IACvC,WAAW,EAAE,MAAM,CAAC;IAEpB,qBAAqB;IACrB,QAAQ,EAAE,QAAQ,CAAC;IAEnB,+BAA+B;IAC/B,UAAU,EAAE,MAAM,CAAC;IAEnB,mBAAmB;IACnB,GAAG,EAAE,MAAM,CAAC;IAEZ,kBAAkB;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,6BAA6B;IAC7B,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,sCAAsC;IACtC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,0BAA0B;IAC1B,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,cAAc;IACd,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAElB,cAAc;IACd,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAElB,qBAAqB;IACrB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IAEtB,yBAAyB;IACzB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,yBAAyB;IACzB,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAEpC,kBAAkB;IAClB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAEhB,2BAA2B;IAC3B,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,mBAAmB;IACnB,OAAO,EAAE,WAAW,CAAC;IAErB,8BAA8B;IAC9B,MAAM,EAAE,UAAU,CAAC;IAEnB,0BAA0B;IAC1B,QAAQ,EAAE,WAAW,EAAE,CAAC;IAExB,oCAAoC;IACpC,QAAQ,EAAE,MAAM,CAAC;IAEjB,0CAA0C;IAC1C,OAAO,EAAE,OAAO,CAAC;IAEjB,8BAA8B;IAC9B,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,sBAAsB;IACtB,KAAK,EAAE;QACL,0BAA0B;QAC1B,YAAY,EAAE,MAAM,CAAC;QACrB,sBAAsB;QACtB,cAAc,EAAE,MAAM,CAAC;QACvB,sBAAsB;QACtB,cAAc,EAAE,MAAM,CAAC;QACvB,2BAA2B;QAC3B,UAAU,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC,CAAC;KAC/C,CAAC;IAEF,sBAAsB;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,sBAAsB;IACtB,SAAS,EAAE,MAAM,CAAC;IAElB,oBAAoB;IACpB,OAAO,EAAE,MAAM,CAAC;IAEhB,kBAAkB;IAClB,MAAM,EAAE,UAAU,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,gBAAgB;IAChB,SAAS,EAAE,MAAM,CAAC;IAElB,qBAAqB;IACrB,MAAM,EAAE,UAAU,CAAC;IAEnB,gCAAgC;IAChC,QAAQ,EAAE,cAAc,EAAE,CAAC;IAE3B,yCAAyC;IACzC,aAAa,EAAE,MAAM,CAAC;IAEtB,4BAA4B;IAC5B,cAAc,EAAE,WAAW,EAAE,CAAC;IAE9B,2BAA2B;IAC3B,UAAU,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC,CAAC;IAE9C,0BAA0B;IAC1B,SAAS,EAAE,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IAEvC,0BAA0B;IAC1B,aAAa,EAAE,MAAM,CAAC;IAEtB,qCAAqC;IACrC,YAAY,EAAE,OAAO,CAAC;IAEtB,2BAA2B;IAC3B,cAAc,EAAE,WAAW,EAAE,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,WAAW,CAAC;IACrB,SAAS,EAAE,OAAO,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE;QACT,WAAW,EAAE,OAAO,CAAC;QACrB,UAAU,EAAE,OAAO,CAAC;QACpB,OAAO,EAAE,OAAO,CAAC;QACjB,cAAc,EAAE,OAAO,CAAC;KACzB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,sBAAsB;IACtB,QAAQ,CAAC,EAAE,WAAW,EAAE,CAAC;IAEzB,kBAAkB;IAClB,MAAM,CAAC,EAAE,UAAU,CAAC;IAEpB,oBAAoB;IACpB,YAAY,CAAC,EAAE,MAAM,GAAG,OAAO,GAAG,MAAM,CAAC;IAEzC,0BAA0B;IAC1B,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,qBAAqB;IACrB,OAAO,CAAC,EAAE,OAAO,CAAC;IAElB,2CAA2C;IAC3C,UAAU,EAAE,OAAO,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,IAAI,EAAE;QACJ,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,MAAM,EAAE,CAAC;QACjB,IAAI,EAAE,MAAM,EAAE,CAAC;QACf,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;QACrB,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QACnC,cAAc,CAAC,EAAE;YACf,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;YACpB,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;SACrB,CAAC;KACH,CAAC;IACF,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,eAAO,MAAM,gBAAgB,EAAE,MAAM,CAAC,MAAM,EAAE,QAAQ,CAKrD,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,sBAAsB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAMzD,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,uBAAuB,EAAE,MAAM,CAAC,MAAM,EAAE,QAAQ,CAO5D,CAAC"}